Warning: Permanently added '10.128.0.93' (ED25519) to the list of known hosts.
2025/11/28 17:14:48 parsed 1 programs
[  106.573823][ T5813] cgroup: Unknown subsys name 'net'
[  106.816718][ T5813] cgroup: Unknown subsys name 'cpuset'
[  106.889977][ T5813] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  109.076498][ T5813] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  113.382911][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.382933][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.438229][   T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.438252][   T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.228107][ T5860] chnl_net:caif_netlink_parms(): no params data found
[  116.672092][ T5860] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.673847][ T5860] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.674149][ T5860] bridge_slave_0: entered allmulticast mode
[  116.677738][ T5860] bridge_slave_0: entered promiscuous mode
[  116.688953][ T5860] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.689736][ T5860] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.690077][ T5860] bridge_slave_1: entered allmulticast mode
[  116.693302][ T5860] bridge_slave_1: entered promiscuous mode
[  116.865322][ T5860] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  116.876096][ T5860] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  117.153218][ T5860] team0: Port device team_slave_0 added
[  117.156281][ T5860] team0: Port device team_slave_1 added
[  117.400879][ T5860] batman_adv: batadv0: Adding interface: batadv_slave_0
[  117.400894][ T5860] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  117.400914][ T5860] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  117.404088][ T5860] batman_adv: batadv0: Adding interface: batadv_slave_1
[  117.404105][ T5860] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  117.404131][ T5860] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  117.887424][ T5860] hsr_slave_0: entered promiscuous mode
[  117.888765][ T5860] hsr_slave_1: entered promiscuous mode
[  118.492966][ T5860] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  118.537194][ T5860] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  118.615052][ T5860] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  118.654349][ T5860] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  118.810817][ T5860] 8021q: adding VLAN 0 to HW filter on device bond0
[  118.835263][ T5860] 8021q: adding VLAN 0 to HW filter on device team0
[  118.850407][ T3575] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.850558][ T3575] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.873703][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.875622][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  119.164086][ T5860] 8021q: adding VLAN 0 to HW filter on device batadv0
[  119.222287][ T5860] veth0_vlan: entered promiscuous mode
[  119.232721][ T5860] veth1_vlan: entered promiscuous mode
[  119.276327][ T5860] veth0_macvtap: entered promiscuous mode
[  119.286728][ T5860] veth1_macvtap: entered promiscuous mode
[  119.307005][ T5860] batman_adv: batadv0: Interface activated: batadv_slave_0
[  119.324031][ T5860] batman_adv: batadv0: Interface activated: batadv_slave_1
[  119.346700][ T3575] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.353374][ T3575] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.356650][ T3575] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.363590][ T3575] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  120.176722][ T3575] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.422303][ T3575] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.782318][ T5889] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  120.783955][ T5889] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  120.784685][ T5889] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  120.785883][ T5889] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  120.786764][ T5889] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  121.062643][ T3575] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.044386][ T3575] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.727974][ T3575] bridge_slave_1: left allmulticast mode
[  122.728161][ T3575] bridge_slave_1: left promiscuous mode
[  122.730684][ T3575] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.801597][ T3575] bridge_slave_0: left allmulticast mode
[  122.801622][ T3575] bridge_slave_0: left promiscuous mode
[  122.801803][ T3575] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.550391][ T3575] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  124.610252][ T3575] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  124.632333][ T3575] bond0 (unregistering): Released all slaves
[  125.139399][ T3575] hsr_slave_0: left promiscuous mode
[  125.179299][ T3575] hsr_slave_1: left promiscuous mode
[  125.180962][ T3575] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  125.181051][ T3575] batman_adv: batadv0: Removing interface: batadv_slave_0
