Warning: Permanently added '10.128.10.24' (ED25519) to the list of known hosts.
2025/12/06 15:00:49 parsed 1 programs
[ 87.532071][ T5796] cgroup: Unknown subsys name 'net'
[ 87.682143][ T5796] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 89.435386][ T5796] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 91.259345][ T5808] chnl_net:caif_netlink_parms(): no params data found
[ 91.337158][ T5808] bridge0: port 1(bridge_slave_0) entered blocking state
[ 91.345000][ T5808] bridge0: port 1(bridge_slave_0) entered disabled state
[ 91.352309][ T5808] bridge_slave_0: entered allmulticast mode
[ 91.359699][ T5808] bridge_slave_0: entered promiscuous mode
[ 91.369892][ T5808] bridge0: port 2(bridge_slave_1) entered blocking state
[ 91.377246][ T5808] bridge0: port 2(bridge_slave_1) entered disabled state
[ 91.385127][ T5808] bridge_slave_1: entered allmulticast mode
[ 91.392202][ T5808] bridge_slave_1: entered promiscuous mode
[ 91.424769][ T5808] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 91.437390][ T5808] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 91.472775][ T5808] team0: Port device team_slave_0 added
[ 91.481162][ T5808] team0: Port device team_slave_1 added
[ 91.510565][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 91.518163][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 91.544122][ T5808] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 91.557975][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 91.564985][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 91.591142][ T5808] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 91.635891][ T5808] hsr_slave_0: entered promiscuous mode
[ 91.642770][ T5808] hsr_slave_1: entered promiscuous mode
[ 91.790312][ T5808] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 91.802877][ T5808] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 91.813859][ T5808] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 91.823873][ T5808] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 91.859398][ T5808] bridge0: port 2(bridge_slave_1) entered blocking state
[ 91.866717][ T5808] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 91.874906][ T5808] bridge0: port 1(bridge_slave_0) entered blocking state
[ 91.882148][ T5808] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 91.942227][ T5808] 8021q: adding VLAN 0 to HW filter on device bond0
[ 91.961729][ T11] bridge0: port 1(bridge_slave_0) entered disabled state
[ 91.971676][ T11] bridge0: port 2(bridge_slave_1) entered disabled state
[ 91.989855][ T5808] 8021q: adding VLAN 0 to HW filter on device team0
[ 92.004899][ T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.012271][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 92.027725][ T42] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.034914][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 92.056165][ T788] cfg80211: failed to load regulatory.db
[ 92.241246][ T5808] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 92.285724][ T5808] veth0_vlan: entered promiscuous mode
[ 92.297792][ T5808] veth1_vlan: entered promiscuous mode
[ 92.329524][ T5808] veth0_macvtap: entered promiscuous mode
[ 92.339214][ T5808] veth1_macvtap: entered promiscuous mode
[ 92.359982][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 92.377630][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 92.390687][ T5808] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.400566][ T5808] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.409430][ T5808] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.418200][ T5808] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.611798][ T3442] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.877776][ T5874] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 94.886618][ T5874] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 94.896484][ T5874] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 94.905451][ T5874] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 94.913237][ T5874] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 94.921240][ T5874] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 95.138286][ T3442] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 95.211623][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 95.221615][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 95.251836][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 95.260857][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/06 15:01:00 executed programs: 0
[ 96.491837][ T5106] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 96.502039][ T5106] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 96.511329][ T5106] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 96.520653][ T5106] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 96.529107][ T5106] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 96.537048][ T5106] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 96.713812][ T5905] chnl_net:caif_netlink_parms(): no params data found
[ 96.786107][ T5905] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.793520][ T5905] bridge0: port 1(bridge_slave_0) entered disabled state
[ 96.800788][ T5905] bridge_slave_0: entered allmulticast mode
[ 96.809089][ T5905] bridge_slave_0: entered promiscuous mode
[ 96.817464][ T5905] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.824779][ T5905] bridge0: port 2(bridge_slave_1) entered disabled state
