Warning: Permanently added '10.128.1.227' (ED25519) to the list of known hosts.
2025/09/13 06:11:40 parsed 1 programs
[ 84.194393][ T5792] cgroup: Unknown subsys name 'net'
[ 84.364732][ T5792] cgroup: Unknown subsys name 'rlimit'
[ 86.075003][ T5792] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 89.607257][ T1094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.615248][ T1094] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.654797][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.662781][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 90.528168][ T5853] syz-executor (5853) used greatest stack depth: 20680 bytes left
[ 90.759954][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 90.770684][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 90.778983][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 90.787788][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 90.796599][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 90.804157][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 91.204784][ T5872] chnl_net:caif_netlink_parms(): no params data found
[ 91.283522][ T5872] bridge0: port 1(bridge_slave_0) entered blocking state
[ 91.290860][ T5872] bridge0: port 1(bridge_slave_0) entered disabled state
[ 91.298124][ T5872] bridge_slave_0: entered allmulticast mode
[ 91.305954][ T5872] bridge_slave_0: entered promiscuous mode
[ 91.318283][ T5872] bridge0: port 2(bridge_slave_1) entered blocking state
[ 91.326678][ T5872] bridge0: port 2(bridge_slave_1) entered disabled state
[ 91.333872][ T5872] bridge_slave_1: entered allmulticast mode
[ 91.341034][ T5872] bridge_slave_1: entered promiscuous mode
[ 91.374860][ T5872] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 91.387087][ T5872] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 91.423132][ T5872] team0: Port device team_slave_0 added
[ 91.432073][ T5872] team0: Port device team_slave_1 added
[ 91.463453][ T5872] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 91.471867][ T5872] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 91.498740][ T5872] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 91.512085][ T5872] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 91.519222][ T5872] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 91.545985][ T5872] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 91.641988][ T5872] hsr_slave_0: entered promiscuous mode
[ 91.649821][ T5872] hsr_slave_1: entered promiscuous mode
[ 91.792493][ T5872] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 91.804173][ T5872] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 91.814187][ T5872] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 91.825336][ T5872] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 91.940068][ T5872] 8021q: adding VLAN 0 to HW filter on device bond0
[ 91.976957][ T5872] 8021q: adding VLAN 0 to HW filter on device team0
[ 91.995367][ T1094] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.002767][ T1094] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 92.015009][ T1094] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.022142][ T1094] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 92.140609][ T966] cfg80211: failed to load regulatory.db
[ 92.289486][ T5872] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 92.354915][ T5872] veth0_vlan: entered promiscuous mode
[ 92.369404][ T5872] veth1_vlan: entered promiscuous mode
[ 92.422671][ T5872] veth0_macvtap: entered promiscuous mode
[ 92.432415][ T5872] veth1_macvtap: entered promiscuous mode
[ 92.460782][ T5872] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 92.478412][ T5872] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 92.494446][ T5872] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.505286][ T5872] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.515330][ T5872] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.524464][ T5872] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.712967][ T1003] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/09/13 06:11:52 executed programs: 0
[ 93.523216][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 93.531799][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 93.539947][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 93.549465][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 93.557374][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 93.564746][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 93.748240][ T5903] chnl_net:caif_netlink_parms(): no params data found
[ 93.820016][ T5903] bridge0: port 1(bridge_slave_0) entered blocking state
[ 93.828016][ T5903] bridge0: port 1(bridge_slave_0) entered disabled state
[ 93.835361][ T5903] bridge_slave_0: entered allmulticast mode
[ 93.842950][ T5903] bridge_slave_0: entered promiscuous mode
[ 93.851392][ T5903] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.859077][ T5903] bridge0: port 2(bridge_slave_1) entered disabled state
[ 93.866234][ T5903] bridge_slave_1: entered allmulticast mode
[ 93.873368][ T5903] bridge_slave_1: entered promiscuous mode
