Warning: Permanently added '10.128.0.40' (ED25519) to the list of known hosts. 2025/11/26 10:56:19 parsed 1 programs [ 87.573024][ T5795] cgroup: Unknown subsys name 'net' [ 87.742976][ T5795] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 89.478704][ T5795] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 91.184778][ T5806] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.193478][ T5806] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.201145][ T5806] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.209736][ T5806] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.217578][ T5806] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 91.225094][ T5806] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.047110][ T9] cfg80211: failed to load regulatory.db [ 92.773869][ T78] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.782170][ T78] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.812654][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.822300][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.098568][ T5874] chnl_net:caif_netlink_parms(): no params data found [ 95.202571][ T5874] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.209859][ T5874] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.220153][ T5874] bridge_slave_0: entered allmulticast mode [ 95.227914][ T5874] bridge_slave_0: entered promiscuous mode [ 95.237873][ T5874] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.245459][ T5874] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.252628][ T5874] bridge_slave_1: entered allmulticast mode [ 95.260096][ T5874] bridge_slave_1: entered promiscuous mode [ 95.303277][ T5874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.317022][ T5874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.351179][ T5874] team0: Port device team_slave_0 added [ 95.377523][ T5874] team0: Port device team_slave_1 added [ 95.409029][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 95.416132][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 95.442200][ T5874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 95.457080][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 95.464061][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 95.491041][ T5874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 95.544112][ T5874] hsr_slave_0: entered promiscuous mode [ 95.551990][ T5874] hsr_slave_1: entered promiscuous mode [ 95.735051][ T5874] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 95.747785][ T5874] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 95.759124][ T5874] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 95.781595][ T5874] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 95.836335][ T5874] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.843863][ T5874] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.851915][ T5874] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.859071][ T5874] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.923385][ T5874] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.954292][ T5874] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.964369][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.977494][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.006431][ T78] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.013604][ T78] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.032660][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.039902][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.261163][ T5874] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.313974][ T5874] veth0_vlan: entered promiscuous mode [ 96.338050][ T5874] veth1_vlan: entered promiscuous mode [ 96.366767][ T5874] veth0_macvtap: entered promiscuous mode [ 96.378788][ T5874] veth1_macvtap: entered promiscuous mode [ 96.408542][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.422679][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.438878][ T5874] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.448191][ T5874] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.457409][ T5874] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.466375][ T5874] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.668144][ T994] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2025/11/26 10:56:31 executed