Warning: Permanently added '10.128.1.122' (ED25519) to the list of known hosts.
[ 92.107214][ T44] cfg80211: failed to load regulatory.db
2025/11/25 12:45:32 parsed 1 programs
[ 97.687934][ T5802] cgroup: Unknown subsys name 'net'
[ 97.928989][ T5802] cgroup: Unknown subsys name 'cpuset'
[ 97.984009][ T5802] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 99.996852][ T5802] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 102.885800][ T61] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 102.887405][ T61] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 102.888078][ T61] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 102.889274][ T61] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 102.890038][ T61] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 106.197180][ T5852] chnl_net:caif_netlink_parms(): no params data found
[ 106.615869][ T5852] bridge0: port 1(bridge_slave_0) entered blocking state
[ 106.617807][ T5852] bridge0: port 1(bridge_slave_0) entered disabled state
[ 106.618049][ T5852] bridge_slave_0: entered allmulticast mode
[ 106.621099][ T5852] bridge_slave_0: entered promiscuous mode
[ 106.629414][ T5852] bridge0: port 2(bridge_slave_1) entered blocking state
[ 106.629730][ T5852] bridge0: port 2(bridge_slave_1) entered disabled state
[ 106.629934][ T5852] bridge_slave_1: entered allmulticast mode
[ 106.634277][ T5852] bridge_slave_1: entered promiscuous mode
[ 106.779140][ T5852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 106.785196][ T5852] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 107.045490][ T5852] team0: Port device team_slave_0 added
[ 107.048233][ T5852] team0: Port device team_slave_1 added
[ 107.399747][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 107.399766][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 107.399794][ T5852] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 107.484285][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 107.484303][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 107.484322][ T5852] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 107.682905][ T5852] hsr_slave_0: entered promiscuous mode
[ 107.686694][ T5852] hsr_slave_1: entered promiscuous mode
[ 108.159792][ T5852] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 108.275517][ T5852] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 108.298317][ T5852] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 108.317996][ T5852] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 108.456576][ T5852] 8021q: adding VLAN 0 to HW filter on device bond0
[ 108.479146][ T5852] 8021q: adding VLAN 0 to HW filter on device team0
[ 108.491598][ T994] bridge0: port 1(bridge_slave_0) entered blocking state
[ 108.492318][ T994] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 108.515060][ T994] bridge0: port 2(bridge_slave_1) entered blocking state
[ 108.515226][ T994] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 108.762412][ T5852] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 108.813057][ T5852] veth0_vlan: entered promiscuous mode
[ 108.826465][ T5852] veth1_vlan: entered promiscuous mode
[ 108.859345][ T5852] veth0_macvtap: entered promiscuous mode
[ 108.864862][ T5852] veth1_macvtap: entered promiscuous mode
[ 108.890073][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 108.906182][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 108.928236][ T994] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.929922][ T994] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.931044][ T994] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.931745][ T994] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 109.753091][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 110.045586][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 110.286620][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 111.278037][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 111.636813][ T2100] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.636845][ T2100] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.691667][ T994] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.691690][ T994] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.246808][ T12] bridge_slave_1: left allmulticast mode
[ 112.247029][ T12] bridge_slave_1: left promiscuous mode
[ 112.248960][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 112.334568][ T12] bridge_slave_0: left allmulticast mode
[ 112.334592][ T12] bridge_slave_0: left promiscuous mode
[ 112.334779][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 113.904161][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 113.974006][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 114.016021][ T12] bond0 (unregistering): Released all slaves
[ 114.493328][ T12] hsr_slave_0: left promiscuous mode
[ 114.544582][ T12] hsr_slave_1: left promiscuous mode
