Warning: Permanently added '10.128.0.111' (ED25519) to the list of known hosts.
2025/12/12 15:34:27 ignoring optional flag "type"="gce"
2025/12/12 15:34:28 parsed 1 programs
2025/12/12 15:34:28 executed programs: 0
[   91.125368][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   91.133337][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   91.142525][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   91.150435][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   91.159403][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   91.275442][ T6010] chnl_net:caif_netlink_parms(): no params data found
[   91.330874][ T6010] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.338256][ T6010] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.345531][ T6010] bridge_slave_0: entered allmulticast mode
[   91.352636][ T6010] bridge_slave_0: entered promiscuous mode
[   91.360254][ T6010] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.367413][ T6010] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.374704][ T6010] bridge_slave_1: entered allmulticast mode
[   91.382676][ T6010] bridge_slave_1: entered promiscuous mode
[   91.407184][ T6010] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.418459][ T6010] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.443876][ T6010] team0: Port device team_slave_0 added
[   91.451257][ T6010] team0: Port device team_slave_1 added
[   91.472771][ T6010] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.480060][ T6010] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.506065][ T6010] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.518336][ T6010] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.525325][ T6010] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.552505][ T6010] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.586703][ T6010] hsr_slave_0: entered promiscuous mode
[   91.593454][ T6010] hsr_slave_1: entered promiscuous mode
[   92.039060][ T6010] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   92.054051][ T6010] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   92.064806][ T6010] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   92.075627][ T6010] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   92.115839][ T6010] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.123022][ T6010] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.130509][ T6010] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.137622][ T6010] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.204809][ T6010] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.224200][ T3828] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.234576][ T3828] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.253254][ T6010] 8021q: adding VLAN 0 to HW filter on device team0
[   92.265242][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.272460][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.287943][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.295073][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.594342][ T6010] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.650084][ T6010] veth0_vlan: entered promiscuous mode
[   92.666012][ T6010] veth1_vlan: entered promiscuous mode
[   92.698905][ T6010] veth0_macvtap: entered promiscuous mode
[   92.709970][ T6010] veth1_macvtap: entered promiscuous mode
[   92.731485][ T6010] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.747436][ T6010] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.765361][ T4309] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.784138][ T4309] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.800431][ T4309] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.819319][ T4309] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.963974][ T6070] nbd0: detected capacity change from 0 to 8
[   93.249181][   T52] Bluetooth: hci0: command tx timeout
[   93.708277][ T5137] block nbd0: Receive control failed (result -104)
[   95.327956][ T5137] Bluetooth: hci0: command tx timeout
[   97.408336][ T5137] Bluetooth: hci0: command tx timeout
[   99.488023][ T5137] Bluetooth: hci0: command tx timeout
