[ 92.146657][ T9] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.135' (ED25519) to the list of known hosts.
2025/09/16 03:52:55 parsed 1 programs
[ 98.716731][ T5841] cgroup: Unknown subsys name 'net'
[ 98.948981][ T5841] cgroup: Unknown subsys name 'cpuset'
[ 99.043903][ T5841] cgroup: Unknown subsys name 'rlimit'
[ 101.192788][ T5841] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 107.676611][ T5890] chnl_net:caif_netlink_parms(): no params data found
[ 108.207782][ T5890] bridge0: port 1(bridge_slave_0) entered blocking state
[ 108.208301][ T5890] bridge0: port 1(bridge_slave_0) entered disabled state
[ 108.208501][ T5890] bridge_slave_0: entered allmulticast mode
[ 108.211229][ T5890] bridge_slave_0: entered promiscuous mode
[ 108.242681][ T5890] bridge0: port 2(bridge_slave_1) entered blocking state
[ 108.242807][ T5890] bridge0: port 2(bridge_slave_1) entered disabled state
[ 108.245022][ T5890] bridge_slave_1: entered allmulticast mode
[ 108.248319][ T5890] bridge_slave_1: entered promiscuous mode
[ 108.469489][ T5890] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 108.472845][ T5890] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 108.657824][ T5890] team0: Port device team_slave_0 added
[ 108.661585][ T5890] team0: Port device team_slave_1 added
[ 108.838935][ T5890] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 108.838953][ T5890] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 108.838981][ T5890] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 108.842862][ T5890] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 108.842878][ T5890] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 108.847518][ T5890] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 109.051336][ T5890] hsr_slave_0: entered promiscuous mode
[ 109.052612][ T5890] hsr_slave_1: entered promiscuous mode
[ 109.638785][ T5890] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 109.663650][ T5890] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 109.699255][ T5890] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 109.719184][ T5890] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 109.860880][ T5890] 8021q: adding VLAN 0 to HW filter on device bond0
[ 109.885696][ T5890] 8021q: adding VLAN 0 to HW filter on device team0
[ 109.902183][ T1387] bridge0: port 1(bridge_slave_0) entered blocking state
[ 109.902696][ T1387] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 109.924349][ T1387] bridge0: port 2(bridge_slave_1) entered blocking state
[ 109.924616][ T1387] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 110.217842][ T5890] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 110.297669][ T5890] veth0_vlan: entered promiscuous mode
[ 110.317153][ T5890] veth1_vlan: entered promiscuous mode
[ 110.370706][ T5890] veth0_macvtap: entered promiscuous mode
[ 110.388566][ T5890] veth1_macvtap: entered promiscuous mode
[ 110.436568][ T5890] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 110.468414][ T5890] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 110.501625][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.501938][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.501980][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.502018][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 111.359162][ T1387] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 111.610133][ T1387] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 111.901818][ T1387] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 112.922191][ T1387] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 113.805831][ T3005] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.805864][ T3005] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.891090][ T1387] bridge_slave_1: left allmulticast mode
[ 113.891226][ T1387] bridge_slave_1: left promiscuous mode
[ 113.892742][ T1387] bridge0: port 2(bridge_slave_1) entered disabled state
[ 113.955197][ T1387] bridge_slave_0: left allmulticast mode
[ 113.955232][ T1387] bridge_slave_0: left promiscuous mode
[ 113.955536][ T1387] bridge0: port 1(bridge_slave_0) entered disabled state
[ 115.643746][ T1387] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 115.704654][ T1387] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 115.750646][ T1387] bond0 (unregistering): Released all slaves
[ 115.823676][ T1210] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 115.823707][ T1210] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.163092][ T1387] hsr_slave_0: left promiscuous mode
[ 116.203139][ T1387] hsr_slave_1: left promiscuous mode
[ 116.204293][ T1387] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 116.204368][ T1387] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 116.267825][ T1387] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 116.267859][ T1387] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 116.385239][ T1387] veth1_macvtap: left promiscuous mode
[ 116.385510][ T1387] veth0_macvtap: left promiscuous mode
[ 116.385860][ T1387] veth1_vlan: left promiscuous mode
[ 116.386167][ T1387] veth0_vlan: left promiscuous mode