[ 96.831959][ T5905] bridge_slave_1: entered allmulticast mode
[ 96.840006][ T5905] bridge_slave_1: entered promiscuous mode
[ 96.871110][ T5905] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 96.883645][ T5905] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 96.917431][ T5905] team0: Port device team_slave_0 added
[ 96.926880][ T5905] team0: Port device team_slave_1 added
[ 96.956629][ T5905] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 96.963715][ T5905] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 96.990154][ T5905] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 97.002856][ T5905] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 97.010166][ T5905] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 97.036258][ T5905] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 97.082299][ T5905] hsr_slave_0: entered promiscuous mode
[ 97.089191][ T5905] hsr_slave_1: entered promiscuous mode
[ 97.095636][ T5905] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 97.105175][ T5905] Cannot create hsr debugfs directory
[ 97.596275][ T3442] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.662391][ T3442] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.570722][ T5905] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 98.586008][ T5905] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 98.598263][ T5905] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 98.609516][ T5905] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 98.618511][ T5106] Bluetooth: hci0: command tx timeout
[ 98.643558][ T3442] hsr_slave_0: left promiscuous mode
[ 98.650050][ T3442] hsr_slave_1: left promiscuous mode
[ 98.656321][ T3442] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 98.663941][ T3442] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 98.672621][ T3442] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 98.680171][ T3442] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 98.688652][ T3442] bridge_slave_1: left allmulticast mode
[ 98.694493][ T3442] bridge_slave_1: left promiscuous mode
[ 98.701145][ T3442] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.716243][ T3442] bridge_slave_0: left allmulticast mode
[ 98.721940][ T3442] bridge_slave_0: left promiscuous mode
[ 98.727951][ T3442] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.760554][ T3442] veth1_macvtap: left promiscuous mode
[ 98.766609][ T3442] veth0_macvtap: left promiscuous mode
[ 98.772340][ T3442] veth1_vlan: left promiscuous mode
[ 98.782799][ T3442] veth0_vlan: left promiscuous mode
[ 99.209473][ T3442] team0 (unregistering): Port device team_slave_1 removed
[ 99.245716][ T3442] team0 (unregistering): Port device team_slave_0 removed
[ 99.279911][ T3442] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 99.317428][ T3442] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 99.640105][ T3442] bond0 (unregistering): Released all slaves
[ 99.816399][ T5905] 8021q: adding VLAN 0 to HW filter on device bond0
[ 99.856388][ T5905] 8021q: adding VLAN 0 to HW filter on device team0
[ 99.871741][ T3434] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.878945][ T3434] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 99.893181][ T3410] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.900382][ T3410] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 100.140364][ T5905] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 100.192808][ T5905] veth0_vlan: entered promiscuous mode
[ 100.217107][ T5905] veth1_vlan: entered promiscuous mode
[ 100.257197][ T5905] veth0_macvtap: entered promiscuous mode
[ 100.267624][ T5905] veth1_macvtap: entered promiscuous mode
[ 100.316425][ T5905] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 100.342474][ T5905] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 100.362454][ T5905] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.372381][ T5905] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.382256][ T5905] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.392405][ T5905] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.526472][ T3410] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 100.542041][ T3410] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 100.592567][ T3434] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 100.600787][ T3434] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 100.684556][ T5951] syz.0.17[5951]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 100.706856][ T5106] Bluetooth: hci0: command tx timeout
[ 100.715279][ T5951] loop0: detected capacity change from 0 to 512
[ 100.753154][ T5951]
[ 100.755543][ T5951] ======================================================
[ 100.762599][ T5951] WARNING: possible circular locking dependency detected
[ 100.769651][ T5951] syzkaller #0 Not tainted
[ 100.774088][ T5951] ------------------------------------------------------
[ 100.781125][ T5951] syz.0.17/5951 is trying to acquire lock:
[ 100.786951][ T5951] ffff88802ad44bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0
[ 100.797463][ T5951]
[ 100.797463][ T5951] but task is already holding lock:
[ 100.804851][ T5951] ffff888072f6dac8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 100.814708][ T5951]
[ 100.814708][ T5951] which lock already depends on the new lock.
