Warning: Permanently added '10.128.0.74' (ED25519) to the list of known hosts. 1970/01/01 00:01:28 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:29 parsed 1 programs [ 91.568618][ T4565] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 99.876784][ T4604] chnl_net:caif_netlink_parms(): no params data found [ 99.946554][ T4604] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.948678][ T4604] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.956855][ T4604] device bridge_slave_0 entered promiscuous mode [ 99.960912][ T4604] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.963044][ T4604] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.965709][ T4604] device bridge_slave_1 entered promiscuous mode [ 99.982595][ T4604] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 99.986952][ T4604] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.004188][ T4604] team0: Port device team_slave_0 added [ 100.008889][ T4604] team0: Port device team_slave_1 added [ 100.022061][ T4604] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 100.024081][ T4604] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.032386][ T4604] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 100.036676][ T4604] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 100.038553][ T4604] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 100.045893][ T4604] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.123651][ T4604] device hsr_slave_0 entered promiscuous mode [ 100.162366][ T4604] device hsr_slave_1 entered promiscuous mode [ 100.982024][ T4604] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 101.022064][ T4604] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 101.062148][ T4604] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 101.104967][ T4604] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 101.204204][ T4604] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.212297][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 101.214852][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 101.222140][ T4604] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.226926][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 101.229713][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 101.243333][ T1600] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.245366][ T1600] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.267471][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 101.274481][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 101.281751][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 101.284379][ T1600] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.286280][ T1600] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.291960][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 101.318204][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 101.322207][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 101.325097][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 101.327874][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 101.331388][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 101.334098][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 101.336757][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 101.339638][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 101.351923][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 101.354622][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 101.359971][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 101.441562][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 101.443755][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 101.449448][ T4604] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.469738][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 101.481383][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 101.504685][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 101.507387][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 101.512655][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 101.515559][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 101.519910][ T4604] device veth0_vlan entered promiscuous mode [ 101.527407][ T4604] device veth1_vlan entered promiscuous mode [ 101.544026][ T335] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 101.546705][ T335] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 101.549243][ T335] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 101.553652][ T335] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 101.558247][ T4604] device veth0_macvtap entered promiscuous mode [ 101.564281][ T4604] device veth1_macvtap entered promiscuous mode [ 101.574371][ T4604] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.576486][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 101.579144][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 101.583015][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 101.585747][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 101.592279][ T4604] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.594396][ T335] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 101.600716][ T335] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 101.605195][ T4604] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.607528][ T4604] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.609936][ T4604] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.613905][ T4604] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.795710][ T335] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.797891][ T335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.802727][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 101.816313][ T335] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.818516][ T335] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.824279][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:42 executed programs: 0 [ 103.176868][ T4808] chnl_net:caif_netlink_parms(): no params data found [ 103.222069][ T4808] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.224110][ T4808] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.226637][ T4808] device bridge_slave_0 entered promiscuous mode [ 103.230427][ T4808] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.232393][ T4808] bridge0: port 2(bridge_slave_1) entered disabled state [ 103.234850][ T4808] device bridge_slave_1 entered promiscuous mode [ 103.254122][ T4808] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 103.258672][ T4808] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 103.276495][ T4808] team0: Port device team_slave_0 added [ 103.280971][ T4808] team0: Port device team_slave_1 added [ 103.295732][ T4808] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.297555][ T4808] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.304854][ T4808] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.309117][ T4808] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.311178][ T4808] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.318107][ T4808] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.372665][ T4808] device hsr_slave_0 entered promiscuous mode [ 103.420869][ T4808] device hsr_slave_1 entered promiscuous mode [ 103.451441][ T4808] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 103.453654][ T4808] Cannot create hsr debugfs directory [ 103.550056][ T4808] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.110509][ T7] Bluetooth: hci0: command 0x0409 tx timeout [ 106.579001][ T4808] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.619484][ T4808] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.698850][ T4808] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.834688][ T4808] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 106.873253][ T4808] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 106.902950][ T4808] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 106.952558][ T4808] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 107.082188][ T4808] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.090043][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 107.096787][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 107.101968][ T4808] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.107949][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.112196][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.114933][ T1600] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.117243][ T1600] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.121348][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 107.125379][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 107.128188][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 107.131931][ T1600] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.133905][ T1600] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.138659][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 107.178416][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 107.190774][ T4113] Bluetooth: hci0: command 0x041b tx timeout [ 107.194680][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 107.202330][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 107.205514][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 107.214827][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 107.221359][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 107.232425][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 107.235188][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 107.243485][ T4808] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 107.247110][ T4808] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 107.253531][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 107.256395][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 107.339709][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 107.343569][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 107.350452][ T4808] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 107.397417][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 107.400830][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 107.421370][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 107.424193][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 107.427241][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 107.434501][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 107.439703][ T4808] device veth0_vlan entered promiscuous mode [ 107.447797][ T4808] device veth1_vlan entered promiscuous mode [ 107.466020][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 107.468766][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 107.474786][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 107.481455][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 107.486249][ T4808] device veth0_macvtap entered promiscuous mode [ 107.491430][ T4808] device veth1_macvtap entered promiscuous mode [ 107.505192][ T4808] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.508293][ T4808] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.516680][ T4808] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.519348][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 107.523750][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 107.526526][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 107.530106][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 107.536078][ T4808] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.539298][ T4808] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.543786][ T4808] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.546750][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 107.549724][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 107.584593][ T4808] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.587110][ T4808] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.589568][ T4808] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.592778][ T4808] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.662281][ T335] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.669310][ T335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.676597][ T1600] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 107.685428][ T335] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.690974][ T335] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.698522][ T335] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 107.742666][ T5001] loop0: detected capacity change from 0 to 128 [ 107.751043][ T5001] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.753196][ T5001] Bad inode number on dev loop0: 2 is out of range [ 107.754909][ T5001] SysV FS: get root inode failed [ 107.756207][ T5001] oldfs: cannot read superblock [ 107.758031][ T5001] ------------[ cut here ]------------ [ 107.759673][ T5001] VFS: brelse: Trying to free free buffer [ 107.761337][ T5001] WARNING: CPU: 0 PID: 5001 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.763851][ T5001] Modules linked in: [ 107.764992][ T5001] CPU: 0 PID: 5001 Comm: syz.0.16 Not tainted 5.15.181-syzkaller #0 [ 107.767309][ T5001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 107.770314][ T5001] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.772656][ T5001] pc : invalidate_bh_lru+0x128/0x234 [ 107.774155][ T5001] lr : invalidate_bh_lru+0x128/0x234 [ 107.775691][ T5001] sp : ffff80001f1d76e0 [ 107.776943][ T5001] x29: ffff80001f1d76e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 107.779277][ T5001] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 107.781588][ T5001] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe97a0 [ 107.784024][ T5001] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 107.786359][ T5001] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 107.788830][ T5001] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.791416][ T5001] x11: 0000000000000002 x10: 0000000000000000 x9 : 35474afc03fdcb00 [ 107.794010][ T5001] x8 : 35474afc03fdcb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.796427][ T5001] x5 : ffff80001f1d6fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 107.798701][ T5001] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 107.801071][ T5001] Call trace: [ 107.801997][ T5001] invalidate_bh_lru+0x128/0x234 [ 107.803468][ T5001] smp_call_function_many_cond+0xa50/0xeb0 [ 107.805047][ T5001] on_each_cpu_cond_mask+0x5c/0xc4 [ 107.806564][ T5001] invalidate_bh_lrus+0x34/0x40 [ 107.807959][ T5001] blkdev_flush_mapping+0x168/0x31c [ 107.809530][ T5001] blkdev_put+0x490/0x6ac [ 107.810773][ T5001] kill_block_super+0x98/0xdc [ 107.812149][ T5001] deactivate_locked_super+0xb8/0x13c [ 107.813728][ T5001] mount_bdev+0x284/0x358 [ 107.814910][ T5001] sysv_mount+0x44/0x58 [ 107.816111][ T5001] legacy_get_tree+0xd4/0x16c [ 107.817455][ T5001] vfs_get_tree+0x90/0x274 [ 107.818650][ T5001] do_new_mount+0x228/0x810 [ 107.820017][ T5001] path_mount+0x5b4/0x1000 [ 107.821415][ T5001] __arm64_sys_mount+0x514/0x5e4 [ 107.822912][ T5001] invoke_syscall+0x98/0x2b8 [ 107.824318][ T5001] el0_svc_common+0x138/0x258 [ 107.825587][ T5001] do_el0_svc+0x58/0x14c [ 107.826747][ T5001] el0_svc+0x78/0x1e0 [ 107.827906][ T5001] el0t_64_sync_handler+0xcc/0xe4 [ 107.829359][ T5001] el0t_64_sync+0x1a0/0x1a4 [ 107.830652][ T5001] irq event stamp: 1280 [ 107.831803][ T5001] hardirqs last enabled at (1279): [] kasan_quarantine_put+0xc4/0x204 [ 107.834755][ T5001] hardirqs last disabled at (1280): [] smp_call_function_many_cond+0xa44/0xeb0 [ 107.837813][ T5001] softirqs last enabled at (1024): [] local_bh_enable+0x10/0x34 [ 107.840540][ T5001] softirqs last disabled at (1022): [] local_bh_disable+0x10/0x34 [ 107.843320][ T5001] ---[ end trace 79b29bec42893813 ]--- [ 107.957435][ T5003] loop0: detected capacity change from 0 to 128 [ 107.993534][ T5003] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.995573][ T5003] Bad inode number on dev loop0: 2 is out of range [ 107.997364][ T5003] SysV FS: get root inode failed [ 107.998773][ T5003] oldfs: cannot read superblock [ 108.009019][ T4995] ------------[ cut here ]------------ [ 108.010542][ T4995] VFS: brelse: Trying to free free buffer [ 108.012277][ T4995] WARNING: CPU: 1 PID: 4995 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.014867][ T4995] Modules linked in: [ 108.016022][ T4995] CPU: 1 PID: 4995 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 108.018628][ T4995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.021374][ T4995] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.023543][ T4995] pc : invalidate_bh_lru+0x128/0x234 [ 108.024996][ T4995] lr : invalidate_bh_lru+0x128/0x234 [ 108.026503][ T4995] sp : ffff80001b9777c0 [ 108.027700][ T4995] x29: ffff80001b9777c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 108.029953][ T4995] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 108.032198][ T4995] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e184b4e8 [ 108.034499][ T4995] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 108.036936][ T4995] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.039209][ T4995] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.041557][ T4995] x11: 0000000000000002 x10: 0000000000000000 x9 : a3a4f9b3bfc58400 [ 108.043872][ T4995] x8 : a3a4f9b3bfc58400 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.046255][ T4995] x5 : ffff80001b9770b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.048631][ T4995] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.050933][ T4995] Call trace: [ 108.051907][ T4995] invalidate_bh_lru+0x128/0x234 [ 108.053384][ T4995] smp_call_function_many_cond+0xa50/0xeb0 [ 108.055047][ T4995] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.056400][ T4995] invalidate_bh_lrus+0x34/0x40 [ 108.057782][ T4995] blkdev_flush_mapping+0x168/0x31c [ 108.059326][ T4995] blkdev_put+0x490/0x6ac [ 108.060574][ T4995] blkdev_close+0x74/0xb0 [ 108.061736][ T4995] __fput+0x1c0/0x7f8 [ 108.062912][ T4995] ____fput+0x20/0x30 [ 108.064075][ T4995] task_work_run+0x12c/0x1e0 [ 108.065383][ T4995] do_notify_resume+0x24b4/0x3128 [ 108.066821][ T4995] el0_svc+0xf0/0x1e0 [ 108.068028][ T4995] el0t_64_sync_handler+0xcc/0xe4 1970/01/01 00:01:48 executed programs: 4 [ 108.069457][ T4995] el0t_64_sync+0x1a0/0x1a4 [ 108.070820][ T4995] irq event stamp: 17324 [ 108.072063][ T4995] hardirqs last enabled at (17323): [] kasan_quarantine_put+0xc4/0x204 [ 108.074931][ T4995] hardirqs last disabled at (17324): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.077939][ T4995] softirqs last enabled at (15280): [] local_bh_enable+0x10/0x34 [ 108.080703][ T4995] softirqs last disabled at (15278): [] local_bh_disable+0x10/0x34 [ 108.083350][ T4995] ---[ end trace 79b29bec42893814 ]--- [ 108.144534][ T5005] loop0: detected capacity change from 0 to 128 [ 108.148630][ T5005] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.151931][ T5005] Bad inode number on dev loop0: 2 is out of range [ 108.153748][ T5005] SysV FS: get root inode failed [ 108.155199][ T5005] oldfs: cannot read superblock [ 108.157558][ C0] ------------[ cut here ]------------ [ 108.159198][ C0] VFS: brelse: Trying to free free buffer [ 108.161025][ C0] WARNING: CPU: 0 PID: 3643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.163735][ C0] Modules linked in: [ 108.164839][ C0] CPU: 0 PID: 3643 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 108.167467][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.170321][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.172550][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 108.174060][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 108.175530][ C0] sp : ffff800008007de0 [ 108.176720][ C0] x29: ffff800008007de0 x28: ffff0000d6469b40 x27: 1fffe00036859053 [ 108.179055][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 108.181401][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe9b40 [ 108.183613][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010003 [ 108.185935][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.188268][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.190702][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : a621e84eeff56a00 [ 108.193137][ C0] x8 : a621e84eeff56a00 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.195490][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.197906][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 108.200293][ C0] Call trace: [ 108.201228][ C0] invalidate_bh_lru+0x128/0x234 [ 108.202650][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 108.204477][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.206409][ C0] ipi_handler+0x108/0x70c [ 108.207701][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 108.209309][ C0] handle_domain_irq+0x144/0x1fc [ 108.210681][ C0] gic_handle_irq+0x78/0x1c8 [ 108.211986][ C0] call_on_irq_stack+0x24/0x4c [ 108.213343][ C0] do_interrupt_handler+0x6c/0x88 [ 108.214757][ C0] el1_interrupt+0x30/0x58 [ 108.216163][ C0] el1h_64_irq_handler+0x18/0x24 [ 108.217640][ C0] el1h_64_irq+0x78/0x7c [ 108.218816][ C0] unwind_frame+0x2c0/0x544 [ 108.220180][ C0] walk_stackframe+0x6c/0xa8 [ 108.221515][ C0] return_address+0xd0/0x144 [ 108.222917][ C0] preempt_count_add+0x13c/0x3bc [ 108.224351][ C0] _raw_spin_lock+0x24/0x10c [ 108.225655][ C0] dput+0x26c/0x458 [ 108.226744][ C0] terminate_walk+0x164/0x470 [ 108.228132][ C0] path_openat+0x1eb8/0x26e4 [ 108.229447][ C0] do_filp_open+0x164/0x330 [ 108.230754][ C0] do_sys_openat2+0x128/0x3d8 [ 108.232146][ C0] __arm64_sys_openat+0x120/0x154 [ 108.233577][ C0] invoke_syscall+0x98/0x2b8 [ 108.234829][ C0] el0_svc_common+0x138/0x258 [ 108.236128][ C0] do_el0_svc+0x58/0x14c [ 108.237386][ C0] el0_svc+0x78/0x1e0 [ 108.238546][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 108.239926][ C0] el0t_64_sync+0x1a0/0x1a4 [ 108.241221][ C0] irq event stamp: 1111562 [ 108.242495][ C0] hardirqs last enabled at (1111561): [] _raw_spin_unlock_irq+0x98/0x128 [ 108.245413][ C0] hardirqs last disabled at (1111562): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.248320][ C0] softirqs last enabled at (1111424): [] local_bh_enable+0x10/0x34 [ 108.251212][ C0] softirqs last disabled at (1111422): [] local_bh_disable+0x10/0x34 [ 108.253933][ C0] ---[ end trace 79b29bec42893815 ]--- [ 