[  123.089659][   T11] block nbd0: Possible stuck request ffff888026420000: control (read@0,4096B). Runtime 30 seconds
[  132.690390][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  132.696843][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
2025/12/12 15:35:24 executed programs: 1
[  148.898859][   T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  148.906554][   T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  148.914215][   T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  148.922687][   T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  148.930471][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  149.047929][ T6207] chnl_net:caif_netlink_parms(): no params data found
[  149.101631][ T6207] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.108776][ T6207] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.116001][ T6207] bridge_slave_0: entered allmulticast mode
[  149.123050][ T6207] bridge_slave_0: entered promiscuous mode
[  149.131553][ T6207] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.139003][ T6207] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.146131][ T6207] bridge_slave_1: entered allmulticast mode
[  149.153014][ T6207] bridge_slave_1: entered promiscuous mode
[  149.175605][ T6207] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.186455][ T6207] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.211941][ T6207] team0: Port device team_slave_0 added
[  149.219371][ T6207] team0: Port device team_slave_1 added
[  149.240726][ T6207] batman_adv: batadv0: Adding interface: batadv_slave_0
[  149.247667][ T6207] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  149.273670][ T6207] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  149.285433][ T6207] batman_adv: batadv0: Adding interface: batadv_slave_1
[  149.292429][ T6207] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  149.318352][ T6207] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  149.353618][ T6207] hsr_slave_0: entered promiscuous mode
[  149.359879][ T6207] hsr_slave_1: entered promiscuous mode
[  149.366044][ T6207] debugfs: 'hsr0' already exists in 'hsr'
[  149.372201][ T6207] Cannot create hsr debugfs directory
[  149.451642][ T6207] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.518121][ T6207] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.606657][ T6207] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.669866][ T6207] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.786569][ T6207] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  149.800081][ T6207] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  149.809558][ T6207] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  149.819194][ T6207] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  149.840179][ T6207] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.847264][ T6207] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.854679][ T6207] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.861788][ T6207] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.901789][ T6207] 8021q: adding VLAN 0 to HW filter on device bond0
[  149.915813][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.924113][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.937420][ T6207] 8021q: adding VLAN 0 to HW filter on device team0
[  149.950691][ T4309] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.957796][ T4309] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.970609][ T4309] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.977727][ T4309] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.109870][ T6207] 8021q: adding VLAN 0 to HW filter on device batadv0
[  150.147815][ T6207] veth0_vlan: entered promiscuous mode
[  150.157362][ T6207] veth1_vlan: entered promiscuous mode
[  150.180523][ T6207] veth0_macvtap: entered promiscuous mode
[  150.190382][ T6207] veth1_macvtap: entered promiscuous mode
[  150.204950][ T6207] batman_adv: batadv0: Interface activated: batadv_slave_0
[  150.220080][ T6207] batman_adv: batadv0: Interface activated: batadv_slave_1