[  125.231340][ T3575] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  125.231371][ T3575] batman_adv: batadv0: Removing interface: batadv_slave_1
[  125.318468][ T3575] veth1_macvtap: left promiscuous mode
[  125.318640][ T3575] veth0_macvtap: left promiscuous mode
[  125.318849][ T3575] veth1_vlan: left promiscuous mode
[  125.321916][ T3575] veth0_vlan: left promiscuous mode
[  127.380062][ T3575] team0 (unregistering): Port device team_slave_1 removed
[  127.600181][ T3575] team0 (unregistering): Port device team_slave_0 removed
2025/11/28 17:15:16 executed programs: 0
[  130.495699][ T5889] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  130.498085][ T5889] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  130.502128][ T5889] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  130.504003][ T5889] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  130.504966][ T5889] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  131.524565][ T5950] chnl_net:caif_netlink_parms(): no params data found
[  131.981005][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.981199][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.981390][ T5950] bridge_slave_0: entered allmulticast mode
[  131.984486][ T5950] bridge_slave_0: entered promiscuous mode
[  131.988243][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.988467][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.988631][ T5950] bridge_slave_1: entered allmulticast mode
[  131.993949][ T5950] bridge_slave_1: entered promiscuous mode
[  132.198374][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  132.205173][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  132.462455][ T5950] team0: Port device team_slave_0 added
[  132.466225][ T5950] team0: Port device team_slave_1 added
[  132.561375][   T61] Bluetooth: hci0: command tx timeout
[  132.762204][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0
[  132.762220][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  132.762243][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  132.764814][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1
[  132.764830][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  132.764859][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  133.186437][ T5950] hsr_slave_0: entered promiscuous mode
[  133.187408][ T5950] hsr_slave_1: entered promiscuous mode
[  134.639554][   T61] Bluetooth: hci0: command tx timeout
[  135.053246][ T5950] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  135.086214][ T5950] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  135.124686][ T5950] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  135.177379][ T5950] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  135.350564][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.384204][ T5950] 8021q: adding VLAN 0 to HW filter on device team0
[  135.402732][   T43] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.402987][   T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.432481][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.432636][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.808581][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0
[  135.894053][ T5950] veth0_vlan: entered promiscuous mode
[  135.914783][ T5950] veth1_vlan: entered promiscuous mode
[  135.969582][ T5950] veth0_macvtap: entered promiscuous mode
[  135.976117][ T5950] veth1_macvtap: entered promiscuous mode
[  136.006079][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.023190][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.043246][ T3575] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.044296][ T3575] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.044345][ T3575] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.044384][ T3575] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.327063][ T1120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.327088][ T1120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.412423][ T1120] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.412447][ T1120] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/11/28 17:15:22 executed programs: 2
[  136.612775][ T6074] loop0: detected capacity change from 0 to 512
[  136.719401][   T61] Bluetooth: hci0: command tx timeout
[  136.733024][ T6074] 
[  136.733039][ T6074] =========================================[  136.733039][ T6074] ======================================================
[  136.733049][ T6074] WARNING: possible circular locking dependency detected
[  136.733071][ T6074] syzkaller #0 Not tainted
[  136.733083][ T6074] ------------------------------------------------------
[  136.733092][ T6074] syz.0.17/6074 is trying to acquire lock:
[  136.733106][ T6074] ffff888035fcec58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[  136.733188][ T6074] 
[  136.733188][ T6074] but task is already holding lock:
[  136.733196][ T6074] ffff8880411580b8 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[  136.733252][ T6074] 
[  136.733252][ T6074] which lock already depends on the new lock.