[ 93.908254][ T5903] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 93.921373][ T5903] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 93.960159][ T5903] team0: Port device team_slave_0 added
[ 93.969737][ T5903] team0: Port device team_slave_1 added
[ 94.002161][ T5903] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 94.009584][ T5903] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 94.036511][ T5903] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 94.049932][ T5903] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 94.057443][ T5903] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 94.083686][ T5903] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 94.130490][ T5903] hsr_slave_0: entered promiscuous mode
[ 94.138109][ T5903] hsr_slave_1: entered promiscuous mode
[ 94.144424][ T5903] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 94.152462][ T5903] Cannot create hsr debugfs directory
[ 95.119425][ T1003] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 95.648690][ T5102] Bluetooth: hci0: command tx timeout
[ 97.331030][ T1003] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.380240][ T1003] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.727661][ T5102] Bluetooth: hci0: command tx timeout
[ 98.232300][ T5903] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 98.244476][ T5903] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 98.256098][ T5903] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 98.285119][ T5903] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 98.321606][ T1003] hsr_slave_0: left promiscuous mode
[ 98.328406][ T1003] hsr_slave_1: left promiscuous mode
[ 98.334681][ T1003] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 98.345264][ T1003] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 98.356066][ T1003] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 98.365854][ T1003] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 98.375504][ T1003] bridge_slave_1: left allmulticast mode
[ 98.384808][ T1003] bridge_slave_1: left promiscuous mode
[ 98.391571][ T1003] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.403859][ T1003] bridge_slave_0: left allmulticast mode
[ 98.410886][ T1003] bridge_slave_0: left promiscuous mode
[ 98.416906][ T1003] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.451636][ T1003] veth1_macvtap: left promiscuous mode
[ 98.457617][ T1003] veth0_macvtap: left promiscuous mode
[ 98.463312][ T1003] veth1_vlan: left promiscuous mode
[ 98.471139][ T1003] veth0_vlan: left promiscuous mode
[ 98.854831][ T1003] team0 (unregistering): Port device team_slave_1 removed
[ 98.886305][ T1003] team0 (unregistering): Port device team_slave_0 removed
[ 98.916259][ T1003] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 98.947179][ T1003] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 99.245426][ T1003] bond0 (unregistering): Released all slaves
[ 99.402398][ T5903] 8021q: adding VLAN 0 to HW filter on device bond0
[ 99.430336][ T5903] 8021q: adding VLAN 0 to HW filter on device team0
[ 99.448795][ T1094] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.456063][ T1094] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 99.481470][ T42] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.488631][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 99.714698][ T5903] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 99.779702][ T5903] veth0_vlan: entered promiscuous mode
[ 99.797689][ T5903] veth1_vlan: entered promiscuous mode
[ 99.806705][ T5102] Bluetooth: hci0: command tx timeout
[ 99.829050][ T5903] veth0_macvtap: entered promiscuous mode
[ 99.844564][ T5903] veth1_macvtap: entered promiscuous mode
[ 99.864964][ T5903] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 99.888610][ T5903] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 99.901231][ T5903] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 99.910659][ T5903] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 99.919847][ T5903] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 99.929144][ T5903] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.001838][ T1099] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 100.012196][ T1099] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 100.048793][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 100.056945][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 100.120247][ T5951] syz.0.17[5951]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 100.141440][ T5951] loop0: detected capacity change from 0 to 512
[ 100.184521][ T5951]
[ 100.186923][ T5951] ======================================================
[ 100.193960][ T5951] WARNING: possible circular locking dependency detected
[ 100.201014][ T5951] syzkaller #0 Not tainted
[ 100.205445][ T5951] ------------------------------------------------------
[ 100.212499][ T5951] syz.0.17/5951 is trying to acquire lock:
[ 100.218318][ T5951] ffff88807bba4bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0
[ 100.228362][ T5951]
[ 100.228362][ T5951] but task is already holding lock:
[ 100.235738][ T5951] ffff8880620680c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 100.245573][ T5951]
[ 100.245573][ T5951] which lock already depends on the new lock.
