[ 92.051761][ T31] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.177' (ED25519) to the list of known hosts.
2025/09/12 13:57:55 parsed 1 programs
[ 99.748184][ T5846] cgroup: Unknown subsys name 'net'
[ 99.962615][ T5846] cgroup: Unknown subsys name 'cpuset'
[ 100.019084][ T5846] cgroup: Unknown subsys name 'rlimit'
[ 102.007867][ T5846] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 107.535683][ T5885] chnl_net:caif_netlink_parms(): no params data found
[ 108.068977][ T5885] bridge0: port 1(bridge_slave_0) entered blocking state
[ 108.070010][ T5885] bridge0: port 1(bridge_slave_0) entered disabled state
[ 108.070175][ T5885] bridge_slave_0: entered allmulticast mode
[ 108.072208][ T5885] bridge_slave_0: entered promiscuous mode
[ 108.085059][ T5885] bridge0: port 2(bridge_slave_1) entered blocking state
[ 108.085877][ T5885] bridge0: port 2(bridge_slave_1) entered disabled state
[ 108.086123][ T5885] bridge_slave_1: entered allmulticast mode
[ 108.090230][ T5885] bridge_slave_1: entered promiscuous mode
[ 108.285734][ T5885] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 108.300384][ T5885] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 108.451591][ T5885] team0: Port device team_slave_0 added
[ 108.455299][ T5885] team0: Port device team_slave_1 added
[ 108.650002][ T5885] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 108.650017][ T5885] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 108.650036][ T5885] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 108.653253][ T5885] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 108.653271][ T5885] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 108.653298][ T5885] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 108.871119][ T5885] hsr_slave_0: entered promiscuous mode
[ 108.872867][ T5885] hsr_slave_1: entered promiscuous mode
[ 109.303849][ T5885] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 109.323720][ T5885] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 109.507772][ T5885] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 109.542358][ T5885] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 109.674064][ T5885] 8021q: adding VLAN 0 to HW filter on device bond0
[ 109.701286][ T5885] 8021q: adding VLAN 0 to HW filter on device team0
[ 109.715221][ T3561] bridge0: port 1(bridge_slave_0) entered blocking state
[ 109.716234][ T3561] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 109.733759][ T3561] bridge0: port 2(bridge_slave_1) entered blocking state
[ 109.734054][ T3561] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 110.010707][ T5885] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 110.070941][ T5885] veth0_vlan: entered promiscuous mode
[ 110.092114][ T5885] veth1_vlan: entered promiscuous mode
[ 110.133697][ T5885] veth0_macvtap: entered promiscuous mode
[ 110.151517][ T5885] veth1_macvtap: entered promiscuous mode
[ 110.174845][ T5885] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 110.195680][ T5885] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 110.218152][ T3602] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.218225][ T3602] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.218265][ T3602] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.218303][ T3602] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 111.133103][ T1374] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 111.380857][ T1374] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 111.680813][ T1374] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 112.374915][ T1374] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 113.407197][ T1374] bridge_slave_1: left allmulticast mode
[ 113.407402][ T1374] bridge_slave_1: left promiscuous mode
[ 113.409225][ T1374] bridge0: port 2(bridge_slave_1) entered disabled state
[ 113.501077][ T1374] bridge_slave_0: left allmulticast mode
[ 113.501115][ T1374] bridge_slave_0: left promiscuous mode
[ 113.501395][ T1374] bridge0: port 1(bridge_slave_0) entered disabled state
[ 113.580022][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 113.581668][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 113.582424][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 113.583659][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 113.584626][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 115.357592][ T1374] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 115.447457][ T1374] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 115.471773][ T1374] bond0 (unregistering): Released all slaves
[ 115.649271][ T59] Bluetooth: hci0: command tx timeout
[ 115.826679][ T1374] hsr_slave_0: left promiscuous mode
[ 115.866644][ T1374] hsr_slave_1: left promiscuous mode
[ 115.867784][ T1374] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 115.867863][ T1374] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 115.921315][ T1374] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 115.921350][ T1374] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 116.010745][ T1374] veth1_macvtap: left promiscuous mode
[ 116.011001][ T1374] veth0_macvtap: left promiscuous mode
[ 116.011335][ T1374] veth1_vlan: left promiscuous mode
