Warning: Permanently added '10.128.10.4' (ED25519) to the list of known hosts. 1970/01/01 00:01:21 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:21 parsed 1 programs [ 84.365290][ T4438] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 91.726100][ T4482] chnl_net:caif_netlink_parms(): no params data found [ 91.762910][ T4482] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.765211][ T4482] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.768226][ T4482] device bridge_slave_0 entered promiscuous mode [ 91.771988][ T4482] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.774093][ T4482] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.776938][ T4482] device bridge_slave_1 entered promiscuous mode [ 91.797489][ T4482] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.802100][ T4482] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.817825][ T4482] team0: Port device team_slave_0 added [ 91.821231][ T4482] team0: Port device team_slave_1 added [ 91.888112][ T4482] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.890272][ T4482] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.898087][ T4482] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.902360][ T4482] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.904236][ T4482] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.913060][ T4482] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.981063][ T4482] device hsr_slave_0 entered promiscuous mode [ 92.027974][ T4482] device hsr_slave_1 entered promiscuous mode [ 92.799409][ T4482] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 92.848350][ T4482] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 92.880219][ T4482] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 92.928640][ T4482] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 93.028311][ T4482] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.036467][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.040767][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.046234][ T4482] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.061204][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 93.064086][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 93.067868][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.069892][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.072467][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 93.075372][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 93.078936][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.080933][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.083286][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 93.097028][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 93.102294][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 93.105480][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 93.109348][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 93.112206][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 93.115412][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 93.128418][ T4482] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 93.131268][ T4482] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 93.138452][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 93.141141][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 93.143924][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 93.148143][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 93.150941][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 93.165005][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 93.303462][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 93.305836][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 93.313303][ T4482] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.333635][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 93.337117][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 93.359915][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 93.363162][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 93.366034][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 93.372481][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 93.378988][ T4482] device veth0_vlan entered promiscuous mode [ 93.387192][ T4482] device veth1_vlan entered promiscuous mode [ 93.404075][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 93.408487][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 93.411242][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 93.414447][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 93.421935][ T4482] device veth0_macvtap entered promiscuous mode [ 93.427863][ T4482] device veth1_macvtap entered promiscuous mode [ 93.441334][ T4482] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.443661][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 93.446924][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 93.449637][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 93.453038][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 93.458951][ T4482] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.464524][ T4482] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.470400][ T4482] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.472941][ T4482] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.475292][ T4482] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.481912][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 93.484973][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 93.754134][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.756930][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.760135][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 93.779286][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.781551][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.784775][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:34 executed programs: 0 [ 94.522446][ T4643] chnl_net:caif_netlink_parms(): no params data found [ 94.569700][ T4643] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.571961][ T4643] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.574851][ T4643] device bridge_slave_0 entered promiscuous mode [ 94.579116][ T4643] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.581421][ T4643] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.584222][ T4643] device bridge_slave_1 entered promiscuous mode [ 94.602493][ T4643] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 94.609357][ T4643] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 94.627549][ T4643] team0: Port device team_slave_0 added [ 94.631182][ T4643] team0: Port device team_slave_1 added [ 94.647738][ T4643] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 94.649767][ T4643] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 94.660295][ T4643] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 94.668208][ T4643] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 94.670140][ T4643] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 94.680952][ T4643] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 94.739917][ T4643] device hsr_slave_0 entered promiscuous mode [ 94.786839][ T4643] device hsr_slave_1 entered promiscuous mode [ 94.826981][ T4643] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 94.829186][ T4643] Cannot create hsr debugfs directory [ 94.922025][ T4643] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.446448][ T25] Bluetooth: hci1: command 0x0409 tx timeout [ 97.874267][ T4643] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.425555][ T4643] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.484514][ T4643] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.526821][ T4557] Bluetooth: hci1: command 0x041b tx timeout [ 98.642381][ T4643] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.669787][ T4643] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 98.738947][ T4643] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 98.778400][ T4643] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.865703][ T4643] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.903429][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 98.906120][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 98.913644][ T4643] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.918912][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 98.921745][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 98.924386][ T148] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.926786][ T148] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.931213][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 98.935965][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 98.941272][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 98.943850][ T148] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.945835][ T148] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.952504][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 98.957456][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 98.963282][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 98.967348][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 98.970279][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 98.979209][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 98.982132][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 98.990248][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 98.992958][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 98.998581][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 99.001252][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 99.005866][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 99.078588][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 99.080857][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 99.087636][ T4643] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.120946][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 99.123903][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 99.139105][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 99.142077][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 99.144957][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 99.150028][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 99.155105][ T4643] device veth0_vlan entered promiscuous mode [ 99.163785][ T4643] device veth1_vlan entered promiscuous mode [ 99.181270][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 99.184096][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 99.187471][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 99.190327][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 99.195698][ T4643] device veth0_macvtap entered promiscuous mode [ 99.202247][ T4643] device veth1_macvtap entered promiscuous mode [ 99.212660][ T4643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 99.215565][ T4643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 99.220618][ T4643] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.222909][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 99.225661][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 99.228458][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 99.231664][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 99.257139][ T4643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 99.260118][ T4643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 99.263934][ T4643] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.266389][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 99.269269][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 99.275680][ T4643] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.278479][ T4643] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.280974][ T4643] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.283586][ T4643] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.350158][ T153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.352420][ T153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.361174][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 99.365188][ T153] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.368384][ T153] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.378139][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:39 executed programs: 2 [ 99.415230][ T4872] loop0: detected capacity change from 0 to 128 [ 99.425437][ T4872] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.429545][ T4872] Bad inode number on dev loop0: 2 is out of range [ 99.431365][ T4872] SysV FS: get root inode failed [ 99.432732][ T4872] oldfs: cannot read superblock [ 99.436232][ T4489] ------------[ cut here ]------------ [ 99.438013][ T4489] VFS: brelse: Trying to free free buffer [ 99.439625][ T4489] WARNING: CPU: 1 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.442049][ T4489] Modules linked in: [ 99.443137][ T4489] CPU: 1 PID: 4489 Comm: udevd Not tainted 5.15.181-syzkaller #0 [ 99.445248][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 99.448069][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.450238][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 99.451755][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 99.453149][ T4489] sp : ffff80001f7f77c0 [ 99.454260][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 99.456486][ T4489] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 99.458691][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9775d0 [ 99.460878][ T4489] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 99.463076][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 99.465287][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 99.467424][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 99.469622][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 99.471762][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 99.473882][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 99.476030][ T4489] Call trace: [ 99.476896][ T4489] invalidate_bh_lru+0x128/0x234 [ 99.478261][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 99.479860][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 99.481295][ T4489] invalidate_bh_lrus+0x34/0x40 [ 99.482638][ T4489] blkdev_flush_mapping+0x168/0x31c [ 99.484098][ T4489] blkdev_put+0x490/0x6ac [ 99.485242][ T4489] blkdev_close+0x74/0xb0 [ 99.486394][ T4489] __fput+0x1c0/0x7f8 [ 99.487428][ T4489] ____fput+0x20/0x30 [ 99.488521][ T4489] task_work_run+0x12c/0x1e0 [ 99.489755][ T4489] do_notify_resume+0x24b4/0x3128 [ 99.491105][ T4489] el0_svc+0xf0/0x1e0 [ 99.492208][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 99.493572][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 99.494842][ T4489] irq event stamp: 36240 [ 99.496026][ T4489] hardirqs last enabled at (36239): [] kasan_quarantine_put+0xc4/0x204 [ 99.498755][ T4489] hardirqs last disabled at (36240): [] smp_call_function_many_cond+0xa44/0xeb0 [ 99.501596][ T4489] softirqs last enabled at (35726): [] local_bh_enable+0x10/0x34 [ 99.504109][ T4489] softirqs last disabled at (35724): [] local_bh_disable+0x10/0x34 [ 99.506679][ T4489] ---[ end trace ed959f3122165b08 ]--- [ 99.562801][ T4874] loop0: detected capacity change from 0 to 128 [ 99.571416][ T4874] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.573456][ T4874] Bad inode number on dev loop0: 2 is out of range [ 99.575190][ T4874] SysV FS: get root inode failed [ 99.580215][ T4874] oldfs: cannot read superblock [ 99.592866][ T4489] ------------[ cut here ]------------ [ 99.594461][ T4489] VFS: brelse: Trying to free free buffer [ 99.596145][ T4489] WARNING: CPU: 0 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.598703][ T4489] Modules linked in: [ 99.599765][ T4489] CPU: 0 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 99.602318][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 99.605134][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.607360][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 99.608924][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 99.610372][ T4489] sp : ffff80001f7f77c0 [ 99.611548][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 99.613790][ T4489] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 99.615968][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e1d76a58 [ 99.618284][ T4489] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 99.620505][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 99.622776][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 99.625084][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 99.627286][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 99.629434][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 99.631653][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 99.633875][ T4489] Call trace: [ 99.634762][ T4489] invalidate_bh_lru+0x128/0x234 [ 99.636124][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 99.637730][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 99.639156][ T4489] invalidate_bh_lrus+0x34/0x40 [ 99.640478][ T4489] blkdev_flush_mapping+0x168/0x31c [ 99.641920][ T4489] blkdev_put+0x490/0x6ac [ 99.643117][ T4489] blkdev_close+0x74/0xb0 [ 99.644291][ T4489] __fput+0x1c0/0x7f8 [ 99.645402][ T4489] ____fput+0x20/0x30 [ 99.646520][ T4489] task_work_run+0x12c/0x1e0 [ 99.647768][ T4489] do_notify_resume+0x24b4/0x3128 [ 99.649159][ T4489] el0_svc+0xf0/0x1e0 [ 99.650250][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 99.651610][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 99.652852][ T4489] irq event stamp: 41038 [ 99.654004][ T4489] hardirqs last enabled at (41037): [] kasan_quarantine_put+0xc4/0x204 [ 99.656661][ T4489] hardirqs last disabled at (41038): [] smp_call_function_many_cond+0xa44/0xeb0 [ 99.659597][ T4489] softirqs last enabled at (39902): [] handle_softirqs+0xa4c/0xbf0 [ 99.662264][ T4489] softirqs last disabled at (39839): [] __irq_exit_rcu+0x240/0x440 [ 99.664839][ T4489] ---[ end trace ed959f3122165b09 ]--- [ 99.732393][ T4876] loop0: detected capacity change from 0 to 128 [ 99.768749][ T4876] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.770748][ T4876] Bad inode number on dev loop0: 2 is out of range [ 99.772527][ T4876] SysV FS: get root inode failed [ 99.773886][ T4876] oldfs: cannot read superblock [ 99.775205][ T4876] ------------[ cut here ]------------ [ 99.776707][ T4876] VFS: brelse: Trying to free free buffer [ 99.778414][ T4876] WARNING: CPU: 1 PID: 4876 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.780998][ T4876] Modules linked in: [ 99.782006][ T4876] CPU: 1 PID: 4876 Comm: syz.0.17 Tainted: G W 5.15.181-syzkaller #0 [ 99.784633][ T4876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 99.787374][ T4876] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.789498][ T4876] pc : invalidate_bh_lru+0x128/0x234 [ 99.790948][ T4876] lr : invalidate_bh_lru+0x128/0x234 [ 99.792388][ T4876] sp : ffff80001f8076e0 [ 99.793524][ T4876] x29: ffff80001f8076e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 99.795720][ T4876] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 99.797884][ T4876] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd977970 [ 99.800077][ T4876] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 99.802210][ T4876] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 99.804388][ T4876] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 99.806597][ T4876] x11: 0000000000000002 x10: 0000000000000000 x9 : 365032e742b66700 [ 99.808767][ T4876] x8 : 365032e742b66700 x7 : 0000000000000001 x6 : 0000000000000001 [ 99.810942][ T4876] x5 : ffff80001f806fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 99.813084][ T4876] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 99.815279][ T4876] Call trace: [ 99.816172][ T4876] invalidate_bh_lru+0x128/0x234 [ 99.817530][ T4876] smp_call_function_many_cond+0xa50/0xeb0 [ 99.819149][ T4876] on_each_cpu_cond_mask+0x5c/0xc4 [ 99.820543][ T4876] invalidate_bh_lrus+0x34/0x40 [ 99.821846][ T4876] blkdev_flush_mapping+0x168/0x31c [ 99.823231][ T4876] blkdev_put+0x490/0x6ac [ 99.824412][ T4876] kill_block_super+0x98/0xdc [ 99.825706][ T4876] deactivate_locked_super+0xb8/0x13c [ 99.827179][ T4876] mount_bdev+0x284/0x358 [ 99.828334][ T4876] sysv_mount+0x44/0x58 [ 99.829434][ T4876] legacy_get_tree+0xd4/0x16c [ 99.830638][ T4876] vfs_get_tree+0x90/0x274 [ 99.831832][ T4876] do_new_mount+0x228/0x810 [ 99.833076][ T4876] path_mount+0x5b4/0x1000 [ 99.834253][ T4876] __arm64_sys_mount+0x514/0x5e4 [ 99.835592][ T4876] invoke_syscall+0x98/0x2b8 [ 99.836917][ T4876] el0_svc_common+0x138/0x258 [ 99.838256][ T4876] do_el0_svc+0x58/0x14c [ 99.839403][ T4876] el0_svc+0x78/0x1e0 [ 99.840444][ T4876] el0t_64_sync_handler+0xcc/0xe4 [ 99.841797][ T4876] el0t_64_sync+0x1a0/0x1a4 [ 99.842968][ T4876] irq event stamp: 1082 [ 99.844078][ T4876] hardirqs last enabled at (1081): [] kasan_quarantine_put+0xc4/0x204 [ 99.846797][ T4876] hardirqs last disabled at (1082): [] smp_call_function_many_cond+0xa44/0xeb0 [ 99.849670][ T4876] softirqs last enabled at (856): [] local_bh_enable+0x10/0x34 [ 99.852139][ T4876] softirqs last disabled at (854): [] local_bh_disable+0x10/0x34 [ 99.854699][ T4876] ---[ end trace ed959f3122165b0a ]--- [ 99.964404][ T4878] loop0: detected capacity change from 0 to 128 [ 99.977068][ T4878] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.979350][ T4878] Bad inode number on dev loop0: 2 is out of range [ 99.981109][ T4878] SysV FS: get root inode failed [ 99.982480][ T4878] oldfs: cannot read superblock [ 99.984465][ T4878] ------------[ cut here ]------------ [ 99.985993][ T4878] VFS: brelse: Trying to free free buffer [ 99.987608][ T4878] WARNING: CPU: 1 PID: 4878 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.990121][ T4878] Modules linked in: [ 99.991161][ T4878] CPU: 1 PID: 4878 Comm: syz.0.18 Tainted: G W 5.15.181-syzkaller #0 [ 99.993784][ T4878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 99.996554][ T4878] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.998884][ T4878] pc : invalidate_bh_lru+0x128/0x234 [ 100.000399][ T4878] lr : invalidate_bh_lru+0x128/0x234 [ 100.001886][ T4878] sp : ffff80001f7376e0 [ 100.002995][ T4878] x29: ffff80001f7376e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 100.005125][ T4878] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 100.007350][ T4878] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd977d10 [ 100.009593][ T4878] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 100.011768][ T4878] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 100.014006][ T4878] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.016247][ T4878] x11: 0000000000000002 x10: 0000000000000000 x9 : 8b429a7d6824d200 [ 100.018494][ T4878] x8 : 8b429a7d6824d200 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.020761][ T4878] x5 : ffff80001f736fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 100.022944][ T4878] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 100.025198][ T4878] Call trace: [ 100.026075][ T4878] invalidate_bh_lru+0x128/0x234 [ 100.027480][ T4878] smp_call_function_many_cond+0xa50/0xeb0 [ 100.029064][ T4878] on_each_cpu_cond_mask+0x5c/0xc4 [ 100.030467][ T4878] invalidate_bh_lrus+0x34/0x40 [ 100.031808][ T4878] blkdev_flush_mapping+0x168/0x31c [ 100.033268][ T4878] blkdev_put+0x490/0x6ac [ 100.034492][ T4878] kill_block_super+0x98/0xdc [ 100.035815][ T4878] deactivate_locked_super+0xb8/0x13c [ 100.037262][ T4878] mount_bdev+0x284/0x358 [ 100.038437][ T4878] sysv_mount+0x44/0x58 [ 100.039599][ T4878] legacy_get_tree+0xd4/0x16c [ 100.040835][ T4878] vfs_get_tree+0x90/0x274 [ 100.042033][ T4878] do_new_mount+0x228/0x810 [ 100.043274][ T4878] path_mount+0x5b4/0x1000 [ 100.044471][ T4878] __arm64_sys_mount+0x514/0x5e4 [ 100.045790][ T4878] invoke_syscall+0x98/0x2b8 [ 100.047043][ T4878] el0_svc_common+0x138/0x258 [ 100.048295][ T4878] do_el0_svc+0x58/0x14c [ 100.049474][ T4878] el0_svc+0x78/0x1e0 [ 100.050542][ T4878] el0t_64_sync_handler+0xcc/0xe4 [ 100.051929][ T4878] el0t_64_sync+0x1a0/0x1a4 [ 100.053222][ T4878] irq event stamp: 1094 [ 100.054363][ T4878] hardirqs last enabled at (1093): [] kasan_quarantine_put+0xc4/0x204 [ 100.057095][ T4878] hardirqs last disabled at (1094): [] smp_call_function_many_cond+0xa44/0xeb0 [ 100.059940][ T4878] softirqs last enabled at (794): [] local_bh_enable+0x10/0x34 [ 100.062472][ T4878] softirqs last disabled at (792): [] local_bh_disable+0x10/0x34 [ 100.065195][ T4878] ---[ end trace ed959f3122165b0b ]--- [ 100.185757][ T4880] loop0: detected capacity change from 0 to 128 [ 100.189626][ T4880] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 100.191771][ T4880] Bad inode number on dev loop0: 2 is out of range [ 100.193523][ T4880] SysV FS: get root inode failed [ 100.194915][ T4880] oldfs: cannot read superblock [ 100.196206][ T4880] ------------[ cut here ]------------ [ 100.197725][ T4880] VFS: brelse: Trying to free free buffer [ 100.199385][ T4880] WARNING: CPU: 1 PID: 4880 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 100.201856][ T4880] Modules linked in: [ 100.202927][ T4880] CPU: 1 PID: 4880 Comm: syz.0.19 Tainted: G W 5.15.181-syzkaller #0 [ 100.205395][ T4880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 100.208129][ T4880] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.210199][ T4880] pc : invalidate_bh_lru+0x128/0x234 [ 100.211612][ T4880] lr : invalidate_bh_lru+0x128/0x234 [ 100.213022][ T4880] sp : ffff80001f7376e0 [ 100.214125][ T4880] x29: ffff80001f7376e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 100.216251][ T4880] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 100.218481][ T4880] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c56985d0 [ 100.220691][ T4880] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 100.222881][ T4880] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 100.225105][ T4880] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.227338][ T4880] x11: 0000000000000002 x10: 0000000000000000 x9 : 6c11b779ad7a4500 [ 100.229519][ T4880] x8 : 6c11b779ad7a4500 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.231741][ T4880] x5 : ffff80001f736fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 100.233998][ T4880] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 100.236247][ T4880] Call trace: [ 100.237138][ T4880] invalidate_bh_lru+0x128/0x234 [ 100.238524][ T4880] smp_call_function_many_cond+0xa50/0xeb0 [ 100.240102][ T4880] on_each_cpu_cond_mask+0x5c/0xc4 [ 100.241493][ T4880] invalidate_bh_lrus+0x34/0x40 [ 100.242799][ T4880] blkdev_flush_mapping+0x168/0x31c [ 100.244231][ T4880] blkdev_put+0x490/0x6ac [ 100.245369][ T4880] kill_block_super+0x98/0xdc [ 100.246696][ T4880] deactivate_locked_super+0xb8/0x13c [ 100.248193][ T4880] mount_bdev+0x284/0x358 [ 100.249412][ T4880] sysv_mount+0x44/0x58 [ 100.250589][ T4880] legacy_get_tree+0xd4/0x16c [ 100.251845][ T4880] vfs_get_tree+0x90/0x274 [ 100.253104][ T4880] do_new_mount+0x228/0x810 [ 100.254333][ T4880] path_mount+0x5b4/0x1000 [ 100.255613][ T4880] __arm64_sys_mount+0x514/0x5e4 [ 100.256900][ T4880] invoke_syscall+0x98/0x2b8 [ 100.258194][ T4880] el0_svc_common+0x138/0x258 [ 100.259504][ T4880] do_el0_svc+0x58/0x14c [ 100.260654][ T4880] el0_svc+0x78/0x1e0 [ 100.261722][ T4880] el0t_64_sync_handler+0xcc/0xe4 [ 100.263090][ T4880] el0t_64_sync+0x1a0/0x1a4 [ 100.264342][ T4880] irq event stamp: 1034 [ 100.265472][ T4880] hardirqs last enabled at (1033): [] kasan_quarantine_put+0xc4/0x204 [ 100.268140][ T4880] hardirqs last disabled at (1034): [] smp_call_function_many_cond+0xa44/0xeb0 [ 100.271052][ T4880] softirqs last enabled at (730): [] handle_softirqs+0xa4c/0xbf0 [ 100.273671][ T4880] softirqs last disabled at (715): [] __irq_exit_rcu+0x240/0x440 [ 100.276259][ T4880] ---[ end trace ed959f3122165b0c ]--- [ 100.392435][ T4884] loop0: detected capacity change from 0 to 128 [ 100.398870][ T4884] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 100.400947][ T4884] Bad inode number on dev loop0: 2 is out of range [ 100.402707][ T4884] SysV FS: get root inode failed [ 100.404046][ T4884] oldfs: cannot read superblock [ 100.405457][ T4884] ------------[ cut here ]------------ [ 100.406990][ T4884] VFS: brelse: Trying to free free buffer [ 100.408605][ T4884] WARNING: CPU: 1 PID: 4884 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 100.411025][ T4884] Modules linked in: [ 100.412137][ T4884] CPU: 1 PID: 4884 Comm: syz.0.21 Tainted: G W 5.15.181-syzkaller #0 [ 100.414719][ T4884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 100.417493][ T4884] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.419683][ T4884] pc : invalidate_bh_lru+0x128/0x234 [ 100.421180][ T4884] lr : invalidate_bh_lru+0x128/0x234 [ 100.422604][ T4884] sp : ffff80001b8976e0 [ 100.423804][ T4884] x29: ffff80001b8976e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 100.426093][ T4884] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 100.428366][ T4884] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c5698970 [ 100.430691][ T4884] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 100.432915][ T4884] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 100.435189][ T4884] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.437359][ T4884] x11: 0000000000000002 x10: 0000000000000000 x9 : f7829953ab3e2500 [ 100.439583][ T4884] x8 : f7829953ab3e2500 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.441849][ T4884] x5 : ffff80001b896fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 100.444065][ T4884] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 100.446308][ T4884] Call trace: [ 100.447231][ T4884] invalidate_bh_lru+0x128/0x234 [ 100.448592][ T4884] smp_call_function_many_cond+0xa50/0xeb0 [ 100.450222][ T4884] on_each_cpu_cond_mask+0x5c/0xc4 [ 100.451637][ T4884] invalidate_bh_lrus+0x34/0x40 [ 100.452976][ T4884] blkdev_flush_mapping+0x168/0x31c [ 100.454434][ T4884] blkdev_put+0x490/0x6ac [ 100.455688][ T4884] kill_block_super+0x98/0xdc [ 100.456999][ T4884] deactivate_locked_super+0xb8/0x13c [ 100.458503][ T4884] mount_bdev+0x284/0x358 [ 100.459748][ T4884] sysv_mount+0x44/0x58 [ 100.460987][ T4884] legacy_get_tree+0xd4/0x16c [ 100.462337][ T4884] vfs_get_tree+0x90/0x274 [ 100.463619][ T4884] do_new_mount+0x228/0x810 [ 100.464904][ T4884] path_mount+0x5b4/0x1000 [ 100.466115][ T4884] __arm64_sys_mount+0x514/0x5e4 [ 100.467528][ T4884] invoke_syscall+0x98/0x2b8 [ 100.468798][ T4884] el0_svc_common+0x138/0x258 [ 100.470116][ T4884] do_el0_svc+0x58/0x14c [ 100.471294][ T4884] el0_svc+0x78/0x1e0 [ 100.472402][ T4884] el0t_64_sync_handler+0xcc/0xe4 [ 100.473801][ T4884] el0t_64_sync+0x1a0/0x1a4 [ 100.475034][ T4884] irq event stamp: 1490 [ 100.476204][ T4884] hardirqs last enabled at (1489): [] kasan_quarantine_put+0xc4/0x204 [ 100.478895][ T4884] hardirqs last disabled at (1490): [] smp_call_function_many_cond+0xa44/0xeb0 [ 100.481793][ T4884] softirqs last enabled at (1282): [] local_bh_enable+0x10/0x34 [ 100.484298][ T4884] softirqs last disabled at (1280): [] local_bh_disable+0x10/0x34 [ 100.486869][ T4884] ---[ end trace ed959f3122165b0d ]--- [ 100.605914][ T4886] loop0: detected capacity change from 0 to 128 [ 100.606729][ T4555] Bluetooth: hci1: command 0x040f tx timeout [ 100.670352][ T4886] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 100.672466][ T4886] Bad inode number on dev loop0: 2 is out of range [ 100.674285][ T4886] SysV FS: get root inode failed [ 100.675655][ T4886] oldfs: cannot read superblock [ 100.684223][ T4489] ------------[ cut here ]------------ [ 100.685739][ T4489] VFS: brelse: Trying to free free buffer [ 100.687347][ T4489] WARNING: CPU: 1 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 100.689712][ T4489] Modules linked in: [ 100.690781][ T4489] CPU: 1 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 100.693309][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 100.696021][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.698160][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 100.699618][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 100.701010][ T4489] sp : ffff80001f7f77c0 [ 100.702110][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 100.704348][ T4489] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 100.706582][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c5698d10 [ 100.708785][ T4489] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 100.710969][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 100.713143][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.715252][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 100.717417][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.719599][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 100.721767][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 100.723978][ T4489] Call trace: [ 100.724894][ T4489] invalidate_bh_lru+0x128/0x234 [ 100.726202][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 100.727712][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 100.729168][ T4489] invalidate_bh_lrus+0x34/0x40 [ 100.730484][ T4489] blkdev_flush_mapping+0x168/0x31c [ 100.731921][ T4489] blkdev_put+0x490/0x6ac [ 100.733047][ T4489] blkdev_close+0x74/0xb0 [ 100.734326][ T4489] __fput+0x1c0/0x7f8 [ 100.735432][ T4489] ____fput+0x20/0x30 [ 100.736582][ T4489] task_work_run+0x12c/0x1e0 [ 100.737898][ T4489] do_notify_resume+0x24b4/0x3128 [ 100.739276][ T4489] el0_svc+0xf0/0x1e0 [ 100.740367][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 100.741727][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 100.742961][ T4489] irq event stamp: 66332 [ 100.744122][ T4489] hardirqs last enabled at (66331): [] kasan_quarantine_put+0xc4/0x204 [ 100.746807][ T4489] hardirqs last disabled at (66332): [] smp_call_function_many_cond+0xa44/0xeb0 [ 100.749742][ T4489] softirqs last enabled at (64922): [] local_bh_enable+0x10/0x34 [ 100.752281][ T4489] softirqs last disabled at (64920): [] local_bh_disable+0x10/0x34 [ 100.754877][ T4489] ---[ end trace ed959f3122165b0e ]--- [ 100.823628][ T4888] loop0: detected capacity change from 0 to 128 [ 100.828218][ T4888] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 100.830196][ T4888] Bad inode number on dev loop0: 2 is out of range [ 100.831941][ T4888] SysV FS: get root inode failed [ 100.833249][ T4888] oldfs: cannot read superblock [ 100.844101][ C0] ------------[ cut here ]------------ [ 100.845730][ C0] VFS: brelse: Trying to free free buffer [ 100.847472][ C0] WARNING: CPU: 0 PID: 4643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 100.849972][ C0] Modules linked in: [ 100.850996][ C0] CPU: 0 PID: 4643 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 100.853716][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 100.856466][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.858598][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 100.860095][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 100.861464][ C0] sp : ffff800008007de0 [ 100.862685][ C0] x29: ffff800008007de0 x28: ffff0000d53051c0 x27: 1fffe00036859054 [ 100.864867][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 100.867016][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dc2305d0 [ 100.869213][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 100.871442][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 100.873649][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.875779][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 4c8b215115f38700 [ 100.878096][ C0] x8 : 4c8b215115f38700 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.880337][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 100.882497][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 100.884706][ C0] Call trace: [ 100.885624][ C0] invalidate_bh_lru+0x128/0x234 [ 100.886998][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 100.888603][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 100.890464][ C0] ipi_handler+0x108/0x70c [ 100.891663][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 100.893153][ C0] handle_domain_irq+0x144/0x1fc [ 100.894469][ C0] gic_handle_irq+0x78/0x1c8 [ 100.895718][ C0] call_on_irq_stack+0x24/0x4c [ 100.897018][ C0] do_interrupt_handler+0x6c/0x88 [ 100.898338][ C0] el1_interrupt+0x30/0x58 [ 100.899519][ C0] el1h_64_irq_handler+0x18/0x24 [ 100.900917][ C0] el1h_64_irq+0x78/0x7c [ 100.902031][ C0] lock_release+0x4a0/0x8e8 [ 100.903283][ C0] rcu_lock_release+0x24/0x30 [ 100.904623][ C0] get_obj_cgroup_from_current+0x39c/0x524 [ 100.906306][ C0] slab_pre_alloc_hook+0xa8/0xec [ 100.907644][ C0] kmem_cache_alloc+0x94/0x3e4 [ 100.908910][ C0] copy_mm+0x6cc/0x1084 [ 100.910014][ C0] copy_process+0x14d4/0x34ec [ 100.911291][ C0] kernel_clone+0x1d8/0x9d4 [ 100.912525][ C0] __arm64_sys_clone+0x138/0x190 [ 100.913848][ C0] invoke_syscall+0x98/0x2b8 [ 100.915045][ C0] el0_svc_common+0x138/0x258 [ 100.916320][ C0] do_el0_svc+0x58/0x14c [ 100.917426][ C0] el0_svc+0x78/0x1e0 [ 100.918451][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 100.919800][ C0] el0t_64_sync+0x1a0/0x1a4 [ 100.921027][ C0] irq event stamp: 194856 [ 100.922213][ C0] hardirqs last enabled at (194855): [] pte_alloc_one+0x194/0x258 [ 100.924720][ C0] hardirqs last disabled at (194856): [] enter_el1_irq_or_nmi+0x10/0x1c [ 100.927404][ C0] softirqs last enabled at (194766): [] local_bh_enable+0x10/0x34 [ 100.929954][ C0] softirqs last disabled at (194764): [] local_bh_disable+0x10/0x34 [ 100.932498][ C0] ---[ end trace ed959f3122165b0f ]--- [ 101.001164][ T4890] loop0: detected capacity change from 0 to 128 [ 101.006065][ T4890] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.009089][ T4890] Bad inode number on dev loop0: 2 is out of range [ 101.010902][ T4890] SysV FS: get root inode failed [ 101.012263][ T4890] oldfs: cannot read superblock [ 101.022450][ T4489] ------------[ cut here ]------------ [ 101.023949][ T4489] VFS: brelse: Trying to free free buffer [ 101.025567][ T4489] WARNING: CPU: 1 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.028094][ T4489] Modules linked in: [ 101.029144][ T4489] CPU: 1 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 101.031581][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 101.034431][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.036537][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 101.037901][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 101.039296][ T4489] sp : ffff80001f7f77c0 [ 101.040416][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 101.042644][ T4489] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 101.044844][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dc21d7a0 [ 101.047068][ T4489] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 101.049335][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 101.051563][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.053772][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 101.056023][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.058239][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 101.060520][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 101.062692][ T4489] Call trace: [ 101.063612][ T4489] invalidate_bh_lru+0x128/0x234 [ 101.065147][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 101.066694][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 101.068159][ T4489] invalidate_bh_lrus+0x34/0x40 [ 101.069637][ T4489] blkdev_flush_mapping+0x168/0x31c [ 101.071126][ T4489] blkdev_put+0x490/0x6ac [ 101.072274][ T4489] blkdev_close+0x74/0xb0 [ 101.073425][ T4489] __fput+0x1c0/0x7f8 [ 101.074555][ T4489] ____fput+0x20/0x30 [ 101.075647][ T4489] task_work_run+0x12c/0x1e0 [ 101.076907][ T4489] do_notify_resume+0x24b4/0x3128 [ 101.078288][ T4489] el0_svc+0xf0/0x1e0 [ 101.079359][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 101.080721][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 101.081931][ T4489] irq event stamp: 75696 [ 101.083088][ T4489] hardirqs last enabled at (75695): [] kasan_quarantine_put+0xc4/0x204 [ 101.085819][ T4489] hardirqs last disabled at (75696): [] smp_call_function_many_cond+0xa44/0xeb0 [ 101.088785][ T4489] softirqs last enabled at (74630): [] local_bh_enable+0x10/0x34 [ 101.091457][ T4489] softirqs last disabled at (74628): [] local_bh_disable+0x10/0x34 [ 101.094164][ T4489] ---[ end trace ed959f3122165b10 ]--- [ 101.150985][ T4892] loop0: detected capacity change from 0 to 128 [ 101.159894][ T4892] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.162031][ T4892] Bad inode number on dev loop0: 2 is out of range [ 101.164006][ T4892] SysV FS: get root inode failed [ 101.165327][ T4892] oldfs: cannot read superblock [ 101.171279][ C0] ------------[ cut here ]------------ [ 101.172848][ C0] VFS: brelse: Trying to free free buffer [ 101.174480][ C0] WARNING: CPU: 0 PID: 4892 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.176941][ C0] Modules linked in: [ 101.178071][ C0] CPU: 0 PID: 4892 Comm: syz.0.25 Tainted: G W 5.15.181-syzkaller #0 [ 101.180631][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 101.183512][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.185682][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 101.187182][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 101.188588][ C0] sp : ffff800008007de0 [ 101.189699][ C0] x29: ffff800008007de0 x28: ffff0000d14ab680 x27: 1fffe00036859054 [ 101.191968][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 101.194112][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ddbd1ee0 [ 101.196342][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 101.198600][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 101.200783][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.203007][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : f4be28375e3e4700 [ 101.205193][ C0] x8 : f4be28375e3e4700 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.207386][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 101.209605][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 101.211820][ C0] Call trace: [ 101.212672][ C0] invalidate_bh_lru+0x128/0x234 [ 101.214070][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 101.215753][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 101.217662][ C0] ipi_handler+0x108/0x70c [ 101.218970][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 101.220556][ C0] handle_domain_irq+0x144/0x1fc [ 101.221917][ C0] gic_handle_irq+0x78/0x1c8 [ 101.223184][ C0] call_on_irq_stack+0x24/0x4c [ 101.224542][ C0] do_interrupt_handler+0x6c/0x88 [ 101.225754][ C0] el1_interrupt+0x30/0x58 [ 101.226826][ C0] el1h_64_irq_handler+0x18/0x24 [ 101.228022][ C0] el1h_64_irq+0x78/0x7c [ 101.229047][ C0] kasan_quarantine_put+0xd4/0x204 [ 101.230490][ C0] ____kasan_slab_free+0x124/0x164 [ 101.231947][ C0] __kasan_slab_free+0x18/0x28 [ 101.233295][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 101.234822][ C0] kmem_cache_free+0xdc/0x3b4 [ 101.236156][ C0] unlink_anon_vmas+0x224/0x53c [ 101.237476][ C0] free_pgtables+0x7c/0x278 [ 101.238724][ C0] exit_mmap+0x2bc/0x4e0 [ 101.239904][ C0] __mmput+0xec/0x3b8 [ 101.241006][ C0] mmput+0x80/0xc8 [ 101.242091][ C0] exit_mm+0x4a0/0x684 [ 101.243190][ C0] do_exit+0x4e4/0x1f58 [ 101.244361][ C0] do_group_exit+0x100/0x268 [ 101.245613][ C0] get_signal+0x73c/0x1340 [ 101.246824][ C0] do_notify_resume+0x35c/0x3128 [ 101.248166][ C0] el0_svc+0xf0/0x1e0 [ 101.249242][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 101.250726][ C0] el0t_64_sync+0x1a0/0x1a4 [ 101.252070][ C0] irq event stamp: 2872 [ 101.253225][ C0] hardirqs last enabled at (2871): [] kasan_quarantine_put+0xc4/0x204 [ 101.255930][ C0] hardirqs last disabled at (2872): [] enter_el1_irq_or_nmi+0x10/0x1c [ 101.258561][ C0] softirqs last enabled at (1252): [] local_bh_enable+0x10/0x34 [ 101.261125][ C0] softirqs last disabled at (1250): [] local_bh_disable+0x10/0x34 [ 101.263723][ C0] ---[ end trace ed959f3122165b11 ]--- [ 101.323338][ T4894] loop0: detected capacity change from 0 to 128 [ 101.332486][ T4894] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.334487][ T4894] Bad inode number on dev loop0: 2 is out of range [ 101.336575][ T4894] SysV FS: get root inode failed [ 101.337887][ T4894] oldfs: cannot read superblock [ 101.352623][ C0] ------------[ cut here ]------------ [ 101.354159][ C0] VFS: brelse: Trying to free free buffer [ 101.355768][ C0] WARNING: CPU: 0 PID: 4040 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.358262][ C0] Modules linked in: [ 101.359330][ C0] CPU: 0 PID: 4040 Comm: kworker/0:4 Tainted: G W 5.15.181-syzkaller #0 [ 101.361972][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 101.364775][ C0] Workqueue: events free_work [ 