[ 100.814708][ T5951]
[ 100.825117][ T5951]
[ 100.825117][ T5951] the existing dependency chain (in reverse order) is:
[ 100.834135][ T5951]
[ 100.834135][ T5951] -> #2 (&ei->xattr_sem){++++}-{3:3}:
[ 100.841705][ T5951] down_read+0x46/0x2e0
[ 100.846391][ T5951] ext4_setattr+0x86b/0x1c90
[ 100.851516][ T5951] notify_change+0xb0d/0xe10
[ 100.856734][ T5951] chown_common+0x3f9/0x5a0
[ 100.861777][ T5951] do_fchownat+0x168/0x270
[ 100.866727][ T5951] __x64_sys_chown+0x82/0x90
[ 100.871884][ T5951] do_syscall_64+0x55/0xb0
[ 100.879732][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 100.886254][ T5951]
[ 100.886254][ T5951] -> #1 (jbd2_handle){++++}-{0:0}:
[ 100.893739][ T5951] start_this_handle+0x1e9d/0x20c0
[ 100.899380][ T5951] jbd2__journal_start+0x2bb/0x5b0
[ 100.905018][ T5951] __ext4_journal_start_sb+0x203/0x570
[ 100.911008][ T5951] ext4_do_writepages+0xf92/0x38d0
[ 100.916654][ T5951] ext4_writepages+0x1a8/0x2f0
[ 100.921971][ T5951] do_writepages+0x3a2/0x600
[ 100.927094][ T5951] __writeback_single_inode+0x153/0xee0
[ 100.933233][ T5951] writeback_sb_inodes+0x77c/0xef0
[ 100.938886][ T5951] __writeback_inodes_wb+0x111/0x240
[ 100.944707][ T5951] wb_writeback+0x464/0xba0
[ 100.949746][ T5951] wb_workfn+0xabc/0xe20
[ 100.954522][ T5951] process_scheduled_works+0xa45/0x15b0
[ 100.960606][ T5951] worker_thread+0xa55/0xfc0
[ 100.965724][ T5951] kthread+0x2fa/0x390
[ 100.970320][ T5951] ret_from_fork+0x48/0x80
[ 100.975270][ T5951] ret_from_fork_asm+0x11/0x20
[ 100.980587][ T5951]
[ 100.980587][ T5951] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 100.989022][ T5951] __lock_acquire+0x2ddb/0x7c80
[ 100.994403][ T5951] lock_acquire+0x197/0x410
[ 100.999442][ T5951] percpu_down_read+0x44/0x1a0
[ 101.004738][ T5951] ext4_writepages+0x170/0x2f0
[ 101.010055][ T5951] do_writepages+0x3a2/0x600
[ 101.015182][ T5951] __writeback_single_inode+0x153/0xee0
[ 101.021260][ T5951] writeback_single_inode+0x211/0x720
[ 101.027163][ T5951] write_inode_now+0x161/0x1e0
[ 101.032476][ T5951] iput+0x5b2/0x920
[ 101.036808][ T5951] ext4_xattr_block_set+0x273a/0x32a0
[ 101.042710][ T5951] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 101.049135][ T5951] __ext4_expand_extra_isize+0x306/0x400
[ 101.055321][ T5951] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 101.061314][ T5951] ext4_evict_inode+0x7ed/0xea0
[ 101.066696][ T5951] evict+0x486/0x870
[ 101.071130][ T5951] ext4_orphan_cleanup+0xbd4/0x1400
[ 101.076874][ T5951] ext4_fill_super+0x5de4/0x66c0
[ 101.082340][ T5951] get_tree_bdev+0x3e4/0x510
[ 101.087458][ T5951] vfs_get_tree+0x8c/0x280
[ 101.092403][ T5951] do_new_mount+0x24b/0xa40
[ 101.097520][ T5951] __se_sys_mount+0x2da/0x3c0
[ 101.102729][ T5951] do_syscall_64+0x55/0xb0
[ 101.107690][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 101.114112][ T5951]
[ 101.114112][ T5951] other info that might help us debug this:
[ 101.114112][ T5951]
[ 101.124342][ T5951] Chain exists of:
[ 101.124342][ T5951] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 101.124342][ T5951]
[ 101.137734][ T5951] Possible unsafe locking scenario:
[ 101.137734][ T5951]
[ 101.145207][ T5951] CPU0 CPU1
[ 101.150595][ T5951] ---- ----
[ 101.155966][ T5951] lock(&ei->xattr_sem);