[ 100.245573][ T5951]
[ 100.255981][ T5951]
[ 100.255981][ T5951] the existing dependency chain (in reverse order) is:
[ 100.264988][ T5951]
[ 100.264988][ T5951] -> #2 (&ei->xattr_sem){++++}-{3:3}:
[ 100.272549][ T5951] down_read+0x46/0x2e0
[ 100.277245][ T5951] ext4_setattr+0x86b/0x1c90
[ 100.282350][ T5951] notify_change+0xb0d/0xe10
[ 100.287486][ T5951] chown_common+0x3f9/0x5a0
[ 100.292521][ T5951] do_fchownat+0x168/0x270
[ 100.297494][ T5951] __x64_sys_chown+0x82/0x90
[ 100.302618][ T5951] do_syscall_64+0x55/0xb0
[ 100.307560][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 100.313985][ T5951]
[ 100.313985][ T5951] -> #1 (jbd2_handle){++++}-{0:0}:
[ 100.321290][ T5951] start_this_handle+0x1e9d/0x20c0
[ 100.326975][ T5951] jbd2__journal_start+0x2bb/0x5b0
[ 100.332604][ T5951] __ext4_journal_start_sb+0x203/0x570
[ 100.338590][ T5951] ext4_do_writepages+0xf92/0x38d0
[ 100.344243][ T5951] ext4_writepages+0x1a8/0x2f0
[ 100.349536][ T5951] do_writepages+0x3a2/0x600
[ 100.354654][ T5951] __writeback_single_inode+0x153/0xee0
[ 100.360736][ T5951] writeback_sb_inodes+0x77c/0xef0
[ 100.366398][ T5951] __writeback_inodes_wb+0x111/0x240
[ 100.372234][ T5951] wb_writeback+0x464/0xba0
[ 100.377261][ T5951] wb_workfn+0xb32/0xe20
[ 100.382043][ T5951] process_scheduled_works+0xa45/0x15b0
[ 100.388120][ T5951] worker_thread+0xa55/0xfc0
[ 100.393227][ T5951] kthread+0x2fa/0x390
[ 100.397825][ T5951] ret_from_fork+0x48/0x80
[ 100.402759][ T5951] ret_from_fork_asm+0x11/0x20
[ 100.408063][ T5951]
[ 100.408063][ T5951] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 100.416576][ T5951] __lock_acquire+0x2ddb/0x7c80
[ 100.421956][ T5951] lock_acquire+0x197/0x410
[ 100.426992][ T5951] percpu_down_read+0x44/0x1a0
[ 100.432305][ T5951] ext4_writepages+0x170/0x2f0
[ 100.437602][ T5951] do_writepages+0x3a2/0x600
[ 100.442720][ T5951] __writeback_single_inode+0x153/0xee0
[ 100.448797][ T5951] writeback_single_inode+0x211/0x720
[ 100.454704][ T5951] write_inode_now+0x161/0x1e0
[ 100.460001][ T5951] iput+0x5b2/0x920
[ 100.464332][ T5951] ext4_xattr_block_set+0x273a/0x32a0
[ 100.470247][ T5951] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 100.476664][ T5951] __ext4_expand_extra_isize+0x306/0x400
[ 100.482831][ T5951] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 100.488811][ T5951] ext4_evict_inode+0x7ed/0xea0
[ 100.494184][ T5951] evict+0x486/0x870
[ 100.498595][ T5951] ext4_orphan_cleanup+0xbd4/0x1400
[ 100.504322][ T5951] ext4_fill_super+0x5de7/0x66c0
[ 100.509795][ T5951] get_tree_bdev+0x3e4/0x510
[ 100.514904][ T5951] vfs_get_tree+0x8c/0x280
[ 100.519843][ T5951] do_new_mount+0x24b/0xa40
[ 100.524861][ T5951] __se_sys_mount+0x2da/0x3c0
[ 100.530071][ T5951] do_syscall_64+0x55/0xb0
[ 100.535009][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 100.541430][ T5951]
[ 100.541430][ T5951] other info that might help us debug this:
[ 100.541430][ T5951]
[ 100.551653][ T5951] Chain exists of:
[ 100.551653][ T5951] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 100.551653][ T5951]
[ 100.565035][ T5951] Possible unsafe locking scenario:
[ 100.565035][ T5951]
[ 100.572485][ T5951] CPU0 CPU1
[ 100.577848][ T5951] ---- ----
