[ 9.499810][ T3990] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: [ 9.525238][ T39] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 9.526871][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready OK Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.37' (ED25519) to the list of known hosts. 1970/01/01 00:00:31 parsed 1 programs syzkaller login: [ 32.262888][ T4337] cgroup: Unknown subsys name 'net' [ 32.536152][ T4337] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 32.800040][ T4337] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 35.919364][ T4351] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 35.920916][ T4351] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 35.922281][ T4351] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 35.923936][ T4351] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 35.925300][ T4351] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 35.926626][ T4351] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 36.151689][ T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.153103][ T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.157878][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 36.166724][ T1620] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.168002][ T1620] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.169530][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 37.081679][ T4413] chnl_net:caif_netlink_parms(): no params data found [ 37.098520][ T4413] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.099617][ T4413] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.101199][ T4413] device bridge_slave_0 entered promiscuous mode [ 37.103807][ T4413] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.105054][ T4413] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.107153][ T4413] device bridge_slave_1 entered promiscuous mode [ 37.114613][ T4413] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 37.116923][ T4413] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 37.122844][ T4413] team0: Port device team_slave_0 added [ 37.125160][ T4413] team0: Port device team_slave_1 added [ 37.130403][ T4413] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.131480][ T4413] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.136214][ T4413] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.139361][ T4413] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.140518][ T4413] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.145082][ T4413] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.174474][ T4413] device hsr_slave_0 entered promiscuous mode [ 37.204077][ T4413] device hsr_slave_1 entered promiscuous mode [ 37.295657][ T4413] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 37.333206][ T4413] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 37.384451][ T4413] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 37.424763][ T4413] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 37.469493][ T4413] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.470690][ T4413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.472159][ T4413] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.473328][ T4413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.498525][ T4413] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.501816][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 37.504976][ T90] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.506712][ T90] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.508547][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 37.513872][ T4413] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.516679][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.518332][ T90] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.519557][ T90] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.522225][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.524577][ T90] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.525560][ T90] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.541156][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 37.542760][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 37.546550][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 37.549320][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 37.551844][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 37.554736][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 37.606246][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 37.607506][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 37.610638][ T4413] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.616918][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 37.622334][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 37.625660][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 37.626955][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 37.629178][ T4413] device veth0_vlan entered promiscuous mode [ 37.632645][ T4413] device veth1_vlan entered promiscuous mode [ 37.646642][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 37.648233][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 37.649784][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 37.652096][ T4413] device veth0_macvtap entered promiscuous mode [ 37.655064][ T4413] device veth1_macvtap entered promiscuous mode [ 37.660586][ T4413] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.661790][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 37.664947][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 37.667717][ T4413] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.668916][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 37.671362][ T4413] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.672702][ T4413] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.674555][ T4413] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.676013][ T4413] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:38 executed programs: 0 [ 38.199101][ T4351] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 38.200701][ T4351] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 38.201997][ T4351] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 38.204063][ T4351] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 38.205398][ T4351] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 38.206619][ T4351] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 38.564945][ T4436] chnl_net:caif_netlink_parms(): no params data found [ 38.591469][ T4436] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.592648][ T4436] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.594371][ T4436] device bridge_slave_0 entered promiscuous mode [ 38.596232][ T4436] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.597372][ T4436] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.598917][ T4436] device bridge_slave_1 entered promiscuous mode [ 38.605830][ T4436] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 38.608240][ T4436] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 38.615033][ T4436] team0: Port device team_slave_0 added [ 38.616727][ T4436] team0: Port device team_slave_1 added [ 38.796296][ T4436] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 38.797527][ T4436] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.801807][ T4436] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 38.893512][ T4436] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 38.894629][ T4436] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.899031][ T4436] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 39.085073][ T4436] device hsr_slave_0 entered promiscuous mode [ 39.125031][ T4436] device hsr_slave_1 entered promiscuous mode [ 39.173392][ T4436] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 39.174725][ T4436] Cannot create hsr debugfs directory [ 39.274477][ T4436] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.263532][ T4351] Bluetooth: hci0: command 0x0409 tx timeout [ 41.984431][ T4436] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 42.333280][ T4351] Bluetooth: hci0: command 0x041b tx timeout [ 43.165107][ T4436] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.305603][ T4436] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.540738][ T4436] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 43.637087][ T4436] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 43.716688][ T4436] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 43.744335][ T4436] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 43.776800][ T11] device hsr_slave_0 left promiscuous mode [ 43.824376][ T11] device hsr_slave_1 left promiscuous mode [ 43.934148][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 43.935362][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 43.936952][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 43.938127][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 43.939689][ T11] device bridge_slave_1 left promiscuous mode [ 43.941106][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.994076][ T11] device bridge_slave_0 left promiscuous mode [ 43.995208][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.134398][ T11] device