[ 118.335753][ T1387] team0 (unregistering): Port device team_slave_1 removed
[ 118.523817][ T1387] team0 (unregistering): Port device team_slave_0 removed
[ 121.019337][ T5976] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 121.023572][ T5976] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 121.027857][ T5976] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 121.029518][ T5976] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 121.030641][ T5976] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/09/16 03:53:22 executed programs: 0
[ 122.607292][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 122.621370][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 122.622773][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 122.624884][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 122.626021][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 123.191039][ T6007] chnl_net:caif_netlink_parms(): no params data found
[ 123.524819][ T6007] bridge0: port 1(bridge_slave_0) entered blocking state
[ 123.525000][ T6007] bridge0: port 1(bridge_slave_0) entered disabled state
[ 123.525138][ T6007] bridge_slave_0: entered allmulticast mode
[ 123.527131][ T6007] bridge_slave_0: entered promiscuous mode
[ 123.560403][ T6007] bridge0: port 2(bridge_slave_1) entered blocking state
[ 123.560556][ T6007] bridge0: port 2(bridge_slave_1) entered disabled state
[ 123.560716][ T6007] bridge_slave_1: entered allmulticast mode
[ 123.563386][ T6007] bridge_slave_1: entered promiscuous mode
[ 124.044937][ T6007] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 124.052685][ T6007] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 124.705543][ T5976] Bluetooth: hci0: command tx timeout
[ 124.729945][ T6007] team0: Port device team_slave_0 added
[ 124.740865][ T6007] team0: Port device team_slave_1 added
[ 125.024074][ T6007] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 125.024089][ T6007] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 125.024108][ T6007] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 125.083981][ T6007] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 125.084000][ T6007] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 125.084030][ T6007] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 125.497876][ T6007] hsr_slave_0: entered promiscuous mode
[ 125.499232][ T6007] hsr_slave_1: entered promiscuous mode
[ 126.783083][ T5976] Bluetooth: hci0: command tx timeout
[ 127.258620][ T6007] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 127.308705][ T6007] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 127.338527][ T6007] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 127.377863][ T6007] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 127.608681][ T6007] 8021q: adding VLAN 0 to HW filter on device bond0
[ 127.641495][ T6007] 8021q: adding VLAN 0 to HW filter on device team0
[ 127.654725][ T1387] bridge0: port 1(bridge_slave_0) entered blocking state
[ 127.663424][ T1387] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 127.685851][ T3005] bridge0: port 2(bridge_slave_1) entered blocking state
[ 127.687154][ T3005] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 128.086745][ T6007] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 128.182560][ T6007] veth0_vlan: entered promiscuous mode
[ 128.199255][ T6007] veth1_vlan: entered promiscuous mode
[ 128.280041][ T6007] veth0_macvtap: entered promiscuous mode
[ 128.299721][ T6007] veth1_macvtap: entered promiscuous mode
[ 128.329368][ T6007] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 128.349718][ T6007] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 128.368834][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.370327][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.371230][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.371274][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.688071][ T3005] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.688104][ T3005] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 128.749932][ T3005] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.749956][ T3005] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/09/16 03:53:29 executed programs: 2
[ 128.863447][ T5976] Bluetooth: hci0: command tx timeout
[ 128.909869][ T6090] loop0: detected capacity change from 0 to 512
[ 129.052241][ T6090]
[ 129.052255][ T6090] ======================================================
[ 129.052263][ T6090] WARNING: possible circular locking depend[ 129.052263][ T6090] WARNING: possible circular locking dependency detected
[ 129.052282][ T6090] syzkaller #0 Not tainted
[ 129.052293][ T6090] ------------------------------------------------------
[ 129.052300][ T6090] syz.0.17/6090 is trying to acquire lock:
[ 129.052311][ T6090] ffff88803a1c6c58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[ 129.052379][ T6090]
[ 129.052379][ T6090] but task is already holding lock:
[ 129.052386][ T6090] ffff8880596580b8 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[ 129.052436][ T6090]
[ 129.052436][ T6090] which lock already depends on the new lock.
