Warning: Permanently added '10.128.0.143' (ED25519) to the list of known hosts.
2026/02/05 16:11:06 ignoring optional flag "type"="gce"
2026/02/05 16:11:06 parsed 1 programs
2026/02/05 16:11:06 executed programs: 0
[ 68.183070][ T4449] chnl_net:caif_netlink_parms(): no params data found
[ 68.220217][ T4449] bridge0: port 1(bridge_slave_0) entered blocking state
[ 68.227409][ T4449] bridge0: port 1(bridge_slave_0) entered disabled state
[ 68.235428][ T4449] device bridge_slave_0 entered promiscuous mode
[ 68.243251][ T4449] bridge0: port 2(bridge_slave_1) entered blocking state
[ 68.250409][ T4449] bridge0: port 2(bridge_slave_1) entered disabled state
[ 68.258118][ T4449] device bridge_slave_1 entered promiscuous mode
[ 68.276761][ T4449] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 68.287716][ T4449] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 68.311996][ T4449] team0: Port device team_slave_0 added
[ 68.320961][ T4449] team0: Port device team_slave_1 added
[ 68.344103][ T4449] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 68.351324][ T4449] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 68.378507][ T4449] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 68.391705][ T4449] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 68.398670][ T4449] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 68.425487][ T4449] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 68.464573][ T4449] device hsr_slave_0 entered promiscuous mode
[ 68.471714][ T4449] device hsr_slave_1 entered promiscuous mode
[ 68.977926][ T4449] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 68.991036][ T4449] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 69.003703][ T4449] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 69.013631][ T4449] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 69.039578][ T4449] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.046676][ T4449] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 69.054109][ T4449] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.061233][ T4449] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 69.116816][ T4449] 8021q: adding VLAN 0 to HW filter on device bond0
[ 69.134778][ T4449] 8021q: adding VLAN 0 to HW filter on device team0
[ 69.142428][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 69.151754][ T1444] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.161603][ T1444] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.173497][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 69.194530][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 69.204660][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 69.213879][ T1444] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.221014][ T1444] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 69.236558][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 69.245625][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 69.255412][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.262616][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 69.279916][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 69.291387][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 69.300687][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 69.310322][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 69.331225][ T4449] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 69.342313][ T4449] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 69.354885][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 69.365037][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 69.374266][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 69.383346][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 69.392633][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 69.401664][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 69.410833][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 69.420081][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 69.532485][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 69.541101][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 69.554098][ T4449] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 69.575730][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 69.585925][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 69.607835][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 69.617937][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 69.630488][ T4449] device veth0_vlan entered promiscuous mode
[ 69.640217][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 69.648416][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 69.660600][ T4449] device veth1_vlan entered promiscuous mode
[ 69.686251][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 69.695694][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 69.704590][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 69.714495][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 69.726409][ T4449] device veth0_macvtap entered promiscuous mode
[ 69.738135][ T4449] device veth1_macvtap entered promiscuous mode
[ 69.755756][ T4449] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 69.765050][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 69.773632][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 69.784289][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 69.793700][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 69.807264][ T4449] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 69.818662][ T4449] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 69.829735][ T4449] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 69.838556][ T4449] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 69.847655][ T4449] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 69.858992][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 69.869577][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 70.145502][ T4546] loop0: detected capacity change from 0 to 32768
[ 70.165632][ T4546] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (4546)
[ 70.179775][ T4209] Bluetooth: hci0: command 0x0409 tx timeout
[ 70.201951][ T4546] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 70.211582][ T4546] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 70.223729][ T4546] BTRFS info (device loop0): using free space tree
[ 70.230695][ T4546] BTRFS info (device loop0): has skinny extents
[ 70.339427][ T4546] BTRFS info (device loop0): enabling ssd optimizations
[ 71.701556][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.708080][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[ 72.259416][ T1106] Bluetooth: hci0: command 0x041b tx timeout
[ 74.329612][ T4209] Bluetooth: hci0: command 0x040f tx timeout
[ 76.409325][ T4209] Bluetooth: hci0: command 0x0419 tx timeout
[ 76.812212][ T23] cfg80211: failed to load regulatory.db
2026/02/05 16:12:03 executed programs: 1
[ 126.061243][ T4822] chnl_net:caif_netlink_parms(): no params data found
[ 126.097457][ T4822] bridge0: port 1(bridge_slave_0) entered blocking state
[ 126.105477][ T4822] bridge0: port 1(bridge_slave_0) entered disabled state