veth1_macvtap left promiscuous mode [ 44.135423][ T11] device veth0_macvtap left promiscuous mode [ 44.136478][ T11] device veth1_vlan left promiscuous mode [ 44.137449][ T11] device veth0_vlan left promiscuous mode [ 44.413512][ T4351] Bluetooth: hci0: command 0x040f tx timeout [ 46.244820][ T11] team0 (unregistering): Port device team_slave_1 removed [ 46.404243][ T11] team0 (unregistering): Port device team_slave_0 removed [ 46.493281][ T4354] Bluetooth: hci0: command 0x0419 tx timeout [ 46.563676][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 46.764023][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 48.264895][ T11] bond0 (unregistering): Released all slaves [ 48.586474][ T4436] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.589954][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.591418][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.594322][ T4436] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.596552][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 48.598144][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 48.599638][ T1620] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.600840][ T1620] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.602326][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 48.610847][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 48.612358][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 48.614176][ T1620] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.615394][ T1620] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.617981][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 48.620411][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 48.622969][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 48.626160][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 48.627634][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 48.630189][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 48.631660][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 48.635243][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 48.636784][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 48.639204][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 48.640655][ T1620] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 48.642936][ T4436] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 48.696747][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 48.698088][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 48.701421][ T4436] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.706975][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 48.708534][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 48.714211][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 48.715687][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 48.717289][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 48.718616][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 48.720779][ T4436] device veth0_vlan entered promiscuous mode [ 48.723979][ T4436] device veth1_vlan entered promiscuous mode [ 48.730921][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 48.732376][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 48.734913][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 48.736437][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 48.738767][ T4436] device veth0_macvtap entered promiscuous mode [ 48.740940][ T4436] device veth1_macvtap entered promiscuous mode [ 48.745907][ T4436] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.747060][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 48.748641][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 48.750006][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 48.752037][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 48.756171][ T4436] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.757464][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 48.759088][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 48.761398][ T4436] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.762794][ T4436] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.765064][ T4436] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.766454][ T4436] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.785898][ T4439] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.787073][ T4439] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.791792][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 48.797099][ T4439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.798347][ T4439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.799668][ T4439] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 48.985514][ T4455] loop0: detected capacity change from 0 to 32768 [ 48.990223][ T4455] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 48.991653][ T4455] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 49.001798][ T4455] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 49.005333][ T3897] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 49.006441][ T3897] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 49.025898][ T3897] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 19ms [ 49.027938][ T3897] gfs2: fsid=syz:syz.0: jid=0: Done [ 49.028951][ T4455] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 49.122790][ T4455] gfs2: fsid=syz:syz.0: found 1 quota changes [ 49.137793][ T4436] ------------[ cut here ]------------ [ 49.138841][ T4436] WARNING: CPU: 0 PID: 4436 at include/linux/backing-dev.h:247 __folio_mark_dirty+0x8a0/0xcd8 [ 49.140517][ T4436] Modules linked in: [ 49.141135][ T4436] CPU: 0 PID: 4436 Comm: syz-executor Not tainted syzkaller #0 [ 49.142449][ T4436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 49.144076][ T4436] pstate: 824000c5 (Nzcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 49.145376][ T4436] pc : __folio_mark_dirty+0x8a0/0xcd8 [ 49.146234][ T4436] lr : __folio_mark_dirty+0x8a0/0xcd8 [ 49.147112][ T4436] sp : ffff8000212973c0 [ 49.147888][ T4436] x29: ffff8000212973e0 x28: 1fffff80006a2d40 x27: dfff800000000000 [ 49.149282][ T4436] x26: 0000000000000000 x25: ffff0000c536be90 x24: 0000000000000001 [ 49.150630][ T4436] x23: 0000000000000000 x22: fffffc0003516a08 x21: 1fffe00018a6d7d2 [ 49.152001][ T4436] x20: ffff0000db39a250 x19: fffffc0003516a00 x18: 0000000000000000 [ 49.153390][ T4436] x17: ffff80001835b000 x16: ffff8000082d7db8 x15: ffff800017e3c000 [ 49.154679][ T4436] x14: 0000000000000001 x13: 1fffe00018a6d7d2 x12: 0000000000ff0100 [ 49.155992][ T4436] x11: ff0080000870a0f8 x10: 0000000000000000 x9 : ffff80000870a0f8 [ 49.157352][ T4436] x8 : ffff0000d6ae5340 x7 : ffff80000870989c x6 : 0000000000000000 [ 49.158724][ T4436] x5 : 0000000000000080 x4 : 0000000000000001 x3 : ffff800008a58a88 [ 49.160053][ T4436] x2 : ffff0000cebce060 x1 : 0000000000000000 x0 : 0000000000000000 [ 49.161449][ T4436] Call trace: [ 49.161999][ T4436] __folio_mark_dirty+0x8a0/0xcd8 [ 49.162864][ T4436] mark_buffer_dirty+0x2b8/0x5c0 [ 49.163703][ T4436] gfs2_unpin+0x120/0x8fc [ 49.164438][ T4436] buf_lo_after_commit+0x140/0x188 [ 49.165286][ T4436] gfs2_log_flush+0xc00/0x1b20 [ 49.166072][ T4436] do_sync+0x8cc/0xaec [ 49.166744][ T4436] gfs2_quota_sync+0x2cc/0x500 [ 49.167559][ T4436] gfs2_sync_fs+0x4c/0xc4 [ 49.168303][ T4436] sync_filesystem+0xe8/0x218 [ 49.169102][ T4436] generic_shutdown_super+0x70/0x324 [ 49.170004][ T4436] kill_block_super+0x70/0xdc [ 49.170836][ T4436] gfs2_kill_sb+0xc0/0xd4 [ 49.171579][ T4436] deactivate_locked_super+0xac/0x120 [ 49.172482][ T4436] deactivate_super+0xe4/0x104 [ 49.173234][ T4436] cleanup_mnt+0x390/0x418 [ 49.174001][ T4436] __cleanup_mnt+0x20/0x30 [ 49.174764][ T4436] task_work_run+0x1ec/0x278 [ 49.175542][ T4436] do_notify_resume+0x1fa0/0x2aa4 [ 49.176406][ T4436] el0_svc+0x98/0x128 [ 49.177089][ T4436] el0t_64_sync_handler+0x84/0xf0 [ 49.177988][ T4436] el0t_64_sync+0x18c/0x190 [ 49.178726][ T4436] irq event stamp: 162188 [ 49.179467][ T4436] hardirqs last enabled at (162187): [] folio_memcg_lock+0xe8/0x1f4 [ 49.181135][ T4436] hardirqs last disabled at (162188): [] _raw_spin_lock_irqsave+0xa4/0xb0 [ 49.182849][ T4436] softirqs last enabled at (161900): [] handle_softirqs+0xaec/0xc60 [ 49.184507][ T4436] softirqs last disabled at (161849): [] __do_softirq+0x14/0x20 [ 49.186050][ T4436] ---[ end trace 0000000000000000 ]--- [ 49.193887][ T39] ------------[ cut here ]------------ [ 49.194825][ T39] WARNING: CPU: 1 PID: 39 at include/linux/backing-dev.h:247 __folio_start_writeback+0x88c/0xa7c [ 49.196649][ T39] Modules linked in: [ 49.197288][ T39] CPU: 1 PID: 39 Comm: kworker/u4:2 Tainted: G W syzkaller #0 [ 49.198612][ T39] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 49.200286][ T39] Workqueue: writeback wb_workfn (flush-7:0) [ 49.201318][ T39] pstate: 824000c5 (Nzcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 49.202598][ T39] pc : __folio_start_writeback+0x88c/0xa7c [ 49.203560][ T39] lr : __folio_start_writeback+0x88c/0xa7c [ 49.204558][ T39] sp : ffff80001cee6c80 [ 49.205228][ T39] x29: ffff80001cee6d60 x28: dfff800000000000 x27: 0000000000000000 [ 49.206589][ T39] x26: ffff7000039dcd98 x25: 0000000000000000 x24: ffff0000d56e47e8 [ 49.207903][ T39] x23: ffff80001cee6ce0 x22: ffff0000c536bce8 x21: 0000000000000001 [ 49.209281][ T39] x20: fffffc00033182c8 x19: fffffc00033182c0 x18: ffff800011b9bf60 [ 49.210638][ T39] x17: ffff80001835b000 x16: ffff8000082d7db8 x15: ffff800017e3c000 [ 49.211996][ T39] x14: 0000000000000001 x13: 1fffff8000663058 x12: 0000000000ff0100 [ 49.213373][ T39] x11: ff0080000870c604 x10: 0000000000000000 x9 : ffff80000870c604 [ 49.214702][ T39] x8 : ffff0000c43c5340 x7 : 0000000000000000 x6 : 0000000000000000 [ 49.215979][ T39] x5 : 0000000000000020 x4 : 0000000000000000 x3 : ffff80000870c0b0 [ 49.217267][ T39] x2 : 0000000000000001 x1 : 0000000000000000 x0 : 0000000000000000 [ 49.218671][ T39] Call trace: [ 49.219229][ T39] __folio_start_writeback+0x88c/0xa7c [ 49.220185][ T39] set_page_writeback+0x5c/0x7c [ 49.221022][ T39] gfs2_aspace_writepage+0x514/0x6dc [ 49.221957][ T39] __writepage+0x70/0x184 [ 49.222720][ T39] write_cache_pages+0x74c/0xde8 [ 49.223585][ T39] do_writepages+0x318/0x504 [ 49.224372][ T39] filemap_fdatawrite_wbc+0x124/0x174 [ 49.225292][ T39] filemap_fdatawrite+0xd0/0x12c [ 49.226096][ T39] gfs2_write_inode+0x234/0x34c [ 49.226908][ T39] __writeback_single_inode+0x5e0/0x1554 [ 49.227901][ T39] writeback_sb_inodes+0x858/0x143c [ 49.228783][ T39] wb_writeback+0x414/0xfcc [ 49.229512][ T39] wb_workfn+0x360/0xe18 [ 49.230183][ T39] process_one_work+0x7f8/0x13a4 [ 49.230971][ T39] worker_thread+0x8c4/0xfec [ 49.231770][ T39] kthread+0x250/0x2d8 [ 49.232515][ T39] ret_from_fork+0x10/0x20 [ 49.233319][ T39] irq event stamp: 761434 [ 49.234092][ T39] hardirqs last enabled at (761433): [] folio_memcg_lock+0xe8/0x1f4 [ 49.235736][ T39] hardirqs last disabled at (761434): [] _raw_spin_lock_irqsave+0xa4/0xb0 [ 49.237444][ T39] softirqs last enabled at (761374): [] macvlan_process_broadcast+0x1d8/0x5e8 [ 49.239241][ T39] softirqs last disabled at (761372): [] macvlan_process_broadcast+0xf0/0x5e8 [ 49.241046][ T39] ---[ end trace 0000000000000000 ]--- [ 49.255030][ C0] ------------[ cut here ]------------ [ 49.255959][ C0] WARNING: CPU: 0 PID: 15 at include/linux/backing-dev.h:247 __folio_end_writeback+0x7d0/0x9cc [ 49.257559][ C0] Modules linked in: [ 49.258181][ C0] CPU: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G W syzkaller #0 [ 49.259710][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 49.261478][ C0] pstate: 424000c5 (nZcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 49.262846][ C0] pc : __folio_end_writeback+0x7d0/0x9cc [ 49.263841][ C0] lr : __folio_end_writeback+0x7d0/0x9cc [ 49.264786][ C0] sp : ffff80001ca27970 [ 49.265482][ C0] x29: ffff80001ca27990 x28: dfff800000000000 x27: ffff0000c536bce8 [ 49.266897][ C0] x26: 0000000000000000 x25: 05ffd400000020d2 x24: 1fffff8000663058 [ 49.268246][ C0] x23: 0000000000000001 x22: ffff0000d56e47e8 x21: ffff0000d56e47f0 [ 49.269623][ C0] x20: 0000000000000001 x19: fffffc00033182c0 x18: ffff800011b9bf60 [ 49.271001][ C0] x17: 1fffe00033ea637e x16: ffff8000082d7db8 x15: 0000000000000000 [ 49.272345][ C0] x14: 0000000000000003 x13: 1ffff00003944f20 x12: 0000000000ff0100 [ 49.273670][ C0] x11: ff0080000870bb7c x10: 0000000000000000 x9 : ffff80000870bb7c [ 49.275022][ C0] x8 : ffff0000c09b3780 x7 : 0000000000000000 x6 : 0000000000000000 [ 49.276305][ C0] x5 : 0000000000000080 x4 : 0000000000000000 x3 : 0000000000000010 [ 49.277680][ C0] x2 : 0000000000000008 x1 : 0000000000000000 x0 : 0000000000000000 [ 49.279053][ C0] Call trace: [ 49.279621][ C0] __folio_end_writeback+0x7d0/0x9cc [ 49.280493][ C0] folio_end_writeback+0x12c/0x410 [ 49.281338][ C0] end_page_writeback+0x58/0x74 [ 49.282161][ C0] end_buffer_async_write+0x32c/0x4f4 [ 49.283090][ C0] end_bio_bh_io_sync+0xb0/0x1dc [ 49.283887][ C0] bio_endio+0x750/0x794 [ 49.284590][ C0] blk_update_request+0x49c/0xbec [ 49.285444][ C0] blk_mq_end_request+0x54/0x88 [ 49.286231][ C0] lo_complete_rq+0x1ec/0x250 [ 49.287053][ C0] blk_done_softirq+0x11c/0x168 [ 49.287833][ C0] handle_softirqs+0x318/0xc60 [ 49.288652][ C0] run_ksoftirqd+0x7c/0x2ac [ 49.289410][ C0] smpboot_thread_fn+0x4b0/0x964 [ 49.290223][ C0] kthread+0x250/0x2d8 [ 49.290918][ C0] ret_from_fork+0x10/0x20 [ 49.291660][ C0] irq event stamp: 357161 [ 49.292354][ C0] hardirqs last enabled at (357160): [] folio_memcg_lock+0xe8/0x1f4 [ 49.294031][ C0] hardirqs last disabled at (357161): [] _raw_spin_lock_irqsave+0xa4/0xb0 [ 49.295827][ C0] softirqs last enabled at (357150): [] handle_softirqs+0xaec/0xc60 [ 49.297423][ C0] softirqs last disabled at (357155): [] run_ksoftirqd+0x7c/0x2ac [ 49.298995][ C0] ---[ end trace 0000000000000000 ]---