Warning: Permanently added '10.128.1.148' (ED25519) to the list of known hosts.
2026/01/28 05:03:50 parsed 1 programs
[ 96.528661][ T4605] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 98.063437][ T4621] chnl_net:caif_netlink_parms(): no params data found
[ 98.106367][ T4621] bridge0: port 1(bridge_slave_0) entered blocking state
[ 98.113515][ T4621] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.121514][ T4621] device bridge_slave_0 entered promiscuous mode
[ 98.129936][ T4621] bridge0: port 2(bridge_slave_1) entered blocking state
[ 98.137216][ T4621] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.145291][ T4621] device bridge_slave_1 entered promiscuous mode
[ 98.169130][ T4621] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 98.180047][ T4621] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 98.203278][ T4621] team0: Port device team_slave_0 added
[ 98.213247][ T4621] team0: Port device team_slave_1 added
[ 98.230003][ T4621] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 98.237048][ T4621] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 98.263201][ T4621] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 98.275283][ T4621] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 98.282232][ T4621] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 98.308567][ T4621] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 98.337796][ T4621] device hsr_slave_0 entered promiscuous mode
[ 98.344350][ T4621] device hsr_slave_1 entered promiscuous mode
[ 98.976797][ T4621] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 98.998584][ T4621] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 99.017522][ T4621] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 99.038416][ T4621] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 99.093347][ T4621] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.100714][ T4621] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 99.108985][ T4621] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.116253][ T4621] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 99.145838][ T144] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.154151][ T144] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.247360][ T4621] 8021q: adding VLAN 0 to HW filter on device bond0
[ 99.268967][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 99.285287][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 99.298007][ T4621] 8021q: adding VLAN 0 to HW filter on device team0
[ 99.316701][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 99.337287][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 99.355838][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.362925][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 99.389194][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 99.406551][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 99.426303][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.433401][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 99.447746][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 99.469242][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 99.506707][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 99.527547][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 99.546588][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 99.566688][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 99.586765][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 99.606504][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 99.626114][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 99.647002][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 99.667445][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 99.688895][ T4621] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 99.898080][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 99.914991][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 99.929353][ T4621] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 99.958915][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 99.975562][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 100.004606][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 100.015479][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 100.026774][ T4621] device veth0_vlan entered promiscuous mode
[ 100.036137][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 100.044169][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 100.056839][ T4621] device veth1_vlan entered promiscuous mode
[ 100.083440][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 100.092608][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 100.101640][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 100.111242][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 100.122908][ T4621] device veth0_macvtap entered promiscuous mode
[ 100.154989][ T1270] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 100.165836][ T4621] device veth1_macvtap entered promiscuous mode