[ 100.583204][ T5951] lock(&ei->xattr_sem);
[ 100.587530][ T5951] lock(jbd2_handle);
[ 100.594118][ T5951] lock(&ei->xattr_sem);
[ 100.600963][ T5951] rlock(&sbi->s_writepages_rwsem);
[ 100.606256][ T5951]
[ 100.606256][ T5951] *** DEADLOCK ***
[ 100.606256][ T5951]
[ 100.614418][ T5951] 3 locks held by syz.0.17/5951:
[ 100.619352][ T5951] #0: ffff88807bba20e0 (&type->s_umount_key#31){++++}-{3:3}, at: get_tree_bdev+0x344/0x510
[ 100.629448][ T5951] #1: ffff88807bba2608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0
[ 100.638846][ T5951] #2: ffff8880620680c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 100.649107][ T5951]
[ 100.649107][ T5951] stack backtrace:
[ 100.655003][ T5951] CPU: 1 PID: 5951 Comm: syz.0.17 Not tainted syzkaller #0
[ 100.662195][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 100.672256][ T5951] Call Trace:
[ 100.675545][ T5951]
[ 100.678507][ T5951] dump_stack_lvl+0x16c/0x230
[ 100.683196][ T5951] ? load_image+0x3b0/0x3b0
[ 100.687717][ T5951] ? show_regs_print_info+0x20/0x20
[ 100.693031][ T5951] ? print_circular_bug+0x12b/0x1a0
[ 100.698348][ T5951] check_noncircular+0x2bd/0x3c0
[ 100.703305][ T5951] ? look_up_lock_class+0x75/0x140
[ 100.708419][ T5951] ? print_deadlock_bug+0x5d0/0x5d0
[ 100.713612][ T5951] ? lockdep_lock+0xe0/0x220
[ 100.718207][ T5951] ? _find_first_zero_bit+0xd3/0x100
[ 100.723499][ T5951] __lock_acquire+0x2ddb/0x7c80
[ 100.728355][ T5951] ? mark_lock+0x94/0x320
[ 100.732683][ T5951] ? verify_lock_unused+0x140/0x140
[ 100.737883][ T5951] ? __lock_acquire+0x1334/0x7c80
[ 100.742925][ T5951] ? verify_lock_unused+0x140/0x140
[ 100.748132][ T5951] lock_acquire+0x197/0x410
[ 100.752637][ T5951] ? ext4_writepages+0x170/0x2f0
[ 100.757589][ T5951] ? __might_sleep+0xe0/0xe0
[ 100.762183][ T5951] ? mark_lock+0x94/0x320
[ 100.766540][ T5951] ? read_lock_is_recursive+0x20/0x20
[ 100.771955][ T5951] ? __lock_acquire+0x1334/0x7c80
[ 100.776988][ T5951] percpu_down_read+0x44/0x1a0
[ 100.781758][ T5951] ? ext4_writepages+0x170/0x2f0
[ 100.786711][ T5951] ext4_writepages+0x170/0x2f0
[ 100.791493][ T5951] ? ext4_read_folio+0x2f0/0x2f0
[ 100.796458][ T5951] ? __rwlock_init+0x150/0x150
[ 100.801337][ T5951] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 100.807236][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 100.812437][ T5951] ? ext4_read_folio+0x2f0/0x2f0
[ 100.817378][ T5951] do_writepages+0x3a2/0x600
[ 100.821978][ T5951] ? folio_clear_dirty_for_io+0xc30/0xc30
[ 100.827710][ T5951] ? writeback_single_inode+0x206/0x720
[ 100.833256][ T5951] ? __lock_acquire+0x7c80/0x7c80
[ 100.838278][ T5951] ? do_raw_spin_lock+0x121/0x2c0
[ 100.843305][ T5951] ? get_tree_bdev+0x3e4/0x510
[ 100.848095][ T5951] __writeback_single_inode+0x153/0xee0
[ 100.853669][ T5951] writeback_single_inode+0x211/0x720
[ 100.859050][ T5951] ? write_inode_now+0x1e0/0x1e0
[ 100.863998][ T5951] write_inode_now+0x161/0x1e0
[ 100.868785][ T5951] ? bdi_split_work_to_wbs+0x890/0x890
[ 100.874251][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 100.879457][ T5951] iput+0x5b2/0x920
[ 100.883283][ T5951] ext4_xattr_block_set+0x273a/0x32a0
[ 100.888666][ T5951] ? __might_sleep+0xe0/0xe0
