Warning: Permanently added '10.128.1.132' (ED25519) to the list of known hosts. 2025/11/25 15:56:09 parsed 1 programs [ 86.548659][ T5794] cgroup: Unknown subsys name 'net' [ 86.694596][ T5794] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 88.403009][ T5794] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 91.901568][ T5835] chnl_net:caif_netlink_parms(): no params data found [ 91.983610][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.991780][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.999070][ T5835] bridge_slave_0: entered allmulticast mode [ 92.006707][ T5835] bridge_slave_0: entered promiscuous mode [ 92.017327][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.024972][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.032577][ T5835] bridge_slave_1: entered allmulticast mode [ 92.039605][ T5835] bridge_slave_1: entered promiscuous mode [ 92.077772][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.090434][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.128981][ T5835] team0: Port device team_slave_0 added [ 92.137094][ T5835] team0: Port device team_slave_1 added [ 92.166495][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.174644][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.202706][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.203508][ T787] cfg80211: failed to load regulatory.db [ 92.219038][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.226379][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.253083][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.344031][ T5835] hsr_slave_0: entered promiscuous mode [ 92.351111][ T5835] hsr_slave_1: entered promiscuous mode [ 92.515827][ T5835] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 92.528118][ T5835] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 92.539307][ T5835] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 92.551766][ T5835] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 92.595465][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.603102][ T5835] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.611924][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.619372][ T5835] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.712664][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.744454][ T2985] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.753868][ T2985] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.772712][ T5835] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.795361][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.802582][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.815911][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.823113][ T2985] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.056577][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.109003][ T5835] veth0_vlan: entered promiscuous mode [ 93.129428][ T5835] veth1_vlan: entered promiscuous mode [ 93.174071][ T5835] veth0_macvtap: entered promiscuous mode [ 93.189288][ T5835] veth1_macvtap: entered promiscuous mode [ 93.211307][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.227349][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.240745][ T5835] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.249657][ T5835] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.258566][ T5835] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.267801][ T5835] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.423010][ T2985] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.840389][ T1310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.848448][ T1310] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.885284][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.894304][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.833682][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 94.844554][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.852843][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.862747][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.871188][ T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 94.878647][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 2025/11/25 15:56:20 