[ 101.160302][ T5951] lock(jbd2_handle);
[ 101.166897][ T5951] lock(&ei->xattr_sem);
[ 101.173759][ T5951] rlock(&sbi->s_writepages_rwsem);
[ 101.179057][ T5951]
[ 101.179057][ T5951] *** DEADLOCK ***
[ 101.179057][ T5951]
[ 101.187203][ T5951] 3 locks held by syz.0.17/5951:
[ 101.192146][ T5951] #0: ffff88802b71a0e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510
[ 101.202276][ T5951] #1: ffff88802b71a608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0
[ 101.211694][ T5951] #2: ffff888072f6dac8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 101.221981][ T5951]
[ 101.221981][ T5951] stack backtrace:
[ 101.227883][ T5951] CPU: 1 PID: 5951 Comm: syz.0.17 Not tainted syzkaller #0
[ 101.235088][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 101.245160][ T5951] Call Trace:
[ 101.248477][ T5951]
[ 101.251477][ T5951] dump_stack_lvl+0x16c/0x230
[ 101.256232][ T5951] ? load_image+0x3b0/0x3b0
[ 101.260759][ T5951] ? show_regs_print_info+0x20/0x20
[ 101.265980][ T5951] ? print_circular_bug+0x12b/0x1a0
[ 101.271216][ T5951] check_noncircular+0x2bd/0x3c0
[ 101.276171][ T5951] ? look_up_lock_class+0x75/0x140
[ 101.281297][ T5951] ? print_deadlock_bug+0x5d0/0x5d0
[ 101.286508][ T5951] ? lockdep_lock+0xe0/0x220
[ 101.291116][ T5951] ? _find_first_zero_bit+0xd3/0x100
[ 101.296453][ T5951] __lock_acquire+0x2ddb/0x7c80
[ 101.301325][ T5951] ? mark_lock+0x94/0x320
[ 101.305670][ T5951] ? verify_lock_unused+0x140/0x140
[ 101.310874][ T5951] ? __lock_acquire+0x1334/0x7c80
[ 101.315931][ T5951] ? verify_lock_unused+0x140/0x140
[ 101.321146][ T5951] lock_acquire+0x197/0x410
[ 101.325660][ T5951] ? ext4_writepages+0x170/0x2f0
[ 101.330660][ T5951] ? __might_sleep+0xe0/0xe0
[ 101.335262][ T5951] ? mark_lock+0x94/0x320
[ 101.339615][ T5951] ? read_lock_is_recursive+0x20/0x20
[ 101.344997][ T5951] ? __lock_acquire+0x1334/0x7c80
[ 101.350031][ T5951] percpu_down_read+0x44/0x1a0
[ 101.354812][ T5951] ? ext4_writepages+0x170/0x2f0
[ 101.359771][ T5951] ext4_writepages+0x170/0x2f0
[ 101.364557][ T5951] ? ext4_read_folio+0x2f0/0x2f0
[ 101.369517][ T5951] ? __rwlock_init+0x150/0x150
[ 101.374309][ T5951] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 101.380408][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 101.385723][ T5951] ? ext4_read_folio+0x2f0/0x2f0
[ 101.390686][ T5951] do_writepages+0x3a2/0x600
[ 101.395301][ T5951] ? folio_clear_dirty_for_io+0xc30/0xc30
[ 101.401038][ T5951] ? writeback_single_inode+0x206/0x720
[ 101.406602][ T5951] ? __lock_acquire+0x7c80/0x7c80
[ 101.411640][ T5951] ? do_raw_spin_lock+0x121/0x2c0
[ 101.416676][ T5951] ? get_tree_bdev+0x3e4/0x510
[ 101.421454][ T5951] __writeback_single_inode+0x153/0xee0
[ 101.427021][ T5951] writeback_single_inode+0x211/0x720
[ 101.432412][ T5951] ? write_inode_now+0x1e0/0x1e0
[ 101.437427][ T5951] write_inode_now+0x161/0x1e0
[ 101.442230][ T5951] ? bdi_split_work_to_wbs+0x890/0x890
[ 101.447728][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 101.452948][ T5951] iput+0x5b2/0x920
[ 101.456774][ T5951] ext4_xattr_block_set+0x273a/0x32a0
[ 101.462165][ T5951] ? __might_sleep+0xe0/0xe0
[ 101.466776][ T5951] ? xattr_find_entry+0x12b/0x2f0
[ 101.471813][ T5951] ? ext4_xattr_block_find+0x350/0x350