[ 116.011676][ T1374] veth0_vlan: left promiscuous mode
[ 117.726768][ T59] Bluetooth: hci0: command tx timeout
[ 118.009323][ T1374] team0 (unregistering): Port device team_slave_1 removed
[ 118.217290][ T1374] team0 (unregistering): Port device team_slave_0 removed
[ 119.806650][ T59] Bluetooth: hci0: command tx timeout
[ 120.953376][ T1218] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.953403][ T1218] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.097074][ T1218] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.097095][ T1218] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/09/12 13:58:23 executed programs: 0
[ 123.564577][ T5156] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 123.575887][ T5156] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 123.586379][ T5156] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 123.595827][ T5156] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 123.598564][ T5156] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 124.524175][ T6020] chnl_net:caif_netlink_parms(): no params data found
[ 125.128401][ T6020] bridge0: port 1(bridge_slave_0) entered blocking state
[ 125.128563][ T6020] bridge0: port 1(bridge_slave_0) entered disabled state
[ 125.128691][ T6020] bridge_slave_0: entered allmulticast mode
[ 125.130645][ T6020] bridge_slave_0: entered promiscuous mode
[ 125.135226][ T6020] bridge0: port 2(bridge_slave_1) entered blocking state
[ 125.135387][ T6020] bridge0: port 2(bridge_slave_1) entered disabled state
[ 125.135511][ T6020] bridge_slave_1: entered allmulticast mode
[ 125.141802][ T6020] bridge_slave_1: entered promiscuous mode
[ 125.348216][ T6020] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 125.352378][ T6020] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 125.601061][ T6020] team0: Port device team_slave_0 added
[ 125.646792][ T5156] Bluetooth: hci0: command tx timeout
[ 125.698532][ T6020] team0: Port device team_slave_1 added
[ 125.879438][ T6020] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 125.879456][ T6020] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 125.879475][ T6020] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 125.921743][ T6020] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 125.921764][ T6020] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 125.921796][ T6020] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 126.189705][ T6020] hsr_slave_0: entered promiscuous mode
[ 126.191228][ T6020] hsr_slave_1: entered promiscuous mode
[ 127.726698][ T5156] Bluetooth: hci0: command tx timeout
[ 127.985678][ T6020] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 128.024093][ T6020] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 128.065658][ T6020] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 128.102536][ T6020] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 128.317558][ T6020] 8021q: adding VLAN 0 to HW filter on device bond0
[ 128.352613][ T6020] 8021q: adding VLAN 0 to HW filter on device team0
[ 128.370025][ T3602] bridge0: port 1(bridge_slave_0) entered blocking state
[ 128.373031][ T3602] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 128.403114][ T3602] bridge0: port 2(bridge_slave_1) entered blocking state
[ 128.404253][ T3602] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 128.814960][ T6020] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 128.911558][ T6020] veth0_vlan: entered promiscuous mode
[ 128.933113][ T6020] veth1_vlan: entered promiscuous mode
[ 128.990799][ T6020] veth0_macvtap: entered promiscuous mode
[ 128.998939][ T6020] veth1_macvtap: entered promiscuous mode
[ 129.032368][ T6020] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 129.045719][ T6020] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 129.074967][ T1443] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.083971][ T1443] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.084851][ T1443] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.085139][ T1443] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.369193][ T1443] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.369216][ T1443] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.466338][ T1443] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.466361][ T1443] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/09/12 13:58:29 executed programs: 2
[ 129.669541][ T6110] loop0: detected capacity change from 0 to 512
[ 129.765551][ T6110]
[ 129.765563][ T6110] ======================================================
[ 129.765571][ T6110] WARNING: possible circular locking dependency detected
[ 129.765589][ T6110] syzkaller #0 Not tainted
[ 129.765600][ T6110] ------------------------------------------------------
[ 129.765608][ T6110] syz.0.17/6110 is trying to acquire lock:
[ 129.765619][ T6110] ffff88803ccbac58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[ 129.765694][ T6110]
[ 129.765694][ T6110] but task is already holding lock:
[ 129.765701][ T6110] ffff88805b120c90 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[ 129.765747][ T6110]
[ 129.765747][ T6110] [ 129.765747][ T6110]
[ 129.765747][ T6110] which lock already depends on the new lock.
