[ 9.205966][ T3991] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: [ 9.235568][ T11] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 9.243097][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready OK Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.114' (ED25519) to the list of known hosts. 1970/01/01 00:00:27 parsed 1 programs syzkaller login: [ 29.009847][ T4325] cgroup: Unknown subsys name 'net' [ 29.303333][ T4325] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 29.575005][ T4325] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 35.392074][ T4374] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 35.393438][ T4374] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 35.394738][ T4374] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 35.396283][ T4374] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 35.397703][ T4374] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 35.398877][ T4374] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 35.608422][ T4386] chnl_net:caif_netlink_parms(): no params data found [ 35.627480][ T4386] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.628617][ T4386] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.630073][ T4386] device bridge_slave_0 entered promiscuous mode [ 35.633249][ T4386] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.634353][ T4386] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.635864][ T4386] device bridge_slave_1 entered promiscuous mode [ 35.643480][ T4386] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.646301][ T4386] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.653674][ T4386] team0: Port device team_slave_0 added [ 35.655195][ T4386] team0: Port device team_slave_1 added [ 35.661558][ T4386] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.662693][ T4386] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.666456][ T4386] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.668798][ T4386] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.669805][ T4386] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.674122][ T4386] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.751758][ T4386] device hsr_slave_0 entered promiscuous mode [ 35.791059][ T4386] device hsr_slave_1 entered promiscuous mode [ 35.879371][ T4386] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 35.912870][ T4386] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 35.983497][ T4386] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 36.022727][ T4386] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 36.080159][ T4386] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.081318][ T4386] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.082689][ T4386] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.083832][ T4386] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.101714][ T4386] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.105642][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.107972][ T250] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.109572][ T250] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.127060][ T4386] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.130355][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.132240][ T250] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.133231][ T250] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.136169][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.137771][ T250] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.138725][ T250] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.145145][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 36.146776][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 36.150169][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 36.153531][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 36.156234][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 36.158534][ T4386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 36.210420][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 36.211923][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 36.215386][ T4386] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.220276][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.236441][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.238065][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.239283][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.241347][ T4386] device veth0_vlan entered promiscuous mode [ 36.244674][ T4386] device veth1_vlan entered promiscuous mode [ 36.250582][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 36.252642][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 36.253968][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.256414][ T4386] device veth0_macvtap entered promiscuous mode [ 36.258950][ T4386] device veth1_macvtap entered promiscuous mode [ 36.264726][ T4386] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.265923][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 36.267798][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 36.270666][ T4386] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.274219][ T4386] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.275635][ T4386] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.276979][ T4386] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.278323][ T4386] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.281905][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.377518][ T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.378831][ T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.393746][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 36.397281][ T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.398437][ T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.400181][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:00:36 executed programs: 0 [ 36.748659][ T4374] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 36.750105][ T4374] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 36.751904][ T4374] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 36.753390][ T4374] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 36.754812][ T4374] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 36.756139][ T4374] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 37.032792][ T4441] chnl_net:caif_netlink_parms(): no params data found [ 37.049369][ T4441] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.050487][ T4441] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.052391][ T4441] device bridge_slave_0 entered promiscuous mode [ 37.054757][ T4441] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.055851][ T4441] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.057400][ T4441] device bridge_slave_1 entered promiscuous mode [ 37.064553][ T4441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 37.066974][ T4441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 37.075602][ T4441] team0: Port device team_slave_0 added [ 37.077259][ T4441] team0: Port device team_slave_1 added [ 37.083124][ T4441] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.084218][ T4441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.088268][ T4441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.090426][ T4441] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.091754][ T4441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.095848][ T4441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.133284][ T4441] device hsr_slave_0 entered promiscuous mode [ 37.170979][ T4441] device hsr_slave_1 entered promiscuous mode [ 37.211469][ T4441] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 37.212739][ T4441] Cannot create hsr debugfs directory [ 37.492742][ T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 38.811038][ T47] Bluetooth: hci0: command 0x0409 tx timeout [ 39.762136][ T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.890852][ T47] Bluetooth: hci0: command 0x041b tx timeout [ 41.921843][ T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 42.012872][ T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 42.975029][ T4441] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 42.980820][ T4374] Bluetooth: hci0: command 0x040f tx timeout [ 43.052880][ T4441] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 43.091768][ T4441] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 43.172704][ T4441] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 43.281774][ T4441] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.285148][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.286775][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.289894][ T4441] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.293228][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.294888][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.296414][ T250] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.297558][ T250] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.299039][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 43.363627][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.365294][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.366635][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.367787][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.371396][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 43.373987][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 43.376586][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 43.378369][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.379880][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 43.383529][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 43.385097][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.387611][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 43.389153][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.392487][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 43.394068][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.396282][ T4441] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 43.477064][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 43.478396][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 43.481345][ T4441] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.487243][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 43.488887][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 43.495304][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 43.496740][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 43.498301][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 43.499825][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 43.502825][ T4441] device veth0_vlan entered promiscuous mode [ 43.505805][ T4441] device