Warning: Permanently added '10.128.0.104' (ED25519) to the list of known hosts.
2025/11/28 11:27:39 parsed 1 programs
[ 118.759403][ T6153] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 122.263619][ T6184] chnl_net:caif_netlink_parms(): no params data found
[ 122.356037][ T6184] bridge0: port 1(bridge_slave_0) entered blocking state
[ 122.363543][ T6184] bridge0: port 1(bridge_slave_0) entered disabled state
[ 122.371543][ T6184] bridge_slave_0: entered allmulticast mode
[ 122.379373][ T6184] bridge_slave_0: entered promiscuous mode
[ 122.388327][ T6184] bridge0: port 2(bridge_slave_1) entered blocking state
[ 122.395801][ T6184] bridge0: port 2(bridge_slave_1) entered disabled state
[ 122.403723][ T6184] bridge_slave_1: entered allmulticast mode
[ 122.411221][ T6184] bridge_slave_1: entered promiscuous mode
[ 122.442655][ T6184] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 122.455106][ T6184] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 122.490651][ T6184] team0: Port device team_slave_0 added
[ 122.500427][ T6184] team0: Port device team_slave_1 added
[ 122.528924][ T6184] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 122.535957][ T6184] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 122.562206][ T6184] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 122.574504][ T6184] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 122.582412][ T6184] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 122.608522][ T6184] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 122.650031][ T6184] hsr_slave_0: entered promiscuous mode
[ 122.656353][ T6184] hsr_slave_1: entered promiscuous mode
[ 123.135718][ T6184] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 123.147244][ T6184] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 123.164026][ T6184] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 123.177450][ T6184] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 123.297772][ T6184] 8021q: adding VLAN 0 to HW filter on device bond0
[ 123.338551][ T6184] 8021q: adding VLAN 0 to HW filter on device team0
[ 123.354725][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[ 123.361991][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 123.381169][ T50] bridge0: port 2(bridge_slave_1) entered blocking state
[ 123.388455][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 123.661978][ T6184] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 123.728159][ T6184] veth0_vlan: entered promiscuous mode
[ 123.743231][ T6184] veth1_vlan: entered promiscuous mode
[ 123.782358][ T6184] veth0_macvtap: entered promiscuous mode
[ 123.796412][ T6184] veth1_macvtap: entered promiscuous mode
[ 123.825121][ T6184] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 123.843485][ T6184] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 123.859901][ T50] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.869421][ T50] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.879128][ T50] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.897262][ T50] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 124.074253][ T50] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 124.158075][ T50] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 124.216440][ T50] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 124.306190][ T50] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 124.345196][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 124.361405][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 124.369388][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 124.378388][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 124.386439][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 124.718251][ T1147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.731079][ T1147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 124.770502][ T2983] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.778361][ T2983] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.526181][ T50] bridge_slave_1: left allmulticast mode
[ 126.549867][ T50] bridge_slave_1: left promiscuous mode
[ 126.555753][ T50] bridge0: port 2(bridge_slave_1) entered disabled state
[ 126.570968][ T50] bridge_slave_0: left allmulticast mode
[ 126.576654][ T50] bridge_slave_0: left promiscuous mode
[ 126.600043][ T50] bridge0: port 1(bridge_slave_0) entered disabled state
2025/11/28 11:27:52 executed programs: 0
[ 127.095829][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 127.107958][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 127.119948][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 127.127949][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 127.135869][ T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 127.145182][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 127.153057][ T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 127.182501][ T50] bond0 (unregistering): Released all slaves
[ 127.339717][ T50] hsr_slave_0: left promiscuous mode
[ 127.346171][ T50] hsr_slave_1: left promiscuous mode
[ 127.352935][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 127.363867][ T50] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 127.372482][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 127.383613][ T50] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 127.404320][ T50] veth1_macvtap: left promiscuous mode
[ 127.409987][ T50] veth0_macvtap: left promiscuous mode
[ 127.415692][ T50] veth1_vlan: left promiscuous mode
[ 127.421734][ T50] veth0_vlan: left promiscuous mode
[ 127.878367][ T50] team0 (unregistering): Port device team_slave_1 removed
