Warning: Permanently added '10.128.1.116' (ED25519) to the list of known hosts.
2026/01/05 03:42:36 parsed 1 programs
[ 75.698198][ T5832] cgroup: Unknown subsys name 'net'
[ 75.889083][ T5832] cgroup: Unknown subsys name 'cpuset'
[ 75.897663][ T5832] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 77.315836][ T5832] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 79.814222][ T5149] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 79.822208][ T5149] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 79.830602][ T5149] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 79.839273][ T5149] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 79.847104][ T5149] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 79.944187][ T5841] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 81.779994][ T3073] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 81.802595][ T3073] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 81.864562][ T2949] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 81.876107][ T2949] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 83.094121][ T5913] chnl_net:caif_netlink_parms(): no params data found
[ 83.200762][ T5913] bridge0: port 1(bridge_slave_0) entered blocking state
[ 83.209068][ T5913] bridge0: port 1(bridge_slave_0) entered disabled state
[ 83.217096][ T5913] bridge_slave_0: entered allmulticast mode
[ 83.224228][ T5913] bridge_slave_0: entered promiscuous mode
[ 83.233640][ T5913] bridge0: port 2(bridge_slave_1) entered blocking state
[ 83.241333][ T5913] bridge0: port 2(bridge_slave_1) entered disabled state
[ 83.248713][ T5913] bridge_slave_1: entered allmulticast mode
[ 83.255961][ T5913] bridge_slave_1: entered promiscuous mode
[ 83.290770][ T5913] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 83.329024][ T5913] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 83.371417][ T5913] team0: Port device team_slave_0 added
[ 83.382977][ T5913] team0: Port device team_slave_1 added
[ 83.408817][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 83.416519][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 83.442497][ T5913] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 83.455333][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 83.462329][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 83.488294][ T5913] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 83.538155][ T5913] hsr_slave_0: entered promiscuous mode
[ 83.544608][ T5913] hsr_slave_1: entered promiscuous mode
[ 83.697982][ T5913] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 83.710865][ T5913] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 83.721538][ T5913] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 83.731947][ T5913] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 83.805043][ T5913] 8021q: adding VLAN 0 to HW filter on device bond0
[ 83.827336][ T5913] 8021q: adding VLAN 0 to HW filter on device team0
[ 83.841436][ T50] bridge0: port 1(bridge_slave_0) entered blocking state
[ 83.848749][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 83.863757][ T1305] bridge0: port 2(bridge_slave_1) entered blocking state
[ 83.870970][ T1305] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 84.031493][ T5913] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 84.074697][ T5913] veth0_vlan: entered promiscuous mode
[ 84.085535][ T5913] veth1_vlan: entered promiscuous mode
[ 84.117085][ T5913] veth0_macvtap: entered promiscuous mode
[ 84.128345][ T5913] veth1_macvtap: entered promiscuous mode
[ 84.150833][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 84.172736][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 84.186949][ T2949] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 84.197009][ T2949] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 84.208740][ T2949] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 84.218669][ T2949] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 84.349653][ T3073] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 84.430186][ T3073] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 84.501702][ T3073] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 84.573966][ T3073] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/01/05 03:42:47 executed programs: 0
[ 84.744738][ T5149] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 84.753418][ T5149] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 84.761608][ T5149] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 84.772993][ T5149] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 84.781194][ T5149] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 84.934137][ T5940] chnl_net:caif_netlink_parms(): no params data found
[ 85.007383][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state
[ 85.014559][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state
[ 85.022187][ T5940] bridge_slave_0: entered allmulticast mode
[ 85.030354][ T5940] bridge_slave_0: entered promiscuous mode
[ 85.041278][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state
[ 85.048604][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state
