BUG: Dentry still in use in unmount

------------[ cut here ]------------
BUG: Dentry ffff888120250400{i=2,n=binder-control}  still in use (1) [unmount of binder binder]
WARNING: fs/dcache.c:1648 at umount_check+0xaa/0x200 fs/dcache.c:1640, CPU#1: syz-executor/302
Modules linked in:
CPU: 1 UID: 10999 PID: 302 Comm: syz-executor Not tainted syzkaller #0 PREEMPT  164d690e414fa957ac281f6d02950cac2ed3a171
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:umount_check+0x197/0x200 fs/dcache.c:1640
Code: 20 00 74 08 4c 89 ef e8 57 74 ee ff 4d 8b 4d 00 49 81 c7 c0 03 00 00 48 8b 7d c8 48 89 de 48 8b 55 d0 48 89 d9 45 89 f0 41 57 <67> 48 0f b9 3a 48 83 c4 08 31 c0 48 83 c4 10 5b 41 5c 41 5d 41 5e
RSP: 0018:ffffc900012879e8 EFLAGS: 00010286
RAX: 1ffffffff0f864b0 RBX: ffff888120250400 RCX: ffff888120250400
RDX: 0000000000000002 RSI: ffff888120250400 RDI: ffffffff87edb740
RBP: ffffc90001287a28 R08: 0000000000000001 R09: ffffffff8688df80
R10: 0000000000000000 R11: ffffffff8214dc60 R12: dffffc0000000000
R13: ffffffff87c32580 R14: 0000000000000001 R15: ffff888100fc03c0
FS:  0000000000000000(0000) GS:ffff88826e3ef000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fa708616088 CR3: 0000000124ed2000 CR4: 00000000003526b0
Call Trace:
 <TASK>
 d_walk+0x2b9/0x4f0 fs/dcache.c:1355
 do_one_tree+0x2e/0x90 fs/dcache.c:1655
 shrink_dcache_for_umount+0x92/0x140 fs/dcache.c:1671
 generic_shutdown_super+0x6a/0x300 fs/super.c:621
 kill_anon_super+0x4b/0x1d0 fs/super.c:1289
 binderfs_kill_super+0x45/0x60 drivers/android/binder/rust_binderfs.c:750
 deactivate_locked_super+0xd0/0x2b0 fs/super.c:474
 deactivate_super+0xb8/0xe0 fs/super.c:507
 cleanup_mnt+0x49e/0x530 fs/namespace.c:1318
 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1325
 task_work_run+0x1e7/0x260 kernel/task_work.c:233
 exit_task_work include/linux/task_work.h:40 [inline]
 do_exit+0x7aa/0x2170 kernel/exit.c:971
 do_group_exit+0x214/0x2e0 kernel/exit.c:1112
 __do_sys_exit_group kernel/exit.c:1123 [inline]
 __se_sys_exit_group kernel/exit.c:1121 [inline]
 __x64_sys_exit_group+0x43/0x50 kernel/exit.c:1121
 x64_sys_call+0x2fec/0x3000 arch/x86/include/generated/asm/syscalls_64.h:232
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x61/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x76/0x7e
RIP: 0033:0x7fa70839aeb9
Code: Unable to access opcode bytes at 0x7fa70839ae8f.
RSP: 002b:00007ffd3361e068 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa70839aeb9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
RBP: 00007fa708406501 R08: 0000000000000000 R09: 0000000000000002
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
R13: 0000000000000002 R14: 00007ffd3361e5f8 R15: 0000000000000000
 </TASK>
---[ end trace 0000000000000000 ]---
VFS: Busy inodes after unmount of binder (binder)
------------[ cut here ]------------
kernel BUG at fs/super.c:653!
Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
CPU: 0 UID: 10999 PID: 302 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT  164d690e414fa957ac281f6d02950cac2ed3a171
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:generic_shutdown_super+0x2f6/0x300 fs/super.c:651
Code: fc ff df 80 3c 08 00 74 08 4c 89 f7 e8 63 19 f5 ff 49 8b 16 48 81 c3 c0 03 00 00 48 c7 c7 20 7d 3b 86 48 89 de e8 fa 4f 16 ff <0f> 0b 0f 1f 84 00 00 00 00 00 b8 00 00 00 00 90 90 90 90 90 90 90
RSP: 0018:ffffc90001287af8 EFLAGS: 00010246
RAX: 0000000000000031 RBX: ffff888100fc03c0 RCX: 9af1bbf68fe77e00
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
RBP: ffffc90001287b20 R08: ffffc90001287847 R09: 1ffff92000250f08
R10: dffffc0000000000 R11: fffff52000250f09 R12: 0000000000000000
R13: dffffc0000000000 R14: ffffffff87c32580 R15: 1ffff110201f808d
FS:  0000000000000000(0000) GS:ffff88826e2ef000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c005e2c000 CR3: 00000001097e8000 CR4: 00000000003526b0
Call Trace:
 <TASK>
 kill_anon_super+0x4b/0x1d0 fs/super.c:1289
 binderfs_kill_super+0x45/0x60 drivers/android/binder/rust_binderfs.c:750
 deactivate_locked_super+0xd0/0x2b0 fs/super.c:474
 deactivate_super+0xb8/0xe0 fs/super.c:507
 cleanup_mnt+0x49e/0x530 fs/namespace.c:1318
 __cleanup_mnt+0x1d/0x40 fs/namespace.c:1325
 task_work_run+0x1e7/0x260 kernel/task_work.c:233
 exit_task_work include/linux/task_work.h:40 [inline]
 do_exit+0x7aa/0x2170 kernel/exit.c:971
 do_group_exit+0x214/0x2e0 kernel/exit.c:1112
 __do_sys_exit_group kernel/exit.c:1123 [inline]
 __se_sys_exit_group kernel/exit.c:1121 [inline]
 __x64_sys_exit_group+0x43/0x50 kernel/exit.c:1121
 x64_sys_call+0x2fec/0x3000 arch/x86/include/generated/asm/syscalls_64.h:232
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x61/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x76/0x7e
RIP: 0033:0x7fa70839aeb9
Code: Unable to access opcode bytes at 0x7fa70839ae8f.
RSP: 002b:00007ffd3361e068 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa70839aeb9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
RBP: 00007fa708406501 R08: 0000000000000000 R09: 0000000000000002
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
R13: 0000000000000002 R14: 00007ffd3361e5f8 R15: 0000000000000000
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:generic_shutdown_super+0x2f6/0x300 fs/super.c:651
Code: fc ff df 80 3c 08 00 74 08 4c 89 f7 e8 63 19 f5 ff 49 8b 16 48 81 c3 c0 03 00 00 48 c7 c7 20 7d 3b 86 48 89 de e8 fa 4f 16 ff <0f> 0b 0f 1f 84 00 00 00 00 00 b8 00 00 00 00 90 90 90 90 90 90 90
RSP: 0018:ffffc90001287af8 EFLAGS: 00010246
RAX: 0000000000000031 RBX: ffff888100fc03c0 RCX: 9af1bbf68fe77e00
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
RBP: ffffc90001287b20 R08: ffffc90001287847 R09: 1ffff92000250f08
R10: dffffc0000000000 R11: fffff52000250f09 R12: 0000000000000000
R13: dffffc0000000000 R14: ffffffff87c32580 R15: 1ffff110201f808d
FS:  0000000000000000(0000) GS:ffff88826e3ef000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fa708616088 CR3: 000000010477a000 CR4: 00000000003526b0
----------------
Code disassembly (best guess):
   0:	20 00                	and    %al,(%rax)
   2:	74 08                	je     0xc
   4:	4c 89 ef             	mov    %r13,%rdi
   7:	e8 57 74 ee ff       	call   0xffee7463
   c:	4d 8b 4d 00          	mov    0x0(%r13),%r9
  10:	49 81 c7 c0 03 00 00 	add    $0x3c0,%r15
  17:	48 8b 7d c8          	mov    -0x38(%rbp),%rdi
  1b:	48 89 de             	mov    %rbx,%rsi
  1e:	48 8b 55 d0          	mov    -0x30(%rbp),%rdx
  22:	48 89 d9             	mov    %rbx,%rcx
  25:	45 89 f0             	mov    %r14d,%r8d
  28:	41 57                	push   %r15
* 2a:	67 48 0f b9 3a       	ud1    (%edx),%rdi <-- trapping instruction
  2f:	48 83 c4 08          	add    $0x8,%rsp
  33:	31 c0                	xor    %eax,%eax
  35:	48 83 c4 10          	add    $0x10,%rsp
  39:	5b                   	pop    %rbx
  3a:	41 5c                	pop    %r12
  3c:	41 5d                	pop    %r13
  3e:	41 5e                	pop    %r14


Warning: Permanently added '10.128.0.6' (ED25519) to the list of known hosts.
2026/02/01 11:06:28 parsed 1 programs
[   22.848154][   T36] audit: type=1400 audit(1769943988.170:61): avc:  denied  { node_bind } for  pid=290 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   23.683850][   T36] audit: type=1400 audit(1769943989.010:62): avc:  denied  { mounton } for  pid=296 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   23.707309][   T36] audit: type=1400 audit(1769943989.040:63): avc:  denied  { mount } for  pid=296 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   23.708117][  T296] cgroup: Unknown subsys name 'net'
[   23.735322][   T36] audit: type=1400 audit(1769943989.060:64): avc:  denied  { unmount } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   23.735408][  T296] cgroup: Unknown subsys name 'devices'
[   23.920452][  T296] cgroup: Unknown subsys name 'hugetlb'
[   23.926230][  T296] cgroup: Unknown subsys name 'rlimit'
[   24.050030][  T296] cpuset.memory_pressure_enabled is deprecated, use memory.pressure with CONFIG_PSI instead
[   24.070763][   T36] audit: type=1400 audit(1769943989.400:65): avc:  denied  { setattr } for  pid=296 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=189 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   24.094804][   T36] audit: type=1400 audit(1769943989.400:66): avc:  denied  { create } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   24.115921][   T36] audit: type=1400 audit(1769943989.400:67): avc:  denied  { write } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   24.124797][  T300] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   24.136659][   T36] audit: type=1400 audit(1769943989.400:68): avc:  denied  { read } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   24.166759][   T36] audit: type=1400 audit(1769943989.400:69): avc:  denied  { sys_module } for  pid=296 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   24.188550][   T36] audit: type=1400 audit(1769943989.400:70): avc:  denied  { mounton } for  pid=296 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   24.246969][  T296] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   25.006011][  T302] ------------[ cut here ]------------
[   25.011749][  T302] BUG: Dentry ffff888120250400{i=2,n=binder-control}  still in use (1) [unmount of binder binder]
[   25.022541][  T302] WARNING: fs/dcache.c:1648 at umount_check+0xaa/0x200, CPU#1: syz-executor/302
[   25.031738][  T302] Modules linked in:
[   25.035670][  T302] CPU: 1 UID: 10999 PID: 302 Comm: syz-executor Not tainted syzkaller #0 PREEMPT  164d690e414fa957ac281f6d02950cac2ed3a171
[   25.048697][  T302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   25.059161][  T302] RIP: 0010:umount_check+0x197/0x200
[   25.064482][  T302] Code: 20 00 74 08 4c 89 ef e8 57 74 ee ff 4d 8b 4d 00 49 81 c7 c0 03 00 00 48 8b 7d c8 48 89 de 48 8b 55 d0 48 89 d9 45 89 f0 41 57 <67> 48 0f b9 3a 48 83 c4 08 31 c0 48 83 c4 10 5b 41 5c 41 5d 41 5e
[   25.084778][  T302] RSP: 0018:ffffc900012879e8 EFLAGS: 00010286
[   25.091060][  T302] RAX: 1ffffffff0f864b0 RBX: ffff888120250400 RCX: ffff888120250400
[   25.099164][  T302] RDX: 0000000000000002 RSI: ffff888120250400 RDI: ffffffff87edb740
[   25.107652][  T302] RBP: ffffc90001287a28 R08: 0000000000000001 R09: ffffffff8688df80
[   25.115913][  T302] R10: 0000000000000000 R11: ffffffff8214dc60 R12: dffffc0000000000
[   25.124249][  T302] R13: ffffffff87c32580 R14: 0000000000000001 R15: ffff888100fc03c0
[   25.132416][  T302] FS:  0000000000000000(0000) GS:ffff88826e3ef000(0000) knlGS:0000000000000000
[   25.141639][  T302] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   25.148432][  T302] CR2: 00007fa708616088 CR3: 0000000124ed2000 CR4: 00000000003526b0
[   25.156402][  T302] Call Trace:
[   25.159715][  T302]  <TASK>
[   25.162729][  T302]  d_walk+0x2b9/0x4f0
[   25.166725][  T302]  ? __cfi_umount_check+0x10/0x10
[   25.172118][  T302]  do_one_tree+0x2e/0x90
[   25.176469][  T302]  shrink_dcache_for_umount+0x92/0x140
[   25.182105][  T302]  generic_shutdown_super+0x6a/0x300
[   25.187390][  T302]  kill_anon_super+0x4b/0x1d0
[   25.192427][  T302]  binderfs_kill_super+0x45/0x60
[   25.197372][  T302]  deactivate_locked_super+0xd0/0x2b0
[   25.203085][  T302]  deactivate_super+0xb8/0xe0
[   25.207874][  T302]  cleanup_mnt+0x49e/0x530
[   25.212332][  T302]  __cleanup_mnt+0x1d/0x40
[   25.216743][  T302]  task_work_run+0x1e7/0x260
[   25.221434][  T302]  ? __cfi_task_work_run+0x10/0x10
[   25.226714][  T302]  ? nsproxy_free+0x2aa/0x300
[   25.231599][  T302]  ? switch_task_namespaces+0xbb/0x100
[   25.237679][  T302]  do_exit+0x7aa/0x2170
[   25.242159][  T302]  ? __cfi_do_exit+0x10/0x10
[   25.247191][  T302]  ? __kasan_check_write+0x18/0x20
[   25.252520][  T302]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[   25.258162][  T302]  ? __kasan_check_write+0x18/0x20
[   25.263496][  T302]  ? zap_other_threads+0x334/0x370
[   25.268840][  T302]  do_group_exit+0x214/0x2e0
[   25.273525][  T302]  __x64_sys_exit_group+0x43/0x50
[   25.278568][  T302]  x64_sys_call+0x2fec/0x3000
[   25.283356][  T302]  do_syscall_64+0x61/0xf80
[   25.287866][  T302]  ? clear_bhb_loop+0x50/0xa0
[   25.292583][  T302]  ? clear_bhb_loop+0x50/0xa0
[   25.297279][  T302]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   25.303280][  T302] RIP: 0033:0x7fa70839aeb9
[   25.307869][  T302] Code: Unable to access opcode bytes at 0x7fa70839ae8f.
[   25.314955][  T302] RSP: 002b:00007ffd3361e068 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   25.323599][  T302] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa70839aeb9
[   25.332000][  T302] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
[   25.340141][  T302] RBP: 00007fa708406501 R08: 0000000000000000 R09: 0000000000000002
[   25.348213][  T302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[   25.356332][  T302] R13: 0000000000000002 R14: 00007ffd3361e5f8 R15: 0000000000000000
[   25.364450][  T302]  </TASK>
[   25.367991][  T302] ---[ end trace 0000000000000000 ]---
[   25.373804][  T302] VFS: Busy inodes after unmount of binder (binder)
[   25.373885][  T302] ------------[ cut here ]------------
[   25.386314][  T302] kernel BUG at fs/super.c:653!
[   25.391531][  T302] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[   25.397992][  T302] CPU: 0 UID: 10999 PID: 302 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT  164d690e414fa957ac281f6d02950cac2ed3a171
[   25.412484][  T302] Tainted: [W]=WARN
[   25.416310][  T302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   25.426617][  T302] RIP: 0010:generic_shutdown_super+0x2f6/0x300
[   25.432884][  T302] Code: fc ff df 80 3c 08 00 74 08 4c 89 f7 e8 63 19 f5 ff 49 8b 16 48 81 c3 c0 03 00 00 48 c7 c7 20 7d 3b 86 48 89 de e8 fa 4f 16 ff <0f> 0b 0f 1f 84 00 00 00 00 00 b8 00 00 00 00 90 90 90 90 90 90 90
[   25.453081][  T302] RSP: 0018:ffffc90001287af8 EFLAGS: 00010246
[   25.459126][  T302] RAX: 0000000000000031 RBX: ffff888100fc03c0 RCX: 9af1bbf68fe77e00
[   25.467539][  T302] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[   25.475670][  T302] RBP: ffffc90001287b20 R08: ffffc90001287847 R09: 1ffff92000250f08
[   25.483803][  T302] R10: dffffc0000000000 R11: fffff52000250f09 R12: 0000000000000000
[   25.491773][  T302] R13: dffffc0000000000 R14: ffffffff87c32580 R15: 1ffff110201f808d
[   25.500069][  T302] FS:  0000000000000000(0000) GS:ffff88826e2ef000(0000) knlGS:0000000000000000
[   25.509234][  T302] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   25.515880][  T302] CR2: 000000c005e2c000 CR3: 00000001097e8000 CR4: 00000000003526b0
[   25.524002][  T302] Call Trace:
[   25.527344][  T302]  <TASK>
[   25.530363][  T302]  kill_anon_super+0x4b/0x1d0
[   25.535019][  T302]  binderfs_kill_super+0x45/0x60
[   25.539930][  T302]  deactivate_locked_super+0xd0/0x2b0
[   25.545362][  T302]  deactivate_super+0xb8/0xe0
[   25.550102][  T302]  cleanup_mnt+0x49e/0x530
[   25.554506][  T302]  __cleanup_mnt+0x1d/0x40
[   25.558894][  T302]  task_work_run+0x1e7/0x260
[   25.563466][  T302]  ? __cfi_task_work_run+0x10/0x10
[   25.568546][  T302]  ? nsproxy_free+0x2aa/0x300
[   25.573193][  T302]  ? switch_task_namespaces+0xbb/0x100
[   25.578732][  T302]  do_exit+0x7aa/0x2170
[   25.583030][  T302]  ? __cfi_do_exit+0x10/0x10
[   25.587703][  T302]  ? __kasan_check_write+0x18/0x20
[   25.592976][  T302]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[   25.598671][  T302]  ? __kasan_check_write+0x18/0x20
[   25.603757][  T302]  ? zap_other_threads+0x334/0x370
[   25.608949][  T302]  do_group_exit+0x214/0x2e0
[   25.613606][  T302]  __x64_sys_exit_group+0x43/0x50
[   25.618781][  T302]  x64_sys_call+0x2fec/0x3000
[   25.623447][  T302]  do_syscall_64+0x61/0xf80
[   25.628112][  T302]  ? clear_bhb_loop+0x50/0xa0
[   25.632975][  T302]  ? clear_bhb_loop+0x50/0xa0
[   25.637624][  T302]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   25.643586][  T302] RIP: 0033:0x7fa70839aeb9
[   25.648236][  T302] Code: Unable to access opcode bytes at 0x7fa70839ae8f.
[   25.655400][  T302] RSP: 002b:00007ffd3361e068 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   25.664140][  T302] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa70839aeb9
[   25.672184][  T302] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
[   25.680478][  T302] RBP: 00007fa708406501 R08: 0000000000000000 R09: 0000000000000002
[   25.688424][  T302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[   25.696563][  T302] R13: 0000000000000002 R14: 00007ffd3361e5f8 R15: 0000000000000000
[   25.704645][  T302]  </TASK>
[   25.707728][  T302] Modules linked in:
[   25.711774][  T302] ---[ end trace 0000000000000000 ]---
[   25.717523][  T302] RIP: 0010:generic_shutdown_super+0x2f6/0x300
[   25.723893][  T302] Code: fc ff df 80 3c 08 00 74 08 4c 89 f7 e8 63 19 f5 ff 49 8b 16 48 81 c3 c0 03 00 00 48 c7 c7 20 7d 3b 86 48 89 de e8 fa 4f 16 ff <0f> 0b 0f 1f 84 00 00 00 00 00 b8 00 00 00 00 90 90 90 90 90 90 90
[   25.744236][  T302] RSP: 0018:ffffc90001287af8 EFLAGS: 00010246
[   25.750667][  T302] RAX: 0000000000000031 RBX: ffff888100fc03c0 RCX: 9af1bbf68fe77e00
[   25.759352][  T302] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[   25.767423][  T302] RBP: ffffc90001287b20 R08: ffffc90001287847 R09: 1ffff92000250f08
[   25.775884][  T302] R10: dffffc0000000000 R11: fffff52000250f09 R12: 0000000000000000
[   25.784081][  T302] R13: dffffc0000000000 R14: ffffffff87c32580 R15: 1ffff110201f808d
[   25.792379][  T302] FS:  0000000000000000(0000) GS:ffff88826e3ef000(0000) knlGS:0000000000000000
[   25.801882][  T302] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   25.809052][  T302] CR2: 00007fa708616088 CR3: 000000010477a000 CR4: 00000000003526b0
[   25.817304][  T302] Kernel panic - not syncing: Fatal exception
[   25.824058][  T302] Kernel Offset: disabled
[   25.828662][  T302] Rebooting in 86400 seconds..


