Warning: Permanently added '10.128.1.181' (ED25519) to the list of known hosts. 1970/01/01 00:01:31 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:32 parsed 1 programs [ 95.304566][ T4426] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 105.086955][ T148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.089505][ T148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.096018][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 105.102667][ T148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.105022][ T148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.107894][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 106.160436][ T4487] chnl_net:caif_netlink_parms(): no params data found [ 106.196753][ T4487] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.200057][ T4487] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.202749][ T4487] device bridge_slave_0 entered promiscuous mode [ 106.206289][ T4487] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.208316][ T4487] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.211077][ T4487] device bridge_slave_1 entered promiscuous mode [ 106.228091][ T4487] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.233825][ T4487] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.250336][ T4487] team0: Port device team_slave_0 added [ 106.253695][ T4487] team0: Port device team_slave_1 added [ 106.267408][ T4487] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.269599][ T4487] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.276459][ T4487] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.283534][ T4487] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.285489][ T4487] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.292720][ T4487] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.359708][ T4487] device hsr_slave_0 entered promiscuous mode [ 106.408109][ T4487] device hsr_slave_1 entered promiscuous mode [ 107.062899][ T4487] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 107.116009][ T4487] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 107.155952][ T4487] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 107.210973][ T4487] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 107.299419][ T4487] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.308679][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 107.311242][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 107.316313][ T4487] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.321419][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.324024][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.326594][ T136] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.328518][ T136] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.335597][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 107.340906][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 107.343705][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 107.346229][ T136] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.348420][ T136] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.360358][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 107.363571][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 107.366476][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 107.370462][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 107.380391][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 107.383241][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 107.385982][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 107.391415][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 107.393986][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 107.396823][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 107.400526][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 107.403955][ T4487] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 107.473666][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 107.475889][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 107.486222][ T4487] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 107.501604][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 107.504333][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 107.519334][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 107.522066][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 107.525071][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 107.527509][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 107.534273][ T4487] device veth0_vlan entered promiscuous mode [ 107.582658][ T4487] device veth1_vlan entered promiscuous mode [ 107.603600][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 107.606238][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 107.611069][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 107.613789][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 107.620040][ T4487] device veth0_macvtap entered promiscuous mode [ 107.624163][ T4487] device veth1_macvtap entered promiscuous mode [ 107.637088][ T4487] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.650601][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 107.653142][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 107.655652][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 107.659143][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 107.663866][ T4487] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.666230][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 107.670696][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 107.675373][ T4487] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.678488][ T4487] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.680888][ T4487] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.683154][ T4487] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:01:48 executed programs: 0 [ 108.341793][ T4618] chnl_net:caif_netlink_parms(): no params data found [ 108.386818][ T4618] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.388959][ T4618] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.391597][ T4618] device bridge_slave_0 entered promiscuous mode [ 108.395403][ T4618] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.397299][ T4618] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.403151][ T4618] device bridge_slave_1 entered promiscuous mode [ 108.421104][ T4618] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.425633][ T4618] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.442840][ T4618] team0: Port device team_slave_0 added [ 108.446281][ T4618] team0: Port device team_slave_1 added [ 108.463842][ T4618] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.465690][ T4618] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.473552][ T4618] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 108.477910][ T4618] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 108.479816][ T4618] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.486588][ T4618] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.539581][ T4618] device hsr_slave_0 entered promiscuous mode [ 108.578181][ T4618] device hsr_slave_1 entered promiscuous mode [ 108.637821][ T4618] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 108.639942][ T4618] Cannot create hsr debugfs directory [ 108.756679][ T4618] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.268284][ T4115] Bluetooth: hci0: command 0x0409 tx timeout [ 111.533748][ T4618] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 112.347830][ T4115] Bluetooth: hci0: command 0x041b tx timeout [ 113.465264][ T4618] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.535522][ T4618] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.685418][ T4618] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 113.709558][ T4618] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 113.759559][ T4618] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 113.780062][ T4618] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 114.145942][ T4618] 8021q: adding VLAN 0 to HW filter on device bond0 [ 114.153149][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 114.155818][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 114.163740][ T4618] 8021q: adding VLAN 0 to HW filter on device team0 [ 114.169842][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 114.172714][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 114.175466][ T153] bridge0: port 1(bridge_slave_0) entered blocking state [ 114.177389][ T153] bridge0: port 1(bridge_slave_0) entered forwarding state [ 114.180536][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 114.184166][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 114.186819][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 114.190066][ T153] bridge0: port 2(bridge_slave_1) entered blocking state [ 114.191971][ T153] bridge0: port 2(bridge_slave_1) entered forwarding state [ 114.196855][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 114.202558][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 114.207538][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 114.213434][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 114.216236][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 114.225422][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 114.228512][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 114.234745][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 114.237365][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 114.242112][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 114.244787][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 114.249650][ T4618] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 114.315230][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 114.317387][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 114.323614][ T4618] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 114.336172][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 114.340345][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 114.353121][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 114.355662][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 114.358722][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 114.361558][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 114.366057][ T4618] device veth0_vlan entered promiscuous mode [ 114.373231][ T4618] device veth1_vlan entered promiscuous mode [ 114.386862][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 114.390102][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 114.392602][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 114.395351][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 114.410378][ T4618] device veth0_macvtap entered promiscuous mode [ 114.414507][ T4618] device veth1_macvtap entered promiscuous mode [ 114.424722][ T4618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.427528][ T4618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.431730][ T4618] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 114.433800][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 114.436425][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 114.438676][ T4113] Bluetooth: hci0: command 0x040f tx timeout [ 114.441489][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 114.444141][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 114.449683][ T4618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 114.452537][ T4618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.456016][ T4618] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 114.461284][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 114.464034][ T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 114.471114][ T4618] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.473489][ T4618] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.475861][ T4618] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.478466][ T4618] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.511734][ T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.513989][ T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.516638][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 114.540943][ T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.543164][ T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.545964][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:54 executed programs: 2 [ 114.579552][ T4861] loop0: detected capacity change from 0 to 128 [ 114.638459][ T4861] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.640487][ T4861] Bad inode number on dev loop0: 2 is out of range [ 114.642219][ T4861] SysV FS: get root inode failed [ 114.643592][ T4861] oldfs: cannot read superblock [ 114.654562][ T4855] ------------[ cut here ]------------ [ 114.656149][ T4855] VFS: brelse: Trying to free free buffer [ 114.657715][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.660164][ T4855] Modules linked in: [ 114.661265][ T4855] CPU: 1 PID: 4855 Comm: udevd Not tainted 5.15.181-syzkaller #0 [ 114.663365][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 114.666224][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.668362][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 114.669827][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 114.671278][ T4855] sp : ffff80001f0877c0 [ 114.672475][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 114.674759][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 114.677046][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf9446b8 [ 114.679264][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 114.681439][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 114.683612][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.685770][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 114.687964][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.690129][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 114.692325][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 114.694534][ T4855] Call trace: [ 114.695453][ T4855] invalidate_bh_lru+0x128/0x234 [ 114.696781][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 114.698357][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 114.699744][ T4855] invalidate_bh_lrus+0x34/0x40 [ 114.701097][ T4855] blkdev_flush_mapping+0x168/0x31c [ 114.702466][ T4855] blkdev_put+0x490/0x6ac [ 114.703681][ T4855] blkdev_close+0x74/0xb0 [ 114.704897][ T4855] __fput+0x1c0/0x7f8 [ 114.706035][ T4855] ____fput+0x20/0x30 [ 114.707156][ T4855] task_work_run+0x12c/0x1e0 [ 114.708400][ T4855] do_notify_resume+0x24b4/0x3128 [ 114.709768][ T4855] el0_svc+0xf0/0x1e0 [ 114.710796][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 114.712168][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 114.713392][ T4855] irq event stamp: 9318 [ 114.714514][ T4855] hardirqs last enabled at (9317): [] kasan_quarantine_put+0xc4/0x204 [ 114.717216][ T4855] hardirqs last disabled at (9318): [] smp_call_function_many_cond+0xa44/0xeb0 [ 114.720133][ T4855] softirqs last enabled at (9000): [] local_bh_enable+0x10/0x34 [ 114.722652][ T4855] softirqs last disabled at (8998): [] local_bh_disable+0x10/0x34 [ 114.725159][ T4855] ---[ end trace b25f55a3f632360e ]--- [ 114.771979][ T4863] loop0: detected capacity change from 0 to 128 [ 114.812550][ T4863] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.814597][ T4863] Bad inode number on dev loop0: 2 is out of range [ 114.816395][ T4863] SysV FS: get root inode failed [ 114.821491][ T4863] oldfs: cannot read superblock [ 114.837917][ T4855] ------------[ cut here ]------------ [ 114.839454][ T4855] VFS: brelse: Trying to free free buffer [ 114.841180][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.843690][ T4855] Modules linked in: [ 114.844781][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 114.847250][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 114.850089][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.852320][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 114.853790][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 114.855228][ T4855] sp : ffff80001f0877c0 [ 114.856394][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 114.858605][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 114.860786][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf944a58 [ 114.863023][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 114.865200][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 114.867373][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.869568][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 114.871709][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.873948][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 114.876105][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 114.878300][ T4855] Call trace: [ 114.879181][ T4855] invalidate_bh_lru+0x128/0x234 [ 114.880514][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 114.882126][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 114.883585][ T4855] invalidate_bh_lrus+0x34/0x40 [ 114.884877][ T4855] blkdev_flush_mapping+0x168/0x31c [ 114.886264][ T4855] blkdev_put+0x490/0x6ac [ 114.887430][ T4855] blkdev_close+0x74/0xb0 [ 114.888635][ T4855] __fput+0x1c0/0x7f8 [ 114.889754][ T4855] ____fput+0x20/0x30 [ 114.890799][ T4855] task_work_run+0x12c/0x1e0 [ 114.892044][ T4855] do_notify_resume+0x24b4/0x3128 [ 114.893400][ T4855] el0_svc+0xf0/0x1e0 [ 114.894473][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 114.895824][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 114.897067][ T4855] irq event stamp: 14104 [ 114.898201][ T4855] hardirqs last enabled at (14103): [] kasan_quarantine_put+0xc4/0x204 [ 114.900935][ T4855] hardirqs last disabled at (14104): [] smp_call_function_many_cond+0xa44/0xeb0 [ 114.903792][ T4855] softirqs last enabled at (14052): [] handle_softirqs+0xa4c/0xbf0 [ 114.906452][ T4855] softirqs last disabled at (14001): [] __irq_exit_rcu+0x240/0x440 [ 114.909128][ T4855] ---[ end trace b25f55a3f632360f ]--- [ 114.984899][ T4865] loop0: detected capacity change from 0 to 128 [ 114.991832][ T4865] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.994358][ T4865] Bad inode number on dev loop0: 2 is out of range [ 114.996208][ T4865] SysV FS: get root inode failed [ 114.997572][ T4865] oldfs: cannot read superblock [ 115.004872][ T4855] ------------[ cut here ]------------ [ 115.006356][ T4855] VFS: brelse: Trying to free free buffer [ 115.008012][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.010436][ T4855] Modules linked in: [ 115.011556][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 115.013971][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.016634][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.018767][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 115.020190][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 115.021622][ T4855] sp : ffff80001f0877c0 [ 115.022703][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 115.024863][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 115.027055][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf944df8 [ 115.029186][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 115.031348][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.033473][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.035581][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 115.037804][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.039966][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.042140][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 115.044353][ T4855] Call trace: [ 115.045192][ T4855] invalidate_bh_lru+0x128/0x234 [ 115.046535][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 115.048142][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 115.049512][ T4855] invalidate_bh_lrus+0x34/0x40 [ 115.050824][ T4855] blkdev_flush_mapping+0x168/0x31c [ 115.052241][ T4855] blkdev_put+0x490/0x6ac [ 115.053377][ T4855] blkdev_close+0x74/0xb0 [ 115.054536][ T4855] __fput+0x1c0/0x7f8 [ 115.055579][ T4855] ____fput+0x20/0x30 [ 115.056617][ T4855] task_work_run+0x12c/0x1e0 [ 115.057823][ T4855] do_notify_resume+0x24b4/0x3128 [ 115.059197][ T4855] el0_svc+0xf0/0x1e0 [ 115.060248][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 115.061586][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 115.062793][ T4855] irq event stamp: 21580 [ 115.063925][ T4855] hardirqs last enabled at (21579): [] kasan_quarantine_put+0xc4/0x204 [ 115.066554][ T4855] hardirqs last disabled at (21580): [] smp_call_function_many_cond+0xa44/0xeb0 [ 115.069472][ T4855] softirqs last enabled at (20722): [] local_bh_enable+0x10/0x34 [ 115.072016][ T4855] softirqs last disabled at (20720): [] local_bh_disable+0x10/0x34 [ 115.074565][ T4855] ---[ end trace b25f55a3f6323610 ]--- [ 115.120508][ T4867] loop0: detected capacity change from 0 to 128 [ 115.128344][ T4867] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.130387][ T4867] Bad inode number on dev loop0: 2 is out of range [ 115.132203][ T4867] SysV FS: get root inode failed [ 115.133547][ T4867] oldfs: cannot read superblock [ 115.144717][ C1] ------------[ cut here ]------------ [ 115.146248][ C1] VFS: brelse: Trying to free free buffer [ 115.147855][ C1] WARNING: CPU: 1 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.150321][ C1] Modules linked in: [ 115.151390][ C1] CPU: 1 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 115.154077][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.156912][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.158992][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 115.160424][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 115.161858][ C1] sp : ffff800008017de0 [ 115.162993][ C1] x29: ffff800008017de0 x28: ffff0000db088000 x27: 1fffe0003685d254 [ 115.165234][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 115.167446][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf945a58 [ 115.169596][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 115.171871][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.174105][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.176280][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : c58cfbd79cdf0600 [ 115.178531][ C1] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.180765][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.182985][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 115.185190][ C1] Call trace: [ 115.186062][ C1] invalidate_bh_lru+0x128/0x234 [ 115.187413][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 115.189001][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.190918][ C1] ipi_handler+0x108/0x70c [ 115.192097][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 115.193578][ C1] handle_domain_irq+0x144/0x1fc [ 115.194985][ C1] gic_handle_irq+0x78/0x1c8 [ 115.196266][ C1] call_on_irq_stack+0x24/0x4c [ 115.197627][ C1] do_interrupt_handler+0x6c/0x88 [ 115.199002][ C1] el1_interrupt+0x30/0x58 [ 115.200268][ C1] el1h_64_irq_handler+0x18/0x24 [ 115.201621][ C1] el1h_64_irq+0x78/0x7c [ 115.202734][ C1] kasan_quarantine_reduce+0x2c/0x130 [ 115.204178][ C1] __kasan_slab_alloc+0x34/0xcc [ 115.205568][ C1] slab_post_alloc_hook+0x74/0x408 [ 115.206996][ C1] __kmalloc_node+0x22c/0x520 [ 115.208348][ C1] __vmalloc_node_range+0x2c0/0x8d8 [ 115.209797][ C1] vzalloc+0x118/0x190 [ 115.210865][ C1] xt_counters_alloc+0x50/0x60 [ 115.212160][ C1] __do_replace+0xa0/0x988 [ 115.213363][ C1] do_ipt_set_ctl+0xa94/0xe00 [ 115.214668][ C1] nf_setsockopt+0x270/0x290 [ 115.215928][ C1] ip_setsockopt+0x1d0c/0x2978 [ 115.217203][ C1] tcp_setsockopt+0x1d4/0x1bf4 [ 115.218478][ C1] sock_common_setsockopt+0xb0/0xcc [ 115.219943][ C1] __sys_setsockopt+0x2f8/0x4b0 [ 115.221281][ C1] __arm64_sys_setsockopt+0xb8/0xd4 [ 115.222662][ C1] invoke_syscall+0x98/0x2b8 [ 115.223991][ C1] el0_svc_common+0x138/0x258 [ 115.225236][ C1] do_el0_svc+0x58/0x14c [ 115.226416][ C1] el0_svc+0x78/0x1e0 [ 115.227498][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 115.228911][ C1] el0t_64_sync+0x1a0/0x1a4 [ 115.230146][ C1] irq event stamp: 172848 [ 115.231344][ C1] hardirqs last enabled at (172847): [] kasan_quarantine_put+0xc4/0x204 [ 115.234145][ C1] hardirqs last disabled at (172848): [] enter_el1_irq_or_nmi+0x10/0x1c [ 115.236909][ C1] softirqs last enabled at (172828): [] release_sock+0x1d0/0x258 [ 115.239527][ C1] softirqs last disabled at (172826): [] release_sock+0x34/0x258 [ 115.242110][ C1] ---[ end trace b25f55a3f6323611 ]--- [ 115.281685][ T4869] loop0: detected capacity change from 0 to 128 [ 115.285569][ T4869] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.287540][ T4869] Bad inode number on dev loop0: 2 is out of range [ 115.291463][ T4869] SysV FS: get root inode failed [ 115.292789][ T4869] oldfs: cannot read superblock [ 115.298498][ C0] ------------[ cut here ]------------ [ 115.300065][ C0] VFS: brelse: Trying to free free buffer [ 115.301632][ C0] WARNING: CPU: 0 PID: 4404 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.304161][ C0] Modules linked in: [ 115.305225][ C0] CPU: 0 PID: 4404 Comm: syz-execprog Tainted: G W 5.15.181-syzkaller #0 [ 115.307941][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.310685][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.312823][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 115.314310][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 115.315759][ C0] sp : ffff800008007de0 [ 115.316893][ C0] x29: ffff800008007de0 x28: ffff0000c1291b40 x27: 1fffe00036859054 [ 115.319076][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 115.321268][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbf38df8 [ 115.323450][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 115.325647][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.327868][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.330046][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 37908dd95cfc4f00 [ 115.332269][ C0] x8 : 37908dd95cfc4f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.334416][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.336615][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 115.338793][ C0] Call trace: [ 115.339694][ C0] invalidate_bh_lru+0x128/0x234 [ 115.341057][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 115.342712][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.344653][ C0] ipi_handler+0x108/0x70c [ 115.345876][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 115.347379][ C0] handle_domain_irq+0x144/0x1fc [ 115.348751][ C0] gic_handle_irq+0x78/0x1c8 [ 115.350035][ C0] call_on_irq_stack+0x24/0x4c [ 115.351442][ C0] do_interrupt_handler+0x6c/0x88 [ 115.352789][ C0] el1_interrupt+0x30/0x58 [ 115.354038][ C0] el1h_64_irq_handler+0x18/0x24 [ 115.355415][ C0] el1h_64_irq+0x78/0x7c [ 115.356572][ C0] finish_lock_switch+0xb8/0x1c4 [ 115.357897][ C0] finish_task_switch+0x120/0x6b0 [ 115.359233][ C0] __schedule+0xe04/0x1c0c [ 115.360471][ C0] schedule+0x11c/0x1c8 [ 115.361569][ C0] do_nanosleep+0x1a8/0x654 [ 115.362856][ C0] __arm64_sys_nanosleep+0x368/0x484 [ 115.364307][ C0] invoke_syscall+0x98/0x2b8 [ 115.365636][ C0] el0_svc_common+0x138/0x258 [ 115.366865][ C0] do_el0_svc+0x58/0x14c [ 115.367987][ C0] el0_svc+0x78/0x1e0 [ 115.369044][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 115.370405][ C0] el0t_64_sync+0x1a0/0x1a4 [ 115.371657][ C0] irq event stamp: 55998 [ 115.372769][ C0] hardirqs last enabled at (55997): [] finish_lock_switch+0xb0/0x1c4 [ 115.375529][ C0] hardirqs last disabled at (55998): [] enter_el1_irq_or_nmi+0x10/0x1c [ 115.378268][ C0] softirqs last enabled at (55986): [] local_bh_enable+0x10/0x34 [ 115.380821][ C0] softirqs last disabled at (55984): [] local_bh_disable+0x10/0x34 [ 115.383438][ C0] ---[ end trace b25f55a3f6323612 ]--- [ 115.429307][ T4871] loop0: detected capacity change from 0 to 128 [ 115.433350][ T4871] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.435379][ T4871] Bad inode number on dev loop0: 2 is out of range [ 115.437044][ T4871] SysV FS: get root inode failed [ 115.438559][ T4871] oldfs: cannot read superblock [ 115.439870][ T4871] ------------[ cut here ]------------ [ 115.441305][ T4871] VFS: brelse: Trying to free free buffer [ 115.442996][ T4871] WARNING: CPU: 1 PID: 4871 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.445494][ T4871] Modules linked in: [ 115.446547][ T4871] CPU: 1 PID: 4871 Comm: syz.0.21 Tainted: G W 5.15.181-syzkaller #0 [ 115.449176][ T4871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.451985][ T4871] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.454252][ T4871] pc : invalidate_bh_lru+0x128/0x234 [ 115.455800][ T4871] lr : invalidate_bh_lru+0x128/0x234 [ 115.457276][ T4871] sp : ffff80001b8176e0 [ 115.458389][ T4871] x29: ffff80001b8176e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 115.460636][ T4871] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 115.462887][ T4871] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf945df8 [ 115.465120][ T4871] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 115.467322][ T4871] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.469524][ T4871] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.471740][ T4871] x11: 0000000000000002 x10: 0000000000000000 x9 : 64ad595c79322600 [ 115.473992][ T4871] x8 : 64ad595c79322600 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.476207][ T4871] x5 : ffff80001b816fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.478371][ T4871] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 115.480608][ T4871] Call trace: [ 115.481511][ T4871] invalidate_bh_lru+0x128/0x234 [ 115.482936][ T4871] smp_call_function_many_cond+0xa50/0xeb0 [ 115.484603][ T4871] on_each_cpu_cond_mask+0x5c/0xc4 [ 115.486012][ T4871] invalidate_bh_lrus+0x34/0x40 [ 115.487327][ T4871] blkdev_flush_mapping+0x168/0x31c [ 115.488743][ T4871] blkdev_put+0x490/0x6ac [ 115.489919][ T4871] kill_block_super+0x98/0xdc [ 115.491201][ T4871] deactivate_locked_super+0xb8/0x13c [ 115.492671][ T4871] mount_bdev+0x284/0x358 [ 115.493869][ T4871] sysv_mount+0x44/0x58 [ 115.495036][ T4871] legacy_get_tree+0xd4/0x16c [ 115.496310][ T4871] vfs_get_tree+0x90/0x274 [ 115.497543][ T4871] do_new_mount+0x228/0x810 [ 115.498797][ T4871] path_mount+0x5b4/0x1000 [ 115.500000][ T4871] __arm64_sys_mount+0x514/0x5e4 [ 115.501350][ T4871] invoke_syscall+0x98/0x2b8 [ 115.502622][ T4871] el0_svc_common+0x138/0x258 [ 115.503897][ T4871] do_el0_svc+0x58/0x14c [ 115.505076][ T4871] el0_svc+0x78/0x1e0 [ 115.506183][ T4871] el0t_64_sync_handler+0xcc/0xe4 [ 115.507539][ T4871] el0t_64_sync+0x1a0/0x1a4 [ 115.508733][ T4871] irq event stamp: 1114 [ 115.509829][ T4871] hardirqs last enabled at (1113): [] kasan_quarantine_put+0xc4/0x204 [ 115.512449][ T4871] hardirqs last disabled at (1114): [] smp_call_function_many_cond+0xa44/0xeb0 [ 115.515334][ T4871] softirqs last enabled at (1096): [] handle_softirqs+0xa4c/0xbf0 [ 115.518002][ T4871] softirqs last disabled at (1085): [] __irq_exit_rcu+0x240/0x440 [ 115.520531][ T4871] ---[ end trace b25f55a3f6323613 ]--- [ 115.634344][ T4873] loop0: detected capacity change from 0 to 128 [ 115.691482][ T4873] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.693523][ T4873] Bad inode number on dev loop0: 2 is out of range [ 115.695310][ T4873] SysV FS: get root inode failed [ 115.696611][ T4873] oldfs: cannot read superblock [ 115.704333][ T4855] ------------[ cut here ]------------ [ 115.705797][ T4855] VFS: brelse: Trying to free free buffer [ 115.707473][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.709821][ T4855] Modules linked in: [ 115.710879][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 115.713387][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.716233][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.718322][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 115.719751][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 115.721185][ T4855] sp : ffff80001f0877c0 [ 115.722352][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 115.724550][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 115.726790][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf945230 [ 115.729073][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 115.731218][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.733432][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.735614][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 115.737775][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.740002][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.742207][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 115.744432][ T4855] Call trace: [ 115.745325][ T4855] invalidate_bh_lru+0x128/0x234 [ 115.746673][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 115.748283][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 115.749737][ T4855] invalidate_bh_lrus+0x34/0x40 [ 115.751028][ T4855] blkdev_flush_mapping+0x168/0x31c [ 115.752416][ T4855] blkdev_put+0x490/0x6ac [ 115.753637][ T4855] blkdev_close+0x74/0xb0 [ 115.754794][ T4855] __fput+0x1c0/0x7f8 [ 115.755871][ T4855] ____fput+0x20/0x30 [ 115.756904][ T4855] task_work_run+0x12c/0x1e0 [ 115.758154][ T4855] do_notify_resume+0x24b4/0x3128 [ 115.759576][ T4855] el0_svc+0xf0/0x1e0 [ 115.760645][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 115.762049][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 115.763256][ T4855] irq event stamp: 36826 [ 115.764425][ T4855] hardirqs last enabled at (36825): [] kasan_quarantine_put+0xc4/0x204 [ 115.767112][ T4855] hardirqs last disabled at (36826): [] smp_call_function_many_cond+0xa44/0xeb0 [ 115.770001][ T4855] softirqs last enabled at (35470): [] local_bh_enable+0x10/0x34 [ 115.772516][ T4855] softirqs last disabled at (35468): [] local_bh_disable+0x10/0x34 [ 115.775091][ T4855] ---[ end trace b25f55a3f6323614 ]--- [ 115.824294][ T9] device hsr_slave_0 left promiscuous mode [ 115.844354][ T4875] loop0: detected capacity change from 0 to 128 [ 115.868424][ T9] device hsr_slave_1 left promiscuous mode [ 115.940967][ T4875] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.943005][ T4875] Bad inode number on dev loop0: 2 is out of range [ 115.944737][ T4875] SysV FS: get root inode failed [ 115.946077][ T4875] oldfs: cannot read superblock [ 115.953853][ C0] ------------[ cut here ]------------ [ 115.955354][ C0] VFS: brelse: Trying to free free buffer [ 115.956970][ C0] WARNING: CPU: 0 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.959318][ C0] Modules linked in: [ 115.960332][ C0] CPU: 0 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 115.962922][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.965735][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.967941][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 115.969357][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 115.970755][ C0] sp : ffff800008007de0 [ 115.971910][ C0] x29: ffff800008007de0 x28: ffff0000db088000 x27: 1fffe00036859054 [ 115.974105][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 115.976312][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbf3bb40 [ 115.978532][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 115.980727][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 115.982911][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.985128][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : c58cfbd79cdf0600 [ 115.987241][ C0] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.989413][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 115.991603][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 115.993763][ C0] Call trace: [ 115.994651][ C0] invalidate_bh_lru+0x128/0x234 [ 115.996012][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 115.997612][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.999440][ C0] ipi_handler+0x108/0x70c [ 116.000648][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 116.002130][ C0] handle_domain_irq+0x144/0x1fc [ 116.003482][ C0] gic_handle_irq+0x78/0x1c8 [ 116.004710][ C0] call_on_irq_stack+0x24/0x4c [ 116.005980][ C0] do_interrupt_handler+0x6c/0x88 [ 116.007327][ C0] el1_interrupt+0x30/0x58 [ 116.008512][ C0] el1h_64_irq_handler+0x18/0x24 [ 116.009875][ C0] el1h_64_irq+0x78/0x7c [ 116.011031][ C0] __sanitizer_cov_trace_pc+0x74/0xac [ 116.012453][ C0] arch_stack_walk+0x200/0x2b4 [ 116.013753][ C0] stack_trace_save+0x94/0xd8 [ 116.015000][ C0] kasan_set_track+0x4c/0x84 [ 116.016305][ C0] kasan_set_free_info+0x28/0x4c [ 116.017628][ C0] ____kasan_slab_free+0x118/0x164 [ 116.019071][ C0] __kasan_slab_free+0x18/0x28 [ 116.020327][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 116.021817][ C0] kfree+0x170/0x40c [ 116.022859][ C0] tomoyo_path_perm+0x334/0x440 [ 116.024165][ C0] tomoyo_path_rmdir+0xa4/0xe8 [ 116.025459][ C0] security_path_rmdir+0xe4/0x134 [ 116.026843][ C0] do_rmdir+0x1d0/0x634 [ 116.028000][ C0] __arm64_sys_unlinkat+0xcc/0xfc [ 116.029359][ C0] invoke_syscall+0x98/0x2b8 [ 116.030598][ C0] el0_svc_common+0x138/0x258 [ 116.031870][ C0] do_el0_svc+0x58/0x14c [ 116.033037][ C0] el0_svc+0x78/0x1e0 [ 116.034162][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 116.035467][ C0] el0t_64_sync+0x1a0/0x1a4 [ 116.036723][ C0] irq event stamp: 183646 [ 116.037863][ C0] hardirqs last enabled at (183645): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 116.040698][ C0] hardirqs last disabled at (183646): [] enter_el1_irq_or_nmi+0x10/0x1c [ 116.043373][ C0] softirqs last enabled at (183376): [] local_bh_enable+0x10/0x34 [ 116.045921][ C0] softirqs last disabled at (183374): [] local_bh_disable+0x10/0x34 [ 116.048518][ C0] ---[ end trace b25f55a3f6323615 ]--- [ 116.053791][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 116.055842][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 116.058781][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 116.060784][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 116.063279][ T9] device bridge_slave_1 left promiscuous mode [ 116.065397][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 116.082356][ T9] device bridge_slave_0 left promiscuous mode [ 116.084113][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 116.118215][ T4877] loop0: detected capacity change from 0 to 128 [ 116.122034][ T4877] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.124376][ T4877] Bad inode number on dev loop0: 2 is out of range [ 116.126316][ T4877] SysV FS: get root inode failed [ 116.127931][ T4877] oldfs: cannot read superblock [ 116.132175][ C1] ------------[ cut here ]------------ [ 116.133769][ C1] VFS: brelse: Trying to free free buffer [ 116.135407][ C1] WARNING: CPU: 1 PID: 0 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.137759][ C1] Modules linked in: [ 116.138801][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 5.15.181-syzkaller #0 [ 116.141252][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 116.144041][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.146177][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 116.147636][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 116.149060][ C1] sp : ffff800008017de0 [ 116.150135][ C1] x29: ffff800008017de0 x28: ffff0000c0a68000 x27: 1fffe0003685d253 [ 116.152290][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 116.154522][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf9455d0 [ 116.156684][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010003 [ 116.158898][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 116.161091][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.163267][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 86eb6d0d938b5900 [ 116.165394][ C1] x8 : 86eb6d0d938b5900 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.167574][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 116.169824][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 116.172067][ C1] Call trace: [ 116.172898][ C1] invalidate_bh_lru+0x128/0x234 [ 116.174262][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 116.175895][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 116.177809][ C1] ipi_handler+0x108/0x70c [ 116.179001][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 116.180483][ C1] handle_domain_irq+0x144/0x1fc [ 116.181835][ C1] gic_handle_irq+0x78/0x1c8 [ 116.183114][ C1] call_on_irq_stack+0x24/0x4c [ 116.184469][ C1] do_interrupt_handler+0x6c/0x88 [ 116.185802][ C1] el1_interrupt+0x30/0x58 [ 116.187006][ C1] el1h_64_irq_handler+0x18/0x24 [ 116.188381][ C1] el1h_64_irq+0x78/0x7c [ 116.189560][ C1] arch_local_irq_enable+0xc/0x18 [ 116.190928][ C1] default_idle_call+0xcc/0x418 [ 116.192220][ C1] do_idle+0x1c8/0x480 [ 116.193334][ C1] cpu_startup_entry+0x24/0x28 [ 116.194700][ C1] secondary_start_kernel+0x23c/0x294 [ 116.196168][ C1] __secondary_switched+0x94/0x98 [ 116.197575][ C1] irq event stamp: 267218 [ 116.198763][ C1] hardirqs last enabled at (267217): [] default_idle_call+0xb8/0x418 [ 116.201452][ C1] hardirqs last disabled at (267218): [] enter_el1_irq_or_nmi+0x10/0x1c [ 116.204157][ C1] softirqs last enabled at (267146): [] handle_softirqs+0xa4c/0xbf0 [ 116.206873][ C1] softirqs last disabled at (267141): [] __irq_exit_rcu+0x240/0x440 [ 116.209539][ C1] ---[ end trace b25f55a3f6323616 ]--- [ 116.318632][ T9] device veth1_macvtap left promiscuous mode [ 116.320370][ T9] device veth0_macvtap left promiscuous mode [ 116.322052][ T9] device veth1_vlan left promiscuous mode [ 116.323611][ T9] device veth0_vlan left promiscuous mode [ 116.366575][ T4879] loop0: detected capacity change from 0 to 128 [ 116.373177][ T4879] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.375686][ T4879] Bad inode number on dev loop0: 2 is out of range [ 116.380686][ T4879] SysV FS: get root inode failed [ 116.382241][ T4879] oldfs: cannot read superblock [ 116.392271][ C1] ------------[ cut here ]------------ [ 116.393791][ C1] VFS: brelse: Trying to free free buffer [ 116.395384][ C1] WARNING: CPU: 1 PID: 4404 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.397861][ C1] Modules linked in: [ 116.398887][ C1] CPU: 1 PID: 4404 Comm: syz-execprog Tainted: G W 5.15.181-syzkaller #0 [ 116.401458][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 116.404221][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.406324][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 116.407742][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 116.409167][ C1] sp : ffff800008017de0 [ 116.410257][ C1] x29: ffff800008017de0 x28: ffff0000c1291b40 x27: 1fffe0003685d254 [ 116.412431][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 116.414603][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd08e318 [ 116.416786][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 116.418993][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 116.421153][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.423302][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 37908dd95cfc4f00 [ 116.425541][ C1] x8 : 37908dd95cfc4f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.427778][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 116.430067][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 116.432350][ C1] Call trace: [ 116.433266][ C1] invalidate_bh_lru+0x128/0x234 [ 116.434635][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 116.436274][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 116.438163][ C1] ipi_handler+0x108/0x70c [ 116.439396][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 116.440891][ C1] handle_domain_irq+0x144/0x1fc [ 116.442219][ C1] gic_handle_irq+0x78/0x1c8 [ 116.443464][ C1] call_on_irq_stack+0x24/0x4c [ 116.444800][ C1] do_interrupt_handler+0x6c/0x88 [ 116.446200][ C1] el0_interrupt+0x94/0x25c [ 116.447462][ C1] __el0_irq_handler_common+0x18/0x24 [ 116.448904][ C1] el0t_64_irq_handler+0x10/0x1c [ 116.450235][ C1] el0t_64_irq+0x1a0/0x1a4 [ 116.451425][ C1] irq event stamp: 58498 [ 116.452607][ C1] hardirqs last enabled at (58497): [] el0t_64_sync_handler+0xcc/0xe4 [ 116.455276][ C1] hardirqs last disabled at (58498): [] __el0_irq_handler_common+0x18/0x24 [ 116.458037][ C1] softirqs last enabled at (58494): [] local_bh_enable+0x10/0x34 [ 116.460569][ C1] softirqs last disabled at (58492): [] local_bh_disable+0x10/0x34 [ 116.463139][ C1] ---[ end trace b25f55a3f6323617 ]--- [ 116.517969][ T4113] Bluetooth: hci0: command 0x0419 tx timeout [ 116.541355][ T4881] loop0: detected capacity change from 0 to 128 [ 116.583852][ T4881] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.585853][ T4881] Bad inode number on dev loop0: 2 is out of range [ 116.587544][ T4881] SysV FS: get root inode failed [ 116.591572][ T4881] oldfs: cannot read superblock [ 116.621059][ C0] ------------[ cut here ]------------ [ 116.622589][ C0] VFS: brelse: Trying to free free buffer [ 116.624233][ C0] WARNING: CPU: 0 PID: 9 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.626575][ C0] Modules linked in: [ 116.627656][ C0] CPU: 0 PID: 9 Comm: kworker/u4:0 Tainted: G W 5.15.181-syzkaller #0 [ 116.630239][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 116.633026][ C0] Workqueue: netns cleanup_net [ 116.634282][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.636404][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 116.637838][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 116.639287][ C0] sp : ffff800008007de0 [ 116.640401][ C0] x29: ffff800008007de0 x28: ffff0000c0950000 x27: 1fffe00036859054 [ 116.642608][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 116.644789][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbf3bee0 [ 116.646954][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 116.649149][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 116.651309][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.653484][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 404f084be7629200 [ 116.655664][ C0] x8 : 404f084be7629200 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.657780][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 116.659997][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 116.662282][ C0] Call trace: [ 116.663157][ C0] invalidate_bh_lru+0x128/0x234 [ 116.664486][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 116.666127][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 116.667952][ C0] ipi_handler+0x108/0x70c [ 116.669119][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 116.670605][ C0] handle_domain_irq+0x144/0x1fc [ 116.671920][ C0] gic_handle_irq+0x78/0x1c8 [ 116.673197][ C0] call_on_irq_stack+0x24/0x4c [ 116.674504][ C0] do_interrupt_handler+0x6c/0x88 [ 116.675858][ C0] el1_interrupt+0x30/0x58 [ 116.677051][ C0] el1h_64_irq_handler+0x18/0x24 [ 116.678381][ C0] el1h_64_irq+0x78/0x7c [ 116.679520][ C0] kasan_quarantine_put+0xd4/0x204 [ 116.680947][ C0] ____kasan_slab_free+0x124/0x164 [ 116.682355][ C0] __kasan_slab_free+0x18/0x28 [ 116.683713][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 116.685214][ C0] kmem_cache_free+0xdc/0x3b4 [ 116.686522][ C0] kernfs_put+0x2fc/0x4c8 [ 116.687682][ C0] kernfs_remove_by_name_ns+0xb0/0x158 [ 116.689130][ C0] sysfs_remove_group+0xf8/0x288 [ 116.690499][ C0] sysfs_remove_groups+0x5c/0xb4 [ 116.691860][ C0] device_remove_attrs+0x118/0x13c [ 116.693216][ C0] device_del+0x560/0x964 [ 116.694386][ C0] netdev_unregister_kobject+0x13c/0x204 [ 116.695950][ C0] unregister_netdevice_many+0x121c/0x17d0 [ 116.697558][ C0] default_device_exit_batch+0x444/0x4a4 [ 116.699131][ C0] cleanup_net+0x644/0xa98 [ 116.700324][ C0] process_one_work+0x79c/0x1140 [ 116.701721][ C0] worker_thread+0x8f4/0x101c [ 116.703011][ C0] kthread+0x374/0x454 [ 116.704116][ C0] ret_from_fork+0x10/0x20 [ 116.705286][ C0] irq event stamp: 1911854 [ 116.706523][ C0] hardirqs last enabled at (1911853): [] kasan_quarantine_put+0xc4/0x204 [ 116.709322][ C0] hardirqs last disabled at (1911854): [] enter_el1_irq_or_nmi+0x10/0x1c [ 116.712095][ C0] softirqs last enabled at (1911526): [] dev_mc_flush+0x1b0/0x1f4 [ 116.714682][ C0] softirqs last disabled at (1911524): [] local_bh_disable+0x10/0x34 [ 116.717303][ C0] ---[ end trace b25f55a3f6323618 ]--- [ 116.764738][ T4883] loop0: detected capacity change from 0 to 128 [ 116.775700][ T9] team0 (unregistering): Port device team_slave_1 removed [ 116.784599][ T9] team0 (unregistering): Port device team_slave_0 removed [ 116.794664][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 116.801196][ T4883] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.803422][ T4883] Bad inode number on dev loop0: 2 is out of range [ 116.805343][ T4883] SysV FS: get root inode failed [ 116.806618][ T4883] oldfs: cannot read superblock [ 116.825676][ C0] ------------[ cut here ]------------ [ 116.827248][ C0] VFS: brelse: Trying to free free buffer [ 116.828828][ C0] WARNING: CPU: 0 PID: 4884 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.831303][ C0] Modules linked in: [ 116.832373][ C0] CPU: 0 PID: 4884 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 116.835006][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 116.837775][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.839860][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 116.841339][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 116.842738][ C0] sp : ffff800008007de0 [ 116.843856][ C0] x29: ffff800008007de0 x28: ffff0000d40c9b40 x27: 1fffe00036859053 [ 116.846056][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 116.848217][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e68eedf8 [ 116.850390][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010003 [ 116.852696][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 116.854892][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.857098][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 0a11e05c764e5000 [ 116.859369][ C0] x8 : 0a11e05c764e5000 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.861667][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 116.863789][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 116.865975][ C0] Call trace: [ 116.866861][ C0] invalidate_bh_lru+0x128/0x234 [ 116.868240][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 116.869861][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 116.871813][ C0] ipi_handler+0x108/0x70c [ 116.873044][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 116.874556][ C0] handle_domain_irq+0x144/0x1fc [ 116.875892][ C0] gic_handle_irq+0x78/0x1c8 [ 116.877129][ C0] call_on_irq_stack+0x24/0x4c [ 116.878434][ C0] do_interrupt_handler+0x6c/0x88 [ 116.879804][ C0] el1_interrupt+0x30/0x58 [ 116.881014][ C0] el1h_64_irq_handler+0x18/0x24 [ 116.882358][ C0] el1h_64_irq+0x78/0x7c [ 116.883543][ C0] lock_page_memcg+0x120/0x234 [ 116.884829][ C0] page_add_file_rmap+0x148/0x8e4 [ 116.886184][ C0] do_set_pte+0x394/0x4e0 [ 116.887380][ C0] filemap_map_pages+0x9c4/0xc50 [ 116.888705][ C0] handle_mm_fault+0x19c0/0x2950 [ 116.890040][ C0] do_page_fault+0x694/0xad4 [ 116.891295][ C0] do_translation_fault+0xe0/0x130 [ 116.892629][ C0] do_mem_abort+0x6c/0x1ac [ 116.893805][ C0] el0_ia+0xe0/0x2cc [ 116.894842][ C0] el0t_64_sync_handler+0xc0/0xe4 [ 116.896174][ C0] el0t_64_sync+0x1a0/0x1a4 [ 116.897405][ C0] irq event stamp: 928 [ 116.898467][ C0] hardirqs last enabled at (927): [] lock_page_memcg+0x110/0x234 [ 116.901026][ C0] hardirqs last disabled at (928): [] enter_el1_irq_or_nmi+0x10/0x1c [ 116.903650][ C0] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 116.906193][ C0] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 116.908742][ C0] ---[ end trace b25f55a3f6323619 ]--- [ 116.933815][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 116.964412][ T4885] loop0: detected capacity change from 0 to 128 [ 116.971303][ T4885] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.973263][ T4885] Bad inode number on dev loop0: 2 is out of range [ 116.974961][ T4885] SysV FS: get root inode failed [ 116.976285][ T4885] oldfs: cannot read superblock [ 116.983824][ C0] ------------[ cut here ]------------ [ 116.985403][ C0] VFS: brelse: Trying to free free buffer [ 116.986990][ C0] WARNING: CPU: 0 PID: 9 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.989394][ C0] Modules linked in: [ 116.990461][ C0] CPU: 0 PID: 9 Comm: kworker/u4:0 Tainted: G W 5.15.181-syzkaller #0 [ 116.993010][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 116.995737][ C0] Workqueue: netns cleanup_net [ 116.997067][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.999168][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 117.000638][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 117.002061][ C0] sp : ffff800008007de0 [ 117.003165][ C0] x29: ffff800008007de0 x28: ffff0000c0950000 x27: 1fffe00036859054 [ 117.005358][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 117.007561][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e68ee230 [ 117.009712][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 117.011903][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 117.014066][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.016243][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 404f084be7629200 [ 117.018400][ C0] x8 : 404f084be7629200 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.020587][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 117.022870][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 117.024961][ C0] Call trace: [ 117.025867][ C0] invalidate_bh_lru+0x128/0x234 [ 117.027209][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 117.028854][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 117.030700][ C0] ipi_handler+0x108/0x70c [ 117.031864][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 117.033322][ C0] handle_domain_irq+0x144/0x1fc [ 117.034709][ C0] gic_handle_irq+0x78/0x1c8 [ 117.035958][ C0] call_on_irq_stack+0x24/0x4c [ 117.037311][ C0] do_interrupt_handler+0x6c/0x88 [ 117.038695][ C0] el1_interrupt+0x30/0x58 [ 117.039880][ C0] el1h_64_irq_handler+0x18/0x24 [ 117.041155][ C0] el1h_64_irq+0x78/0x7c [ 117.042368][ C0] __sanitizer_cov_trace_const_cmp8+0x0/0xc0 [ 117.044048][ C0] walk_stackframe+0x6c/0xa8 [ 117.045329][ C0] return_address+0xd0/0x144 [ 117.046547][ C0] preempt_count_add+0x13c/0x3bc [ 117.047904][ C0] _raw_spin_lock+0x24/0x10c [ 117.049210][ C0] kernfs_put+0x2a8/0x4c8 [ 117.050400][ C0] kernfs_remove_by_name_ns+0xb0/0x158 [ 117.051856][ C0] sysfs_remove_group+0xf8/0x288 [ 117.053206][ C0] sysfs_remove_groups+0x5c/0xb4 [ 117.054565][ C0] device_remove_attrs+0x118/0x13c [ 117.055967][ C0] device_del+0x560/0x964 [ 117.057117][ C0] netdev_unregister_kobject+0x13c/0x204 [ 117.058593][ C0] unregister_netdevice_many+0x121c/0x17d0 [ 117.060277][ C0] default_device_exit_batch+0x444/0x4a4 [ 117.061759][ C0] cleanup_net+0x644/0xa98 [ 117.062970][ C0] process_one_work+0x79c/0x1140 [ 117.064339][ C0] worker_thread+0x8f4/0x101c [ 117.065648][ C0] kthread+0x374/0x454 [ 117.066747][ C0] ret_from_fork+0x10/0x20 [ 117.067944][ C0] irq event stamp: 1967430 [ 117.069153][ C0] hardirqs last enabled at (1967429): [] kasan_quarantine_put+0xc4/0x204 [ 117.071982][ C0] hardirqs last disabled at (1967430): [] enter_el1_irq_or_nmi+0x10/0x1c [ 117.074675][ C0] softirqs last enabled at (1967080): [] dev_mc_flush+0x1b0/0x1f4 [ 117.077255][ C0] softirqs last disabled at (1967078): [] local_bh_disable+0x10/0x34 [ 117.079902][ C0] ---[ end trace b25f55a3f632361a ]--- [ 117.139108][ T4887] loop0: detected capacity change from 0 to 128 [ 117.142407][ T4887] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.144327][ T4887] Bad inode number on dev loop0: 2 is out of range [ 117.146134][ T4887] SysV FS: get root inode failed [ 117.151036][ T4887] oldfs: cannot read superblock [ 117.153792][ T9] bond0 (unregistering): Released all slaves [ 117.192120][ C1] ------------[ cut here ]------------ [ 117.193693][ C1] VFS: brelse: Trying to free free buffer [ 117.195270][ C1] WARNING: CPU: 1 PID: 3643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.197679][ C1] Modules linked in: [ 117.198760][ C1] CPU: 1 PID: 3643 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 117.201242][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.203981][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.206143][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 117.207646][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 117.209039][ C1] sp : ffff800008017de0 [ 117.210178][ C1] x29: ffff800008017de0 x28: ffff0000d5d93680 x27: 1fffe0003685d254 [ 117.212348][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 117.214546][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd08e6b8 [ 117.216691][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 117.218944][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 117.221064][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.223231][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 63fa6c6415060b00 [ 117.225408][ C1] x8 : 63fa6c6415060b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.227686][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 117.229935][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 117.232107][ C1] Call trace: [ 117.232999][ C1] invalidate_bh_lru+0x128/0x234 [ 117.234413][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 117.236008][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 117.237941][ C1] ipi_handler+0x108/0x70c [ 117.239195][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 117.240732][ C1] handle_domain_irq+0x144/0x1fc [ 117.242116][ C1] gic_handle_irq+0x78/0x1c8 [ 117.243414][ C1] call_on_irq_stack+0x24/0x4c [ 117.244784][ C1] do_interrupt_handler+0x6c/0x88 [ 117.246144][ C1] el1_interrupt+0x30/0x58 [ 117.247368][ C1] el1h_64_irq_handler+0x18/0x24 [ 117.248717][ C1] el1h_64_irq+0x78/0x7c [ 117.249888][ C1] kasan_quarantine_put+0xd4/0x204 [ 117.251253][ C1] ____kasan_slab_free+0x124/0x164 [ 117.252709][ C1] __kasan_slab_free+0x18/0x28 [ 117.253987][ C1] slab_free_freelist_hook+0x128/0x1e8 [ 117.255528][ C1] kfree+0x170/0x40c [ 117.256581][ C1] skb_release_data+0x3c0/0x5ac [ 117.257953][ C1] consume_skb+0x138/0x33c [ 117.259105][ C1] skb_free_datagram+0x30/0xe4 [ 117.260407][ C1] __unix_dgram_recvmsg+0x7e4/0xb28 [ 117.261828][ C1] unix_dgram_recvmsg+0xd4/0xec [ 117.263152][ C1] ____sys_recvmsg+0x254/0x794 [ 117.264481][ C1] ___sys_recvmsg+0x1ac/0x220 [ 117.265768][ C1] __arm64_sys_recvmsg+0x1a4/0x250 [ 117.267170][ C1] invoke_syscall+0x98/0x2b8 [ 117.268436][ C1] el0_svc_common+0x138/0x258 [ 117.269762][ C1] do_el0_svc+0x58/0x14c [ 117.270956][ C1] el0_svc+0x78/0x1e0 [ 117.272040][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 117.273404][ C1] el0t_64_sync+0x1a0/0x1a4 [ 117.274665][ C1] irq event stamp: 1131810 [ 117.275888][ C1] hardirqs last enabled at (1131809): [] kasan_quarantine_put+0xc4/0x204 [ 117.278629][ C1] hardirqs last disabled at (1131810): [] enter_el1_irq_or_nmi+0x10/0x1c [ 117.281301][ C1] softirqs last enabled at (1131234): [] local_bh_enable+0x10/0x34 [ 117.283945][ C1] softirqs last disabled at (1131232): [] local_bh_disable+0x10/0x34 [ 117.286556][ C1] ---[ end trace b25f55a3f632361b ]--- [ 117.372511][ T4893] loop0: detected capacity change from 0 to 128 [ 117.376794][ T4893] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.379613][ T4893] Bad inode number on dev loop0: 2 is out of range [ 117.381393][ T4893] SysV FS: get root inode failed [ 117.382690][ T4893] oldfs: cannot read superblock [ 117.387253][ C1] ------------[ cut here ]------------ [ 117.388765][ C1] VFS: brelse: Trying to free free buffer [ 117.390362][ C1] WARNING: CPU: 1 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.392859][ C1] Modules linked in: [ 117.393915][ C1] CPU: 1 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 117.396523][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.399289][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.401378][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 117.402843][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 117.404278][ C1] sp : ffff800008017de0 [ 117.405440][ C1] x29: ffff800008017de0 x28: ffff0000db088000 x27: 1fffe0003685d254 [ 117.407612][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 117.409799][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd08ea58 [ 117.411994][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 117.414161][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 