[ 100.191833][ T4621] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 100.200921][ T1270] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 100.216217][ T1270] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 100.228354][ T4621] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 100.244387][ T1270] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 100.260655][ T1270] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 100.278449][ T4621] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.295395][ T4621] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.304239][ T4621] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.316209][ T4621] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.662860][ T1237] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 101.329206][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.350024][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 101.367744][ T1270] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 101.383467][ T1270] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.392394][ T1270] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 101.404948][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 102.982828][ T1237] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 105.389766][ T1237] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 105.440472][ T1237] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 106.110229][ T1237] device hsr_slave_0 left promiscuous mode
[ 106.125178][ T1237] device hsr_slave_1 left promiscuous mode
[ 106.146243][ T1237] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 106.153678][ T1237] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 106.179732][ T1237] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 106.193401][ T1237] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 106.215277][ T1237] device bridge_slave_1 left promiscuous mode
[ 106.221572][ T1237] bridge0: port 2(bridge_slave_1) entered disabled state
[ 106.255260][ T1237] device bridge_slave_0 left promiscuous mode
[ 106.261546][ T1237] bridge0: port 1(bridge_slave_0) entered disabled state
[ 106.293035][ T1237] device veth1_macvtap left promiscuous mode
[ 106.314604][ T1237] device veth0_macvtap left promiscuous mode
[ 106.320741][ T1237] device veth1_vlan left promiscuous mode
[ 106.334826][ T1237] device veth0_vlan left promiscuous mode
[ 106.572461][ T1237] team0 (unregistering): Port device team_slave_1 removed
[ 106.586911][ T1237] team0 (unregistering): Port device team_slave_0 removed
[ 106.598064][ T1237] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 106.611795][ T1237] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 106.663031][ T1237] bond0 (unregistering): Released all slaves
2026/01/28 05:04:05 executed programs: 0
[ 108.235889][ T5090] chnl_net:caif_netlink_parms(): no params data found
[ 108.356993][ T5090] bridge0: port 1(bridge_slave_0) entered blocking state
[ 108.364191][ T5090] bridge0: port 1(bridge_slave_0) entered disabled state
[ 108.385908][ T5090] device bridge_slave_0 entered promiscuous mode
[ 108.405775][ T5090] bridge0: port 2(bridge_slave_1) entered blocking state
[ 108.424593][ T5090] bridge0: port 2(bridge_slave_1) entered disabled state
[ 108.432954][ T5090] device bridge_slave_1 entered promiscuous mode
[ 108.497422][ T5090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 108.518545][ T5090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 108.579657][ T5090] team0: Port device team_slave_0 added
[ 108.596877][ T5090] team0: Port device team_slave_1 added
[ 108.641193][ T5090] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 108.650658][ T5090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 108.678720][ T5090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 108.691847][ T5090] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 108.700406][ T5090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 108.728153][ T5090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 108.803022][ T5090] device hsr_slave_0 entered promiscuous mode
[ 108.817267][ T5090] device hsr_slave_1 entered promiscuous mode
[ 109.551258][ T5090] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 109.562539][ T5090] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 109.572398][ T5090] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 109.583896][ T5090] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 109.657383][ T5090] 8021q: adding VLAN 0 to HW filter on device bond0
[ 109.671938][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 109.681070][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 109.692267][ T5090] 8021q: adding VLAN 0 to HW filter on device team0
[ 109.706491][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 109.717387][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 109.726946][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 109.734037][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 109.752479][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 109.760996][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 109.769985][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 109.779073][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 109.786202][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 109.794648][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 109.803507][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 109.816666][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 109.826865][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 109.846998][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 109.855873][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 109.868420][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 109.878520][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 109.888992][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 109.897740][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 109.907543][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 109.920564][ T5090] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 110.048355][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 110.055538][ T4715] Bluetooth: hci0: command 0x0409 tx timeout