101.366050][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.368270][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 101.369710][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 101.371188][ C0] sp : ffff800008007de0 [ 101.372324][ C0] x29: ffff800008007de0 x28: ffff0000cf1eb680 x27: 1fffe00036859054 [ 101.374478][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 101.376653][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ddbd1318 [ 101.378862][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 101.381010][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 101.383202][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.385406][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 4a7839a2e2a70d00 [ 101.387544][ C0] x8 : 4a7839a2e2a70d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.389759][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 101.391940][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 101.394110][ C0] Call trace: [ 101.395019][ C0] invalidate_bh_lru+0x128/0x234 [ 101.396346][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 101.397967][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 101.399873][ C0] ipi_handler+0x108/0x70c [ 101.401082][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 101.402672][ C0] handle_domain_irq+0x144/0x1fc [ 101.404087][ C0] gic_handle_irq+0x78/0x1c8 [ 101.405375][ C0] call_on_irq_stack+0x24/0x4c [ 101.406665][ C0] do_interrupt_handler+0x6c/0x88 [ 101.408023][ C0] el1_interrupt+0x30/0x58 [ 101.409164][ C0] el1h_64_irq_handler+0x18/0x24 [ 101.410525][ C0] el1h_64_irq+0x78/0x7c [ 101.411706][ C0] __vunmap+0x74/0x9bc [ 101.412840][ C0] free_work+0x7c/0xac [ 101.413941][ C0] process_one_work+0x79c/0x1140 [ 101.415330][ C0] worker_thread+0x8f4/0x101c [ 101.416673][ C0] kthread+0x374/0x454 [ 101.417750][ C0] ret_from_fork+0x10/0x20 [ 101.418976][ C0] irq event stamp: 35370 [ 101.420142][ C0] hardirqs last enabled at (35369): [] _raw_spin_unlock_irq+0x98/0x128 [ 101.422837][ C0] hardirqs last disabled at (35370): [] enter_el1_irq_or_nmi+0x10/0x1c [ 101.425429][ C0] softirqs last enabled at (35258): [] handle_softirqs+0xa4c/0xbf0 [ 101.428012][ C0] softirqs last disabled at (35169): [] do_softirq+0xfc/0x1b0 [ 101.430415][ C0] ---[ end trace ed959f3122165b12 ]--- [ 101.481056][ T4896] loop0: detected capacity change from 0 to 128 [ 101.508835][ T4896] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.510996][ T4896] Bad inode number on dev loop0: 2 is out of range [ 101.512737][ T4896] SysV FS: get root inode failed [ 101.514078][ T4896] oldfs: cannot read superblock [ 101.515403][ T4896] ------------[ cut here ]------------ [ 101.516850][ T4896] VFS: brelse: Trying to free free buffer [ 101.518530][ T4896] WARNING: CPU: 0 PID: 4896 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.521043][ T4896] Modules linked in: [ 101.522088][ T4896] CPU: 0 PID: 4896 Comm: syz.0.27 Tainted: G W 5.15.181-syzkaller #0 [ 101.524680][ T4896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 101.527415][ T4896] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.529537][ T4896] pc : invalidate_bh_lru+0x128/0x234 [ 101.530998][ T4896] lr : invalidate_bh_lru+0x128/0x234 [ 101.532395][ T4896] sp : ffff80001fb376e0 [ 101.533480][ T4896] x29: ffff80001fb376e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 101.535670][ T4896] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 101.537829][ T4896] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ddbd16b8 [ 101.540050][ T4896] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 101.542256][ T4896] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 101.544433][ T4896] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.546656][ T4896] x11: 0000000000000002 x10: 0000000000000000 x9 : 441a475737d83300 [ 101.548813][ T4896] x8 : 441a475737d83300 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.550958][ T4896] x5 : ffff80001fb36fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 101.553137][ T4896] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 101.555297][ T4896] Call trace: [ 101.556217][ T4896] invalidate_bh_lru+0x128/0x234 [ 101.557563][ T4896] smp_call_function_many_cond+0xa50/0xeb0 [ 101.559105][ T4896] on_each_cpu_cond_mask+0x5c/0xc4 [ 101.560489][ T4896] invalidate_bh_lrus+0x34/0x40 [ 101.561807][ T4896] blkdev_flush_mapping+0x168/0x31c [ 101.563216][ T4896] blkdev_put+0x490/0x6ac [ 101.564394][ T4896] kill_block_super+0x98/0xdc [ 101.565640][ T4896] deactivate_locked_super+0xb8/0x13c [ 101.567083][ T4896] mount_bdev+0x284/0x358 [ 101.568231][ T4896] sysv_mount+0x44/0x58 [ 101.569415][ T4896] legacy_get_tree+0xd4/0x16c [ 101.570694][ T4896] vfs_get_tree+0x90/0x274 [ 101.571847][ T4896] do_new_mount+0x228/0x810 [ 101.573038][ T4896] path_mount+0x5b4/0x1000 [ 101.574232][ T4896] __arm64_sys_mount+0x514/0x5e4 [ 101.575533][ T4896] invoke_syscall+0x98/0x2b8 [ 101.576738][ T4896] el0_svc_common+0x138/0x258 [ 101.578037][ T4896] do_el0_svc+0x58/0x14c [ 101.579239][ T4896] el0_svc+0x78/0x1e0 [ 101.580330][ T4896] el0t_64_sync_handler+0xcc/0xe4 [ 101.581741][ T4896] el0t_64_sync+0x1a0/0x1a4 [ 101.582884][ T4896] irq event stamp: 1046 [ 101.584013][ T4896] hardirqs last enabled at (1045): [] kasan_quarantine_put+0xc4/0x204 [ 101.586679][ T4896] hardirqs last disabled at (1046): [] smp_call_function_many_cond+0xa44/0xeb0 [ 101.589492][ T4896] softirqs last enabled at (816): [] local_bh_enable+0x10/0x34 [ 101.591915][ T4896] softirqs last disabled at (814): [] local_bh_disable+0x10/0x34 [ 101.594471][ T4896] ---[ end trace ed959f3122165b13 ]--- [ 101.682668][ T4898] loop0: detected capacity change from 0 to 128 [ 101.720005][ T4898] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.722114][ T4898] Bad inode number on dev loop0: 2 is out of range [ 101.723944][ T4898] SysV FS: get root inode failed [ 101.725287][ T4898] oldfs: cannot read superblock [ 101.731515][ C1] ------------[ cut here ]------------ [ 101.733141][ C1] VFS: brelse: Trying to free free buffer [ 101.734762][ C1] WARNING: CPU: 1 PID: 4643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.737164][ C1] Modules linked in: [ 101.738521][ C1] CPU: 1 PID: 4643 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 101.741216][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 101.744016][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.746226][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 101.747765][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 101.749232][ C1] sp : ffff800008017de0 [ 101.750373][ C1] x29: ffff800008017de0 x28: ffff0000d53051c0 x27: 1fffe0003685d253 [ 101.752595][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 101.754925][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dc21db40 [ 101.757124][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 101.759402][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 101.761606][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.763844][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 4c8b215115f38700 [ 101.766124][ C1] x8 : 4c8b215115f38700 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.768402][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 101.770676][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 101.772996][ C1] Call trace: [ 101.773912][ C1] invalidate_bh_lru+0x128/0x234 [ 101.775255][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 101.777067][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 101.779023][ C1] ipi_handler+0x108/0x70c [ 101.780244][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 101.781804][ C1] handle_domain_irq+0x144/0x1fc [ 101.783176][ C1] gic_handle_irq+0x78/0x1c8 [ 101.784491][ C1] call_on_irq_stack+0x24/0x4c [ 101.785842][ C1] do_interrupt_handler+0x6c/0x88 [ 101.787265][ C1] el1_interrupt+0x30/0x58 [ 101.788499][ C1] el1h_64_irq_handler+0x18/0x24 [ 101.789863][ C1] el1h_64_irq+0x78/0x7c [ 101.791039][ C1] __virt_to_phys+0x5c/0x15c [ 101.792324][ C1] ___cache_free+0x48/0x1bc [ 101.793631][ C1] qlink_free+0x5c/0xa4 [ 101.794779][ C1] qlist_free_all+0x40/0xa8 [ 101.796066][ C1] kasan_quarantine_reduce+0x124/0x130 [ 101.797617][ C1] __kasan_slab_alloc+0x34/0xcc [ 101.799021][ C1] slab_post_alloc_hook+0x74/0x408 [ 101.800410][ C1] kmem_cache_alloc+0x1e0/0x3e4 [ 101.801785][ C1] getname_flags+0xb8/0x450 [ 101.803041][ C1] user_path_at_empty+0x40/0x1a0 [ 101.804352][ C1] __arm64_sys_umount+0xf4/0x178 [ 101.805767][ C1] invoke_syscall+0x98/0x2b8 [ 101.807052][ C1] el0_svc_common+0x138/0x258 [ 101.808289][ C1] do_el0_svc+0x58/0x14c [ 101.809444][ C1] el0_svc+0x78/0x1e0 [ 101.810606][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 101.811963][ C1] el0t_64_sync+0x1a0/0x1a4 [ 101.813253][ C1] irq event stamp: 209548 [ 101.814481][ C1] hardirqs last enabled at (209547): [] put_cpu_partial+0x188/0x218 [ 101.817144][ C1] hardirqs last disabled at (209548): [] enter_el1_irq_or_nmi+0x10/0x1c [ 101.819943][ C1] softirqs last enabled at (209174): [] local_bh_enable+0x10/0x34 [ 101.822568][ C1] softirqs last disabled at (209172): [] local_bh_disable+0x10/0x34 [ 101.825231][ C1] ---[ end trace ed959f3122165b14 ]--- [ 101.874198][ T4900] loop0: detected capacity change from 0 to 128 [ 101.971198][ T4900] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.973281][ T4900] Bad inode number on dev loop0: 2 is out of range [ 101.975185][ T4900] SysV FS: get root inode failed [ 101.981713][ T4900] oldfs: cannot read superblock [ 101.986205][ C0] ------------[ cut here ]------------ [ 101.987793][ C0] VFS: brelse: Trying to free free buffer [ 101.989472][ C0] WARNING: CPU: 0 PID: 4900 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.991977][ C0] Modules linked in: [ 101.993053][ C0] CPU: 0 PID: 4900 Comm: syz.0.29 Tainted: G W 5.15.181-syzkaller #0 [ 101.995691][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 101.998466][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.000595][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 102.002074][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 102.003607][ C0] sp : ffff800008007de0 [ 102.004736][ C0] x29: ffff800008007de0 x28: ffff0000cea50000 x27: 1fffe00036859054 [ 102.006995][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 102.009219][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ddbd1a58 [ 102.011501][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 102.013794][ C0] x17: 0000000000010002 x16: ffff8000083007d8 x15: 00000000ffffffff [ 102.016018][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.018213][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : ed15067b61f16900 [ 102.020471][ C0] x8 : ed15067b61f16900 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.022724][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 102.024860][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 102.027130][ C0] Call trace: [ 102.028037][ C0] invalidate_bh_lru+0x128/0x234 [ 102.029415][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 102.031154][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.033056][ C0] ipi_handler+0x108/0x70c [ 102.034287][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 102.035783][ C0] handle_domain_irq+0x144/0x1fc [ 102.037099][ C0] gic_handle_irq+0x78/0x1c8 [ 102.038356][ C0] call_on_irq_stack+0x24/0x4c [ 102.039674][ C0] do_interrupt_handler+0x6c/0x88 [ 102.041096][ C0] el1_interrupt+0x30/0x58 [ 102.042342][ C0] el1h_64_irq_handler+0x18/0x24 [ 102.043760][ C0] el1h_64_irq+0x78/0x7c [ 102.044967][ C0] fput+0x0/0x34 [ 102.045941][ C0] __mmput+0xec/0x3b8 [ 102.047037][ C0] mmput+0x80/0xc8 [ 102.048081][ C0] exit_mm+0x4a0/0x684 [ 102.049192][ C0] do_exit+0x4e4/0x1f58 [ 102.050289][ C0] do_group_exit+0x100/0x268 [ 102.051560][ C0] get_signal+0x73c/0x1340 [ 102.052797][ C0] do_notify_resume+0x35c/0x3128 [ 102.054146][ C0] el0_svc+0xf0/0x1e0 [ 102.055230][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 102.056609][ C0] el0t_64_sync+0x1a0/0x1a4 [ 102.057854][ C0] irq event stamp: 2508 [ 102.058953][ C0] hardirqs last enabled at (2507): [] kasan_quarantine_put+0xc4/0x204 [ 102.061666][ C0] hardirqs last disabled at (2508): [] enter_el1_irq_or_nmi+0x10/0x1c [ 102.064284][ C0] softirqs last enabled at (1182): [] local_bh_enable+0x10/0x34 [ 102.066848][ C0] softirqs last disabled at (1180): [] local_bh_disable+0x10/0x34 [ 102.069418][ C0] ---[ end trace ed959f3122165b15 ]--- [ 102.149235][ T4902] loop0: detected capacity change from 0 to 128 [ 102.157955][ T4902] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.160035][ T4902] Bad inode number on dev loop0: 2 is out of range [ 102.161757][ T4902] SysV FS: get root inode failed [ 102.163028][ T4902] oldfs: cannot read superblock [ 102.183471][ C1] ------------[ cut here ]------------ [ 102.185098][ C1] VFS: brelse: Trying to free free buffer [ 102.186700][ C1] WARNING: CPU: 1 PID: 4643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.189157][ C1] Modules linked in: [ 102.190236][ C1] CPU: 1 PID: 4643 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 102.192827][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 102.195687][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.197788][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 102.199252][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 102.200693][ C1] sp : ffff800008017de0 [ 102.201826][ C1] x29: ffff800008017de0 x28: ffff0000d53051c0 x27: 1fffe0003685d253 [ 102.204052][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 102.206268][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dc21dee0 [ 102.208421][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010003 [ 102.210514][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 102.212650][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.214875][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 4c8b215115f38700 [ 102.217052][ C1] x8 : 4c8b215115f38700 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.219223][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 102.221503][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 102.223694][ C1] Call trace: [ 102.224605][ C1] invalidate_bh_lru+0x128/0x234 [ 102.225892][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 102.227539][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.229569][ C1] ipi_handler+0x108/0x70c [ 102.230848][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 102.232421][ C1] handle_domain_irq+0x144/0x1fc [ 102.233833][ C1] gic_handle_irq+0x78/0x1c8 [ 102.235152][ C1] call_on_irq_stack+0x24/0x4c [ 102.236550][ C1] do_interrupt_handler+0x6c/0x88 [ 102.237994][ C1] el1_interrupt+0x30/0x58 [ 102.239206][ C1] el1h_64_irq_handler+0x18/0x24 [ 102.240611][ C1] el1h_64_irq+0x78/0x7c [ 102.241773][ C1] __sanitizer_cov_trace_pc+0x0/0xac [ 102.243217][ C1] __get_vm_area_node+0x17c/0x2e8 [ 102.244645][ C1] __vmalloc_node_range+0xe8/0x8d8 [ 102.246057][ C1] vzalloc+0x118/0x190 [ 102.247199][ C1] alloc_counters+0x84/0x7a4 [ 102.248543][ C1] do_ipt_get_ctl+0xaf4/0x13a8 [ 102.249868][ C1] nf_getsockopt+0x264/0x284 [ 102.251149][ C1] ip_getsockopt+0xffc/0x158c [ 102.252437][ C1] tcp_getsockopt+0x214/0x2e74 [ 102.253775][ C1] sock_common_getsockopt+0xa8/0xc4 [ 102.255199][ C1] __sys_getsockopt+0x1e0/0x45c [ 102.256534][ C1] __arm64_sys_getsockopt+0xb8/0xd4 [ 102.257983][ C1] invoke_syscall+0x98/0x2b8 [ 102.259285][ C1] el0_svc_common+0x138/0x258 [ 102.260613][ C1] do_el0_svc+0x58/0x14c [ 102.261747][ C1] el0_svc+0x78/0x1e0 [ 102.262867][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 102.264266][ C1] el0t_64_sync+0x1a0/0x1a4 [ 102.265532][ C1] irq event stamp: 217996 [ 102.266781][ C1] hardirqs last enabled at (217995): [] ___slab_alloc+0xc34/0xda8 [ 102.269483][ C1] hardirqs last disabled at (217996): [] enter_el1_irq_or_nmi+0x10/0x1c [ 102.272342][ C1] softirqs last enabled at (217988): [] release_sock+0x1d0/0x258 [ 102.275027][ C1] softirqs last disabled at (217986): [] release_sock+0x34/0x258 [ 102.277585][ C1] ---[ end trace ed959f3122165b16 ]--- [ 102.329678][ T4904] loop0: detected capacity change from 0 to 128 [ 102.334444][ T4904] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.339179][ T4904] Bad inode number on dev loop0: 2 is out of range [ 102.341030][ T4904] SysV FS: get root inode failed [ 102.342378][ T4904] oldfs: cannot read superblock [ 102.359034][ T587] device hsr_slave_0 left promiscuous mode [ 102.375696][ C1] ------------[ cut here ]------------ [ 102.377280][ C1] VFS: brelse: Trying to free free buffer [ 102.378908][ C1] WARNING: CPU: 1 PID: 153 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.381292][ C1] Modules linked in: [ 102.382307][ C1] CPU: 1 PID: 153 Comm: kworker/u4:3 Tainted: G W 5.15.181-syzkaller #0 [ 102.384958][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 102.387644][ C1] Workqueue: writeback wb_workfn (flush-259:0) [ 102.389291][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.391432][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 102.392876][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 102.394314][ C1] sp : ffff800008017de0 [ 102.395524][ C1] x29: ffff800008017de0 x28: ffff0000c2ea51c0 x27: 1fffe0003685d254 [ 102.397833][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 102.400161][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dc21d318 [ 102.402343][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 102.404485][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 102.406661][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.408717][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 72a34e5856f52c00 [ 102.410826][ C1] x8 : 72a34e5856f52c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.412969][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 102.415120][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 102.417224][ C1] Call trace: [ 102.418072][ C1] invalidate_bh_lru+0x128/0x234 [ 102.419355][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 102.420907][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.422717][ C1] ipi_handler+0x108/0x70c [ 102.423887][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 102.425309][ C1] handle_domain_irq+0x144/0x1fc [ 102.426617][ C1] gic_handle_irq+0x78/0x1c8 [ 102.427923][ C1] call_on_irq_stack+0x24/0x4c [ 102.429175][ C1] do_interrupt_handler+0x6c/0x88 [ 102.430475][ C1] el1_interrupt+0x30/0x58 [ 102.431683][ C1] el1h_64_irq_handler+0x18/0x24 [ 102.432960][ C1] el1h_64_irq+0x78/0x7c [ 102.434053][ C1] rcu_is_watching+0xa0/0x134 [ 102.435344][ C1] __unlock_page_memcg+0xa0/0xf8 [ 102.436682][ C1] unlock_page_memcg+0x4c/0x5c [ 102.437984][ C1] __test_set_page_writeback+0x728/0xc34 [ 102.439408][ C1] ext4_bio_write_page+0x22c/0x1dc8 [ 102.440905][ C1] mpage_process_page_bufs+0x6ec/0x8c4 [ 102.442401][ C1] mpage_prepare_extent_to_map+0x9a0/0xda4 [ 102.443969][ C1] ext4_writepages+0x7b0/0x2c14 [ 102.445288][ C1] do_writepages+0x36c/0x578 [ 102.446487][ C1] __writeback_single_inode+0x148/0x11f0 [ 102.448026][ C1] writeback_sb_inodes+0x7fc/0x1378 [ 102.449408][ C1] __writeback_inodes_wb+0x110/0x394 [ 102.450855][ C1] wb_writeback+0x3ec/0xe44 [ 102.452071][ C1] wb_workfn+0xa18/0xdd8 [ 102.453189][ C1] process_one_work+0x79c/0x1140 [ 102.454671][ C1] worker_thread+0x8f4/0x101c [ 102.455978][ C1] kthread+0x374/0x454 [ 102.457069][ C1] ret_from_fork+0x10/0x20 [ 102.458245][ C1] irq event stamp: 642922 [ 102.459370][ C1] hardirqs last enabled at (642921): [] __test_set_page_writeback+0x6f4/0xc34 [ 102.462216][ C1] hardirqs last disabled at (642922): [] enter_el1_irq_or_nmi+0x10/0x1c [ 102.464928][ C1] softirqs last enabled at (640628): [] handle_softirqs+0xa4c/0xbf0 [ 102.467538][ C1] softirqs last disabled at (640619): [] __irq_exit_rcu+0x240/0x440 [ 102.470051][ C1] ---[ end trace ed959f3122165b17 ]--- [ 102.489710][ T587] device hsr_slave_1 left promiscuous mode [ 102.547037][ T4908] loop0: detected capacity change from 0 to 128 [ 102.566801][ T587] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 102.569115][ T587] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 102.572143][ T587] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 102.574256][ T587] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 102.580066][ T587] device bridge_slave_1 left promiscuous mode [ 102.582045][ T587] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.606485][ T4908] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.608642][ T4908] Bad inode number on dev loop0: 2 is out of range [ 102.610477][ T4908] SysV FS: get root inode failed [ 102.611823][ T4908] oldfs: cannot read superblock [ 102.627806][ T587] device bridge_slave_0 left promiscuous mode [ 102.629726][ T587] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.636467][ C0] ------------[ cut here ]------------ [ 102.637912][ C0] VFS: brelse: Trying to free free buffer [ 102.639572][ C0] WARNING: CPU: 0 PID: 3631 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.642192][ C0] Modules linked in: [ 102.643290][ C0] CPU: 0 PID: 3631 Comm: klogd Tainted: G W 5.15.181-syzkaller #0 [ 102.645904][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 102.648635][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.650844][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 102.652283][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 102.653722][ C0] sp : ffff800008007de0 [ 102.654935][ C0] x29: ffff800008007de0 x28: ffff0000d4b29b40 x27: 1fffe00036859053 [ 102.657196][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 102.659404][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e1fa3148 [ 102.661636][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010002 [ 102.664074][ C0] x17: 0000000000010002 x16: ffff8000083007d8 x15: 00000000ffffffff [ 102.666419][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.668683][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0c3550e71e75f500 [ 102.670956][ C0] x8 : 0c3550e71e75f500 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.673256][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 102.675498][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 102.677763][ C0] Call trace: [ 102.678670][ C0] invalidate_bh_lru+0x128/0x234 [ 102.680097][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 102.681759][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.683725][ C0] ipi_handler+0x108/0x70c [ 102.684962][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 