117.416319][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.418514][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : c58cfbd79cdf0600 [ 117.420695][ C1] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.422885][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 117.425026][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 117.427196][ C1] Call trace: [ 117.428068][ C1] invalidate_bh_lru+0x128/0x234 [ 117.429393][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 117.431076][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 117.432971][ C1] ipi_handler+0x108/0x70c [ 117.434164][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 117.435618][ C1] handle_domain_irq+0x144/0x1fc [ 117.436934][ C1] gic_handle_irq+0x78/0x1c8 [ 117.438196][ C1] call_on_irq_stack+0x24/0x4c [ 117.439479][ C1] do_interrupt_handler+0x6c/0x88 [ 117.440828][ C1] el1_interrupt+0x30/0x58 [ 117.442063][ C1] el1h_64_irq_handler+0x18/0x24 [ 117.443408][ C1] el1h_64_irq+0x78/0x7c [ 117.444575][ C1] __kern_my_cpu_offset+0xc/0x20 [ 117.445919][ C1] check_preemption_disabled+0x28/0x164 [ 117.447447][ C1] debug_smp_processor_id+0x20/0x2c [ 117.448939][ C1] rcu_is_watching+0x50/0x134 [ 117.450205][ C1] lock_release+0xb4/0x8e8 [ 117.451438][ C1] __might_fault+0xf4/0x128 [ 117.452660][ C1] __arm64_sys_rt_sigreturn+0x298/0x1fec [ 117.454175][ C1] invoke_syscall+0x98/0x2b8 [ 117.455483][ C1] el0_svc_common+0x138/0x258 [ 117.456759][ C1] do_el0_svc+0x58/0x14c [ 117.457952][ C1] el0_svc+0x78/0x1e0 [ 117.459051][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 117.460518][ C1] el0t_64_sync+0x1a0/0x1a4 [ 117.461798][ C1] irq event stamp: 208802 [ 117.462951][ C1] hardirqs last enabled at (208801): [] _raw_spin_unlock_irq+0x98/0x128 [ 117.465698][ C1] hardirqs last disabled at (208802): [] enter_el1_irq_or_nmi+0x10/0x1c [ 117.468537][ C1] softirqs last enabled at (208786): [] local_bh_enable+0x10/0x34 [ 117.471167][ C1] softirqs last disabled at (208784): [] local_bh_disable+0x10/0x34 [ 117.473808][ C1] ---[ end trace b25f55a3f632361c ]--- [ 117.542456][ T4895] loop0: detected capacity change from 0 to 128 [ 117.546242][ T4895] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.548531][ T4895] Bad inode number on dev loop0: 2 is out of range [ 117.550319][ T4895] SysV FS: get root inode failed [ 117.551654][ T4895] oldfs: cannot read superblock [ 117.554127][ C1] ------------[ cut here ]------------ [ 117.555752][ C1] VFS: brelse: Trying to free free buffer [ 117.557398][ C1] WARNING: CPU: 1 PID: 3643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.559830][ C1] Modules linked in: [ 117.560907][ C1] CPU: 1 PID: 3643 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 117.563352][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.566116][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.568292][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 117.569679][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 117.571125][ C1] sp : ffff800008017de0 [ 117.572249][ C1] x29: ffff800008017de0 x28: ffff0000d5d93680 x27: 1fffe0003685d253 [ 117.574383][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 117.576569][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd08edf8 [ 117.578726][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010002 [ 117.580856][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 117.583041][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.585223][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 63fa6c6415060b00 [ 117.587450][ C1] x8 : 63fa6c6415060b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.589672][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 117.591793][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 117.593971][ C1] Call trace: [ 117.594834][ C1] invalidate_bh_lru+0x128/0x234 [ 117.596206][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 117.597769][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 117.599625][ C1] ipi_handler+0x108/0x70c [ 117.600837][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 117.602300][ C1] handle_domain_irq+0x144/0x1fc [ 117.603592][ C1] gic_handle_irq+0x78/0x1c8 [ 117.604834][ C1] call_on_irq_stack+0x24/0x4c [ 117.606162][ C1] do_interrupt_handler+0x6c/0x88 [ 117.607578][ C1] el1_interrupt+0x30/0x58 [ 117.608754][ C1] el1h_64_irq_handler+0x18/0x24 [ 117.610116][ C1] el1h_64_irq+0x78/0x7c [ 117.611236][ C1] el0_svc_common+0xa8/0x258 [ 117.612481][ C1] do_el0_svc+0x58/0x14c [ 117.613616][ C1] el0_svc+0x78/0x1e0 [ 117.614712][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 117.616097][ C1] el0t_64_sync+0x1a0/0x1a4 [ 117.617337][ C1] irq event stamp: 1143666 [ 117.618538][ C1] hardirqs last enabled at (1143665): [] el0_svc_common+0x9c/0x258 [ 117.621172][ C1] hardirqs last disabled at (1143666): [] enter_el1_irq_or_nmi+0x10/0x1c [ 117.623891][ C1] softirqs last enabled at (1143430): [] local_bh_enable+0x10/0x34 [ 117.626500][ C1] softirqs last disabled at (1143428): [] local_bh_disable+0x10/0x34 [ 117.629149][ C1] ---[ end trace b25f55a3f632361d ]--- [ 117.699612][ T4897] loop0: detected capacity change from 0 to 128 [ 117.781947][ T4897] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.783949][ T4897] Bad inode number on dev loop0: 2 is out of range [ 117.785669][ T4897] SysV FS: get root inode failed [ 117.787005][ T4897] oldfs: cannot read superblock [ 117.793101][ T4855] ------------[ cut here ]------------ [ 117.794623][ T4855] VFS: brelse: Trying to free free buffer [ 117.796266][ T4855] WARNING: CPU: 0 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.798638][ T4855] Modules linked in: [ 117.799695][ T4855] CPU: 0 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 117.802206][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.805083][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.807187][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 117.808618][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 117.810028][ T4855] sp : ffff80001f0877c0 [ 117.811170][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 117.813340][ T4855] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 117.815537][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e68ee5d0 [ 117.817728][ T4855] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 117.819989][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 117.822159][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.824386][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 117.826514][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.828741][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 117.830890][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 117.833105][ T4855] Call trace: [ 117.833985][ T4855] invalidate_bh_lru+0x128/0x234 [ 117.835353][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 117.837027][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 117.838475][ T4855] invalidate_bh_lrus+0x34/0x40 [ 117.839838][ T4855] blkdev_flush_mapping+0x168/0x31c [ 117.841305][ T4855] blkdev_put+0x490/0x6ac [ 117.842489][ T4855] blkdev_close+0x74/0xb0 [ 117.843694][ T4855] __fput+0x1c0/0x7f8 [ 117.844772][ T4855] ____fput+0x20/0x30 [ 117.845859][ T4855] task_work_run+0x12c/0x1e0 [ 117.847155][ T4855] do_notify_resume+0x24b4/0x3128 [ 117.848480][ T4855] el0_svc+0xf0/0x1e0 [ 117.849538][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 117.850918][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 117.852159][ T4855] irq event stamp: 116056 [ 117.853282][ T4855] hardirqs last enabled at (116055): [] kasan_quarantine_put+0xc4/0x204 [ 117.855996][ T4855] hardirqs last disabled at (116056): [] smp_call_function_many_cond+0xa44/0xeb0 [ 117.858944][ T4855] softirqs last enabled at (114530): [] local_bh_enable+0x10/0x34 [ 117.861608][ T4855] softirqs last disabled at (114528): [] local_bh_disable+0x10/0x34 [ 117.864167][ T4855] ---[ end trace b25f55a3f632361e ]--- [ 117.902757][ T4899] loop0: detected capacity change from 0 to 128 [ 117.906394][ T4899] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.912244][ T4899] Bad inode number on dev loop0: 2 is out of range [ 117.914583][ T4899] SysV FS: get root inode failed [ 117.916107][ T4899] oldfs: cannot read superblock [ 117.921507][ T4855] ------------[ cut here ]------------ [ 117.923076][ T4855] VFS: brelse: Trying to free free buffer [ 117.924696][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.927159][ T4855] Modules linked in: [ 117.928219][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 117.930676][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.933387][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.935522][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 117.936966][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 117.938386][ T4855] sp : ffff80001f0877c0 [ 117.939478][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 117.941663][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 117.943813][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd08a230 [ 117.946035][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 117.948285][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 117.950500][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.952719][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 117.954922][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.957116][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 117.959218][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 117.961381][ T4855] Call trace: [ 117.962267][ T4855] invalidate_bh_lru+0x128/0x234 [ 117.963627][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 117.965208][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 117.966607][ T4855] invalidate_bh_lrus+0x34/0x40 [ 117.967955][ T4855] blkdev_flush_mapping+0x168/0x31c [ 117.969374][ T4855] blkdev_put+0x490/0x6ac [ 117.970534][ T4855] blkdev_close+0x74/0xb0 [ 117.971668][ T4855] __fput+0x1c0/0x7f8 [ 117.972743][ T4855] ____fput+0x20/0x30 [ 117.973826][ T4855] task_work_run+0x12c/0x1e0 [ 117.975108][ T4855] do_notify_resume+0x24b4/0x3128 [ 117.976455][ T4855] el0_svc+0xf0/0x1e0 [ 117.977532][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 117.978924][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 117.980219][ T4855] irq event stamp: 121136 [ 117.981382][ T4855] hardirqs last enabled at (121135): [] kasan_quarantine_put+0xc4/0x204 [ 117.984080][ T4855] hardirqs last disabled at (121136): [] smp_call_function_many_cond+0xa44/0xeb0 [ 117.986989][ T4855] softirqs last enabled at (120138): [] local_bh_enable+0x10/0x34 [ 117.989627][ T4855] softirqs last disabled at (120136): [] local_bh_disable+0x10/0x34 [ 117.992271][ T4855] ---[ end trace b25f55a3f632361f ]--- [ 118.054746][ T4901] loop0: detected capacity change from 0 to 128 [ 118.064289][ T4901] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 118.066372][ T4901] Bad inode number on dev loop0: 2 is out of range [ 118.068489][ T4901] SysV FS: get root inode failed [ 118.071359][ T4901] oldfs: cannot read superblock [ 118.074969][ T4855] ------------[ cut here ]------------ [ 118.076447][ T4855] VFS: brelse: Trying to free free buffer [ 118.078081][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 118.080502][ T4855] Modules linked in: [ 118.081559][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 118.084073][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 118.086800][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 118.088997][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 118.090436][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 118.091900][ T4855] sp : ffff80001f0877c0 [ 118.092992][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 118.095243][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 118.097494][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd08a5d0 [ 118.099722][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 118.101889][ T4855] x17: 0000000000000000 x16: ffff8000083007d8 x15: 00000000ffffffff [ 118.104039][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 118.106219][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 118.108433][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 118.110672][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 118.112838][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 118.115120][ T4855] Call trace: [ 118.116029][ T4855] invalidate_bh_lru+0x128/0x234 [ 118.117380][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 118.119001][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 118.120404][ T4855] invalidate_bh_lrus+0x34/0x40 [ 118.121685][ T4855] blkdev_flush_mapping+0x168/0x31c [ 118.123129][ T4855] blkdev_put+0x490/0x6ac [ 118.124277][ T4855] blkdev_close+0x74/0xb0 [ 118.125416][ T4855] __fput+0x1c0/0x7f8 [ 118.126521][ T4855] ____fput+0x20/0x30 [ 118.127584][ T4855] task_work_run+0x12c/0x1e0 [ 118.128864][ T4855] do_notify_resume+0x24b4/0x3128 [ 118.130305][ T4855] el0_svc+0xf0/0x1e0 [ 118.131459][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 118.132860][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 118.134054][ T4855] irq event stamp: 130698 [ 118.135226][ T4855] hardirqs last enabled at (130697): [] kasan_quarantine_put+0xc4/0x204 [ 118.137961][ T4855] hardirqs last disabled at (130698): [] smp_call_function_many_cond+0xa44/0xeb0 [ 118.140865][ T4855] softirqs last enabled at (126922): [] handle_softirqs+0xa4c/0xbf0 [ 118.143487][ T4855] softirqs last disabled at (126907): [] __irq_exit_rcu+0x240/0x440 [ 118.146135][ T4855] ---[ end trace b25f55a3f6323620 ]--- [ 118.203718][ T4903] loop0: detected capacity change from 0 to 128 [ 118.210111][ T4903] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 118.212141][ T4903] Bad inode number on dev loop0: 2 is out of range [ 118.213840][ T4903] SysV FS: get root inode failed [ 118.215115][ T4903] oldfs: cannot read superblock [ 118.221857][ T4855] ------------[ cut here ]------------ [ 118.223384][ T4855] VFS: brelse: Trying to free free buffer [ 118.224949][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 118.227288][ T4855] Modules linked in: [ 118.228413][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 118.230916][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 118.233653][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 118.235770][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 118.237269][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 118.238680][ T4855] sp : ffff80001f0877c0 [ 118.239803][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d254 [ 118.242145][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 118.244357][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd08a970 [ 118.246499][ T4855] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 118.248675][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 118.250864][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 118.253110][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 118.255323][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 118.257541][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 118.259732][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 118.261985][ T4855] Call trace: [ 118.262901][ T4855] invalidate_bh_lru+0x128/0x234 [ 118.264232][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 118.265838][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 118.267244][ T4855] invalidate_bh_lrus+0x34/0x40 [ 118.268576][ T4855] blkdev_flush_mapping+0x168/0x31c [ 118.269983][ T4855] blkdev_put+0x490/0x6ac [ 118.271148][ T4855] blkdev_close+0x74/0xb0 [ 118.272357][ T4855] __fput+0x1c0/0x7f8 [ 118.273440][ T4855] ____fput+0x20/0x30 [ 118.274567][ T4855] task_work_run+0x12c/0x1e0 [ 118.275819][ T4855] do_notify_resume+0x24b4/0x3128 [ 118.277217][ T4855] el0_svc+0xf0/0x1e0 [ 118.278340][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 118.279666][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 118.280899][ T4855] irq event stamp: 135448 [ 118.282073][ T4855] hardirqs last enabled at (135447): [] kasan_quarantine_put+0xc4/0x204 [ 118.284757][ T4855] hardirqs last disabled at (135448): [] smp_call_function_many_cond+0xa44/0xeb0 [ 118.287680][ T4855] softirqs last enabled at (133704): [] local_bh_enable+0x10/0x34 [ 118.290211][ T4855] softirqs last disabled at (133702): [] local_bh_disable+0x10/0x34 [ 118.292872][ T4855] ---[ end trace b25f55a3f6323621 ]--- [ 118.334153][ T4905] loop0: detected capacity change from 0 to 128 [ 118.421945][ T4905] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 118.424028][ T4905] Bad inode number on dev loop0: 2 is out of range [ 118.427306][ T4905] SysV FS: get root inode failed [ 118.433798][ T4905] oldfs: cannot read superblock [ 118.435234][ T4905] ------------[ cut here ]------------ [ 118.436623][ T4905] VFS: brelse: Trying to free free buffer [ 118.438239][ T4905] WARNING: CPU: 0 PID: 4905 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 118.440595][ T4905] Modules linked in: [ 118.441716][ T4905] CPU: 0 PID: 4905 Comm: syz.0.38 Tainted: G W 5.15.181-syzkaller #0 [ 118.444313][ T4905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 118.446996][ T4905] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 118.449182][ T4905] pc : invalidate_bh_lru+0x128/0x234 [ 118.450591][ T4905] lr : invalidate_bh_lru+0x128/0x234 [ 118.452016][ T4905] sp : ffff80001b8176e0 [ 118.453129][ T4905] x29: ffff80001b8176e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 118.455380][ T4905] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 118.457562][ T4905] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbf777a0 [ 118.459707][ T4905] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 118.461968][ T4905] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 118.464230][ T4905] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 118.466393][ T4905] x11: 0000000000000002 x10: 0000000000000000 x9 : 840c07e136214d00 [ 118.468606][ T4905] x8 : 840c07e136214d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 118.470755][ T4905] x5 : ffff80001b816fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 118.472971][ T4905] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 118.475130][ T4905] Call trace: [ 118.476039][ T4905] invalidate_bh_lru+0x128/0x234 [ 118.477346][ T4905] smp_call_function_many_cond+0xa50/0xeb0 [ 118.478929][ T4905] on_each_cpu_cond_mask+0x5c/0xc4 [ 118.480328][ T4905] invalidate_bh_lrus+0x34/0x40 [ 118.481655][ T4905] blkdev_flush_mapping+0x168/0x31c [ 118.483136][ T4905] blkdev_put+0x490/0x6ac [ 118.484426][ T4905] kill_block_super+0x98/0xdc [ 118.485760][ T4905] deactivate_locked_super+0xb8/0x13c [ 118.487221][ T4905] mount_bdev+0x284/0x358 [ 118.488402][ T4905] sysv_mount+0x44/0x58 [ 118.489555][ T4905] legacy_get_tree+0xd4/0x16c [ 118.490805][ T4905] vfs_get_tree+0x90/0x274 [ 118.492043][ T4905] do_new_mount+0x228/0x810 [ 118.493303][ T4905] path_mount+0x5b4/0x1000 [ 118.494466][ T4905] __arm64_sys_mount+0x514/0x5e4 [ 118.495755][ T4905] invoke_syscall+0x98/0x2b8 [ 118.497099][ T4905] el0_svc_common+0x138/0x258 [ 118.498413][ T4905] do_el0_svc+0x58/0x14c [ 118.499588][ T4905] el0_svc+0x78/0x1e0 [ 118.500723][ T4905] el0t_64_sync_handler+0xcc/0xe4 [ 118.502165][ T4905] el0t_64_sync+0x1a0/0x1a4 [ 118.503389][ T4905] irq event stamp: 1724 [ 118.504499][ T4905] hardirqs last enabled at (1723): [] kasan_quarantine_put+0xc4/0x204 [ 118.507191][ T4905] hardirqs last disabled at (1724): [] smp_call_function_many_cond+0xa44/0xeb0 [ 118.510105][ T4905] softirqs last enabled at (1706): [] handle_softirqs+0xa4c/0xbf0 [ 118.512666][ T4905] softirqs last disabled at (1697): [] __irq_exit_rcu+0x240/0x440 [ 118.515305][ T4905] ---[ end trace b25f55a3f6323622 ]--- [ 118.640796][ T4907] loop0: detected capacity change from 0 to 128 [ 118.644774][ T4907] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 118.646773][ T4907] Bad inode number on dev loop0: 2 is out of range [ 118.649139][ T4907] SysV FS: get root inode failed [ 118.653036][ T4907] oldfs: cannot read superblock [ 118.654424][ T4907] ------------[ cut here ]------------ [ 118.655902][ T4907] VFS: brelse: Trying to free free buffer [ 118.657590][ T4907] WARNING: CPU: 0 PID: 4907 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 118.660094][ T4907] Modules linked in: [ 118.661165][ T4907] CPU: 0 PID: 4907 Comm: syz.0.39 Tainted: G W 5.15.181-syzkaller #0 [ 118.663730][ T4907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 118.666508][ T4907] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 118.668616][ T4907] pc : invalidate_bh_lru+0x128/0x234 [ 118.670099][ T4907] lr : invalidate_bh_lru+0x128/0x234 [ 118.671545][ T4907] sp : ffff80001f5676e0 [ 118.672648][ T4907] x29: ffff80001f5676e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 118.674834][ T4907] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 118.677053][ T4907] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbf77b40 [ 118.679180][ T4907] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 118.681323][ T4907] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 118.683574][ T4907] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 118.685746][ T4907] x11: 0000000000000002 x10: 0000000000000000 x9 : 10dfa2d643e02000 [ 118.687929][ T4907] x8 : 10dfa2d643e02000 x7 : 0000000000000001 x6 : 0000000000000001 [ 118.690083][ T4907] x5 : ffff80001f566fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 118.692228][ T4907] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 118.694437][ T4907] Call trace: [ 118.695329][ T4907] invalidate_bh_lru+0x128/0x234 [ 118.696692][ T4907] smp_call_function_many_cond+0xa50/0xeb0 [ 118.698270][ T4907] on_each_cpu_cond_mask+0x5c/0xc4 [ 118.699641][ T4907] invalidate_bh_lrus+0x34/0x40 [ 118.700924][ T4907] blkdev_flush_mapping+0x168/0x31c [ 118.702287][ T4907] blkdev_put+0x490/0x6ac [ 118.703450][ T4907] kill_block_super+0x98/0xdc [ 118.704729][ T4907] deactivate_locked_super+0xb8/0x13c [ 118.706217][ T4907] mount_bdev+0x284/0x358 [ 118.707387][ T4907] sysv_mount+0x44/0x58 [ 118.708520][ T4907] legacy_get_tree+0xd4/0x16c [ 118.709765][ T4907] vfs_get_tree+0x90/0x274 [ 118.710965][ T4907] do_new_mount+0x228/0x810 [ 118.712120][ T4907] path_mount+0x5b4/0x1000 [ 118.713271][ T4907] __arm64_sys_mount+0x514/0x5e4 [ 118.714603][ T4907] invoke_syscall+0x98/0x2b8 [ 118.715829][ T4907] el0_svc_common+0x138/0x258 [ 118.717110][ T4907] do_el0_svc+0x58/0x14c [ 118.718267][ T4907] el0_svc+0x78/0x1e0 [ 118.719352][ T4907] el0t_64_sync_handler+0xcc/0xe4 [ 118.720719][ T4907] el0t_64_sync+0x1a0/0x1a4 [ 118.721921][ T4907] irq event stamp: 1162 [ 118.723057][ T4907] hardirqs last enabled at (1161): [] kasan_quarantine_put+0xc4/0x204 [ 118.725813][ T4907] hardirqs last disabled at (1162): [] smp_call_function_many_cond+0xa44/0xeb0 [ 118.728674][ T4907] softirqs last enabled at (1130): [] handle_softirqs+0xa4c/0xbf0 [ 118.731232][ T4907] softirqs last disabled at (1027): [] __irq_exit_rcu+0x240/0x440 [ 118.733840][ T4907] ---[ end trace b25f55a3f6323623 ]--- [ 118.858669][ T4909] loop0: detected capacity change from 0 to 128 [ 118.865133][ T4909] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 118.867391][ T4909] Bad inode number on dev loop0: 2 is out of range [ 118.871015][ T4909] SysV FS: get root inode failed [ 118.872737][ T4909] oldfs: cannot read superblock [ 118.877265][ T4855] ------------[ cut here ]------------ [ 118.878759][ T4855] VFS: brelse: Trying to free free buffer [ 118.880412][ T4855] WARNING: CPU: 0 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 118.882860][ T4855] Modules linked in: [ 118.883948][ T4855] CPU: 0 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 118.886429][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 118.889512][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 118.891690][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 118.893132][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 118.894625][ T4855] sp : ffff80001f0877c0 [ 118.895762][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 118.897914][ T4855] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 118.900191][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbf77ee0 [ 118.902360][ T4855] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 118.904536][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 118.906729][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 118.908953][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 118.911136][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 118.913323][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 118.915524][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 118.917709][ T4855] Call trace: [ 118.918594][ T4855] invalidate_bh_lru+0x128/0x234 [ 118.920003][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 118.921543][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 118.923006][ T4855] invalidate_bh_lrus+0x34/0x40 [ 118.924308][ T4855] blkdev_flush_mapping+0x168/0x31c [ 118.925708][ T4855] blkdev_put+0x490/0x6ac [ 118.926905][ T4855] blkdev_close+0x74/0xb0 [ 118.928060][ T4855] __fput+0x1c0/0x7f8 [ 118.929171][ T4855] ____fput+0x20/0x30 [ 118.930242][ T4855] task_work_run+0x12c/0x1e0 [ 118.931450][ T4855] do_notify_resume+0x24b4/0x3128 [ 118.932838][ T4855] el0_svc+0xf0/0x1e0 [ 118.933925][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 118.935286][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 118.936503][ T4855] irq event stamp: 155852 [ 118.937637][ T4855] hardirqs last enabled at (155851): [] kasan_quarantine_put+0xc4/0x204 [ 118.940355][ T4855] hardirqs last disabled at (155852): [] smp_call_function_many_cond+0xa44/0xeb0 [ 118.943259][ T4855] softirqs last enabled at (154976): [] local_bh_enable+0x10/0x34 [ 118.945820][ T4855] softirqs last disabled at (154974): [] local_bh_disable+0x10/0x34 [ 118.948446][ T4855] ---[ end trace b25f55a3f6323624 ]--- [ 119.029906][ T4911] loop0: detected capacity change from 0 to 128 [ 119.040259][ T4911] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 119.042348][ T4911] Bad inode number on dev loop0: 2 is out of range [ 119.044103][ T4911] SysV FS: get root inode failed [ 119.045437][ T4911] oldfs: cannot read superblock [ 119.050880][ T4855] ------------[ cut here ]------------ [ 119.052338][ T4855] VFS: brelse: Trying to free free buffer [ 119.053942][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 119.056360][ T4855] Modules linked in: [ 119.057399][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 119.059953][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 119.062698][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 119.064816][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 119.066288][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 119.067755][ T4855] sp : ffff80001f0877c0 [ 119.068854][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d254 [ 119.070986][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 119.073136][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd08ad10 [ 119.075344][ T4855] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 119.077461][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 119.079583][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 119.081830][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 119.083994][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 119.086186][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 119.088281][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 119.090428][ T4855] Call trace: [ 119.091280][ T4855] invalidate_bh_lru+0x128/0x234 [ 119.092596][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 119.094171][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 119.095517][ T4855] invalidate_bh_lrus+0x34/0x40 [ 119.096828][ T4855] blkdev_flush_mapping+0x168/0x31c [ 119.098247][ T4855] blkdev_put+0x490/0x6ac [ 119.099411][ T4855] blkdev_close+0x74/0xb0 [ 119.100615][ T4855] __fput+0x1c0/0x7f8 [ 119.101659][ T4855] ____fput+0x20/0x30 [ 119.102745][ T4855] task_work_run+0x12c/0x1e0 [ 119.103970][ T4855] do_notify_resume+0x24b4/0x3128 [ 119.105297][ T4855] el0_svc+0xf0/0x1e0 [ 119.106382][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 119.107771][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 119.108984][ T4855] irq event stamp: 160318 [ 119.110130][ T4855] hardirqs last enabled at (160317): [] kasan_quarantine_put+0xc4/0x204 [ 119.112932][ T4855] hardirqs last disabled at (160318): [] smp_call_function_many_cond+0xa44/0xeb0 [ 119.115915][ T4855] softirqs last enabled at (159102): [] local_bh_enable+0x10/0x34 [ 119.118600][ T4855] softirqs last disabled at (159100): [] local_bh_disable+0x10/0x34 [ 119.121291][ T4855] ---[ end trace b25f55a3f6323625 ]--- [ 119.216906][ T4913] loop0: detected capacity change from 0 to 128 [ 119.225888][ T4913] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 119.229726][ T4913] Bad inode number on dev loop0: 2 is out of range [ 119.231624][ T4913] SysV FS: get root inode failed [ 119.233230][ T4913] oldfs: cannot read superblock [ 119.241646][ C0] ------------[ cut here ]------------ [ 119.243276][ C0] VFS: brelse: Trying to free free buffer [ 119.244919][ C0] WARNING: CPU: 0 PID: 4913 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 119.247402][ C0] Modules linked in: [ 119.248428][ C0] CPU: 0 PID: 4913 Comm: syz.0.42 Tainted: G W 5.15.181-syzkaller #0 [ 119.250993][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 119.253744][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 119.255868][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 119.257278][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 119.258734][ C0] sp : ffff800008007de0 [ 119.259892][ C0] x29: ffff800008007de0 x28: ffff0000d3d13680 x27: 1fffe00036859054 [ 119.262105][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 119.264292][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf9464e8 [ 119.266574][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 119.268725][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 119.270929][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 119.273097][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : aa82b50f23a09200 [ 119.275238][ C0] x8 : aa82b50f23a09200 x7 : 0000000000000001 x6 : 0000000000000001 [ 119.277425][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 119.279636][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 119.281822][ C0] Call trace: [ 119.282725][ C0] invalidate_bh_lru+0x128/0x234 [ 119.284049][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 119.285700][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 119.287524][ C0] ipi_handler+0x108/0x70c [ 119.288710][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 119.290292][ C0] handle_domain_irq+0x144/0x1fc [ 119.291599][ C0] gic_handle_irq+0x78/0x1c8 [ 119.292863][ C0] call_on_irq_stack+0x24/0x4c [ 119.294155][ C0] do_interrupt_handler+0x6c/0x88 [ 119.295801][ C0] el1_interrupt+0x30/0x58 [ 119.296995][ C0] el1h_64_irq_handler+0x18/0x24 [ 119.298297][ C0] el1h_64_irq+0x78/0x7c [ 119.299457][ C0] arch_local_irq_restore+0x8/0x10 [ 119.300882][ C0] ___might_sleep+0x48/0x4d4 [ 119.302112][ C0] exit_mmap+0x3f0/0x4e0 [ 119.303221][ C0] __mmput+0xec/0x3b8 [ 119.304291][ C0] mmput+0x80/0xc8 [ 119.305305][ C0] exit_mm+0x4a0/0x684 [ 119.306443][ C0] do_exit+0x4e4/0x1f58 [ 119.307634][ C0] do_group_exit+0x100/0x268 [ 119.308951][ C0] get_signal+0x73c/0x1340 [ 119.310141][ C0] do_notify_resume+0x35c/0x3128 [ 119.311522][ C0] el0_svc+0xf0/0x1e0 [ 119.312580][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 119.314001][ C0] el0t_64_sync+0x1a0/0x1a4 [ 119.315292][ C0] irq event stamp: 2840 [ 119.316471][ C0] hardirqs last enabled at (2839): [] kasan_quarantine_put+0xc4/0x204 [ 119.319182][ C0] hardirqs last disabled at (2840): [] enter_el1_irq_or_nmi+0x10/0x1c [ 119.321890][ C0] softirqs last enabled at (1256): [] local_bh_enable+0x10/0x34 [ 119.324418][ C0] softirqs last disabled at (1254): [] local_bh_disable+0x10/0x34 [ 119.327061][ C0] ---[ end trace b25f55a3f6323626 ]--- [ 119.406485][ T4915] loop0: detected capacity change from 0 to 128 [ 119.417895][ T4915] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 119.419837][ T4915] Bad inode number on dev loop0: 2 is out of range [ 119.421535][ T4915] SysV FS: get root inode failed [ 119.422788][ T4915] oldfs: cannot read superblock [ 119.426932][ T4855] ------------[ cut here ]------------ [ 119.428424][ T4855] VFS: brelse: Trying to free free buffer [ 119.430065][ T4855] WARNING: CPU: 0 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 119.432422][ T4855] Modules linked in: [ 119.433442][ T4855] CPU: 0 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 119.435930][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 119.438658][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 119.440792][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 119.442309][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 119.443752][ T4855] sp : ffff80001f0877c0 [ 119.444830][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 119.446991][ T4855] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 119.449293][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf946c28 [ 119.451540][ T4855] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 119.453723][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 119.455819][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 119.457912][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 119.460016][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 119.462165][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 119.464248][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 119.466402][ T4855] Call trace: [ 119.467273][ T4855] invalidate_bh_lru+0x128/0x234 [ 119.468573][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 119.470181][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 119.471539][ T4855] invalidate_bh_lrus+0x34/0x40 [ 119.472837][ T4855] blkdev_flush_mapping+0x168/0x31c [ 119.474320][ T4855] blkdev_put+0x490/0x6ac [ 119.475448][ T4855] blkdev_close+0x74/0xb0 [ 119.476614][ T4855] __fput+0x1c0/0x7f8 [ 119.477632][ T4855] ____fput+0x20/0x30 [ 119.478670][ T4855] task_work_run+0x12c/0x1e0 [ 119.479903][ T4855] do_notify_resume+0x24b4/0x3128 [ 119.481238][ T4855] el0_svc+0xf0/0x1e0 [ 119.482277][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 119.483681][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 119.484883][ T4855] irq event stamp: 171282 [ 119.486003][ T4855] hardirqs last enabled at (171281): [] kasan_quarantine_put+0xc4/0x204 [ 119.488711][ T4855] hardirqs last disabled at (171282): [] smp_call_function_many_cond+0xa44/0xeb0 [ 119.491628][ T4855] softirqs last enabled at (170618): [] local_bh_enable+0x10/0x34 [ 119.494137][ T4855] softirqs last disabled at (170616): [] local_bh_disable+0x10/0x34 [ 119.496692][ T4855] ---[ end trace b25f55a3f6323627 ]--- [ 119.557488][ T4917] loop0: detected capacity change from 0 to 128 [ 119.679160][ T4917] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 119.681172][ T4917] Bad inode number on dev loop0: 2 is out of range [ 119.682804][ T4917] SysV FS: get root inode failed [ 119.684103][ T4917] oldfs: cannot read superblock [ 119.706053][ T4917] ------------[ cut here ]------------ [ 119.707493][ T4917] VFS: brelse: Trying to free free buffer [ 119.709113][ T4917] WARNING: CPU: 0 PID: 4917 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 119.711381][ T4917] Modules linked in: [ 119.712418][ T4917] CPU: 0 PID: 4917 Comm: syz.0.44 Tainted: G W 5.15.181-syzkaller #0 [ 119.715006][ T4917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 119.717709][ T4917] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 119.719871][ T4917] pc : invalidate_bh_lru+0x128/0x234 [ 119.721333][ T4917] lr : invalidate_bh_lru+0x128/0x234 [ 119.722771][ T4917] sp : ffff80001f5677c0 [ 119.723947][ T4917] x29: ffff80001f5677c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 119.726193][ T4917] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 119.728333][ T4917] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cf946970 [ 119.730565][ T4917] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 119.732771][ T4917] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 119.734940][ T4917] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 119.737074][ T4917] x11: 0000000000000002 x10: 0000000000000000 x9 : c4238079642b3400 [ 119.739275][ T4917] x8 : c4238079642b3400 x7 : 0000000000000001 x6 : 0000000000000001 [ 119.741444][ T4917] x5 : ffff80001f5670b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 119.743634][ T4917] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 119.745758][ T4917] Call trace: [ 119.746669][ T4917] invalidate_bh_lru+0x128/0x234 [ 119.748046][ T4917] smp_call_function_many_cond+0xa50/0xeb0 [ 119.749585][ T4917] on_each_cpu_cond_mask+0x5c/0xc4 [ 119.750957][ T4917] invalidate_bh_lrus+0x34/0x40 [ 119.752305][ T4917] blkdev_flush_mapping+0x168/0x31c [ 119.753731][ T4917] blkdev_put+0x490/0x6ac [ 119.754956][ T4917] blkdev_close+0x74/0xb0 [ 119.756109][ T4917] __fput+0x1c0/0x7f8 [ 119.757184][ T4917] ____fput+0x20/0x30 [ 119.758246][ T4917] task_work_run+0x12c/0x1e0 [ 119.759481][ T4917] do_notify_resume+0x24b4/0x3128 [ 119.760830][ T4917] el0_svc+0xf0/0x1e0 [ 119.761906][ T4917] el0t_64_sync_handler+0xcc/0xe4 [ 119.763212][ T4917] el0t_64_sync+0x1a0/0x1a4 [ 119.764413][ T4917] irq event stamp: 1310 [ 119.765494][ T4917] hardirqs last enabled at (1309): [] finish_lock_switch+0xb0/0x1c4 [ 119.768066][ T4917] hardirqs last disabled at (1310): [] smp_call_function_many_cond+0xa44/0xeb0 [ 119.770911][ T4917] softirqs last enabled at (1238): [] local_bh_enable+0x10/0x34 [ 119.773482][ T4917] softirqs last disabled at (1236): [] local_bh_disable+0x10/0x34 [ 119.775987][ T4917] ---[ end trace b25f55a3f6323628 ]--- [ 119.851390][ T4919] loop0: detected capacity change from 0 to 128 [ 119.889554][ T4919] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 119.891623][ T4919] Bad inode number on dev loop0: 2 is out of range [ 119.893321][ T4919] SysV FS: get root inode failed [ 119.894624][ T4919] oldfs: cannot read superblock [ 119.895969][ C1] ------------[ cut here ]------------ [ 119.897487][ C1] VFS: brelse: Trying to free free buffer [ 119.899105][ C1] WARNING: CPU: 1 PID: 3643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 119.901468][ C1] Modules linked in: [ 119.902543][ C1] CPU: 1 PID: 3643 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 119.904999][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 119.907724][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 119.909856][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 119.911306][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 119.912704][ C1] sp : ffff800008017de0 [ 119.913778][ C1] x29: ffff800008017de0 x28: ffff0000d5d93680 x27: 1fffe0003685d253 [ 119.915993][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 119.918155][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd0877a0 [ 119.920285][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010003 [ 119.922433][ C1] x17: 0000000000010003 x16: ffff8000083007d8 x15: 00000000ffffffff [ 119.924652][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 119.926816][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 63fa6c6415060b00 [ 119.929043][ C1] x8 : 63fa6c6415060b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 119.931306][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff8000083008e8 [ 119.933479][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 119.935690][ C1] Call trace: [ 119.936559][ C1] invalidate_bh_lru+0x128/0x234 [ 119.937939][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 119.939539][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 119.941403][ C1] ipi_handler+0x108/0x70c [ 119.942600][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 119.944081][ C1] handle_domain_irq+0x144/0x1fc [ 119.945376][ C1] gic_handle_irq+0x78/0x1c8 [ 119.946613][ C1] call_on_irq_stack+0x24/0x4c [ 119.947890][ C1] do_interrupt_handler+0x6c/0x88 [ 119.949278][ C1] el1_interrupt+0x30/0x58 [ 119.950502][ C1] el1h_64_irq_handler+0x18/0x24 [ 119.951872][ C1] el1h_64_irq+0x78/0x7c [ 