[ 114.545853][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 114.545954][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 114.595554][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 114.595584][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 114.666245][ T12] veth1_macvtap: left promiscuous mode
[ 114.666488][ T12] veth0_macvtap: left promiscuous mode
[ 114.666783][ T12] veth1_vlan: left promiscuous mode
[ 114.667469][ T12] veth0_vlan: left promiscuous mode
[ 116.703886][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 116.917969][ T12] team0 (unregistering): Port device team_slave_0 removed
2025/11/25 12:45:58 executed programs: 0
[ 119.976254][ T5116] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 119.979176][ T5116] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 119.980241][ T5116] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 119.983884][ T5116] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 119.995026][ T5116] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 120.946286][ T5943] chnl_net:caif_netlink_parms(): no params data found
[ 121.365577][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state
[ 121.365803][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state
[ 121.365981][ T5943] bridge_slave_0: entered allmulticast mode
[ 121.368879][ T5943] bridge_slave_0: entered promiscuous mode
[ 121.372525][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state
[ 121.372744][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state
[ 121.372912][ T5943] bridge_slave_1: entered allmulticast mode
[ 121.378332][ T5943] bridge_slave_1: entered promiscuous mode
[ 121.606548][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 121.610789][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 122.024973][ T5116] Bluetooth: hci0: command tx timeout
[ 122.128167][ T5943] team0: Port device team_slave_0 added
[ 122.217716][ T5943] team0: Port device team_slave_1 added
[ 122.777570][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 122.777588][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 122.777617][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 122.904210][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 122.904229][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 122.904257][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 123.141990][ T5943] hsr_slave_0: entered promiscuous mode
[ 123.142946][ T5943] hsr_slave_1: entered promiscuous mode
[ 124.103387][ T5116] Bluetooth: hci0: command tx timeout
[ 124.997259][ T5943] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 125.028087][ T5943] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 125.070749][ T5943] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 125.108580][ T5943] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 125.279219][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0
[ 125.329118][ T5943] 8021q: adding VLAN 0 to HW filter on device team0
[ 125.350269][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 125.350547][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 125.377440][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 125.377616][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 125.745187][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 125.822881][ T5943] veth0_vlan: entered promiscuous mode
[ 125.846218][ T5943] veth1_vlan: entered promiscuous mode
[ 125.899275][ T5943] veth0_macvtap: entered promiscuous mode
[ 125.911818][ T5943] veth1_macvtap: entered promiscuous mode
[ 125.948024][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 125.965110][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 125.982474][ T2100] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.994616][ T2100] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.996599][ T2100] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.997363][ T2100] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 126.184946][ T5116] Bluetooth: hci0: command tx timeout
[ 126.209909][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.209933][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.281784][ T3047] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.281808][ T3047] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/11/25 12:46:04 executed programs: 2
[ 126.490721][ T6060] loop0: detected capacity change from 0 to 512
[ 126.603831][ T6060]
[ 126.603843][ T6060] ======================================================
[ 126.603851][ T6060] WARNING: possible circular locking dependency detected
[ 126.603868][ T6060] syzkaller #0 Not tainted
[ 126.603878][ T6060] -------------------------[ 126.603878][ T6060] ------------------------------------------------------
[ 126.603886][ T6060] syz.0.17/6060 is trying to acquire lock:
[ 126.603897][ T6060] ffff88803c89cc58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[ 126.603963][ T6060]
[ 126.603963][ T6060] but task is already holding lock:
[ 126.603970][ T6060] ffff88805693d3a0 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[ 126.604018][ T6060]
[ 126.604018][ T6060] which lock already depends on the new lock.
[ 126.604018][ T6060]
[ 126.604025][ T6060]
[ 126.604025][ T6060] the existing dependency chain (in reverse order) is:
[ 126.604032][ T6060]
[ 126.604032][ T6060] -> #2 (&ei->xattr_sem){++++}-{4:4}:
[ 126.604058][ T6060] lock_acquire+0x120/0x360
[ 126.604084][ T6060] down_write+0x3a/0x50
[ 126.604102][ T6060] ext4_xattr_set_handle+0x165/0x1590
[ 126.604130][ T6060] ext4_initxattrs+0x9f/0x110
[ 126.604152][ T6060] security_inode_init_security+0x2a0/0x3f0
[ 126.604180][ T6060] __ext4_new_inode+0x3314/0x3cb0
[ 126.604208][ T6060] ext4_create+0x22d/0x460
[ 126.604249][ T6060] path_openat+0x1500/0x3840
[ 126.604270][ T6060] do_filp_open+0x1fa/0x410
[ 126.604297][ T6060] do_sys_openat2+0x121/0x1c0
[ 126.604315][ T6060] __x64_sys_openat+0x138/0x170
[ 126.604332][ T6060] do_syscall_64+0xfa/0xfa0
[ 126.604360][ T6060] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 126.604380][ T6060]
[ 126.604380][ T6060] -> #1 (jbd2_handle){++++}-{0:0}:
[ 126.604407][ T6060] lock_acquire+0x120/0x360
[ 126.604432][ T6060] start_this_handle+0x1fa7/0x21c0
[ 126.604458][ T6060] jbd2__journal_start+0x2c1/0x5b0
[ 126.604485][ T6060] __ext4_journal_start_sb+0x227/0x5c0
[ 126.604513][ T6060] ext4_do_writepages+0xf6f/0x4600
[ 126.604537][ T6060] ext4_writepages+0x205/0x350
[ 126.604555][ T6060] do_writepages+0x32e/0x550
[ 126.604573][ T6060] __writeback_single_inode+0x145/0x1000
[ 126.604596][ T6060] writeback_sb_inodes+0x6b7/0xf60
[ 126.604617][ T6060] __writeback_inodes_wb+0x111/0x240
[ 126.604639][ T6060] wb_writeback+0x44f/0xaf0
[ 126.604658][ T6060] wb_workfn+0xaf4/0xf00
[ 126.604674][ T6060] process_scheduled_works+0xae1/0x17b0
[ 126.604696][ T6060] worker_thread+0x8a0/0xda0
[ 126.604717][ T6060] kthread+0x711/0x8a0
[ 126.604743][ T6060] ret_from_fork+0x4bc/0x870
[ 126.604763][ T6060] ret_from_fork_asm+0x1a/0x30
[ 126.604782][ T6060]
[ 126.604782][ T6060] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 126.604812][ T6060] validate_chain+0xb9b/0x2140
[ 126.604829][ T6060] __lock_acquire+0xab9/0xd20
[ 126.604854][ T6060] lock_acquire+0x120/0x360
[ 126.604879][ T6060] percpu_down_read_internal+0x48/0x1d0
[ 126.604896][ T6060] ext4_writepages+0x1cc/0x350
[ 126.604914][ T6060] do_writepages+0x32e/0x550
[ 126.604932][ T6060] __writeback_single_inode+0x145/0x1000
[ 126.604955][ T6060] writeback_single_inode+0x1db/0x640
[ 126.604974][ T6060] write_inode_now+0x160/0x1d0
[ 126.604992][ T6060] iput+0x830/0xc50
[ 126.605017][ T6060] ext4_xattr_block_set+0x1fce/0x2ac0
[ 126.605043][ T6060] ext4_expand_extra_isize_ea+0x12da/0x1ea0
[ 126.605072][ T6060] __ext4_expand_extra_isize+0x30d/0x400
[ 126.605089][ T6060] __ext4_mark_inode_dirty+0x46c/0x700
[ 126.605110][ T6060] ext4_evict_inode+0x80d/0xee0
[ 126.605130][ T6060] evict+0x504/0x9c0
[ 126.605148][ T6060] ext4_orphan_cleanup+0xc20/0x1460
[ 126.605168][ T6060] ext4_fill_super+0x593b/0x61f0
[ 126.605186][ T6060] get_tree_bdev_flags+0x40e/0x4d0
[ 126.605209][ T6060] vfs_get_tree+0x92/0x2b0
[ 126.605231][ T6060] do_new_mount+0x302/0xa10
[ 126.605255][ T6060] __se_sys_mount+0x313/0x410
[ 126.605280][ T6060] do_syscall_64+0xfa/0xfa0
[ 126.605319][ T6060] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 126.605339][ T6060]
[ 126.605339][ T6060] other info that might help us debug this:
[ 126.605339][ T6060]
[ 126.605345][ T6060] Chain exists of:
[ 126.605345][ T6060] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 126.605345][ T6060]
[ 126.605380][ T6060] Possible unsafe locking scenario:
[ 126.605380][ T6060]
[ 126.605386][ T6060] CPU0 CPU1
[ 126.605393][ T6060] ---- ----
[ 126.605399][ T6060] lock(&ei->xattr_sem);
[ 126.605412][ T6060] lock(jbd2_handle);
[ 126.605427][ T6060] lock(&ei->xattr_sem);
[ 126.605441][ T6060] rlock(&sbi->s_writepages_rwsem);
[ 126.605454][ T6060]
[ 126.605454][ T6060] *** DEADLOCK ***
[ 126.605454][ T6060]
[ 126.605460][ T6060] 3 locks held by syz.0.17/6060:
[ 126.605472][ T6060] #0: ffff88803c89e0d0 (&type->s_umount_key#26/1){+.+.}-{4:4}, at: alloc_super+0x1ba/0x9a0
[ 126.605533][ T6060] #1: ffff88803c89e770 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2d6/0xee0
[ 126.605583][ T6060] #2: ffff88805693d3a0 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[ 126.605633][ T6060]
[ 126.605633][ T6060] stack backtrace:
[ 126.605661][ T6060] CPU: 0 UID: 0 PID: 6060 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 126.605685][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 126.605707][ T6060] Call Trace:
[ 126.605719][ T6060]
[ 126.605728][ T6060] dump_stack_lvl+0x189/0x250
[ 126.605763][ T6060] ? __pfx_dump_stack_lvl+0x10/0x10
[ 126.605795][ T6060] ? __pfx__printk+0x10/0x10
[ 126.605821][ T6060] ? print_lock_name+0xde/0x100
[ 126.605847][ T6060] print_circular_bug+0x2ee/0x310
[ 126.605869][ T6060] check_noncircular+0x134/0x160
[ 126.605893][ T6060] validate_chain+0xb9b/0x2140
[ 126.605918][ T6060] ? look_up_lock_class+0x74/0x170
[ 126.605949][ T6060] ? register_lock_class+0x51/0x320
[ 126.605980][ T6060] __lock_acquire+0xab9/0xd20
[ 126.606011][ T6060] ? ext4_writepages+0x1cc/0x350
[ 126.606032][ T6060] lock_acquire+0x120/0x360
[ 126.606059][ T6060] ? ext4_writepages+0x1cc/0x350
[ 126.606082][ T6060] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 126.606113][ T6060] ? lockdep_hardirqs_on+0x9c/0x150
[ 126.606145][ T6060] percpu_down_read_internal+0x48/0x1d0
[ 126.606165][ T6060] ? ext4_writepages+0x1cc/0x350
[ 126.606187][ T6060] ext4_writepages+0x1cc/0x350
[ 126.606210][ T6060] ? __pfx_ext4_writepages+0x10/0x10
[ 126.606231][ T6060] ? rt_mutex_slowunlock+0x493/0x8a0
[ 126.606263][ T6060] ? rt_spin_unlock+0x150/0x200
[ 126.606296][ T6060] ? rt_spin_unlock+0x161/0x200
[ 126.606321][ T6060] ? __pfx_ext4_writepages+0x10/0x10
[ 126.606343][ T6060] do_writepages+0x32e/0x550
[ 126.606366][ T6060] ? reacquire_held_locks+0x127/0x1d0
[ 126.606398][ T6060] ? rt_spin_lock+0x1c1/0x3e0
[ 126.606423][ T6060] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 126.606451][ T6060] __writeback_single_inode+0x145/0x1000
[ 126.606482][ T6060] writeback_single_inode+0x1db/0x640
[ 126.606507][ T6060] write_inode_now+0x160/0x1d0
[ 126.606529][ T6060] ? __pfx_write_inode_now+0x10/0x10
[ 126.606566][ T6060] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 126.606592][ T6060] ? rt_spin_unlock+0x150/0x200
[ 126.606617][ T6060] ? rt_spin_unlock+0x161/0x200
[ 126.606640][ T6060] iput+0x830/0xc50
[ 126.606672][ T6060] ext4_xattr_block_set+0x1fce/0x2ac0
[ 126.606718][ T6060] ? __pfx_ext4_xattr_block_set+0x10/0x10
[ 126.606748][ T6060] ? ext4_xattr_block_find+0x2d4/0x350
[ 126.606781][ T6060] ext4_expand_extra_isize_ea+0x12da/0x1ea0
[ 126.606828][ T6060] __ext4_expand_extra_isize+0x30d/0x400
[ 126.606852][ T6060] __ext4_mark_inode_dirty+0x46c/0x700
[ 126.606882][ T6060] ext4_evict_inode+0x80d/0xee0
[ 126.606913][ T6060] ? __pfx_ext4_evict_inode+0x10/0x10
[ 126.606936][ T6060] ? rt_spin_unlock+0x150/0x200
[ 126.606963][ T6060] ? rt_spin_unlock+0x161/0x200
[ 126.606988][ T6060] ? __pfx_ext4_evict_inode+0x10/0x10
[ 126.607012][ T6060] evict+0x504/0x9c0
[ 126.607036][ T6060] ? __pfx_evict+0x10/0x10
[ 126.607070][ T6060] ? rt_spin_unlock+0x161/0x200
[ 126.607095][ T6060] ? iput+0x946/0xc50
[ 126.607127][ T6060] ext4_orphan_cleanup+0xc20/0x1460
[ 126.607156][ T6060] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 126.607181][ T6060] ? ext4_register_li_request+0x640/0x720
[ 126.607203][ T6060] ? errseq_check_and_advance+0x66/0x120
[ 126.607230][ T6060] ext4_fill_super+0x593b/0x61f0
[ 126.607259][ T6060] ? __pfx_ext4_fill_super+0x10/0x10
[ 126.607277][ T6060] ? snprintf+0xda/0x120
[ 126.607307][ T6060] ? rt_spin_lock+0x1c1/0x3e0
[ 126.607333][ T6060] ? __pfx_snprintf+0x10/0x10
[ 126.607353][ T6060] ? set_blocksize+0x219/0x450
[ 126.607382][ T6060] ? rt_spin_unlock+0x150/0x200
[ 126.607408][ T6060] ? sb_set_blocksize+0x104/0x180
[ 126.607438][ T6060] ? setup_bdev_super+0x4c1/0x5b0
[ 126.607464][ T6060] get_tree_bdev_flags+0x40e/0x4d0
[ 126.607489][ T6060] ? __pfx_ext4_fill_super+0x10/0x10
[ 126.607509][ T6060] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 126.607533][ T6060] ? cap_capable+0x11f/0x460
[ 126.607552][ T6060] ? safesetid_security_capable+0xa9/0x1a0
[ 126.607576][ T6060] vfs_get_tree+0x92/0x2b0
[ 126.607602][ T6060] do_new_mount+0x302/0xa10
[ 126.607630][ T6060] ? safesetid_security_capable+0xa9/0x1a0
[ 126.607652][ T6060] ? __pfx_do_new_mount+0x10/0x10
[ 126.607680][ T6060] ? ns_capable+0x8a/0xf0
[ 126.607712][ T6060] __se_sys_mount+0x313/0x410
[ 126.607742][ T6060] ? __pfx___se_sys_mount+0x10/0x10
[ 126.607772][ T6060] ? do_syscall_64+0xbe/0xfa0
[ 126.607800][ T6060] ? __x64_sys_mount+0x20/0xc0
[ 126.607828][ T6060] do_syscall_64+0xfa/0xfa0
[ 126.607857][ T6060] ? lockdep_hardirqs_on+0x9c/0x150
[ 126.607885][ T6060] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 126.607905][ T6060] ? clear_bhb_loop+0x60/0xb0
[ 126.607926][ T6060] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 126.607945][ T6060] RIP: 0033:0x7f3b545d0eea
[ 126.607971][ T6060] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 126.607987][ T6060] RSP: 002b:00007ffd46f06998 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 126.608008][ T6060] RAX: ffffffffffffffda RBX: 00007ffd46f06a20 RCX: 00007f3b545d0eea
[ 126.608022][ T6060] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffd46f069e0
[ 126.608037][ T6060] RBP: 0000200000000180 R08: 00007ffd46f06a20 R09: 0000000000800718
[ 126.608051][ T6060] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 126.608065][ T6060] R13: 00007ffd46f069e0 R14: 000000000000046f R15: 0000200000000480
[ 126.608088][ T6060]
[ 126.633430][ T6060] ------------[ cut here ]------------
[ 126.633447][ T6060] EA inode 11 i_nlink=2
[ 126.633808][ T6060] WARNING: CPU: 1 PID: 6060 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x51a/0x5b0
[ 126.633848][ T6060] Modules linked in:
[ 126.633868][ T6060] CPU: 1 UID: 0 PID: 6060 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 126.633896][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 126.633909][ T6060] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[ 126.633934][ T6060] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 40 9b ff 8a 4c 89 e6 e8 57 92 03 ff 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 d3 3e 41 08 44 89 f9
[ 126.633952][ T6060] RSP: 0018:ffffc9000499f100 EFLAGS: 00010246
[ 126.633972][ T6060] RAX: f0d0e3023c4a5d00 RBX: 0000000000000001 RCX: ffff88802e5c1e00
[ 126.633989][ T6060] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 126.634003][ T6060] RBP: ffffc9000499f1f8 R08: 0000000000000000 R09: 0000000000000000
[ 126.634016][ T6060] R10: dffffc0000000000 R11: ffffed101712487b R12: 000000000000000b
[ 126.634033][ T6060] R13: ffff8880569d9028 R14: 1ffff1100ad3b1eb R15: ffff8880569d8f58
[ 126.634048][ T6060] FS: 00005555759b6500(0000) GS:ffff888126ef6000(0000) knlGS:0000000000000000
[ 126.634067][ T6060] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 126.634082][ T6060] CR2: 0000564cdc677138 CR3: 000000003c9ea000 CR4: 00000000003526f0
[ 126.634102][ T6060] Call Trace:
[ 126.634112][ T6060]
[ 126.634122][ T6060] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 126.634152][ T6060] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 126.634177][ T6060] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 126.634217][ T6060] ext4_xattr_set_entry+0xabb/0x1e20
[ 126.634262][ T6060] ext4_xattr_ibody_set+0x254/0x6a0
[ 126.634299][ T6060] ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[ 126.634361][ T6060] __ext4_expand_extra_isize+0x30d/0x400
[ 126.634388][ T6060] __ext4_mark_inode_dirty+0x46c/0x700
[ 126.634423][ T6060] ext4_evict_inode+0x80d/0xee0
[ 126.634457][ T6060] ? __pfx_ext4_evict_inode+0x10/0x10
[ 126.634483][ T6060] ? rt_spin_unlock+0x150/0x200
[ 126.634512][ T6060] ? rt_spin_unlock+0x161/0x200
[ 126.634538][ T6060] ? __pfx_ext4_evict_inode+0x10/0x10
[ 126.634564][ T6060] evict+0x504/0x9c0
[ 126.634592][ T6060] ? __pfx_evict+0x10/0x10
[ 126.634616][ T6060] ? rt_spin_unlock+0x161/0x200
[ 126.634643][ T6060] ? iput+0x946/0xc50
[ 126.634678][ T6060] ext4_orphan_cleanup+0xc20/0x1460
[ 126.634712][ T6060] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 126.634739][ T6060] ? ext4_register_li_request+0x640/0x720
[ 126.634766][ T6060] ? errseq_check_and_advance+0x66/0x120
[ 126.634794][ T6060] ext4_fill_super+0x593b/0x61f0
[ 126.634828][ T6060] ? __pfx_ext4_fill_super+0x10/0x10
[ 126.634848][ T6060] ? snprintf+0xda/0x120
[ 126.634871][ T6060] ? rt_spin_lock+0x1c1/0x3e0
[ 126.634919][ T6060] ? __pfx_snprintf+0x10/0x10
[ 126.634942][ T6060] ? set_blocksize+0x219/0x450
[ 126.634976][ T6060] ? rt_spin_unlock+0x150/0x200
[ 126.635005][ T6060] ? sb_set_blocksize+0x104/0x180
[ 126.635040][ T6060] ? setup_bdev_super+0x4c1/0x5b0
[ 126.635070][ T6060] get_tree_bdev_flags+0x40e/0x4d0
[ 126.635100][ T6060] ? __pfx_ext4_fill_super+0x10/0x10
[ 126.635123][ T6060] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 126.635153][ T6060] ? cap_capable+0x11f/0x460
[ 126.635175][ T6060] ? safesetid_security_capable+0xa9/0x1a0
[ 126.635203][ T6060] vfs_get_tree+0x92/0x2b0
[ 126.635234][ T6060] do_new_mount+0x302/0xa10
[ 126.635265][ T6060] ? safesetid_security_capable+0xa9/0x1a0
[ 126.635291][ T6060] ? __pfx_do_new_mount+0x10/0x10
[ 126.635328][ T6060] ? ns_capable+0x8a/0xf0
[ 126.635366][ T6060] __se_sys_mount+0x313/0x410
[ 126.635401][ T6060] ? __pfx___se_sys_mount+0x10/0x10
[ 126.635436][ T6060] ? do_syscall_64+0xbe/0xfa0
[ 126.635468][ T6060] ? __x64_sys_mount+0x20/0xc0
[ 126.635502][ T6060] do_syscall_64+0xfa/0xfa0
[ 126.635536][ T6060] ? lockdep_hardirqs_on+0x9c/0x150
[ 126.635571][ T6060] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 126.635596][ T6060] ? clear_bhb_loop+0x60/0xb0
[ 126.635622][ T6060] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 126.635646][ T6060] RIP: 0033:0x7f3b545d0eea
[ 126.635666][ T6060] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 126.635685][ T6060] RSP: 002b:00007ffd46f06998 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 126.635710][ T6060] RAX: ffffffffffffffda RBX: 00007ffd46f06a20 RCX: 00007f3b545d0eea
[ 126.635728][ T6060] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffd46f069e0
[ 126.635745][ T6060] RBP: 0000200000000180 R08: 00007ffd46f06a20 R09: 0000000000800718
[ 126.635762][ T6060] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 126.635776][ T6060] R13: 00007ffd46f069e0 R14: 000000000000046f R15: 0000200000000480
[ 126.635803][ T6060]
[ 126.635815][ T6060] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 126.635831][ T6060] CPU: 1 UID: 0 PID: 6060 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 126.635858][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 126.635872][ T6060] Call Trace:
[ 126.635881][ T6060]
[ 126.635889][ T6060] dump_stack_lvl+0x99/0x250
[ 126.635925][ T6060] ? __asan_memcpy+0x40/0x70
[ 126.635953][ T6060] ? __pfx_dump_stack_lvl+0x10/0x10
[ 126.635986][ T6060] ? __pfx__printk+0x10/0x10
[ 126.636021][ T6060] vpanic+0x237/0x6d0
[ 126.636044][ T6060] ? __pfx_vpanic+0x10/0x10
[ 126.636070][ T6060] panic+0xb9/0xc0
[ 126.636102][ T6060] ? __pfx_panic+0x10/0x10
[ 126.636131][ T6060] __warn+0x31b/0x4b0
[ 126.636152][ T6060] ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[ 126.636175][ T6060] ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[ 126.636198][ T6060] report_bug+0x2be/0x4f0
[ 126.636228][ T6060] ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[ 126.636251][ T6060] ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[ 126.636272][ T6060] ? ext4_xattr_inode_update_ref+0x51c/0x5b0
[ 126.636295][ T6060] handle_bug+0x84/0x160
[ 126.636324][ T6060] exc_invalid_op+0x1a/0x50
[ 126.636347][ T6060] asm_exc_invalid_op+0x1a/0x20
[ 126.636368][ T6060] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[ 126.636391][ T6060] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 40 9b ff 8a 4c 89 e6 e8 57 92 03 ff 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 d3 3e 41 08 44 89 f9
[ 126.636410][ T6060] RSP: 0018:ffffc9000499f100 EFLAGS: 00010246
[ 126.636428][ T6060] RAX: f0d0e3023c4a5d00 RBX: 0000000000000001 RCX: ffff88802e5c1e00
[ 126.636445][ T6060] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 126.636457][ T6060] RBP: ffffc9000499f1f8 R08: 0000000000000000 R09: 0000000000000000
[ 126.636473][ T6060] R10: dffffc0000000000 R11: ffffed101712487b R12: 000000000000000b
[ 126.636489][ T6060] R13: ffff8880569d9028 R14: 1ffff1100ad3b1eb R15: ffff8880569d8f58