[ 85.055858][ T5940] bridge_slave_1: entered allmulticast mode
[ 85.062792][ T5940] bridge_slave_1: entered promiscuous mode
[ 85.093141][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 85.104767][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 85.138848][ T5940] team0: Port device team_slave_0 added
[ 85.146695][ T5940] team0: Port device team_slave_1 added
[ 85.172679][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 85.179737][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 85.209140][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 85.222624][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 85.230586][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 85.256533][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 85.312570][ T5940] hsr_slave_0: entered promiscuous mode
[ 85.319091][ T5940] hsr_slave_1: entered promiscuous mode
[ 85.325189][ T5940] debugfs: 'hsr0' already exists in 'hsr'
[ 85.331661][ T5940] Cannot create hsr debugfs directory
[ 86.796727][ T10] cfg80211: failed to load regulatory.db
[ 86.876395][ T52] Bluetooth: hci0: command tx timeout
[ 87.508876][ T3073] bridge_slave_1: left allmulticast mode
[ 87.514678][ T3073] bridge_slave_1: left promiscuous mode
[ 87.525966][ T3073] bridge0: port 2(bridge_slave_1) entered disabled state
[ 87.541564][ T3073] bridge_slave_0: left allmulticast mode
[ 87.547344][ T3073] bridge_slave_0: left promiscuous mode
[ 87.553164][ T3073] bridge0: port 1(bridge_slave_0) entered disabled state
[ 87.892049][ T3073] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 87.903823][ T3073] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 87.921312][ T3073] bond0 (unregistering): Released all slaves
[ 88.063507][ T3073] hsr_slave_0: left promiscuous mode
[ 88.075921][ T3073] hsr_slave_1: left promiscuous mode
[ 88.082145][ T3073] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 88.090026][ T3073] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 88.098970][ T3073] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 88.107215][ T3073] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 88.128154][ T3073] veth1_macvtap: left promiscuous mode
[ 88.133897][ T3073] veth0_macvtap: left promiscuous mode
[ 88.140257][ T3073] veth1_vlan: left promiscuous mode
[ 88.145888][ T3073] veth0_vlan: left promiscuous mode
[ 88.591330][ T3073] team0 (unregistering): Port device team_slave_1 removed
[ 88.620304][ T3073] team0 (unregistering): Port device team_slave_0 removed
[ 88.956604][ T52] Bluetooth: hci0: command tx timeout
[ 89.114170][ T5940] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 89.136599][ T5940] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 89.161358][ T5940] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 89.183878][ T5940] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 89.434678][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0
[ 89.467520][ T5940] 8021q: adding VLAN 0 to HW filter on device team0
[ 89.482823][ T1305] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.490080][ T1305] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 89.510064][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 89.517307][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 89.781526][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 89.843920][ T5940] veth0_vlan: entered promiscuous mode
[ 89.862201][ T5940] veth1_vlan: entered promiscuous mode
[ 89.904845][ T5940] veth0_macvtap: entered promiscuous mode
[ 89.920215][ T5940] veth1_macvtap: entered promiscuous mode
[ 89.943102][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 89.961543][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 89.980360][ T1305] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.003556][ T1305] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.024218][ T1305] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.044585][ T1305] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.105117][ T1305] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 90.120382][ T1305] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 90.158212][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 90.166297][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/01/05 03:42:52 executed programs: 2
[ 91.035827][ T52] Bluetooth: hci0: command tx timeout
[ 93.115694][ T52] Bluetooth: hci0: command tx timeout
[ 93.246624][ T6024] ------------[ cut here ]------------
[ 93.246914][ T6024]
[ 93.246919][ T6024] ======================================================
[ 93.246923][ T6024] WARNING: possible circular locking dependency detected
[ 93.246933][ T6024] syzkaller #0 Not tainted
[ 93.246938][ T6024] ------------------------------------------------------
[ 93.246941][ T6024] syz.0.17/6024 is trying to acquire lock:
[ 93.246946][ T6024] ffffffff8e133180 (console_owner){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 93.246976][ T6024]
[ 93.246976][ T6024] but task is already holding lock:
[ 93.246979][ T6024] ffff8880b873ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 93.247017][ T6024]
[ 93.247017][ T6024] which lock already depends on the new lock.