[ 100.893443][ T5951] ? xattr_find_entry+0x12b/0x2f0
[ 100.898473][ T5951] ? ext4_xattr_block_find+0x350/0x350
[ 100.903943][ T5951] ? ext4_xattr_block_find+0x2d4/0x350
[ 100.909411][ T5951] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 100.915320][ T5951] __ext4_expand_extra_isize+0x306/0x400
[ 100.920961][ T5951] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 100.926460][ T5951] ext4_evict_inode+0x7ed/0xea0
[ 100.931333][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 100.936195][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 100.942097][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 100.947319][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 100.953213][ T5951] evict+0x486/0x870
[ 100.957108][ T5951] ? __lock_acquire+0x7c80/0x7c80
[ 100.962133][ T5951] ? proc_nr_inodes+0x230/0x230
[ 100.966980][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 100.972184][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 100.977033][ T5951] ? iput+0x70a/0x920
[ 100.981011][ T5951] ext4_orphan_cleanup+0xbd4/0x1400
[ 100.986217][ T5951] ? ext4_orphan_del+0xba0/0xba0
[ 100.991162][ T5951] ? ext4_register_li_request+0x183/0x940
[ 100.996885][ T5951] ? errseq_check_and_advance+0x66/0x120
[ 101.002528][ T5951] ext4_fill_super+0x5de7/0x66c0
[ 101.007505][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 101.013789][ T5951] ? vscnprintf+0x80/0x80
[ 101.018125][ T5951] ? down_read_killable+0x340/0x340
[ 101.023333][ T5951] ? setup_bdev_super+0x56b/0x660
[ 101.028355][ T5951] get_tree_bdev+0x3e4/0x510
[ 101.032944][ T5951] ? vfs_parse_fs_string+0x160/0x160
[ 101.038231][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 101.044497][ T5951] ? setup_bdev_super+0x660/0x660
[ 101.049520][ T5951] ? apparmor_capable+0x137/0x1a0
[ 101.054542][ T5951] ? bpf_lsm_capable+0x9/0x10
[ 101.059221][ T5951] ? security_capable+0x89/0xb0
[ 101.064077][ T5951] vfs_get_tree+0x8c/0x280
[ 101.068519][ T5951] do_new_mount+0x24b/0xa40
[ 101.073028][ T5951] __se_sys_mount+0x2da/0x3c0
[ 101.077707][ T5951] ? __x64_sys_mount+0xc0/0xc0
[ 101.082470][ T5951] ? lockdep_hardirqs_on+0x98/0x150
[ 101.087771][ T5951] ? __x64_sys_mount+0x20/0xc0
[ 101.092556][ T5951] do_syscall_64+0x55/0xb0
[ 101.096982][ T5951] ? clear_bhb_loop+0x40/0x90
[ 101.101663][ T5951] ? clear_bhb_loop+0x40/0x90
[ 101.106359][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 101.112380][ T5951] RIP: 0033:0x7f3af759034a
[ 101.116883][ T5951] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 101.136496][ T5951] RSP: 002b:00007ffd2e0bbb48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 101.144913][ T5951] RAX: ffffffffffffffda RBX: 00007ffd2e0bbbd0 RCX: 00007f3af759034a
[ 101.152884][ T5951] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffd2e0bbb90
[ 101.160856][ T5951] RBP: 0000200000000180 R08: 00007ffd2e0bbbd0 R09: 0000000000800700
[ 101.168841][ T5951] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 101.176825][ T5951] R13: 00007ffd2e0bbb90 R14: 0000000000000473 R15: 0000200000000680
[ 101.184803][ T5951]
[ 101.206585][ T5951] ------------[ cut here ]------------
[ 101.212090][ T5951] EA inode 11 i_nlink=2