[ 129.052436][ T6090]
[ 129.052443][ T6090]
[ 129.052443][ T6090] the existing dependency chain (in reverse order) is:
[ 129.052450][ T6090]
[ 129.052450][ T6090] -> #2 (&ei->xattr_sem){++++}-{4:4}:
[ 129.052477][ T6090] lock_acquire+0x120/0x360
[ 129.052510][ T6090] down_write+0x3a/0x50
[ 129.052528][ T6090] ext4_xattr_set_handle+0x165/0x1590
[ 129.052556][ T6090] ext4_initxattrs+0x9f/0x110
[ 129.052576][ T6090] security_inode_init_security+0x2a0/0x3f0
[ 129.052596][ T6090] __ext4_new_inode+0x3314/0x3cb0
[ 129.052624][ T6090] ext4_create+0x22d/0x460
[ 129.052644][ T6090] path_openat+0x14fd/0x3840
[ 129.052665][ T6090] do_filp_open+0x1fa/0x410
[ 129.052684][ T6090] do_sys_openat2+0x121/0x1c0
[ 129.052702][ T6090] __x64_sys_openat+0x138/0x170
[ 129.052720][ T6090] do_syscall_64+0xfa/0x3b0
[ 129.052736][ T6090] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.052755][ T6090]
[ 129.052755][ T6090] -> #1 (jbd2_handle){++++}-{0:0}:
[ 129.052782][ T6090] lock_acquire+0x120/0x360
[ 129.052806][ T6090] start_this_handle+0x1fa7/0x21c0
[ 129.052827][ T6090] jbd2__journal_start+0x2c1/0x5b0
[ 129.052849][ T6090] __ext4_journal_start_sb+0x227/0x5c0
[ 129.052880][ T6090] ext4_do_writepages+0xf6f/0x4600
[ 129.052902][ T6090] ext4_writepages+0x205/0x350
[ 129.052918][ T6090] do_writepages+0x32b/0x550
[ 129.052939][ T6090] file_write_and_wait_range+0x244/0x340
[ 129.052965][ T6090] ext4_sync_file+0x2b4/0xb20
[ 129.052989][ T6090] __x64_sys_fsync+0x191/0x1f0
[ 129.053017][ T6090] do_syscall_64+0xfa/0x3b0
[ 129.053033][ T6090] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.053052][ T6090]
[ 129.053052][ T6090] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 129.053081][ T6090] validate_chain+0xb9b/0x2140
[ 129.053110][ T6090] __lock_acquire+0xab9/0xd20
[ 129.053133][ T6090] lock_acquire+0x120/0x360
[ 129.053157][ T6090] percpu_down_read_internal+0x48/0x1d0
[ 129.053185][ T6090] ext4_writepages+0x1cc/0x350
[ 129.053202][ T6090] do_writepages+0x32b/0x550
[ 129.053223][ T6090] __writeback_single_inode+0x145/0x1000
[ 129.053246][ T6090] writeback_single_inode+0x1d5/0x640
[ 129.053265][ T6090] write_inode_now+0x160/0x1d0
[ 129.053282][ T6090] iput+0x5b9/0x9d0
[ 129.053308][ T6090] ext4_xattr_block_set+0x1fce/0x2ac0
[ 129.053334][ T6090] ext4_expand_extra_isize_ea+0x12d5/0x1ea0
[ 129.053361][ T6090] __ext4_expand_extra_isize+0x30d/0x400
[ 129.053390][ T6090] __ext4_mark_inode_dirty+0x46c/0x700
[ 129.053411][ T6090] ext4_evict_inode+0x80d/0xee0
[ 129.053431][ T6090] evict+0x504/0x9c0
[ 129.053450][ T6090] ext4_orphan_cleanup+0xc20/0x1460
[ 129.053469][ T6090] ext4_fill_super+0x57fa/0x60b0
[ 129.053499][ T6090] get_tree_bdev_flags+0x40e/0x4d0
[ 129.053533][ T6090] vfs_get_tree+0x8f/0x2b0
[ 129.053557][ T6090] do_new_mount+0x2a2/0x9e0
[ 129.053583][ T6090] __se_sys_mount+0x317/0x410
[ 129.053611][ T6090] do_syscall_64+0xfa/0x3b0
[ 129.053628][ T6090] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.053647][ T6090]
[ 129.053647][ T6090] other info that might help us debug this:
[ 129.053647][ T6090]
[ 129.053654][ T6090] Chain exists of:
[ 129.053654][ T6090] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 129.053654][ T6090]
[ 129.053690][ T6090] Possible unsafe locking scenario:
[ 129.053690][ T6090]
[ 129.053696][ T6090] CPU0 CPU1
[ 129.053703][ T6090] ---- ----
[ 129.053709][ T6090] lock(&ei->xattr_sem);
[ 129.053723][ T6090] lock(jbd2_handle);
[ 129.053739][ T6090] lock(&ei->xattr_sem);
[ 129.053755][ T6090] rlock(&sbi->s_writepages_rwsem);
[ 129.053769][ T6090]
[ 129.053769][ T6090] *** DEADLOCK ***
[ 129.053769][ T6090]
[ 129.053775][ T6090] 3 locks held by syz.0.17/6090:
[ 129.053788][ T6090] #0: ffff888034aa80d0 (&type->s_umount_key#26/1){+.+.}-{4:4}, at: alloc_super+0x204/0x990
[ 129.053849][ T6090] #1: ffff888034aa8778 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2d6/0xee0
[ 129.053900][ T6090] #2: ffff8880596580b8 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[ 129.053952][ T6090]
[ 129.053952][ T6090] stack backtrace:
[ 129.053984][ T6090] CPU: 1 UID: 0 PID: 6090 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 129.054008][ T6090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 129.054028][ T6090] Call Trace:
[ 129.054037][ T6090]
[ 129.054045][ T6090] dump_stack_lvl+0x189/0x250
[ 129.054079][ T6090] ? __pfx_dump_stack_lvl+0x10/0x10
[ 129.054111][ T6090] ? __pfx__printk+0x10/0x10
[ 129.054134][ T6090] ? print_lock_name+0xde/0x100
[ 129.054156][ T6090] print_circular_bug+0x2ee/0x310
[ 129.054177][ T6090] check_noncircular+0x134/0x160
[ 129.054212][ T6090] validate_chain+0xb9b/0x2140
[ 129.054248][ T6090] ? look_up_lock_class+0x74/0x170
[ 129.054280][ T6090] ? register_lock_class+0x51/0x320
[ 129.054310][ T6090] __lock_acquire+0xab9/0xd20
[ 129.054340][ T6090] ? ext4_writepages+0x1cc/0x350
[ 129.054359][ T6090] lock_acquire+0x120/0x360
[ 129.054385][ T6090] ? ext4_writepages+0x1cc/0x350
[ 129.054406][ T6090] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 129.054438][ T6090] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.054472][ T6090] percpu_down_read_internal+0x48/0x1d0
[ 129.054511][ T6090] ? ext4_writepages+0x1cc/0x350
[ 129.054532][ T6090] ext4_writepages+0x1cc/0x350
[ 129.054553][ T6090] ? __pfx_ext4_writepages+0x10/0x10
[ 129.054572][ T6090] ? rt_mutex_slowunlock+0x493/0x8a0
[ 129.054607][ T6090] ? __pfx_ext4_writepages+0x10/0x10
[ 129.054628][ T6090] do_writepages+0x32b/0x550
[ 129.054657][ T6090] ? reacquire_held_locks+0x127/0x1d0
[ 129.054689][ T6090] ? rt_spin_lock+0x1bb/0x2c0
[ 129.054714][ T6090] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 129.054743][ T6090] __writeback_single_inode+0x145/0x1000
[ 129.054773][ T6090] writeback_single_inode+0x1d5/0x640
[ 129.054798][ T6090] write_inode_now+0x160/0x1d0
[ 129.054818][ T6090] ? __pfx_write_inode_now+0x10/0x10
[ 129.054855][ T6090] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 129.054884][ T6090] ? rt_spin_unlock+0x65/0x80
[ 129.054912][ T6090] iput+0x5b9/0x9d0
[ 129.054945][ T6090] ext4_xattr_block_set+0x1fce/0x2ac0
[ 129.054988][ T6090] ? __pfx_ext4_xattr_block_set+0x10/0x10
[ 129.055019][ T6090] ? ext4_xattr_block_find+0x2d4/0x350
[ 129.055049][ T6090] ext4_expand_extra_isize_ea+0x12d5/0x1ea0