[ 101.477304][ T5951] ? ext4_xattr_block_find+0x2d4/0x350
[ 101.482781][ T5951] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 101.488718][ T5951] __ext4_expand_extra_isize+0x306/0x400
[ 101.494373][ T5951] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 101.499873][ T5951] ext4_evict_inode+0x7ed/0xea0
[ 101.504850][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 101.509731][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 101.515649][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 101.520894][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 101.526797][ T5951] evict+0x486/0x870
[ 101.530704][ T5951] ? __lock_acquire+0x7c80/0x7c80
[ 101.535738][ T5951] ? proc_nr_inodes+0x230/0x230
[ 101.540597][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 101.545848][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 101.550720][ T5951] ? iput+0x70a/0x920
[ 101.554724][ T5951] ext4_orphan_cleanup+0xbd4/0x1400
[ 101.559940][ T5951] ? ext4_orphan_del+0xba0/0xba0
[ 101.564897][ T5951] ? ext4_register_li_request+0x183/0x940
[ 101.570633][ T5951] ? errseq_check_and_advance+0x66/0x120
[ 101.576382][ T5951] ext4_fill_super+0x5de4/0x66c0
[ 101.581346][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 101.587603][ T5951] ? __might_sleep+0xe0/0xe0
[ 101.592204][ T5951] ? read_lock_is_recursive+0x20/0x20
[ 101.597602][ T5951] ? snprintf+0xdb/0x120
[ 101.601857][ T5951] ? vscnprintf+0x80/0x80
[ 101.606197][ T5951] ? down_write+0x162/0x1f0
[ 101.610706][ T5951] ? down_read_killable+0x340/0x340
[ 101.615920][ T5951] ? setup_bdev_super+0x56b/0x660
[ 101.621032][ T5951] get_tree_bdev+0x3e4/0x510
[ 101.625627][ T5951] ? vfs_parse_fs_string+0x160/0x160
[ 101.630924][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 101.637176][ T5951] ? setup_bdev_super+0x660/0x660
[ 101.642207][ T5951] ? apparmor_capable+0x137/0x1a0
[ 101.647238][ T5951] ? bpf_lsm_capable+0x9/0x10
[ 101.651931][ T5951] ? security_capable+0x89/0xb0
[ 101.656792][ T5951] vfs_get_tree+0x8c/0x280
[ 101.661229][ T5951] do_new_mount+0x24b/0xa40
[ 101.665744][ T5951] __se_sys_mount+0x2da/0x3c0
[ 101.670429][ T5951] ? __x64_sys_mount+0xc0/0xc0
[ 101.675205][ T5951] ? lockdep_hardirqs_on+0x98/0x150
[ 101.680421][ T5951] ? __x64_sys_mount+0x20/0xc0
[ 101.685198][ T5951] do_syscall_64+0x55/0xb0
[ 101.689644][ T5951] ? clear_bhb_loop+0x40/0x90
[ 101.694334][ T5951] ? clear_bhb_loop+0x40/0x90
[ 101.699021][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 101.704945][ T5951] RIP: 0033:0x7f8bfa390eea
[ 101.709377][ T5951] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 101.728990][ T5951] RSP: 002b:00007ffef8ef2a28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 101.737419][ T5951] RAX: ffffffffffffffda RBX: 00007ffef8ef2ab0 RCX: 00007f8bfa390eea
[ 101.745400][ T5951] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffef8ef2a70
[ 101.753466][ T5951] RBP: 0000200000000180 R08: 00007ffef8ef2ab0 R09: 0000000000800700
[ 101.761447][ T5951] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 101.769425][ T5951] R13: 00007ffef8ef2a70 R14: 000000000000046f R15: 000000000000002c
[ 101.777410][ T5951]
[ 101.801723][ T5951] ------------[ cut here ]------------
[ 101.807285][ T5951] EA inode 11 i_nlink=2