[ 101.212364][ T5951] WARNING: CPU: 1 PID: 5951 at fs/ext4/xattr.c:1070 ext4_xattr_inode_update_ref+0x521/0x580
[ 101.226718][ T5951] Modules linked in:
[ 101.230633][ T5951] CPU: 1 PID: 5951 Comm: syz.0.17 Not tainted syzkaller #0
[ 101.237864][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 101.247948][ T5951] RIP: 0010:ext4_xattr_inode_update_ref+0x521/0x580
[ 101.254567][ T5951] Code: 24 50 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 31 43 9a ff 49 8b 37 48 c7 c7 00 d1 be 8a 44 89 f2 e8 cf 73 0d ff <0f> 0b 4c 8b 64 24 18 48 8b 5c 24 10 4c 8d 7c 24 60 e9 1f fe ff ff
[ 101.274454][ T5951] RSP: 0018:ffffc90003417220 EFLAGS: 00010246
[ 101.280624][ T5951] RAX: b80b0b09e414da00 RBX: 0000000000000001 RCX: ffff88802b558000
[ 101.288665][ T5951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[ 101.296683][ T5951] RBP: ffffc90003417318 R08: ffffc90003416e27 R09: 1ffff92000682dc4
[ 101.304673][ T5951] R10: dffffc0000000000 R11: fffff52000682dc5 R12: ffff88806206a0b0
[ 101.312752][ T5951] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff88806206a100
[ 101.320773][ T5951] FS: 000055556cc81500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 101.329778][ T5951] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 101.336437][ T5951] CR2: 00007f07c7bb3000 CR3: 000000002d872000 CR4: 00000000003506e0
[ 101.344434][ T5951] Call Trace:
[ 101.347765][ T5951]
[ 101.350722][ T5951] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 101.356409][ T5951] ? ext4_xattr_inode_iget+0x3df/0x600
[ 101.361916][ T5951] ext4_xattr_set_entry+0xcda/0x1e90
[ 101.367271][ T5951] ext4_xattr_ibody_set+0x254/0x6a0
[ 101.372699][ T5951] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 101.378693][ T5951] __ext4_expand_extra_isize+0x306/0x400
[ 101.384358][ T5951] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 101.389893][ T5951] ext4_evict_inode+0x7ed/0xea0
[ 101.394768][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 101.399666][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 101.405591][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 101.410840][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 101.416791][ T5951] evict+0x486/0x870
[ 101.420706][ T5951] ? __lock_acquire+0x7c80/0x7c80
[ 101.425824][ T5951] ? proc_nr_inodes+0x230/0x230
[ 101.430720][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 101.435961][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 101.440871][ T5951] ? iput+0x70a/0x920
[ 101.444967][ T5951] ext4_orphan_cleanup+0xbd4/0x1400
[ 101.450243][ T5951] ? ext4_orphan_del+0xba0/0xba0
[ 101.455217][ T5951] ? ext4_register_li_request+0x183/0x940
[ 101.461012][ T5951] ? errseq_check_and_advance+0x66/0x120
[ 101.466725][ T5951] ext4_fill_super+0x5de7/0x66c0
[ 101.471851][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 101.478161][ T5951] ? vscnprintf+0x80/0x80
[ 101.482513][ T5951] ? down_read_killable+0x340/0x340
[ 101.487801][ T5951] ? setup_bdev_super+0x56b/0x660
[ 101.492859][ T5951] get_tree_bdev+0x3e4/0x510
[ 101.497592][ T5951] ? vfs_parse_fs_string+0x160/0x160
[ 101.502905][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 101.509197][ T5951] ? setup_bdev_super+0x660/0x660
