Warning: Permanently added '10.128.1.25' (ED25519) to the list of known hosts.
1970/01/01 00:00:35 ignoring optional flag "sandboxArg"="0"
1970/01/01 00:00:36 parsed 1 programs
syzkaller login: [   38.581104][ T4298] cgroup: Unknown subsys name 'net'
[   38.837263][ T4298] cgroup: Unknown subsys name 'rlimit'
[   39.164384][ T4298] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   49.742991][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.745260][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.748463][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   49.763219][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.765437][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.768369][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   50.757213][ T4358] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   50.760371][ T4358] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   50.764091][ T4358] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   50.766963][ T4358] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   50.769502][ T4358] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   50.772156][ T4358] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   51.029929][ T4362] chnl_net:caif_netlink_parms(): no params data found
[   51.097748][ T4362] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.099738][ T4362] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.103038][ T4362] device bridge_slave_0 entered promiscuous mode
[   51.107280][ T4362] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.109181][ T4362] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.112015][ T4362] device bridge_slave_1 entered promiscuous mode
[   51.135269][ T4362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   51.139309][ T4362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   51.152854][ T4362] team0: Port device team_slave_0 added
[   51.155812][ T4362] team0: Port device team_slave_1 added
[   51.168894][ T4362] batman_adv: batadv0: Adding interface: batadv_slave_0
[   51.170747][ T4362] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.177944][ T4362] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   51.190474][ T4362] batman_adv: batadv0: Adding interface: batadv_slave_1
[   51.192596][ T4362] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.199585][ T4362] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   51.253246][ T4362] device hsr_slave_0 entered promiscuous mode
[   51.292519][ T4362] device hsr_slave_1 entered promiscuous mode
[   51.763305][ T4362] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   52.110671][ T4362] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   52.143620][ T4362] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   52.256004][ T4362] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   52.367912][ T4362] 8021q: adding VLAN 0 to HW filter on device bond0
[   52.585778][ T4362] 8021q: adding VLAN 0 to HW filter on device team0
[   52.593002][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   52.596277][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   52.599193][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   52.601962][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   52.605082][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.607103][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.610156][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   52.613569][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   52.616228][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.618140][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.620544][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   52.634603][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   52.638276][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   52.641635][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   52.644915][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   52.647909][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   52.658396][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   52.662563][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   52.669093][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   52.673040][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   52.679765][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   52.684633][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   52.690446][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   52.785032][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   52.787182][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   52.795248][ T4362] 8021q: adding VLAN 0 to HW filter on device batadv0
[   52.808757][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   52.812785][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   52.825201][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   52.828060][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   52.833377][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   52.835929][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   52.839819][ T4362] device veth0_vlan entered promiscuous mode