108.319129][ T5007] loop0: detected capacity change from 0 to 128 [ 108.372565][ T5007] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.374671][ T5007] Bad inode number on dev loop0: 2 is out of range [ 108.376462][ T5007] SysV FS: get root inode failed [ 108.377952][ T5007] oldfs: cannot read superblock [ 108.395440][ C1] ------------[ cut here ]------------ [ 108.397068][ C1] VFS: brelse: Trying to free free buffer [ 108.398728][ C1] WARNING: CPU: 1 PID: 4808 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.401234][ C1] Modules linked in: [ 108.402392][ C1] CPU: 1 PID: 4808 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 108.405399][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.408396][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.410761][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 108.412386][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 108.413917][ C1] sp : ffff800008017de0 [ 108.415074][ C1] x29: ffff800008017de0 x28: ffff0000c8da3680 x27: 1fffe0003685d254 [ 108.417359][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 108.419634][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52bbd10 [ 108.421937][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 108.424321][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.426767][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.429155][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 9b7e5bf98adaba00 [ 108.431587][ C1] x8 : 9b7e5bf98adaba00 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.433850][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.436231][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 108.438585][ C1] Call trace: [ 108.439542][ C1] invalidate_bh_lru+0x128/0x234 [ 108.440863][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 108.442676][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.444684][ C1] ipi_handler+0x108/0x70c [ 108.445985][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 108.447674][ C1] handle_domain_irq+0x144/0x1fc [ 108.449204][ C1] gic_handle_irq+0x78/0x1c8 [ 108.450547][ C1] call_on_irq_stack+0x24/0x4c [ 108.451932][ C1] do_interrupt_handler+0x6c/0x88 [ 108.453448][ C1] el1_interrupt+0x30/0x58 [ 108.454658][ C1] el1h_64_irq_handler+0x18/0x24 [ 108.456107][ C1] el1h_64_irq+0x78/0x7c [ 108.457293][ C1] get_page_from_freelist+0x2244/0x2aa8 [ 108.458877][ C1] __alloc_pages+0x1a0/0x470 [ 108.460211][ C1] alloc_pages+0x34c/0x5c0 [ 108.461458][ C1] __pmd_alloc+0x54/0x45c [ 108.462767][ C1] copy_page_range+0x1f74/0x22b8 [ 108.464187][ C1] copy_mm+0x9c8/0x1084 [ 108.465364][ C1] copy_process+0x14d4/0x34ec [ 108.466811][ C1] kernel_clone+0x1d8/0x9d4 [ 108.468165][ C1] __arm64_sys_clone+0x138/0x190 [ 108.469503][ C1] invoke_syscall+0x98/0x2b8 [ 108.470839][ C1] el0_svc_common+0x138/0x258 [ 108.472177][ C1] do_el0_svc+0x58/0x14c [ 108.473440][ C1] el0_svc+0x78/0x1e0 [ 108.474601][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 108.476017][ C1] el0t_64_sync+0x1a0/0x1a4 [ 108.477219][ C1] irq event stamp: 177834 [ 108.478382][ C1] hardirqs last enabled at (177833): [] get_page_from_freelist+0x2234/0x2aa8 [ 108.481387][ C1] hardirqs last disabled at (177834): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.484228][ C1] softirqs last enabled at (177726): [] local_bh_enable+0x10/0x34 [ 108.487030][ C1] softirqs last disabled at (177724): [] local_bh_disable+0x10/0x34 [ 108.489776][ C1] ---[ end trace 79b29bec42893816 ]--- [ 108.536136][ T5009] loop0: detected capacity change from 0 to 128 [ 108.546341][ T5009] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.548399][ T5009] Bad inode number on dev loop0: 2 is out of range [ 108.552643][ T5009] SysV FS: get root inode failed [ 108.554035][ T5009] oldfs: cannot read superblock [ 108.557857][ C1] ------------[ cut here ]------------ [ 108.559566][ C1] VFS: brelse: Trying to free free buffer [ 108.561271][ C1] WARNING: CPU: 1 PID: 5009 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.563920][ C1] Modules linked in: [ 108.565047][ C1] CPU: 1 PID: 5009 Comm: syz.0.20 Tainted: G W 5.15.181-syzkaller #0 [ 108.567779][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.570720][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.572953][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 108.574510][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 108.576137][ C1] sp : ffff800008017de0 [ 108.577331][ C1] x29: ffff800008017de0 x28: ffff0000d6023680 x27: 1fffe0003685d254 [ 108.579615][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 108.581790][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52bb970 [ 108.584034][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 108.586340][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.588732][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.591019][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : a8ff316122cfdb00 [ 108.593242][ C1] x8 : a8ff316122cfdb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.595602][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.597914][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 108.600211][ C1] Call trace: [ 108.601053][ C1] invalidate_bh_lru+0x128/0x234 [ 108.602562][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 108.604309][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.606323][ C1] ipi_handler+0x108/0x70c [ 108.607626][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 108.609210][ C1] handle_domain_irq+0x144/0x1fc [ 108.610585][ C1] gic_handle_irq+0x78/0x1c8 [ 108.611930][ C1] call_on_irq_stack+0x24/0x4c [ 108.613269][ C1] do_interrupt_handler+0x6c/0x88 [ 108.614668][ C1] el1_interrupt+0x30/0x58 [ 108.615899][ C1] el1h_64_irq_handler+0x18/0x24 [ 108.617370][ C1] el1h_64_irq+0x78/0x7c [ 108.618627][ C1] unlink_file_vma+0x30/0x124 [ 108.620015][ C1] free_pgtables+0x154/0x278 [ 108.621374][ C1] exit_mmap+0x2bc/0x4e0 [ 108.622600][ C1] __mmput+0xec/0x3b8 [ 108.623706][ C1] mmput+0x80/0xc8 [ 108.624745][ C1] exit_mm+0x4a0/0x684 [ 108.625914][ C1] do_exit+0x4e4/0x1f58 [ 108.627171][ C1] do_group_exit+0x100/0x268 [ 108.628528][ C1] get_signal+0x73c/0x1340 [ 108.629797][ C1] do_notify_resume+0x35c/0x3128 [ 108.631298][ C1] el0_svc+0xf0/0x1e0 [ 108.632407][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 108.633891][ C1] el0t_64_sync+0x1a0/0x1a4 [ 108.635246][ C1] irq event stamp: 2508 [ 108.636439][ C1] hardirqs last enabled at (2507): [] kasan_quarantine_put+0xc4/0x204 [ 108.639333][ C1] hardirqs last disabled at (2508): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.642105][ C1] softirqs last enabled at (1218): [] local_bh_enable+0x10/0x34 [ 108.644855][ C1] softirqs last disabled at (1216): [] local_bh_disable+0x10/0x34 [ 108.647555][ C1] ---[ end trace 79b29bec42893817 ]--- [ 108.697820][ T5011] loop0: detected capacity change from 0 to 128 [ 108.703946][ T5011] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.706302][ T5011] Bad inode number on dev loop0: 2 is out of range [ 108.708203][ T5011] SysV FS: get root inode failed [ 108.709693][ T5011] oldfs: cannot read superblock [ 108.722219][ T4995] ------------[ cut here ]------------ [ 108.723779][ T4995] VFS: brelse: Trying to free free buffer [ 108.725408][ T4995] WARNING: CPU: 1 PID: 4995 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.727984][ T4995] Modules linked in: [ 108.729032][ T4995] CPU: 1 PID: 4995 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 108.731646][ T4995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.734506][ T4995] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.736746][ T4995] pc : invalidate_bh_lru+0x128/0x234 [ 108.738260][ T4995] lr : invalidate_bh_lru+0x128/0x234 [ 108.739758][ T4995] sp : ffff80001b9777c0 [ 108.740962][ T4995] x29: ffff80001b9777c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 108.743294][ T4995] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 108.745601][ T4995] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52bb5d0 [ 108.747924][ T4995] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 108.750258][ T4995] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.752613][ T4995] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.754918][ T4995] x11: 0000000000000002 x10: 0000000000000000 x9 : a3a4f9b3bfc58400 [ 108.757499][ T4995] x8 : a3a4f9b3bfc58400 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.760265][ T4995] x5 : ffff80001b9770b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.762877][ T4995] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.765167][ T4995] Call trace: [ 108.766020][ T4995] invalidate_bh_lru+0x128/0x234 [ 108.767482][ T4995] smp_call_function_many_cond+0xa50/0xeb0 [ 108.769041][ T4995] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.770519][ T4995] invalidate_bh_lrus+0x34/0x40 [ 108.771848][ T4995] blkdev_flush_mapping+0x168/0x31c [ 108.773321][ T4995] blkdev_put+0x490/0x6ac [ 108.774566][ T4995] blkdev_close+0x74/0xb0 [ 108.775816][ T4995] __fput+0x1c0/0x7f8 [ 108.776899][ T4995] ____fput+0x20/0x30 [ 108.778068][ T4995] task_work_run+0x12c/0x1e0 [ 108.779340][ T4995] do_notify_resume+0x24b4/0x3128 [ 108.780800][ T4995] el0_svc+0xf0/0x1e0 [ 108.781931][ T4995] el0t_64_sync_handler+0xcc/0xe4 [ 108.783344][ T4995] el0t_64_sync+0x1a0/0x1a4 [ 108.784633][ T4995] irq event stamp: 40110 [ 108.785859][ T4995] hardirqs last enabled at (40109): [] kasan_quarantine_put+0xc4/0x204 [ 108.788731][ T4995] hardirqs last disabled at (40110): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.791822][ T4995] softirqs last enabled at (39514): [] local_bh_enable+0x10/0x34 [ 108.794643][ T4995] softirqs last disabled at (39512): [] local_bh_disable+0x10/0x34 [ 108.797301][ T4995] ---[ end trace 79b29bec42893818 ]--- [ 108.867387][ T5013] loop0: detected capacity change from 0 to 128 [ 108.875474][ T5013] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.877578][ T5013] Bad inode number on dev loop0: 2 is out of range [ 108.879421][ T5013] SysV FS: get root inode failed [ 108.881901][ T5013] oldfs: cannot read superblock [ 108.903841][ C1] ------------[ cut here ]------------ [ 108.905499][ C1] VFS: brelse: Trying to free free buffer [ 108.907303][ C1] WARNING: CPU: 1 PID: 3643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.910020][ C1] Modules linked in: [ 108.911171][ C1] CPU: 1 PID: 3643 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 108.913906][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.916899][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.919285][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 108.920786][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 108.922389][ C1] sp : ffff800008017de0 [ 108.923532][ C1] x29: ffff800008017de0 x28: ffff0000d6469b40 x27: 1fffe0003685d254 [ 108.925888][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 108.928343][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e18787a0 [ 108.930712][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 108.933056][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.935429][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.937856][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : a621e84eeff56a00 [ 108.940166][ C1] x8 : a621e84eeff56a00 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.942610][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.945002][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 108.947401][ C1] Call trace: [ 108.948298][ C1] invalidate_bh_lru+0x128/0x234 [ 108.949771][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 108.951570][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.953447][ C1] ipi_handler+0x108/0x70c [ 108.954758][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 108.956321][ C1] handle_domain_irq+0x144/0x1fc [ 108.957767][ C1] gic_handle_irq+0x78/0x1c8 [ 108.959033][ C1] call_on_irq_stack+0x24/0x4c [ 108.960421][ C1] do_interrupt_handler+0x6c/0x88 [ 108.961917][ C1] el1_interrupt+0x30/0x58 [ 108.963180][ C1] el1h_64_irq_handler+0x18/0x24 [ 108.964564][ C1] el1h_64_irq+0x78/0x7c [ 108.965786][ C1] put_cpu_partial+0x198/0x218 [ 108.967198][ C1] __slab_free+0x184/0x254 [ 108.968554][ C1] ___cache_free+0x178/0x1bc [ 108.969857][ C1] qlink_free+0x5c/0xa4 [ 108.971216][ C1] qlist_free_all+0x40/0xa8 [ 108.972651][ C1] kasan_quarantine_reduce+0x124/0x130 [ 108.974394][ C1] __kasan_slab_alloc+0x34/0xcc [ 108.975845][ C1] slab_post_alloc_hook+0x74/0x408 [ 108.977352][ C1] kmem_cache_alloc+0x1e0/0x3e4 [ 108.978725][ C1] getname_flags+0xb8/0x450 [ 108.980038][ C1] getname+0x28/0x38 [ 108.981243][ C1] do_sys_openat2+0xd0/0x3d8 [ 108.982659][ C1] __arm64_sys_openat+0x120/0x154 [ 108.984141][ C1] invoke_syscall+0x98/0x2b8 [ 108.985389][ C1] el0_svc_common+0x138/0x258 [ 108.986849][ C1] do_el0_svc+0x58/0x14c [ 108.988091][ C1] el0_svc+0x78/0x1e0 [ 108.989131][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 108.990532][ C1] el0t_64_sync+0x1a0/0x1a4 [ 108.991827][ C1] irq event stamp: 1131622 [ 108.993141][ C1] hardirqs last enabled at (1131621): [] put_cpu_partial+0x188/0x218 [ 108.995904][ C1] hardirqs last disabled at (1131622): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.998764][ C1] softirqs last enabled at (1130624): [] local_bh_enable+0x10/0x34 [ 109.001498][ C1] softirqs last disabled at (1130622): [] local_bh_disable+0x10/0x34 [ 109.004444][ C1] ---[ end trace 79b29bec42893819 ]--- [ 109.025299][ T5015] loop0: detected capacity change from 0 to 128 [ 109.036121][ T5015] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.038212][ T5015] Bad inode number on dev loop0: 2 is out of range [ 109.040030][ T5015] SysV FS: get root inode failed [ 109.042048][ T5015] oldfs: cannot read superblock [ 109.043513][ T5015] ------------[ cut here ]------------ [ 109.044943][ T5015] VFS: brelse: Trying to free free buffer [ 109.046706][ T5015] WARNING: CPU: 1 PID: 5015 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.049203][ T5015] Modules linked in: [ 109.050258][ T5015] CPU: 1 PID: 5015 Comm: syz.0.23 Tainted: G W 5.15.181-syzkaller #0 [ 109.053026][ T5015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 109.055921][ T5015] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.058098][ T5015] pc : invalidate_bh_lru+0x128/0x234 [ 109.059593][ T5015] lr : invalidate_bh_lru+0x128/0x234 [ 109.061167][ T5015] sp : ffff80001f0676e0 [ 109.062346][ T5015] x29: ffff80001f0676e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 109.064686][ T5015] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 109.066947][ T5015] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52f86b8 [ 109.069143][ T5015] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 109.071448][ T5015] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 109.073737][ T5015] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.076115][ T5015] x11: 0000000000000002 x10: 0000000000000000 x9 : 7530d7f71ab5f200 [ 109.078477][ T5015] x8 : 7530d7f71ab5f200 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.080885][ T5015] x5 : ffff80001f066fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 109.083171][ T5015] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 109.085550][ T5015] Call trace: [ 109.086445][ T5015] invalidate_bh_lru+0x128/0x234 [ 109.087888][ T5015] smp_call_function_many_cond+0xa50/0xeb0 [ 109.089555][ T5015] on_each_cpu_cond_mask+0x5c/0xc4 [ 109.090996][ T5015] invalidate_bh_lrus+0x34/0x40 [ 109.092381][ T5015] blkdev_flush_mapping+0x168/0x31c [ 109.093878][ T5015] blkdev_put+0x490/0x6ac [ 109.095170][ T5015] kill_block_super+0x98/0xdc [ 109.096536][ T5015] deactivate_locked_super+0xb8/0x13c [ 109.098109][ T5015] mount_bdev+0x284/0x358 [ 109.099311][ T5015] sysv_mount+0x44/0x58 [ 109.100538][ T5015] legacy_get_tree+0xd4/0x16c [ 109.101874][ T5015] vfs_get_tree+0x90/0x274 [ 109.103175][ T5015] do_new_mount+0x228/0x810 [ 109.104411][ T5015] path_mount+0x5b4/0x1000 [ 109.105628][ T5015] __arm64_sys_mount+0x514/0x5e4 [ 109.107027][ T5015] invoke_syscall+0x98/0x2b8 [ 109.108396][ T5015] el0_svc_common+0x138/0x258 [ 109.109784][ T5015] do_el0_svc+0x58/0x14c [ 109.111100][ T5015] el0_svc+0x78/0x1e0 [ 109.112340][ T5015] el0t_64_sync_handler+0xcc/0xe4 [ 109.113729][ T5015] el0t_64_sync+0x1a0/0x1a4 [ 109.115011][ T5015] irq event stamp: 1282 [ 109.116228][ T5015] hardirqs last enabled at (1281): [] kasan_quarantine_put+0xc4/0x204 [ 109.119053][ T5015] hardirqs last disabled at (1282): [] smp_call_function_many_cond+0xa44/0xeb0 [ 109.122193][ T5015] softirqs last enabled at (1264): [] handle_softirqs+0xa4c/0xbf0 [ 109.125086][ T5015] softirqs last disabled at (1197): [] __irq_exit_rcu+0x240/0x440 [ 109.127908][ T5015] ---[ end trace 79b29bec4289381a ]--- [ 109.245348][ T5017] loop0: detected capacity change from 0 to 128 [ 109.261868][ T4113] Bluetooth: hci0: command 0x040f tx timeout [ 109.281887][ T5017] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.283933][ T5017] Bad inode number on dev loop0: 2 is out of range [ 109.285713][ T5017] SysV FS: get root inode failed [ 109.287011][ T5017] oldfs: cannot read superblock [ 109.300918][ C1] ------------[ cut here ]------------ [ 109.302482][ C1] VFS: brelse: Trying to free free buffer [ 109.304334][ C1] WARNING: CPU: 1 PID: 4808 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.307062][ C1] Modules linked in: [ 109.308115][ C1] CPU: 1 PID: 4808 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 109.310912][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 109.313664][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.315908][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 109.317447][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 109.318971][ C1] sp : ffff800008017de0 [ 109.320174][ C1] x29: ffff800008017de0 x28: ffff0000c8da3680 x27: 1fffe0003685d253 [ 109.322533][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 109.324855][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52f8230 [ 109.327188][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010003 [ 109.329755][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 109.332058][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.334314][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 9b7e5bf98adaba00 [ 109.336612][ C1] x8 : 9b7e5bf98adaba00 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.338989][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 109.341320][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 109.343632][ C1] Call trace: [ 109.344533][ C1] invalidate_bh_lru+0x128/0x234 [ 109.345953][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 109.347759][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 109.349854][ C1] ipi_handler+0x108/0x70c [ 109.351126][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 109.352821][ C1] handle_domain_irq+0x144/0x1fc [ 109.354176][ C1] gic_handle_irq+0x78/0x1c8 [ 109.355596][ C1] call_on_irq_stack+0x24/0x4c [ 109.356986][ C1] do_interrupt_handler+0x6c/0x88 [ 109.358426][ C1] el1_interrupt+0x30/0x58 [ 109.359680][ C1] el1h_64_irq_handler+0x18/0x24 [ 109.361110][ C1] el1h_64_irq+0x78/0x7c [ 109.362312][ C1] lock_acquire+0x234/0x620 [ 109.363676][ C1] _raw_spin_lock+0xb0/0x10c [ 109.365047][ C1] wp_page_copy+0x420/0x11ec [ 109.366403][ C1] do_wp_page+0x6c0/0x994 [ 109.367673][ C1] handle_mm_fault+0x1770/0x2950 [ 109.369146][ C1] do_page_fault+0x694/0xad4 [ 109.370569][ C1] do_mem_abort+0x6c/0x1ac [ 109.371866][ C1] el0_da+0x90/0x1fc [ 109.372955][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 109.374492][ C1] el0t_64_sync+0x1a0/0x1a4 [ 109.375823][ C1] irq event stamp: 194554 [ 109.377034][ C1] hardirqs last enabled at (194553): [] charge_memcg+0x190/0x220 [ 109.379862][ C1] hardirqs last disabled at (194554): [] enter_el1_irq_or_nmi+0x10/0x1c [ 109.382804][ C1] softirqs last enabled at (194430): [] handle_softirqs+0xa4c/0xbf0 [ 109.385708][ C1] softirqs last disabled at (194411): [] __irq_exit_rcu+0x240/0x440 [ 109.388685][ C1] ---[ end trace 79b29bec4289381b ]--- [ 109.426537][ T5019] loop0: detected capacity change from 0 to 128 [ 109.466294][ T5019] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.468282][ T5019] Bad inode number on dev loop0: 2 is out of range [ 109.470087][ T5019] SysV FS: get root inode failed [ 109.474418][ T5019] oldfs: cannot read superblock [ 109.484486][ T4995] ------------[ cut here ]------------ [ 109.486140][ T4995] VFS: brelse: Trying to free free buffer [ 109.487856][ T4995] WARNING: CPU: 0 PID: 4995 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.490486][ T4995] Modules linked in: [ 109.491612][ T4995] CPU: 0 PID: 4995 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 109.494394][ T4995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 109.497248][ T4995] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.499542][ T4995] pc : invalidate_bh_lru+0x128/0x234 [ 109.501175][ T4995] lr : invalidate_bh_lru+0x128/0x234 [ 109.502699][ T4995] sp : ffff80001b9777c0 [ 109.503988][ T4995] x29: ffff80001b9777c0 x28: ffff80001414d000 x27: 1fffe00036859054 [ 109.506336][ T4995] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 109.508656][ T4995] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe9ee0 [ 109.510960][ T4995] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 109.513193][ T4995] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 109.515594][ T4995] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.517955][ T4995] x11: 0000000000000002 x10: 0000000000000000 x9 : a3a4f9b3bfc58400 [ 109.520456][ T4995] x8 : a3a4f9b3bfc58400 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.522774][ T4995] x5 : ffff80001b9770b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 109.525046][ T4995] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 109.527300][ T4995] Call trace: [ 109.528198][ T4995] invalidate_bh_lru+0x128/0x234 [ 109.529659][ T4995] smp_call_function_many_cond+0xa50/0xeb0 [ 109.531407][ T4995] on_each_cpu_cond_mask+0x5c/0xc4 [ 109.532957][ T4995] invalidate_bh_lrus+0x34/0x40 [ 109.534440][ T4995] blkdev_flush_mapping+0x168/0x31c [ 109.535983][ T4995] blkdev_put+0x490/0x6ac [ 109.537216][ T4995] blkdev_close+0x74/0xb0 [ 109.538418][ T4995] __fput+0x1c0/0x7f8 [ 109.539593][ T4995] ____fput+0x20/0x30 [ 109.540735][ T4995] task_work_run+0x12c/0x1e0 [ 109.541985][ T4995] do_notify_resume+0x24b4/0x3128 [ 109.543460][ T4995] el0_svc+0xf0/0x1e0 [ 109.544555][ T4995] el0t_64_sync_handler+0xcc/0xe4 [ 109.545920][ T4995] el0t_64_sync+0x1a0/0x1a4 [ 109.547164][ T4995] irq event stamp: 58554 [ 109.548433][ T4995] hardirqs last enabled at (58553): [] kasan_quarantine_put+0xc4/0x204 [ 109.551378][ T4995] hardirqs last disabled at (58554): [] smp_call_function_many_cond+0xa44/0xeb0 [ 109.554286][ T4995] softirqs last enabled at (57768): [] local_bh_enable+0x10/0x34 [ 109.556999][ T4995] softirqs last disabled at (57766): [] local_bh_disable+0x10/0x34 [ 109.559716][ T4995] ---[ end trace 79b29bec4289381c ]--- [ 109.595721][ T5021] loop0: detected capacity change from 0 to 128 [ 109.600892][ T5021] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.603017][ T5021] Bad inode number on dev loop0: 2 is out of range [ 109.604888][ T5021] SysV FS: get root inode failed [ 109.606319][ T5021] oldfs: cannot read superblock [ 109.616461][ C0] ------------[ cut here ]------------ [ 109.618167][ C0] VFS: brelse: Trying to free free buffer [ 109.619840][ C0] WARNING: CPU: 0 PID: 4808 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.622422][ C0] Modules linked in: [ 109.623508][ C0] CPU: 0 PID: 4808 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 109.626463][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 109.629407][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.631689][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 109.633275][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 109.634758][ C0] sp : ffff800008007de0 [ 109.635965][ C0] x29: ffff800008007de0 x28: ffff0000c8da3680 x27: 1fffe00036859053 [ 109.638340][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 109.640628][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe5318 [ 109.642918][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010003 [ 109.645397][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 109.647728][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.650035][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 9b7e5bf98adaba00 [ 109.652271][ C0] x8 : 9b7e5bf98adaba00 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.654622][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 109.656923][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 109.659349][ C0] Call trace: [ 109.660282][ C0] invalidate_bh_lru+0x128/0x234 [ 109.661747][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 109.663531][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 109.665621][ C0] ipi_handler+0x108/0x70c [ 109.666884][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 109.668513][ C0] handle_domain_irq+0x144/0x1fc [ 109.669867][ C0] gic_handle_irq+0x78/0x1c8 [ 109.671214][ C0] call_on_irq_stack+0x24/0x4c [ 109.672519][ C0] do_interrupt_handler+0x6c/0x88 [ 109.673996][ C0] el1_interrupt+0x30/0x58 [ 109.675241][ C0] el1h_64_irq_handler+0x18/0x24 [ 109.676645][ C0] el1h_64_irq+0x78/0x7c [ 109.677847][ C0] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 109.679497][ C0] debug_check_no_obj_freed+0x450/0x46c [ 109.681099][ C0] slab_free_freelist_hook+0x9c/0x1e8 [ 109.682707][ C0] kmem_cache_free+0xdc/0x3b4 [ 109.684111][ C0] do_rmdir+0x56c/0x634 [ 109.685313][ C0] __arm64_sys_unlinkat+0xcc/0xfc [ 109.686795][ C0] invoke_syscall+0x98/0x2b8 [ 109.688213][ C0] el0_svc_common+0x138/0x258 [ 109.689528][ C0] do_el0_svc+0x58/0x14c [ 109.690669][ C0] el0_svc+0x78/0x1e0 [ 109.691838][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 109.693287][ C0] el0t_64_sync+0x1a0/0x1a4 [ 109.694626][ C0] irq event stamp: 198818 [ 109.695945][ C0] hardirqs last enabled at (198817): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 109.698954][ C0] hardirqs last disabled at (198818): [] enter_el1_irq_or_nmi+0x10/0x1c [ 109.701818][ C0] softirqs last enabled at (198188): [] local_bh_enable+0x10/0x34 [ 109.704494][ C0] softirqs last disabled at (198186): [] local_bh_disable+0x10/0x34 [ 109.707330][ C0] ---[ end trace 79b29bec4289381d ]--- [ 109.760485][ T5023] loop0: detected capacity change from 0 to 128 [ 109.792231][ T5023] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.794311][ T5023] Bad inode number on dev loop0: 2 is out of range [ 109.796401][ T5023] SysV FS: get root inode failed [ 109.797709][ T5023] oldfs: cannot read superblock [ 109.799193][ T5023] ------------[ cut here ]------------ [ 109.800751][ T5023] VFS: brelse: Trying to free free buffer [ 109.802467][ T5023] WARNING: CPU: 0 PID: 5023 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.805110][ T5023] Modules linked in: [ 109.806190][ T5023] CPU: 0 PID: 5023 Comm: syz.0.27 Tainted: G W 5.15.181-syzkaller #0 [ 109.808890][ T5023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 109.811858][ T5023] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.814050][ T5023] pc : invalidate_bh_lru+0x128/0x234 [ 109.815553][ T5023] lr : invalidate_bh_lru+0x128/0x234 [ 109.817172][ T5023] sp : ffff80001f8e76e0 [ 109.818343][ T5023] x29: ffff80001f8e76e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 109.820654][ T5023] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 109.823079][ T5023] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe56b8 [ 109.825463][ T5023] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 109.827624][ T5023] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 109.829839][ T5023] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.832333][ T5023] x11: 0000000000000002 x10: 0000000000000000 x9 : d4094d5fd69bf300 [ 109.834728][ T5023] x8 : d4094d5fd69bf300 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.837149][ T5023] x5 : ffff80001f8e6fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 109.839696][ T5023] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 109.842347][ T5023] Call trace: [ 109.843350][ T5023] invalidate_bh_lru+0x128/0x234 [ 109.844815][ T5023] smp_call_function_many_cond+0xa50/0xeb0 [ 109.846749][ T5023] on_each_cpu_cond_mask+0x5c/0xc4 [ 109.848278][ T5023] invalidate_bh_lrus+0x34/0x40 [ 109.849737][ T5023] blkdev_flush_mapping+0x168/0x31c [ 109.851394][ T5023] blkdev_put+0x490/0x6ac [ 109.852587][ T5023] kill_block_super+0x98/0xdc [ 109.853984][ T5023] deactivate_locked_super+0xb8/0x13c [ 109.855699][ T5023] mount_bdev+0x284/0x358 [ 109.857124][ T5023] sysv_mount+0x44/0x58 [ 109.858312][ T5023] legacy_get_tree+0xd4/0x16c [ 109.859609][ T5023] vfs_get_tree+0x90/0x274 [ 109.860841][ T5023] do_new_mount+0x228/0x810 [ 109.862164][ T5023] path_mount+0x5b4/0x1000 [ 109.863393][ T5023] __arm64_sys_mount+0x514/0x5e4 [ 109.864825][ T5023] invoke_syscall+0x98/0x2b8 [ 109.866172][ T5023] el0_svc_common+0x138/0x258 [ 109.867742][ T5023] do_el0_svc+0x58/0x14c [ 109.869041][ T5023] el0_svc+0x78/0x1e0 [ 109.870154][ T5023] el0t_64_sync_handler+0xcc/0xe4 [ 109.871647][ T5023] el0t_64_sync+0x1a0/0x1a4 [ 109.873012][ T5023] irq event stamp: 1220 [ 109.874289][ T5023] hardirqs last enabled at (1219): [] kasan_quarantine_put+0xc4/0x204 [ 109.877391][ T5023] hardirqs last disabled at (1220): [] smp_call_function_many_cond+0xa44/0xeb0 [ 109.880788][ T5023] softirqs last enabled at (976): [] local_bh_enable+0x10/0x34 [ 109.883730][ T5023] softirqs last disabled at (974): [] local_bh_disable+0x10/0x34 [ 109.886422][ T5023] ---[ end trace 79b29bec4289381e ]--- [ 109.992967][ T5025] loop0: detected capacity change from 0 to 128 [ 110.037137][ T5025] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.040795][ T5025] Bad inode number on dev loop0: 2 is out of range [ 110.042647][ T5025] SysV FS: get root inode failed [ 110.043902][ T5025] oldfs: cannot read superblock [ 110.047173][ C0] ------------[ cut here ]------------ [ 110.048725][ C0] VFS: brelse: Trying to free free buffer [ 110.050422][ C0] WARNING: CPU: 0 PID: 3643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.053008][ C0] Modules linked in: [ 110.054049][ C0] CPU: 0 PID: 3643 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 110.056573][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 110.059467][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.061702][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 110.063164][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 110.064736][ C0] sp : ffff800008007de0 [ 110.065914][ C0] x29: ffff800008007de0 x28: ffff0000d6469b40 x27: 1fffe00036859053 [ 110.068275][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 110.070478][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe5a58 [ 110.072858][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010002 [ 110.075138][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 110.077522][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.079733][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : a621e84eeff56a00 [ 110.082120][ C0] x8 : a621e84eeff56a00 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.084421][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 110.086732][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 110.088999][ C0] Call trace: [ 110.089940][ C0] invalidate_bh_lru+0x128/0x234 [ 110.091392][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 110.093249][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 110.095289][ C0] ipi_handler+0x108/0x70c [ 110.096536][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 110.098133][ C0] handle_domain_irq+0x144/0x1fc [ 110.099515][ C0] gic_handle_irq+0x78/0x1c8 [ 110.100922][ C0] call_on_irq_stack+0x24/0x4c [ 110.102301][ C0] do_interrupt_handler+0x6c/0x88 [ 110.103817][ C0] el1_interrupt+0x30/0x58 [ 110.105016][ C0] el1h_64_irq_handler+0x18/0x24 [ 110.106414][ C0] el1h_64_irq+0x78/0x7c [ 110.107582][ C0] filter_irq_stacks+0x78/0xd8 [ 110.108921][ C0] __kasan_kmalloc+0xbc/0xf0 [ 110.110434][ C0] __kmalloc_node+0x2bc/0x520 [ 110.111755][ C0] kvmalloc_node+0x88/0x200 [ 110.113104][ C0] seq_read_iter+0x1c8/0xc00 [ 110.114465][ C0] kernfs_fop_read_iter+0x140/0x500 [ 110.115891][ C0] vfs_read+0x7c4/0xa10 [ 110.117111][ C0] ksys_read+0x120/0x210 [ 110.118371][ C0] __arm64_sys_read+0x7c/0x90 [ 110.119705][ C0] invoke_syscall+0x98/0x2b8 [ 110.121032][ C0] el0_svc_common+0x138/0x258 [ 110.122417][ C0] do_el0_svc+0x58/0x14c [ 110.123649][ C0] el0_svc+0x78/0x1e0 [ 110.124744][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 110.126291][ C0] el0t_64_sync+0x1a0/0x1a4 [ 110.127600][ C0] irq event stamp: 1161664 [ 110.128917][ C0] hardirqs last enabled at (1161663): [] el0_svc_common+0x9c/0x258 [ 110.131715][ C0] hardirqs last disabled at (1161664): [] enter_el1_irq_or_nmi+0x10/0x1c [ 110.134623][ C0] softirqs last enabled at (1161072): [] local_bh_enable+0x10/0x34 [ 110.137579][ C0] softirqs last disabled at (1161070): [] local_bh_disable+0x10/0x34 [ 110.140181][ C0] ---[ end trace 79b29bec4289381f ]--- [ 110.224169][ T5027] loop0: detected capacity change from 0 to 128 [ 110.229107][ T5027] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.231541][ T5027] Bad inode number on dev loop0: 2 is out of range [ 110.233401][ T5027] SysV FS: get root inode failed [ 110.234794][ T5027] oldfs: cannot read superblock [ 110.246024][ C0] ------------[ cut here ]------------ [ 110.247581][ C0] VFS: brelse: Trying to free free buffer [ 110.249316][ C0] WARNING: CPU: 0 PID: 4808 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.251893][ C0] Modules linked in: [ 110.252913][ C0] CPU: 0 PID: 4808 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 110.255674][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 110.258545][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.260804][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 110.262292][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 110.263816][ C0] sp : ffff800008007de0 [ 110.265099][ C0] x29: ffff800008007de0 x28: ffff0000c8da3680 x27: 1fffe00036859054 [ 110.267518][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 110.269821][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe5df8 [ 110.272087][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 110.274392][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 110.276630][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.278977][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 9b7e5bf98adaba00 [ 110.281379][ C0] x8 : 9b7e5bf98adaba00 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.283952][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 110.286154][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 110.288503][ C0] Call trace: [ 110.289432][ C0] invalidate_bh_lru+0x128/0x234 [ 110.290856][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 110.292620][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 110.294630][ C0] ipi_handler+0x108/0x70c [ 110.295864][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 110.297341][ C0] handle_domain_irq+0x144/0x1fc [ 110.298660][ C0] gic_handle_irq+0x78/0x1c8 [ 110.300005][ C0] call_on_irq_stack+0x24/0x4c [ 110.301462][ C0] do_interrupt_handler+0x6c/0x88 [ 110.302857][ C0] el1_interrupt+0x30/0x58 [ 110.304106][ C0] el1h_64_irq_handler+0x18/0x24 [ 110.305561][ C0] el1h_64_irq+0x78/0x7c [ 110.306788][ C0] alloc_counters+0x3f8/0x7a4 [ 110.308074][ C0] do_ip6t_get_ctl+0xaf4/0x13a8 [ 110.309510][ C0] nf_getsockopt+0x264/0x284 [ 110.310841][ C0] ipv6_getsockopt+0x52c/0x2584 [ 110.312262][ C0] tcp_getsockopt+0x214/0x2e74 [ 110.313669][ C0] sock_common_getsockopt+0xa8/0xc4 [ 110.315243][ C0] __sys_getsockopt+0x1e0/0x45c [ 110.316615][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 110.318006][ C0] invoke_syscall+0x98/0x2b8 [ 110.319334][ C0] el0_svc_common+0x138/0x258 [ 110.320670][ C0] do_el0_svc+0x58/0x14c [ 110.321993][ C0] el0_svc+0x78/0x1e0 [ 110.323060][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 110.324447][ C0] el0t_64_sync+0x1a0/0x1a4 [ 110.325750][ C0] irq event stamp: 211002 [ 110.327028][ C0] hardirqs last enabled at (211001): [] alloc_counters+0x3d4/0x7a4 [ 110.329763][ C0] hardirqs last disabled at (211002): [] enter_el1_irq_or_nmi+0x10/0x1c [ 110.332540][ C0] softirqs last enabled at (210862): [] release_sock+0x1d0/0x258 [ 110.335237][ C0] softirqs last disabled at (210860): [] release_sock+0x34/0x258 [ 110.337811][ C0] ---[ end trace 79b29bec42893820 ]--- [ 110.363653][ T5029] loop0: detected capacity change from 0 to 128 [ 110.367955][ T5029] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.369926][ T5029] Bad inode number on dev loop0: 2 is out of range [ 110.372475][ T5029] SysV FS: get root inode failed [ 110.373836][ T5029] oldfs: cannot read superblock [ 110.386954][ T4995] ------------[ cut here ]------------ [ 110.388652][ T4995] VFS: brelse: Trying to free free buffer [ 110.390444][ T4995] WARNING: CPU: 1 PID: 4995 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.392952][ T4995] Modules linked in: [ 110.394110][ T4995] CPU: 1 PID: 4995 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 110.396697][ T4995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 110.399611][ T4995] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.401914][ T4995] pc : invalidate_bh_lru+0x128/0x234 [ 110.403535][ T4995] lr : invalidate_bh_lru+0x128/0x234 [ 110.405019][ T4995] sp : ffff80001b9777c0 [ 110.406280][ T4995] x29: ffff80001b9777c0 x28: ffff80001414d000 x27: 1fffe0003685d254 [ 110.408553][ T4995] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 110.410866][ T4995] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e18b34e8 [ 110.413140][ T4995] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 110.415533][ T4995] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 110.417814][ T4995] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.420199][ T4995] x11: 0000000000000002 x10: 0000000000000000 x9 : a3a4f9b3bfc58400 [ 110.422422][ T4995] x8 : a3a4f9b3bfc58400 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.424864][ T4995] x5 : ffff80001b9770b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 110.427211][ T4995] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 110.429537][ T4995] Call trace: [ 110.430399][ T4995] invalidate_bh_lru+0x128/0x234 [ 110.431881][ T4995] smp_call_function_many_cond+0xa50/0xeb0 [ 110.433546][ T4995] on_each_cpu_cond_mask+0x5c/0xc4 [ 110.434974][ T4995] invalidate_bh_lrus+0x34/0x40 [ 110.436379][ T4995] blkdev_flush_mapping+0x168/0x31c [ 110.437868][ T4995] blkdev_put+0x490/0x6ac [ 110.439167][ T4995] blkdev_close+0x74/0xb0 [ 110.440292][ T4995] __fput+0x1c0/0x7f8 [ 110.441443][ T4995] ____fput+0x20/0x30 [ 110.442781][ T4995] task_work_run+0x12c/0x1e0 [ 110.444098][ T4995] do_notify_resume+0x24b4/0x3128 [ 110.445554][ T4995] el0_svc+0xf0/0x1e0 [ 110.446712][ T4995] el0t_64_sync_handler+0xcc/0xe4 [ 110.448217][ T4995] el0t_64_sync+0x1a0/0x1a4 [ 110.449632][ T4995] irq event stamp: 76558 [ 110.450792][ T4995] hardirqs last enabled at (76557): [] kasan_quarantine_put+0xc4/0x204 [ 110.453728][ T4995] hardirqs last disabled at (76558): [] smp_call_function_many_cond+0xa44/0xeb0 [ 110.456788][ T4995] softirqs last enabled at (75614): [] local_bh_enable+0x10/0x34 [ 110.459737][ T4995] softirqs last disabled at (75612): [] local_bh_disable+0x10/0x34 [ 110.462409][ T4995] ---[ end trace 79b29bec42893821 ]--- [ 110.501905][ T5031] loop0: detected capacity change from 0 to 128 [ 110.512934][ T5031] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.515393][ T5031] Bad inode number on dev loop0: 2 is out of range [ 110.517543][ T5031] SysV FS: get root inode failed [ 110.519110][ T5031] oldfs: cannot read superblock [ 110.526682][ T4995] ------------[ cut here ]------------ [ 110.528399][ T4995] VFS: brelse: Trying to free free buffer [ 110.530002][ T4995] WARNING: CPU: 1 PID: 4995 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.532726][ T4995] Modules linked in: [ 110.533759][ T4995] CPU: 1 PID: 4995 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 110.536457][ T4995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 110.539582][ T4995] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.541944][ T4995] pc : invalidate_bh_lru+0x128/0x234 [ 110.543486][ T4995] lr : invalidate_bh_lru+0x128/0x234 [ 110.545140][ T4995] sp : ffff80001b9777c0 [ 110.546314][ T4995] x29: ffff80001b9777c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 110.548617][ T4995] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 110.550945][ T4995] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e18b3a58 [ 110.553147][ T4995] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 110.555501][ T4995] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 110.557930][ T4995] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.560254][ T4995] x11: 0000000000000002 x10: 0000000000000000 x9 : a3a4f9b3bfc58400 [ 110.562598][ T4995] x8 : a3a4f9b3bfc58400 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.564962][ T4995] x5 : ffff80001b9770b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 110.567316][ T4995] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 110.569844][ T4995] Call trace: [ 110.570818][ T4995] invalidate_bh_lru+0x128/0x234 [ 110.572302][ T4995] smp_call_function_many_cond+0xa50/0xeb0 [ 110.574031][ T4995] on_each_cpu_cond_mask+0x5c/0xc4 [ 110.575478][ T4995] invalidate_bh_lrus+0x34/0x40 [ 110.576841][ T4995] blkdev_flush_mapping+0x168/0x31c [ 110.578320][ T4995] blkdev_put+0x490/0x6ac [ 110.579536][ T4995] blkdev_close+0x74/0xb0 [ 110.580681][ T4995] __fput+0x1c0/0x7f8 [ 110.581843][ T4995] ____fput+0x20/0x30 [ 110.582934][ T4995] task_work_run+0x12c/0x1e0 [ 110.584290][ T4995] do_notify_resume+0x24b4/0x3128 [ 110.585739][ T4995] el0_svc+0xf0/0x1e0 [ 110.586823][ T4995] el0t_64_sync_handler+0xcc/0xe4 [ 110.588348][ T4995] el0t_64_sync+0x1a0/0x1a4 [ 110.589701][ T4995] irq event stamp: 79548 [ 110.590813][ T4995] hardirqs last enabled at (79547): [] kasan_quarantine_put+0xc4/0x204 [ 110.593829][ T4995] hardirqs last disabled at (79548): [] smp_call_function_many_cond+0xa44/0xeb0 [ 110.596820][ T4995] softirqs last enabled at (79380): [] local_bh_enable+0x10/0x34 [ 110.599507][ T4995] softirqs last disabled at (79378): [] local_bh_disable+0x10/0x34 [ 110.602505][ T4995] ---[ end trace 79b29bec42893822 ]--- [ 110.655590][ T5033] loop0: detected capacity change from 0 to 128 [ 110.704146][ T5033] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.706236][ T5033] Bad inode number on dev loop0: 2 is out of range [ 110.708280][ T5033] SysV FS: get root inode failed [ 110.709738][ T5033] oldfs: cannot read superblock [ 110.716895][ C1] ------------[ cut here ]------------ [ 110.718530][ C1] VFS: brelse: Trying to free free buffer [ 110.720359][ C1] WARNING: CPU: 1 PID: 4808 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.722927][ C1] Modules linked in: [ 110.724037][ C1] CPU: 1 PID: 4808 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 110.726904][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 110.729840][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.732026][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 110.733638][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 110.735206][ C1] sp : ffff800008017de0 [ 110.736363][ C1] x29: ffff800008017de0 x28: ffff0000c8da3680 x27: 1fffe0003685d254 [ 110.738777][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 110.741075][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e18b3df8 [ 110.743358][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 110.745616][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 110.748023][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.750417][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 9b7e5bf98adaba00 [ 110.752848][ C1] x8 : 9b7e5bf98adaba00 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.755137][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 110.757460][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 110.759755][ C1] Call trace: [ 110.760748][ C1] invalidate_bh_lru+0x128/0x234 [ 110.762129][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 110.763862][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 110.765894][ C1] ipi_handler+0x108/0x70c [ 110.767130][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 110.768734][ C1] handle_domain_irq+0x144/0x1fc [ 110.770245][ C1] gic_handle_irq+0x78/0x1c8 [ 110.771565][ C1] call_on_irq_stack+0x24/0x4c [ 110.772903][ C1] do_interrupt_handler+0x6c/0x88 [ 110.774320][ C1] el1_interrupt+0x30/0x58 [ 110.775634][ C1] el1h_64_irq_handler+0x18/0x24 [ 110.777105][ C1] el1h_64_irq+0x78/0x7c [ 110.778260][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 110.779883][ C1] debug_check_no_obj_freed+0x450/0x46c [ 110.781471][ C1] free_unref_page_prepare+0x2fc/0xaa0 [ 110.783082][ C1] free_unref_page+0x78/0x1fc [ 110.784443][ C1] __free_pages+0x180/0x1d4 [ 110.785753][ C1] __free_slab+0x178/0x398 [ 110.787029][ C1] discard_slab+0x64/0xe0 [ 110.788310][ C1] __unfreeze_partials+0x150/0x190 [ 110.789808][ C1] put_cpu_partial+0x1a8/0x218 [ 110.791119][ C1] __slab_free+0x184/0x254 [ 110.792420][ C1] ___cache_free+0x178/0x1bc [ 110.793676][ C1] qlink_free+0x5c/0xa4 [ 110.795017][ C1] qlist_free_all+0x40/0xa8 [ 110.796249][ C1] kasan_quarantine_reduce+0x124/0x130 [ 110.797945][ C1] __kasan_slab_alloc+0x34/0xcc [ 110.799330][ C1] slab_post_alloc_hook+0x74/0x408 [ 110.800870][ C1] kmem_cache_alloc+0x1e0/0x3e4 [ 110.802272][ C1] __d_alloc+0x3c/0x65c [ 110.803519][ C1] d_alloc_cursor+0x48/0xd8 [ 110.804867][ C1] dcache_dir_open+0x3c/0x78 [ 110.806102][ C1] do_dentry_open+0x760/0xebc [ 110.807428][ C1] vfs_open+0x7c/0x90 [ 110.808595][ C1] path_openat+0x1f80/0x26e4 [ 110.809952][ C1] do_filp_open+0x164/0x330 [ 110.811261][ C1] do_sys_openat2+0x128/0x3d8 [ 110.812654][ C1] __arm64_sys_openat+0x120/0x154 [ 110.814073][ C1] invoke_syscall+0x98/0x2b8 [ 110.815436][ C1] el0_svc_common+0x138/0x258 [ 110.816825][ C1] do_el0_svc+0x58/0x14c [ 110.818014][ C1] el0_svc+0x78/0x1e0 [ 110.819145][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 110.820662][ C1] el0t_64_sync+0x1a0/0x1a4 [ 110.821950][ C1] irq event stamp: 217624 [ 110.823238][ C1] hardirqs last enabled at (217623): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 110.826301][ C1] hardirqs last disabled at (217624): [] enter_el1_irq_or_nmi+0x10/0x1c [ 110.829323][ C1] softirqs last enabled at (217374): [] local_bh_enable+0x10/0x34 [ 110.832006][ C1] softirqs last disabled at (217372): [] local_bh_disable+0x10/0x34 [ 110.834661][ C1] ---[ end trace 79b29bec42893823 ]--- [ 110.888336][ T5035] loop0: detected capacity change from 0 to 128 [ 110.912919][ T5035] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.915200][ T5035] Bad inode number on dev loop0: 2 is out of range [ 110.916993][ T5035] SysV FS: get root inode failed [ 110.918249][ T5035] oldfs: cannot read superblock [ 110.921428][ T4995] ------------[ cut here ]------------ [ 110.922964][ T4995] VFS: brelse: Trying to free free buffer [ 110.924558][ T4995] WARNING: CPU: 1 PID: 4995 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.926922][ T4995] Modules linked in: [ 110.927924][ T4995] CPU: 1 PID: 4995 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 110.930413][ T4995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 110.933540][ T4995] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.935743][ T4995] pc : invalidate_bh_lru+0x128/0x234 [ 110.937309][ T4995] lr : invalidate_bh_lru+0x128/0x234 [ 110.939011][ T4995] sp : ffff80001b9777c0 [ 110.940168][ T4995] x29: ffff80001b9777c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 110.942438][ T4995] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 110.944834][ T4995] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e18c2060 [ 110.947235][ T4995] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 110.949561][ T4995] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 110.951914][ T4995] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.954216][ T4995] x11: 0000000000000002 x10: 0000000000000000 x9 : a3a4f9b3bfc58400 [ 110.956640][ T4995] x8 : a3a4f9b3bfc58400 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.958925][ T4995] x5 : ffff80001b9770b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 110.961304][ T4995] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 110.963555][ T4995] Call trace: [ 110.964497][ T4995] invalidate_bh_lru+0x128/0x234 [ 110.965972][ T4995] smp_call_function_many_cond+0xa50/0xeb0 [ 110.967881][ T4995] on_each_cpu_cond_mask+0x5c/0xc4 [ 110.969340][ T4995] invalidate_bh_lrus+0x34/0x40 [ 110.970743][ T4995] blkdev_flush_mapping+0x168/0x31c [ 110.972270][ T4995] blkdev_put+0x490/0x6ac [ 110.973531][ T4995] blkdev_close+0x74/0xb0 [ 110.974871][ T4995] __fput+0x1c0/0x7f8 [ 110.976000][ T4995] ____fput+0x20/0x30 [ 110.977228][ T4995] task_work_run+0x12c/0x1e0 [ 110.978614][ T4995] do_notify_resume+0x24b4/0x3128 [ 110.980072][ T4995] el0_svc+0xf0/0x1e0 [ 110.981290][ T4995] el0t_64_sync_handler+0xcc/0xe4 [ 110.982744][ T4995] el0t_64_sync+0x1a0/0x1a4 [ 110.984012][ T4995] irq event stamp: 92604 [ 110.985281][ T4995] hardirqs last enabled at (92603): [] kasan_quarantine_put+0xc4/0x204 [ 110.988138][ T4995] hardirqs last disabled at (92604): [] smp_call_function_many_cond+0xa44/0xeb0 [ 110.991211][ T4995] softirqs last enabled at (92434): [] local_bh_enable+0x10/0x34 [ 110.994186][ T4995] softirqs last disabled at (92432): [] local_bh_disable+0x10/0x34 [ 110.997034][ T4995] ---[ end trace 79b29bec42893824 ]--- [ 111.069483][ T5037] loop0: detected capacity change from 0 to 128 [ 111.102786][ T5037] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.105756][ T5037] Bad inode number on dev loop0: 2 is out of range [ 111.107946][ T5037] SysV FS: get root inode failed [ 111.109407][ T5037] oldfs: cannot read superblock [ 111.117624][ C1] ------------[ cut here ]------------ [ 111.119326][ C1] VFS: brelse: Trying to free free buffer [ 111.121206][ C1] WARNING: CPU: 1 PID: 5037 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.123888][ C1] Modules linked in: [ 111.125047][ C1] CPU: 1 PID: 5037 Comm: syz.0.34 Tainted: G W 5.15.181-syzkaller #0 [ 111.127867][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 111.130797][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.132972][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 111.134542][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 111.136034][ C1] sp : ffff800008017de0 [ 111.137214][ C1] x29: ffff800008017de0 x28: ffff0000d8ad51c0 x27: 1fffe0003685d254 [ 111.139669][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 111.141921][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e18c2400 [ 111.144372][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 111.146740][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 111.149046][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.151385][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 454a59b16cdecd00 [ 111.153817][ C1] x8 : 454a59b16cdecd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.156228][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 111.158571][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 111.160922][ C1] Call trace: [ 111.161903][ C1] invalidate_bh_lru+0x128/0x234 [ 111.163312][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 111.165059][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 111.167102][ C1] ipi_handler+0x108/0x70c [ 111.168385][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 111.169916][ C1] handle_domain_irq+0x144/0x1fc [ 111.171324][ C1] gic_handle_irq+0x78/0x1c8 [ 111.172660][ C1] call_on_irq_stack+0x24/0x4c [ 111.174081][ C1] do_interrupt_handler+0x6c/0x88 [ 111.175475][ C1] el1_interrupt+0x30/0x58 [ 111.176823][ C1] el1h_64_irq_handler+0x18/0x24 [ 111.178342][ C1] el1h_64_irq+0x78/0x7c [ 111.179540][ C1] __sanitizer_cov_trace_pc+0x74/0xac [ 111.181135][ C1] free_pages_and_swap_cache+0x70/0xb8 [ 111.182715][ C1] tlb_finish_mmu+0x170/0x324 [ 111.184009][ C1] exit_mmap+0x2c4/0x4e0 [ 111.185233][ C1] __mmput+0xec/0x3b8 [ 111.186381][ C1] mmput+0x80/0xc8 [ 111.187347][ C1] exit_mm+0x4a0/0x684 [ 111.188551][ C1] do_exit+0x4e4/0x1f58 [ 111.189732][ C1] do_group_exit+0x100/0x268 [ 111.191150][ C1] get_signal+0x73c/0x1340 [ 111.192365][ C1] do_notify_resume+0x35c/0x3128 [ 111.193963][ C1] el0_svc+0xf0/0x1e0 [ 111.195148][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 111.196638][ C1] el0t_64_sync+0x1a0/0x1a4 [ 111.197974][ C1] irq event stamp: 2666 [ 111.199146][ C1] hardirqs last enabled at (2665): [] free_unref_page_list+0x6c8/0x754 [ 111.202025][ C1] hardirqs last disabled at (2666): [] enter_el1_irq_or_nmi+0x10/0x1c [ 111.204887][ C1] softirqs last enabled at (1212): [] local_bh_enable+0x10/0x34 [ 111.207664][ C1] softirqs last disabled at (1210): [] local_bh_disable+0x10/0x34 [ 111.210468][ C1] ---[ end trace 79b29bec42893825 ]--- [ 111.280640][ T5040] loop0: detected capacity change from 0 to 128 [ 111.285796][ T5040] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.287778][ T5040] Bad inode number on dev loop0: 2 is out of range [ 111.289564][ T5040] SysV FS: get root inode failed [ 111.298955][ T5040] oldfs: cannot read superblock [ 111.302937][ T9] device hsr_slave_0 left promiscuous mode [ 111.311852][ T5038] ------------[ cut here ]------------ [ 111.313525][ T5038] VFS: brelse: Trying to free free buffer [ 111.315097][ T5038] WARNING: CPU: 0 PID: 5038 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.317625][ T5038] Modules linked in: [ 111.318678][ T5038] CPU: 0 PID: 5038 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 111.321518][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 111.324533][ T5038] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.326780][ T5038] pc : invalidate_bh_lru+0x128/0x234 [ 111.328317][ T5038] lr : invalidate_bh_lru+0x128/0x234 [ 111.329867][ T5038] sp : ffff80001f8e77c0 [ 111.330892][ T5038] x29: ffff80001f8e77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 111.333185][ T5038] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 111.335423][ T5038] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe2230 [ 111.337676][ T5038] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 111.340026][ T5038] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 111.342349][ T5038] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.344599][ T5038] x11: 0000000000000002 x10: 0000000000000000 x9 : a6e0c4b4b2791200 [ 111.346915][ T5038] x8 : a6e0c4b4b2791200 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.349207][ T5038] x5 : ffff80001f8e70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 111.351472][ T5038] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 111.353864][ T5038] Call trace: [ 111.354693][ T5038] invalidate_bh_lru+0x128/0x234 [ 111.356125][ T5038] smp_call_function_many_cond+0xa50/0xeb0 [ 111.357816][ T5038] on_each_cpu_cond_mask+0x5c/0xc4 [ 111.359264][ T5038] invalidate_bh_lrus+0x34/0x40 [ 111.360639][ T5038] blkdev_flush_mapping+0x168/0x31c [ 111.362120][ T5038] blkdev_put+0x490/0x6ac [ 111.363299][ T5038] blkdev_close+0x74/0xb0 [ 111.364608][ T5038] __fput+0x1c0/0x7f8 [ 111.365769][ T5038] ____fput+0x20/0x30 [ 111.366871][ T5038] task_work_run+0x12c/0x1e0 [ 111.368123][ T5038] do_notify_resume+0x24b4/0x3128 [ 111.369614][ T5038] el0_svc+0xf0/0x1e0 [ 111.370704][ T5038] el0t_64_sync_handler+0xcc/0xe4 [ 111.372112][ T5038] el0t_64_sync+0x1a0/0x1a4 [ 111.373450][ T5038] irq event stamp: 10814 [ 111.374626][ T5038] hardirqs last enabled at (10813): [] kasan_quarantine_put+0xc4/0x204 [ 111.377452][ T5038] hardirqs last disabled at (10814): [] smp_call_function_many_cond+0xa44/0xeb0 [ 111.380492][ T5038] softirqs last enabled at (10416): [] handle_softirqs+0xa4c/0xbf0 [ 111.383099][ T5038] softirqs last disabled at (10315): [] __irq_exit_rcu+0x240/0x440 [ 111.385732][ T5038] ---[ end trace 79b29bec42893826 ]--- [ 111.389716][ T4113] Bluetooth: hci0: command 0x0419 tx timeout [ 111.392964][ T9] device hsr_slave_1 left promiscuous mode [ 111.455380][ T5042] loop0: detected capacity change from 0 to 128 [ 111.480509][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 111.482513][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 111.485404][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 111.486822][ T5042] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.487469][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 111.489402][ T5042] Bad inode number on dev loop0: 2 is out of range [ 111.498227][ T5042] SysV FS: get root inode failed [ 111.499693][ T5042] oldfs: cannot read superblock [ 111.501371][ T9] device bridge_slave_1 left promiscuous mode [ 111.503257][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 111.513513][ T5038] ------------[ cut here ]------------ [ 111.515091][ T5038] VFS: brelse: Trying to free free buffer [ 111.516697][ T5038] WARNING: CPU: 0 PID: 5038 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.519124][ T5038] Modules linked in: [ 111.520197][ T5038] CPU: 0 PID: 5038 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 111.522755][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 111.525587][ T5038] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.527903][ T5038] pc : invalidate_bh_lru+0x128/0x234 [ 111.529485][ T5038] lr : invalidate_bh_lru+0x128/0x234 [ 111.531036][ T5038] sp : ffff80001f8e77c0 [ 111.532141][ T5038] x29: ffff80001f8e77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 111.534567][ T5038] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 111.536818][ T5038] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe25d0 [ 111.539164][ T5038] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 111.541546][ T5038] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 111.543759][ T5038] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.546040][ T5038] x11: 0000000000000002 x10: 0000000000000000 x9 : a6e0c4b4b2791200 [ 111.548333][ T5038] x8 : a6e0c4b4b2791200 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.550779][ T5038] x5 : ffff80001f8e70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 111.553041][ T5038] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 111.555222][ T5038] Call trace: [ 111.556222][ T5038] invalidate_bh_lru+0x128/0x234 [ 111.557539][ T5038] smp_call_function_many_cond+0xa50/0xeb0 [ 111.559257][ T5038] on_each_cpu_cond_mask+0x5c/0xc4 [ 111.560629][ T5038] invalidate_bh_lrus+0x34/0x40 [ 111.562066][ T5038] blkdev_flush_mapping+0x168/0x31c [ 111.563555][ T5038] blkdev_put+0x490/0x6ac [ 111.564776][ T5038] blkdev_close+0x74/0xb0 [ 111.565983][ T5038] __fput+0x1c0/0x7f8 [ 111.567074][ T5038] ____fput+0x20/0x30 [ 111.568215][ T5038] task_work_run+0x12c/0x1e0 [ 111.569553][ T5038] do_notify_resume+0x24b4/0x3128 [ 111.571004][ T5038] el0_svc+0xf0/0x1e0 [ 111.572098][ T5038] el0t_64_sync_handler+0xcc/0xe4 [ 111.573541][ T5038] el0t_64_sync+0x1a0/0x1a4 [ 111.574799][ T5038] irq event stamp: 15468 [ 111.576067][ T5038] hardirqs last enabled at (15467): [] kasan_quarantine_put+0xc4/0x204 [ 111.578895][ T5038] hardirqs last disabled at (15468): [] smp_call_function_many_cond+0xa44/0xeb0 [ 111.582023][ T5038] softirqs last enabled at (15344): [] local_bh_enable+0x10/0x34 [ 111.584781][ T5038] softirqs last disabled at (15342): [] local_bh_disable+0x10/0x34 [ 111.587546][ T5038] ---[ end trace 79b29bec42893827 ]--- [ 111.593771][ T9] device bridge_slave_0 left promiscuous mode [ 111.595713][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 111.645246][ T5044] loop0: detected capacity change from 0 to 128 [ 111.662239][ T5044] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.664220][ T5044] Bad inode number on dev loop0: 2 is out of range [ 111.665975][ T5044] SysV FS: get root inode failed [ 111.667297][ T5044] oldfs: cannot read superblock [ 111.668610][ T5044] ------------[ cut here ]------------ [ 111.670133][ T5044] VFS: brelse: Trying to free free buffer [ 111.671845][ T5044] WARNING: CPU: 0 PID: 5044 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.674531][ T5044] Modules linked in: [ 111.675653][ T5044] CPU: 0 PID: 5044 Comm: syz.0.37 Tainted: G W 5.15.181-syzkaller #0 [ 111.678323][ T5044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 111.681187][ T5044] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.683508][ T5044] pc : invalidate_bh_lru+0x128/0x234 [ 111.685056][ T5044] lr : invalidate_bh_lru+0x128/0x234 [ 111.686519][ T5044] sp : ffff80001f3f76e0 [ 111.687754][ T5044] x29: ffff80001f3f76e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 111.689937][ T5044] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 111.692302][ T5044] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe2970 [ 111.694618][ T5044] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 111.696851][ T5044] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 111.699183][ T5044] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.701454][ T5044] x11: 0000000000000002 x10: 0000000000000000 x9 : 96be517a0078e000 [ 111.703657][ T5044] x8 : 96be517a0078e000 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.705969][ T5044] x5 : ffff80001f3f6fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 111.708203][ T5044] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 111.710547][ T5044] Call trace: [ 111.711437][ T5044] invalidate_bh_lru+0x128/0x234 [ 111.712819][ T5044] smp_call_function_many_cond+0xa50/0xeb0 [ 111.714398][ T5044] on_each_cpu_cond_mask+0x5c/0xc4 [ 111.715886][ T5044] invalidate_bh_lrus+0x34/0x40 [ 111.717317][ T5044] blkdev_flush_mapping+0x168/0x31c [ 111.718755][ T5044] blkdev_put+0x490/0x6ac [ 111.720022][ T5044] kill_block_super+0x98/0xdc [ 111.721390][ T5044] deactivate_locked_super+0xb8/0x13c [ 111.722860][ T5044] mount_bdev+0x284/0x358 [ 111.724221][ T5044] sysv_mount+0x44/0x58 [ 111.725376][ T5044] legacy_get_tree+0xd4/0x16c [ 111.726749][ T5044] vfs_get_tree+0x90/0x274 [ 111.728042][ T5044] do_new_mount+0x228/0x810 [ 111.729262][ T5044] path_mount+0x5b4/0x1000 [ 111.730558][ T5044] __arm64_sys_mount+0x514/0x5e4 [ 111.732033][ T5044] invoke_syscall+0x98/0x2b8 [ 111.733386][ T5044] el0_svc_common+0x138/0x258 [ 111.734720][ T5044] do_el0_svc+0x58/0x14c [ 111.735988][ T5044] el0_svc+0x78/0x1e0 [ 111.737148][ T5044] el0t_64_sync_handler+0xcc/0xe4 [ 111.738609][ T5044] el0t_64_sync+0x1a0/0x1a4 [ 111.739898][ T5044] irq event stamp: 1054 [ 111.741094][ T5044] hardirqs last enabled at (1053): [] kasan_quarantine_put+0xc4/0x204 [ 111.743941][ T5044] hardirqs last disabled at (1054): [] smp_call_function_many_cond+0xa44/0xeb0 [ 111.747096][ T5044] softirqs last enabled at (828): [] local_bh_enable+0x10/0x34 [ 111.749606][ T5044] softirqs last disabled at (826): [] local_bh_disable+0x10/0x34 [ 111.752153][ T5044] ---[ end trace 79b29bec42893828 ]--- [ 111.790584][ T9] device veth1_macvtap left promiscuous mode [ 111.792375][ T9] device veth0_macvtap left promiscuous mode [ 111.794074][ T9] device veth1_vlan left promiscuous mode [ 111.795701][ T9] device veth0_vlan left promiscuous mode [ 111.877906][ T5046] loop0: detected capacity change from 0 to 128 [ 111.895521][ T5046] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.898239][ T5046] Bad inode number on dev loop0: 2 is out of range [ 111.900987][ T5046] SysV FS: get root inode failed [ 111.902370][ T5046] oldfs: cannot read superblock [ 111.907326][ C0] ------------[ cut here ]------------ [ 111.909021][ C0] VFS: brelse: Trying to free free buffer [ 111.910736][ C0] WARNING: CPU: 0 PID: 5046 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.913322][ C0] Modules linked in: [ 111.914523][ C0] CPU: 0 PID: 5046 Comm: syz.0.38 Tainted: G W 5.15.181-syzkaller #0 [ 111.917197][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 111.920106][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.922278][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 111.923872][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 111.925370][ C0] sp : ffff800008007de0 [ 111.926547][ C0] x29: ffff800008007de0 x28: ffff0000ce2551c0 x27: 1fffe00036859054 [ 111.929034][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 111.931439][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debe2d10 [ 111.933869][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 111.936298][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 111.938609][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.941013][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : c47a1414d5259c00 [ 111.943503][ C0] x8 : c47a1414d5259c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.945824][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 111.948259][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 111.950781][ C0] Call trace: [ 111.951848][ C0] invalidate_bh_lru+0x128/0x234 [ 111.953329][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 111.955019][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 111.957023][ C0] ipi_handler+0x108/0x70c [ 111.958299][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 111.959947][ C0] handle_domain_irq+0x144/0x1fc [ 111.961403][ C0] gic_handle_irq+0x78/0x1c8 [ 111.962724][ C0] call_on_irq_stack+0x24/0x4c [ 111.964115][ C0] do_interrupt_handler+0x6c/0x88 [ 111.965635][ C0] el1_interrupt+0x30/0x58 [ 111.967051][ C0] el1h_64_irq_handler+0x18/0x24 [ 111.968541][ C0] el1h_64_irq+0x78/0x7c [ 111.969823][ C0] kasan_quarantine_put+0xd4/0x204 [ 111.971316][ C0] ____kasan_slab_free+0x124/0x164 [ 111.972889][ C0] __kasan_slab_free+0x18/0x28 [ 111.974347][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 111.975892][ C0] kmem_cache_free+0xdc/0x3b4 [ 111.977215][ C0] vm_area_free+0x28/0x38 [ 111.978542][ C0] exit_mmap+0x3e0/0x4e0 [ 111.979661][ C0] __mmput+0xec/0x3b8 [ 111.980766][ C0] mmput+0x80/0xc8 [ 111.981912][ C0] exit_mm+0x4a0/0x684 [ 111.983052][ C0] do_exit+0x4e4/0x1f58 [ 111.984314][ C0] do_group_exit+0x100/0x268 [ 111.985678][ C0] get_signal+0x73c/0x1340 [ 111.987080][ C0] do_notify_resume+0x35c/0x3128 [ 111.988397][ C0] el0_svc+0xf0/0x1e0 [ 111.989512][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 111.990953][ C0] el0t_64_sync+0x1a0/0x1a4 [ 111.992248][ C0] irq event stamp: 2968 [ 111.993406][ C0] hardirqs last enabled at (2967): [] kasan_quarantine_put+0xc4/0x204 [ 111.996298][ C0] hardirqs last disabled at (2968): [] enter_el1_irq_or_nmi+0x10/0x1c [ 111.999169][ C0] softirqs last enabled at (1470): [] local_bh_enable+0x10/0x34 [ 112.001795][ C0] softirqs last disabled at (1468): [] local_bh_disable+0x10/0x34 [ 112.004673][ C0] ---[ end trace 79b29bec42893829 ]--- [ 112.097923][ T5048] loop0: detected capacity change from 0 to 128 [ 112.103719][ T5048] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.105843][ T5048] Bad inode number on dev loop0: 2 is out of range [ 112.107757][ T5048] SysV FS: get root inode failed [ 112.109180][ T5048] oldfs: cannot read superblock [ 112.127228][ C0] ------------[ cut here ]------------ [ 112.128840][ C0] VFS: brelse: Trying to free free buffer [ 112.130557][ C0] WARNING: CPU: 0 PID: 5051 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.133095][ C0] Modules linked in: [ 112.134280][ C0] CPU: 0 PID: 5051 Comm: syz.0.40 Tainted: G W 5.15.181-syzkaller #0 [ 112.137004][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 112.139862][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.142016][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 112.143490][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 112.145048][ C0] sp : ffff800008007de0 [ 112.146238][ C0] x29: ffff800008007de0 x28: ffff0000d7b43680 x27: 1fffe00036859054 [ 112.148505][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 112.150710][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debde148 [ 112.152924][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 112.155089][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 112.157323][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.159609][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 249559a679677c00 [ 112.161928][ C0] x8 : 249559a679677c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.164165][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 112.166587][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 112.168924][ C0] Call trace: [ 112.169936][ C0] invalidate_bh_lru+0x128/0x234 [ 112.171411][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 112.173150][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 112.175281][ C0] ipi_handler+0x108/0x70c [ 112.176522][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 112.178042][ C0] handle_domain_irq+0x144/0x1fc [ 112.179437][ C0] gic_handle_irq+0x78/0x1c8 [ 112.180685][ C0] call_on_irq_stack+0x24/0x4c [ 112.182123][ C0] do_interrupt_handler+0x6c/0x88 [ 112.183520][ C0] el1_interrupt+0x30/0x58 [ 112.184721][ C0] el1h_64_irq_handler+0x18/0x24 [ 112.186139][ C0] el1h_64_irq+0x78/0x7c [ 112.187301][ C0] charge_memcg+0x198/0x220 [ 112.188567][ C0] __mem_cgroup_charge+0x38/0xb0 [ 112.189963][ C0] handle_mm_fault+0x193c/0x2950 [ 112.191413][ C0] do_page_fault+0x694/0xad4 [ 112.192638][ C0] do_translation_fault+0xe0/0x130 [ 112.194164][ C0] do_mem_abort+0x6c/0x1ac [ 112.195366][ C0] el0_da+0x90/0x1fc [ 112.196423][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 112.197926][ C0] el0t_64_sync+0x1a0/0x1a4 [ 112.199265][ C0] irq event stamp: 210 [ 112.200409][ C0] hardirqs last enabled at (209): [] charge_memcg+0x190/0x220 [ 112.203088][ C0] hardirqs last disabled at (210): [] enter_el1_irq_or_nmi+0x10/0x1c [ 112.205854][ C0] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 112.208433][ C0] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 112.211114][ C0] ---[ end trace 79b29bec4289382a ]--- [ 112.267454][ T5051] loop0: detected capacity change from 0 to 128 [ 112.273890][ T5051] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.276012][ T5051] Bad inode number on dev loop0: 2 is out of range [ 112.277798][ T5051] SysV FS: get root inode failed [ 112.279153][ T5051] oldfs: cannot read superblock [ 112.290065][ C0] ------------[ cut here ]------------ [ 112.291703][ C0] VFS: brelse: Trying to free free buffer [ 112.293355][ C0] WARNING: CPU: 0 PID: 4808 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.295898][ C0] Modules linked in: [ 112.297109][ C0] CPU: 0 PID: 4808 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 112.299989][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 112.302961][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.305223][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 112.306767][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 112.308392][ C0] sp : ffff800008007de0 [ 112.309583][ C0] x29: ffff800008007de0 x28: ffff0000c8da3680 x27: 1fffe00036859054 [ 112.312015][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 112.314456][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debde4e8 [ 112.316717][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010004 [ 112.319066][ C0] x17: 0000000000010004 x16: ffff8000111a3970 x15: 00000000ffffffff [ 112.321387][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.323735][ C0] x11: 0000000000010003 x10: 0000000000010003 x9 : 9b7e5bf98adaba00 [ 112.326029][ C0] x8 : 9b7e5bf98adaba00 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.328330][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 112.330756][ C0] x2 : 0000000000000001 x1 : 0000000100010003 x0 : 0000000000000027 [ 112.333200][ C0] Call trace: [ 112.334154][ C0] invalidate_bh_lru+0x128/0x234 [ 112.335605][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 112.337476][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 112.339544][ C0] ipi_handler+0x108/0x70c [ 112.340846][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 112.342455][ C0] handle_domain_irq+0x144/0x1fc [ 112.343891][ C0] gic_handle_irq+0x78/0x1c8 [ 112.345167][ C0] call_on_irq_stack+0x24/0x4c [ 112.346590][ C0] do_interrupt_handler+0x6c/0x88 [ 112.348049][ C0] el1_interrupt+0x30/0x58 [ 112.349388][ C0] el1h_64_irq_handler+0x18/0x24 [ 112.350854][ C0] el1h_64_irq+0x78/0x7c [ 112.352058][ C0] rcu_is_watching+0xa0/0x134 [ 112.353486][ C0] lock_release+0xb4/0x8e8 [ 112.354816][ C0] _raw_spin_unlock+0x8c/0x11c [ 112.356301][ C0] remove_vm_area+0x174/0x1c4 [ 112.357679][ C0] __vunmap+0x304/0x9bc [ 112.358937][ C0] vfree+0xbc/0x154 [ 112.360029][ C0] do_ipt_get_ctl+0x10ec/0x13a8 [ 112.361425][ C0] nf_getsockopt+0x264/0x284 [ 112.362684][ C0] ip_getsockopt+0xffc/0x158c [ 112.363969][ C0] tcp_getsockopt+0x214/0x2e74 [ 112.365342][ C0] sock_common_getsockopt+0xa8/0xc4 [ 112.366721][ C0] __sys_getsockopt+0x1e0/0x45c [ 112.368087][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 112.369566][ C0] invoke_syscall+0x98/0x2b8 [ 112.370920][ C0] el0_svc_common+0x138/0x258 [ 112.372271][ C0] do_el0_svc+0x58/0x14c [ 112.373560][ C0] el0_svc+0x78/0x1e0 [ 112.374667][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 112.376142][ C0] el0t_64_sync+0x1a0/0x1a4 [ 112.377431][ C0] irq event stamp: 245650 [ 112.378657][ C0] hardirqs last enabled at (245649): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 112.381806][ C0] hardirqs last disabled at (245650): [] enter_el1_irq_or_nmi+0x10/0x1c [ 112.384770][ C0] softirqs last enabled at (245618): [] release_sock+0x1d0/0x258 [ 112.387545][ C0] softirqs last disabled at (245616): [] release_sock+0x34/0x258 [ 112.390144][ C0] ---[ end trace 79b29bec4289382b ]--- [ 112.415536][ T9] team0 (unregistering): Port device team_slave_1 removed [ 112.425135][ T9] team0 (unregistering): Port device team_slave_0 removed [ 112.437219][ T5053] loop0: detected capacity change from 0 to 128 [ 112.442204][ T5053] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.444564][ T5053] Bad inode number on dev loop0: 2 is out of range [ 112.446354][ T5053] SysV FS: get root inode failed [ 112.447880][ T5053] oldfs: cannot read superblock [ 112.448654][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 112.449524][ T5053] ------------[ cut here ]------------ [ 112.453617][ T5053] VFS: brelse: Trying to free free buffer [ 112.455450][ T5053] WARNING: CPU: 1 PID: 5053 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.458151][ T5053] Modules linked in: [ 112.459379][ T5053] CPU: 1 PID: 5053 Comm: syz.0.41 Tainted: G W 5.15.181-syzkaller #0 [ 112.461955][ T5053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 112.465125][ T5053] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.467409][ T5053] pc : invalidate_bh_lru+0x128/0x234 [ 112.468995][ T5053] lr : invalidate_bh_lru+0x128/0x234 [ 112.470489][ T5053] sp : ffff80001f5676e0 [ 112.471709][ T5053] x29: ffff80001f5676e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 112.474072][ T5053] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 112.476350][ T5053] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e18c27a0 [ 112.478713][ T5053] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 112.481072][ T5053] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 112.483479][ T5053] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.485780][ T5053] x11: 0000000000000002 x10: 0000000000000000 x9 : 5135a609514f7300 [ 112.488211][ T5053] x8 : 5135a609514f7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.490701][ T5053] x5 : ffff80001f566fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 112.493048][ T5053] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 112.495378][ T5053] Call trace: [ 112.496275][ T5053] invalidate_bh_lru+0x128/0x234 [ 112.497677][ T5053] smp_call_function_many_cond+0xa50/0xeb0 [ 112.499350][ T5053] on_each_cpu_cond_mask+0x5c/0xc4 [ 112.500816][ T5053] invalidate_bh_lrus+0x34/0x40 [ 112.502300][ T5053] blkdev_flush_mapping+0x168/0x31c [ 112.503932][ T5053] blkdev_put+0x490/0x6ac [ 112.505290][ T5053] kill_block_super+0x98/0xdc [ 112.506657][ T5053] deactivate_locked_super+0xb8/0x13c [ 112.508231][ T5053] mount_bdev+0x284/0x358 [ 112.509575][ T5053] sysv_mount+0x44/0x58 [ 112.510936][ T5053] legacy_get_tree+0xd4/0x16c [ 112.512315][ T5053] vfs_get_tree+0x90/0x274 [ 112.513573][ T5053] do_new_mount+0x228/0x810 [ 112.514945][ T5053] path_mount+0x5b4/0x1000 [ 112.516203][ T5053] __arm64_sys_mount+0x514/0x5e4 [ 112.517586][ T5053] invoke_syscall+0x98/0x2b8 [ 112.518993][ T5053] el0_svc_common+0x138/0x258 [ 112.520338][ T5053] do_el0_svc+0x58/0x14c [ 112.521561][ T5053] el0_svc+0x78/0x1e0 [ 112.522702][ T5053] el0t_64_sync_handler+0xcc/0xe4 [ 112.524152][ T5053] el0t_64_sync+0x1a0/0x1a4 [ 112.525572][ T5053] irq event stamp: 1060 [ 112.526810][ T5053] hardirqs last enabled at (1059): [] kasan_quarantine_put+0xc4/0x204 [ 112.529598][ T5053] hardirqs last disabled at (1060): [] smp_call_function_many_cond+0xa44/0xeb0 [ 112.532677][ T5053] softirqs last enabled at (846): [] local_bh_enable+0x10/0x34 [ 112.535466][ T5053] softirqs last disabled at (844): [] local_bh_disable+0x10/0x34 [ 112.538305][ T5053] ---[ end trace 79b29bec4289382c ]--- [ 112.558369][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 112.622319][ T5055] loop0: detected capacity change from 0 to 128 [ 112.626250][ T5055] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.628420][ T5055] Bad inode number on dev loop0: 2 is out of range [ 112.633458][ T5055] SysV FS: get root inode failed [ 112.634842][ T5055] oldfs: cannot read superblock [ 112.645965][ C1] ------------[ cut here ]------------ [ 112.647586][ C1] VFS: brelse: Trying to free free buffer [ 112.649314][ C1] WARNING: CPU: 1 PID: 4808 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.652099][ C1] Modules linked in: [ 112.653202][ C1] CPU: 1 PID: 4808 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 112.656050][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 112.659094][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.661387][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 112.662865][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 112.664411][ C1] sp : ffff800008017de0 [ 112.665556][ C1] x29: ffff800008017de0 x28: ffff0000c8da3680 x27: 1fffe0003685d254 [ 112.667912][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 112.670169][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e18c2b40 [ 112.672511][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 112.674796][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 112.677071][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.679439][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 9b7e5bf98adaba00 [ 112.681823][ C1] x8 : 9b7e5bf98adaba00 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.684207][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 112.686621][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 112.689096][ C1] Call trace: [ 112.690115][ C1] invalidate_bh_lru+0x128/0x234 [ 112.691499][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 112.693120][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 112.695115][ C1] ipi_handler+0x108/0x70c [ 112.696419][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 112.697940][ C1] handle_domain_irq+0x144/0x1fc [ 112.699398][ C1] gic_handle_irq+0x78/0x1c8 [ 112.700719][ C1] call_on_irq_stack+0x24/0x4c [ 112.702068][ C1] do_interrupt_handler+0x6c/0x88 [ 112.703494][ C1] el1_interrupt+0x30/0x58 [ 112.704857][ C1] el1h_64_irq_handler+0x18/0x24 [ 112.706297][ C1] el1h_64_irq+0x78/0x7c [ 112.707582][ C1] ___slab_alloc+0x2e8/0xda8 [ 112.708894][ C1] __slab_alloc+0x68/0xc0 [ 112.710141][ C1] __kmalloc+0x2ec/0x44c [ 112.711335][ C1] tomoyo_realpath_from_path+0xcc/0x510 [ 112.712937][ C1] tomoyo_path_perm+0x1b4/0x440 [ 112.714374][ C1] tomoyo_inode_getattr+0x28/0x38 [ 112.715827][ C1] security_inode_getattr+0xd8/0x124 [ 112.717407][ C1] vfs_statx+0x118/0x458 [ 112.718639][ C1] __arm64_sys_newfstatat+0x10c/0x190 [ 112.720225][ C1] invoke_syscall+0x98/0x2b8 [ 112.721579][ C1] el0_svc_common+0x138/0x258 [ 112.722943][ C1] do_el0_svc+0x58/0x14c [ 112.724183][ C1] el0_svc+0x78/0x1e0 [ 112.725290][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 112.726735][ C1] el0t_64_sync+0x1a0/0x1a4 [ 112.728065][ C1] irq event stamp: 252034 [ 112.729270][ C1] hardirqs last enabled at (252033): [] ___slab_alloc+0x2d8/0xda8 [ 112.732048][ C1] hardirqs last disabled at (252034): [] enter_el1_irq_or_nmi+0x10/0x1c [ 112.735048][ C1] softirqs last enabled at (250666): [] local_bh_enable+0x10/0x34 [ 112.737837][ C1] softirqs last disabled at (250664): [] local_bh_disable+0x10/0x34 [ 112.740585][ C1] ---[ end trace 79b29bec4289382d ]--- [ 112.816564][ T5057] loop0: detected capacity change from 0 to 128 [ 112.827698][ T9] bond0 (unregistering): Released all slaves [ 112.829657][ T5057] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.834386][ T5057] Bad inode number on dev loop0: 2 is out of range [ 112.836223][ T5057] SysV FS: get root inode failed [ 112.837621][ T5057] oldfs: cannot read superblock [ 112.839278][ C0] ------------[ cut here ]------------ [ 112.840857][ C0] VFS: brelse: Trying to free free buffer [ 112.842494][ C0] WARNING: CPU: 0 PID: 136 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.845042][ C0] Modules linked in: [ 112.846244][ C0] CPU: 0 PID: 136 Comm: kworker/u4:1 Tainted: G W 5.15.181-syzkaller #0 [ 112.849144][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 112.852021][ C0] Workqueue: events_unbound fsnotify_connector_destroy_workfn [ 112.854095][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.856329][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 112.857838][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 112.859313][ C0] sp : ffff800008007de0 [ 112.860494][ C0] x29: ffff800008007de0 x28: ffff0000c230b680 x27: 1fffe00036859053 [ 112.862793][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 112.865079][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debde888 [ 112.867419][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010003 [ 112.869753][ C0] x17: 0000000000010003 x16: ffff8000083007d8 x15: 00000000ffffffff [ 112.872005][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.874293][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 10b2a0fcebdaea00 [ 112.876599][ C0] x8 : 10b2a0fcebdaea00 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.878938][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 112.881502][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 112.883897][ C0] Call trace: [ 112.884813][ C0] invalidate_bh_lru+0x128/0x234 [ 112.886303][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 112.888059][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 112.890117][ C0] ipi_handler+0x108/0x70c [ 112.891345][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 112.892947][ C0] handle_domain_irq+0x144/0x1fc [ 112.894397][ C0] gic_handle_irq+0x78/0x1c8 [ 112.895655][ C0] call_on_irq_stack+0x24/0x4c [ 112.897029][ C0] do_interrupt_handler+0x6c/0x88 [ 112.898542][ C0] el1_interrupt+0x30/0x58 [ 112.899807][ C0] el1h_64_irq_handler+0x18/0x24 [ 112.901213][ C0] el1h_64_irq+0x78/0x7c [ 112.902499][ C0] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 112.904144][ C0] srcu_gp_start_if_needed+0x594/0x92c [ 112.905831][ C0] __synchronize_srcu+0x25c/0x2ec [ 112.907370][ C0] synchronize_srcu+0x194/0x1ac [ 112.908772][ C0] fsnotify_connector_destroy_workfn+0x48/0xac [ 112.910543][ C0] process_one_work+0x79c/0x1140 [ 112.911994][ C0] worker_thread+0x8f4/0x101c [ 112.913395][ C0] kthread+0x374/0x454 [ 112.914633][ C0] ret_from_fork+0x10/0x20 [ 112.915854][ C0] irq event stamp: 683158 [ 112.917084][ C0] hardirqs last enabled at (683157): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 112.920092][ C0] hardirqs last disabled at (683158): [] enter_el1_irq_or_nmi+0x10/0x1c [ 112.922919][ C0] softirqs last enabled at (683134): [] batadv_nc_purge_paths+0x308/0x390 [ 112.925822][ C0] softirqs last disabled at (683132): [] batadv_nc_purge_paths+0xd0/0x390 [ 112.928936][ C0] ---[ end trace 79b29bec4289382e ]--- [ 113.023300][ T5059] loop0: detected capacity change from 0 to 128 [ 113.027778][ T5059] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.029728][ T5059] Bad inode number on dev loop0: 2 is out of range [ 113.035193][ T5059] SysV FS: get root inode failed [ 113.036779][ T5059] oldfs: cannot read superblock [ 113.045086][ T5038] ------------[ cut here ]------------ [ 113.046680][ T5038] VFS: brelse: Trying to free free buffer [ 113.048400][ T5038] WARNING: CPU: 0 PID: 5038 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.050986][ T5038] Modules linked in: [ 113.052068][ T5038] CPU: 0 PID: 5038 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 113.054691][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 113.057616][ T5038] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.059908][ T5038] pc : invalidate_bh_lru+0x128/0x234 [ 113.061487][ T5038] lr : invalidate_bh_lru+0x128/0x234 [ 113.063038][ T5038] sp : ffff80001f8e77c0 [ 113.064219][ T5038] x29: ffff80001f8e77c0 x28: ffff80001414d000 x27: 1fffe00036859054 [ 113.066538][ T5038] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 113.068698][ T5038] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debdec28 [ 113.071054][ T5038] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 113.073479][ T5038] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 113.075665][ T5038] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.077998][ T5038] x11: 0000000000000002 x10: 0000000000000000 x9 : a6e0c4b4b2791200 [ 113.080536][ T5038] x8 : a6e0c4b4b2791200 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.083147][ T5038] x5 : ffff80001f8e70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 113.085696][ T5038] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 113.088097][ T5038] Call trace: [ 113.089116][ T5038] invalidate_bh_lru+0x128/0x234 [ 113.090535][ T5038] smp_call_function_many_cond+0xa50/0xeb0 [ 113.092233][ T5038] on_each_cpu_cond_mask+0x5c/0xc4 [ 113.093675][ T5038] invalidate_bh_lrus+0x34/0x40 [ 113.095051][ T5038] blkdev_flush_mapping+0x168/0x31c [ 113.096605][ T5038] blkdev_put+0x490/0x6ac [ 113.097821][ T5038] blkdev_close+0x74/0xb0 [ 113.099126][ T5038] __fput+0x1c0/0x7f8 [ 113.100294][ T5038] ____fput+0x20/0x30 [ 113.101487][ T5038] task_work_run+0x12c/0x1e0 [ 113.102790][ T5038] do_notify_resume+0x24b4/0x3128 [ 113.104208][ T5038] el0_svc+0xf0/0x1e0 [ 113.105390][ T5038] el0t_64_sync_handler+0xcc/0xe4 [ 113.106841][ T5038] el0t_64_sync+0x1a0/0x1a4 [ 113.108263][ T5038] irq event stamp: 56652 [ 113.109405][ T5038] hardirqs last enabled at (56651): [] kasan_quarantine_put+0xc4/0x204 [ 113.112385][ T5038] hardirqs last disabled at (56652): [] smp_call_function_many_cond+0xa44/0xeb0 [ 113.115596][ T5038] softirqs last enabled at (55394): [] local_bh_enable+0x10/0x34 [ 113.118426][ T5038] softirqs last disabled at (55392): [] local_bh_disable+0x10/0x34 [ 113.121222][ T5038] ---[ end trace 79b29bec4289382f ]--- 1970/01/01 00:01:53 executed programs: 30 [ 113.183093][ T5061] loop0: detected capacity change from 0 to 128 [ 113.187654][ T5061] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.189824][ T5061] Bad inode number on dev loop0: 2 is out of range [ 113.191808][ T5061] SysV FS: get root inode failed [ 113.193675][ T5061] oldfs: cannot read superblock [ 113.201091][ T5038] ------------[ cut here ]------------ [ 113.202729][ T5038] VFS: brelse: Trying to free free buffer [ 113.204337][ T5038] WARNING: CPU: 0 PID: 5038 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.206750][ T5038] Modules linked in: [ 113.207828][ T5038] CPU: 0 PID: 5038 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 113.210412][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 113.213315][ T5038] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.215536][ T5038] pc : invalidate_bh_lru+0x128/0x234 [ 113.216946][ T5038] lr : invalidate_bh_lru+0x128/0x234 [ 113.218532][ T5038] sp : ffff80001f8e77c0 [ 113.219813][ T5038] x29: ffff80001f8e77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 113.222136][ T5038] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 113.224466][ T5038] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debda060 [ 113.226769][ T5038] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 113.229186][ T5038] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 113.231628][ T5038] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.233891][ T5038] x11: 0000000000000002 x10: 0000000000000000 x9 : a6e0c4b4b2791200 [ 113.236291][ T5038] x8 : a6e0c4b4b2791200 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.238611][ T5038] x5 : ffff80001f8e70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 113.240893][ T5038] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 113.243320][ T5038] Call trace: [ 113.244207][ T5038] invalidate_bh_lru+0x128/0x234 [ 113.245670][ T5038] smp_call_function_many_cond+0xa50/0xeb0 [ 113.247382][ T5038] on_each_cpu_cond_mask+0x5c/0xc4 [ 113.248860][ T5038] invalidate_bh_lrus+0x34/0x40 [ 113.250244][ T5038] blkdev_flush_mapping+0x168/0x31c [ 113.251658][ T5038] blkdev_put+0x490/0x6ac [ 113.252993][ T5038] blkdev_close+0x74/0xb0 [ 113.254299][ T5038] __fput+0x1c0/0x7f8 [ 113.255419][ T5038] ____fput+0x20/0x30 [ 113.256558][ T5038] task_work_run+0x12c/0x1e0 [ 113.257960][ T5038] do_notify_resume+0x24b4/0x3128 [ 113.259416][ T5038] el0_svc+0xf0/0x1e0 [ 113.260405][ T5038] el0t_64_sync_handler+0xcc/0xe4 [ 113.261585][ T5038] el0t_64_sync+0x1a0/0x1a4 [ 113.262645][ T5038] irq event stamp: 63980 [ 113.263633][ T5038] hardirqs last enabled at (63979): [] kasan_quarantine_put+0xc4/0x204 [ 113.265962][ T5038] hardirqs last disabled at (63980): [] smp_call_function_many_cond+0xa44/0xeb0 [ 113.268447][ T5038] softirqs last enabled at (63872): [] handle_softirqs+0xa4c/0xbf0 [ 113.270722][ T5038] softirqs last disabled at (63775): [] __irq_exit_rcu+0x240/0x440 [ 113.273422][ T5038] ---[ end trace 79b29bec42893830 ]--- [ 113.325919][ T5063] loop0: detected capacity change from 0 to 128 [ 113.364677][ T5063] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.366939][ T5063] Bad inode number on dev loop0: 2 is out of range [ 113.368942][ T5063] SysV FS: get root inode failed [ 113.373200][ T5063] oldfs: cannot read superblock [ 113.383061][ T5038] ------------[ cut here ]------------ [ 113.384477][ T5038] VFS: brelse: Trying to free free buffer [ 113.386238][ T5038] WARNING: CPU: 1 PID: 5038 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.388735][ T5038] Modules linked in: [ 113.389817][ T5038] CPU: 1 PID: 5038 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 113.392532][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 113.395424][ T5038] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.397684][ T5038] pc : invalidate_bh_lru+0x128/0x234 [ 113.399235][ T5038] lr : invalidate_bh_lru+0x128/0x234 [ 113.400785][ T5038] sp : ffff80001f8e77c0 [ 113.402026][ T5038] x29: ffff80001f8e77c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 113.404287][ T5038] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 113.406629][ T5038] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e18c2ee0 [ 113.409095][ T5038] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 113.411429][ T5038] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 113.413677][ T5038] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.415997][ T5038] x11: 0000000000000002 x10: 0000000000000000 x9 : a6e0c4b4b2791200 [ 113.418232][ T5038] x8 : a6e0c4b4b2791200 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.420471][ T5038] x5 : ffff80001f8e70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 113.422798][ T5038] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 113.425135][ T5038] Call trace: [ 113.426270][ T5038] invalidate_bh_lru+0x128/0x234 [ 113.427690][ T5038] smp_call_function_many_cond+0xa50/0xeb0 [ 113.429445][ T5038] on_each_cpu_cond_mask+0x5c/0xc4 [ 113.430834][ T5038] invalidate_bh_lrus+0x34/0x40 [ 113.432225][ T5038] blkdev_flush_mapping+0x168/0x31c [ 113.433844][ T5038] blkdev_put+0x490/0x6ac [ 113.435100][ T5038] blkdev_close+0x74/0xb0 [ 113.436293][ T5038] __fput+0x1c0/0x7f8 [ 113.437523][ T5038] ____fput+0x20/0x30 [ 113.438665][ T5038] task_work_run+0x12c/0x1e0 [ 113.440044][ T5038] do_notify_resume+0x24b4/0x3128 [ 113.441543][ T5038] el0_svc+0xf0/0x1e0 [ 113.442648][ T5038] el0t_64_sync_handler+0xcc/0xe4 [ 113.443992][ T5038] el0t_64_sync+0x1a0/0x1a4 [ 113.445236][ T5038] irq event stamp: 72424 [ 113.446449][ T5038] hardirqs last enabled at (72423): [] kasan_quarantine_put+0xc4/0x204 [ 113.449183][ T5038] hardirqs last disabled at (72424): [] smp_call_function_many_cond+0xa44/0xeb0 [ 113.452343][ T5038] softirqs last enabled at (72410): [] local_bh_enable+0x10/0x34 [ 113.455084][ T5038] softirqs last disabled at (72408): [] local_bh_disable+0x10/0x34 [ 113.457923][ T5038] ---[ end trace 79b29bec42893831 ]--- [ 113.534052][ T5065] loop0: detected capacity change from 0 to 128 [ 113.574111][ T5065] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.576426][ T5065] Bad inode number on dev loop0: 2 is out of range [ 113.578326][ T5065] SysV FS: get root inode failed [ 113.579855][ T5065] oldfs: cannot read superblock [ 113.589671][ T5065] ------------[ cut here ]------------ [ 113.591254][ T5065] VFS: brelse: Trying to free free buffer [ 113.593089][ T5065] WARNING: CPU: 1 PID: 5065 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.595692][ T5065] Modules linked in: [ 113.596747][ T5065] CPU: 1 PID: 5065 Comm: syz.0.47 Tainted: G W 5.15.181-syzkaller #0 [ 113.599475][ T5065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 113.602339][ T5065] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.604681][ T5065] pc : invalidate_bh_lru+0x128/0x234 [ 113.606294][ T5065] lr : invalidate_bh_lru+0x128/0x234 [ 113.607843][ T5065] sp : ffff80001f5576e0 [ 113.609057][ T5065] x29: ffff80001f5576e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 113.611348][ T5065] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 113.613671][ T5065] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e184d318 [ 113.616096][ T5065] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 113.618458][ T5065] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 113.620892][ T5065] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.623132][ T5065] x11: 0000000000000002 x10: 0000000000000000 x9 : 60dc84a51c471300 [ 113.625476][ T5065] x8 : 60dc84a51c471300 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.627885][ T5065] x5 : ffff80001f556fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 113.630342][ T5065] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 113.632612][ T5065] Call trace: [ 113.633501][ T5065] invalidate_bh_lru+0x128/0x234 [ 113.634879][ T5065] smp_call_function_many_cond+0xa50/0xeb0 [ 113.636555][ T5065] on_each_cpu_cond_mask+0x5c/0xc4 [ 113.637981][ T5065] invalidate_bh_lrus+0x34/0x40 [ 113.639523][ T5065] blkdev_flush_mapping+0x168/0x31c [ 113.641171][ T5065] blkdev_put+0x490/0x6ac [ 113.642401][ T5065] kill_block_super+0x98/0xdc [ 113.643819][ T5065] deactivate_locked_super+0xb8/0x13c [ 113.645407][ T5065] mount_bdev+0x284/0x358 [ 113.646663][ T5065] sysv_mount+0x44/0x58 [ 113.647870][ T5065] legacy_get_tree+0xd4/0x16c [ 113.649195][ T5065] vfs_get_tree+0x90/0x274 [ 113.650485][ T5065] do_new_mount+0x228/0x810 [ 113.651718][ T5065] path_mount+0x5b4/0x1000 [ 113.652964][ T5065] __arm64_sys_mount+0x514/0x5e4 [ 113.654359][ T5065] invoke_syscall+0x98/0x2b8 [ 113.655704][ T5065] el0_svc_common+0x138/0x258 [ 113.657055][ T5065] do_el0_svc+0x58/0x14c [ 113.658229][ T5065] el0_svc+0x78/0x1e0 [ 113.659396][ T5065] el0t_64_sync_handler+0xcc/0xe4 [ 113.660923][ T5065] el0t_64_sync+0x1a0/0x1a4 [ 113.662203][ T5065] irq event stamp: 1108 [ 113.663397][ T5065] hardirqs last enabled at (1107): [] kasan_quarantine_put+0xc4/0x204 [ 113.666317][ T5065] hardirqs last disabled at (1108): [] smp_call_function_many_cond+0xa44/0xeb0 [ 113.669439][ T5065] softirqs last enabled at (1098): [] handle_softirqs+0xa4c/0xbf0 [ 113.672116][ T5065] softirqs last disabled at (1065): [] __irq_exit_rcu+0x240/0x440 [ 113.674831][ T5065] ---[ end trace 79b29bec42893832 ]--- [ 113.805105][ T5067] loop0: detected capacity change from 0 to 128 [ 113.809187][ T5067] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.811745][ T5067] Bad inode number on dev loop0: 2 is out of range [ 113.813559][ T5067] SysV FS: get root inode failed [ 113.814911][ T5067] oldfs: cannot read superblock [ 113.831104][ T5038] ------------[ cut here ]------------ [ 113.832712][ T5038] VFS: brelse: Trying to free free buffer [ 113.834494][ T5038] WARNING: CPU: 0 PID: 5038 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.837211][ T5038] Modules linked in: [ 113.838506][ T5038] CPU: 0 PID: 5038 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 113.841141][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 113.844135][ T5038] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.846402][ T5038] pc : invalidate_bh_lru+0x128/0x234 [ 113.847944][ T5038] lr : invalidate_bh_lru+0x128/0x234 [ 113.849543][ T5038] sp : ffff80001f8e77c0 [ 113.850744][ T5038] x29: ffff80001f8e77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 113.853189][ T5038] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 113.855548][ T5038] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debda400 [ 113.857992][ T5038] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 113.860335][ T5038] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 113.862645][ T5038] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.865058][ T5038] x11: 0000000000000002 x10: 0000000000000000 x9 : a6e0c4b4b2791200 [ 113.867467][ T5038] x8 : a6e0c4b4b2791200 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.869901][ T5038] x5 : ffff80001f8e70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 113.872526][ T5038] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 113.874819][ T5038] Call trace: [ 113.875747][ T5038] invalidate_bh_lru+0x128/0x234 [ 113.877266][ T5038] smp_call_function_many_cond+0xa50/0xeb0 [ 113.879065][ T5038] on_each_cpu_cond_mask+0x5c/0xc4 [ 113.880658][ T5038] invalidate_bh_lrus+0x34/0x40 [ 113.882076][ T5038] blkdev_flush_mapping+0x168/0x31c [ 113.883533][ T5038] blkdev_put+0x490/0x6ac [ 113.884931][ T5038] blkdev_close+0x74/0xb0 [ 113.886232][ T5038] __fput+0x1c0/0x7f8 [ 113.887378][ T5038] ____fput+0x20/0x30 [ 113.888496][ T5038] task_work_run+0x12c/0x1e0 [ 113.889848][ T5038] do_notify_resume+0x24b4/0x3128 [ 113.891401][ T5038] el0_svc+0xf0/0x1e0 [ 113.892467][ T5038] el0t_64_sync_handler+0xcc/0xe4 [ 113.893991][ T5038] el0t_64_sync+0x1a0/0x1a4 [ 113.895406][ T5038] irq event stamp: 86570 [ 113.896807][ T5038] hardirqs last enabled at (86569): [] kasan_quarantine_put+0xc4/0x204 [ 113.899798][ T5038] hardirqs last disabled at (86570): [] smp_call_function_many_cond+0xa44/0xeb0 [ 113.902854][ T5038] softirqs last enabled at (86238): [] handle_softirqs+0xa4c/0xbf0 [ 113.905642][ T5038] softirqs last disabled at (86233): [] __irq_exit_rcu+0x240/0x440 [ 113.908599][ T5038] ---[ end trace 79b29bec42893833 ]--- [ 113.951202][ T5069] loop0: detected capacity change from 0 to 128 [ 113.955484][ T5069] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.957559][ T5069] Bad inode number on dev loop0: 2 is out of range [ 113.959395][ T5069] SysV FS: get root inode failed [ 113.963947][ T5069] oldfs: cannot read superblock [ 113.982319][ C1] ------------[ cut here ]------------ [ 113.983925][ C1] VFS: brelse: Trying to free free buffer [ 113.985612][ C1] WARNING: CPU: 1 PID: 136 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.988124][ C1] Modules linked in: [ 113.989269][ C1] CPU: 1 PID: 136 Comm: kworker/u4:1 Tainted: G W 5.15.181-syzkaller #0 [ 113.992139][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 113.995073][ C1] Workqueue: bat_events batadv_nc_worker [ 113.996787][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.999125][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 114.000723][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 114.002280][ C1] sp : ffff800008017de0 [ 114.003552][ C1] x29: ffff800008017de0 x28: ffff0000c230b680 x27: 1fffe0003685d254 [ 114.005821][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 114.008201][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e184dc28 [ 114.010476][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 114.012760][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 114.015126][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.017489][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 10b2a0fcebdaea00 [ 114.019845][ C1] x8 : 10b2a0fcebdaea00 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.022210][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 114.024641][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 114.026940][ C1] Call trace: [ 114.027839][ C1] invalidate_bh_lru+0x128/0x234 [ 114.029329][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 114.031139][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 114.033144][ C1] ipi_handler+0x108/0x70c [ 114.034445][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 114.036090][ C1] handle_domain_irq+0x144/0x1fc [ 114.037569][ C1] gic_handle_irq+0x78/0x1c8 [ 114.038920][ C1] call_on_irq_stack+0x24/0x4c [ 114.040383][ C1] do_interrupt_handler+0x6c/0x88 [ 114.041778][ C1] el1_interrupt+0x30/0x58 [ 114.043058][ C1] el1h_64_irq_handler+0x18/0x24 [ 114.044419][ C1] el1h_64_irq+0x78/0x7c [ 114.045724][ C1] __local_bh_enable_ip+0x200/0x380 [ 114.047259][ C1] _raw_spin_unlock_bh+0xec/0x174 [ 114.048793][ C1] batadv_nc_purge_paths+0x308/0x390 [ 114.050244][ C1] batadv_nc_worker+0x300/0x554 [ 114.051671][ C1] process_one_work+0x79c/0x1140 [ 114.053214][ C1] worker_thread+0x8f4/0x101c [ 114.054539][ C1] kthread+0x374/0x454 [ 114.055705][ C1] ret_from_fork+0x10/0x20 [ 114.056939][ C1] irq event stamp: 712872 [ 114.058148][ C1] hardirqs last enabled at (712871): [] __local_bh_enable_ip+0x1f8/0x380 [ 114.061193][ C1] hardirqs last disabled at (712872): [] enter_el1_irq_or_nmi+0x10/0x1c [ 114.064029][ C1] softirqs last enabled at (712870): [] batadv_nc_purge_paths+0x308/0x390 [ 114.067140][ C1] softirqs last disabled at (712868): [] batadv_nc_purge_paths+0xd0/0x390 [ 114.070105][ C1] ---[ end trace 79b29bec42893834 ]--- [ 114.134596][ T5071] loop0: detected capacity change from 0 to 128 [ 114.144548][ T5071] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.146719][ T5071] Bad inode number on dev loop0: 2 is out of range [ 114.148586][ T5071] SysV FS: get root inode failed [ 114.149989][ T5071] oldfs: cannot read superblock [ 114.162981][ T5038] ------------[ cut here ]------------ [ 114.164766][ T5038] VFS: brelse: Trying to free free buffer [ 114.166538][ T5038] WARNING: CPU: 0 PID: 5038 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.169173][ T5038] Modules linked in: [ 114.170223][ T5038] CPU: 0 PID: 5038 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 114.172893][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 114.175783][ T5038] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.178173][ T5038] pc : invalidate_bh_lru+0x128/0x234 [ 114.179782][ T5038] lr : invalidate_bh_lru+0x128/0x234 [ 114.181310][ T5038] sp : ffff80001f8e77c0 [ 114.182517][ T5038] x29: ffff80001f8e77c0 x28: ffff80001414d000 x27: 1fffe00036859054 [ 114.184719][ T5038] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 114.187025][ T5038] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debda888 [ 114.189423][ T5038] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 114.191712][ T5038] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 114.194044][ T5038] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.196417][ T5038] x11: 0000000000000002 x10: 0000000000000000 x9 : a6e0c4b4b2791200 [ 114.198648][ T5038] x8 : a6e0c4b4b2791200 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.200843][ T5038] x5 : ffff80001f8e70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 114.203101][ T5038] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 114.205277][ T5038] Call trace: [ 114.206273][ T5038] invalidate_bh_lru+0x128/0x234 [ 114.207626][ T5038] smp_call_function_many_cond+0xa50/0xeb0 [ 114.209251][ T5038] on_each_cpu_cond_mask+0x5c/0xc4 [ 114.210746][ T5038] invalidate_bh_lrus+0x34/0x40 [ 114.212070][ T5038] blkdev_flush_mapping+0x168/0x31c [ 114.213562][ T5038] blkdev_put+0x490/0x6ac [ 114.214810][ T5038] blkdev_close+0x74/0xb0 [ 114.216106][ T5038] __fput+0x1c0/0x7f8 [ 114.217212][ T5038] ____fput+0x20/0x30 [ 114.218346][ T5038] task_work_run+0x12c/0x1e0 [ 114.219623][ T5038] do_notify_resume+0x24b4/0x3128 [ 114.221038][ T5038] el0_svc+0xf0/0x1e0 [ 114.222110][ T5038] el0t_64_sync_handler+0xcc/0xe4 [ 114.223583][ T5038] el0t_64_sync+0x1a0/0x1a4 [ 114.224925][ T5038] irq event stamp: 100312 [ 114.226155][ T5038] hardirqs last enabled at (100311): [] kasan_quarantine_put+0xc4/0x204 [ 114.228990][ T5038] hardirqs last disabled at (100312): [] smp_call_function_many_cond+0xa44/0xeb0 [ 114.232167][ T5038] softirqs last enabled at (100150): [] local_bh_enable+0x10/0x34 [ 114.234740][ T5038] softirqs last disabled at (100148): [] local_bh_disable+0x10/0x34 [ 114.237467][ T5038] ---[ end trace 79b29bec42893835 ]--- [ 114.275307][ T5073] loop0: detected capacity change from 0 to 128 [ 114.325176][ T5073] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.327328][ T5073] Bad inode number on dev loop0: 2 is out of range [ 114.329027][ T5073] SysV FS: get root inode failed [ 114.339376][ T5073] oldfs: cannot read superblock [ 114.341414][ T5073] ------------[ cut here ]------------ [ 114.342937][ T5073] VFS: brelse: Trying to free free buffer [ 114.344611][ T5073] WARNING: CPU: 1 PID: 5073 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.347234][ T5073] Modules linked in: [ 114.348295][ T5073] CPU: 1 PID: 5073 Comm: syz.0.51 Tainted: G W 5.15.181-syzkaller #0 [ 114.350894][ T5073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 114.353689][ T5073] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.355964][ T5073] pc : invalidate_bh_lru+0x128/0x234 [ 114.357506][ T5073] lr : invalidate_bh_lru+0x128/0x234 [ 114.359052][ T5073] sp : ffff80001f2e76e0 [ 114.360182][ T5073] x29: ffff80001f2e76e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 114.362503][ T5073] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 114.364764][ T5073] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e19ee060 [ 114.367044][ T5073] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 114.369296][ T5073] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 114.371565][ T5073] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.373850][ T5073] x11: 0000000000000002 x10: 0000000000000000 x9 : abb7a65de093f400 [ 114.376005][ T5073] x8 : abb7a65de093f400 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.378303][ T5073] x5 : ffff80001f2e6fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 114.380701][ T5073] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 114.383059][ T5073] Call trace: [ 114.384043][ T5073] invalidate_bh_lru+0x128/0x234 [ 114.385473][ T5073] smp_call_function_many_cond+0xa50/0xeb0 [ 114.387177][ T5073] on_each_cpu_cond_mask+0x5c/0xc4 [ 114.388653][ T5073] invalidate_bh_lrus+0x34/0x40 [ 114.390054][ T5073] blkdev_flush_mapping+0x168/0x31c [ 114.391635][ T5073] blkdev_put+0x490/0x6ac [ 114.392901][ T5073] kill_block_super+0x98/0xdc [ 114.394185][ T5073] deactivate_locked_super+0xb8/0x13c [ 114.395719][ T5073] mount_bdev+0x284/0x358 [ 114.396948][ T5073] sysv_mount+0x44/0x58 [ 114.398230][ T5073] legacy_get_tree+0xd4/0x16c [ 114.399579][ T5073] vfs_get_tree+0x90/0x274 [ 114.400799][ T5073] do_new_mount+0x228/0x810 [ 114.402050][ T5073] path_mount+0x5b4/0x1000 [ 114.403310][ T5073] __arm64_sys_mount+0x514/0x5e4 [ 114.404697][ T5073] invoke_syscall+0x98/0x2b8 [ 114.406080][ T5073] el0_svc_common+0x138/0x258 [ 114.407430][ T5073] do_el0_svc+0x58/0x14c [ 114.408625][ T5073] el0_svc+0x78/0x1e0 [ 114.409777][ T5073] el0t_64_sync_handler+0xcc/0xe4 [ 114.411274][ T5073] el0t_64_sync+0x1a0/0x1a4 [ 114.412611][ T5073] irq event stamp: 1146 [ 114.413806][ T5073] hardirqs last enabled at (1145): [] kasan_quarantine_put+0xc4/0x204 [ 114.416583][ T5073] hardirqs last disabled at (1146): [] smp_call_function_many_cond+0xa44/0xeb0 [ 114.419678][ T5073] softirqs last enabled at (1136): [] handle_softirqs+0xa4c/0xbf0 [ 114.422521][ T5073] softirqs last disabled at (1125): [] __irq_exit_rcu+0x240/0x440 [ 114.425232][ T5073] ---[ end trace 79b29bec42893836 ]--- [ 114.572994][ T5075] loop0: detected capacity change from 0 to 128 [ 114.626219][ T5075] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.629263][ T5075] Bad inode number on dev loop0: 2 is out of range [ 114.631583][ T5075] SysV FS: get root inode failed [ 114.632997][ T5075] oldfs: cannot read superblock [ 114.652724][ C0] ------------[ cut here ]------------ [ 114.654323][ C0] VFS: brelse: Trying to free free buffer [ 114.655957][ C0] WARNING: CPU: 0 PID: 0 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.658368][ C0] Modules linked in: [ 114.659425][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 5.15.181-syzkaller #0 [ 114.662090][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 114.664948][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.667243][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 114.668824][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 114.670339][ C0] sp : ffff800008007de0 [ 114.671530][ C0] x29: ffff800008007de0 x28: ffff800014173880 x27: 1fffe00036859053 [ 114.673876][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 114.676238][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debdac28 [ 114.678569][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010003 [ 114.680966][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 114.683250][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.685676][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : d030661706e8bd00 [ 114.688090][ C0] x8 : d030661706e8bd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.690391][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 114.692595][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 114.694934][ C0] Call trace: [ 114.695872][ C0] invalidate_bh_lru+0x128/0x234 [ 114.697292][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 114.699041][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 114.701089][ C0] ipi_handler+0x108/0x70c [ 114.702423][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 114.703890][ C0] handle_domain_irq+0x144/0x1fc [ 114.705394][ C0] gic_handle_irq+0x78/0x1c8 [ 114.706771][ C0] call_on_irq_stack+0x24/0x4c [ 114.708211][ C0] do_interrupt_handler+0x6c/0x88 [ 114.709613][ C0] el1_interrupt+0x30/0x58 [ 114.710803][ C0] el1h_64_irq_handler+0x18/0x24 [ 114.712361][ C0] el1h_64_irq+0x78/0x7c [ 114.713583][ C0] arch_local_irq_enable+0xc/0x18 [ 114.715037][ C0] default_idle_call+0xcc/0x418 [ 114.716429][ C0] do_idle+0x1c8/0x480 [ 114.717602][ C0] cpu_startup_entry+0x24/0x28 [ 114.718917][ C0] rest_init+0x360/0x390 [ 114.720057][ C0] arch_call_rest_init+0x14/0x20 [ 114.721562][ C0] start_kernel+0x49c/0x54c [ 114.722870][ C0] __primary_switched+0xa8/0xb0 [ 