[ 127.915210][ T50] team0 (unregistering): Port device team_slave_0 removed
[ 128.277854][ T6353] chnl_net:caif_netlink_parms(): no params data found
[ 128.467777][ T6353] bridge0: port 1(bridge_slave_0) entered blocking state
[ 128.476538][ T6353] bridge0: port 1(bridge_slave_0) entered disabled state
[ 128.483941][ T6353] bridge_slave_0: entered allmulticast mode
[ 128.492001][ T6353] bridge_slave_0: entered promiscuous mode
[ 128.509635][ T6353] bridge0: port 2(bridge_slave_1) entered blocking state
[ 128.518003][ T6353] bridge0: port 2(bridge_slave_1) entered disabled state
[ 128.527504][ T6353] bridge_slave_1: entered allmulticast mode
[ 128.535570][ T6353] bridge_slave_1: entered promiscuous mode
[ 128.985478][ T6353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 129.027555][ T6353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 129.209852][ T6353] team0: Port device team_slave_0 added
[ 129.224356][ T6353] team0: Port device team_slave_1 added
[ 129.230181][ T5147] Bluetooth: hci0: command tx timeout
[ 129.362885][ T6353] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 129.370040][ T6353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 129.399542][ T6353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 129.414013][ T6353] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 129.422103][ T6353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 129.449149][ T6353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 129.584718][ T6353] hsr_slave_0: entered promiscuous mode
[ 129.597822][ T6353] hsr_slave_1: entered promiscuous mode
[ 130.147207][ T6353] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 130.161535][ T6353] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 130.174439][ T6353] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 130.187072][ T6353] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 130.282918][ T6353] 8021q: adding VLAN 0 to HW filter on device bond0
[ 130.314961][ T6353] 8021q: adding VLAN 0 to HW filter on device team0
[ 130.328894][ T50] bridge0: port 1(bridge_slave_0) entered blocking state
[ 130.336156][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 130.362364][ T50] bridge0: port 2(bridge_slave_1) entered blocking state
[ 130.369666][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 130.619356][ T6353] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 130.697620][ T6353] veth0_vlan: entered promiscuous mode
[ 130.720370][ T6353] veth1_vlan: entered promiscuous mode
[ 130.746922][ T6353] veth0_macvtap: entered promiscuous mode
[ 130.759403][ T6353] veth1_macvtap: entered promiscuous mode
[ 130.776722][ T6353] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 130.793402][ T6353] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 130.808168][ T50] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 130.817289][ T50] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 130.828601][ T50] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 130.838825][ T50] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 130.894437][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.907465][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.933611][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.942194][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/11/28 11:28:11 executed programs: 3
2025/11/28 11:28:16 executed programs: 9
2025/11/28 11:28:21 executed programs: 15
2025/11/28 11:28:26 executed programs: 21
2025/11/28 11:28:31 executed programs: 27
2025/11/28 11:28:36 executed programs: 33
2025/11/28 11:28:42 executed programs: 39
2025/11/28 11:28:47 executed programs: 45
2025/11/28 11:28:52 executed programs: 51
2025/11/28 11:28:57 executed programs: 57
2025/11/28 11:29:02 executed programs: 63
2025/11/28 11:29:07 executed programs: 69
2025/11/28 11:29:12 executed programs: 75
2025/11/28 11:29:17 executed programs: 81
2025/11/28 11:29:22 executed programs: 87
2025/11/28 11:29:27 executed programs: 93
2025/11/28 11:29:32 executed programs: 99
2025/11/28 11:29:37 executed programs: 105
2025/11/28 11:29:42 executed programs: 111
2025/11/28 11:29:48 executed programs: 117
2025/11/28 11:29:53 executed programs: 123
2025/11/28 11:29:58 executed programs: 129
2025/11/28 11:30:03 executed programs: 135
2025/11/28 11:30:08 executed programs: 141
2025/11/28 11:30:13 executed programs: 147
2025/11/28 11:30:18 executed programs: 153
2025/11/28 11:30:23 executed programs: 159
[ 130.984753][ T5992]
[ 130.984767][ T5992] ======================================================
[ 130.984773][ T5992] WARNING: possible circular locking dependency detected
[ 130.984781][ T5992] syzkaller #0 Not tainted
[ 130.984787][ T5992] ------------------------------------------------------
[ 130.984791][ T5992] kworker/0:5/5992 is trying to acquire lock:
[ 130.984797][ T5992] ffff88813fec10b8 (&buf->lock){+.+.}-{4:4}, at: tty_buffer_flush+0x74/0x2b0
[ 130.984838][ T5992]
[ 130.984838][ T5992] but task is already holding lock:
[ 130.984841][ T5992] ffffffff8df358a0 (console_lock){+.+.}-{0:0}, at: vc_SAK+0x28/0x220
[ 130.984862][ T5992]
[ 130.984862][ T5992] which lock already depends on the new lock.
[ 130.984862][ T5992]
[ 130.984866][ T5992]
[ 130.984866][ T5992] the existing dependency chain (in reverse order) is:
[ 130.984869][ T5992]
[ 130.984869][ T5992] -> #3 (console_lock){+.+.}-{0:0}:
[ 130.984884][ T5992] console_lock+0x76/0x90
[ 130.984896][ T5992] serial_core_register_port+0xbe1/0x2800
[ 130.984906][ T5992] serial8250_register_8250_port+0x1658/0x1fd0
[ 130.984916][ T5992] serial_pnp_probe+0x527/0x7d0
[ 130.984924][ T5992] pnp_device_probe+0x30b/0x4c0
[ 130.984933][ T5992] really_probe+0x26d/0xad0