[ 101.812596][ T5951] WARNING: CPU: 0 PID: 5951 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550
[ 101.827916][ T5951] Modules linked in:
[ 101.831843][ T5951] CPU: 0 PID: 5951 Comm: syz.0.17 Not tainted syzkaller #0
[ 101.839511][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 101.850016][ T5951] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[ 101.857098][ T5951] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 ff 49 2c 08
[ 101.877295][ T5951] RSP: 0018:ffffc900046ef1c0 EFLAGS: 00010246
[ 101.883780][ T5951] RAX: 51e2f9134ca60200 RBX: 0000000000000002 RCX: ffff8880236cda00
[ 101.892612][ T5951] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 101.901077][ T5951] RBP: ffffc900046ef2b8 R08: ffffc900046eedc7 R09: 1ffff920008dddb8
[ 101.909426][ T5951] R10: dffffc0000000000 R11: fffff520008dddb9 R12: dffffc0000000000
[ 101.917793][ T5951] R13: ffff888072f2e8a8 R14: ffff888072f2e6b0 R15: ffff888072f2e700
[ 101.926137][ T5951] FS: 00005555886aa500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 101.935473][ T5951] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 101.942465][ T5951] CR2: 00007efe2ffb7000 CR3: 000000007ac3f000 CR4: 00000000003506f0
[ 101.950873][ T5951] Call Trace:
[ 101.954569][ T5951]
[ 101.957521][ T5951] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 101.963172][ T5951] ? ext4_xattr_inode_iget+0x3df/0x600
[ 101.969051][ T5951] ext4_xattr_set_entry+0xcda/0x1e90
[ 101.974671][ T5951] ext4_xattr_ibody_set+0x254/0x6a0
[ 101.979883][ T5951] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 101.986186][ T5951] __ext4_expand_extra_isize+0x306/0x400
[ 101.991874][ T5951] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 101.998635][ T5951] ext4_evict_inode+0x7ed/0xea0
[ 102.003951][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 102.008854][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 102.015119][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 102.020356][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 102.026847][ T5951] evict+0x486/0x870
[ 102.030770][ T5951] ? __lock_acquire+0x7c80/0x7c80
[ 102.036402][ T5951] ? proc_nr_inodes+0x230/0x230
[ 102.041281][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 102.046702][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 102.051593][ T5951] ? iput+0x70a/0x920
[ 102.055651][ T5951] ext4_orphan_cleanup+0xbd4/0x1400
[ 102.060954][ T5951] ? ext4_orphan_del+0xba0/0xba0
[ 102.066003][ T5951] ? ext4_register_li_request+0x183/0x940
[ 102.071765][ T5951] ? errseq_check_and_advance+0x66/0x120
[ 102.077482][ T5951] ext4_fill_super+0x5de4/0x66c0
[ 102.082478][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 102.088975][ T5951] ? __might_sleep+0xe0/0xe0
[ 102.093637][ T5951] ? read_lock_is_recursive+0x20/0x20
[ 102.099646][ T5951] ? snprintf+0xdb/0x120
[ 102.104026][ T5951] ? vscnprintf+0x80/0x80
[ 102.108386][ T5951] ? down_write+0x162/0x1f0
[ 102.112908][ T5951] ? down_read_killable+0x340/0x340
[ 102.118183][ T5951] ? setup_bdev_super+0x56b/0x660
[ 102.123243][ T5951] get_tree_bdev+0x3e4/0x510
[ 102.127891][ T5951] ? vfs_parse_fs_string+0x160/0x160
[ 102.133208][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 102.139521][ T5951] ? setup_bdev_super+0x660/0x660
