Warning: Permanently added '10.128.1.95' (ED25519) to the list of known hosts.
2026/02/16 12:07:20 parsed 1 programs
[   91.625130][ T4611] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   92.913319][ T4622] chnl_net:caif_netlink_parms(): no params data found
[   92.947709][ T4622] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.955015][ T4622] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.962649][ T4622] device bridge_slave_0 entered promiscuous mode
[   92.971141][ T4622] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.978513][ T4622] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.986565][ T4622] device bridge_slave_1 entered promiscuous mode
[   93.009863][ T4622] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   93.020648][ T4622] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   93.041910][ T4622] team0: Port device team_slave_0 added
[   93.048966][ T4622] team0: Port device team_slave_1 added
[   93.064187][ T4622] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.071136][ T4622] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.097721][ T4622] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.110576][ T4622] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.117754][ T4622] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.144138][ T4622] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.170272][ T4622] device hsr_slave_0 entered promiscuous mode
[   93.176854][ T4622] device hsr_slave_1 entered promiscuous mode
[   93.671261][ T4622] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   93.683285][ T4622] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   93.695574][ T4622] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   93.705549][ T4622] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.729477][ T4622] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.736841][ T4622] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.744535][ T4622] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.751726][ T4622] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.809399][ T4622] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.825208][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   93.833933][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.843633][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.852409][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   93.869521][ T4622] 8021q: adding VLAN 0 to HW filter on device team0
[   93.882295][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   93.891635][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.898766][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.920018][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   93.930396][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.938161][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.965751][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   93.977381][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   93.988011][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   93.998577][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   94.008186][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   94.028169][ T4622] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   94.039895][ T4622] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   94.052834][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   94.062750][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   94.071804][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   94.082931][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   94.092872][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   94.101799][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   94.212381][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   94.221773][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   94.236021][ T4622] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.255765][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   94.265242][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   94.285469][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   94.297179][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   94.308948][ T4622] device veth0_vlan entered promiscuous mode
[   94.317111][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   94.325891][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   94.338299][ T4622] device veth1_vlan entered promiscuous mode
[   94.360725][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   94.369947][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   94.379816][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   94.389550][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   94.401297][ T4622] device veth0_macvtap entered promiscuous mode
[   94.412027][ T4622] device veth1_macvtap entered promiscuous mode
[   94.432302][ T4622] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.440519][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   94.449736][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   94.458170][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   94.467742][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   94.480360][ T4622] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.492338][ T4622] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.501634][ T4622] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.510659][ T4622] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.520985][ T4622] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.532123][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   94.542158][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   94.683873][    T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.850864][    T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.308097][    T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.369698][    T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.098844][    T9] device hsr_slave_0 left promiscuous mode
