Warning: Permanently added '10.128.1.157' (ED25519) to the list of known hosts.
2025/12/29 01:51:09 parsed 1 programs
[ 92.411545][ T5832] cgroup: Unknown subsys name 'net'
[ 92.541534][ T5832] cgroup: Unknown subsys name 'cpuset'
[ 92.550756][ T5832] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 94.340570][ T5832] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 97.160254][ T10] cfg80211: failed to load regulatory.db
[ 97.434534][ T5845] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 98.471924][ T2995] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 98.480132][ T2995] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 98.521967][ T2995] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 98.530322][ T2995] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 100.278707][ T5149] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 100.287053][ T5149] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 100.295154][ T5149] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 100.307553][ T5149] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 100.316978][ T5149] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 100.742214][ T5905] chnl_net:caif_netlink_parms(): no params data found
[ 100.885110][ T5905] bridge0: port 1(bridge_slave_0) entered blocking state
[ 100.893221][ T5905] bridge0: port 1(bridge_slave_0) entered disabled state
[ 100.901157][ T5905] bridge_slave_0: entered allmulticast mode
[ 100.909016][ T5905] bridge_slave_0: entered promiscuous mode
[ 100.925362][ T5905] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.932612][ T5905] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.940105][ T5905] bridge_slave_1: entered allmulticast mode
[ 100.947882][ T5905] bridge_slave_1: entered promiscuous mode
[ 100.985828][ T5905] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 100.999645][ T5905] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 101.043171][ T5905] team0: Port device team_slave_0 added
[ 101.052630][ T5905] team0: Port device team_slave_1 added
[ 101.083668][ T5905] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 101.091195][ T5905] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 101.117177][ T5905] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 101.130165][ T5905] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 101.137209][ T5905] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 101.163293][ T5905] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 101.213125][ T5905] hsr_slave_0: entered promiscuous mode
[ 101.219921][ T5905] hsr_slave_1: entered promiscuous mode
[ 101.414877][ T5905] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 101.429646][ T5905] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 101.440395][ T5905] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 101.454135][ T5905] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 101.544376][ T5905] 8021q: adding VLAN 0 to HW filter on device bond0
[ 101.569464][ T5905] 8021q: adding VLAN 0 to HW filter on device team0
[ 101.583250][ T2995] bridge0: port 1(bridge_slave_0) entered blocking state
[ 101.590710][ T2995] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 101.609594][ T2995] bridge0: port 2(bridge_slave_1) entered blocking state
[ 101.616802][ T2995] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 101.815831][ T5905] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 101.863238][ T5905] veth0_vlan: entered promiscuous mode
[ 101.879310][ T5905] veth1_vlan: entered promiscuous mode
[ 101.913504][ T5905] veth0_macvtap: entered promiscuous mode
[ 101.924314][ T5905] veth1_macvtap: entered promiscuous mode
[ 101.945676][ T5905] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 101.962794][ T5905] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 101.980329][ T2974] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.990829][ T2974] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.002652][ T2974] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.012160][ T2974] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.184263][ T2995] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 102.276017][ T2995] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 102.337126][ T2995] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 102.416806][ T2995] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/29 01:51:24 executed programs: 0
[ 103.252502][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 103.260948][ T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 103.270753][ T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 103.279097][ T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 103.286808][ T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 103.478230][ T5942] chnl_net:caif_netlink_parms(): no params data found
[ 103.566452][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[ 103.574101][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[ 103.582350][ T5942] bridge_slave_0: entered allmulticast mode
[ 103.590120][ T5942] bridge_slave_0: entered promiscuous mode