[ 101.514244][ T5951] ? apparmor_capable+0x137/0x1a0
[ 101.519406][ T5951] ? bpf_lsm_capable+0x9/0x10
[ 101.524128][ T5951] ? security_capable+0x89/0xb0
[ 101.529026][ T5951] vfs_get_tree+0x8c/0x280
[ 101.533473][ T5951] do_new_mount+0x24b/0xa40
[ 101.538015][ T5951] __se_sys_mount+0x2da/0x3c0
[ 101.542722][ T5951] ? __x64_sys_mount+0xc0/0xc0
[ 101.547533][ T5951] ? lockdep_hardirqs_on+0x98/0x150
[ 101.552761][ T5951] ? __x64_sys_mount+0x20/0xc0
[ 101.557565][ T5951] do_syscall_64+0x55/0xb0
[ 101.562009][ T5951] ? clear_bhb_loop+0x40/0x90
[ 101.566733][ T5951] ? clear_bhb_loop+0x40/0x90
[ 101.571431][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 101.577602][ T5951] RIP: 0033:0x7f3af759034a
[ 101.582052][ T5951] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 101.601762][ T5951] RSP: 002b:00007ffd2e0bbb48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 101.610229][ T5951] RAX: ffffffffffffffda RBX: 00007ffd2e0bbbd0 RCX: 00007f3af759034a
[ 101.618244][ T5951] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffd2e0bbb90
[ 101.626239][ T5951] RBP: 0000200000000180 R08: 00007ffd2e0bbbd0 R09: 0000000000800700
[ 101.634258][ T5951] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 101.642274][ T5951] R13: 00007ffd2e0bbb90 R14: 0000000000000473 R15: 0000200000000680
[ 101.650301][ T5951]
[ 101.653335][ T5951] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 101.660605][ T5951] CPU: 1 PID: 5951 Comm: syz.0.17 Not tainted syzkaller #0
[ 101.667796][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 101.677849][ T5951] Call Trace:
[ 101.681128][ T5951]
[ 101.684070][ T5951] dump_stack_lvl+0x16c/0x230
[ 101.688753][ T5951] ? show_regs_print_info+0x20/0x20
[ 101.693957][ T5951] ? load_image+0x3b0/0x3b0
[ 101.698474][ T5951] panic+0x2c0/0x710
[ 101.702382][ T5951] ? bpf_jit_dump+0xd0/0xd0
[ 101.706908][ T5951] __warn+0x2e0/0x470
[ 101.710908][ T5951] ? ext4_xattr_inode_update_ref+0x521/0x580
[ 101.716903][ T5951] ? ext4_xattr_inode_update_ref+0x521/0x580
[ 101.722891][ T5951] report_bug+0x2be/0x4f0
[ 101.727247][ T5951] ? ext4_xattr_inode_update_ref+0x521/0x580
[ 101.733236][ T5951] ? ext4_xattr_inode_update_ref+0x521/0x580
[ 101.739231][ T5951] ? ext4_xattr_inode_update_ref+0x523/0x580
[ 101.745220][ T5951] handle_bug+0xcf/0x120
[ 101.749499][ T5951] exc_invalid_op+0x1a/0x50
[ 101.754009][ T5951] asm_exc_invalid_op+0x1a/0x20
[ 101.758862][ T5951] RIP: 0010:ext4_xattr_inode_update_ref+0x521/0x580
[ 101.765474][ T5951] Code: 24 50 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 31 43 9a ff 49 8b 37 48 c7 c7 00 d1 be 8a 44 89 f2 e8 cf 73 0d ff <0f> 0b 4c 8b 64 24 18 48 8b 5c 24 10 4c 8d 7c 24 60 e9 1f fe ff ff
[ 101.785103][ T5951] RSP: 0018:ffffc90003417220 EFLAGS: 00010246
[ 101.791188][ T5951] RAX: b80b0b09e414da00 RBX: 0000000000000001 RCX: ffff88802b558000
[ 101.799171][ T5951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[ 101.807154][ T5951] RBP: ffffc90003417318 R08: ffffc90003416e27 R09: 1ffff92000682dc4
[ 101.815139][ T5951] R10: dffffc0000000000 R11: fffff52000682dc5 R12: ffff88806206a0b0
[ 101.823124][ T5951] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff88806206a100