[ 110.056704][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 110.077767][ T5090] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 110.139917][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 110.153263][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 110.213914][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 110.223211][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 110.231875][ T5090] device veth0_vlan entered promiscuous mode
[ 110.242173][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 110.251175][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 110.263504][ T5090] device veth1_vlan entered promiscuous mode
[ 110.319005][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 110.329468][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 110.339408][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 110.348714][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 110.361784][ T5090] device veth0_macvtap entered promiscuous mode
[ 110.416022][ T5090] device veth1_macvtap entered promiscuous mode
[ 110.438734][ T5090] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 110.446503][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 110.455287][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 110.463356][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 110.473184][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 110.486223][ T5090] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 110.530517][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 110.539952][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 110.550535][ T5090] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.560469][ T5090] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.571238][ T5090] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.581628][ T5090] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.755066][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 110.763118][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 110.799640][ T1270] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 110.801528][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 110.821153][ T1270] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 110.859848][ T1270] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 111.094579][ C0] ------------[ cut here ]------------
[ 111.094579][ C1] ------------[ cut here ]------------
[ 111.095123][ C1] WARNING: CPU: 1 PID: 5194 at mm/maccess.c:226 copy_from_user_nofault+0x160/0x1c0
[ 111.095158][ C1] Modules linked in:
[ 111.095172][ C1] CPU: 1 PID: 5194 Comm: dhcpcd-run-hook Not tainted syzkaller #0
[ 111.095188][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 111.095198][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[ 111.095218][ C1] Code: 24 45 31 f6 31 ff 89 de e8 7d 94 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 00 91 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[ 111.095232][ C1] RSP: 0018:ffffc90000dd0bc0 EFLAGS: 00010006
[ 111.095248][ C1] RAX: ffffffff81a08ea0 RBX: 0000000000000008 RCX: ffff88802aa5d940
[ 111.095300][ C1]
[ 111.095303][ C1] ======================================================
[ 111.095307][ C1] WARNING: possible circular locking dependency detected
[ 111.095310][ C1] syzkaller #0 Not tainted
[ 111.095316][ C1] ------------------------------------------------------
[ 111.095320][ C1] dhcpcd-run-hook/5194 is trying to acquire lock:
[ 111.095327][ C1] ffffffff8c313500 (console_owner){-...}-{0:0}, at: console_trylock_spinning+0x15c/0x370
[ 111.095359][ C1]
[ 111.095359][ C1] but task is already holding lock:
[ 111.095371][ C1] ffff8880b912a258 (hrtimer_bases.lock){-.-.}-{2:2}, at: __hrtimer_run_queues+0x5a2/0xb70
[ 111.095404][ C1]
[ 111.095404][ C1] which lock already depends on the new lock.
[ 111.095404][ C1]
[ 111.095408][ C1]
[ 111.095408][ C1] the existing dependency chain (in reverse order) is:
[ 111.095412][ C1]
[ 111.095412][ C1] -> #6 (hrtimer_bases.lock){-.-.}-{2:2}:
[ 111.095429][ C1] _raw_spin_lock_irqsave+0xb0/0x100
[ 111.095446][ C1] hrtimer_start_range_ns+0xff/0xc20
[ 111.095461][ C1] enqueue_task_rt+0x627/0xc80
[ 111.095474][ C1] enqueue_task+0x182/0x2b0
[ 111.095488][ C1] __sched_setscheduler+0x1393/0x1c10
[ 111.095502][ C1] sched_set_fifo+0xd9/0x160
[ 111.095516][ C1] drm_vblank_worker_init+0x149/0x1a0
[ 111.095531][ C1] drm_vblank_init+0x265/0x330
[ 111.095542][ C1] vkms_init+0x34d/0x730
[ 111.095555][ C1] do_one_initcall+0x272/0x730
[ 111.095568][ C1] do_initcall_level+0x137/0x1f0
[ 111.095582][ C1] do_initcalls+0x4b/0x90
[ 111.095595][ C1] kernel_init_freeable+0x3e9/0x570
[ 111.095609][ C1] kernel_init+0x19/0x1b0
[ 111.095621][ C1] ret_from_fork+0x1f/0x30
[ 111.095633][ C1]
[ 111.095633][ C1] -> #5 (&rt_b->rt_runtime_lock){-...}-{2:2}:
[ 111.095651][ C1] _raw_spin_lock+0x2a/0x40
[ 111.095664][ C1] rq_online_rt+0x132/0x320
[ 111.095676][ C1] sched_cpu_activate+0x4ca/0x660
[ 111.095687][ C1] cpuhp_invoke_callback+0x431/0x830
[ 111.095703][ C1] cpuhp_thread_fun+0x3b5/0x7e0
[ 111.095716][ C1] smpboot_thread_fn+0x4f6/0x970
[ 111.095730][ C1] kthread+0x436/0x520
[ 111.095741][ C1] ret_from_fork+0x1f/0x30
[ 111.095753][ C1]
[ 111.095753][ C1] -> #4 (&rq->__lock){-.-.}-{2:2}:
[ 111.095770][ C1] _raw_spin_lock_nested+0x2e/0x40
[ 111.095782][ C1] raw_spin_rq_lock_nested+0x26/0x140
[ 111.095795][ C1] task_fork_fair+0x5c/0x350
[ 111.095805][ C1] sched_cgroup_fork+0x2c6/0x320
[ 111.095819][ C1] copy_process+0x22f6/0x3e20
[ 111.095831][ C1] kernel_clone+0x23f/0x990
[ 111.095842][ C1] kernel_thread+0xfa/0x160
[ 111.095854][ C1] rest_init+0x21/0x330