[ 129.055097][ T6090] __ext4_expand_extra_isize+0x30d/0x400
[ 129.055132][ T6090] __ext4_mark_inode_dirty+0x46c/0x700
[ 129.055161][ T6090] ext4_evict_inode+0x80d/0xee0
[ 129.055187][ T6090] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.055208][ T6090] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.055225][ T6090] evict+0x504/0x9c0
[ 129.055246][ T6090] ? __pfx_evict+0x10/0x10
[ 129.055265][ T6090] ? iput+0x6d8/0x9d0
[ 129.055291][ T6090] ext4_orphan_cleanup+0xc20/0x1460
[ 129.055313][ T6090] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 129.055332][ T6090] ? ext4_register_li_request+0x640/0x720
[ 129.055348][ T6090] ? errseq_check_and_advance+0x66/0x120
[ 129.055372][ T6090] ext4_fill_super+0x57fa/0x60b0
[ 129.055405][ T6090] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.055429][ T6090] ? set_blocksize+0x219/0x450
[ 129.055448][ T6090] ? sb_set_blocksize+0x104/0x180
[ 129.055465][ T6090] ? setup_bdev_super+0x4c1/0x5b0
[ 129.055486][ T6090] get_tree_bdev_flags+0x40e/0x4d0
[ 129.055516][ T6090] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.055541][ T6090] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 129.055561][ T6090] ? cap_capable+0x11f/0x460
[ 129.055580][ T6090] ? safesetid_security_capable+0xa9/0x1a0
[ 129.055603][ T6090] vfs_get_tree+0x8f/0x2b0
[ 129.055625][ T6090] do_new_mount+0x2a2/0x9e0
[ 129.055649][ T6090] ? ns_capable+0x8a/0xf0
[ 129.055668][ T6090] ? __pfx_do_new_mount+0x10/0x10
[ 129.055690][ T6090] ? path_mount+0x61c/0xfe0
[ 129.055716][ T6090] __se_sys_mount+0x317/0x410
[ 129.055741][ T6090] ? __pfx___se_sys_mount+0x10/0x10
[ 129.055768][ T6090] ? do_syscall_64+0xbe/0x3b0
[ 129.055782][ T6090] ? __x64_sys_mount+0x20/0xc0
[ 129.055805][ T6090] do_syscall_64+0xfa/0x3b0
[ 129.055820][ T6090] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.055843][ T6090] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.055859][ T6090] ? clear_bhb_loop+0x60/0xb0
[ 129.055877][ T6090] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.055893][ T6090] RIP: 0033:0x7fad0500034a
[ 129.055914][ T6090] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 129.055927][ T6090] RSP: 002b:00007fffeb5f4ac8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 129.055944][ T6090] RAX: ffffffffffffffda RBX: 00007fffeb5f4b50 RCX: 00007fad0500034a
[ 129.055957][ T6090] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fffeb5f4b10
[ 129.055968][ T6090] RBP: 0000200000000180 R08: 00007fffeb5f4b50 R09: 0000000000800700
[ 129.055980][ T6090] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 129.055991][ T6090] R13: 00007fffeb5f4b10 R14: 000000000000046f R15: 0000200000000680
[ 129.056008][ T6090]
[ 129.065912][ T6090] ------------[ cut here ]------------
[ 129.065928][ T6090] EA inode 11 i_nlink=2
[ 129.066292][ T6090] WARNING: CPU: 1 PID: 6090 at fs/ext4/xattr.c:1053 ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.066345][ T6090] Modules linked in:
[ 129.066366][ T6090] CPU: 1 UID: 0 PID: 6090 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 129.066394][ T6090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 129.066409][ T6090] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.066446][ T6090] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 20 70 1f 8b 4c 89 fe e8 cd 95 07 ff 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 54 47
[ 129.066466][ T6090] RSP: 0018:ffffc90003f671a0 EFLAGS: 00010246
[ 129.066485][ T6090] RAX: f74098c8cdf09b00 RBX: dffffc0000000000 RCX: ffff8880350a0000
[ 129.066513][ T6090] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 129.066529][ T6090] RBP: ffffc90003f67298 R08: 0000000000000000 R09: 0000000000000000
[ 129.066545][ T6090] R10: dffffc0000000000 R11: ffffed1017124863 R12: ffff88805965a708
[ 129.066562][ T6090] R13: 1ffff1100b2cb4e1 R14: 00000000ffffffff R15: 000000000000000b
[ 129.066578][ T6090] FS: 00005555630ae500(0000) GS:ffff8881269bc000(0000) knlGS:0000000000000000
[ 129.066600][ T6090] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 129.066617][ T6090] CR2: 00007f04a8a13fe8 CR3: 000000002729c000 CR4: 00000000003526f0
[ 129.066637][ T6090] Call Trace:
[ 129.066646][ T6090]
[ 129.066656][ T6090] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 129.066683][ T6090] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 129.066721][ T6090] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 129.066758][ T6090] ext4_xattr_set_entry+0xabb/0x1e20
[ 129.066802][ T6090] ext4_xattr_ibody_set+0x254/0x6a0
[ 129.066838][ T6090] ext4_expand_extra_isize_ea+0x13a8/0x1ea0
[ 129.066892][ T6090] __ext4_expand_extra_isize+0x30d/0x400
[ 129.066932][ T6090] __ext4_mark_inode_dirty+0x46c/0x700
[ 129.066966][ T6090] ext4_evict_inode+0x80d/0xee0
[ 129.066999][ T6090] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.067031][ T6090] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.067056][ T6090] evict+0x504/0x9c0
[ 129.067086][ T6090] ? __pfx_evict+0x10/0x10
[ 129.067114][ T6090] ? iput+0x6d8/0x9d0
[ 129.067152][ T6090] ext4_orphan_cleanup+0xc20/0x1460
[ 129.067183][ T6090] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 129.067210][ T6090] ? ext4_register_li_request+0x640/0x720
[ 129.067234][ T6090] ? errseq_check_and_advance+0x66/0x120
[ 129.067269][ T6090] ext4_fill_super+0x57fa/0x60b0
[ 129.067316][ T6090] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.067348][ T6090] ? set_blocksize+0x219/0x450
[ 129.067375][ T6090] ? sb_set_blocksize+0x104/0x180
[ 129.067419][ T6090] ? setup_bdev_super+0x4c1/0x5b0
[ 129.067450][ T6090] get_tree_bdev_flags+0x40e/0x4d0
[ 129.067480][ T6090] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.067523][ T6090] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 129.067552][ T6090] ? cap_capable+0x11f/0x460
[ 129.067579][ T6090] ? safesetid_security_capable+0xa9/0x1a0
[ 129.067612][ T6090] vfs_get_tree+0x8f/0x2b0
[ 129.067642][ T6090] do_new_mount+0x2a2/0x9e0
[ 129.067676][ T6090] ? ns_capable+0x8a/0xf0
[ 129.067705][ T6090] ? __pfx_do_new_mount+0x10/0x10
[ 129.067735][ T6090] ? path_mount+0x61c/0xfe0
[ 129.067772][ T6090] __se_sys_mount+0x317/0x410
[ 129.067808][ T6090] ? __pfx___se_sys_mount+0x10/0x10
[ 129.067844][ T6090] ? do_syscall_64+0xbe/0x3b0