[ 129.765747][ T6110]
[ 129.765754][ T6110]
[ 129.765754][ T6110] the existing dependency chain (in reverse order) is:
[ 129.765761][ T6110]
[ 129.765761][ T6110] -> #2 (&ei->xattr_sem){++++}-{4:4}:
[ 129.765787][ T6110] lock_acquire+0x120/0x360
[ 129.765812][ T6110] down_write+0x3a/0x50
[ 129.765829][ T6110] ext4_xattr_set_handle+0x165/0x1590
[ 129.765855][ T6110] ext4_initxattrs+0x9f/0x110
[ 129.765874][ T6110] security_inode_init_security+0x2a0/0x3f0
[ 129.765893][ T6110] __ext4_new_inode+0x3314/0x3cb0
[ 129.765920][ T6110] ext4_create+0x22d/0x460
[ 129.765940][ T6110] path_openat+0x1500/0x3840
[ 129.765960][ T6110] do_filp_open+0x1fa/0x410
[ 129.765979][ T6110] do_sys_openat2+0x121/0x1c0
[ 129.765997][ T6110] __x64_sys_openat+0x138/0x170
[ 129.766014][ T6110] do_syscall_64+0xfa/0x3b0
[ 129.766030][ T6110] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.766049][ T6110]
[ 129.766049][ T6110] -> #1 (jbd2_handle){++++}-{0:0}:
[ 129.766076][ T6110] lock_acquire+0x120/0x360
[ 129.766098][ T6110] start_this_handle+0x1fa7/0x21c0
[ 129.766119][ T6110] jbd2__journal_start+0x2c1/0x5b0
[ 129.766141][ T6110] __ext4_journal_start_sb+0x227/0x5c0
[ 129.766167][ T6110] ext4_do_writepages+0xf6f/0x4600
[ 129.766190][ T6110] ext4_writepages+0x205/0x350
[ 129.766206][ T6110] do_writepages+0x32e/0x550
[ 129.766229][ T6110] __writeback_single_inode+0x145/0x1000
[ 129.766252][ T6110] writeback_sb_inodes+0x6b7/0xf60
[ 129.766273][ T6110] __writeback_inodes_wb+0x111/0x240
[ 129.766295][ T6110] wb_writeback+0x44f/0xaf0
[ 129.766314][ T6110] wb_workfn+0xaf4/0xf00
[ 129.766330][ T6110] process_scheduled_works+0xade/0x17b0
[ 129.766353][ T6110] worker_thread+0x8a0/0xda0
[ 129.766376][ T6110] kthread+0x70e/0x8a0
[ 129.766403][ T6110] ret_from_fork+0x439/0x7d0
[ 129.766426][ T6110] ret_from_fork_asm+0x1a/0x30
[ 129.766449][ T6110]
[ 129.766449][ T6110] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 129.766476][ T6110] validate_chain+0xb9b/0x2140
[ 129.766504][ T6110] __lock_acquire+0xab9/0xd20
[ 129.766528][ T6110] lock_acquire+0x120/0x360
[ 129.766551][ T6110] percpu_down_read_internal+0x48/0x1d0
[ 129.766580][ T6110] ext4_writepages+0x1cc/0x350
[ 129.766597][ T6110] do_writepages+0x32e/0x550
[ 129.766618][ T6110] __writeback_single_inode+0x145/0x1000
[ 129.766650][ T6110] writeback_single_inode+0x1d5/0x640
[ 129.766670][ T6110] write_inode_now+0x160/0x1d0
[ 129.766688][ T6110] iput+0x5b9/0x9d0
[ 129.766715][ T6110] ext4_xattr_block_set+0x1fce/0x2ac0
[ 129.766742][ T6110] ext4_expand_extra_isize_ea+0x12d5/0x1ea0
[ 129.766772][ T6110] __ext4_expand_extra_isize+0x30d/0x400
[ 129.766801][ T6110] __ext4_mark_inode_dirty+0x46c/0x700
[ 129.766823][ T6110] ext4_evict_inode+0x80d/0xee0
[ 129.766843][ T6110] evict+0x501/0x9c0
[ 129.766863][ T6110] ext4_orphan_cleanup+0xc20/0x1460
[ 129.766883][ T6110] ext4_fill_super+0x57fa/0x60b0
[ 129.766911][ T6110] get_tree_bdev_flags+0x40b/0x4d0
[ 129.766934][ T6110] vfs_get_tree+0x8f/0x2b0
[ 129.766956][ T6110] do_new_mount+0x2a2/0x9e0
[ 129.766981][ T6110] __se_sys_mount+0x317/0x410
[ 129.767005][ T6110] do_syscall_64+0xfa/0x3b0
[ 129.767022][ T6110] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.767041][ T6110]