[ 111.095865][ C1] start_kernel+0x489/0x540
[ 111.095878][ C1] secondary_startup_64_no_verify+0xb1/0xbb
[ 111.095892][ C1]
[ 111.095892][ C1] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[ 111.095909][ C1] _raw_spin_lock_irqsave+0xb0/0x100
[ 111.095923][ C1] try_to_wake_up+0x5c/0x1050
[ 111.095936][ C1] __wake_up_common+0x2a4/0x4e0
[ 111.095949][ C1] __wake_up+0x10e/0x180
[ 111.095961][ C1] tty_port_default_wakeup+0xa5/0xf0
[ 111.095976][ C1] serial8250_tx_chars+0x629/0x830
[ 111.095990][ C1] serial8250_handle_irq+0x519/0x610
[ 111.096003][ C1] serial8250_default_handle_irq+0xb4/0x1a0
[ 111.096018][ C1] serial8250_interrupt+0x9b/0x1c0
[ 111.096030][ C1] __handle_irq_event_percpu+0x299/0x9d0
[ 111.096044][ C1] handle_irq_event+0xa5/0x220
[ 111.096056][ C1] handle_edge_irq+0x243/0xb20
[ 111.096069][ C1] __common_interrupt+0xd7/0x1e0
[ 111.096081][ C1] common_interrupt+0xb0/0xd0
[ 111.096093][ C1] asm_common_interrupt+0x22/0x40
[ 111.096104][ C1] kmalloc_large_node+0x124/0x190
[ 111.096116][ C1] __kmalloc_node_track_caller+0x22e/0x3a0
[ 111.096128][ C1] __alloc_skb+0x22c/0x750
[ 111.096141][ C1] netlink_dump+0x19f/0xcf0
[ 111.096152][ C1] netlink_recvmsg+0x672/0xe20
[ 111.096163][ C1] ____sys_recvmsg+0x2cd/0x5e0
[ 111.096176][ C1] ___sys_recvmsg+0x21a/0x5c0
[ 111.096189][ C1] __x64_sys_recvmsg+0x1f9/0x2c0
[ 111.096202][ C1] do_syscall_64+0x4c/0xa0
[ 111.096213][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 111.096226][ C1]
[ 111.096226][ C1] -> #2 (&tty->write_wait){-...}-{2:2}:
[ 111.096243][ C1] _raw_spin_lock_irqsave+0xb0/0x100
[ 111.096257][ C1] __wake_up+0xf4/0x180
[ 111.096269][ C1] tty_port_default_wakeup+0xa5/0xf0
[ 111.096282][ C1] serial8250_tx_chars+0x629/0x830
[ 111.096295][ C1] serial8250_handle_irq+0x519/0x610
[ 111.096308][ C1] serial8250_default_handle_irq+0xb4/0x1a0
[ 111.096323][ C1] serial8250_interrupt+0x9b/0x1c0
[ 111.096335][ C1] __handle_irq_event_percpu+0x299/0x9d0
[ 111.096348][ C1] handle_irq_event+0xa5/0x220
[ 111.096360][ C1] handle_edge_irq+0x243/0xb20
[ 111.096380][ C1] __common_interrupt+0xd7/0x1e0
[ 111.096391][ C1] common_interrupt+0xb0/0xd0
[ 111.096403][ C1] asm_common_interrupt+0x22/0x40
[ 111.096414][ C1] _raw_spin_unlock_irqrestore+0xbc/0x120
[ 111.096428][ C1] uart_write+0x62f/0x880
[ 111.096440][ C1] n_tty_write+0xd2e/0x1210
[ 111.096451][ C1] file_tty_write+0x557/0x910
[ 111.096465][ C1] vfs_write+0x745/0xd60
[ 111.096476][ C1] ksys_write+0x152/0x260
[ 111.096487][ C1] do_syscall_64+0x4c/0xa0
[ 111.096498][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 111.096510][ C1]
[ 111.096510][ C1] -> #1 (&port_lock_key){-...}-{2:2}:
[ 111.096527][ C1] _raw_spin_lock_irqsave+0xb0/0x100
[ 111.096541][ C1] serial8250_console_write+0x178/0x1000
[ 111.096556][ C1] console_unlock+0xb9a/0x1120
[ 111.096567][ C1] vprintk_emit+0xc0/0x150
[ 111.096577][ C1] _printk+0xda/0x130
[ 111.096591][ C1] register_console+0x699/0x980
[ 111.096603][ C1] univ8250_console_init+0x41/0x50
[ 111.096614][ C1] console_init+0x177/0x5d0
[ 111.096627][ C1] start_kernel+0x2fc/0x540
[ 111.096639][ C1] secondary_startup_64_no_verify+0xb1/0xbb
[ 111.096653][ C1]
[ 111.096653][ C1] -> #0 (console_owner){-...}-{0:0}:
[ 111.096670][ C1] __lock_acquire+0x2c42/0x7d10
[ 111.096684][ C1] lock_acquire+0x19e/0x400
[ 111.096697][ C1] console_trylock_spinning+0x17c/0x370
[ 111.096709][ C1] vprintk_emit+0xa7/0x150
[ 111.096719][ C1] _printk+0xda/0x130
[ 111.096732][ C1] __show_regs+0xcb/0x500
[ 111.096743][ C1] show_regs+0x32/0x60
[ 111.096755][ C1] __warn+0x15e/0x2b0
[ 111.096767][ C1] report_bug+0x1b7/0x2e0
[ 111.096781][ C1] handle_bug+0x3a/0x70
[ 111.096792][ C1] exc_invalid_op+0x16/0x40
[ 111.096803][ C1] asm_exc_invalid_op+0x16/0x20
[ 111.096814][ C1] copy_from_user_nofault+0x160/0x1c0
[ 111.096828][ C1] bpf_probe_read_user+0x26/0x70
[ 111.096842][ C1] bpf_prog_02073d59a3c0f06f+0x3d/0xa28
[ 111.096853][ C1] bpf_trace_run2+0x163/0x2e0
[ 111.096864][ C1] enqueue_hrtimer+0x314/0x370
[ 111.096879][ C1] __hrtimer_run_queues+0x5f3/0xb70
[ 111.096892][ C1] hrtimer_interrupt+0x3bb/0x8d0
[ 111.096906][ C1] __sysvec_apic_timer_interrupt+0x137/0x4a0
[ 111.096919][ C1] sysvec_apic_timer_interrupt+0x9b/0xc0
[ 111.096932][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 111.096967][ C1] __unwind_start+0x500/0x740
[ 111.096980][ C1] arch_stack_walk+0xda/0x140
[ 111.096994][ C1] stack_trace_save+0xa6/0xf0
[ 111.097005][ C1] __kasan_slab_alloc+0x9c/0xd0
[ 111.097018][ C1] slab_post_alloc_hook+0x4c/0x380
[ 111.097029][ C1] kmem_cache_alloc+0x100/0x290
[ 111.097041][ C1] copy_mm+0x8cd/0x13f0
[ 111.097052][ C1] copy_process+0x17eb/0x3e20
[ 111.097064][ C1] kernel_clone+0x23f/0x990
[ 111.097075][ C1] __x64_sys_clone+0x19a/0x210
[ 111.097087][ C1] do_syscall_64+0x4c/0xa0
[ 111.097098][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 111.097111][ C1]
[ 111.097111][ C1] other info that might help us debug this:
[ 111.097111][ C1]
[ 111.097114][ C1] Chain exists of:
[ 111.097114][ C1] console_owner --> &rt_b->rt_runtime_lock --> hrtimer_bases.lock
[ 111.097114][ C1]
[ 111.097135][ C1] Possible unsafe locking scenario:
[ 111.097135][ C1]
[ 111.097138][ C1] CPU0 CPU1
[ 111.097141][ C1] ---- ----
[ 111.097144][ C1] lock(hrtimer_bases.lock);
[ 111.097153][ C1] lock(&rt_b->rt_runtime_lock);
[ 111.097162][ C1] lock(hrtimer_bases.lock);
[ 111.097171][ C1] lock(console_owner);
[ 111.097179][ C1]
[ 111.097179][ C1] *** DEADLOCK ***
[ 111.097179][ C1]
[ 111.097181][ C1] 5 locks held by dhcpcd-run-hook/5194:
[ 111.097189][ C1] #0: ffffffff8c3a8b90 (dup_mmap_sem){.+.+}-{0:0}, at: copy_mm+0x22c/0x13f0