[ 101.831113][ T5951] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 101.836776][ T5951] ? ext4_xattr_inode_iget+0x3df/0x600
[ 101.842244][ T5951] ext4_xattr_set_entry+0xcda/0x1e90
[ 101.847544][ T5951] ext4_xattr_ibody_set+0x254/0x6a0
[ 101.852762][ T5951] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 101.858687][ T5951] __ext4_expand_extra_isize+0x306/0x400
[ 101.864335][ T5951] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 101.869848][ T5951] ext4_evict_inode+0x7ed/0xea0
[ 101.874716][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 101.879579][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 101.885501][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 101.890714][ T5951] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 101.896638][ T5951] evict+0x486/0x870
[ 101.900542][ T5951] ? __lock_acquire+0x7c80/0x7c80
[ 101.905583][ T5951] ? proc_nr_inodes+0x230/0x230
[ 101.910444][ T5951] ? do_raw_spin_unlock+0x121/0x230
[ 101.915658][ T5951] ? _raw_spin_unlock+0x28/0x40
[ 101.920520][ T5951] ? iput+0x70a/0x920
[ 101.924518][ T5951] ext4_orphan_cleanup+0xbd4/0x1400
[ 101.929739][ T5951] ? ext4_orphan_del+0xba0/0xba0
[ 101.934690][ T5951] ? ext4_register_li_request+0x183/0x940
[ 101.940427][ T5951] ? errseq_check_and_advance+0x66/0x120
[ 101.946080][ T5951] ext4_fill_super+0x5de7/0x66c0
[ 101.951056][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 101.957306][ T5951] ? vscnprintf+0x80/0x80
[ 101.961643][ T5951] ? down_read_killable+0x340/0x340
[ 101.966860][ T5951] ? setup_bdev_super+0x56b/0x660
[ 101.971895][ T5951] get_tree_bdev+0x3e4/0x510
[ 101.976493][ T5951] ? vfs_parse_fs_string+0x160/0x160
[ 101.981875][ T5951] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 101.988149][ T5951] ? setup_bdev_super+0x660/0x660
[ 101.993181][ T5951] ? apparmor_capable+0x137/0x1a0
[ 101.998214][ T5951] ? bpf_lsm_capable+0x9/0x10
[ 102.002901][ T5951] ? security_capable+0x89/0xb0
[ 102.007765][ T5951] vfs_get_tree+0x8c/0x280
[ 102.012190][ T5951] do_new_mount+0x24b/0xa40
[ 102.016700][ T5951] __se_sys_mount+0x2da/0x3c0
[ 102.021390][ T5951] ? __x64_sys_mount+0xc0/0xc0
[ 102.026163][ T5951] ? lockdep_hardirqs_on+0x98/0x150
[ 102.031374][ T5951] ? __x64_sys_mount+0x20/0xc0
[ 102.036141][ T5951] do_syscall_64+0x55/0xb0
[ 102.040564][ T5951] ? clear_bhb_loop+0x40/0x90
[ 102.045252][ T5951] ? clear_bhb_loop+0x40/0x90
[ 102.049937][ T5951] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 102.055863][ T5951] RIP: 0033:0x7f3af759034a
[ 102.060280][ T5951] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 102.079936][ T5951] RSP: 002b:00007ffd2e0bbb48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 102.088359][ T5951] RAX: ffffffffffffffda RBX: 00007ffd2e0bbbd0 RCX: 00007f3af759034a
[ 102.096356][ T5951] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffd2e0bbb90
[ 102.104334][ T5951] RBP: 0000200000000180 R08: 00007ffd2e0bbbd0 R09: 0000000000800700
[ 102.112334][ T5951] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 102.120306][ T5951] R13: 00007ffd2e0bbb90 R14: 0000000000000473 R15: 0000200000000680
[ 102.128283][ T5951]
[ 102.131676][ T5951] Kernel Offset: disabled
[ 102.136003][ T5951] Rebooting in 86400 seconds..