[ 103.600810][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[ 103.608258][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[ 103.615607][ T5942] bridge_slave_1: entered allmulticast mode
[ 103.623392][ T5942] bridge_slave_1: entered promiscuous mode
[ 103.662933][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 103.675770][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 103.720720][ T5942] team0: Port device team_slave_0 added
[ 103.730143][ T5942] team0: Port device team_slave_1 added
[ 103.769748][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 103.776819][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 103.803680][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 103.816533][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 103.823678][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 103.850456][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 103.901674][ T5942] hsr_slave_0: entered promiscuous mode
[ 103.908842][ T5942] hsr_slave_1: entered promiscuous mode
[ 103.915124][ T5942] debugfs: 'hsr0' already exists in 'hsr'
[ 103.921864][ T5942] Cannot create hsr debugfs directory
[ 104.988821][ T2995] bridge_slave_1: left allmulticast mode
[ 104.995631][ T2995] bridge_slave_1: left promiscuous mode
[ 105.007241][ T2995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 105.023724][ T2995] bridge_slave_0: left allmulticast mode
[ 105.029533][ T2995] bridge_slave_0: left promiscuous mode
[ 105.035366][ T2995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 105.310032][ T5149] Bluetooth: hci0: command tx timeout
[ 105.347460][ T2995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 105.359763][ T2995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 105.370338][ T2995] bond0 (unregistering): Released all slaves
[ 105.458193][ T2995] hsr_slave_0: left promiscuous mode
[ 105.468216][ T2995] hsr_slave_1: left promiscuous mode
[ 105.474572][ T2995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 105.482106][ T2995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 105.490844][ T2995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 105.508934][ T2995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 105.538255][ T2995] veth1_macvtap: left promiscuous mode
[ 105.543936][ T2995] veth0_macvtap: left promiscuous mode
[ 105.557243][ T2995] veth1_vlan: left promiscuous mode
[ 105.563165][ T2995] veth0_vlan: left promiscuous mode
[ 106.075946][ T2995] team0 (unregistering): Port device team_slave_1 removed
[ 106.104211][ T2995] team0 (unregistering): Port device team_slave_0 removed
[ 106.690455][ T5942] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 106.718485][ T5942] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 106.736376][ T5942] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 106.756171][ T5942] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 107.145960][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[ 107.186479][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[ 107.232816][ T2974] bridge0: port 1(bridge_slave_0) entered blocking state
[ 107.240140][ T2974] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 107.268955][ T139] bridge0: port 2(bridge_slave_1) entered blocking state
[ 107.276190][ T139] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 107.388255][ T5149] Bluetooth: hci0: command tx timeout
[ 107.586211][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 107.656296][ T5942] veth0_vlan: entered promiscuous mode
[ 107.672361][ T5942] veth1_vlan: entered promiscuous mode
[ 107.709502][ T5942] veth0_macvtap: entered promiscuous mode
[ 107.719927][ T5942] veth1_macvtap: entered promiscuous mode
[ 107.739820][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 107.755531][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 107.771474][ T139] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.781249][ T139] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.792100][ T139] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.802115][ T139] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.867178][ T139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.881852][ T139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.910695][ T2995] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.923285][ T2995] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 109.467519][ T5149] Bluetooth: hci0: command tx timeout
[ 110.976736][ T6004] ------------[ cut here ]------------
[ 110.977521][ T6004]
[ 110.977529][ T6004] ======================================================
[ 110.977535][ T6004] WARNING: possible circular locking dependency detected
[ 110.977550][ T6004] syzkaller #0 Not tainted
[ 110.977558][ T6004] ------------------------------------------------------
[ 110.977563][ T6004] syz.0.17/6004 is trying to acquire lock:
[ 110.977571][ T6004] ffffffff8e333180 (console_owner){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 110.977615][ T6004]
[ 110.977615][ T6004] but task is already holding lock:
[ 110.977620][ T6004] ffff8880b863ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 110.977660][ T6004]
[ 110.977660][ T6004] which lock already depends on the new lock.