[ 129.067865][ T6090] ? __x64_sys_mount+0x20/0xc0
[ 129.067898][ T6090] do_syscall_64+0xfa/0x3b0
[ 129.067919][ T6090] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.067951][ T6090] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.067976][ T6090] ? clear_bhb_loop+0x60/0xb0
[ 129.068002][ T6090] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.068024][ T6090] RIP: 0033:0x7fad0500034a
[ 129.068043][ T6090] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 129.068062][ T6090] RSP: 002b:00007fffeb5f4ac8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 129.068086][ T6090] RAX: ffffffffffffffda RBX: 00007fffeb5f4b50 RCX: 00007fad0500034a
[ 129.068104][ T6090] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fffeb5f4b10
[ 129.068121][ T6090] RBP: 0000200000000180 R08: 00007fffeb5f4b50 R09: 0000000000800700
[ 129.068137][ T6090] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 129.068153][ T6090] R13: 00007fffeb5f4b10 R14: 000000000000046f R15: 0000200000000680
[ 129.068179][ T6090]
[ 129.068190][ T6090] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 129.068207][ T6090] CPU: 1 UID: 0 PID: 6090 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 129.068234][ T6090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 129.068247][ T6090] Call Trace:
[ 129.068255][ T6090]
[ 129.068264][ T6090] dump_stack_lvl+0x99/0x250
[ 129.068299][ T6090] ? __asan_memcpy+0x40/0x70
[ 129.068324][ T6090] ? __pfx_dump_stack_lvl+0x10/0x10
[ 129.068358][ T6090] ? __pfx__printk+0x10/0x10
[ 129.068390][ T6090] vpanic+0x281/0x750
[ 129.068425][ T6090] ? __pfx__printk+0x10/0x10
[ 129.068449][ T6090] ? __pfx_vpanic+0x10/0x10
[ 129.068483][ T6090] ? is_bpf_text_address+0x26/0x2b0
[ 129.068531][ T6090] panic+0xb9/0xc0
[ 129.068564][ T6090] ? __pfx_panic+0x10/0x10
[ 129.068605][ T6090] __warn+0x31b/0x4b0
[ 129.068635][ T6090] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.068671][ T6090] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.068706][ T6090] report_bug+0x2be/0x4f0
[ 129.068738][ T6090] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.068772][ T6090] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.068808][ T6090] ? ext4_xattr_inode_update_ref+0x536/0x5d0
[ 129.068843][ T6090] handle_bug+0x84/0x160
[ 129.068866][ T6090] exc_invalid_op+0x1a/0x50
[ 129.068889][ T6090] asm_exc_invalid_op+0x1a/0x20
[ 129.068911][ T6090] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.068947][ T6090] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 20 70 1f 8b 4c 89 fe e8 cd 95 07 ff 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 54 47
[ 129.068966][ T6090] RSP: 0018:ffffc90003f671a0 EFLAGS: 00010246
[ 129.068985][ T6090] RAX: f74098c8cdf09b00 RBX: dffffc0000000000 RCX: ffff8880350a0000
[ 129.069003][ T6090] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 129.069018][ T6090] RBP: ffffc90003f67298 R08: 0000000000000000 R09: 0000000000000000
[ 129.069033][ T6090] R10: dffffc0000000000 R11: ffffed1017124863 R12: ffff88805965a708
[ 129.069051][ T6090] R13: 1ffff1100b2cb4e1 R14: 00000000ffffffff R15: 000000000000000b