[ 129.767041][ T6110] other info that might help us debug this:
[ 129.767041][ T6110]
[ 129.767048][ T6110] Chain exists of:
[ 129.767048][ T6110] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 129.767048][ T6110]
[ 129.767081][ T6110] Possible unsafe locking scenario:
[ 129.767081][ T6110]
[ 129.767087][ T6110] CPU0 CPU1
[ 129.767093][ T6110] ---- ----
[ 129.767098][ T6110] lock(&ei->xattr_sem);
[ 129.767112][ T6110] lock(jbd2_handle);
[ 129.767126][ T6110] lock(&ei->xattr_sem);
[ 129.767140][ T6110] rlock(&sbi->s_writepages_rwsem);
[ 129.767154][ T6110]
[ 129.767154][ T6110] *** DEADLOCK ***
[ 129.767154][ T6110]
[ 129.767159][ T6110] 3 locks held by syz.0.17/6110:
[ 129.767171][ T6110] #0: ffff88803ccb80d0 (&type->s_umount_key#26/1){+.+.}-{4:4}, at: alloc_super+0x204/0x990
[ 129.767227][ T6110] #1: ffff88803ccb8778 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2d6/0xee0
[ 129.767275][ T6110] #2: ffff88805b120c90 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[ 129.767324][ T6110]
[ 129.767324][ T6110] stack backtrace:
[ 129.767354][ T6110] CPU: 1 UID: 0 PID: 6110 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 129.767379][ T6110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 129.767399][ T6110] Call Trace:
[ 129.767407][ T6110]
[ 129.767416][ T6110] dump_stack_lvl+0x189/0x250
[ 129.767451][ T6110] ? __pfx_dump_stack_lvl+0x10/0x10
[ 129.767482][ T6110] ? __pfx__printk+0x10/0x10
[ 129.767505][ T6110] ? print_lock_name+0xde/0x100
[ 129.767529][ T6110] print_circular_bug+0x2ee/0x310
[ 129.767552][ T6110] check_noncircular+0x134/0x160
[ 129.767589][ T6110] validate_chain+0xb9b/0x2140
[ 129.767627][ T6110] ? look_up_lock_class+0x74/0x170
[ 129.767667][ T6110] ? register_lock_class+0x51/0x320
[ 129.767697][ T6110] __lock_acquire+0xab9/0xd20
[ 129.767729][ T6110] ? ext4_writepages+0x1cc/0x350
[ 129.767748][ T6110] lock_acquire+0x120/0x360
[ 129.767775][ T6110] ? ext4_writepages+0x1cc/0x350
[ 129.767796][ T6110] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 129.767829][ T6110] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.767863][ T6110] percpu_down_read_internal+0x48/0x1d0
[ 129.767895][ T6110] ? ext4_writepages+0x1cc/0x350
[ 129.767915][ T6110] ext4_writepages+0x1cc/0x350
[ 129.767936][ T6110] ? __pfx_ext4_writepages+0x10/0x10
[ 129.767955][ T6110] ? rt_mutex_slowunlock+0x493/0x8a0
[ 129.767991][ T6110] ? __pfx_ext4_writepages+0x10/0x10
[ 129.768011][ T6110] do_writepages+0x32e/0x550
[ 129.768040][ T6110] ? reacquire_held_locks+0x127/0x1d0
[ 129.768069][ T6110] ? rt_spin_lock+0x1bb/0x2c0
[ 129.768092][ T6110] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 129.768119][ T6110] __writeback_single_inode+0x145/0x1000
[ 129.768149][ T6110] writeback_single_inode+0x1d5/0x640
[ 129.768174][ T6110] write_inode_now+0x160/0x1d0
[ 129.768194][ T6110] ? __pfx_write_inode_now+0x10/0x10
[ 129.768229][ T6110] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 129.768258][ T6110] ? rt_spin_unlock+0x65/0x80
[ 129.768285][ T6110] iput+0x5b9/0x9d0
[ 129.768317][ T6110] ext4_xattr_block_set+0x1fce/0x2ac0