[  150.232867][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  150.242874][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  150.252544][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  150.262084][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  151.008167][ T5137] Bluetooth: hci1: command tx timeout
[  153.088115][ T5137] Bluetooth: hci1: command tx timeout
[  153.168721][   T11] block nbd0: Possible stuck request ffff888026420000: control (read@0,4096B). Runtime 60 seconds
[  153.323294][ T5187] udevd[5187]: worker [6012] /devices/virtual/block/nbd0 is taking a long time
[  155.168358][ T5137] Bluetooth: hci1: command tx timeout
[  157.248083][ T5137] Bluetooth: hci1: command tx timeout
[  183.249304][   T11] block nbd0: Possible stuck request ffff888026420000: control (read@0,4096B). Runtime 90 seconds
[  194.130387][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  194.136863][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
2025/12/12 15:36:22 executed programs: 2
[  206.342838][   T52] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  206.351517][   T52] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  206.360212][   T52] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  206.368130][   T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  206.375898][   T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  206.494763][ T6236] chnl_net:caif_netlink_parms(): no params data found
[  206.549950][ T6236] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.557128][ T6236] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.564726][ T6236] bridge_slave_0: entered allmulticast mode
[  206.571679][ T6236] bridge_slave_0: entered promiscuous mode
[  206.579449][ T6236] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.586580][ T6236] bridge0: port 2(bridge_slave_1) entered disabled state
[  206.593839][ T6236] bridge_slave_1: entered allmulticast mode
[  206.601930][ T6236] bridge_slave_1: entered promiscuous mode
[  206.628270][ T6236] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  206.639940][ T6236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  206.665788][ T6236] team0: Port device team_slave_0 added
[  206.674384][ T6236] team0: Port device team_slave_1 added
[  206.695583][ T6236] batman_adv: batadv0: Adding interface: batadv_slave_0
[  206.702636][ T6236] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  206.728649][ T6236] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  206.741012][ T6236] batman_adv: batadv0: Adding interface: batadv_slave_1
[  206.748559][ T6236] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  206.775894][ T6236] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  206.810518][ T6236] hsr_slave_0: entered promiscuous mode
[  206.816611][ T6236] hsr_slave_1: entered promiscuous mode
[  206.822720][ T6236] debugfs: 'hsr0' already exists in 'hsr'
[  206.828474][ T6236] Cannot create hsr debugfs directory
[  206.910109][ T6236] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.968775][ T6236] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.026977][ T6236] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.070385][ T6236] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.203310][ T6236] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  207.212701][ T6236] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  207.221826][ T6236] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  207.231426][ T6236] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  207.253005][ T6236] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.260401][ T6236] bridge0: port 2(bridge_slave_1) entered forwarding state
[  207.268364][ T6236] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.275437][ T6236] bridge0: port 1(bridge_slave_0) entered forwarding state
[  207.317002][ T6236] 8021q: adding VLAN 0 to HW filter on device bond0
[  207.332646][ T4309] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.340525][ T4309] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.354604][ T6236] 8021q: adding VLAN 0 to HW filter on device team0
[  207.366789][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.373918][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[  207.386958][ T4309] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.394169][ T4309] bridge0: port 2(bridge_slave_1) entered forwarding state