[ 93.247017][ T6024]
[ 93.247022][ T6024]
[ 93.247022][ T6024] the existing dependency chain (in reverse order) is:
[ 93.247026][ T6024]
[ 93.247026][ T6024] -> #4 (&rq->__lock){-.-.}-{2:2}:
[ 93.247043][ T6024] _raw_spin_lock_nested+0x32/0x50
[ 93.247058][ T6024] raw_spin_rq_lock_nested+0x2a/0x140
[ 93.247069][ T6024] task_rq_lock+0xbc/0x470
[ 93.247079][ T6024] cgroup_move_task+0x92/0x2a0
[ 93.247093][ T6024] css_set_move_task+0x658/0x9e0
[ 93.247105][ T6024] cgroup_post_fork+0x1ef/0x7a0
[ 93.247115][ T6024] copy_process+0x3614/0x3950
[ 93.247127][ T6024] kernel_clone+0x21e/0x820
[ 93.247145][ T6024] user_mode_thread+0xdd/0x140
[ 93.247169][ T6024] rest_init+0x23/0x300
[ 93.247179][ T6024] start_kernel+0x3ac/0x400
[ 93.247190][ T6024] x86_64_start_reservations+0x24/0x30
[ 93.247206][ T6024] x86_64_start_kernel+0x143/0x1c0
[ 93.247220][ T6024] common_startup_64+0x13e/0x147
[ 93.247234][ T6024]
[ 93.247234][ T6024] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[ 93.247249][ T6024] _raw_spin_lock_irqsave+0xa7/0xf0
[ 93.247262][ T6024] try_to_wake_up+0x67/0x12b0
[ 93.247276][ T6024] __wake_up_common_lock+0x137/0x1f0
[ 93.247292][ T6024] tty_port_default_wakeup+0xfb/0x170
[ 93.247306][ T6024] serial8250_tx_chars+0x72e/0x970
[ 93.247318][ T6024] serial8250_handle_irq+0x633/0xbb0
[ 93.247329][ T6024] serial8250_default_handle_irq+0xbf/0x200
[ 93.247343][ T6024] serial8250_interrupt+0x8d/0x180
[ 93.247358][ T6024] __handle_irq_event_percpu+0x285/0xa60
[ 93.247374][ T6024] handle_irq_event+0x8b/0x1e0
[ 93.247389][ T6024] handle_edge_irq+0x23b/0xa10
[ 93.247403][ T6024] __common_interrupt+0x141/0x1f0
[ 93.247419][ T6024] common_interrupt+0xb6/0xe0
[ 93.247429][ T6024] asm_common_interrupt+0x26/0x40
[ 93.247440][ T6024] lock_acquire+0xd/0x340
[ 93.247450][ T6024] unwind_next_frame+0xc2/0x23d0
[ 93.247463][ T6024] arch_stack_walk+0x11c/0x150
[ 93.247475][ T6024] stack_trace_save+0x9c/0xe0
[ 93.247485][ T6024] kasan_save_track+0x3e/0x80
[ 93.247497][ T6024] kasan_save_free_info+0x46/0x50
[ 93.247513][ T6024] __kasan_slab_free+0x5c/0x80
[ 93.247524][ T6024] kmem_cache_free_bulk+0x3fb/0xdb0
[ 93.247537][ T6024] kvfree_rcu_bulk+0xe5/0x1f0
[ 93.247549][ T6024] kfree_rcu_work+0xed/0x170
[ 93.247559][ T6024] process_one_work+0x93a/0x15a0
[ 93.247570][ T6024] worker_thread+0x9b0/0xee0
[ 93.247581][ T6024] kthread+0x711/0x8a0
[ 93.247593][ T6024] ret_from_fork+0x599/0xb30
[ 93.247603][ T6024] ret_from_fork_asm+0x1a/0x30
[ 93.247618][ T6024]
[ 93.247618][ T6024] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[ 93.247634][ T6024] _raw_spin_lock_irqsave+0xa7/0xf0
[ 93.247646][ T6024] __wake_up_common_lock+0x2f/0x1f0
[ 93.247661][ T6024] tty_port_default_wakeup+0xfb/0x170
[ 93.247674][ T6024] serial8250_tx_chars+0x72e/0x970
[ 93.247685][ T6024] serial8250_handle_irq+0x633/0xbb0
[ 93.247696][ T6024] serial8250_default_handle_irq+0xbf/0x200
[ 93.247709][ T6024] serial8250_interrupt+0x8d/0x180
[ 93.247725][ T6024] __handle_irq_event_percpu+0x285/0xa60
[ 93.247740][ T6024] handle_irq_event+0x8b/0x1e0
[ 93.247755][ T6024] handle_edge_irq+0x23b/0xa10