[ 102.144612][ T5951] ? apparmor_capable+0x137/0x1a0
[ 102.149675][ T5951] ? bpf_lsm_capable+0x9/0x10
[ 102.154506][ T5951] ? security_capable+0x89/0xb0
[ 102.159399][ T5951] vfs_get_tree+0x8c/0x280
[ 102.163884][ T5951] do_new_mount+0x24b/0xa40
[ 102.168512][ T5951] __se_sys_mount+0x2da/0x3c0
[ 102.173240][ T5951] ? __x64_sys_mount+0xc0/0xc0
[ 102.178083][ T5951] ? lockdep_hardirqs_on+0x98/0x150
[ 102.183309][ T5951] ? __x64_sys_mount+0x20/0xc0
[ 102.188144][ T5951] do_syscall_64+0x55/0xb0
[ 102.192601][ T5951] ? clear_bhb_loop+0x40/0x90
[ 102.198198][ T5951] ? clear_bhb_loop+0x40/0x90
[ 102.203018][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 102.209108][ T5951] RIP: 0033:0x7f8bfa390eea
[ 102.213587][ T5951] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 102.233279][ T5951] RSP: 002b:00007ffef8ef2a28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 102.241793][ T5951] RAX: ffffffffffffffda RBX: 00007ffef8ef2ab0 RCX: 00007f8bfa390eea
[ 102.249832][ T5951] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffef8ef2a70
[ 102.257965][ T5951] RBP: 0000200000000180 R08: 00007ffef8ef2ab0 R09: 0000000000800700
[ 102.266004][ T5951] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 102.274135][ T5951] R13: 00007ffef8ef2a70 R14: 000000000000046f R15: 000000000000002c
[ 102.282134][ T5951]
[ 102.285206][ T5951] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 102.292505][ T5951] CPU: 0 PID: 5951 Comm: syz.0.17 Not tainted syzkaller #0
[ 102.299723][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 102.309796][ T5951] Call Trace:
[ 102.313099][ T5951]
[ 102.316047][ T5951] dump_stack_lvl+0x16c/0x230
[ 102.320774][ T5951] ? show_regs_print_info+0x20/0x20
[ 102.326024][ T5951] ? load_image+0x3b0/0x3b0
[ 102.330565][ T5951] panic+0x2c0/0x710
[ 102.334484][ T5951] ? bpf_jit_dump+0xd0/0xd0
[ 102.339008][ T5951] __warn+0x2e0/0x470
[ 102.343000][ T5951] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 102.349003][ T5951] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 102.355017][ T5951] report_bug+0x2be/0x4f0
[ 102.359363][ T5951] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 102.365373][ T5951] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 102.371381][ T5951] ? ext4_xattr_inode_update_ref+0x4fd/0x550
[ 102.377392][ T5951] handle_bug+0xcf/0x120
[ 102.381672][ T5951] exc_invalid_op+0x1a/0x50
[ 102.386195][ T5951] asm_exc_invalid_op+0x1a/0x20
[ 102.391062][ T5951] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[ 102.397702][ T5951] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 ff 49 2c 08
[ 102.417417][ T5951] RSP: 0018:ffffc900046ef1c0 EFLAGS: 00010246
[ 102.423506][ T5951] RAX: 51e2f9134ca60200 RBX: 0000000000000002 RCX: ffff8880236cda00
[ 102.431488][ T5951] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 102.439468][ T5951] RBP: ffffc900046ef2b8 R08: ffffc900046eedc7 R09: 1ffff920008dddb8
[ 102.447462][ T5951] R10: dffffc0000000000 R11: fffff520008dddb9 R12: dffffc0000000000
[ 102.455472][ T5951] R13: ffff888072f2e8a8 R14: ffff888072f2e6b0 R15: ffff888072f2e700
[ 102.463476][ T5951] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 102.469139][ T5951] ? ext4_xattr_inode_iget+0x3df/0x600
[ 102.474618][ T5951] ext4_xattr_set_entry+0xcda/0x1e90
