[ 92.043599][ T9] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.56' (ED25519) to the list of known hosts.
2025/12/19 04:26:35 parsed 1 programs
[ 99.048147][ T5800] cgroup: Unknown subsys name 'net'
[ 99.289184][ T5800] cgroup: Unknown subsys name 'cpuset'
[ 99.344027][ T5800] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 101.346472][ T5800] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 106.155398][ T5114] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 106.156990][ T5114] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 106.157887][ T5114] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 106.159045][ T5114] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 106.159798][ T5114] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 107.047976][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.048005][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.270678][ T2270] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.270702][ T2270] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 110.059994][ T5870] chnl_net:caif_netlink_parms(): no params data found
[ 110.416275][ T5870] bridge0: port 1(bridge_slave_0) entered blocking state
[ 110.417657][ T5870] bridge0: port 1(bridge_slave_0) entered disabled state
[ 110.417819][ T5870] bridge_slave_0: entered allmulticast mode
[ 110.419864][ T5870] bridge_slave_0: entered promiscuous mode
[ 110.451349][ T5870] bridge0: port 2(bridge_slave_1) entered blocking state
[ 110.451875][ T5870] bridge0: port 2(bridge_slave_1) entered disabled state
[ 110.452033][ T5870] bridge_slave_1: entered allmulticast mode
[ 110.457301][ T5870] bridge_slave_1: entered promiscuous mode
[ 110.728195][ T5870] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 110.731439][ T5870] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 111.035801][ T5870] team0: Port device team_slave_0 added
[ 111.038852][ T5870] team0: Port device team_slave_1 added
[ 111.226445][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 111.226461][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 111.226483][ T5870] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 111.230295][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 111.230314][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 111.230344][ T5870] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 111.482273][ T5870] hsr_slave_0: entered promiscuous mode
[ 111.485541][ T5870] hsr_slave_1: entered promiscuous mode
[ 111.970056][ T5870] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 111.992252][ T5870] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 112.027614][ T5870] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 112.067937][ T5870] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 112.204741][ T5870] 8021q: adding VLAN 0 to HW filter on device bond0
[ 112.235421][ T5870] 8021q: adding VLAN 0 to HW filter on device team0
[ 112.242668][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.257481][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 112.280139][ T2856] bridge0: port 2(bridge_slave_1) entered blocking state
[ 112.280423][ T2856] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 112.548862][ T5870] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 112.608904][ T5870] veth0_vlan: entered promiscuous mode
[ 112.622614][ T5870] veth1_vlan: entered promiscuous mode
[ 112.660502][ T5870] veth0_macvtap: entered promiscuous mode
[ 112.670872][ T5870] veth1_macvtap: entered promiscuous mode
[ 112.698537][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 112.715751][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 112.733127][ T2856] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.746832][ T2856] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.746883][ T2856] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.746921][ T2856] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.529099][ T2270] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 113.826646][ T2270] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 114.066125][ T2270] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 114.990773][ T2270] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/19 04:26:55 executed programs: 0
[ 115.131866][ T5114] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 115.143911][ T5114] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 115.145843][ T5114] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 115.151558][ T5114] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 115.169904][ T5114] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 115.432215][ T5906] chnl_net:caif_netlink_parms(): no params data found
[ 115.725376][ T5906] bridge0: port 1(bridge_slave_0) entered blocking state
[ 115.725601][ T5906] bridge0: port 1(bridge_slave_0) entered disabled state
[ 115.725806][ T5906] bridge_slave_0: entered allmulticast mode
[ 115.728721][ T5906] bridge_slave_0: entered promiscuous mode
[ 115.732422][ T5906] bridge0: port 2(bridge_slave_1) entered blocking state
[ 115.732576][ T5906] bridge0: port 2(bridge_slave_1) entered disabled state
[ 115.732712][ T5906] bridge_slave_1: entered allmulticast mode
[ 115.737608][ T5906] bridge_slave_1: entered promiscuous mode
[ 115.920391][ T5906] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 115.954517][ T5906] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 116.176495][ T5906] team0: Port device team_slave_0 added
[ 116.204053][ T5906] team0: Port device team_slave_1 added
[ 116.358123][ T5906] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 116.358138][ T5906] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 116.358159][ T5906] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 116.361350][ T5906] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 116.361364][ T5906] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 116.361384][ T5906] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 116.454929][ T2270] bridge_slave_1: left allmulticast mode
[ 116.455149][ T2270] bridge_slave_1: left promiscuous mode
[ 116.456829][ T2270] bridge0: port 2(bridge_slave_1) entered disabled state
[ 116.524543][ T2270] bridge_slave_0: left allmulticast mode
[ 116.524568][ T2270] bridge_slave_0: left promiscuous mode
[ 116.524758][ T2270] bridge0: port 1(bridge_slave_0) entered disabled state
[ 117.235241][ T5114] Bluetooth: hci0: command tx timeout
[ 118.115612][ T2270] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 118.173946][ T2270] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 118.216050][ T2270] bond0 (unregistering): Released all slaves
[ 118.424616][ T5906] hsr_slave_0: entered promiscuous mode
[ 118.425645][ T5906] hsr_slave_1: entered promiscuous mode
[ 118.426799][ T5906] debugfs: 'hsr0' already exists in 'hsr'
[ 118.426885][ T5906] Cannot create hsr debugfs directory
[ 118.564190][ T2270] hsr_slave_0: left promiscuous mode
[ 118.583469][ T2270] hsr_slave_1: left promiscuous mode
[ 118.584561][ T2270] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 118.584624][ T2270] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 118.626290][ T2270] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 118.626325][ T2270] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 118.701969][ T2270] veth1_macvtap: left promiscuous mode
[ 118.702133][ T2270] veth0_macvtap: left promiscuous mode
[ 118.702326][ T2270] veth1_vlan: left promiscuous mode
[ 118.702541][ T2270] veth0_vlan: left promiscuous mode
[ 119.313741][ T5114] Bluetooth: hci0: command tx timeout
[ 120.634371][ T2270] team0 (unregistering): Port device team_slave_1 removed
[ 120.874209][ T2270] team0 (unregistering): Port device team_slave_0 removed
[ 121.393415][ T5114] Bluetooth: hci0: command tx timeout
[ 123.480906][ T5114] Bluetooth: hci0: command tx timeout
[ 124.529960][ T5906] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 124.574289][ T5906] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 124.603863][ T5906] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 124.652922][ T5906] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 124.775475][ T5906] 8021q: adding VLAN 0 to HW filter on device bond0
[ 124.798755][ T5906] 8021q: adding VLAN 0 to HW filter on device team0
[ 124.814905][ T37] bridge0: port 1(bridge_slave_0) entered blocking state
[ 124.815052][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 124.822312][ T2856] bridge0: port 2(bridge_slave_1) entered blocking state
[ 124.822462][ T2856] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 125.188444][ T5906] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 125.261939][ T5906] veth0_vlan: entered promiscuous mode
[ 125.275791][ T5906] veth1_vlan: entered promiscuous mode
[ 125.310878][ T5906] veth0_macvtap: entered promiscuous mode
[ 125.321442][ T5906] veth1_macvtap: entered promiscuous mode
[ 125.346297][ T5906] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 125.359980][ T5906] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 125.376844][ T2270] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.378750][ T2270] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.378798][ T2270] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.378839][ T2270] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.589564][ T2856] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.589588][ T2856] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 125.641805][ T2270] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.641828][ T2270] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/19 04:27:06 executed programs: 2
[ 125.789683][ T5955] loop0: detected capacity change from 0 to 512
[ 125.850934][ T5955]
[ 125.850947][ T5955] ======================================================
[ 125.850956][ T5955] WARNING: possible circular locking dependency detected
[ 125.850974][ T5955] syzkaller #0 Not tainted
[ 125.850985][ T5955] ------------------------------------------------------
[ 125.850993][ T5955] syz.0.17/5955 is trying to acquire lock:
[ 125.851005][ T5955] ffff8880327acc58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1ca/0x350
[ 125.851088][ T5955]
[ 125.851088][ T5955] but task is already holding lock:
[ 125.851095][ T5955] ffff888057a02470 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3db/0x6e0
[ 125.851150][ T5955]
[ 125.851150][ T5955] which lock already depends on the new lock.
[ 125.851150][ T5955]
[ 125.851158][ T5955]
[ 125.851158][ T5955] the existing dependency chain (in reverse order) is:
[ 125.851167][ T5955]
[ 125.851167][ T5955] -> #2 (&ei->xattr_sem){++++}-{4:4}:
[ 125.851197][ T5955] down_write+0x3a/0x50
[ 125.851220][ T5955] ext4_xattr_set_handle+0x165/0x1590
[ 125.851249][ T5955] ext4_initxattrs+0x9f/0x110
[ 125.851270][ T5955] security_inode_init_security+0x290/0x3d0
[ 125.851295][ T5955] __ext4_new_inode+0x32f7/0x3c90
[ 125.851322][ T5955] ext4_create+0x22d/0x460
[ 125.851341][ T5955] path_openat+0x18d1/0x3df0
[ 125.851370][ T5955] do_filp_open+0x1fa/0x410
[ 125.851398][ T5955] do_sys_openat2+0x121/0x200
[ 125.851421][ T5955] __x64_sys_openat+0x138/0x170
[ 125.851445][ T5955] do_syscall_64+0xfa/0xf80
[ 125.851464][ T5955] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 125.851486][ T5955]
[ 125.851486][ T5955] -> #1 (jbd2_handle){++++}-{0:0}:
[ 125.851515][ T5955] wait_transaction_locked+0x1b6/0x270
[ 125.851544][ T5955] start_this_handle+0x77d/0x21c0
[ 125.851568][ T5955] jbd2__journal_start+0x2c1/0x5b0
[ 125.851591][ T5955] __ext4_journal_start_sb+0x203/0x580
[ 125.851616][ T5955] ext4_do_writepages+0xf41/0x44f0
[ 125.851638][ T5955] ext4_writepages+0x203/0x350
[ 125.851669][ T5955] do_writepages+0x32e/0x550
[ 125.851689][ T5955] __writeback_single_inode+0x133/0x1240
[ 125.851710][ T5955] writeback_sb_inodes+0x8c8/0x1840
[ 125.851744][ T5955] __writeback_inodes_wb+0x111/0x240
[ 125.851762][ T5955] wb_writeback+0x43f/0xaa0
[ 125.851794][ T5955] wb_workfn+0xad7/0xee0
[ 125.851820][ T5955] process_scheduled_works+0xad1/0x1770
[ 125.851844][ T5955] worker_thread+0x8a0/0xda0
[ 125.851868][ T5955] kthread+0x711/0x8a0
[ 125.851896][ T5955] ret_from_fork+0x599/0xb30
[ 125.851918][ T5955] ret_from_fork_asm+0x1a/0x30
[ 125.851949][ T5955]
[ 125.851949][ T5955] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 125.851980][ T5955] __lock_acquire+0x15a6/0x2cf0
[ 125.852008][ T5955] lock_acquire+0x117/0x340
[ 125.852035][ T5955] percpu_down_read_internal+0x48/0x1d0
[ 125.852063][ T5955] ext4_writepages+0x1ca/0x350
[ 125.852093][ T5955] do_writepages+0x32e/0x550
[ 125.852113][ T5955] __writeback_single_inode+0x133/0x1240
[ 125.852132][ T5955] writeback_single_inode+0x488/0xd60
[ 125.852170][ T5955] write_inode_now+0x160/0x1d0
[ 125.852199][ T5955] iput+0xa77/0x1030
[ 125.852220][ T5955] ext4_xattr_block_set+0x1fce/0x2ac0
[ 125.852248][ T5955] ext4_expand_extra_isize_ea+0x12da/0x1ea0
[ 125.852277][ T5955] __ext4_expand_extra_isize+0x30d/0x400
[ 125.852306][ T5955] __ext4_mark_inode_dirty+0x45c/0x6e0
[ 125.852326][ T5955] ext4_evict_inode+0x79c/0xe60
[ 125.852345][ T5955] evict+0x5f4/0xae0
[ 125.852372][ T5955] ext4_orphan_cleanup+0xc20/0x1460
[ 125.852392][ T5955] ext4_fill_super+0x58ad/0x6170
[ 125.852424][ T5955] get_tree_bdev_flags+0x40e/0x4d0
[ 125.852454][ T5955] vfs_get_tree+0x92/0x2a0
[ 125.852483][ T5955] do_new_mount+0x302/0xa10
[ 125.852502][ T5955] __se_sys_mount+0x313/0x410
[ 125.852523][ T5955] do_syscall_64+0xfa/0xf80
[ 125.852543][ T5955] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 125.852564][ T5955]
[ 125.852564][ T5955] other info that might help us debug this:
[ 125.852564][ T5955]
[ 125.852572][ T5955] Chain exists of:
[ 125.852572][ T5955] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 125.852572][ T5955]
[ 125.852608][ T5955] Possible unsafe locking scenario:
[ 125.852608][ T5955]
[ 125.852615][ T5955] CPU0 CPU1
[ 125.852622][ T5955] ---- ----
[ 125.852629][ T5955] lock(&ei->xattr_sem);
[ 125.852644][ T5955] lock(jbd2_handle);
[ 125.852659][ T5955] lock(&ei->xattr_sem);
[ 125.852675][ T5955] rlock(&sbi->s_writepages_rwsem);
[ 125.852690][ T5955]
[ 125.852690][ T5955] *** DEADLOCK ***
[ 125.852690][ T5955]
[ 125.852696][ T5955] 3 locks held by syz.0.17/5955:
[ 125.852708][ T5955] #0: ffff8880329820d0 (&type->s_umount_key#28/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xab0
[ 125.852776][ T5955] #1: ffff888032982770 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x26f/0xe60
[ 125.852828][ T5955] #2: ffff888057a02470 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3db/0x6e0
[ 125.852880][ T5955]
[ 125.852880][ T5955] stack backtrace:
[ 125.852904][ T5955] CPU: 1 UID: 0 PID: 5955 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 125.852929][ T5955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 125.852950][ T5955] Call Trace:
[ 125.852966][ T5955]
[ 125.852975][ T5955] dump_stack_lvl+0x189/0x250
[ 125.853008][ T5955] ? __pfx_dump_stack_lvl+0x10/0x10
[ 125.853038][ T5955] ? __pfx__printk+0x10/0x10
[ 125.853060][ T5955] ? print_lock_name+0xde/0x100
[ 125.853098][ T5955] print_circular_bug+0x2e2/0x300
[ 125.853121][ T5955] check_noncircular+0x12e/0x150
[ 125.853172][ T5955] __lock_acquire+0x15a6/0x2cf0
[ 125.853202][ T5955] ? __lock_acquire+0x6b6/0x2cf0
[ 125.853239][ T5955] ? ext4_writepages+0x1ca/0x350
[ 125.853270][ T5955] lock_acquire+0x117/0x340
[ 125.853300][ T5955] ? ext4_writepages+0x1ca/0x350
[ 125.853334][ T5955] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 125.853357][ T5955] ? lockdep_hardirqs_on+0x98/0x140
[ 125.853381][ T5955] percpu_down_read_internal+0x48/0x1d0
[ 125.853412][ T5955] ? ext4_writepages+0x1ca/0x350
[ 125.853444][ T5955] ext4_writepages+0x1ca/0x350
[ 125.853478][ T5955] ? __pfx_ext4_writepages+0x10/0x10
[ 125.853510][ T5955] ? rt_mutex_slowunlock+0x493/0x8a0
[ 125.853544][ T5955] ? rt_spin_unlock+0x150/0x200
[ 125.853576][ T5955] ? rt_spin_unlock+0x161/0x200
[ 125.853605][ T5955] ? __pfx_ext4_writepages+0x10/0x10
[ 125.853638][ T5955] do_writepages+0x32e/0x550
[ 125.853662][ T5955] ? rt_mutex_slowunlock+0x493/0x8a0
[ 125.853696][ T5955] __writeback_single_inode+0x133/0x1240
[ 125.853719][ T5955] ? rt_spin_unlock+0x161/0x200
[ 125.853749][ T5955] writeback_single_inode+0x488/0xd60
[ 125.853782][ T5955] write_inode_now+0x160/0x1d0
[ 125.853812][ T5955] ? __pfx_write_inode_now+0x10/0x10
[ 125.853857][ T5955] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 125.853895][ T5955] ? rt_spin_unlock+0x161/0x200
[ 125.853917][ T5955] iput+0xa77/0x1030
[ 125.853938][ T5955] ext4_xattr_block_set+0x1fce/0x2ac0
[ 125.853971][ T5955] ? __pfx_ext4_xattr_block_set+0x10/0x10
[ 125.853993][ T5955] ? ext4_xattr_block_find+0x2d4/0x350
[ 125.854015][ T5955] ext4_expand_extra_isize_ea+0x12da/0x1ea0
[ 125.854052][ T5955] __ext4_expand_extra_isize+0x30d/0x400
[ 125.854077][ T5955] __ext4_mark_inode_dirty+0x45c/0x6e0
[ 125.854096][ T5955] ext4_evict_inode+0x79c/0xe60
[ 125.854115][ T5955] ? __pfx_ext4_evict_inode+0x10/0x10
[ 125.854129][ T5955] ? rt_spin_unlock+0x150/0x200
[ 125.854157][ T5955] ? rt_spin_unlock+0x161/0x200
[ 125.854177][ T5955] ? __pfx_ext4_evict_inode+0x10/0x10
[ 125.854192][ T5955] evict+0x5f4/0xae0
[ 125.854216][ T5955] ? __pfx_evict+0x10/0x10
[ 125.854236][ T5955] ? rt_spin_unlock+0x161/0x200
[ 125.854257][ T5955] ? iput+0xcc6/0x1030
[ 125.854277][ T5955] ext4_orphan_cleanup+0xc20/0x1460
[ 125.854297][ T5955] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 125.854313][ T5955] ? ext4_register_li_request+0x640/0x720
[ 125.854328][ T5955] ? errseq_check_and_advance+0x66/0x120
[ 125.854346][ T5955] ext4_fill_super+0x58ad/0x6170
[ 125.854376][ T5955] ? __pfx_ext4_fill_super+0x10/0x10
[ 125.854400][ T5955] ? snprintf+0xda/0x120
[ 125.854419][ T5955] ? rt_spin_lock+0x1c1/0x3e0
[ 125.854442][ T5955] ? __pfx_snprintf+0x10/0x10
[ 125.854461][ T5955] ? set_blocksize+0x219/0x450
[ 125.854480][ T5955] ? rt_spin_unlock+0x150/0x200
[ 125.854503][ T5955] ? sb_set_blocksize+0x11b/0x210
[ 125.854523][ T5955] ? setup_bdev_super+0x4c1/0x5b0
[ 125.854547][ T5955] get_tree_bdev_flags+0x40e/0x4d0
[ 125.854570][ T5955] ? __pfx_ext4_fill_super+0x10/0x10
[ 125.854593][ T5955] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 125.854616][ T5955] ? cap_capable+0x123/0x440
[ 125.854637][ T5955] ? safesetid_security_capable+0xa9/0x1a0
[ 125.854662][ T5955] vfs_get_tree+0x92/0x2a0
[ 125.854685][ T5955] do_new_mount+0x302/0xa10
[ 125.854700][ T5955] ? safesetid_security_capable+0xa9/0x1a0
[ 125.854724][ T5955] ? __pfx_do_new_mount+0x10/0x10
[ 125.854739][ T5955] ? ns_capable+0x8a/0xf0
[ 125.854762][ T5955] __se_sys_mount+0x313/0x410
[ 125.854780][ T5955] ? __pfx___se_sys_mount+0x10/0x10
[ 125.854798][ T5955] ? do_syscall_64+0xbe/0xf80
[ 125.854813][ T5955] ? __x64_sys_mount+0x20/0xc0
[ 125.854829][ T5955] do_syscall_64+0xfa/0xf80
[ 125.854845][ T5955] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 125.854860][ T5955] ? clear_bhb_loop+0x60/0xb0
[ 125.854877][ T5955] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 125.854893][ T5955] RIP: 0033:0x7f94f4260eea
[ 125.854914][ T5955] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 125.854927][ T5955] RSP: 002b:00007ffcde576648 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 125.854944][ T5955] RAX: ffffffffffffffda RBX: 00007ffcde5766d0 RCX: 00007f94f4260eea
[ 125.854956][ T5955] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffcde576690
[ 125.854967][ T5955] RBP: 0000200000000180 R08: 00007ffcde5766d0 R09: 0000000000800700
[ 125.854978][ T5955] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 125.854988][ T5955] R13: 00007ffcde576690 R14: 0000000000000489 R15: 000000000000002c
[ 125.855005][ T5955]
[ 125.862227][ T5955] ------------[ cut here ]------------
[ 125.862241][ T5955] EA inode 11 i_nlink=2
[ 125.862256][ T5955] WARNING: fs/ext4/xattr.c:1058 at ext4_xattr_inode_update_ref+0x494/0x570, CPU#1: syz.0.17/5955
[ 125.862306][ T5955] Modules linked in:
[ 125.862325][ T5955] CPU: 1 UID: 0 PID: 5955 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 125.862350][ T5955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 125.862364][ T5955] RIP: 0010:ext4_xattr_inode_update_ref+0x4dc/0x570
[ 125.862399][ T5955] Code: 74 08 4c 89 ef e8 e4 a2 9f ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 bd fe ff ff e8 a0 6e 50 08 44 89