[ 93.247765][ T6024] __common_interrupt+0x141/0x1f0
[ 93.247776][ T6024] common_interrupt+0xb6/0xe0
[ 93.247784][ T6024] asm_common_interrupt+0x26/0x40
[ 93.247791][ T6024] pv_native_safe_halt+0x13/0x20
[ 93.247801][ T6024] default_idle+0x13/0x20
[ 93.247808][ T6024] default_idle_call+0x73/0xb0
[ 93.247814][ T6024] do_idle+0x1ea/0x520
[ 93.247823][ T6024] cpu_startup_entry+0x44/0x60
[ 93.247831][ T6024] rest_init+0x2de/0x300
[ 93.247838][ T6024] start_kernel+0x3ac/0x400
[ 93.247846][ T6024] x86_64_start_reservations+0x24/0x30
[ 93.247857][ T6024] x86_64_start_kernel+0x143/0x1c0
[ 93.247868][ T6024] common_startup_64+0x13e/0x147
[ 93.247878][ T6024]
[ 93.247878][ T6024] -> #1 (&port_lock_key){-.-.}-{3:3}:
[ 93.247889][ T6024] _raw_spin_lock_irqsave+0xa7/0xf0
[ 93.247899][ T6024] serial8250_console_write+0x17e/0x1ba0
[ 93.247908][ T6024] console_flush_all+0x745/0xb60
[ 93.247926][ T6024] console_unlock+0xbb/0x190
[ 93.247935][ T6024] vprintk_emit+0x4f8/0x5f0
[ 93.247945][ T6024] _printk+0xcf/0x120
[ 93.247956][ T6024] register_console+0xa8b/0xf90
[ 93.247967][ T6024] univ8250_console_init+0x3a/0x70
[ 93.247979][ T6024] console_init+0xfc/0x3f0
[ 93.247990][ T6024] start_kernel+0x252/0x400
[ 93.247998][ T6024] x86_64_start_reservations+0x24/0x30
[ 93.248009][ T6024] x86_64_start_kernel+0x143/0x1c0
[ 93.248020][ T6024] common_startup_64+0x13e/0x147
[ 93.248030][ T6024]
[ 93.248030][ T6024] -> #0 (console_owner){....}-{0:0}:
[ 93.248040][ T6024] __lock_acquire+0x15a6/0x2cf0
[ 93.248048][ T6024] lock_acquire+0x117/0x340
[ 93.248055][ T6024] console_flush_all+0x6ee/0xb60
[ 93.248066][ T6024] console_unlock+0xbb/0x190
[ 93.248075][ T6024] vprintk_emit+0x4f8/0x5f0
[ 93.248084][ T6024] _printk+0xcf/0x120
[ 93.248095][ T6024] __report_bug+0x305/0x500
[ 93.248105][ T6024] report_bug+0x16a/0x220
[ 93.248114][ T6024] handle_bug+0x98/0x200
[ 93.248120][ T6024] exc_invalid_op+0x1a/0x50
[ 93.248126][ T6024] asm_exc_invalid_op+0x1a/0x20
[ 93.248133][ T6024] sched_change_end+0x4f6/0x640
[ 93.248144][ T6024] rt_mutex_setprio+0x488/0xb70
[ 93.248156][ T6024] remove_waiter+0x7f5/0xaf0
[ 93.248164][ T6024] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 93.248172][ T6024] futex_lock_pi+0x530/0xa90
[ 93.248182][ T6024] do_futex+0x292/0x420
[ 93.248190][ T6024] __se_sys_futex+0x36f/0x400
[ 93.248198][ T6024] do_syscall_64+0xfa/0xf80
[ 93.248209][ T6024] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.248217][ T6024]
[ 93.248217][ T6024] other info that might help us debug this:
[ 93.248217][ T6024]
[ 93.248220][ T6024] Chain exists of:
[ 93.248220][ T6024] console_owner --> &p->pi_lock --> &rq->__lock
[ 93.248220][ T6024]
[ 93.248233][ T6024] Possible unsafe locking scenario:
[ 93.248233][ T6024]
[ 93.248235][ T6024] CPU0 CPU1
[ 93.248238][ T6024] ---- ----
[ 93.248241][ T6024] lock(&rq->__lock);
[ 93.248246][ T6024] lock(&p->pi_lock);
[ 93.248252][ T6024] lock(&rq->__lock);
[ 93.248258][ T6024] lock(console_owner);
[ 93.248264][ T6024]
[ 93.248264][ T6024] *** DEADLOCK ***
[ 93.248264][ T6024]
[ 93.248266][ T6024] 5 locks held by syz.0.17/6024:
[ 93.248271][ T6024] #0: ffff8880739a7228 (&pi_futex_key){....}-{2:2}, at: rt_mutex_cleanup_proxy_lock+0x23/0x100
[ 93.248292][ T6024] #1: ffff88802d2dc768 (&p->pi_lock){-.-.}-{2:2}, at: remove_waiter+0x286/0xaf0
[ 93.248311][ T6024] #2: ffff8880b873ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 93.248331][ T6024] #3: ffffffff8e1331e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[ 93.248353][ T6024] #4: ffffffff8e01aa98 (console_srcu){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 93.248375][ T6024]
[ 93.248375][ T6024] stack backtrace:
[ 93.248391][ T6024] CPU: 0 UID: 0 PID: 6024 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 93.248404][ T6024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 93.248417][ T6024] Call Trace:
[ 93.248421][ T6024]
[ 93.248425][ T6024] dump_stack_lvl+0x189/0x250
[ 93.248437][ T6024] ? __pfx_dump_stack_lvl+0x10/0x10
[ 93.248447][ T6024] ? __pfx__printk+0x10/0x10
[ 93.248460][ T6024] ? print_lock_name+0xde/0x100
[ 93.248472][ T6024] print_circular_bug+0x2e2/0x300
[ 93.248484][ T6024] check_noncircular+0x12e/0x150
[ 93.248496][ T6024] __lock_acquire+0x15a6/0x2cf0
[ 93.248509][ T6024] ? console_flush_all+0x131/0xb60
[ 93.248521][ T6024] lock_acquire+0x117/0x340
[ 93.248529][ T6024] ? console_flush_all+0x131/0xb60
[ 93.248542][ T6024] ? do_raw_spin_unlock+0x122/0x240
[ 93.248554][ T6024] ? console_flush_all+0x131/0xb60
[ 93.248565][ T6024] console_flush_all+0x6ee/0xb60
[ 93.248576][ T6024] ? console_flush_all+0x131/0xb60
[ 93.248588][ T6024] ? console_flush_all+0x131/0xb60
[ 93.248600][ T6024] ? __pfx_console_flush_all+0x10/0x10
[ 93.248612][ T6024] ? is_bpf_text_address+0x26/0x2b0
[ 93.248622][ T6024] ? is_printk_cpu_sync_owner+0x32/0x40
[ 93.248635][ T6024] console_unlock+0xbb/0x190
[ 93.248646][ T6024] ? __pfx___down_trylock_console_sem+0x10/0x10
[ 93.248657][ T6024] ? __pfx_console_unlock+0x10/0x10
[ 93.248670][ T6024] vprintk_emit+0x4f8/0x5f0
[ 93.248680][ T6024] ? __pfx_vprintk_emit+0x10/0x10
[ 93.248691][ T6024] ? __lock_acquire+0x6b6/0x2cf0
[ 93.248700][ T6024] ? __lock_acquire+0x6b6/0x2cf0
[ 93.248710][ T6024] _printk+0xcf/0x120
[ 93.248723][ T6024] ? __pfx__printk+0x10/0x10
[ 93.248735][ T6024] ? find_bug+0xa5/0x370
[ 93.248745][ T6024] ? sched_change_end+0x4f6/0x640
[ 93.248756][ T6024] ? sched_change_end+0x4f6/0x640
[ 93.248766][ T6024] __report_bug+0x305/0x500
[ 93.248776][ T6024] ? sched_change_end+0x4f6/0x640
[ 93.248787][ T6024] ? __pfx___report_bug+0x10/0x10
[ 93.248798][ T6024] ? rcu_read_lock_sched_held+0x89/0x100
[ 93.248809][ T6024] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 93.248820][ T6024] ? trace_pelt_se_tp+0x39/0x120
[ 93.248833][ T6024] ? sched_change_end+0x4f6/0x640
[ 93.248843][ T6024] report_bug+0x16a/0x220
[ 93.248853][ T6024] ? sched_change_end+0x4f6/0x640
[ 93.248863][ T6024] ? sched_change_end+0x4f8/0x640
[ 93.248873][ T6024] handle_bug+0x98/0x200
[ 93.248880][ T6024] exc_invalid_op+0x1a/0x50
[ 93.248888][ T6024] asm_exc_invalid_op+0x1a/0x20
[ 93.248896][ T6024] RIP: 0010:sched_change_end+0x4f6/0x640
[ 93.248907][ T6024] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 93.248921][ T6024] RSP: 0018:ffffc90003f0f850 EFLAGS: 00010046