[ 111.097221][ C1] #1: ffff888076807128 (&mm->mmap_lock){++++}-{3:3}, at: copy_mm+0x249/0x13f0
[ 111.097253][ C1] #2: ffff88807da62428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: copy_mm+0x34f/0x13f0
[ 111.097287][ C1] #3: ffff8880b912a258 (hrtimer_bases.lock){-.-.}-{2:2}, at: __hrtimer_run_queues+0x5a2/0xb70
[ 111.097320][ C1] #4: ffffffff8c31eaa0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30
[ 111.097351][ C1]
[ 111.097351][ C1] stack backtrace:
[ 111.097355][ C1] CPU: 1 PID: 5194 Comm: dhcpcd-run-hook Not tainted syzkaller #0
[ 111.097375][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 111.097382][ C1] Call Trace:
[ 111.097387][ C1]
[ 111.097391][ C1] dump_stack_lvl+0x188/0x250
[ 111.097408][ C1] ? load_image+0x400/0x400
[ 111.097423][ C1] ? show_regs_print_info+0x20/0x20
[ 111.097441][ C1] ? print_circular_bug+0x12b/0x1a0
[ 111.097455][ C1] check_noncircular+0x296/0x330
[ 111.097470][ C1] ? add_chain_block+0x940/0x940
[ 111.097482][ C1] ? lockdep_lock+0x15c/0x1f0
[ 111.097500][ C1] ? mark_lock+0x94/0x320
[ 111.097511][ C1] ? _find_first_zero_bit+0xce/0xf0
[ 111.097528][ C1] __lock_acquire+0x2c42/0x7d10
[ 111.097550][ C1] ? down_trylock+0x4c/0xa0
[ 111.097564][ C1] ? verify_lock_unused+0x140/0x140
[ 111.097579][ C1] ? verify_lock_unused+0x140/0x140
[ 111.097594][ C1] ? __rwlock_init+0x140/0x140
[ 111.097609][ C1] ? __pv_queued_spin_lock_slowpath+0x7e6/0x9c0
[ 111.097627][ C1] lock_acquire+0x19e/0x400
[ 111.097642][ C1] ? console_trylock_spinning+0x15c/0x370
[ 111.097655][ C1] ? console_trylock_spinning+0x15c/0x370
[ 111.097669][ C1] ? __lock_acquire+0x7d10/0x7d10
[ 111.097683][ C1] ? do_raw_spin_lock+0x265/0x2f0
[ 111.097696][ C1] ? read_lock_is_recursive+0x10/0x10
[ 111.097712][ C1] ? __rwlock_init+0x140/0x140
[ 111.097725][ C1] ? do_raw_spin_unlock+0x11d/0x230
[ 111.097740][ C1] console_trylock_spinning+0x17c/0x370
[ 111.097752][ C1] ? console_trylock_spinning+0x15c/0x370
[ 111.097765][ C1] ? vprintk_emit+0x150/0x150
[ 111.097777][ C1] ? vprintk_emit+0xf9/0x150
[ 111.097791][ C1] ? irq_work_queue+0xbf/0x140
[ 111.097808][ C1] vprintk_emit+0xa7/0x150
[ 111.097821][ C1] _printk+0xda/0x130
[ 111.097835][ C1] ? copy_from_user_nofault+0x136/0x1c0
[ 111.097849][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 111.097864][ C1] ? load_image+0x400/0x400
[ 111.097881][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 111.097895][ C1] __show_regs+0xcb/0x500
[ 111.097909][ C1] ? dump_stack_print_info+0xf1/0x150
[ 111.097924][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 111.097938][ C1] show_regs+0x32/0x60
[ 111.097951][ C1] __warn+0x15e/0x2b0
[ 111.097965][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 111.097980][ C1] report_bug+0x1b7/0x2e0
[ 111.097997][ C1] handle_bug+0x3a/0x70
[ 111.098009][ C1] exc_invalid_op+0x16/0x40
[ 111.098022][ C1] asm_exc_invalid_op+0x16/0x20
[ 111.098034][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[ 111.098049][ C1] Code: 24 45 31 f6 31 ff 89 de e8 7d 94 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 00 91 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[ 111.098060][ C1] RSP: 0018:ffffc90000dd0bc0 EFLAGS: 00010006
[ 111.098071][ C1] RAX: ffffffff81a08ea0 RBX: 0000000000000008 RCX: ffff88802aa5d940
[ 111.098081][ C1] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000000
[ 111.098089][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: 1ffffffff203a218
[ 111.098098][ C1] R10: dffffc0000000000 R11: fffffbfff203a219 R12: ffff88802aa5f0c8
[ 111.098108][ C1] R13: dffffc0000000000 R14: ffffc90000dd0c28 R15: 0000000000000000
[ 111.098119][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 111.098138][ C1] bpf_probe_read_user+0x26/0x70
[ 111.098154][ C1] bpf_prog_02073d59a3c0f06f+0x3d/0xa28
[ 111.098166][ C1] bpf_trace_run2+0x163/0x2e0
[ 111.098180][ C1] ? bpf_trace_run1+0x2e0/0x2e0
[ 111.098192][ C1] ? enqueue_hrtimer+0x259/0x370
[ 111.098210][ C1] enqueue_hrtimer+0x314/0x370
[ 111.098226][ C1] __hrtimer_run_queues+0x5f3/0xb70
[ 111.098247][ C1] ? hrtimer_interrupt+0x8d0/0x8d0
[ 111.098262][ C1] ? ktime_get_update_offsets_now+0x3ce/0x3e0
[ 111.098279][ C1] hrtimer_interrupt+0x3bb/0x8d0
[ 111.098302][ C1] __sysvec_apic_timer_interrupt+0x137/0x4a0
[ 111.098316][ C1] sysvec_apic_timer_interrupt+0x9b/0xc0
[ 111.098331][ C1]
[ 111.098334][ C1]
[ 111.098339][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 111.098352][ C1] RIP: 0010:__unwind_start+0x500/0x740
[ 111.098374][ C1] Code: ff 40 84 ed 0f 84 1f 01 00 00 48 89 d8 48 c1 e8 03 48 89 04 24 0f b6 04 30 84 c0 0f 85 f2 01 00 00 83 3b 00 0f 84 c7 fb ff ff <4c> 8d 7b 08 4c 8d 6b 10 48 8b 44 24 10 48 83 c0 08 48 89 44 24 20
[ 111.098384][ C1] RSP: 0018:ffffc9000266f4e8 EFLAGS: 00000202
[ 111.098395][ C1] RAX: 0000000000000000 RBX: ffffc9000266f548 RCX: 0000000000000001
[ 111.098404][ C1] RDX: 0000000000000002 RSI: dffffc0000000000 RDI: ffffc9000266f4e8
[ 111.098413][ C1] RBP: ffffc9000266f501 R08: ffffc9000266f501 R09: ffffc9000266f548
[ 111.098422][ C1] R10: dffffc0000000000 R11: fffff520004cdeb5 R12: ffffc9000266f4e8
[ 111.098431][ C1] R13: ffffc9000266f568 R14: ffffc9000266f570 R15: 1ffff920004cdeae
[ 111.098446][ C1] ? __unwind_start+0x441/0x740
[ 111.098462][ C1] ? stack_trace_save+0xf0/0xf0
[ 111.098474][ C1] arch_stack_walk+0xda/0x140
[ 111.098491][ C1] ? __unwind_start+0xee/0x740
[ 111.098506][ C1] stack_trace_save+0xa6/0xf0
[ 111.098519][ C1] ? stack_trace_snprint+0xf0/0xf0
[ 111.098535][ C1] __kasan_slab_alloc+0x9c/0xd0
[ 111.098566][ C1] slab_post_alloc_hook+0x4c/0x380
[ 111.098579][ C1] ? get_obj_cgroup_from_current+0x2bf/0x2f0
[ 111.098594][ C1] ? copy_mm+0x8cd/0x13f0
