Warning: Permanently added '10.128.1.234' (ED25519) to the list of known hosts.
2025/10/25 11:34:51 parsed 1 programs
[   52.971750][ T4189] cgroup: Unknown subsys name 'net'
[   53.106840][ T4189] cgroup: Unknown subsys name 'rlimit'
[   54.305065][ T4189] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   56.263120][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.278060][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.293944][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   56.311112][ T1210] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.319895][ T1210] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.328750][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   57.147018][ T4244] chnl_net:caif_netlink_parms(): no params data found
[   57.202195][ T4244] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.210654][ T4244] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.218619][ T4244] device bridge_slave_0 entered promiscuous mode
[   57.227213][ T4244] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.234390][ T4244] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.242085][ T4244] device bridge_slave_1 entered promiscuous mode
[   57.266451][ T4244] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.278726][ T4244] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.308397][ T4244] team0: Port device team_slave_0 added
[   57.317472][ T4244] team0: Port device team_slave_1 added
[   57.340793][ T4244] batman_adv: batadv0: Adding interface: batadv_slave_0
[   57.347720][ T4244] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.373653][ T4244] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   57.386019][ T4244] batman_adv: batadv0: Adding interface: batadv_slave_1
[   57.393002][ T4244] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.418876][ T4244] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   57.445529][ T4244] device hsr_slave_0 entered promiscuous mode
[   57.452755][ T4244] device hsr_slave_1 entered promiscuous mode
[   57.641834][ T4244] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   57.651892][ T4244] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   57.660665][ T4244] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   57.668912][ T4244] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   57.712999][ T4244] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.725790][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   57.735452][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   57.743469][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   57.754497][ T4244] 8021q: adding VLAN 0 to HW filter on device team0
[   57.765750][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   57.774331][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   57.783167][ T1210] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.790335][ T1210] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.800930][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   57.811991][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   57.821235][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   57.830079][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.837099][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.854369][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.864196][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   57.874451][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.885763][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   57.896202][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   57.906043][ T4244] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   57.990778][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   57.998239][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   58.011476][ T4244] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.041414][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   58.057015][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   58.065960][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   58.074277][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   58.084329][ T4244] device veth0_vlan entered promiscuous mode
[   58.111194][ T4244] device veth1_vlan entered promiscuous mode
[   58.127707][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   58.136298][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   58.144783][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   58.154977][ T4244] device veth0_macvtap entered promiscuous mode
[   58.165331][ T4244] device veth1_macvtap entered promiscuous mode
[   58.195478][ T4244] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.203142][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   58.212290][ T1210] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   58.224720][ T4244] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.233163][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   58.247009][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   58.257484][ T4244] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.266469][ T4244] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.276098][ T4244] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.284995][ T4244] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.370622][ T4244] syz-executor (4244) used greatest stack depth: 20864 bytes left
2025/10/25 11:34:59 executed programs: 0
[   59.584042][ T4295] chnl_net:caif_netlink_parms(): no params data found
[   59.645366][ T4295] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.653592][ T4295] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.662825][ T4295] device bridge_slave_0 entered promiscuous mode
[   59.672039][ T4295] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.679130][ T4295] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.688370][ T4295] device bridge_slave_1 entered promiscuous mode
[   59.718025][ T4295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.731755][ T4295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.762877][ T4295] team0: Port device team_slave_0 added
[   59.772006][ T4295] team0: Port device team_slave_1 added
[   59.795623][ T4295] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.803716][ T4295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.832800][ T4295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.846539][ T4295] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.855816][ T4295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.884201][ T4295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.921025][ T4295] device hsr_slave_0 entered promiscuous mode
[   59.928255][ T4295] device hsr_slave_1 entered promiscuous mode
[   59.935210][ T4295] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.943397][ T4295] Cannot create hsr debugfs directory
