Warning: Permanently added '10.128.0.29' (ED25519) to the list of known hosts.
2025/04/24 05:01:59 ignoring optional flag "sandboxArg"="0"
2025/04/24 05:01:59 ignoring optional flag "type"="gce"
2025/04/24 05:01:59 parsed 1 programs
2025/04/24 05:01:59 executed programs: 0
[ 81.481103][ T4440] chnl_net:caif_netlink_parms(): no params data found
[ 81.526540][ T4440] bridge0: port 1(bridge_slave_0) entered blocking state
[ 81.533924][ T4440] bridge0: port 1(bridge_slave_0) entered disabled state
[ 81.542637][ T4440] device bridge_slave_0 entered promiscuous mode
[ 81.551197][ T4440] bridge0: port 2(bridge_slave_1) entered blocking state
[ 81.558490][ T4440] bridge0: port 2(bridge_slave_1) entered disabled state
[ 81.566476][ T4440] device bridge_slave_1 entered promiscuous mode
[ 81.596231][ T4440] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 81.609520][ T4440] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 81.643045][ T4440] team0: Port device team_slave_0 added
[ 81.650992][ T4440] team0: Port device team_slave_1 added
[ 81.677195][ T4440] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 81.684460][ T4440] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 81.694259][ T21] cfg80211: failed to load regulatory.db
[ 81.713346][ T4440] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 81.728960][ T4440] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 81.743321][ T4440] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 81.781524][ T4440] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 81.868808][ T4440] device hsr_slave_0 entered promiscuous mode
[ 81.893492][ T4440] device hsr_slave_1 entered promiscuous mode
[ 82.618521][ T4440] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 82.629428][ T4440] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 82.639957][ T4440] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 82.650675][ T4440] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 82.733698][ T4440] 8021q: adding VLAN 0 to HW filter on device bond0
[ 82.748687][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 82.758902][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 82.771212][ T4440] 8021q: adding VLAN 0 to HW filter on device team0
[ 82.783770][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 82.792646][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 82.803389][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 82.810529][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 82.833170][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 82.841745][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 82.850625][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 82.859739][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 82.866922][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 82.877023][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 82.886960][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 82.902180][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 82.912812][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 82.933735][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 82.943653][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 82.952638][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 82.962619][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 82.973767][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 82.982692][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 82.991873][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 83.002007][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 83.115016][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 83.123512][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 83.139035][ T4440] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 83.163405][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 83.173272][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 83.196246][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 83.206716][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 83.218737][ T4440] device veth0_vlan entered promiscuous mode
[ 83.227826][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 83.236626][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 83.252250][ T4440] device veth1_vlan entered promiscuous mode
[ 83.279312][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 83.290544][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 83.300158][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 83.310586][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 83.322630][ T4440] device veth0_macvtap entered promiscuous mode
[ 83.337210][ T4440] device veth1_macvtap entered promiscuous mode
[ 83.357188][ T4440] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 83.365893][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 83.374718][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 83.383702][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 83.394208][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 83.407790][ T4440] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 83.417367][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 83.428037][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 83.441835][ T4440] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.450658][ T4440] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.460646][ T4183] Bluetooth: hci0: command 0x0409 tx timeout
[ 83.469571][ T4440] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.478697][ T4440] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.547226][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 83.560572][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 83.582333][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 83.599880][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 83.608624][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 83.624360][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 83.960978][ T4541] loop0: detected capacity change from 0 to 32768
[ 83.979112][ T4541] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (4541)
[ 84.006037][ T4541] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 84.017738][ T4541] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 84.029263][ T4541] BTRFS info (device loop0): using free space tree
[ 84.037475][ T4541] BTRFS info (device loop0): has skinny extents
[ 84.077597][ T4541] BTRFS info (device loop0): enabling ssd optimizations
[ 85.533362][ T4184] Bluetooth: hci0: command 0x041b tx timeout
[ 87.611561][ T1108] Bluetooth: hci0: command 0x040f tx timeout
[ 89.691549][ T1108] Bluetooth: hci0: command 0x0419 tx timeout
[ 132.894440][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.900995][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
2025/04/24 05:02:57 executed programs: 1
[ 139.822825][ T4805] chnl_net:caif_netlink_parms(): no params data found
[ 139.869679][ T4805] bridge0: port 1(bridge_slave_0) entered blocking state
[ 139.877244][ T4805] bridge0: port 1(bridge_slave_0) entered disabled state
[ 139.885367][ T4805] device bridge_slave_0 entered promiscuous mode
[ 139.894768][ T4805] bridge0: port 2(bridge_slave_1) entered blocking state
[ 139.902455][ T4805] bridge0: port 2(bridge_slave_1) entered disabled state
[ 139.910420][ T4805] device bridge_slave_1 entered promiscuous mode