[ 93.248929][ T6024] RAX: 1ffff11005a5b7a0 RBX: ffffffff8dba8ed0 RCX: ffffffff8192e20f
[ 93.248935][ T6024] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802d2dbd00
[ 93.248941][ T6024] RBP: ffff88802d2dbfa8 R08: ffff88802d2dbd07 R09: 1ffff11005a5b7a0
[ 93.248947][ T6024] R10: dffffc0000000000 R11: ffffed1005a5b7a1 R12: dffffc0000000000
[ 93.248954][ T6024] R13: ffff88802d2dbd00 R14: ffff8880b873ab00 R15: ffff88802d2dbd00
[ 93.248962][ T6024] ? sched_change_end+0x4af/0x640
[ 93.248976][ T6024] rt_mutex_setprio+0x488/0xb70
[ 93.248986][ T6024] remove_waiter+0x7f5/0xaf0
[ 93.248995][ T6024] ? lockdep_hardirqs_on+0x98/0x140
[ 93.249007][ T6024] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 93.249017][ T6024] futex_lock_pi+0x530/0xa90
[ 93.249029][ T6024] ? __pfx_futex_lock_pi+0x10/0x10
[ 93.249043][ T6024] ? futex_hash+0x40/0x2d0
[ 93.249051][ T6024] ? futex_hash+0x2ad/0x2d0
[ 93.249058][ T6024] ? __pfx_futex_wake_mark+0x10/0x10
[ 93.249070][ T6024] ? __pfx_futex_wake+0x10/0x10
[ 93.249083][ T6024] ? handle_mm_fault+0xdb/0x32b0
[ 93.249097][ T6024] do_futex+0x292/0x420
[ 93.249107][ T6024] ? __pfx_do_futex+0x10/0x10
[ 93.249118][ T6024] __se_sys_futex+0x36f/0x400
[ 93.249128][ T6024] ? __pfx___se_sys_futex+0x10/0x10
[ 93.249139][ T6024] ? __x64_sys_futex+0x21/0xf0
[ 93.249156][ T6024] do_syscall_64+0xfa/0xf80
[ 93.249168][ T6024] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.249176][ T6024] ? clear_bhb_loop+0x60/0xb0
[ 93.249186][ T6024] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.249193][ T6024] RIP: 0033:0x7f9be4d8f749
[ 93.249206][ T6024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 93.249213][ T6024] RSP: 002b:00007fff02e0b758 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 93.249221][ T6024] RAX: ffffffffffffffda RBX: 00007f9be4fe5fa0 RCX: 00007f9be4d8f749
[ 93.249227][ T6024] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 000020000000cffc
[ 93.249233][ T6024] RBP: 00007f9be4e13f91 R08: 0000000000000000 R09: 0000000000000000
[ 93.249238][ T6024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 93.249243][ T6024] R13: 00007f9be4fe5fa0 R14: 00007f9be4fe5fa0 R15: 0000000000000006
[ 93.249252][ T6024]
[ 94.513054][ T6024] WARNING: kernel/sched/core.c:10852 at sched_change_end+0x4f6/0x640, CPU#0: syz.0.17/6024
[ 94.523030][ T6024] Modules linked in:
[ 94.526907][ T6024] CPU: 0 UID: 0 PID: 6024 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 94.535983][ T6024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 94.546011][ T6024] RIP: 0010:sched_change_end+0x4f6/0x640
[ 94.551664][ T6024] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 94.571243][ T6024] RSP: 0018:ffffc90003f0f850 EFLAGS: 00010046
[ 94.577285][ T6024] RAX: 1ffff11005a5b7a0 RBX: ffffffff8dba8ed0 RCX: ffffffff8192e20f
[ 94.585231][ T6024] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802d2dbd00
[ 94.593195][ T6024] RBP: ffff88802d2dbfa8 R08: ffff88802d2dbd07 R09: 1ffff11005a5b7a0
[ 94.601156][ T6024] R10: dffffc0000000000 R11: ffffed1005a5b7a1 R12: dffffc0000000000