executed programs: 0 [ 95.641859][ T5104] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 95.650320][ T5104] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 95.658310][ T5104] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 95.669434][ T5104] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 95.677564][ T5104] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 95.686041][ T5104] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 95.858673][ T2985] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.873406][ T5900] chnl_net:caif_netlink_parms(): no params data found [ 95.945421][ T5900] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.952791][ T5900] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.960368][ T5900] bridge_slave_0: entered allmulticast mode [ 95.967598][ T5900] bridge_slave_0: entered promiscuous mode [ 95.978051][ T5900] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.986457][ T5900] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.993839][ T5900] bridge_slave_1: entered allmulticast mode [ 96.001667][ T5900] bridge_slave_1: entered promiscuous mode [ 96.035079][ T5900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.047034][ T5900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.083292][ T5900] team0: Port device team_slave_0 added [ 96.093862][ T5900] team0: Port device team_slave_1 added [ 96.123750][ T5900] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.130847][ T5900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.157042][ T5900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.169428][ T5900] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.177445][ T5900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.203699][ T5900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.251074][ T5900] hsr_slave_0: entered promiscuous mode [ 96.257652][ T5900] hsr_slave_1: entered promiscuous mode [ 96.264199][ T5900] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 96.272458][ T5900] Cannot create hsr debugfs directory [ 97.721006][ T5104] Bluetooth: hci0: command tx timeout [ 98.293124][ T2985] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.346626][ T2985] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.266771][ T2985] hsr_slave_0: left promiscuous mode [ 99.273426][ T2985] hsr_slave_1: left promiscuous mode [ 99.282883][ T2985] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 99.291336][ T2985] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 99.302852][ T2985] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 99.311506][ T2985] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 99.319645][ T2985] bridge_slave_1: left allmulticast mode [ 99.330218][ T2985] bridge_slave_1: left promiscuous mode [ 99.337099][ T2985] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.353729][ T2985] bridge_slave_0: left allmulticast mode [ 99.359449][ T2985] bridge_slave_0: left promiscuous mode [ 99.368704][ T2985] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.407607][ T2985] veth1_macvtap: left promiscuous mode [ 99.415291][ T2985] veth0_macvtap: left promiscuous mode [ 99.423908][ T2985] veth1_vlan: left promiscuous mode [ 99.429533][ T2985] veth0_vlan: left promiscuous mode [ 99.801883][ T5104] Bluetooth: hci0: command tx timeout [ 99.907797][ T2985] team0 (unregistering): Port device team_slave_1 removed [ 99.948000][ T2985] team0 (unregistering): Port device team_slave_0 removed [ 99.987669][ T2985] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 100.022714][ T2985] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 100.371298][ T2985] bond0 (unregistering): Released all slaves [ 100.462482][ T5900] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 100.473113][ T5900] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 100.485331][ T5900] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 100.495634][ T5900] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 100.605034][ T5900] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.630881][ T5900] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.643200][ T1327] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.650408][ T1327] bridge0: port 1(bridge_slave_0) entered forwarding state [ 100.685359][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.692586][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.746215][ T5900] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 100.942256][ T5900] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.026881][ T5900] veth0_vlan: entered promiscuous mode [ 101.044723][ T5900] veth1_vlan: entered promiscuous mode [ 101.093610][ T5900] veth0_macvtap: entered promiscuous mode [ 101.109198][ T5900] veth1_macvtap: entered promiscuous mode [ 101.141464][ T5900] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.166503][ T5900] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.183669][ T5900] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.192891][ T5900] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.202186][ T5900] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.211187][ T5900] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.282731][ T1310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.295173][ T1310] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.319496][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.328471][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.385089][ T5948] syz.0.17[5948]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 101.400389][ T5948] loop0: detected capacity change from 0 to 512 [ 101.420232][ T5948] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 101.451905][ T5948] [ 101.454339][ T5948] ====================================================== [ 101.461376][ T5948] WARNING: possible circular locking dependency detected [ 101.468467][ T5948] syzkaller #0 Not tainted [ 101.472891][ T5948] ------------------------------------------------------ [ 101.479908][ T5948] syz.0.17/5948 is trying to acquire lock: [ 101.485736][ T5948] ffff88802c424bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0 [ 101.495794][ T5948] [ 101.495794][ T5948] but task is already holding lock: [ 101.503162][ T5948] ffff888074fb32c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 101.513010][ T5948] [ 101.513010][ T5948] which lock already depends on the new lock. [ 101.513010][ T5948] [ 101.523413][ T5948] [ 101.523413][ T5948] the existing dependency chain (in reverse order) is: [ 101.532429][ T5948] [ 101.532429][ T5948] -> #2 (&ei->xattr_sem){++++}-{3:3}: [ 101.540000][ T5948] down_read+0x46/0x2e0 [ 101.544686][ T5948] ext4_setattr+0x86b/0x1c90 [ 101.549902][ T5948] notify_change+0xb0d/0xe10 [ 101.555039][ T5948] chown_common+0x3f9/0x5a0 [ 101.560077][ T5948] do_fchownat+0x168/0x270 [ 101.565032][ T5948] __x64_sys_chown+0x82/0x90 [ 101.570156][ T5948] do_syscall_64+0x55/0xb0 [ 101.575107][ T5948] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 101.581534][ T5948] [ 101.581534][ T5948] -> #1 (jbd2_handle){++++}-{0:0}: [ 101.588856][ T5948] start_this_handle+0x1e9d/0x20c0 [ 101.594499][ T5948] jbd2__journal_start+0x2bb/0x5b0 [ 101.600138][ T5948] __ext4_journal_start_sb+0x203/0x570 [ 101.606135][ T5948] ext4_do_writepages+0xf92/0x38d0 [ 101.611787][ T5948] ext4_writepages+0x1a8/0x2f0 [ 101.617087][ T5948] do_writepages+0x3a2/0x600 [ 101.622211][ T5948] filemap_fdatawrite_wbc+0x122/0x180 [ 101.628133][ T5948] file_write_and_wait_range+0x171/0x240 [ 101.634311][ T5948] ext4_sync_file+0x281/0xc10 [ 101.639519][ T5948] __x64_sys_fsync+0x195/0x1d0 [ 101.644820][ T5948] do_syscall_64+0x55/0xb0 [ 101.649780][ T5948] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 101.656213][ T5948] [ 101.656213][ T5948] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 101.664651][ T5948] __lock_acquire+0x2ddb/0x7c80 [ 101.670134][ T5948] lock_acquire+0x197/0x410 [ 101.675165][ T5948] percpu_down_read+0x44/0x1a0 [ 101.680468][ T5948] ext4_writepages+0x170/0x2f0 [ 101.685766][ T5948] do_writepages+0x3a2/0x600 [ 101.690892][ T5948] __writeback_single_inode+0x153/0xee0 [ 101.696982][ T5948] writeback_single_inode+0x211/0x720 [ 101.702886][ T5948] write_inode_now+0x161/0x1e0 [ 101.708183][ T5948] iput+0x5b2/0x920 [ 101.712526][ T5948] ext4_xattr_block_set+0x273a/0x32a0 [ 101.718429][ T5948] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 101.724872][ T5948] __ext4_expand_extra_isize+0x306/0x400 [ 101.731037][ T5948] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 101.737023][ T5948] ext4_evict_inode+0x7ed/0xea0 [ 101.742406][ T5948] evict+0x486/0x870 [ 101.746858][ T5948] ext4_orphan_cleanup+0xbd4/0x1400 [ 101.752592][ T5948] ext4_fill_super+0x5de4/0x66c0 [ 101.758077][ T5948] get_tree_bdev+0x3e4/0x510 [ 101.763283][ T5948] vfs_get_tree+0x8c/0x280 [ 101.768226][ T5948] do_new_mount+0x24b/0xa40 [ 101.773259][ T5948] __se_sys_mount+0x2da/0x3c0 [ 101.778488][ T5948] do_syscall_64+0x55/0xb0 [ 101.783443][ T5948] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 101.789872][ T5948] [ 101.789872][ T5948] other info that might help us debug this: [ 101.789872][ T5948] [ 101.800109][ T5948] Chain exists of: [ 101.800109][ T5948] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem [ 101.800109][ T5948] [ 101.813509][ T5948] Possible unsafe locking scenario: [ 101.813509][ T5948] [ 101.820971][ T5948] CPU0 CPU1 [ 101.826339][ T5948] ---- ---- [ 101.831709][ T5948] lock(&ei->xattr_sem); [ 101.836063][ T5948] lock(jbd2_handle); [ 101.842695][ T5948] lock(&ei->xattr_sem); [ 101.849649][ T5948] rlock(&sbi->s_writepages_rwsem); [ 101.854944][ T5948] [ 101.854944][ T5948] *** DEADLOCK *** [ 101.854944][ T5948] [ 101.863091][ T5948] 3 locks held by syz.0.17/5948: [ 101.868036][ T5948] #0: ffff88802c4220e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510 [ 101.878161][ T5948] #1: ffff88802c422608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 [ 101.887582][ T5948] #2: ffff888074fb32c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 101.897892][ T5948] [ 101.897892][ T5948] stack backtrace: [ 101.903816][ T5948] CPU: 0 PID: 5948 Comm: syz.0.17 Not tainted syzkaller #0 [ 101.911024][ T5948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 101.921102][ T5948] Call Trace: [ 101.924395][ T5948] [ 101.927344][ T5948] dump_stack_lvl+0x16c/0x230 [ 101.932045][ T5948] ? load_image+0x3b0/0x3b0 [ 101.936560][ T5948] ? show_regs_print_info+0x20/0x20 [ 101.941799][ T5948] ? print_circular_bug+0x12b/0x1a0 [ 101.947010][ T5948] check_noncircular+0x2bd/0x3c0 [ 101.951979][ T5948] ? look_up_lock_class+0x75/0x140 [ 101.957109][ T5948] ? print_deadlock_bug+0x5d0/0x5d0 [ 101.962317][ T5948] ? lockdep_lock+0xe0/0x220 [ 101.966923][ T5948] ? _find_first_zero_bit+0xd3/0x100 [ 101.972229][ T5948] __lock_acquire+0x2ddb/0x7c80 [ 101.977105][ T5948] ? mark_lock+0x94/0x320 [ 101.981445][ T5948] ? verify_lock_unused+0x140/0x140 [ 101.986649][ T5948] ? __lock_acquire+0x1334/0x7c80 [ 101.991683][ T5948] ? verify_lock_unused+0x140/0x140 [ 101.996893][ T5948] lock_acquire+0x197/0x410 [ 102.001405][ T5948] ? ext4_writepages+0x170/0x2f0 [ 102.006360][ T5948] ? __might_sleep+0xe0/0xe0 [ 102.010978][ T5948] ? mark_lock+0x94/0x320 [ 102.015338][ T5948] ? read_lock_is_recursive+0x20/0x20 [ 102.020848][ T5948] ? __lock_acquire+0x1334/0x7c80 [ 102.025903][ T5948] percpu_down_read+0x44/0x1a0 [ 102.030696][ T5948] ? ext4_writepages+0x170/0x2f0 [ 102.035669][ T5948] ext4_writepages+0x170/0x2f0 [ 102.040454][ T5948] ? ext4_read_folio+0x2f0/0x2f0 [ 102.045436][ T5948] ? __rwlock_init+0x150/0x150 [ 102.050240][ T5948] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 102.056148][ T5948] ? do_raw_spin_unlock+0x121/0x230 [ 102.061379][ T5948] ? ext4_read_folio+0x2f0/0x2f0 [ 102.066353][ T5948] do_writepages+0x3a2/0x600 [ 102.070975][ T5948] ? folio_clear_dirty_for_io+0xc30/0xc30 [ 102.076729][ T5948] ? writeback_single_inode+0x206/0x720 [ 102.082330][ T5948] ? __lock_acquire+0x7c80/0x7c80 [ 102.087378][ T5948] ? do_raw_spin_lock+0x121/0x2c0 [ 102.092417][ T5948] ? get_tree_bdev+0x3e4/0x510 [ 102.097196][ T5948] __writeback_single_inode+0x153/0xee0 [ 102.102768][ T5948] writeback_single_inode+0x211/0x720 [ 102.108153][ T5948] ? write_inode_now+0x1e0/0x1e0 [ 102.113117][ T5948] write_inode_now+0x161/0x1e0 [ 102.117902][ T5948] ? bdi_split_work_to_wbs+0x890/0x890 [ 102.123398][ T5948] ? do_raw_spin_unlock+0x121/0x230 [ 102.128702][ T5948] iput+0x5b2/0x920 [ 102.132523][ T5948] ext4_xattr_block_set+0x273a/0x32a0 [ 102.137907][ T5948] ? __might_sleep+0xe0/0xe0 [ 102.142519][ T5948] ? xattr_find_entry+0x12b/0x2f0 [ 102.147603][ T5948] ? ext4_xattr_block_find+0x350/0x350 [ 102.153079][ T5948] ? ext4_xattr_block_find+0x2d4/0x350 [ 102.158555][ T5948] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 102.164509][ T5948] __ext4_expand_extra_isize+0x306/0x400 [ 102.170163][ T5948] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 102.175653][ T5948] ext4_evict_inode+0x7ed/0xea0 [ 102.180520][ T5948] ? _raw_spin_unlock+0x28/0x40 [ 102.185401][ T5948] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 102.191307][ T5948] ? do_raw_spin_unlock+0x121/0x230 [ 102.196520][ T5948] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 102.202422][ T5948] evict+0x486/0x870 [ 102.206430][ T5948] ? __lock_acquire+0x7c80/0x7c80 [ 102.211484][ T5948] ? proc_nr_inodes+0x230/0x230 [ 102.216349][ T5948] ? do_raw_spin_unlock+0x121/0x230 [ 102.221558][ T5948] ? _raw_spin_unlock+0x28/0x40 [ 102.226431][ T5948] ? iput+0x70a/0x920 [ 102.230425][ T5948] ext4_orphan_cleanup+0xbd4/0x1400 [ 102.235647][ T5948] ? ext4_orphan_del+0xba0/0xba0 [ 102.240599][ T5948] ? ext4_register_li_request+0x183/0x940 [ 102.246338][ T5948] ? errseq_check_and_advance+0x66/0x120 [ 102.251992][ T5948] ext4_fill_super+0x5de4/0x66c0 [ 102.256951][ T5948] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 102.263206][ T5948] ? __might_sleep+0xe0/0xe0 [ 102.267810][ T5948] ? read_lock_is_recursive+0x20/0x20 [ 102.273211][ T5948] ? snprintf+0xdb/0x120 [ 102.277489][ T5948] ? vscnprintf+0x80/0x80 [ 102.281825][ T5948] ? down_write+0x162/0x1f0 [ 102.286332][ T5948] ? down_read_killable+0x340/0x340 [ 102.291556][ T5948] ? setup_bdev_super+0x56b/0x660 [ 102.296589][ T5948] get_tree_bdev+0x3e4/0x510 [ 102.301190][ T5948] ? vfs_parse_fs_string+0x160/0x160 [ 102.306486][ T5948] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 102.312736][ T5948] ? setup_bdev_super+0x660/0x660 [ 102.317793][ T5948] ? apparmor_capable+0x137/0x1a0 [ 102.322830][ T5948] ? bpf_lsm_capable+0x9/0x10 [ 102.327522][ T5948] ? security_capable+0x89/0xb0 [ 102.332385][ T5948] vfs_get_tree+0x8c/0x280 [ 102.336822][ T5948] do_new_mount+0x24b/0xa40 [ 102.341341][ T5948] __se_sys_mount+0x2da/0x3c0 [ 102.346032][ T5948] ? __x64_sys_mount+0xc0/0xc0 [ 102.350803][ T5948] ? lockdep_hardirqs_on+0x98/0x150 [ 102.356008][ T5948] ? __x64_sys_mount+0x20/0xc0 [ 102.360791][ T5948] do_syscall_64+0x55/0xb0 [ 102.365224][ T5948] ? clear_bhb_loop+0x40/0x90 [ 102.369911][ T5948] ? clear_bhb_loop+0x40/0x90 [ 102.374597][ T5948] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 102.380512][ T5948] RIP: 0033:0x7efe57390eea [ 102.384947][ T5948] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.404564][ T5948] RSP: 002b:00007ffe253c9488 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 102.412992][ T5948] RAX: ffffffffffffffda RBX: 00007ffe253c9510 RCX: 00007efe57390eea [ 102.420974][ T5948] RDX: 0000200000000180 RSI: 0000200000000080 RDI: 00007ffe253c94d0 [ 102.428960][ T5948] RBP: 0000200000000180 R08: 00007ffe253c9510 R09: 0000000000800700 [ 102.436951][ T5948] R10: 0000000000800700 R11: 0000000000000246 R12: 0000200000000080 [ 102.444936][ T5948] R13: 00007ffe253c94d0 R14: 000000000000046f R15: 00002000000000c0 [ 102.452929][ T5948] [ 102.483857][ T5104] Bluetooth: hci0: command tx timeout [ 102.489589][ T5948] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 102.506290][ T5948] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 11 err=-117 [ 102.523887][ T5948] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 102.538827][ T5948] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 102.554370][ T5948] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 11 err=-117 [ 102.577192][ T5948] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 102.590870][ T5948] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 18 err=-117 [ 102.603834][ T5948] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 102.618275][ T5948] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 18 err=-117 [ 102.631410][ T5948] EXT4-fs (loop0): 1 orphan inode deleted [ 102.638278][ T5948] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.702560][ T5900] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.