Warning: Permanently added '10.128.0.44' (ED25519) to the list of known hosts. 1970/01/01 00:00:59 parsed 1 programs [ 60.461932][ T4441] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 61.446166][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.447492][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.448832][ T1734] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 61.460217][ T1734] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.461400][ T1734] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.462829][ T1734] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 61.899181][ T4544] chnl_net:caif_netlink_parms(): no params data found [ 61.917912][ T4544] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.919025][ T4544] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.920845][ T4544] device bridge_slave_0 entered promiscuous mode [ 61.923733][ T4544] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.924895][ T4544] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.926343][ T4544] device bridge_slave_1 entered promiscuous mode [ 61.935616][ T4544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.938182][ T4544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.946595][ T4544] team0: Port device team_slave_0 added [ 61.949371][ T4544] team0: Port device team_slave_1 added [ 61.956631][ T4544] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.957731][ T4544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.962265][ T4544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.965847][ T4544] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.966889][ T4544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.971050][ T4544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.041065][ T4544] device hsr_slave_0 entered promiscuous mode [ 62.080055][ T4544] device hsr_slave_1 entered promiscuous mode [ 62.731819][ T4544] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.761297][ T4544] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.791251][ T4544] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.833731][ T4544] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.905943][ T4544] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.912840][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.914365][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.917807][ T4544] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.921985][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 62.923935][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 62.925375][ T148] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.926514][ T148] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.928023][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 62.929581][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 62.931616][ T148] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.932791][ T148] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.934247][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 62.940972][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 62.942710][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 62.944356][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 62.946024][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.948122][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 62.949461][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 62.952003][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 62.956866][ T4544] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 62.958622][ T4544] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 62.964001][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 62.965558][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 62.967141][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 62.968598][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.975631][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 63.020683][ T4544] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.022365][ T1734] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 63.023535][ T1734] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 63.031762][ T1734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 63.033359][ T1734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 63.042120][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 63.043722][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 63.045353][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 63.046730][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 63.049630][ T4544] device veth0_vlan entered promiscuous mode [ 63.055562][ T4544] device veth1_vlan entered promiscuous mode [ 63.064466][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 63.065845][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 63.067313][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 63.069096][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 63.073692][ T4544] device veth0_macvtap entered promiscuous mode [ 63.076506][ T4544] device veth1_macvtap entered promiscuous mode [ 63.083658][ T4544] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.084893][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 63.086240][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 63.087690][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 63.089228][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 63.094299][ T4544] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.096317][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 63.097780][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 63.101374][ T4544] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.102642][ T4544] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.103941][ T4544] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.105317][ T4544] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:01:03 executed programs: 0 [ 63.467148][ T4704] chnl_net:caif_netlink_parms(): no params data found [ 63.488132][ T4704] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.489295][ T4704] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.491624][ T4704] device bridge_slave_0 entered promiscuous mode [ 63.505337][ T4704] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.506508][ T4704] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.508059][ T4704] device bridge_slave_1 entered promiscuous mode [ 63.517755][ T4704] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.520589][ T4704] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.530136][ T4704] team0: Port device team_slave_0 added [ 63.532632][ T4704] team0: Port device team_slave_1 added [ 63.539713][ T4704] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 63.542486][ T4704] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.546605][ T4704] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 63.549324][ T4704] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 63.550584][ T4704] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.554790][ T4704] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 63.611257][ T4704] device hsr_slave_0 entered promiscuous mode [ 63.630922][ T4704] device hsr_slave_1 entered promiscuous mode [ 63.670086][ T4704] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 63.671384][ T4704] Cannot create hsr debugfs directory [ 63.703825][ T4704] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 65.449940][ T4629] Bluetooth: hci1: command 0x0409 tx timeout [ 66.564034][ T4704] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 67.530084][ T3343] Bluetooth: hci1: command 0x041b tx timeout [ 68.893849][ T4704] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 68.935138][ T4704] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.070621][ T4704] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 69.141046][ T4704] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 69.201285][ T4704] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 69.244186][ T4704] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 69.321511][ T4704] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.325498][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 69.326984][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 69.329604][ T4704] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.333340][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 69.334982][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 69.336450][ T148] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.337615][ T148] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.339704][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 69.344590][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 69.346254][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 69.347734][ T148] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.348848][ T148] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.353320][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 69.356189][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 69.358967][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 69.361336][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 69.362916][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 69.365687][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 69.367418][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 69.370542][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 69.372207][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 69.374994][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 69.376484][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 69.378953][ T4704] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 69.420893][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 69.422179][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 69.425730][ T4704] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 69.433112][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 69.434803][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 69.441152][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 69.442681][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 69.444225][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 69.445653][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 69.448016][ T4704] device veth0_vlan entered promiscuous mode [ 69.452219][ T4704] device veth1_vlan entered promiscuous mode [ 69.472062][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 69.473635][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 69.475042][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 69.476623][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 69.479309][ T4704] device veth0_macvtap entered promiscuous mode [ 69.482248][ T4704] device veth1_macvtap entered promiscuous mode [ 69.487257][ T4704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.488906][ T4704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.492127][ T4704] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.493387][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 69.494863][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 69.496361][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 69.497918][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 69.500258][ T4704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.501899][ T4704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.503853][ T4704] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.505002][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 69.506633][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 69.509202][ T4704] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.511186][ T4704] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.512495][ T4704] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.513672][ T4704] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.536791][ T1734] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.538116][ T1734] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.539543][ T1734] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 69.548276][ T1734] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.549549][ T1734] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.552803][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:09 executed programs: 2 [ 69.573044][ T4940] loop0: detected capacity change from 0 to 128 [ 69.612111][ T21] cfg80211: failed to load regulatory.db [ 69.613956][ T2065] ieee802154 phy0 wpan0: encryption failed: -22 [ 69.615006][ T2065] ieee802154 phy1 wpan1: encryption failed: -22 [ 69.619995][ T13] Bluetooth: hci1: command 0x040f tx timeout [ 69.632140][ T4940] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 69.633626][ T4940] Bad inode number on dev loop0: 2 is out of range [ 69.634677][ T4940] SysV FS: get root inode failed [ 69.635444][ T4940] oldfs: cannot read superblock [ 69.667071][ T4941] ------------[ cut here ]------------ [ 69.667996][ T4941] VFS: brelse: Trying to free free buffer [ 69.668866][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 69.670217][ T4941] Modules linked in: [ 69.670793][ T4941] CPU: 1 PID: 4941 Comm: udevd Not tainted syzkaller #0 [ 69.671829][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 69.673386][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 69.674452][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 69.675198][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 69.675970][ T4941] sp : ffff80001fe377c0 [ 69.676603][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665c [ 69.677775][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 69.678976][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9b4318 [ 69.680118][ T4941] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000000003 [ 69.681242][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 69.682405][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 69.683520][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 69.684656][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 69.685779][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 69.686952][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 69.688116][ T4941] Call trace: [ 69.688591][ T4941] invalidate_bh_lru+0x128/0x22c [ 69.689366][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 69.690119][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 69.690809][ T4941] invalidate_bh_lrus+0x34/0x40 [ 69.691476][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 69.692219][ T4941] blkdev_put+0x490/0x6ac [ 69.692844][ T4941] blkdev_close+0x74/0xb0 [ 69.693473][ T4941] __fput+0x1c0/0x7e8 [ 69.694043][ T4941] ____fput+0x20/0x30 [ 69.694638][ T4941] task_work_run+0x12c/0x1d8 [ 69.695366][ T4941] do_notify_resume+0x2450/0x309c [ 69.696090][ T4941] el0_svc+0xf0/0x1d0 [ 69.696641][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 69.697342][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 69.698028][ T4941] irq event stamp: 5864 [ 69.698608][ T4941] hardirqs last enabled at (5863): [] kasan_quarantine_put+0xc4/0x200 [ 69.699959][ T4941] hardirqs last disabled at (5864): [] smp_call_function_many_cond+0xa44/0xeac [ 69.701467][ T4941] softirqs last enabled at (5598): [] local_bh_enable+0x10/0x34 [ 69.702821][ T4941] softirqs last disabled at (5596): [] local_bh_disable+0x10/0x34 [ 69.704196][ T4941] ---[ end trace b32b58f23b4c8dbc ]--- [ 69.742389][ T4945] loop0: detected capacity change from 0 to 128 [ 69.826723][ T4945] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 69.827996][ T4945] Bad inode number on dev loop0: 2 is out of range [ 69.828997][ T4945] SysV FS: get root inode failed [ 69.829725][ T4945] oldfs: cannot read superblock [ 69.835319][ C0] ------------[ cut here ]------------ [ 69.836190][ C0] VFS: brelse: Trying to free free buffer [ 69.837110][ C0] WARNING: CPU: 0 PID: 1734 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 69.838440][ C0] Modules linked in: [ 69.839017][ C0] CPU: 0 PID: 1734 Comm: kworker/u4:6 Tainted: G W syzkaller #0 [ 69.840306][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 69.841808][ C0] Workqueue: events_power_efficient gc_worker [ 69.842626][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 69.843734][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 69.844506][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 69.845273][ C0] sp : ffff800008007de0 [ 69.845823][ C0] x29: ffff800008007de0 x28: ffff0000cd251b40 x27: 1fffe000341f245c [ 69.846996][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 69.848156][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2ce2318 [ 69.849345][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010002 [ 69.850498][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 69.851701][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 69.852952][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 81e2d5cd6d935e00 [ 69.854127][ C0] x8 : 81e2d5cd6d935e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 69.855251][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 69.856456][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 69.857569][ C0] Call trace: [ 69.858053][ C0] invalidate_bh_lru+0x128/0x22c [ 69.858734][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 69.859679][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 69.860630][ C0] ipi_handler+0x10c/0x6fc [ 69.861268][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 69.862172][ C0] handle_domain_irq+0x144/0x1fc [ 69.862973][ C0] gic_handle_irq+0x78/0x1b8 [ 69.863649][ C0] call_on_irq_stack+0x30/0x48 [ 69.864290][ C0] do_interrupt_handler+0x6c/0x88 [ 69.864995][ C0] el1_interrupt+0x30/0x58 [ 69.865641][ C0] el1h_64_irq_handler+0x18/0x24 [ 69.866345][ C0] el1h_64_irq+0x78/0x7c [ 69.866968][ C0] gc_worker+0x1f8/0x1190 [ 69.867630][ C0] process_one_work+0x79c/0x1138 [ 69.868354][ C0] worker_thread+0x8f4/0x1034 [ 69.868983][ C0] kthread+0x374/0x454 [ 69.869591][ C0] ret_from_fork+0x10/0x20 [ 69.870181][ C0] irq event stamp: 447334 [ 69.870763][ C0] hardirqs last enabled at (447333): [] seqcount_lockdep_reader_access+0x1fc/0x2c0 [ 69.872293][ C0] hardirqs last disabled at (447334): [] enter_el1_irq_or_nmi+0x10/0x1c [ 69.873916][ C0] softirqs last enabled at (438732): [] handle_softirqs+0xa40/0xbe4 [ 69.875345][ C0] softirqs last disabled at (438679): [] __irq_exit_rcu+0x240/0x43c [ 69.876786][ C0] ---[ end trace b32b58f23b4c8dbd ]--- [ 69.935868][ T4947] loop0: detected capacity change from 0 to 128 [ 69.976202][ T4947] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 69.977287][ T4947] Bad inode number on dev loop0: 2 is out of range [ 69.978201][ T4947] SysV FS: get root inode failed [ 69.978915][ T4947] oldfs: cannot read superblock [ 69.979655][ T4947] ------------[ cut here ]------------ [ 69.980420][ T4947] VFS: brelse: Trying to free free buffer [ 69.981292][ T4947] WARNING: CPU: 1 PID: 4947 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 69.982549][ T4947] Modules linked in: [ 69.983080][ T4947] CPU: 1 PID: 4947 Comm: syz.0.18 Tainted: G W syzkaller #0 [ 69.984377][ T4947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 69.985951][ T4947] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 69.987015][ T4947] pc : invalidate_bh_lru+0x128/0x22c [ 69.987875][ T4947] lr : invalidate_bh_lru+0x128/0x22c [ 69.988794][ T4947] sp : ffff80001fe576e0 [ 69.989363][ T4947] x29: ffff80001fe576e0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 69.990521][ T4947] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 69.991642][ T4947] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9b46b8 [ 69.992769][ T4947] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 69.993969][ T4947] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 69.995137][ T4947] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 69.996323][ T4947] x11: 0000000000000002 x10: 0000000000000000 x9 : a317b78afd03c800 [ 69.997492][ T4947] x8 : a317b78afd03c800 x7 : 0000000000000001 x6 : 0000000000000001 [ 69.998721][ T4947] x5 : ffff80001fe56ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 69.999820][ T4947] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 70.000965][ T4947] Call trace: [ 70.001418][ T4947] invalidate_bh_lru+0x128/0x22c [ 70.002123][ T4947] smp_call_function_many_cond+0xa50/0xeac [ 70.002994][ T4947] on_each_cpu_cond_mask+0x5c/0xc4 [ 70.003744][ T4947] invalidate_bh_lrus+0x34/0x40 [ 70.004501][ T4947] blkdev_flush_mapping+0x16c/0x334 [ 70.005226][ T4947] blkdev_put+0x490/0x6ac [ 70.005859][ T4947] kill_block_super+0x98/0xdc [ 70.006611][ T4947] deactivate_locked_super+0xb8/0x134 [ 70.007363][ T4947] mount_bdev+0x284/0x358 [ 70.007995][ T4947] sysv_mount+0x44/0x58 [ 70.008617][ T4947] legacy_get_tree+0xd4/0x16c [ 70.009325][ T4947] vfs_get_tree+0x90/0x274 [ 70.009998][ T4947] do_new_mount+0x228/0x810 [ 70.010610][ T4947] path_mount+0x5bc/0x1008 [ 70.011334][ T4947] __arm64_sys_mount+0x514/0x5f0 [ 70.012043][ T4947] invoke_syscall+0x98/0x2b0 [ 70.012781][ T4947] el0_svc_common+0x138/0x258 [ 70.013482][ T4947] do_el0_svc+0x58/0x13c [ 70.014078][ T4947] el0_svc+0x78/0x1d0 [ 70.014610][ T4947] el0t_64_sync_handler+0xcc/0xe4 [ 70.015331][ T4947] el0t_64_sync+0x1a0/0x1a4 [ 70.015955][ T4947] irq event stamp: 1100 [ 70.016567][ T4947] hardirqs last enabled at (1099): [] kasan_quarantine_put+0xc4/0x200 [ 70.017964][ T4947] hardirqs last disabled at (1100): [] smp_call_function_many_cond+0xa44/0xeac [ 70.019473][ T4947] softirqs last enabled at (904): [] local_bh_enable+0x10/0x34 [ 70.020803][ T4947] softirqs last disabled at (902): [] local_bh_disable+0x10/0x34 [ 70.022172][ T4947] ---[ end trace b32b58f23b4c8dbe ]--- [ 70.140143][ T4949] loop0: detected capacity change from 0 to 128 [ 70.191788][ T4949] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 70.192973][ T4949] Bad inode number on dev loop0: 2 is out of range [ 70.193852][ T4949] SysV FS: get root inode failed [ 70.194545][ T4949] oldfs: cannot read superblock [ 70.195237][ T4949] ------------[ cut here ]------------ [ 70.196032][ T4949] VFS: brelse: Trying to free free buffer [ 70.196893][ T4949] WARNING: CPU: 1 PID: 4949 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 70.198207][ T4949] Modules linked in: [ 70.198776][ T4949] CPU: 1 PID: 4949 Comm: syz.0.19 Tainted: G W syzkaller #0 [ 70.199984][ T4949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 70.201513][ T4949] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 70.202654][ T4949] pc : invalidate_bh_lru+0x128/0x22c [ 70.203438][ T4949] lr : invalidate_bh_lru+0x128/0x22c [ 70.204180][ T4949] sp : ffff80001fd776e0 [ 70.204732][ T4949] x29: ffff80001fd776e0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 70.205984][ T4949] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 70.207200][ T4949] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9b4a58 [ 70.208418][ T4949] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 70.209588][ T4949] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 70.210855][ T4949] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 70.212034][ T4949] x11: 0000000000000002 x10: 0000000000000000 x9 : f767917aaae90e00 [ 70.213262][ T4949] x8 : f767917aaae90e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.214461][ T4949] x5 : ffff80001fd76ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 70.215637][ T4949] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 70.216916][ T4949] Call trace: [ 70.217336][ T4949] invalidate_bh_lru+0x128/0x22c [ 70.218074][ T4949] smp_call_function_many_cond+0xa50/0xeac [ 70.218912][ T4949] on_each_cpu_cond_mask+0x5c/0xc4 [ 70.219681][ T4949] invalidate_bh_lrus+0x34/0x40 [ 70.220402][ T4949] blkdev_flush_mapping+0x16c/0x334 [ 70.221164][ T4949] blkdev_put+0x490/0x6ac [ 70.221800][ T4949] kill_block_super+0x98/0xdc [ 70.222450][ T4949] deactivate_locked_super+0xb8/0x134 [ 70.223214][ T4949] mount_bdev+0x284/0x358 [ 70.223848][ T4949] sysv_mount+0x44/0x58 [ 70.224437][ T4949] legacy_get_tree+0xd4/0x16c [ 70.225118][ T4949] vfs_get_tree+0x90/0x274 [ 70.225736][ T4949] do_new_mount+0x228/0x810 [ 70.226362][ T4949] path_mount+0x5bc/0x1008 [ 70.226970][ T4949] __arm64_sys_mount+0x514/0x5f0 [ 70.227659][ T4949] invoke_syscall+0x98/0x2b0 [ 70.228323][ T4949] el0_svc_common+0x138/0x258 [ 70.229049][ T4949] do_el0_svc+0x58/0x13c [ 70.229665][ T4949] el0_svc+0x78/0x1d0 [ 70.230248][ T4949] el0t_64_sync_handler+0xcc/0xe4 [ 70.230917][ T4949] el0t_64_sync+0x1a0/0x1a4 [ 70.231598][ T4949] irq event stamp: 1144 [ 70.232145][ T4949] hardirqs last enabled at (1143): [] kasan_quarantine_put+0xc4/0x200 [ 70.233579][ T4949] hardirqs last disabled at (1144): [] smp_call_function_many_cond+0xa44/0xeac [ 70.235025][ T4949] softirqs last enabled at (922): [] local_bh_enable+0x10/0x34 [ 70.236337][ T4949] softirqs last disabled at (920): [] local_bh_disable+0x10/0x34 [ 70.237663][ T4949] ---[ end trace b32b58f23b4c8dbf ]--- [ 70.313549][ T4953] loop0: detected capacity change from 0 to 128 [ 70.352984][ T4953] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 70.354472][ T4953] Bad inode number on dev loop0: 2 is out of range [ 70.355856][ T4953] SysV FS: get root inode failed [ 70.356611][ T4953] oldfs: cannot read superblock [ 70.363195][ C0] ------------[ cut here ]------------ [ 70.364078][ C0] VFS: brelse: Trying to free free buffer [ 70.364953][ C0] WARNING: CPU: 0 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 70.366177][ C0] Modules linked in: [ 70.366689][ C0] CPU: 0 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 70.368061][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 70.369521][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 70.370655][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 70.371445][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 70.372196][ C0] sp : ffff800008007de0 [ 70.372760][ C0] x29: ffff800008007de0 x28: ffff0000c7ca0000 x27: 1fffe000341f245c [ 70.374012][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 70.375233][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2ce26b8 [ 70.376372][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010004 [ 70.377559][ C0] x17: 0000000000010004 x16: ffff800011254fd8 x15: 00000000ffffffff [ 70.378745][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 70.380009][ C0] x11: 0000000000010003 x10: 0000000000010003 x9 : 98f689a7f0ca7300 [ 70.381188][ C0] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.382394][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 70.383694][ C0] x2 : 0000000000000001 x1 : 0000000100010003 x0 : 0000000000000027 [ 70.384910][ C0] Call trace: [ 70.385412][ C0] invalidate_bh_lru+0x128/0x22c [ 70.386110][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 70.386932][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 70.387950][ C0] ipi_handler+0x10c/0x6fc [ 70.388576][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 70.389335][ C0] handle_domain_irq+0x144/0x1fc [ 70.390062][ C0] gic_handle_irq+0x78/0x1b8 [ 70.390762][ C0] call_on_irq_stack+0x30/0x48 [ 70.391478][ C0] do_interrupt_handler+0x6c/0x88 [ 70.392196][ C0] el1_interrupt+0x30/0x58 [ 70.392837][ C0] el1h_64_irq_handler+0x18/0x24 [ 70.393562][ C0] el1h_64_irq+0x78/0x7c [ 70.394161][ C0] rcu_is_watching+0x4c/0x134 [ 70.394815][ C0] lock_release+0xb4/0x8e0 [ 70.395481][ C0] _raw_spin_unlock+0x8c/0x11c [ 70.396211][ C0] alloc_vmap_area+0x13f8/0x16c4 [ 70.396949][ C0] __get_vm_area_node+0x17c/0x2e8 [ 70.397676][ C0] __vmalloc_node_range+0xe8/0x8c8 [ 70.398403][ C0] vzalloc+0x110/0x188 [ 70.399005][ C0] xt_counters_alloc+0x50/0x60 [ 70.399657][ C0] __do_replace+0xa8/0x998 [ 70.400300][ C0] do_ip6t_set_ctl+0xb14/0xe60 [ 70.401008][ C0] nf_setsockopt+0x270/0x290 [ 70.401695][ C0] ipv6_setsockopt+0x1bb0/0x37ac [ 70.402390][ C0] tcp_setsockopt+0x1e0/0x1c3c [ 70.403072][ C0] sock_common_setsockopt+0xb0/0xcc [ 70.403817][ C0] __sys_setsockopt+0x260/0x36c [ 70.404507][ C0] __arm64_sys_setsockopt+0xb8/0xd4 [ 70.405253][ C0] invoke_syscall+0x98/0x2b0 [ 70.405936][ C0] el0_svc_common+0x138/0x258 [ 70.406562][ C0] do_el0_svc+0x58/0x13c [ 70.407197][ C0] el0_svc+0x78/0x1d0 [ 70.407735][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 70.408521][ C0] el0t_64_sync+0x1a0/0x1a4 [ 70.409191][ C0] irq event stamp: 184026 [ 70.409814][ C0] hardirqs last enabled at (184025): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 70.411361][ C0] hardirqs last disabled at (184026): [] enter_el1_irq_or_nmi+0x10/0x1c [ 70.412870][ C0] softirqs last enabled at (184016): [] release_sock+0x1d0/0x258 [ 70.414209][ C0] softirqs last disabled at (184014): [] release_sock+0x34/0x258 [ 70.415549][ C0] ---[ end trace b32b58f23b4c8dc0 ]--- [ 70.453236][ T4955] loop0: detected capacity change from 0 to 128 [ 70.457091][ T4955] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 70.458303][ T4955] Bad inode number on dev loop0: 2 is out of range [ 70.459333][ T4955] SysV FS: get root inode failed [ 70.460289][ T4955] oldfs: cannot read superblock [ 70.465060][ C1] ------------[ cut here ]------------ [ 70.466008][ C1] VFS: brelse: Trying to free free buffer [ 70.466961][ C1] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 70.468285][ C1] Modules linked in: [ 70.468931][ C1] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 70.470264][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 70.471736][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 70.472987][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 70.473735][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 70.474556][ C1] sp : ffff800008017de0 [ 70.475148][ C1] x29: ffff800008017de0 x28: ffff0000c7ca0000 x27: 1fffe000341f665c [ 70.476302][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 70.477541][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9b4df8 [ 70.478747][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010002 [ 70.479864][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 70.481059][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 70.482284][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 98f689a7f0ca7300 [ 70.483387][ C1] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.484597][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 70.485863][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 70.487031][ C1] Call trace: [ 70.487537][ C1] invalidate_bh_lru+0x128/0x22c [ 70.488265][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 70.489142][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 70.490146][ C1] ipi_handler+0x10c/0x6fc [ 70.490803][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 70.491634][ C1] handle_domain_irq+0x144/0x1fc [ 70.492382][ C1] gic_handle_irq+0x78/0x1b8 [ 70.492980][ C1] call_on_irq_stack+0x30/0x48 [ 70.493718][ C1] do_interrupt_handler+0x6c/0x88 [ 70.494513][ C1] el1_interrupt+0x30/0x58 [ 70.495129][ C1] el1h_64_irq_handler+0x18/0x24 [ 70.495851][ C1] el1h_64_irq+0x78/0x7c [ 70.496480][ C1] lock_acquire+0x234/0x618 [ 70.497115][ C1] down_read_trylock+0x288/0x418 [ 70.497865][ C1] do_page_fault+0x364/0xab0 [ 70.498507][ C1] do_mem_abort+0x6c/0x1ac [ 70.499134][ C1] el0_da+0x90/0x1ec [ 70.499709][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 70.500430][ C1] el0t_64_sync+0x1a0/0x1a4 [ 70.501013][ C1] irq event stamp: 186600 [ 70.501659][ C1] hardirqs last enabled at (186599): [] local_daif_restore+0x1c/0x3c [ 70.503033][ C1] hardirqs last disabled at (186600): [] enter_el1_irq_or_nmi+0x10/0x1c [ 70.504421][ C1] softirqs last enabled at (186594): [] release_sock+0x1d0/0x258 [ 70.505690][ C1] softirqs last disabled at (186592): [] release_sock+0x34/0x258 [ 70.506944][ C1] ---[ end trace b32b58f23b4c8dc1 ]--- [ 70.563345][ T4957] loop0: detected capacity change from 0 to 128 [ 70.591112][ T4957] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 70.592302][ T4957] Bad inode number on dev loop0: 2 is out of range [ 70.593497][ T4957] SysV FS: get root inode failed [ 70.594372][ T4957] oldfs: cannot read superblock [ 70.602612][ T4941] ------------[ cut here ]------------ [ 70.603490][ T4941] VFS: brelse: Trying to free free buffer [ 70.604394][ T4941] WARNING: CPU: 0 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 70.605618][ T4941] Modules linked in: [ 70.606206][ T4941] CPU: 0 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 70.607301][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 70.608790][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 70.609888][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 70.610687][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 70.611452][ T4941] sp : ffff80001fe377c0 [ 70.612077][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f245b [ 70.613244][ T4941] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 70.614431][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debf1970 [ 70.615645][ T4941] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000000003 [ 70.616868][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 70.618094][ T4941] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 70.619281][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 70.620455][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.621647][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 70.622798][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 70.624027][ T4941] Call trace: [ 70.624552][ T4941] invalidate_bh_lru+0x128/0x22c [ 70.625283][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 70.626101][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 70.626866][ T4941] invalidate_bh_lrus+0x34/0x40 [ 70.627604][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 70.628409][ T4941] blkdev_put+0x490/0x6ac [ 70.629056][ T4941] blkdev_close+0x74/0xb0 [ 70.629743][ T4941] __fput+0x1c0/0x7e8 [ 70.630356][ T4941] ____fput+0x20/0x30 [ 70.630876][ T4941] task_work_run+0x12c/0x1d8 [ 70.631472][ T4941] do_notify_resume+0x2450/0x309c [ 70.632281][ T4941] el0_svc+0xf0/0x1d0 [ 70.632865][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 70.633596][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 70.634228][ T4941] irq event stamp: 33982 [ 70.634806][ T4941] hardirqs last enabled at (33981): [] kasan_quarantine_put+0xc4/0x200 [ 70.636306][ T4941] hardirqs last disabled at (33982): [] smp_call_function_many_cond+0xa44/0xeac [ 70.637935][ T4941] softirqs last enabled at (33722): [] local_bh_enable+0x10/0x34 [ 70.639335][ T4941] softirqs last disabled at (33720): [] local_bh_disable+0x10/0x34 [ 70.640792][ T4941] ---[ end trace b32b58f23b4c8dc2 ]--- [ 70.644641][ T592] device hsr_slave_0 left promiscuous mode [ 70.660373][ T592] device hsr_slave_1 left promiscuous mode [ 70.673071][ T4959] loop0: detected capacity change from 0 to 128 [ 70.676121][ T4959] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 70.677569][ T4959] Bad inode number on dev loop0: 2 is out of range [ 70.678638][ T4959] SysV FS: get root inode failed [ 70.679402][ T4959] oldfs: cannot read superblock [ 70.686242][ T4941] ------------[ cut here ]------------ [ 70.687051][ T4941] VFS: brelse: Trying to free free buffer [ 70.687899][ T4941] WARNING: CPU: 0 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 70.689147][ T4941] Modules linked in: [ 70.689784][ T4941] CPU: 0 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 70.691116][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 70.692639][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 70.693736][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 70.694468][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 70.695230][ T4941] sp : ffff80001fe377c0 [ 70.695847][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f245b [ 70.697036][ T4941] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 70.698293][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debf1c28 [ 70.699454][ T4941] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000000003 [ 70.700647][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 70.701825][ T4941] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 70.703005][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 70.704133][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.705315][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 70.706512][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 70.707670][ T4941] Call trace: [ 70.708108][ T4941] invalidate_bh_lru+0x128/0x22c [ 70.708820][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 70.709618][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 70.710303][ T4941] invalidate_bh_lrus+0x34/0x40 [ 70.711002][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 70.711733][ T4941] blkdev_put+0x490/0x6ac [ 70.712300][ T4941] blkdev_close+0x74/0xb0 [ 70.712867][ T4941] __fput+0x1c0/0x7e8 [ 70.713430][ T4941] ____fput+0x20/0x30 [ 70.714008][ T4941] task_work_run+0x12c/0x1d8 [ 70.714730][ T4941] do_notify_resume+0x2450/0x309c [ 70.715447][ T4941] el0_svc+0xf0/0x1d0 [ 70.715956][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 70.716671][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 70.717317][ T4941] irq event stamp: 38760 [ 70.717925][ T4941] hardirqs last enabled at (38759): [] kasan_quarantine_put+0xc4/0x200 [ 70.719467][ T4941] hardirqs last disabled at (38760): [] smp_call_function_many_cond+0xa44/0xeac [ 70.721082][ T4941] softirqs last enabled at (38466): [] local_bh_enable+0x10/0x34 [ 70.722436][ T4941] softirqs last disabled at (38464): [] local_bh_disable+0x10/0x34 [ 70.723750][ T4941] ---[ end trace b32b58f23b4c8dc3 ]--- [ 70.750377][ T592] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 70.751558][ T592] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 70.753708][ T592] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 70.753846][ T4961] loop0: detected capacity change from 0 to 128 [ 70.754875][ T592] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 70.757265][ T592] device bridge_slave_1 left promiscuous mode [ 70.758297][ T592] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.810900][ T592] device bridge_slave_0 left promiscuous mode [ 70.811987][ T592] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.831782][ T4961] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 70.833012][ T4961] Bad inode number on dev loop0: 2 is out of range [ 70.834035][ T4961] SysV FS: get root inode failed [ 70.834848][ T4961] oldfs: cannot read superblock [ 70.845155][ C0] ------------[ cut here ]------------ [ 70.846055][ C0] VFS: brelse: Trying to free free buffer [ 70.846923][ C0] WARNING: CPU: 0 PID: 4963 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 70.848274][ C0] Modules linked in: [ 70.848824][ C0] CPU: 0 PID: 4963 Comm: syz.0.26 Tainted: G W syzkaller #0 [ 70.850076][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 70.851567][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 70.852721][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 70.853496][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 70.854310][ C0] sp : ffff800008007de0 [ 70.854962][ C0] x29: ffff800008007de0 x28: ffff0000c0c551c0 x27: 1fffe000341f245c [ 70.856152][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 70.857332][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2ce3148 [ 70.858548][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010002 [ 70.859734][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 70.860922][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 70.862123][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : c60b7dbd6d2e1500 [ 70.863275][ C0] x8 : c60b7dbd6d2e1500 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.864436][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 70.865582][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 70.866745][ C0] Call trace: [ 70.867195][ C0] invalidate_bh_lru+0x128/0x22c [ 70.867961][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 70.868830][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 70.869921][ C0] ipi_handler+0x10c/0x6fc [ 70.870577][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 70.871370][ C0] handle_domain_irq+0x144/0x1fc [ 70.872137][ C0] gic_handle_irq+0x78/0x1b8 [ 70.872794][ C0] call_on_irq_stack+0x30/0x48 [ 70.873461][ C0] do_interrupt_handler+0x6c/0x88 [ 70.874225][ C0] el0_interrupt+0x94/0x248 [ 70.874929][ C0] __el0_irq_handler_common+0x18/0x24 [ 70.875706][ C0] el0t_64_irq_handler+0x10/0x1c [ 70.876448][ C0] el0t_64_irq+0x1a0/0x1a4 [ 70.877105][ C0] irq event stamp: 246 [ 70.877679][ C0] hardirqs last enabled at (245): [] el0t_64_sync_handler+0xd8/0xe4 [ 70.879092][ C0] hardirqs last disabled at (246): [] __el0_irq_handler_common+0x18/0x24 [ 70.880547][ C0] softirqs last enabled at (48): [] local_bh_enable+0x10/0x34 [ 70.881872][ C0] softirqs last disabled at (46): [] local_bh_disable+0x10/0x34 [ 70.883181][ C0] ---[ end trace b32b58f23b4c8dc4 ]--- [ 70.933754][ T4963] loop0: detected capacity change from 0 to 128 [ 70.936540][ T4963] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 70.937663][ T4963] Bad inode number on dev loop0: 2 is out of range [ 70.938580][ T4963] SysV FS: get root inode failed [ 70.939309][ T4963] oldfs: cannot read superblock [ 70.948953][ T4941] ------------[ cut here ]------------ [ 70.949800][ T4941] VFS: brelse: Trying to free free buffer [ 70.950760][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 70.952186][ T4941] Modules linked in: [ 70.952714][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 70.954073][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 70.955699][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 70.956921][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 70.957692][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 70.958416][ T4941] sp : ffff80001fe377c0 [ 70.959083][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 70.960318][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 70.961536][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9a94e8 [ 70.962770][ T4941] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 70.963961][ T4941] x17: 0000000000000000 x16: ffff800008304ad4 x15: 00000000ffffffff [ 70.965120][ T4941] x14: 0000000000000001 x13: 1ffff00003fc6e18 x12: 0000000000ff0100 [ 70.966320][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 70.967593][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.968813][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008304be4 [ 70.970002][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 70.971192][ T4941] Call trace: [ 70.971733][ T4941] invalidate_bh_lru+0x128/0x22c [ 70.972477][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 70.973354][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 70.974102][ T4941] invalidate_bh_lrus+0x34/0x40 [ 70.974851][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 70.975591][ T4941] blkdev_put+0x490/0x6ac [ 70.976219][ T4941] blkdev_close+0x74/0xb0 [ 70.976889][ T4941] __fput+0x1c0/0x7e8 [ 70.977473][ T4941] ____fput+0x20/0x30 [ 70.978067][ T4941] task_work_run+0x12c/0x1d8 [ 70.978765][ T4941] do_notify_resume+0x2450/0x309c [ 70.979552][ T4941] el0_svc+0xf0/0x1d0 [ 70.980178][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 70.980923][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 70.981585][ T4941] irq event stamp: 47424 [ 70.982138][ T4941] hardirqs last enabled at (47423): [] kasan_quarantine_put+0xc4/0x200 [ 70.983568][ T4941] hardirqs last disabled at (47424): [] smp_call_function_many_cond+0xa44/0xeac [ 70.985073][ T4941] softirqs last enabled at (47156): [] local_bh_enable+0x10/0x34 [ 70.986357][ T4941] softirqs last disabled at (47154): [] local_bh_disable+0x10/0x34 [ 70.987648][ T4941] ---[ end trace b32b58f23b4c8dc5 ]--- [ 71.010095][ T592] device veth1_macvtap left promiscuous mode [ 71.011124][ T592] device veth0_macvtap left promiscuous mode [ 71.012084][ T592] device veth1_vlan left promiscuous mode [ 71.012953][ T592] device veth0_vlan left promiscuous mode [ 71.067678][ T4965] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 71.068763][ T4965] Bad inode number on dev loop0: 2 is out of range [ 71.069686][ T4965] SysV FS: get root inode failed [ 71.074214][ T4965] oldfs: cannot read superblock [ 71.078197][ C1] ------------[ cut here ]------------ [ 71.078923][ C1] VFS: brelse: Trying to free free buffer [ 71.079676][ C1] WARNING: CPU: 1 PID: 592 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 71.080945][ C1] Modules linked in: [ 71.081473][ C1] CPU: 1 PID: 592 Comm: kworker/u4:4 Tainted: G W syzkaller #0 [ 71.082781][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 71.084138][ C1] Workqueue: netns cleanup_net [ 71.084761][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 71.085814][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 71.086572][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 71.087335][ C1] sp : ffff800008017de0 [ 71.087886][ C1] x29: ffff800008017de0 x28: ffff0000c88b3680 x27: 1fffe000341f665b [ 71.089059][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 71.090161][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9a9888 [ 71.091398][ C1] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000010204 [ 71.092580][ C1] x17: 0000000000010204 x16: ffff800011254fd8 x15: 00000000ffffffff [ 71.093709][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 71.094857][ C1] x11: 0000000000010203 x10: 0000000000010203 x9 : dfb96c1f4b412300 [ 71.096180][ C1] x8 : dfb96c1f4b412300 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.097394][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 71.098511][ C1] x2 : 0000000000000001 x1 : 0000000100010203 x0 : 0000000000000027 [ 71.099646][ C1] Call trace: [ 71.100089][ C1] invalidate_bh_lru+0x128/0x22c [ 71.100778][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 71.101664][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 71.102658][ C1] ipi_handler+0x10c/0x6fc [ 71.103352][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 71.104150][ C1] handle_domain_irq+0x144/0x1fc [ 71.104842][ C1] gic_handle_irq+0x78/0x1b8 [ 71.105471][ C1] call_on_irq_stack+0x30/0x48 [ 71.106190][ C1] do_interrupt_handler+0x6c/0x88 [ 71.106911][ C1] el1_interrupt+0x30/0x58 [ 71.107545][ C1] el1h_64_irq_handler+0x18/0x24 [ 71.108234][ C1] el1h_64_irq+0x78/0x7c [ 71.108802][ C1] rcu_is_watching+0x98/0x134 [ 71.109474][ C1] lock_acquire+0xc4/0x618 [ 71.110081][ C1] _raw_spin_lock_bh+0x114/0x1b4 [ 71.110818][ C1] addrconf_ifdown+0x320/0x1680 [ 71.111518][ C1] addrconf_notify+0x36c/0xc50 [ 71.112174][ C1] raw_notifier_call_chain+0xd4/0x164 [ 71.112899][ C1] dev_close_many+0x2c8/0x438 [ 71.113551][ C1] unregister_netdevice_many+0x3e0/0x183c [ 71.114359][ C1] default_device_exit_batch+0x464/0x4c4 [ 71.115277][ C1] cleanup_net+0x654/0xaa4 [ 71.115931][ C1] process_one_work+0x79c/0x1138 [ 71.116636][ C1] worker_thread+0x8f4/0x1034 [ 71.117326][ C1] kthread+0x374/0x454 [ 71.117862][ C1] ret_from_fork+0x10/0x20 [ 71.118562][ C1] irq event stamp: 2444683 [ 71.119194][ C1] hardirqs last enabled at (2444681): [] __local_bh_enable_ip+0x1f8/0x37c [ 71.120702][ C1] hardirqs last disabled at (2444683): [] enter_el1_irq_or_nmi+0x10/0x1c [ 71.122092][ C1] softirqs last enabled at (2444680): [] addrconf_ifdown+0x5b0/0x1680 [ 71.123507][ C1] softirqs last disabled at (2444682): [] addrconf_ifdown+0x320/0x1680 [ 71.124950][ C1] ---[ end trace b32b58f23b4c8dc6 ]--- [ 71.196329][ T592] team0 (unregistering): Port device team_slave_1 removed [ 71.201839][ T4967] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 71.202852][ T4967] Bad inode number on dev loop0: 2 is out of range [ 71.203751][ T4967] SysV FS: get root inode failed [ 71.204437][ T4967] oldfs: cannot read superblock [ 71.205315][ T4967] ------------[ cut here ]------------ [ 71.206122][ T4967] VFS: brelse: Trying to free free buffer [ 71.206972][ T4967] WARNING: CPU: 1 PID: 4967 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 71.208177][ T4967] Modules linked in: [ 71.208771][ T4967] CPU: 1 PID: 4967 Comm: syz.0.28 Tainted: G W syzkaller #0 [ 71.210003][ T4967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 71.211511][ T4967] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 71.212623][ T4967] pc : invalidate_bh_lru+0x128/0x22c [ 71.213392][ T4967] lr : invalidate_bh_lru+0x128/0x22c [ 71.214146][ T4967] sp : ffff80001fe576e0 [ 71.214729][ T4967] x29: ffff80001fe576e0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 71.215905][ T4967] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 71.217144][ T4967] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9a9c28 [ 71.218321][ T4967] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 71.219603][ T4967] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 71.220755][ T4967] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 71.222026][ T4967] x11: 0000000000000002 x10: 0000000000000000 x9 : 283549de31579300 [ 71.223235][ T4967] x8 : 283549de31579300 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.224483][ T4967] x5 : ffff80001fe56ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 71.225628][ T4967] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 71.226793][ T4967] Call trace: [ 71.227257][ T4967] invalidate_bh_lru+0x128/0x22c [ 71.227941][ T4967] smp_call_function_many_cond+0xa50/0xeac [ 71.228733][ T4967] on_each_cpu_cond_mask+0x5c/0xc4 [ 71.229458][ T4967] invalidate_bh_lrus+0x34/0x40 [ 71.230127][ T4967] blkdev_flush_mapping+0x16c/0x334 [ 71.230855][ T4967] blkdev_put+0x490/0x6ac [ 71.231475][ T4967] kill_block_super+0x98/0xdc [ 71.232134][ T4967] deactivate_locked_super+0xb8/0x134 [ 71.232857][ T4967] mount_bdev+0x284/0x358 [ 71.233478][ T4967] sysv_mount+0x44/0x58 [ 71.234059][ T4967] legacy_get_tree+0xd4/0x16c [ 71.234731][ T4967] vfs_get_tree+0x90/0x274 [ 71.235358][ T4967] do_new_mount+0x228/0x810 [ 71.235991][ T4967] path_mount+0x5bc/0x1008 [ 71.236638][ T4967] __arm64_sys_mount+0x514/0x5f0 [ 71.237327][ T4967] invoke_syscall+0x98/0x2b0 [ 71.237990][ T4967] el0_svc_common+0x138/0x258 [ 71.238613][ T4967] do_el0_svc+0x58/0x13c [ 71.239197][ T4967] el0_svc+0x78/0x1d0 [ 71.239725][ T4967] el0t_64_sync_handler+0xcc/0xe4 [ 71.240411][ T4967] el0t_64_sync+0x1a0/0x1a4 [ 71.241047][ T4967] irq event stamp: 1062 [ 71.241613][ T4967] hardirqs last enabled at (1061): [] kasan_quarantine_put+0xc4/0x200 [ 71.243046][ T4967] hardirqs last disabled at (1062): [] smp_call_function_many_cond+0xa44/0xeac [ 71.244597][ T4967] softirqs last enabled at (882): [] local_bh_enable+0x10/0x34 [ 71.245908][ T4967] softirqs last disabled at (880): [] local_bh_disable+0x10/0x34 [ 71.247205][ T4967] ---[ end trace b32b58f23b4c8dc7 ]--- [ 71.253058][ T592] team0 (unregistering): Port device team_slave_0 removed [ 71.258233][ T592] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 71.294905][ T592] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 71.391348][ T4971] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 71.392715][ T4971] Bad inode number on dev loop0: 2 is out of range [ 71.393734][ T4971] SysV FS: get root inode failed [ 71.394513][ T4971] oldfs: cannot read superblock [ 71.399115][ C0] ------------[ cut here ]------------ [ 71.400019][ C0] VFS: brelse: Trying to free free buffer [ 71.400943][ C0] WARNING: CPU: 0 PID: 3662 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 71.402283][ C0] Modules linked in: [ 71.402870][ C0] CPU: 0 PID: 3662 Comm: udevd Tainted: G W syzkaller #0 [ 71.404135][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 71.405644][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 71.406791][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 71.407535][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 71.408313][ C0] sp : ffff800008007de0 [ 71.408907][ C0] x29: ffff800008007de0 x28: ffff0000d69c8000 x27: 1fffe000341f245b [ 71.410101][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 71.411351][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2ce34e8 [ 71.412545][ C0] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000010002 [ 71.413744][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 71.414915][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 71.416105][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 84532fa44db04800 [ 71.417239][ C0] x8 : 84532fa44db04800 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.418379][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 71.419593][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 71.420855][ C0] Call trace: [ 71.421368][ C0] invalidate_bh_lru+0x128/0x22c [ 71.422149][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 71.423033][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 71.424006][ C0] ipi_handler+0x10c/0x6fc [ 71.424652][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 71.425625][ C0] handle_domain_irq+0x144/0x1fc [ 71.426400][ C0] gic_handle_irq+0x78/0x1b8 [ 71.427171][ C0] call_on_irq_stack+0x30/0x48 [ 71.427936][ C0] do_interrupt_handler+0x6c/0x88 [ 71.428758][ C0] el1_interrupt+0x30/0x58 [ 71.429499][ C0] el1h_64_irq_handler+0x18/0x24 [ 71.430277][ C0] el1h_64_irq+0x78/0x7c [ 71.430980][ C0] __sanitizer_cov_trace_const_cmp1+0x8/0xc8 [ 71.431927][ C0] tomoyo_path_perm+0x1e8/0x49c [ 71.432668][ C0] tomoyo_inode_getattr+0x28/0x38 [ 71.433378][ C0] security_inode_getattr+0xd8/0x124 [ 71.434155][ C0] __arm64_sys_newfstat+0x100/0x1fc [ 71.434891][ C0] invoke_syscall+0x98/0x2b0 [ 71.435549][ C0] el0_svc_common+0x138/0x258 [ 71.436224][ C0] do_el0_svc+0x58/0x13c [ 71.436812][ C0] el0_svc+0x78/0x1d0 [ 71.437363][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 71.438077][ C0] el0t_64_sync+0x1a0/0x1a4 [ 71.438755][ C0] irq event stamp: 1144136 [ 71.439361][ C0] hardirqs last enabled at (1144135): [] seqcount_lockdep_reader_access+0x1f4/0x2b8 [ 71.440869][ C0] hardirqs last disabled at (1144136): [] enter_el1_irq_or_nmi+0x10/0x1c [ 71.442271][ C0] softirqs last enabled at (1144090): [] local_bh_enable+0x10/0x34 [ 71.443637][ C0] softirqs last disabled at (1144088): [] local_bh_disable+0x10/0x34 [ 71.445119][ C0] ---[ end trace b32b58f23b4c8dc8 ]--- [ 71.455188][ T592] bond0 (unregistering): Released all slaves [ 71.513959][ T4973] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 71.515168][ T4973] Bad inode number on dev loop0: 2 is out of range [ 71.516173][ T4973] SysV FS: get root inode failed [ 71.516976][ T4973] oldfs: cannot read superblock [ 71.526732][ T4941] ------------[ cut here ]------------ [ 71.527613][ T4941] VFS: brelse: Trying to free free buffer [ 71.528448][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 71.529692][ T4941] Modules linked in: [ 71.530255][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 71.531482][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 71.532889][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 71.533966][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 71.534684][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 71.535427][ T4941] sp : ffff80001fe377c0 [ 71.535957][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665c [ 71.537091][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 71.538176][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2da45d0 [ 71.539280][ T4941] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000000003 [ 71.540359][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 71.541455][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 71.542520][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 71.543675][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.544811][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 71.545960][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 71.547090][ T4941] Call trace: [ 71.547549][ T4941] invalidate_bh_lru+0x128/0x22c [ 71.548246][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 71.549074][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 71.549790][ T4941] invalidate_bh_lrus+0x34/0x40 [ 71.550445][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 71.551172][ T4941] blkdev_put+0x490/0x6ac [ 71.551779][ T4941] blkdev_close+0x74/0xb0 [ 71.552377][ T4941] __fput+0x1c0/0x7e8 [ 71.552893][ T4941] ____fput+0x20/0x30 [ 71.553414][ T4941] task_work_run+0x12c/0x1d8 [ 71.554067][ T4941] do_notify_resume+0x2450/0x309c [ 71.554779][ T4941] el0_svc+0xf0/0x1d0 [ 71.555335][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 71.556028][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 71.556647][ T4941] irq event stamp: 65138 [ 71.557224][ T4941] hardirqs last enabled at (65137): [] kasan_quarantine_put+0xc4/0x200 [ 71.558585][ T4941] hardirqs last disabled at (65138): [] smp_call_function_many_cond+0xa44/0xeac [ 71.560039][ T4941] softirqs last enabled at (64882): [] local_bh_enable+0x10/0x34 [ 71.561307][ T4941] softirqs last disabled at (64880): [] local_bh_disable+0x10/0x34 [ 71.562567][ T4941] ---[ end trace b32b58f23b4c8dc9 ]--- [ 71.623004][ T4975] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 71.624125][ T4975] Bad inode number on dev loop0: 2 is out of range [ 71.625020][ T4975] SysV FS: get root inode failed [ 71.625838][ T4975] oldfs: cannot read superblock [ 71.631596][ C1] ------------[ cut here ]------------ [ 71.632460][ C1] VFS: brelse: Trying to free free buffer [ 71.633355][ C1] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 71.634613][ C1] Modules linked in: [ 71.635163][ C1] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 71.636458][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 71.637838][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 71.638835][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 71.639686][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 71.640469][ C1] sp : ffff800008017de0 [ 71.641088][ C1] x29: ffff800008017de0 x28: ffff0000c7ca0000 x27: 1fffe000341f665b [ 71.642254][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 71.643487][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2da4970 [ 71.644687][ C1] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000010002 [ 71.645893][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 71.647068][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 71.648232][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 98f689a7f0ca7300 [ 71.649336][ C1] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.650503][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 71.651631][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 71.652730][ C1] Call trace: [ 71.653270][ C1] invalidate_bh_lru+0x128/0x22c [ 71.653966][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 71.654793][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 71.655789][ C1] ipi_handler+0x10c/0x6fc [ 71.656419][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 71.657199][ C1] handle_domain_irq+0x144/0x1fc [ 71.657873][ C1] gic_handle_irq+0x78/0x1b8 [ 71.658492][ C1] call_on_irq_stack+0x30/0x48 [ 71.659180][ C1] do_interrupt_handler+0x6c/0x88 [ 71.659947][ C1] el1_interrupt+0x30/0x58 [ 71.660587][ C1] el1h_64_irq_handler+0x18/0x24 [ 71.661338][ C1] el1h_64_irq+0x78/0x7c [ 71.661959][ C1] path_lookupat+0x350/0x3d0 [ 71.662597][ C1] filename_lookup+0x1b4/0x464 [ 71.663265][ C1] user_path_at_empty+0x5c/0x1a0 [ 71.663955][ C1] __arm64_sys_umount+0xf8/0x184 [ 71.664622][ C1] invoke_syscall+0x98/0x2b0 [ 71.665291][ C1] el0_svc_common+0x138/0x258 [ 71.665982][ C1] do_el0_svc+0x58/0x13c [ 71.666635][ C1] el0_svc+0x78/0x1d0 [ 71.667196][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 71.667898][ C1] el0t_64_sync+0x1a0/0x1a4 [ 71.668626][ C1] irq event stamp: 216060 [ 71.669237][ C1] hardirqs last enabled at (216059): [] seqcount_lockdep_reader_access+0x1f4/0x2b8 [ 71.670878][ C1] hardirqs last disabled at (216060): [] enter_el1_irq_or_nmi+0x10/0x1c [ 71.672320][ C1] softirqs last enabled at (216046): [] local_bh_enable+0x10/0x34 [ 71.673627][ C1] softirqs last disabled at (216044): [] local_bh_disable+0x10/0x34 [ 71.675030][ C1] ---[ end trace b32b58f23b4c8dca ]--- [ 71.701062][ T4066] Bluetooth: hci1: command 0x0419 tx timeout [ 71.720760][ T4977] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 71.721917][ T4977] Bad inode number on dev loop0: 2 is out of range [ 71.722952][ T4977] SysV FS: get root inode failed [ 71.723743][ T4977] oldfs: cannot read superblock [ 71.740577][ C0] ------------[ cut here ]------------ [ 71.741482][ C0] VFS: brelse: Trying to free free buffer [ 71.742425][ C0] WARNING: CPU: 0 PID: 3343 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 71.743687][ C0] Modules linked in: [ 71.744261][ C0] CPU: 0 PID: 3343 Comm: kworker/0:2 Tainted: G W syzkaller #0 [ 71.745525][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 71.746922][ C0] Workqueue: rcu_gp srcu_invoke_callbacks [ 71.747782][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 71.748915][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 71.749695][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 71.750453][ C0] sp : ffff800008007de0 [ 71.751081][ C0] x29: ffff800008007de0 x28: ffff0000d216d1c0 x27: 1fffe000341f245c [ 71.752164][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 71.753397][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2ce3888 [ 71.754601][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010003 [ 71.755685][ C0] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 71.756818][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 71.758001][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 0dc9526b6fbdf800 [ 71.759142][ C0] x8 : 0dc9526b6fbdf800 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.760357][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 71.761603][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 71.762790][ C0] Call trace: [ 71.763305][ C0] invalidate_bh_lru+0x128/0x22c [ 71.764002][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 71.764838][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 71.765837][ C0] ipi_handler+0x10c/0x6fc [ 71.766507][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 71.767298][ C0] handle_domain_irq+0x144/0x1fc [ 71.768016][ C0] gic_handle_irq+0x78/0x1b8 [ 71.768711][ C0] call_on_irq_stack+0x30/0x48 [ 71.769447][ C0] do_interrupt_handler+0x6c/0x88 [ 71.770171][ C0] el1_interrupt+0x30/0x58 [ 71.770774][ C0] el1h_64_irq_handler+0x18/0x24 [ 71.771519][ C0] el1h_64_irq+0x78/0x7c [ 71.772143][ C0] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 71.772985][ C0] debug_object_active_state+0x16c/0x374 [ 71.773860][ C0] srcu_invoke_callbacks+0x190/0x348 [ 71.774607][ C0] process_one_work+0x79c/0x1138 [ 71.775296][ C0] worker_thread+0x8f4/0x1034 [ 71.775950][ C0] kthread+0x374/0x454 [ 71.776536][ C0] ret_from_fork+0x10/0x20 [ 71.777179][ C0] irq event stamp: 85894 [ 71.777796][ C0] hardirqs last enabled at (85893): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 71.779339][ C0] hardirqs last disabled at (85894): [] enter_el1_irq_or_nmi+0x10/0x1c [ 71.780766][ C0] softirqs last enabled at (85640): [] handle_softirqs+0xa40/0xbe4 [ 71.782146][ C0] softirqs last disabled at (85617): [] do_softirq+0xfc/0x1ac [ 71.783392][ C0] ---[ end trace b32b58f23b4c8dcb ]--- [ 71.834363][ T4981] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 71.835528][ T4981] Bad inode number on dev loop0: 2 is out of range [ 71.836520][ T4981] SysV FS: get root inode failed [ 71.837269][ T4981] oldfs: cannot read superblock [ 71.844526][ C1] ------------[ cut here ]------------ [ 71.845431][ C1] VFS: brelse: Trying to free free buffer [ 71.846334][ C1] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 71.847618][ C1] Modules linked in: [ 71.848235][ C1] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 71.849564][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 71.850966][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 71.852047][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 71.852825][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 71.853553][ C1] sp : ffff800008017de0 [ 71.854113][ C1] x29: ffff800008017de0 x28: ffff0000c7ca0000 x27: 1fffe000341f665b [ 71.855303][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 71.856454][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2da4d10 [ 71.857609][ C1] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000010003 [ 71.858727][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 71.859909][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 71.861174][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 98f689a7f0ca7300 [ 71.862328][ C1] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.863493][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 71.864760][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 71.866055][ C1] Call trace: [ 71.866554][ C1] invalidate_bh_lru+0x128/0x22c [ 71.867286][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 71.868153][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 71.869193][ C1] ipi_handler+0x10c/0x6fc [ 71.869838][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 71.870668][ C1] handle_domain_irq+0x144/0x1fc [ 71.871427][ C1] gic_handle_irq+0x78/0x1b8 [ 71.872051][ C1] call_on_irq_stack+0x30/0x48 [ 71.872690][ C1] do_interrupt_handler+0x6c/0x88 [ 71.873380][ C1] el1_interrupt+0x30/0x58 [ 71.874070][ C1] el1h_64_irq_handler+0x18/0x24 [ 71.874892][ C1] el1h_64_irq+0x78/0x7c [ 71.875538][ C1] __sanitizer_cov_trace_pc+0xa8/0xac [ 71.876308][ C1] check_preemption_disabled+0x28/0x164 [ 71.877114][ C1] debug_smp_processor_id+0x20/0x2c [ 71.877849][ C1] rcu_is_watching+0x50/0x134 [ 71.878543][ C1] lock_acquire+0xc4/0x618 [ 71.879214][ C1] fs_reclaim_acquire+0xec/0x1c4 [ 71.879934][ C1] prepare_alloc_pages+0x134/0x45c [ 71.880688][ C1] __alloc_pages+0x108/0x470 [ 71.881336][ C1] alloc_pages+0x34c/0x5c0 [ 71.881989][ C1] __pmd_alloc+0x54/0x48c [ 71.882565][ C1] copy_page_range+0x1fd8/0x2328 [ 71.883228][ C1] copy_mm+0x9d8/0x105c [ 71.883814][ C1] copy_process+0x1500/0x34c8 [ 71.884493][ C1] kernel_clone+0x1ec/0x9e8 [ 71.885131][ C1] __arm64_sys_clone+0x14c/0x1b8 [ 71.885795][ C1] invoke_syscall+0x98/0x2b0 [ 71.886454][ C1] el0_svc_common+0x138/0x258 [ 71.887095][ C1] do_el0_svc+0x58/0x13c [ 71.887701][ C1] el0_svc+0x78/0x1d0 [ 71.888332][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 71.889033][ C1] el0t_64_sync+0x1a0/0x1a4 [ 71.889714][ C1] irq event stamp: 227718 [ 71.890329][ C1] hardirqs last enabled at (227717): [] try_charge_memcg+0x1d4/0x11a0 [ 71.891815][ C1] hardirqs last disabled at (227718): [] enter_el1_irq_or_nmi+0x10/0x1c [ 71.893253][ C1] softirqs last enabled at (227590): [] local_bh_enable+0x10/0x34 [ 71.894581][ C1] softirqs last disabled at (227588): [] local_bh_disable+0x10/0x34 [ 71.895962][ C1] ---[ end trace b32b58f23b4c8dcc ]--- [ 72.040875][ T4983] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.042063][ T4983] Bad inode number on dev loop0: 2 is out of range [ 72.042986][ T4983] SysV FS: get root inode failed [ 72.043784][ T4983] oldfs: cannot read superblock [ 72.044561][ T4983] ------------[ cut here ]------------ [ 72.045304][ T4983] VFS: brelse: Trying to free free buffer [ 72.046200][ T4983] WARNING: CPU: 0 PID: 4983 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 72.047461][ T4983] Modules linked in: [ 72.048048][ T4983] CPU: 0 PID: 4983 Comm: syz.0.36 Tainted: G W syzkaller #0 [ 72.049328][ T4983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 72.050789][ T4983] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.051819][ T4983] pc : invalidate_bh_lru+0x128/0x22c [ 72.052575][ T4983] lr : invalidate_bh_lru+0x128/0x22c [ 72.053386][ T4983] sp : ffff80001fee76e0 [ 72.054044][ T4983] x29: ffff80001fee76e0 x28: ffff80001428d000 x27: 1fffe000341f245b [ 72.055302][ T4983] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 72.056534][ T4983] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2ce3c28 [ 72.057758][ T4983] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000000003 [ 72.058942][ T4983] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 72.060172][ T4983] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 72.061358][ T4983] x11: 0000000000000002 x10: 0000000000000000 x9 : 1a0426ae1dfbc700 [ 72.062467][ T4983] x8 : 1a0426ae1dfbc700 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.063588][ T4983] x5 : ffff80001fee6ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 72.064746][ T4983] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 72.065883][ T4983] Call trace: [ 72.066328][ T4983] invalidate_bh_lru+0x128/0x22c [ 72.067053][ T4983] smp_call_function_many_cond+0xa50/0xeac [ 72.067935][ T4983] on_each_cpu_cond_mask+0x5c/0xc4 [ 72.068688][ T4983] invalidate_bh_lrus+0x34/0x40 [ 72.069413][ T4983] blkdev_flush_mapping+0x16c/0x334 [ 72.070223][ T4983] blkdev_put+0x490/0x6ac [ 72.070847][ T4983] kill_block_super+0x98/0xdc [ 72.071502][ T4983] deactivate_locked_super+0xb8/0x134 [ 72.072317][ T4983] mount_bdev+0x284/0x358 [ 72.072911][ T4983] sysv_mount+0x44/0x58 [ 72.073507][ T4983] legacy_get_tree+0xd4/0x16c [ 72.074205][ T4983] vfs_get_tree+0x90/0x274 [ 72.074821][ T4983] do_new_mount+0x228/0x810 [ 72.075456][ T4983] path_mount+0x5bc/0x1008 [ 72.076038][ T4983] __arm64_sys_mount+0x514/0x5f0 [ 72.076713][ T4983] invoke_syscall+0x98/0x2b0 [ 72.077351][ T4983] el0_svc_common+0x138/0x258 [ 72.078029][ T4983] do_el0_svc+0x58/0x13c [ 72.078633][ T4983] el0_svc+0x78/0x1d0 [ 72.079204][ T4983] el0t_64_sync_handler+0xcc/0xe4 [ 72.079953][ T4983] el0t_64_sync+0x1a0/0x1a4 [ 72.080648][ T4983] irq event stamp: 1122 [ 72.081280][ T4983] hardirqs last enabled at (1121): [] kasan_quarantine_put+0xc4/0x200 [ 72.082701][ T4983] hardirqs last disabled at (1122): [] smp_call_function_many_cond+0xa44/0xeac [ 72.084232][ T4983] softirqs last enabled at (880): [] local_bh_enable+0x10/0x34 [ 72.085656][ T4983] softirqs last disabled at (878): [] local_bh_disable+0x10/0x34 [ 72.087069][ T4983] ---[ end trace b32b58f23b4c8dcd ]--- [ 72.203325][ T4986] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.204579][ T4986] Bad inode number on dev loop0: 2 is out of range [ 72.205597][ T4986] SysV FS: get root inode failed [ 72.206347][ T4986] oldfs: cannot read superblock [ 72.214812][ C1] ------------[ cut here ]------------ [ 72.215585][ C1] VFS: brelse: Trying to free free buffer [ 72.216459][ C1] WARNING: CPU: 1 PID: 4987 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 72.217735][ C1] Modules linked in: [ 72.218304][ C1] CPU: 1 PID: 4987 Comm: syz.0.38 Tainted: G W syzkaller #0 [ 72.219534][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 72.221067][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.222167][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 72.222950][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 72.223680][ C1] sp : ffff800008017de0 [ 72.224308][ C1] x29: ffff800008017de0 x28: ffff0000ce4cb680 x27: 1fffe000341f665c [ 72.225546][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 72.226784][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9b07a0 [ 72.228141][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010002 [ 72.229262][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 72.230404][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 72.231532][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 817f64675e3be500 [ 72.232678][ C1] x8 : 817f64675e3be500 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.233876][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 72.235010][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 72.236421][ C1] Call trace: [ 72.236931][ C1] invalidate_bh_lru+0x128/0x22c [ 72.237641][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 72.238456][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 72.239442][ C1] ipi_handler+0x10c/0x6fc [ 72.240042][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 72.240792][ C1] handle_domain_irq+0x144/0x1fc [ 72.241476][ C1] gic_handle_irq+0x78/0x1b8 [ 72.242102][ C1] call_on_irq_stack+0x30/0x48 [ 72.242767][ C1] do_interrupt_handler+0x6c/0x88 [ 72.243464][ C1] el1_interrupt+0x30/0x58 [ 72.244086][ C1] el1h_64_irq_handler+0x18/0x24 [ 72.244774][ C1] el1h_64_irq+0x78/0x7c [ 72.245361][ C1] get_page_from_freelist+0x2210/0x2a68 [ 72.246119][ C1] __alloc_pages+0x1a0/0x470 [ 72.246760][ C1] alloc_pages_vma+0x284/0x790 [ 72.247411][ C1] alloc_zeroed_user_highpage_movable+0x9c/0xd8 [ 72.248260][ C1] handle_mm_fault+0x17d4/0x2a28 [ 72.248933][ C1] do_page_fault+0x67c/0xab0 [ 72.249590][ C1] do_translation_fault+0xe0/0x130 [ 72.250321][ C1] do_mem_abort+0x6c/0x1ac [ 72.251004][ C1] el0_da+0x90/0x1ec [ 72.251656][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 72.252367][ C1] el0t_64_sync+0x1a0/0x1a4 [ 72.253002][ C1] irq event stamp: 1214 [ 72.253610][ C1] hardirqs last enabled at (1213): [] get_page_from_freelist+0x2200/0x2a68 [ 72.255084][ C1] hardirqs last disabled at (1214): [] enter_el1_irq_or_nmi+0x10/0x1c [ 72.256507][ C1] softirqs last enabled at (1142): [] local_bh_enable+0x10/0x34 [ 72.257766][ C1] softirqs last disabled at (1140): [] local_bh_disable+0x10/0x34 [ 72.259152][ C1] ---[ end trace b32b58f23b4c8dce ]--- [ 72.341201][ T4988] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.342389][ T4988] Bad inode number on dev loop0: 2 is out of range [ 72.343408][ T4988] SysV FS: get root inode failed [ 72.344289][ T4988] oldfs: cannot read superblock [ 72.345030][ T4988] ------------[ cut here ]------------ [ 72.345796][ T4988] VFS: brelse: Trying to free free buffer [ 72.346662][ T4988] WARNING: CPU: 0 PID: 4988 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 72.347943][ T4988] Modules linked in: [ 72.348559][ T4988] CPU: 0 PID: 4988 Comm: syz.0.38 Tainted: G W syzkaller #0 [ 72.349739][ T4988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 72.351170][ T4988] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.352293][ T4988] pc : invalidate_bh_lru+0x128/0x22c [ 72.353129][ T4988] lr : invalidate_bh_lru+0x128/0x22c [ 72.353896][ T4988] sp : ffff80001ff076e0 [ 72.354492][ T4988] x29: ffff80001ff076e0 x28: ffff80001428d000 x27: 1fffe000341f245b [ 72.355644][ T4988] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 72.356851][ T4988] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2d185d0 [ 72.358084][ T4988] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000000003 [ 72.359341][ T4988] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 72.360534][ T4988] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 72.361759][ T4988] x11: 0000000000000002 x10: 0000000000000000 x9 : 7780cba427f23800 [ 72.363021][ T4988] x8 : 7780cba427f23800 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.364228][ T4988] x5 : ffff80001ff06ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 72.365370][ T4988] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 72.366494][ T4988] Call trace: [ 72.366961][ T4988] invalidate_bh_lru+0x128/0x22c [ 72.367667][ T4988] smp_call_function_many_cond+0xa50/0xeac [ 72.368478][ T4988] on_each_cpu_cond_mask+0x5c/0xc4 [ 72.369191][ T4988] invalidate_bh_lrus+0x34/0x40 [ 72.369850][ T4988] blkdev_flush_mapping+0x16c/0x334 [ 72.370589][ T4988] blkdev_put+0x490/0x6ac [ 72.371206][ T4988] kill_block_super+0x98/0xdc [ 72.371847][ T4988] deactivate_locked_super+0xb8/0x134 [ 72.372583][ T4988] mount_bdev+0x284/0x358 [ 72.373201][ T4988] sysv_mount+0x44/0x58 [ 72.373784][ T4988] legacy_get_tree+0xd4/0x16c [ 72.374442][ T4988] vfs_get_tree+0x90/0x274 [ 72.375108][ T4988] do_new_mount+0x228/0x810 [ 72.375803][ T4988] path_mount+0x5bc/0x1008 [ 72.376501][ T4988] __arm64_sys_mount+0x514/0x5f0 [ 72.377253][ T4988] invoke_syscall+0x98/0x2b0 [ 72.378002][ T4988] el0_svc_common+0x138/0x258 [ 72.378734][ T4988] do_el0_svc+0x58/0x13c [ 72.379383][ T4988] el0_svc+0x78/0x1d0 [ 72.380021][ T4988] el0t_64_sync_handler+0xcc/0xe4 [ 72.380798][ T4988] el0t_64_sync+0x1a0/0x1a4 [ 72.381487][ T4988] irq event stamp: 1130 [ 72.382101][ T4988] hardirqs last enabled at (1129): [] kasan_quarantine_put+0xc4/0x200 [ 72.383499][ T4988] hardirqs last disabled at (1130): [] smp_call_function_many_cond+0xa44/0xeac [ 72.385120][ T4988] softirqs last enabled at (902): [] local_bh_enable+0x10/0x34 [ 72.386476][ T4988] softirqs last disabled at (900): [] local_bh_disable+0x10/0x34 [ 72.387915][ T4988] ---[ end trace b32b58f23b4c8dcf ]--- [ 72.501235][ T4992] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.502789][ T4992] Bad inode number on dev loop0: 2 is out of range [ 72.503721][ T4992] SysV FS: get root inode failed [ 72.504404][ T4992] oldfs: cannot read superblock [ 72.513527][ T4941] ------------[ cut here ]------------ [ 72.514413][ T4941] VFS: brelse: Trying to free free buffer [ 72.515324][ T4941] WARNING: CPU: 0 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 72.516712][ T4941] Modules linked in: [ 72.517284][ T4941] CPU: 0 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 72.518640][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 72.520138][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.521332][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 72.522099][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 72.522885][ T4941] sp : ffff80001fe377c0 [ 72.523516][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f245c [ 72.524767][ T4941] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 72.526059][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2d18970 [ 72.527280][ T4941] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000000003 [ 72.528563][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 72.529875][ T4941] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 72.531120][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 72.532349][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.533545][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 72.534755][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 72.535923][ T4941] Call trace: [ 72.536442][ T4941] invalidate_bh_lru+0x128/0x22c [ 72.537197][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 72.538112][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 72.538899][ T4941] invalidate_bh_lrus+0x34/0x40 [ 72.539634][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 72.540438][ T4941] blkdev_put+0x490/0x6ac [ 72.541101][ T4941] blkdev_close+0x74/0xb0 [ 72.541865][ T4941] __fput+0x1c0/0x7e8 [ 72.542425][ T4941] ____fput+0x20/0x30 [ 72.542998][ T4941] task_work_run+0x12c/0x1d8 [ 72.543702][ T4941] do_notify_resume+0x2450/0x309c [ 72.544441][ T4941] el0_svc+0xf0/0x1d0 [ 72.545056][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 72.545794][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 72.546486][ T4941] irq event stamp: 102592 [ 72.547139][ T4941] hardirqs last enabled at (102591): [] kasan_quarantine_put+0xc4/0x200 [ 72.548678][ T4941] hardirqs last disabled at (102592): [] smp_call_function_many_cond+0xa44/0xeac [ 72.550292][ T4941] softirqs last enabled at (102326): [] local_bh_enable+0x10/0x34 [ 72.551733][ T4941] softirqs last disabled at (102324): [] local_bh_disable+0x10/0x34 [ 72.553231][ T4941] ---[ end trace b32b58f23b4c8dd0 ]--- [ 72.591656][ T4994] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.592740][ T4994] Bad inode number on dev loop0: 2 is out of range [ 72.593745][ T4994] SysV FS: get root inode failed [ 72.594421][ T4994] oldfs: cannot read superblock [ 72.604901][ C1] ------------[ cut here ]------------ [ 72.605766][ C1] VFS: brelse: Trying to free free buffer [ 72.606642][ C1] WARNING: CPU: 1 PID: 4996 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 72.607837][ C1] Modules linked in: [ 72.608389][ C1] CPU: 1 PID: 4996 Comm: syz.0.42 Tainted: G W syzkaller #0 [ 72.609694][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 72.611185][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.612300][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 72.613116][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 72.613866][ C1] sp : ffff800008017de0 [ 72.614483][ C1] x29: ffff800008017de0 x28: ffff0000d33f0000 x27: 1fffe000341f665c [ 72.615598][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 72.616828][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9b0b40 [ 72.617972][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010002 [ 72.619061][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 72.620296][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 72.621555][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : d644f75524152c00 [ 72.622814][ C1] x8 : d644f75524152c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.624018][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 72.625164][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 72.626282][ C1] Call trace: [ 72.626727][ C1] invalidate_bh_lru+0x128/0x22c [ 72.627470][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 72.628341][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 72.629324][ C1] ipi_handler+0x10c/0x6fc [ 72.629946][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 72.630714][ C1] handle_domain_irq+0x144/0x1fc [ 72.631406][ C1] gic_handle_irq+0x78/0x1b8 [ 72.632081][ C1] call_on_irq_stack+0x30/0x48 [ 72.632774][ C1] do_interrupt_handler+0x6c/0x88 [ 72.633552][ C1] el0_interrupt+0x94/0x248 [ 72.634212][ C1] __el0_irq_handler_common+0x18/0x24 [ 72.634999][ C1] el0t_64_irq_handler+0x10/0x1c [ 72.635738][ C1] el0t_64_irq+0x1a0/0x1a4 [ 72.636345][ C1] irq event stamp: 190 [ 72.636917][ C1] hardirqs last enabled at (189): [] el0t_64_sync_handler+0xd8/0xe4 [ 72.638331][ C1] hardirqs last disabled at (190): [] __el0_irq_handler_common+0x18/0x24 [ 72.639833][ C1] softirqs last enabled at (48): [] local_bh_enable+0x10/0x34 [ 72.641184][ C1] softirqs last disabled at (46): [] local_bh_disable+0x10/0x34 [ 72.642464][ C1] ---[ end trace b32b58f23b4c8dd1 ]--- [ 72.722122][ T4996] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.723379][ T4996] Bad inode number on dev loop0: 2 is out of range [ 72.724521][ T4996] SysV FS: get root inode failed [ 72.725293][ T4996] oldfs: cannot read superblock [ 72.728714][ C0] ------------[ cut here ]------------ [ 72.729583][ C0] VFS: brelse: Trying to free free buffer [ 72.730554][ C0] WARNING: CPU: 0 PID: 3662 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 72.731940][ C0] Modules linked in: [ 72.732551][ C0] CPU: 0 PID: 3662 Comm: udevd Tainted: G W syzkaller #0 [ 72.733807][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 72.735364][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.736611][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 72.737466][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 72.738220][ C0] sp : ffff800008007de0 [ 72.738819][ C0] x29: ffff800008007de0 x28: ffff0000d69c8000 x27: 1fffe000341f245b [ 72.739962][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 72.741075][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2d18d10 [ 72.742221][ C0] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000010002 [ 72.743316][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 72.744484][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 72.745658][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 84532fa44db04800 [ 72.746900][ C0] x8 : 84532fa44db04800 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.748167][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 72.749369][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 72.750580][ C0] Call trace: [ 72.751062][ C0] invalidate_bh_lru+0x128/0x22c [ 72.751787][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 72.752698][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 72.753704][ C0] ipi_handler+0x10c/0x6fc [ 72.754358][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 72.755169][ C0] handle_domain_irq+0x144/0x1fc [ 72.755927][ C0] gic_handle_irq+0x78/0x1b8 [ 72.756556][ C0] call_on_irq_stack+0x30/0x48 [ 72.757266][ C0] do_interrupt_handler+0x6c/0x88 [ 72.757982][ C0] el1_interrupt+0x30/0x58 [ 72.758596][ C0] el1h_64_irq_handler+0x18/0x24 [ 72.759319][ C0] el1h_64_irq+0x78/0x7c [ 72.759987][ C0] qlist_free_all+0x3c/0xa8 [ 72.760670][ C0] kasan_quarantine_reduce+0x124/0x130 [ 72.761480][ C0] __kasan_slab_alloc+0x34/0xcc [ 72.762202][ C0] slab_post_alloc_hook+0x74/0x3f8 [ 72.762950][ C0] kmem_cache_alloc+0x1d8/0x3d4 [ 72.763638][ C0] __d_alloc+0x3c/0x65c [ 72.764252][ C0] d_alloc_parallel+0x7c/0x1164 [ 72.764941][ C0] __lookup_slow+0x114/0x39c [ 72.765594][ C0] lookup_slow+0x5c/0x80 [ 72.766195][ C0] walk_component+0x2b0/0x3a8 [ 72.766897][ C0] path_lookupat+0x13c/0x3d0 [ 72.767495][ C0] filename_lookup+0x1b4/0x464 [ 72.768181][ C0] user_path_at_empty+0x5c/0x1a0 [ 72.768965][ C0] vfs_statx+0xf8/0x490 [ 72.769573][ C0] __arm64_sys_newfstatat+0x124/0x1bc [ 72.770341][ C0] invoke_syscall+0x98/0x2b0 [ 72.771048][ C0] el0_svc_common+0x138/0x258 [ 72.771751][ C0] do_el0_svc+0x58/0x13c [ 72.772382][ C0] el0_svc+0x78/0x1d0 [ 72.772919][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 72.773619][ C0] el0t_64_sync+0x1a0/0x1a4 [ 72.774258][ C0] irq event stamp: 1193056 [ 72.774905][ C0] hardirqs last enabled at (1193055): [] put_cpu_partial+0x188/0x214 [ 72.776406][ C0] hardirqs last disabled at (1193056): [] enter_el1_irq_or_nmi+0x10/0x1c [ 72.777793][ C0] softirqs last enabled at (1192412): [] local_bh_enable+0x10/0x34 [ 72.779060][ C0] softirqs last disabled at (1192410): [] local_bh_disable+0x10/0x34 [ 72.780472][ C0] ---[ end trace b32b58f23b4c8dd2 ]--- [ 72.832007][ T4998] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.839906][ T4998] Bad inode number on dev loop0: 2 is out of range [ 72.840876][ T4998] SysV FS: get root inode failed [ 72.841616][ T4998] oldfs: cannot read superblock [ 72.849724][ C0] ------------[ cut here ]------------ [ 72.850646][ C0] VFS: brelse: Trying to free free buffer [ 72.851502][ C0] WARNING: CPU: 0 PID: 4999 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 72.852849][ C0] Modules linked in: [ 72.853455][ C0] CPU: 0 PID: 4999 Comm: syz.0.44 Tainted: G W syzkaller #0 [ 72.854666][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 72.856078][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.857212][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 72.857975][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 72.858723][ C0] sp : ffff800008007de0 [ 72.859329][ C0] x29: ffff800008007de0 x28: ffff0000d30dd1c0 x27: 1fffe000341f245b [ 72.860438][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 72.861603][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2d18148 [ 72.862724][ C0] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000010002 [ 72.863926][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 72.865079][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 72.866164][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 4d5d22ce6c2e6b00 [ 72.867264][ C0] x8 : 4d5d22ce6c2e6b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.868448][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 72.869607][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 72.870777][ C0] Call trace: [ 72.871261][ C0] invalidate_bh_lru+0x128/0x22c [ 72.871945][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 72.872780][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 72.873767][ C0] ipi_handler+0x10c/0x6fc [ 72.874402][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 72.875192][ C0] handle_domain_irq+0x144/0x1fc [ 72.875864][ C0] gic_handle_irq+0x78/0x1b8 [ 72.876543][ C0] call_on_irq_stack+0x30/0x48 [ 72.877199][ C0] do_interrupt_handler+0x6c/0x88 [ 72.877877][ C0] el1_interrupt+0x30/0x58 [ 72.878501][ C0] el1h_64_irq_handler+0x18/0x24 [ 72.879194][ C0] el1h_64_irq+0x78/0x7c [ 72.879759][ C0] try_charge_memcg+0x1e4/0x11a0 [ 72.880463][ C0] charge_memcg+0xac/0x21c [ 72.881097][ C0] __mem_cgroup_charge+0x38/0xb0 [ 72.881779][ C0] handle_mm_fault+0x1808/0x2a28 [ 72.882467][ C0] do_page_fault+0x67c/0xab0 [ 72.883130][ C0] do_translation_fault+0xe0/0x130 [ 72.883834][ C0] do_mem_abort+0x6c/0x1ac [ 72.884451][ C0] el0_da+0x90/0x1ec [ 72.884993][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 72.885790][ C0] el0t_64_sync+0x1a0/0x1a4 [ 72.886400][ C0] irq event stamp: 1322 [ 72.886951][ C0] hardirqs last enabled at (1321): [] try_charge_memcg+0x1d4/0x11a0 [ 72.888255][ C0] hardirqs last disabled at (1322): [] enter_el1_irq_or_nmi+0x10/0x1c [ 72.889602][ C0] softirqs last enabled at (1086): [] local_bh_enable+0x10/0x34 [ 72.890912][ C0] softirqs last disabled at (1084): [] local_bh_disable+0x10/0x34 [ 72.892292][ C0] ---[ end trace b32b58f23b4c8dd3 ]--- [ 73.028671][ T5000] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.032124][ T5000] Bad inode number on dev loop0: 2 is out of range [ 73.033159][ T5000] SysV FS: get root inode failed [ 73.033967][ T5000] oldfs: cannot read superblock [ 73.039345][ T4941] ------------[ cut here ]------------ [ 73.040271][ T4941] VFS: brelse: Trying to free free buffer [ 73.041325][ T4941] WARNING: CPU: 0 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 73.042712][ T4941] Modules linked in: [ 73.043324][ T4941] CPU: 0 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 73.044549][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 73.046005][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.047152][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 73.047968][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 73.048695][ T4941] sp : ffff80001fe377c0 [ 73.049298][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f245b [ 73.050473][ T4941] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 73.051658][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debf0400 [ 73.052918][ T4941] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000000003 [ 73.054175][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 73.055387][ T4941] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 73.056560][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 73.057703][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.058870][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 73.060109][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 73.061273][ T4941] Call trace: [ 73.061760][ T4941] invalidate_bh_lru+0x128/0x22c [ 73.062488][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 73.063356][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 73.064099][ T4941] invalidate_bh_lrus+0x34/0x40 [ 73.064770][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 73.065538][ T4941] blkdev_put+0x490/0x6ac [ 73.066188][ T4941] blkdev_close+0x74/0xb0 [ 73.066805][ T4941] __fput+0x1c0/0x7e8 [ 73.067369][ T4941] ____fput+0x20/0x30 [ 73.067949][ T4941] task_work_run+0x12c/0x1d8 [ 73.068690][ T4941] do_notify_resume+0x2450/0x309c [ 73.069509][ T4941] el0_svc+0xf0/0x1d0 [ 73.070172][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 73.070983][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 73.071679][ T4941] irq event stamp: 129528 [ 73.072349][ T4941] hardirqs last enabled at (129527): [] kasan_quarantine_put+0xc4/0x200 [ 73.073811][ T4941] hardirqs last disabled at (129528): [] smp_call_function_many_cond+0xa44/0xeac [ 73.075354][ T4941] softirqs last enabled at (129266): [] local_bh_enable+0x10/0x34 [ 73.076779][ T4941] softirqs last disabled at (129264): [] local_bh_disable+0x10/0x34 [ 73.078238][ T4941] ---[ end trace b32b58f23b4c8dd4 ]--- [ 73.139907][ T5002] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.141115][ T5002] Bad inode number on dev loop0: 2 is out of range [ 73.142058][ T5002] SysV FS: get root inode failed [ 73.142759][ T5002] oldfs: cannot read superblock [ 73.146736][ C0] ------------[ cut here ]------------ [ 73.147665][ C0] VFS: brelse: Trying to free free buffer [ 73.148530][ C0] WARNING: CPU: 0 PID: 592 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 73.149752][ C0] Modules linked in: [ 73.150306][ C0] CPU: 0 PID: 592 Comm: kworker/u4:4 Tainted: G W syzkaller #0 [ 73.151574][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 73.153062][ C0] Workqueue: netns cleanup_net [ 73.153768][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.154924][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 73.155708][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 73.156473][ C0] sp : ffff800008007de0 [ 73.157110][ C0] x29: ffff800008007de0 x28: ffff0000c88b3680 x27: 1fffe000341f245b [ 73.158296][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 73.159426][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debf0b40 [ 73.160536][ C0] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000010002 [ 73.161647][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 73.162865][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 73.164051][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : dfb96c1f4b412300 [ 73.165234][ C0] x8 : dfb96c1f4b412300 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.166352][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 