[ 130.984944][ T5992] __driver_probe_device+0x18c/0x320
[ 130.984953][ T5992] driver_probe_device+0x4f/0x240
[ 130.984963][ T5992] __driver_attach+0x349/0x650
[ 130.984973][ T5992] bus_for_each_dev+0x233/0x2b0
[ 130.984984][ T5992] bus_add_driver+0x345/0x670
[ 130.984996][ T5992] driver_register+0x23a/0x320
[ 130.985007][ T5992] serial8250_init+0x8f/0x160
[ 130.985016][ T5992] do_one_initcall+0x1fb/0x820
[ 130.985028][ T5992] do_initcall_level+0x104/0x190
[ 130.985040][ T5992] do_initcalls+0x59/0xa0
[ 130.985050][ T5992] kernel_init_freeable+0x334/0x4b0
[ 130.985061][ T5992] kernel_init+0x1d/0x1d0
[ 130.985074][ T5992] ret_from_fork+0x599/0xb30
[ 130.985082][ T5992] ret_from_fork_asm+0x1a/0x30
[ 130.985093][ T5992]
[ 130.985093][ T5992] -> #2 (&port->mutex){+.+.}-{4:4}:
[ 130.985107][ T5992] __mutex_lock+0x187/0x1350
[ 130.985117][ T5992] uart_set_termios+0x82/0x730
[ 130.985127][ T5992] tty_set_termios+0xca8/0x17e0
[ 130.985140][ T5992] set_termios+0x516/0x6c0
[ 130.985148][ T5992] tty_mode_ioctl+0x47e/0x740
[ 130.985157][ T5992] tty_ioctl+0x9c6/0xde0
[ 130.985166][ T5992] __se_sys_ioctl+0xfc/0x170
[ 130.985174][ T5992] do_syscall_64+0xfa/0xf80
[ 130.985184][ T5992] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 130.985194][ T5992]
[ 130.985194][ T5992] -> #1 (&tty->termios_rwsem){++++}-{4:4}:
[ 130.985208][ T5992] down_read+0x47/0x2e0
[ 130.985218][ T5992] n_tty_receive_buf_common+0x84/0x1300
[ 130.985231][ T5992] tty_port_default_receive_buf+0x6e/0xa0
[ 130.985243][ T5992] flush_to_ldisc+0x24a/0x6e0
[ 130.985253][ T5992] process_one_work+0x93a/0x15a0
[ 130.985261][ T5992] worker_thread+0x9b0/0xee0
[ 130.985270][ T5992] kthread+0x711/0x8a0
[ 130.985280][ T5992] ret_from_fork+0x599/0xb30
[ 130.985288][ T5992] ret_from_fork_asm+0x1a/0x30
[ 130.985299][ T5992]
[ 130.985299][ T5992] -> #0 (&buf->lock){+.+.}-{4:4}:
[ 130.985312][ T5992] __lock_acquire+0x15a6/0x2cf0
[ 130.985322][ T5992] lock_acquire+0x117/0x340
[ 130.985330][ T5992] __mutex_lock+0x187/0x1350
[ 130.985339][ T5992] tty_buffer_flush+0x74/0x2b0
[ 130.985349][ T5992] tty_ldisc_flush+0x6b/0xc0
[ 130.985358][ T5992] __do_SAK+0xf2/0x6e0
[ 130.985367][ T5992] vc_SAK+0x78/0x220
[ 130.985374][ T5992] process_one_work+0x93a/0x15a0
[ 130.985382][ T5992] worker_thread+0x9b0/0xee0
[ 130.985391][ T5992] kthread+0x711/0x8a0
[ 130.985400][ T5992] ret_from_fork+0x599/0xb30
[ 130.985408][ T5992] ret_from_fork_asm+0x1a/0x30
[ 130.985419][ T5992]
[ 130.985419][ T5992] other info that might help us debug this:
[ 130.985419][ T5992]
[ 130.985422][ T5992] Chain exists of:
[ 130.985422][ T5992] &buf->lock --> &port->mutex --> console_lock
[ 130.985422][ T5992]
[ 130.985439][ T5992] Possible unsafe locking scenario:
[ 130.985439][ T5992]
[ 130.985443][ T5992] CPU0 CPU1
[ 130.985446][ T5992] ---- ----
[ 130.985449][ T5992] lock(console_lock);
[ 130.985456][ T5992] lock(&port->mutex);
[ 130.985464][ T5992] lock(console_lock);
[ 130.985471][ T5992] lock(&buf->lock);
[ 130.985478][ T5992]
[ 130.985478][ T5992] *** DEADLOCK ***
[ 130.985478][ T5992]
[ 130.985481][ T5992] 4 locks held by kworker/0:5/5992:
[ 130.985487][ T5992] #0: ffff88813fe55948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x841/0x15a0
[ 130.985511][ T5992] #1: ffffc900040bfb80 ((work_completion)(&vc_cons[currcons].SAK_work)){+.+.}-{0:0}, at: process_one_work+0x868/0x15a0
[ 130.985535][ T5992] #2: ffffffff8df358a0 (console_lock){+.+.}-{0:0}, at: vc_SAK+0x28/0x220
[ 130.985557][ T5992] #3: ffff88807e5190a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_flush+0x20/0xc0
[ 130.985583][ T5992]
[ 130.985583][ T5992] stack backtrace:
[ 130.985596][ T5992] CPU: 0 UID: 0 PID: 5992 Comm: kworker/0:5 Not tainted syzkaller #0 PREEMPT(full)
[ 130.985607][ T5992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 130.985613][ T5992] Workqueue: events vc_SAK
[ 130.985627][ T5992] Call Trace:
[ 130.985631][ T5992]
[ 130.985636][ T5992] dump_stack_lvl+0x189/0x250
[ 130.985648][ T5992] ? __pfx_dump_stack_lvl+0x10/0x10
[ 130.985658][ T5992] ? __pfx__printk+0x10/0x10
[ 130.985671][ T5992] ? print_lock_name+0xde/0x100
[ 130.985684][ T5992] print_circular_bug+0x2e2/0x300
[ 130.985696][ T5992] check_noncircular+0x12e/0x150
[ 130.985707][ T5992] __lock_acquire+0x15a6/0x2cf0
[ 130.985720][ T5992] ? tty_buffer_flush+0x74/0x2b0
[ 130.985730][ T5992] lock_acquire+0x117/0x340
[ 130.985738][ T5992] ? tty_buffer_flush+0x74/0x2b0
[ 130.985751][ T5992] __mutex_lock+0x187/0x1350
[ 130.985760][ T5992] ? tty_buffer_flush+0x74/0x2b0
[ 130.985772][ T5992] ? tty_buffer_flush+0x74/0x2b0
[ 130.985783][ T5992] ? __pfx___mutex_lock+0x10/0x10
[ 130.985793][ T5992] ? do_raw_spin_lock+0x121/0x290
[ 130.985806][ T5992] ? ldsem_down_read_trylock+0x137/0x1a0
[ 130.985818][ T5992] ? tty_ldisc_flush+0x20/0xc0
[ 130.985832][ T5992] ? __pfx_ldsem_down_read_trylock+0x10/0x10
[ 130.985845][ T5992] tty_buffer_flush+0x74/0x2b0
[ 130.985856][ T5992] tty_ldisc_flush+0x6b/0xc0
[ 130.985866][ T5992] __do_SAK+0xf2/0x6e0
[ 130.985876][ T5992] ? process_one_work+0x868/0x15a0
[ 130.985885][ T5992] ? process_one_work+0x868/0x15a0
[ 130.985893][ T5992] vc_SAK+0x78/0x220
[ 130.985901][ T5992] ? process_one_work+0x868/0x15a0
[ 130.985909][ T5992] process_one_work+0x93a/0x15a0
[ 130.985921][ T5992] ? __pfx_process_one_work+0x10/0x10
[ 130.985931][ T5992] ? assign_work+0x3a1/0x410
[ 130.985940][ T5992] worker_thread+0x9b0/0xee0
[ 130.985953][ T5992] kthread+0x711/0x8a0
[ 130.985964][ T5992] ? __pfx_worker_thread+0x10/0x10
[ 130.985973][ T5992] ? __pfx_kthread+0x10/0x10
[ 130.985984][ T5992] ? _raw_spin_unlock_irq+0x23/0x50
[ 130.985993][ T5992] ? lockdep_hardirqs_on+0x98/0x140