[  136.733252][ T6074] 
[  136.733260][ T6074] 
[  136.733260][ T6074] the existing dependency chain (in reverse order) is:
[  136.733269][ T6074] 
[  136.733269][ T6074] -> #2 (&ei->xattr_sem){++++}-{4:4}:
[  136.733300][ T6074]        lock_acquire+0x120/0x360
[  136.733330][ T6074]        down_write+0x3a/0x50
[  136.733350][ T6074]        ext4_xattr_set_handle+0x165/0x1590
[  136.733385][ T6074]        ext4_initxattrs+0x9f/0x110
[  136.733445][ T6074]        security_inode_init_security+0x2a0/0x3f0
[  136.733479][ T6074]        __ext4_new_inode+0x3314/0x3cb0
[  136.733511][ T6074]        ext4_create+0x22d/0x460
[  136.733550][ T6074]        path_openat+0x1500/0x3840
[  136.733574][ T6074]        do_filp_open+0x1fa/0x410
[  136.733596][ T6074]        do_sys_openat2+0x121/0x1c0
[  136.733618][ T6074]        __x64_sys_openat+0x138/0x170
[  136.733638][ T6074]        do_syscall_64+0xfa/0xfa0
[  136.733670][ T6074]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.733691][ T6074] 
[  136.733691][ T6074] -> #1 (jbd2_handle){++++}-{0:0}:
[  136.733722][ T6074]        lock_acquire+0x120/0x360
[  136.733750][ T6074]        start_this_handle+0x1fa7/0x21c0
[  136.733780][ T6074]        jbd2__journal_start+0x2c1/0x5b0
[  136.733807][ T6074]        __ext4_journal_start_sb+0x227/0x5c0
[  136.733839][ T6074]        ext4_do_writepages+0xf6f/0x4600
[  136.733868][ T6074]        ext4_writepages+0x205/0x350
[  136.733890][ T6074]        do_writepages+0x32e/0x550
[  136.733911][ T6074]        __writeback_single_inode+0x145/0x1000
[  136.733939][ T6074]        writeback_sb_inodes+0x6b7/0xf60
[  136.733964][ T6074]        __writeback_inodes_wb+0x111/0x240
[  136.733989][ T6074]        wb_writeback+0x44f/0xaf0
[  136.734013][ T6074]        wb_workfn+0xaf4/0xf00
[  136.734032][ T6074]        process_scheduled_works+0xae1/0x17b0
[  136.734059][ T6074]        worker_thread+0x8a0/0xda0
[  136.734085][ T6074]        kthread+0x711/0x8a0
[  136.734115][ T6074]        ret_from_fork+0x4bc/0x870
[  136.734140][ T6074]        ret_from_fork_asm+0x1a/0x30
[  136.734162][ T6074] 
[  136.734162][ T6074] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  136.734194][ T6074]        validate_chain+0xb9b/0x2140
[  136.734212][ T6074]        __lock_acquire+0xab9/0xd20
[  136.734240][ T6074]        lock_acquire+0x120/0x360
[  136.734267][ T6074]        percpu_down_read_internal+0x48/0x1d0
[  136.734287][ T6074]        ext4_writepages+0x1cc/0x350
[  136.734307][ T6074]        do_writepages+0x32e/0x550
[  136.734329][ T6074]        __writeback_single_inode+0x145/0x1000
[  136.734356][ T6074]        writeback_single_inode+0x1db/0x640
[  136.734378][ T6074]        write_inode_now+0x160/0x1d0
[  136.734400][ T6074]        iput+0x830/0xc50
[  136.734444][ T6074]        ext4_xattr_block_set+0x1fce/0x2ac0
[  136.734477][ T6074]        ext4_expand_extra_isize_ea+0x12da/0x1ea0
[  136.734511][ T6074]        __ext4_expand_extra_isize+0x30d/0x400
[  136.734531][ T6074]        __ext4_mark_inode_dirty+0x46c/0x700
[  136.734557][ T6074]        ext4_evict_inode+0x80d/0xee0
[  136.734581][ T6074]        evict+0x504/0x9c0
[  136.734603][ T6074]        ext4_orphan_cleanup+0xc20/0x1460
[  136.734628][ T6074]        ext4_fill_super+0x593b/0x61f0
[  136.734648][ T6074]        get_tree_bdev_flags+0x40e/0x4d0
[  136.734674][ T6074]        vfs_get_tree+0x92/0x2b0
[  136.734700][ T6074]        do_new_mount+0x302/0xa10
[  136.734728][ T6074]        __se_sys_mount+0x313/0x410