[ 110.977660][ T6004]
[ 110.977666][ T6004]
[ 110.977666][ T6004] the existing dependency chain (in reverse order) is:
[ 110.977672][ T6004]
[ 110.977672][ T6004] -> #4 (&rq->__lock){-.-.}-{2:2}:
[ 110.977693][ T6004] _raw_spin_lock_nested+0x32/0x50
[ 110.977709][ T6004] raw_spin_rq_lock_nested+0x2a/0x140
[ 110.977771][ T6004] task_rq_lock+0xbc/0x470
[ 110.977792][ T6004] cgroup_move_task+0x92/0x2a0
[ 110.977806][ T6004] css_set_move_task+0x658/0x9e0
[ 110.977828][ T6004] cgroup_post_fork+0x1ef/0x7a0
[ 110.977849][ T6004] copy_process+0x3614/0x3950
[ 110.977870][ T6004] kernel_clone+0x21e/0x820
[ 110.977889][ T6004] user_mode_thread+0xdd/0x140
[ 110.977901][ T6004] rest_init+0x23/0x300
[ 110.977920][ T6004] start_kernel+0x3ac/0x400
[ 110.977932][ T6004] x86_64_start_reservations+0x24/0x30
[ 110.977951][ T6004] x86_64_start_kernel+0x143/0x1c0
[ 110.977969][ T6004] common_startup_64+0x13e/0x147
[ 110.977984][ T6004]
[ 110.977984][ T6004] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[ 110.978003][ T6004] _raw_spin_lock_irqsave+0xa7/0xf0
[ 110.978016][ T6004] try_to_wake_up+0x67/0x12b0
[ 110.978031][ T6004] __wake_up_common_lock+0x137/0x1f0
[ 110.978049][ T6004] tty_port_default_wakeup+0xfb/0x170
[ 110.978070][ T6004] serial8250_tx_chars+0x72e/0x970
[ 110.978086][ T6004] serial8250_handle_irq+0x633/0xbb0
[ 110.978103][ T6004] serial8250_default_handle_irq+0xbf/0x200
[ 110.978124][ T6004] serial8250_interrupt+0x8d/0x180
[ 110.978139][ T6004] __handle_irq_event_percpu+0x285/0xa60
[ 110.978157][ T6004] handle_irq_event+0x8b/0x1e0
[ 110.978173][ T6004] handle_edge_irq+0x23b/0xa10
[ 110.978188][ T6004] __common_interrupt+0x141/0x1f0
[ 110.978206][ T6004] common_interrupt+0xb6/0xe0
[ 110.978225][ T6004] asm_common_interrupt+0x26/0x40
[ 110.978239][ T6004] finish_task_switch+0x242/0x940
[ 110.978257][ T6004] __schedule+0x1516/0x5070
[ 110.978269][ T6004] schedule+0x165/0x360
[ 110.978281][ T6004] schedule_hrtimeout_range_clock+0x1c5/0x2f0
[ 110.978304][ T6004] poll_schedule_timeout+0xd1/0x1b0
[ 110.978319][ T6004] do_sys_poll+0x73b/0x1070
[ 110.978332][ T6004] __se_sys_ppoll+0x1ff/0x260
[ 110.978345][ T6004] do_syscall_64+0xfa/0xf80
[ 110.978359][ T6004] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.978373][ T6004]
[ 110.978373][ T6004] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[ 110.978393][ T6004] _raw_spin_lock_irqsave+0xa7/0xf0
[ 110.978405][ T6004] __wake_up_common_lock+0x2f/0x1f0
[ 110.978422][ T6004] tty_port_default_wakeup+0xfb/0x170
[ 110.978441][ T6004] serial8250_tx_chars+0x72e/0x970
[ 110.978457][ T6004] serial8250_handle_irq+0x633/0xbb0
[ 110.978474][ T6004] serial8250_default_handle_irq+0xbf/0x200
[ 110.978494][ T6004] serial8250_interrupt+0x8d/0x180
[ 110.978507][ T6004] __handle_irq_event_percpu+0x285/0xa60
[ 110.978525][ T6004] handle_irq_event+0x8b/0x1e0
[ 110.978541][ T6004] handle_edge_irq+0x23b/0xa10
[ 110.978555][ T6004] __common_interrupt+0x141/0x1f0
[ 110.978572][ T6004] common_interrupt+0xb6/0xe0
[ 110.978591][ T6004] asm_common_interrupt+0x26/0x40
[ 110.978605][ T6004] pv_native_safe_halt+0x13/0x20