syzkaller build log:
go env (err=<nil>)
AR='ar'
CC='gcc'
CGO_CFLAGS='-O2 -g'
CGO_CPPFLAGS=''
CGO_CXXFLAGS='-O2 -g'
CGO_ENABLED='1'
CGO_FFLAGS='-O2 -g'
CGO_LDFLAGS='-O2 -g'
CXX='g++'
GCCGO='gccgo'
GO111MODULE='auto'
GOAMD64='v1'
GOARCH='amd64'
GOAUTH='netrc'
GOBIN=''
GOCACHE='/syzkaller/.cache/go-build'
GOCACHEPROG=''
GODEBUG=''
GOENV='/syzkaller/.config/go/env'
GOEXE=''
GOEXPERIMENT=''
GOFIPS140='off'
GOFLAGS=''
GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build236555078=/tmp/go-build -gno-record-gcc-switches'
GOHOSTARCH='amd64'
GOHOSTOS='linux'
GOINSECURE=''
GOMOD='/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/go.mod'
GOMODCACHE='/syzkaller/jobs-2/linux/gopath/pkg/mod'
GONOPROXY=''
GONOSUMDB=''
GOOS='linux'
GOPATH='/syzkaller/jobs-2/linux/gopath'
GOPRIVATE=''
GOPROXY='https://proxy.golang.org,direct'
GOROOT='/usr/local/go'
GOSUMDB='sum.golang.org'
GOTELEMETRY='local'
GOTELEMETRYDIR='/syzkaller/.config/go/telemetry'
GOTMPDIR=''
GOTOOLCHAIN='auto'
GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64'
GOVCS=''
GOVERSION='go1.24.4'
GOWORK=''
PKG_CONFIG='pkg-config'

git status (err=<nil>)
HEAD detached at 6b8752f20c
nothing to commit, working tree clean


tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
go list -f '{{.Stale}}' -ldflags="-s -w -X github.com/google/syzkaller/prog.GitRevision=6b8752f20c06eee857545047ab920e63322bf4c8 -X github.com/google/syzkaller/prog.gitRevisionDate=20260131-204520"  ./sys/syz-sysgen | grep -q false || go install -ldflags="-s -w -X github.com/google/syzkaller/prog.GitRevision=6b8752f20c06eee857545047ab920e63322bf4c8 -X github.com/google/syzkaller/prog.gitRevisionDate=20260131-204520"  ./sys/syz-sysgen
make .descriptions
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
bin/syz-sysgen
touch .descriptions
GOOS=linux GOARCH=amd64 go build -ldflags="-s -w -X github.com/google/syzkaller/prog.GitRevision=6b8752f20c06eee857545047ab920e63322bf4c8 -X github.com/google/syzkaller/prog.gitRevisionDate=20260131-204520"  -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog
mkdir -p ./bin/linux_amd64
g++ -o ./bin/linux_amd64/syz-executor executor/executor.cc \
	-m64 -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -std=c++17 -I. -Iexecutor/_include   -DGOOS_linux=1 -DGOARCH_amd64=1 \
	-DHOSTGOOS_linux=1 -DGIT_REVISION=\"6b8752f20c06eee857545047ab920e63322bf4c8\"
/usr/bin/ld: /tmp/ccHNzNGn.o: in function `Connection::Connect(char const*, char const*)':
executor.cc:(.text._ZN10Connection7ConnectEPKcS1_[_ZN10Connection7ConnectEPKcS1_]+0x386): warning: Using 'gethostbyname' in statically linked applications requires at runtime the shared libraries from the glibc version used for linking
./tools/check-syzos.sh 2>/dev/null