[ 126.636516][ T6060] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 126.636543][ T6060] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 126.636568][ T6060] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 126.636607][ T6060] ext4_xattr_set_entry+0xabb/0x1e20
[ 126.636652][ T6060] ext4_xattr_ibody_set+0x254/0x6a0
[ 126.636690][ T6060] ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[ 126.636744][ T6060] __ext4_expand_extra_isize+0x30d/0x400
[ 126.636771][ T6060] __ext4_mark_inode_dirty+0x46c/0x700
[ 126.636806][ T6060] ext4_evict_inode+0x80d/0xee0
[ 126.636840][ T6060] ? __pfx_ext4_evict_inode+0x10/0x10
[ 126.636864][ T6060] ? rt_spin_unlock+0x150/0x200
[ 126.636894][ T6060] ? rt_spin_unlock+0x161/0x200
[ 126.636921][ T6060] ? __pfx_ext4_evict_inode+0x10/0x10
[ 126.636949][ T6060] evict+0x504/0x9c0
[ 126.636978][ T6060] ? __pfx_evict+0x10/0x10
[ 126.637002][ T6060] ? rt_spin_unlock+0x161/0x200
[ 126.637029][ T6060] ? iput+0x946/0xc50
[ 126.637065][ T6060] ext4_orphan_cleanup+0xc20/0x1460
[ 126.637097][ T6060] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 126.637126][ T6060] ? ext4_register_li_request+0x640/0x720
[ 126.637151][ T6060] ? errseq_check_and_advance+0x66/0x120
[ 126.637179][ T6060] ext4_fill_super+0x593b/0x61f0
[ 126.637214][ T6060] ? __pfx_ext4_fill_super+0x10/0x10
[ 126.637234][ T6060] ? snprintf+0xda/0x120
[ 126.637258][ T6060] ? rt_spin_lock+0x1c1/0x3e0
[ 126.637286][ T6060] ? __pfx_snprintf+0x10/0x10
[ 126.637315][ T6060] ? set_blocksize+0x219/0x450
[ 126.637347][ T6060] ? rt_spin_unlock+0x150/0x200
[ 126.637376][ T6060] ? sb_set_blocksize+0x104/0x180
[ 126.637410][ T6060] ? setup_bdev_super+0x4c1/0x5b0
[ 126.637439][ T6060] get_tree_bdev_flags+0x40e/0x4d0
[ 126.637469][ T6060] ? __pfx_ext4_fill_super+0x10/0x10
[ 126.637491][ T6060] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 126.637519][ T6060] ? cap_capable+0x11f/0x460
[ 126.637541][ T6060] ? safesetid_security_capable+0xa9/0x1a0
[ 126.637567][ T6060] vfs_get_tree+0x92/0x2b0
[ 126.637596][ T6060] do_new_mount+0x302/0xa10
[ 126.637625][ T6060] ? safesetid_security_capable+0xa9/0x1a0
[ 126.637651][ T6060] ? __pfx_do_new_mount+0x10/0x10
[ 126.637682][ T6060] ? ns_capable+0x8a/0xf0
[ 126.637717][ T6060] __se_sys_mount+0x313/0x410
[ 126.637756][ T6060] ? __pfx___se_sys_mount+0x10/0x10
[ 126.637790][ T6060] ? do_syscall_64+0xbe/0xfa0
[ 126.637823][ T6060] ? __x64_sys_mount+0x20/0xc0
[ 126.637854][ T6060] do_syscall_64+0xfa/0xfa0
[ 126.637886][ T6060] ? lockdep_hardirqs_on+0x9c/0x150
[ 126.637918][ T6060] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 126.637940][ T6060] ? clear_bhb_loop+0x60/0xb0
[ 126.637966][ T6060] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 126.637987][ T6060] RIP: 0033:0x7f3b545d0eea
[ 126.638004][ T6060] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 126.638023][ T6060] RSP: 002b:00007ffd46f06998 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 126.638045][ T6060] RAX: ffffffffffffffda RBX: 00007ffd46f06a20 RCX: 00007f3b545d0eea
[ 126.638061][ T6060] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffd46f069e0
[ 126.638078][ T6060] RBP: 0000200000000180 R08: 00007ffd46f06a20 R09: 0000000000800718
[ 126.638094][ T6060] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 126.638109][ T6060] R13: 00007ffd46f069e0 R14: 000000000000046f R15: 0000200000000480
[ 126.638134][ T6060]
[ 126.638536][ T6060] Kernel Offset: disabled