veth1_vlan entered promiscuous mode [ 43.515038][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 43.516540][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 43.518063][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 43.519517][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 43.522616][ T4441] device veth0_macvtap entered promiscuous mode [ 43.524782][ T4441] device veth1_macvtap entered promiscuous mode [ 43.528822][ T4441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 43.530491][ T4441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 43.533206][ T4441] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 43.534257][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 43.535757][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 43.537335][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 43.538868][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 43.541290][ T4441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 43.542774][ T4441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 43.544776][ T4441] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 43.545940][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 43.547643][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 43.550990][ T4441] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.552265][ T4441] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.553492][ T4441] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.554729][ T4441] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.875044][ T1643] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 43.876354][ T1643] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 43.879309][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 43.887274][ T250] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 43.888462][ T250] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 43.890159][ T1643] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 44.049567][ T4513] loop0: detected capacity change from 0 to 32768 [ 44.057505][ T4513] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 44.058789][ T4513] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 44.068277][ T4513] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 44.070602][ T22] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 44.071810][ T22] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 44.083985][ T22] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 12ms [ 44.087036][ T22] gfs2: fsid=syz:syz.0: jid=0: Done [ 44.088243][ T4513] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 44.204373][ T4441] ------------[ cut here ]------------ [ 44.205322][ T4441] WARNING: CPU: 0 PID: 4441 at include/linux/backing-dev.h:247 __folio_mark_dirty+0x8a0/0xce0 [ 44.206856][ T4441] Modules linked in: [ 44.207414][ T4441] CPU: 0 PID: 4441 Comm: syz-executor Not tainted syzkaller #0 [ 44.208552][ T4441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 44.210000][ T4441] pstate: 824000c5 (Nzcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 44.211066][ T4441] pc : __folio_mark_dirty+0x8a0/0xce0 [ 44.211825][ T4441] lr : __folio_mark_dirty+0x8a0/0xce0 [ 44.212640][ T4441] sp : ffff8000210376e0 [ 44.213286][ T4441] x29: ffff800021037700 x28: 1fffff80006ee6a8 x27: dfff800000000000 [ 44.214459][ T4441] x26: 0000000000000000 x25: ffff0000c058be90 x24: 0000000000000001 [ 44.215636][ T4441] x23: 0000000000000000 x22: fffffc0003773548 x21: 1fffe000180b17d2 [ 44.216797][ T4441] x20: ffff0000c908a250 x19: fffffc0003773540 x18: ffff800011abbcc0 [ 44.218034][ T4441] x17: ffff8000181f9000 x16: ffff8000082d10fc x15: ffff800017cda000 [ 44.219213][ T4441] x14: ffff0000d6722658 x13: ffff0000d67226d0 x12: 0000000000ff0100 [ 44.220545][ T4441] x11: ff008000086fbd44 x10: 0000000000000000 x9 : ffff8000086fbd44 [ 44.221868][ T4441] x8 : ffff0000d6721bc0 x7 : 0000000000000000 x6 : 0000000000000000 [ 44.223143][ T4441] x5 : 0000000000000020 x4 : 0000000000000000 x3 : ffff800008a46b60 [ 44.224458][ T4441] x2 : ffff0000cee32060 x1 : 0000000000000000 x0 : 0000000000000000 [ 44.225742][ T4441] Call trace: [ 44.226186][ T4441] __folio_mark_dirty+0x8a0/0xce0 [ 44.226949][ T4441] mark_buffer_dirty+0x2b8/0x5cc [ 44.227694][ T4441] gfs2_unpin+0x120/0x914 [ 44.228367][ T4441] buf_lo_after_commit+0x140/0x188 [ 44.229127][ T4441] gfs2_log_flush+0xbc8/0x1aa0 [ 44.229844][ T4441] gfs2_kill_sb+0x5c/0xd4 [ 44.230499][ T4441] deactivate_locked_super+0xac/0x124 [ 44.231289][ T4441] deactivate_super+0xe8/0x108 [ 44.231970][ T4441] cleanup_mnt+0x37c/0x404 [ 44.232636][ T4441] __cleanup_mnt+0x20/0x30 [ 44.233280][ T4441] task_work_run+0x1ec/0x270 [ 44.234005][ T4441] do_notify_resume+0x2038/0x2b28 [ 44.234767][ T4441] el0_svc+0x98/0x138 [ 44.235373][ T4441] el0t_64_sync_handler+0x84/0xf0 [ 44.236146][ T4441] el0t_64_sync+0x18c/0x190 [ 44.236830][ T4441] irq event stamp: 162034 [ 44.237457][ T4441] hardirqs last enabled at (162033): [] folio_memcg_lock+0xe8/0x1fc [ 44.238887][ T4441] hardirqs last disabled at (162034): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 44.240305][ T4441] softirqs last enabled at (161728): [] local_bh_enable+0x10/0x34 [ 44.241661][ T4441] softirqs last disabled at (161726): [] local_bh_disable+0x10/0x34 [ 44.243071][ T4441] ---[ end trace 0000000000000000 ]--- [ 44.246696][ T4441] ------------[ cut here ]------------ [ 44.247638][ T4441] WARNING: CPU: 1 PID: 4441 at