[   52.846255][ T4362] device veth1_vlan entered promiscuous mode
[   52.859621][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   52.863640][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   52.867200][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   52.870050][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   52.875783][ T4362] device veth0_macvtap entered promiscuous mode
[   52.879984][ T4362] device veth1_macvtap entered promiscuous mode
[   52.892793][ T4362] batman_adv: batadv0: Interface activated: batadv_slave_0
[   52.897063][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   52.899819][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   52.907258][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   52.910727][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   52.916525][ T4362] batman_adv: batadv0: Interface activated: batadv_slave_1
[   52.918500][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   52.922671][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   52.929950][ T4362] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.933108][ T4362] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.935460][ T4362] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.937683][ T4362] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
1970/01/01 00:00:53 executed programs: 0
[   53.367615][   T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   53.370922][   T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   53.374203][   T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   53.376865][   T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   53.379575][   T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   53.383812][   T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   53.497445][ T4386] chnl_net:caif_netlink_parms(): no params data found
[   53.539343][ T4386] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.543641][ T4386] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.546195][ T4386] device bridge_slave_0 entered promiscuous mode
[   53.552144][ T4386] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.554011][ T4386] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.556501][ T4386] device bridge_slave_1 entered promiscuous mode
[   53.573508][ T4386] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.577736][ T4386] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.607297][ T4386] team0: Port device team_slave_0 added
[   53.610500][ T4386] team0: Port device team_slave_1 added
[   53.622073][ T4386] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.624022][ T4386] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.630773][ T4386] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.637451][ T4386] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.639365][ T4386] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.646493][ T4386] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.723252][ T4386] device hsr_slave_0 entered promiscuous mode
[   53.771569][ T4386] device hsr_slave_1 entered promiscuous mode
[   53.811503][ T4386] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   53.813851][ T4386] Cannot create hsr debugfs directory
[   53.974127][ T4386] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.462063][ T4358] Bluetooth: hci0: command 0x0409 tx timeout
[   56.096566][ T4386] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.551277][ T4358] Bluetooth: hci0: command 0x041b tx timeout
[   58.242905][ T4386] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.345767][ T4386] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.647632][ T4386] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   58.683604][ T4386] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   58.806003][ T4386] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   58.904745][ T4386] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   59.057482][   T11] device hsr_slave_0 left promiscuous mode
[   59.081708][   T11] device hsr_slave_1 left promiscuous mode
[   59.171663][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.173825][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.176732][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.178818][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.181419][   T11] device bridge_slave_1 left promiscuous mode
[   59.183913][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.233210][   T11] device bridge_slave_0 left promiscuous mode
[   59.235259][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.381758][   T11] device veth1_macvtap left promiscuous mode
[   59.383646][   T11] device veth0_macvtap left promiscuous mode
[   59.385696][   T11] device veth1_vlan left promiscuous mode