102.686439][ C0] handle_domain_irq+0x144/0x1fc [ 102.687841][ C0] gic_handle_irq+0x78/0x1c8 [ 102.689116][ C0] call_on_irq_stack+0x24/0x4c [ 102.690446][ C0] do_interrupt_handler+0x6c/0x88 [ 102.691834][ C0] el1_interrupt+0x30/0x58 [ 102.693047][ C0] el1h_64_irq_handler+0x18/0x24 [ 102.694462][ C0] el1h_64_irq+0x78/0x7c [ 102.695659][ C0] el0_svc_common+0xa8/0x258 [ 102.697080][ C0] do_el0_svc+0x58/0x14c [ 102.698321][ C0] el0_svc+0x78/0x1e0 [ 102.699418][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 102.700811][ C0] el0t_64_sync+0x1a0/0x1a4 [ 102.702110][ C0] irq event stamp: 54010 [ 102.703227][ C0] hardirqs last enabled at (54009): [] el0_svc_common+0x9c/0x258 [ 102.705787][ C0] hardirqs last disabled at (54010): [] enter_el1_irq_or_nmi+0x10/0x1c [ 102.708451][ C0] softirqs last enabled at (54004): [] local_bh_enable+0x10/0x34 [ 102.711012][ C0] softirqs last disabled at (54002): [] local_bh_disable+0x10/0x34 [ 102.713662][ C0] ---[ end trace ed959f3122165b18 ]--- [ 102.715709][ T4555] Bluetooth: hci1: command 0x0419 tx timeout [ 102.753456][ T4910] loop0: detected capacity change from 0 to 128 [ 102.802215][ T4910] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.804397][ T4910] Bad inode number on dev loop0: 2 is out of range [ 102.806160][ T4910] SysV FS: get root inode failed [ 102.808236][ T4910] oldfs: cannot read superblock [ 102.814534][ C1] ------------[ cut here ]------------ [ 102.816196][ C1] VFS: brelse: Trying to free free buffer [ 102.817946][ C1] WARNING: CPU: 1 PID: 4910 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.820586][ C1] Modules linked in: [ 102.821741][ C1] CPU: 1 PID: 4910 Comm: syz.0.34 Tainted: G W 5.15.181-syzkaller #0 [ 102.824336][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 102.827129][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.829380][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 102.830851][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 102.832312][ C1] sp : ffff800008017de0 [ 102.833475][ C1] x29: ffff800008017de0 x28: ffff0000d35251c0 x27: 1fffe0003685d254 [ 102.835681][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 102.837992][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9cb318 [ 102.840111][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 102.842178][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 102.844410][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.846545][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 2963a9349bc49b00 [ 102.848946][ C1] x8 : 2963a9349bc49b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.851136][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 102.853311][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 102.855500][ C1] Call trace: [ 102.856399][ C1] invalidate_bh_lru+0x128/0x234 [ 102.857754][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 102.859399][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.861276][ C1] ipi_handler+0x108/0x70c [ 102.862526][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 102.864065][ C1] handle_domain_irq+0x144/0x1fc [ 102.865437][ C1] gic_handle_irq+0x78/0x1c8 [ 102.866682][ C1] call_on_irq_stack+0x24/0x4c [ 102.868058][ C1] do_interrupt_handler+0x6c/0x88 [ 102.869483][ C1] el1_interrupt+0x30/0x58 [ 102.870687][ C1] el1h_64_irq_handler+0x18/0x24 [ 102.872101][ C1] el1h_64_irq+0x78/0x7c [ 102.873288][ C1] kasan_quarantine_put+0xd4/0x204 [ 102.874720][ C1] ____kasan_slab_free+0x124/0x164 [ 102.876157][ C1] __kasan_slab_free+0x18/0x28 [ 102.877484][ C1] slab_free_freelist_hook+0x128/0x1e8 [ 102.878963][ C1] kmem_cache_free+0xdc/0x3b4 [ 102.880338][ C1] exit_fs+0xf8/0x12c [ 102.881443][ C1] do_exit+0x638/0x1f58 [ 102.882606][ C1] do_group_exit+0x100/0x268 [ 102.884032][ C1] get_signal+0x73c/0x1340 [ 102.885338][ C1] do_notify_resume+0x35c/0x3128 [ 102.886711][ C1] el0_svc+0xf0/0x1e0 [ 102.887838][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 102.889157][ C1] el0t_64_sync+0x1a0/0x1a4 [ 102.890270][ C1] irq event stamp: 3254 [ 102.891284][ C1] hardirqs last enabled at (3253): [] kasan_quarantine_put+0xc4/0x204 [ 102.893848][ C1] hardirqs last disabled at (3254): [] enter_el1_irq_or_nmi+0x10/0x1c [ 102.896505][ C1] softirqs last enabled at (1924): [] local_bh_enable+0x10/0x34 [ 102.899157][ C1] softirqs last disabled at (1922): [] local_bh_disable+0x10/0x34 [ 102.901850][ C1] ---[ end trace ed959f3122165b19 ]--- [ 102.916762][ T587] device veth1_macvtap left promiscuous mode [ 102.918562][ T587] device veth0_macvtap left promiscuous mode [ 102.920345][ T587] device veth1_vlan left promiscuous mode [ 102.922652][ T587] device veth0_vlan left promiscuous mode [ 103.014340][ T4912] loop0: detected capacity change from 0 to 128 [ 103.019895][ T4912] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.022088][ T4912] Bad inode number on dev loop0: 2 is out of range [ 103.024019][ T4912] SysV FS: get root inode failed [ 103.025360][ T4912] oldfs: cannot read superblock [ 103.031384][ T4489] ------------[ cut here ]------------ [ 103.033045][ T4489] VFS: brelse: Trying to free free buffer [ 103.034839][ T4489] WARNING: CPU: 0 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.037368][ T4489] Modules linked in: [ 103.038460][ T4489] CPU: 0 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 103.041047][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 103.043866][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.046096][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 103.047653][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 103.049084][ T4489] sp : ffff80001f7f77c0 [ 103.050253][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 103.052465][ T4489] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 103.054800][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e1fa34e8 [ 103.057081][ T4489] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 103.059321][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 103.061555][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.063874][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 103.066113][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.068435][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 103.070683][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 103.072934][ T4489] Call trace: [ 103.073872][ T4489] invalidate_bh_lru+0x128/0x234 [ 103.075235][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 103.076960][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 103.078401][ T4489] invalidate_bh_lrus+0x34/0x40 [ 103.079843][ T4489] blkdev_flush_mapping+0x168/0x31c [ 103.081325][ T4489] blkdev_put+0x490/0x6ac [ 103.082497][ T4489] blkdev_close+0x74/0xb0 [ 103.083709][ T4489] __fput+0x1c0/0x7f8 [ 103.084822][ T4489] ____fput+0x20/0x30 [ 103.085911][ T4489] task_work_run+0x12c/0x1e0 [ 103.087195][ T4489] do_notify_resume+0x24b4/0x3128 [ 103.088562][ T4489] el0_svc+0xf0/0x1e0 [ 103.089708][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 103.091126][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 103.092353][ T4489] irq event stamp: 121300 [ 103.093518][ T4489] hardirqs last enabled at (121299): [] kasan_quarantine_put+0xc4/0x204 [ 103.096325][ T4489] hardirqs last disabled at (121300): [] smp_call_function_many_cond+0xa44/0xeb0 [ 103.099321][ T4489] softirqs last enabled at (121286): [] local_bh_enable+0x10/0x34 [ 103.101997][ T4489] softirqs last disabled at (121284): [] local_bh_disable+0x10/0x34 [ 103.104711][ T4489] ---[ end trace ed959f3122165b1a ]--- [ 103.171821][ T4914] loop0: detected capacity change from 0 to 128 [ 103.190691][ T4914] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.193925][ T4914] Bad inode number on dev loop0: 2 is out of range [ 103.195715][ T4914] SysV FS: get root inode failed [ 103.199719][ T4914] oldfs: cannot read superblock [ 103.209814][ C0] ------------[ cut here ]------------ [ 103.211423][ C0] VFS: brelse: Trying to free free buffer [ 103.213121][ C0] WARNING: CPU: 0 PID: 4643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.215585][ C0] Modules linked in: [ 103.216675][ C0] CPU: 0 PID: 4643 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 103.219488][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 103.222369][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.224626][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 103.226237][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 103.227804][ C0] sp : ffff800008007de0 [ 103.228998][ C0] x29: ffff800008007de0 x28: ffff0000d53051c0 x27: 1fffe00036859054 [ 103.231286][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 103.233595][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e1fa3888 [ 103.235888][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 103.238194][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 103.240497][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.242740][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 4c8b215115f38700 [ 103.245023][ C0] x8 : 4c8b215115f38700 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.247390][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 103.249679][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 103.252041][ C0] Call trace: [ 103.253007][ C0] invalidate_bh_lru+0x128/0x234 [ 103.254396][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 103.256185][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 103.258160][ C0] ipi_handler+0x108/0x70c [ 103.259455][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 103.261054][ C0] handle_domain_irq+0x144/0x1fc [ 103.262487][ C0] gic_handle_irq+0x78/0x1c8 [ 103.263807][ C0] call_on_irq_stack+0x24/0x4c [ 103.265180][ C0] do_interrupt_handler+0x6c/0x88 [ 103.266638][ C0] el1_interrupt+0x30/0x58 [ 103.267885][ C0] el1h_64_irq_handler+0x18/0x24 [ 103.269301][ C0] el1h_64_irq+0x78/0x7c [ 103.270579][ C0] alloc_counters+0x3f8/0x7a4 [ 103.272138][ C0] do_arpt_get_ctl+0xab8/0x12a4 [ 103.273544][ C0] nf_getsockopt+0x264/0x284 [ 103.274845][ C0] ip_getsockopt+0xffc/0x158c [ 103.276196][ C0] tcp_getsockopt+0x214/0x2e74 [ 103.277614][ C0] sock_common_getsockopt+0xa8/0xc4 [ 103.279173][ C0] __sys_getsockopt+0x1e0/0x45c [ 103.280570][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 103.282038][ C0] invoke_syscall+0x98/0x2b8 [ 103.283380][ C0] el0_svc_common+0x138/0x258 [ 103.284739][ C0] do_el0_svc+0x58/0x14c [ 103.285925][ C0] el0_svc+0x78/0x1e0 [ 103.287025][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 103.288515][ C0] el0t_64_sync+0x1a0/0x1a4 [ 103.289824][ C0] irq event stamp: 236932 [ 103.290995][ C0] hardirqs last enabled at (236931): [] alloc_counters+0x3d4/0x7a4 [ 103.293819][ C0] hardirqs last disabled at (236932): [] enter_el1_irq_or_nmi+0x10/0x1c [ 103.296652][ C0] softirqs last enabled at (236906): [] release_sock+0x1d0/0x258 [ 103.299330][ C0] softirqs last disabled at (236904): [] release_sock+0x34/0x258 [ 103.302077][ C0] ---[ end trace ed959f3122165b1b ]--- [ 103.348225][ T4916] loop0: detected capacity change from 0 to 128 [ 103.354334][ T4916] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.366850][ T4916] Bad inode number on dev loop0: 2 is out of range [ 103.368741][ T4916] SysV FS: get root inode failed [ 103.370133][ T4916] oldfs: cannot read superblock [ 103.389138][ T4489] ------------[ cut here ]------------ [ 103.390696][ T4489] VFS: brelse: Trying to free free buffer [ 103.392378][ T4489] WARNING: CPU: 1 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.394865][ T4489] Modules linked in: [ 103.395920][ T4489] CPU: 1 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 103.398519][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 103.401322][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.403532][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 103.404992][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 103.406493][ T4489] sp : ffff80001f7f77c0 [ 103.407596][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe0003685d254 [ 103.409799][ T4489] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 103.411991][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9cb6b8 [ 103.414181][ T4489] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 103.416353][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 103.418542][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.420910][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 103.423103][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.425328][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 103.427544][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 103.429751][ T4489] Call trace: [ 103.430628][ T4489] invalidate_bh_lru+0x128/0x234 [ 103.432046][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 103.433621][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 103.434996][ T4489] invalidate_bh_lrus+0x34/0x40 [ 103.436359][ T4489] blkdev_flush_mapping+0x168/0x31c [ 103.437829][ T4489] blkdev_put+0x490/0x6ac [ 103.439038][ T4489] blkdev_close+0x74/0xb0 [ 103.440278][ T4489] __fput+0x1c0/0x7f8 [ 103.441337][ T4489] ____fput+0x20/0x30 [ 103.442448][ T4489] task_work_run+0x12c/0x1e0 [ 103.443703][ T4489] do_notify_resume+0x24b4/0x3128 [ 103.445090][ T4489] el0_svc+0xf0/0x1e0 [ 103.446174][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 103.447534][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 103.448784][ T4489] irq event stamp: 127364 [ 103.450004][ T4489] hardirqs last enabled at (127363): [] kasan_quarantine_put+0xc4/0x204 [ 103.452822][ T4489] hardirqs last disabled at (127364): [] smp_call_function_many_cond+0xa44/0xeb0 [ 103.455758][ T4489] softirqs last enabled at (127224): [] local_bh_enable+0x10/0x34 [ 103.458336][ T4489] softirqs last disabled at (127222): [] local_bh_disable+0x10/0x34 [ 103.460938][ T4489] ---[ end trace ed959f3122165b1c ]--- [ 103.474466][ T587] team0 (unregistering): Port device team_slave_1 removed [ 103.488213][ T587] team0 (unregistering): Port device team_slave_0 removed [ 103.496762][ T587] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 103.503500][ T4918] loop0: detected capacity change from 0 to 128 [ 103.530122][ T4918] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.532240][ T4918] Bad inode number on dev loop0: 2 is out of range [ 103.534055][ T4918] SysV FS: get root inode failed [ 103.535400][ T4918] oldfs: cannot read superblock [ 103.543928][ T587] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 103.553072][ T4489] ------------[ cut here ]------------ [ 103.554754][ T4489] VFS: brelse: Trying to free free buffer [ 103.556379][ T4489] WARNING: CPU: 0 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.558987][ T4489] Modules linked in: [ 103.560098][ T4489] CPU: 0 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 103.562693][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 103.565600][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.567806][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 103.569351][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 103.570832][ T4489] sp : ffff80001f7f77c0 [ 103.571992][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 103.574232][ T4489] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 103.576556][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e1fa3c28 [ 103.578840][ T4489] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 103.581158][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 103.583462][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.585763][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 103.588062][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.590397][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 103.592865][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 103.595185][ T4489] Call trace: [ 103.596068][ T4489] invalidate_bh_lru+0x128/0x234 [ 103.597441][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 103.599088][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 103.600521][ T4489] invalidate_bh_lrus+0x34/0x40 [ 103.601924][ T4489] blkdev_flush_mapping+0x168/0x31c [ 103.603353][ T4489] blkdev_put+0x490/0x6ac [ 103.604628][ T4489] blkdev_close+0x74/0xb0 [ 103.605897][ T4489] __fput+0x1c0/0x7f8 [ 103.607004][ T4489] ____fput+0x20/0x30 [ 103.608129][ T4489] task_work_run+0x12c/0x1e0 [ 103.609398][ T4489] do_notify_resume+0x24b4/0x3128 [ 103.610848][ T4489] el0_svc+0xf0/0x1e0 [ 103.611914][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 103.613332][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 103.614586][ T4489] irq event stamp: 131198 [ 103.615756][ T4489] hardirqs last enabled at (131197): [] kasan_quarantine_put+0xc4/0x204 [ 103.618600][ T4489] hardirqs last disabled at (131198): [] smp_call_function_many_cond+0xa44/0xeb0 [ 103.621676][ T4489] softirqs last enabled at (130376): [] local_bh_enable+0x10/0x34 [ 103.624301][ T4489] softirqs last disabled at (130374): [] local_bh_disable+0x10/0x34 [ 103.626964][ T4489] ---[ end trace ed959f3122165b1d ]--- [ 103.664358][ T4920] loop0: detected capacity change from 0 to 128 [ 103.669656][ T4920] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.671730][ T4920] Bad inode number on dev loop0: 2 is out of range [ 103.673615][ T4920] SysV FS: get root inode failed [ 103.674952][ T4920] oldfs: cannot read superblock [ 103.680595][ T4489] ------------[ cut here ]------------ [ 103.682146][ T4489] VFS: brelse: Trying to free free buffer [ 103.683873][ T4489] WARNING: CPU: 1 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.686383][ T4489] Modules linked in: [ 103.687538][ T4489] CPU: 1 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 103.689970][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 103.692717][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.694852][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 103.696302][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 103.697788][ T4489] sp : ffff80001f7f77c0 [ 103.699018][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe0003685d254 [ 103.701253][ T4489] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 103.703485][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9cba58 [ 103.705776][ T4489] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 103.708044][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 103.710206][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.712481][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 103.714738][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.716957][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 103.719158][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 103.721358][ T4489] Call trace: [ 103.722238][ T4489] invalidate_bh_lru+0x128/0x234 [ 103.723563][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 103.725115][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 103.726504][ T4489] invalidate_bh_lrus+0x34/0x40 [ 103.727911][ T4489] blkdev_flush_mapping+0x168/0x31c [ 103.729496][ T4489] blkdev_put+0x490/0x6ac [ 103.730689][ T4489] blkdev_close+0x74/0xb0 [ 103.731881][ T4489] __fput+0x1c0/0x7f8 [ 103.732973][ T4489] ____fput+0x20/0x30 [ 103.734111][ T4489] task_work_run+0x12c/0x1e0 [ 103.735400][ T4489] do_notify_resume+0x24b4/0x3128 [ 103.736830][ T4489] el0_svc+0xf0/0x1e0 [ 103.737946][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 103.739315][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 103.740582][ T4489] irq event stamp: 134494 [ 103.741778][ T4489] hardirqs last enabled at (134493): [] kasan_quarantine_put+0xc4/0x204 [ 103.744615][ T4489] hardirqs last disabled at (134494): [] smp_call_function_many_cond+0xa44/0xeb0 [ 103.747694][ T4489] softirqs last enabled at (134314): [] local_bh_enable+0x10/0x34 [ 103.750391][ T4489] softirqs last disabled at (134312): [] local_bh_disable+0x10/0x34 [ 103.753111][ T4489] ---[ end trace ed959f3122165b1e ]--- [ 103.787259][ T587] bond0 (unregistering): Released all slaves [ 103.795799][ T4923] loop0: detected capacity change from 0 to 128 [ 103.839577][ T4923] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.841839][ T4923] Bad inode number on dev loop0: 2 is out of range [ 103.843608][ T4923] SysV FS: get root inode failed [ 103.844904][ T4923] oldfs: cannot read superblock [ 103.853131][ C1] ------------[ cut here ]------------ [ 103.854797][ C1] VFS: brelse: Trying to free free buffer [ 103.856498][ C1] WARNING: CPU: 1 PID: 3642 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.859050][ C1] Modules linked in: [ 103.860144][ C1] CPU: 1 PID: 3642 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 103.862756][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 103.865541][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.867686][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 103.869164][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 103.870762][ C1] sp : ffff800008017de0 [ 103.871897][ C1] x29: ffff800008017de0 x28: ffff0000d6363680 x27: 1fffe0003685d253 [ 103.874105][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 103.876299][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9cbdf8 [ 103.878591][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 103.880964][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 103.883209][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.885428][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 404f77ffebf05600 [ 103.887766][ C1] x8 : 404f77ffebf05600 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.890095][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 103.892329][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 103.894480][ C1] Call trace: [ 103.895360][ C1] invalidate_bh_lru+0x128/0x234 [ 103.896741][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 103.898416][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 103.900331][ C1] ipi_handler+0x108/0x70c [ 103.901575][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 103.903095][ C1] handle_domain_irq+0x144/0x1fc [ 103.904442][ C1] gic_handle_irq+0x78/0x1c8 [ 103.905721][ C1] call_on_irq_stack+0x24/0x4c [ 103.907068][ C1] do_interrupt_handler+0x6c/0x88 [ 103.908475][ C1] el1_interrupt+0x30/0x58 [ 103.909743][ C1] el1h_64_irq_handler+0x18/0x24 [ 103.911071][ C1] el1h_64_irq+0x78/0x7c [ 103.912197][ C1] seqcount_lockdep_reader_access+0x214/0x2bc [ 103.913916][ C1] prepend_path+0xe0/0xad4 [ 103.915122][ C1] d_absolute_path+0xa0/0x148 [ 103.916456][ C1] tomoyo_realpath_from_path+0x2a0/0x510 [ 103.917960][ C1] tomoyo_path_perm+0x1b4/0x440 [ 103.919255][ C1] tomoyo_inode_getattr+0x28/0x38 [ 103.920646][ C1] security_inode_getattr+0xd8/0x124 [ 103.922087][ C1] vfs_statx+0x118/0x458 [ 103.923269][ C1] __arm64_sys_newfstatat+0x10c/0x190 [ 103.924795][ C1] invoke_syscall+0x98/0x2b8 [ 103.926138][ C1] el0_svc_common+0x138/0x258 [ 103.927449][ C1] do_el0_svc+0x58/0x14c [ 103.928599][ C1] el0_svc+0x78/0x1e0 [ 103.929736][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 103.931110][ C1] el0t_64_sync+0x1a0/0x1a4 [ 103.932414][ C1] irq event stamp: 1191024 [ 103.933670][ C1] hardirqs last enabled at (1191023): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 103.936692][ C1] hardirqs last disabled at (1191024): [] enter_el1_irq_or_nmi+0x10/0x1c [ 103.939464][ C1] softirqs last enabled at (1189992): [] local_bh_enable+0x10/0x34 [ 103.942118][ C1] softirqs last disabled at (1189990): [] local_bh_disable+0x10/0x34 [ 103.944678][ C1] ---[ end trace ed959f3122165b1f ]--- [ 104.082835][ T4925] loop0: detected capacity change from 0 to 128 [ 104.087164][ T4925] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.089411][ T4925] Bad inode number on dev loop0: 2 is out of range [ 104.091150][ T4925] SysV FS: get root inode failed [ 104.092541][ T4925] oldfs: cannot read superblock [ 104.096095][ C1] ------------[ cut here ]------------ [ 104.097646][ C1] VFS: brelse: Trying to free free buffer [ 104.099306][ C1] WARNING: CPU: 1 PID: 4925 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.101782][ C1] Modules linked in: [ 104.102844][ C1] CPU: 1 PID: 4925 Comm: syz.0.41 Tainted: G W 5.15.181-syzkaller #0 [ 104.105402][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 104.108188][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.110389][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 104.111868][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 104.113307][ C1] sp : ffff800008017de0 [ 104.114482][ C1] x29: ffff800008017de0 x28: ffff0000c71f1b40 x27: 1fffe0003685d254 [ 104.116689][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 104.118929][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c7230 [ 104.121141][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 104.123375][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 104.125645][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.127830][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : e1dd20e86fdc2400 [ 104.130044][ C1] x8 : e1dd20e86fdc2400 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.132270][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 104.134605][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 104.136788][ C1] Call trace: [ 104.137684][ C1] invalidate_bh_lru+0x128/0x234 [ 104.139062][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 104.140704][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 104.142747][ C1] ipi_handler+0x108/0x70c [ 104.143951][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 104.145441][ C1] handle_domain_irq+0x144/0x1fc [ 104.146782][ C1] gic_handle_irq+0x78/0x1c8 [ 104.148051][ C1] call_on_irq_stack+0x24/0x4c [ 104.149361][ C1] do_interrupt_handler+0x6c/0x88 [ 104.150811][ C1] el1_interrupt+0x30/0x58 [ 104.152067][ C1] el1h_64_irq_handler+0x18/0x24 [ 104.153415][ C1] el1h_64_irq+0x78/0x7c [ 104.154591][ C1] lock_acquire+0x168/0x620 [ 104.155838][ C1] rcu_lock_acquire+0x38/0x44 [ 104.157119][ C1] lock_page_memcg+0x50/0x234 [ 104.158441][ C1] page_remove_rmap+0x3c/0xfd0 [ 104.159784][ C1] unmap_page_range+0xbb4/0x1958 [ 104.161149][ C1] unmap_single_vma+0x13c/0x1e4 [ 104.162457][ C1] unmap_vmas+0x104/0x200 [ 104.163707][ C1] exit_mmap+0x2a8/0x4e0 [ 104.164916][ C1] __mmput+0xec/0x3b8 [ 104.166037][ C1] mmput+0x80/0xc8 [ 104.167077][ C1] exit_mm+0x4a0/0x684 [ 104.168211][ C1] do_exit+0x4e4/0x1f58 [ 104.169386][ C1] do_group_exit+0x100/0x268 [ 104.170660][ C1] get_signal+0x73c/0x1340 [ 104.171889][ C1] do_notify_resume+0x35c/0x3128 [ 104.173219][ C1] el0_svc+0xf0/0x1e0 [ 104.174347][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 104.175745][ C1] el0t_64_sync+0x1a0/0x1a4 [ 104.176915][ C1] irq event stamp: 2072 [ 104.178050][ C1] hardirqs last enabled at (2071): [] lock_page_memcg+0x110/0x234 [ 104.180658][ C1] hardirqs last disabled at (2072): [] enter_el1_irq_or_nmi+0x10/0x1c [ 104.183388][ C1] softirqs last enabled at (1464): [] handle_softirqs+0xa4c/0xbf0 [ 104.186086][ C1] softirqs last disabled at (1413): [] __irq_exit_rcu+0x240/0x440 [ 104.188655][ C1] ---[ end trace ed959f3122165b20 ]--- [ 104.250704][ T4927] loop0: detected capacity change from 0 to 128 [ 104.254683][ T4927] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.258111][ T4927] Bad inode number on dev loop0: 2 is out of range [ 104.259930][ T4927] SysV FS: get root inode failed [ 104.261282][ T4927] oldfs: cannot read superblock [ 104.265015][ C0] ------------[ cut here ]------------ [ 104.266711][ C0] VFS: brelse: Trying to free free buffer [ 104.268322][ C0] WARNING: CPU: 0 PID: 4926 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.270822][ C0] Modules linked in: [ 104.271936][ C0] CPU: 0 PID: 4926 Comm: syz.0.42 Tainted: G W 5.15.181-syzkaller #0 [ 104.274574][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 104.277296][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.279467][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 104.280918][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 104.282309][ C0] sp : ffff800008007de0 [ 104.283457][ C0] x29: ffff800008007de0 x28: ffff0000eb71d1c0 x27: 1fffe00036859054 [ 104.285704][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 104.287985][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ee018400 [ 104.290222][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 104.292440][ C0] x17: 0000000000010002 x16: ffff8000083007d8 x15: 00000000ffffffff [ 104.294655][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.296966][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 7f4f8b2467f7fc00 [ 104.299199][ C0] x8 : 7f4f8b2467f7fc00 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.301391][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 104.303577][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 104.305860][ C0] Call trace: [ 104.306802][ C0] invalidate_bh_lru+0x128/0x234 [ 104.308146][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 104.309775][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 104.311845][ C0] ipi_handler+0x108/0x70c [ 104.313090][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 104.314783][ C0] handle_domain_irq+0x144/0x1fc [ 104.316227][ C0] gic_handle_irq+0x78/0x1c8 [ 104.317490][ C0] call_on_irq_stack+0x24/0x4c [ 104.318845][ C0] do_interrupt_handler+0x6c/0x88 [ 104.320167][ C0] el1_interrupt+0x30/0x58 [ 104.321392][ C0] el1h_64_irq_handler+0x18/0x24 [ 104.322758][ C0] el1h_64_irq+0x78/0x7c [ 104.323966][ C0] kasan_quarantine_put+0xd4/0x204 [ 104.325400][ C0] ____kasan_slab_free+0x124/0x164 [ 104.326887][ C0] __kasan_slab_free+0x18/0x28 [ 104.328244][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 104.329771][ C0] kmem_cache_free+0xdc/0x3b4 [ 104.331058][ C0] pgtable_pmd_page_dtor+0x74/0x200 [ 104.332459][ C0] free_pgd_range+0x824/0xc04 [ 104.333747][ C0] free_pgtables+0x23c/0x278 [ 104.334999][ C0] exit_mmap+0x2bc/0x4e0 [ 104.336173][ C0] __mmput+0xec/0x3b8 [ 104.337243][ C0] mmput+0x80/0xc8 [ 104.338240][ C0] exit_mm+0x4a0/0x684 [ 104.339327][ C0] do_exit+0x4e4/0x1f58 [ 104.340581][ C0] do_group_exit+0x100/0x268 [ 104.341863][ C0] __wake_up_parent+0x0/0x60 [ 104.343151][ C0] invoke_syscall+0x98/0x2b8 [ 104.344401][ C0] el0_svc_common+0x138/0x258 [ 104.345644][ C0] do_el0_svc+0x58/0x14c [ 104.346878][ C0] el0_svc+0x78/0x1e0 [ 104.348034][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 104.349397][ C0] el0t_64_sync+0x1a0/0x1a4 [ 104.350618][ C0] irq event stamp: 2656 [ 104.351733][ C0] hardirqs last enabled at (2655): [] kasan_quarantine_put+0xc4/0x204 [ 104.354501][ C0] hardirqs last disabled at (2656): [] enter_el1_irq_or_nmi+0x10/0x1c [ 104.357294][ C0] softirqs last enabled at (1516): [] local_bh_enable+0x10/0x34 [ 104.359915][ C0] softirqs last disabled at (1514): [] local_bh_disable+0x10/0x34 [ 104.362520][ C0] ---[ end trace ed959f3122165b21 ]--- [ 104.420989][ T4929] loop0: detected capacity change from 0 to 128 1970/01/01 00:01:44 executed programs: 30 [ 104.465351][ T4929] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.468004][ T4929] Bad inode number on dev loop0: 2 is out of range [ 104.469891][ T4929] SysV FS: get root inode failed [ 104.471474][ T4929] oldfs: cannot read superblock [ 104.479836][ C0] ------------[ cut here ]------------ [ 104.481372][ C0] VFS: brelse: Trying to free free buffer [ 104.483085][ C0] WARNING: CPU: 0 PID: 4643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.485588][ C0] Modules linked in: [ 104.486677][ C0] CPU: 0 PID: 4643 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 104.489524][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 104.492361][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.494505][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 104.495986][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 104.497373][ C0] sp : ffff800008007de0 [ 104.498474][ C0] x29: ffff800008007de0 x28: ffff0000d53051c0 x27: 1fffe00036859054 [ 104.500734][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 104.502995][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ee0187a0 [ 104.505234][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 104.507457][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 104.509690][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.511912][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 4c8b215115f38700 [ 104.514150][ C0] x8 : 4c8b215115f38700 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.516390][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 104.518587][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 104.520747][ C0] Call trace: [ 104.521650][ C0] invalidate_bh_lru+0x128/0x234 [ 104.522967][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 104.524669][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 104.526582][ C0] ipi_handler+0x108/0x70c [ 104.527801][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 104.529310][ C0] handle_domain_irq+0x144/0x1fc [ 104.530688][ C0] gic_handle_irq+0x78/0x1c8 [ 104.531987][ C0] call_on_irq_stack+0x24/0x4c [ 104.533315][ C0] do_interrupt_handler+0x6c/0x88 [ 104.534795][ C0] el1_interrupt+0x30/0x58 [ 104.535992][ C0] el1h_64_irq_handler+0x18/0x24 [ 104.537389][ C0] el1h_64_irq+0x78/0x7c [ 104.538556][ C0] lock_acquire+0x234/0x620 [ 104.539838][ C0] fs_reclaim_acquire+0x118/0x1c4 [ 104.541273][ C0] slab_pre_alloc_hook+0x38/0xec [ 104.542753][ C0] kmem_cache_alloc+0x94/0x3e4 [ 104.544052][ C0] getname_flags+0xb8/0x450 [ 104.545278][ C0] user_path_at_empty+0x40/0x1a0 [ 104.546581][ C0] vfs_statx+0xf4/0x458 [ 104.547739][ C0] __arm64_sys_newfstatat+0x10c/0x190 [ 104.549184][ C0] invoke_syscall+0x98/0x2b8 [ 104.550441][ C0] el0_svc_common+0x138/0x258 [ 104.551748][ C0] do_el0_svc+0x58/0x14c [ 104.552959][ C0] el0_svc+0x78/0x1e0 [ 104.554090][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 104.555584][ C0] el0t_64_sync+0x1a0/0x1a4 [ 104.556831][ C0] irq event stamp: 258190 [ 104.558025][ C0] hardirqs last enabled at (258189): [] el0_svc_common+0x9c/0x258 [ 104.560837][ C0] hardirqs last disabled at (258190): [] enter_el1_irq_or_nmi+0x10/0x1c [ 104.563622][ C0] softirqs last enabled at (257684): [] local_bh_enable+0x10/0x34 [ 104.566245][ C0] softirqs last disabled at (257682): [] local_bh_disable+0x10/0x34 [ 104.568907][ C0] ---[ end trace ed959f3122165b22 ]--- [ 104.635492][ T4931] loop0: detected capacity change from 0 to 128 [ 104.678482][ T4931] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.680797][ T4931] Bad inode number on dev loop0: 2 is out of range [ 104.682596][ T4931] SysV FS: get root inode failed [ 104.683923][ T4931] oldfs: cannot read superblock [ 104.691919][ T4489] ------------[ cut here ]------------ [ 104.693537][ T4489] VFS: brelse: Trying to free free buffer [ 104.695143][ T4489] WARNING: CPU: 1 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.697680][ T4489] Modules linked in: [ 104.698736][ T4489] CPU: 1 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 104.701319][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 104.704103][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.706233][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 104.707708][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 104.709177][ T4489] sp : ffff80001f7f77c0 [ 104.710321][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 104.712606][ T4489] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 104.714834][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c75d0 [ 104.717019][ T4489] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 104.719220][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 104.721462][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.723664][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 104.725830][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.727999][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 104.730163][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 104.732380][ T4489] Call trace: [ 104.733250][ T4489] invalidate_bh_lru+0x128/0x234 [ 104.734581][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 104.736225][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 104.737679][ T4489] invalidate_bh_lrus+0x34/0x40 [ 104.739076][ T4489] blkdev_flush_mapping+0x168/0x31c [ 104.740525][ T4489] blkdev_put+0x490/0x6ac [ 104.741797][ T4489] blkdev_close+0x74/0xb0 [ 104.743039][ T4489] __fput+0x1c0/0x7f8 [ 104.744231][ T4489] ____fput+0x20/0x30 [ 104.745397][ T4489] task_work_run+0x12c/0x1e0 [ 104.746695][ T4489] do_notify_resume+0x24b4/0x3128 [ 104.748131][ T4489] el0_svc+0xf0/0x1e0 [ 104.749257][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 104.750583][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 104.751835][ T4489] irq event stamp: 163288 [ 104.753199][ T4489] hardirqs last enabled at (163287): [] kasan_quarantine_put+0xc4/0x204 [ 104.755979][ T4489] hardirqs last disabled at (163288): [] smp_call_function_many_cond+0xa44/0xeb0 [ 104.759007][ T4489] softirqs last enabled at (162652): [] local_bh_enable+0x10/0x34 [ 104.761609][ T4489] softirqs last disabled at (162650): [] local_bh_disable+0x10/0x34 [ 104.764159][ T4489] ---[ end trace ed959f3122165b23 ]--- [ 104.824017][ T4933] loop0: detected capacity change from 0 to 128 [ 104.861040][ T4933] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.863154][ T4933] Bad inode number on dev loop0: 2 is out of range [ 104.864905][ T4933] SysV FS: get root inode failed [ 104.866219][ T4933] oldfs: cannot read superblock [ 104.875826][ T4933] ------------[ cut here ]------------ [ 104.877408][ T4933] VFS: brelse: Trying to free free buffer [ 104.879076][ T4933] WARNING: CPU: 1 PID: 4933 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.881588][ T4933] Modules linked in: [ 104.882634][ T4933] CPU: 1 PID: 4933 Comm: syz.0.45 Tainted: G W 5.15.181-syzkaller #0 [ 104.885362][ T4933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 104.888098][ T4933] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.890368][ T4933] pc : invalidate_bh_lru+0x128/0x234 [ 104.891814][ T4933] lr : invalidate_bh_lru+0x128/0x234 [ 104.893258][ T4933] sp : ffff80001f5e76e0 [ 104.894436][ T4933] x29: ffff80001f5e76e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 104.896684][ T4933] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 104.898879][ T4933] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c7970 [ 104.901088][ T4933] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 104.903316][ T4933] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 104.905535][ T4933] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.907721][ T4933] x11: 0000000000000002 x10: 0000000000000000 x9 : f20ac7269c8e9700 [ 104.909926][ T4933] x8 : f20ac7269c8e9700 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.912073][ T4933] x5 : ffff80001f5e6fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 104.914286][ T4933] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 104.916478][ T4933] Call trace: [ 104.917400][ T4933] invalidate_bh_lru+0x128/0x234 [ 104.918790][ T4933] smp_call_function_many_cond+0xa50/0xeb0 [ 104.920435][ T4933] on_each_cpu_cond_mask+0x5c/0xc4 [ 104.921878][ T4933] invalidate_bh_lrus+0x34/0x40 [ 104.923157][ T4933] blkdev_flush_mapping+0x168/0x31c [ 104.924591][ T4933] blkdev_put+0x490/0x6ac [ 104.925806][ T4933] kill_block_super+0x98/0xdc [ 104.927131][ T4933] deactivate_locked_super+0xb8/0x13c [ 104.928596][ T4933] mount_bdev+0x284/0x358 [ 104.929773][ T4933] sysv_mount+0x44/0x58 [ 104.930905][ T4933] legacy_get_tree+0xd4/0x16c [ 104.932166][ T4933] vfs_get_tree+0x90/0x274 [ 104.933328][ T4933] do_new_mount+0x228/0x810 [ 104.934563][ T4933] path_mount+0x5b4/0x1000 [ 104.935757][ T4933] __arm64_sys_mount+0x514/0x5e4 [ 104.937180][ T4933] invoke_syscall+0x98/0x2b8 [ 104.938437][ T4933] el0_svc_common+0x138/0x258 [ 104.939687][ T4933] do_el0_svc+0x58/0x14c [ 104.940850][ T4933] el0_svc+0x78/0x1e0 [ 104.941945][ T4933] el0t_64_sync_handler+0xcc/0xe4 [ 104.943269][ T4933] el0t_64_sync+0x1a0/0x1a4 [ 104.944479][ T4933] irq event stamp: 1152 [ 104.945653][ T4933] hardirqs last enabled at (1151): [] kasan_quarantine_put+0xc4/0x204 [ 104.948324][ T4933] hardirqs last disabled at (1152): [] smp_call_function_many_cond+0xa44/0xeb0 [ 104.951191][ T4933] softirqs last enabled at (1142): [] handle_softirqs+0xa4c/0xbf0 [ 104.953716][ T4933] softirqs last disabled at (1073): [] __irq_exit_rcu+0x240/0x440 [ 104.956318][ T4933] ---[ end trace ed959f3122165b24 ]--- [ 105.098969][ T4935] loop0: detected capacity change from 0 to 128 [ 105.103596][ T4935] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.105747][ T4935] Bad inode number on dev loop0: 2 is out of range [ 105.112807][ T4935] SysV FS: get root inode failed [ 105.114408][ T4935] oldfs: cannot read superblock [ 105.115797][ C0] ------------[ cut here ]------------ [ 105.117255][ C0] VFS: brelse: Trying to free free buffer [ 105.118895][ C0] WARNING: CPU: 0 PID: 4935 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.121417][ C0] Modules linked in: [ 105.122575][ C0] CPU: 0 PID: 4935 Comm: syz.0.46 Tainted: G W 5.15.181-syzkaller #0 [ 105.125178][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 105.127974][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.130181][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 105.131710][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 105.133149][ C0] sp : ffff800008007de0 [ 105.134280][ C0] x29: ffff800008007de0 x28: ffff0000cbcd0000 x27: 1fffe00036859054 [ 105.136608][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 105.138751][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ee018b40 [ 105.140970][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 105.143314][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 105.145562][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.147799][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 78555ee7f9218b00 [ 105.150001][ C0] x8 : 78555ee7f9218b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.152215][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 105.154463][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 105.156642][ C0] Call trace: [ 105.157562][ C0] invalidate_bh_lru+0x128/0x234 [ 105.158940][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 105.160701][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 105.162617][ C0] ipi_handler+0x108/0x70c [ 105.163900][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 105.165412][ C0] handle_domain_irq+0x144/0x1fc [ 105.166790][ C0] gic_handle_irq+0x78/0x1c8 [ 105.168012][ C0] call_on_irq_stack+0x24/0x4c [ 105.169320][ C0] do_interrupt_handler+0x6c/0x88 [ 105.170727][ C0] el1_interrupt+0x30/0x58 [ 105.171945][ C0] el1h_64_irq_handler+0x18/0x24 [ 105.173296][ C0] el1h_64_irq+0x78/0x7c [ 105.174464][ C0] arch_local_irq_restore+0x8/0x10 [ 105.175884][ C0] ___might_sleep+0x98/0x4d4 [ 105.177187][ C0] __might_sleep+0x98/0x124 [ 105.178449][ C0] __mutex_lock_common+0xd0/0x1edc [ 105.179843][ C0] mutex_lock_nested+0xac/0x11c [ 105.181146][ C0] list_lru_destroy+0x60/0x39c [ 105.182447][ C0] deactivate_locked_super+0xc8/0x13c [ 105.183941][ C0] mount_bdev+0x284/0x358 [ 105.185144][ C0] sysv_mount+0x44/0x58 [ 105.186276][ C0] legacy_get_tree+0xd4/0x16c [ 105.187679][ C0] vfs_get_tree+0x90/0x274 [ 105.188990][ C0] do_new_mount+0x228/0x810 [ 105.190303][ C0] path_mount+0x5b4/0x1000 [ 105.191537][ C0] __arm64_sys_mount+0x514/0x5e4 [ 105.192948][ C0] invoke_syscall+0x98/0x2b8 [ 105.194221][ C0] el0_svc_common+0x138/0x258 [ 105.195516][ C0] do_el0_svc+0x58/0x14c [ 105.196672][ C0] el0_svc+0x78/0x1e0 [ 105.197834][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 105.199219][ C0] el0t_64_sync+0x1a0/0x1a4 [ 105.200480][ C0] irq event stamp: 1286 [ 105.201599][ C0] hardirqs last enabled at (1285): [] kasan_quarantine_put+0xc4/0x204 [ 105.204311][ C0] hardirqs last disabled at (1286): [] enter_el1_irq_or_nmi+0x10/0x1c [ 105.207046][ C0] softirqs last enabled at (1232): [] handle_softirqs+0xa4c/0xbf0 [ 105.209718][ C0] softirqs last disabled at (1129): [] __irq_exit_rcu+0x240/0x440 [ 105.212711][ C0] ---[ end trace ed959f3122165b25 ]--- [ 105.351971][ T4937] loop0: detected capacity change from 0 to 128 [ 105.402028][ T4937] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.404201][ T4937] Bad inode number on dev loop0: 2 is out of range [ 105.405985][ T4937] SysV FS: get root inode failed [ 105.410454][ T4937] oldfs: cannot read superblock [ 105.416286][ T4489] ------------[ cut here ]------------ [ 105.417925][ T4489] VFS: brelse: Trying to free free buffer [ 105.419560][ T4489] WARNING: CPU: 0 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.421975][ T4489] Modules linked in: [ 105.423017][ T4489] CPU: 0 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 