[ 139.935781][ T4805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 139.947398][ T4805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 139.974259][ T4805] team0: Port device team_slave_0 added
[ 139.981925][ T4805] team0: Port device team_slave_1 added
[ 140.003118][ T4805] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 140.010092][ T4805] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 140.036478][ T4805] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 140.048677][ T4805] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 140.055760][ T4805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 140.081710][ T4805] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 140.114358][ T4805] device hsr_slave_0 entered promiscuous mode
[ 140.121487][ T4805] device hsr_slave_1 entered promiscuous mode
[ 140.128270][ T4805] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 140.136514][ T4805] Cannot create hsr debugfs directory
[ 140.222290][ T4805] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 140.317581][ T4805] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 140.390266][ T4805] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 140.452855][ T4805] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 140.549113][ T4805] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 140.560093][ T4805] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 140.569352][ T4805] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 140.578471][ T4805] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 140.598687][ T4805] bridge0: port 2(bridge_slave_1) entered blocking state
[ 140.605927][ T4805] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 140.613340][ T4805] bridge0: port 1(bridge_slave_0) entered blocking state
[ 140.620426][ T4805] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 140.666224][ T4805] 8021q: adding VLAN 0 to HW filter on device bond0
[ 140.679480][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 140.689341][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 140.697369][ T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 140.706556][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 140.719987][ T4805] 8021q: adding VLAN 0 to HW filter on device team0
[ 140.732167][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 140.740630][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 140.747746][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 140.759433][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 140.768333][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 140.775458][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 140.795298][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 140.804428][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 140.818153][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 140.828171][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 140.839862][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 140.849821][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 140.863366][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 140.872345][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 140.882518][ T4805] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 140.961016][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 140.969173][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 140.984200][ T4805] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 141.002563][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 141.011929][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 141.030589][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 141.039675][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 141.048394][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 141.056853][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 141.068404][ T4805] device veth0_vlan entered promiscuous mode
[ 141.080830][ T4805] device veth1_vlan entered promiscuous mode
[ 141.100775][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 141.109161][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 141.117527][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 141.126252][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 141.138155][ T4805] device veth0_macvtap entered promiscuous mode
[ 141.149483][ T4805] device veth1_macvtap entered promiscuous mode
[ 141.165980][ T4805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 141.177732][ T4805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 141.189930][ T4805] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 141.198569][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 141.207074][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 141.215753][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 141.224785][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 141.235568][ T4805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 141.246683][ T4805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 141.257824][ T4805] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 141.265572][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 141.274622][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 141.285428][ T4805] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 141.295555][ T4805] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 141.304591][ T4805] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 141.313603][ T4805] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 141.368940][ T1286] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 141.379765][ T1286] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 141.394819][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 141.407925][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 141.416241][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 141.427256][ T1286] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 141.771920][ T21] Bluetooth: hci1: command 0x0409 tx timeout
[ 143.855039][ T4183] Bluetooth: hci1: command 0x041b tx timeout
2025/04/24 05:03:02 executed programs: 8
[ 145.931890][ T21] Bluetooth: hci1: command 0x040f tx timeout
[ 148.021631][ T21] Bluetooth: hci1: command 0x0419 tx timeout
2025/04/24 05:03:07 executed programs: 25
2025/04/24 05:03:12 executed programs: 42
2025/04/24 05:03:17 executed programs: 59
2025/04/24 05:03:22 executed programs: 77
2025/04/24 05:03:27 executed programs: 94
2025/04/24 05:03:32 executed programs: 111
2025/04/24 05:03:38 executed programs: 128
2025/04/24 05:03:43 executed programs: 145
2025/04/24 05:03:48 executed programs: 163
[ 194.333829][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[ 194.340197][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
2025/04/24 05:03:53 executed programs: 180
2025/04/24 05:03:58 executed programs: 197
2025/04/24 05:04:03 executed programs: 214
[ 206.651481][ T4185] Bluetooth: hci0: command 0x0406 tx timeout
2025/04/24 05:04:08 executed programs: 231
2025/04/24 05:04:14 executed programs: 249
2025/04/24 05:04:19 executed programs: 266
2025/04/24 05:04:24 executed programs: 284
2025/04/24 05:04:29 executed programs: 301
2025/04/24 05:04:34 executed programs: 318
2025/04/24 05:04:39 executed programs: 335
[ 243.612148][ T27] INFO: task syz-executor.0:4541 blocked for more than 143 seconds.