[   59.387433][   T11] device veth0_vlan left promiscuous mode
[   59.631340][ T4358] Bluetooth: hci0: command 0x040f tx timeout
[   61.213860][   T11] team0 (unregistering): Port device team_slave_1 removed
[   61.372277][   T11] team0 (unregistering): Port device team_slave_0 removed
[   61.562261][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   61.701347][ T4358] Bluetooth: hci0: command 0x0419 tx timeout
[   61.812047][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   64.192986][   T11] bond0 (unregistering): Released all slaves
[   64.437799][ T4386] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.444182][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   64.446664][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   64.452749][ T4386] 8021q: adding VLAN 0 to HW filter on device team0
[   64.457138][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   64.459858][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   64.462930][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.464810][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.468884][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   64.477024][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   64.479894][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   64.482770][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.484662][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[   64.489158][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   64.503148][ T2060] ieee802154 phy0 wpan0: encryption failed: -22
[   64.505041][ T2060] ieee802154 phy1 wpan1: encryption failed: -22
[   64.506139][ T4386] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   64.509509][ T4386] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   64.515031][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   64.517929][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   64.521968][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   64.525128][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   64.527965][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   64.530672][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   64.535623][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   64.538428][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   64.541899][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   64.544636][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   64.547365][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   64.645422][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   64.647576][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   64.654055][ T4386] 8021q: adding VLAN 0 to HW filter on device batadv0
[   64.664600][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   64.667720][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   64.679252][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   64.682171][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   64.685681][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   64.688264][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   64.693451][ T4386] device veth0_vlan entered promiscuous mode
[   64.699853][ T4386] device veth1_vlan entered promiscuous mode
[   64.713588][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   64.716359][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   64.718982][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   64.722256][ T4397] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   64.727553][ T4386] device veth0_macvtap entered promiscuous mode
[   64.733969][ T4386] device veth1_macvtap entered promiscuous mode
[   64.743607][ T4386] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.745822][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   64.748684][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   64.757240][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   64.760391][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   64.768197][ T4386] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.770364][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   64.773347][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   64.778074][ T4386] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.780477][ T4386] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.784016][ T4386] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.786418][ T4386] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.830571][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.832927][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.836199][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   64.849966][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.852923][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.856360][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:01:04 executed programs: 2
[   92.191159][    C1] watchdog: BUG: soft lockup - CPU#1 stuck for 26s! [kworker/u4:0:9]