105.425546][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 105.428357][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.430558][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 105.432011][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 105.433471][ T4489] sp : ffff80001f7f77c0 [ 105.434641][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 105.436826][ T4489] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 105.439080][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ee018ee0 [ 105.441322][ T4489] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 105.443536][ T4489] x17: 0000000000000000 x16: ffff8000083007d8 x15: 00000000ffffffff [ 105.445810][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.448107][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 105.450327][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.452592][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 105.454801][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 105.457047][ T4489] Call trace: [ 105.457877][ T4489] invalidate_bh_lru+0x128/0x234 [ 105.459253][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 105.460932][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 105.462373][ T4489] invalidate_bh_lrus+0x34/0x40 [ 105.463730][ T4489] blkdev_flush_mapping+0x168/0x31c [ 105.465199][ T4489] blkdev_put+0x490/0x6ac [ 105.466399][ T4489] blkdev_close+0x74/0xb0 [ 105.467647][ T4489] __fput+0x1c0/0x7f8 [ 105.468753][ T4489] ____fput+0x20/0x30 [ 105.469885][ T4489] task_work_run+0x12c/0x1e0 [ 105.471138][ T4489] do_notify_resume+0x24b4/0x3128 [ 105.472526][ T4489] el0_svc+0xf0/0x1e0 [ 105.473635][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 105.475053][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 105.476356][ T4489] irq event stamp: 185644 [ 105.477576][ T4489] hardirqs last enabled at (185643): [] kasan_quarantine_put+0xc4/0x204 [ 105.480435][ T4489] hardirqs last disabled at (185644): [] smp_call_function_many_cond+0xa44/0xeb0 [ 105.483403][ T4489] softirqs last enabled at (184520): [] local_bh_enable+0x10/0x34 [ 105.486128][ T4489] softirqs last disabled at (184518): [] local_bh_disable+0x10/0x34 [ 105.488865][ T4489] ---[ end trace ed959f3122165b26 ]--- [ 105.548799][ T4939] loop0: detected capacity change from 0 to 128 [ 105.552501][ T4939] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.554613][ T4939] Bad inode number on dev loop0: 2 is out of range [ 105.557257][ T4939] SysV FS: get root inode failed [ 105.558710][ T4939] oldfs: cannot read superblock [ 105.564389][ C0] ------------[ cut here ]------------ [ 105.565969][ C0] VFS: brelse: Trying to free free buffer [ 105.567644][ C0] WARNING: CPU: 0 PID: 4643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.570112][ C0] Modules linked in: [ 105.571194][ C0] CPU: 0 PID: 4643 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 105.573900][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 105.576921][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.579129][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 105.580612][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 105.582049][ C0] sp : ffff800008007de0 [ 105.583220][ C0] x29: ffff800008007de0 x28: ffff0000d53051c0 x27: 1fffe00036859054 [ 105.585410][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 105.587632][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dc3a3148 [ 105.589849][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 105.592026][ C0] x17: 0000000000010002 x16: ffff8000083007d8 x15: 00000000ffffffff [ 105.594321][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.596560][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 4c8b215115f38700 [ 105.598788][ C0] x8 : 4c8b215115f38700 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.601039][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 105.603250][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 105.605661][ C0] Call trace: [ 105.606634][ C0] invalidate_bh_lru+0x128/0x234 [ 105.607975][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 105.609680][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 105.611638][ C0] ipi_handler+0x108/0x70c [ 105.612867][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 105.614414][ C0] handle_domain_irq+0x144/0x1fc [ 105.615768][ C0] gic_handle_irq+0x78/0x1c8 [ 105.617026][ C0] call_on_irq_stack+0x24/0x4c [ 105.618374][ C0] do_interrupt_handler+0x6c/0x88 [ 105.619791][ C0] el1_interrupt+0x30/0x58 [ 105.621033][ C0] el1h_64_irq_handler+0x18/0x24 [ 105.622414][ C0] el1h_64_irq+0x78/0x7c [ 105.623594][ C0] read_seqbegin+0x21c/0x304 [ 105.624819][ C0] d_walk+0x44/0x7c8 [ 105.625859][ C0] shrink_dcache_parent+0xf0/0x354 [ 105.627276][ C0] d_invalidate+0x10c/0x23c [ 105.628494][ C0] proc_invalidate_siblings_dcache+0x3c8/0x66c [ 105.630219][ C0] proc_flush_pid+0x24/0x34 [ 105.631529][ C0] release_task+0x14a4/0x16a0 [ 105.632775][ C0] wait_consider_task+0x1508/0x27cc [ 105.634254][ C0] do_wait+0x2f8/0xa98 [ 105.635399][ C0] kernel_wait4+0x1d0/0x318 [ 105.636690][ C0] __arm64_sys_wait4+0x120/0x2d0 [ 105.637948][ C0] invoke_syscall+0x98/0x2b8 [ 105.639217][ C0] el0_svc_common+0x138/0x258 [ 105.640546][ C0] do_el0_svc+0x58/0x14c [ 105.641682][ C0] el0_svc+0x78/0x1e0 [ 105.642794][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 105.644174][ C0] el0t_64_sync+0x1a0/0x1a4 [ 105.645408][ C0] irq event stamp: 274878 [ 105.646582][ C0] hardirqs last enabled at (274877): [] read_seqbegin+0x1fc/0x304 [ 105.649239][ C0] hardirqs last disabled at (274878): [] enter_el1_irq_or_nmi+0x10/0x1c [ 105.652042][ C0] softirqs last enabled at (274834): [] local_bh_enable+0x10/0x34 [ 105.654658][ C0] softirqs last disabled at (274832): [] local_bh_disable+0x10/0x34 [ 105.657417][ C0] ---[ end trace ed959f3122165b27 ]--- [ 105.694752][ T4941] loop0: detected capacity change from 0 to 128 [ 105.698861][ T4941] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.700828][ T4941] Bad inode number on dev loop0: 2 is out of range [ 105.702660][ T4941] SysV FS: get root inode failed [ 105.703984][ T4941] oldfs: cannot read superblock [ 105.711759][ C1] ------------[ cut here ]------------ [ 105.713369][ C1] VFS: brelse: Trying to free free buffer [ 105.715104][ C1] WARNING: CPU: 1 PID: 4438 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.717542][ C1] Modules linked in: [ 105.718639][ C1] CPU: 1 PID: 4438 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 105.721366][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 105.724236][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.726320][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 105.727785][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 105.729218][ C1] sp : ffff800008017de0 [ 105.730304][ C1] x29: ffff800008017de0 x28: ffff0000d8d21b40 x27: 1fffe0003685d254 [ 105.732583][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 105.734843][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c7d10 [ 105.737047][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 105.739404][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 105.741617][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.743846][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 2fcc739527f53c00 [ 105.746085][ C1] x8 : 2fcc739527f53c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.748476][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 105.750779][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 105.753002][ C1] Call trace: [ 105.753924][ C1] invalidate_bh_lru+0x128/0x234 [ 105.755247][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 105.756978][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 105.758904][ C1] ipi_handler+0x108/0x70c [ 105.760153][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 105.761690][ C1] handle_domain_irq+0x144/0x1fc [ 105.763087][ C1] gic_handle_irq+0x78/0x1c8 [ 105.764289][ C1] call_on_irq_stack+0x24/0x4c [ 105.765589][ C1] do_interrupt_handler+0x6c/0x88 [ 105.766970][ C1] el1_interrupt+0x30/0x58 [ 105.768171][ C1] el1h_64_irq_handler+0x18/0x24 [ 105.769552][ C1] el1h_64_irq+0x78/0x7c [ 105.770682][ C1] lock_is_held_type+0x148/0x198 [ 105.772002][ C1] rcu_read_lock_any_held+0x4c/0xdc [ 105.773429][ C1] touch_atime+0x530/0x914 [ 105.774559][ C1] pipe_read+0xd00/0xe7c [ 105.775741][ C1] vfs_read+0x7c4/0xa10 [ 105.776979][ C1] ksys_read+0x120/0x210 [ 105.778218][ C1] __arm64_sys_read+0x7c/0x90 [ 105.779513][ C1] invoke_syscall+0x98/0x2b8 [ 105.780708][ C1] el0_svc_common+0x138/0x258 [ 105.782001][ C1] do_el0_svc+0x58/0x14c [ 105.783150][ C1] el0_svc+0x78/0x1e0 [ 105.784243][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 105.785627][ C1] el0t_64_sync+0x1a0/0x1a4 [ 105.786862][ C1] irq event stamp: 663158 [ 105.788038][ C1] hardirqs last enabled at (663157): [] seqcount_lockdep_reader_access+0x1fc/0x2c4 [ 105.791111][ C1] hardirqs last disabled at (663158): [] enter_el1_irq_or_nmi+0x10/0x1c [ 105.793819][ C1] softirqs last enabled at (663146): [] local_bh_enable+0x10/0x34 [ 105.796420][ C1] softirqs last disabled at (663144): [] local_bh_disable+0x10/0x34 [ 105.799105][ C1] ---[ end trace ed959f3122165b28 ]--- [ 105.864459][ T4943] loop0: detected capacity change from 0 to 128 [ 105.870732][ T4943] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.872839][ T4943] Bad inode number on dev loop0: 2 is out of range [ 105.874613][ T4943] SysV FS: get root inode failed [ 105.876030][ T4943] oldfs: cannot read superblock [ 105.890115][ C0] ------------[ cut here ]------------ [ 105.891680][ C0] VFS: brelse: Trying to free free buffer [ 105.893309][ C0] WARNING: CPU: 0 PID: 4943 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.895723][ C0] Modules linked in: [ 105.896796][ C0] CPU: 0 PID: 4943 Comm: syz.0.50 Tainted: G W 5.15.181-syzkaller #0 [ 105.899397][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 105.902285][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.904473][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 105.905982][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 105.907413][ C0] sp : ffff800008007de0 [ 105.908606][ C0] x29: ffff800008007de0 x28: ffff0000d73e3680 x27: 1fffe00036859054 [ 105.910866][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 105.913089][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ddb88df8 [ 105.915316][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 105.917553][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 105.919857][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.922027][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : edd72a70cfaa1400 [ 105.924286][ C0] x8 : edd72a70cfaa1400 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.926663][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 105.928920][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 105.931142][ C0] Call trace: [ 105.932048][ C0] invalidate_bh_lru+0x128/0x234 [ 105.933521][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 105.935226][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 105.937171][ C0] ipi_handler+0x108/0x70c [ 105.938435][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 105.939977][ C0] handle_domain_irq+0x144/0x1fc [ 105.941353][ C0] gic_handle_irq+0x78/0x1c8 [ 105.942649][ C0] call_on_irq_stack+0x24/0x4c [ 105.943999][ C0] do_interrupt_handler+0x6c/0x88 [ 105.945422][ C0] el1_interrupt+0x30/0x58 [ 105.946737][ C0] el1h_64_irq_handler+0x18/0x24 [ 105.948148][ C0] el1h_64_irq+0x78/0x7c [ 105.949351][ C0] lock_acquire+0x234/0x620 [ 105.950613][ C0] rcu_lock_acquire+0x38/0x44 [ 105.951949][ C0] lock_page_memcg+0x50/0x234 [ 105.953336][ C0] page_remove_rmap+0x3c/0xfd0 [ 105.954691][ C0] unmap_page_range+0xbb4/0x1958 [ 105.956098][ C0] unmap_single_vma+0x13c/0x1e4 [ 105.957437][ C0] unmap_vmas+0x104/0x200 [ 105.958649][ C0] exit_mmap+0x2a8/0x4e0 [ 105.959854][ C0] __mmput+0xec/0x3b8 [ 105.960995][ C0] mmput+0x80/0xc8 [ 105.962045][ C0] exit_mm+0x4a0/0x684 [ 105.963184][ C0] do_exit+0x4e4/0x1f58 [ 105.964370][ C0] do_group_exit+0x100/0x268 [ 105.965637][ C0] get_signal+0x73c/0x1340 [ 105.966856][ C0] do_notify_resume+0x35c/0x3128 [ 105.968293][ C0] el0_svc+0xf0/0x1e0 [ 105.969402][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 105.970792][ C0] el0t_64_sync+0x1a0/0x1a4 [ 105.972140][ C0] irq event stamp: 2038 [ 105.973267][ C0] hardirqs last enabled at (2037): [] lock_page_memcg+0x110/0x234 [ 105.975995][ C0] hardirqs last disabled at (2038): [] enter_el1_irq_or_nmi+0x10/0x1c [ 105.978701][ C0] softirqs last enabled at (1202): [] local_bh_enable+0x10/0x34 [ 105.981387][ C0] softirqs last disabled at (1200): [] local_bh_disable+0x10/0x34 [ 105.984029][ C0] ---[ end trace ed959f3122165b29 ]--- [ 106.071149][ T4945] loop0: detected capacity change from 0 to 128 [ 106.086230][ T4945] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.088770][ T4945] Bad inode number on dev loop0: 2 is out of range [ 106.090606][ T4945] SysV FS: get root inode failed [ 106.091848][ T4945] oldfs: cannot read superblock [ 106.100358][ T4489] ------------[ cut here ]------------ [ 106.101875][ T4489] VFS: brelse: Trying to free free buffer [ 106.103493][ T4489] WARNING: CPU: 1 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.105927][ T4489] Modules linked in: [ 106.107025][ T4489] CPU: 1 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 106.109689][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 106.112480][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.114672][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 106.116175][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 106.117622][ T4489] sp : ffff80001f7f77c0 [ 106.118752][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe0003685d254 [ 106.121014][ T4489] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 106.123230][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c4148 [ 106.125463][ T4489] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 106.127695][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 106.129971][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.132140][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 106.134437][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.136735][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 106.139010][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 106.141340][ T4489] Call trace: [ 106.142255][ T4489] invalidate_bh_lru+0x128/0x234 [ 106.143771][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 106.145464][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 106.146941][ T4489] invalidate_bh_lrus+0x34/0x40 [ 106.148539][ T4489] blkdev_flush_mapping+0x168/0x31c [ 106.149992][ T4489] blkdev_put+0x490/0x6ac [ 106.151175][ T4489] blkdev_close+0x74/0xb0 [ 106.152412][ T4489] __fput+0x1c0/0x7f8 [ 106.153521][ T4489] ____fput+0x20/0x30 [ 106.154623][ T4489] task_work_run+0x12c/0x1e0 [ 106.155900][ T4489] do_notify_resume+0x24b4/0x3128 [ 106.157287][ T4489] el0_svc+0xf0/0x1e0 [ 106.158433][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 106.159811][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 106.161134][ T4489] irq event stamp: 204688 [ 106.162292][ T4489] hardirqs last enabled at (204687): [] kasan_quarantine_put+0xc4/0x204 [ 106.165235][ T4489] hardirqs last disabled at (204688): [] smp_call_function_many_cond+0xa44/0xeb0 [ 106.168305][ T4489] softirqs last enabled at (203956): [] local_bh_enable+0x10/0x34 [ 106.170920][ T4489] softirqs last disabled at (203954): [] local_bh_disable+0x10/0x34 [ 106.173613][ T4489] ---[ end trace ed959f3122165b2a ]--- [ 106.238169][ T4947] loop0: detected capacity change from 0 to 128 [ 106.259592][ T4947] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.261607][ T4947] Bad inode number on dev loop0: 2 is out of range [ 106.263399][ T4947] SysV FS: get root inode failed [ 106.264779][ T4947] oldfs: cannot read superblock [ 106.275194][ T4489] ------------[ cut here ]------------ [ 106.276763][ T4489] VFS: brelse: Trying to free free buffer [ 106.278405][ T4489] WARNING: CPU: 0 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.280880][ T4489] Modules linked in: [ 106.281987][ T4489] CPU: 0 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 106.284719][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 106.287492][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.289709][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 106.291376][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 106.292854][ T4489] sp : ffff80001f7f77c0 [ 106.293997][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 106.296285][ T4489] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 106.298485][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ddb89230 [ 106.300769][ T4489] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 106.303066][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 106.305348][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.307535][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 106.309790][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.312010][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 106.314257][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 106.316486][ T4489] Call trace: [ 106.317384][ T4489] invalidate_bh_lru+0x128/0x234 [ 106.318761][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 106.320414][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 106.321875][ T4489] invalidate_bh_lrus+0x34/0x40 [ 106.323242][ T4489] blkdev_flush_mapping+0x168/0x31c [ 106.324688][ T4489] blkdev_put+0x490/0x6ac [ 106.325927][ T4489] blkdev_close+0x74/0xb0 [ 106.327161][ T4489] __fput+0x1c0/0x7f8 [ 106.328250][ T4489] ____fput+0x20/0x30 [ 106.329357][ T4489] task_work_run+0x12c/0x1e0 [ 106.330649][ T4489] do_notify_resume+0x24b4/0x3128 [ 106.332124][ T4489] el0_svc+0xf0/0x1e0 [ 106.333235][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 106.334644][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 106.335915][ T4489] irq event stamp: 210896 [ 106.337168][ T4489] hardirqs last enabled at (210895): [] kasan_quarantine_put+0xc4/0x204 [ 106.339907][ T4489] hardirqs last disabled at (210896): [] smp_call_function_many_cond+0xa44/0xeb0 [ 106.342874][ T4489] softirqs last enabled at (209792): [] local_bh_enable+0x10/0x34 [ 106.345547][ T4489] softirqs last disabled at (209790): [] local_bh_disable+0x10/0x34 [ 106.348126][ T4489] ---[ end trace ed959f3122165b2b ]--- [ 106.412600][ T4949] loop0: detected capacity change from 0 to 128 [ 106.440535][ T4949] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.442726][ T4949] Bad inode number on dev loop0: 2 is out of range [ 106.444500][ T4949] SysV FS: get root inode failed [ 106.445963][ T4949] oldfs: cannot read superblock [ 106.457223][ C1] ------------[ cut here ]------------ [ 106.458896][ C1] VFS: brelse: Trying to free free buffer [ 106.460604][ C1] WARNING: CPU: 1 PID: 3642 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.463033][ C1] Modules linked in: [ 106.464094][ C1] CPU: 1 PID: 3642 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 106.466654][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 106.469408][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.471597][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 106.473121][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 106.474623][ C1] sp : ffff800008017de0 [ 106.475793][ C1] x29: ffff800008017de0 x28: ffff0000d6363680 x27: 1fffe0003685d253 [ 106.478017][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 106.480223][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c44e8 [ 106.482391][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 106.484550][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 106.486790][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.488963][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 404f77ffebf05600 [ 106.491138][ C1] x8 : 404f77ffebf05600 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.493386][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 106.495568][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 106.497718][ C1] Call trace: [ 106.498647][ C1] invalidate_bh_lru+0x128/0x234 [ 106.499977][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 106.501580][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 106.503548][ C1] ipi_handler+0x108/0x70c [ 106.504764][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 106.506241][ C1] handle_domain_irq+0x144/0x1fc [ 106.507524][ C1] gic_handle_irq+0x78/0x1c8 [ 106.508780][ C1] call_on_irq_stack+0x24/0x4c [ 106.510112][ C1] do_interrupt_handler+0x6c/0x88 [ 106.511593][ C1] el0_interrupt+0x94/0x25c [ 106.512827][ C1] __el0_irq_handler_common+0x18/0x24 [ 106.514304][ C1] el0t_64_irq_handler+0x10/0x1c [ 106.515634][ C1] el0t_64_irq+0x1a0/0x1a4 [ 106.516837][ C1] irq event stamp: 1252258 [ 106.518004][ C1] hardirqs last enabled at (1252257): [] el0t_64_sync_handler+0xcc/0xe4 [ 106.520820][ C1] hardirqs last disabled at (1252258): [] __el0_irq_handler_common+0x18/0x24 [ 106.523789][ C1] softirqs last enabled at (1252090): [] local_bh_enable+0x10/0x34 [ 106.526464][ C1] softirqs last disabled at (1252088): [] local_bh_disable+0x10/0x34 [ 106.529085][ C1] ---[ end trace ed959f3122165b2c ]--- [ 106.639862][ T4951] loop0: detected capacity change from 0 to 128 [ 106.643706][ T4951] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.645792][ T4951] Bad inode number on dev loop0: 2 is out of range [ 106.651072][ T4951] SysV FS: get root inode failed [ 106.652481][ T4951] oldfs: cannot read superblock [ 106.653973][ C1] ------------[ cut here ]------------ [ 106.655500][ C1] VFS: brelse: Trying to free free buffer [ 106.657190][ C1] WARNING: CPU: 1 PID: 587 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.659678][ C1] Modules linked in: [ 106.660728][ C1] CPU: 1 PID: 587 Comm: kworker/u4:5 Tainted: G W 5.15.181-syzkaller #0 [ 106.663332][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 106.666022][ C1] Workqueue: netns cleanup_net [ 106.667377][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.669525][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 106.671027][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 106.672474][ C1] sp : ffff800008017de0 [ 106.673698][ C1] x29: ffff800008017de0 x28: ffff0000c86e9b40 x27: 1fffe0003685d253 [ 