[ 110.978619][ T6004] default_idle+0x13/0x20
[ 110.978635][ T6004] default_idle_call+0x73/0xb0
[ 110.978653][ T6004] do_idle+0x1ea/0x520
[ 110.978664][ T6004] cpu_startup_entry+0x44/0x60
[ 110.978676][ T6004] rest_init+0x2de/0x300
[ 110.978694][ T6004] start_kernel+0x3ac/0x400
[ 110.978706][ T6004] x86_64_start_reservations+0x24/0x30
[ 110.978724][ T6004] x86_64_start_kernel+0x143/0x1c0
[ 110.978741][ T6004] common_startup_64+0x13e/0x147
[ 110.978755][ T6004]
[ 110.978755][ T6004] -> #1 (&port_lock_key){-.-.}-{3:3}:
[ 110.978774][ T6004] _raw_spin_lock_irqsave+0xa7/0xf0
[ 110.978787][ T6004] serial8250_console_write+0x17e/0x1ba0
[ 110.978805][ T6004] console_flush_all+0x745/0xb60
[ 110.978821][ T6004] console_unlock+0xbb/0x190
[ 110.978834][ T6004] vprintk_emit+0x4f8/0x5f0
[ 110.978848][ T6004] _printk+0xcf/0x120
[ 110.978869][ T6004] register_console+0xa8b/0xf90
[ 110.978891][ T6004] univ8250_console_init+0x3a/0x70
[ 110.978911][ T6004] console_init+0xfc/0x3f0
[ 110.978928][ T6004] start_kernel+0x252/0x400
[ 110.978940][ T6004] x86_64_start_reservations+0x24/0x30
[ 110.978958][ T6004] x86_64_start_kernel+0x143/0x1c0
[ 110.978975][ T6004] common_startup_64+0x13e/0x147
[ 110.978989][ T6004]
[ 110.978989][ T6004] -> #0 (console_owner){....}-{0:0}:
[ 110.979009][ T6004] __lock_acquire+0x15a6/0x2cf0
[ 110.979030][ T6004] lock_acquire+0x117/0x340
[ 110.979049][ T6004] console_flush_all+0x6ee/0xb60
[ 110.979065][ T6004] console_unlock+0xbb/0x190
[ 110.979078][ T6004] vprintk_emit+0x4f8/0x5f0
[ 110.979092][ T6004] _printk+0xcf/0x120
[ 110.979112][ T6004] __report_bug+0x305/0x500
[ 110.979125][ T6004] report_bug+0x16a/0x220
[ 110.979139][ T6004] handle_bug+0x98/0x200
[ 110.979156][ T6004] exc_invalid_op+0x1a/0x50
[ 110.979173][ T6004] asm_exc_invalid_op+0x1a/0x20
[ 110.979186][ T6004] sched_change_end+0x4f6/0x640
[ 110.979200][ T6004] rt_mutex_setprio+0x488/0xb70
[ 110.979219][ T6004] remove_waiter+0x7f5/0xaf0
[ 110.979239][ T6004] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 110.979260][ T6004] futex_lock_pi+0x530/0xa90
[ 110.979277][ T6004] do_futex+0x292/0x420
[ 110.979302][ T6004] __se_sys_futex+0x36f/0x400
[ 110.979321][ T6004] do_syscall_64+0xfa/0xf80
[ 110.979340][ T6004] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.979353][ T6004]
[ 110.979353][ T6004] other info that might help us debug this:
[ 110.979353][ T6004]
[ 110.979361][ T6004] Chain exists of:
[ 110.979361][ T6004] console_owner --> &p->pi_lock --> &rq->__lock
[ 110.979361][ T6004]
[ 110.979382][ T6004] Possible unsafe locking scenario:
[ 110.979382][ T6004]
[ 110.979386][ T6004] CPU0 CPU1
[ 110.979390][ T6004] ---- ----
[ 110.979394][ T6004] lock(&rq->__lock);
[ 110.979402][ T6004] lock(&p->pi_lock);
[ 110.979412][ T6004] lock(&rq->__lock);
[ 110.979421][ T6004] lock(console_owner);
[ 110.979430][ T6004]
[ 110.979430][ T6004] *** DEADLOCK ***
[ 110.979430][ T6004]
[ 110.979434][ T6004] 5 locks held by syz.0.17/6004:
[ 110.979441][ T6004] #0: ffff888075a7f928 (&pi_futex_key){....}-{2:2}, at: rt_mutex_cleanup_proxy_lock+0x23/0x100