[ 94.609132][ T6024] R13: ffff88802d2dbd00 R14: ffff8880b873ab00 R15: ffff88802d2dbd00
[ 94.617102][ T6024] FS: 000055556c65d500(0000) GS:ffff888125c25000(0000) knlGS:0000000000000000
[ 94.626027][ T6024] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 94.632601][ T6024] CR2: 000055999efc8138 CR3: 0000000073a96000 CR4: 00000000003526f0
[ 94.640559][ T6024] Call Trace:
[ 94.643824][ T6024]
[ 94.646736][ T6024] rt_mutex_setprio+0x488/0xb70
[ 94.651566][ T6024] remove_waiter+0x7f5/0xaf0
[ 94.656148][ T6024] ? lockdep_hardirqs_on+0x98/0x140
[ 94.661343][ T6024] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 94.667050][ T6024] futex_lock_pi+0x530/0xa90
[ 94.671639][ T6024] ? __pfx_futex_lock_pi+0x10/0x10
[ 94.676749][ T6024] ? futex_hash+0x40/0x2d0
[ 94.681147][ T6024] ? futex_hash+0x2ad/0x2d0
[ 94.685627][ T6024] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.690898][ T6024] ? __pfx_futex_wake+0x10/0x10
[ 94.695732][ T6024] ? handle_mm_fault+0xdb/0x32b0
[ 94.700653][ T6024] do_futex+0x292/0x420
[ 94.704896][ T6024] ? __pfx_do_futex+0x10/0x10
[ 94.709556][ T6024] __se_sys_futex+0x36f/0x400
[ 94.714212][ T6024] ? __pfx___se_sys_futex+0x10/0x10
[ 94.719389][ T6024] ? __x64_sys_futex+0x21/0xf0
[ 94.724133][ T6024] do_syscall_64+0xfa/0xf80
[ 94.728617][ T6024] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.734659][ T6024] ? clear_bhb_loop+0x60/0xb0
[ 94.739508][ T6024] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.745430][ T6024] RIP: 0033:0x7f9be4d8f749
[ 94.749926][ T6024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 94.769534][ T6024] RSP: 002b:00007fff02e0b758 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.777934][ T6024] RAX: ffffffffffffffda RBX: 00007f9be4fe5fa0 RCX: 00007f9be4d8f749
[ 94.785890][ T6024] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 000020000000cffc
[ 94.793837][ T6024] RBP: 00007f9be4e13f91 R08: 0000000000000000 R09: 0000000000000000
[ 94.801787][ T6024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 94.809734][ T6024] R13: 00007f9be4fe5fa0 R14: 00007f9be4fe5fa0 R15: 0000000000000006
[ 94.817689][ T6024]
[ 94.820689][ T6024] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 94.827948][ T6024] CPU: 0 UID: 0 PID: 6024 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 94.837033][ T6024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 94.847066][ T6024] Call Trace:
[ 94.850326][ T6024]
[ 94.853236][ T6024] dump_stack_lvl+0x99/0x250
[ 94.857812][ T6024] ? __asan_memcpy+0x40/0x70
[ 94.862419][ T6024] ? __pfx_dump_stack_lvl+0x10/0x10
[ 94.867596][ T6024] ? __pfx__printk+0x10/0x10
[ 94.872170][ T6024] vpanic+0x237/0x6d0
[ 94.876137][ T6024] ? __pfx_vpanic+0x10/0x10
[ 94.880616][ T6024] ? is_bpf_text_address+0x292/0x2b0
[ 94.885875][ T6024] ? is_bpf_text_address+0x26/0x2b0
[ 94.891055][ T6024] panic+0xb9/0xc0
[ 94.894758][ T6024] ? __pfx_panic+0x10/0x10
[ 94.899153][ T6024] __warn+0x317/0x4b0
[ 94.903115][ T6024] ? sched_change_end+0x4f6/0x640
[ 94.908125][ T6024] ? sched_change_end+0x4f6/0x640
[ 94.913129][ T6024] __report_bug+0x288/0x500
[ 94.917704][ T6024] ? sched_change_end+0x4f6/0x640