106.675976][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 106.678165][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c4888 [ 106.680419][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 106.682624][ C1] x17: 0000000000010002 x16: ffff8000083007d8 x15: 00000000ffffffff [ 106.684979][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.687139][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : fa715f3f33278500 [ 106.689334][ C1] x8 : fa715f3f33278500 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.691587][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 106.693797][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 106.696119][ C1] Call trace: [ 106.696991][ C1] invalidate_bh_lru+0x128/0x234 [ 106.698293][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 106.699937][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 106.701836][ C1] ipi_handler+0x108/0x70c [ 106.703088][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 106.704605][ C1] handle_domain_irq+0x144/0x1fc [ 106.705978][ C1] gic_handle_irq+0x78/0x1c8 [ 106.707215][ C1] call_on_irq_stack+0x24/0x4c [ 106.708526][ C1] do_interrupt_handler+0x6c/0x88 [ 106.709941][ C1] el1_interrupt+0x30/0x58 [ 106.711140][ C1] el1h_64_irq_handler+0x18/0x24 [ 106.712505][ C1] el1h_64_irq+0x78/0x7c [ 106.713679][ C1] lock_acquire+0x234/0x620 [ 106.714929][ C1] rcu_lock_acquire+0x40/0x4c [ 106.716196][ C1] inet_twsk_purge+0x10c/0x7ac [ 106.717520][ C1] dccp_v4_exit_batch+0x20/0x2c [ 106.718840][ C1] cleanup_net+0x644/0xa98 [ 106.720085][ C1] process_one_work+0x79c/0x1140 [ 106.721385][ C1] worker_thread+0x8f4/0x101c [ 106.722694][ C1] kthread+0x374/0x454 [ 106.723806][ C1] ret_from_fork+0x10/0x20 [ 106.725023][ C1] irq event stamp: 1035174 [ 106.726260][ C1] hardirqs last enabled at (1035173): [] exit_to_kernel_mode+0xe0/0x168 [ 106.729176][ C1] hardirqs last disabled at (1035174): [] enter_el1_irq_or_nmi+0x10/0x1c [ 106.731990][ C1] softirqs last enabled at (1035172): [] handle_softirqs+0xa4c/0xbf0 [ 106.734673][ C1] softirqs last disabled at (1035157): [] __irq_exit_rcu+0x240/0x440 [ 106.737364][ C1] ---[ end trace ed959f3122165b2d ]--- [ 106.846385][ T4953] loop0: detected capacity change from 0 to 128 [ 106.888801][ T4953] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.890979][ T4953] Bad inode number on dev loop0: 2 is out of range [ 106.892860][ T4953] SysV FS: get root inode failed [ 106.894225][ T4953] oldfs: cannot read superblock [ 106.907786][ C0] ------------[ cut here ]------------ [ 106.909395][ C0] VFS: brelse: Trying to free free buffer [ 106.911025][ C0] WARNING: CPU: 0 PID: 587 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.913534][ C0] Modules linked in: [ 106.914592][ C0] CPU: 0 PID: 587 Comm: kworker/u4:5 Tainted: G W 5.15.181-syzkaller #0 [ 106.917357][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 106.920203][ C0] Workqueue: netns cleanup_net [ 106.921514][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.923650][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 106.925047][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 106.926477][ C0] sp : ffff800008007de0 [ 106.927653][ C0] x29: ffff800008007de0 x28: ffff0000c86e9b40 x27: 1fffe00036859053 [ 106.929860][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 106.931999][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ddb895d0 [ 106.934144][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010002 [ 106.936301][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 106.938497][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.940769][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : fa715f3f33278500 [ 106.942913][ C0] x8 : fa715f3f33278500 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.945162][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 106.947381][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 106.949642][ C0] Call trace: [ 106.950600][ C0] invalidate_bh_lru+0x128/0x234 [ 106.951895][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 106.953539][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 106.955379][ C0] ipi_handler+0x108/0x70c [ 106.956567][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 106.958095][ C0] handle_domain_irq+0x144/0x1fc [ 106.959427][ C0] gic_handle_irq+0x78/0x1c8 [ 106.960652][ C0] call_on_irq_stack+0x24/0x4c [ 106.961959][ C0] do_interrupt_handler+0x6c/0x88 [ 106.963293][ C0] el1_interrupt+0x30/0x58 [ 106.964546][ C0] el1h_64_irq_handler+0x18/0x24 [ 106.965884][ C0] el1h_64_irq+0x78/0x7c [ 106.967035][ C0] __rcu_read_lock+0x28/0x84 [ 106.968269][ C0] inet_twsk_purge+0x108/0x7ac [ 106.969560][ C0] dccp_v4_exit_batch+0x20/0x2c [ 106.970872][ C0] cleanup_net+0x644/0xa98 [ 106.972033][ C0] process_one_work+0x79c/0x1140 [ 106.973331][ C0] worker_thread+0x8f4/0x101c [ 106.974591][ C0] kthread+0x374/0x454 [ 106.975735][ C0] ret_from_fork+0x10/0x20 [ 106.976920][ C0] irq event stamp: 1036356 [ 106.978105][ C0] hardirqs last enabled at (1036355): [] exit_to_kernel_mode+0xe0/0x168 [ 106.980893][ C0] hardirqs last disabled at (1036356): [] enter_el1_irq_or_nmi+0x10/0x1c [ 106.983728][ C0] softirqs last enabled at (1036354): [] handle_softirqs+0xa4c/0xbf0 [ 106.986378][ C0] softirqs last disabled at (1036345): [] __irq_exit_rcu+0x240/0x440 [ 106.989108][ C0] ---[ end trace ed959f3122165b2e ]--- [ 107.138553][ T4955] loop0: detected capacity change from 0 to 128 [ 107.171317][ T4955] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.173437][ T4955] Bad inode number on dev loop0: 2 is out of range [ 107.175059][ T4955] SysV FS: get root inode failed [ 107.183672][ T4955] oldfs: cannot read superblock [ 107.185142][ T4955] ------------[ cut here ]------------ [ 107.186664][ T4955] VFS: brelse: Trying to free free buffer [ 107.188318][ T4955] WARNING: CPU: 1 PID: 4955 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.190832][ T4955] Modules linked in: [ 107.191856][ T4955] CPU: 1 PID: 4955 Comm: syz.0.56 Tainted: G W 5.15.181-syzkaller #0 [ 107.194377][ T4955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 107.197186][ T4955] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.199283][ T4955] pc : invalidate_bh_lru+0x128/0x234 [ 107.200750][ T4955] lr : invalidate_bh_lru+0x128/0x234 [ 107.202156][ T4955] sp : ffff80001fcb76e0 [ 107.203318][ T4955] x29: ffff80001fcb76e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 107.205552][ T4955] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 107.207768][ T4955] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c4c28 [ 107.210043][ T4955] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 107.212240][ T4955] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 107.214445][ T4955] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.216637][ T4955] x11: 0000000000000002 x10: 0000000000000000 x9 : 56522b22bc12b200 [ 107.218900][ T4955] x8 : 56522b22bc12b200 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.221080][ T4955] x5 : ffff80001fcb6fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 107.223238][ T4955] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 107.225367][ T4955] Call trace: [ 107.226323][ T4955] invalidate_bh_lru+0x128/0x234 [ 107.227686][ T4955] smp_call_function_many_cond+0xa50/0xeb0 [ 107.229265][ T4955] on_each_cpu_cond_mask+0x5c/0xc4 [ 107.230735][ T4955] invalidate_bh_lrus+0x34/0x40 [ 107.231904][ T4955] blkdev_flush_mapping+0x168/0x31c [ 107.233163][ T4955] blkdev_put+0x490/0x6ac [ 107.234224][ T4955] kill_block_super+0x98/0xdc [ 107.235513][ T4955] deactivate_locked_super+0xb8/0x13c [ 107.237126][ T4955] mount_bdev+0x284/0x358 [ 107.238342][ T4955] sysv_mount+0x44/0x58 [ 107.239504][ T4955] legacy_get_tree+0xd4/0x16c [ 107.240808][ T4955] vfs_get_tree+0x90/0x274 [ 107.242052][ T4955] do_new_mount+0x228/0x810 [ 107.243301][ T4955] path_mount+0x5b4/0x1000 [ 107.244471][ T4955] __arm64_sys_mount+0x514/0x5e4 [ 107.245823][ T4955] invoke_syscall+0x98/0x2b8 [ 107.247070][ T4955] el0_svc_common+0x138/0x258 [ 107.248388][ T4955] do_el0_svc+0x58/0x14c [ 107.249570][ T4955] el0_svc+0x78/0x1e0 [ 107.250649][ T4955] el0t_64_sync_handler+0xcc/0xe4 [ 107.252028][ T4955] el0t_64_sync+0x1a0/0x1a4 [ 107.253277][ T4955] irq event stamp: 1114 [ 107.254383][ T4955] hardirqs last enabled at (1113): [] kasan_quarantine_put+0xc4/0x204 [ 107.257124][ T4955] hardirqs last disabled at (1114): [] smp_call_function_many_cond+0xa44/0xeb0 [ 107.260015][ T4955] softirqs last enabled at (1096): [] handle_softirqs+0xa4c/0xbf0 [ 107.262690][ T4955] softirqs last disabled at (1083): [] __irq_exit_rcu+0x240/0x440 [ 107.265286][ T4955] ---[ end trace ed959f3122165b2f ]--- [ 107.369383][ T4957] loop0: detected capacity change from 0 to 128 [ 107.387597][ T4957] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.389666][ T4957] Bad inode number on dev loop0: 2 is out of range [ 107.391532][ T4957] SysV FS: get root inode failed [ 107.392844][ T4957] oldfs: cannot read superblock [ 107.404336][ C1] ------------[ cut here ]------------ [ 107.405855][ C1] VFS: brelse: Trying to free free buffer [ 107.407427][ C1] WARNING: CPU: 1 PID: 4643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.409875][ C1] Modules linked in: [ 107.410972][ C1] CPU: 1 PID: 4643 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 107.413598][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 107.416417][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.418545][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 107.419946][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 107.421404][ C1] sp : ffff800008017de0 [ 107.422548][ C1] x29: ffff800008017de0 x28: ffff0000d53051c0 x27: 1fffe0003685d253 [ 107.424759][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 107.426887][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c0060 [ 107.429052][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 107.431164][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 107.433388][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.435516][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 4c8b215115f38700 [ 107.437678][ C1] x8 : 4c8b215115f38700 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.439851][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 107.441940][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 107.444117][ C1] Call trace: [ 107.445022][ C1] invalidate_bh_lru+0x128/0x234 [ 107.446334][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 107.447997][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 107.449912][ C1] ipi_handler+0x108/0x70c [ 107.451153][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 107.452717][ C1] handle_domain_irq+0x144/0x1fc [ 107.454079][ C1] gic_handle_irq+0x78/0x1c8 [ 107.455339][ C1] call_on_irq_stack+0x24/0x4c [ 107.456658][ C1] do_interrupt_handler+0x6c/0x88 [ 107.457981][ C1] el1_interrupt+0x30/0x58 [ 107.459231][ C1] el1h_64_irq_handler+0x18/0x24 [ 107.460583][ C1] el1h_64_irq+0x78/0x7c [ 107.461714][ C1] hrtimer_try_to_cancel+0x164/0x3f0 [ 107.463090][ C1] do_nanosleep+0x240/0x654 [ 107.464362][ C1] hrtimer_nanosleep+0x178/0x2e4 [ 107.465661][ C1] common_nsleep+0xa0/0xb8 [ 107.466851][ C1] __arm64_sys_clock_nanosleep+0x328/0x364 [ 107.468364][ C1] invoke_syscall+0x98/0x2b8 [ 107.469629][ C1] el0_svc_common+0x138/0x258 [ 107.470891][ C1] do_el0_svc+0x58/0x14c [ 107.472074][ C1] el0_svc+0x78/0x1e0 [ 107.473132][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 107.474464][ C1] el0t_64_sync+0x1a0/0x1a4 [ 107.475683][ C1] irq event stamp: 303374 [ 107.476833][ C1] hardirqs last enabled at (303373): [] finish_lock_switch+0xb0/0x1c4 [ 107.479571][ C1] hardirqs last disabled at (303374): [] enter_el1_irq_or_nmi+0x10/0x1c [ 107.482177][ C1] softirqs last enabled at (303354): [] local_bh_enable+0x10/0x34 [ 107.484771][ C1] softirqs last disabled at (303352): [] local_bh_disable+0x10/0x34 [ 107.487386][ C1] ---[ end trace ed959f3122165b30 ]--- [ 107.572613][ T4959] loop0: detected capacity change from 0 to 128 [ 107.576244][ T4959] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.579500][ T4959] Bad inode number on dev loop0: 2 is out of range [ 107.581677][ T4959] SysV FS: get root inode failed [ 107.583034][ T4959] oldfs: cannot read superblock [ 107.588372][ T4489] ------------[ cut here ]------------ [ 107.589967][ T4489] VFS: brelse: Trying to free free buffer [ 107.591634][ T4489] WARNING: CPU: 0 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.594022][ T4489] Modules linked in: [ 107.595101][ T4489] CPU: 0 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 107.597566][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 107.600197][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.602368][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 107.603821][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 107.605266][ T4489] sp : ffff80001f7f77c0 [ 107.606385][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 107.608571][ T4489] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 107.610947][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ddb89970 [ 107.613195][ T4489] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 107.615628][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 107.617796][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.620018][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 107.622296][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.624491][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 107.626759][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 107.628939][ T4489] Call trace: [ 107.629871][ T4489] invalidate_bh_lru+0x128/0x234 [ 107.631162][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 107.632676][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 107.634086][ T4489] invalidate_bh_lrus+0x34/0x40 [ 107.635403][ T4489] blkdev_flush_mapping+0x168/0x31c [ 107.636753][ T4489] blkdev_put+0x490/0x6ac [ 107.637931][ T4489] blkdev_close+0x74/0xb0 [ 107.639169][ T4489] __fput+0x1c0/0x7f8 [ 107.640377][ T4489] ____fput+0x20/0x30 [ 107.641478][ T4489] task_work_run+0x12c/0x1e0 [ 107.642759][ T4489] do_notify_resume+0x24b4/0x3128 [ 107.644089][ T4489] el0_svc+0xf0/0x1e0 [ 107.645172][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 107.646568][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 107.647782][ T4489] irq event stamp: 245170 [ 107.648947][ T4489] hardirqs last enabled at (245169): [] kasan_quarantine_put+0xc4/0x204 [ 107.651677][ T4489] hardirqs last disabled at (245170): [] smp_call_function_many_cond+0xa44/0xeb0 [ 107.654542][ T4489] softirqs last enabled at (244856): [] handle_softirqs+0xa4c/0xbf0 [ 107.657136][ T4489] softirqs last disabled at (244835): [] __irq_exit_rcu+0x240/0x440 [ 107.659746][ T4489] ---[ end trace ed959f3122165b31 ]--- [ 107.702386][ T4961] loop0: detected capacity change from 0 to 128 [ 107.741126][ T4961] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.743179][ T4961] Bad inode number on dev loop0: 2 is out of range [ 107.745008][ T4961] SysV FS: get root inode failed [ 107.747186][ T4961] oldfs: cannot read superblock [ 107.751055][ C0] ------------[ cut here ]------------ [ 107.752619][ C0] VFS: brelse: Trying to free free buffer [ 107.754281][ C0] WARNING: CPU: 0 PID: 3642 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.756731][ C0] Modules linked in: [ 107.757804][ C0] CPU: 0 PID: 3642 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 107.760300][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 107.763096][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.765270][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 107.766745][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 107.768250][ C0] sp : ffff800008007de0 [ 107.769354][ C0] x29: ffff800008007de0 x28: ffff0000d6363680 x27: 1fffe00036859053 [ 107.771624][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 107.773814][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ddb89d10 [ 107.776021][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010003 [ 107.778260][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 107.780577][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.782916][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 404f77ffebf05600 [ 107.785245][ C0] x8 : 404f77ffebf05600 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.787580][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 107.789888][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 107.792183][ C0] Call trace: [ 107.793128][ C0] invalidate_bh_lru+0x128/0x234 [ 107.794513][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 107.796228][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 107.798232][ C0] ipi_handler+0x108/0x70c [ 107.799409][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 107.800894][ C0] handle_domain_irq+0x144/0x1fc [ 107.802254][ C0] gic_handle_irq+0x78/0x1c8 [ 107.803556][ C0] call_on_irq_stack+0x24/0x4c [ 107.804886][ C0] do_interrupt_handler+0x6c/0x88 [ 107.806334][ C0] el1_interrupt+0x30/0x58 [ 107.807614][ C0] el1h_64_irq_handler+0x18/0x24 [ 107.809022][ C0] el1h_64_irq+0x78/0x7c [ 107.810280][ C0] __tlb_remove_page_size+0x0/0x388 [ 107.811829][ C0] unmap_single_vma+0x13c/0x1e4 [ 107.813256][ C0] unmap_vmas+0x104/0x200 [ 107.814505][ C0] unmap_region+0x1b8/0x300 [ 107.815751][ C0] __do_munmap+0x870/0xc04 [ 107.817040][ C0] __arm64_sys_brk+0x38c/0x5ac [ 107.818368][ C0] invoke_syscall+0x98/0x2b8 [ 107.819638][ C0] el0_svc_common+0x138/0x258 [ 107.821016][ C0] do_el0_svc+0x58/0x14c [ 107.822193][ C0] el0_svc+0x78/0x1e0 [ 107.823447][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 107.824874][ C0] el0t_64_sync+0x1a0/0x1a4 [ 107.826186][ C0] irq event stamp: 1283562 [ 107.827464][ C0] hardirqs last enabled at (1283561): [] lock_page_memcg+0x110/0x234 [ 107.830344][ C0] hardirqs last disabled at (1283562): [] enter_el1_irq_or_nmi+0x10/0x1c [ 107.833219][ C0] softirqs last enabled at (1283118): [] local_bh_enable+0x10/0x34 [ 107.835952][ C0] softirqs last disabled at (1283116): [] local_bh_disable+0x10/0x34 [ 107.838624][ C0] ---[ end trace ed959f3122165b32 ]--- [ 107.926155][ T4963] loop0: detected capacity change from 0 to 128 [ 107.959821][ T4963] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.962720][ T4963] Bad inode number on dev loop0: 2 is out of range [ 107.964817][ T4963] SysV FS: get root inode failed [ 107.966188][ T4963] oldfs: cannot read superblock [ 107.987470][ T4489] ------------[ cut here ]------------ [ 107.989087][ T4489] VFS: brelse: Trying to free free buffer [ 107.990780][ T4489] WARNING: CPU: 0 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.993223][ T4489] Modules linked in: [ 107.994353][ T4489] CPU: 0 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 107.997042][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 107.999962][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.002123][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 108.003622][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 108.005070][ T4489] sp : ffff80001f7f77c0 [ 108.006234][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 108.008477][ T4489] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 108.010692][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9827a0 [ 108.012939][ T4489] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 108.015101][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.017302][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.019576][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 108.021856][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.024105][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.026433][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.028709][ T4489] Call trace: [ 108.029652][ T4489] invalidate_bh_lru+0x128/0x234 [ 108.031037][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 108.032725][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.034208][ T4489] invalidate_bh_lrus+0x34/0x40 [ 108.035560][ T4489] blkdev_flush_mapping+0x168/0x31c [ 108.037052][ T4489] blkdev_put+0x490/0x6ac [ 108.038241][ T4489] blkdev_close+0x74/0xb0 [ 108.039457][ T4489] __fput+0x1c0/0x7f8 [ 108.040515][ T4489] ____fput+0x20/0x30 [ 108.041654][ T4489] task_work_run+0x12c/0x1e0 [ 108.042934][ T4489] do_notify_resume+0x24b4/0x3128 [ 108.044301][ T4489] el0_svc+0xf0/0x1e0 [ 108.045436][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 108.046804][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 108.048025][ T4489] irq event stamp: 259908 [ 108.049260][ T4489] hardirqs last enabled at (259907): [] kasan_quarantine_put+0xc4/0x204 [ 108.052215][ T4489] hardirqs last disabled at (259908): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.055295][ T4489] softirqs last enabled at (259894): [] local_bh_enable+0x10/0x34 [ 108.058124][ T4489] softirqs last disabled at (259892): [] local_bh_disable+0x10/0x34 [ 108.060788][ T4489] ---[ end trace ed959f3122165b33 ]--- [ 108.111993][ T4965] loop0: detected capacity change from 0 to 128 [ 108.126722][ T4965] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.128730][ T4965] Bad inode number on dev loop0: 2 is out of range [ 108.130564][ T4965] SysV FS: get root inode failed [ 108.131934][ T4965] oldfs: cannot read superblock [ 108.138456][ T4489] ------------[ cut here ]------------ [ 108.140072][ T4489] VFS: brelse: Trying to free free buffer [ 108.141665][ T4489] WARNING: CPU: 0 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.144229][ T4489] Modules linked in: [ 108.145324][ T4489] CPU: 0 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 108.147894][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.150725][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.152987][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 108.154424][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 108.155914][ T4489] sp : ffff80001f7f77c0 [ 108.157077][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 108.159321][ T4489] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 108.161553][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd982b40 [ 108.163771][ T4489] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 108.165937][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.168183][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.170408][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 