[ 102.479931][ T5951] ext4_xattr_ibody_set+0x254/0x6a0
[ 102.485152][ T5951] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 102.491080][ T5951] __ext4_expand_extra_isize+0x306/0x400
[ 102.496739][ T5951] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 102.502221][ T5951] ext4_evict_inode+0x7ed/0xea0
[ 102.507087][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 102.511972][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 102.517895][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 102.523115][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 102.529070][ T5951] evict+0x486/0x870
[ 102.533000][ T5951] ? __lock_acquire+0x7c80/0x7c80
[ 102.538053][ T5951] ? proc_nr_inodes+0x230/0x230
[ 102.542929][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 102.548149][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 102.553060][ T5951] ? iput+0x70a/0x920
[ 102.557056][ T5951] ext4_orphan_cleanup+0xbd4/0x1400
[ 102.562279][ T5951] ? ext4_orphan_del+0xba0/0xba0
[ 102.567243][ T5951] ? ext4_register_li_request+0x183/0x940
[ 102.572980][ T5951] ? errseq_check_and_advance+0x66/0x120
[ 102.578625][ T5951] ext4_fill_super+0x5de4/0x66c0
[ 102.583585][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 102.589837][ T5951] ? __might_sleep+0xe0/0xe0
[ 102.594441][ T5951] ? read_lock_is_recursive+0x20/0x20
[ 102.599850][ T5951] ? snprintf+0xdb/0x120
[ 102.604108][ T5951] ? vscnprintf+0x80/0x80
[ 102.608449][ T5951] ? down_write+0x162/0x1f0
[ 102.612960][ T5951] ? down_read_killable+0x340/0x340
[ 102.618169][ T5951] ? setup_bdev_super+0x56b/0x660
[ 102.623207][ T5951] get_tree_bdev+0x3e4/0x510
[ 102.627807][ T5951] ? vfs_parse_fs_string+0x160/0x160
[ 102.633104][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 102.639374][ T5951] ? setup_bdev_super+0x660/0x660
[ 102.644431][ T5951] ? apparmor_capable+0x137/0x1a0
[ 102.649470][ T5951] ? bpf_lsm_capable+0x9/0x10
[ 102.654167][ T5951] ? security_capable+0x89/0xb0
[ 102.659027][ T5951] vfs_get_tree+0x8c/0x280
[ 102.663454][ T5951] do_new_mount+0x24b/0xa40
[ 102.667981][ T5951] __se_sys_mount+0x2da/0x3c0
[ 102.672672][ T5951] ? __x64_sys_mount+0xc0/0xc0
[ 102.677463][ T5951] ? lockdep_hardirqs_on+0x98/0x150
[ 102.682666][ T5951] ? __x64_sys_mount+0x20/0xc0
[ 102.687464][ T5951] do_syscall_64+0x55/0xb0
[ 102.692001][ T5951] ? clear_bhb_loop+0x40/0x90
[ 102.696689][ T5951] ? clear_bhb_loop+0x40/0x90
[ 102.701378][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 102.707289][ T5951] RIP: 0033:0x7f8bfa390eea
[ 102.711719][ T5951] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 102.731333][ T5951] RSP: 002b:00007ffef8ef2a28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 102.739757][ T5951] RAX: ffffffffffffffda RBX: 00007ffef8ef2ab0 RCX: 00007f8bfa390eea
[ 102.747741][ T5951] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffef8ef2a70
[ 102.755721][ T5951] RBP: 0000200000000180 R08: 00007ffef8ef2ab0 R09: 0000000000800700
[ 102.763696][ T5951] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 102.771675][ T5951] R13: 00007ffef8ef2a70 R14: 000000000000046f R15: 000000000000002c
[ 102.779665][ T5951]
[ 102.783041][ T5951] Kernel Offset: disabled
[ 102.787368][ T5951] Rebooting in 86400 seconds..