programs: 0 [ 97.210208][ T5806] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 97.218294][ T5806] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 97.227111][ T5806] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 97.237343][ T5806] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 97.252869][ T5806] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 97.260331][ T5806] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 97.435506][ T5900] chnl_net:caif_netlink_parms(): no params data found [ 97.508280][ T5900] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.515760][ T5900] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.522998][ T5900] bridge_slave_0: entered allmulticast mode [ 97.530752][ T5900] bridge_slave_0: entered promiscuous mode [ 97.540850][ T5900] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.548453][ T5900] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.555711][ T5900] bridge_slave_1: entered allmulticast mode [ 97.562723][ T5900] bridge_slave_1: entered promiscuous mode [ 97.598586][ T5900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.611008][ T5900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.650216][ T5900] team0: Port device team_slave_0 added [ 97.660339][ T5900] team0: Port device team_slave_1 added [ 97.693842][ T5900] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.701109][ T5900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.727356][ T5900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.740228][ T5900] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.747441][ T5900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.773525][ T5900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.825130][ T5900] hsr_slave_0: entered promiscuous mode [ 97.831492][ T5900] hsr_slave_1: entered promiscuous mode [ 97.838832][ T5900] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.847792][ T5900] Cannot create hsr debugfs directory [ 99.306411][ T994] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.325139][ T5806] Bluetooth: hci0: command tx timeout [ 101.405303][ T5806] Bluetooth: hci0: command tx timeout [ 101.648599][ T994] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.709810][ T994] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.654305][ T994] hsr_slave_0: left promiscuous mode [ 102.665818][ T994] hsr_slave_1: left promiscuous mode [ 102.685674][ T994] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 102.693158][ T994] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 102.718053][ T994] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 102.734252][ T994] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 102.743262][ T994] bridge_slave_1: left allmulticast mode [ 102.749594][ T994] bridge_slave_1: left promiscuous mode [ 102.756605][ T994] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.769846][ T994] bridge_slave_0: left allmulticast mode [ 102.776944][ T994] bridge_slave_0: left promiscuous mode [ 102.782716][ T994] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.813680][ T994] veth1_macvtap: left promiscuous mode [ 102.819663][ T994] veth0_macvtap: left promiscuous mode [ 102.828535][ T994] veth1_vlan: left promiscuous mode [ 102.834083][ T994] veth0_vlan: left promiscuous mode [ 103.270843][ T994] team0 (unregistering): Port device team_slave_1 removed [ 103.301922][ T994] team0 (unregistering): Port device team_slave_0 removed [ 103.333834][ T994] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 103.373844][ T994] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 103.487723][ T5806] Bluetooth: hci0: command tx timeout [ 103.692602][ T994] bond0 (unregistering): Released all slaves [ 103.803876][ T5900] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 103.814910][ T5900] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 103.825522][ T5900] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 103.838634][ T5900] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 103.950020][ T5900] 8021q: adding VLAN 0 to HW filter on device bond0 [ 103.971034][ T5900] 8021q: adding VLAN 0 to HW filter on device team0 [ 103.982928][ T78] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.990136][ T78] bridge0: port 1(bridge_slave_0) entered forwarding state [ 