[ 110.979480][ T6004] #1: ffff88802c554768 (&p->pi_lock){-.-.}-{2:2}, at: remove_waiter+0x286/0xaf0
[ 110.979517][ T6004] #2: ffff8880b863ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 110.979555][ T6004] #3: ffffffff8e3331e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[ 110.979593][ T6004] #4: ffffffff8e21aa98 (console_srcu){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 110.979627][ T6004]
[ 110.979627][ T6004] stack backtrace:
[ 110.979644][ T6004] CPU: 1 UID: 0 PID: 6004 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 110.979660][ T6004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 110.979674][ T6004] Call Trace:
[ 110.979680][ T6004]
[ 110.979685][ T6004] dump_stack_lvl+0x189/0x250
[ 110.979702][ T6004] ? __pfx_dump_stack_lvl+0x10/0x10
[ 110.979715][ T6004] ? __pfx__printk+0x10/0x10
[ 110.979736][ T6004] ? print_lock_name+0xde/0x100
[ 110.979758][ T6004] print_circular_bug+0x2e2/0x300
[ 110.979773][ T6004] check_noncircular+0x12e/0x150
[ 110.979789][ T6004] __lock_acquire+0x15a6/0x2cf0
[ 110.979817][ T6004] ? console_flush_all+0x131/0xb60
[ 110.979832][ T6004] lock_acquire+0x117/0x340
[ 110.979851][ T6004] ? console_flush_all+0x131/0xb60
[ 110.979869][ T6004] ? do_raw_spin_unlock+0x122/0x240
[ 110.979891][ T6004] ? console_flush_all+0x131/0xb60
[ 110.979906][ T6004] console_flush_all+0x6ee/0xb60
[ 110.979921][ T6004] ? console_flush_all+0x131/0xb60
[ 110.979938][ T6004] ? console_flush_all+0x131/0xb60
[ 110.979956][ T6004] ? __pfx_console_flush_all+0x10/0x10
[ 110.979977][ T6004] ? is_printk_cpu_sync_owner+0x32/0x40
[ 110.980004][ T6004] console_unlock+0xbb/0x190
[ 110.980018][ T6004] ? __pfx___down_trylock_console_sem+0x10/0x10
[ 110.980034][ T6004] ? __pfx_console_unlock+0x10/0x10
[ 110.980053][ T6004] vprintk_emit+0x4f8/0x5f0
[ 110.980068][ T6004] ? __pfx_vprintk_emit+0x10/0x10
[ 110.980083][ T6004] ? __lock_acquire+0x6b6/0x2cf0
[ 110.980104][ T6004] ? __lock_acquire+0x6b6/0x2cf0
[ 110.980126][ T6004] _printk+0xcf/0x120
[ 110.980149][ T6004] ? __pfx__printk+0x10/0x10
[ 110.980171][ T6004] ? find_bug+0xa5/0x370
[ 110.980183][ T6004] ? sched_change_end+0x4f6/0x640
[ 110.980197][ T6004] ? sched_change_end+0x4f6/0x640
[ 110.980210][ T6004] __report_bug+0x305/0x500
[ 110.980223][ T6004] ? sched_change_end+0x4f6/0x640
[ 110.980239][ T6004] ? __pfx___report_bug+0x10/0x10
[ 110.980259][ T6004] ? rcu_read_lock_sched_held+0x89/0x100
[ 110.980274][ T6004] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 110.980292][ T6004] ? sched_change_end+0x4f6/0x640
[ 110.980305][ T6004] report_bug+0x16a/0x220
[ 110.980318][ T6004] ? sched_change_end+0x4f6/0x640
[ 110.980331][ T6004] ? sched_change_end+0x4f8/0x640
[ 110.980344][ T6004] handle_bug+0x98/0x200
[ 110.980361][ T6004] exc_invalid_op+0x1a/0x50
[ 110.980378][ T6004] asm_exc_invalid_op+0x1a/0x20
[ 110.980391][ T6004] RIP: 0010:sched_change_end+0x4f6/0x640
[ 110.980411][ T6004] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 110.980422][ T6004] RSP: 0018:ffffc90002f97850 EFLAGS: 00010046
[ 110.980434][ T6004] RAX: 1ffff110058aa7a0 RBX: ffffffff8dcbdf90 RCX: ffffffff8193220f