119.953018][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 119.954618][ C1] debug_check_no_obj_freed+0x450/0x46c [ 119.956180][ C1] slab_free_freelist_hook+0x9c/0x1e8 [ 119.957652][ C1] kfree+0x170/0x40c [ 119.958740][ C1] tomoyo_realpath_from_path+0x4c8/0x510 [ 119.960290][ C1] tomoyo_check_open_permission+0x168/0x2fc [ 119.961927][ C1] tomoyo_file_open+0x130/0x1b0 [ 119.963218][ C1] security_file_open+0x6c/0xac [ 119.964541][ C1] do_dentry_open+0x29c/0xebc [ 119.965812][ C1] vfs_open+0x7c/0x90 [ 119.966895][ C1] path_openat+0x1f80/0x26e4 [ 119.968173][ C1] do_filp_open+0x164/0x330 [ 119.969396][ C1] do_sys_openat2+0x128/0x3d8 [ 119.970638][ C1] __arm64_sys_openat+0x120/0x154 [ 119.972032][ C1] invoke_syscall+0x98/0x2b8 [ 119.973322][ C1] el0_svc_common+0x138/0x258 [ 119.974569][ C1] do_el0_svc+0x58/0x14c [ 119.975713][ C1] el0_svc+0x78/0x1e0 [ 119.976805][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 119.978266][ C1] el0t_64_sync+0x1a0/0x1a4 [ 119.979480][ C1] irq event stamp: 1203042 [ 119.980679][ C1] hardirqs last enabled at (1203041): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 119.983552][ C1] hardirqs last disabled at (1203042): [] enter_el1_irq_or_nmi+0x10/0x1c [ 119.986267][ C1] softirqs last enabled at (1202984): [] local_bh_enable+0x10/0x34 [ 119.988916][ C1] softirqs last disabled at (1202982): [] local_bh_disable+0x10/0x34 [ 119.991523][ C1] ---[ end trace b25f55a3f6323629 ]--- 1970/01/01 00:01:59 executed programs: 31 [ 120.159344][ T4921] loop0: detected capacity change from 0 to 128 [ 120.258761][ T4921] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 120.260731][ T4921] Bad inode number on dev loop0: 2 is out of range [ 120.262456][ T4921] SysV FS: get root inode failed [ 120.263745][ T4921] oldfs: cannot read superblock [ 120.265056][ T4921] ------------[ cut here ]------------ [ 120.266473][ T4921] VFS: brelse: Trying to free free buffer [ 120.268070][ T4921] WARNING: CPU: 0 PID: 4921 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 120.270494][ T4921] Modules linked in: [ 120.271560][ T4921] CPU: 0 PID: 4921 Comm: syz.0.46 Tainted: G W 5.15.181-syzkaller #0 [ 120.274174][ T4921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 120.276948][ T4921] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 120.279106][ T4921] pc : invalidate_bh_lru+0x128/0x234 [ 120.280555][ T4921] lr : invalidate_bh_lru+0x128/0x234 [ 120.282007][ T4921] sp : ffff80001f6d76e0 [ 120.283119][ T4921] x29: ffff80001f6d76e0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 120.285354][ T4921] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 120.287512][ T4921] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c51c9060 [ 120.289699][ T4921] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 120.291984][ T4921] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 120.294208][ T4921] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 120.296348][ T4921] x11: 0000000000000002 x10: 0000000000000000 x9 : 589454c049df7600 [ 120.298538][ T4921] x8 : 589454c049df7600 x7 : 0000000000000001 x6 : 0000000000000001 [ 120.300689][ T4921] x5 : ffff80001f6d6fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 120.302873][ T4921] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 120.305085][ T4921] Call trace: [ 120.305929][ T4921] invalidate_bh_lru+0x128/0x234 [ 120.307220][ T4921] smp_call_function_many_cond+0xa50/0xeb0 [ 120.308743][ T4921] on_each_cpu_cond_mask+0x5c/0xc4 [ 120.310164][ T4921] invalidate_bh_lrus+0x34/0x40 [ 120.311484][ T4921] blkdev_flush_mapping+0x168/0x31c [ 120.312854][ T4921] blkdev_put+0x490/0x6ac [ 120.314034][ T4921] kill_block_super+0x98/0xdc [ 120.315289][ T4921] deactivate_locked_super+0xb8/0x13c [ 120.316743][ T4921] mount_bdev+0x284/0x358 [ 120.317935][ T4921] sysv_mount+0x44/0x58 [ 120.319042][ T4921] legacy_get_tree+0xd4/0x16c [ 120.320278][ T4921] vfs_get_tree+0x90/0x274 [ 120.321445][ T4921] do_new_mount+0x228/0x810 [ 120.322642][ T4921] path_mount+0x5b4/0x1000 [ 120.323835][ T4921] __arm64_sys_mount+0x514/0x5e4 [ 120.325140][ T4921] invoke_syscall+0x98/0x2b8 [ 120.326435][ T4921] el0_svc_common+0x138/0x258 [ 120.327682][ T4921] do_el0_svc+0x58/0x14c [ 120.328820][ T4921] el0_svc+0x78/0x1e0 [ 120.329947][ T4921] el0t_64_sync_handler+0xcc/0xe4 [ 120.331345][ T4921] el0t_64_sync+0x1a0/0x1a4 [ 120.332607][ T4921] irq event stamp: 1112 [ 120.333711][ T4921] hardirqs last enabled at (1111): [] kasan_quarantine_put+0xc4/0x204 [ 120.336407][ T4921] hardirqs last disabled at (1112): [] smp_call_function_many_cond+0xa44/0xeb0 [ 120.339239][ T4921] softirqs last enabled at (876): [] local_bh_enable+0x10/0x34 [ 120.341766][ T4921] softirqs last disabled at (874): [] local_bh_disable+0x10/0x34 [ 120.344275][ T4921] ---[ end trace b25f55a3f632362a ]--- [ 120.438468][ T4923] loop0: detected capacity change from 0 to 128 [ 120.442106][ T4923] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 120.444062][ T4923] Bad inode number on dev loop0: 2 is out of range [ 120.445820][ T4923] SysV FS: get root inode failed [ 120.447182][ T4923] oldfs: cannot read superblock [ 120.455279][ T4855] ------------[ cut here ]------------ [ 120.456833][ T4855] VFS: brelse: Trying to free free buffer [ 120.458430][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 120.460963][ T4855] Modules linked in: [ 120.462022][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 120.464479][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 120.467152][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 120.469226][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 120.470655][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 120.472145][ T4855] sp : ffff80001f0877c0 [ 120.473271][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 120.475345][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 120.477433][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd087b40 [ 120.479601][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 120.481731][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 120.483931][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 120.486049][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 120.488216][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 120.490411][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 120.492584][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 120.494748][ T4855] Call trace: [ 120.495590][ T4855] invalidate_bh_lru+0x128/0x234 [ 120.496939][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 120.498480][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 120.499904][ T4855] invalidate_bh_lrus+0x34/0x40 [ 120.501254][ T4855] blkdev_flush_mapping+0x168/0x31c [ 120.502666][ T4855] blkdev_put+0x490/0x6ac [ 120.503834][ T4855] blkdev_close+0x74/0xb0 [ 120.505028][ T4855] __fput+0x1c0/0x7f8 [ 120.506098][ T4855] ____fput+0x20/0x30 [ 120.507114][ T4855] task_work_run+0x12c/0x1e0 [ 120.508327][ T4855] do_notify_resume+0x24b4/0x3128 [ 120.509658][ T4855] el0_svc+0xf0/0x1e0 [ 120.510703][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 120.512031][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 120.513168][ T4855] irq event stamp: 192328 [ 120.514350][ T4855] hardirqs last enabled at (192327): [] kasan_quarantine_put+0xc4/0x204 [ 120.517080][ T4855] hardirqs last disabled at (192328): [] smp_call_function_many_cond+0xa44/0xeb0 [ 120.519905][ T4855] softirqs last enabled at (192314): [] local_bh_enable+0x10/0x34 [ 120.522393][ T4855] softirqs last disabled at (192312): [] local_bh_disable+0x10/0x34 [ 120.524975][ T4855] ---[ end trace b25f55a3f632362b ]--- [ 120.579696][ T4925] loop0: detected capacity change from 0 to 128 [ 120.584203][ T4925] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 120.586175][ T4925] Bad inode number on dev loop0: 2 is out of range [ 120.588529][ T4925] SysV FS: get root inode failed [ 120.589891][ T4925] oldfs: cannot read superblock [ 120.595147][ T4855] ------------[ cut here ]------------ [ 120.596713][ T4855] VFS: brelse: Trying to free free buffer [ 120.598334][ T4855] WARNING: CPU: 0 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 120.600742][ T4855] Modules linked in: [ 120.601838][ T4855] CPU: 0 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 120.604284][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 120.606968][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 120.609067][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 120.610497][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 120.611959][ T4855] sp : ffff80001f0877c0 [ 120.613075][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe00036859053 [ 120.615196][ T4855] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 120.617414][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c51c9c28 [ 120.619657][ T4855] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000000003 [ 120.621830][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 120.623966][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 120.626130][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 120.628255][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 120.630409][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 120.632540][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 120.634727][ T4855] Call trace: [ 120.635620][ T4855] invalidate_bh_lru+0x128/0x234 [ 120.636957][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 120.638611][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 120.640013][ T4855] invalidate_bh_lrus+0x34/0x40 [ 120.641308][ T4855] blkdev_flush_mapping+0x168/0x31c [ 120.642683][ T4855] blkdev_put+0x490/0x6ac [ 120.643862][ T4855] blkdev_close+0x74/0xb0 [ 120.645076][ T4855] __fput+0x1c0/0x7f8 [ 120.646168][ T4855] ____fput+0x20/0x30 [ 120.647257][ T4855] task_work_run+0x12c/0x1e0 [ 120.648541][ T4855] do_notify_resume+0x24b4/0x3128 [ 120.649916][ T4855] el0_svc+0xf0/0x1e0 [ 120.650985][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 120.652288][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 120.653490][ T4855] irq event stamp: 198086 [ 120.654669][ T4855] hardirqs last enabled at (198085): [] kasan_quarantine_put+0xc4/0x204 [ 120.657391][ T4855] hardirqs last disabled at (198086): [] smp_call_function_many_cond+0xa44/0xeb0 [ 120.660293][ T4855] softirqs last enabled at (196778): [] local_bh_enable+0x10/0x34 [ 120.662869][ T4855] softirqs last disabled at (196776): [] local_bh_disable+0x10/0x34 [ 120.665489][ T4855] ---[ end trace b25f55a3f632362c ]--- [ 120.708737][ T4927] loop0: detected capacity change from 0 to 128 [ 120.760716][ T4927] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 120.762634][ T4927] Bad inode number on dev loop0: 2 is out of range [ 120.764287][ T4927] SysV FS: get root inode failed [ 120.765808][ T4927] oldfs: cannot read superblock [ 120.774868][ C0] ------------[ cut here ]------------ [ 120.776379][ C0] VFS: brelse: Trying to free free buffer [ 120.778034][ C0] WARNING: CPU: 0 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 120.780449][ C0] Modules linked in: [ 120.781477][ C0] CPU: 0 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 120.784200][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 120.787033][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 120.789180][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 120.790611][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 120.792046][ C0] sp : ffff800008007de0 [ 120.793138][ C0] x29: ffff800008007de0 x28: ffff0000db088000 x27: 1fffe00036859054 [ 120.795234][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 120.797427][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c51c9888 [ 120.799582][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 120.801741][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 120.803879][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 120.806032][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : c58cfbd79cdf0600 [ 120.808168][ C0] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 120.810357][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 120.812499][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 120.814674][ C0] Call trace: [ 120.815561][ C0] invalidate_bh_lru+0x128/0x234 [ 120.817011][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 120.818630][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 120.820453][ C0] ipi_handler+0x108/0x70c [ 120.821675][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 120.823195][ C0] handle_domain_irq+0x144/0x1fc [ 120.824523][ C0] gic_handle_irq+0x78/0x1c8 [ 120.825743][ C0] call_on_irq_stack+0x24/0x4c [ 120.827043][ C0] do_interrupt_handler+0x6c/0x88 [ 120.828414][ C0] el1_interrupt+0x30/0x58 [ 120.829606][ C0] el1h_64_irq_handler+0x18/0x24 [ 120.830966][ C0] el1h_64_irq+0x78/0x7c [ 120.832122][ C0] el0_svc_common+0xa8/0x258 [ 120.833371][ C0] do_el0_svc+0x58/0x14c [ 120.834521][ C0] el0_svc+0x78/0x1e0 [ 120.835609][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 120.836999][ C0] el0t_64_sync+0x1a0/0x1a4 [ 120.838208][ C0] irq event stamp: 269224 [ 120.839367][ C0] hardirqs last enabled at (269223): [] el0_svc_common+0x9c/0x258 [ 120.841864][ C0] hardirqs last disabled at (269224): [] enter_el1_irq_or_nmi+0x10/0x1c [ 120.844621][ C0] softirqs last enabled at (267866): [] local_bh_enable+0x10/0x34 [ 120.847192][ C0] softirqs last disabled at (267864): [] local_bh_disable+0x10/0x34 [ 120.849821][ C0] ---[ end trace b25f55a3f632362d ]--- [ 120.902826][ T4929] loop0: detected capacity change from 0 to 128 [ 120.907933][ T4929] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 120.909950][ T4929] Bad inode number on dev loop0: 2 is out of range [ 120.911622][ T4929] SysV FS: get root inode failed [ 120.912897][ T4929] oldfs: cannot read superblock [ 120.919463][ T4855] ------------[ cut here ]------------ [ 120.920965][ T4855] VFS: brelse: Trying to free free buffer [ 120.922612][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 120.925052][ T4855] Modules linked in: [ 120.926114][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 120.928502][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 120.931261][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 120.933344][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 120.934767][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 120.936235][ T4855] sp : ffff80001f0877c0 [ 120.937411][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 120.939591][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 120.941748][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd087ee0 [ 120.943853][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 120.946040][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 120.948198][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 120.950322][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 120.952539][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 120.954765][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 120.956929][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 120.959120][ T4855] Call trace: [ 120.959997][ T4855] invalidate_bh_lru+0x128/0x234 [ 120.961338][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 120.962892][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 120.964301][ T4855] invalidate_bh_lrus+0x34/0x40 [ 120.965674][ T4855] blkdev_flush_mapping+0x168/0x31c [ 120.967077][ T4855] blkdev_put+0x490/0x6ac [ 120.968201][ T4855] blkdev_close+0x74/0xb0 [ 120.969393][ T4855] __fput+0x1c0/0x7f8 [ 120.970434][ T4855] ____fput+0x20/0x30 [ 120.971474][ T4855] task_work_run+0x12c/0x1e0 [ 120.972719][ T4855] do_notify_resume+0x24b4/0x3128 [ 120.974094][ T4855] el0_svc+0xf0/0x1e0 [ 120.975167][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 120.976486][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 120.977681][ T4855] irq event stamp: 204906 [ 120.978800][ T4855] hardirqs last enabled at (204905): [] kasan_quarantine_put+0xc4/0x204 [ 120.981522][ T4855] hardirqs last disabled at (204906): [] smp_call_function_many_cond+0xa44/0xeb0 [ 120.984431][ T4855] softirqs last enabled at (204232): [] handle_softirqs+0xa4c/0xbf0 [ 120.987023][ T4855] softirqs last disabled at (204201): [] __irq_exit_rcu+0x240/0x440 [ 120.989552][ T4855] ---[ end trace b25f55a3f632362e ]--- [ 121.044046][ T4931] loop0: detected capacity change from 0 to 128 [ 121.049390][ T4931] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 121.051540][ T4931] Bad inode number on dev loop0: 2 is out of range [ 121.053418][ T4931] SysV FS: get root inode failed [ 121.054755][ T4931] oldfs: cannot read superblock [ 121.058782][ C1] ------------[ cut here ]------------ [ 121.060342][ C1] VFS: brelse: Trying to free free buffer [ 121.062014][ C1] WARNING: CPU: 1 PID: 4931 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 121.064422][ C1] Modules linked in: [ 121.065477][ C1] CPU: 1 PID: 4931 Comm: syz.0.51 Tainted: G W 5.15.181-syzkaller #0 [ 121.068003][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 121.070719][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 121.072806][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 121.074240][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 121.075636][ C1] sp : ffff800008017de0 [ 121.076705][ C1] x29: ffff800008017de0 x28: ffff0000d7e90000 x27: 1fffe0003685d255 [ 121.078834][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000002 [ 121.081044][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd083318 [ 121.083209][ C1] x20: ffff0001b42e92a8 x19: ffff8000113aada0 x18: 0000000000010003 [ 121.085376][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 121.087523][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 121.089713][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 564bb8d95a75d700 [ 121.091875][ C1] x8 : 564bb8d95a75d700 x7 : 0000000000000001 x6 : 0000000000000001 [ 121.094067][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 121.096215][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 121.098360][ C1] Call trace: [ 121.099226][ C1] invalidate_bh_lru+0x128/0x234 [ 121.100519][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 121.102288][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 121.104249][ C1] ipi_handler+0x108/0x70c [ 121.105472][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 121.107082][ C1] handle_domain_irq+0x144/0x1fc [ 121.108489][ C1] gic_handle_irq+0x78/0x1c8 [ 121.109745][ C1] call_on_irq_stack+0x24/0x4c [ 121.111039][ C1] do_interrupt_handler+0x6c/0x88 [ 121.112405][ C1] el1_interrupt+0x30/0x58 [ 121.113619][ C1] el1h_64_irq_handler+0x18/0x24 [ 121.114982][ C1] el1h_64_irq+0x78/0x7c [ 121.116125][ C1] lock_page_memcg+0x120/0x234 [ 121.117389][ C1] page_remove_rmap+0x3c/0xfd0 [ 121.118647][ C1] unmap_page_range+0xbb4/0x1958 [ 121.120012][ C1] unmap_single_vma+0x13c/0x1e4 [ 121.121293][ C1] unmap_vmas+0x104/0x200 [ 121.122499][ C1] exit_mmap+0x2a8/0x4e0 [ 121.123646][ C1] __mmput+0xec/0x3b8 [ 121.124726][ C1] mmput+0x80/0xc8 [ 121.125684][ C1] exit_mm+0x4a0/0x684 [ 121.126759][ C1] do_exit+0x4e4/0x1f58 [ 121.127854][ C1] do_group_exit+0x100/0x268 [ 121.129104][ C1] get_signal+0x73c/0x1340 [ 121.130274][ C1] do_notify_resume+0x35c/0x3128 [ 121.131566][ C1] el0_svc+0xf0/0x1e0 [ 121.132626][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 121.133977][ C1] el0t_64_sync+0x1a0/0x1a4 [ 121.135225][ C1] irq event stamp: 2118 [ 121.136328][ C1] hardirqs last enabled at (2117): [] lock_page_memcg+0x110/0x234 [ 121.138990][ C1] hardirqs last disabled at (2118): [] enter_el1_irq_or_nmi+0x10/0x1c [ 121.141663][ C1] softirqs last enabled at (1624): [] handle_softirqs+0xa4c/0xbf0 [ 121.144342][ C1] softirqs last disabled at (1613): [] __irq_exit_rcu+0x240/0x440 [ 121.146886][ C1] ---[ end trace b25f55a3f632362f ]--- [ 121.229859][ T4933] loop0: detected capacity change from 0 to 128 [ 121.233364][ T4933] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 121.235307][ T4933] Bad inode number on dev loop0: 2 is out of range [ 121.237081][ T4933] SysV FS: get root inode failed [ 121.239170][ T4933] oldfs: cannot read superblock [ 121.249995][ T4855] ------------[ cut