108.172684][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.175013][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.177166][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.179405][ T4489] Call trace: [ 108.180269][ T4489] invalidate_bh_lru+0x128/0x234 [ 108.181674][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 108.183289][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.184687][ T4489] invalidate_bh_lrus+0x34/0x40 [ 108.186104][ T4489] blkdev_flush_mapping+0x168/0x31c [ 108.187563][ T4489] blkdev_put+0x490/0x6ac [ 108.188780][ T4489] blkdev_close+0x74/0xb0 [ 108.189946][ T4489] __fput+0x1c0/0x7f8 [ 108.191050][ T4489] ____fput+0x20/0x30 [ 108.192126][ T4489] task_work_run+0x12c/0x1e0 [ 108.193377][ T4489] do_notify_resume+0x24b4/0x3128 [ 108.194769][ T4489] el0_svc+0xf0/0x1e0 [ 108.195874][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 108.197246][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 108.198451][ T4489] irq event stamp: 266826 [ 108.199636][ T4489] hardirqs last enabled at (266825): [] kasan_quarantine_put+0xc4/0x204 [ 108.202333][ T4489] hardirqs last disabled at (266826): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.205241][ T4489] softirqs last enabled at (266328): [] local_bh_enable+0x10/0x34 [ 108.207811][ T4489] softirqs last disabled at (266326): [] local_bh_disable+0x10/0x34 [ 108.210354][ T4489] ---[ end trace ed959f3122165b34 ]--- [ 108.259964][ T4967] loop0: detected capacity change from 0 to 128 [ 108.268650][ T4967] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.270693][ T4967] Bad inode number on dev loop0: 2 is out of range [ 108.272427][ T4967] SysV FS: get root inode failed [ 108.273726][ T4967] oldfs: cannot read superblock [ 108.275041][ T4967] ------------[ cut here ]------------ [ 108.276552][ T4967] VFS: brelse: Trying to free free buffer [ 108.278241][ T4967] WARNING: CPU: 0 PID: 4967 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.280649][ T4967] Modules linked in: [ 108.281750][ T4967] CPU: 0 PID: 4967 Comm: syz.0.62 Tainted: G W 5.15.181-syzkaller #0 [ 108.284299][ T4967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.287024][ T4967] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.289126][ T4967] pc : invalidate_bh_lru+0x128/0x234 [ 108.290620][ T4967] lr : invalidate_bh_lru+0x128/0x234 [ 108.292074][ T4967] sp : ffff80001fd176e0 [ 108.293193][ T4967] x29: ffff80001fd176e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 108.295352][ T4967] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 108.297665][ T4967] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd982ee0 [ 108.299980][ T4967] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 108.302174][ T4967] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.304388][ T4967] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.306591][ T4967] x11: 0000000000000002 x10: 0000000000000000 x9 : 5e4666a0828f8d00 [ 108.308805][ T4967] x8 : 5e4666a0828f8d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.310994][ T4967] x5 : ffff80001fd16fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.313373][ T4967] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.315581][ T4967] Call trace: [ 108.316544][ T4967] invalidate_bh_lru+0x128/0x234 [ 108.317883][ T4967] smp_call_function_many_cond+0xa50/0xeb0 [ 108.319503][ T4967] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.320991][ T4967] invalidate_bh_lrus+0x34/0x40 [ 108.322342][ T4967] blkdev_flush_mapping+0x168/0x31c [ 108.323837][ T4967] blkdev_put+0x490/0x6ac [ 108.325073][ T4967] kill_block_super+0x98/0xdc [ 108.326420][ T4967] deactivate_locked_super+0xb8/0x13c [ 108.327968][ T4967] mount_bdev+0x284/0x358 [ 108.329143][ T4967] sysv_mount+0x44/0x58 [ 108.330327][ T4967] legacy_get_tree+0xd4/0x16c [ 108.331628][ T4967] vfs_get_tree+0x90/0x274 [ 108.332847][ T4967] do_new_mount+0x228/0x810 [ 108.334136][ T4967] path_mount+0x5b4/0x1000 [ 108.335379][ T4967] __arm64_sys_mount+0x514/0x5e4 [ 108.336806][ T4967] invoke_syscall+0x98/0x2b8 [ 108.338060][ T4967] el0_svc_common+0x138/0x258 [ 108.339303][ T4967] do_el0_svc+0x58/0x14c [ 108.340439][ T4967] el0_svc+0x78/0x1e0 [ 108.341557][ T4967] el0t_64_sync_handler+0xcc/0xe4 [ 108.342961][ T4967] el0t_64_sync+0x1a0/0x1a4 [ 108.344219][ T4967] irq event stamp: 1046 [ 108.345400][ T4967] hardirqs last enabled at (1045): [] kasan_quarantine_put+0xc4/0x204 [ 108.348140][ T4967] hardirqs last disabled at (1046): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.351020][ T4967] softirqs last enabled at (816): [] local_bh_enable+0x10/0x34 [ 108.353593][ T4967] softirqs last disabled at (814): [] local_bh_disable+0x10/0x34 [ 108.356212][ T4967] ---[ end trace ed959f3122165b35 ]--- [ 108.472207][ T4969] loop0: detected capacity change from 0 to 128 [ 108.476159][ T4969] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.478827][ T4969] Bad inode number on dev loop0: 2 is out of range [ 108.480587][ T4969] SysV FS: get root inode failed [ 108.481854][ T4969] oldfs: cannot read superblock [ 108.483316][ C1] ------------[ cut here ]------------ [ 108.484796][ C1] VFS: brelse: Trying to free free buffer [ 108.486494][ C1] WARNING: CPU: 1 PID: 4969 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.488878][ C1] Modules linked in: [ 108.489924][ C1] CPU: 1 PID: 4969 Comm: syz.0.63 Tainted: G W 5.15.181-syzkaller #0 [ 108.492487][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.495261][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.497380][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 108.498812][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 108.500303][ C1] sp : ffff800008017de0 [ 108.501430][ C1] x29: ffff800008017de0 x28: ffff0000c7b5b680 x27: 1fffe0003685d253 [ 108.503640][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 108.505833][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c0400 [ 108.508021][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010003 [ 108.510166][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.512353][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.514513][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 859ba1f1dd675c00 [ 108.516763][ C1] x8 : 859ba1f1dd675c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.518990][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.521198][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 108.523425][ C1] Call trace: [ 108.524339][ C1] invalidate_bh_lru+0x128/0x234 [ 108.525644][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 108.527242][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.529110][ C1] ipi_handler+0x108/0x70c [ 108.530257][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 108.531780][ C1] handle_domain_irq+0x144/0x1fc [ 108.533103][ C1] gic_handle_irq+0x78/0x1c8 [ 108.534329][ C1] call_on_irq_stack+0x24/0x4c [ 108.535586][ C1] do_interrupt_handler+0x6c/0x88 [ 108.536932][ C1] el1_interrupt+0x30/0x58 [ 108.538132][ C1] el1h_64_irq_handler+0x18/0x24 [ 108.539467][ C1] el1h_64_irq+0x78/0x7c [ 108.540592][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 108.542168][ C1] debug_check_no_obj_freed+0x450/0x46c [ 108.543682][ C1] slab_free_freelist_hook+0x9c/0x1e8 [ 108.545112][ C1] kfree+0x170/0x40c [ 108.546179][ C1] put_fs_context+0x5cc/0x7e4 [ 108.547422][ C1] do_new_mount+0x2e0/0x810 [ 108.548732][ C1] path_mount+0x5b4/0x1000 [ 108.549974][ C1] __arm64_sys_mount+0x514/0x5e4 [ 108.551391][ C1] invoke_syscall+0x98/0x2b8 [ 108.552664][ C1] el0_svc_common+0x138/0x258 [ 108.554019][ C1] do_el0_svc+0x58/0x14c [ 108.555193][ C1] el0_svc+0x78/0x1e0 [ 108.556270][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 108.557673][ C1] el0t_64_sync+0x1a0/0x1a4 [ 108.558954][ C1] irq event stamp: 1118 [ 108.560077][ C1] hardirqs last enabled at (1117): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 108.562939][ C1] hardirqs last disabled at (1118): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.565589][ C1] softirqs last enabled at (1020): [] handle_softirqs+0xa4c/0xbf0 [ 108.568195][ C1] softirqs last disabled at (997): [] __irq_exit_rcu+0x240/0x440 [ 108.570758][ C1] ---[ end trace ed959f3122165b36 ]--- [ 108.665347][ T4971] loop0: detected capacity change from 0 to 128 [ 108.671500][ T4971] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.673559][ T4971] Bad inode number on dev loop0: 2 is out of range [ 108.675236][ T4971] SysV FS: get root inode failed [ 108.677841][ T4971] oldfs: cannot read superblock [ 108.684329][ T4971] ------------[ cut here ]------------ [ 108.685868][ T4971] VFS: brelse: Trying to free free buffer [ 108.687534][ T4971] WARNING: CPU: 0 PID: 4971 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.690004][ T4971] Modules linked in: [ 108.691037][ T4971] CPU: 0 PID: 4971 Comm: syz.0.64 Tainted: G W 5.15.181-syzkaller #0 [ 108.693608][ T4971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.696360][ T4971] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.698579][ T4971] pc : invalidate_bh_lru+0x128/0x234 [ 108.700117][ T4971] lr : invalidate_bh_lru+0x128/0x234 [ 108.701543][ T4971] sp : ffff80001fca77c0 [ 108.702606][ T4971] x29: ffff80001fca77c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 108.704857][ T4971] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 108.706998][ T4971] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd97e318 [ 108.709144][ T4971] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 108.711365][ T4971] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.713448][ T4971] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.715653][ T4971] x11: 0000000000000002 x10: 0000000000000000 x9 : ddfbf4f04ae9b200 [ 108.717883][ T4971] x8 : ddfbf4f04ae9b200 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.720018][ T4971] x5 : ffff80001fca70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.722182][ T4971] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.724333][ T4971] Call trace: [ 108.725196][ T4971] invalidate_bh_lru+0x128/0x234 [ 108.726541][ T4971] smp_call_function_many_cond+0xa50/0xeb0 [ 108.728127][ T4971] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.729528][ T4971] invalidate_bh_lrus+0x34/0x40 [ 108.730804][ T4971] blkdev_flush_mapping+0x168/0x31c [ 108.732183][ T4971] blkdev_put+0x490/0x6ac [ 108.733322][ T4971] blkdev_close+0x74/0xb0 [ 108.734438][ T4971] __fput+0x1c0/0x7f8 [ 108.735450][ T4971] ____fput+0x20/0x30 [ 108.736479][ T4971] task_work_run+0x12c/0x1e0 [ 108.737734][ T4971] do_notify_resume+0x24b4/0x3128 [ 108.739106][ T4971] el0_svc+0xf0/0x1e0 [ 108.740293][ T4971] el0t_64_sync_handler+0xcc/0xe4 [ 108.741693][ T4971] el0t_64_sync+0x1a0/0x1a4 [ 108.742903][ T4971] irq event stamp: 1470 [ 108.744067][ T4971] hardirqs last enabled at (1469): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 108.746827][ T4971] hardirqs last disabled at (1470): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.749777][ T4971] softirqs last enabled at (1452): [] local_bh_enable+0x10/0x34 [ 108.752366][ T4971] softirqs last disabled at (1450): [] local_bh_disable+0x10/0x34 [ 108.754889][ T4971] ---[ end trace ed959f3122165b37 ]--- [ 108.833701][ T4973] loop0: detected capacity change from 0 to 128 [ 108.837889][ T4973] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.839924][ T4973] Bad inode number on dev loop0: 2 is out of range [ 108.841655][ T4973] SysV FS: get root inode failed [ 108.843008][ T4973] oldfs: cannot read superblock [ 108.859259][ T4489] ------------[ cut here ]------------ [ 108.860820][ T4489] VFS: brelse: Trying to free free buffer [ 108.862444][ T4489] WARNING: CPU: 1 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.864848][ T4489] Modules linked in: [ 108.865904][ T4489] CPU: 1 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 108.868308][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 108.871054][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.873178][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 108.874644][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 108.876111][ T4489] sp : ffff80001f7f77c0 [ 108.877262][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 108.879574][ T4489] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 108.881829][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c07a0 [ 108.884003][ T4489] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 108.886207][ T4489] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 108.888350][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.890545][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 108.892676][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.894858][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 108.897092][ T4489] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.899656][ T4489] Call trace: [ 108.900534][ T4489] invalidate_bh_lru+0x128/0x234 [ 108.901940][ T4489] smp_call_function_many_cond+0xa50/0xeb0 [ 108.903579][ T4489] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.905056][ T4489] invalidate_bh_lrus+0x34/0x40 [ 108.906384][ T4489] blkdev_flush_mapping+0x168/0x31c [ 108.907888][ T4489] blkdev_put+0x490/0x6ac [ 108.909119][ T4489] blkdev_close+0x74/0xb0 [ 108.910286][ T4489] __fput+0x1c0/0x7f8 [ 108.911365][ T4489] ____fput+0x20/0x30 [ 108.912436][ T4489] task_work_run+0x12c/0x1e0 [ 108.913711][ T4489] do_notify_resume+0x24b4/0x3128 [ 108.915051][ T4489] el0_svc+0xf0/0x1e0 [ 108.916194][ T4489] el0t_64_sync_handler+0xcc/0xe4 [ 108.917555][ T4489] el0t_64_sync+0x1a0/0x1a4 [ 108.918723][ T4489] irq event stamp: 296502 [ 108.919937][ T4489] hardirqs last enabled at (296501): [] kasan_quarantine_put+0xc4/0x204 [ 108.922757][ T4489] hardirqs last disabled at (296502): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.925738][ T4489] softirqs last enabled at (295772): [] handle_softirqs+0xa4c/0xbf0 [ 108.928324][ T4489] softirqs last disabled at (295185): [] __irq_exit_rcu+0x240/0x440 [ 108.930969][ T4489] ---[ end trace ed959f3122165b38 ]--- [ 108.981473][ T4975] loop0: detected capacity change from 0 to 128 [ 108.987432][ T4975] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.989657][ T4975] Bad inode number on dev loop0: 2 is out of range [ 108.991492][ T4975] SysV FS: get root inode failed [ 108.992774][ T4975] oldfs: cannot read superblock [ 109.001776][ C1] ------------[ cut here ]------------ [ 109.003385][ C1] VFS: brelse: Trying to free free buffer [ 109.005041][ C1] WARNING: CPU: 1 PID: 4557 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.007549][ C1] Modules linked in: [ 109.008626][ C1] CPU: 1 PID: 4557 Comm: kworker/1:11 Tainted: G W 5.15.181-syzkaller #0 [ 109.011356][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 109.014170][ C1] Workqueue: rcu_gp process_srcu [ 109.015522][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.017727][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 109.019262][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 109.020776][ C1] sp : ffff800008017de0 [ 109.021912][ C1] x29: ffff800008017de0 x28: ffff0000d4b28000 x27: 1fffe0003685d253 [ 109.024148][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 109.026344][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c0b40 [ 109.028595][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 109.030791][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 109.033029][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.035275][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 765aec2a32aa0f00 [ 109.037494][ C1] x8 : 765aec2a32aa0f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.039681][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 109.042017][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 109.044232][ C1] Call trace: [ 109.045134][ C1] invalidate_bh_lru+0x128/0x234 [ 109.046477][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 109.048205][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 109.050179][ C1] ipi_handler+0x108/0x70c [ 109.051415][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 109.052911][ C1] handle_domain_irq+0x144/0x1fc [ 109.054229][ C1] gic_handle_irq+0x78/0x1c8 [ 109.055484][ C1] call_on_irq_stack+0x24/0x4c [ 109.056785][ C1] do_interrupt_handler+0x6c/0x88 [ 109.058182][ C1] el1_interrupt+0x30/0x58 [ 109.059431][ C1] el1h_64_irq_handler+0x18/0x24 [ 109.060826][ C1] el1h_64_irq+0x78/0x7c [ 109.061958][ C1] __sanitizer_cov_trace_pc+0xa0/0xac [ 109.063445][ C1] __const_udelay+0x1ac/0x1d8 [ 109.064717][ C1] try_check_zero+0x2cc/0x354 [ 109.065968][ C1] process_srcu+0x170/0xc30 [ 109.067230][ C1] process_one_work+0x79c/0x1140 [ 109.068553][ C1] worker_thread+0x8f4/0x101c [ 109.069843][ C1] kthread+0x374/0x454 [ 109.070976][ C1] ret_from_fork+0x10/0x20 [ 109.072178][ C1] irq event stamp: 25708 [ 109.073355][ C1] hardirqs last enabled at (25707): [] _raw_spin_unlock_irq+0x98/0x128 [ 109.076129][ C1] hardirqs last disabled at (25708): [] enter_el1_irq_or_nmi+0x10/0x1c [ 109.078789][ C1] softirqs last enabled at (24400): [] handle_softirqs+0xa4c/0xbf0 [ 109.081402][ C1] softirqs last disabled at (24375): [] do_softirq+0xfc/0x1b0 [ 109.083899][ C1] ---[ end trace ed959f3122165b39 ]--- [ 109.130333][ T4977] loop0: detected capacity change from 0 to 128 [ 109.189115][ T4977] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.191337][ T4977] Bad inode number on dev loop0: 2 is out of range [ 109.193112][ T4977] SysV FS: get root inode failed [ 109.194623][ T4977] oldfs: cannot read superblock [ 109.196051][ C0] ------------[ cut here ]------------ [ 109.197584][ C0] VFS: brelse: Trying to free free buffer [ 109.199349][ C0] WARNING: CPU: 0 PID: 3642 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.201838][ C0] Modules linked in: [ 109.202973][ C0] CPU: 0 PID: 3642 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 109.205536][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 109.208267][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.210413][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 109.211872][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 109.213303][ C0] sp : ffff800008007de0 [ 109.214393][ C0] x29: ffff800008007de0 x28: ffff0000d6363680 x27: 1fffe00036859053 [ 109.216614][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 109.218823][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd97e6b8 [ 109.221083][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010002 [ 109.223298][ C0] x17: 0000000000010002 x16: ffff8000083007d8 x15: 00000000ffffffff [ 109.225518][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.227742][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 404f77ffebf05600 [ 109.230087][ C0] x8 : 404f77ffebf05600 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.232318][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 109.234663][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 109.236909][ C0] Call trace: [ 109.237808][ C0] invalidate_bh_lru+0x128/0x234 [ 109.239226][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 109.240938][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 109.242857][ C0] ipi_handler+0x108/0x70c [ 109.244072][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 109.245582][ C0] handle_domain_irq+0x144/0x1fc [ 109.246935][ C0] gic_handle_irq+0x78/0x1c8 [ 109.248215][ C0] call_on_irq_stack+0x24/0x4c [ 109.249605][ C0] do_interrupt_handler+0x6c/0x88 [ 109.250934][ C0] el1_interrupt+0x30/0x58 [ 109.252128][ C0] el1h_64_irq_handler+0x18/0x24 [ 109.253547][ C0] el1h_64_irq+0x78/0x7c [ 109.254718][ C0] tomoyo_check_path_acl+0xa4/0x1c8 [ 109.256117][ C0] tomoyo_check_acl+0x11c/0x378 [ 109.257418][ C0] tomoyo_path_permission+0x164/0x310 [ 109.258906][ C0] tomoyo_path_perm+0x328/0x440 [ 109.260177][ C0] tomoyo_inode_getattr+0x28/0x38 [ 109.261519][ C0] security_inode_getattr+0xd8/0x124 [ 109.262999][ C0] vfs_statx+0x118/0x458 [ 109.264148][ C0] __arm64_sys_newfstatat+0x10c/0x190 [ 109.265688][ C0] invoke_syscall+0x98/0x2b8 [ 109.266980][ C0] el0_svc_common+0x138/0x258 [ 109.268226][ C0] do_el0_svc+0x58/0x14c [ 109.269428][ C0] el0_svc+0x78/0x1e0 [ 109.270563][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 109.272003][ C0] el0t_64_sync+0x1a0/0x1a4 [ 109.273215][ C0] irq event stamp: 1321592 [ 109.274427][ C0] hardirqs last enabled at (1321591): [] kasan_quarantine_put+0xc4/0x204 [ 109.277275][ C0] hardirqs last disabled at (1321592): [] enter_el1_irq_or_nmi+0x10/0x1c [ 109.280027][ C0] softirqs last enabled at (1319164): [] local_bh_enable+0x10/0x34 [ 109.282690][ C0] softirqs last disabled at (1319162): [] local_bh_disable+0x10/0x34 [ 109.285411][ C0] ---[ end trace ed959f3122165b3a ]--- [ 109.388191][ T4979] loop0: detected capacity change from 0 to 128 [ 109.392229][ T4979] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.394308][ T4979] Bad inode number on dev loop0: 2 is out of range [ 109.396041][ T4979] SysV FS: get root inode failed [ 109.399163][ T4979] oldfs: cannot read superblock [ 109.403393][ T4489] ------------[ cut here ]------------ [ 109.404968][ T4489] VFS: brelse: Trying to free free buffer [ 109.406547][ T4489] WARNING: CPU: 1 PID: 4489 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.408992][ T4489] Modules linked in: [ 109.410068][ T4489] CPU: 1 PID: 4489 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 109.412498][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 109.415292][ T4489] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.417412][ T4489] pc : invalidate_bh_lru+0x128/0x234 [ 109.418824][ T4489] lr : invalidate_bh_lru+0x128/0x234 [ 109.420236][ T4489] sp : ffff80001f7f77c0 [ 109.421421][ T4489] x29: ffff80001f7f77c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 109.423604][ T4489] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 109.425797][ T4489] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd9c0ee0 [ 109.427937][ T4489] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 109.430116][ T4489] x17: 0000000000000000 x16: ffff8000083007d8 x15: 00000000ffffffff [ 109.432316][ T4489] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.434442][ T4489] x11: 0000000000000002 x10: 0000000000000000 x9 : 852c6c9ea1d24300 [ 109.436621][ T4489] x8 : 852c6c9ea1d24300 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.438857][ T4489] x5 : ffff80001f7f70b8 x4 : ffff80001422f280 x3 : ffff8000083008e8