[ 126.113341][ T4822] device bridge_slave_0 entered promiscuous mode
[ 126.121484][ T4822] bridge0: port 2(bridge_slave_1) entered blocking state
[ 126.128662][ T4822] bridge0: port 2(bridge_slave_1) entered disabled state
[ 126.137354][ T4822] device bridge_slave_1 entered promiscuous mode
[ 126.157119][ T4822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 126.168744][ T4822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 126.192715][ T4822] team0: Port device team_slave_0 added
[ 126.200155][ T4822] team0: Port device team_slave_1 added
[ 126.216207][ T4822] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 126.223300][ T4822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 126.249928][ T4822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 126.261630][ T4822] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 126.268583][ T4822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 126.294662][ T4822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 126.322088][ T4822] device hsr_slave_0 entered promiscuous mode
[ 126.330119][ T4822] device hsr_slave_1 entered promiscuous mode
[ 126.336700][ T4822] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 126.345014][ T4822] Cannot create hsr debugfs directory
[ 126.408656][ T4822] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 126.483002][ T4822] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 126.550248][ T4822] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 126.606012][ T4822] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 126.691595][ T4822] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 126.702599][ T4822] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 126.712057][ T4822] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 126.721885][ T4822] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 126.742206][ T4822] bridge0: port 2(bridge_slave_1) entered blocking state
[ 126.749297][ T4822] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 126.756684][ T4822] bridge0: port 1(bridge_slave_0) entered blocking state
[ 126.763827][ T4822] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 126.801560][ T4822] 8021q: adding VLAN 0 to HW filter on device bond0
[ 126.814083][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 126.822669][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 126.831880][ T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 126.840852][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 126.854888][ T4822] 8021q: adding VLAN 0 to HW filter on device team0
[ 126.865654][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 126.874603][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 126.881716][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 126.894838][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 126.903589][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 126.910695][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 126.928262][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 126.937010][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 126.949061][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 126.961830][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 126.974576][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 126.986010][ T4822] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 127.063655][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 127.071740][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 127.083582][ T4822] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 127.101113][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 127.110838][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 127.127171][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 127.136197][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 127.146413][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 127.154763][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 127.163673][ T4822] device veth0_vlan entered promiscuous mode
[ 127.175148][ T4822] device veth1_vlan entered promiscuous mode
[ 127.193516][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 127.201813][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 127.211972][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 127.221512][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 127.232172][ T4822] device veth0_macvtap entered promiscuous mode
[ 127.242932][ T4822] device veth1_macvtap entered promiscuous mode
[ 127.255695][ T4822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 127.266504][ T4822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 127.278452][ T4822] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 127.286535][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 127.296320][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 127.304611][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 127.314045][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 127.324299][ T4822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 127.335951][ T4822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 127.347375][ T4822] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 127.358091][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 127.366910][ T3043] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 127.381058][ T4822] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.389991][ T4822] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.398684][ T4822] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.407519][ T4822] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.009704][ T4210] Bluetooth: hci1: command 0x0409 tx timeout
2026/02/05 16:12:08 executed programs: 12
[ 130.102031][ T4208] Bluetooth: hci1: command 0x041b tx timeout
[ 132.169277][ T4210] Bluetooth: hci1: command 0x040f tx timeout
[ 133.132212][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.138549][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[ 134.249187][ T4210] Bluetooth: hci1: command 0x0419 tx timeout
2026/02/05 16:12:13 executed programs: 33
2026/02/05 16:12:18 executed programs: 54
2026/02/05 16:12:23 executed programs: 75
2026/02/05 16:12:29 executed programs: 97
2026/02/05 16:12:34 executed programs: 118
2026/02/05 16:12:39 executed programs: 140
2026/02/05 16:12:44 executed programs: 161
2026/02/05 16:12:49 executed programs: 183
2026/02/05 16:12:54 executed programs: 205
2026/02/05 16:12:59 executed programs: 227
2026/02/05 16:13:05 executed programs: 249
[ 191.529265][ T4208] Bluetooth: hci0: command 0x0406 tx timeout
2026/02/05 16:13:10 executed programs: 271
[ 194.571033][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[ 194.577712][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
2026/02/05 16:13:15 executed programs: 292
2026/02/05 16:13:20 executed programs: 313
2026/02/05 16:13:25 executed programs: 334
2026/02/05 16:13:30 executed programs: 356
2026/02/05 16:13:35 executed programs: 378
2026/02/05 16:13:41 executed programs: 400
2026/02/05 16:13:46 executed programs: 422
[ 231.689762][ T27] INFO: task syz-executor.0:4546 blocked for more than 143 seconds.
[ 231.703296][ T27] Not tainted syzkaller #0
[ 231.708356][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 231.717698][ T27] task:syz-executor.0 state:D stack:23088 pid: 4546 ppid: 4449 flags:0x00004006
[ 231.730134][ T27] Call Trace:
[ 231.733540][ T27]
[ 231.736567][ T27] __schedule+0x11ef/0x43c0
[ 231.742793][ T27] ? wait_extent_bit+0x3a8/0x4e0
[ 231.747861][ T27] ? release_firmware_map_entry+0x190/0x190
[ 231.755558][ T27] ? __lock_acquire+0x7d10/0x7d10
[ 231.762064][ T27] ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 231.768161][ T27] ? _raw_spin_unlock+0x40/0x40
[ 231.774641][ T27] schedule+0x11b/0x1e0
[ 231.778881][ T27] wait_extent_bit+0x3ad/0x4e0
[ 231.785106][ T27] ? lock_extent_bits+0x110/0x110
[ 231.791549][ T27] ? init_wait_entry+0xd0/0xd0
[ 231.796406][ T27] ? __might_sleep+0xf0/0xf0
[ 231.802473][ T27] ? file_update_time+0x3d7/0x440
[ 231.807610][ T27] lock_extent_bits+0x85/0x110
[ 231.814123][ T27] btrfs_page_mkwrite+0x5cf/0xc80
[ 231.820631][ T27] ? btrfs_submit_direct+0x10d0/0x10d0
[ 231.826203][ T27] ? __lock_acquire+0x7d10/0x7d10
[ 231.832784][ T27] do_page_mkwrite+0x168/0x3c0
[ 231.837740][ T27] wp_page_shared+0x16b/0x6d0
[ 231.843976][ T27] handle_mm_fault+0x1f06/0x4410
[ 231.849028][ T27] ? get_page+0xe0/0xe0
[ 231.854807][ T27] ? vmacache_find+0x1e2/0x590
[ 231.859942][ T27] ? vmacache_update+0xa0/0x100
[ 231.864902][ T27] ? find_vma+0x1df/0x230
[ 231.869810][ T27] do_user_addr_fault+0x489/0xc80
[ 231.874951][ T27] exc_page_fault+0x60/0x100
[ 231.880053][ T27] asm_exc_page_fault+0x22/0x30
[ 231.885011][ T27] RIP: 0010:copy_user_generic_unrolled+0x89/0xc0
[ 231.891794][ T27] Code: 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 4c 8b 06 <4c> 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 89 d1 8a
[ 231.911929][ T27] RSP: 0018:ffffc900032cf6a0 EFLAGS: 00050202
[ 231.918181][ T27] RAX: ffffffff83e3be01 RBX: 0000000000000038 RCX: 0000000000000007
[ 231.935416][ T27] RDX: 0000000000000000 RSI: ffffc900032cf740 RDI: 00000000200000e0
[ 231.944151][ T27] RBP: 0000000000000000 R08: 0000000000000000 R09: 1ffff92000659eee
[ 231.952530][ T27] R10: dffffc0000000000 R11: fffff52000659eef R12: 00007ffffffff000
[ 231.962809][ T27] R13: 0000000020000118 R14: ffffc900032cf740 R15: 00000000200000e0
[ 231.971155][ T27] ? _copy_to_user+0xa1/0x130
[ 231.975981][ T27] _copy_to_user+0xf0/0x130
[ 231.980951][ T27] fiemap_fill_next_extent+0x1ba/0x390
[ 231.986514][ T27] ? vfs_ioctl+0xb0/0xb0
[ 231.995451][ T27] extent_fiemap+0x120d/0x15b0
[ 232.005941][ T27] ? try_release_extent_mapping+0x570/0x570
[ 232.016579][ T27] ? fiemap_prep+0x1be/0x240
[ 232.021595][ T27] btrfs_fiemap+0xc0/0x110
[ 232.026295][ T27] ? btrfs_getattr+0x4a0/0x4a0
[ 232.032346][ T27] ? __might_fault+0xb3/0x110
[ 232.038335][ T27] ? _copy_from_user+0x111/0x170
[ 232.046408][ T27] do_vfs_ioctl+0x152d/0x1ef0
[ 232.058238][ T27] ? __ia32_compat_sys_ioctl+0x910/0x910
[ 232.065582][ T27] ? rcu_lock_release+0x5/0x20
[ 232.074037][ T27] ? __lock_acquire+0x7d10/0x7d10
[ 232.083129][ T27] ? kfree+0xef/0x2a0
[ 232.087152][ T27] ? tomoyo_path_number_perm+0x5b4/0x660
[ 232.098830][ T27] ? verify_lock_unused+0x140/0x140
[ 232.109165][ T27] ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 232.114707][ T27] ? bpf_lsm_file_ioctl+0x5/0x10
[ 232.128268][ T27] ? security_file_ioctl+0x7c/0xa0
[ 232.134147][ T27] __se_sys_ioctl+0x83/0x170
[ 232.138783][ T27] do_syscall_64+0x4c/0xa0
[ 232.143583][ T27] ? clear_bhb_loop+0x30/0x80
[ 232.148293][ T27] ? clear_bhb_loop+0x30/0x80
[ 232.153659][ T27] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 232.159788][ T27] RIP: 0033:0x7f38d2e65fb9
[ 232.164207][ T27] RSP: 002b:00007f38d21f70b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 232.173506][ T27] RAX: ffffffffffffffda RBX: 00007f38d2fa4f80 RCX: 00007f38d2e65fb9
[ 232.181923][ T27] RDX: 00000000200000c0 RSI: 00000000c020660b RDI: 0000000000000004
[ 232.190321][ T27] RBP: 00007f38d2edbb38 R08: 0000000000000000 R09: 0000000000000000
[ 232.198438][ T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 232.206771][ T27] R13: 000000000000000b R14: 00007f38d2fa4f80 R15: 00007ffc6cf5e9f8
[ 232.215139][ T27]
[ 232.218262][ T27]
[ 232.218262][ T27] Showing all locks held in the system:
[ 232.227379][ T27] 1 lock held by khungtaskd/27:
[ 232.232526][ T27] #0: ffffffff8c31eaa0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30
[ 232.242171][ T27] 2 locks held by getty/3945:
[ 232.246850][ T27] #0: ffff88802c784098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[ 232.257068][ T27] #1: ffffc90002d032e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x5df/0x1a70
[ 232.267593][ T27] 3 locks held by syz-executor.0/4546:
[ 232.273365][ T27] #0: ffff8880248c9d28 (&mm->mmap_lock){++++}-{3:3}, at: do_user_addr_fault+0x2b9/0xc80
[ 232.283497][ T27] #1: ffff88807c2d2558 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x168/0x3c0
[ 232.293402][ T27] #2: ffff888071308e68 (&ei->i_mmap_lock){.+.+}-{3:3}, at: btrfs_page_mkwrite+0x480/0xc80
[ 232.303722][ T27] 3 locks held by syz-executor.0/6176:
[ 232.309519][ T27]
[ 232.311848][ T27] =============================================
[ 232.311848][ T27]
[ 232.328989][ T27] NMI backtrace for cpu 1
[ 232.333447][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted syzkaller #0
[ 232.340650][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 232.350789][ T27] Call Trace:
[ 232.354244][ T27]
[ 232.357183][ T27] dump_stack_lvl+0x188/0x250
[ 232.361872][ T27] ? show_regs_print_info+0x20/0x20
[ 232.367074][ T27] ? load_image+0x400/0x400
[ 232.371580][ T27] ? tick_nohz_tick_stopped+0x7b/0xb0
[ 232.376960][ T27] ? nmi_cpu_backtrace+0x1b2/0x3d0
[ 232.382176][ T27] nmi_cpu_backtrace+0x3a2/0x3d0
[ 232.387124][ T27] ? nmi_trigger_cpumask_backtrace+0x280/0x280
[ 232.393280][ T27] ? _printk+0xda/0x130
[ 232.397441][ T27] ? load_image+0x400/0x400
[ 232.401961][ T27] ? load_image+0x400/0x400
[ 232.406473][ T27] ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 232.412560][ T27] nmi_trigger_cpumask_backtrace+0x163/0x280
[ 232.418550][ T27] watchdog+0xe0f/0xe50
[ 232.422810][ T27] kthread+0x436/0x520
[ 232.426888][ T27] ? hungtask_pm_notify+0x40/0x40
[ 232.432095][ T27] ? kthread_blkcg+0xd0/0xd0
[ 232.436711][ T27] ret_from_fork+0x1f/0x30
[ 232.441252][ T27]
[ 232.444493][ T27] Sending NMI from CPU 1 to CPUs 0:
[ 232.449747][ C0] NMI backtrace for cpu 0
[ 232.449760][ C0] CPU: 0 PID: 6177 Comm: udevadm Not tainted syzkaller #0
[ 232.449774][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 232.449782][ C0] RIP: 0010:unwind_next_frame+0x8bb/0x1d90
[ 232.449803][ C0] Code: 04 28 84 c0 0f 85 fa 12 00 00 4c 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0 0f 85 14 13 00 00 48 0f bf 02 48 01 c7 48 89 7c 24 08 <4d> 8d 7e 01 43 0f b6 04 2c 84 c0 0f 85 20 0f 00 00 4c 89 fa 48 c1
[ 232.449815][ C0] RSP: 0018:ffffc90006477448 EFLAGS: 00000282
[ 232.449828][ C0] RAX: 0000000000000060 RBX: ffffc90006477508 RCX: ffffffff8d9f2758
[ 232.449838][ C0] RDX: ffffffff8e0e2b6c RSI: ffffffff8e0e2b42 RDI: ffffc900064778d0
[ 232.449848][ C0] RBP: ffffc90006477550 R08: 0000000000000008 R09: 0000000000000001
[ 232.449857][ C0] R10: dffffc0000000000 R11: fffff52000c8eead R12: 1ffffffff1c1c56e
[ 232.449867][ C0] R13: dffffc0000000000 R14: ffffffff8e0e2b70 R15: ffffffff8e0e2b6d
[ 232.449878][ C0] FS: 00007f662c39b880(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[ 232.449891][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 232.449900][ C0] CR2: 00007ffd1cacca28 CR3: 000000001ef42000 CR4: 00000000003506f0
[ 232.449913][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 232.449921][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 232.449929][ C0] Call Trace:
[ 232.449934][ C0]
[ 232.449942][ C0] ? slab_post_alloc_hook+0x4c/0x380
[ 232.449959][ C0] ? stack_trace_save+0xf0/0xf0
[ 232.449973][ C0] arch_stack_walk+0x10c/0x140
[ 232.449990][ C0] ? slab_post_alloc_hook+0x4c/0x380
[ 232.450005][ C0] stack_trace_save+0xa6/0xf0
[ 232.450017][ C0] ? stack_trace_snprint+0xf0/0xf0
[ 232.450030][ C0] ? is_bpf_text_address+0x254/0x270
[ 232.450046][ C0] __kasan_slab_alloc+0x9c/0xd0
[ 232.450061][ C0] ? __kasan_slab_alloc+0x9c/0xd0
[ 232.450074][ C0] ? slab_post_alloc_hook+0x4c/0x380
[ 232.450107][ C0] slab_post_alloc_hook+0x4c/0x380
[ 232.450120][ C0] ? get_obj_cgroup_from_current+0x2bf/0x2f0
[ 232.450135][ C0] ? __alloc_file+0x25/0x240
[ 232.450149][ C0] kmem_cache_alloc+0x100/0x290
[ 232.450163][ C0] __alloc_file+0x25/0x240
[ 232.450178][ C0] alloc_empty_file+0x90/0x180