[  136.734757][ T6074]        do_syscall_64+0xfa/0xfa0
[  136.734787][ T6074]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.734810][ T6074] 
[  136.734810][ T6074] other info that might help us debug this:
[  136.734810][ T6074] 
[  136.734816][ T6074] Chain exists of:
[  136.734816][ T6074]   &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[  136.734816][ T6074] 
[  136.734856][ T6074]  Possible unsafe locking scenario:
[  136.734856][ T6074] 
[  136.734862][ T6074]        CPU0                    CPU1
[  136.734869][ T6074]        ----                    ----
[  136.734877][ T6074]   lock(&ei->xattr_sem);
[  136.734892][ T6074]                                lock(jbd2_handle);
[  136.734907][ T6074]                                lock(&ei->xattr_sem);
[  136.734924][ T6074]   rlock(&sbi->s_writepages_rwsem);
[  136.734940][ T6074] 
[  136.734940][ T6074]  *** DEADLOCK ***
[  136.734940][ T6074] 
[  136.734945][ T6074] 3 locks held by syz.0.17/6074:
[  136.734959][ T6074]  #0: ffff8880364640d0 (&type->s_umount_key#27/1){+.+.}-{4:4}, at: alloc_super+0x1ba/0x9a0
[  136.735027][ T6074]  #1: ffff888036464770 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2d6/0xee0
[  136.735085][ T6074]  #2: ffff8880411580b8 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[  136.735144][ T6074] 
[  136.735144][ T6074] stack backtrace:
[  136.735173][ T6074] CPU: 1 UID: 0 PID: 6074 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  136.735200][ T6074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  136.735225][ T6074] Call Trace:
[  136.735238][ T6074]  <TASK>
[  136.735248][ T6074]  dump_stack_lvl+0x189/0x250
[  136.735285][ T6074]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.735320][ T6074]  ? __pfx__printk+0x10/0x10
[  136.735349][ T6074]  ? print_lock_name+0xde/0x100
[  136.735384][ T6074]  print_circular_bug+0x2ee/0x310
[  136.735418][ T6074]  check_noncircular+0x134/0x160
[  136.735445][ T6074]  validate_chain+0xb9b/0x2140
[  136.735472][ T6074]  ? look_up_lock_class+0x74/0x170
[  136.735505][ T6074]  ? register_lock_class+0x51/0x320
[  136.735539][ T6074]  __lock_acquire+0xab9/0xd20
[  136.735574][ T6074]  ? ext4_writepages+0x1cc/0x350
[  136.735596][ T6074]  lock_acquire+0x120/0x360
[  136.735626][ T6074]  ? ext4_writepages+0x1cc/0x350
[  136.735659][ T6074]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  136.735693][ T6074]  ? lockdep_hardirqs_on+0x9c/0x150
[  136.735729][ T6074]  percpu_down_read_internal+0x48/0x1d0
[  136.735752][ T6074]  ? ext4_writepages+0x1cc/0x350
[  136.735777][ T6074]  ext4_writepages+0x1cc/0x350
[  136.735803][ T6074]  ? __pfx_ext4_writepages+0x10/0x10
[  136.735825][ T6074]  ? rt_mutex_slowunlock+0x493/0x8a0
[  136.735859][ T6074]  ? rt_spin_unlock+0x150/0x200
[  136.735892][ T6074]  ? rt_spin_unlock+0x161/0x200
[  136.735919][ T6074]  ? __pfx_ext4_writepages+0x10/0x10
[  136.735944][ T6074]  do_writepages+0x32e/0x550
[  136.735969][ T6074]  ? reacquire_held_locks+0x127/0x1d0
[  136.736004][ T6074]  ? rt_spin_lock+0x1c1/0x3e0
[  136.736033][ T6074]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  136.736064][ T6074]  __writeback_single_inode+0x145/0x1000
[  136.736098][ T6074]  writeback_single_inode+0x1db/0x640
[  136.736126][ T6074]  write_inode_now+0x160/0x1d0
[  136.736151][ T6074]  ? __pfx_write_inode_now+0x10/0x10
[  136.736193][ T6074]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  136.736224][ T6074]  ? rt_spin_unlock+0x150/0x200
[  136.736253][ T6074]  ? rt_spin_unlock+0x161/0x200
[  136.736281][ T6074]  iput+0x830/0xc50
[  136.736318][ T6074]  ext4_xattr_block_set+0x1fce/0x2ac0
[  136.736371][ T6074]  ? __pfx_ext4_xattr_block_set+0x10/0x10
[  136.736413][ T6074]  ? ext4_xattr_block_find+0x2d4/0x350
[  136.736449][ T6074]  ext4_expand_extra_isize_ea+0x12da/0x1ea0
[  136.736505][ T6074]  __ext4_expand_extra_isize+0x30d/0x400
[  136.736532][ T6074]  __ext4_mark_inode_dirty+0x46c/0x700
[  136.736568][ T6074]  ext4_evict_inode+0x80d/0xee0
[  136.736607][ T6074]  ? __pfx_ext4_evict_inode+0x10/0x10
[  136.736634][ T6074]  ? rt_spin_unlock+0x150/0x200
[  136.736662][ T6074]  ? rt_spin_unlock+0x161/0x200
[  136.736690][ T6074]  ? __pfx_ext4_evict_inode+0x10/0x10
[  136.736717][ T6074]  evict+0x504/0x9c0
[  136.736745][ T6074]  ? __pfx_evict+0x10/0x10
[  136.736768][ T6074]  ? rt_spin_unlock+0x161/0x200
[  136.736796][ T6074]  ? iput+0x946/0xc50
[  136.736832][ T6074]  ext4_orphan_cleanup+0xc20/0x1460
[  136.736866][ T6074]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  136.736895][ T6074]  ? ext4_register_li_request+0x640/0x720
[  136.736922][ T6074]  ? errseq_check_and_advance+0x66/0x120
[  136.736951][ T6074]  ext4_fill_super+0x593b/0x61f0
[  136.736986][ T6074]  ? __pfx_ext4_fill_super+0x10/0x10
[  136.737007][ T6074]  ? snprintf+0xda/0x120
[  136.737032][ T6074]  ? rt_spin_lock+0x1c1/0x3e0
[  136.737061][ T6074]  ? __pfx_snprintf+0x10/0x10
[  136.737086][ T6074]  ? set_blocksize+0x219/0x450
[  136.737120][ T6074]  ? rt_spin_unlock+0x150/0x200
[  136.737149][ T6074]  ? sb_set_blocksize+0x104/0x180
[  136.737185][ T6074]  ? setup_bdev_super+0x4c1/0x5b0
[  136.737215][ T6074]  get_tree_bdev_flags+0x40e/0x4d0
[  136.737245][ T6074]  ? __pfx_ext4_fill_super+0x10/0x10
[  136.737268][ T6074]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  136.737297][ T6074]  ? cap_capable+0x11f/0x460
[  136.737319][ T6074]  ? safesetid_security_capable+0xa9/0x1a0
[  136.737345][ T6074]  vfs_get_tree+0x92/0x2b0
[  136.737376][ T6074]  do_new_mount+0x302/0xa10
[  136.737418][ T6074]  ? safesetid_security_capable+0xa9/0x1a0
[  136.737444][ T6074]  ? __pfx_do_new_mount+0x10/0x10
[  136.737477][ T6074]  ? ns_capable+0x8a/0xf0
[  136.737513][ T6074]  __se_sys_mount+0x313/0x410
[  136.737548][ T6074]  ? __pfx___se_sys_mount+0x10/0x10
[  136.737582][ T6074]  ? do_syscall_64+0xbe/0xfa0
[  136.737615][ T6074]  ? __x64_sys_mount+0x20/0xc0
[  136.737648][ T6074]  do_syscall_64+0xfa/0xfa0
[  136.737680][ T6074]  ? lockdep_hardirqs_on+0x9c/0x150
[  136.737712][ T6074]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.737736][ T6074]  ? clear_bhb_loop+0x60/0xb0
[  136.737763][ T6074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.737786][ T6074] RIP: 0033:0x7fa416710eea
[  136.737814][ T6074] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.737834][ T6074] RSP: 002b:00007fff8ad31178 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  136.737858][ T6074] RAX: ffffffffffffffda RBX: 00007fff8ad31200 RCX: 00007fa416710eea
[  136.737876][ T6074] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fff8ad311c0
[  136.737893][ T6074] RBP: 0000200000000180 R08: 00007fff8ad31200 R09: 0000000000000000
[  136.737908][ T6074] R10: 0000000000000000 R11: 0000000000000246 R12: 00002000000001c0
[  136.737923][ T6074] R13: 00007fff8ad311c0 R14: 000000000000046f R15: 0000200000000200
[  136.737950][ T6074]  </TASK>
[  136.738765][ T6074] ------------[ cut here ]------------
[  136.738776][ T6074] EA inode 11 i_nlink=2
[  136.739175][ T6074] WARNING: CPU: 1 PID: 6074 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x51a/0x5b0
[  136.739215][ T6074] Modules linked in:
[  136.739236][ T6074] CPU: 1 UID: 0 PID: 6074 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  136.739262][ T6074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  136.739276][ T6074] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[  136.739302][ T6074] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 40 9b ff 8a 4c 89 e6 e8 37 8e 03 ff 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 b3 4a 41 08 44 89 f9
[  136.739321][ T6074] RSP: 0018:ffffc90003f7f100 EFLAGS: 00010246
[  136.739341][ T6074] RAX: ca1a2ffd7ee16c00 RBX: 0000000000000001 RCX: ffff88801bfd3c00
[  136.739358][ T6074] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  136.739371][ T6074] RBP: ffffc90003f7f1f8 R08: 0000000000000000 R09: 0000000000000000
[  136.739387][ T6074] R10: dffffc0000000000 R11: ffffed101712487b R12: 000000000000000b
[  136.739417][ T6074] R13: ffff888055ae0450 R14: 1ffff1100ab5c070 R15: ffff888055ae0380
[  136.739435][ T6074] FS:  0000555594c62500(0000) GS:ffff888126ef4000(0000) knlGS:0000000000000000
[  136.739455][ T6074] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  136.739472][ T6074] CR2: 00007fb4ab26d9c0 CR3: 000000002352e000 CR4: 00000000003526f0
[  136.739494][ T6074] Call Trace:
[  136.739503][ T6074]  <TASK>
[  136.739514][ T6074]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  136.739544][ T6074]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  136.739570][ T6074]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[  136.739611][ T6074]  ext4_xattr_set_entry+0xabb/0x1e20
[  136.739657][ T6074]  ext4_xattr_ibody_set+0x254/0x6a0
[  136.739694][ T6074]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[  136.739750][ T6074]  __ext4_expand_extra_isize+0x30d/0x400
[  136.739780][ T6074]  __ext4_mark_inode_dirty+0x46c/0x700
[  136.739815][ T6074]  ext4_evict_inode+0x80d/0xee0
[  136.739850][ T6074]  ? __pfx_ext4_evict_inode+0x10/0x10
[  136.739876][ T6074]  ? rt_spin_unlock+0x150/0x200
[  136.739907][ T6074]  ? rt_spin_unlock+0x161/0x200
[  136.739935][ T6074]  ? __pfx_ext4_evict_inode+0x10/0x10
[  136.739962][ T6074]  evict+0x504/0x9c0
[  136.739992][ T6074]  ? __pfx_evict+0x10/0x10
[  136.740016][ T6074]  ? rt_spin_unlock+0x161/0x200
[  136.740045][ T6074]  ? iput+0x946/0xc50
[  136.740083][ T6074]  ext4_orphan_cleanup+0xc20/0x1460
[  136.740116][ T6074]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  136.740146][ T6074]  ? ext4_register_li_request+0x640/0x720
[  136.740173][ T6074]  ? errseq_check_and_advance+0x66/0x120
[  136.740203][ T6074]  ext4_fill_super+0x593b/0x61f0
[  136.740235][ T6074]  ? __pfx_ext4_fill_super+0x10/0x10
[  136.740256][ T6074]  ? snprintf+0xda/0x120
[  136.740279][ T6074]  ? rt_spin_lock+0x1c1/0x3e0
[  136.740310][ T6074]  ? __pfx_snprintf+0x10/0x10
[  136.740333][ T6074]  ? set_blocksize+0x219/0x450
[  136.740368][ T6074]  ? rt_spin_unlock+0x150/0x200
[  136.740398][ T6074]  ? sb_set_blocksize+0x104/0x180
[  136.740442][ T6074]  ? setup_bdev_super+0x4c1/0x5b0
[  136.740475][ T6074]  get_tree_bdev_flags+0x40e/0x4d0
[  136.740504][ T6074]  ? __pfx_ext4_fill_super+0x10/0x10
[  136.740526][ T6074]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  136.740557][ T6074]  ? cap_capable+0x11f/0x460
[  136.740579][ T6074]  ? safesetid_security_capable+0xa9/0x1a0
[  136.740606][ T6074]  vfs_get_tree+0x92/0x2b0
[  136.740637][ T6074]  do_new_mount+0x302/0xa10