[ 130.986003][ T5992] ? __pfx_kthread+0x10/0x10
[ 130.986013][ T5992] ret_from_fork+0x599/0xb30
[ 130.986021][ T5992] ? __pfx_ret_from_fork+0x10/0x10
[ 130.986031][ T5992] ? __switch_to_asm+0x39/0x70
[ 130.986042][ T5992] ? __switch_to_asm+0x33/0x70
[ 130.986052][ T5992] ? __pfx_kthread+0x10/0x10
[ 130.986063][ T5992] ret_from_fork_asm+0x1a/0x30
[ 130.986077][ T5992]
[ 131.309706][ T5147] Bluetooth: hci0: command tx timeout
[ 132.913497][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.913626][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 133.389556][ T5147] Bluetooth: hci0: command tx timeout
[ 135.469856][ T5147] Bluetooth: hci0: command tx timeout
[ 146.004733][ T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 146.004945][ T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 146.005134][ T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 146.005651][ T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 146.006003][ T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 146.085182][ T6463] chnl_net:caif_netlink_parms(): no params data found
[ 146.113849][ T6463] bridge0: port 1(bridge_slave_0) entered blocking state
[ 146.113930][ T6463] bridge0: port 1(bridge_slave_0) entered disabled state
[ 146.114057][ T6463] bridge_slave_0: entered allmulticast mode
[ 146.114559][ T6463] bridge_slave_0: entered promiscuous mode
[ 146.115722][ T6463] bridge0: port 2(bridge_slave_1) entered blocking state
[ 146.115792][ T6463] bridge0: port 2(bridge_slave_1) entered disabled state
[ 146.115850][ T6463] bridge_slave_1: entered allmulticast mode
[ 146.116369][ T6463] bridge_slave_1: entered promiscuous mode
[ 146.130354][ T6463] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 146.131811][ T6463] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 146.142924][ T6463] team0: Port device team_slave_0 added
[ 146.144145][ T6463] team0: Port device team_slave_1 added
[ 146.155301][ T6463] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 146.155317][ T6463] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 146.155335][ T6463] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 146.155990][ T6463] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 146.156003][ T6463] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 146.156023][ T6463] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 146.172525][ T6463] hsr_slave_0: entered promiscuous mode
[ 146.172953][ T6463] hsr_slave_1: entered promiscuous mode
[ 146.173227][ T6463] debugfs: 'hsr0' already exists in 'hsr'
[ 146.173242][ T6463] Cannot create hsr debugfs directory
[ 146.247516][ T6463] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 146.250544][ T6463] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 146.252258][ T6463] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 146.254084][ T6463] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 146.266809][ T6463] bridge0: port 2(bridge_slave_1) entered blocking state
[ 146.266869][ T6463] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 146.266963][ T6463] bridge0: port 1(bridge_slave_0) entered blocking state
[ 146.267010][ T6463] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 146.291763][ T6463] 8021q: adding VLAN 0 to HW filter on device bond0
[ 146.296897][ T3490] bridge0: port 1(bridge_slave_0) entered disabled state
[ 146.297237][ T3490] bridge0: port 2(bridge_slave_1) entered disabled state
[ 146.302216][ T6463] 8021q: adding VLAN 0 to HW filter on device team0
[ 146.305331][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[ 146.305410][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 146.308406][ T3490] bridge0: port 2(bridge_slave_1) entered blocking state
[ 146.308453][ T3490] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 146.402026][ T6463] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 146.423500][ T6463] veth0_vlan: entered promiscuous mode
[ 146.426377][ T6463] veth1_vlan: entered promiscuous mode
[ 146.440281][ T6463] veth0_macvtap: entered promiscuous mode
[ 146.442320][ T6463] veth1_macvtap: entered promiscuous mode
[ 146.449537][ T6463] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 146.454143][ T6463] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 146.457119][ T3490] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 146.457156][ T3490] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 146.457183][ T3490] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 146.457207][ T3490] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 146.474764][ T6463] ieee80211 phy11: Selected rate control algorithm 'minstrel_ht'
[ 146.485731][ T3490] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 146.485750][ T3490] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 146.487507][ T6463] ieee80211 phy12: Selected rate control algorithm 'minstrel_ht'
[ 146.500405][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 146.500424][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 148.039605][ T52] Bluetooth: hci1: command tx timeout
[ 150.109529][ T52] Bluetooth: hci1: command tx timeout
[ 152.189527][ T52] Bluetooth: hci1: command tx timeout
[ 154.269550][ T52] Bluetooth: hci1: command tx timeout
[ 194.353583][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 194.353800][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 252.749552][ T5147] Bluetooth: hci0: command 0x0406 tx timeout
[ 255.794878][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 255.795008][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 268.110139][ T5147] Bluetooth: hci1: command 0x0406 tx timeout
[ 280.749629][ T31] INFO: task kworker/0:0:9 blocked for more than 143 seconds.
[ 280.749653][ T31] Not tainted syzkaller #0
[ 280.749661][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 280.749669][ T31] task:kworker/0:0 state:D stack:24096 pid:9 tgid:9 ppid:2 task_flags:0x4208060 flags:0x00080000
[ 280.749979][ T31] Workqueue: events console_callback
[ 280.750025][ T31] Call Trace:
[ 280.750034][ T31]
[ 280.750044][ T31] __schedule+0x14bc/0x5000
[ 280.750070][ T31] ? do_raw_spin_lock+0x121/0x290
[ 280.750095][ T31] ? __lock_acquire+0x6b6/0x2cf0
[ 280.750114][ T31] ? __pfx___schedule+0x10/0x10
[ 280.750132][ T31] ? _raw_spin_lock_irq+0xae/0xf0
[ 280.750151][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.750172][ T31] ? lock_release+0x4b/0x3b0
[ 280.750248][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.750271][ T31] schedule+0x165/0x360
[ 280.750290][ T31] schedule_timeout+0x9a/0x270
[ 280.750315][ T31] ? __pfx_schedule_timeout+0x10/0x10
[ 280.750340][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.750362][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.750384][ T31] __down_common+0x310/0x670
[ 280.750409][ T31] ? __pfx___down_common+0x10/0x10
[ 280.750429][ T31] ? _raw_spin_lock_irqsave+0xb3/0xf0
[ 280.750449][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.750472][ T31] ? console_lock+0x2d/0x90
[ 280.750494][ T31] down+0x80/0xd0
[ 280.750514][ T31] console_lock+0x58/0x90
[ 280.750534][ T31] console_callback+0x69/0x440
[ 280.750554][ T31] ? __pfx_console_callback+0x10/0x10
[ 280.750573][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.750595][ T31] ? process_one_work+0x868/0x15a0
[ 280.750612][ T31] process_one_work+0x93a/0x15a0
[ 280.750637][ T31] ? __pfx_process_one_work+0x10/0x10
[ 280.750657][ T31] ? assign_work+0x3a1/0x410
[ 280.750673][ T31] worker_thread+0x9b0/0xee0
[ 280.750700][ T31] kthread+0x711/0x8a0
[ 280.750721][ T31] ? __pfx_worker_thread+0x10/0x10
[ 280.750739][ T31] ? __pfx_kthread+0x10/0x10
[ 280.750760][ T31] ? _raw_spin_unlock_irq+0x23/0x50
[ 280.750778][ T31] ? lockdep_hardirqs_on+0x98/0x140
[ 280.750797][ T31] ? __pfx_kthread+0x10/0x10
[ 280.750818][ T31] ret_from_fork+0x599/0xb30
[ 280.750836][ T31] ? __pfx_ret_from_fork+0x10/0x10
[ 280.750857][ T31] ? __switch_to_asm+0x39/0x70
[ 280.750878][ T31] ? __switch_to_asm+0x33/0x70
[ 280.750905][ T31] ? __pfx_kthread+0x10/0x10
[ 280.750927][ T31] ret_from_fork_asm+0x1a/0x30
[ 280.750954][ T31]
[ 280.750979][ T31] INFO: task kworker/u8:3:50 blocked for more than 143 seconds.
[ 280.750992][ T31] Not tainted syzkaller #0
[ 280.751002][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 280.751010][ T31] task:kworker/u8:3 state:D stack:20728 pid:50 tgid:50 ppid:2 task_flags:0x4208060 flags:0x00080000
[ 280.751059][ T31] Workqueue: events_unbound flush_to_ldisc
[ 280.751082][ T31] Call Trace:
[ 280.751089][ T31]
[ 280.751097][ T31] __schedule+0x14bc/0x5000
[ 280.751118][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.751140][ T31] ? __pv_queued_spin_lock_slowpath+0xa05/0xb60
[ 280.751164][ T31] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[ 280.751184][ T31] ? deref_stack_reg+0x19f/0x230
[ 280.751204][ T31] ? __pfx___schedule+0x10/0x10
[ 280.751222][ T31] ? schedule+0x91/0x360
[ 280.751238][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.751259][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.751323][ T31] ? lock_release+0x4b/0x3b0
[ 280.751341][ T31] ? schedule+0x91/0x360
[ 280.751358][ T31] ? wq_worker_sleeping+0x63/0x250
[ 280.751378][ T31] schedule+0x165/0x360
[ 280.751396][ T31] schedule_timeout+0x9a/0x270
[ 280.751420][ T31] ? __pfx_schedule_timeout+0x10/0x10
[ 280.751444][ T31] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[ 280.751466][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.751488][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.751509][ T31] __down_common+0x310/0x670
[ 280.751533][ T31] ? __pfx___down_common+0x10/0x10
[ 280.751553][ T31] ? _raw_spin_lock_irqsave+0xb3/0xf0
[ 280.751573][ T31] ? console_lock+0x2d/0x90
[ 280.751594][ T31] down+0x80/0xd0
[ 280.751615][ T31] console_lock+0x58/0x90
[ 280.751634][ T31] do_con_write+0x116/0x5210
[ 280.751655][ T31] ? __lock_acquire+0x146f/0x2cf0
[ 280.751687][ T31] ? __mutex_trylock_common+0x153/0x260
[ 280.751708][ T31] ? __pfx___mutex_trylock_common+0x10/0x10
[ 280.751731][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.751751][ T31] ? trace_contention_end+0x39/0x100
[ 280.751773][ T31] ? __pfx_do_con_write+0x10/0x10
[ 280.751793][ T31] ? __lock_acquire+0x6b6/0x2cf0
[ 280.751820][ T31] ? __mutex_trylock_common+0x153/0x260
[ 280.751899][ T31] con_put_char+0x82/0xc0
[ 280.751920][ T31] ? __pfx_con_put_char+0x10/0x10
[ 280.751939][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.751959][ T31] ? trace_contention_end+0x39/0x100
[ 280.751980][ T31] ? __mutex_lock+0x335/0x1350
[ 280.751999][ T31] ? __pfx_con_put_char+0x10/0x10
[ 280.752019][ T31] tty_put_char+0xce/0x160
[ 280.752039][ T31] ? __pfx_tty_put_char+0x10/0x10
[ 280.752057][ T31] ? n_tty_receive_buf_common+0xbc1/0x1300
[ 280.752080][ T31] do_output_char+0x6ac/0x970
[ 280.752103][ T31] __process_echoes+0x2e1/0xa20
[ 280.752134][ T31] n_tty_receive_buf_common+0xc01/0x1300
[ 280.752169][ T31] tty_port_default_receive_buf+0x6e/0xa0
[ 280.752191][ T31] flush_to_ldisc+0x24a/0x6e0
[ 280.752215][ T31] ? process_one_work+0x868/0x15a0
[ 280.752232][ T31] process_one_work+0x93a/0x15a0
[ 280.752256][ T31] ? __pfx_process_one_work+0x10/0x10
[ 280.752276][ T31] ? assign_work+0x3a1/0x410
[ 280.752294][ T31] worker_thread+0x9b0/0xee0
[ 280.752321][ T31] kthread+0x711/0x8a0
[ 280.752342][ T31] ? __pfx_worker_thread+0x10/0x10
[ 280.752360][ T31] ? __pfx_kthread+0x10/0x10
[ 280.752420][ T31] ? _raw_spin_unlock_irq+0x23/0x50
[ 280.752438][ T31] ? lockdep_hardirqs_on+0x98/0x140
[ 280.752457][ T31] ? __pfx_kthread+0x10/0x10
[ 280.752477][ T31] ret_from_fork+0x599/0xb30
[ 280.752496][ T31] ? __pfx_ret_from_fork+0x10/0x10
[ 280.752515][ T31] ? __switch_to_asm+0x39/0x70
[ 280.752536][ T31] ? __switch_to_asm+0x33/0x70
[ 280.752556][ T31] ? __pfx_kthread+0x10/0x10
[ 280.752576][ T31] ret_from_fork_asm+0x1a/0x30
[ 280.752603][ T31]
[ 280.752719][ T31] INFO: task kworker/0:5:5992 blocked for more than 143 seconds.
[ 280.752732][ T31] Not tainted syzkaller #0
[ 280.752742][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 280.752750][ T31] task:kworker/0:5 state:D stack:23480 pid:5992 tgid:5992 ppid:2 task_flags:0x4208060 flags:0x00080000
[ 280.752801][ T31] Workqueue: events vc_SAK
[ 280.752818][ T31] Call Trace:
[ 280.752825][ T31]
[ 280.752834][ T31] __schedule+0x14bc/0x5000
[ 280.752854][ T31] ? do_raw_spin_unlock+0x122/0x240
[ 280.752878][ T31] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 280.752911][ T31] ? preempt_schedule+0xae/0xc0
[ 280.752931][ T31] ? preempt_schedule+0xae/0xc0
[ 280.752948][ T31] ? __pfx___schedule+0x10/0x10
[ 280.752965][ T31] ? _raw_spin_lock_irq+0xae/0xf0
[ 280.752983][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.753002][ T31] ? lock_release+0x4b/0x3b0
[ 280.753021][ T31] schedule+0x165/0x360
[ 280.753038][ T31] schedule_preempt_disabled+0x13/0x30
[ 280.753055][ T31] __mutex_lock+0x7e6/0x1350
[ 280.753076][ T31] ? __mutex_lock+0x5bb/0x1350
[ 280.753097][ T31] ? tty_buffer_flush+0x74/0x2b0
[ 280.753117][ T31] ? __pfx___mutex_lock+0x10/0x10
[ 280.753136][ T31] ? do_raw_spin_lock+0x121/0x290
[ 280.753160][ T31] ? ldsem_down_read_trylock+0x137/0x1a0
[ 280.753182][ T31] ? tty_ldisc_flush+0x20/0xc0
[ 280.753200][ T31] ? __pfx_ldsem_down_read_trylock+0x10/0x10
[ 280.753225][ T31] tty_buffer_flush+0x74/0x2b0
[ 280.753246][ T31] tty_ldisc_flush+0x6b/0xc0
[ 280.753266][ T31] __do_SAK+0xf2/0x6e0
[ 280.753286][ T31] ? process_one_work+0x868/0x15a0
[ 280.753304][ T31] ? process_one_work+0x868/0x15a0
[ 280.753321][ T31] vc_SAK+0x78/0x220
[ 280.753337][ T31] ? process_one_work+0x868/0x15a0
[ 280.753353][ T31] process_one_work+0x93a/0x15a0
[ 280.753378][ T31] ? __pfx_process_one_work+0x10/0x10
[ 280.753398][ T31] ? assign_work+0x3a1/0x410
[ 280.753417][ T31] worker_thread+0x9b0/0xee0
[ 280.753443][ T31] kthread+0x711/0x8a0
[ 280.753510][ T31] ? __pfx_worker_thread+0x10/0x10
[ 280.753528][ T31] ? __pfx_kthread+0x10/0x10
[ 280.753549][ T31] ? _raw_spin_unlock_irq+0x23/0x50
[ 280.753566][ T31] ? lockdep_hardirqs_on+0x98/0x140
[ 280.753585][ T31] ? __pfx_kthread+0x10/0x10
[ 280.753605][ T31] ret_from_fork+0x599/0xb30
[ 280.753623][ T31] ? __pfx_ret_from_fork+0x10/0x10
[ 280.753642][ T31] ? __switch_to_asm+0x39/0x70
[ 280.753731][ T31] ? __switch_to_asm+0x33/0x70
[ 280.753759][ T31] ? __pfx_kthread+0x10/0x10
[ 280.753785][ T31] ret_from_fork_asm+0x1a/0x30
[ 280.753811][ T31]
[ 280.753829][ T31] INFO: task syz.0.16:6459 blocked for more than 143 seconds.