104.006053][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.013239][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 104.235135][ T5900] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 104.285219][ T5900] veth0_vlan: entered promiscuous mode [ 104.298760][ T5900] veth1_vlan: entered promiscuous mode [ 104.335779][ T5900] veth0_macvtap: entered promiscuous mode [ 104.345664][ T5900] veth1_macvtap: entered promiscuous mode [ 104.363879][ T5900] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.386322][ T5900] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.400432][ T5900] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.409738][ T5900] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.419206][ T5900] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.428674][ T5900] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.502142][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.513515][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.546862][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.556047][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.611372][ T5950] syz.0.17[5950]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 104.631400][ T5950] loop0: detected capacity change from 0 to 512 [ 104.640288][ T5950] ======================================================= [ 104.640288][ T5950] WARNING: The mand mount option has been deprecated and [ 104.640288][ T5950] and is ignored by this kernel. Remove the mand [ 104.640288][ T5950] option from the mount to silence this warning. [ 104.640288][ T5950] ======================================================= [ 104.678017][ T5950] EXT4-fs: Ignoring removed i_version option [ 104.708240][ T5950] [ 104.710723][ T5950] ====================================================== [ 104.717772][ T5950] WARNING: possible circular locking dependency detected [ 104.724830][ T5950] syzkaller #0 Not tainted [ 104.729274][ T5950] ------------------------------------------------------ [ 104.736303][ T5950] syz.0.17/5950 is trying to acquire lock: [ 104.742101][ T5950] ffff88814ad38bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0 [ 104.752128][ T5950] [ 104.752128][ T5950] but task is already holding lock: [ 104.759499][ T5950] ffff8880635880c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 104.769351][ T5950] [ 104.769351][ T5950] which lock already depends on the new lock. [ 104.769351][ T5950] [ 104.779757][ T5950] [ 104.779757][ T5950] the existing dependency chain (in reverse order) is: [ 104.788774][ T5950] [ 104.788774][ T5950] -> #2 (&ei->xattr_sem){++++}-{3:3}: [ 104.796335][ T5950] down_read+0x46/0x2e0 [ 104.801016][ T5950] ext4_setattr+0x86b/0x1c90 [ 104.806144][ T5950] notify_change+0xb0d/0xe10 [ 104.811283][ T5950] chown_common+0x3f9/0x5a0 [ 104.816325][ T5950] do_fchownat+0x168/0x270 [ 104.821351][ T5950] __x64_sys_chown+0x82/0x90 [ 104.826556][ T5950] do_syscall_64+0x55/0xb0 [ 104.831505][ T5950] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 104.837919][ T5950] [ 104.837919][ T5950] -> #1 (jbd2_handle){++++}-{0:0}: [ 104.845251][ T5950] start_this_handle+0x1e9d/0x20c0 [ 104.850886][ T5950] jbd2__journal_start+0x2bb/0x5b0 [ 104.856525][ T5950] __ext4_journal_start_sb+0x203/0x570 [ 104.862540][ T5950] ext4_do_writepages+0xf92/0x38d0 [ 104.868190][ T5950] ext4_writepages+0x1a8/0x2f0 [ 104.873486][ T5950] do_writepages+0x3a2/0x600 [ 104.878603][ T5950] __writeback_single_inode+0x153/0xee0 [ 104.884675][ T5950] writeback_sb_inodes+0x77c/0xef0 [ 104.890313][ T5950] __writeback_inodes_wb+0x111/0x240 [ 104.896124][ T5950] wb_writeback+0x464/0xba0 [ 104.901155][ T5950] wb_workfn+0xabc/0xe20 [ 104.905928][ T5950] process_scheduled_works+0xa45/0x15b0 [ 104.912000][ T5950] worker_thread+0xa55/0xfc0 [ 104.917115][ T5950] kthread+0x2fa/0x390 [ 104.921720][ T5950] ret_from_fork+0x48/0x80 [ 104.926656][ T5950] ret_from_fork_asm+0x11/0x20 [ 104.931949][ T5950] [ 104.931949][ T5950] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 104.940463][ T5950] __lock_acquire+0x2ddb/0x7c80 [ 104.945837][ T5950] lock_acquire+0x197/0x410 [ 104.950860][ T5950] percpu_down_read+0x44/0x1a0 [ 104.956165][ T5950] ext4_writepages+0x170/0x2f0 [ 104.961479][ T5950] do_writepages+0x3a2/0x600 [ 104.966593][ T5950] __writeback_single_inode+0x153/0xee0 [ 104.972663][ T5950] writeback_single_inode+0x211/0x720 [ 104.978564][ T5950] write_inode_now+0x161/0x1e0 [ 104.983852][ T5950] iput+0x5b2/0x920 [ 104.988177][ T5950] ext4_xattr_block_set+0x273a/0x32a0 [ 104.994071][ T5950] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 105.000501][ T5950] __ext4_expand_extra_isize+0x306/0x400 [ 105.006677][ T5950] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 105.012669][ T5950] ext4_evict_inode+0x7ed/0xea0 [ 105.018139][ T5950] evict+0x486/0x870 [ 105.022573][ T5950] ext4_orphan_cleanup+0xbd4/0x1400 [ 105.028333][ T5950] ext4_fill_super+0x5de4/0x66c0 [ 105.033797][ T5950] get_tree_bdev+0x3e4/0x510 [ 105.038922][ T5950] vfs_get_tree+0x8c/0x280 [ 105.043862][ T5950] do_new_mount+0x24b/0xa40 [ 105.048894][ T5950] __se_sys_mount+0x2da/0x3c0 [ 105.054088][ T5950] do_syscall_64+0x55/0xb0 [ 105.059052][ T5950] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 105.065479][ T5950] [ 105.065479][ T5950] other info that might help us debug this: [ 105.065479][ T5950] [ 105.075709][ T5950] Chain exists of: [ 105.075709][ T5950] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem [ 105.075709][ T5950] [ 105.089097][ T5950] Possible unsafe locking scenario: [ 105.089097][ T5950] [ 105.096544][ T5950] CPU0 CPU1 [ 105.101907][ T5950] ---- ---- [ 105.107272][ T5950] lock(&ei->xattr_sem); [ 105.111606][ T5950] lock(jbd2_handle); [ 105.118209][ T5950] lock(&ei->xattr_sem); [ 105.125065][ T5950] rlock(&sbi->s_writepages_rwsem); [ 105.130349][ T5950] [ 105.130349][ T5950] *** DEADLOCK *** [ 105.130349][ T5950] [ 105.138576][ T5950] 3 locks held by syz.0.17/5950: [ 105.143506][ T5950] #0: ffff88814ad3a0e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510 [ 105.153616][ T5950] #1: ffff88814ad3a608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 [ 105.163028][ T5950] #2: ffff8880635880c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 105.173304][ T5950] [ 105.173304][ T5950] stack backtrace: [ 105.179203][ T5950] CPU: 1 PID: 5950 Comm: syz.0.17 Not tainted syzkaller #0 [ 105.186483][ T5950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 105.196540][ T5950] Call Trace: [ 105.199856][ T5950] [ 105.202790][ T5950] dump_stack_lvl+0x16c/0x230 [ 105.207492][ T5950] ? load_image+0x3b0/0x3b0 [ 105.212029][ T5950] ? show_regs_print_info+0x20/0x20 [ 105.217246][ T5950] ? print_circular_bug+0x12b/0x1a0 [ 105.222458][ T5950] check_noncircular+0x2bd/0x3c0 [ 105.227407][ T5950] ? look_up_lock_class+0x75/0x140 [ 105.232523][ T5950] ? print_deadlock_bug+0x5d0/0x5d0 [ 105.237729][ T5950] ? lockdep_lock+0xe0/0x220 [ 105.242328][ T5950] ? _find_first_zero_bit+0xd3/0x100 [ 105.247648][ T5950] __lock_acquire+0x2ddb/0x7c80 [ 105.252513][ T5950] ? mark_lock+0x94/0x320 [ 105.256860][ T5950] ? verify_lock_unused+0x140/0x140 [ 105.262063][ T5950] ? __lock_acquire+0x1334/0x7c80 [ 105.267114][ T5950] ? verify_lock_unused+0x140/0x140 [ 105.272327][ T5950] lock_acquire+0x197/0x410 [ 105.276838][ T5950] ? ext4_writepages+0x170/0x2f0 [ 105.281791][ T5950] ? __might_sleep+0xe0/0xe0 [ 105.286389][ T5950] ? mark_lock+0x94/0x320 [ 105.290724][ T5950] ? read_lock_is_recursive+0x20/0x20 [ 105.296100][ T5950] ? __lock_acquire+0x1334/0x7c80 [ 105.301135][ T5950] percpu_down_read+0x44/0x1a0 [ 105.305917][ T5950] ? ext4_writepages+0x170/0x2f0 [ 105.310864][ T5950] ext4_writepages+0x170/0x2f0 [ 105.315646][ T5950] ? ext4_read_folio+0x2f0/0x2f0 [ 105.320600][ T5950] ? __rwlock_init+0x150/0x150 [ 105.325377][ T5950] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 105.331279][ T5950] ? do_raw_spin_unlock+0x121/0x230 [ 105.336486][ T5950] ? ext4_read_folio+0x2f0/0x2f0 [ 105.341431][ T5950] do_writepages+0x3a2/0x600 [ 105.346041][ T5950] ? folio_clear_dirty_for_io+0xc30/0xc30 [ 105.351787][ T5950] ? writeback_single_inode+0x206/0x720 [ 105.357348][ T5950] ? __lock_acquire+0x7c80/0x7c80 [ 105.362380][ T5950] ? do_raw_spin_lock+0x121/0x2c0 [ 105.367413][ T5950] ? get_tree_bdev+0x3e4/0x510 [ 105.372192][ T5950] __writeback_single_inode+0x153/0xee0 [ 105.377756][ T5950] writeback_single_inode+0x211/0x720 [ 105.383154][ T5950] ? write_inode_now+0x1e0/0x1e0 [ 105.388115][ T5950] write_inode_now+0x161/0x1e0 [ 105.392932][ T5950] ? bdi_split_work_to_wbs+0x890/0x890 [ 105.398415][ T5950] ? do_raw_spin_unlock+0x121/0x230 [ 105.403647][ T5950] iput+0x5b2/0x920 [ 105.407494][ T5950] ext4_xattr_block_set+0x273a/0x32a0 [ 105.412907][ T5950] ? __might_sleep+0xe0/0xe0 [ 105.417550][ T5950] ? xattr_find_entry+0x12b/0x2f0 [ 105.422603][ T5950] ? ext4_xattr_block_find+0x350/0x350 [ 105.428089][ T5950] ? ext4_xattr_block_find+0x2d4/0x350 [ 105.433657][ T5950] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 105.439584][ T5950] __ext4_expand_extra_isize+0x306/0x400 [ 105.445239][ T5950] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 105.450813][ T5950] ext4_evict_inode+0x7ed/0xea0 [ 105.455681][ T5950] ? _raw_spin_unlock+0x28/0x40 [ 105.460550][ T5950] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 105.466463][ T5950] ? do_raw_spin_unlock+0x121/0x230 [ 105.471684][ T5950] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 105.477589][ T5950] evict+0x486/0x870 [ 105.481587][ T5950] ? __lock_acquire+0x7c80/0x7c80 [ 105.486625][ T5950] ? proc_nr_inodes+0x230/0x230 [ 105.491501][ T5950] ? do_raw_spin_unlock+0x121/0x230 [ 105.496720][ T5950] ? _raw_spin_unlock+0x28/0x40 [ 105.501845][ T5950] ? iput+0x70a/0x920 [ 105.505855][ T5950] ext4_orphan_cleanup+0xbd4/0x1400 [ 105.511080][ T5950] ? ext4_orphan_del+0xba0/0xba0 [ 105.516045][ T5950] ? ext4_register_li_request+0x183/0x940 [ 105.521794][ T5950] ? errseq_check_and_advance+0x66/0x120 [ 105.527440][ T5950] ext4_fill_super+0x5de4/0x66c0 [ 105.532413][ T5950] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 105.538685][ T5950] ? __might_sleep+0xe0/0xe0 [ 105.543296][ T5950] ? read_lock_is_recursive+0x20/0x20 [ 105.548685][ T5950] ? snprintf+0xdb/0x120 [ 105.552946][ T5950] ? vscnprintf+0x80/0x80 [ 105.557290][ T5950] ? down_write+0x162/0x1f0 [ 105.561802][ T5950] ? down_read_killable+0x340/0x340 [ 105.567014][ T5950] ? setup_bdev_super+0x56b/0x660 [ 105.572072][ T5950] get_tree_bdev+0x3e4/0x510 [ 105.576672][ T5950] ? vfs_parse_fs_string+0x160/0x160 [ 105.581973][ T5950] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 105.588239][ T5950] ? setup_bdev_super+0x660/0x660 [ 105.593284][ T5950] ? apparmor_capable+0x137/0x1a0 [ 105.598420][ T5950] ? bpf_lsm_capable+0x9/0x10 [ 105.603132][ T5950] ? security_capable+0x89/0xb0 [ 105.608009][ T5950] vfs_get_tree+0x8c/0x280 [ 105.612465][ T5950] do_new_mount+0x24b/0xa40 [ 105.617008][ T5950] __se_sys_mount+0x2da/0x3c0 [ 105.621801][ T5950] ? __x64_sys_mount+0xc0/0xc0 [ 105.626589][ T5950] ? lockdep_hardirqs_on+0x98/0x150 [ 105.631799][ T5950] ? __x64_sys_mount+0x20/0xc0 [ 105.636579][ T5950] do_syscall_64+0x55/0xb0 [ 105.641111][ T5950] ? clear_bhb_loop+0x40/0x90 [ 105.645887][ T5950] ? clear_bhb_loop+0x40/0x90 [ 105.650577][ T5950] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 105.656505][ T5950] RIP: 0033:0x7f926c790eea [ 105.660946][ T5950] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 105.680561][ T5950] RSP: 002b:00007ffc096d1778 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 105.688986][ T5950] RAX: ffffffffffffffda RBX: 00007ffc096d1800 RCX: 00007f926c790eea [ 105.696966][ T5950] RDX: 0000200000000180 RSI: 0000200000000080 RDI: 00007ffc096d17c0 [ 105.705049][ T5950] RBP: 0000200000000180 R08: 00007ffc096d1800 R09: 0000000002808340 [ 105.713030][ T5950] R10: 0000000002808340 R11: 0000000000000246 R12: 0000200000000080 [ 105.721005][ T5950] R13: 00007ffc096d17c0 R14: 000000000000047c R15: 0000200000000640 [ 105.729021][ T5950] [ 105.739315][ T5950] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 105.764469][ T5806] Bluetooth: hci0: command tx timeout [ 105.767987][ T5950] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 11 err=-117 [ 105.788666][ T5950] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 105.805598][ T5950] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 105.824701][ T5950] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 11 err=-117 [ 105.838722][ T5950] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 105.852234][ T5950] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 18 err=-117 [ 105.865159][ T5950] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 105.878787][ T5950] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 18 err=-117 [ 105.891648][ T5950] EXT4-fs (loop0): 1 orphan inode deleted [ 105.898400][ T5950] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.929598][ T5900] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.