[  207.531476][ T6236] 8021q: adding VLAN 0 to HW filter on device batadv0
[  207.560816][ T6236] veth0_vlan: entered promiscuous mode
[  207.572853][ T6236] veth1_vlan: entered promiscuous mode
[  207.598243][ T6236] veth0_macvtap: entered promiscuous mode
[  207.606739][ T6236] veth1_macvtap: entered promiscuous mode
[  207.622566][ T6236] batman_adv: batadv0: Interface activated: batadv_slave_0
[  207.636447][ T6236] batman_adv: batadv0: Interface activated: batadv_slave_1
[  207.649351][ T4309] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  207.659565][ T4309] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  207.669343][ T4309] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  207.679703][ T4309] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  208.448752][   T52] Bluetooth: hci2: command tx timeout
[  210.528332][   T52] Bluetooth: hci2: command tx timeout
[  212.608041][   T52] Bluetooth: hci2: command tx timeout
[  213.329401][   T25] block nbd0: Possible stuck request ffff888026420000: control (read@0,4096B). Runtime 120 seconds
[  214.688007][ T5137] Bluetooth: hci2: command tx timeout
[  216.688036][ T5137] Bluetooth: hci0: command 0x0406 tx timeout
[  243.428072][   T11] block nbd0: Possible stuck request ffff888026420000: control (read@0,4096B). Runtime 150 seconds
[  253.008123][   T31] INFO: task syz-executor.0:6070 blocked for more than 143 seconds.
[  253.016121][   T31]       Not tainted syzkaller #0
[  253.021769][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  253.030555][   T31] task:syz-executor.0  state:D stack:27848 pid:6070  tgid:6068  ppid:6010   task_flags:0x400140 flags:0x00080803
[  253.042542][   T31] Call Trace:
[  253.045819][   T31]  <TASK>
[  253.048886][   T31]  ? __schedule+0x10b9/0x6150
[  253.053590][   T31]  __schedule+0x1139/0x6150
[  253.058120][   T31]  ? __lock_acquire+0x436/0x2890
[  253.063073][   T31]  ? __pfx___schedule+0x10/0x10
[  253.068040][   T31]  ? find_held_lock+0x2b/0x80
[  253.072722][   T31]  ? schedule+0x2d7/0x3a0
[  253.077030][   T31]  schedule+0xe7/0x3a0
[  253.081142][   T31]  schedule_preempt_disabled+0x13/0x30
[  253.086599][   T31]  __mutex_lock+0xc69/0x1ca0
[  253.091343][   T31]  ? bdev_release+0x15a/0x6d0
[  253.096126][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  253.101197][   T31]  ? find_held_lock+0x2b/0x80
[  253.105863][   T31]  ? do_raw_spin_unlock+0x172/0x230
[  253.111093][   T31]  ? bdev_release+0x15a/0x6d0
[  253.115778][   T31]  bdev_release+0x15a/0x6d0
[  253.120329][   T31]  ? __pfx_blkdev_release+0x10/0x10
[  253.125528][   T31]  blkdev_release+0x15/0x20
[  253.130181][   T31]  __fput+0x402/0xb70
[  253.134167][   T31]  task_work_run+0x150/0x240
[  253.138867][   T31]  ? __pfx_task_work_run+0x10/0x10
[  253.144006][   T31]  get_signal+0x1d0/0x26d0
[  253.148480][   T31]  ? __pfx_get_signal+0x10/0x10
[  253.153330][   T31]  ? kick_process+0xf6/0x1b0
[  253.157950][   T31]  ? task_work_add+0x1ee/0x380
[  253.162711][   T31]  arch_do_signal_or_restart+0x8f/0x7e0
[  253.168432][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  253.174607][   T31]  ? selinux_file_ioctl+0x180/0x270
[  253.179870][   T31]  exit_to_user_mode_loop+0x8c/0x540
[  253.185159][   T31]  do_syscall_64+0x4ee/0xf80
[  253.189812][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.195718][   T31] RIP: 0033:0x7f276507c8d9
[  253.200185][   T31] RSP: 002b:00007f27643f60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  253.208679][   T31] RAX: 0000000000000000 RBX: 00007f276519bf80 RCX: 00007f276507c8d9
[  253.216770][   T31] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003
[  253.224832][   T31] RBP: 00007f27650d8b20 R08: 0000000000000000 R09: 0000000000000000
[  253.232944][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  253.241070][   T31] R13: 000000000000000b R14: 00007f276519bf80 R15: 00007ffe9ddc1048
[  253.249400][   T31]  </TASK>
[  253.252448][   T31] 
[  253.252448][   T31] Showing all locks held in the system:
[  253.260312][   T31] 1 lock held by khungtaskd/31:
[  253.265164][   T31]  #0: ffffffff8e3c9620 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  253.275057][   T31] 2 locks held by getty/5574:
[  253.279937][   T31]  #0: ffff88803214c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  253.289773][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x1510
[  253.299910][   T31] 1 lock held by udevd/6012:
[  253.304469][   T31]  #0: ffff888141bfa358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40
[  253.313825][   T31] 1 lock held by syz-executor.0/6070:
[  253.319216][   T31]  #0: ffff888141bfa358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_release+0x15a/0x6d0
[  253.329124][   T31] 1 lock held by syz-executor.0/6227:
[  253.334514][   T31]  #0: ffff888141bfa358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40
[  253.343867][   T31] 1 lock held by syz-executor.0/6255:
[  253.349262][   T31]  #0: ffff888141bfa358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40
[  253.358759][   T31] 
[  253.361069][   T31] =============================================
[  253.361069][   T31] 
[  253.369525][   T31] NMI backtrace for cpu 0
[  253.369547][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  253.369566][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  253.369575][   T31] Call Trace:
[  253.369580][   T31]  <TASK>
[  253.369587][   T31]  dump_stack_lvl+0x116/0x1f0
[  253.369612][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  253.369635][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  253.369660][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  253.369686][   T31]  sys_info+0x133/0x180
[  253.369706][   T31]  watchdog+0xe66/0x1180
[  253.369733][   T31]  ? rcu_is_watching+0x12/0xc0
[  253.369751][   T31]  ? __pfx_watchdog+0x10/0x10
[  253.369768][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  253.369788][   T31]  ? __kthread_parkme+0x19e/0x250
[  253.369807][   T31]  ? __pfx_watchdog+0x10/0x10
[  253.369826][   T31]  kthread+0x3c5/0x780
[  253.369847][   T31]  ? __pfx_kthread+0x10/0x10
[  253.369869][   T31]  ? rcu_is_watching+0x12/0xc0
[  253.369886][   T31]  ? __pfx_kthread+0x10/0x10
[  253.369908][   T31]  ret_from_fork+0x983/0xb10
[  253.369928][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  253.369950][   T31]  ? __switch_to+0x7af/0x10d0
[  253.369972][   T31]  ? __pfx_kthread+0x10/0x10
[  253.369993][   T31]  ret_from_fork_asm+0x1a/0x30
[  253.370028][   T31]  </TASK>
[  253.370035][   T31] Sending NMI from CPU 0 to CPUs 1:
[  253.504132][    C1] NMI backtrace for cpu 1
[  253.504147][    C1] CPU: 1 UID: 0 PID: 3828 Comm: kworker/u8:12 Not tainted syzkaller #0 PREEMPT(full) 
[  253.504168][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  253.504179][    C1] Workqueue: events_unbound toggle_allocation_gate
[  253.504206][    C1] RIP: 0010:mark_lock+0x4e/0x9f0
[  253.504227][    C1] Code: 83 fa 09 0f 87 8d 00 00 00 49 89 ff 49 89 f4 89 d3 83 fa 08 74 6d 41 bd 01 00 00 00 89 d9 41 d3 e5 4d 63 ed 41 0f b7 44 24 20 <66> 25 ff 1f 0f b7 c0 48 0f a3 05 63 6a 1f 14 0f 83 84 00 00 00 48
[  253.504243][    C1] RSP: 0018:ffffc9000cd475c0 EFLAGS: 00000002
[  253.504256][    C1] RAX: 0000000000000007 RBX: 0000000000000009 RCX: ffffffff95b92f10
[  253.504267][    C1] RDX: 0000000000000008 RSI: ffff88803324d578 RDI: ffff88803324c980
[  253.504278][    C1] RBP: ffffc9000cd47660 R08: 0000000000000000 R09: 0000000000000007
[  253.504289][    C1] R10: 000000013ff57007 R11: ffff88803324d4b0 R12: ffff88803324d578
[  253.504301][    C1] R13: 0000000000000200 R14: ffff88803324d578 R15: ffff88803324c980
[  253.504312][    C1] FS:  0000000000000000(0000) GS:ffff8881249fb000(0000) knlGS:0000000000000000
[  253.504328][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  253.504340][    C1] CR2: 000055b9015d2660 CR3: 000000000e184000 CR4: 00000000003526f0
[  253.504351][    C1] Call Trace:
[  253.504357][    C1]  <TASK>
[  253.504364][    C1]  ? sched_clock_cpu+0x6c/0x530
[  253.504386][    C1]  ? __lock_acquire+0x436/0x2890
[  253.504406][    C1]  __lock_acquire+0x436/0x2890
[  253.504427][    C1]  ? lock_acquire+0x179/0x330
[  253.504448][    C1]  lock_acquire+0x179/0x330