[ 280.753843][ T31] Not tainted syzkaller #0
[ 280.753853][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 280.753862][ T31] task:syz.0.16 state:D stack:27064 pid:6459 tgid:6459 ppid:6353 task_flags:0x400040 flags:0x00080002
[ 280.753917][ T31] Call Trace:
[ 280.753924][ T31]
[ 280.753933][ T31] __schedule+0x14bc/0x5000
[ 280.753955][ T31] ? is_bpf_text_address+0x292/0x2b0
[ 280.753987][ T31] ? __pfx___schedule+0x10/0x10
[ 280.754005][ T31] ? schedule+0x91/0x360
[ 280.754021][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.754042][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.754062][ T31] ? lock_release+0x4b/0x3b0
[ 280.754081][ T31] schedule+0x165/0x360
[ 280.754100][ T31] schedule_timeout+0x9a/0x270
[ 280.754123][ T31] ? __pfx_schedule_timeout+0x10/0x10
[ 280.754149][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.754170][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.754193][ T31] __ldsem_down_write_nested+0x304/0x730
[ 280.754218][ T31] ? __ldsem_down_write_nested+0x27a/0x730
[ 280.754241][ T31] ? tty_ldisc_release+0x110/0x200
[ 280.754260][ T31] ? __pfx___ldsem_down_write_nested+0x10/0x10
[ 280.754286][ T31] ? __mutex_unlock_slowpath+0x1a1/0x730
[ 280.754309][ T31] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 280.754330][ T31] ? ldsem_down_write+0x12/0x38
[ 280.754348][ T31] tty_ldisc_release+0x110/0x200
[ 280.754369][ T31] tty_release_struct+0x2a/0xd0
[ 280.754390][ T31] tty_release+0xcb0/0x1720
[ 280.754428][ T31] ? evm_file_release+0x107/0x1e0
[ 280.754449][ T31] ? __pfx_tty_release+0x10/0x10
[ 280.754467][ T31] __fput+0x44c/0xa70
[ 280.754494][ T31] task_work_run+0x1d4/0x260
[ 280.754519][ T31] ? __pfx_task_work_run+0x10/0x10
[ 280.754541][ T31] ? __se_sys_close_range+0x4ed/0x650
[ 280.754703][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.754727][ T31] exit_to_user_mode_loop+0xff/0x4f0
[ 280.754747][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.754769][ T31] do_syscall_64+0x2e3/0xf80
[ 280.754790][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 280.754807][ T31] ? clear_bhb_loop+0x60/0xb0
[ 280.754826][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 280.754845][ T31] RIP: 0033:0x7f0d3e78e929
[ 280.754871][ T31] RSP: 002b:00007ffda7b04c18 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 280.754892][ T31] RAX: 0000000000000000 RBX: 000000000001ff86 RCX: 00007f0d3e78e929
[ 280.754906][ T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 280.754919][ T31] RBP: 00007f0d3e9b7ba0 R08: 0000000000000001 R09: 00000008a7b04f0f
[ 280.754932][ T31] R10: 00007f0d3e600000 R11: 0000000000000246 R12: 00007f0d3e9b5fac
[ 280.754946][ T31] R13: 00007f0d3e9b5fa0 R14: ffffffffffffffff R15: 00007ffda7b04d30
[ 280.754967][ T31]
[ 280.754985][ T31] INFO: lockdep is turned off.
[ 280.754998][ T31] NMI backtrace for cpu 0
[ 280.755010][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full)
[ 280.755030][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 280.755039][ T31] Call Trace:
[ 280.755045][ T31]
[ 280.755052][ T31] dump_stack_lvl+0x189/0x250
[ 280.755073][ T31] ? __pfx_dump_stack_lvl+0x10/0x10
[ 280.755092][ T31] ? __pfx__printk+0x10/0x10
[ 280.755118][ T31] nmi_cpu_backtrace+0x39e/0x3d0
[ 280.755142][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 280.755165][ T31] ? __pfx__printk+0x10/0x10
[ 280.755186][ T31] ? sched_show_task+0x4a5/0x630
[ 280.755204][ T31] ? rcu_is_watching+0x15/0xb0
[ 280.755224][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 280.755248][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 280.755272][ T31] sys_info+0x135/0x170
[ 280.755293][ T31] watchdog+0xf95/0xfe0
[ 280.755316][ T31] ? watchdog+0x20a/0xfe0
[ 280.755341][ T31] kthread+0x711/0x8a0
[ 280.755362][ T31] ? __pfx_watchdog+0x10/0x10
[ 280.755383][ T31] ? __pfx_kthread+0x10/0x10
[ 280.755403][ T31] ? _raw_spin_unlock_irq+0x23/0x50
[ 280.755420][ T31] ? lockdep_hardirqs_on+0x98/0x140
[ 280.755437][ T31] ? __pfx_kthread+0x10/0x10
[ 280.755457][ T31] ret_from_fork+0x599/0xb30
[ 280.755474][ T31] ? __pfx_ret_from_fork+0x10/0x10
[ 280.755492][ T31] ? __switch_to_asm+0x39/0x70
[ 280.755511][ T31] ? __switch_to_asm+0x33/0x70
[ 280.755530][ T31] ? __pfx_kthread+0x10/0x10
[ 280.755559][ T31] ret_from_fork_asm+0x1a/0x30
[ 280.755586][ T31]
[ 280.755593][ T31] Sending NMI from CPU 0 to CPUs 1:
[ 280.755619][ C1] NMI backtrace for cpu 1
[ 280.755631][ C1] CPU: 1 UID: 0 PID: 6975 Comm: syz.1.175 Not tainted syzkaller #0 PREEMPT(full)
[ 280.755649][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 280.755657][ C1] RIP: 0010:slab_update_freelist+0x54/0x100
[ 280.755678][ C1] Code: 8f 04 24 4c 8b 24 24 fa 41 f7 c4 00 02 00 00 75 36 48 89 f7 4c 89 f6 48 89 ca e8 e7 fe ff ff 89 c3 eb 44 48 8b 19 48 8b 49 08 <49> 8b 06 49 8b 56 08 f0 48 0f c7 4e 20 48 89 c1 b0 01 74 4e 49 89