114.724269][ C0] irq event stamp: 316790 [ 114.725492][ C0] hardirqs last enabled at (316789): [] default_idle_call+0xb8/0x418 [ 114.728328][ C0] hardirqs last disabled at (316790): [] enter_el1_irq_or_nmi+0x10/0x1c [ 114.731206][ C0] softirqs last enabled at (316766): [] handle_softirqs+0xa4c/0xbf0 [ 114.733962][ C0] softirqs last disabled at (316747): [] __irq_exit_rcu+0x240/0x440 [ 114.736699][ C0] ---[ end trace 79b29bec42893837 ]--- [ 114.804116][ T5077] loop0: detected capacity change from 0 to 128 [ 114.807935][ T5077] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.809942][ T5077] Bad inode number on dev loop0: 2 is out of range [ 114.811981][ T5077] SysV FS: get root inode failed [ 114.813298][ T5077] oldfs: cannot read superblock [ 114.814671][ T5077] ------------[ cut here ]------------ [ 114.816151][ T5077] VFS: brelse: Trying to free free buffer [ 114.817786][ T5077] WARNING: CPU: 1 PID: 5077 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.820303][ T5077] Modules linked in: [ 114.821471][ T5077] CPU: 1 PID: 5077 Comm: syz.0.53 Tainted: G W 5.15.181-syzkaller #0 [ 114.824107][ T5077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 114.826968][ T5077] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.829090][ T5077] pc : invalidate_bh_lru+0x128/0x234 [ 114.830661][ T5077] lr : invalidate_bh_lru+0x128/0x234 [ 114.832066][ T5077] sp : ffff80001f6076e0 [ 114.833318][ T5077] x29: ffff80001f6076e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 114.835480][ T5077] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 114.837806][ T5077] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e19ee400 [ 114.840073][ T5077] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 114.842600][ T5077] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 114.845115][ T5077] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.847610][ T5077] x11: 0000000000000002 x10: 0000000000000000 x9 : 868bcfad9ea86800 [ 114.849884][ T5077] x8 : 868bcfad9ea86800 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.852168][ T5077] x5 : ffff80001f606fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 114.854572][ T5077] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 114.856845][ T5077] Call trace: [ 114.857916][ T5077] invalidate_bh_lru+0x128/0x234 [ 114.859439][ T5077] smp_call_function_many_cond+0xa50/0xeb0 [ 114.861071][ T5077] on_each_cpu_cond_mask+0x5c/0xc4 [ 114.862685][ T5077] invalidate_bh_lrus+0x34/0x40 [ 114.864090][ T5077] blkdev_flush_mapping+0x168/0x31c [ 114.865562][ T5077] blkdev_put+0x490/0x6ac [ 114.866878][ T5077] kill_block_super+0x98/0xdc [ 114.868244][ T5077] deactivate_locked_super+0xb8/0x13c [ 114.869728][ T5077] mount_bdev+0x284/0x358 [ 114.870953][ T5077] sysv_mount+0x44/0x58 [ 114.872173][ T5077] legacy_get_tree+0xd4/0x16c [ 114.873596][ T5077] vfs_get_tree+0x90/0x274 [ 114.874848][ T5077] do_new_mount+0x228/0x810 [ 114.876110][ T5077] path_mount+0x5b4/0x1000 [ 114.877404][ T5077] __arm64_sys_mount+0x514/0x5e4 [ 114.878848][ T5077] invoke_syscall+0x98/0x2b8 [ 114.880140][ T5077] el0_svc_common+0x138/0x258 [ 114.881455][ T5077] do_el0_svc+0x58/0x14c [ 114.882554][ T5077] el0_svc+0x78/0x1e0 [ 114.883700][ T5077] el0t_64_sync_handler+0xcc/0xe4 [ 114.885238][ T5077] el0t_64_sync+0x1a0/0x1a4 [ 114.886528][ T5077] irq event stamp: 1054 [ 114.887737][ T5077] hardirqs last enabled at (1053): [] kasan_quarantine_put+0xc4/0x204 [ 114.890484][ T5077] hardirqs last disabled at (1054): [] smp_call_function_many_cond+0xa44/0xeb0 [ 114.893498][ T5077] softirqs last enabled at (1024): [] handle_softirqs+0xa4c/0xbf0 [ 114.896216][ T5077] softirqs last disabled at (1005): [] __irq_exit_rcu+0x240/0x440 [ 114.898991][ T5077] ---[ end trace 79b29bec42893838 ]--- [ 114.998027][ T5079] loop0: detected capacity change from 0 to 128 [ 115.012634][ T5079] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.014752][ T5079] Bad inode number on dev loop0: 2 is out of range [ 115.016574][ T5079] SysV FS: get root inode failed [ 115.017936][ T5079] oldfs: cannot read superblock [ 115.019252][ T5079] ------------[ cut here ]------------ [ 115.020873][ T5079] VFS: brelse: Trying to free free buffer [ 115.022598][ T5079] WARNING: CPU: 0 PID: 5079 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.025169][ T5079] Modules linked in: [ 115.026295][ T5079] CPU: 0 PID: 5079 Comm: syz.0.54 Tainted: G W 5.15.181-syzkaller #0 [ 115.029128][ T5079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.032117][ T5079] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.034407][ T5079] pc : invalidate_bh_lru+0x128/0x234 [ 115.035949][ T5079] lr : invalidate_bh_lru+0x128/0x234 [ 115.037430][ T5079] sp : ffff80001f2e76e0 [ 115.038611][ T5079] x29: ffff80001f2e76e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 115.041094][ T5079] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 115.043376][ T5079] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debd7060 [ 115.045691][ T5079] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 115.048067][ T5079] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.050381][ T5079] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.052795][ T5079] x11: 0000000000000002 x10: 0000000000000000 x9 : fc812c9e08ea4f00 [ 115.055067][ T5079] x8 : fc812c9e08ea4f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.057403][ T5079] x5 : ffff80001f2e6fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.059671][ T5079] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 115.061947][ T5079] Call trace: [ 115.062858][ T5079] invalidate_bh_lru+0x128/0x234 [ 115.064321][ T5079] smp_call_function_many_cond+0xa50/0xeb0 [ 115.066040][ T5079] on_each_cpu_cond_mask+0x5c/0xc4 [ 115.067612][ T5079] invalidate_bh_lrus+0x34/0x40 [ 115.069024][ T5079] blkdev_flush_mapping+0x168/0x31c [ 115.070476][ T5079] blkdev_put+0x490/0x6ac [ 115.071695][ T5079] kill_block_super+0x98/0xdc [ 115.072955][ T5079] deactivate_locked_super+0xb8/0x13c [ 115.074533][ T5079] mount_bdev+0x284/0x358 [ 115.075725][ T5079] sysv_mount+0x44/0x58 [ 115.076884][ T5079] legacy_get_tree+0xd4/0x16c [ 115.078212][ T5079] vfs_get_tree+0x90/0x274 [ 115.079425][ T5079] do_new_mount+0x228/0x810 [ 115.080702][ T5079] path_mount+0x5b4/0x1000 [ 115.081937][ T5079] __arm64_sys_mount+0x514/0x5e4 [ 115.083400][ T5079] invoke_syscall+0x98/0x2b8 [ 115.084675][ T5079] el0_svc_common+0x138/0x258 [ 115.086055][ T5079] do_el0_svc+0x58/0x14c [ 115.087333][ T5079] el0_svc+0x78/0x1e0 [ 115.088533][ T5079] el0t_64_sync_handler+0xcc/0xe4 [ 115.089960][ T5079] el0t_64_sync+0x1a0/0x1a4 [ 115.091325][ T5079] irq event stamp: 1564 [ 115.092487][ T5079] hardirqs last enabled at (1563): [] kasan_quarantine_put+0xc4/0x204 [ 115.095408][ T5079] hardirqs last disabled at (1564): [] smp_call_function_many_cond+0xa44/0xeb0 [ 115.098383][ T5079] softirqs last enabled at (1346): [] handle_softirqs+0xa4c/0xbf0 [ 115.101276][ T5079] softirqs last disabled at (867): [] __irq_exit_rcu+0x240/0x440 [ 115.103808][ T5079] ---[ end trace 79b29bec42893839 ]--- [ 115.176373][ T5081] loop0: detected capacity change from 0 to 128 [ 115.181575][ T5081] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.183878][ T5081] Bad inode number on dev loop0: 2 is out of range [ 115.185819][ T5081] SysV FS: get root inode failed [ 115.187181][ T5081] oldfs: cannot read superblock [ 115.194133][ C1] ------------[ cut here ]------------ [ 115.195761][ C1] VFS: brelse: Trying to free free buffer [ 115.197462][ C1] WARNING: CPU: 1 PID: 4568 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.200100][ C1] Modules linked in: [ 115.201199][ C1] CPU: 1 PID: 4568 Comm: syz-execprog Tainted: G W 5.15.181-syzkaller #0 [ 115.203994][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.206853][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.209083][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 115.210661][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 115.212200][ C1] sp : ffff800008017de0 [ 115.213380][ C1] x29: ffff800008017de0 x28: ffff0000dce651c0 x27: 1fffe0003685d253 [ 115.215743][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 115.218241][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e19ee7a0 [ 115.220594][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010003 [ 115.222910][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.225351][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.227636][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 3a93a1c60c39d200 [ 115.229941][ C1] x8 : 3a93a1c60c39d200 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.232392][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.234595][ C1] x2 : 0000000000000001 x1 : 0000000000010002 x0 : 0000000000000027 [ 115.236944][ C1] Call trace: [ 115.237858][ C1] invalidate_bh_lru+0x128/0x234 [ 115.239225][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 115.241029][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.242943][ C1] ipi_handler+0x108/0x70c [ 115.244111][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 115.245653][ C1] handle_domain_irq+0x144/0x1fc [ 115.247003][ C1] gic_handle_irq+0x78/0x1c8 [ 115.248372][ C1] call_on_irq_stack+0x24/0x4c [ 115.249817][ C1] do_interrupt_handler+0x6c/0x88 [ 115.251207][ C1] el1_interrupt+0x30/0x58 [ 115.252431][ C1] el1h_64_irq_handler+0x18/0x24 [ 115.253751][ C1] el1h_64_irq+0x78/0x7c [ 115.254950][ C1] preempt_schedule_irq+0x88/0x214 [ 115.256440][ C1] arm64_preempt_schedule_irq+0x14c/0x21c [ 115.257936][ C1] el1_interrupt+0x40/0x58 [ 115.259203][ C1] el1h_64_irq_handler+0x18/0x24 [ 115.260595][ C1] el1h_64_irq+0x78/0x7c [ 115.261785][ C1] prepare_alloc_pages+0x3e8/0x460 [ 115.263145][ C1] __alloc_pages+0x108/0x470 [ 115.264448][ C1] alloc_pages_vma+0x284/0x7a8 [ 115.265830][ C1] alloc_zeroed_user_highpage_movable+0x9c/0xd8 [ 115.267611][ C1] handle_mm_fault+0x1904/0x2950 [ 115.268959][ C1] do_page_fault+0x694/0xad4 [ 115.270279][ C1] do_translation_fault+0xe0/0x130 [ 115.271687][ C1] do_mem_abort+0x6c/0x1ac [ 115.273017][ C1] el0_da+0x90/0x1fc [ 115.274150][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 115.275513][ C1] el0t_64_sync+0x1a0/0x1a4 [ 115.276761][ C1] irq event stamp: 51162 [ 115.277917][ C1] hardirqs last enabled at (51161): [] preempt_schedule_irq+0x84/0x214 [ 115.280726][ C1] hardirqs last disabled at (51162): [] enter_el1_irq_or_nmi+0x10/0x1c [ 115.283597][ C1] softirqs last enabled at (51128): [] local_bh_enable+0x10/0x34 [ 115.286329][ C1] softirqs last disabled at (51126): [] local_bh_disable+0x10/0x34 [ 115.289039][ C1] ---[ end trace 79b29bec4289383a ]--- [ 115.355606][ T5083] loop0: detected capacity change from 0 to 128 [ 115.422035][ T5083] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.424258][ T5083] Bad inode number on dev loop0: 2 is out of range [ 115.426051][ T5083] SysV FS: get root inode failed [ 115.427436][ T5083] oldfs: cannot read superblock [ 115.428781][ C1] ------------[ cut here ]------------ [ 115.430390][ C1] VFS: brelse: Trying to free free buffer [ 115.432100][ C1] WARNING: CPU: 1 PID: 9 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.434594][ C1] Modules linked in: [ 115.435761][ C1] CPU: 1 PID: 9 Comm: kworker/u4:0 Tainted: G W 5.15.181-syzkaller #0 [ 115.438462][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.441178][ C1] Workqueue: netns cleanup_net [ 115.442469][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.444825][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 115.446331][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 115.447834][ C1] sp : ffff800008017de0 [ 115.448961][ C1] x29: ffff800008017de0 x28: ffff0000c0950000 x27: 1fffe0003685d253 [ 115.451255][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 115.453575][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e19eeb40 [ 115.455838][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 115.458046][ C1] x17: 0000000000010002 x16: ffff8000083007d8 x15: 00000000ffffffff [ 115.460464][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.462673][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : e0b55ba516aff400 [ 115.464937][ C1] x8 : e0b55ba516aff400 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.467256][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 115.469569][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 115.471816][ C1] Call trace: [ 115.472676][ C1] invalidate_bh_lru+0x128/0x234 [ 115.474132][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 115.475942][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.477923][ C1] ipi_handler+0x108/0x70c [ 115.479145][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 115.480724][ C1] handle_domain_irq+0x144/0x1fc [ 115.482194][ C1] gic_handle_irq+0x78/0x1c8 [ 115.483518][ C1] call_on_irq_stack+0x24/0x4c [ 115.484916][ C1] do_interrupt_handler+0x6c/0x88 [ 115.486326][ C1] el1_interrupt+0x30/0x58 [ 115.487642][ C1] el1h_64_irq_handler+0x18/0x24 [ 115.488922][ C1] el1h_64_irq+0x78/0x7c [ 115.490035][ C1] inet_twsk_purge+0x12c/0x7ac [ 115.491352][ C1] dccp_v6_exit_batch+0x20/0x2c [ 115.492794][ C1] cleanup_net+0x644/0xa98 [ 115.494057][ C1] process_one_work+0x79c/0x1140 [ 115.495500][ C1] worker_thread+0x8f4/0x101c [ 115.496870][ C1] kthread+0x374/0x454 [ 115.497988][ C1] ret_from_fork+0x10/0x20 [ 115.499286][ C1] irq event stamp: 1078640 [ 115.500668][ C1] hardirqs last enabled at (1078639): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 115.503623][ C1] hardirqs last disabled at (1078640): [] enter_el1_irq_or_nmi+0x10/0x1c [ 115.506535][ C1] softirqs last enabled at (1078632): [] handle_softirqs+0xa4c/0xbf0 [ 115.509299][ C1] softirqs last disabled at (1078591): [] __irq_exit_rcu+0x240/0x440 [ 115.511992][ C1] ---[ end trace 79b29bec4289383b ]--- [ 115.677242][ T5085] loop0: detected capacity change from 0 to 128 [ 115.697114][ T5085] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.699334][ T5085] Bad inode number on dev loop0: 2 is out of range [ 115.710314][ T5085] SysV FS: get root inode failed [ 115.711642][ T5085] oldfs: cannot read superblock [ 115.716563][ C1] ------------[ cut here ]------------ [ 115.718179][ C1] VFS: brelse: Trying to free free buffer [ 115.719886][ C1] WARNING: CPU: 1 PID: 9 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.722369][ C1] Modules linked in: [ 115.723459][ C1] CPU: 1 PID: 9 Comm: kworker/u4:0 Tainted: G W 5.15.181-syzkaller #0 [ 115.726264][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.729120][ C1] Workqueue: netns cleanup_net [ 115.730476][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.732662][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 115.734216][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 115.735704][ C1] sp : ffff800008017de0 [ 115.736906][ C1] x29: ffff800008017de0 x28: ffff0000c0950000 x27: 1fffe0003685d253 [ 115.739261][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 115.741496][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dc2abee0 [ 115.743738][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 115.746023][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.748289][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.750561][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : e0b55ba516aff400 [ 115.752876][ C1] x8 : e0b55ba516aff400 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.755139][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.757328][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 115.759487][ C1] Call trace: [ 115.760394][ C1] invalidate_bh_lru+0x128/0x234 [ 115.761788][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 115.763524][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.765458][ C1] ipi_handler+0x108/0x70c [ 115.766657][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 115.768152][ C1] handle_domain_irq+0x144/0x1fc [ 115.769606][ C1] gic_handle_irq+0x78/0x1c8 [ 115.770904][ C1] call_on_irq_stack+0x24/0x4c [ 115.772219][ C1] do_interrupt_handler+0x6c/0x88 [ 115.773669][ C1] el1_interrupt+0x30/0x58 [ 115.774938][ C1] el1h_64_irq_handler+0x18/0x24 [ 115.776371][ C1] el1h_64_irq+0x78/0x7c [ 115.777581][ C1] lock_is_held_type+0x28/0x198 [ 115.778938][ C1] ___might_sleep+0x48/0x4d4 [ 115.780264][ C1] inet_twsk_purge+0x104/0x7ac [ 115.781553][ C1] dccp_v6_exit_batch+0x20/0x2c [ 115.782905][ C1] cleanup_net+0x644/0xa98 [ 115.784167][ C1] process_one_work+0x79c/0x1140 [ 115.785561][ C1] worker_thread+0x8f4/0x101c [ 115.786860][ C1] kthread+0x374/0x454 [ 115.788127][ C1] ret_from_fork+0x10/0x20 [ 115.789325][ C1] irq event stamp: 1079502 [ 115.790538][ C1] hardirqs last enabled at (1079501): [] exit_to_kernel_mode+0xe0/0x168 [ 115.793443][ C1] hardirqs last disabled at (1079502): [] enter_el1_irq_or_nmi+0x10/0x1c [ 115.796345][ C1] softirqs last enabled at (1079496): [] handle_softirqs+0xa4c/0xbf0 [ 115.799137][ C1] softirqs last disabled at (1079461): [] __irq_exit_rcu+0x240/0x440 [ 115.802184][ C1] ---[ end trace 79b29bec4289383c ]--- [ 115.897155][ T5087] loop0: detected capacity change from 0 to 128 [ 115.910222][ T5087] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.912396][ T5087] Bad inode number on dev loop0: 2 is out of range [ 115.914462][ T5087] SysV FS: get root inode failed [ 115.915860][ T5087] oldfs: cannot read superblock [ 115.929099][ C1] ------------[ cut here ]------------ [ 115.930770][ C1] VFS: brelse: Trying to free free buffer [ 115.932490][ C1] WARNING: CPU: 1 PID: 9 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.935042][ C1] Modules linked in: [ 115.936194][ C1] CPU: 1 PID: 9 Comm: kworker/u4:0 Tainted: G W 5.15.181-syzkaller #0 [ 115.938838][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.941795][ C1] Workqueue: netns cleanup_net [ 115.943201][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.945514][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 115.947218][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 115.948742][ C1] sp : ffff800008017de0 [ 115.949938][ C1] x29: ffff800008017de0 x28: ffff0000c0950000 x27: 1fffe0003685d253 [ 115.952231][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 115.954620][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb7c318 [ 115.956851][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 115.959074][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.961419][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.963772][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : e0b55ba516aff400 [ 115.965981][ C1] x8 : e0b55ba516aff400 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.968266][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.970623][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 115.972904][ C1] Call trace: [ 115.973901][ C1] invalidate_bh_lru+0x128/0x234 [ 115.975412][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 115.977107][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.979200][ C1] ipi_handler+0x108/0x70c [ 115.980528][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 115.982131][ C1] handle_domain_irq+0x144/0x1fc [ 115.983529][ C1] gic_handle_irq+0x78/0x1c8 [ 115.984865][ C1] call_on_irq_stack+0x24/0x4c [ 115.986198][ C1] do_interrupt_handler+0x6c/0x88 [ 115.987687][ C1] el1_interrupt+0x30/0x58 [ 115.988954][ C1] el1h_64_irq_handler+0x18/0x24 [ 115.990412][ C1] el1h_64_irq+0x78/0x7c [ 115.991594][ C1] lock_acquire+0x234/0x620 [ 115.992785][ C1] rcu_lock_acquire+0x40/0x4c [ 115.994052][ C1] inet_twsk_purge+0x10c/0x7ac [ 115.995468][ C1] dccp_v4_exit_batch+0x20/0x2c [ 115.996897][ C1] cleanup_net+0x644/0xa98 [ 115.998197][ C1] process_one_work+0x79c/0x1140 [ 115.999699][ C1] worker_thread+0x8f4/0x101c [ 116.001107][ C1] kthread+0x374/0x454 [ 116.002290][ C1] ret_from_fork+0x10/0x20 [ 116.003581][ C1] irq event stamp: 1080814 [ 116.004873][ C1] hardirqs last enabled at (1080813): [] exit_to_kernel_mode+0xe0/0x168 [ 116.007908][ C1] hardirqs last disabled at (1080814): [] enter_el1_irq_or_nmi+0x10/0x1c [ 116.011113][ C1] softirqs last enabled at (1080812): [] handle_softirqs+0xa4c/0xbf0 [ 116.013954][ C1] softirqs last disabled at (1080789): [] __irq_exit_rcu+0x240/0x440 [ 116.016831][ C1] ---[ end trace 79b29bec4289383d ]--- [ 116.117867][ T5089] loop0: detected capacity change from 0 to 128 [ 116.161598][ T5089] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.163735][ T5089] Bad inode number on dev loop0: 2 is out of range [ 116.165573][ T5089] SysV FS: get root inode failed [ 116.166959][ T5089] oldfs: cannot read superblock [ 116.168392][ T5089] ------------[ cut here ]------------ [ 116.169998][ T5089] VFS: brelse: Trying to free free buffer [ 116.171675][ T5089] WARNING: CPU: 0 PID: 5089 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.174303][ T5089] Modules linked in: [ 116.175457][ T5089] CPU: 0 PID: 5089 Comm: syz.0.59 Tainted: G W 5.15.181-syzkaller #0 [ 116.178238][ T5089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 116.181097][ T5089] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.183323][ T5089] pc : invalidate_bh_lru+0x128/0x234 [ 116.184849][ T5089] lr : invalidate_bh_lru+0x128/0x234 [ 116.186374][ T5089] sp : ffff80001f2e76e0 [ 116.187580][ T5089] x29: ffff80001f2e76e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 116.189873][ T5089] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 116.192174][ T5089] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debd7400 [ 116.194437][ T5089] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 116.196868][ T5089] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 116.199282][ T5089] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.201610][ T5089] x11: 0000000000000002 x10: 0000000000000000 x9 : f864d54fd4255200 [ 116.203892][ T5089] x8 : f864d54fd4255200 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.206219][ T5089] x5 : ffff80001f2e6fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 116.208499][ T5089] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 116.210775][ T5089] Call trace: [ 116.211753][ T5089] invalidate_bh_lru+0x128/0x234 [ 116.213273][ T5089] smp_call_function_many_cond+0xa50/0xeb0 [ 116.214957][ T5089] on_each_cpu_cond_mask+0x5c/0xc4 [ 116.216281][ T5089] invalidate_bh_lrus+0x34/0x40 [ 116.217651][ T5089] blkdev_flush_mapping+0x168/0x31c [ 116.219149][ T5089] blkdev_put+0x490/0x6ac [ 116.220246][ T5089] kill_block_super+0x98/0xdc [ 116.221585][ T5089] deactivate_locked_super+0xb8/0x13c [ 116.223241][ T5089] mount_bdev+0x284/0x358 [ 116.224494][ T5089] sysv_mount+0x44/0x58 [ 116.225644][ T5089] legacy_get_tree+0xd4/0x16c [ 116.226965][ T5089] vfs_get_tree+0x90/0x274 [ 116.228291][ T5089] do_new_mount+0x228/0x810 [ 116.229613][ T5089] path_mount+0x5b4/0x1000 [ 116.231005][ T5089] __arm64_sys_mount+0x514/0x5e4 [ 116.232463][ T5089] invoke_syscall+0x98/0x2b8 [ 116.233792][ T5089] el0_svc_common+0x138/0x258 [ 116.235106][ T5089] do_el0_svc+0x58/0x14c [ 116.236253][ T5089] el0_svc+0x78/0x1e0 [ 116.237480][ T5089] el0t_64_sync_handler+0xcc/0xe4 [ 116.238991][ T5089] el0t_64_sync+0x1a0/0x1a4 [ 116.240269][ T5089] irq event stamp: 1882 [ 116.241474][ T5089] hardirqs last enabled at (1881): [] kasan_quarantine_put+0xc4/0x204 [ 116.244292][ T5089] hardirqs last disabled at (1882): [] smp_call_function_many_cond+0xa44/0xeb0 [ 116.247270][ T5089] softirqs last enabled at (840): [] local_bh_enable+0x10/0x34 [ 116.249980][ T5089] softirqs last disabled at (838): [] local_bh_disable+0x10/0x34 [ 116.252720][ T5089] ---[ end trace 79b29bec4289383e ]--- [ 116.379387][ T5091] loop0: detected capacity change from 0 to 128 [ 116.392936][ T5091] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.395107][ T5091] Bad inode number on dev loop0: 2 is out of range [ 116.396835][ T5091] SysV FS: get root inode failed [ 116.398151][ T5091] oldfs: cannot read superblock [ 116.404754][ C0] ------------[ cut here ]------------ [ 116.406284][ C0] VFS: brelse: Trying to free free buffer [ 116.408012][ C0] WARNING: CPU: 0 PID: 4808 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.410593][ C0] Modules linked in: [ 116.411720][ C0] CPU: 0 PID: 4808 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 116.414552][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 116.417618][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.419990][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 116.421623][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 116.423191][ C0] sp : ffff800008007de0 [ 116.424324][ C0] x29: ffff800008007de0 x28: ffff0000c8da3680 x27: 1fffe00036859054 [ 116.426612][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 116.428977][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debd77a0 [ 116.431285][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 116.433614][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 116.436031][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.438463][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 9b7e5bf98adaba00 [ 116.440984][ C0] x8 : 9b7e5bf98adaba00 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.443311][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 116.445700][ C0] x2 : 0000000000000001 x1 : 0000000000010002 x0 : 0000000000000027 [ 116.448149][ C0] Call trace: [ 116.449026][ C0] invalidate_bh_lru+0x128/0x234 [ 116.450443][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 116.452176][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 116.454142][ C0] ipi_handler+0x108/0x70c [ 116.455397][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 116.456949][ C0] handle_domain_irq+0x144/0x1fc [ 116.458300][ C0] gic_handle_irq+0x78/0x1c8 [ 116.459759][ C0] call_on_irq_stack+0x24/0x4c [ 116.461319][ C0] do_interrupt_handler+0x6c/0x88 [ 116.462800][ C0] el1_interrupt+0x30/0x58 [ 116.464171][ C0] el1h_64_irq_handler+0x18/0x24 [ 116.465733][ C0] el1h_64_irq+0x78/0x7c [ 116.466885][ C0] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 116.468592][ C0] __wake_up_sync_key+0x11c/0x178 [ 116.470070][ C0] pipe_write+0xe20/0x1930 [ 116.471362][ C0] vfs_write+0x7c8/0xa2c [ 116.472598][ C0] ksys_write+0x120/0x210 [ 116.473861][ C0] __arm64_sys_write+0x7c/0x90 [ 116.475205][ C0] invoke_syscall+0x98/0x2b8 [ 116.476451][ C0] el0_svc_common+0x138/0x258 [ 116.477760][ C0] do_el0_svc+0x58/0x14c [ 116.478951][ C0] el0_svc+0x78/0x1e0 [ 116.480073][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 116.481542][ C0] el0t_64_sync+0x1a0/0x1a4 [ 116.482890][ C0] irq event stamp: 309560 [ 116.484134][ C0] hardirqs last enabled at (309559): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 116.487239][ C0] hardirqs last disabled at (309560): [] enter_el1_irq_or_nmi+0x10/0x1c [ 116.490039][ C0] softirqs last enabled at (309478): [] local_bh_enable+0x10/0x34 [ 116.492788][ C0] softirqs last disabled at (309476): [] local_bh_disable+0x10/0x34 [ 116.495642][ C0] ---[ end trace 79b29bec4289383f ]--- [ 116.577087][ T5093] loop0: detected capacity change from 0 to 128 [ 116.672007][ T5093] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.674182][ T5093] Bad inode number on dev loop0: 2 is out of range [ 116.676066][ T5093] SysV FS: get root inode failed [ 116.677432][ T5093] oldfs: cannot read superblock [ 116.684036][ C0] ------------[ cut here ]------------ [ 116.685649][ C0] VFS: brelse: Trying to free free buffer [ 116.687370][ C0] WARNING: CPU: 0 PID: 5093 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.689979][ C0] Modules linked in: [ 116.691130][ C0] CPU: 0 PID: 5093 Comm: syz.0.61 Tainted: G W 5.15.181-syzkaller #0 [ 116.693826][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 116.696846][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.699107][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 116.700707][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 116.702254][ C0] sp : ffff800008007de0 [ 116.703436][ C0] x29: ffff800008007de0 x28: ffff0000d95f1b40 x27: 1fffe00036859054 [ 116.705828][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 116.708059][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debd7b40 [ 116.710263][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 116.712535][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 116.714858][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.717200][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 5aaa5d77ef252800 [ 116.719548][ C0] x8 : 5aaa5d77ef252800 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.721840][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 116.724128][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 116.726511][ C0] Call trace: [ 116.727476][ C0] invalidate_bh_lru+0x128/0x234 [ 116.728864][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 116.730665][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 116.732819][ C0] ipi_handler+0x108/0x70c [ 116.734069][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 116.735516][ C0] handle_domain_irq+0x144/0x1fc [ 116.736835][ C0] gic_handle_irq+0x78/0x1c8 [ 116.738216][ C0] call_on_irq_stack+0x24/0x4c [ 116.739556][ C0] do_interrupt_handler+0x6c/0x88 [ 116.741098][ C0] el1_interrupt+0x30/0x58 [ 116.742387][ C0] el1h_64_irq_handler+0x18/0x24 [ 116.743877][ C0] el1h_64_irq+0x78/0x7c [ 116.745181][ C0] lock_release+0x4a0/0x8e8 [ 116.746532][ C0] rcu_lock_release+0x24/0x30 [ 116.747955][ C0] __unlock_page_memcg+0xe0/0xf8 [ 116.749350][ C0] unlock_page_memcg+0x4c/0x5c [ 116.750700][ C0] page_remove_rmap+0xb2c/0xfd0 [ 116.752078][ C0] unmap_page_range+0xbb4/0x1958 [ 116.753487][ C0] unmap_single_vma+0x13c/0x1e4 [ 116.754955][ C0] unmap_vmas+0x104/0x200 [ 116.756306][ C0] exit_mmap+0x2a8/0x4e0 [ 116.757505][ C0] __mmput+0xec/0x3b8 [ 116.758627][ C0] mmput+0x80/0xc8 [ 116.759729][ C0] exit_mm+0x4a0/0x684 [ 116.760849][ C0] do_exit+0x4e4/0x1f58 [ 116.762014][ C0] do_group_exit+0x100/0x268 [ 116.763329][ C0] get_signal+0x73c/0x1340 [ 116.764508][ C0] do_notify_resume+0x35c/0x3128 [ 116.765976][ C0] el0_svc+0xf0/0x1e0 [ 116.767075][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 116.768508][ C0] el0t_64_sync+0x1a0/0x1a4 [ 116.769886][ C0] irq event stamp: 2364 [ 116.771112][ C0] hardirqs last enabled at (2363): [] lock_page_memcg+0x110/0x234 [ 116.773923][ C0] hardirqs last disabled at (2364): [] enter_el1_irq_or_nmi+0x10/0x1c [ 116.776833][ C0] softirqs last enabled at (1454): [] local_bh_enable+0x10/0x34 [ 116.779669][ C0] softirqs last disabled at (1452): [] local_bh_disable+0x10/0x34 [ 116.782427][ C0] ---[ end trace 79b29bec42893840 ]--- [ 116.865550][ T5095] loop0: detected capacity change from 0 to 128 [ 116.900724][ T5095] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.902914][ T5095] Bad inode number on dev loop0: 2 is out of range [ 116.904766][ T5095] SysV FS: get root inode failed [ 116.906186][ T5095] oldfs: cannot read superblock [ 116.907646][ T5095] ------------[ cut here ]------------ [ 116.909089][ T5095] VFS: brelse: Trying to free free buffer [ 116.910801][ T5095] WARNING: CPU: 1 PID: 5095 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.913475][ T5095] Modules linked in: [ 116.914728][ T5095] CPU: 1 PID: 5095 Comm: syz.0.62 Tainted: G W 5.15.181-syzkaller #0 [ 116.917804][ T5095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 116.920914][ T5095] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.923263][ T5095] pc : invalidate_bh_lru+0x128/0x234 [ 116.924997][ T5095] lr : invalidate_bh_lru+0x128/0x234 [ 116.926731][ T5095] sp : ffff80001f6776e0 [ 116.928206][ T5095] x29: ffff80001f6776e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 116.930585][ T5095] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 116.932860][ T5095] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dc2adc28 [ 116.935248][ T5095] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 116.937453][ T5095] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 116.939827][ T5095] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.942155][ T5095] x11: 0000000000000002 x10: 0000000000000000 x9 : 83d178554a6f0600 [ 116.944642][ T5095] x8 : 83d178554a6f0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.946966][ T5095] x5 : ffff80001f676fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 116.949419][ T5095] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 116.951647][ T5095] Call trace: [ 116.952506][ T5095] invalidate_bh_lru+0x128/0x234 [ 116.953946][ T5095] smp_call_function_many_cond+0xa50/0xeb0 [ 116.955675][ T5095] on_each_cpu_cond_mask+0x5c/0xc4 [ 116.957083][ T5095] invalidate_bh_lrus+0x34/0x40 [ 116.958535][ T5095] blkdev_flush_mapping+0x168/0x31c [ 116.960026][ T5095] blkdev_put+0x490/0x6ac [ 116.961266][ T5095] kill_block_super+0x98/0xdc [ 116.962590][ T5095] deactivate_locked_super+0xb8/0x13c [ 116.964137][ T5095] mount_bdev+0x284/0x358 [ 116.965354][ T5095] sysv_mount+0x44/0x58 [ 116.966578][ T5095] legacy_get_tree+0xd4/0x16c [ 116.968024][ T5095] vfs_get_tree+0x90/0x274 [ 116.969204][ T5095] do_new_mount+0x228/0x810 [ 116.970533][ T5095] path_mount+0x5b4/0x1000 [ 116.971864][ T5095] __arm64_sys_mount+0x514/0x5e4 [ 116.973341][ T5095] invoke_syscall+0x98/0x2b8 [ 116.974790][ T5095] el0_svc_common+0x138/0x258 [ 116.976119][ T5095] do_el0_svc+0x58/0x14c [ 116.977325][ T5095] el0_svc+0x78/0x1e0 [ 116.978491][ T5095] el0t_64_sync_handler+0xcc/0xe4 [ 116.979968][ T5095] el0t_64_sync+0x1a0/0x1a4 [ 116.981395][ T5095] irq event stamp: 1602 [ 116.982540][ T5095] hardirqs last enabled at (1601): [] kasan_quarantine_put+0xc4/0x204 [ 116.985442][ T5095] hardirqs last disabled at (1602): [] smp_call_function_many_cond+0xa44/0xeb0 [ 116.988574][ T5095] softirqs last enabled at (44): [] local_bh_enable+0x10/0x34 [ 116.991150][ T5095] softirqs last disabled at (42): [] local_bh_disable+0x10/0x34 [ 116.993788][ T5095] ---[ end trace 79b29bec42893841 ]--- [ 117.105741][ T5097] loop0: detected capacity change from 0 to 128 [ 117.119506][ T5097] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.122436][ T5097] Bad inode number on dev loop0: 2 is out of range [ 117.124134][ T5097] SysV FS: get root inode failed [ 117.125430][ T5097] oldfs: cannot read superblock [ 117.126932][ T5097] ------------[ cut here ]------------ [ 117.128440][ T5097] VFS: brelse: Trying to free free buffer [ 117.130124][ T5097] WARNING: CPU: 0 PID: 5097 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.132731][ T5097] Modules linked in: [ 117.133773][ T5097] CPU: 0 PID: 5097 Comm: syz.0.63 Tainted: G W 5.15.181-syzkaller #0 [ 117.136266][ T5097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.139125][ T5097] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.141300][ T5097] pc : invalidate_bh_lru+0x128/0x234 [ 117.142989][ T5097] lr : invalidate_bh_lru+0x128/0x234 [ 117.144555][ T5097] sp : ffff80001f6876e0 [ 117.145862][ T5097] x29: ffff80001f6876e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 117.148314][ T5097] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 117.150647][ T5097] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debd7ee0 [ 117.152976][ T5097] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 117.155427][ T5097] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 117.157673][ T5097] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.160031][ T5097] x11: 0000000000000002 x10: 0000000000000000 x9 : 3f97a2e306876700 [ 117.162412][ T5097] x8 : 3f97a2e306876700 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.164712][ T5097] x5 : ffff80001f686fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 117.167070][ T5097] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 117.169478][ T5097] Call trace: [ 117.170445][ T5097] invalidate_bh_lru+0x128/0x234 [ 117.171980][ T5097] smp_call_function_many_cond+0xa50/0xeb0 [ 117.173824][ T5097] on_each_cpu_cond_mask+0x5c/0xc4 [ 117.175367][ T5097] invalidate_bh_lrus+0x34/0x40 [ 117.176724][ T5097] blkdev_flush_mapping+0x168/0x31c [ 117.178248][ T5097] blkdev_put+0x490/0x6ac [ 117.179488][ T5097] kill_block_super+0x98/0xdc [ 117.180860][ T5097] deactivate_locked_super+0xb8/0x13c [ 117.182617][ T5097] mount_bdev+0x284/0x358 [ 117.183876][ T5097] sysv_mount+0x44/0x58 [ 117.185071][ T5097] legacy_get_tree+0xd4/0x16c [ 117.186511][ T5097] vfs_get_tree+0x90/0x274 [ 117.187849][ T5097] do_new_mount+0x228/0x810 [ 117.189224][ T5097] path_mount+0x5b4/0x1000 [ 117.190561][ T5097] __arm64_sys_mount+0x514/0x5e4 [ 117.191978][ T5097] invoke_syscall+0x98/0x2b8 [ 117.193209][ T5097] el0_svc_common+0x138/0x258 [ 117.194521][ T5097] do_el0_svc+0x58/0x14c [ 117.195913][ T5097] el0_svc+0x78/0x1e0 [ 117.197114][ T5097] el0t_64_sync_handler+0xcc/0xe4 [ 117.198584][ T5097] el0t_64_sync+0x1a0/0x1a4 [ 117.199804][ T5097] irq event stamp: 1622 [ 117.201023][ T5097] hardirqs last enabled at (1621): [] kasan_quarantine_put+0xc4/0x204 [ 117.203640][ T5097] hardirqs last disabled at (1622): [] smp_call_function_many_cond+0xa44/0xeb0 [ 117.206753][ T5097] softirqs last enabled at (1584): [] handle_softirqs+0xa4c/0xbf0 [ 117.209515][ T5097] softirqs last disabled at (1571): [] __irq_exit_rcu+0x240/0x440 [ 117.212174][ T5097] ---[ end trace 79b29bec42893842 ]--- [ 117.285756][ T5099] loop0: detected capacity change from 0 to 128 [ 117.303972][ T5099] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.305990][ T5099] Bad inode number on dev loop0: 2 is out of range [ 117.307799][ T5099] SysV FS: get root inode failed [ 117.309547][ T5099] oldfs: cannot read superblock [ 117.315864][ C0] ------------[ cut here ]------------ [ 117.317377][ C0] VFS: brelse: Trying to free free buffer [ 117.319185][ C0] WARNING: CPU: 0 PID: 4808 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.321592][ C0] Modules linked in: [ 117.322631][ C0] CPU: 0 PID: 4808 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 117.325384][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.328238][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.330447][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 117.331871][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 117.333362][ C0] sp : ffff800008007de0 [ 117.334482][ C0] x29: ffff800008007de0 x28: ffff0000c8da3680 x27: 1fffe00036859054 [ 117.336663][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 117.338814][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debd3318 [ 117.340976][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 117.343108][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 117.345285][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.347454][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 9b7e5bf98adaba00 [ 117.349869][ C0] x8 : 9b7e5bf98adaba00 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.352097][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 117.354268][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 117.356475][ C0] Call trace: [ 117.357398][ C0] invalidate_bh_lru+0x128/0x234 [ 117.358760][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 117.360468][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 117.362366][ C0] ipi_handler+0x108/0x70c [ 117.363487][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 117.364924][ C0] handle_domain_irq+0x144/0x1fc [ 117.366250][ C0] gic_handle_irq+0x78/0x1c8 [ 117.367498][ C0] call_on_irq_stack+0x24/0x4c [ 117.368754][ C0] do_interrupt_handler+0x6c/0x88 [ 117.370068][ C0] el1_interrupt+0x30/0x58 [ 117.371282][ C0] el1h_64_irq_handler+0x18/0x24 [ 117.372827][ C0] el1h_64_irq+0x78/0x7c [ 117.374010][ C0] __fput+0x74/0x7f8 [ 117.375090][ C0] ____fput+0x20/0x30 [ 117.376168][ C0] task_work_run+0x12c/0x1e0 [ 117.377566][ C0] do_notify_resume+0x24b4/0x3128 [ 117.378984][ C0] el0_svc+0xf0/0x1e0 [ 117.380140][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 117.381596][ C0] el0t_64_sync+0x1a0/0x1a4 [ 117.382866][ C0] irq event stamp: 321794 [ 117.383978][ C0] hardirqs last enabled at (321793): [] _raw_spin_unlock_irq+0x98/0x128 [ 117.386642][ C0] hardirqs last disabled at (321794): [] enter_el1_irq_or_nmi+0x10/0x1c [ 117.389342][ C0] softirqs last enabled at (321642): [] local_bh_enable+0x10/0x34 [ 117.391927][ C0] softirqs last disabled at (321640): [] local_bh_disable+0x10/0x34 [ 117.394505][ C0] ---[ end trace 79b29bec42893843 ]--- [ 117.466573][ T5101] loop0: detected capacity change from 0 to 128 [ 117.562892][ T5101] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.564942][ T5101] Bad inode number on dev loop0: 2 is out of range [ 117.566672][ T5101] SysV FS: get root inode failed [ 117.567997][ T5101] oldfs: cannot read superblock [ 117.590421][ C1] ------------[ cut here ]------------ [ 117.591957][ C1] VFS: brelse: Trying to free free buffer [ 117.593537][ C1] WARNING: CPU: 1 PID: 5103 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.596035][ C1] Modules linked in: [ 117.597092][ C1] CPU: 1 PID: 5103 Comm: syz.0.66 Tainted: G W 5.15.181-syzkaller #0 [ 117.599624][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.602378][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.604503][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 117.606001][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 117.607494][ C1] sp : ffff800008017de0 [ 117.608604][ C1] x29: ffff800008017de0 x28: ffff0000db4751c0 x27: 1fffe0003685d253 [ 117.610765][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 117.612977][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dc2ad060 [ 117.615167][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010003 [ 117.617384][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 117.619495][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.621654][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 3ed242504c20c000 [ 117.623817][ C1] x8 : 3ed242504c20c000 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.626026][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 117.628235][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 117.630473][ C1] Call trace: [ 117.631378][ C1] invalidate_bh_lru+0x128/0x234 [ 117.632792][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 117.634408][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 117.636310][ C1] ipi_handler+0x108/0x70c [ 117.637568][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 117.639034][ C1] handle_domain_irq+0x144/0x1fc [ 117.640401][ C1] gic_handle_irq+0x78/0x1c8 [ 117.641628][ C1] call_on_irq_stack+0x24/0x4c [ 117.642904][ C1] do_interrupt_handler+0x6c/0x88 [ 117.644311][ C1] el1_interrupt+0x30/0x58 [ 117.645512][ C1] el1h_64_irq_handler+0x18/0x24 [ 117.646887][ C1] el1h_64_irq+0x78/0x7c [ 117.648006][ C1] lock_acquire+0x234/0x620 [ 117.649256][ C1] _raw_spin_lock+0xb0/0x10c [ 117.650521][ C1] handle_mm_fault+0x1f9c/0x2950 [ 117.651858][ C1] do_page_fault+0x694/0xad4 [ 117.653087][ C1] do_translation_fault+0xe0/0x130 [ 117.654481][ C1] do_mem_abort+0x6c/0x1ac [ 117.655699][ C1] el0_da+0x90/0x1fc [ 117.656785][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 117.658141][ C1] el0t_64_sync+0x1a0/0x1a4 [ 117.659403][ C1] irq event stamp: 266 [ 117.660501][ C1] hardirqs last enabled at (265): [] charge_memcg+0x190/0x220 [ 117.662918][ C1] hardirqs last disabled at (266): [] enter_el1_irq_or_nmi+0x10/0x1c [ 117.665510][ C1] softirqs last enabled at (236): [] handle_softirqs+0xa4c/0xbf0 [ 117.668072][ C1] softirqs last disabled at (221): [] __irq_exit_rcu+0x240/0x440 [ 117.670612][ C1] ---[ end trace 79b29bec42893844 ]--- [ 117.724612][ T5103] loop0: detected capacity change from 0 to 128 [ 117.730372][ T5103] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.732345][ T5103] Bad inode number on dev loop0: 2 is out of range [ 117.734080][ T5103] SysV FS: get root inode failed [ 117.735346][ T5103] oldfs: cannot read superblock [ 117.736719][ T5103] ------------[ cut here ]------------ [ 117.738150][ T5103] VFS: brelse: Trying to free free buffer [ 117.739777][ T5103] WARNING: CPU: 0 PID: 5103 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.742076][ T5103] Modules linked in: [ 117.743174][ T5103] CPU: 0 PID: 5103 Comm: syz.0.66 Tainted: G W 5.15.181-syzkaller #0 [ 117.745726][ T5103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.748432][ T5103] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.750566][ T5103] pc : invalidate_bh_lru+0x128/0x234 [ 117.752073][ T5103] lr : invalidate_bh_lru+0x128/0x234 [ 117.753511][ T5103] sp : ffff80001b9676e0 [ 117.754622][ T5103] x29: ffff80001b9676e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 117.756795][ T5103] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 117.759035][ T5103] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debd36b8 [ 117.761231][ T5103] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003