[ 232.450192][ C0] path_openat+0x10f/0x2fa0
[ 232.450215][ C0] ? verify_lock_unused+0x140/0x140
[ 232.450230][ C0] ? __kasan_slab_alloc+0xb3/0xd0
[ 232.450244][ C0] ? __kasan_slab_alloc+0x9c/0xd0
[ 232.450257][ C0] ? slab_post_alloc_hook+0x4c/0x380
[ 232.450270][ C0] ? __x64_sys_openat+0x135/0x160
[ 232.450282][ C0] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 232.450297][ C0] ? do_filp_open+0x410/0x410
[ 232.450319][ C0] do_filp_open+0x1e2/0x410
[ 232.450335][ C0] ? vfs_tmpfile+0x300/0x300
[ 232.450357][ C0] ? _raw_spin_unlock+0x24/0x40
[ 232.450372][ C0] ? alloc_fd+0x598/0x630
[ 232.450387][ C0] do_sys_openat2+0x150/0x4b0
[ 232.450399][ C0] ? __lock_acquire+0x7d10/0x7d10
[ 232.450416][ C0] ? do_sys_open+0xe0/0xe0
[ 232.450431][ C0] ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 232.450449][ C0] ? lock_chain_count+0x20/0x20
[ 232.450463][ C0] ? vtime_user_exit+0x2c8/0x3e0
[ 232.450480][ C0] __x64_sys_openat+0x135/0x160
[ 232.450495][ C0] do_syscall_64+0x4c/0xa0
[ 232.450507][ C0] ? clear_bhb_loop+0x30/0x80
[ 232.450520][ C0] ? clear_bhb_loop+0x30/0x80
[ 232.450533][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 232.450546][ C0] RIP: 0033:0x7f662c489407
[ 232.450564][ C0] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[ 232.450575][ C0] RSP: 002b:00007ffd1cacc8e0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[ 232.450588][ C0] RAX: ffffffffffffffda RBX: 00007f662c39b880 RCX: 00007f662c489407
[ 232.450598][ C0] RDX: 0000000000080000 RSI: 00007ffd1cacca60 RDI: ffffffffffffff9c
[ 232.450608][ C0] RBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000000
[ 232.450615][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 000055e5a382bee0
[ 232.450624][ C0] R13: 000055e5a382bee0 R14: 0000000000000001 R15: 000055e5ca4d6e60
[ 232.450640][ C0]
[ 232.458199][ T27] Kernel panic - not syncing: hung_task: blocked tasks
[ 232.873674][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted syzkaller #0
[ 232.880904][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 232.890971][ T27] Call Trace:
[ 232.894265][ T27]
[ 232.897214][ T27] dump_stack_lvl+0x188/0x250
[ 232.902058][ T27] ? show_regs_print_info+0x20/0x20
[ 232.907275][ T27] ? load_image+0x400/0x400
[ 232.911805][ T27] panic+0x2e5/0x810
[ 232.915709][ T27] ? schedule_preempt_disabled+0x20/0x20
[ 232.921375][ T27] ? bpf_jit_dump+0xd0/0xd0
[ 232.925886][ T27] ? __irq_work_queue_local+0x12c/0x190
[ 232.931443][ T27] ? nmi_trigger_cpumask_backtrace+0x260/0x280
[ 232.937616][ T27] watchdog+0xe4e/0xe50
[ 232.941794][ T27] kthread+0x436/0x520
[ 232.945874][ T27] ? hungtask_pm_notify+0x40/0x40
[ 232.950914][ T27] ? kthread_blkcg+0xd0/0xd0
[ 232.955702][ T27] ret_from_fork+0x1f/0x30
[ 232.960148][ T27]
[ 232.963576][ T27] Kernel Offset: disabled
[ 232.968002][ T27] Rebooting in 86400 seconds..