[   60.030656][ T4295] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.519815][ T1325] Bluetooth: hci0: command 0x0409 tx timeout
[   63.124883][ T4295] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.223944][ T4295] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.285842][ T4295] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.397842][ T4295] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   63.406106][ T4295] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   63.415474][ T4295] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   63.424382][ T4295] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   63.482120][ T4295] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.498439][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   63.506416][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.516849][ T4295] 8021q: adding VLAN 0 to HW filter on device team0
[   63.526771][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   63.535667][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   63.544068][ T4276] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.551130][ T4276] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.558912][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   63.577128][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   63.586612][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   63.595200][ T4276] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.600991][ T4201] Bluetooth: hci0: command 0x041b tx timeout
[   63.602292][ T4276] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.629337][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   63.641838][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   63.652353][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   63.661750][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   63.670296][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   63.683429][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   63.692245][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   63.712403][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   63.720828][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   63.730943][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   63.740749][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   63.751421][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   63.836995][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   63.844979][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   63.858117][  T154] device hsr_slave_0 left promiscuous mode
[   63.864726][  T154] device hsr_slave_1 left promiscuous mode
[   63.872792][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.880342][  T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.888150][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.895656][  T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.903120][  T154] device bridge_slave_1 left promiscuous mode
[   63.909957][  T154] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.922870][  T154] device bridge_slave_0 left promiscuous mode
[   63.929018][  T154] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.944309][  T154] device veth1_macvtap left promiscuous mode
[   63.950481][  T154] device veth0_macvtap left promiscuous mode
[   63.956485][  T154] device veth1_vlan left promiscuous mode
[   63.962851][  T154] device veth0_vlan left promiscuous mode
[   64.078299][  T154] team0 (unregistering): Port device team_slave_1 removed
[   64.089068][  T154] team0 (unregistering): Port device team_slave_0 removed
[   64.105115][  T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   64.119631][  T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   64.163464][  T154] bond0 (unregistering): Released all slaves
[   64.209000][ T4295] 8021q: adding VLAN 0 to HW filter on device batadv0
[   64.225442][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   64.233934][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   64.253028][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   64.261277][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   64.272942][ T4295] device veth0_vlan entered promiscuous mode
[   64.283000][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   64.291253][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   64.306039][ T4295] device veth1_vlan entered promiscuous mode
[   64.325714][ T1200] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   64.333604][ T1200] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   64.341746][ T1200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   64.350742][ T1200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   64.360560][ T4295] device veth0_macvtap entered promiscuous mode
[   64.368522][ T4295] device veth1_macvtap entered promiscuous mode
[   64.387124][ T4295] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.394732][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   64.404661][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   64.412528][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   64.421093][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   64.433086][ T4295] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.440689][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   64.449107][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   64.459849][ T4295] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.468543][ T4295] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.479075][ T4295] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.493040][ T4295] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.542746][  T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.556200][  T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.566311][ T4276] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.566913][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   64.580270][ T4276] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/25 11:35:04 executed programs: 2
[   64.593092][ T1200] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   65.259323][    C0] 
[   65.261674][    C0] ======================================================
[   65.268679][    C0] WARNING: possible circular locking dependency detected
[   65.275685][    C0] syzkaller #0 Not tainted
[   65.280073][    C0] ------------------------------------------------------
[   65.287061][    C0] syz.0.40/4336 is trying to acquire lock:
[   65.292833][    C0] ffff88807bbf7238 (&trie->lock){..-.}-{2:2}, at: trie_delete_elem+0x90/0x710
[   65.301677][    C0] 
[   65.301677][    C0] but task is already holding lock:
[   65.309007][    C0] ffff8880b90280d8 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x123/0x270
[   65.317838][    C0] 
[   65.317838][    C0] which lock already depends on the new lock.
[   65.317838][    C0] 
[   65.328209][    C0] 
[   65.328209][    C0] the existing dependency chain (in reverse order) is:
[   65.337189][    C0] 
[   65.337189][    C0] -> #2 (&base->lock){-.-.}-{2:2}:
[   65.344454][    C0]        _raw_spin_lock_irqsave+0xa4/0xf0
[   65.350302][    C0]        lock_timer_base+0x123/0x270
[   65.355566][    C0]        __mod_timer+0x117/0xd20
[   65.360472][    C0]        queue_delayed_work_on+0x126/0x1e0
[   65.366249][    C0]        kvfree_call_rcu+0x4a9/0x7c0
[   65.371502][    C0]        rtnl_register_internal+0x44e/0x540
[   65.377371][    C0]        rtnl_register+0x2e/0x70
[   65.382290][    C0]        ip_rt_init+0x2e0/0x3a0
[   65.387110][    C0]        ip_init+0xa/0x20
[   65.391409][    C0]        inet_init+0x28b/0x3a0
[   65.396144][    C0]        do_one_initcall+0x1ee/0x680
[   65.401399][    C0]        do_initcall_level+0x137/0x1f0
[   65.406826][    C0]        do_initcalls+0x4b/0x90
[   65.411647][    C0]        kernel_init_freeable+0x3ce/0x560
[   65.417338][    C0]        kernel_init+0x19/0x1b0
[   65.422162][    C0]        ret_from_fork+0x1f/0x30
[   65.427073][    C0] 
[   65.427073][    C0] -> #1 (krc.lock){..-.}-{2:2}:
[   65.434075][    C0]        _raw_spin_lock+0x2a/0x40
[   65.439070][    C0]        kvfree_call_rcu+0x186/0x7c0
[   65.444325][    C0]        trie_update_elem+0x86e/0xc50
[   65.449667][    C0]        bpf_map_update_value+0x57d/0x650
[   65.455355][    C0]        generic_map_update_batch+0x525/0x7c0
[   65.461389][    C0]        bpf_map_do_batch+0x466/0x600
[   65.466729][    C0]        __sys_bpf+0x601/0x670
[   65.471461][    C0]        __x64_sys_bpf+0x78/0x90
[   65.476367][    C0]        do_syscall_64+0x4c/0xa0
[   65.481274][    C0]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   65.487658][    C0] 
[   65.487658][    C0] -> #0 (&trie->lock){..-.}-{2:2}:
[   65.494915][    C0]        __lock_acquire+0x2c33/0x7c60
[   65.500270][    C0]        lock_acquire+0x197/0x3f0
[   65.505263][    C0]        _raw_spin_lock_irqsave+0xa4/0xf0
[   65.510955][    C0]        trie_delete_elem+0x90/0x710
[   65.516207][    C0]        bpf_prog_5186c38a4019a4cb+0x42/0xf1c
[   65.522244][    C0]        bpf_trace_run3+0x17e/0x320
[   65.527412][    C0]        enqueue_timer+0x394/0x520
[   65.532491][    C0]        __mod_timer+0x8e1/0xd20
[   65.537397][    C0]        dsp_cmx_send+0x1ab4/0x1b30
[   65.542562][    C0]        call_timer_fn+0x16c/0x530
[   65.547640][    C0]        __run_timers+0x525/0x7c0
[   65.552631][    C0]        run_timer_softirq+0x63/0xf0
[   65.557881][    C0]        handle_softirqs+0x328/0x820
[   65.563133][    C0]        __irq_exit_rcu+0x12f/0x220
[   65.568300][    C0]        irq_exit_rcu+0x5/0x20
[   65.573033][    C0]        sysvec_apic_timer_interrupt+0xa0/0xc0
[   65.579156][    C0]        asm_sysvec_apic_timer_interrupt+0x16/0x20
[   65.585623][    C0]        unwind_get_return_address+0x8/0x80
[   65.591487][    C0]        arch_stack_walk+0xf2/0x140
[   65.596659][    C0]        stack_trace_save+0x98/0xe0
[   65.601822][    C0]        kasan_save_stack+0x35/0x60
[   65.606989][    C0]        kasan_record_aux_stack+0xb8/0x100
[   65.612764][    C0]        task_work_add+0x2f/0x1d0
[   65.617757][    C0]        fput_many+0xde/0x1a0
[   65.622402][    C0]        filp_close+0x10e/0x150
[   65.627223][    C0]        __close_range+0x208/0x4d0
[   65.632300][    C0]        __x64_sys_close_range+0x76/0x80
[   65.637900][    C0]        do_syscall_64+0x4c/0xa0
[   65.642804][    C0]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   65.649190][    C0] 
[   65.649190][    C0] other info that might help us debug this:
[   65.649190][    C0] 
[   65.659386][    C0] Chain exists of:
[   65.659386][    C0]   &trie->lock --> krc.lock --> &base->lock
[   65.659386][    C0] 
[   65.671076][    C0]  Possible unsafe locking scenario:
[   65.671076][    C0] 
[   65.678492][    C0]        CPU0                    CPU1
[   65.683824][    C0]        ----                    ----
[   65.689158][    C0]   lock(&base->lock);
[   65.693198][    C0]                                lock(krc.lock);
[   65.699492][    C0]                                lock(&base->lock);
[   65.706046][    C0]   lock(&trie->lock);
[   65.710081][    C0] 
[   65.710081][    C0]  *** DEADLOCK ***
[   65.710081][    C0] 
[   65.718192][    C0] 4 locks held by syz.0.40/4336:
[   65.723097][    C0]  #0: ffffc90000007be0 ((&dsp_spl_tl)){+.-.}-{0:0}, at: call_timer_fn+0xbb/0x530
[   65.732280][    C0]  #1: ffffffff8cfdccb8 (dsp_lock){..-.}-{2:2}, at: dsp_cmx_send+0x22/0x1b30
[   65.741025][    C0]  #2: ffff8880b90280d8 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x123/0x270
[   65.750286][    C0]  #3: ffffffff8c11c720 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30
[   65.759549][    C0] 
[   65.759549][    C0] stack backtrace:
[   65.765414][    C0] CPU: 0 PID: 4336 Comm: syz.0.40 Not tainted syzkaller #0
[   65.772577][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   65.782607][    C0] Call Trace:
[   65.785860][    C0]  <IRQ>
[   65.788680][    C0]  dump_stack_lvl+0x168/0x230
[   65.793328][    C0]  ? load_image+0x3b0/0x3b0
[   65.797802][    C0]  ? show_regs_print_info+0x20/0x20
[   65.802971][    C0]  ? print_circular_bug+0x12b/0x1a0
[   65.808140][    C0]  check_noncircular+0x274/0x310
[   65.813046][    C0]  ? add_chain_block+0x940/0x940
[   65.817950][    C0]  ? lockdep_lock+0xdc/0x1e0
[   65.822512][    C0]  ? mark_lock+0x94/0x320
[   65.826812][    C0]  __lock_acquire+0x2c33/0x7c60
[   65.831635][    C0]  ? __lock_acquire+0x12d9/0x7c60
[   65.836627][    C0]  ? verify_lock_unused+0x140/0x140
[   65.841795][    C0]  ? __lock_acquire+0x13ad/0x7c60
[   65.846792][    C0]  lock_acquire+0x197/0x3f0
[   65.851264][    C0]  ? trie_delete_elem+0x90/0x710
[   65.856175][    C0]  ? verify_lock_unused+0x140/0x140
[   65.861345][    C0]  ? read_lock_is_recursive+0x10/0x10
[   65.866686][    C0]  ? verify_lock_unused+0x140/0x140
[   65.871851][    C0]  ? register_lock_class+0xb1/0x880
[   65.877018][    C0]  _raw_spin_lock_irqsave+0xa4/0xf0
[   65.882189][    C0]  ? trie_delete_elem+0x90/0x710
[   65.887094][    C0]  ? _raw_spin_lock+0x40/0x40
[   65.891738][    C0]  trie_delete_elem+0x90/0x710
[   65.896473][    C0]  ? __rwlock_init+0x140/0x140
[   65.901205][    C0]  bpf_prog_5186c38a4019a4cb+0x42/0xf1c
[   65.906720][    C0]  bpf_trace_run3+0x17e/0x320
[   65.911367][    C0]  ? bpf_trace_run2+0x2d0/0x2d0
[   65.916185][    C0]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[   65.922044][    C0]  ? __lock_acquire+0x7c60/0x7c60
[   65.927039][    C0]  ? dsp_cmx_receive+0x13c0/0x13c0
[   65.932121][    C0]  enqueue_timer+0x394/0x520
[   65.936680][    C0]  __mod_timer+0x8e1/0xd20
[   65.941066][    C0]  dsp_cmx_send+0x1ab4/0x1b30
[   65.945718][    C0]  ? detach_timer+0x33/0x2b0
[   65.950284][    C0]  ? read_lock_is_recursive+0x10/0x10
[   65.955626][    C0]  ? dsp_cmx_receive+0x13c0/0x13c0
[   65.960706][    C0]  call_timer_fn+0x16c/0x530
[   65.965273][    C0]  ? dsp_cmx_receive+0x13c0/0x13c0
[   65.970355][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[   65.976304][    C0]  ? __run_timers+0x7c0/0x7c0
[   65.980951][    C0]  ? rcu_is_watching+0x11/0xa0
[   65.985682][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[   65.990850][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[   65.996018][    C0]  ? dsp_cmx_receive+0x13c0/0x13c0
[   66.001099][    C0]  __run_timers+0x525/0x7c0
[   66.005575][    C0]  ? detach_timer+0x2b0/0x2b0
[   66.010219][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[   66.016173][    C0]  ? sched_clock_cpu+0x15/0x3c0
[   66.020991][    C0]  ? ktime_get_real_ts64+0x420/0x420
[   66.026247][    C0]  run_timer_softirq+0x63/0xf0
[   66.030987][    C0]  handle_softirqs+0x328/0x820
[   66.035722][    C0]  ? __irq_exit_rcu+0x12f/0x220
[   66.040582][    C0]  ? do_softirq+0x200/0x200
[   66.045055][    C0]  __irq_exit_rcu+0x12f/0x220
[   66.049702][    C0]  ? irq_exit_rcu+0x20/0x20
[   66.054174][    C0]  irq_exit_rcu+0x5/0x20
[   66.058385][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[   66.063989][    C0]  </IRQ>
[   66.066894][    C0]  <TASK>
[   66.069797][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[   66.075752][    C0] RIP: 0010:unwind_get_return_address+0x8/0x80
[   66.081879][    C0] Code: 89 f7 49 89 f7 e8 e8 ba 87 00 4c 89 f7 4c 89 fe e9 2d ff ff ff e8 58 d6 74 08 0f 1f 84 00 00 00 00 00 41 57 41 56 53 48 89 fb <49> be 00 00 00 00 00 fc ff df 48 89 f8 48 c1 e8 03 42 0f b6 04 30
[   66.101721][    C0] RSP: 0018:ffffc9000308f9c8 EFLAGS: 00000202
[   66.107766][    C0] RAX: 0000000080000001 RBX: ffffc9000308f9e8 RCX: 0000000080000000
[   66.115712][    C0] RDX: ffffc9000308fa01 RSI: ffffc9000308fdd8 RDI: ffffc9000308f9e8
[   66.123658][    C0] RBP: ffffc9000308fa70 R08: dffffc0000000000 R09: ffffc9000308fa38
[   66.131606][    C0] R10: fffff52000611f49 R11: 1ffff92000611f47 R12: ffff88807ac99dc0
[   66.139556][    C0] R13: dffffc0000000000 R14: ffffffff81667940 R15: ffffc9000308f9e8
[   66.147503][    C0]  ? stack_trace_save+0xe0/0xe0
[   66.152343][    C0]  ? stack_trace_save+0xe0/0xe0
[   66.157185][    C0]  arch_stack_walk+0xf2/0x140
[   66.161855][    C0]  ? filp_close+0x10e/0x150
[   66.166334][    C0]  stack_trace_save+0x98/0xe0
[   66.170984][    C0]  ? stack_trace_snprint+0xf0/0xf0
[   66.176079][    C0]  ? __lock_acquire+0x13ad/0x7c60
[   66.181094][    C0]  ? memset+0x1e/0x40
[   66.185050][    C0]  kasan_save_stack+0x35/0x60
[   66.189716][    C0]  ? kasan_save_stack+0x35/0x60
[   66.194545][    C0]  ? kasan_record_aux_stack+0xb8/0x100
[   66.199991][    C0]  ? task_work_add+0x2f/0x1d0
[   66.204646][    C0]  ? fput_many+0xde/0x1a0
[   66.208964][    C0]  kasan_record_aux_stack+0xb8/0x100
[   66.214221][    C0]  task_work_add+0x2f/0x1d0
[   66.218694][    C0]  fput_many+0xde/0x1a0
[   66.222819][    C0]  filp_close+0x10e/0x150
[   66.227123][    C0]  __close_range+0x208/0x4d0
[   66.231696][    C0]  ? pick_file+0x220/0x220
[   66.236092][    C0]  ? vtime_user_exit+0x2dc/0x400
[   66.241006][    C0]  __x64_sys_close_range+0x76/0x80
[   66.246104][    C0]  do_syscall_64+0x4c/0xa0
[   66.250496][    C0]  ? clear_bhb_loop+0x30/0x80
[   66.255142][    C0]  ? clear_bhb_loop+0x30/0x80
[   66.259791][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   66.265655][    C0] RIP: 0033:0x7f49f82d6fc9
[   66.270047][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.289625][    C0] RSP: 002b:00007ffe2e336778 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   66.298039][    C0] RAX: ffffffffffffffda RBX: 000000000000fecc RCX: 00007f49f82d6fc9
[   66.305984][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   66.313928][    C0] RBP: 0000000000000000 R08: 0000000000000001 R09: 000000062e336a6f
[   66.321868][    C0] R10: 0000001b30620000 R11: 0000000000000246 R12: 00007f49f852dfac
[   66.329812][    C0] R13: 00007f49f852dfa0 R14: ffffffffffffffff R15: 0000000000000003
[   66.337758][    C0]  </TASK>