[ 129.768362][ T6110] ? __pfx_ext4_xattr_block_set+0x10/0x10
[ 129.768393][ T6110] ? ext4_xattr_block_find+0x2d4/0x350
[ 129.768424][ T6110] ext4_expand_extra_isize_ea+0x12d5/0x1ea0
[ 129.768474][ T6110] __ext4_expand_extra_isize+0x30d/0x400
[ 129.768511][ T6110] __ext4_mark_inode_dirty+0x46c/0x700
[ 129.768542][ T6110] ext4_evict_inode+0x80d/0xee0
[ 129.768571][ T6110] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.768599][ T6110] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.768621][ T6110] evict+0x501/0x9c0
[ 129.768659][ T6110] ? __pfx_evict+0x10/0x10
[ 129.768684][ T6110] ? iput+0x6d8/0x9d0
[ 129.768717][ T6110] ext4_orphan_cleanup+0xc20/0x1460
[ 129.768746][ T6110] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 129.768771][ T6110] ? ext4_register_li_request+0x640/0x720
[ 129.768793][ T6110] ? errseq_check_and_advance+0x66/0x120
[ 129.768823][ T6110] ext4_fill_super+0x57fa/0x60b0
[ 129.768867][ T6110] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.768898][ T6110] ? set_blocksize+0x219/0x450
[ 129.768923][ T6110] ? sb_set_blocksize+0x104/0x180
[ 129.768946][ T6110] ? setup_bdev_super+0x4c1/0x5b0
[ 129.768974][ T6110] get_tree_bdev_flags+0x40b/0x4d0
[ 129.769002][ T6110] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.769034][ T6110] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 129.769061][ T6110] ? cap_capable+0x11f/0x460
[ 129.769086][ T6110] ? safesetid_security_capable+0xa9/0x1a0
[ 129.769116][ T6110] vfs_get_tree+0x8f/0x2b0
[ 129.769144][ T6110] do_new_mount+0x2a2/0x9e0
[ 129.769175][ T6110] ? ns_capable+0x8a/0xf0
[ 129.769201][ T6110] ? __pfx_do_new_mount+0x10/0x10
[ 129.769229][ T6110] ? path_mount+0x61c/0xfe0
[ 129.769263][ T6110] __se_sys_mount+0x317/0x410
[ 129.769296][ T6110] ? __pfx___se_sys_mount+0x10/0x10
[ 129.769329][ T6110] ? do_syscall_64+0xbe/0x3b0
[ 129.769347][ T6110] ? __x64_sys_mount+0x20/0xc0
[ 129.769377][ T6110] do_syscall_64+0xfa/0x3b0
[ 129.769395][ T6110] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.769426][ T6110] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.769448][ T6110] ? clear_bhb_loop+0x60/0xb0
[ 129.769471][ T6110] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.769492][ T6110] RIP: 0033:0x7f5a4f25034a
[ 129.769518][ T6110] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 129.769537][ T6110] RSP: 002b:00007ffe78bb4e28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 129.769558][ T6110] RAX: ffffffffffffffda RBX: 00007ffe78bb4eb0 RCX: 00007f5a4f25034a
[ 129.769574][ T6110] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffe78bb4e70
[ 129.769590][ T6110] RBP: 0000200000000180 R08: 00007ffe78bb4eb0 R09: 0000000000800700
[ 129.769605][ T6110] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 129.769619][ T6110] R13: 00007ffe78bb4e70 R14: 0000000000000473 R15: 0000200000000680
[ 129.769649][ T6110]
[ 129.806660][ T5156] Bluetooth: hci0: command tx timeout
[ 129.831145][ T6110] ------------[ cut here ]------------
[ 129.831161][ T6110] EA inode 11 i_nlink=2
[ 129.831523][ T6110] WARNING: CPU: 0 PID: 6110 at fs/ext4/xattr.c:1053 ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.831577][ T6110] Modules linked in:
[ 129.831600][ T6110] CPU: 0 UID: 0 PID: 6110 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 129.831628][ T6110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 129.831641][ T6110] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.831678][ T6110] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 20 70 1f 8b 4c 89 fe e8 8d 97 07 ff 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 14 29
[ 129.831698][ T6110] RSP: 0018:ffffc90003d771a0 EFLAGS: 00010246
[ 129.831719][ T6110] RAX: ac545f9dee82d300 RBX: dffffc0000000000 RCX: ffff88802efd0000
[ 129.831737][ T6110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 129.831752][ T6110] RBP: ffffc90003d77298 R08: 0000000000000000 R09: 0000000000000000
[ 129.831766][ T6110] R10: dffffc0000000000 R11: ffffed1017104863 R12: ffff88805b0c6e18
[ 129.831784][ T6110] R13: 1ffff1100b618dc3 R14: 00000000ffffffff R15: 000000000000000b
[ 129.831801][ T6110] FS: 0000555562dc2500(0000) GS:ffff8881268bd000(0000) knlGS:0000000000000000
[ 129.831821][ T6110] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 129.831838][ T6110] CR2: 00007f72838ab4e8 CR3: 000000003b61c000 CR4: 00000000003526f0
[ 129.831859][ T6110] Call Trace:
[ 129.831867][ T6110]
[ 129.831877][ T6110] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 129.831908][ T6110] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 129.831946][ T6110] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 129.831994][ T6110] ext4_xattr_set_entry+0xabb/0x1e20
[ 129.832039][ T6110] ext4_xattr_ibody_set+0x254/0x6a0
[ 129.832076][ T6110] ext4_expand_extra_isize_ea+0x13a8/0x1ea0
[ 129.832130][ T6110] __ext4_expand_extra_isize+0x30d/0x400
[ 129.832172][ T6110] __ext4_mark_inode_dirty+0x46c/0x700
[ 129.832204][ T6110] ext4_evict_inode+0x80d/0xee0
[ 129.832238][ T6110] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.832268][ T6110] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.832293][ T6110] evict+0x501/0x9c0
[ 129.832322][ T6110] ? __pfx_evict+0x10/0x10
[ 129.832349][ T6110] ? iput+0x6d8/0x9d0
[ 129.832386][ T6110] ext4_orphan_cleanup+0xc20/0x1460
[ 129.832418][ T6110] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 129.832445][ T6110] ? ext4_register_li_request+0x640/0x720
[ 129.832468][ T6110] ? errseq_check_and_advance+0x66/0x120
[ 129.832502][ T6110] ext4_fill_super+0x57fa/0x60b0
[ 129.832551][ T6110] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.832582][ T6110] ? set_blocksize+0x219/0x450
[ 129.832605][ T6110] ? sb_set_blocksize+0x104/0x180
[ 129.832628][ T6110] ? setup_bdev_super+0x4c1/0x5b0
[ 129.832659][ T6110] get_tree_bdev_flags+0x40b/0x4d0
[ 129.832689][ T6110] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.832725][ T6110] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 129.832754][ T6110] ? cap_capable+0x11f/0x460
[ 129.832782][ T6110] ? safesetid_security_capable+0xa9/0x1a0
[ 129.832816][ T6110] vfs_get_tree+0x8f/0x2b0
[ 129.832846][ T6110] do_new_mount+0x2a2/0x9e0
[ 129.832880][ T6110] ? ns_capable+0x8a/0xf0
[ 129.832909][ T6110] ? __pfx_do_new_mount+0x10/0x10
[ 129.832941][ T6110] ? path_mount+0x61c/0xfe0
[ 129.832983][ T6110] __se_sys_mount+0x317/0x410