[ 111.098607][ C1] kmem_cache_alloc+0x100/0x290
[ 111.098621][ C1] copy_mm+0x8cd/0x13f0
[ 111.098639][ C1] ? copy_signal+0x640/0x640
[ 111.098653][ C1] ? __init_rwsem+0x11e/0x160
[ 111.098667][ C1] ? copy_signal+0x537/0x640
[ 111.098681][ C1] copy_process+0x17eb/0x3e20
[ 111.098705][ C1] ? __pidfd_prepare+0x140/0x140
[ 111.098723][ C1] kernel_clone+0x23f/0x990
[ 111.098737][ C1] ? create_io_thread+0x180/0x180
[ 111.098757][ C1] __x64_sys_clone+0x19a/0x210
[ 111.098771][ C1] ? __ia32_sys_vfork+0x130/0x130
[ 111.098791][ C1] ? lockdep_hardirqs_on+0x94/0x140
[ 111.098806][ C1] do_syscall_64+0x4c/0xa0
[ 111.098818][ C1] ? clear_bhb_loop+0x30/0x80
[ 111.098830][ C1] ? clear_bhb_loop+0x30/0x80
[ 111.098843][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 111.098856][ C1] RIP: 0033:0x7f0a156b3636
[ 111.098867][ C1] Code: 89 df e8 6d e8 f6 ff 45 31 c0 31 d2 31 f6 64 48 8b 04 25 10 00 00 00 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 52 89 c5 85 c0 75 31 64 48 8b 04 25 10 00 00
[ 111.098877][ C1] RSP: 002b:00007ffd9d3ea5d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 111.098891][ C1] RAX: ffffffffffffffda RBX: 00007ffd9d3ea5d8 RCX: 00007f0a156b3636
[ 111.098900][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 111.098908][ C1] RBP: 000055961e57de60 R08: 0000000000000000 R09: 3c00000040001201
[ 111.098917][ C1] R10: 00007f0a15519f50 R11: 0000000000000246 R12: 000055961e58a710
[ 111.098926][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 111.098939][ C1]
[ 111.100764][ C0] WARNING: CPU: 0 PID: 3562 at mm/maccess.c:226 copy_from_user_nofault+0x160/0x1c0
[ 111.106213][ C1] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000000
[ 111.115476][ C0] Modules linked in:
[ 111.119357][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: 1ffffffff203a218
[ 111.127144][ C0] CPU: 0 PID: 3562 Comm: udevd Not tainted syzkaller #0
[ 111.137270][ C1] R10: dffffc0000000000 R11: fffffbfff203a219 R12: ffff88802aa5f0c8
[ 111.143409][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 111.163121][ C1] R13: dffffc0000000000 R14: ffffc90000dd0c28 R15: 0000000000000000
[ 111.169169][ C0] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[ 111.177213][ C1] FS: 00007f0a15519c80(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[ 111.179529][ C0] Code: 24 45 31 f6 31 ff 89 de e8 7d 94 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 00 91 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[ 111.186529][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 111.193541][ C0] RSP: 0018:ffffc90000007bc0 EFLAGS: 00010006
[ 111.197938][ C1] CR2: 000055961e58dfd8 CR3: 0000000061a08000 CR4: 00000000003506e0
[ 111.205071][ C0]
[ 111.205077][ C0] RAX: ffffffff81a08ea0 RBX: 0000000000000008 RCX: ffff88807c4c0000
[ 111.211472][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 111.221246][ C0] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000000
[ 111.228856][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 111.238721][ C0] RBP: 0000000000000000 R08: dffffc0000000000 R09: 1ffffffff203a218
[ 111.249113][ C1] Call Trace:
[ 111.249121][ C1]
[ 111.258121][ C0] R10: dffffc0000000000 R11: fffffbfff203a219 R12: ffff88807c4c1788
[ 111.266176][ C1] bpf_probe_read_user+0x26/0x70
[ 111.271983][ C0] R13: dffffc0000000000 R14: ffffc90000007c28 R15: 0000000000000000
[ 111.277989][ C1] bpf_prog_02073d59a3c0f06f+0x3d/0xa28
[ 111.283264][ C0] FS: 00007fb3c7ece880(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[ 111.288279][ C1] bpf_trace_run2+0x163/0x2e0
[ 111.294157][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 111.299264][ C1] ? bpf_trace_run1+0x2e0/0x2e0
[ 111.305139][ C0] CR2: 0000000000000000 CR3: 000000007d594000 CR4: 00000000003506f0
[ 111.310410][ C1] ? enqueue_hrtimer+0x259/0x370
[ 111.315160][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 111.320426][ C1] enqueue_hrtimer+0x314/0x370
[ 111.325863][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 111.330699][ C1] __hrtimer_run_queues+0x5f3/0xb70
[ 111.336404][ C0] Call Trace:
[ 111.336413][ C0]
[ 111.341245][ C1] ? hrtimer_interrupt+0x8d0/0x8d0
[ 111.346252][ C0] bpf_probe_read_user+0x26/0x70
[ 111.354474][ C1] ? ktime_get_update_offsets_now+0x3ce/0x3e0
[ 111.359481][ C0] bpf_prog_02073d59a3c0f06f+0x3d/0xa28
[ 111.364497][ C1] hrtimer_interrupt+0x3bb/0x8d0
[ 111.370026][ C0] bpf_trace_run2+0x163/0x2e0
[ 111.375823][ C1] __sysvec_apic_timer_interrupt+0x137/0x4a0
[ 111.381172][ C0] ? bpf_trace_run1+0x2e0/0x2e0
[ 111.386614][ C1] sysvec_apic_timer_interrupt+0x9b/0xc0
[ 111.391190][ C0] ? enqueue_hrtimer+0x259/0x370
[ 111.396109][ C1]
[ 111.403685][ C0] enqueue_hrtimer+0x314/0x370
[ 111.409320][ C1]
[ 111.415282][ C0] __hrtimer_run_queues+0x5f3/0xb70
[ 111.420388][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 111.425839][ C0] ? hrtimer_interrupt+0x8d0/0x8d0
[ 111.431014][ C1] RIP: 0010:__unwind_start+0x500/0x740
[ 111.436020][ C0] ? ktime_get_update_offsets_now+0x3ce/0x3e0
[ 111.441111][ C1] Code: ff 40 84 ed 0f 84 1f 01 00 00 48 89 d8 48 c1 e8 03 48 89 04 24 0f b6 04 30 84 c0 0f 85 f2 01 00 00 83 3b 00 0f 84 c7 fb ff ff <4c> 8d 7b 08 4c 8d 6b 10 48 8b 44 24 10 48 83 c0 08 48 89 44 24 20
[ 111.445774][ C0] hrtimer_interrupt+0x3bb/0x8d0
[ 111.450894][ C1] RSP: 0018:ffffc9000266f4e8 EFLAGS: 00000202
[ 111.457304][ C0] __sysvec_apic_timer_interrupt+0x137/0x4a0
[ 111.464560][ C1]
[ 111.464566][ C1] RAX: 0000000000000000 RBX: ffffc9000266f548 RCX: 0000000000000001
[ 111.470360][ C0] sysvec_apic_timer_interrupt+0x9b/0xc0
[ 111.475545][ C1] RDX: 0000000000000002 RSI: dffffc0000000000 RDI: ffffc9000266f4e8
[ 111.480899][ C0]
[ 111.485640][ C1] RBP: ffffc9000266f501 R08: ffffc9000266f501 R09: ffffc9000266f548
[ 111.491431][ C0]
[ 111.491439][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 111.497047][ C1] R10: dffffc0000000000 R11: fffff520004cdeb5 R12: ffffc9000266f4e8
[ 111.502855][ C0] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40
[ 111.509448][ C1] R13: ffffc9000266f568 R14: ffffc9000266f570 R15: 1ffff920004cdeae
[ 111.515083][ C0] Code: 00 00 00 66 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 4e 2c 98 f7 48 89 df e8 86 04 99 f7 e8 11 f3 b9 f7 fb bf 01 00 00 00 06 0b 8d f7 65 8b 05 87 17 3d 76 85 c0 74 02 5b c3 e8 d4 24 3b
[ 111.521230][ C1] ? __unwind_start+0x441/0x740
[ 111.526489][ C0] RSP: 0018:ffffc90002e2f510 EFLAGS: 00000282
[ 111.531758][ C1] ? stack_trace_save+0xf0/0xf0
[ 111.537202][ C0]
[ 111.537209][ C0] RAX: 75a3b3a0d85e6600 RBX: ffffffff8c44f8b8 RCX: 75a3b3a0d85e6600
[ 111.542383][ C1] arch_stack_walk+0xda/0x140
[ 111.547914][ C0] RDX: dffffc0000000000 RSI: ffffffff8a2b2780 RDI: 0000000000000001
[ 111.553446][ C1] ? __unwind_start+0xee/0x740
[ 111.559750][ C0] RBP: ffffc90002e2f678 R08: ffffffff901d10cf R09: 1ffffffff203a219
[ 111.564677][ C1] stack_trace_save+0xa6/0xf0
[ 111.569678][ C0] R10: dffffc0000000000 R11: fffffbfff203a21a R12: ffffffff8c44f8a0
[ 111.574944][ C1] ? stack_trace_snprint+0xf0/0xf0
[ 111.580299][ C0] R13: ffffffff8c44f8a8 R14: ffffc90002e2f5f0 R15: 1ffff920005c5eb0
[ 111.585574][ C1] __kasan_slab_alloc+0x9c/0xd0
[ 111.591027][ C0] rwsem_down_read_slowpath+0x46f/0x9d0
[ 111.595962][ C1] slab_post_alloc_hook+0x4c/0x380
[ 111.602354][ C0] ? down_write_killable_nested+0x90/0x90
[ 111.610069][ C1] ? get_obj_cgroup_from_current+0x2bf/0x2f0
[ 111.615870][ C0] ? read_lock_is_recursive+0x10/0x10
[ 111.620542][ C1] ? copy_mm+0x8cd/0x13f0
[ 111.626339][ C0] down_read+0x96/0x2e0
[ 111.631978][ C1] kmem_cache_alloc+0x100/0x290
[ 111.637790][ C0] kernfs_dop_revalidate+0x86/0x4d0
[ 111.644367][ C1] copy_mm+0x8cd/0x13f0
[ 111.650013][ C0] lookup_fast+0x385/0x720
[ 111.656156][ C1] ? copy_signal+0x640/0x640
[ 111.661511][ C0] ? up_read+0x20/0x20
[ 111.666777][ C1] ? __init_rwsem+0x11e/0x160
[ 111.672223][ C0] ? handle_dots+0xd80/0xd80
[ 111.677672][ C1] ? copy_signal+0x537/0x640
[ 111.683200][ C0] ? do_raw_spin_unlock+0x11d/0x230
[ 111.689425][ C1] copy_process+0x17eb/0x3e20
[ 111.694258][ C0] ? kernfs_iop_permission+0x23e/0x340
[ 111.699276][ C1] ? __pidfd_prepare+0x140/0x140
[ 111.704454][ C0] walk_component+0x81/0x460
[ 111.709208][ C1] kernel_clone+0x23f/0x990
[ 111.714053][ C0] link_path_walk+0x665/0xd70
[ 111.718984][ C1] ? create_io_thread+0x180/0x180
[ 111.725388][ C0] ? handle_lookup_down+0x130/0x130
[ 111.732916][ C1] __x64_sys_clone+0x19a/0x210
[ 111.738698][ C0] ? percpu_counter_add_batch+0x13b/0x160
[ 111.744932][ C1] ? __ia32_sys_vfork+0x130/0x130
[ 111.750486][ C0] path_openat+0x28d/0x2fa0
[ 111.755425][ C1] ? lockdep_hardirqs_on+0x94/0x140
[ 111.759919][ C0] ? verify_lock_unused+0x140/0x140
[ 111.765266][ C1] do_syscall_64+0x4c/0xa0
[ 111.770881][ C0] ? slab_post_alloc_hook+0x4c/0x380
[ 111.775894][ C1] ? clear_bhb_loop+0x30/0x80
[ 111.780988][ C0] ? do_filp_open+0x410/0x410
[ 111.787379][ C1] ? clear_bhb_loop+0x30/0x80
[ 111.794826][ C0] do_filp_open+0x1e2/0x410
[ 111.800180][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 111.805196][ C0] ? vfs_tmpfile+0x300/0x300
[ 111.811243][ C1] RIP: 0033:0x7f0a156b3636
[ 111.816174][ C0] ? _raw_spin_unlock+0x24/0x40
[ 111.820661][ C1] Code: 89 df e8 6d e8 f6 ff 45 31 c0 31 d2 31 f6 64 48 8b 04 25 10 00 00 00 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 52 89 c5 85 c0 75 31 64 48 8b 04 25 10 00 00
[ 111.825495][ C0] ? alloc_fd+0x598/0x630
[ 111.830070][ C1] RSP: 002b:00007ffd9d3ea5d0 EFLAGS: 00000246
[ 111.834560][ C0] do_sys_openat2+0x150/0x4b0
[ 111.839397][ C1] ORIG_RAX: 0000000000000038
[ 111.844057][ C0] ? __lock_acquire+0x7d10/0x7d10
[ 111.849065][ C1] RAX: ffffffffffffffda RBX: 00007ffd9d3ea5d8 RCX: 00007f0a156b3636
[ 111.854422][ C0] ? do_sys_open+0xe0/0xe0
[ 111.860294][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 111.865737][ C0] ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 111.871783][ C1] RBP: 000055961e57de60 R08: 0000000000000000 R09: 3c00000040001201
[ 111.876963][ C0] ? lock_chain_count+0x20/0x20
[ 111.882234][ C1] R10: 00007f0a15519f50 R11: 0000000000000246 R12: 000055961e58a710
[ 111.887936][ C0] ? vtime_user_exit+0x2c8/0x3e0
[ 111.893470][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 111.899952][ C0] __x64_sys_openat+0x135/0x160
[ 111.906095][ C1]
[ 111.912836][ C0] do_syscall_64+0x4c/0xa0
[ 111.918020][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 111.923200][ C0] ? clear_bhb_loop+0x30/0x80
[ 111.928385][ C1] CPU: 1 PID: 5194 Comm: dhcpcd-run-hook Not tainted syzkaller #0
[ 111.933742][ C0] ? clear_bhb_loop+0x30/0x80
[ 111.939358][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 111.944801][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 111.949475][ C1] Call Trace:
[ 111.949489][ C1]
[ 111.954676][ C0] RIP: 0033:0x7fb3c802ac3a
[ 111.959703][ C1] dump_stack_lvl+0x188/0x250
[ 111.964984][ C0] Code: 41 89 f2 48 89 54 24 e0 41 83 e2 40 75 2a 89 f0 f7 d0 a9 00 00 41 00 74 1f 89 f2 b8 01 01 00 00 48 89 fe bf 9c ff ff ff 0f 05 <48> 3d 00 f0 ff ff 77 2e c3 0f 1f 44 00 00 48 8d 44 24 08 c7 44 24
[ 111.969935][ C1] ? show_regs_print_info+0x20/0x20
[ 111.976326][ C0] RSP: 002b:00007fffa409d8f8 EFLAGS: 00000206
[ 111.986544][ C1] ? load_image+0x400/0x400
[ 112.000231][ C0] ORIG_RAX: 0000000000000101
[ 112.007675][ C1] panic+0x2e5/0x810