[ 129.069077][ T6090] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 129.069105][ T6090] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 129.069142][ T6090] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 129.069181][ T6090] ext4_xattr_set_entry+0xabb/0x1e20
[ 129.069223][ T6090] ext4_xattr_ibody_set+0x254/0x6a0
[ 129.069260][ T6090] ext4_expand_extra_isize_ea+0x13a8/0x1ea0
[ 129.069314][ T6090] __ext4_expand_extra_isize+0x30d/0x400
[ 129.069355][ T6090] __ext4_mark_inode_dirty+0x46c/0x700
[ 129.069387][ T6090] ext4_evict_inode+0x80d/0xee0
[ 129.069420][ T6090] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.069450][ T6090] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.069475][ T6090] evict+0x504/0x9c0
[ 129.069512][ T6090] ? __pfx_evict+0x10/0x10
[ 129.069539][ T6090] ? iput+0x6d8/0x9d0
[ 129.069573][ T6090] ext4_orphan_cleanup+0xc20/0x1460
[ 129.069606][ T6090] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 129.069632][ T6090] ? ext4_register_li_request+0x640/0x720
[ 129.069655][ T6090] ? errseq_check_and_advance+0x66/0x120
[ 129.069688][ T6090] ext4_fill_super+0x57fa/0x60b0
[ 129.069735][ T6090] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.069767][ T6090] ? set_blocksize+0x219/0x450
[ 129.069796][ T6090] ? sb_set_blocksize+0x104/0x180
[ 129.069820][ T6090] ? setup_bdev_super+0x4c1/0x5b0
[ 129.069852][ T6090] get_tree_bdev_flags+0x40e/0x4d0
[ 129.069883][ T6090] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.069917][ T6090] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 129.069947][ T6090] ? cap_capable+0x11f/0x460
[ 129.069972][ T6090] ? safesetid_security_capable+0xa9/0x1a0
[ 129.070005][ T6090] vfs_get_tree+0x8f/0x2b0
[ 129.070035][ T6090] do_new_mount+0x2a2/0x9e0
[ 129.070069][ T6090] ? ns_capable+0x8a/0xf0
[ 129.070097][ T6090] ? __pfx_do_new_mount+0x10/0x10
[ 129.070127][ T6090] ? path_mount+0x61c/0xfe0
[ 129.070164][ T6090] __se_sys_mount+0x317/0x410
[ 129.070200][ T6090] ? __pfx___se_sys_mount+0x10/0x10
[ 129.070235][ T6090] ? do_syscall_64+0xbe/0x3b0
[ 129.070254][ T6090] ? __x64_sys_mount+0x20/0xc0
[ 129.070289][ T6090] do_syscall_64+0xfa/0x3b0
[ 129.070309][ T6090] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.070342][ T6090] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.070365][ T6090] ? clear_bhb_loop+0x60/0xb0
[ 129.070391][ T6090] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.070413][ T6090] RIP: 0033:0x7fad0500034a
[ 129.070430][ T6090] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 129.070449][ T6090] RSP: 002b:00007fffeb5f4ac8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 129.070473][ T6090] RAX: ffffffffffffffda RBX: 00007fffeb5f4b50 RCX: 00007fad0500034a
[ 129.070490][ T6090] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fffeb5f4b10
[ 129.070518][ T6090] RBP: 0000200000000180 R08: 00007fffeb5f4b50 R09: 0000000000800700
[ 129.070534][ T6090] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 129.070550][ T6090] R13: 00007fffeb5f4b10 R14: 000000000000046f R15: 0000200000000680
[ 129.070575][ T6090]
[ 129.070900][ T6090] Kernel Offset: disabled