[   92.193925][    C1] Modules linked in:
[   92.195015][    C1] irq event stamp: 545616
[   92.196221][    C1] hardirqs last  enabled at (545615): [<ffff80001231cd40>] exit_to_kernel_mode+0xe8/0x118
[   92.198866][    C1] hardirqs last disabled at (545616): [<ffff80001231aa1c>] el1_interrupt+0x24/0x68
[   92.201427][    C1] softirqs last  enabled at (541198): [<ffff8000081c40ac>] handle_softirqs+0xb84/0xd58
[   92.204092][    C1] softirqs last disabled at (541145): [<ffff800008020174>] __do_softirq+0x14/0x20
[   92.206638][    C1] CPU: 1 PID: 9 Comm: kworker/u4:0 Not tainted 6.1.134-syzkaller #0
[   92.208800][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   92.211519][    C1] Workqueue: events_unbound toggle_allocation_gate
[   92.213372][    C1] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[   92.215375][    C1] pc : smp_call_function_many_cond+0x20f8/0x32b8
[   92.217054][    C1] lr : smp_call_function_many_cond+0x2110/0x32b8
[   92.218734][    C1] sp : ffff80001d2b7520
[   92.219825][    C1] x29: ffff80001d2b7890 x28: 1fffe0003679f428 x27: ffff800015af1148
[   92.221913][    C1] x26: ffff80001d2b7688 x25: ffff0001b3cdf2c8 x24: 0000000000000000
[   92.223982][    C1] x23: dfff800000000000 x22: ffff0001b3cfa148 x21: 0000000000000011
[   92.226029][    C1] x20: ffff80001d2b7680 x19: ffff0001b3cfa140 x18: 1fffe0003679cb76
[   92.228110][    C1] x17: ffff800015aed000 x16: ffff80001231ec4c x15: 0000000000000000
[   92.230192][    C1] x14: 1ffff00002b5e0b2 x13: dfff800000000000 x12: 0000000000000001
[   92.232259][    C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 0000000000000000
[   92.234368][    C1] x8 : 0000000000000011 x7 : 0000000000000000 x6 : 0000000000000000
[   92.236484][    C1] x5 : 0000000000000080 x4 : 0000000000000000 x3 : ffff80000844b4bc
[   92.238750][    C1] x2 : 0000000000000000 x1 : 0000000000000004 x0 : 0000000000000001
[   92.240928][    C1] Call trace:
[   92.241810][    C1]  smp_call_function_many_cond+0x20f8/0x32b8
[   92.243396][    C1]  kick_all_cpus_sync+0x40/0xa0
[   92.244737][    C1]  arch_jump_label_transform_apply+0x14/0x20
[   92.246422][    C1]  __jump_label_update+0x30c/0x334
[   92.247778][    C1]  jump_label_update+0x30c/0x3bc
[   92.249104][    C1]  static_key_enable_cpuslocked+0x140/0x230
[   92.250697][    C1]  static_key_enable+0x24/0x38
[   92.251993][    C1]  toggle_allocation_gate+0xcc/0x448
[   92.253417][    C1]  process_one_work+0x804/0x1484
[   92.254699][    C1]  worker_thread+0x8e4/0xfec
[   92.255986][    C1]  kthread+0x250/0x2d8
[   92.257122][    C1]  ret_from_fork+0x10/0x20
[   92.258324][    C1] Kernel panic - not syncing: softlockup: hung tasks
[   92.260193][    C1] CPU: 1 PID: 9 Comm: kworker/u4:0 Tainted: G             L     6.1.134-syzkaller #0
[   92.262851][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   92.265707][    C1] Workqueue: events_unbound toggle_allocation_gate
[   92.267554][    C1] Call trace:
[   92.268444][    C1]  dump_backtrace+0x1c8/0x1f4
[   92.269852][    C1]  show_stack+0x2c/0x3c
[   92.270997][    C1]  dump_stack_lvl+0x108/0x170
[   92.272234][    C1]  dump_stack+0x1c/0x105c
[   92.273367][    C1]  panic+0x300/0x804
[   92.274372][    C1]  softlockup_fn+0x0/0x120
[   92.275548][    C1]  __hrtimer_run_queues+0x484/0xdc0
[   92.276928][    C1]  hrtimer_interrupt+0x2c0/0xb64
[   92.278229][    C1]  arch_timer_handler_virt+0x74/0x88
[   92.279660][    C1]  handle_percpu_devid_irq+0x174/0x354
[   92.281132][    C1]  generic_handle_domain_irq+0xe0/0x140
[   92.282633][    C1]  gic_handle_irq+0x70/0x1e4
[   92.283826][    C1]  call_on_irq_stack+0x24/0x4c
[   92.285076][    C1]  do_interrupt_handler+0xd4/0x138
[   92.286418][    C1]  el1_interrupt+0x34/0x68
[   92.287577][    C1]  el1h_64_irq_handler+0x18/0x24
[   92.288879][    C1]  el1h_64_irq+0x64/0x68
[   92.289983][    C1]  smp_call_function_many_cond+0x20f8/0x32b8
[   92.291559][    C1]  kick_all_cpus_sync+0x40/0xa0
[   92.292860][    C1]  arch_jump_label_transform_apply+0x14/0x20
[   92.294496][    C1]  __jump_label_update+0x30c/0x334
[   92.295828][    C1]  jump_label_update+0x30c/0x3bc
[   92.297106][    C1]  static_key_enable_cpuslocked+0x140/0x230
[   92.298696][    C1]  static_key_enable+0x24/0x38
[   92.300025][    C1]  toggle_allocation_gate+0xcc/0x448
[   92.301479][    C1]  process_one_work+0x804/0x1484
[   92.302860][    C1]  worker_thread+0x8e4/0xfec
[   92.304128][    C1]  kthread+0x250/0x2d8
[   92.305286][    C1]  ret_from_fork+0x10/0x20
[   92.306495][    C1] SMP: stopping secondary CPUs
[   93.394476][    C1] SMP: failed to stop secondary CPUs 0-1
[   93.396095][    C1] Kernel Offset: disabled
[   93.397240][    C1] CPU features: 0x080000,02070084,26017203
[   93.398756][    C1] Memory Limit: none
[   93.413972][    C1] 
[   93.414586][    C1] ================================
[   93.415930][    C1] WARNING: inconsistent lock state