[ 112.013027][ C0] RAX: ffffffffffffffda RBX: 00005625552952e0 RCX: 00007fb3c802ac3a
[ 112.018472][ C1] ? bpf_jit_dump+0xd0/0xd0
[ 112.023217][ C0] RDX: 0000000000090800 RSI: 000056255528d8e0 RDI: 00000000ffffff9c
[ 112.030833][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 112.038126][ C0] RBP: 000056255528d8e0 R08: 00000000000001d0 R09: 0000000000000003
[ 112.042442][ C1] __warn+0x248/0x2b0
[ 112.050573][ C0] R10: 0000000000000000 R11: 0000000000000206 R12: 00005625552867b0
[ 112.056204][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 112.064943][ C0] R13: 0000000000000100 R14: 0000000000000000 R15: 00007fffa409db50
[ 112.073858][ C1] report_bug+0x1b7/0x2e0
[ 112.082962][ C0]
[ 112.093349][ C1] handle_bug+0x3a/0x70
[ 112.102627][ C0] irq event stamp: 1016698
[ 112.102639][ C0] hardirqs last enabled at (1016697): [] _raw_spin_unlock_irq+0x1f/0x40
[ 112.108527][ C1] exc_invalid_op+0x16/0x40
[ 112.116325][ C0] hardirqs last disabled at (1016698): [] sysvec_apic_timer_interrupt+0xa/0xc0
[ 112.126562][ C1] asm_exc_invalid_op+0x16/0x20
[ 112.129929][ C0] softirqs last enabled at (1015556): [] __irq_exit_rcu+0x13b/0x230
[ 112.132769][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[ 112.137427][ C0] softirqs last disabled at (1015427): [] __irq_exit_rcu+0x13b/0x230
[ 112.141928][ C1] Code: 24 45 31 f6 31 ff 89 de e8 7d 94 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 00 91 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[ 112.147114][ C0] ---[ end trace db8d3f2be4a543a4 ]---
[ 112.152294][ C1] RSP: 0018:ffffc90000dd0bc0 EFLAGS: 00010006
[ 113.911747][ C1] RAX: ffffffff81a08ea0 RBX: 0000000000000008 RCX: ffff88802aa5d940
[ 113.919719][ C1] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000000
[ 113.927695][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: 1ffffffff203a218
[ 113.935671][ C1] R10: dffffc0000000000 R11: fffffbfff203a219 R12: ffff88802aa5f0c8
[ 113.943637][ C1] R13: dffffc0000000000 R14: ffffc90000dd0c28 R15: 0000000000000000
[ 113.951603][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 113.957161][ C1] bpf_probe_read_user+0x26/0x70
[ 113.962119][ C1] bpf_prog_02073d59a3c0f06f+0x3d/0xa28
[ 113.967657][ C1] bpf_trace_run2+0x163/0x2e0
[ 113.972332][ C1] ? bpf_trace_run1+0x2e0/0x2e0
[ 113.977175][ C1] ? enqueue_hrtimer+0x259/0x370
[ 113.982126][ C1] enqueue_hrtimer+0x314/0x370
[ 113.986885][ C1] __hrtimer_run_queues+0x5f3/0xb70
[ 113.992094][ C1] ? hrtimer_interrupt+0x8d0/0x8d0
[ 113.997215][ C1] ? ktime_get_update_offsets_now+0x3ce/0x3e0
[ 114.003306][ C1] hrtimer_interrupt+0x3bb/0x8d0
[ 114.008295][ C1] __sysvec_apic_timer_interrupt+0x137/0x4a0
[ 114.014282][ C1] sysvec_apic_timer_interrupt+0x9b/0xc0
[ 114.019918][ C1]
[ 114.022845][ C1]
[ 114.025770][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 114.031747][ C1] RIP: 0010:__unwind_start+0x500/0x740
[ 114.037203][ C1] Code: ff 40 84 ed 0f 84 1f 01 00 00 48 89 d8 48 c1 e8 03 48 89 04 24 0f b6 04 30 84 c0 0f 85 f2 01 00 00 83 3b 00 0f 84 c7 fb ff ff <4c> 8d 7b 08 4c 8d 6b 10 48 8b 44 24 10 48 83 c0 08 48 89 44 24 20
[ 114.056830][ C1] RSP: 0018:ffffc9000266f4e8 EFLAGS: 00000202
[ 114.062895][ C1] RAX: 0000000000000000 RBX: ffffc9000266f548 RCX: 0000000000000001
[ 114.070858][ C1] RDX: 0000000000000002 RSI: dffffc0000000000 RDI: ffffc9000266f4e8
[ 114.078820][ C1] RBP: ffffc9000266f501 R08: ffffc9000266f501 R09: ffffc9000266f548
[ 114.086785][ C1] R10: dffffc0000000000 R11: fffff520004cdeb5 R12: ffffc9000266f4e8
[ 114.094764][ C1] R13: ffffc9000266f568 R14: ffffc9000266f570 R15: 1ffff920004cdeae
[ 114.102737][ C1] ? __unwind_start+0x441/0x740
[ 114.107584][ C1] ? stack_trace_save+0xf0/0xf0
[ 114.112427][ C1] arch_stack_walk+0xda/0x140
[ 114.117116][ C1] ? __unwind_start+0xee/0x740
[ 114.121873][ C1] stack_trace_save+0xa6/0xf0
[ 114.126539][ C1] ? stack_trace_snprint+0xf0/0xf0
[ 114.131645][ C1] __kasan_slab_alloc+0x9c/0xd0
[ 114.136503][ C1] slab_post_alloc_hook+0x4c/0x380
[ 114.141617][ C1] ? get_obj_cgroup_from_current+0x2bf/0x2f0
[ 114.147638][ C1] ? copy_mm+0x8cd/0x13f0
[ 114.151982][ C1] kmem_cache_alloc+0x100/0x290
[ 114.156836][ C1] copy_mm+0x8cd/0x13f0
[ 114.161176][ C1] ? copy_signal+0x640/0x640
[ 114.165790][ C1] ? __init_rwsem+0x11e/0x160
[ 114.170469][ C1] ? copy_signal+0x537/0x640
[ 114.175104][ C1] copy_process+0x17eb/0x3e20
[ 114.179790][ C1] ? __pidfd_prepare+0x140/0x140
[ 114.184726][ C1] kernel_clone+0x23f/0x990
[ 114.189226][ C1] ? create_io_thread+0x180/0x180
[ 114.194252][ C1] __x64_sys_clone+0x19a/0x210
[ 114.199015][ C1] ? __ia32_sys_vfork+0x130/0x130
[ 114.204042][ C1] ? lockdep_hardirqs_on+0x94/0x140
[ 114.209242][ C1] do_syscall_64+0x4c/0xa0
[ 114.213662][ C1] ? clear_bhb_loop+0x30/0x80
[ 114.218336][ C1] ? clear_bhb_loop+0x30/0x80
[ 114.223010][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 114.228900][ C1] RIP: 0033:0x7f0a156b3636
[ 114.233314][ C1] Code: 89 df e8 6d e8 f6 ff 45 31 c0 31 d2 31 f6 64 48 8b 04 25 10 00 00 00 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 52 89 c5 85 c0 75 31 64 48 8b 04 25 10 00 00
[ 114.252995][ C1] RSP: 002b:00007ffd9d3ea5d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 114.261412][ C1] RAX: ffffffffffffffda RBX: 00007ffd9d3ea5d8 RCX: 00007f0a156b3636
[ 114.269464][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 114.277434][ C1] RBP: 000055961e57de60 R08: 0000000000000000 R09: 3c00000040001201
[ 114.285398][ C1] R10: 00007f0a15519f50 R11: 0000000000000246 R12: 000055961e58a710
[ 114.293364][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 114.301344][ C1]
[ 114.304668][ C1] Kernel Offset: disabled
[ 114.309250][ C1] Rebooting in 86400 seconds..