[ 110.980445][ T6004] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802c553d00
[ 110.980453][ T6004] RBP: ffff88802c553fa8 R08: ffff88802c553d07 R09: 1ffff110058aa7a0
[ 110.980464][ T6004] R10: dffffc0000000000 R11: ffffed10058aa7a1 R12: dffffc0000000000
[ 110.980474][ T6004] R13: ffff88802c553d00 R14: ffff8880b863ab00 R15: ffff88802c553d00
[ 110.980488][ T6004] ? sched_change_end+0x4af/0x640
[ 110.980507][ T6004] rt_mutex_setprio+0x488/0xb70
[ 110.980529][ T6004] remove_waiter+0x7f5/0xaf0
[ 110.980550][ T6004] ? lockdep_hardirqs_on+0x98/0x140
[ 110.980566][ T6004] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 110.980587][ T6004] futex_lock_pi+0x530/0xa90
[ 110.980604][ T6004] ? __pfx_futex_lock_pi+0x10/0x10
[ 110.980625][ T6004] ? futex_hash+0x40/0x2d0
[ 110.980641][ T6004] ? futex_hash+0x2ad/0x2d0
[ 110.980660][ T6004] ? __pfx_futex_wake_mark+0x10/0x10
[ 110.980677][ T6004] ? __pfx_futex_wake+0x10/0x10
[ 110.980695][ T6004] ? handle_mm_fault+0xdb/0x32b0
[ 110.980714][ T6004] do_futex+0x292/0x420
[ 110.980736][ T6004] ? __pfx_do_futex+0x10/0x10
[ 110.980759][ T6004] __se_sys_futex+0x36f/0x400
[ 110.980782][ T6004] ? __pfx___se_sys_futex+0x10/0x10
[ 110.980805][ T6004] ? __x64_sys_futex+0x21/0xf0
[ 110.980827][ T6004] do_syscall_64+0xfa/0xf80
[ 110.980842][ T6004] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.980855][ T6004] ? clear_bhb_loop+0x60/0xb0
[ 110.980871][ T6004] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.980889][ T6004] RIP: 0033:0x7ff70b38f749
[ 110.980906][ T6004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 110.980917][ T6004] RSP: 002b:00007ffca40005f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 110.980930][ T6004] RAX: ffffffffffffffda RBX: 00007ff70b5e5fa0 RCX: 00007ff70b38f749
[ 110.980940][ T6004] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[ 110.980949][ T6004] RBP: 00007ff70b413f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 110.980958][ T6004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 110.980966][ T6004] R13: 00007ff70b5e5fa0 R14: 00007ff70b5e5fa0 R15: 0000000000000006
[ 110.980981][ T6004]
[ 112.212222][ T6004] WARNING: kernel/sched/core.c:10852 at sched_change_end+0x4f6/0x640, CPU#1: syz.0.17/6004
[ 112.222236][ T6004] Modules linked in:
[ 112.226140][ T6004] CPU: 1 UID: 0 PID: 6004 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 112.235248][ T6004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 112.245306][ T6004] RIP: 0010:sched_change_end+0x4f6/0x640
[ 112.250963][ T6004] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 112.270592][ T6004] RSP: 0018:ffffc90002f97850 EFLAGS: 00010046
[ 112.276660][ T6004] RAX: 1ffff110058aa7a0 RBX: ffffffff8dcbdf90 RCX: ffffffff8193220f
[ 112.284718][ T6004] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802c553d00
[ 112.292713][ T6004] RBP: ffff88802c553fa8 R08: ffff88802c553d07 R09: 1ffff110058aa7a0
[ 112.300720][ T6004] R10: dffffc0000000000 R11: ffffed10058aa7a1 R12: dffffc0000000000
[ 112.308706][ T6004] R13: ffff88802c553d00 R14: ffff8880b863ab00 R15: ffff88802c553d00
