Warning: Permanently added '10.128.0.82' (ED25519) to the list of known hosts.
2025/09/05 23:15:27 parsed 1 programs
[ 48.714277][ T4189] cgroup: Unknown subsys name 'net'
[ 48.865070][ T4189] cgroup: Unknown subsys name 'rlimit'
[ 50.097623][ T4189] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 52.830895][ T4232] chnl_net:caif_netlink_parms(): no params data found
[ 52.889108][ T4232] bridge0: port 1(bridge_slave_0) entered blocking state
[ 52.896920][ T4232] bridge0: port 1(bridge_slave_0) entered disabled state
[ 52.905131][ T4232] device bridge_slave_0 entered promiscuous mode
[ 52.914949][ T4232] bridge0: port 2(bridge_slave_1) entered blocking state
[ 52.922424][ T4232] bridge0: port 2(bridge_slave_1) entered disabled state
[ 52.930651][ T4232] device bridge_slave_1 entered promiscuous mode
[ 52.956802][ T4232] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 52.968181][ T4232] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 52.996512][ T4232] team0: Port device team_slave_0 added
[ 53.004177][ T4232] team0: Port device team_slave_1 added
[ 53.026667][ T4232] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 53.033764][ T4232] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 53.059832][ T4232] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 53.072879][ T4232] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 53.079829][ T4232] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 53.105790][ T4232] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 53.141647][ T4232] device hsr_slave_0 entered promiscuous mode
[ 53.148275][ T4232] device hsr_slave_1 entered promiscuous mode
[ 53.261732][ T4232] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 53.272526][ T4232] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 53.281322][ T4232] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 53.289776][ T4232] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 53.331132][ T4232] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.341398][ T4232] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 53.350650][ T4232] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.357751][ T4232] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 53.442894][ T4232] 8021q: adding VLAN 0 to HW filter on device bond0
[ 53.458971][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 53.469555][ T144] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.478187][ T144] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.486616][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 53.498620][ T4232] 8021q: adding VLAN 0 to HW filter on device team0
[ 53.509424][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 53.518103][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.525197][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 53.535972][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 53.544665][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.551782][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 53.569594][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 53.581162][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 53.591498][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 53.604448][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 53.615707][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 53.626114][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 53.694647][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 53.702347][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 53.725191][ T4232] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 53.741432][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 53.771600][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 53.781935][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 53.789942][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 53.799165][ T4232] device veth0_vlan entered promiscuous mode
[ 53.827827][ T4232] device veth1_vlan entered promiscuous mode
[ 53.845518][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 53.853477][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 53.862651][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 53.887512][ T4232] device veth0_macvtap entered promiscuous mode
[ 53.896822][ T4232] device veth1_macvtap entered promiscuous mode
[ 53.912267][ T4232] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 53.920005][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 53.928995][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 53.942652][ T4232] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 53.949960][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 53.958832][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 53.984982][ T4232] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 53.994265][ T4232] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 54.003475][ T4232] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 54.012296][ T4232] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 54.101102][ T4232] syz-executor (4232) used greatest stack depth: 21056 bytes left
[ 54.265436][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 54.273571][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 54.289301][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 54.301987][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 54.310044][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 54.327407][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2025/09/05 23:15:35 executed programs: 0
[ 55.328913][ T4289] chnl_net:caif_netlink_parms(): no params data found
[ 55.392598][ T4289] bridge0: port 1(bridge_slave_0) entered blocking state
[ 55.399738][ T4289] bridge0: port 1(bridge_slave_0) entered disabled state
[ 55.407937][ T4289] device bridge_slave_0 entered promiscuous mode
[ 55.415961][ T4289] bridge0: port 2(bridge_slave_1) entered blocking state
[ 55.423233][ T4289] bridge0: port 2(bridge_slave_1) entered disabled state
[ 55.431545][ T4289] device bridge_slave_1 entered promiscuous mode
[ 55.455147][ T4289] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 55.468553][ T4289] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 55.499933][ T4289] team0: Port device team_slave_0 added
[ 55.507642][ T4289] team0: Port device team_slave_1 added
[ 55.533211][ T4289] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 55.542314][ T4289] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 55.568738][ T4289] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 55.582157][ T4289] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 55.589345][ T4289] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 55.615531][ T4289] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 55.648840][ T4289] device hsr_slave_0 entered promiscuous mode
[ 55.656110][ T4289] device hsr_slave_1 entered promiscuous mode
[ 55.662985][ T4289] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 55.671240][ T4289] Cannot create hsr debugfs directory
[ 55.754934][ T4289] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 57.211218][ T4297] Bluetooth: hci0: command 0x0409 tx timeout
[ 59.290320][ T4256] Bluetooth: hci0: command 0x041b tx timeout
[ 59.366125][ T4289] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 59.565558][ T4289] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 59.618759][ T4289] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 59.735685][ T4289] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 59.744368][ T4289] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 59.753574][ T4289] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 59.763142][ T4289] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 59.820916][ T4289] 8021q: adding VLAN 0 to HW filter on device bond0
[ 59.833570][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 59.842113][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 59.863886][ T4289] 8021q: adding VLAN 0 to HW filter on device team0
[ 59.873437][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 59.882241][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 59.891715][ T154] bridge0: port 1(bridge_slave_0) entered blocking state
[ 59.898784][ T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 59.909757][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 59.918664][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 59.928192][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 59.936951][ T154] bridge0: port 2(bridge_slave_1) entered blocking state
[ 59.944037][ T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 59.966126][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 59.976888][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 59.988823][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 59.999159][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 60.007792][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 60.020089][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 60.029380][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 60.049094][ T4289] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 60.059598][ T4289] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 60.072628][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 60.081065][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 60.089349][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 60.099236][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 60.107642][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 60.202868][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 60.211031][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 60.223666][ T4289] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 60.253601][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 60.262862][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 60.279547][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 60.288378][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 60.297460][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 60.305388][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 60.326199][ T4289] device veth0_vlan entered promiscuous mode
[ 60.336649][ T4289] device veth1_vlan entered promiscuous mode
[ 60.354763][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 60.363135][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 60.371878][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 60.380747][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 60.391950][ T4289] device veth0_macvtap entered promiscuous mode
[ 60.409279][ T4289] device veth1_macvtap entered promiscuous mode
[ 60.424401][ T4289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 60.435580][ T4289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 60.447228][ T4289] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 60.455609][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 60.464188][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 60.472508][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 60.482251][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 60.494136][ T4289] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 60.504608][ T4289] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 60.515257][ T4289] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 60.523861][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 60.533500][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 60.544497][ T4289] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 60.553464][ T4289] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 60.562359][ T4289] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 60.571282][ T4289] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 60.628144][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 60.638543][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 60.656340][ T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 60.665850][ T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/09/05 23:15:41 executed programs: 2
[ 60.673309][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 60.682337][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 60.774669][ T242] device hsr_slave_0 left promiscuous mode
[ 60.789208][ T242] device hsr_slave_1 left promiscuous mode
[ 60.803393][ T242] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 60.836692][ T242] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 60.848405][ T242] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 60.871684][ T242] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 60.879459][ T242] device bridge_slave_1 left promiscuous mode
[ 60.886792][ T242] bridge0: port 2(bridge_slave_1) entered disabled state
[ 60.918286][ T242] device bridge_slave_0 left promiscuous mode
[ 60.939446][ T242] bridge0: port 1(bridge_slave_0) entered disabled state
[ 60.976946][ T242] device veth1_macvtap left promiscuous mode
[ 60.983431][ T242] device veth0_macvtap left promiscuous mode
[ 60.990902][ T242] device veth1_vlan left promiscuous mode
[ 60.996861][ T242] device veth0_vlan left promiscuous mode
[ 61.370402][ T4257] Bluetooth: hci0: command 0x040f tx timeout
[ 61.377824][ T242] team0 (unregistering): Port device team_slave_1 removed
[ 61.393883][ T242] team0 (unregistering): Port device team_slave_0 removed
[ 61.419142][ T242] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 61.446031][ T242] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 61.563000][ T242] bond0 (unregistering): Released all slaves
[ 63.294936][ C1] ------------[ cut here ]------------
[ 63.295735][ C1]
[ 63.295740][ C1] ======================================================
[ 63.295743][ C1] WARNING: possible circular locking dependency detected
[ 63.295753][ C1] syzkaller #0 Not tainted
[ 63.295758][ C1] ------------------------------------------------------
[ 63.295760][ C1] syz.0.133/4434 is trying to acquire lock:
[ 63.295765][ C1] ffffffff8c110ec0 (console_owner){..-.}-{0:0}, at: console_lock_spinning_enable+0x2c/0x60
[ 63.295796][ C1]
[ 63.295796][ C1] but task is already holding lock:
[ 63.295799][ C1] ffff8880b912a218 (hrtimer_bases.lock){-.-.}-{2:2}, at: __hrtimer_run_queues+0x5ff/0xc40
[ 63.295820][ C1]
[ 63.295820][ C1] which lock already depends on the new lock.
[ 63.295820][ C1]
[ 63.295822][ C1]
[ 63.295822][ C1] the existing dependency chain (in reverse order) is:
[ 63.295825][ C1]
[ 63.295825][ C1] -> #6 (hrtimer_bases.lock){-.-.}-{2:2}:
[ 63.295835][ C1] _raw_spin_lock_irqsave+0xa4/0xf0
[ 63.295852][ C1] hrtimer_start_range_ns+0xff/0xc20
[ 63.295861][ C1] enqueue_task_rt+0x60c/0xc00
[ 63.295868][ C1] enqueue_task+0x182/0x2b0
[ 63.295877][ C1] __sched_setscheduler+0x1379/0x1be0
[ 63.295886][ C1] sched_set_fifo+0xbc/0x120
[ 63.295894][ C1] drm_vblank_worker_init+0x149/0x1a0
[ 63.295902][ C1] drm_vblank_init+0x265/0x330
[ 63.295911][ C1] vkms_init+0x31a/0x700
[ 63.295920][ C1] do_one_initcall+0x1ee/0x680
[ 63.295928][ C1] do_initcall_level+0x137/0x1f0
[ 63.295936][ C1] do_initcalls+0x4b/0x90
[ 63.295942][ C1] kernel_init_freeable+0x3ce/0x560
[ 63.295949][ C1] kernel_init+0x19/0x1b0
[ 63.295957][ C1] ret_from_fork+0x1f/0x30
[ 63.295965][ C1]
[ 63.295965][ C1] -> #5 (&rt_b->rt_runtime_lock){-...}-{2:2}:
[ 63.295975][ C1] _raw_spin_lock+0x2a/0x40
[ 63.295983][ C1] rq_online_rt+0x125/0x310
[ 63.295990][ C1] sched_cpu_activate+0x4ae/0x650
[ 63.295998][ C1] cpuhp_invoke_callback+0x431/0x830
[ 63.296007][ C1] cpuhp_thread_fun+0x39a/0x7d0
[ 63.296014][ C1] smpboot_thread_fn+0x4f6/0x970
[ 63.296024][ C1] kthread+0x436/0x520
[ 63.296030][ C1] ret_from_fork+0x1f/0x30
[ 63.296038][ C1]
[ 63.296038][ C1] -> #4 (&rq->__lock){-.-.}-{2:2}:
[ 63.296047][ C1] _raw_spin_lock_nested+0x2e/0x40
[ 63.296054][ C1] raw_spin_rq_lock_nested+0x26/0x140
[ 63.296062][ C1] task_fork_fair+0x5c/0x350
[ 63.296068][ C1] sched_cgroup_fork+0x2c6/0x320
[ 63.296076][ C1] copy_process+0x22d1/0x3e00
[ 63.296083][ C1] kernel_clone+0x219/0x930
[ 63.296090][ C1] kernel_thread+0xc8/0x120
[ 63.296096][ C1] rest_init+0x21/0x330
[ 63.296103][ C1] start_kernel+0x486/0x530
[ 63.296111][ C1] secondary_startup_64_no_verify+0xb1/0xbb
[ 63.296120][ C1]
[ 63.296120][ C1] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[ 63.296130][ C1] _raw_spin_lock_irqsave+0xa4/0xf0
[ 63.296138][ C1] try_to_wake_up+0x5c/0x1050
[ 63.296145][ C1] __wake_up_common+0x2a4/0x4e0
[ 63.296154][ C1] __wake_up+0x108/0x180
[ 63.296161][ C1] tty_port_default_wakeup+0xa5/0xf0
[ 63.296170][ C1] serial8250_tx_chars+0x629/0x830
[ 63.296178][ C1] serial8250_handle_irq+0x519/0x610
[ 63.296186][ C1] serial8250_default_handle_irq+0xb4/0x1a0
[ 63.296195][ C1] serial8250_interrupt+0x9b/0x1c0
[ 63.296202][ C1] __handle_irq_event_percpu+0x291/0x9b0
[ 63.296210][ C1] handle_irq_event+0xa5/0x220
[ 63.296217][ C1] handle_edge_irq+0x243/0xb20
[ 63.296225][ C1] __common_interrupt+0xd7/0x1e0
[ 63.296233][ C1] common_interrupt+0xb0/0xd0
[ 63.296240][ C1] asm_common_interrupt+0x22/0x40
[ 63.296247][ C1] default_idle+0xb/0x10
[ 63.296254][ C1] default_idle_call+0x81/0xc0
[ 63.296262][ C1] do_idle+0x21b/0x5b0
[ 63.296269][ C1] cpu_startup_entry+0x14/0x20
[ 63.296277][ C1] start_kernel+0x486/0x530
[ 63.296284][ C1] secondary_startup_64_no_verify+0xb1/0xbb
[ 63.296292][ C1]
[ 63.296292][ C1] -> #2 (&tty->write_wait){-.-.}-{2:2}:
[ 63.296302][ C1] _raw_spin_lock_irqsave+0xa4/0xf0
[ 63.296311][ C1] __wake_up+0xed/0x180
[ 63.296318][ C1] tty_port_default_wakeup+0xa5/0xf0
[ 63.296326][ C1] serial8250_tx_chars+0x629/0x830
[ 63.296333][ C1] serial8250_handle_irq+0x519/0x610
[ 63.296341][ C1] serial8250_default_handle_irq+0xb4/0x1a0
[ 63.296349][ C1] serial8250_interrupt+0x9b/0x1c0
[ 63.296357][ C1] __handle_irq_event_percpu+0x291/0x9b0
[ 63.296364][ C1] handle_irq_event+0xa5/0x220
[ 63.296371][ C1] handle_edge_irq+0x243/0xb20
[ 63.296394][ C1] __common_interrupt+0xd7/0x1e0
[ 63.296401][ C1] common_interrupt+0xb0/0xd0
[ 63.296407][ C1] asm_common_interrupt+0x22/0x40
[ 63.296414][ C1] default_idle+0xb/0x10
[ 63.296422][ C1] default_idle_call+0x81/0xc0
[ 63.296430][ C1] do_idle+0x21b/0x5b0
[ 63.296437][ C1] cpu_startup_entry+0x14/0x20
[ 63.296444][ C1] start_kernel+0x486/0x530
[ 63.296452][ C1] secondary_startup_64_no_verify+0xb1/0xbb
[ 63.296460][ C1]
[ 63.296460][ C1] -> #1 (&port_lock_key){-.-.}-{2:2}:
[ 63.296471][ C1] _raw_spin_lock_irqsave+0xa4/0xf0
[ 63.296479][ C1] serial8250_console_write+0x170/0xf80
[ 63.296487][ C1] console_unlock+0xc86/0x1200
[ 63.296496][ C1] vprintk_emit+0xc0/0x150
[ 63.296504][ C1] _printk+0xcc/0x110
[ 63.296512][ C1] register_console+0x682/0x960
[ 63.296519][ C1] univ8250_console_init+0x41/0x50
[ 63.296526][ C1] console_init+0x177/0x5d0
[ 63.296534][ C1] start_kernel+0x2f9/0x530
[ 63.296542][ C1] secondary_startup_64_no_verify+0xb1/0xbb
[ 63.296550][ C1]
[ 63.296550][ C1] -> #0 (console_owner){..-.}-{0:0}:
[ 63.296560][ C1] __lock_acquire+0x2c33/0x7c60
[ 63.296568][ C1] lock_acquire+0x197/0x3f0
[ 63.296575][ C1] console_lock_spinning_enable+0x51/0x60
[ 63.296582][ C1] console_unlock+0x9f8/0x1200
[ 63.296590][ C1] vprintk_emit+0xc0/0x150
[ 63.296598][ C1] _printk+0xcc/0x110
[ 63.296605][ C1] report_bug+0x1e5/0x2e0
[ 63.296615][ C1] handle_bug+0x3a/0x70
[ 63.296621][ C1] exc_invalid_op+0x16/0x40
[ 63.296627][ C1] asm_exc_invalid_op+0x16/0x20
[ 63.296634][ C1] copy_from_user_nofault+0x160/0x1c0
[ 63.296643][ C1] bpf_probe_read_user+0x26/0x70
[ 63.296652][ C1] bpf_prog_02073d59a3c0f06f+0x3d/0x54
[ 63.296659][ C1] bpf_trace_run2+0x15b/0x2d0
[ 63.296667][ C1] enqueue_hrtimer+0x314/0x370
[ 63.296675][ C1] __hrtimer_run_queues+0x65a/0xc40
[ 63.296683][ C1] hrtimer_run_softirq+0x176/0x240
[ 63.296691][ C1] handle_softirqs+0x328/0x820
[ 63.296698][ C1] __irq_exit_rcu+0x12f/0x220
[ 63.296705][ C1] irq_exit_rcu+0x5/0x20
[ 63.296711][ C1] sysvec_apic_timer_interrupt+0xa0/0xc0
[ 63.296719][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 63.296726][ C1] smp_call_function_many_cond+0xb88/0xd70
[ 63.296735][ C1] on_each_cpu_cond_mask+0x3b/0x80
[ 63.296743][ C1] text_poke_bp_batch+0x2a9/0x7c0
[ 63.296751][ C1] text_poke_finish+0x16/0x30
[ 63.296759][ C1] arch_jump_label_transform_apply+0x13/0x20
[ 63.296767][ C1] static_key_enable_cpuslocked+0x11f/0x240
[ 63.296776][ C1] static_key_enable+0x16/0x20
[ 63.296783][ C1] tracepoint_add_func+0x83b/0x9a0
[ 63.296791][ C1] tracepoint_probe_register_prio_may_exist+0x5c/0x90
[ 63.296800][ C1] bpf_raw_tracepoint_open+0x69d/0x780
[ 63.296809][ C1] __sys_bpf+0x48b/0x670
[ 63.296816][ C1] __x64_sys_bpf+0x78/0x90
[ 63.296823][ C1] do_syscall_64+0x4c/0xa0
[ 63.296829][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 63.296836][ C1]
[ 63.296836][ C1] other info that might help us debug this:
[ 63.296836][ C1]
[ 63.296839][ C1] Chain exists of:
[ 63.296839][ C1] console_owner --> &rt_b->rt_runtime_lock --> hrtimer_bases.lock
[ 63.296839][ C1]
[ 63.296855][ C1] Possible unsafe locking scenario:
[ 63.296855][ C1]
[ 63.296857][ C1] CPU0 CPU1
[ 63.296859][ C1] ---- ----
[ 63.296861][ C1] lock(hrtimer_bases.lock);
[ 63.296865][ C1] lock(&rt_b->rt_runtime_lock);
[ 63.296870][ C1] lock(hrtimer_bases.lock);
[ 63.296875][ C1] lock(console_owner);
[ 63.296880][ C1]
[ 63.296880][ C1] *** DEADLOCK ***
[ 63.296880][ C1]
[ 63.296881][ C1] 7 locks held by syz.0.133/4434:
[ 63.296886][ C1] #0: ffffffff8c15c0c8 (tracepoints_mutex){+.+.}-{3:3}, at: tracepoint_probe_register_prio_may_exist+0x40/0x90
[ 63.296907][ C1] #1: ffffffff8bfbabd0 (cpu_hotplug_lock){++++}-{0:0}, at: static_key_enable+0xe/0x20
[ 63.296925][ C1] #2: ffffffff8c1a80e8 (jump_label_mutex){+.+.}-{3:3}, at: static_key_enable_cpuslocked+0xc2/0x240
[ 63.296944][ C1] #3: ffffffff8bfd1c88 (text_mutex){+.+.}-{3:3}, at: arch_jump_label_transform_apply+0xe/0x20
[ 63.296964][ C1] #4: ffff8880b912a218 (hrtimer_bases.lock){-.-.}-{2:2}, at: __hrtimer_run_queues+0x5ff/0xc40
[ 63.296983][ C1] #5: ffffffff8c11c460 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30
[ 63.297001][ C1] #6: ffffffff8c110fa0 (console_lock){+.+.}-{0:0}, at: vprintk_emit+0xa7/0x150
[ 63.297020][ C1]
[ 63.297020][ C1] stack backtrace:
[ 63.297026][ C1] CPU: 1 PID: 4434 Comm: syz.0.133 Not tainted syzkaller #0
[ 63.297035][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 63.297045][ C1] Call Trace:
[ 63.297047][ C1]
[ 63.297051][ C1] dump_stack_lvl+0x168/0x230
[ 63.297061][ C1] ? load_image+0x3b0/0x3b0
[ 63.297070][ C1] ? show_regs_print_info+0x20/0x20
[ 63.297080][ C1] ? print_circular_bug+0x12b/0x1a0
[ 63.297088][ C1] check_noncircular+0x274/0x310
[ 63.297096][ C1] ? add_chain_block+0x940/0x940
[ 63.297103][ C1] ? lockdep_lock+0xdc/0x1e0
[ 63.297113][ C1] ? mark_lock+0x94/0x320
[ 63.297122][ C1] __lock_acquire+0x2c33/0x7c60
[ 63.297135][ C1] ? verify_lock_unused+0x140/0x140
[ 63.297147][ C1] ? sprintf+0xd6/0x120
[ 63.297158][ C1] lock_acquire+0x197/0x3f0
[ 63.297166][ C1] ? console_lock_spinning_enable+0x2c/0x60
[ 63.297174][ C1] ? prb_read_valid+0x60/0x60
[ 63.297182][ C1] ? read_lock_is_recursive+0x10/0x10
[ 63.297191][ C1] ? do_raw_spin_lock+0x11d/0x280
[ 63.297200][ C1] ? __rwlock_init+0x140/0x140
[ 63.297208][ C1] ? do_raw_spin_unlock+0x11d/0x230
[ 63.297216][ C1] console_lock_spinning_enable+0x51/0x60
[ 63.297224][ C1] ? console_lock_spinning_enable+0x2c/0x60
[ 63.297231][ C1] console_unlock+0x9f8/0x1200
[ 63.297241][ C1] ? console_trylock_spinning+0x350/0x350
[ 63.297251][ C1] ? __down_trylock_console_sem+0x184/0x1e0
[ 63.297258][ C1] ? vprintk_emit+0xa7/0x150
[ 63.297267][ C1] ? printk_parse_prefix+0x330/0x330
[ 63.297275][ C1] ? vprintk_emit+0xa7/0x150
[ 63.297284][ C1] ? console_trylock+0x70/0x70
[ 63.297291][ C1] ? verify_lock_unused+0x140/0x140
[ 63.297300][ C1] ? mark_lock+0x94/0x320
[ 63.297310][ C1] ? vprintk_emit+0x150/0x150
[ 63.297326][ C1] vprintk_emit+0xc0/0x150
[ 63.297336][ C1] _printk+0xcc/0x110
[ 63.297344][ C1] ? verify_lock_unused+0x140/0x140
[ 63.297353][ C1] ? load_image+0x3b0/0x3b0
[ 63.297362][ C1] ? verify_lock_unused+0x140/0x140
[ 63.297371][ C1] ? find_bug+0xa1/0x350
[ 63.297378][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 63.297387][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 63.297395][ C1] report_bug+0x1e5/0x2e0
[ 63.297405][ C1] handle_bug+0x3a/0x70
[ 63.297412][ C1] exc_invalid_op+0x16/0x40
[ 63.297419][ C1] asm_exc_invalid_op+0x16/0x20
[ 63.297430][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[ 63.297441][ C1] Code: 24 45 31 f6 31 ff 89 de e8 ed f6 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 70 f3 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[ 63.297448][ C1] RSP: 0018:ffffc90000dd0ae0 EFLAGS: 00010046
[ 63.297455][ C1] RAX: ffffffff819ed740 RBX: 0000000000000008 RCX: ffff8880214e1dc0
[ 63.297461][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 63.297467][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: fffffbfff1ff7619
[ 63.297472][ C1] R10: fffffbfff1ff7619 R11: 1ffffffff1ff7618 R12: ffff8880214e3548
[ 63.297478][ C1] R13: dffffc0000000000 R14: ffffc90000dd0b48 R15: 0000000000000000
[ 63.297485][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 63.297496][ C1] bpf_probe_read_user+0x26/0x70
[ 63.297505][ C1] bpf_prog_02073d59a3c0f06f+0x3d/0x54
[ 63.297513][ C1] bpf_trace_run2+0x15b/0x2d0
[ 63.297522][ C1] ? bpf_trace_run1+0x2d0/0x2d0
[ 63.297531][ C1] ? enqueue_hrtimer+0x259/0x370
[ 63.297541][ C1] enqueue_hrtimer+0x314/0x370
[ 63.297550][ C1] __hrtimer_run_queues+0x65a/0xc40
[ 63.297558][ C1] ? ktime_get_update_offsets_now+0x95/0x3e0
[ 63.297566][ C1] ? ktime_get_update_offsets_now+0x95/0x3e0
[ 63.297575][ C1] ? hw_scan_work+0xeb0/0xeb0
[ 63.297586][ C1] ? hrtimer_interrupt+0x8d0/0x8d0
[ 63.297596][ C1] hrtimer_run_softirq+0x176/0x240
[ 63.297606][ C1] handle_softirqs+0x328/0x820
[ 63.297614][ C1] ? __irq_exit_rcu+0x12f/0x220
[ 63.297623][ C1] ? do_softirq+0x200/0x200
[ 63.297631][ C1] ? irqtime_account_irq+0xb2/0x1b0
[ 63.297639][ C1] __irq_exit_rcu+0x12f/0x220
[ 63.297647][ C1] ? irq_exit_rcu+0x20/0x20
[ 63.297656][ C1] irq_exit_rcu+0x5/0x20
[ 63.297663][ C1] sysvec_apic_timer_interrupt+0xa0/0xc0
[ 63.297671][ C1]
[ 63.297673][ C1]
[ 63.297676][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 63.297684][ C1] RIP: 0010:smp_call_function_many_cond+0xb88/0xd70
[ 63.297694][ C1] Code: b6 44 05 00 84 c0 0f 85 9d 00 00 00 41 8b 1c 24 89 de 83 e6 01 31 ff e8 66 49 0b 00 83 e3 01 75 07 e8 fc 45 0b 00 eb 43 f3 90 <48> b8 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 75 11 41 f7
[ 63.297700][ C1] RSP: 0018:ffffc9000111f880 EFLAGS: 00000293
[ 63.297706][ C1] RAX: ffffffff816c84db RBX: 0000000000000001 RCX: ffff8880214e1dc0
[ 63.297712][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 63.297717][ C1] RBP: ffffc9000111f9c0 R08: dffffc0000000000 R09: fffffbfff1ff7619
[ 63.297722][ C1] R10: fffffbfff1ff7619 R11: 1ffffffff1ff7618 R12: ffff8880b9042a08
[ 63.297728][ C1] R13: 1ffff11017208541 R14: ffff8880b913b380 R15: 0000000000000000
[ 63.297735][ C1] ? smp_call_function_many_cond+0xbab/0xd70
[ 63.297747][ C1] ? text_poke_sync+0x20/0x20
[ 63.297756][ C1] ? smp_call_function_many+0x30/0x30
[ 63.297765][ C1] ? enqueue_hrtimer+0x30/0x370
[ 63.297773][ C1] ? text_poke+0x90/0x90
[ 63.297782][ C1] ? arch_jump_label_transform_apply+0xe/0x20
[ 63.297792][ C1] ? text_poke_sync+0x20/0x20
[ 63.297800][ C1] on_each_cpu_cond_mask+0x3b/0x80
[ 63.297809][ C1] ? enqueue_hrtimer+0x30/0x370
[ 63.297818][ C1] text_poke_bp_batch+0x2a9/0x7c0
[ 63.297827][ C1] ? mutex_unlock+0x10/0x10
[ 63.297837][ C1] ? text_poke_loc_init+0x570/0x570
[ 63.297854][ C1] ? arch_jump_label_transform_queue+0x76/0xd0
[ 63.297863][ C1] ? __jump_label_update+0x36c/0x390
[ 63.297873][ C1] text_poke_finish+0x16/0x30
[ 63.297881][ C1] arch_jump_label_transform_apply+0x13/0x20
[ 63.297890][ C1] static_key_enable_cpuslocked+0x11f/0x240
[ 63.297899][ C1] ? __bpf_trace_hrtimer_init+0x30/0x30
[ 63.297907][ C1] static_key_enable+0x16/0x20
[ 63.297915][ C1] tracepoint_add_func+0x83b/0x9a0
[ 63.297925][ C1] ? __bpf_trace_hrtimer_init+0x30/0x30
[ 63.297933][ C1] tracepoint_probe_register_prio_may_exist+0x5c/0x90
[ 63.297942][ C1] ? __bpf_trace_hrtimer_init+0x30/0x30
[ 63.297951][ C1] bpf_raw_tracepoint_open+0x69d/0x780
[ 63.297961][ C1] ? bpf_obj_get_info_by_fd+0x2a80/0x2a80
[ 63.297972][ C1] ? __might_fault+0xb3/0x110
[ 63.297981][ C1] ? bpf_lsm_bpf+0x5/0x10
[ 63.297990][ C1] ? security_bpf+0x7a/0xa0
[ 63.298000][ C1] __sys_bpf+0x48b/0x670
[ 63.298008][ C1] ? bpf_link_show_fdinfo+0x340/0x340
[ 63.298019][ C1] ? vtime_user_exit+0x2dc/0x400
[ 63.298028][ C1] __x64_sys_bpf+0x78/0x90
[ 63.298036][ C1] do_syscall_64+0x4c/0xa0
[ 63.298043][ C1] ? clear_bhb_loop+0x30/0x80
[ 63.298051][ C1] ? clear_bhb_loop+0x30/0x80
[ 63.298059][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 63.298067][ C1] RIP: 0033:0x7fdb56f30be9
[ 63.298075][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 63.298081][ C1] RSP: 002b:00007fffa99a4b58 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 63.298089][ C1] RAX: ffffffffffffffda RBX: 00007fdb57167fa0 RCX: 00007fdb56f30be9
[ 63.298095][ C1] RDX: 0000000000000010 RSI: 0000200000000bc0 RDI: 0000000000000011
[ 63.298100][ C1] RBP: 00007fdb56fb3e19 R08: 0000000000000000 R09: 0000000000000000
[ 63.298105][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 63.298110][ C1] R13: 00007fdb57167fa0 R14: 00007fdb57167fa0 R15: 0000000000000003
[ 63.298118][ C1]
[ 63.450320][ T4230] Bluetooth: hci0: command 0x0419 tx timeout
[ 63.450941][ C1] WARNING: CPU: 1 PID: 4434 at mm/maccess.c:226 copy_from_user_nofault+0x160/0x1c0
[ 65.001723][ C1] Modules linked in:
[ 65.005596][ C1] CPU: 1 PID: 4434 Comm: syz.0.133 Not tainted syzkaller #0
[ 65.012854][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 65.022889][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[ 65.029159][ C1] Code: 24 45 31 f6 31 ff 89 de e8 ed f6 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 70 f3 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[ 65.048833][ C1] RSP: 0018:ffffc90000dd0ae0 EFLAGS: 00010046
[ 65.054886][ C1] RAX: ffffffff819ed740 RBX: 0000000000000008 RCX: ffff8880214e1dc0
[ 65.062838][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 65.070817][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: fffffbfff1ff7619
[ 65.078774][ C1] R10: fffffbfff1ff7619 R11: 1ffffffff1ff7618 R12: ffff8880214e3548
[ 65.086736][ C1] R13: dffffc0000000000 R14: ffffc90000dd0b48 R15: 0000000000000000
[ 65.094708][ C1] FS: 000055558215f500(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[ 65.103623][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 65.110193][ C1] CR2: 0000001b30c63fff CR3: 0000000070dd1000 CR4: 00000000003506e0
[ 65.118158][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 65.126200][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 65.134159][ C1] Call Trace:
[ 65.137431][ C1]
[ 65.140257][ C1] bpf_probe_read_user+0x26/0x70
[ 65.145181][ C1] bpf_prog_02073d59a3c0f06f+0x3d/0x54
[ 65.150624][ C1] bpf_trace_run2+0x15b/0x2d0
[ 65.155297][ C1] ? bpf_trace_run1+0x2d0/0x2d0
[ 65.160135][ C1] ? enqueue_hrtimer+0x259/0x370
[ 65.165085][ C1] enqueue_hrtimer+0x314/0x370
[ 65.169832][ C1] __hrtimer_run_queues+0x65a/0xc40
[ 65.175017][ C1] ? ktime_get_update_offsets_now+0x95/0x3e0
[ 65.180972][ C1] ? ktime_get_update_offsets_now+0x95/0x3e0
[ 65.186928][ C1] ? hw_scan_work+0xeb0/0xeb0
[ 65.191591][ C1] ? hrtimer_interrupt+0x8d0/0x8d0
[ 65.196691][ C1] hrtimer_run_softirq+0x176/0x240
[ 65.201778][ C1] handle_softirqs+0x328/0x820
[ 65.206520][ C1] ? __irq_exit_rcu+0x12f/0x220
[ 65.211345][ C1] ? do_softirq+0x200/0x200
[ 65.215824][ C1] ? irqtime_account_irq+0xb2/0x1b0
[ 65.220999][ C1] __irq_exit_rcu+0x12f/0x220
[ 65.225651][ C1] ? irq_exit_rcu+0x20/0x20
[ 65.230222][ C1] irq_exit_rcu+0x5/0x20
[ 65.234442][ C1] sysvec_apic_timer_interrupt+0xa0/0xc0
[ 65.240058][ C1]
[ 65.242966][ C1]
[ 65.245886][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 65.251845][ C1] RIP: 0010:smp_call_function_many_cond+0xb88/0xd70
[ 65.258412][ C1] Code: b6 44 05 00 84 c0 0f 85 9d 00 00 00 41 8b 1c 24 89 de 83 e6 01 31 ff e8 66 49 0b 00 83 e3 01 75 07 e8 fc 45 0b 00 eb 43 f3 90 <48> b8 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 75 11 41 f7
[ 65.278258][ C1] RSP: 0018:ffffc9000111f880 EFLAGS: 00000293
[ 65.284393][ C1] RAX: ffffffff816c84db RBX: 0000000000000001 RCX: ffff8880214e1dc0
[ 65.292345][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 65.300328][ C1] RBP: ffffc9000111f9c0 R08: dffffc0000000000 R09: fffffbfff1ff7619
[ 65.308387][ C1] R10: fffffbfff1ff7619 R11: 1ffffffff1ff7618 R12: ffff8880b9042a08
[ 65.316336][ C1] R13: 1ffff11017208541 R14: ffff8880b913b380 R15: 0000000000000000
[ 65.324294][ C1] ? smp_call_function_many_cond+0xbab/0xd70
[ 65.330695][ C1] ? text_poke_sync+0x20/0x20
[ 65.335357][ C1] ? smp_call_function_many+0x30/0x30
[ 65.340707][ C1] ? enqueue_hrtimer+0x30/0x370
[ 65.345535][ C1] ? text_poke+0x90/0x90
[ 65.349758][ C1] ? arch_jump_label_transform_apply+0xe/0x20
[ 65.355817][ C1] ? text_poke_sync+0x20/0x20
[ 65.360474][ C1] on_each_cpu_cond_mask+0x3b/0x80
[ 65.365582][ C1] ? enqueue_hrtimer+0x30/0x370
[ 65.370428][ C1] text_poke_bp_batch+0x2a9/0x7c0
[ 65.375444][ C1] ? mutex_unlock+0x10/0x10
[ 65.379929][ C1] ? text_poke_loc_init+0x570/0x570
[ 65.385105][ C1] ? arch_jump_label_transform_queue+0x76/0xd0
[ 65.391237][ C1] ? __jump_label_update+0x36c/0x390
[ 65.396500][ C1] text_poke_finish+0x16/0x30
[ 65.401181][ C1] arch_jump_label_transform_apply+0x13/0x20
[ 65.407141][ C1] static_key_enable_cpuslocked+0x11f/0x240
[ 65.413019][ C1] ? __bpf_trace_hrtimer_init+0x30/0x30
[ 65.418550][ C1] static_key_enable+0x16/0x20
[ 65.423293][ C1] tracepoint_add_func+0x83b/0x9a0
[ 65.428391][ C1] ? __bpf_trace_hrtimer_init+0x30/0x30
[ 65.433914][ C1] tracepoint_probe_register_prio_may_exist+0x5c/0x90
[ 65.440654][ C1] ? __bpf_trace_hrtimer_init+0x30/0x30
[ 65.446178][ C1] bpf_raw_tracepoint_open+0x69d/0x780
[ 65.451645][ C1] ? bpf_obj_get_info_by_fd+0x2a80/0x2a80
[ 65.457365][ C1] ? __might_fault+0xb3/0x110
[ 65.462019][ C1] ? bpf_lsm_bpf+0x5/0x10
[ 65.466325][ C1] ? security_bpf+0x7a/0xa0
[ 65.470805][ C1] __sys_bpf+0x48b/0x670
[ 65.475030][ C1] ? bpf_link_show_fdinfo+0x340/0x340
[ 65.480382][ C1] ? vtime_user_exit+0x2dc/0x400
[ 65.485297][ C1] __x64_sys_bpf+0x78/0x90
[ 65.489695][ C1] do_syscall_64+0x4c/0xa0
[ 65.494083][ C1] ? clear_bhb_loop+0x30/0x80
[ 65.498734][ C1] ? clear_bhb_loop+0x30/0x80
[ 65.503394][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 65.509275][ C1] RIP: 0033:0x7fdb56f30be9
[ 65.513669][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 65.533363][ C1] RSP: 002b:00007fffa99a4b58 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 65.541758][ C1] RAX: ffffffffffffffda RBX: 00007fdb57167fa0 RCX: 00007fdb56f30be9
[ 65.549709][ C1] RDX: 0000000000000010 RSI: 0000200000000bc0 RDI: 0000000000000011
[ 65.557662][ C1] RBP: 00007fdb56fb3e19 R08: 0000000000000000 R09: 0000000000000000
[ 65.565615][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 65.573583][ C1] R13: 00007fdb57167fa0 R14: 00007fdb57167fa0 R15: 0000000000000003
[ 65.581537][ C1]
[ 65.584545][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 65.591901][ C1] CPU: 1 PID: 4434 Comm: syz.0.133 Not tainted syzkaller #0
[ 65.599157][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 65.609190][ C1] Call Trace:
[ 65.612469][ C1]
[ 65.615750][ C1] dump_stack_lvl+0x168/0x230
[ 65.620410][ C1] ? show_regs_print_info+0x20/0x20
[ 65.625599][ C1] ? load_image+0x3b0/0x3b0
[ 65.630079][ C1] panic+0x2c9/0x7f0
[ 65.633954][ C1] ? bpf_jit_dump+0xd0/0xd0
[ 65.638435][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 65.643958][ C1] __warn+0x248/0x2b0
[ 65.647917][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 65.653444][ C1] report_bug+0x1b7/0x2e0
[ 65.657762][ C1] handle_bug+0x3a/0x70
[ 65.661897][ C1] exc_invalid_op+0x16/0x40
[ 65.666377][ C1] asm_exc_invalid_op+0x16/0x20
[ 65.671305][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[ 65.677437][ C1] Code: 24 45 31 f6 31 ff 89 de e8 ed f6 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 70 f3 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[ 65.697017][ C1] RSP: 0018:ffffc90000dd0ae0 EFLAGS: 00010046
[ 65.703093][ C1] RAX: ffffffff819ed740 RBX: 0000000000000008 RCX: ffff8880214e1dc0
[ 65.711139][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 65.719182][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: fffffbfff1ff7619
[ 65.727132][ C1] R10: fffffbfff1ff7619 R11: 1ffffffff1ff7618 R12: ffff8880214e3548
[ 65.735084][ C1] R13: dffffc0000000000 R14: ffffc90000dd0b48 R15: 0000000000000000
[ 65.743038][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 65.748573][ C1] bpf_probe_read_user+0x26/0x70
[ 65.753494][ C1] bpf_prog_02073d59a3c0f06f+0x3d/0x54
[ 65.758958][ C1] bpf_trace_run2+0x15b/0x2d0
[ 65.763619][ C1] ? bpf_trace_run1+0x2d0/0x2d0
[ 65.768446][ C1] ? enqueue_hrtimer+0x259/0x370
[ 65.773555][ C1] enqueue_hrtimer+0x314/0x370
[ 65.778294][ C1] __hrtimer_run_queues+0x65a/0xc40
[ 65.783471][ C1] ? ktime_get_update_offsets_now+0x95/0x3e0
[ 65.789421][ C1] ? ktime_get_update_offsets_now+0x95/0x3e0
[ 65.795372][ C1] ? hw_scan_work+0xeb0/0xeb0
[ 65.800028][ C1] ? hrtimer_interrupt+0x8d0/0x8d0
[ 65.805118][ C1] hrtimer_run_softirq+0x176/0x240
[ 65.810218][ C1] handle_softirqs+0x328/0x820
[ 65.814966][ C1] ? __irq_exit_rcu+0x12f/0x220
[ 65.819787][ C1] ? do_softirq+0x200/0x200
[ 65.824264][ C1] ? irqtime_account_irq+0xb2/0x1b0
[ 65.829457][ C1] __irq_exit_rcu+0x12f/0x220
[ 65.834112][ C1] ? irq_exit_rcu+0x20/0x20
[ 65.838602][ C1] irq_exit_rcu+0x5/0x20
[ 65.842828][ C1] sysvec_apic_timer_interrupt+0xa0/0xc0
[ 65.848438][ C1]
[ 65.851354][ C1]
[ 65.854277][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 65.860285][ C1] RIP: 0010:smp_call_function_many_cond+0xb88/0xd70
[ 65.866950][ C1] Code: b6 44 05 00 84 c0 0f 85 9d 00 00 00 41 8b 1c 24 89 de 83 e6 01 31 ff e8 66 49 0b 00 83 e3 01 75 07 e8 fc 45 0b 00 eb 43 f3 90 <48> b8 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 75 11 41 f7
[ 65.886543][ C1] RSP: 0018:ffffc9000111f880 EFLAGS: 00000293
[ 65.892716][ C1] RAX: ffffffff816c84db RBX: 0000000000000001 RCX: ffff8880214e1dc0
[ 65.900834][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 65.908793][ C1] RBP: ffffc9000111f9c0 R08: dffffc0000000000 R09: fffffbfff1ff7619
[ 65.916767][ C1] R10: fffffbfff1ff7619 R11: 1ffffffff1ff7618 R12: ffff8880b9042a08
[ 65.924724][ C1] R13: 1ffff11017208541 R14: ffff8880b913b380 R15: 0000000000000000
[ 65.932685][ C1] ? smp_call_function_many_cond+0xbab/0xd70
[ 65.938669][ C1] ? text_poke_sync+0x20/0x20
[ 65.943450][ C1] ? smp_call_function_many+0x30/0x30
[ 65.948807][ C1] ? enqueue_hrtimer+0x30/0x370
[ 65.953641][ C1] ? text_poke+0x90/0x90
[ 65.957868][ C1] ? arch_jump_label_transform_apply+0xe/0x20
[ 65.963920][ C1] ? text_poke_sync+0x20/0x20
[ 65.968580][ C1] on_each_cpu_cond_mask+0x3b/0x80
[ 65.973676][ C1] ? enqueue_hrtimer+0x30/0x370
[ 65.978624][ C1] text_poke_bp_batch+0x2a9/0x7c0
[ 65.983634][ C1] ? mutex_unlock+0x10/0x10
[ 65.988121][ C1] ? text_poke_loc_init+0x570/0x570
[ 65.993304][ C1] ? arch_jump_label_transform_queue+0x76/0xd0
[ 65.999447][ C1] ? __jump_label_update+0x36c/0x390
[ 66.004716][ C1] text_poke_finish+0x16/0x30
[ 66.009512][ C1] arch_jump_label_transform_apply+0x13/0x20
[ 66.015481][ C1] static_key_enable_cpuslocked+0x11f/0x240
[ 66.021360][ C1] ? __bpf_trace_hrtimer_init+0x30/0x30
[ 66.026889][ C1] static_key_enable+0x16/0x20
[ 66.031640][ C1] tracepoint_add_func+0x83b/0x9a0
[ 66.036733][ C1] ? __bpf_trace_hrtimer_init+0x30/0x30
[ 66.042255][ C1] tracepoint_probe_register_prio_may_exist+0x5c/0x90
[ 66.048997][ C1] ? __bpf_trace_hrtimer_init+0x30/0x30
[ 66.054528][ C1] bpf_raw_tracepoint_open+0x69d/0x780
[ 66.059982][ C1] ? bpf_obj_get_info_by_fd+0x2a80/0x2a80
[ 66.065696][ C1] ? __might_fault+0xb3/0x110
[ 66.070355][ C1] ? bpf_lsm_bpf+0x5/0x10
[ 66.074665][ C1] ? security_bpf+0x7a/0xa0
[ 66.079145][ C1] __sys_bpf+0x48b/0x670
[ 66.083383][ C1] ? bpf_link_show_fdinfo+0x340/0x340
[ 66.088735][ C1] ? vtime_user_exit+0x2dc/0x400
[ 66.093651][ C1] __x64_sys_bpf+0x78/0x90
[ 66.098048][ C1] do_syscall_64+0x4c/0xa0
[ 66.102449][ C1] ? clear_bhb_loop+0x30/0x80
[ 66.107102][ C1] ? clear_bhb_loop+0x30/0x80
[ 66.111754][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 66.117716][ C1] RIP: 0033:0x7fdb56f30be9
[ 66.122106][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 66.141695][ C1] RSP: 002b:00007fffa99a4b58 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 66.150091][ C1] RAX: ffffffffffffffda RBX: 00007fdb57167fa0 RCX: 00007fdb56f30be9
[ 66.158273][ C1] RDX: 0000000000000010 RSI: 0000200000000bc0 RDI: 0000000000000011
[ 66.166243][ C1] RBP: 00007fdb56fb3e19 R08: 0000000000000000 R09: 0000000000000000
[ 66.174218][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 66.182465][ C1] R13: 00007fdb57167fa0 R14: 00007fdb57167fa0 R15: 0000000000000003
[ 66.190433][ C1]
[ 66.193544][ C1] Kernel Offset: disabled
[ 66.197863][ C1] Rebooting in 86400 seconds..