[  253.504467][    C1]  ? ___pte_offset_map+0x2f/0x380
[  253.504488][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  253.504513][    C1]  ___pte_offset_map+0x40/0x380
[  253.504532][    C1]  ? ___pte_offset_map+0x2f/0x380
[  253.504551][    C1]  __pte_offset_map_lock+0x8d/0x310
[  253.504572][    C1]  ? __pfx___pte_offset_map_lock+0x10/0x10
[  253.504593][    C1]  ? trace_tlb_flush+0xf8/0x140
[  253.504614][    C1]  ? find_held_lock+0x2b/0x80
[  253.504638][    C1]  ? find_held_lock+0x2b/0x80
[  253.504661][    C1]  ? walk_to_pmd+0x305/0x4c0
[  253.504685][    C1]  __get_locked_pte+0x79/0xc0
[  253.504707][    C1]  ? kmem_cache_alloc_node_noprof+0x9c/0x800
[  253.504725][    C1]  __text_poke+0x24f/0xb00
[  253.504746][    C1]  ? __pfx_text_poke_memcpy+0x10/0x10
[  253.504766][    C1]  ? kmem_cache_alloc_lru_noprof+0x9c/0x770
[  253.504786][    C1]  ? __pfx___text_poke+0x10/0x10
[  253.504807][    C1]  ? kmem_cache_alloc_node_noprof+0x9c/0x800
[  253.504827][    C1]  smp_text_poke_batch_finish+0x4f1/0xdb0
[  253.504855][    C1]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[  253.504882][    C1]  ? arch_jump_label_transform_queue+0xc0/0x120
[  253.504912][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[  253.504938][    C1]  jump_label_update+0x376/0x550
[  253.504960][    C1]  static_key_disable_cpuslocked+0x158/0x1b0
[  253.504984][    C1]  static_key_disable+0x1a/0x20
[  253.505004][    C1]  toggle_allocation_gate+0x145/0x280
[  253.505025][    C1]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  253.505046][    C1]  ? __pfx_autoremove_wake_function+0x10/0x10
[  253.505065][    C1]  ? rcu_is_watching+0x12/0xc0
[  253.505083][    C1]  process_one_work+0x9ba/0x1b20
[  253.505110][    C1]  ? __pfx_process_one_work+0x10/0x10
[  253.505134][    C1]  ? assign_work+0x1a0/0x250
[  253.505155][    C1]  worker_thread+0x6c8/0xf10
[  253.505180][    C1]  ? __kthread_parkme+0x19e/0x250
[  253.505197][    C1]  ? __pfx_worker_thread+0x10/0x10
[  253.505218][    C1]  kthread+0x3c5/0x780
[  253.505238][    C1]  ? __pfx_kthread+0x10/0x10
[  253.505257][    C1]  ? rcu_is_watching+0x12/0xc0
[  253.505273][    C1]  ? __pfx_kthread+0x10/0x10
[  253.505292][    C1]  ret_from_fork+0x983/0xb10
[  253.505311][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  253.505330][    C1]  ? __switch_to+0x7af/0x10d0
[  253.505352][    C1]  ? __pfx_kthread+0x10/0x10
[  253.505372][    C1]  ret_from_fork_asm+0x1a/0x30
[  253.505403][    C1]  </TASK>
[  253.887540][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  253.894390][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  253.903472][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  253.913502][   T31] Call Trace:
[  253.916756][   T31]  <TASK>
[  253.919663][   T31]  dump_stack_lvl+0x3d/0x1f0
[  253.924292][   T31]  vpanic+0x640/0x6f0
[  253.928248][   T31]  panic+0xca/0xd0
[  253.931945][   T31]  ? __pfx_panic+0x10/0x10
[  253.936338][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  253.942308][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b1/0x300
[  253.948459][   T31]  ? nmi_trigger_cpumask_backtrace+0x2be/0x300
[  253.954612][   T31]  ? watchdog+0xe83/0x1180
[  253.959025][   T31]  ? watchdog+0xe76/0x1180
[  253.963553][   T31]  watchdog+0xe94/0x1180
[  253.967802][   T31]  ? rcu_is_watching+0x12/0xc0
[  253.972563][   T31]  ? __pfx_watchdog+0x10/0x10
[  253.977312][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  253.982497][   T31]  ? __kthread_parkme+0x19e/0x250
[  253.987579][   T31]  ? __pfx_watchdog+0x10/0x10
[  253.992414][   T31]  kthread+0x3c5/0x780
[  253.996567][   T31]  ? __pfx_kthread+0x10/0x10
[  254.001131][   T31]  ? rcu_is_watching+0x12/0xc0
[  254.005884][   T31]  ? __pfx_kthread+0x10/0x10
[  254.010462][   T31]  ret_from_fork+0x983/0xb10
[  254.015093][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  254.020200][   T31]  ? __switch_to+0x7af/0x10d0
[  254.024856][   T31]  ? __pfx_kthread+0x10/0x10
[  254.029424][   T31]  ret_from_fork_asm+0x1a/0x30
[  254.034173][   T31]  </TASK>
[  254.037606][   T31] Kernel Offset: disabled
[  254.041923][   T31] Rebooting in 86400 seconds..