[  136.740668][ T6074]  ? safesetid_security_capable+0xa9/0x1a0
[  136.740693][ T6074]  ? __pfx_do_new_mount+0x10/0x10
[  136.740726][ T6074]  ? ns_capable+0x8a/0xf0
[  136.740762][ T6074]  __se_sys_mount+0x313/0x410
[  136.740797][ T6074]  ? __pfx___se_sys_mount+0x10/0x10
[  136.740831][ T6074]  ? do_syscall_64+0xbe/0xfa0
[  136.740864][ T6074]  ? __x64_sys_mount+0x20/0xc0
[  136.740896][ T6074]  do_syscall_64+0xfa/0xfa0
[  136.740930][ T6074]  ? lockdep_hardirqs_on+0x9c/0x150
[  136.740964][ T6074]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.740986][ T6074]  ? clear_bhb_loop+0x60/0xb0
[  136.741013][ T6074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.741036][ T6074] RIP: 0033:0x7fa416710eea
[  136.741056][ T6074] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.741075][ T6074] RSP: 002b:00007fff8ad31178 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  136.741098][ T6074] RAX: ffffffffffffffda RBX: 00007fff8ad31200 RCX: 00007fa416710eea
[  136.741116][ T6074] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fff8ad311c0
[  136.741133][ T6074] RBP: 0000200000000180 R08: 00007fff8ad31200 R09: 0000000000000000
[  136.741150][ T6074] R10: 0000000000000000 R11: 0000000000000246 R12: 00002000000001c0
[  136.741165][ T6074] R13: 00007fff8ad311c0 R14: 000000000000046f R15: 0000200000000200
[  136.741193][ T6074]  </TASK>
[  136.741207][ T6074] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  136.741224][ T6074] CPU: 1 UID: 0 PID: 6074 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  136.741251][ T6074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  136.741265][ T6074] Call Trace:
[  136.741274][ T6074]  <TASK>
[  136.741282][ T6074]  dump_stack_lvl+0x99/0x250
[  136.741319][ T6074]  ? __asan_memcpy+0x40/0x70
[  136.741346][ T6074]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.741380][ T6074]  ? __pfx__printk+0x10/0x10
[  136.741423][ T6074]  vpanic+0x237/0x6d0
[  136.741445][ T6074]  ? __pfx_vpanic+0x10/0x10
[  136.741472][ T6074]  panic+0xb9/0xc0
[  136.741493][ T6074]  ? __pfx_panic+0x10/0x10
[  136.741524][ T6074]  __warn+0x31b/0x4b0
[  136.741544][ T6074]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  136.741569][ T6074]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  136.741604][ T6074]  report_bug+0x2be/0x4f0
[  136.741638][ T6074]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  136.741662][ T6074]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  136.741685][ T6074]  ? ext4_xattr_inode_update_ref+0x51c/0x5b0
[  136.741709][ T6074]  handle_bug+0x84/0x160
[  136.741732][ T6074]  exc_invalid_op+0x1a/0x50
[  136.741757][ T6074]  asm_exc_invalid_op+0x1a/0x20
[  136.741780][ T6074] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[  136.741805][ T6074] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 40 9b ff 8a 4c 89 e6 e8 37 8e 03 ff 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 b3 4a 41 08 44 89 f9
[  136.741825][ T6074] RSP: 0018:ffffc90003f7f100 EFLAGS: 00010246
[  136.741846][ T6074] RAX: ca1a2ffd7ee16c00 RBX: 0000000000000001 RCX: ffff88801bfd3c00
[  136.741864][ T6074] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  136.741877][ T6074] RBP: ffffc90003f7f1f8 R08: 0000000000000000 R09: 0000000000000000
[  136.741893][ T6074] R10: dffffc0000000000 R11: ffffed101712487b R12: 000000000000000b
[  136.741911][ T6074] R13: ffff888055ae0450 R14: 1ffff1100ab5c070 R15: ffff888055ae0380