73.167621][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 73.168779][ C0] Call trace: [ 73.169249][ C0] invalidate_bh_lru+0x128/0x22c [ 73.169921][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 73.170741][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.171696][ C0] ipi_handler+0x10c/0x6fc [ 73.172382][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 73.173133][ C0] handle_domain_irq+0x144/0x1fc [ 73.173831][ C0] gic_handle_irq+0x78/0x1b8 [ 73.174480][ C0] call_on_irq_stack+0x30/0x48 [ 73.175142][ C0] do_interrupt_handler+0x6c/0x88 [ 73.175857][ C0] el1_interrupt+0x30/0x58 [ 73.176470][ C0] el1h_64_irq_handler+0x18/0x24 [ 73.177151][ C0] el1h_64_irq+0x78/0x7c [ 73.177744][ C0] ___might_sleep+0x11c/0x4d4 [ 73.178452][ C0] inet_twsk_purge+0x108/0x7c4 [ 73.179125][ C0] dccp_v6_exit_batch+0x20/0x2c [ 73.179827][ C0] cleanup_net+0x654/0xaa4 [ 73.180472][ C0] process_one_work+0x79c/0x1138 [ 73.181152][ C0] worker_thread+0x8f4/0x1034 [ 73.181854][ C0] kthread+0x374/0x454 [ 73.182419][ C0] ret_from_fork+0x10/0x20 [ 73.183031][ C0] irq event stamp: 2588180 [ 73.183721][ C0] hardirqs last enabled at (2588179): [] exit_to_kernel_mode+0xe0/0x168 [ 73.185068][ C0] hardirqs last disabled at (2588180): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.186517][ C0] softirqs last enabled at (2588174): [] handle_softirqs+0xa40/0xbe4 [ 73.187963][ C0] softirqs last disabled at (2588163): [] __irq_exit_rcu+0x240/0x43c [ 73.189357][ C0] ---[ end trace b32b58f23b4c8dd5 ]--- [ 73.321241][ T5004] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.322308][ T5004] Bad inode number on dev loop0: 2 is out of range [ 73.323218][ T5004] SysV FS: get root inode failed [ 73.323979][ T5004] oldfs: cannot read superblock [ 73.324648][ T5004] ------------[ cut here ]------------ [ 73.325398][ T5004] VFS: brelse: Trying to free free buffer [ 73.326191][ T5004] WARNING: CPU: 1 PID: 5004 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 73.327451][ T5004] Modules linked in: [ 73.327995][ T5004] CPU: 1 PID: 5004 Comm: syz.0.46 Tainted: G W syzkaller #0 [ 73.329242][ T5004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 73.330679][ T5004] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.331802][ T5004] pc : invalidate_bh_lru+0x128/0x22c [ 73.332525][ T5004] lr : invalidate_bh_lru+0x128/0x22c [ 73.333259][ T5004] sp : ffff80001fe576e0 [ 73.333809][ T5004] x29: ffff80001fe576e0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 73.334987][ T5004] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 73.336178][ T5004] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9b0ee0 [ 73.337393][ T5004] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 73.338650][ T5004] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 73.339829][ T5004] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 73.340980][ T5004] x11: 0000000000000002 x10: 0000000000000000 x9 : 2d47f2ee8e1aea00 [ 73.342121][ T5004] x8 : 2d47f2ee8e1aea00 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.343242][ T5004] x5 : ffff80001fe56ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 73.344476][ T5004] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 73.345705][ T5004] Call trace: [ 73.346178][ T5004] invalidate_bh_lru+0x128/0x22c [ 73.346837][ T5004] smp_call_function_many_cond+0xa50/0xeac [ 73.347674][ T5004] on_each_cpu_cond_mask+0x5c/0xc4 [ 73.348379][ T5004] invalidate_bh_lrus+0x34/0x40 [ 73.349060][ T5004] blkdev_flush_mapping+0x16c/0x334 [ 73.349849][ T5004] blkdev_put+0x490/0x6ac [ 73.350486][ T5004] kill_block_super+0x98/0xdc [ 73.351162][ T5004] deactivate_locked_super+0xb8/0x134 [ 73.351947][ T5004] mount_bdev+0x284/0x358 [ 73.352568][ T5004] sysv_mount+0x44/0x58 [ 73.353153][ T5004] legacy_get_tree+0xd4/0x16c [ 73.353850][ T5004] vfs_get_tree+0x90/0x274 [ 73.354481][ T5004] do_new_mount+0x228/0x810 [ 73.355161][ T5004] path_mount+0x5bc/0x1008 [ 73.355791][ T5004] __arm64_sys_mount+0x514/0x5f0 [ 73.356484][ T5004] invoke_syscall+0x98/0x2b0 [ 73.357149][ T5004] el0_svc_common+0x138/0x258 [ 73.357840][ T5004] do_el0_svc+0x58/0x13c [ 73.358441][ T5004] el0_svc+0x78/0x1d0 [ 73.358979][ T5004] el0t_64_sync_handler+0xcc/0xe4 [ 73.359657][ T5004] el0t_64_sync+0x1a0/0x1a4 [ 73.360306][ T5004] irq event stamp: 1098 [ 73.360860][ T5004] hardirqs last enabled at (1097): [] kasan_quarantine_put+0xc4/0x200 [ 73.362245][ T5004] hardirqs last disabled at (1098): [] smp_call_function_many_cond+0xa44/0xeac [ 73.363702][ T5004] softirqs last enabled at (910): [] local_bh_enable+0x10/0x34 [ 73.364987][ T5004] softirqs last disabled at (908): [] local_bh_disable+0x10/0x34 [ 73.366241][ T5004] ---[ end trace b32b58f23b4c8dd6 ]--- [ 73.562885][ T5007] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.564027][ T5007] Bad inode number on dev loop0: 2 is out of range [ 73.565508][ T5007] SysV FS: get root inode failed [ 73.566234][ T5007] oldfs: cannot read superblock [ 73.572040][ C1] ------------[ cut here ]------------ [ 73.572881][ C1] VFS: brelse: Trying to free free buffer [ 73.573767][ C1] WARNING: CPU: 1 PID: 592 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 73.575055][ C1] Modules linked in: [ 73.575651][ C1] CPU: 1 PID: 592 Comm: kworker/u4:4 Tainted: G W syzkaller #0 [ 73.576928][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 73.578424][ C1] Workqueue: netns cleanup_net [ 73.579090][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.580177][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 73.580970][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 73.581679][ C1] sp : ffff800008017de0 [ 73.582242][ C1] x29: ffff800008017de0 x28: ffff0000c88b3680 x27: 1fffe000341f665b [ 73.583413][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 73.584565][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9b0318 [ 73.585733][ C1] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000010002 [ 73.586871][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 73.588030][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 73.589120][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : dfb96c1f4b412300 [ 73.590347][ C1] x8 : dfb96c1f4b412300 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.591530][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 73.592763][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 73.593879][ C1] Call trace: [ 73.594344][ C1] invalidate_bh_lru+0x128/0x22c [ 73.595042][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 73.595857][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.596857][ C1] ipi_handler+0x10c/0x6fc [ 73.597529][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 73.598365][ C1] handle_domain_irq+0x144/0x1fc [ 73.599105][ C1] gic_handle_irq+0x78/0x1b8 [ 73.599866][ C1] call_on_irq_stack+0x30/0x48 [ 73.600560][ C1] do_interrupt_handler+0x6c/0x88 [ 73.601278][ C1] el1_interrupt+0x30/0x58 [ 73.601895][ C1] el1h_64_irq_handler+0x18/0x24 [ 73.602585][ C1] el1h_64_irq+0x78/0x7c [ 73.603197][ C1] __local_bh_enable_ip+0x200/0x37c [ 73.604016][ C1] _raw_spin_unlock_bh+0xec/0x174 [ 73.604704][ C1] tcp_metrics_flush_all+0x288/0x348 [ 73.605443][ C1] tcp_net_metrics_exit_batch+0x18/0x24 [ 73.606202][ C1] cleanup_net+0x654/0xaa4 [ 73.606886][ C1] process_one_work+0x79c/0x1138 [ 73.607643][ C1] worker_thread+0x8f4/0x1034 [ 73.608294][ C1] kthread+0x374/0x454 [ 73.608883][ C1] ret_from_fork+0x10/0x20 [ 73.609542][ C1] irq event stamp: 2640864 [ 73.610167][ C1] hardirqs last enabled at (2640863): [] __local_bh_enable_ip+0x1f8/0x37c [ 73.611563][ C1] hardirqs last disabled at (2640864): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.612949][ C1] softirqs last enabled at (2640862): [] tcp_metrics_flush_all+0x288/0x348 [ 73.614353][ C1] softirqs last disabled at (2640860): [] tcp_metrics_flush_all+0x80/0x348 [ 73.615715][ C1] ---[ end trace b32b58f23b4c8dd7 ]--- [ 73.704400][ T5009] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.705642][ T5009] Bad inode number on dev loop0: 2 is out of range [ 73.706678][ T5009] SysV FS: get root inode failed [ 73.707423][ T5009] oldfs: cannot read superblock [ 73.711415][ C1] ------------[ cut here ]------------ [ 73.712244][ C1] VFS: brelse: Trying to free free buffer [ 73.713227][ C1] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 73.714585][ C1] Modules linked in: [ 73.715160][ C1] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 73.716397][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 73.717870][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.718926][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 73.719679][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 73.720391][ C1] sp : ffff800008017de0 [ 73.720930][ C1] x29: ffff800008017de0 x28: ffff0000c7ca0000 x27: 1fffe000341f665c [ 73.722060][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 73.723173][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de8cd318 [ 73.724261][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010003 [ 73.725421][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 73.726608][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 73.727812][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 98f689a7f0ca7300 [ 73.728990][ C1] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.730218][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 73.731410][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 73.732585][ C1] Call trace: [ 73.733070][ C1] invalidate_bh_lru+0x128/0x22c [ 73.733840][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 73.734717][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.735799][ C1] ipi_handler+0x10c/0x6fc [ 73.736412][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 73.737166][ C1] handle_domain_irq+0x144/0x1fc [ 73.737844][ C1] gic_handle_irq+0x78/0x1b8 [ 73.738496][ C1] call_on_irq_stack+0x30/0x48 [ 73.739159][ C1] do_interrupt_handler+0x6c/0x88 [ 73.739901][ C1] el1_interrupt+0x30/0x58 [ 73.740539][ C1] el1h_64_irq_handler+0x18/0x24 [ 73.741205][ C1] el1h_64_irq+0x78/0x7c [ 73.741839][ C1] lock_acquire+0x234/0x618 [ 73.742535][ C1] _raw_spin_lock+0xb0/0x10c [ 73.743211][ C1] lockref_put_or_lock+0x30/0xd0 [ 73.744020][ C1] dput+0x20c/0x458 [ 73.744586][ C1] path_put+0x3c/0x68 [ 73.745181][ C1] vfs_statx+0x258/0x490 [ 73.745741][ C1] __arm64_sys_newfstatat+0x124/0x1bc [ 73.746505][ C1] invoke_syscall+0x98/0x2b0 [ 73.747160][ C1] el0_svc_common+0x138/0x258 [ 73.747880][ C1] do_el0_svc+0x58/0x13c [ 73.748467][ C1] el0_svc+0x78/0x1d0 [ 73.749016][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 73.749704][ C1] el0t_64_sync+0x1a0/0x1a4 [ 73.750347][ C1] irq event stamp: 266940 [ 73.750966][ C1] hardirqs last enabled at (266939): [] kasan_quarantine_put+0xc4/0x200 [ 73.752399][ C1] hardirqs last disabled at (266940): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.753841][ C1] softirqs last enabled at (266904): [] local_bh_enable+0x10/0x34 [ 73.755230][ C1] softirqs last disabled at (266902): [] local_bh_disable+0x10/0x34 [ 73.756636][ C1] ---[ end trace b32b58f23b4c8dd8 ]--- [ 73.790448][ T5011] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.791639][ T5011] Bad inode number on dev loop0: 2 is out of range [ 73.792604][ T5011] SysV FS: get root inode failed [ 73.793378][ T5011] oldfs: cannot read superblock [ 73.797271][ C0] ------------[ cut here ]------------ [ 73.798177][ C0] VFS: brelse: Trying to free free buffer [ 73.799168][ C0] WARNING: CPU: 0 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 73.800529][ C0] Modules linked in: [ 73.801113][ C0] CPU: 0 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 73.802452][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 73.803873][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.804986][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 73.805766][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 73.806472][ C0] sp : ffff800008007de0 [ 73.807070][ C0] x29: ffff800008007de0 x28: ffff0000c7ca0000 x27: 1fffe000341f245c [ 73.808210][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 73.809321][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debf0ee0 [ 73.810409][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010002 [ 73.811528][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 73.812672][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 73.813798][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 98f689a7f0ca7300 [ 73.814890][ C0] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.815986][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 73.817056][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 73.818115][ C0] Call trace: [ 73.818561][ C0] invalidate_bh_lru+0x128/0x22c [ 73.819238][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 73.820091][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.821032][ C0] ipi_handler+0x10c/0x6fc [ 73.821646][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 73.822409][ C0] handle_domain_irq+0x144/0x1fc [ 73.823104][ C0] gic_handle_irq+0x78/0x1b8 [ 73.823740][ C0] call_on_irq_stack+0x30/0x48 [ 73.824408][ C0] do_interrupt_handler+0x6c/0x88 [ 73.825087][ C0] el0_interrupt+0x94/0x248 [ 73.825701][ C0] __el0_irq_handler_common+0x18/0x24 [ 73.826442][ C0] el0t_64_irq_handler+0x10/0x1c [ 73.827120][ C0] el0t_64_irq+0x1a0/0x1a4 [ 73.827715][ C0] irq event stamp: 269866 [ 73.828287][ C0] hardirqs last enabled at (269865): [] el0t_64_sync_handler+0xcc/0xe4 [ 73.829618][ C0] hardirqs last disabled at (269866): [] __el0_irq_handler_common+0x18/0x24 [ 73.831021][ C0] softirqs last enabled at (269792): [] local_bh_enable+0x10/0x34 [ 73.832430][ C0] softirqs last disabled at (269790): [] local_bh_disable+0x10/0x34 [ 73.833749][ C0] ---[ end trace b32b58f23b4c8dd9 ]--- [ 73.921156][ T5014] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.922248][ T5014] Bad inode number on dev loop0: 2 is out of range [ 73.923260][ T5014] SysV FS: get root inode failed [ 73.924065][ T5014] oldfs: cannot read superblock [ 73.938858][ T4941] ------------[ cut here ]------------ [ 73.939745][ T4941] VFS: brelse: Trying to free free buffer [ 73.940632][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 73.941975][ T4941] Modules linked in: [ 73.942520][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 73.943738][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 73.945211][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.946298][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 73.947052][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 73.947767][ T4941] sp : ffff80001fe377c0 [ 73.948428][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665c [ 73.949665][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 73.950927][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de8cd6b8 [ 73.952186][ T4941] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000000003 [ 73.953399][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 73.954617][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 73.955805][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 73.957012][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.958193][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 73.959382][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 73.960598][ T4941] Call trace: [ 73.961070][ T4941] invalidate_bh_lru+0x128/0x22c [ 73.961791][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 73.962652][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 73.963400][ T4941] invalidate_bh_lrus+0x34/0x40 [ 73.964142][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 73.964971][ T4941] blkdev_put+0x490/0x6ac [ 73.965578][ T4941] blkdev_close+0x74/0xb0 [ 73.966180][ T4941] __fput+0x1c0/0x7e8 [ 73.966778][ T4941] ____fput+0x20/0x30 [ 73.967362][ T4941] task_work_run+0x12c/0x1d8 [ 73.968052][ T4941] do_notify_resume+0x2450/0x309c [ 73.968772][ T4941] el0_svc+0xf0/0x1d0 [ 73.969311][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 73.970013][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 73.970660][ T4941] irq event stamp: 163582 [ 73.971289][ T4941] hardirqs last enabled at (163581): [] kasan_quarantine_put+0xc4/0x200 [ 73.972643][ T4941] hardirqs last disabled at (163582): [] smp_call_function_many_cond+0xa44/0xeac [ 73.974437][ T4941] softirqs last enabled at (162814): [] local_bh_enable+0x10/0x34 [ 73.975903][ T4941] softirqs last disabled at (162812): [] local_bh_disable+0x10/0x34 [ 73.977460][ T4941] ---[ end trace b32b58f23b4c8dda ]--- [ 74.061405][ T5018] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.062850][ T5018] Bad inode number on dev loop0: 2 is out of range [ 74.063828][ T5018] SysV FS: get root inode failed [ 74.064609][ T5018] oldfs: cannot read superblock [ 74.070510][ C1] ------------[ cut here ]------------ [ 74.071322][ C1] VFS: brelse: Trying to free free buffer [ 74.072106][ C1] WARNING: CPU: 1 PID: 5018 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 74.073323][ C1] Modules linked in: [ 74.073979][ C1] CPU: 1 PID: 5018 Comm: syz.0.52 Tainted: G W syzkaller #0 [ 74.075268][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 74.076659][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.077715][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 74.078459][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 74.079197][ C1] sp : ffff800008017de0 [ 74.079773][ C1] x29: ffff800008017de0 x28: ffff0000d11e8000 x27: 1fffe000341f665b [ 74.080959][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 74.082173][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de8cda58 [ 74.083400][ C1] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000010003 [ 74.084600][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 74.085819][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 74.086983][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : d1decf4473ce0b00 [ 74.088183][ C1] x8 : d1decf4473ce0b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.089342][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 74.090562][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 74.091741][ C1] Call trace: [ 74.092197][ C1] invalidate_bh_lru+0x128/0x22c [ 74.092867][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 74.093743][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 74.094735][ C1] ipi_handler+0x10c/0x6fc [ 74.095378][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 74.096207][ C1] handle_domain_irq+0x144/0x1fc [ 74.096926][ C1] gic_handle_irq+0x78/0x1b8 [ 74.097598][ C1] call_on_irq_stack+0x30/0x48 [ 74.098249][ C1] do_interrupt_handler+0x6c/0x88 [ 74.098967][ C1] el1_interrupt+0x30/0x58 [ 74.099623][ C1] el1h_64_irq_handler+0x18/0x24 [ 74.100290][ C1] el1h_64_irq+0x78/0x7c [ 74.100994][ C1] lock_page_memcg+0x120/0x22c [ 74.101741][ C1] page_remove_rmap+0x3c/0xf90 [ 74.102436][ C1] unmap_page_range+0xb78/0x1908 [ 74.103134][ C1] unmap_single_vma+0x13c/0x1e4 [ 74.103829][ C1] unmap_vmas+0x10c/0x214 [ 74.104457][ C1] exit_mmap+0x2c4/0x508 [ 74.105040][ C1] __mmput+0xec/0x3a8 [ 74.105668][ C1] mmput+0x80/0xc0 [ 74.106224][ C1] exit_mm+0x4ac/0x664 [ 74.106932][ C1] do_exit+0x4f0/0x1f50 [ 74.107553][ C1] do_group_exit+0x100/0x268 [ 74.108235][ C1] get_signal+0x73c/0x1334 [ 74.108850][ C1] do_notify_resume+0x354/0x309c [ 74.109574][ C1] el0_svc+0xf0/0x1d0 [ 74.110148][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 74.110825][ C1] el0t_64_sync+0x1a0/0x1a4 [ 74.111471][ C1] irq event stamp: 1954 [ 74.112001][ C1] hardirqs last enabled at (1953): [] lock_page_memcg+0x110/0x22c [ 74.113322][ C1] hardirqs last disabled at (1954): [] enter_el1_irq_or_nmi+0x10/0x1c [ 74.114652][ C1] softirqs last enabled at (1278): [] handle_softirqs+0xa40/0xbe4 [ 74.115940][ C1] softirqs last disabled at (1263): [] __irq_exit_rcu+0x240/0x43c [ 74.117233][ C1] ---[ end trace b32b58f23b4c8ddb ]--- [ 74.221660][ T5020] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.222809][ T5020] Bad inode number on dev loop0: 2 is out of range [ 74.223744][ T5020] SysV FS: get root inode failed [ 74.224386][ T5020] oldfs: cannot read superblock [ 74.243321][ C0] ------------[ cut here ]------------ [ 74.244247][ C0] VFS: brelse: Trying to free free buffer [ 74.245196][ C0] WARNING: CPU: 0 PID: 5024 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 74.246506][ C0] Modules linked in: [ 74.247188][ C0] CPU: 0 PID: 5024 Comm: syz.0.55 Tainted: G W syzkaller #0 [ 74.248529][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 74.250061][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.251309][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 74.252151][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 74.253007][ C0] sp : ffff800008007de0 [ 74.253659][ C0] x29: ffff800008007de0 x28: ffff0000cc7e0000 x27: 1fffe000341f245c [ 74.254876][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 74.256130][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05ed060 [ 74.257359][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010003 [ 74.258581][ C0] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 74.259780][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 74.261040][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 0f4da1d66505d300 [ 74.262284][ C0] x8 : 0f4da1d66505d300 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.263518][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 74.264756][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 74.266018][ C0] Call trace: [ 74.266495][ C0] invalidate_bh_lru+0x128/0x22c [ 74.267229][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 74.268096][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 74.269099][ C0] ipi_handler+0x10c/0x6fc [ 74.269730][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 74.270488][ C0] handle_domain_irq+0x144/0x1fc [ 74.271227][ C0] gic_handle_irq+0x78/0x1b8 [ 74.271848][ C0] call_on_irq_stack+0x30/0x48 [ 74.272577][ C0] do_interrupt_handler+0x6c/0x88 [ 74.273273][ C0] el1_interrupt+0x30/0x58 [ 74.273856][ C0] el1h_64_irq_handler+0x18/0x24 [ 74.274590][ C0] el1h_64_irq+0x78/0x7c [ 74.275242][ C0] __percpu_read_32+0x10/0x58 [ 74.275961][ C0] lock_is_held_type+0x48/0x198 [ 74.276628][ C0] __cgroup_throttle_swaprate+0x1d4/0x55c [ 74.277463][ C0] handle_mm_fault+0x1ec8/0x2a28 [ 74.278202][ C0] do_page_fault+0x67c/0xab0 [ 74.278863][ C0] do_translation_fault+0xe0/0x130 [ 74.279649][ C0] do_mem_abort+0x6c/0x1ac [ 74.280287][ C0] el0_da+0x90/0x1ec [ 74.280811][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 74.281566][ C0] el0t_64_sync+0x1a0/0x1a4 [ 74.282271][ C0] irq event stamp: 150 [ 74.282875][ C0] hardirqs last enabled at (149): [] charge_memcg+0x190/0x21c [ 74.284176][ C0] hardirqs last disabled at (150): [] enter_el1_irq_or_nmi+0x10/0x1c [ 74.285676][ C0] softirqs last enabled at (48): [] local_bh_enable+0x10/0x34 [ 74.287012][ C0] softirqs last disabled at (46): [] local_bh_disable+0x10/0x34 [ 74.288330][ C0] ---[ end trace b32b58f23b4c8ddc ]--- [ 74.352001][ T5024] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.353344][ T5024] Bad inode number on dev loop0: 2 is out of range [ 74.354280][ T5024] SysV FS: get root inode failed [ 74.355062][ T5024] oldfs: cannot read superblock [ 74.364496][ T4941] ------------[ cut here ]------------ [ 74.365407][ T4941] VFS: brelse: Trying to free free buffer [ 74.366336][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 74.367583][ T4941] Modules linked in: [ 74.368126][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 74.369245][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 74.370705][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.371864][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 74.372695][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 74.373486][ T4941] sp : ffff80001fe377c0 [ 74.374096][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 74.375282][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 74.376481][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de8cddf8 [ 74.377674][ T4941] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 74.379002][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 74.380309][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 74.381504][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 74.382732][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.383949][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 74.385087][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 74.386342][ T4941] Call trace: [ 74.386795][ T4941] invalidate_bh_lru+0x128/0x22c [ 74.387569][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 74.388457][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 74.389199][ T4941] invalidate_bh_lrus+0x34/0x40 [ 74.389909][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 74.390698][ T4941] blkdev_put+0x490/0x6ac [ 74.391308][ T4941] blkdev_close+0x74/0xb0 [ 74.392002][ T4941] __fput+0x1c0/0x7e8 [ 74.392570][ T4941] ____fput+0x20/0x30 [ 74.393134][ T4941] task_work_run+0x12c/0x1d8 [ 74.393803][ T4941] do_notify_resume+0x2450/0x309c [ 74.394528][ T4941] el0_svc+0xf0/0x1d0 [ 74.395142][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 74.395885][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 74.396562][ T4941] irq event stamp: 180480 [ 74.397201][ T4941] hardirqs last enabled at (180479): [] kasan_quarantine_put+0xc4/0x200 [ 74.398634][ T4941] hardirqs last disabled at (180480): [] smp_call_function_many_cond+0xa44/0xeac [ 74.400135][ T4941] softirqs last enabled at (180208): [] local_bh_enable+0x10/0x34 [ 74.401605][ T4941] softirqs last disabled at (180206): [] local_bh_disable+0x10/0x34 [ 74.403026][ T4941] ---[ end trace b32b58f23b4c8ddd ]--- [ 74.444399][ T5026] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.445596][ T5026] Bad inode number on dev loop0: 2 is out of range [ 74.446667][ T5026] SysV FS: get root inode failed [ 74.447441][ T5026] oldfs: cannot read superblock [ 74.456526][ T4941] ------------[ cut here ]------------ [ 74.457312][ T4941] VFS: brelse: Trying to free free buffer [ 74.458160][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 74.459409][ T4941] Modules linked in: [ 74.460016][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 74.461198][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 74.462696][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.463870][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 74.464705][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 74.465507][ T4941] sp : ffff80001fe377c0 [ 74.466109][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 74.467258][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 74.468461][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb4d230 [ 74.469666][ T4941] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 74.470906][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 74.472151][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 74.473352][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 74.474522][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.475586][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 74.476773][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 74.477999][ T4941] Call trace: [ 74.478490][ T4941] invalidate_bh_lru+0x128/0x22c [ 74.479174][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 74.480076][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 74.480836][ T4941] invalidate_bh_lrus+0x34/0x40 [ 74.481524][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 74.482278][ T4941] blkdev_put+0x490/0x6ac [ 74.482857][ T4941] blkdev_close+0x74/0xb0 [ 74.483559][ T4941] __fput+0x1c0/0x7e8 [ 74.484103][ T4941] ____fput+0x20/0x30 [ 74.484736][ T4941] task_work_run+0x12c/0x1d8 [ 74.485341][ T4941] do_notify_resume+0x2450/0x309c [ 74.486093][ T4941] el0_svc+0xf0/0x1d0 [ 74.486651][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 74.487370][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 74.488048][ T4941] irq event stamp: 184060 [ 74.488718][ T4941] hardirqs last enabled at (184059): [] kasan_quarantine_put+0xc4/0x200 [ 74.490226][ T4941] hardirqs last disabled at (184060): [] smp_call_function_many_cond+0xa44/0xeac [ 74.491836][ T4941] softirqs last enabled at (183802): [] local_bh_enable+0x10/0x34 [ 74.493194][ T4941] softirqs last disabled at (183800): [] local_bh_disable+0x10/0x34 [ 74.494573][ T4941] ---[ end trace b32b58f23b4c8dde ]--- [ 74.561727][ T5028] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.562757][ T5028] Bad inode number on dev loop0: 2 is out of range [ 74.563663][ T5028] SysV FS: get root inode failed [ 74.564330][ T5028] oldfs: cannot read superblock [ 74.573604][ T4941] ------------[ cut here ]------------ [ 74.574452][ T4941] VFS: brelse: Trying to free free buffer [ 74.575327][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 74.576600][ T4941] Modules linked in: [ 74.577159][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 74.578318][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 74.579677][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.580898][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 74.581682][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 74.582456][ T4941] sp : ffff80001fe377c0 [ 74.583022][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665c [ 74.584213][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 74.585381][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb4d5d0 [ 74.586553][ T4941] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000000003 [ 74.587735][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 74.588894][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 74.590058][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 74.591285][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.592467][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 74.593675][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 74.594918][ T4941] Call trace: [ 74.595393][ T4941] invalidate_bh_lru+0x128/0x22c [ 74.596115][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 74.596943][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 74.597685][ T4941] invalidate_bh_lrus+0x34/0x40 [ 74.598392][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 74.599127][ T4941] blkdev_put+0x490/0x6ac [ 74.599719][ T4941] blkdev_close+0x74/0xb0 [ 74.600350][ T4941] __fput+0x1c0/0x7e8 [ 74.600924][ T4941] ____fput+0x20/0x30 [ 74.601480][ T4941] task_work_run+0x12c/0x1d8 [ 74.602178][ T4941] do_notify_resume+0x2450/0x309c [ 74.602894][ T4941] el0_svc+0xf0/0x1d0 [ 74.603497][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 74.604247][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 74.604863][ T4941] irq event stamp: 188196 [ 74.605482][ T4941] hardirqs last enabled at (188195): [] kasan_quarantine_put+0xc4/0x200 [ 74.606871][ T4941] hardirqs last disabled at (188196): [] smp_call_function_many_cond+0xa44/0xeac [ 74.608312][ T4941] softirqs last enabled at (187908): [] local_bh_enable+0x10/0x34 [ 74.609586][ T4941] softirqs last disabled at (187906): [] local_bh_disable+0x10/0x34 [ 74.610986][ T4941] ---[ end trace b32b58f23b4c8ddf ]--- 1970/01/01 00:01:14 executed programs: 45 [ 74.653106][ T5030] set_capacity_and_notify: 26 callbacks suppressed [ 74.653114][ T5030] loop0: detected capacity change from 0 to 128 [ 74.695379][ T5030] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.696599][ T5030] Bad inode number on dev loop0: 2 is out of range [ 74.697570][ T5030] SysV FS: get root inode failed [ 74.698317][ T5030] oldfs: cannot read superblock [ 74.702494][ T4941] ------------[ cut here ]------------ [ 74.703322][ T4941] VFS: brelse: Trying to free free buffer [ 74.704294][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 74.705674][ T4941] Modules linked in: [ 74.706307][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 74.707563][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 74.709048][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.710205][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 74.710997][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 74.711748][ T4941] sp : ffff80001fe377c0 [ 74.712347][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 74.713590][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 74.714747][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb4d970 [ 74.715857][ T4941] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 74.716965][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 74.718097][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 74.719175][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 74.720255][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.721363][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 74.722467][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 74.723603][ T4941] Call trace: [ 74.724078][ T4941] invalidate_bh_lru+0x128/0x22c [ 74.724757][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 74.725550][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 74.726273][ T4941] invalidate_bh_lrus+0x34/0x40 [ 74.726921][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 74.727719][ T4941] blkdev_put+0x490/0x6ac [ 74.728339][ T4941] blkdev_close+0x74/0xb0 [ 74.728967][ T4941] __fput+0x1c0/0x7e8 [ 74.729528][ T4941] ____fput+0x20/0x30 [ 74.730087][ T4941] task_work_run+0x12c/0x1d8 [ 74.730715][ T4941] do_notify_resume+0x2450/0x309c [ 74.731430][ T4941] el0_svc+0xf0/0x1d0 [ 74.732004][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 74.732724][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 74.733323][ T4941] irq event stamp: 192926 [ 74.733918][ T4941] hardirqs last enabled at (192925): [] kasan_quarantine_put+0xc4/0x200 [ 74.735311][ T4941] hardirqs last disabled at (192926): [] smp_call_function_many_cond+0xa44/0xeac [ 74.736833][ T4941] softirqs last enabled at (192640): [] local_bh_enable+0x10/0x34 [ 74.738124][ T4941] softirqs last disabled at (192638): [] local_bh_disable+0x10/0x34 [ 74.739419][ T4941] ---[ end trace b32b58f23b4c8de0 ]--- [ 74.788782][ T5033] loop0: detected capacity change from 0 to 128 [ 74.791355][ T5033] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.792502][ T5033] Bad inode number on dev loop0: 2 is out of range [ 74.793506][ T5033] SysV FS: get root inode failed [ 74.794277][ T5033] oldfs: cannot read superblock [ 74.798425][ C1] ------------[ cut here ]------------ [ 74.799272][ C1] VFS: brelse: Trying to free free buffer [ 74.800229][ C1] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 74.801662][ C1] Modules linked in: [ 74.802285][ C1] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 74.803661][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 74.805094][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.806386][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 74.807258][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 74.808025][ C1] sp : ffff800008017de0 [ 74.808638][ C1] x29: ffff800008017de0 x28: ffff0000c7ca0000 x27: 1fffe000341f665c [ 74.809940][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 74.811136][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb4dd10 [ 74.812330][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010003 [ 74.813591][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 74.814737][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 74.815971][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 98f689a7f0ca7300 [ 74.817128][ C1] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.818287][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 74.819450][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 74.820605][ C1] Call trace: [ 74.821060][ C1] invalidate_bh_lru+0x128/0x22c [ 74.821763][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 74.822644][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 74.823618][ C1] ipi_handler+0x10c/0x6fc [ 74.824257][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 74.825039][ C1] handle_domain_irq+0x144/0x1fc [ 74.825765][ C1] gic_handle_irq+0x78/0x1b8 [ 74.826415][ C1] call_on_irq_stack+0x30/0x48 [ 74.827094][ C1] do_interrupt_handler+0x6c/0x88 [ 74.827781][ C1] el1_interrupt+0x30/0x58 [ 74.828380][ C1] el1h_64_irq_handler+0x18/0x24 [ 74.829092][ C1] el1h_64_irq+0x78/0x7c [ 74.829652][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 74.830462][ C1] debug_check_no_obj_freed+0x450/0x46c [ 74.831218][ C1] slab_free_freelist_hook+0x9c/0x1e4 [ 74.831945][ C1] kmem_cache_free+0xdc/0x3b0 [ 74.832606][ C1] user_path_at_empty+0x144/0x1a0 [ 74.833287][ C1] __arm64_sys_umount+0xf8/0x184 [ 74.833983][ C1] invoke_syscall+0x98/0x2b0 [ 74.834613][ C1] el0_svc_common+0x138/0x258 [ 74.835334][ C1] do_el0_svc+0x58/0x13c [ 74.835949][ C1] el0_svc+0x78/0x1d0 [ 74.836518][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 74.837262][ C1] el0t_64_sync+0x1a0/0x1a4 [ 74.837975][ C1] irq event stamp: 298780 [ 74.838815][ C1] hardirqs last enabled at (298779): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 74.840329][ C1] hardirqs last disabled at (298780): [] enter_el1_irq_or_nmi+0x10/0x1c [ 74.841734][ C1] softirqs last enabled at (298770): [] local_bh_enable+0x10/0x34 [ 74.842993][ C1] softirqs last disabled at (298768): [] local_bh_disable+0x10/0x34 [ 74.844442][ C1] ---[ end trace b32b58f23b4c8de1 ]--- [ 74.918569][ T5035] loop0: detected capacity change from 0 to 128 [ 75.016944][ T5035] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.018175][ T5035] Bad inode number on dev loop0: 2 is out of range [ 75.019164][ T5035] SysV FS: get root inode failed [ 75.020298][ T5035] oldfs: cannot read superblock [ 75.027952][ C0] ------------[ cut here ]------------ [ 75.028780][ C0] VFS: brelse: Trying to free free buffer [ 75.029667][ C0] WARNING: CPU: 0 PID: 5036 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 75.030983][ C0] Modules linked in: [ 75.031543][ C0] CPU: 0 PID: 5036 Comm: syz.0.61 Tainted: G W syzkaller #0 [ 75.032838][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 75.034242][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.035360][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 75.036190][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 75.036966][ C0] sp : ffff800008007de0 [ 75.037619][ C0] x29: ffff800008007de0 x28: ffff0000ce7a51c0 x27: 1fffe000341f245c [ 75.038863][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 75.040001][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05ebd10 [ 75.041112][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010003 [ 75.042299][ C0] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 75.043546][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 75.044781][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 3b66ec265dfc5e00 [ 75.046024][ C0] x8 : 3b66ec265dfc5e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.047235][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 75.048436][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 75.049610][ C0] Call trace: [ 75.050090][ C0] invalidate_bh_lru+0x128/0x22c [ 75.050813][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 75.051659][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.052671][ C0] ipi_handler+0x10c/0x6fc [ 75.053310][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 75.054134][ C0] handle_domain_irq+0x144/0x1fc [ 75.054871][ C0] gic_handle_irq+0x78/0x1b8 [ 75.055615][ C0] call_on_irq_stack+0x30/0x48 [ 75.056366][ C0] do_interrupt_handler+0x6c/0x88 [ 75.057066][ C0] el1_interrupt+0x30/0x58 [ 75.057695][ C0] el1h_64_irq_handler+0x18/0x24 [ 75.058391][ C0] el1h_64_irq+0x78/0x7c [ 75.058959][ C0] lock_page_memcg+0x120/0x22c [ 75.059691][ C0] page_add_file_rmap+0x148/0x8c4 [ 75.060430][ C0] do_set_pte+0x390/0x4dc [ 75.061091][ C0] filemap_map_pages+0x9d0/0xc54 [ 75.061750][ C0] handle_mm_fault+0x188c/0x2a28 [ 75.062414][ C0] do_page_fault+0x67c/0xab0 [ 75.063051][ C0] do_translation_fault+0xe0/0x130 [ 75.063813][ C0] do_mem_abort+0x6c/0x1ac [ 75.064467][ C0] el0_ia+0xe0/0x2b8 [ 75.065029][ C0] el0t_64_sync_handler+0xc0/0xe4 [ 75.065781][ C0] el0t_64_sync+0x1a0/0x1a4 [ 75.066432][ C0] irq event stamp: 1084 [ 75.067006][ C0] hardirqs last enabled at (1083): [] lock_page_memcg+0x110/0x22c [ 75.068350][ C0] hardirqs last disabled at (1084): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.069744][ C0] softirqs last enabled at (994): [] local_bh_enable+0x10/0x34 [ 75.071079][ C0] softirqs last disabled at (992): [] local_bh_disable+0x10/0x34 [ 75.072461][ C0] ---[ end trace b32b58f23b4c8de2 ]--- [ 75.113536][ T5037] loop0: detected capacity change from 0 to 128 [ 75.156399][ T5037] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.157583][ T5037] Bad inode number on dev loop0: 2 is out of range [ 75.158567][ T5037] SysV FS: get root inode failed [ 75.159294][ T5037] oldfs: cannot read superblock [ 75.164660][ T4941] ------------[ cut here ]------------ [ 75.165525][ T4941] VFS: brelse: Trying to free free buffer [ 75.166405][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 75.167671][ T4941] Modules linked in: [ 75.168200][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 75.169532][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 75.170919][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.172086][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 75.172872][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 75.173657][ T4941] sp : ffff80001fe377c0 [ 75.174263][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 75.175416][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 75.176621][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb4a148 [ 75.177795][ T4941] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 75.179005][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 75.180196][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 75.181379][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 75.182576][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.183725][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 75.184923][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 75.186148][ T4941] Call trace: [ 75.186624][ T4941] invalidate_bh_lru+0x128/0x22c [ 75.187427][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 75.188258][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 75.188998][ T4941] invalidate_bh_lrus+0x34/0x40 [ 75.189693][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 75.190483][ T4941] blkdev_put+0x490/0x6ac [ 75.191139][ T4941] blkdev_close+0x74/0xb0 [ 75.191832][ T4941] __fput+0x1c0/0x7e8 [ 75.192438][ T4941] ____fput+0x20/0x30 [ 75.192996][ T4941] task_work_run+0x12c/0x1d8 [ 75.193636][ T4941] do_notify_resume+0x2450/0x309c [ 75.194306][ T4941] el0_svc+0xf0/0x1d0 [ 75.194831][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 75.195646][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 75.196294][ T4941] irq event stamp: 204866 [ 75.196971][ T4941] hardirqs last enabled at (204865): [] kasan_quarantine_put+0xc4/0x200 [ 75.198378][ T4941] hardirqs last disabled at (204866): [] smp_call_function_many_cond+0xa44/0xeac [ 75.199904][ T4941] softirqs last enabled at (204612): [] local_bh_enable+0x10/0x34 [ 75.201201][ T4941] softirqs last disabled at (204610): [] local_bh_disable+0x10/0x34 [ 75.202624][ T4941] ---[ end trace b32b58f23b4c8de3 ]--- [ 75.254321][ T5039] loop0: detected capacity change from 0 to 128 [ 75.291327][ T5039] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.292479][ T5039] Bad inode number on dev loop0: 2 is out of range [ 75.293368][ T5039] SysV FS: get root inode failed [ 75.294035][ T5039] oldfs: cannot read superblock [ 75.303231][ C1] ------------[ cut here ]------------ [ 75.304011][ C1] VFS: brelse: Trying to free free buffer [ 75.304906][ C1] WARNING: CPU: 1 PID: 5040 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 75.306197][ C1] Modules linked in: [ 75.306767][ C1] CPU: 1 PID: 5040 Comm: syz-executor Tainted: G W syzkaller #0 [ 75.308028][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 75.309357][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.310431][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 75.311201][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 75.311940][ C1] sp : ffff800008017de0 [ 75.312540][ C1] x29: ffff800008017de0 x28: ffff0000c808d1c0 x27: 1fffe000341f665c [ 75.313646][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 75.314787][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb4a4e8 [ 75.315977][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010002 [ 75.317178][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 75.318368][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 75.319540][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 94a859d299d23c00 [ 75.320679][ C1] x8 : 94a859d299d23c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.321877][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 75.323058][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 75.324228][ C1] Call trace: [ 75.324680][ C1] invalidate_bh_lru+0x128/0x22c [ 75.325401][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 75.326292][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.327322][ C1] ipi_handler+0x10c/0x6fc [ 75.327962][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 75.328762][ C1] handle_domain_irq+0x144/0x1fc [ 75.329473][ C1] gic_handle_irq+0x78/0x1b8 [ 75.330110][ C1] call_on_irq_stack+0x30/0x48 [ 75.330796][ C1] do_interrupt_handler+0x6c/0x88 [ 75.331513][ C1] el1_interrupt+0x30/0x58 [ 75.332150][ C1] el1h_64_irq_handler+0x18/0x24 [ 75.332833][ C1] el1h_64_irq+0x78/0x7c [ 75.333426][ C1] try_charge_memcg+0x1e4/0x11a0 [ 75.334117][ C1] obj_cgroup_charge_pages+0x90/0x1a4 [ 75.334788][ C1] __memcg_kmem_charge_page+0x3c0/0x59c [ 75.335656][ C1] __alloc_pages+0x1d0/0x470 [ 75.336342][ C1] alloc_pages+0x34c/0x5c0 [ 75.337007][ C1] pte_alloc_one+0x2c/0x254 [ 75.337669][ C1] handle_mm_fault+0x1830/0x2a28 [ 75.338357][ C1] do_page_fault+0x67c/0xab0 [ 75.339063][ C1] do_translation_fault+0xe0/0x130 [ 75.339759][ C1] do_mem_abort+0x6c/0x1ac [ 75.340364][ C1] el0_ia+0xe0/0x2b8 [ 75.340927][ C1] el0t_64_sync_handler+0xc0/0xe4 [ 75.341635][ C1] el0t_64_sync+0x1a0/0x1a4 [ 75.342244][ C1] irq event stamp: 38 [ 75.342818][ C1] hardirqs last enabled at (37): [] try_charge_memcg+0x1d4/0x11a0 [ 75.344137][ C1] hardirqs last disabled at (38): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.345478][ C1] softirqs last enabled at (24): [] local_bh_enable+0x10/0x34 [ 75.346708][ C1] softirqs last disabled at (22): [] local_bh_disable+0x10/0x34 [ 75.347925][ C1] ---[ end trace b32b58f23b4c8de4 ]--- [ 75.374662][ T5041] loop0: detected capacity change from 0 to 128 [ 75.382992][ T5041] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.384230][ T5041] Bad inode number on dev loop0: 2 is out of range [ 75.385234][ T5041] SysV FS: get root inode failed [ 75.385936][ T5041] oldfs: cannot read superblock [ 75.392168][ C1] ------------[ cut here ]------------ [ 75.392962][ C1] VFS: brelse: Trying to free free buffer [ 75.393804][ C1] WARNING: CPU: 1 PID: 5042 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 75.395070][ C1] Modules linked in: [ 75.395651][ C1] CPU: 1 PID: 5042 Comm: syz-executor Tainted: G W syzkaller #0 [ 75.396878][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 75.398308][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.399425][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 75.400207][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 75.401040][ C1] sp : ffff800008017de0 [ 75.401649][ C1] x29: ffff800008017de0 x28: ffff0000d5c58000 x27: 1fffe000341f665c [ 75.402827][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 75.404002][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb4a888 [ 75.405197][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010003 [ 75.406564][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 75.407778][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 75.408932][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : bdfc9b0c3a9a7d00 [ 75.410171][ C1] x8 : bdfc9b0c3a9a7d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.411292][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 75.412546][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 75.413700][ C1] Call trace: [ 75.414149][ C1] invalidate_bh_lru+0x128/0x22c [ 75.414877][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 75.415928][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.417048][ C1] ipi_handler+0x10c/0x6fc [ 75.417762][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 75.418616][ C1] handle_domain_irq+0x144/0x1fc [ 75.419334][ C1] gic_handle_irq+0x78/0x1b8 [ 75.420030][ C1] call_on_irq_stack+0x30/0x48 [ 75.420750][ C1] do_interrupt_handler+0x6c/0x88 [ 75.421494][ C1] el1_interrupt+0x30/0x58 [ 75.422206][ C1] el1h_64_irq_handler+0x18/0x24 [ 75.422971][ C1] el1h_64_irq+0x78/0x7c [ 75.423577][ C1] account_kernel_stack+0x150/0x26c [ 75.424305][ C1] put_task_stack+0xa0/0x174 [ 75.424978][ C1] finish_task_switch+0x344/0x69c [ 75.425750][ C1] schedule_tail+0x20/0x150 [ 75.426384][ C1] ret_from_fork+0x4/0x20 [ 75.427035][ C1] irq event stamp: 6 [ 75.427647][ C1] hardirqs last enabled at (5): [] account_kernel_stack+0x130/0x26c [ 75.428974][ C1] hardirqs last disabled at (6): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.430341][ C1] softirqs last enabled at (0): [] copy_process+0x1140/0x34c8 [ 75.431670][ C1] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 75.432761][ C1] ---[ end trace b32b58f23b4c8de5 ]--- [ 75.483194][ T5043] loop0: detected capacity change from 0 to 128 [ 75.485359][ T5043] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.486771][ T5043] Bad inode number on dev loop0: 2 is out of range [ 75.487853][ T5043] SysV FS: get root inode failed [ 75.488725][ T5043] oldfs: cannot read superblock [ 75.495597][ T4941] ------------[ cut here ]------------ [ 75.496505][ T4941] VFS: brelse: Trying to free free buffer [ 75.497492][ T4941] WARNING: CPU: 0 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 75.498893][ T4941] Modules linked in: [ 75.499468][ T4941] CPU: 0 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 75.500754][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 75.502299][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.503435][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 75.504233][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 75.505018][ T4941] sp : ffff80001fe377c0 [ 75.505649][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f245b [ 75.506941][ T4941] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 75.508117][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05ee7a0 [ 75.509312][ T4941] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000000003 [ 75.510450][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 75.511660][ T4941] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 75.512798][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 75.514043][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.515266][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 75.516476][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 75.517639][ T4941] Call trace: [ 75.518088][ T4941] invalidate_bh_lru+0x128/0x22c [ 75.518789][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 75.519611][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 75.520336][ T4941] invalidate_bh_lrus+0x34/0x40 [ 75.521031][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 75.521807][ T4941] blkdev_put+0x490/0x6ac [ 75.522451][ T4941] blkdev_close+0x74/0xb0 [ 75.523061][ T4941] __fput+0x1c0/0x7e8 [ 75.523669][ T4941] ____fput+0x20/0x30 [ 75.524239][ T4941] task_work_run+0x12c/0x1d8 [ 75.524913][ T4941] do_notify_resume+0x2450/0x309c [ 75.525601][ T4941] el0_svc+0xf0/0x1d0 [ 75.526191][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 75.526946][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 75.527622][ T4941] irq event stamp: 217954 [ 75.528243][ T4941] hardirqs last enabled at (217953): [] kasan_quarantine_put+0xc4/0x200 [ 75.529694][ T4941] hardirqs last disabled at (217954): [] smp_call_function_many_cond+0xa44/0xeac [ 75.531338][ T4941] softirqs last enabled at (217700): [] local_bh_enable+0x10/0x34 [ 75.532756][ T4941] softirqs last disabled at (217698): [] local_bh_disable+0x10/0x34 [ 75.534028][ T4941] ---[ end trace b32b58f23b4c8de6 ]--- [ 75.554272][ T5046] loop0: detected capacity change from 0 to 128 [ 75.591293][ T5046] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.592475][ T5046] Bad inode number on dev loop0: 2 is out of range [ 75.593473][ T5046] SysV FS: get root inode failed [ 75.594264][ T5046] oldfs: cannot read superblock [ 75.602070][ T4941] ------------[ cut here ]------------ [ 75.603018][ T4941] VFS: brelse: Trying to free free buffer [ 75.603964][ T4941] WARNING: CPU: 0 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 75.605254][ T4941] Modules linked in: [ 75.605843][ T4941] CPU: 0 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 75.607134][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 75.608668][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.609877][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 75.610700][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 75.611540][ T4941] sp : ffff80001fe377c0 [ 75.612149][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f245b [ 75.613399][ T4941] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 75.614680][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05ee318 [ 75.615886][ T4941] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000000003 [ 75.617119][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 75.618330][ T4941] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 75.619549][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 75.620681][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.621892][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 75.623151][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 75.624389][ T4941] Call trace: [ 75.624935][ T4941] invalidate_bh_lru+0x128/0x22c [ 75.625732][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 75.626569][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 75.627437][ T4941] invalidate_bh_lrus+0x34/0x40 [ 75.628197][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 75.628992][ T4941] blkdev_put+0x490/0x6ac [ 75.629687][ T4941] blkdev_close+0x74/0xb0 [ 75.630387][ T4941] __fput+0x1c0/0x7e8 [ 75.630956][ T4941] ____fput+0x20/0x30 [ 75.631569][ T4941] task_work_run+0x12c/0x1d8 [ 75.632228][ T4941] do_notify_resume+0x2450/0x309c [ 75.633021][ T4941] el0_svc+0xf0/0x1d0 [ 75.633668][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 75.634447][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 75.635142][ T4941] irq event stamp: 221536 [ 75.635840][ T4941] hardirqs last enabled at (221535): [] kasan_quarantine_put+0xc4/0x200 [ 75.637453][ T4941] hardirqs last disabled at (221536): [] smp_call_function_many_cond+0xa44/0xeac [ 75.639089][ T4941] softirqs last enabled at (221286): [] local_bh_enable+0x10/0x34 [ 75.640415][ T4941] softirqs last disabled at (221284): [] local_bh_disable+0x10/0x34 [ 75.641861][ T4941] ---[ end trace b32b58f23b4c8de7 ]--- [ 75.683095][ T5048] loop0: detected capacity change from 0 to 128 [ 75.687556][ T5048] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.688705][ T5048] Bad inode number on dev loop0: 2 is out of range [ 75.690513][ T5048] SysV FS: get root inode failed [ 75.691302][ T5048] oldfs: cannot read superblock [ 75.697299][ C1] ------------[ cut here ]------------ [ 75.698084][ C1] VFS: brelse: Trying to free free buffer [ 75.698956][ C1] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 75.700235][ C1] Modules linked in: [ 75.700842][ C1] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 75.702094][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 75.703549][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.704653][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 75.705367][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 75.706128][ C1] sp : ffff800008017de0 [ 75.706743][ C1] x29: ffff800008017de0 x28: ffff0000c7ca0000 x27: 1fffe000341f665c [ 75.707900][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 75.709083][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb4ac28 [ 75.710258][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010002 [ 75.711322][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 75.712502][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 75.713639][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 98f689a7f0ca7300 [ 75.714895][ C1] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.716089][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 75.717250][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 75.718480][ C1] Call trace: [ 75.718925][ C1] invalidate_bh_lru+0x128/0x22c [ 75.719596][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 75.720387][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.721308][ C1] ipi_handler+0x10c/0x6fc [ 75.721985][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 75.722738][ C1] handle_domain_irq+0x144/0x1fc [ 75.723446][ C1] gic_handle_irq+0x78/0x1b8 [ 75.724113][ C1] call_on_irq_stack+0x30/0x48 [ 75.724790][ C1] do_interrupt_handler+0x6c/0x88 [ 75.725514][ C1] el1_interrupt+0x30/0x58 [ 75.726163][ C1] el1h_64_irq_handler+0x18/0x24 [ 75.726884][ C1] el1h_64_irq+0x78/0x7c [ 75.727490][ C1] lock_release+0x4a0/0x8e0 [ 75.728118][ C1] __might_fault+0xf4/0x128 [ 75.728766][ C1] do_ipt_get_ctl+0xd70/0x143c [ 75.729437][ C1] nf_getsockopt+0x264/0x284 [ 75.730102][ C1] ip_getsockopt+0x122c/0x1664 [ 75.730800][ C1] tcp_getsockopt+0x210/0x2eec [ 75.731478][ C1] sock_common_getsockopt+0xa8/0xc4 [ 75.732167][ C1] __sys_getsockopt+0x1b8/0x250 [ 75.732889][ C1] __arm64_sys_getsockopt+0xb8/0xd4 [ 75.733669][ C1] invoke_syscall+0x98/0x2b0 [ 75.734299][ C1] el0_svc_common+0x138/0x258 [ 75.734999][ C1] do_el0_svc+0x58/0x13c [ 75.735646][ C1] el0_svc+0x78/0x1d0 [ 75.736217][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 75.736965][ C1] el0t_64_sync+0x1a0/0x1a4 [ 75.737679][ C1] irq event stamp: 322770 [ 75.738317][ C1] hardirqs last enabled at (322769): [] alloc_counters+0x3d4/0x7a0 [ 75.739684][ C1] hardirqs last disabled at (322770): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.741085][ C1] softirqs last enabled at (322728): [] release_sock+0x1d0/0x258 [ 75.742414][ C1] softirqs last disabled at (322726): [] release_sock+0x34/0x258 [ 75.743695][ C1] ---[ end trace b32b58f23b4c8de8 ]--- [ 75.782166][ T5050] loop0: detected capacity change from 0 to 128 [ 75.791059][ T5050] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.792321][ T5050] Bad inode number on dev loop0: 2 is out of range [ 75.793295][ T5050] SysV FS: get root inode failed [ 75.794055][ T5050] oldfs: cannot read superblock [ 75.797867][ C1] ------------[ cut here ]------------ [ 75.798714][ C1] VFS: brelse: Trying to free free buffer [ 75.799555][ C1] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 75.800842][ C1] Modules linked in: [ 75.801388][ C1] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 75.802834][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 75.804289][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.805417][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 75.806170][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 75.806915][ C1] sp : ffff800008017de0 [ 75.807499][ C1] x29: ffff800008017de0 x28: ffff0000c7ca0000 x27: 1fffe000341f665b [ 75.808712][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 75.809889][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb46060 [ 75.811076][ C1] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000010003 [ 75.812253][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 75.813551][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 75.814789][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 98f689a7f0ca7300 [ 75.815946][ C1] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.817090][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 75.818319][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 75.819503][ C1] Call trace: [ 75.819931][ C1] invalidate_bh_lru+0x128/0x22c [ 75.820606][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 75.821431][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.822446][ C1] ipi_handler+0x10c/0x6fc [ 75.823066][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 75.823859][ C1] handle_domain_irq+0x144/0x1fc [ 75.824573][ C1] gic_handle_irq+0x78/0x1b8 [ 75.825236][ C1] call_on_irq_stack+0x30/0x48 [ 75.825965][ C1] do_interrupt_handler+0x6c/0x88 [ 75.826702][ C1] el1_interrupt+0x30/0x58 [ 75.827361][ C1] el1h_64_irq_handler+0x18/0x24 [ 75.828097][ C1] el1h_64_irq+0x78/0x7c [ 75.828685][ C1] finish_lock_switch+0xb8/0x1c4 [ 75.829416][ C1] finish_task_switch+0x120/0x69c [ 75.830140][ C1] __schedule+0xe00/0x1bc4 [ 75.830848][ C1] preempt_schedule_common+0x138/0x218 [ 75.831682][ C1] preempt_schedule+0x64/0x84 [ 75.832349][ C1] _raw_spin_unlock_irqrestore+0x108/0x14c [ 75.833150][ C1] __wake_up_sync_key+0x11c/0x180 [ 75.833940][ C1] pipe_write+0xe24/0x1934 [ 75.834532][ C1] vfs_write+0x590/0xa60 [ 75.835144][ C1] ksys_write+0x12c/0x224 [ 75.835744][ C1] __arm64_sys_write+0x7c/0x90 [ 75.836443][ C1] invoke_syscall+0x98/0x2b0 [ 75.837092][ C1] el0_svc_common+0x138/0x258 [ 75.837774][ C1] do_el0_svc+0x58/0x13c [ 75.838476][ C1] el0_svc+0x78/0x1d0 [ 75.839050][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 75.839826][ C1] el0t_64_sync+0x1a0/0x1a4 [ 75.840505][ C1] irq event stamp: 324354 [ 75.841107][ C1] hardirqs last enabled at (324353): [] finish_lock_switch+0xb0/0x1c4 [ 75.842461][ C1] hardirqs last disabled at (324354): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.843889][ C1] softirqs last enabled at (324264): [] local_bh_enable+0x10/0x34 [ 75.845249][ C1] softirqs last disabled at (324262): [] local_bh_disable+0x10/0x34 [ 75.846669][ C1] ---[ end trace b32b58f23b4c8de9 ]--- [ 75.921289][ T5052] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.922809][ T5052] Bad inode number on dev loop0: 2 is out of range [ 75.923897][ T5052] SysV FS: get root inode failed [ 75.924689][ T5052] oldfs: cannot read superblock [ 75.942474][ C0] ------------[ cut here ]------------ [ 75.943311][ C0] VFS: brelse: Trying to free free buffer [ 75.944131][ C0] WARNING: CPU: 0 PID: 5056 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 75.945362][ C0] Modules linked in: [ 75.945871][ C0] CPU: 0 PID: 5056 Comm: syz-executor Tainted: G W syzkaller #0 [ 75.947054][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 75.948451][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.949550][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 75.950334][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 75.951075][ C0] sp : ffff800008007de0 [ 75.951640][ C0] x29: ffff800008007de0 x28: ffff0000cf0f8000 x27: 1fffe000341f245c [ 75.952863][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 75.953976][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c06235d0 [ 75.955185][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010002 [ 75.956382][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 75.957606][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 75.958842][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 690ecfcfcfb24e00 [ 75.960065][ C0] x8 : 690ecfcfcfb24e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.961326][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 75.962495][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 75.963742][ C0] Call trace: [ 75.964218][ C0] invalidate_bh_lru+0x128/0x22c [ 75.964925][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 75.965776][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.966811][ C0] ipi_handler+0x10c/0x6fc [ 75.967463][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 75.968256][ C0] handle_domain_irq+0x144/0x1fc [ 75.969012][ C0] gic_handle_irq+0x78/0x1b8 [ 75.969661][ C0] call_on_irq_stack+0x30/0x48 [ 75.970358][ C0] do_interrupt_handler+0x6c/0x88 [ 75.971115][ C0] el1_interrupt+0x30/0x58 [ 75.971761][ C0] el1h_64_irq_handler+0x18/0x24 [ 75.972471][ C0] el1h_64_irq+0x78/0x7c [ 75.973071][ C0] lock_release+0x4a0/0x8e0 [ 75.973746][ C0] rcu_lock_release+0x2c/0x38 [ 75.974385][ C0] count_memcg_event_mm+0x294/0x300 [ 75.975180][ C0] handle_mm_fault+0x19c/0x2a28 [ 75.975902][ C0] do_page_fault+0x67c/0xab0 [ 75.976579][ C0] do_mem_abort+0x6c/0x1ac [ 75.977249][ C0] el0_da+0x90/0x1ec [ 75.977824][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 75.978546][ C0] el0t_64_sync+0x1a0/0x1a4 [ 75.979215][ C0] irq event stamp: 166 [ 75.979839][ C0] hardirqs last enabled at (165): [] count_memcg_event_mm+0x1b0/0x300 [ 75.981288][ C0] hardirqs last disabled at (166): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.982667][ C0] softirqs last enabled at (64): [] local_bh_enable+0x10/0x34 [ 75.983949][ C0] softirqs last disabled at (62): [] local_bh_disable+0x10/0x34 [ 75.985253][ C0] ---[ end trace b32b58f23b4c8dea ]--- [ 76.015993][ T5057] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.017102][ T5057] Bad inode number on dev loop0: 2 is out of range [ 76.017988][ T5057] SysV FS: get root inode failed [ 76.018639][ T5057] oldfs: cannot read superblock [ 76.029405][ C1] ------------[ cut here ]------------ [ 76.030200][ C1] VFS: brelse: Trying to free free buffer [ 76.031153][ C1] WARNING: CPU: 1 PID: 5058 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 76.032524][ C1] Modules linked in: [ 76.033077][ C1] CPU: 1 PID: 5058 Comm: syz.0.71 Tainted: G W syzkaller #0 [ 76.034332][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 76.035754][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.036890][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 76.037653][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 76.038431][ C1] sp : ffff800008017de0 [ 76.039018][ C1] x29: ffff800008017de0 x28: ffff0000cf3ed1c0 x27: 1fffe000341f665c [ 76.040135][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 76.041332][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb46400 [ 76.042534][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010002 [ 76.043683][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 76.044921][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 76.046053][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : e27a439bfb2bfb00 [ 76.047229][ C1] x8 : e27a439bfb2bfb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.048383][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 76.049540][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 76.050653][ C1] Call trace: [ 76.051114][ C1] invalidate_bh_lru+0x128/0x22c [ 76.051842][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 76.052784][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.053741][ C1] ipi_handler+0x10c/0x6fc [ 76.054358][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 76.055136][ C1] handle_domain_irq+0x144/0x1fc [ 76.055924][ C1] gic_handle_irq+0x78/0x1b8 [ 76.056632][ C1] call_on_irq_stack+0x30/0x48 [ 76.057332][ C1] do_interrupt_handler+0x6c/0x88 [ 76.058078][ C1] el1_interrupt+0x30/0x58 [ 76.058738][ C1] el1h_64_irq_handler+0x18/0x24 [ 76.059425][ C1] el1h_64_irq+0x78/0x7c [ 76.060077][ C1] crng_make_state+0x398/0x5d0 [ 76.060820][ C1] _get_random_bytes+0xf4/0x22c [ 76.061496][ C1] get_random_bytes+0x28/0x38 [ 76.062205][ C1] copy_thread+0x384/0x388 [ 76.062846][ C1] copy_process+0x160c/0x34c8 [ 76.063665][ C1] kernel_clone+0x1ec/0x9e8 [ 76.064404][ C1] __arm64_sys_clone3+0x33c/0x374 [ 76.065194][ C1] invoke_syscall+0x98/0x2b0 [ 76.065921][ C1] el0_svc_common+0x138/0x258 [ 76.066626][ C1] do_el0_svc+0x58/0x13c [ 76.067290][ C1] el0_svc+0x78/0x1d0 [ 76.067870][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 76.068639][ C1] el0t_64_sync+0x1a0/0x1a4 [ 76.069260][ C1] irq event stamp: 1546 [ 76.069873][ C1] hardirqs last enabled at (1545): [] crng_make_state+0x378/0x5d0 [ 76.071234][ C1] hardirqs last disabled at (1546): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.072639][ C1] softirqs last enabled at (1520): [] local_bh_enable+0x10/0x34 [ 76.073971][ C1] softirqs last disabled at (1518): [] local_bh_disable+0x10/0x34 [ 76.075312][ C1] ---[ end trace b32b58f23b4c8deb ]--- [ 76.221077][ T5059] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.222186][ T5059] Bad inode number on dev loop0: 2 is out of range [ 76.223068][ T5059] SysV FS: get root inode failed [ 76.223772][ T5059] oldfs: cannot read superblock [ 76.224490][ T5059] ------------[ cut here ]------------ [ 76.225262][ T5059] VFS: brelse: Trying to free free buffer [ 76.226129][ T5059] WARNING: CPU: 1 PID: 5059 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 76.227334][ T5059] Modules linked in: [ 76.227890][ T5059] CPU: 1 PID: 5059 Comm: syz.0.71 Tainted: G W syzkaller #0 [ 76.229131][ T5059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 76.230548][ T5059] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.231700][ T5059] pc : invalidate_bh_lru+0x128/0x22c [ 76.232548][ T5059] lr : invalidate_bh_lru+0x128/0x22c [ 76.233346][ T5059] sp : ffff8000200676e0 [ 76.233935][ T5059] x29: ffff8000200676e0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 76.235058][ T5059] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 76.236171][ T5059] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb467a0 [ 76.237311][ T5059] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 76.238472][ T5059] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 76.239614][ T5059] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 76.240761][ T5059] x11: 0000000000000002 x10: 0000000000000000 x9 : e8c73ccf22fae400 [ 76.241893][ T5059] x8 : e8c73ccf22fae400 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.243100][ T5059] x5 : ffff800020066ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 76.244193][ T5059] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.245402][ T5059] Call trace: [ 76.245903][ T5059] invalidate_bh_lru+0x128/0x22c [ 76.246552][ T5059] smp_call_function_many_cond+0xa50/0xeac [ 76.247398][ T5059] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.248092][ T5059] invalidate_bh_lrus+0x34/0x40 [ 76.248765][ T5059] blkdev_flush_mapping+0x16c/0x334 [ 76.249490][ T5059] blkdev_put+0x490/0x6ac [ 76.250181][ T5059] kill_block_super+0x98/0xdc [ 76.250858][ T5059] deactivate_locked_super+0xb8/0x134 [ 76.251674][ T5059] mount_bdev+0x284/0x358 [ 76.252357][ T5059] sysv_mount+0x44/0x58 [ 76.252964][ T5059] legacy_get_tree+0xd4/0x16c [ 76.253704][ T5059] vfs_get_tree+0x90/0x274 [ 76.254378][ T5059] do_new_mount+0x228/0x810 [ 76.255029][ T5059] path_mount+0x5bc/0x1008 [ 76.255675][ T5059] __arm64_sys_mount+0x514/0x5f0 [ 76.256381][ T5059] invoke_syscall+0x98/0x2b0 [ 76.257058][ T5059] el0_svc_common+0x138/0x258 [ 76.257746][ T5059] do_el0_svc+0x58/0x13c [ 76.258372][ T5059] el0_svc+0x78/0x1d0 [ 76.258949][ T5059] el0t_64_sync_handler+0xcc/0xe4 [ 76.259675][ T5059] el0t_64_sync+0x1a0/0x1a4 [ 76.260337][ T5059] irq event stamp: 1076 [ 76.260947][ T5059] hardirqs last enabled at (1075): [] kasan_quarantine_put+0xc4/0x200 [ 76.262381][ T5059] hardirqs last disabled at (1076): [] smp_call_function_many_cond+0xa44/0xeac [ 76.263887][ T5059] softirqs last enabled at (882): [] local_bh_enable+0x10/0x34 [ 76.265208][ T5059] softirqs last disabled at (880): [] local_bh_disable+0x10/0x34 [ 76.266640][ T5059] ---[ end trace b32b58f23b4c8dec ]--- [ 76.355087][ T5061] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.356272][ T5061] Bad inode number on dev loop0: 2 is out of range [ 76.357398][ T5061] SysV FS: get root inode failed [ 76.358100][ T5061] oldfs: cannot read superblock [ 76.368009][ C0] ------------[ cut here ]------------ [ 76.368921][ C0] VFS: brelse: Trying to free free buffer [ 76.369838][ C0] WARNING: CPU: 0 PID: 5063 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 76.371171][ C0] Modules linked in: [ 76.371780][ C0] CPU: 0 PID: 5063 Comm: syz.0.73 Tainted: G W syzkaller #0 [ 76.373013][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 76.374401][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.375489][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 76.376310][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 76.377138][ C0] sp : ffff800008007de0 [ 76.377715][ C0] x29: ffff800008007de0 x28: ffff0000c88b51c0 x27: 1fffe000341f245c [ 76.378914][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 76.380139][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c0623230 [ 76.381309][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010003 [ 76.382502][ C0] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 76.383688][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 76.384962][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : d1874ecc15900900 [ 76.386166][ C0] x8 : d1874ecc15900900 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.387304][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 76.388443][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 76.389639][ C0] Call trace: [ 76.390117][ C0] invalidate_bh_lru+0x128/0x22c [ 76.390891][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 76.391788][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.392726][ C0] ipi_handler+0x10c/0x6fc [ 76.393356][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 76.394134][ C0] handle_domain_irq+0x144/0x1fc [ 76.394846][ C0] gic_handle_irq+0x78/0x1b8 [ 76.395558][ C0] call_on_irq_stack+0x30/0x48 [ 76.396277][ C0] do_interrupt_handler+0x6c/0x88 [ 76.397004][ C0] el1_interrupt+0x30/0x58 [ 76.397687][ C0] el1h_64_irq_handler+0x18/0x24 [ 76.398375][ C0] el1h_64_irq+0x78/0x7c [ 76.398965][ C0] _raw_spin_unlock_irq+0xa0/0x128 [ 76.399696][ C0] shmem_add_to_page_cache+0xcb0/0x132c [ 76.400512][ C0] shmem_getpage_gfp+0x1274/0x1f10 [ 76.401307][ C0] shmem_write_begin+0xe0/0x29c [ 76.402022][ C0] generic_perform_write+0x208/0x488 [ 76.402889][ C0] __generic_file_write_iter+0x23c/0x454 [ 76.403739][ C0] generic_file_write_iter+0xb0/0x1b4 [ 76.404502][ C0] vfs_write+0x590/0xa60 [ 76.405100][ C0] ksys_write+0x12c/0x224 [ 76.405754][ C0] __arm64_sys_write+0x7c/0x90 [ 76.406521][ C0] invoke_syscall+0x98/0x2b0 [ 76.407191][ C0] el0_svc_common+0x138/0x258 [ 76.407821][ C0] do_el0_svc+0x58/0x13c [ 76.408466][ C0] el0_svc+0x78/0x1d0 [ 76.409070][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 76.409790][ C0] el0t_64_sync+0x1a0/0x1a4 [ 76.410417][ C0] irq event stamp: 512 [ 76.410978][ C0] hardirqs last enabled at (511): [] _raw_spin_unlock_irq+0x98/0x128 [ 76.412365][ C0] hardirqs last disabled at (512): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.413880][ C0] softirqs last enabled at (48): [] local_bh_enable+0x10/0x34 [ 76.415240][ C0] softirqs last disabled at (46): [] local_bh_disable+0x10/0x34 [ 76.416511][ C0] ---[ end trace b32b58f23b4c8ded ]--- [ 76.464547][ T5063] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.465798][ T5063] Bad inode number on dev loop0: 2 is out of range [ 76.466775][ T5063] SysV FS: get root inode failed [ 76.467504][ T5063] oldfs: cannot read superblock [ 76.474084][ T4941] ------------[ cut here ]------------ [ 76.474918][ T4941] VFS: brelse: Trying to free free buffer [ 76.475769][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 76.477091][ T4941] Modules linked in: [ 76.477641][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 76.479005][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 76.480491][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.481663][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 76.482462][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 76.483265][ T4941] sp : ffff80001fe377c0 [ 76.483881][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665c [ 76.485088][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 76.486335][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb46b40 [ 76.487562][ T4941] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000000003 [ 76.488782][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 76.489962][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 76.491125][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 76.492317][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.493545][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 76.494729][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.496005][ T4941] Call trace: [ 76.496480][ T4941] invalidate_bh_lru+0x128/0x22c [ 76.497241][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 76.498090][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.498837][ T4941] invalidate_bh_lrus+0x34/0x40 [ 76.499540][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 76.500315][ T4941] blkdev_put+0x490/0x6ac [ 76.500960][ T4941] blkdev_close+0x74/0xb0 [ 76.501580][ T4941] __fput+0x1c0/0x7e8 [ 76.502149][ T4941] ____fput+0x20/0x30 [ 76.502737][ T4941] task_work_run+0x12c/0x1d8 [ 76.503390][ T4941] do_notify_resume+0x2450/0x309c [ 76.504140][ T4941] el0_svc+0xf0/0x1d0 [ 76.504717][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 76.505430][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 76.506067][ T4941] irq event stamp: 256200 [ 76.506743][ T4941] hardirqs last enabled at (256199): [] kasan_quarantine_put+0xc4/0x200 [ 76.508151][ T4941] hardirqs last disabled at (256200): [] smp_call_function_many_cond+0xa44/0xeac [ 76.509688][ T4941] softirqs last enabled at (255938): [] local_bh_enable+0x10/0x34 [ 76.511012][ T4941] softirqs last disabled at (255936): [] local_bh_disable+0x10/0x34 [ 76.512304][ T4941] ---[ end trace b32b58f23b4c8dee ]--- [ 76.621929][ T5065] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.623109][ T5065] Bad inode number on dev loop0: 2 is out of range [ 76.624082][ T5065] SysV FS: get root inode failed [ 76.624794][ T5065] oldfs: cannot read superblock [ 76.632317][ C0] ------------[ cut here ]------------ [ 76.633189][ C0] VFS: brelse: Trying to free free buffer [ 76.634103][ C0] WARNING: CPU: 0 PID: 5066 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 76.635443][ C0] Modules linked in: [ 76.635961][ C0] CPU: 0 PID: 5066 Comm: syz-executor Tainted: G W syzkaller #0 [ 76.637269][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 76.638787][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.639825][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 76.640654][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 76.641424][ C0] sp : ffff800008007de0 [ 76.642032][ C0] x29: ffff800008007de0 x28: ffff0000c1e43680 x27: 1fffe000341f245c [ 76.643192][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 76.644356][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c0623148 [ 76.645611][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010003 [ 76.646911][ C0] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 76.648133][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 76.649396][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : f980be9b73228e00 [ 76.650675][ C0] x8 : f980be9b73228e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.651863][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 76.652999][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 76.654118][ C0] Call trace: [ 76.654573][ C0] invalidate_bh_lru+0x128/0x22c [ 76.655296][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 76.656165][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.657141][ C0] ipi_handler+0x10c/0x6fc [ 76.657803][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 76.658611][ C0] handle_domain_irq+0x144/0x1fc [ 76.659308][ C0] gic_handle_irq+0x78/0x1b8 [ 76.659996][ C0] call_on_irq_stack+0x30/0x48 [ 76.660623][ C0] do_interrupt_handler+0x6c/0x88 [ 76.661274][ C0] el1_interrupt+0x30/0x58 [ 76.661897][ C0] el1h_64_irq_handler+0x18/0x24 [ 76.662571][ C0] el1h_64_irq+0x78/0x7c [ 76.663167][ C0] lock_page_memcg+0x120/0x22c [ 76.663807][ C0] page_remove_rmap+0x3c/0xf90 [ 76.664492][ C0] wp_page_copy+0x8c8/0x11ec [ 76.665177][ C0] do_wp_page+0x6c0/0x984 [ 76.665816][ C0] handle_mm_fault+0x163c/0x2a28 [ 76.666490][ C0] do_page_fault+0x67c/0xab0 [ 76.667121][ C0] do_mem_abort+0x6c/0x1ac [ 76.667723][ C0] el0_da+0x90/0x1ec [ 76.668253][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 76.668972][ C0] el0t_64_sync+0x1a0/0x1a4 [ 76.669638][ C0] irq event stamp: 390 [ 76.670195][ C0] hardirqs last enabled at (389): [] lock_page_memcg+0x110/0x22c [ 76.671589][ C0] hardirqs last disabled at (390): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.673014][ C0] softirqs last enabled at (64): [] local_bh_enable+0x10/0x34 [ 76.674358][ C0] softirqs last disabled at (62): [] local_bh_disable+0x10/0x34 [ 76.675684][ C0] ---[ end trace b32b58f23b4c8def ]--- [ 76.713681][ T5067] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.715151][ T5067] Bad inode number on dev loop0: 2 is out of range [ 76.716537][ T5067] SysV FS: get root inode failed [ 76.717268][ T5067] oldfs: cannot read superblock [ 76.724742][ C1] ------------[ cut here ]------------ [ 76.725509][ C1] VFS: brelse: Trying to free free buffer [ 76.726377][ C1] WARNING: CPU: 1 PID: 0 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 76.727587][ C1] Modules linked in: [ 76.728132][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W syzkaller #0 [ 76.729304][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 76.730883][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.732228][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 76.733014][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 76.733745][ C1] sp : ffff800008017de0 [ 76.734403][ C1] x29: ffff800008017de0 x28: ffff0000c0a68000 x27: 1fffe000341f665c [ 76.735632][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 76.736824][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb46ee0 [ 76.738003][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010003 [ 76.739247][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 76.740454][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 76.741638][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : a98c1c8a1072c700 [ 76.742824][ C1] x8 : a98c1c8a1072c700 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.744035][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 76.745151][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 76.746358][ C1] Call trace: [ 76.746876][ C1] invalidate_bh_lru+0x128/0x22c [ 76.747591][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 76.748466][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.749503][ C1] ipi_handler+0x10c/0x6fc [ 76.750117][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 76.750931][ C1] handle_domain_irq+0x144/0x1fc [ 76.751624][ C1] gic_handle_irq+0x78/0x1b8 [ 76.752277][ C1] call_on_irq_stack+0x30/0x48 [ 76.752947][ C1] do_interrupt_handler+0x6c/0x88 [ 76.753649][ C1] el1_interrupt+0x30/0x58 [ 76.754243][ C1] el1h_64_irq_handler+0x18/0x24 [ 76.754884][ C1] el1h_64_irq+0x78/0x7c [ 76.755453][ C1] arch_local_irq_enable+0xc/0x18 [ 76.756238][ C1] default_idle_call+0xcc/0x40c [ 76.757084][ C1] do_idle+0x1c8/0x48c [ 76.757741][ C1] cpu_startup_entry+0x24/0x28 [ 76.758426][ C1] secondary_start_kernel+0x23c/0x28c [ 76.759190][ C1] __secondary_switched+0x94/0x98 [ 76.759945][ C1] irq event stamp: 560072 [ 76.760563][ C1] hardirqs last enabled at (560071): [] default_idle_call+0xb8/0x40c [ 76.762026][ C1] hardirqs last disabled at (560072): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.763467][ C1] softirqs last enabled at (560028): [] handle_softirqs+0xa40/0xbe4 [ 76.764850][ C1] softirqs last disabled at (560017): [] __irq_exit_rcu+0x240/0x43c [ 76.766220][ C1] ---[ end trace b32b58f23b4c8df0 ]--- [ 76.800731][ T5069] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.801819][ T5069] Bad inode number on dev loop0: 2 is out of range [ 76.802776][ T5069] SysV FS: get root inode failed [ 76.803521][ T5069] oldfs: cannot read superblock [ 76.804333][ T5069] ------------[ cut here ]------------ [ 76.805078][ T5069] VFS: brelse: Trying to free free buffer [ 76.805969][ T5069] WARNING: CPU: 0 PID: 5069 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 76.807267][ T5069] Modules linked in: [ 76.807827][ T5069] CPU: 0 PID: 5069 Comm: syz.0.76 Tainted: G W syzkaller #0 [ 76.809189][ T5069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 76.810727][ T5069] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.811874][ T5069] pc : invalidate_bh_lru+0x128/0x22c [ 76.812638][ T5069] lr : invalidate_bh_lru+0x128/0x22c [ 76.813375][ T5069] sp : ffff8000200676e0 [ 76.814010][ T5069] x29: ffff8000200676e0 x28: ffff80001428d000 x27: 1fffe000341f245b [ 76.815206][ T5069] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 76.816449][ T5069] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dca9c230 [ 76.817582][ T5069] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000000003 [ 76.818684][ T5069] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 76.819772][ T5069] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 76.820916][ T5069] x11: 0000000000000002 x10: 0000000000000000 x9 : 47025ced9b741a00 [ 76.822086][ T5069] x8 : 47025ced9b741a00 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.823206][ T5069] x5 : ffff800020066ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 76.824335][ T5069] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.825528][ T5069] Call trace: [ 76.826022][ T5069] invalidate_bh_lru+0x128/0x22c [ 76.826758][ T5069] smp_call_function_many_cond+0xa50/0xeac [ 76.827634][ T5069] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.828362][ T5069] invalidate_bh_lrus+0x34/0x40 [ 76.829088][ T5069] blkdev_flush_mapping+0x16c/0x334 [ 76.829805][ T5069] blkdev_put+0x490/0x6ac [ 76.830462][ T5069] kill_block_super+0x98/0xdc [ 76.831162][ T5069] deactivate_locked_super+0xb8/0x134 [ 76.831989][ T5069] mount_bdev+0x284/0x358 [ 76.832626][ T5069] sysv_mount+0x44/0x58 [ 76.833218][ T5069] legacy_get_tree+0xd4/0x16c [ 76.833899][ T5069] vfs_get_tree+0x90/0x274 [ 76.834543][ T5069] do_new_mount+0x228/0x810 [ 76.835204][ T5069] path_mount+0x5bc/0x1008 [ 76.835906][ T5069] __arm64_sys_mount+0x514/0x5f0 [ 76.836660][ T5069] invoke_syscall+0x98/0x2b0 [ 76.837365][ T5069] el0_svc_common+0x138/0x258 [ 76.838066][ T5069] do_el0_svc+0x58/0x13c [ 76.838679][ T5069] el0_svc+0x78/0x1d0 [ 76.839270][ T5069] el0t_64_sync_handler+0xcc/0xe4 [ 76.839990][ T5069] el0t_64_sync+0x1a0/0x1a4 [ 76.840668][ T5069] irq event stamp: 1038 [ 76.841302][ T5069] hardirqs last enabled at (1037): [] kasan_quarantine_put+0xc4/0x200 [ 76.842875][ T5069] hardirqs last disabled at (1038): [] smp_call_function_many_cond+0xa44/0xeac [ 76.844476][ T5069] softirqs last enabled at (852): [] local_bh_enable+0x10/0x34 [ 76.845797][ T5069] softirqs last disabled at (850): [] local_bh_disable+0x10/0x34 [ 76.847076][ T5069] ---[ end trace b32b58f23b4c8df1 ]--- [ 76.967054][ T5071] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.968300][ T5071] Bad inode number on dev loop0: 2 is out of range [ 76.969306][ T5071] SysV FS: get root inode failed [ 76.970428][ T5071] oldfs: cannot read superblock [ 76.974531][ T4941] ------------[ cut here ]------------ [ 76.975370][ T4941] VFS: brelse: Trying to free free buffer [ 76.976306][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 76.977709][ T4941] Modules linked in: [ 76.978281][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 76.979401][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 76.980858][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.981962][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 76.982730][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 76.983502][ T4941] sp : ffff80001fe377c0 [ 76.984117][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665c [ 76.985337][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 76.986506][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb42318 [ 76.987720][ T4941] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000000003 [ 76.988902][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 76.990071][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 76.991160][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 76.992304][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.993514][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 76.994719][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.995913][ T4941] Call trace: [ 76.996393][ T4941] invalidate_bh_lru+0x128/0x22c [ 76.997127][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 76.997949][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.998699][ T4941] invalidate_bh_lrus+0x34/0x40 [ 76.999445][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 77.000237][ T4941] blkdev_put+0x490/0x6ac [ 77.000863][ T4941] blkdev_close+0x74/0xb0 [ 77.001478][ T4941] __fput+0x1c0/0x7e8 [ 77.002076][ T4941] ____fput+0x20/0x30 [ 77.002647][ T4941] task_work_run+0x12c/0x1d8 [ 77.003308][ T4941] do_notify_resume+0x2450/0x309c [ 77.004032][ T4941] el0_svc+0xf0/0x1d0 [ 77.004651][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 77.005362][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 77.005961][ T4941] irq event stamp: 274286 [ 77.006569][ T4941] hardirqs last enabled at (274285): [] kasan_quarantine_put+0xc4/0x200 [ 77.007942][ T4941] hardirqs last disabled at (274286): [] smp_call_function_many_cond+0xa44/0xeac [ 77.009496][ T4941] softirqs last enabled at (274030): [] local_bh_enable+0x10/0x34 [ 77.011000][ T4941] softirqs last disabled at (274028): [] local_bh_disable+0x10/0x34 [ 77.012482][ T4941] ---[ end trace b32b58f23b4c8df2 ]--- [ 77.063357][ T5073] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.064538][ T5073] Bad inode number on dev loop0: 2 is out of range [ 77.065530][ T5073] SysV FS: get root inode failed [ 77.066262][ T5073] oldfs: cannot read superblock [ 77.076063][ T4941] ------------[ cut here ]------------ [ 77.076948][ T4941] VFS: brelse: Trying to free free buffer [ 77.077875][ T4941] WARNING: CPU: 0 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 77.079158][ T4941] Modules linked in: [ 77.079731][ T4941] CPU: 0 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 77.080924][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 77.082337][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.083579][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 77.084390][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 77.085205][ T4941] sp : ffff80001fe377c0 [ 77.085757][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f245c [ 77.086964][ T4941] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 77.088209][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dca9c5d0 [ 77.089427][ T4941] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000000003 [ 77.090673][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 77.091828][ T4941] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 77.093025][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 77.094227][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.095387][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 77.096530][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 77.097702][ T4941] Call trace: [ 77.098165][ T4941] invalidate_bh_lru+0x128/0x22c [ 77.098888][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 77.099765][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 77.100539][ T4941] invalidate_bh_lrus+0x34/0x40 [ 77.101247][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 77.102037][ T4941] blkdev_put+0x490/0x6ac [ 77.102649][ T4941] blkdev_close+0x74/0xb0 [ 77.103263][ T4941] __fput+0x1c0/0x7e8 [ 77.103887][ T4941] ____fput+0x20/0x30 [ 77.104495][ T4941] task_work_run+0x12c/0x1d8 [ 77.105162][ T4941] do_notify_resume+0x2450/0x309c [ 77.105954][ T4941] el0_svc+0xf0/0x1d0 [ 77.106535][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 77.107297][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 77.107932][ T4941] irq event stamp: 282438 [ 77.108584][ T4941] hardirqs last enabled at (282437): [] kasan_quarantine_put+0xc4/0x200 [ 77.110087][ T4941] hardirqs last disabled at (282438): [] smp_call_function_many_cond+0xa44/0xeac [ 77.111749][ T4941] softirqs last enabled at (282184): [] local_bh_enable+0x10/0x34 [ 77.113100][ T4941] softirqs last disabled at (282182): [] local_bh_disable+0x10/0x34 [ 77.114543][ T4941] ---[ end trace b32b58f23b4c8df3 ]--- [ 77.135316][ T5075] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.136496][ T5075] Bad inode number on dev loop0: 2 is out of range [ 77.137473][ T5075] SysV FS: get root inode failed [ 77.138209][ T5075] oldfs: cannot read superblock [ 77.146375][ C0] ------------[ cut here ]------------ [ 77.147139][ C0] VFS: brelse: Trying to free free buffer [ 77.147968][ C0] WARNING: CPU: 0 PID: 5076 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 77.149160][ C0] Modules linked in: [ 77.149732][ C0] CPU: 0 PID: 5076 Comm: syz-executor Tainted: G W syzkaller #0 [ 77.151031][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 77.152470][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.153616][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 77.154445][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 77.155211][ C0] sp : ffff800008007de0 [ 77.155841][ C0] x29: ffff800008007de0 x28: ffff0000ebcc3680 x27: 1fffe000341f245b [ 77.157041][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 77.158241][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dca9c970 [ 77.159441][ C0] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000010002 [ 77.160579][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 77.161776][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 77.162866][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 3617ca7462be2700 [ 77.164001][ C0] x8 : 3617ca7462be2700 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.165184][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 77.166366][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 77.167444][ C0] Call trace: [ 77.167923][ C0] invalidate_bh_lru+0x128/0x22c [ 77.168665][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 77.169483][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.170486][ C0] ipi_handler+0x10c/0x6fc [ 77.171084][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 77.171829][ C0] handle_domain_irq+0x144/0x1fc [ 77.172502][ C0] gic_handle_irq+0x78/0x1b8 [ 77.173130][ C0] call_on_irq_stack+0x30/0x48 [ 77.173790][ C0] do_interrupt_handler+0x6c/0x88 [ 77.174505][ C0] el1_interrupt+0x30/0x58 [ 77.175183][ C0] el1h_64_irq_handler+0x18/0x24 [ 77.175890][ C0] el1h_64_irq+0x78/0x7c [ 77.176480][ C0] __kasan_check_read+0x18/0x54 [ 77.177158][ C0] post_alloc_hook+0x74/0x1f8 [ 77.177832][ C0] get_page_from_freelist+0x2928/0x2a68 [ 77.178605][ C0] __alloc_pages+0x1a0/0x470 [ 77.179210][ C0] alloc_pages+0x34c/0x5c0 [ 77.179783][ C0] pte_alloc_one+0x2c/0x254 [ 77.180389][ C0] handle_mm_fault+0x1830/0x2a28 [ 77.181135][ C0] do_page_fault+0x67c/0xab0 [ 77.181791][ C0] do_translation_fault+0xe0/0x130 [ 77.182573][ C0] do_mem_abort+0x6c/0x1ac [ 77.183174][ C0] el0_ia+0xe0/0x2b8 [ 77.183723][ C0] el0t_64_sync_handler+0xc0/0xe4 [ 77.184453][ C0] el0t_64_sync+0x1a0/0x1a4 [ 77.185078][ C0] irq event stamp: 36 [ 77.185659][ C0] hardirqs last enabled at (35): [] seqcount_lockdep_reader_access+0x14c/0x22c [ 77.187212][ C0] hardirqs last disabled at (36): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.188600][ C0] softirqs last enabled at (24): [] local_bh_enable+0x10/0x34 [ 77.189919][ C0] softirqs last disabled at (22): [] local_bh_disable+0x10/0x34 [ 77.191330][ C0] ---[ end trace b32b58f23b4c8df4 ]--- [ 77.235246][ T5077] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.236478][ T5077] Bad inode number on dev loop0: 2 is out of range [ 77.237405][ T5077] SysV FS: get root inode failed [ 77.238117][ T5077] oldfs: cannot read superblock [ 77.242898][ C1] ------------[ cut here ]------------ [ 77.243728][ C1] VFS: brelse: Trying to free free buffer [ 77.244621][ C1] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 77.245872][ C1] Modules linked in: [ 77.246450][ C1] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 77.247773][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 77.249277][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.250374][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 77.251126][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 77.251884][ C1] sp : ffff800008017de0 [ 77.252545][ C1] x29: ffff800008017de0 x28: ffff0000c7ca0000 x27: 1fffe000341f665c [ 77.253625][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 77.254761][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb426b8 [ 77.255913][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010003 [ 77.257081][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 77.258213][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 77.259417][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 98f689a7f0ca7300 [ 77.260653][ C1] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.261857][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 77.263100][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 77.264283][ C1] Call trace: [ 77.264746][ C1] invalidate_bh_lru+0x128/0x22c [ 77.265454][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 77.266266][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.267223][ C1] ipi_handler+0x10c/0x6fc [ 77.267843][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 77.268612][ C1] handle_domain_irq+0x144/0x1fc [ 77.269360][ C1] gic_handle_irq+0x78/0x1b8 [ 77.270006][ C1] call_on_irq_stack+0x30/0x48 [ 77.270700][ C1] do_interrupt_handler+0x6c/0x88 [ 77.271404][ C1] el1_interrupt+0x30/0x58 [ 77.272024][ C1] el1h_64_irq_handler+0x18/0x24 [ 77.272741][ C1] el1h_64_irq+0x78/0x7c [ 77.273363][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 77.274203][ C1] debug_object_active_state+0x16c/0x374 [ 77.275013][ C1] call_rcu+0x6c/0x8f4 [ 77.275606][ C1] evict+0x760/0x828 [ 77.276142][ C1] iput+0x6ac/0x764 [ 77.276695][ C1] do_unlinkat+0x36c/0x618 [ 77.277310][ C1] __arm64_sys_unlinkat+0xe0/0xfc [ 77.278029][ C1] invoke_syscall+0x98/0x2b0 [ 77.278687][ C1] el0_svc_common+0x138/0x258 [ 77.279350][ C1] do_el0_svc+0x58/0x13c [ 77.279923][ C1] el0_svc+0x78/0x1d0 [ 77.280520][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 77.281278][ C1] el0t_64_sync+0x1a0/0x1a4 [ 77.281953][ C1] irq event stamp: 362632 [ 77.282600][ C1] hardirqs last enabled at (362631): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 77.284063][ C1] hardirqs last disabled at (362632): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.285530][ C1] softirqs last enabled at (362554): [] local_bh_enable+0x10/0x34 [ 77.286812][ C1] softirqs last disabled at (362552): [] local_bh_disable+0x10/0x34 [ 77.288166][ C1] ---[ end trace b32b58f23b4c8df5 ]--- [ 77.371287][ T5079] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.372368][ T5079] Bad inode number on dev loop0: 2 is out of range [ 77.373302][ T5079] SysV FS: get root inode failed [ 77.373997][ T5079] oldfs: cannot read superblock [ 77.382928][ T4941] ------------[ cut here ]------------ [ 77.383784][ T4941] VFS: brelse: Trying to free free buffer [ 77.384748][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 77.386056][ T4941] Modules linked in: [ 77.386657][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 77.387842][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 77.389351][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.390461][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 77.391260][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 77.392031][ T4941] sp : ffff80001fe377c0 [ 77.392638][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 77.393813][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 77.394985][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb42a58 [ 77.396273][ T4941] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 77.397574][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 77.398807][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 77.400031][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 77.401273][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.402492][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 77.403657][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 77.404874][ T4941] Call trace: [ 77.405375][ T4941] invalidate_bh_lru+0x128/0x22c [ 77.406131][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 77.406987][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 77.407761][ T4941] invalidate_bh_lrus+0x34/0x40 [ 77.408446][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 77.409169][ T4941] blkdev_put+0x490/0x6ac [ 77.409792][ T4941] blkdev_close+0x74/0xb0 [ 77.410463][ T4941] __fput+0x1c0/0x7e8 [ 77.411085][ T4941] ____fput+0x20/0x30 [ 77.411696][ T4941] task_work_run+0x12c/0x1d8 [ 77.412395][ T4941] do_notify_resume+0x2450/0x309c [ 77.413161][ T4941] el0_svc+0xf0/0x1d0 [ 77.413743][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 77.414467][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 77.415144][ T4941] irq event stamp: 294708 [ 77.415776][ T4941] hardirqs last enabled at (294707): [] kasan_quarantine_put+0xc4/0x200 [ 77.417267][ T4941] hardirqs last disabled at (294708): [] smp_call_function_many_cond+0xa44/0xeac [ 77.418754][ T4941] softirqs last enabled at (294452): [] local_bh_enable+0x10/0x34 [ 77.420091][ T4941] softirqs last disabled at (294450): [] local_bh_disable+0x10/0x34 [ 77.421520][ T4941] ---[ end trace b32b58f23b4c8df6 ]--- [ 77.471265][ T5081] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.472497][ T5081] Bad inode number on dev loop0: 2 is out of range [ 77.473477][ T5081] SysV FS: get root inode failed [ 77.474230][ T5081] oldfs: cannot read superblock [ 77.483821][ C0] ------------[ cut here ]------------ [ 77.484731][ C0] VFS: brelse: Trying to free free buffer [ 77.485614][ C0] WARNING: CPU: 0 PID: 5083 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 77.486874][ C0] Modules linked in: [ 77.487417][ C0] CPU: 0 PID: 5083 Comm: syz.0.83 Tainted: G W syzkaller #0 [ 77.488684][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 77.490266][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.491434][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 77.492248][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 77.493062][ C0] sp : ffff800008007de0 [ 77.493727][ C0] x29: ffff800008007de0 x28: ffff0000c6781b40 x27: 1fffe000341f245c [ 77.494909][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 77.496159][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb03318 [ 77.497331][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010002 [ 77.498614][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 77.499894][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 77.501137][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 6fcbeb2e5d123700 [ 77.502326][ C0] x8 : 6fcbeb2e5d123700 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.503490][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 77.504670][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 77.505880][ C0] Call trace: [ 77.506347][ C0] invalidate_bh_lru+0x128/0x22c [ 77.507039][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 77.507914][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.508981][ C0] ipi_handler+0x10c/0x6fc [ 77.509592][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 77.510368][ C0] handle_domain_irq+0x144/0x1fc [ 77.511088][ C0] gic_handle_irq+0x78/0x1b8 [ 77.511758][ C0] call_on_irq_stack+0x30/0x48 [ 77.512407][ C0] do_interrupt_handler+0x6c/0x88 [ 77.513119][ C0] el1_interrupt+0x30/0x58 [ 77.513738][ C0] el1h_64_irq_handler+0x18/0x24 [ 77.514449][ C0] el1h_64_irq+0x78/0x7c [ 77.515063][ C0] charge_memcg+0x198/0x21c [ 77.515734][ C0] __mem_cgroup_charge+0x38/0xb0 [ 77.516545][ C0] handle_mm_fault+0x1808/0x2a28 [ 77.517387][ C0] do_page_fault+0x67c/0xab0 [ 77.518104][ C0] do_translation_fault+0xe0/0x130 [ 77.518853][ C0] do_mem_abort+0x6c/0x1ac [ 77.519790][ C0] el0_da+0x90/0x1ec [ 77.520360][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 77.521049][ C0] el0t_64_sync+0x1a0/0x1a4 [ 77.521737][ C0] irq event stamp: 284 [ 77.522318][ C0] hardirqs last enabled at (283): [] charge_memcg+0x190/0x21c [ 77.523688][ C0] hardirqs last disabled at (284): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.525130][ C0] softirqs last enabled at (54): [] local_bh_enable+0x10/0x34 [ 77.526448][ C0] softirqs last disabled at (52): [] local_bh_disable+0x10/0x34 [ 77.527820][ C0] ---[ end trace b32b58f23b4c8df7 ]--- [ 77.554344][ T5083] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.555468][ T5083] Bad inode number on dev loop0: 2 is out of range [ 77.556467][ T5083] SysV FS: get root inode failed [ 77.557251][ T5083] oldfs: cannot read superblock [ 77.566527][ T4941] ------------[ cut here ]------------ [ 77.567368][ T4941] VFS: brelse: Trying to free free buffer [ 77.568258][ T4941] WARNING: CPU: 1 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 77.569500][ T4941] Modules linked in: [ 77.570086][ T4941] CPU: 1 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 77.571314][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 77.572712][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.573829][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 77.574570][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 77.575239][ T4941] sp : ffff80001fe377c0 [ 77.575775][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 77.576833][ T4941] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 77.577890][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb42df8 [ 77.578994][ T4941] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 77.580091][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 77.581231][ T4941] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 77.582481][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 77.583655][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.584839][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 77.586023][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 77.587253][ T4941] Call trace: [ 77.587732][ T4941] invalidate_bh_lru+0x128/0x22c [ 77.588455][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 77.589305][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 77.590074][ T4941] invalidate_bh_lrus+0x34/0x40 [ 77.590733][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 77.591481][ T4941] blkdev_put+0x490/0x6ac [ 77.592131][ T4941] blkdev_close+0x74/0xb0 [ 77.592772][ T4941] __fput+0x1c0/0x7e8 [ 77.593370][ T4941] ____fput+0x20/0x30 [ 77.593933][ T4941] task_work_run+0x12c/0x1d8 [ 77.594637][ T4941] do_notify_resume+0x2450/0x309c [ 77.595374][ T4941] el0_svc+0xf0/0x1d0 [ 77.595977][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 77.596772][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 77.597441][ T4941] irq event stamp: 305920 [ 77.598070][ T4941] hardirqs last enabled at (305919): [] kasan_quarantine_put+0xc4/0x200 [ 77.599548][ T4941] hardirqs last disabled at (305920): [] smp_call_function_many_cond+0xa44/0xeac [ 77.601139][ T4941] softirqs last enabled at (305662): [] local_bh_enable+0x10/0x34 [ 77.602492][ T4941] softirqs last disabled at (305660): [] local_bh_disable+0x10/0x34 [ 77.603909][ T4941] ---[ end trace b32b58f23b4c8df8 ]--- [ 77.624149][ T5085] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.625350][ T5085] Bad inode number on dev loop0: 2 is out of range [ 77.626428][ T5085] SysV FS: get root inode failed [ 77.627107][ T5085] oldfs: cannot read superblock [ 77.644126][ C1] ------------[ cut here ]------------ [ 77.644982][ C1] VFS: brelse: Trying to free free buffer [ 77.645940][ C1] WARNING: CPU: 1 PID: 5086 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 77.647269][ C1] Modules linked in: [ 77.647852][ C1] CPU: 1 PID: 5086 Comm: syz.0.85 Tainted: G W syzkaller #0 [ 77.649092][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 77.650560][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.651799][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 77.652578][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 77.653369][ C1] sp : ffff800008017de0 [ 77.654128][ C1] x29: ffff800008017de0 x28: ffff0000d6d251c0 x27: 1fffe000341f665c [ 77.655416][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 77.656650][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9bb230 [ 77.657797][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010002 [ 77.659050][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 77.660229][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 77.661494][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : a97fa28b55a08200 [ 77.662707][ C1] x8 : a97fa28b55a08200 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.663957][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 77.665160][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 77.666380][ C1] Call trace: [ 77.666869][ C1] invalidate_bh_lru+0x128/0x22c [ 77.667590][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 77.668458][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.669542][ C1] ipi_handler+0x10c/0x6fc [ 77.670167][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 77.671022][ C1] handle_domain_irq+0x144/0x1fc [ 77.671768][ C1] gic_handle_irq+0x78/0x1b8 [ 77.672383][ C1] call_on_irq_stack+0x30/0x48 [ 77.673085][ C1] do_interrupt_handler+0x6c/0x88 [ 77.673796][ C1] el1_interrupt+0x30/0x58 [ 77.674404][ C1] el1h_64_irq_handler+0x18/0x24 [ 77.675144][ C1] el1h_64_irq+0x78/0x7c [ 77.675787][ C1] qlist_free_all+0x84/0xa8 [ 77.676461][ C1] kasan_quarantine_reduce+0x124/0x130 [ 77.677311][ C1] __kasan_slab_alloc+0x34/0xcc [ 77.677961][ C1] slab_post_alloc_hook+0x74/0x3f8 [ 77.678682][ C1] kmem_cache_alloc+0x1d8/0x3d4 [ 77.679395][ C1] taskstats_exit+0xe0/0x824 [ 77.680110][ C1] do_exit+0x4e4/0x1f50 [ 77.680691][ C1] do_group_exit+0x100/0x268 [ 77.681341][ C1] __wake_up_parent+0x0/0x60 [ 77.682019][ C1] invoke_syscall+0x98/0x2b0 [ 77.682753][ C1] el0_svc_common+0x138/0x258 [ 77.683419][ C1] do_el0_svc+0x58/0x13c [ 77.684047][ C1] el0_svc+0x78/0x1d0 [ 77.684618][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 77.685358][ C1] el0t_64_sync+0x1a0/0x1a4 [ 77.686022][ C1] irq event stamp: 1636 [ 77.686577][ C1] hardirqs last enabled at (1635): [] put_cpu_partial+0x188/0x214 [ 77.687914][ C1] hardirqs last disabled at (1636): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.689423][ C1] softirqs last enabled at (1600): [] local_bh_enable+0x10/0x34 [ 77.690831][ C1] softirqs last disabled at (1598): [] local_bh_disable+0x10/0x34 [ 77.692153][ C1] ---[ end trace b32b58f23b4c8df9 ]--- [ 77.739065][ T5089] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.740328][ T5089] Bad inode number on dev loop0: 2 is out of range [ 77.741408][ T5089] SysV FS: get root inode failed [ 77.742509][ T5089] oldfs: cannot read superblock [ 77.749096][ C0] ------------[ cut here ]------------ [ 77.750044][ C0] VFS: brelse: Trying to free free buffer [ 77.750984][ C0] WARNING: CPU: 0 PID: 5090 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 77.752318][ C0] Modules linked in: [ 77.752930][ C0] CPU: 0 PID: 5090 Comm: syz-executor Tainted: G W syzkaller #0 [ 77.754272][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 77.755653][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.756774][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 77.757569][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 77.758283][ C0] sp : ffff800008007de0 [ 77.758898][ C0] x29: ffff800008007de0 x28: ffff0000cfd20000 x27: 1fffe000341f245c [ 77.760115][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 77.761308][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb036b8 [ 77.762538][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010002 [ 77.763688][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 77.764905][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 77.766099][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 80bc9b0c8e20ed00 [ 77.767298][ C0] x8 : 80bc9b0c8e20ed00 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.768418][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 77.769592][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 77.770811][ C0] Call trace: [ 77.771353][ C0] invalidate_bh_lru+0x128/0x22c [ 77.772059][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 77.772894][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.773939][ C0] ipi_handler+0x10c/0x6fc [ 77.774587][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 77.775392][ C0] handle_domain_irq+0x144/0x1fc [ 77.776056][ C0] gic_handle_irq+0x78/0x1b8 [ 77.776698][ C0] call_on_irq_stack+0x30/0x48 [ 77.777324][ C0] do_interrupt_handler+0x6c/0x88 [ 77.778059][ C0] el1_interrupt+0x30/0x58 [ 77.778702][ C0] el1h_64_irq_handler+0x18/0x24 [ 77.779434][ C0] el1h_64_irq+0x78/0x7c [ 77.780005][ C0] count_memcg_event_mm+0x1d0/0x300 [ 77.780750][ C0] handle_mm_fault+0x19c/0x2a28 [ 77.781397][ C0] do_page_fault+0x67c/0xab0 [ 77.782114][ C0] do_translation_fault+0xe0/0x130 [ 77.782861][ C0] do_mem_abort+0x6c/0x1ac [ 77.783520][ C0] el0_da+0x90/0x1ec [ 77.784109][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 77.784883][ C0] el0t_64_sync+0x1a0/0x1a4 [ 77.785573][ C0] irq event stamp: 396 [ 77.786116][ C0] hardirqs last enabled at (395): [] count_memcg_event_mm+0x1b0/0x300 [ 77.787533][ C0] hardirqs last disabled at (396): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.788994][ C0] softirqs last enabled at (64): [] local_bh_enable+0x10/0x34 [ 77.790336][ C0] softirqs last disabled at (62): [] local_bh_disable+0x10/0x34 [ 77.791658][ C0] ---[ end trace b32b58f23b4c8dfa ]--- [ 77.875825][ T5091] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.877062][ T5091] Bad inode number on dev loop0: 2 is out of range [ 77.878169][ T5091] SysV FS: get root inode failed [ 77.879059][ T5091] oldfs: cannot read superblock [ 77.887706][ C1] ------------[ cut here ]------------ [ 77.888565][ C1] VFS: brelse: Trying to free free buffer [ 77.889507][ C1] WARNING: CPU: 1 PID: 5092 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 77.890835][ C1] Modules linked in: [ 77.891379][ C1] CPU: 1 PID: 5092 Comm: syz-executor Tainted: G W syzkaller #0 [ 77.892648][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 77.894180][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.895276][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 77.896030][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 77.896855][ C1] sp : ffff800008017de0 [ 77.897497][ C1] x29: ffff800008017de0 x28: ffff0000d6d20000 x27: 1fffe000341f665b [ 77.898686][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 77.899874][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9bb5d0 [ 77.901102][ C1] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000010002 [ 77.902325][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 77.903529][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 77.904704][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 909082493a1f8000 [ 77.905869][ C1] x8 : 909082493a1f8000 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.907061][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 77.908211][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 77.909355][ C1] Call trace: [ 77.909829][ C1] invalidate_bh_lru+0x128/0x22c [ 77.910576][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 77.911409][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.912328][ C1] ipi_handler+0x10c/0x6fc [ 77.912991][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 77.913785][ C1] handle_domain_irq+0x144/0x1fc [ 77.914464][ C1] gic_handle_irq+0x78/0x1b8 [ 77.915107][ C1] call_on_irq_stack+0x30/0x48 [ 77.915772][ C1] do_interrupt_handler+0x6c/0x88 [ 77.916483][ C1] el1_interrupt+0x30/0x58 [ 77.917130][ C1] el1h_64_irq_handler+0x18/0x24 [ 77.917814][ C1] el1h_64_irq+0x78/0x7c [ 77.918407][ C1] lock_release+0x4a0/0x8e0 [ 77.919065][ C1] rcu_lock_release+0x24/0x30 [ 77.919715][ C1] get_obj_cgroup_from_current+0x39c/0x524 [ 77.920580][ C1] slab_pre_alloc_hook+0xa4/0xe8 [ 77.921260][ C1] kmem_cache_alloc+0x94/0x3d4 [ 77.921889][ C1] __d_alloc+0x3c/0x65c [ 77.922467][ C1] d_alloc+0x54/0x204 [ 77.923013][ C1] lookup_one_qstr_excl+0xbc/0x230 [ 77.923754][ C1] filename_create+0x1d0/0x3a8 [ 77.924400][ C1] do_symlinkat+0xc8/0x5b4 [ 77.924995][ C1] __arm64_sys_symlinkat+0xa4/0xbc [ 77.925679][ C1] invoke_syscall+0x98/0x2b0 [ 77.926294][ C1] el0_svc_common+0x138/0x258 [ 77.926910][ C1] do_el0_svc+0x58/0x13c [ 77.927510][ C1] el0_svc+0x78/0x1d0 [ 77.928041][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 77.928726][ C1] el0t_64_sync+0x1a0/0x1a4 [ 77.929349][ C1] irq event stamp: 876 [ 77.929918][ C1] hardirqs last enabled at (875): [] read_seqbegin+0x1fc/0x300 [ 77.931266][ C1] hardirqs last disabled at (876): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.932558][ C1] softirqs last enabled at (738): [] local_bh_enable+0x10/0x34 [ 77.933858][ C1] softirqs last disabled at (736): [] local_bh_disable+0x10/0x34 [ 77.935176][ C1] ---[ end trace b32b58f23b4c8dfb ]--- [ 78.031674][ T5093] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.032797][ T5093] Bad inode number on dev loop0: 2 is out of range [ 78.033792][ T5093] SysV FS: get root inode failed [ 78.034528][ T5093] oldfs: cannot read superblock [ 78.035330][ T5093] ------------[ cut here ]------------ [ 78.036061][ T5093] VFS: brelse: Trying to free free buffer [ 78.036960][ T5093] WARNING: CPU: 0 PID: 5093 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 78.038204][ T5093] Modules linked in: [ 78.038718][ T5093] CPU: 0 PID: 5093 Comm: syz.0.88 Tainted: G W syzkaller #0 [ 78.040024][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 78.041557][ T5093] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.042763][ T5093] pc : invalidate_bh_lru+0x128/0x22c [ 78.043504][ T5093] lr : invalidate_bh_lru+0x128/0x22c [ 78.044304][ T5093] sp : ffff8000201876e0 [ 78.044874][ T5093] x29: ffff8000201876e0 x28: ffff80001428d000 x27: 1fffe000341f245b [ 78.046098][ T5093] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000000 [ 78.047269][ T5093] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb03a58 [ 78.048411][ T5093] x20: ffff0001a0f922d8 x19: ffff80001145af60 x18: 0000000000000003 [ 78.049631][ T5093] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 78.050861][ T5093] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 78.051981][ T5093] x11: 0000000000000002 x10: 0000000000000000 x9 : 941d34361d319800 [ 78.053215][ T5093] x8 : 941d34361d319800 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.054352][ T5093] x5 : ffff800020186ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 78.055569][ T5093] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.056819][ T5093] Call trace: [ 78.057267][ T5093] invalidate_bh_lru+0x128/0x22c [ 78.057981][ T5093] smp_call_function_many_cond+0xa50/0xeac [ 78.058790][ T5093] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.059488][ T5093] invalidate_bh_lrus+0x34/0x40 [ 78.060198][ T5093] blkdev_flush_mapping+0x16c/0x334 [ 78.060938][ T5093] blkdev_put+0x490/0x6ac [ 78.061599][ T5093] kill_block_super+0x98/0xdc [ 78.062293][ T5093] deactivate_locked_super+0xb8/0x134 [ 78.063106][ T5093] mount_bdev+0x284/0x358 [ 78.063706][ T5093] sysv_mount+0x44/0x58 [ 78.064318][ T5093] legacy_get_tree+0xd4/0x16c [ 78.065003][ T5093] vfs_get_tree+0x90/0x274 [ 78.065641][ T5093] do_new_mount+0x228/0x810 [ 78.066259][ T5093] path_mount+0x5bc/0x1008 [ 78.066892][ T5093] __arm64_sys_mount+0x514/0x5f0 [ 78.067606][ T5093] invoke_syscall+0x98/0x2b0 [ 78.068286][ T5093] el0_svc_common+0x138/0x258 [ 78.068939][ T5093] do_el0_svc+0x58/0x13c [ 78.069545][ T5093] el0_svc+0x78/0x1d0 [ 78.070149][ T5093] el0t_64_sync_handler+0xcc/0xe4 [ 78.070886][ T5093] el0t_64_sync+0x1a0/0x1a4 [ 78.071595][ T5093] irq event stamp: 1094 [ 78.072173][ T5093] hardirqs last enabled at (1093): [] kasan_quarantine_put+0xc4/0x200 [ 78.073605][ T5093] hardirqs last disabled at (1094): [] smp_call_function_many_cond+0xa44/0xeac [ 78.075108][ T5093] softirqs last enabled at (926): [] local_bh_enable+0x10/0x34 [ 78.076436][ T5093] softirqs last disabled at (924): [] local_bh_disable+0x10/0x34 [ 78.077706][ T5093] ---[ end trace b32b58f23b4c8dfc ]--- [ 78.205629][ T5095] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.206776][ T5095] Bad inode number on dev loop0: 2 is out of range [ 78.207870][ T5095] SysV FS: get root inode failed [ 78.208514][ T5095] oldfs: cannot read superblock [ 78.210946][ C1] ------------[ cut here ]------------ [ 78.211852][ C1] VFS: brelse: Trying to free free buffer [ 78.212707][ C1] WARNING: CPU: 1 PID: 5095 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 78.214034][ C1] Modules linked in: [ 78.214572][ C1] CPU: 1 PID: 5095 Comm: syz.0.89 Tainted: G W syzkaller #0 [ 78.215709][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 78.217024][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.218031][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 78.218780][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 78.219552][ C1] sp : ffff800008017de0 [ 78.220128][ C1] x29: ffff800008017de0 x28: ffff0000c0e20000 x27: 1fffe000341f665c [ 78.221299][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 78.222456][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9bb970 [ 78.223580][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010002 [ 78.224742][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 78.225917][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 78.227218][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 1388949c3a913e00 [ 78.228369][ C1] x8 : 1388949c3a913e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.229539][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 78.230752][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 78.231875][ C1] Call trace: [ 78.232360][ C1] invalidate_bh_lru+0x128/0x22c [ 78.233052][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 78.233848][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 78.234795][ C1] ipi_handler+0x10c/0x6fc [ 78.235411][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 78.236151][ C1] handle_domain_irq+0x144/0x1fc [ 78.236848][ C1] gic_handle_irq+0x78/0x1b8 [ 78.237450][ C1] call_on_irq_stack+0x30/0x48 [ 78.238092][ C1] do_interrupt_handler+0x6c/0x88 [ 78.238766][ C1] el1_interrupt+0x30/0x58 [ 78.239360][ C1] el1h_64_irq_handler+0x18/0x24 [ 78.240001][ C1] el1h_64_irq+0x78/0x7c [ 78.240563][ C1] free_unref_page+0x158/0x1f8 [ 78.241234][ C1] __free_pages+0x17c/0x1d0 [ 78.241839][ C1] free_pages+0xe4/0x128 [ 78.242437][ C1] tlb_finish_mmu+0x240/0x32c [ 78.243074][ C1] exit_mmap+0x2e0/0x508 [ 78.243639][ C1] __mmput+0xec/0x3a8 [ 78.244220][ C1] mmput+0x80/0xc0 [ 78.244763][ C1] exit_mm+0x4ac/0x664 [ 78.245368][ C1] do_exit+0x4f0/0x1f50 [ 78.245947][ C1] do_group_exit+0x100/0x268 [ 78.246632][ C1] get_signal+0x73c/0x1334 [ 78.247228][ C1] do_notify_resume+0x354/0x309c [ 78.247937][ C1] el0_svc+0xf0/0x1d0 [ 78.248497][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 78.249224][ C1] el0t_64_sync+0x1a0/0x1a4 [ 78.249928][ C1] irq event stamp: 2508 [ 78.250576][ C1] hardirqs last enabled at (2507): [] free_unref_page+0x148/0x1f8 [ 78.251889][ C1] hardirqs last disabled at (2508): [] enter_el1_irq_or_nmi+0x10/0x1c [ 78.253323][ C1] softirqs last enabled at (1410): [] handle_softirqs+0xa40/0xbe4 [ 78.254687][ C1] softirqs last disabled at (1399): [] __irq_exit_rcu+0x240/0x43c [ 78.256101][ C1] ---[ end trace b32b58f23b4c8dfd ]--- [ 78.292621][ T5097] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.293794][ T5097] Bad inode number on dev loop0: 2 is out of range [ 78.294711][ T5097] SysV FS: get root inode failed [ 78.295441][ T5097] oldfs: cannot read superblock [ 78.305813][ T4704] ------------[ cut here ]------------ [ 78.306617][ T4704] VFS: brelse: Trying to free free buffer [ 78.307463][ T4704] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 78.308704][ T4704] Modules linked in: [ 78.309249][ T4704] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 78.310597][ T4704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 78.312087][ T4704] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.313280][ T4704] pc : invalidate_bh_lru+0x128/0x22c [ 78.314007][ T4704] lr : invalidate_bh_lru+0x128/0x22c [ 78.314738][ T4704] sp : ffff80001fb877c0 [ 78.315359][ T4704] x29: ffff80001fb877c0 x28: ffff80001428d000 x27: 1fffe000341f665c [ 78.316577][ T4704] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 78.317738][ T4704] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000de9bbd10 [ 78.318964][ T4704] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000000003 [ 78.320071][ T4704] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 78.321245][ T4704] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 78.322384][ T4704] x11: 0000000000000002 x10: 0000000000000000 x9 : 98f689a7f0ca7300 [ 78.323538][ T4704] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.324737][ T4704] x5 : ffff80001fb870d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 78.325955][ T4704] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.327257][ T4704] Call trace: [ 78.327765][ T4704] invalidate_bh_lru+0x128/0x22c [ 78.328492][ T4704] smp_call_function_many_cond+0xa50/0xeac [ 78.329382][ T4704] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.330185][ T4704] invalidate_bh_lrus+0x34/0x40 [ 78.330943][ T4704] blkdev_flush_mapping+0x16c/0x334 [ 78.331744][ T4704] blkdev_put+0x490/0x6ac [ 78.332355][ T4704] blkdev_close+0x74/0xb0 [ 78.332980][ T4704] __fput+0x1c0/0x7e8 [ 78.333539][ T4704] ____fput+0x20/0x30 [ 78.334093][ T4704] task_work_run+0x12c/0x1d8 [ 78.334755][ T4704] do_notify_resume+0x2450/0x309c [ 78.335494][ T4704] el0_svc+0xf0/0x1d0 [ 78.336120][ T4704] el0t_64_sync_handler+0xcc/0xe4 [ 78.336833][ T4704] el0t_64_sync+0x1a0/0x1a4 [ 78.337542][ T4704] irq event stamp: 392740 [ 78.338124][ T4704] hardirqs last enabled at (392739): [] finish_lock_switch+0xb0/0x1c4 [ 78.339587][ T4704] hardirqs last disabled at (392740): [] smp_call_function_many_cond+0xa44/0xeac [ 78.341036][ T4704] softirqs last enabled at (392684): [] local_bh_enable+0x10/0x34 [ 78.342438][ T4704] softirqs last disabled at (392682): [] local_bh_disable+0x10/0x34 [ 78.343724][ T4704] ---[ end trace b32b58f23b4c8dfe ]--- [ 78.379605][ T5099] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.381016][ T5099] Bad inode number on dev loop0: 2 is out of range [ 78.382073][ T5099] SysV FS: get root inode failed [ 78.382839][ T5099] oldfs: cannot read superblock [ 78.389678][ C0] ------------[ cut here ]------------ [ 78.390583][ C0] VFS: brelse: Trying to free free buffer [ 78.391535][ C0] WARNING: CPU: 0 PID: 5100 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 78.392912][ C0] Modules linked in: [ 78.393525][ C0] CPU: 0 PID: 5100 Comm: syz-executor Tainted: G W syzkaller #0 [ 78.394945][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 78.396506][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.397727][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 78.398491][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 78.399215][ C0] sp : ffff800008007de0 [ 78.399808][ C0] x29: ffff800008007de0 x28: ffff0000d4c48000 x27: 1fffe000341f245c [ 78.401000][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 78.402144][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb03df8 [ 78.403306][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010003 [ 78.404502][ C0] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 78.405652][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 78.406793][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 242e0cf812f93600 [ 78.407960][ C0] x8 : 242e0cf812f93600 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.409148][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 78.410277][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 78.411498][ C0] Call trace: [ 78.411941][ C0] invalidate_bh_lru+0x128/0x22c [ 78.412687][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 78.413541][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 78.414434][ C0] ipi_handler+0x10c/0x6fc [ 78.415087][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 78.415921][ C0] handle_domain_irq+0x144/0x1fc [ 78.416631][ C0] gic_handle_irq+0x78/0x1b8 [ 78.417282][ C0] call_on_irq_stack+0x30/0x48 [ 78.417982][ C0] do_interrupt_handler+0x6c/0x88 [ 78.418648][ C0] el1_interrupt+0x30/0x58 [ 78.419255][ C0] el1h_64_irq_handler+0x18/0x24 [ 78.419966][ C0] el1h_64_irq+0x78/0x7c [ 78.420635][ C0] lock_release+0xb0/0x8e0 [ 78.421238][ C0] rcu_lock_release+0x24/0x30 [ 78.421879][ C0] __mod_lruvec_page_state+0x1e0/0x2b8 [ 78.422722][ C0] page_add_new_anon_rmap+0x468/0x778 [ 78.423478][ C0] wp_page_copy+0x83c/0x11ec [ 78.424085][ C0] do_wp_page+0x6c0/0x984 [ 78.424799][ C0] handle_mm_fault+0x163c/0x2a28 [ 78.425470][ C0] do_page_fault+0x67c/0xab0 [ 78.426127][ C0] do_mem_abort+0x6c/0x1ac [ 78.426793][ C0] el0_da+0x90/0x1ec [ 78.427393][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 78.428122][ C0] el0t_64_sync+0x1a0/0x1a4 [ 78.428783][ C0] irq event stamp: 490 [ 78.429381][ C0] hardirqs last enabled at (489): [] charge_memcg+0x190/0x21c [ 78.430692][ C0] hardirqs last disabled at (490): [] enter_el1_irq_or_nmi+0x10/0x1c [ 78.432073][ C0] softirqs last enabled at (24): [] local_bh_enable+0x10/0x34 [ 78.433448][ C0] softirqs last disabled at (22): [] local_bh_disable+0x10/0x34 [ 78.434804][ C0] ---[ end trace b32b58f23b4c8dff ]--- [ 78.484127][ T5101] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.485616][ T5101] Bad inode number on dev loop0: 2 is out of range [ 78.486692][ T5101] SysV FS: get root inode failed [ 78.487515][ T5101] oldfs: cannot read superblock [ 78.495799][ C1] ------------[ cut here ]------------ [ 78.496656][ C1] VFS: brelse: Trying to free free buffer [ 78.497613][ C1] WARNING: CPU: 1 PID: 5102 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 78.498910][ C1] Modules linked in: [ 78.499482][ C1] CPU: 1 PID: 5102 Comm: syz-executor Tainted: G W syzkaller #0 [ 78.500770][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 78.502309][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.503496][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 78.504272][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 78.505034][ C1] sp : ffff800008017de0 [ 78.505607][ C1] x29: ffff800008017de0 x28: ffff0000d7f9d1c0 x27: 1fffe000341f665b [ 78.506690][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 78.507872][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dca9a148 [ 78.509082][ C1] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000010003 [ 78.510315][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 78.511476][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 78.512709][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 3580d9279774e900 [ 78.513860][ C1] x8 : 3580d9279774e900 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.514986][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 78.516202][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 78.517406][ C1] Call trace: [ 78.517900][ C1] invalidate_bh_lru+0x128/0x22c [ 78.518642][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 78.519484][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 78.520561][ C1] ipi_handler+0x10c/0x6fc [ 78.521248][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 78.522004][ C1] handle_domain_irq+0x144/0x1fc [ 78.522697][ C1] gic_handle_irq+0x78/0x1b8 [ 78.523299][ C1] call_on_irq_stack+0x30/0x48 [ 78.523967][ C1] do_interrupt_handler+0x6c/0x88 [ 78.524686][ C1] el1_interrupt+0x30/0x58 [ 78.525307][ C1] el1h_64_irq_handler+0x18/0x24 [ 78.526006][ C1] el1h_64_irq+0x78/0x7c [ 78.526629][ C1] ___slab_alloc+0x7d4/0xd8c [ 78.527354][ C1] __slab_alloc+0x68/0xc0 [ 78.527981][ C1] kmem_cache_alloc+0x2a4/0x3d4 [ 78.528653][ C1] __d_alloc+0x3c/0x65c [ 78.529222][ C1] d_alloc+0x54/0x204 [ 78.529759][ C1] lookup_one_qstr_excl+0xbc/0x230 [ 78.530524][ C1] filename_create+0x1d0/0x3a8 [ 78.531203][ C1] do_symlinkat+0xc8/0x5b4 [ 78.531836][ C1] __arm64_sys_symlinkat+0xa4/0xbc [ 78.532604][ C1] invoke_syscall+0x98/0x2b0 [ 78.533282][ C1] el0_svc_common+0x138/0x258 [ 78.533983][ C1] do_el0_svc+0x58/0x13c [ 78.534571][ C1] el0_svc+0x78/0x1d0 [ 78.535158][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 78.535870][ C1] el0t_64_sync+0x1a0/0x1a4 [ 78.536523][ C1] irq event stamp: 936 [ 78.537070][ C1] hardirqs last enabled at (935): [] ___slab_alloc+0x7c4/0xd8c [ 78.538343][ C1] hardirqs last disabled at (936): [] enter_el1_irq_or_nmi+0x10/0x1c [ 78.539779][ C1] softirqs last enabled at (778): [] local_bh_enable+0x10/0x34 [ 78.541118][ C1] softirqs last disabled at (776): [] local_bh_disable+0x10/0x34 [ 78.542501][ C1] ---[ end trace b32b58f23b4c8e00 ]--- [ 78.665804][ T5103] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.667039][ T5103] Bad inode number on dev loop0: 2 is out of range [ 78.668102][ T5103] SysV FS: get root inode failed [ 78.668828][ T5103] oldfs: cannot read superblock [ 78.676334][ C0] ------------[ cut here ]------------ [ 78.677194][ C0] VFS: brelse: Trying to free free buffer [ 78.678072][ C0] WARNING: CPU: 0 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 78.679274][ C0] Modules linked in: [ 78.679804][ C0] CPU: 0 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 78.681067][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 78.682436][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.683557][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 78.684296][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 78.685070][ C0] sp : ffff800008007de0 [ 78.685605][ C0] x29: ffff800008007de0 x28: ffff0000c7ca0000 x27: 1fffe000341f245c [ 78.686827][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 78.688095][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2c26230 [ 78.689311][ C0] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000010003 [ 78.690545][ C0] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 78.691721][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 78.692857][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 98f689a7f0ca7300 [ 78.693988][ C0] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.695185][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 78.696406][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 78.697522][ C0] Call trace: [ 78.697995][ C0] invalidate_bh_lru+0x128/0x22c [ 78.698747][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 78.699575][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 78.700635][ C0] ipi_handler+0x10c/0x6fc [ 78.701330][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 78.702090][ C0] handle_domain_irq+0x144/0x1fc [ 78.702768][ C0] gic_handle_irq+0x78/0x1b8 [ 78.703435][ C0] call_on_irq_stack+0x30/0x48 [ 78.704064][ C0] do_interrupt_handler+0x6c/0x88 [ 78.704788][ C0] el1_interrupt+0x30/0x58 [ 78.705435][ C0] el1h_64_irq_handler+0x18/0x24 [ 78.706146][ C0] el1h_64_irq+0x78/0x7c [ 78.706785][ C0] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 78.707608][ C0] debug_check_no_obj_freed+0x450/0x46c [ 78.708377][ C0] free_unref_page_prepare+0x2f8/0xa84 [ 78.709183][ C0] free_unref_page+0x78/0x1f8 [ 78.709847][ C0] __free_pages+0x17c/0x1d0 [ 78.710512][ C0] __free_slab+0x174/0x38c [ 78.711195][ C0] discard_slab+0x64/0xd8 [ 78.711788][ C0] __slab_free+0x1c0/0x248 [ 78.712496][ C0] ___cache_free+0x174/0x1b8 [ 78.713165][ C0] qlink_free+0x5c/0xa0 [ 78.713757][ C0] qlist_free_all+0x40/0xa8 [ 78.714442][ C0] kasan_quarantine_reduce+0x124/0x130 [ 78.715261][ C0] __kasan_slab_alloc+0x34/0xcc [ 78.715957][ C0] slab_post_alloc_hook+0x74/0x3f8 [ 78.716817][ C0] __kmalloc_node+0x21c/0x508 [ 78.717447][ C0] __vmalloc_node_range+0x2b8/0x8c8 [ 78.718189][ C0] vzalloc+0x110/0x188 [ 78.718781][ C0] alloc_counters+0x84/0x7a0 [ 78.719489][ C0] do_ipt_get_ctl+0xb68/0x143c [ 78.720149][ C0] nf_getsockopt+0x264/0x284 [ 78.720827][ C0] ip_getsockopt+0x122c/0x1664 [ 78.721523][ C0] tcp_getsockopt+0x210/0x2eec [ 78.722249][ C0] sock_common_getsockopt+0xa8/0xc4 [ 78.723002][ C0] __sys_getsockopt+0x1b8/0x250 [ 78.723748][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 78.724575][ C0] invoke_syscall+0x98/0x2b0 [ 78.725221][ C0] el0_svc_common+0x138/0x258 [ 78.725954][ C0] do_el0_svc+0x58/0x13c [ 78.726616][ C0] el0_svc+0x78/0x1d0 [ 78.727191][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 78.727893][ C0] el0t_64_sync+0x1a0/0x1a4 [ 78.728538][ C0] irq event stamp: 403004 [ 78.729207][ C0] hardirqs last enabled at (403003): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 78.730731][ C0] hardirqs last disabled at (403004): [] enter_el1_irq_or_nmi+0x10/0x1c [ 78.732045][ C0] softirqs last enabled at (402642): [] release_sock+0x1d0/0x258 [ 78.733406][ C0] softirqs last disabled at (402640): [] release_sock+0x34/0x258 [ 78.734702][ C0] ---[ end trace b32b58f23b4c8e01 ]--- [ 78.853008][ T5105] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.854117][ T5105] Bad inode number on dev loop0: 2 is out of range [ 78.855058][ T5105] SysV FS: get root inode failed [ 78.855787][ T5105] oldfs: cannot read superblock [ 78.864500][ T4941] ------------[ cut here ]------------ [ 78.865379][ T4941] VFS: brelse: Trying to free free buffer [ 78.866260][ T4941] WARNING: CPU: 0 PID: 4941 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 78.867441][ T4941] Modules linked in: [ 78.868048][ T4941] CPU: 0 PID: 4941 Comm: udevd Tainted: G W syzkaller #0 [ 78.869384][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 78.870835][ T4941] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.872022][ T4941] pc : invalidate_bh_lru+0x128/0x22c [ 78.872834][ T4941] lr : invalidate_bh_lru+0x128/0x22c [ 78.873666][ T4941] sp : ffff80001fe377c0 [ 78.874286][ T4941] x29: ffff80001fe377c0 x28: ffff80001428d000 x27: 1fffe000341f245c [ 78.875529][ T4941] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000001 [ 78.876754][ T4941] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2c265d0 [ 78.877919][ T4941] x20: ffff0001a0f922e0 x19: ffff80001145af60 x18: 0000000000000003 [ 78.879078][ T4941] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 78.880283][ T4941] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 78.881451][ T4941] x11: 0000000000000002 x10: 0000000000000000 x9 : d37e72a1f8fa8700 [ 78.882582][ T4941] x8 : d37e72a1f8fa8700 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.883875][ T4941] x5 : ffff80001fe370d8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 78.885090][ T4941] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.886306][ T4941] Call trace: [ 78.886795][ T4941] invalidate_bh_lru+0x128/0x22c [ 78.887554][ T4941] smp_call_function_many_cond+0xa50/0xeac [ 78.888393][ T4941] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.889147][ T4941] invalidate_bh_lrus+0x34/0x40 [ 78.889860][ T4941] blkdev_flush_mapping+0x16c/0x334 [ 78.890639][ T4941] blkdev_put+0x490/0x6ac [ 78.891299][ T4941] blkdev_close+0x74/0xb0 [ 78.891907][ T4941] __fput+0x1c0/0x7e8 [ 78.892512][ T4941] ____fput+0x20/0x30 [ 78.893134][ T4941] task_work_run+0x12c/0x1d8 [ 78.893844][ T4941] do_notify_resume+0x2450/0x309c [ 78.894598][ T4941] el0_svc+0xf0/0x1d0 [ 78.895187][ T4941] el0t_64_sync_handler+0xcc/0xe4 [ 78.895951][ T4941] el0t_64_sync+0x1a0/0x1a4 [ 78.896619][ T4941] irq event stamp: 360292 [ 78.897267][ T4941] hardirqs last enabled at (360291): [] kasan_quarantine_put+0xc4/0x200 [ 78.898706][ T4941] hardirqs last disabled at (360292): [] smp_call_function_many_cond+0xa44/0xeac [ 78.900283][ T4941] softirqs last enabled at (360018): [] local_bh_enable+0x10/0x34 [ 78.901670][ T4941] softirqs last disabled at (360016): [] local_bh_disable+0x10/0x34 [ 78.903017][ T4941] ---[ end trace b32b58f23b4c8e02 ]--- [ 78.986255][ T5107] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.987392][ T5107] Bad inode number on dev loop0: 2 is out of range [ 78.988279][ T5107] SysV FS: get root inode failed [ 78.989070][ T5107] oldfs: cannot read superblock [ 78.999066][ C1] ------------[ cut here ]------------ [ 78.999882][ C1] VFS: brelse: Trying to free free buffer [ 79.000845][ C1] WARNING: CPU: 1 PID: 5109 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 79.002108][ C1] Modules linked in: [ 79.002704][ C1] CPU: 1 PID: 5109 Comm: syz.0.96 Tainted: G W syzkaller #0 [ 79.003845][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 79.005179][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.006388][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 79.007184][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 79.007938][ C1] sp : ffff800008017de0 [ 79.008644][ C1] x29: ffff800008017de0 x28: ffff0000d69cb680 x27: 1fffe000341f665c [ 79.009908][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 79.011144][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dca9a4e8 [ 79.012290][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010003 [ 79.013462][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 79.014582][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 79.015720][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 97cbe7694c939d00 [ 79.016830][ C1] x8 : 97cbe7694c939d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.017963][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 79.019106][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 79.020223][ C1] Call trace: [ 79.020672][ C1] invalidate_bh_lru+0x128/0x22c [ 79.021381][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 79.022248][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.023184][ C1] ipi_handler+0x10c/0x6fc [ 79.023780][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 79.024528][ C1] handle_domain_irq+0x144/0x1fc [ 79.025196][ C1] gic_handle_irq+0x78/0x1b8 [ 79.025827][ C1] call_on_irq_stack+0x30/0x48 [ 79.026480][ C1] do_interrupt_handler+0x6c/0x88 [ 79.027169][ C1] el1_interrupt+0x30/0x58 [ 79.027760][ C1] el1h_64_irq_handler+0x18/0x24 [ 79.028452][ C1] el1h_64_irq+0x78/0x7c [ 79.028981][ C1] lock_page_memcg+0x120/0x22c [ 79.029656][ C1] page_remove_rmap+0x3c/0xf90 [ 79.030287][ C1] unmap_page_range+0xb78/0x1908 [ 79.030988][ C1] unmap_single_vma+0x13c/0x1e4 [ 79.031634][ C1] unmap_vmas+0x10c/0x214 [ 79.032229][ C1] unmap_region+0x1d4/0x328 [ 79.032885][ C1] __do_munmap+0x87c/0xc10 [ 79.033539][ C1] __vm_munmap+0x130/0x234 [ 79.034202][ C1] __arm64_sys_munmap+0x74/0x8c [ 79.034906][ C1] invoke_syscall+0x98/0x2b0 [ 79.035516][ C1] el0_svc_common+0x138/0x258 [ 79.036234][ C1] do_el0_svc+0x58/0x13c [ 79.036828][ C1] el0_svc+0x78/0x1d0 [ 79.037358][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 79.038051][ C1] el0t_64_sync+0x1a0/0x1a4 [ 79.038689][ C1] irq event stamp: 550 [ 79.039254][ C1] hardirqs last enabled at (549): [] lock_page_memcg+0x110/0x22c [ 79.040548][ C1] hardirqs last disabled at (550): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.041891][ C1] softirqs last enabled at (48): [] local_bh_enable+0x10/0x34 [ 79.043200][ C1] softirqs last disabled at (46): [] local_bh_disable+0x10/0x34 [ 79.044532][ C1] ---[ end trace b32b58f23b4c8e03 ]--- [ 79.101078][ T5109] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.102264][ T5109] Bad inode number on dev loop0: 2 is out of range [ 79.103241][ T5109] SysV FS: get root inode failed [ 79.104000][ T5109] oldfs: cannot read superblock [ 79.112983][ C1] ------------[ cut here ]------------ [ 79.113724][ C1] VFS: brelse: Trying to free free buffer [ 79.114583][ C1] WARNING: CPU: 1 PID: 5110 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 79.115754][ C1] Modules linked in: [ 79.116278][ C1] CPU: 1 PID: 5110 Comm: syz-executor Tainted: G W syzkaller #0 [ 79.117447][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 79.118867][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.119941][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 79.120700][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 79.121437][ C1] sp : ffff800008017de0 [ 79.122011][ C1] x29: ffff800008017de0 x28: ffff0000d3dad1c0 x27: 1fffe000341f665c [ 79.123159][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 79.124300][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dca9a888 [ 79.125510][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010003 [ 79.126618][ C1] x17: 0000000000010003 x16: ffff800011254fd8 x15: 00000000ffffffff [ 79.127758][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 79.128949][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 0d31423c2b282c00 [ 79.130107][ C1] x8 : 0d31423c2b282c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.131309][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 79.132536][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 79.133638][ C1] Call trace: [ 79.134076][ C1] invalidate_bh_lru+0x128/0x22c [ 79.134767][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 79.135589][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.136567][ C1] ipi_handler+0x10c/0x6fc [ 79.137196][ C1] handle_percpu_devid_irq+0x29c/0x764 [ 79.137982][ C1] handle_domain_irq+0x144/0x1fc [ 79.138634][ C1] gic_handle_irq+0x78/0x1b8 [ 79.139277][ C1] call_on_irq_stack+0x30/0x48 [ 79.139942][ C1] do_interrupt_handler+0x6c/0x88 [ 79.140612][ C1] el1_interrupt+0x30/0x58 [ 79.141238][ C1] el1h_64_irq_handler+0x18/0x24 [ 79.141940][ C1] el1h_64_irq+0x78/0x7c [ 79.142522][ C1] lock_page_memcg+0x120/0x22c [ 79.143225][ C1] page_add_file_rmap+0x148/0x8c4 [ 79.143973][ C1] do_set_pte+0x390/0x4dc [ 79.144611][ C1] filemap_map_pages+0x9d0/0xc54 [ 79.145329][ C1] handle_mm_fault+0x188c/0x2a28 [ 79.146003][ C1] do_page_fault+0x67c/0xab0 [ 79.146641][ C1] do_translation_fault+0xe0/0x130 [ 79.147338][ C1] do_mem_abort+0x6c/0x1ac [ 79.147974][ C1] el0_ia+0xe0/0x2b8 [ 79.148553][ C1] el0t_64_sync_handler+0xc0/0xe4 [ 79.149262][ C1] el0t_64_sync+0x1a0/0x1a4 [ 79.149907][ C1] irq event stamp: 546 [ 79.150466][ C1] hardirqs last enabled at (545): [] lock_page_memcg+0x110/0x22c [ 79.151832][ C1] hardirqs last disabled at (546): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.153190][ C1] softirqs last enabled at (64): [] local_bh_enable+0x10/0x34 [ 79.154496][ C1] softirqs last disabled at (62): [] local_bh_disable+0x10/0x34 [ 79.155795][ C1] ---[ end trace b32b58f23b4c8e04 ]--- [ 79.260870][ T5111] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.262076][ T5111] Bad inode number on dev loop0: 2 is out of range [ 79.262979][ T5111] SysV FS: get root inode failed [ 79.263710][ T5111] oldfs: cannot read superblock [ 79.264428][ T5111] ------------[ cut here ]------------ [ 79.265200][ T5111] VFS: brelse: Trying to free free buffer [ 79.266064][ T5111] WARNING: CPU: 1 PID: 5111 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 79.267303][ T5111] Modules linked in: [ 79.267899][ T5111] CPU: 1 PID: 5111 Comm: syz.0.97 Tainted: G W syzkaller #0 [ 79.269222][ T5111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 79.270635][ T5111] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.271774][ T5111] pc : invalidate_bh_lru+0x128/0x22c [ 79.272560][ T5111] lr : invalidate_bh_lru+0x128/0x22c [ 79.273354][ T5111] sp : ffff8000202576e0 [ 79.273935][ T5111] x29: ffff8000202576e0 x28: ffff80001428d000 x27: 1fffe000341f665b [ 79.275085][ T5111] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000000 [ 79.276301][ T5111] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dca9ac28 [ 79.277460][ T5111] x20: ffff0001a0fb32d8 x19: ffff80001145af60 x18: 0000000000000003 [ 79.278645][ T5111] x17: 0000000000000000 x16: ffff800011254fd8 x15: 00000000ffffffff [ 79.279819][ T5111] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 79.280917][ T5111] x11: 0000000000000002 x10: 0000000000000000 x9 : 42741064eb649c00 [ 79.282047][ T5111] x8 : 42741064eb649c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.283185][ T5111] x5 : ffff800020256ff8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 79.284265][ T5111] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 79.285443][ T5111] Call trace: [ 79.285873][ T5111] invalidate_bh_lru+0x128/0x22c [ 79.286542][ T5111] smp_call_function_many_cond+0xa50/0xeac [ 79.287350][ T5111] on_each_cpu_cond_mask+0x5c/0xc4 [ 79.288107][ T5111] invalidate_bh_lrus+0x34/0x40 [ 79.288765][ T5111] blkdev_flush_mapping+0x16c/0x334 [ 79.289482][ T5111] blkdev_put+0x490/0x6ac [ 79.290086][ T5111] kill_block_super+0x98/0xdc [ 79.290715][ T5111] deactivate_locked_super+0xb8/0x134 [ 79.291505][ T5111] mount_bdev+0x284/0x358 [ 79.292100][ T5111] sysv_mount+0x44/0x58 [ 79.292660][ T5111] legacy_get_tree+0xd4/0x16c [ 79.293316][ T5111] vfs_get_tree+0x90/0x274 [ 79.293975][ T5111] do_new_mount+0x228/0x810 [ 79.294631][ T5111] path_mount+0x5bc/0x1008 [ 79.295241][ T5111] __arm64_sys_mount+0x514/0x5f0 [ 79.295916][ T5111] invoke_syscall+0x98/0x2b0 [ 79.296691][ T5111] el0_svc_common+0x138/0x258 [ 79.297446][ T5111] do_el0_svc+0x58/0x13c [ 79.298078][ T5111] el0_svc+0x78/0x1d0 [ 79.298622][ T5111] el0t_64_sync_handler+0xcc/0xe4 [ 79.299291][ T5111] el0t_64_sync+0x1a0/0x1a4 [ 79.299903][ T5111] irq event stamp: 1108 [ 79.300477][ T5111] hardirqs last enabled at (1107): [] kasan_quarantine_put+0xc4/0x200 [ 79.301904][ T5111] hardirqs last disabled at (1108): [] smp_call_function_many_cond+0xa44/0xeac [ 79.303651][ T5111] softirqs last enabled at (882): [] local_bh_enable+0x10/0x34 [ 79.304996][ T5111] softirqs last disabled at (880): [] local_bh_disable+0x10/0x34 [ 79.306365][ T5111] ---[ end trace b32b58f23b4c8e05 ]--- [ 79.522311][ T5115] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.523576][ T5115] Bad inode number on dev loop0: 2 is out of range [ 79.524592][ T5115] SysV FS: get root inode failed [ 79.525342][ T5115] oldfs: cannot read superblock [ 79.529298][ C0] ------------[ cut here ]------------ [ 79.530205][ C0] VFS: brelse: Trying to free free buffer [ 79.531199][ C0] WARNING: CPU: 0 PID: 5114 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 79.532626][ C0] Modules linked in: [ 79.533202][ C0] CPU: 0 PID: 5114 Comm: syz.0.99 Tainted: G W syzkaller #0 [ 79.534448][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 79.535893][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.537060][ C0] pc : invalidate_bh_lru+0x128/0x22c [ 79.537828][ C0] lr : invalidate_bh_lru+0x128/0x22c [ 79.538616][ C0] sp : ffff800008007de0 [ 79.539204][ C0] x29: ffff800008007de0 x28: ffff0000d0f98000 x27: 1fffe000341f245d [ 79.540410][ C0] x26: 0000000000000001 x25: ffff0001a0f922d8 x24: 0000000000000002 [ 79.541587][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2c26970 [ 79.542798][ C0] x20: ffff0001a0f922e8 x19: ffff80001145af60 x18: 0000000000010002 [ 79.543948][ C0] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 79.545141][ C0] x14: 0000000000000001 x13: 1fffe000341f07ab x12: 0000000000ff0100 [ 79.546319][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 444580260ef5c000 [ 79.547556][ C0] x8 : 444580260ef5c000 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.548813][ C0] x5 : ffff8000080076f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 79.550003][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 79.551195][ C0] Call trace: [ 79.551670][ C0] invalidate_bh_lru+0x128/0x22c [ 79.552357][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 79.553256][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.554241][ C0] ipi_handler+0x10c/0x6fc [ 79.554855][ C0] handle_percpu_devid_irq+0x29c/0x764 [ 79.555667][ C0] handle_domain_irq+0x144/0x1fc [ 79.556383][ C0] gic_handle_irq+0x78/0x1b8 [ 79.557036][ C0] call_on_irq_stack+0x30/0x48 [ 79.557746][ C0] do_interrupt_handler+0x6c/0x88 [ 79.558534][ C0] el1_interrupt+0x30/0x58 [ 79.559254][ C0] el1h_64_irq_handler+0x18/0x24 [ 79.560003][ C0] el1h_64_irq+0x78/0x7c [ 79.560641][ C0] __sanitizer_cov_trace_switch+0x8/0x108 [ 79.561559][ C0] do_page_fault+0x67c/0xab0 [ 79.562274][ C0] do_translation_fault+0xe0/0x130 [ 79.562997][ C0] do_mem_abort+0x6c/0x1ac [ 79.563682][ C0] el0_da+0x90/0x1ec [ 79.564286][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 79.565060][ C0] el0t_64_sync+0x1a0/0x1a4 [ 79.565707][ C0] irq event stamp: 2708 [ 79.566303][ C0] hardirqs last enabled at (2707): [] count_memcg_event_mm+0x1b0/0x300 [ 79.567852][ C0] hardirqs last disabled at (2708): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.569303][ C0] softirqs last enabled at (2674): [] local_bh_enable+0x10/0x34 [ 79.570640][ C0] softirqs last disabled at (2672): [] local_bh_disable+0x10/0x34 [ 79.572046][ C0] ---[ end trace b32b58f23b4c8e06 ]--- 1970/01/01 00:01:19 executed programs: 87 [ 79.640331][ T5117] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.641554][ T5117] Bad inode number on dev loop0: 2 is out of range [ 79.642544][ T5117] SysV FS: get root inode failed [ 79.643242][ T5117] oldfs: cannot read superblock [ 79.648882][ C1] ------------[ cut here ]------------ [ 79.649822][ C1] VFS: brelse: Trying to free free buffer [ 79.650710][ C1] WARNING: CPU: 1 PID: 4704 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x22c [ 79.652013][ C1] Modules linked in: [ 79.652658][ C1] CPU: 1 PID: 4704 Comm: syz-executor Tainted: G W syzkaller #0 [ 79.653949][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 79.655372][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.656557][ C1] pc : invalidate_bh_lru+0x128/0x22c [ 79.657269][ C1] lr : invalidate_bh_lru+0x128/0x22c [ 79.657995][ C1] sp : ffff800008017de0 [ 79.658567][ C1] x29: ffff800008017de0 x28: ffff0000c7ca0000 x27: 1fffe000341f665c [ 79.659737][ C1] x26: 0000000000000001 x25: ffff0001a0fb32d8 x24: 0000000000000001 [ 79.660996][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcac0d10 [ 79.662234][ C1] x20: ffff0001a0fb32e0 x19: ffff80001145af60 x18: 0000000000010002 [ 79.663416][ C1] x17: 0000000000010002 x16: ffff800011254fd8 x15: 00000000ffffffff [ 79.664629][ C1] x14: 0000000000000001 x13: 1fffe000341f49ab x12: 0000000000ff0100 [ 79.665816][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 98f689a7f0ca7300 [ 79.667001][ C1] x8 : 98f689a7f0ca7300 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.668172][ C1] x5 : ffff8000080176f8 x4 : ffff80001436f3e0 x3 : ffff800008508fa8 [ 79.669397][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 79.670585][ C1] Call trace: