no interfaces have a carrier
[ 64.958161][ T5503] 8021q: adding VLAN 0 to HW filter on device bond0
[ 64.977148][ T5503] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting crond: OK
Starting sshd: OK
syzkaller
syzkaller login: [ 92.126440][ T1564] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.188' (ED25519) to the list of known hosts.
2025/09/18 02:29:46 parsed 1 programs
[ 98.523036][ T5845] cgroup: Unknown subsys name 'net'
[ 98.757487][ T5845] cgroup: Unknown subsys name 'cpuset'
[ 98.812106][ T5845] cgroup: Unknown subsys name 'rlimit'
[ 100.888695][ T5845] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 104.040594][ T5858] chnl_net:caif_netlink_parms(): no params data found
[ 104.353393][ T5858] bridge0: port 1(bridge_slave_0) entered blocking state
[ 104.354627][ T5858] bridge0: port 1(bridge_slave_0) entered disabled state
[ 104.355072][ T5858] bridge_slave_0: entered allmulticast mode
[ 104.357166][ T5858] bridge_slave_0: entered promiscuous mode
[ 104.362144][ T5858] bridge0: port 2(bridge_slave_1) entered blocking state
[ 104.363394][ T5858] bridge0: port 2(bridge_slave_1) entered disabled state
[ 104.364017][ T5858] bridge_slave_1: entered allmulticast mode
[ 104.367184][ T5858] bridge_slave_1: entered promiscuous mode
[ 104.507490][ T5858] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 104.510739][ T5858] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 104.696766][ T5858] team0: Port device team_slave_0 added
[ 104.699643][ T5858] team0: Port device team_slave_1 added
[ 104.844006][ T5858] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 104.844020][ T5858] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 104.844039][ T5858] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 104.847308][ T5858] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 104.847324][ T5858] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 104.847351][ T5858] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 105.210077][ T5858] hsr_slave_0: entered promiscuous mode
[ 105.218231][ T5858] hsr_slave_1: entered promiscuous mode
[ 105.614824][ T5858] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 105.639040][ T5858] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 105.675762][ T5858] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 105.716001][ T5858] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 105.875057][ T5858] 8021q: adding VLAN 0 to HW filter on device bond0
[ 105.905988][ T5858] 8021q: adding VLAN 0 to HW filter on device team0
[ 105.916734][ T1178] bridge0: port 1(bridge_slave_0) entered blocking state
[ 105.917739][ T1178] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 105.939419][ T1178] bridge0: port 2(bridge_slave_1) entered blocking state
[ 105.939676][ T1178] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 106.208177][ T5858] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 106.265971][ T5858] veth0_vlan: entered promiscuous mode
[ 106.278360][ T5858] veth1_vlan: entered promiscuous mode
[ 106.331872][ T5858] veth0_macvtap: entered promiscuous mode
[ 106.336339][ T5858] veth1_macvtap: entered promiscuous mode
[ 106.359855][ T5858] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 106.377887][ T5858] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 106.397286][ T1178] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 106.399254][ T1178] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 106.399300][ T1178] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 106.399339][ T1178] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.278533][ T1178] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 107.579435][ T1178] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 107.856014][ T1178] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 108.219381][ T1178] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 109.556738][ T1178] bridge_slave_1: left allmulticast mode
[ 109.557021][ T1178] bridge_slave_1: left promiscuous mode
[ 109.558846][ T1178] bridge0: port 2(bridge_slave_1) entered disabled state
[ 109.663152][ T1178] bridge_slave_0: left allmulticast mode
[ 109.663190][ T1178] bridge_slave_0: left promiscuous mode
[ 109.663829][ T1178] bridge0: port 1(bridge_slave_0) entered disabled state
[ 111.575011][ T1178] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 111.632273][ T1178] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 111.654608][ T1178] bond0 (unregistering): Released all slaves
[ 112.074122][ T1178] hsr_slave_0: left promiscuous mode
[ 112.114039][ T1178] hsr_slave_1: left promiscuous mode
[ 112.115240][ T1178] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 112.115320][ T1178] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 112.163420][ T1178] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 112.163455][ T1178] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 112.268747][ T1178] veth1_macvtap: left promiscuous mode
[ 112.268992][ T1178] veth0_macvtap: left promiscuous mode
[ 112.269338][ T1178] veth1_vlan: left promiscuous mode
[ 112.269640][ T1178] veth0_vlan: left promiscuous mode
[ 114.403959][ T1178] team0 (unregistering): Port device team_slave_1 removed
[ 114.593524][ T1178] team0 (unregistering): Port device team_slave_0 removed
[ 117.153426][ T4763] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.153454][ T4763] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.253951][ T1508] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.253974][ T1508] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.798760][ T5995] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 119.814002][ T5995] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 119.817457][ T5995] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 119.819033][ T5995] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 119.819942][ T5995] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/09/18 02:30:15 executed programs: 0
[ 123.106122][ T5157] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 123.116063][ T5157] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 123.119642][ T5157] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 123.121844][ T5157] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 123.132838][ T5157] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 123.591220][ T6021] chnl_net:caif_netlink_parms(): no params data found
[ 124.161856][ T6021] bridge0: port 1(bridge_slave_0) entered blocking state
[ 124.162101][ T6021] bridge0: port 1(bridge_slave_0) entered disabled state
[ 124.162314][ T6021] bridge_slave_0: entered allmulticast mode
[ 124.164940][ T6021] bridge_slave_0: entered promiscuous mode
[ 124.169763][ T6021] bridge0: port 2(bridge_slave_1) entered blocking state
[ 124.169916][ T6021] bridge0: port 2(bridge_slave_1) entered disabled state
[ 124.170056][ T6021] bridge_slave_1: entered allmulticast mode
[ 124.173733][ T6021] bridge_slave_1: entered promiscuous mode
[ 124.447340][ T6021] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 124.451774][ T6021] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 124.648827][ T6021] team0: Port device team_slave_0 added
[ 124.655916][ T6021] team0: Port device team_slave_1 added
[ 124.807753][ T6021] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 124.807767][ T6021] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 124.807786][ T6021] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 124.809470][ T6021] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 124.809485][ T6021] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 124.809512][ T6021] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 125.029809][ T6021] hsr_slave_0: entered promiscuous mode
[ 125.030859][ T6021] hsr_slave_1: entered promiscuous mode
[ 125.163144][ T5157] Bluetooth: hci0: command tx timeout
[ 126.768388][ T6021] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 126.810936][ T6021] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 126.849897][ T6021] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 126.889793][ T6021] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 127.094171][ T6021] 8021q: adding VLAN 0 to HW filter on device bond0
[ 127.136026][ T6021] 8021q: adding VLAN 0 to HW filter on device team0
[ 127.152692][ T1508] bridge0: port 1(bridge_slave_0) entered blocking state
[ 127.154943][ T1508] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 127.183637][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 127.183804][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 127.241376][ T5157] Bluetooth: hci0: command tx timeout
[ 127.589871][ T6021] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 127.680074][ T6021] veth0_vlan: entered promiscuous mode
[ 127.697394][ T6021] veth1_vlan: entered promiscuous mode
[ 127.749352][ T6021] veth0_macvtap: entered promiscuous mode
[ 127.766257][ T6021] veth1_macvtap: entered promiscuous mode
[ 127.799360][ T6021] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 127.817279][ T6021] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 127.845654][ T1178] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.845905][ T1178] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.845948][ T1178] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.845985][ T1178] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.123718][ T1178] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.123740][ T1178] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 128.226091][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.226113][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/09/18 02:30:20 executed programs: 2
[ 128.420227][ T6107] loop0: detected capacity change from 0 to 512
[ 128.547546][ T6107]
[ 128.547560][ T6107] ======================================================
[ 128.547568][ T6107] WARNING: possible circular locking dependency detected
[ 128.547586][ T6107] syzkaller #0 Not tainted
[ 128.547597][ T6107] ------------------------------------------------------
[ 128.547605][ T6107] syz.0.17/6107 is trying to acquire lock:
[ 128.547617][ T6107] ffff8880350fec58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[ 128.547686][ T6107]
[ 128.547686][ T6107] but task is already holding lock:
[ 128.547693][ T6107] ffff888057258c90 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[ 128.547740][ T6107]
[ 128.547740][ T6107] which lock already depends on the new lock.
[ 128.547740][ T6107]
[ 128.547747][ T6107]
[ 128.547747][ T6107] the existing dependency chain (in reverse order) is:
[ 128.547754][ T6107]
[ 128.547754][ T6107] -> #2 (&ei->xattr_sem){++++}-{4:4}:
[ 128.547781][ T6107] lock_acquire+0x120/0x360
[ 128.547807][ T6107] down_write+0x3a/0x50
[ 128.547831][ T6107] ext4_xattr_set_handle+0x165/0x1590
[ 128.547856][ T6107] ext4_initxattrs+0x9f/0x110
[ 128.547874][ T6107] security_inode_init_security+0x2a0/0x3f0
[ 128.547892][ T6107] __ext4_new_inode+0x3314/0x3cb0
[ 128.547918][ T6107] ext4_create+0x22d/0x460
[ 128.547936][ T6107] path_openat+0x14fd/0x3840
[ 128.547955][ T6107] do_filp_open+0x1fa/0x410
[ 128.547974][ T6107] do_sys_openat2+0x121/0x1c0
[ 128.547990][ T6107] __x64_sys_openat+0x138/0x170
[ 128.548008][ T6107] do_syscall_64+0xfa/0x3b0
[ 128.548026][ T6107] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.548045][ T6107]
[ 128.548045][ T6107] -> #1 (jbd2_handle){++++}-{0:0}:
[ 128.548073][ T6107] lock_acquire+0x120/0x360
[ 128.548097][ T6107] start_this_handle+0x1fa7/0x21c0
[ 128.548120][ T6107] jbd2__journal_start+0x2c1/0x5b0
[ 128.548143][ T6107] __ext4_journal_start_sb+0x227/0x5c0
[ 128.548171][ T6107] ext4_do_writepages+0xf6f/0x4600
[ 128.548195][ T6107] ext4_writepages+0x205/0x350
[ 128.548212][ T6107] do_writepages+0x32b/0x550
[ 128.548235][ T6107] file_write_and_wait_range+0x244/0x340
[ 128.548263][ T6107] ext4_sync_file+0x2b4/0xb20
[ 128.548289][ T6107] __x64_sys_fsync+0x191/0x1f0
[ 128.548318][ T6107] do_syscall_64+0xfa/0x3b0
[ 128.548334][ T6107] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.548353][ T6107]
[ 128.548353][ T6107] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 128.548382][ T6107] validate_chain+0xb9b/0x2140
[ 128.548411][ T6107] __lock_acquire+0xab9/0xd20
[ 128.548435][ T6107] lock_acquire+0x120/0x360
[ 128.548460][ T6107] percpu_down_read_internal+0x48/0x1d0
[ 128.548489][ T6107] ext4_writepages+0x1cc/0x350
[ 128.548506][ T6107] do_writepages+0x32b/0x550
[ 128.548529][ T6107] __writeback_single_inode+0x145/0x1000
[ 128.548552][ T6107] writeback_single_inode+0x1d5/0x640
[ 128.548571][ T6107] write_inode_now+0x160/0x1d0
[ 128.548589][ T6107] iput+0x5b9/0x9d0
[ 128.548616][ T6107] ext4_xattr_block_set+0x1fce/0x2ac0
[ 128.548642][ T6107] ext4_expand_extra_isize_ea+0x12d5/0x1ea0
[ 128.548671][ T6107] __ext4_expand_extra_isize+0x30d/0x400
[ 128.548700][ T6107] __ext4_mark_inode_dirty+0x46c/0x700
[ 128.548721][ T6107] ext4_evict_inode+0x80d/0xee0
[ 128.548742][ T6107] evict+0x504/0x9c0
[ 128.548761][ T6107] ext4_orphan_cleanup+0xc20/0x1460
[ 128.548781][ T6107] ext4_fill_super+0x57fa/0x60b0
[ 128.548810][ T6107] get_tree_bdev_flags+0x40e/0x4d0
[ 128.548845][ T6107] vfs_get_tree+0x8f/0x2b0
[ 128.548869][ T6107] do_new_mount+0x2a2/0x9e0
[ 128.548895][ T6107] __se_sys_mount+0x317/0x410
[ 128.548922][ T6107] do_syscall_64+0xfa/0x3b0
[ 128.548938][ T6107] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.548957][ T6107]
[ 128.548957][ T6107] other info that might help us debug this:
[ 128.548957][ T6107]
[ 128.548964][ T6107] Chain exists of:
[ 128.548964][ T6107] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 128.548964][ T6107]
[ 128.548999][ T6107] Possible unsafe locking scenario:
[ 128.548999][ T6107]
[ 128.549006][ T6107] CPU0 CPU1
[ 128.549013][ T6107] ---- ----
[ 128.549019][ T6107] lock(&ei->xattr_sem);
[ 128.549033][ T6107] lock(jbd2_handle);
[ 128.549048][ T6107] lock(&ei->xattr_sem);
[ 128.549063][ T6107] rlock(&sbi->s_writepages_rwsem);
[ 128.549077][ T6107]
[ 128.549077][ T6107] *** DEADLOCK ***
[ 128.549077][ T6107]
[ 128.549082][ T6107] 3 locks held by syz.0.17/6107:
[ 128.549095][ T6107] #0: ffff8880350fc0d0 (&type->s_umount_key#26/1){+.+.}-{4:4}, at: alloc_super+0x204/0x990
[ 128.549155][ T6107] #1: ffff8880350fc778 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2d6/0xee0
[ 128.549205][ T6107] #2: ffff888057258c90 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[ 128.549256][ T6107]
[ 128.549256][ T6107] stack backtrace:
[ 128.549286][ T6107] CPU: 0 UID: 0 PID: 6107 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 128.549309][ T6107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 128.549330][ T6107] Call Trace:
[ 128.549338][ T6107]
[ 128.549347][ T6107] dump_stack_lvl+0x189/0x250
[ 128.549379][ T6107] ? __pfx_dump_stack_lvl+0x10/0x10
[ 128.549408][ T6107] ? __pfx__printk+0x10/0x10
[ 128.549431][ T6107] ? print_lock_name+0xde/0x100
[ 128.549455][ T6107] print_circular_bug+0x2ee/0x310
[ 128.549476][ T6107] check_noncircular+0x134/0x160
[ 128.549512][ T6107] validate_chain+0xb9b/0x2140
[ 128.549547][ T6107] ? look_up_lock_class+0x74/0x170
[ 128.549580][ T6107] ? register_lock_class+0x51/0x320
[ 128.549609][ T6107] __lock_acquire+0xab9/0xd20
[ 128.549640][ T6107] ? ext4_writepages+0x1cc/0x350
[ 128.549659][ T6107] lock_acquire+0x120/0x360
[ 128.549685][ T6107] ? ext4_writepages+0x1cc/0x350
[ 128.549706][ T6107] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 128.549737][ T6107] ? lockdep_hardirqs_on+0x9c/0x150
[ 128.549770][ T6107] percpu_down_read_internal+0x48/0x1d0
[ 128.549803][ T6107] ? ext4_writepages+0x1cc/0x350
[ 128.549830][ T6107] ext4_writepages+0x1cc/0x350
[ 128.549850][ T6107] ? __pfx_ext4_writepages+0x10/0x10
[ 128.549868][ T6107] ? rt_mutex_slowunlock+0x493/0x8a0
[ 128.549900][ T6107] ? __pfx_ext4_writepages+0x10/0x10
[ 128.549920][ T6107] do_writepages+0x32b/0x550
[ 128.549946][ T6107] ? reacquire_held_locks+0x127/0x1d0
[ 128.549976][ T6107] ? rt_spin_lock+0x1bb/0x2c0
[ 128.549999][ T6107] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 128.550028][ T6107] __writeback_single_inode+0x145/0x1000
[ 128.550057][ T6107] writeback_single_inode+0x1d5/0x640
[ 128.550081][ T6107] write_inode_now+0x160/0x1d0
[ 128.550101][ T6107] ? __pfx_write_inode_now+0x10/0x10
[ 128.550137][ T6107] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 128.550165][ T6107] ? rt_spin_unlock+0x65/0x80
[ 128.550192][ T6107] iput+0x5b9/0x9d0
[ 128.550225][ T6107] ext4_xattr_block_set+0x1fce/0x2ac0
[ 128.550270][ T6107] ? __pfx_ext4_xattr_block_set+0x10/0x10
[ 128.550301][ T6107] ? ext4_xattr_block_find+0x2d4/0x350
[ 128.550331][ T6107] ext4_expand_extra_isize_ea+0x12d5/0x1ea0
[ 128.550380][ T6107] __ext4_expand_extra_isize+0x30d/0x400
[ 128.550417][ T6107] __ext4_mark_inode_dirty+0x46c/0x700
[ 128.550446][ T6107] ext4_evict_inode+0x80d/0xee0
[ 128.550475][ T6107] ? __pfx_ext4_evict_inode+0x10/0x10
[ 128.550502][ T6107] ? __pfx_ext4_evict_inode+0x10/0x10
[ 128.550524][ T6107] evict+0x504/0x9c0
[ 128.550551][ T6107] ? __pfx_evict+0x10/0x10
[ 128.550575][ T6107] ? iput+0x6d8/0x9d0
[ 128.550608][ T6107] ext4_orphan_cleanup+0xc20/0x1460
[ 128.550637][ T6107] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 128.550661][ T6107] ? ext4_register_li_request+0x640/0x720
[ 128.550682][ T6107] ? errseq_check_and_advance+0x66/0x120
[ 128.550712][ T6107] ext4_fill_super+0x57fa/0x60b0
[ 128.550754][ T6107] ? __pfx_ext4_fill_super+0x10/0x10
[ 128.550785][ T6107] ? set_blocksize+0x219/0x450
[ 128.550809][ T6107] ? sb_set_blocksize+0x104/0x180
[ 128.550841][ T6107] ? setup_bdev_super+0x4c1/0x5b0
[ 128.550870][ T6107] get_tree_bdev_flags+0x40e/0x4d0
[ 128.550896][ T6107] ? __pfx_ext4_fill_super+0x10/0x10
[ 128.550928][ T6107] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 128.550954][ T6107] ? cap_capable+0x11f/0x460
[ 128.550979][ T6107] ? safesetid_security_capable+0xa9/0x1a0
[ 128.551007][ T6107] vfs_get_tree+0x8f/0x2b0
[ 128.551034][ T6107] do_new_mount+0x2a2/0x9e0
[ 128.551063][ T6107] ? ns_capable+0x8a/0xf0
[ 128.551088][ T6107] ? __pfx_do_new_mount+0x10/0x10
[ 128.551113][ T6107] ? path_mount+0x61c/0xfe0
[ 128.551141][ T6107] __se_sys_mount+0x317/0x410
[ 128.551171][ T6107] ? __pfx___se_sys_mount+0x10/0x10
[ 128.551206][ T6107] ? do_syscall_64+0xbe/0x3b0
[ 128.551229][ T6107] ? __x64_sys_mount+0x20/0xc0
[ 128.551258][ T6107] do_syscall_64+0xfa/0x3b0
[ 128.551275][ T6107] ? lockdep_hardirqs_on+0x9c/0x150
[ 128.551305][ T6107] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.551325][ T6107] ? clear_bhb_loop+0x60/0xb0
[ 128.551349][ T6107] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.551370][ T6107] RIP: 0033:0x7fa2b263034a
[ 128.551397][ T6107] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 128.551415][ T6107] RSP: 002b:00007ffc3fe9f0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 128.551437][ T6107] RAX: ffffffffffffffda RBX: 00007ffc3fe9f150 RCX: 00007fa2b263034a
[ 128.551453][ T6107] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffc3fe9f110
[ 128.551468][ T6107] RBP: 0000200000000180 R08: 00007ffc3fe9f150 R09: 0000000000800700
[ 128.551482][ T6107] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 128.551495][ T6107] R13: 00007ffc3fe9f110 R14: 000000000000046f R15: 0000200000000680
[ 128.551517][ T6107]
[ 128.569500][ T6107] ------------[ cut here ]------------
[ 128.569518][ T6107] EA inode 11 i_nlink=2
[ 128.569894][ T6107] WARNING: CPU: 0 PID: 6107 at fs/ext4/xattr.c:1053 ext4_xattr_inode_update_ref+0x534/0x5d0
[ 128.569948][ T6107] Modules linked in:
[ 128.569968][ T6107] CPU: 0 UID: 0 PID: 6107 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 128.569997][ T6107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 128.570011][ T6107] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[ 128.570048][ T6107] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 20 70 1f 8b 4c 89 fe e8 cd 95 07 ff 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 54 57
[ 128.570068][ T6107] RSP: 0018:ffffc900040371a0 EFLAGS: 00010246
[ 128.570089][ T6107] RAX: 619b2325b111c100 RBX: dffffc0000000000 RCX: ffff88802e9b8000
[ 128.570107][ T6107] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 128.570121][ T6107] RBP: ffffc90004037298 R08: 0000000000000000 R09: 0000000000000000
[ 128.570136][ T6107] R10: dffffc0000000000 R11: ffffed1017104863 R12: ffff88805725b2e0
[ 128.570155][ T6107] R13: 1ffff1100ae4b65c R14: 00000000ffffffff R15: 000000000000000b
[ 128.570171][ T6107] FS: 0000555565532500(0000) GS:ffff8881268bc000(0000) knlGS:0000000000000000
[ 128.570191][ T6107] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.570208][ T6107] CR2: 00007f51dd66dd30 CR3: 000000003486a000 CR4: 00000000003526f0
[ 128.570229][ T6107] Call Trace:
[ 128.570237][ T6107]
[ 128.570247][ T6107] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 128.570276][ T6107] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 128.570312][ T6107] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 128.570350][ T6107] ext4_xattr_set_entry+0xabb/0x1e20
[ 128.570392][ T6107] ext4_xattr_ibody_set+0x254/0x6a0
[ 128.570429][ T6107] ext4_expand_extra_isize_ea+0x13a8/0x1ea0
[ 128.570483][ T6107] __ext4_expand_extra_isize+0x30d/0x400
[ 128.570529][ T6107] __ext4_mark_inode_dirty+0x46c/0x700
[ 128.570563][ T6107] ext4_evict_inode+0x80d/0xee0
[ 128.570593][ T6107] ? __pfx_ext4_evict_inode+0x10/0x10
[ 128.570623][ T6107] ? __pfx_ext4_evict_inode+0x10/0x10
[ 128.570648][ T6107] evict+0x504/0x9c0
[ 128.570677][ T6107] ? __pfx_evict+0x10/0x10
[ 128.570704][ T6107] ? iput+0x6d8/0x9d0
[ 128.570740][ T6107] ext4_orphan_cleanup+0xc20/0x1460
[ 128.570773][ T6107] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 128.570800][ T6107] ? ext4_register_li_request+0x640/0x720
[ 128.570822][ T6107] ? errseq_check_and_advance+0x66/0x120
[ 128.570888][ T6107] ext4_fill_super+0x57fa/0x60b0
[ 128.570937][ T6107] ? __pfx_ext4_fill_super+0x10/0x10
[ 128.570970][ T6107] ? set_blocksize+0x219/0x450
[ 128.570997][ T6107] ? sb_set_blocksize+0x104/0x180
[ 128.571022][ T6107] ? setup_bdev_super+0x4c1/0x5b0
[ 128.571052][ T6107] get_tree_bdev_flags+0x40e/0x4d0
[ 128.571083][ T6107] ? __pfx_ext4_fill_super+0x10/0x10
[ 128.571118][ T6107] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 128.571147][ T6107] ? cap_capable+0x11f/0x460
[ 128.571175][ T6107] ? safesetid_security_capable+0xa9/0x1a0
[ 128.571209][ T6107] vfs_get_tree+0x8f/0x2b0
[ 128.571282][ T6107] do_new_mount+0x2a2/0x9e0
[ 128.571319][ T6107] ? ns_capable+0x8a/0xf0
[ 128.571349][ T6107] ? __pfx_do_new_mount+0x10/0x10
[ 128.571380][ T6107] ? path_mount+0x61c/0xfe0
[ 128.571416][ T6107] __se_sys_mount+0x317/0x410
[ 128.571452][ T6107] ? __pfx___se_sys_mount+0x10/0x10
[ 128.571488][ T6107] ? do_syscall_64+0xbe/0x3b0
[ 128.571511][ T6107] ? __x64_sys_mount+0x20/0xc0
[ 128.571543][ T6107] do_syscall_64+0xfa/0x3b0
[ 128.571564][ T6107] ? lockdep_hardirqs_on+0x9c/0x150
[ 128.571597][ T6107] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.571620][ T6107] ? clear_bhb_loop+0x60/0xb0
[ 128.571646][ T6107] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.571668][ T6107] RIP: 0033:0x7fa2b263034a
[ 128.571689][ T6107] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 128.571708][ T6107] RSP: 002b:00007ffc3fe9f0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 128.571731][ T6107] RAX: ffffffffffffffda RBX: 00007ffc3fe9f150 RCX: 00007fa2b263034a
[ 128.571748][ T6107] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffc3fe9f110
[ 128.571765][ T6107] RBP: 0000200000000180 R08: 00007ffc3fe9f150 R09: 0000000000800700
[ 128.571782][ T6107] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 128.571798][ T6107] R13: 00007ffc3fe9f110 R14: 000000000000046f R15: 0000200000000680
[ 128.571822][ T6107]
[ 128.571843][ T6107] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 128.571858][ T6107] CPU: 0 UID: 0 PID: 6107 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 128.571884][ T6107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 128.571897][ T6107] Call Trace:
[ 128.571905][ T6107]
[ 128.571914][ T6107] dump_stack_lvl+0x99/0x250
[ 128.571949][ T6107] ? __asan_memcpy+0x40/0x70
[ 128.571974][ T6107] ? __pfx_dump_stack_lvl+0x10/0x10
[ 128.572009][ T6107] ? __pfx__printk+0x10/0x10
[ 128.572039][ T6107] vpanic+0x281/0x750
[ 128.572073][ T6107] ? __pfx__printk+0x10/0x10
[ 128.572096][ T6107] ? __pfx_vpanic+0x10/0x10
[ 128.572130][ T6107] ? is_bpf_text_address+0x26/0x2b0
[ 128.572168][ T6107] panic+0xb9/0xc0
[ 128.572201][ T6107] ? __pfx_panic+0x10/0x10
[ 128.572241][ T6107] __warn+0x31b/0x4b0
[ 128.572274][ T6107] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 128.572308][ T6107] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 128.572343][ T6107] report_bug+0x2be/0x4f0
[ 128.572376][ T6107] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 128.572410][ T6107] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 128.572444][ T6107] ? ext4_xattr_inode_update_ref+0x536/0x5d0
[ 128.572479][ T6107] handle_bug+0x84/0x160
[ 128.572502][ T6107] exc_invalid_op+0x1a/0x50
[ 128.572525][ T6107] asm_exc_invalid_op+0x1a/0x20
[ 128.572549][ T6107] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[ 128.572583][ T6107] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 20 70 1f 8b 4c 89 fe e8 cd 95 07 ff 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 54 57
[ 128.572602][ T6107] RSP: 0018:ffffc900040371a0 EFLAGS: 00010246
[ 128.572621][ T6107] RAX: 619b2325b111c100 RBX: dffffc0000000000 RCX: ffff88802e9b8000
[ 128.572640][ T6107] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 128.572655][ T6107] RBP: ffffc90004037298 R08: 0000000000000000 R09: 0000000000000000
[ 128.572669][ T6107] R10: dffffc0000000000 R11: ffffed1017104863 R12: ffff88805725b2e0
[ 128.572687][ T6107] R13: 1ffff1100ae4b65c R14: 00000000ffffffff R15: 000000000000000b
[ 128.572713][ T6107] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 128.572741][ T6107] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 128.572774][ T6107] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 128.572805][ T6107] ext4_xattr_set_entry+0xabb/0x1e20
[ 128.572850][ T6107] ext4_xattr_ibody_set+0x254/0x6a0
[ 128.572883][ T6107] ext4_expand_extra_isize_ea+0x13a8/0x1ea0
[ 128.572931][ T6107] __ext4_expand_extra_isize+0x30d/0x400
[ 128.572968][ T6107] __ext4_mark_inode_dirty+0x46c/0x700
[ 128.572998][ T6107] ext4_evict_inode+0x80d/0xee0
[ 128.573027][ T6107] ? __pfx_ext4_evict_inode+0x10/0x10
[ 128.573054][ T6107] ? __pfx_ext4_evict_inode+0x10/0x10
[ 128.573077][ T6107] evict+0x504/0x9c0
[ 128.573103][ T6107] ? __pfx_evict+0x10/0x10
[ 128.573128][ T6107] ? iput+0x6d8/0x9d0
[ 128.573162][ T6107] ext4_orphan_cleanup+0xc20/0x1460
[ 128.573191][ T6107] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 128.573215][ T6107] ? ext4_register_li_request+0x640/0x720
[ 128.573237][ T6107] ? errseq_check_and_advance+0x66/0x120
[ 128.573266][ T6107] ext4_fill_super+0x57fa/0x60b0
[ 128.573309][ T6107] ? __pfx_ext4_fill_super+0x10/0x10
[ 128.573340][ T6107] ? set_blocksize+0x219/0x450
[ 128.573364][ T6107] ? sb_set_blocksize+0x104/0x180
[ 128.573386][ T6107] ? setup_bdev_super+0x4c1/0x5b0
[ 128.573414][ T6107] get_tree_bdev_flags+0x40e/0x4d0
[ 128.573441][ T6107] ? __pfx_ext4_fill_super+0x10/0x10
[ 128.573473][ T6107] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 128.573499][ T6107] ? cap_capable+0x11f/0x460
[ 128.573521][ T6107] ? safesetid_security_capable+0xa9/0x1a0
[ 128.573548][ T6107] vfs_get_tree+0x8f/0x2b0
[ 128.573576][ T6107] do_new_mount+0x2a2/0x9e0
[ 128.573607][ T6107] ? ns_capable+0x8a/0xf0
[ 128.573632][ T6107] ? __pfx_do_new_mount+0x10/0x10
[ 128.573660][ T6107] ? path_mount+0x61c/0xfe0
[ 128.573693][ T6107] __se_sys_mount+0x317/0x410
[ 128.573725][ T6107] ? __pfx___se_sys_mount+0x10/0x10
[ 128.573758][ T6107] ? do_syscall_64+0xbe/0x3b0
[ 128.573776][ T6107] ? __x64_sys_mount+0x20/0xc0
[ 128.573806][ T6107] do_syscall_64+0xfa/0x3b0
[ 128.573825][ T6107] ? lockdep_hardirqs_on+0x9c/0x150
[ 128.573862][ T6107] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.573883][ T6107] ? clear_bhb_loop+0x60/0xb0
[ 128.573907][ T6107] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.573927][ T6107] RIP: 0033:0x7fa2b263034a
[ 128.573943][ T6107] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 128.573960][ T6107] RSP: 002b:00007ffc3fe9f0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 128.573981][ T6107] RAX: ffffffffffffffda RBX: 00007ffc3fe9f150 RCX: 00007fa2b263034a
[ 128.573997][ T6107] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffc3fe9f110
[ 128.574013][ T6107] RBP: 0000200000000180 R08: 00007ffc3fe9f150 R09: 0000000000800700
[ 128.574028][ T6107] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 128.574042][ T6107] R13: 00007ffc3fe9f110 R14: 000000000000046f R15: 0000200000000680
[ 128.574064][ T6107]
[ 128.574376][ T6107] Kernel Offset: disabled