[ 129.833019][ T6110] ? __pfx___se_sys_mount+0x10/0x10
[ 129.833056][ T6110] ? do_syscall_64+0xbe/0x3b0
[ 129.833078][ T6110] ? __x64_sys_mount+0x20/0xc0
[ 129.833110][ T6110] do_syscall_64+0xfa/0x3b0
[ 129.833132][ T6110] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.833165][ T6110] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.833189][ T6110] ? clear_bhb_loop+0x60/0xb0
[ 129.833216][ T6110] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.833240][ T6110] RIP: 0033:0x7f5a4f25034a
[ 129.833259][ T6110] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 129.833278][ T6110] RSP: 002b:00007ffe78bb4e28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 129.833301][ T6110] RAX: ffffffffffffffda RBX: 00007ffe78bb4eb0 RCX: 00007f5a4f25034a
[ 129.833319][ T6110] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffe78bb4e70
[ 129.833336][ T6110] RBP: 0000200000000180 R08: 00007ffe78bb4eb0 R09: 0000000000800700
[ 129.833352][ T6110] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 129.833368][ T6110] R13: 00007ffe78bb4e70 R14: 0000000000000473 R15: 0000200000000680
[ 129.833394][ T6110]
[ 129.833405][ T6110] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 129.833423][ T6110] CPU: 0 UID: 0 PID: 6110 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 129.833449][ T6110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 129.833462][ T6110] Call Trace:
[ 129.833471][ T6110]
[ 129.833479][ T6110] dump_stack_lvl+0x99/0x250
[ 129.833515][ T6110] ? __asan_memcpy+0x40/0x70
[ 129.833541][ T6110] ? __pfx_dump_stack_lvl+0x10/0x10
[ 129.833574][ T6110] ? __pfx__printk+0x10/0x10
[ 129.833606][ T6110] vpanic+0x281/0x750
[ 129.833638][ T6110] ? __pfx__printk+0x10/0x10
[ 129.833663][ T6110] ? __pfx_vpanic+0x10/0x10
[ 129.833696][ T6110] ? is_bpf_text_address+0x26/0x2b0
[ 129.833733][ T6110] panic+0xb9/0xc0
[ 129.833766][ T6110] ? __pfx_panic+0x10/0x10
[ 129.833806][ T6110] __warn+0x31b/0x4b0
[ 129.833839][ T6110] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.833876][ T6110] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.833911][ T6110] report_bug+0x2be/0x4f0
[ 129.833942][ T6110] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.833984][ T6110] ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.834018][ T6110] ? ext4_xattr_inode_update_ref+0x536/0x5d0
[ 129.834053][ T6110] handle_bug+0x84/0x160
[ 129.834078][ T6110] exc_invalid_op+0x1a/0x50
[ 129.834102][ T6110] asm_exc_invalid_op+0x1a/0x20
[ 129.834124][ T6110] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[ 129.834161][ T6110] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 20 70 1f 8b 4c 89 fe e8 8d 97 07 ff 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 14 29
[ 129.834180][ T6110] RSP: 0018:ffffc90003d771a0 EFLAGS: 00010246
[ 129.834200][ T6110] RAX: ac545f9dee82d300 RBX: dffffc0000000000 RCX: ffff88802efd0000
[ 129.834219][ T6110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 129.834234][ T6110] RBP: ffffc90003d77298 R08: 0000000000000000 R09: 0000000000000000
[ 129.834248][ T6110] R10: dffffc0000000000 R11: ffffed1017104863 R12: ffff88805b0c6e18
[ 129.834266][ T6110] R13: 1ffff1100b618dc3 R14: 00000000ffffffff R15: 000000000000000b
[ 129.834293][ T6110] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 129.834320][ T6110] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 129.834358][ T6110] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 129.834396][ T6110] ext4_xattr_set_entry+0xabb/0x1e20
[ 129.834439][ T6110] ext4_xattr_ibody_set+0x254/0x6a0
[ 129.834476][ T6110] ext4_expand_extra_isize_ea+0x13a8/0x1ea0
[ 129.834530][ T6110] __ext4_expand_extra_isize+0x30d/0x400
[ 129.834571][ T6110] __ext4_mark_inode_dirty+0x46c/0x700
[ 129.834603][ T6110] ext4_evict_inode+0x80d/0xee0
[ 129.834636][ T6110] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.834666][ T6110] ? __pfx_ext4_evict_inode+0x10/0x10
[ 129.834692][ T6110] evict+0x501/0x9c0
[ 129.834720][ T6110] ? __pfx_evict+0x10/0x10
[ 129.834748][ T6110] ? iput+0x6d8/0x9d0
[ 129.834785][ T6110] ext4_orphan_cleanup+0xc20/0x1460
[ 129.834816][ T6110] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 129.834843][ T6110] ? ext4_register_li_request+0x640/0x720
[ 129.834867][ T6110] ? errseq_check_and_advance+0x66/0x120
[ 129.834899][ T6110] ext4_fill_super+0x57fa/0x60b0
[ 129.834947][ T6110] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.834987][ T6110] ? set_blocksize+0x219/0x450
[ 129.835014][ T6110] ? sb_set_blocksize+0x104/0x180
[ 129.835040][ T6110] ? setup_bdev_super+0x4c1/0x5b0
[ 129.835070][ T6110] get_tree_bdev_flags+0x40b/0x4d0
[ 129.835099][ T6110] ? __pfx_ext4_fill_super+0x10/0x10
[ 129.835135][ T6110] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 129.835164][ T6110] ? cap_capable+0x11f/0x460
[ 129.835192][ T6110] ? safesetid_security_capable+0xa9/0x1a0
[ 129.835225][ T6110] vfs_get_tree+0x8f/0x2b0
[ 129.835255][ T6110] do_new_mount+0x2a2/0x9e0
[ 129.835289][ T6110] ? ns_capable+0x8a/0xf0
[ 129.835316][ T6110] ? __pfx_do_new_mount+0x10/0x10
[ 129.835349][ T6110] ? path_mount+0x61c/0xfe0
[ 129.835383][ T6110] __se_sys_mount+0x317/0x410
[ 129.835419][ T6110] ? __pfx___se_sys_mount+0x10/0x10
[ 129.835454][ T6110] ? do_syscall_64+0xbe/0x3b0
[ 129.835476][ T6110] ? __x64_sys_mount+0x20/0xc0
[ 129.835510][ T6110] do_syscall_64+0xfa/0x3b0
[ 129.835530][ T6110] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.835566][ T6110] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.835590][ T6110] ? clear_bhb_loop+0x60/0xb0
[ 129.835614][ T6110] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.835656][ T6110] RIP: 0033:0x7f5a4f25034a
[ 129.835674][ T6110] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 129.835714][ T6110] RSP: 002b:00007ffe78bb4e28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 129.835736][ T6110] RAX: ffffffffffffffda RBX: 00007ffe78bb4eb0 RCX: 00007f5a4f25034a
[ 129.835754][ T6110] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffe78bb4e70
[ 129.835771][ T6110] RBP: 0000200000000180 R08: 00007ffe78bb4eb0 R09: 0000000000800700
[ 129.835787][ T6110] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 129.835802][ T6110] R13: 00007ffe78bb4e70 R14: 0000000000000473 R15: 0000200000000680
[ 129.835828][ T6110]
[ 129.836180][ T6110] Kernel Offset: disabled