[  100.108976][    T9] device hsr_slave_1 left promiscuous mode
[  100.119163][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.145652][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  100.154349][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  100.161946][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  100.194875][    T9] device bridge_slave_1 left promiscuous mode
[  100.201447][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.225461][    T9] device bridge_slave_0 left promiscuous mode
[  100.231794][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.268405][    T9] device veth1_macvtap left promiscuous mode
[  100.276490][    T9] device veth0_macvtap left promiscuous mode
[  100.282718][    T9] device veth1_vlan left promiscuous mode
[  100.289020][    T9] device veth0_vlan left promiscuous mode
[  100.439465][    T9] team0 (unregistering): Port device team_slave_1 removed
[  100.456920][    T9] team0 (unregistering): Port device team_slave_0 removed
[  100.468313][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  100.481737][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  100.533429][    T9] bond0 (unregistering): Released all slaves
[  101.331067][  T155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.354164][  T155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.364451][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  101.409501][  T151] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.425168][  T151] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.439692][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2026/02/16 12:07:34 executed programs: 0
[  103.112041][ T5126] chnl_net:caif_netlink_parms(): no params data found
[  103.349780][ T5126] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.364488][ T5126] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.372906][ T5126] device bridge_slave_0 entered promiscuous mode
[  103.389249][ T5126] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.398076][ T5126] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.411005][ T5126] device bridge_slave_1 entered promiscuous mode
[  103.465924][ T5126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.478609][ T5126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.507901][ T5126] team0: Port device team_slave_0 added
[  103.517302][ T5126] team0: Port device team_slave_1 added
[  103.539036][ T5126] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.546412][ T5126] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.573449][ T5126] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.587287][ T5126] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.594932][ T5126] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.621826][ T5126] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.653864][ T5126] device hsr_slave_0 entered promiscuous mode
[  103.661171][ T5126] device hsr_slave_1 entered promiscuous mode
[  104.193206][ T5126] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  104.210146][ T5126] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  104.259946][ T5126] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  104.270160][ T5126] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  104.370800][ T5126] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.383953][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  104.395243][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  104.444845][ T5126] 8021q: adding VLAN 0 to HW filter on device team0
[  104.456811][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  104.467461][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  104.478786][  T155] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.486159][  T155] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.505185][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  104.513617][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  104.523823][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  104.534054][  T155] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.541486][  T155] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.552048][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  104.561506][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  104.612327][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  104.623358][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  104.641748][ T5126] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  104.656039][ T5126] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  104.670039][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  104.681542][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  104.690771][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  104.701509][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  104.710469][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  104.722022][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  104.730945][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  104.780734][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  104.883043][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  104.892645][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  104.906668][ T5126] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.939941][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  104.950885][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  104.971753][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  104.974355][ T5156] Bluetooth: hci0: command 0x0409 tx timeout