[ 243.631391][ T27] Not tainted 5.15.180-syzkaller #0
[ 243.637280][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 243.661325][ T27] task:syz-executor.0 state:D stack:22448 pid: 4541 ppid: 4440 flags:0x00004006
[ 243.670627][ T27] Call Trace:
[ 243.681305][ T27]
[ 243.684298][ T27] __schedule+0x12c4/0x45b0
[ 243.688897][ T27] ? release_firmware_map_entry+0x190/0x190
[ 243.701307][ T27] ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 243.707271][ T27] ? do_raw_spin_unlock+0x137/0x8b0
[ 243.713356][ T27] schedule+0x11b/0x1f0
[ 243.717648][ T27] wait_extent_bit+0x3f9/0x530
[ 243.723190][ T27] ? lock_extent_bits+0x1e0/0x1e0
[ 243.728858][ T27] ? init_wait_entry+0xd0/0xd0
[ 243.734348][ T27] lock_extent_bits+0x10d/0x1e0
[ 243.739338][ T27] ? clear_record_extent_bits+0x70/0x70
[ 243.748177][ T27] ? wait_on_page_writeback+0x161/0x1a0
[ 243.755248][ T27] btrfs_page_mkwrite+0x5f2/0xd60
[ 243.760356][ T27] ? btrfs_submit_direct+0x1160/0x1160
[ 243.766365][ T27] ? __lock_acquire+0x1ff0/0x1ff0
[ 243.781096][ T27] ? do_raw_spin_lock+0x14a/0x370
[ 243.787951][ T27] do_page_mkwrite+0x1a9/0x440
[ 243.794459][ T27] wp_page_shared+0x179/0x690
[ 243.799274][ T27] handle_mm_fault+0x2a3d/0x5960
[ 243.806051][ T27] ? numa_migrate_prep+0x1a0/0x1a0
[ 243.811523][ T27] ? vmacache_find+0x1e7/0x590
[ 243.816506][ T27] ? vmacache_update+0x9f/0xf0
[ 243.824853][ T27] exc_page_fault+0x271/0x700
[ 243.829783][ T27] ? __might_fault+0xb8/0x110
[ 243.835236][ T27] asm_exc_page_fault+0x22/0x30
[ 243.840229][ T27] RIP: 0010:copy_user_generic_unrolled+0x89/0xc0
[ 243.847018][ T27] Code: 38 4c 89 47 20 4c 89 4f 28 4c 89 57 30 4c 89 5f 38 48 8d 76 40 48 8d 7f 40 ff c9 75 b6 89 d1 83 e2 07 c1 e9 03 74 12 4c 8b 06 <4c> 89 07 48 8d 76 08 48 8d 7f 08 ff c9 75 ee 21 d2 74 10 89 d1 8a
[ 243.867331][ T27] RSP: 0018:ffffc9000305f668 EFLAGS: 00050202
[ 243.873860][ T27] RAX: ffffffff84138f01 RBX: 0000000020000118 RCX: 0000000000000007
[ 243.883086][ T27] RDX: 0000000000000000 RSI: ffffc9000305f720 RDI: 00000000200000e0
[ 243.891973][ T27] RBP: ffffc9000305f7d0 R08: 0000000000000000 R09: fffff5200060beeb
[ 243.900595][ T27] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000038
[ 243.909290][ T27] R13: 00007ffffffff000 R14: ffffc9000305f720 R15: 00000000200000e0
[ 243.917860][ T27] ? _copy_to_user+0x41/0x130
[ 243.922992][ T27] _copy_to_user+0xef/0x130
[ 243.928211][ T27] fiemap_fill_next_extent+0x231/0x410
[ 243.934701][ T27] ? free_extent_map+0x133/0x1f0
[ 243.940006][ T27] ? vfs_ioctl+0xc0/0xc0
[ 243.944947][ T27] ? btrfs_release_path+0x243/0x260
[ 243.950516][ T27] extent_fiemap+0x1218/0x1650
[ 243.955952][ T27] ? extent_fiemap+0x1111/0x1650
[ 243.961073][ T27] ? try_release_extent_mapping+0x550/0x550
[ 243.967667][ T27] ? __might_fault+0xb8/0x110
[ 243.972836][ T27] ? fiemap_prep+0x1b0/0x240
[ 243.977570][ T27] btrfs_fiemap+0x121/0x160
[ 243.982628][ T27] ? btrfs_getattr+0x4a0/0x4a0
[ 243.987545][ T27] ? __might_fault+0xb4/0x110
[ 243.993630][ T27] ? btrfs_getattr+0x4a0/0x4a0
[ 243.998534][ T27] do_vfs_ioctl+0x1934/0x2b70
[ 244.003741][ T27] ? __ia32_compat_sys_ioctl+0xce0/0xce0
[ 244.009570][ T27] ? __lock_acquire+0x1ff0/0x1ff0
[ 244.015294][ T27] ? slab_free_freelist_hook+0xdd/0x160
[ 244.020986][ T27] ? tomoyo_path_number_perm+0x648/0x810
[ 244.027330][ T27] ? kfree+0xf1/0x270
[ 244.032318][ T27] ? tomoyo_path_number_perm+0x6ab/0x810
[ 244.038202][ T27] ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 244.046622][ T27] ? bpf_lsm_file_ioctl+0x5/0x10
[ 244.052050][ T27] ? security_file_ioctl+0x7d/0xa0
[ 244.057344][ T27] __se_sys_ioctl+0x81/0x160
[ 244.065085][ T27] do_syscall_64+0x3b/0x80
[ 244.069870][ T27] ? clear_bhb_loop+0x15/0x70
[ 244.075233][ T27] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 244.081594][ T27] RIP: 0033:0x7f7289561959
[ 244.086466][ T27] RSP: 002b:00007f72888e30c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 244.100302][ T27] RAX: ffffffffffffffda RBX: 00007f7289680f80 RCX: 00007f7289561959
[ 244.118704][ T27] RDX: 00000000200000c0 RSI: 00000000c020660b RDI: 0000000000000004
[ 244.138851][ T27] RBP: 00007f72895bdc88 R08: 0000000000000000 R09: 0000000000000000
[ 244.156076][ T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 244.172966][ T27] R13: 000000000000000b R14: 00007f7289680f80 R15: 00007ffcb4971928
[ 244.187364][ T27]
[ 244.190559][ T27]
[ 244.190559][ T27] Showing all locks held in the system:
[ 244.198772][ T27] 1 lock held by khungtaskd/27:
[ 244.207750][ T27] #0: ffffffff8cb1f4e0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30
[ 244.223993][ T27] 2 locks held by getty/3921:
[ 244.228730][ T27] #0: ffff88814ce1e098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[ 244.239875][ T27] #1: ffffc900026362e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6af/0x1db0
[ 244.253313][ T27] 3 locks held by syz-executor.0/4541:
[ 244.258831][ T27] #0: ffff888076420828 (&mm->mmap_lock){++++}-{3:3}, at: exc_page_fault+0x181/0x700
[ 244.268997][ T27] #1: ffff88807c930558 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x1a9/0x440
[ 244.281668][ T27] #2: ffff8880753d1838 (&ei->i_mmap_lock){.+.+}-{3:3}, at: btrfs_page_mkwrite+0x4a2/0xd60
[ 244.293707][ T27]
[ 244.296160][ T27] =============================================
[ 244.296160][ T27]
[ 244.306689][ T27] NMI backtrace for cpu 1
[ 244.311141][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.15.180-syzkaller #0
[ 244.319319][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 244.329575][ T27] Call Trace:
[ 244.332973][ T27]
[ 244.335926][ T27] dump_stack_lvl+0x1e3/0x2d0
[ 244.340745][ T27] ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 244.346412][ T27] ? panic+0x860/0x860
[ 244.350499][ T27] ? nmi_cpu_backtrace+0x23b/0x4a0
[ 244.355624][ T27] nmi_cpu_backtrace+0x46a/0x4a0
[ 244.360569][ T27] ? __wake_up_klogd+0xd5/0x100
[ 244.365439][ T27] ? nmi_trigger_cpumask_backtrace+0x2a0/0x2a0
[ 244.371658][ T27] ? _printk+0xd1/0x120
[ 244.375865][ T27] ? panic+0x860/0x860
[ 244.379977][ T27] ? __wake_up_klogd+0xcc/0x100
[ 244.384852][ T27] ? panic+0x860/0x860
[ 244.388951][ T27] ? __rcu_read_unlock+0x92/0x100
[ 244.393997][ T27] ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 244.400090][ T27] nmi_trigger_cpumask_backtrace+0x181/0x2a0
[ 244.406104][ T27] watchdog+0xe72/0xeb0
[ 244.410306][ T27] kthread+0x3f6/0x4f0
[ 244.414392][ T27] ? hungtask_pm_notify+0x50/0x50
[ 244.419441][ T27] ? kthread_blkcg+0xd0/0xd0
[ 244.424049][ T27] ret_from_fork+0x1f/0x30
[ 244.428498][ T27]
[ 244.432078][ T27] Sending NMI from CPU 1 to CPUs 0:
[ 244.437331][ C0] NMI backtrace for cpu 0
[ 244.437346][ C0] CPU: 0 PID: 5861 Comm: syz-executor.0 Not tainted 5.15.180-syzkaller #0
[ 244.437364][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 244.437375][ C0] RIP: 0010:get_page_from_freelist+0x32a6/0x3d40
[ 244.437400][ C0] Code: 3c 08 00 74 12 48 89 df e8 87 14 0a 00 48 b9 00 00 00 00 00 fc ff df 4c 8b 3b 4f 8d 74 2f 0c 4c 89 f0 48 c1 e8 03 0f b6 04 08 <84> c0 0f 85 bd 06 00 00 66 41 d1 3e 8b 74 24 14 83 fe 04 0f 83 98
[ 244.437414][ C0] RSP: 0018:ffffc90005c7f100 EFLAGS: 00000803
[ 244.437430][ C0] RAX: 0000000000000000 RBX: ffffffff8c5d1810 RCX: dffffc0000000000
[ 244.437442][ C0] RDX: dffffc0000000000 RSI: ffffffff8af9e920 RDI: ffffffff8af9e8e0
[ 244.437455][ C0] RBP: ffffc90005c7f3b0 R08: dffffc0000000000 R09: fffffbfff2131819
[ 244.437475][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000246
[ 244.437486][ C0] R13: 0000000000040940 R14: ffff8880b8e4094c R15: ffff8880b8e00000
[ 244.437498][ C0] FS: 00007fdaaa2c06c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 244.437513][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 244.437525][ C0] CR2: 00007fdaa2e9f000 CR3: 0000000022953000 CR4: 00000000003506f0
[ 244.437540][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 244.437550][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 244.437560][ C0] Call Trace:
[ 244.437566][ C0]
[ 244.437595][ C0] ? __alloc_pages+0x700/0x700
[ 244.437611][ C0] ? __next_zones_zonelist+0xa4/0x130
[ 244.437632][ C0] ? prepare_alloc_pages+0x35d/0x5b0
[ 244.437651][ C0] __alloc_pages+0x272/0x700
[ 244.437667][ C0] ? __rmqueue_pcplist+0x23a0/0x23a0
[ 244.437693][ C0] alloc_pages_vma+0x39a/0x800
[ 244.437715][ C0] ? mpol_shared_policy_lookup+0x144/0x1e0
[ 244.437736][ C0] shmem_alloc_and_acct_page+0x4d1/0xd10
[ 244.437757][ C0] ? shmem_swapin_page+0x22f0/0x22f0
[ 244.437783][ C0] ? xas_descend+0x219/0x3a0
[ 244.437803][ C0] ? xas_load+0x128/0x140
[ 244.437821][ C0] ? pagecache_get_page+0xd23/0x1010
[ 244.437842][ C0] ? page_cache_prev_miss+0x500/0x500
[ 244.437861][ C0] ? do_raw_spin_unlock+0x137/0x8b0
[ 244.437880][ C0] ? _raw_spin_unlock_irq+0x1f/0x40
[ 244.437900][ C0] ? lockdep_hardirqs_on+0x94/0x130
[ 244.437920][ C0] shmem_getpage_gfp+0x17b1/0x3190
[ 244.437955][ C0] ? shmem_getpage+0xa0/0xa0
[ 244.437973][ C0] ? fault_in_safe_writeable+0x250/0x250
[ 244.437995][ C0] shmem_write_begin+0xce/0x1a0
[ 244.438017][ C0] generic_perform_write+0x2bf/0x5b0
[ 244.438040][ C0] ? grab_cache_page_write_begin+0x90/0x90
[ 244.438058][ C0] ? file_remove_privs+0x610/0x610
[ 244.438076][ C0] ? rwsem_write_trylock+0x166/0x210
[ 244.438099][ C0] __generic_file_write_iter+0x243/0x4f0
[ 244.438120][ C0] generic_file_write_iter+0xa7/0x1b0
[ 244.438139][ C0] vfs_write+0xacd/0xe50
[ 244.438160][ C0] ? file_end_write+0x250/0x250
[ 244.438180][ C0] ? __fget_files+0x413/0x480
[ 244.438201][ C0] ? __fdget_pos+0x1e9/0x380
[ 244.438216][ C0] ? ksys_write+0x77/0x2c0
[ 244.438234][ C0] ksys_write+0x1a2/0x2c0
[ 244.438249][ C0] ? print_irqtrace_events+0x210/0x210
[ 244.438270][ C0] ? __ia32_sys_read+0x80/0x80
[ 244.438287][ C0] ? syscall_enter_from_user_mode+0x2e/0x240
[ 244.438305][ C0] ? lockdep_hardirqs_on+0x94/0x130
[ 244.438321][ C0] ? syscall_enter_from_user_mode+0x2e/0x240
[ 244.438340][ C0] do_syscall_64+0x3b/0x80
[ 244.438359][ C0] ? clear_bhb_loop+0x15/0x70
[ 244.438378][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 244.438397][ C0] RIP: 0033:0x7fdaaaf3d7af
[ 244.438413][ C0] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 a9 7f 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 fc 7f 02 00 48
[ 244.438425][ C0] RSP: 002b:00007fdaaa2bfe70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 244.438441][ C0] RAX: ffffffffffffffda RBX: 0000000001000000 RCX: 00007fdaaaf3d7af
[ 244.438452][ C0] RDX: 0000000001000000 RSI: 00007fdaa1ea0000 RDI: 0000000000000003
[ 244.438462][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000050e7
[ 244.438478][ C0] R10: 0000000000000002 R11: 0000000000000293 R12: 0000000000000003
[ 244.438488][ C0] R13: 00007fdaaa2bff3c R14: 00007fdaaa2bff40 R15: 00007fdaa1ea0000
[ 244.438511][ C0]
[ 244.576671][ T27] Kernel panic - not syncing: hung_task: blocked tasks
[ 244.869575][ T27] CPU: 0 PID: 27 Comm: khungtaskd Not tainted 5.15.180-syzkaller #0
[ 244.877661][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 244.887723][ T27] Call Trace:
[ 244.891028][ T27]
[ 244.893966][ T27] dump_stack_lvl+0x1e3/0x2d0
[ 244.898666][ T27] ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 244.904315][ T27] ? panic+0x860/0x860
[ 244.908415][ T27] panic+0x318/0x860
[ 244.912324][ T27] ? schedule_preempt_disabled+0x20/0x20
[ 244.917957][ T27] ? nmi_trigger_cpumask_backtrace+0x221/0x2a0
[ 244.924116][ T27] ? fb_is_primary_device+0xd0/0xd0
[ 244.929315][ T27] ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 244.935555][ T27] ? nmi_trigger_cpumask_backtrace+0x221/0x2a0
[ 244.941814][ T27] ? nmi_trigger_cpumask_backtrace+0x281/0x2a0
[ 244.947970][ T27] ? nmi_trigger_cpumask_backtrace+0x286/0x2a0
[ 244.954136][ T27] watchdog+0xeb0/0xeb0
[ 244.958391][ T27] kthread+0x3f6/0x4f0
[ 244.962453][ T27] ? hungtask_pm_notify+0x50/0x50
[ 244.967484][ T27] ? kthread_blkcg+0xd0/0xd0
[ 244.972071][ T27] ret_from_fork+0x1f/0x30
[ 244.976525][ T27]
[ 244.979851][ T27] Kernel Offset: disabled
[ 244.984198][ T27] Rebooting in 86400 seconds..