[ 112.316692][ T6004] FS: 0000555564086500(0000) GS:ffff888125adc000(0000) knlGS:0000000000000000
[ 112.325615][ T6004] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 112.332203][ T6004] CR2: 000020000000cffc CR3: 0000000075be4000 CR4: 00000000003526f0
[ 112.340191][ T6004] Call Trace:
[ 112.343479][ T6004]
[ 112.346418][ T6004] rt_mutex_setprio+0x488/0xb70
[ 112.351283][ T6004] remove_waiter+0x7f5/0xaf0
[ 112.355898][ T6004] ? lockdep_hardirqs_on+0x98/0x140
[ 112.361140][ T6004] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 112.366879][ T6004] futex_lock_pi+0x530/0xa90
[ 112.371476][ T6004] ? __pfx_futex_lock_pi+0x10/0x10
[ 112.376603][ T6004] ? futex_hash+0x40/0x2d0
[ 112.381031][ T6004] ? futex_hash+0x2ad/0x2d0
[ 112.385546][ T6004] ? __pfx_futex_wake_mark+0x10/0x10
[ 112.390833][ T6004] ? __pfx_futex_wake+0x10/0x10
[ 112.395687][ T6004] ? handle_mm_fault+0xdb/0x32b0
[ 112.400636][ T6004] do_futex+0x292/0x420
[ 112.404802][ T6004] ? __pfx_do_futex+0x10/0x10
[ 112.409488][ T6004] __se_sys_futex+0x36f/0x400
[ 112.414173][ T6004] ? __pfx___se_sys_futex+0x10/0x10
[ 112.419388][ T6004] ? __x64_sys_futex+0x21/0xf0
[ 112.424173][ T6004] do_syscall_64+0xfa/0xf80
[ 112.428682][ T6004] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 112.434901][ T6004] ? clear_bhb_loop+0x60/0xb0
[ 112.439597][ T6004] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 112.445495][ T6004] RIP: 0033:0x7ff70b38f749
[ 112.450003][ T6004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 112.469611][ T6004] RSP: 002b:00007ffca40005f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 112.478025][ T6004] RAX: ffffffffffffffda RBX: 00007ff70b5e5fa0 RCX: 00007ff70b38f749
[ 112.485999][ T6004] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[ 112.493971][ T6004] RBP: 00007ff70b413f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 112.501941][ T6004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 112.509920][ T6004] R13: 00007ff70b5e5fa0 R14: 00007ff70b5e5fa0 R15: 0000000000000006
[ 112.517910][ T6004]
[ 112.520933][ T6004] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 112.528233][ T6004] CPU: 1 UID: 0 PID: 6004 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 112.537352][ T6004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 112.547490][ T6004] Call Trace:
[ 112.550788][ T6004]
[ 112.553736][ T6004] dump_stack_lvl+0x99/0x250
[ 112.558342][ T6004] ? __asan_memcpy+0x40/0x70
[ 112.562941][ T6004] ? __pfx_dump_stack_lvl+0x10/0x10
[ 112.568138][ T6004] ? __pfx__printk+0x10/0x10
[ 112.572829][ T6004] vpanic+0x237/0x6d0
[ 112.576815][ T6004] ? __pfx_vpanic+0x10/0x10
[ 112.581327][ T6004] ? is_bpf_text_address+0x292/0x2b0
[ 112.586632][ T6004] ? is_bpf_text_address+0x26/0x2b0
[ 112.591926][ T6004] panic+0xb9/0xc0
[ 112.595660][ T6004] ? __pfx_panic+0x10/0x10
[ 112.600093][ T6004] __warn+0x317/0x4b0
[ 112.604165][ T6004] ? sched_change_end+0x4f6/0x640
[ 112.609191][ T6004] ? sched_change_end+0x4f6/0x640
[ 112.614218][ T6004] __report_bug+0x288/0x500
[ 112.618810][ T6004] ? sched_change_end+0x4f6/0x640