[   93.417260][    C1] 6.1.134-syzkaller #0 Tainted: G             L    
[   93.419017][    C1] --------------------------------
[   93.420368][    C1] inconsistent {HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage.
[   93.422160][    C1] kworker/u4:0/9 [HC1[1]:SC0[0]:HE0:SE1] takes:
[   93.423813][    C1] ffff800015b314f8 (efi_rt_lock){?...}-{2:2}, at: virt_efi_set_variable_nonblocking+0x74/0x16c
[   93.426573][    C1] {HARDIRQ-ON-W} state was registered at:
[   93.428066][    C1]   lock_acquire+0x26c/0x7cc
[   93.429302][    C1]   _raw_spin_lock+0x54/0x6c
[   93.430483][    C1]   efi_call_rts+0x280/0x9d8
[   93.431661][    C1]   process_one_work+0x804/0x1484
[   93.432990][    C1]   worker_thread+0x8e4/0xfec
[   93.434211][    C1]   kthread+0x250/0x2d8
[   93.435403][    C1]   ret_from_fork+0x10/0x20
[   93.436627][    C1] irq event stamp: 545616
[   93.437806][    C1] hardirqs last  enabled at (545615): [<ffff80001231cd40>] exit_to_kernel_mode+0xe8/0x118
[   93.440515][    C1] hardirqs last disabled at (545616): [<ffff80001231aa1c>] el1_interrupt+0x24/0x68
[   93.443000][    C1] softirqs last  enabled at (541198): [<ffff8000081c40ac>] handle_softirqs+0xb84/0xd58
[   93.445574][    C1] softirqs last disabled at (541145): [<ffff800008020174>] __do_softirq+0x14/0x20
[   93.448012][    C1] 
[   93.448012][    C1] other info that might help us debug this:
[   93.450130][    C1]  Possible unsafe locking scenario:
[   93.450130][    C1] 
[   93.452147][    C1]        CPU0
[   93.453061][    C1]        ----
[   93.453908][    C1]   lock(efi_rt_lock);
[   93.455011][    C1]   <Interrupt>
[   93.455959][    C1]     lock(efi_rt_lock);
[   93.457153][    C1] 
[   93.457153][    C1]  *** DEADLOCK ***
[   93.457153][    C1] 
[   93.459373][    C1] 6 locks held by kworker/u4:0/9:
[   93.460850][    C1]  #0: ffff0000c0029138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1484
[   93.463985][    C1]  #1: ffff80001d2b7c20 ((work_completion)(&(&kfence_timer)->work)){+.+.}-{0:0}, at: process_one_work+0x6fc/0x1484
[   93.467357][    C1]  #2: ffff800015b66fd0 (cpu_hotplug_lock){++++}-{0:0}, at: static_key_enable+0x1c/0x38
[   93.470193][    C1]  #3: ffff800015d555e8 (jump_label_mutex){+.+.}-{3:3}, at: static_key_enable_cpuslocked+0xe8/0x230
[   93.473454][    C1]  #4: ffff800015cc78a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c
[   93.476107][    C1]  #5: ffff800017bae4c8 (&psinfo->buf_lock){....}-{2:2}, at: pstore_dump+0x188/0x9f4
[   93.478656][    C1] 
[   93.478656][    C1] stack backtrace:
[   93.480251][    C1] CPU: 1 PID: 9 Comm: kworker/u4:0 Tainted: G             L     6.1.134-syzkaller #0
[   93.482916][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   93.485678][    C1] Workqueue: events_unbound toggle_allocation_gate
[   93.487419][    C1] Call trace:
[   93.488316][    C1]  dump_backtrace+0x1c8/0x1f4
[   93.489613][    C1]  show_stack+0x2c/0x3c
[   93.490899][    C1]  dump_stack_lvl+0x108/0x170
[   93.492308][    C1]  dump_stack+0x1c/0x105c
[   93.493600][    C1]  print_usage_bug+0x654/0x9b0
[   93.495090][    C1]  mark_lock_irq+0x980/0xd2c
[   93.496362][    C1]  mark_lock+0x258/0x360
[   93.497478][    C1]  __lock_acquire+0xb4c/0x7680
[   93.498740][    C1]  lock_acquire+0x26c/0x7cc
[   93.500215][    C1]  _raw_spin_lock+0x54/0x6c
[   93.501430][    C1]  virt_efi_set_variable_nonblocking+0x74/0x16c
[   93.503195][    C1]  efivar_set_variable_locked+0x1e4/0x20c
[   93.504677][    C1]  efi_pstore_write+0x424/0x64c
[   93.505976][    C1]  pstore_dump+0x6c0/0x9f4
[   93.507160][    C1]  kmsg_dump+0x17c/0x26c
[   93.508400][    C1]  panic+0x348/0x804
[   93.509565][    C1]  softlockup_fn+0x0/0x120
[   93.510754][    C1]  __hrtimer_run_queues+0x484/0xdc0
[   93.512163][    C1]  hrtimer_interrupt+0x2c0/0xb64
[   93.513602][    C1]  arch_timer_handler_virt+0x74/0x88
[   93.515069][    C1]  handle_percpu_devid_irq+0x174/0x354
[   93.516527][    C1]  generic_handle_domain_irq+0xe0/0x140
[   93.518119][    C1]  gic_handle_irq+0x70/0x1e4
[   93.519531][    C1]  call_on_irq_stack+0x24/0x4c
[   93.520898][    C1]  do_interrupt_handler+0xd4/0x138
[   93.522374][    C1]  el1_interrupt+0x34/0x68
[   93.523681][    C1]  el1h_64_irq_handler+0x18/0x24
[   93.524976][    C1]  el1h_64_irq+0x64/0x68
[   93.526143][    C1]  smp_call_function_many_cond+0x20f8/0x32b8
[   93.527707][    C1]  kick_all_cpus_sync+0x40/0xa0
[   93.529004][    C1]  arch_jump_label_transform_apply+0x14/0x20
[   93.530616][    C1]  __jump_label_update+0x30c/0x334
[   93.532053][    C1]  jump_label_update+0x30c/0x3bc
[   93.533485][    C1]  static_key_enable_cpuslocked+0x140/0x230
[   93.535119][    C1]  static_key_enable+0x24/0x38
[   93.536490][    C1]  toggle_allocation_gate+0xcc/0x448
[   93.537953][    C1]  process_one_work+0x804/0x1484
[   93.539270][    C1]  worker_thread+0x8e4/0xfec
[   93.540578][    C1]  kthread+0x250/0x2d8
[   93.541649][    C1]  ret_from_fork+0x10/0x20
[   93.882403][    C1] Rebooting in 86400 seconds..