[ 94.922706][ T6024] ? __pfx___report_bug+0x10/0x10
[ 94.927711][ T6024] ? rcu_read_lock_sched_held+0x89/0x100
[ 94.933320][ T6024] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 94.939364][ T6024] ? trace_pelt_se_tp+0x39/0x120
[ 94.944287][ T6024] ? sched_change_end+0x4f6/0x640
[ 94.949289][ T6024] report_bug+0x16a/0x220
[ 94.953596][ T6024] ? sched_change_end+0x4f6/0x640
[ 94.958595][ T6024] ? sched_change_end+0x4f8/0x640
[ 94.963596][ T6024] handle_bug+0x98/0x200
[ 94.967815][ T6024] exc_invalid_op+0x1a/0x50
[ 94.972291][ T6024] asm_exc_invalid_op+0x1a/0x20
[ 94.977119][ T6024] RIP: 0010:sched_change_end+0x4f6/0x640
[ 94.982736][ T6024] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 95.002320][ T6024] RSP: 0018:ffffc90003f0f850 EFLAGS: 00010046
[ 95.008365][ T6024] RAX: 1ffff11005a5b7a0 RBX: ffffffff8dba8ed0 RCX: ffffffff8192e20f
[ 95.016319][ T6024] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802d2dbd00
[ 95.024276][ T6024] RBP: ffff88802d2dbfa8 R08: ffff88802d2dbd07 R09: 1ffff11005a5b7a0
[ 95.032226][ T6024] R10: dffffc0000000000 R11: ffffed1005a5b7a1 R12: dffffc0000000000
[ 95.040198][ T6024] R13: ffff88802d2dbd00 R14: ffff8880b873ab00 R15: ffff88802d2dbd00
[ 95.048152][ T6024] ? sched_change_end+0x4af/0x640
[ 95.053161][ T6024] rt_mutex_setprio+0x488/0xb70
[ 95.058013][ T6024] remove_waiter+0x7f5/0xaf0
[ 95.062584][ T6024] ? lockdep_hardirqs_on+0x98/0x140
[ 95.067762][ T6024] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 95.073463][ T6024] futex_lock_pi+0x530/0xa90
[ 95.078037][ T6024] ? __pfx_futex_lock_pi+0x10/0x10
[ 95.083131][ T6024] ? futex_hash+0x40/0x2d0
[ 95.087521][ T6024] ? futex_hash+0x2ad/0x2d0
[ 95.092004][ T6024] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.097270][ T6024] ? __pfx_futex_wake+0x10/0x10
[ 95.102107][ T6024] ? handle_mm_fault+0xdb/0x32b0
[ 95.107030][ T6024] do_futex+0x292/0x420
[ 95.111186][ T6024] ? __pfx_do_futex+0x10/0x10
[ 95.115841][ T6024] __se_sys_futex+0x36f/0x400
[ 95.120496][ T6024] ? __pfx___se_sys_futex+0x10/0x10
[ 95.125672][ T6024] ? __x64_sys_futex+0x21/0xf0
[ 95.130413][ T6024] do_syscall_64+0xfa/0xf80
[ 95.134896][ T6024] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.140961][ T6024] ? clear_bhb_loop+0x60/0xb0
[ 95.145620][ T6024] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.151492][ T6024] RIP: 0033:0x7f9be4d8f749
[ 95.155885][ T6024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 95.175479][ T6024] RSP: 002b:00007fff02e0b758 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.183885][ T6024] RAX: ffffffffffffffda RBX: 00007f9be4fe5fa0 RCX: 00007f9be4d8f749
[ 95.192029][ T6024] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 000020000000cffc
[ 95.200122][ T6024] RBP: 00007f9be4e13f91 R08: 0000000000000000 R09: 0000000000000000
[ 95.208073][ T6024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 95.216023][ T6024] R13: 00007f9be4fe5fa0 R14: 00007f9be4fe5fa0 R15: 0000000000000006
[ 95.223984][ T6024]
[ 96.326695][ T6024] Shutting down cpus with NMI
[ 96.331776][ T6024] Kernel Offset: disabled
[ 96.336092][ T6024] Rebooting in 86400 seconds..