[ 112.623831][ T6004] ? __pfx___report_bug+0x10/0x10
[ 112.628873][ T6004] ? rcu_read_lock_sched_held+0x89/0x100
[ 112.634502][ T6004] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 112.640594][ T6004] ? sched_change_end+0x4f6/0x640
[ 112.645629][ T6004] report_bug+0x16a/0x220
[ 112.649984][ T6004] ? sched_change_end+0x4f6/0x640
[ 112.655040][ T6004] ? sched_change_end+0x4f8/0x640
[ 112.660087][ T6004] handle_bug+0x98/0x200
[ 112.664339][ T6004] exc_invalid_op+0x1a/0x50
[ 112.668851][ T6004] asm_exc_invalid_op+0x1a/0x20
[ 112.673702][ T6004] RIP: 0010:sched_change_end+0x4f6/0x640
[ 112.679428][ T6004] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 112.699044][ T6004] RSP: 0018:ffffc90002f97850 EFLAGS: 00010046
[ 112.705121][ T6004] RAX: 1ffff110058aa7a0 RBX: ffffffff8dcbdf90 RCX: ffffffff8193220f
[ 112.713191][ T6004] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802c553d00
[ 112.721208][ T6004] RBP: ffff88802c553fa8 R08: ffff88802c553d07 R09: 1ffff110058aa7a0
[ 112.729190][ T6004] R10: dffffc0000000000 R11: ffffed10058aa7a1 R12: dffffc0000000000
[ 112.737175][ T6004] R13: ffff88802c553d00 R14: ffff8880b863ab00 R15: ffff88802c553d00
[ 112.745173][ T6004] ? sched_change_end+0x4af/0x640
[ 112.750219][ T6004] rt_mutex_setprio+0x488/0xb70
[ 112.755104][ T6004] remove_waiter+0x7f5/0xaf0
[ 112.759760][ T6004] ? lockdep_hardirqs_on+0x98/0x140
[ 112.764965][ T6004] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 112.770697][ T6004] futex_lock_pi+0x530/0xa90
[ 112.775292][ T6004] ? __pfx_futex_lock_pi+0x10/0x10
[ 112.780427][ T6004] ? futex_hash+0x40/0x2d0
[ 112.784943][ T6004] ? futex_hash+0x2ad/0x2d0
[ 112.789449][ T6004] ? __pfx_futex_wake_mark+0x10/0x10
[ 112.794819][ T6004] ? __pfx_futex_wake+0x10/0x10
[ 112.799728][ T6004] ? handle_mm_fault+0xdb/0x32b0
[ 112.804683][ T6004] do_futex+0x292/0x420
[ 112.808853][ T6004] ? __pfx_do_futex+0x10/0x10
[ 112.813544][ T6004] __se_sys_futex+0x36f/0x400
[ 112.818248][ T6004] ? __pfx___se_sys_futex+0x10/0x10
[ 112.823466][ T6004] ? __x64_sys_futex+0x21/0xf0
[ 112.828256][ T6004] do_syscall_64+0xfa/0xf80
[ 112.832772][ T6004] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 112.838925][ T6004] ? clear_bhb_loop+0x60/0xb0
[ 112.843609][ T6004] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 112.849505][ T6004] RIP: 0033:0x7ff70b38f749
[ 112.853922][ T6004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 112.873526][ T6004] RSP: 002b:00007ffca40005f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 112.881945][ T6004] RAX: ffffffffffffffda RBX: 00007ff70b5e5fa0 RCX: 00007ff70b38f749
[ 112.890086][ T6004] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[ 112.898050][ T6004] RBP: 00007ff70b413f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 112.906014][ T6004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 112.914153][ T6004] R13: 00007ff70b5e5fa0 R14: 00007ff70b5e5fa0 R15: 0000000000000006
[ 112.922128][ T6004]
[ 114.035730][ T6004] Shutting down cpus with NMI
[ 114.041072][ T6004] Kernel Offset: disabled
[ 114.045404][ T6004] Rebooting in 86400 seconds..