[  104.980988][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  104.996176][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  105.003981][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  105.014457][ T5126] device veth0_vlan entered promiscuous mode
[  105.029486][ T5126] device veth1_vlan entered promiscuous mode
[  105.070155][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  105.081909][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  105.090949][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  105.101684][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  105.112948][ T5126] device veth0_macvtap entered promiscuous mode
[  105.140342][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  105.152884][ T5126] device veth1_macvtap entered promiscuous mode
[  105.208893][ T5126] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.219309][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  105.230202][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  105.243746][ T5126] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.253211][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  105.263109][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  105.279663][ T5126] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.289099][ T5126] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.298575][ T5126] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.307837][ T5126] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.430354][  T151] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.442247][  T151] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.451059][ T1419] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  105.487954][  T151] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.497100][  T151] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.517148][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  105.645197][ T5261] loop0: detected capacity change from 0 to 4096
[  105.866389][ T5268] 
[  105.868832][ T5268] ======================================================
[  105.875948][ T5268] WARNING: possible circular locking dependency detected
[  105.883071][ T5268] syzkaller #0 Not tainted
[  105.887664][ T5268] ------------------------------------------------------
[  105.894865][ T5268] syz.0.17/5268 is trying to acquire lock:
[  105.900864][ T5268] ffff8880699a6fa0 (&ni->ni_lock/5){+.+.}-{3:3}, at: attr_data_get_block+0x31b/0x18d0
[  105.910780][ T5268] 
[  105.910780][ T5268] but task is already holding lock:
[  105.918236][ T5268] ffff8880755fe328 (&mm->mmap_lock){++++}-{3:3}, at: vm_mmap_pgoff+0x16c/0x2d0
[  105.927315][ T5268] 
[  105.927315][ T5268] which lock already depends on the new lock.
[  105.927315][ T5268] 
[  105.938342][ T5268] 
[  105.938342][ T5268] the existing dependency chain (in reverse order) is:
[  105.947630][ T5268] 
[  105.947630][ T5268] -> #1 (&mm->mmap_lock){++++}-{3:3}:
[  105.955570][ T5268]        __might_fault+0xb3/0x110
[  105.960690][ T5268]        _copy_to_user+0x29/0x130
[  105.965865][ T5268]        fiemap_fill_next_extent+0x1ba/0x390
[  105.971851][ T5268]        ni_fiemap+0x3bc/0xc50
[  105.976854][ T5268]        ntfs_fiemap+0xd7/0x130
[  105.981706][ T5268]        do_vfs_ioctl+0x152d/0x1ef0
[  105.987170][ T5268]        __se_sys_ioctl+0x83/0x170
[  105.992553][ T5268]        do_syscall_64+0x4c/0xa0
[  105.997593][ T5268]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  106.004018][ T5268] 
[  106.004018][ T5268] -> #0 (&ni->ni_lock/5){+.+.}-{3:3}:
[  106.011953][ T5268]        __lock_acquire+0x2c42/0x7d10
[  106.017600][ T5268]        lock_acquire+0x19e/0x400
[  106.023345][ T5268]        __mutex_lock_common+0x1e3/0x2400
[  106.029693][ T5268]        mutex_lock_nested+0x17/0x20
[  106.035125][ T5268]        attr_data_get_block+0x31b/0x18d0
[  106.041302][ T5268]        ntfs_file_mmap+0x469/0x770
[  106.046791][ T5268]        mmap_file+0x5d/0xb0
[  106.051616][ T5268]        mmap_region+0xf88/0x1650
[  106.056644][ T5268]        do_mmap+0x819/0xe90
[  106.061688][ T5268]        vm_mmap_pgoff+0x1c1/0x2d0
[  106.067060][ T5268]        ksys_mmap_pgoff+0x54b/0x790
[  106.072586][ T5268]        do_syscall_64+0x4c/0xa0
[  106.077822][ T5268]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  106.084282][ T5268] 
[  106.084282][ T5268] other info that might help us debug this:
[  106.084282][ T5268] 
[  106.094956][ T5268]  Possible unsafe locking scenario:
[  106.094956][ T5268] 
[  106.102672][ T5268]        CPU0                    CPU1
[  106.108243][ T5268]        ----                    ----
[  106.114082][ T5268]   lock(&mm->mmap_lock);
[  106.118446][ T5268]                                lock(&ni->ni_lock/5);
[  106.125560][ T5268]                                lock(&mm->mmap_lock);
[  106.132624][ T5268]   lock(&ni->ni_lock/5);
[  106.137217][ T5268] 
[  106.137217][ T5268]  *** DEADLOCK ***
[  106.137217][ T5268] 
[  106.145662][ T5268] 1 lock held by syz.0.17/5268:
[  106.150504][ T5268]  #0: ffff8880755fe328 (&mm->mmap_lock){++++}-{3:3}, at: vm_mmap_pgoff+0x16c/0x2d0
[  106.160065][ T5268] 
[  106.160065][ T5268] stack backtrace:
[  106.166079][ T5268] CPU: 1 PID: 5268 Comm: syz.0.17 Not tainted syzkaller #0
[  106.173816][ T5268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  106.183875][ T5268] Call Trace:
[  106.187146][ T5268]  <TASK>
[  106.190489][ T5268]  dump_stack_lvl+0x188/0x250
[  106.195169][ T5268]  ? load_image+0x400/0x400
[  106.199757][ T5268]  ? show_regs_print_info+0x20/0x20
[  106.204956][ T5268]  ? print_circular_bug+0x12b/0x1a0
[  106.210455][ T5268]  check_noncircular+0x296/0x330
[  106.215390][ T5268]  ? look_up_lock_class+0x71/0x110
[  106.220622][ T5268]  ? add_chain_block+0x940/0x940
[  106.225641][ T5268]  ? lockdep_lock+0xf1/0x1f0
[  106.230515][ T5268]  ? mark_lock+0x94/0x320
[  106.235017][ T5268]  __lock_acquire+0x2c42/0x7d10
[  106.239862][ T5268]  ? lockdep_unlock+0x143/0x2e0
[  106.244697][ T5268]  ? verify_lock_unused+0x140/0x140
[  106.250153][ T5268]  ? mark_lock+0x94/0x320
[  106.254549][ T5268]  ? __lock_acquire+0x13bc/0x7d10
[  106.259562][ T5268]  lock_acquire+0x19e/0x400
[  106.264046][ T5268]  ? attr_data_get_block+0x31b/0x18d0
[  106.269574][ T5268]  ? __might_sleep+0xf0/0xf0
[  106.274321][ T5268]  ? read_lock_is_recursive+0x10/0x10
[  106.280033][ T5268]  ? attr_data_get_block+0x31b/0x18d0
[  106.285473][ T5268]  __mutex_lock_common+0x1e3/0x2400
[  106.290658][ T5268]  ? attr_data_get_block+0x31b/0x18d0
[  106.296204][ T5268]  ? attr_data_get_block+0x171/0x18d0
[  106.301554][ T5268]  ? mutex_lock_io_nested+0x60/0x60
[  106.306820][ T5268]  ? up_read+0x20/0x20
[  106.310915][ T5268]  ? run_lookup_entry+0x3ec/0x560
[  106.316050][ T5268]  mutex_lock_nested+0x17/0x20
[  106.320880][ T5268]  attr_data_get_block+0x31b/0x18d0
[  106.326156][ T5268]  ? verify_lock_unused+0x101/0x140
[  106.331339][ T5268]  ? verify_lock_unused+0x140/0x140
[  106.336514][ T5268]  ? vm_area_alloc+0x20/0xe0
[  106.341355][ T5268]  ? do_mmap+0x819/0xe90
[  106.345574][ T5268]  ? vm_mmap_pgoff+0x1c1/0x2d0
[  106.350594][ T5268]  ? ksys_mmap_pgoff+0x54b/0x790
[  106.355599][ T5268]  ? do_syscall_64+0x4c/0xa0
[  106.360277][ T5268]  ? get_pre_allocated+0x130/0x130
[  106.365557][ T5268]  ntfs_file_mmap+0x469/0x770
[  106.370298][ T5268]  ? ntfs_compat_ioctl+0x30/0x30
[  106.375299][ T5268]  ? vm_area_alloc+0x20/0xe0
[  106.379928][ T5268]  ? vm_area_alloc+0x20/0xe0
[  106.384604][ T5268]  ? kmem_cache_alloc+0x133/0x290
[  106.390152][ T5268]  mmap_file+0x5d/0xb0
[  106.394332][ T5268]  mmap_region+0xf88/0x1650
[  106.398941][ T5268]  do_mmap+0x819/0xe90
[  106.403080][ T5268]  vm_mmap_pgoff+0x1c1/0x2d0
[  106.407653][ T5268]  ? account_locked_vm+0xe0/0xe0
[  106.413104][ T5268]  ? __fget_files+0x40f/0x480
[  106.417771][ T5268]  ksys_mmap_pgoff+0x54b/0x790
[  106.422515][ T5268]  ? mmap_region+0x1650/0x1650
[  106.427440][ T5268]  ? lockdep_hardirqs_on+0x94/0x140
[  106.432618][ T5268]  do_syscall_64+0x4c/0xa0
[  106.437276][ T5268]  ? clear_bhb_loop+0x30/0x80
[  106.442356][ T5268]  ? clear_bhb_loop+0x30/0x80
[  106.447208][ T5268]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  106.453282][ T5268] RIP: 0033:0x7fba9dd18379
[  106.457772][ T5268] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  106.477641][ T5268] RSP: 002b:00007fba9d35b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  106.486548][ T5268] RAX: ffffffffffffffda RBX: 00007fba9df74090 RCX: 00007fba9dd18379
[  106.494546][ T5268] RDX: 00000000027fffff RSI: 0000000000600000 RDI: 0000200000000000
[  106.502507][ T5268] RBP: 00007fba9ddabd68 R08: 0000000000000004 R09: 0000000000000000
[  106.510555][ T5268] R10: 0000000004002011 R11: 0000000000000246 R12: 0000000000000000
[  106.518684][ T5268] R13: 00007fba9df74128 R14: 00007fba9df74090 R15: 00007ffd427e8e68
[  106.526744][ T5268]  </TASK>
[  106.717767][ T5288] loop0: detected capacity change from 0 to 4096
[  107.021141][ T5316] loop0: detected capacity change from 0 to 4096
[  107.054472][ T4247] Bluetooth: hci0: command 0x041b tx timeout
[  107.226362][ T5338] loop0: detected capacity change from 0 to 4096
[  107.403325][ T5344] loop0: detected capacity change from 0 to 4096
[  107.602097][ T5346] loop0: detected capacity change from 0 to 4096
[  107.791766][ T5348] loop0: detected capacity change from 0 to 4096
2026/02/16 12:07:39 executed programs: 9
[  107.978109][ T5350] loop0: detected capacity change from 0 to 4096
[  108.162878][ T5352] loop0: detected capacity change from 0 to 4096
[  108.359216][ T5354] loop0: detected capacity change from 0 to 4096
[  109.134391][   T13] Bluetooth: hci0: command 0x040f tx timeout
[  110.679933][ T5380] set_capacity_and_notify: 12 callbacks suppressed
[  110.679949][ T5380] loop0: detected capacity change from 0 to 4096
[  110.883084][ T5382] loop0: detected capacity change from 0 to 4096
[  111.015043][ T5384] loop0: detected capacity change from 0 to 4096
[  111.200988][ T5386] loop0: detected capacity change from 0 to 4096
[  111.214147][ T4252] Bluetooth: hci0: command 0x0419 tx timeout
[  111.355694][ T5388] loop0: detected capacity change from 0 to 4096
[  111.518116][ T5390] loop0: detected capacity change from 0 to 4096
[  111.665757][ T5392] loop0: detected capacity change from 0 to 4096
[  112.025689][ T5397] loop0: detected capacity change from 0 to 4096
[  112.240702][ T5399] loop0: detected capacity change from 0 to 4096
[  112.452638][ T5401] loop0: detected capacity change from 0 to 4096
2026/02/16 12:07:44 executed programs: 37
[  115.825221][ T5439] set_capacity_and_notify: 18 callbacks suppressed
[  115.825236][ T5439] loop0: detected capacity change from 0 to 4096