[ 125.862418][ T5955] RSP: 0018:ffffc9000475f100 EFLAGS: 00010246
[ 125.862437][ T5955] RAX: 0000000000000000 RBX: 1ffff1100af40999 RCX: dffffc0000000000
[ 125.862453][ T5955] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff8ee144c0
[ 125.862467][ T5955] RBP: ffffc9000475f1f8 R08: 0000000000000000 R09: 0000000000000000
[ 125.862482][ T5955] R10: dffffc0000000000 R11: ffffed100af4099a R12: ffffffff8ee144c0
[ 125.862499][ T5955] R13: 000000000000000b R14: 1ffff1100af4095e R15: ffff888057a04af0
[ 125.862515][ T5955] FS: 000055557bb2e500(0000) GS:ffff888126e01000(0000) knlGS:0000000000000000
[ 125.862534][ T5955] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 125.862550][ T5955] CR2: 00007f69b7be3000 CR3: 000000002f53e000 CR4: 00000000003526f0
[ 125.862570][ T5955] Call Trace:
[ 125.862578][ T5955]
[ 125.862587][ T5955] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 125.862623][ T5955] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 125.862658][ T5955] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 125.862693][ T5955] ext4_xattr_set_entry+0xabb/0x1e20
[ 125.862734][ T5955] ext4_xattr_ibody_set+0x254/0x6a0
[ 125.862768][ T5955] ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[ 125.862819][ T5955] __ext4_expand_extra_isize+0x30d/0x400
[ 125.862855][ T5955] __ext4_mark_inode_dirty+0x45c/0x6e0
[ 125.862884][ T5955] ext4_evict_inode+0x79c/0xe60
[ 125.862912][ T5955] ? __pfx_ext4_evict_inode+0x10/0x10
[ 125.862932][ T5955] ? rt_spin_unlock+0x150/0x200
[ 125.862965][ T5955] ? rt_spin_unlock+0x161/0x200
[ 125.862994][ T5955] ? __pfx_ext4_evict_inode+0x10/0x10
[ 125.863016][ T5955] evict+0x5f4/0xae0
[ 125.863051][ T5955] ? __pfx_evict+0x10/0x10
[ 125.863080][ T5955] ? rt_spin_unlock+0x161/0x200
[ 125.863112][ T5955] ? iput+0xcc6/0x1030
[ 125.863147][ T5955] ext4_orphan_cleanup+0xc20/0x1460
[ 125.863218][ T5955] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 125.863317][ T5955] ? ext4_register_li_request+0x640/0x720
[ 125.863371][ T5955] ? errseq_check_and_advance+0x66/0x120
[ 125.863429][ T5955] ext4_fill_super+0x58ad/0x6170
[ 125.863535][ T5955] ? __pfx_ext4_fill_super+0x10/0x10
[ 125.863611][ T5955] ? snprintf+0xda/0x120
[ 125.863683][ T5955] ? rt_spin_lock+0x1c1/0x3e0
[ 125.863765][ T5955] ? __pfx_snprintf+0x10/0x10
[ 125.863829][ T5955] ? set_blocksize+0x219/0x450
[ 125.863901][ T5955] ? rt_spin_unlock+0x150/0x200
[ 125.863978][ T5955] ? sb_set_blocksize+0x11b/0x210
[ 125.864052][ T5955] ? setup_bdev_super+0x4c1/0x5b0
[ 125.864146][ T5955] get_tree_bdev_flags+0x40e/0x4d0
[ 125.864188][ T5955] ? __pfx_ext4_fill_super+0x10/0x10
[ 125.864288][ T5955] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 125.864386][ T5955] ? cap_capable+0x123/0x440
[ 125.864455][ T5955] ? safesetid_security_capable+0xa9/0x1a0
[ 125.864541][ T5955] vfs_get_tree+0x92/0x2a0
[ 125.864624][ T5955] do_new_mount+0x302/0xa10
[ 125.864677][ T5955] ? safesetid_security_capable+0xa9/0x1a0
[ 125.864760][ T5955] ? __pfx_do_new_mount+0x10/0x10
[ 125.864814][ T5955] ? ns_capable+0x8a/0xf0
[ 125.864899][ T5955] __se_sys_mount+0x313/0x410
[ 125.864964][ T5955] ? __pfx___se_sys_mount+0x10/0x10
[ 125.865028][ T5955] ? do_syscall_64+0xbe/0xf80
[ 125.865081][ T5955] ? __x64_sys_mount+0x20/0xc0
[ 125.865152][ T5955] do_syscall_64+0xfa/0xf80
[ 125.865207][ T5955] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 125.865261][ T5955] ? clear_bhb_loop+0x60/0xb0
[ 125.865326][ T5955] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 125.865382][ T5955] RIP: 0033:0x7f94f4260eea
[ 125.865427][ T5955] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 125.865472][ T5955] RSP: 002b:00007ffcde576648 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 125.865527][ T5955] RAX: ffffffffffffffda RBX: 00007ffcde5766d0 RCX: 00007f94f4260eea
[ 125.865577][ T5955] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffcde576690
[ 125.865613][ T5955] RBP: 0000200000000180 R08: 00007ffcde5766d0 R09: 0000000000800700
[ 125.865661][ T5955] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 125.865715][ T5955] R13: 00007ffcde576690 R14: 0000000000000489 R15: 000000000000002c
[ 125.865788][ T5955]
[ 125.865821][ T5955] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 125.865863][ T5955] CPU: 1 UID: 0 PID: 5955 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 125.865927][ T5955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 125.865960][ T5955] Call Trace:
[ 125.865981][ T5955]
[ 125.866003][ T5955] dump_stack_lvl+0x99/0x250
[ 125.866078][ T5955] ? __asan_memcpy+0x40/0x70
[ 125.866163][ T5955] ? __pfx_dump_stack_lvl+0x10/0x10
[ 125.866193][ T5955] ? __pfx__printk+0x10/0x10
[ 125.866219][ T5955] vpanic+0x237/0x6d0
[ 125.866290][ T5955] ? __pfx_vpanic+0x10/0x10
[ 125.866365][ T5955] ? is_bpf_text_address+0x292/0x2b0
[ 125.866433][ T5955] ? is_bpf_text_address+0x26/0x2b0
[ 125.866517][ T5955] panic+0xb9/0xc0
[ 125.866590][ T5955] ? __pfx_panic+0x10/0x10
[ 125.866686][ T5955] __warn+0x317/0x4b0
[ 125.866760][ T5955] ? ext4_xattr_inode_update_ref+0x494/0x570
[ 125.866853][ T5955] ? ext4_xattr_inode_update_ref+0x494/0x570
[ 125.866937][ T5955] __report_bug+0x288/0x500
[ 125.867029][ T5955] ? ext4_xattr_inode_update_ref+0x494/0x570
[ 125.867155][ T5955] ? __pfx___report_bug+0x10/0x10
[ 125.867240][ T5955] ? __ext4_get_inode_loc+0x69a/0x1040
[ 125.867322][ T5955] ? ext4_fc_track_inode+0x133/0xb20
[ 125.867402][ T5955] ? set_normalized_timespec64+0xf0/0x1a0
[ 125.867486][ T5955] ? __ext4_journal_get_write_access+0x84/0x570
[ 125.867569][ T5955] report_bug_entry+0x19a/0x290
[ 125.867659][ T5955] ? ext4_xattr_inode_update_ref+0x4dc/0x570
[ 125.867735][ T5955] ? ext4_xattr_inode_update_ref+0x4e1/0x570
[ 125.867820][ T5955] handle_bug+0xca/0x200
[ 125.867884][ T5955] exc_invalid_op+0x1a/0x50
[ 125.867947][ T5955] asm_exc_invalid_op+0x1a/0x20
[ 125.868034][ T5955] RIP: 0010:ext4_xattr_inode_update_ref+0x4dc/0x570
[ 125.868125][ T5955] Code: 74 08 4c 89 ef e8 e4 a2 9f ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 bd fe ff ff e8 a0 6e 50 08 44 89
[ 125.868177][ T5955] RSP: 0018:ffffc9000475f100 EFLAGS: 00010246
[ 125.868221][ T5955] RAX: 0000000000000000 RBX: 1ffff1100af40999 RCX: dffffc0000000000
[ 125.868263][ T5955] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff8ee144c0
[ 125.868296][ T5955] RBP: ffffc9000475f1f8 R08: 0000000000000000 R09: 0000000000000000
[ 125.868336][ T5955] R10: dffffc0000000000 R11: ffffed100af4099a R12: ffffffff8ee144c0
[ 125.868378][ T5955] R13: 000000000000000b R14: 1ffff1100af4095e R15: ffff888057a04af0
[ 125.868441][ T5955] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 125.868544][ T5955] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 125.868636][ T5955] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 125.868728][ T5955] ext4_xattr_set_entry+0xabb/0x1e20
[ 125.868824][ T5955] ext4_xattr_ibody_set+0x254/0x6a0
[ 125.868908][ T5955] ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[ 125.869026][ T5955] __ext4_expand_extra_isize+0x30d/0x400
[ 125.869113][ T5955] __ext4_mark_inode_dirty+0x45c/0x6e0
[ 125.869186][ T5955] ext4_evict_inode+0x79c/0xe60
[ 125.869252][ T5955] ? __pfx_ext4_evict_inode+0x10/0x10
[ 125.869305][ T5955] ? rt_spin_unlock+0x150/0x200
[ 125.869392][ T5955] ? rt_spin_unlock+0x161/0x200
[ 125.869460][ T5955] ? __pfx_ext4_evict_inode+0x10/0x10
[ 125.869520][ T5955] evict+0x5f4/0xae0
[ 125.869604][ T5955] ? __pfx_evict+0x10/0x10
[ 125.869677][ T5955] ? rt_spin_unlock+0x161/0x200
[ 125.869745][ T5955] ? iput+0xcc6/0x1030
[ 125.869830][ T5955] ext4_orphan_cleanup+0xc20/0x1460
[ 125.869941][ T5955] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 125.870004][ T5955] ? ext4_register_li_request+0x640/0x720
[ 125.870057][ T5955] ? errseq_check_and_advance+0x66/0x120
[ 125.870125][ T5955] ext4_fill_super+0x58ad/0x6170
[ 125.870242][ T5955] ? __pfx_ext4_fill_super+0x10/0x10
[ 125.870325][ T5955] ? snprintf+0xda/0x120
[ 125.870392][ T5955] ? rt_spin_lock+0x1c1/0x3e0
[ 125.870474][ T5955] ? __pfx_snprintf+0x10/0x10
[ 125.870539][ T5955] ? set_blocksize+0x219/0x450
[ 125.870610][ T5955] ? rt_spin_unlock+0x150/0x200
[ 125.870685][ T5955] ? sb_set_blocksize+0x11b/0x210
[ 125.870757][ T5955] ? setup_bdev_super+0x4c1/0x5b0
[ 125.870841][ T5955] get_tree_bdev_flags+0x40e/0x4d0
[ 125.870924][ T5955] ? __pfx_ext4_fill_super+0x10/0x10
[ 125.871009][ T5955] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 125.871092][ T5955] ? cap_capable+0x123/0x440
[ 125.871173][ T5955] ? safesetid_security_capable+0xa9/0x1a0
[ 125.871222][ T5955] vfs_get_tree+0x92/0x2a0
[ 125.871253][ T5955] do_new_mount+0x302/0xa10
[ 125.871274][ T5955] ? safesetid_security_capable+0xa9/0x1a0
[ 125.871308][ T5955] ? __pfx_do_new_mount+0x10/0x10
[ 125.871330][ T5955] ? ns_capable+0x8a/0xf0
[ 125.871361][ T5955] __se_sys_mount+0x313/0x410
[ 125.871387][ T5955] ? __pfx___se_sys_mount+0x10/0x10
[ 125.871412][ T5955] ? do_syscall_64+0xbe/0xf80
[ 125.871433][ T5955] ? __x64_sys_mount+0x20/0xc0
[ 125.871457][ T5955] do_syscall_64+0xfa/0xf80
[ 125.871478][ T5955] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 125.871499][ T5955] ? clear_bhb_loop+0x60/0xb0
[ 125.871524][ T5955] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 125.871546][ T5955] RIP: 0033:0x7f94f4260eea
[ 125.871563][ T5955] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 125.871582][ T5955] RSP: 002b:00007ffcde576648 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 125.871604][ T5955] RAX: ffffffffffffffda RBX: 00007ffcde5766d0 RCX: 00007f94f4260eea
[ 125.871621][ T5955] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffcde576690
[ 125.871636][ T5955] RBP: 0000200000000180 R08: 00007ffcde5766d0 R09: 0000000000800700
[ 125.871651][ T5955] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 125.871666][ T5955] R13: 00007ffcde576690 R14: 0000000000000489 R15: 000000000000002c
[ 125.871690][ T5955]
[ 125.872289][ T5955] Kernel Offset: disabled