include/linux/backing-dev.h:247 __folio_start_writeback+0x868/0xa68 [ 44.249456][ T4441] Modules linked in: [ 44.250095][ T4441] CPU: 1 PID: 4441 Comm: syz-executor Tainted: G W syzkaller #0 [ 44.251550][ T4441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 44.253309][ T4441] pstate: 824000c5 (Nzcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 44.254533][ T4441] pc : __folio_start_writeback+0x868/0xa68 [ 44.255493][ T4441] lr : __folio_start_writeback+0x868/0xa68 [ 44.256423][ T4441] sp : ffff800021037180 [ 44.257108][ T4441] x29: ffff800021037260 x28: dfff800000000000 x27: 0000000000000000 [ 44.258361][ T4441] x26: ffff700004206e38 x25: 0000000000000000 x24: ffff0000c908a250 [ 44.259554][ T4441] x23: ffff8000210371e0 x22: ffff0000c058bce8 x21: 0000000000000001 [ 44.260826][ T4441] x20: fffffc0003773548 x19: fffffc0003773540 x18: ffff800011abbcc0 [ 44.262071][ T4441] x17: ffff8000181f9000 x16: ffff8000082d10fc x15: 0000000000000000 [ 44.263319][ T4441] x14: 0000000000000406 x13: 1ffff00002a180b1 x12: 0000000000ff0100 [ 44.264542][ T4441] x11: ff008000086fe25c x10: 0000000000000000 x9 : ffff8000086fe25c [ 44.265699][ T4441] x8 : ffff0000d6721bc0 x7 : ffff8000086fdcdc x6 : 0000000000000000 [ 44.266899][ T4441] x5 : 0000000000000080 x4 : 0000000000000001 x3 : ffff8000086fdd1c [ 44.268073][ T4441] x2 : 0000000000000001 x1 : 0000000000000000 x0 : 0000000000000000 [ 44.269250][ T4441] Call trace: [ 44.269769][ T4441] __folio_start_writeback+0x868/0xa68 [ 44.270625][ T4441] set_page_writeback+0x5c/0x7c [ 44.271356][ T4441] gfs2_aspace_writepage+0x520/0x6e8 [ 44.272149][ T4441] __gfs2_writepage+0x70/0x18c [ 44.272853][ T4441] write_cache_pages+0x73c/0xdd4 [ 44.273598][ T4441] gfs2_ail1_flush+0x7c0/0xa00 [ 44.274305][ T4441] empty_ail1_list+0x110/0x1ec [ 44.275012][ T4441] gfs2_log_flush+0x1258/0x1aa0 [ 44.275736][ T4441] gfs2_kill_sb+0x5c/0xd4 [ 44.276404][ T4441] deactivate_locked_super+0xac/0x124 [ 44.277188][ T4441] deactivate_super+0xe8/0x108 [ 44.277890][ T4441] cleanup_mnt+0x37c/0x404 [ 44.278525][ T4441] __cleanup_mnt+0x20/0x30 [ 44.279162][ T4441] task_work_run+0x1ec/0x270 [ 44.279839][ T4441] do_notify_resume+0x2038/0x2b28 [ 44.280580][ T4441] el0_svc+0x98/0x138 [ 44.281158][ T4441] el0t_64_sync_handler+0x84/0xf0 [ 44.281957][ T4441] el0t_64_sync+0x18c/0x190 [ 44.282611][ T4441] irq event stamp: 162184 [ 44.283241][ T4441] hardirqs last enabled at (162183): [] folio_memcg_lock+0xe8/0x1fc [ 44.284695][ T4441] hardirqs last disabled at (162184): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 44.286083][ T4441] softirqs last enabled at (162144): [] handle_softirqs+0xaf8/0xc6c [ 44.287499][ T4441] softirqs last disabled at (162037): [] __do_softirq+0x14/0x20 [ 44.288768][ T4441] ---[ end trace 0000000000000000 ]--- [ 44.293438][ C1] ------------[ cut here ]------------ [ 44.294390][ C1] WARNING: CPU: 1 PID: 21 at include/linux/backing-dev.h:247 __folio_end_writeback+0x7d4/0x9e0 [ 44.295934][ C1] Modules linked in: [ 44.296546][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W syzkaller #0 [ 44.297856][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 44.299247][ C1] pstate: 424000c5 (nZcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 44.300413][ C1] pc : __folio_end_writeback+0x7d4/0x9e0 [ 44.301336][ C1] lr : __folio_end_writeback+0x7d4/0x9e0 [ 44.302304][ C1] sp : ffff80001c937960 [ 44.302971][ C1] x29: ffff80001c937980 x28: dfff800000000000 x27: ffff0000c058bce8 [ 44.304162][ C1] x26: 0000000000000000 x25: 05ffd60000002052 x24: 1fffff80006a8020 [ 44.305321][ C1] x23: 0000000000000001 x22: ffff0000c90882a0 x21: ffff0000c90882a8 [ 44.306511][ C1] x20: 0000000000000001 x19: fffffc0003540100 x18: ffff800011abbcc0 [ 44.307672][ C1] x17: 1fffe00033edbb7e x16: ffff8000082d10fc x15: 0000000000000000 [ 44.308850][ C1] x14: 0000000000000002 x13: 1ffff00002a180b1 x12: 0000000000ff0100 [ 44.310010][ C1] x11: ff008000086fd7e8 x10: 0000000000000000 x9 : ffff8000086fd7e8 [ 44.311210][ C1] x8 : ffff0000c0a51bc0 x7 : 0000000000000000 x6 : 0000000000000000 [ 44.312326][ C1] x5 : 0000000000000080 x4 : 0000000000000000 x3 : 0000000000000010 [ 44.313449][ C1] x2 : 0000000000000008 x1 : 0000000000000000 x0 : 0000000000000000 [ 44.314670][ C1] Call trace: [ 44.315189][ C1] __folio_end_writeback+0x7d4/0x9e0 [ 44.315953][ C1] folio_end_writeback+0x12c/0x41c [ 44.316739][ C1] end_page_writeback+0x58/0x74 [ 44.317608][ C1] end_buffer_async_write+0x32c/0x508 [ 44.318417][ C1] end_bio_bh_io_sync+0xb0/0x1e0 [ 44.319215][ C1] bio_endio+0x770/0x7b4 [ 44.319819][ C1] blk_update_request+0x49c/0xbec [ 44.320527][ C1] blk_mq_end_request+0x54/0x88 [ 44.321193][ C1] lo_complete_rq+0x1ec/0x250 [ 44.321831][ C1] blk_done_softirq+0x11c/0x168 [ 44.322570][ C1] handle_softirqs+0x318/0xc6c [ 44.323434][ C1] run_ksoftirqd+0x7c/0x2a0 [ 44.324140][ C1] smpboot_thread_fn+0x4b0/0x964 [ 44.324869][ C1] kthread+0x250/0x2d8 [ 44.325453][ C1] ret_from_fork+0x10/0x20 [ 44.326089][ C1] irq event stamp: 303165 [ 44.326716][ C1] hardirqs last enabled at (303164): [] folio_memcg_lock+0xe8/0x1fc [ 44.328126][ C1] hardirqs last disabled at (303165): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 44.329514][ C1] softirqs last enabled at (303152): [] handle_softirqs+0xaf8/0xc6c [ 44.330805][ C1] softirqs last disabled at (303159): [] run_ksoftirqd+0x7c/0x2a0 [ 44.332134][ C1] ---[ end trace 0000000000000000 ]---