[  136.741940][ T6074]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  136.741969][ T6074]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  136.741996][ T6074]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[  136.742037][ T6074]  ext4_xattr_set_entry+0xabb/0x1e20
[  136.742085][ T6074]  ext4_xattr_ibody_set+0x254/0x6a0
[  136.742127][ T6074]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[  136.742185][ T6074]  __ext4_expand_extra_isize+0x30d/0x400
[  136.742214][ T6074]  __ext4_mark_inode_dirty+0x46c/0x700
[  136.742251][ T6074]  ext4_evict_inode+0x80d/0xee0
[  136.742288][ T6074]  ? __pfx_ext4_evict_inode+0x10/0x10
[  136.742316][ T6074]  ? rt_spin_unlock+0x150/0x200
[  136.742347][ T6074]  ? rt_spin_unlock+0x161/0x200
[  136.742376][ T6074]  ? __pfx_ext4_evict_inode+0x10/0x10
[  136.742413][ T6074]  evict+0x504/0x9c0
[  136.742444][ T6074]  ? __pfx_evict+0x10/0x10
[  136.742469][ T6074]  ? rt_spin_unlock+0x161/0x200
[  136.742499][ T6074]  ? iput+0x946/0xc50
[  136.742539][ T6074]  ext4_orphan_cleanup+0xc20/0x1460
[  136.742575][ T6074]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  136.742606][ T6074]  ? ext4_register_li_request+0x640/0x720
[  136.742636][ T6074]  ? errseq_check_and_advance+0x66/0x120
[  136.742665][ T6074]  ext4_fill_super+0x593b/0x61f0
[  136.742701][ T6074]  ? __pfx_ext4_fill_super+0x10/0x10
[  136.742723][ T6074]  ? snprintf+0xda/0x120
[  136.742749][ T6074]  ? rt_spin_lock+0x1c1/0x3e0
[  136.742779][ T6074]  ? __pfx_snprintf+0x10/0x10
[  136.742805][ T6074]  ? set_blocksize+0x219/0x450
[  136.742838][ T6074]  ? rt_spin_unlock+0x150/0x200
[  136.742869][ T6074]  ? sb_set_blocksize+0x104/0x180
[  136.742906][ T6074]  ? setup_bdev_super+0x4c1/0x5b0
[  136.742939][ T6074]  get_tree_bdev_flags+0x40e/0x4d0
[  136.742970][ T6074]  ? __pfx_ext4_fill_super+0x10/0x10
[  136.742993][ T6074]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  136.743025][ T6074]  ? cap_capable+0x11f/0x460
[  136.743048][ T6074]  ? safesetid_security_capable+0xa9/0x1a0
[  136.743076][ T6074]  vfs_get_tree+0x92/0x2b0
[  136.743107][ T6074]  do_new_mount+0x302/0xa10
[  136.743140][ T6074]  ? safesetid_security_capable+0xa9/0x1a0
[  136.743168][ T6074]  ? __pfx_do_new_mount+0x10/0x10
[  136.743200][ T6074]  ? ns_capable+0x8a/0xf0
[  136.743238][ T6074]  __se_sys_mount+0x313/0x410
[  136.743275][ T6074]  ? __pfx___se_sys_mount+0x10/0x10
[  136.743312][ T6074]  ? do_syscall_64+0xbe/0xfa0
[  136.743346][ T6074]  ? __x64_sys_mount+0x20/0xc0
[  136.743380][ T6074]  do_syscall_64+0xfa/0xfa0
[  136.743423][ T6074]  ? lockdep_hardirqs_on+0x9c/0x150
[  136.743457][ T6074]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.743482][ T6074]  ? clear_bhb_loop+0x60/0xb0
[  136.743510][ T6074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.743533][ T6074] RIP: 0033:0x7fa416710eea
[  136.743551][ T6074] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.743573][ T6074] RSP: 002b:00007fff8ad31178 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  136.743596][ T6074] RAX: ffffffffffffffda RBX: 00007fff8ad31200 RCX: 00007fa416710eea
[  136.743614][ T6074] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fff8ad311c0
[  136.743632][ T6074] RBP: 0000200000000180 R08: 00007fff8ad31200 R09: 0000000000000000
[  136.743649][ T6074] R10: 0000000000000000 R11: 0000000000000246 R12: 00002000000001c0
[  136.743664][ T6074] R13: 00007fff8ad311c0 R14: 000000000000046f R15: 0000200000000200
[  136.743691][ T6074]  </TASK>
[  136.744019][ T6074] Kernel Offset: disabled