[ 280.755691][ C1] RSP: 0018:ffffc9000407f4d8 EFLAGS: 00000202
[ 280.755704][ C1] RAX: df9becdd9df42d00 RBX: ffff8880292d0800 RCX: 000000000040001f
[ 280.755716][ C1] RDX: ffffc9000407f540 RSI: ffffea0000a4b400 RDI: ffff88813fe26780
[ 280.755727][ C1] RBP: ffffc9000407f590 R08: 0000000000000001 R09: ffffffff822811fc
[ 280.755737][ C1] R10: dffffc0000000000 R11: fffffbfff1f0266f R12: 0000000000000000
[ 280.755748][ C1] R13: ffff8880292d0800 R14: ffffc9000407f540 R15: 0000000000400020
[ 280.755759][ C1] FS: 00007f37aca696c0(0000) GS:ffff888125f4f000(0000) knlGS:0000000000000000
[ 280.755772][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 280.755783][ C1] CR2: 00007f37aca68f98 CR3: 000000007e722000 CR4: 00000000003526f0
[ 280.755797][ C1] Call Trace:
[ 280.755809][ C1]
[ 280.755817][ C1] __slab_free+0x104/0x2a0
[ 280.755837][ C1] ? qlist_free_all+0x8c/0x100
[ 280.755852][ C1] qlist_free_all+0x97/0x100
[ 280.755867][ C1] kasan_quarantine_reduce+0x148/0x160
[ 280.755882][ C1] __kasan_slab_alloc+0x22/0x80
[ 280.755898][ C1] __kmalloc_cache_noprof+0x37c/0x700
[ 280.755913][ C1] ? tty_open+0x947/0xd10
[ 280.755931][ C1] tty_open+0x947/0xd10
[ 280.755952][ C1] ? __pfx_tty_open+0x10/0x10
[ 280.755971][ C1] ? do_raw_spin_unlock+0x122/0x240
[ 280.755991][ C1] chrdev_open+0x4cc/0x5e0
[ 280.756007][ C1] ? rcu_is_watching+0x15/0xb0
[ 280.756023][ C1] ? __pfx_chrdev_open+0x10/0x10
[ 280.756039][ C1] ? fsnotify_open_perm_and_set_mode+0x113/0x610
[ 280.756060][ C1] ? __pfx_chrdev_open+0x10/0x10
[ 280.756075][ C1] do_dentry_open+0x7ce/0x1420
[ 280.756097][ C1] vfs_open+0x3b/0x340
[ 280.756113][ C1] ? path_openat+0x33f3/0x3dd0
[ 280.756127][ C1] path_openat+0x340e/0x3dd0
[ 280.756143][ C1] ? __pfx_stack_trace_save+0x10/0x10
[ 280.756164][ C1] ? stack_depot_save_flags+0x40/0x850
[ 280.756183][ C1] ? kmem_cache_alloc_noprof+0x37d/0x710
[ 280.756203][ C1] ? getname_flags+0xb8/0x540
[ 280.756220][ C1] ? __pfx_path_openat+0x10/0x10
[ 280.756240][ C1] do_filp_open+0x1fa/0x410
[ 280.756254][ C1] ? __pfx_do_filp_open+0x10/0x10
[ 280.756274][ C1] ? _raw_spin_unlock+0x28/0x50
[ 280.756288][ C1] ? alloc_fd+0x64c/0x6c0
[ 280.756307][ C1] do_sys_openat2+0x121/0x200
[ 280.756326][ C1] ? __pfx_do_sys_openat2+0x10/0x10
[ 280.756344][ C1] ? rcu_is_watching+0x15/0xb0
[ 280.756363][ C1] __x64_sys_openat+0x138/0x170
[ 280.756382][ C1] do_syscall_64+0xfa/0xf80
[ 280.756398][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 280.756413][ C1] ? clear_bhb_loop+0x60/0xb0
[ 280.756428][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 280.756442][ C1] RIP: 0033:0x7f37abb8d290
[ 280.756455][ C1] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[ 280.756467][ C1] RSP: 002b:00007f37aca68b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 280.756482][ C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f37abb8d290
[ 280.756492][ C1] RDX: 0000000000000002 RSI: 00007f37aca68c10 RDI: 00000000ffffff9c
[ 280.756501][ C1] RBP: 00007f37aca68c10 R08: 0000000000000000 R09: 00007f37aca68987
[ 280.756511][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 280.756520][ C1] R13: 0000000000000001 R14: 00007f37abdb5fa0 R15: 00007ffe428e07d8
[ 280.756537][ C1]
[ 280.756661][ T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 280.756675][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full)
[ 280.756694][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 280.756704][ T31] Call Trace:
[ 280.756711][ T31]
[ 280.756718][ T31] dump_stack_lvl+0x99/0x250
[ 280.756739][ T31] ? __asan_memcpy+0x40/0x70
[ 280.756762][ T31] ? __pfx_dump_stack_lvl+0x10/0x10
[ 280.756781][ T31] ? __pfx__printk+0x10/0x10
[ 280.756806][ T31] vpanic+0x237/0x6d0
[ 280.756822][ T31] ? __pfx_vpanic+0x10/0x10
[ 280.756838][ T31] ? preempt_schedule_common+0x83/0xd0
[ 280.756858][ T31] panic+0xb9/0xc0
[ 280.756876][ T31] ? __pfx_panic+0x10/0x10
[ 280.756895][ T31] ? preempt_schedule_thunk+0x16/0x30
[ 280.756920][ T31] ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[ 280.756944][ T31] watchdog+0xfdf/0xfe0
[ 280.756965][ T31] ? watchdog+0x20a/0xfe0
[ 280.756987][ T31] kthread+0x711/0x8a0
[ 280.757008][ T31] ? __pfx_watchdog+0x10/0x10
[ 280.757029][ T31] ? __pfx_kthread+0x10/0x10
[ 280.757050][ T31] ? _raw_spin_unlock_irq+0x23/0x50
[ 280.757067][ T31] ? lockdep_hardirqs_on+0x98/0x140
[ 280.757085][ T31] ? __pfx_kthread+0x10/0x10
[ 280.757105][ T31] ret_from_fork+0x599/0xb30
[ 280.757124][ T31] ? __pfx_ret_from_fork+0x10/0x10
[ 280.757144][ T31] ? __switch_to_asm+0x39/0x70
[ 280.757164][ T31] ? __switch_to_asm+0x33/0x70
[ 280.757183][ T31] ? __pfx_kthread+0x10/0x10
[ 280.757204][ T31] ret_from_fork_asm+0x1a/0x30
[ 280.757231][ T31]
[ 280.757826][ T31] Kernel Offset: disabled