here ]------------ [ 121.251449][ T4855] VFS: brelse: Trying to free free buffer [ 121.253028][ T4855] WARNING: CPU: 0 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 121.255383][ T4855] Modules linked in: [ 121.256393][ T4855] CPU: 0 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 121.258877][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 121.261556][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 121.263674][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 121.265172][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 121.266714][ T4855] sp : ffff80001f0877c0 [ 121.267816][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe00036859054 [ 121.270007][ T4855] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 121.272148][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c51c8c28 [ 121.274415][ T4855] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 121.276621][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 121.278764][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 121.280935][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 121.283181][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 121.285336][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 121.287502][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 121.289677][ T4855] Call trace: [ 121.290588][ T4855] invalidate_bh_lru+0x128/0x234 [ 121.291899][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 121.293490][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 121.294897][ T4855] invalidate_bh_lrus+0x34/0x40 [ 121.296240][ T4855] blkdev_flush_mapping+0x168/0x31c [ 121.297629][ T4855] blkdev_put+0x490/0x6ac [ 121.298747][ T4855] blkdev_close+0x74/0xb0 [ 121.299939][ T4855] __fput+0x1c0/0x7f8 [ 121.301026][ T4855] ____fput+0x20/0x30 [ 121.302109][ T4855] task_work_run+0x12c/0x1e0 [ 121.303306][ T4855] do_notify_resume+0x24b4/0x3128 [ 121.304666][ T4855] el0_svc+0xf0/0x1e0 [ 121.305719][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 121.307045][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 121.308285][ T4855] irq event stamp: 218718 [ 121.309442][ T4855] hardirqs last enabled at (218717): [] kasan_quarantine_put+0xc4/0x204 [ 121.312221][ T4855] hardirqs last disabled at (218718): [] smp_call_function_many_cond+0xa44/0xeb0 [ 121.315107][ T4855] softirqs last enabled at (218178): [] local_bh_enable+0x10/0x34 [ 121.317691][ T4855] softirqs last disabled at (218176): [] local_bh_disable+0x10/0x34 [ 121.320248][ T4855] ---[ end trace b25f55a3f6323630 ]--- [ 121.365834][ T4935] loop0: detected capacity change from 0 to 128 [ 121.391248][ T4935] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 121.393224][ T4935] Bad inode number on dev loop0: 2 is out of range [ 121.395002][ T4935] SysV FS: get root inode failed [ 121.396356][ T4935] oldfs: cannot read superblock [ 121.398703][ C0] ------------[ cut here ]------------ [ 121.400176][ C0] VFS: brelse: Trying to free free buffer [ 121.401843][ C0] WARNING: CPU: 0 PID: 3643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 121.404267][ C0] Modules linked in: [ 121.405277][ C0] CPU: 0 PID: 3643 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 121.407748][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 121.410484][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 121.412600][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 121.414007][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 121.415442][ C0] sp : ffff800008007de0 [ 121.416601][ C0] x29: ffff800008007de0 x28: ffff0000d5d93680 x27: 1fffe00036859053 [ 121.418777][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 121.420949][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c51c8888 [ 121.423165][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010002 [ 121.425298][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 121.427471][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 121.429617][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 63fa6c6415060b00 [ 121.431878][ C0] x8 : 63fa6c6415060b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 121.434154][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 121.436330][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 121.438473][ C0] Call trace: [ 121.439329][ C0] invalidate_bh_lru+0x128/0x234 [ 121.440644][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 121.442443][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 121.444310][ C0] ipi_handler+0x108/0x70c [ 121.445504][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 121.447043][ C0] handle_domain_irq+0x144/0x1fc [ 121.448383][ C0] gic_handle_irq+0x78/0x1c8 [ 121.449661][ C0] call_on_irq_stack+0x24/0x4c [ 121.450949][ C0] do_interrupt_handler+0x6c/0x88 [ 121.452358][ C0] el0_interrupt+0x94/0x25c [ 121.453570][ C0] __el0_irq_handler_common+0x18/0x24 [ 121.455083][ C0] el0t_64_irq_handler+0x10/0x1c [ 121.456539][ C0] el0t_64_irq+0x1a0/0x1a4 [ 121.457739][ C0] irq event stamp: 1238908 [ 121.458932][ C0] hardirqs last enabled at (1238907): [] el0t_64_sync_handler+0xcc/0xe4 [ 121.461611][ C0] hardirqs last disabled at (1238908): [] __el0_irq_handler_common+0x18/0x24 [ 121.464437][ C0] softirqs last enabled at (1238780): [] local_bh_enable+0x10/0x34 [ 121.467055][ C0] softirqs last disabled at (1238778): [] local_bh_disable+0x10/0x34 [ 121.469714][ C0] ---[ end trace b25f55a3f6323631 ]--- [ 121.585005][ T4937] loop0: detected capacity change from 0 to 128 [ 121.639000][ T4937] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 121.641027][ T4937] Bad inode number on dev loop0: 2 is out of range [ 121.642753][ T4937] SysV FS: get root inode failed [ 121.644079][ T4937] oldfs: cannot read superblock [ 121.650626][ C0] ------------[ cut here ]------------ [ 121.652163][ C0] VFS: brelse: Trying to free free buffer [ 121.653774][ C0] WARNING: CPU: 0 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 121.656120][ C0] Modules linked in: [ 121.657126][ C0] CPU: 0 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 121.659749][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 121.662526][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 121.664672][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 121.666152][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 121.667569][ C0] sp : ffff800008007de0 [ 121.668719][ C0] x29: ffff800008007de0 x28: ffff0000db088000 x27: 1fffe00036859054 [ 121.670942][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 121.673128][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c51c84e8 [ 121.675293][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 121.677485][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 121.679684][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 121.681877][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : c58cfbd79cdf0600 [ 121.684112][ C0] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 121.686339][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 121.688657][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 121.690806][ C0] Call trace: [ 121.691692][ C0] invalidate_bh_lru+0x128/0x234 [ 121.693083][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 121.694669][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 121.696574][ C0] ipi_handler+0x108/0x70c [ 121.697738][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 121.699214][ C0] handle_domain_irq+0x144/0x1fc [ 121.700570][ C0] gic_handle_irq+0x78/0x1c8 [ 121.701823][ C0] call_on_irq_stack+0x24/0x4c [ 121.703126][ C0] do_interrupt_handler+0x6c/0x88 [ 121.704462][ C0] el1_interrupt+0x30/0x58 [ 121.705643][ C0] el1h_64_irq_handler+0x18/0x24 [ 121.706988][ C0] el1h_64_irq+0x78/0x7c [ 121.708095][ C0] __memset+0x0/0x1c0 [ 121.709155][ C0] start_backtrace+0x6c/0x80 [ 121.710451][ C0] return_address+0xb8/0x144 [ 121.711705][ C0] preempt_count_add+0x13c/0x3bc [ 121.713048][ C0] _raw_spin_lock+0x24/0x10c [ 121.714306][ C0] __dentry_kill+0x42c/0x598 [ 121.715566][ C0] dentry_kill+0xc8/0x248 [ 121.716728][ C0] dput+0x23c/0x458 [ 121.717969][ C0] dcache_dir_close+0x40/0x54 [ 121.719376][ C0] __fput+0x1c0/0x7f8 [ 121.720473][ C0] ____fput+0x20/0x30 [ 121.721564][ C0] task_work_run+0x12c/0x1e0 [ 121.722786][ C0] do_notify_resume+0x24b4/0x3128 [ 121.724226][ C0] el0_svc+0xf0/0x1e0 [ 121.725352][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 121.726706][ C0] el0t_64_sync+0x1a0/0x1a4 [ 121.727915][ C0] irq event stamp: 284766 [ 121.729097][ C0] hardirqs last enabled at (284765): [] _raw_spin_unlock_irq+0x98/0x128 [ 121.731854][ C0] hardirqs last disabled at (284766): [] enter_el1_irq_or_nmi+0x10/0x1c [ 121.734644][ C0] softirqs last enabled at (284528): [] local_bh_enable+0x10/0x34 [ 121.737283][ C0] softirqs last disabled at (284526): [] local_bh_disable+0x10/0x34 [ 121.739968][ C0] ---[ end trace b25f55a3f6323632 ]--- [ 121.800870][ T4939] loop0: detected capacity change from 0 to 128 [ 121.807599][ T4939] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 121.809742][ T4939] Bad inode number on dev loop0: 2 is out of range [ 121.811370][ T4939] SysV FS: get root inode failed [ 121.812660][ T4939] oldfs: cannot read superblock [ 121.822067][ T4855] ------------[ cut here ]------------ [ 121.823530][ T4855] VFS: brelse: Trying to free free buffer [ 121.825099][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 121.827421][ T4855] Modules linked in: [ 121.828442][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 121.830940][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 121.833633][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 121.835710][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 121.837128][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 121.838574][ T4855] sp : ffff80001f0877c0 [ 121.839693][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d254 [ 121.841835][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 121.844061][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd0836b8 [ 121.846227][ T4855] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 121.848405][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 121.850607][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 121.852779][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 121.854904][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 121.857037][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 121.859237][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 121.861398][ T4855] Call trace: [ 121.862279][ T4855] invalidate_bh_lru+0x128/0x234 [ 121.863604][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 121.865257][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 121.866606][ T4855] invalidate_bh_lrus+0x34/0x40 [ 121.867944][ T4855] blkdev_flush_mapping+0x168/0x31c [ 121.869401][ T4855] blkdev_put+0x490/0x6ac [ 121.870596][ T4855] blkdev_close+0x74/0xb0 [ 121.871781][ T4855] __fput+0x1c0/0x7f8 [ 121.872871][ T4855] ____fput+0x20/0x30 [ 121.873959][ T4855] task_work_run+0x12c/0x1e0 [ 121.875193][ T4855] do_notify_resume+0x24b4/0x3128 [ 121.876524][ T4855] el0_svc+0xf0/0x1e0 [ 121.877576][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 121.878966][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 121.880147][ T4855] irq event stamp: 240668 [ 121.881299][ T4855] hardirqs last enabled at (240667): [] kasan_quarantine_put+0xc4/0x204 [ 121.883976][ T4855] hardirqs last disabled at (240668): [] smp_call_function_many_cond+0xa44/0xeb0 [ 121.886936][ T4855] softirqs last enabled at (239450): [] local_bh_enable+0x10/0x34 [ 121.889488][ T4855] softirqs last disabled at (239448): [] local_bh_disable+0x10/0x34 [ 121.892124][ T4855] ---[ end trace b25f55a3f6323633 ]--- [ 121.988902][ T4941] loop0: detected capacity change from 0 to 128 [ 122.019781][ T4941] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 122.021888][ T4941] Bad inode number on dev loop0: 2 is out of range [ 122.024052][ T4941] SysV FS: get root inode failed [ 122.025345][ T4941] oldfs: cannot read superblock [ 122.032569][ T4855] ------------[ cut here ]------------ [ 122.034138][ T4855] VFS: brelse: Trying to free free buffer [ 122.035739][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 122.038153][ T4855] Modules linked in: [ 122.039199][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 122.041634][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 122.044391][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 122.046453][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 122.047928][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 122.049382][ T4855] sp : ffff80001f0877c0 [ 122.050467][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d254 [ 122.052625][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 122.054799][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd083a58 [ 122.056969][ T4855] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 122.059155][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 122.061368][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 122.063579][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 122.065904][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 122.068030][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 122.070175][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 122.072320][ T4855] Call trace: [ 122.073161][ T4855] invalidate_bh_lru+0x128/0x234 [ 122.074460][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 122.076032][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 122.077326][ T4855] invalidate_bh_lrus+0x34/0x40 [ 122.078577][ T4855] blkdev_flush_mapping+0x168/0x31c [ 122.080079][ T4855] blkdev_put+0x490/0x6ac [ 122.081223][ T4855] blkdev_close+0x74/0xb0 [ 122.082398][ T4855] __fput+0x1c0/0x7f8 [ 122.083479][ T4855] ____fput+0x20/0x30 [ 122.084549][ T4855] task_work_run+0x12c/0x1e0 [ 122.085796][ T4855] do_notify_resume+0x24b4/0x3128 [ 122.087100][ T4855] el0_svc+0xf0/0x1e0 [ 122.088153][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 122.089504][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 122.090732][ T4855] irq event stamp: 248488 [ 122.091883][ T4855] hardirqs last enabled at (248487): [] kasan_quarantine_put+0xc4/0x204 [ 122.094667][ T4855] hardirqs last disabled at (248488): [] smp_call_function_many_cond+0xa44/0xeb0 [ 122.097627][ T4855] softirqs last enabled at (247080): [] local_bh_enable+0x10/0x34 [ 122.100268][ T4855] softirqs last disabled at (247078): [] local_bh_disable+0x10/0x34 [ 122.102816][ T4855] ---[ end trace b25f55a3f6323634 ]--- [ 122.157511][ T4943] loop0: detected capacity change from 0 to 128 [ 122.201466][ T4943] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 122.203568][ T4943] Bad inode number on dev loop0: 2 is out of range [ 122.205359][ T4943] SysV FS: get root inode failed [ 122.206663][ T4943] oldfs: cannot read superblock [ 122.213791][ C0] ------------[ cut here ]------------ [ 122.215353][ C0] VFS: brelse: Trying to free free buffer [ 122.217061][ C0] WARNING: CPU: 0 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 122.219465][ C0] Modules linked in: [ 122.220547][ C0] CPU: 0 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 122.223353][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 122.226058][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 122.228258][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 122.229720][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 122.231192][ C0] sp : ffff800008007de0 [ 122.232380][ C0] x29: ffff800008007de0 x28: ffff0000db088000 x27: 1fffe00036859054 [ 122.234605][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 122.236801][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c51c8148 [ 122.239094][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 122.241369][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 122.243663][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 122.245970][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : c58cfbd79cdf0600 [ 122.248150][ C0] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 122.250295][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 122.252533][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 122.254764][ C0] Call trace: [ 122.255660][ C0] invalidate_bh_lru+0x128/0x234 [ 122.257052][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 122.258707][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 122.260670][ C0] ipi_handler+0x108/0x70c [ 122.261871][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 122.263387][ C0] handle_domain_irq+0x144/0x1fc [ 122.264790][ C0] gic_handle_irq+0x78/0x1c8 [ 122.266014][ C0] call_on_irq_stack+0x24/0x4c [ 122.267264][ C0] do_interrupt_handler+0x6c/0x88 [ 122.268703][ C0] el1_interrupt+0x30/0x58 [ 122.270000][ C0] el1h_64_irq_handler+0x18/0x24 [ 122.271382][ C0] el1h_64_irq+0x78/0x7c [ 122.272555][ C0] read_seqbegin+0x21c/0x304 [ 122.273777][ C0] d_lookup+0x28/0x80 [ 122.274907][ C0] lookup_one_qstr_excl+0x3c/0x230 [ 122.276381][ C0] do_rmdir+0x18c/0x634 [ 122.277498][ C0] __arm64_sys_unlinkat+0xcc/0xfc [ 122.278852][ C0] invoke_syscall+0x98/0x2b8 [ 122.280104][ C0] el0_svc_common+0x138/0x258 [ 122.281351][ C0] do_el0_svc+0x58/0x14c [ 122.282540][ C0] el0_svc+0x78/0x1e0 [ 122.283599][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 122.284979][ C0] el0t_64_sync+0x1a0/0x1a4 [ 122.286228][ C0] irq event stamp: 293306 [ 122.287403][ C0] hardirqs last enabled at (293305): [] read_seqbegin+0x1fc/0x304 [ 122.289967][ C0] hardirqs last disabled at (293306): [] enter_el1_irq_or_nmi+0x10/0x1c [ 122.292765][ C0] softirqs last enabled at (293054): [] local_bh_enable+0x10/0x34 [ 122.295368][ C0] softirqs last disabled at (293052): [] local_bh_disable+0x10/0x34 [ 122.297975][ C0] ---[ end trace b25f55a3f6323635 ]--- [ 122.352117][ T4945] loop0: detected capacity change from 0 to 128 [ 122.355842][ T4945] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 122.357960][ T4945] Bad inode number on dev loop0: 2 is out of range [ 122.360013][ T4945] SysV FS: get root inode failed [ 122.361365][ T4945] oldfs: cannot read superblock [ 122.368434][ C1] ------------[ cut here ]------------ [ 122.369954][ C1] VFS: brelse: Trying to free free buffer [ 122.371566][ C1] WARNING: CPU: 1 PID: 9 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 122.373883][ C1] Modules linked in: [ 122.374923][ C1] CPU: 1 PID: 9 Comm: kworker/u4:0 Tainted: G W 5.15.181-syzkaller #0 [ 122.377556][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 122.380317][ C1] Workqueue: bat_events batadv_nc_worker [ 122.381940][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 122.384106][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 122.385656][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 122.387096][ C1] sp : ffff800008017de0 [ 122.388215][ C1] x29: ffff800008017de0 x28: ffff0000c0950000 x27: 1fffe0003685d254 [ 122.390521][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 122.392779][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd083df8 [ 122.395003][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 122.397223][ C1] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 122.399384][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 122.401595][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 404f084be7629200 [ 122.403859][ C1] x8 : 404f084be7629200 x7 : 0000000000000001 x6 : 0000000000000001 [ 122.406007][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 122.408152][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 122.410402][ C1] Call trace: [ 122.411283][ C1] invalidate_bh_lru+0x128/0x234 [ 122.412607][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 122.414291][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 122.416191][ C1] ipi_handler+0x108/0x70c [ 122.417352][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 122.418987][ C1] handle_domain_irq+0x144/0x1fc [ 122.420355][ C1] gic_handle_irq+0x78/0x1c8 [ 122.421615][ C1] call_on_irq_stack+0x24/0x4c [ 122.422928][ C1] do_interrupt_handler+0x6c/0x88 [ 122.424243][ C1] el1_interrupt+0x30/0x58 [ 122.425535][ C1] el1h_64_irq_handler+0x18/0x24 [ 122.426918][ C1] el1h_64_irq+0x78/0x7c [ 122.428033][ C1] lock_release+0x4a0/0x8e8 [ 122.429312][ C1] rcu_lock_release+0x2c/0x38 [ 122.430549][ C1] batadv_nc_worker+0x24c/0x554 [ 122.431869][ C1] process_one_work+0x79c/0x1140 [ 122.433193][ C1] worker_thread+0x8f4/0x101c [ 122.434417][ C1] kthread+0x374/0x454 [ 122.435464][ C1] ret_from_fork+0x10/0x20 [ 122.436689][ C1] irq event stamp: 2131724 [ 122.437879][ C1] hardirqs last enabled at (2131723): [] _raw_spin_unlock_irq+0x98/0x128 [ 122.440612][ C1] hardirqs last disabled at (2131724): [] enter_el1_irq_or_nmi+0x10/0x1c [ 122.443438][ C1] softirqs last enabled at (2131596): [] batadv_nc_purge_paths+0x308/0x390 [ 122.446183][ C1] softirqs last disabled at (2131594): [] batadv_nc_purge_paths+0xd0/0x390 [ 122.448966][ C1] ---[ end trace b25f55a3f6323636 ]--- [ 122.492072][ T4947] loop0: detected capacity change from 0 to 128 [ 122.586517][ T4947] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 122.588769][ T4947] Bad inode number on dev loop0: 2 is out of range [ 122.590646][ T4947] SysV FS: get root inode failed [ 122.592011][ T4947] oldfs: cannot read superblock [ 122.593386][ C0] ------------[ cut here ]------------ [ 122.594906][ C0] VFS: brelse: Trying to free free buffer [ 122.596448][ C0] WARNING: CPU: 0 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 122.598920][ C0] Modules linked in: [ 122.599971][ C0] CPU: 0 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 122.602482][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 122.605187][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 122.607264][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 122.608724][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 122.610256][ C0] sp : ffff800008007de0 [ 122.611374][ C0] x29: ffff800008007de0 x28: ffff0000ead0b680 x27: 1fffe00036859053 [ 122.613598][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 122.615799][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbea0060 [ 122.618044][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010002 [ 122.620212][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 122.622449][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 122.624714][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 9ebd7f83c88e7b00 [ 122.626948][ C0] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 122.629173][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 122.631415][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 122.633639][ C0] Call trace: [ 122.634561][ C0] invalidate_bh_lru+0x128/0x234 [ 122.636001][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 122.637650][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 122.639530][ C0] ipi_handler+0x108/0x70c [ 122.640799][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 122.642302][ C0] handle_domain_irq+0x144/0x1fc [ 122.643629][ C0] gic_handle_irq+0x78/0x1c8 [ 122.644853][ C0] call_on_irq_stack+0x24/0x4c [ 122.646148][ C0] do_interrupt_handler+0x6c/0x88 [ 122.647483][ C0] el0_interrupt+0x94/0x25c [ 122.648732][ C0] __el0_irq_handler_common+0x18/0x24 [ 122.650200][ C0] el0t_64_irq_handler+0x10/0x1c [ 122.651531][ C0] el0t_64_irq+0x1a0/0x1a4 [ 122.652687][ C0] irq event stamp: 266342 [ 122.653892][ C0] hardirqs last enabled at (266341): [] el0t_64_sync_handler+0xcc/0xe4 [ 122.656554][ C0] hardirqs last disabled at (266342): [] __el0_irq_handler_common+0x18/0x24 [ 122.659357][ C0] softirqs last enabled at (266314): [] local_bh_enable+0x10/0x34 [ 122.661963][ C0] softirqs last disabled at (266312): [] local_bh_disable+0x10/0x34 [ 122.664542][ C0] ---[ end trace b25f55a3f6323637 ]--- [ 122.762913][ T4949] loop0: detected capacity change from 0 to 128 [ 122.766547][ T4949] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 122.769108][ T4949] Bad inode number on dev loop0: 2 is out of range [ 122.770817][ T4949] SysV FS: get root inode failed [ 122.772141][ T4949] oldfs: cannot read superblock [ 122.773472][ C0] ------------[ cut here ]------------ [ 122.775060][ C0] VFS: brelse: Trying to free free buffer [ 122.776729][ C0] WARNING: CPU: 0 PID: 3643 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 122.779258][ C0] Modules linked in: [ 122.780435][ C0] CPU: 0 PID: 3643 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 122.782968][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 122.785868][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 122.787969][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 122.789409][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 122.790818][ C0] sp : ffff800008007de0 [ 122.791907][ C0] x29: ffff800008007de0 x28: ffff0000d5d93680 x27: 1fffe00036859053 [ 122.794086][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000000 [ 122.796295][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbea0400 [ 122.798453][ C0] x20: ffff0001b42c8298 x19: ffff8000113aada0 x18: 0000000000010002 [ 122.800679][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 122.802910][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 122.805115][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 63fa6c6415060b00 [ 122.807303][ C0] x8 : 63fa6c6415060b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 122.809524][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 122.811729][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 122.813933][ C0] Call trace: [ 122.814826][ C0] invalidate_bh_lru+0x128/0x234 [ 122.816190][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 122.817835][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 122.819784][ C0] ipi_handler+0x108/0x70c [ 122.821087][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 122.822592][ C0] handle_domain_irq+0x144/0x1fc [ 122.824025][ C0] gic_handle_irq+0x78/0x1c8 [ 122.825280][ C0] call_on_irq_stack+0x24/0x4c [ 122.826713][ C0] do_interrupt_handler+0x6c/0x88 [ 122.828081][ C0] el1_interrupt+0x30/0x58 [ 122.829303][ C0] el1h_64_irq_handler+0x18/0x24 [ 122.830606][ C0] el1h_64_irq+0x78/0x7c [ 122.831826][ C0] __sanitizer_cov_trace_switch+0xc8/0x10c [ 122.833415][ C0] path_openat+0x1e54/0x26e4 [ 122.834710][ C0] do_filp_open+0x164/0x330 [ 122.836015][ C0] do_sys_openat2+0x128/0x3d8 [ 122.837295][ C0] __arm64_sys_openat+0x120/0x154 [ 122.838654][ C0] invoke_syscall+0x98/0x2b8 [ 122.839916][ C0] el0_svc_common+0x138/0x258 [ 122.841188][ C0] do_el0_svc+0x58/0x14c [ 122.842296][ C0] el0_svc+0x78/0x1e0 [ 122.843422][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 122.844813][ C0] el0t_64_sync+0x1a0/0x1a4 [ 122.846076][ C0] irq event stamp: 1273818 [ 122.847315][ C0] hardirqs last enabled at (1273817): [] read_seqbegin+0x1fc/0x304 [ 122.849993][ C0] hardirqs last disabled at (1273818): [] enter_el1_irq_or_nmi+0x10/0x1c [ 122.852868][ C0] softirqs last enabled at (1273766): [] local_bh_enable+0x10/0x34 [ 122.855593][ C0] softirqs last disabled at (1273764): [] local_bh_disable+0x10/0x34 [ 122.858276][ C0] ---[ end trace b25f55a3f6323638 ]--- [ 122.934470][ T4951] loop0: detected capacity change from 0 to 128 [ 122.993684][ T4951] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 122.995704][ T4951] Bad inode number on dev loop0: 2 is out of range [ 122.997587][ T4951] SysV FS: get root inode failed [ 122.999560][ T4951] oldfs: cannot read superblock [ 123.002090][ C1] ------------[ cut here ]------------ [ 123.003583][ C1] VFS: brelse: Trying to free free buffer [ 123.005178][ C1] WARNING: CPU: 1 PID: 4951 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 123.007601][ C1] Modules linked in: [ 123.008690][ C1] CPU: 1 PID: 4951 Comm: syz.0.61 Tainted: G W 5.15.181-syzkaller #0 [ 123.011246][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 123.014002][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 123.016197][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 123.017666][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 123.019078][ C1] sp : ffff800008017de0 [ 123.020190][ C1] x29: ffff800008017de0 x28: ffff0000dab5b680 x27: 1fffe0003685d254 [ 123.022366][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000001 [ 123.024641][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd07f230 [ 123.026832][ C1] x20: ffff0001b42e92a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 123.029053][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 123.031254][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 123.033371][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 492e0d95b1318000 [ 123.035528][ C1] x8 : 492e0d95b1318000 x7 : 0000000000000001 x6 : 0000000000000001 [ 123.037701][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 123.039852][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 123.042052][ C1] Call trace: [ 123.042933][ C1] invalidate_bh_lru+0x128/0x234 [ 123.044251][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 123.045815][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 123.047795][ C1] ipi_handler+0x108/0x70c [ 123.049027][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 123.050477][ C1] handle_domain_irq+0x144/0x1fc [ 123.051831][ C1] gic_handle_irq+0x78/0x1c8 [ 123.053066][ C1] call_on_irq_stack+0x24/0x4c [ 123.054347][ C1] do_interrupt_handler+0x6c/0x88 [ 123.055699][ C1] el1_interrupt+0x30/0x58 [ 123.056930][ C1] el1h_64_irq_handler+0x18/0x24 [ 123.058328][ C1] el1h_64_irq+0x78/0x7c [ 123.059490][ C1] lock_page_memcg+0x120/0x234 [ 123.060784][ C1] page_remove_rmap+0x3c/0xfd0 [ 123.062117][ C1] unmap_page_range+0xbb4/0x1958 [ 123.063472][ C1] unmap_single_vma+0x13c/0x1e4 [ 123.064780][ C1] unmap_vmas+0x104/0x200 [ 123.065945][ C1] exit_mmap+0x2a8/0x4e0 [ 123.067086][ C1] __mmput+0xec/0x3b8 [ 123.068174][ C1] mmput+0x80/0xc8 [ 123.069242][ C1] exit_mm+0x4a0/0x684 [ 123.070325][ C1] do_exit+0x4e4/0x1f58 [ 123.071467][ C1] do_group_exit+0x100/0x268 [ 123.072684][ C1] get_signal+0x73c/0x1340 [ 123.073874][ C1] do_notify_resume+0x35c/0x3128 [ 123.075181][ C1] el0_svc+0xf0/0x1e0 [ 123.076285][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 123.077668][ C1] el0t_64_sync+0x1a0/0x1a4 [ 123.078945][ C1] irq event stamp: 1630 [ 123.080045][ C1] hardirqs last enabled at (1629): [] lock_page_memcg+0x110/0x234 [ 123.082587][ C1] hardirqs last disabled at (1630): [] enter_el1_irq_or_nmi+0x10/0x1c [ 123.085179][ C1] softirqs last enabled at (1346): [] local_bh_enable+0x10/0x34 [ 123.087727][ C1] softirqs last disabled at (1344): [] local_bh_disable+0x10/0x34 [ 123.090251][ C1] ---[ end trace b25f55a3f6323639 ]--- [ 123.142422][ T4953] loop0: detected capacity change from 0 to 128 [ 123.196980][ T4953] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 123.199872][ T4953] Bad inode number on dev loop0: 2 is out of range [ 123.201825][ T4953] SysV FS: get root inode failed [ 123.203329][ T4953] oldfs: cannot read superblock [ 123.212017][ T4855] ------------[ cut here ]------------ [ 123.213483][ T4855] VFS: brelse: Trying to free free buffer [ 123.215062][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 123.217490][ T4855] Modules linked in: [ 123.218514][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 123.220939][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 123.223710][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 123.225820][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 123.227308][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 123.228750][ T4855] sp : ffff80001f0877c0 [ 123.229888][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 123.232053][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 123.234182][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd07f5d0 [ 123.236372][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 123.238568][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 123.240775][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 123.243037][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 123.245175][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 123.247330][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 123.249563][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 123.251763][ T4855] Call trace: [ 123.252663][ T4855] invalidate_bh_lru+0x128/0x234 [ 123.254012][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 123.255658][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 123.257017][ T4855] invalidate_bh_lrus+0x34/0x40 [ 123.258318][ T4855] blkdev_flush_mapping+0x168/0x31c [ 123.259760][ T4855] blkdev_put+0x490/0x6ac [ 123.260920][ T4855] blkdev_close+0x74/0xb0 [ 123.262087][ T4855] __fput+0x1c0/0x7f8 [ 123.263151][ T4855] ____fput+0x20/0x30 [ 123.264228][ T4855] task_work_run+0x12c/0x1e0 [ 123.265465][ T4855] do_notify_resume+0x24b4/0x3128 [ 123.266899][ T4855] el0_svc+0xf0/0x1e0 [ 123.267989][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 123.269353][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 123.270544][ T4855] irq event stamp: 282046 [ 123.271697][ T4855] hardirqs last enabled at (282045): [] kasan_quarantine_put+0xc4/0x204 [ 123.274386][ T4855] hardirqs last disabled at (282046): [] smp_call_function_many_cond+0xa44/0xeb0 [ 123.277262][ T4855] softirqs last enabled at (281198): [] local_bh_enable+0x10/0x34 [ 123.279823][ T4855] softirqs last disabled at (281196): [] local_bh_disable+0x10/0x34 [ 123.282493][ T4855] ---[ end trace b25f55a3f632363a ]--- [ 123.312726][ T4955] loop0: detected capacity change from 0 to 128 [ 123.356152][ T4955] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 123.358219][ T4955] Bad inode number on dev loop0: 2 is out of range [ 123.359962][ T4955] SysV FS: get root inode failed [ 123.361291][ T4955] oldfs: cannot read superblock [ 123.368086][ C0] ------------[ cut here ]------------ [ 123.369637][ C0] VFS: brelse: Trying to free free buffer [ 123.371260][ C0] WARNING: CPU: 0 PID: 3628 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 123.373612][ C0] Modules linked in: [ 123.374698][ C0] CPU: 0 PID: 3628 Comm: syslogd Tainted: G W 5.15.181-syzkaller #0 [ 123.377206][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 123.379889][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 123.381971][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 123.383396][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 123.384788][ C0] sp : ffff800008007de0 [ 123.385928][ C0] x29: ffff800008007de0 x28: ffff0000d5370000 x27: 1fffe00036859054 [ 123.388085][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 123.390269][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbea07a0 [ 123.392390][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 123.394590][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 123.396750][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 123.398972][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 1fa176c751051f00 [ 123.401157][ C0] x8 : 1fa176c751051f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 123.403401][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 123.405603][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 123.407790][ C0] Call trace: [ 123.408673][ C0] invalidate_bh_lru+0x128/0x234 [ 123.410029][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 123.411702][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 123.413571][ C0] ipi_handler+0x108/0x70c [ 123.414768][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 123.416341][ C0] handle_domain_irq+0x144/0x1fc [ 123.417671][ C0] gic_handle_irq+0x78/0x1c8 [ 123.418926][ C0] call_on_irq_stack+0x24/0x4c [ 123.420181][ C0] do_interrupt_handler+0x6c/0x88 [ 123.421472][ C0] el1_interrupt+0x30/0x58 [ 123.422694][ C0] el1h_64_irq_handler+0x18/0x24 [ 123.424090][ C0] el1h_64_irq+0x78/0x7c [ 123.425213][ C0] el0_svc_common+0xa8/0x258 [ 123.426478][ C0] do_el0_svc+0x58/0x14c [ 123.427632][ C0] el0_svc+0x78/0x1e0 [ 123.428689][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 123.430023][ C0] el0t_64_sync+0x1a0/0x1a4 [ 123.431257][ C0] irq event stamp: 138470 [ 123.432418][ C0] hardirqs last enabled at (138469): [] el0_svc_common+0x9c/0x258 [ 123.435001][ C0] hardirqs last disabled at (138470): [] enter_el1_irq_or_nmi+0x10/0x1c [ 123.437674][ C0] softirqs last enabled at (138458): [] local_bh_enable+0x10/0x34 [ 123.440262][ C0] softirqs last disabled at (138456): [] local_bh_disable+0x10/0x34 [ 123.442922][ C0] ---[ end trace b25f55a3f632363b ]--- [ 123.488842][ T4957] loop0: detected capacity change from 0 to 128 [ 123.535292][ T4957] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 123.537322][ T4957] Bad inode number on dev loop0: 2 is out of range [ 123.540494][ T4957] SysV FS: get root inode failed [ 123.541865][ T4957] oldfs: cannot read superblock [ 123.547595][ T4855] ------------[ cut here ]------------ [ 123.549162][ T4855] VFS: brelse: Trying to free free buffer [ 123.550708][ T4855] WARNING: CPU: 1 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 123.553116][ T4855] Modules linked in: [ 123.554199][ T4855] CPU: 1 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 123.556673][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 123.559351][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 123.561409][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 123.562861][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 123.564304][ T4855] sp : ffff80001f0877c0 [ 123.565409][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 123.567534][ T4855] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 123.569655][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd07f970 [ 123.571874][ T4855] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 123.573965][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 123.576078][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 123.578209][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 123.580293][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 123.582489][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 123.584625][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 123.586808][ T4855] Call trace: [ 123.587684][ T4855] invalidate_bh_lru+0x128/0x234 [ 123.589073][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 123.590596][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 123.591980][ T4855] invalidate_bh_lrus+0x34/0x40 [ 123.593291][ T4855] blkdev_flush_mapping+0x168/0x31c [ 123.594735][ T4855] blkdev_put+0x490/0x6ac [ 123.595884][ T4855] blkdev_close+0x74/0xb0 [ 123.597010][ T4855] __fput+0x1c0/0x7f8 [ 123.598049][ T4855] ____fput+0x20/0x30 [ 123.599117][ T4855] task_work_run+0x12c/0x1e0 [ 123.600391][ T4855] do_notify_resume+0x24b4/0x3128 [ 123.601702][ T4855] el0_svc+0xf0/0x1e0 [ 123.602754][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 123.604128][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 123.605340][ T4855] irq event stamp: 291940 [ 123.606490][ T4855] hardirqs last enabled at (291939): [] kasan_quarantine_put+0xc4/0x204 [ 123.609221][ T4855] hardirqs last disabled at (291940): [] smp_call_function_many_cond+0xa44/0xeb0 [ 123.612079][ T4855] softirqs last enabled at (290970): [] local_bh_enable+0x10/0x34 [ 123.614598][ T4855] softirqs last disabled at (290968): [] local_bh_disable+0x10/0x34 [ 123.617173][ T4855] ---[ end trace b25f55a3f632363c ]--- [ 123.675202][ T4959] loop0: detected capacity change from 0 to 128 [ 123.679066][ T4959] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 123.681126][ T4959] Bad inode number on dev loop0: 2 is out of range [ 123.682865][ T4959] SysV FS: get root inode failed [ 123.684195][ T4959] oldfs: cannot read superblock [ 123.685516][ T4959] ------------[ cut here ]------------ [ 123.686964][ T4959] VFS: brelse: Trying to free free buffer [ 123.688709][ T4959] WARNING: CPU: 1 PID: 4959 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 123.691135][ T4959] Modules linked in: [ 123.692159][ T4959] CPU: 1 PID: 4959 Comm: syz.0.65 Tainted: G W 5.15.181-syzkaller #0 [ 123.694683][ T4959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 123.697369][ T4959] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 123.699638][ T4959] pc : invalidate_bh_lru+0x128/0x234 [ 123.701084][ T4959] lr : invalidate_bh_lru+0x128/0x234 [ 123.702576][ T4959] sp : ffff80001f7876e0 [ 123.703679][ T4959] x29: ffff80001f7876e0 x28: ffff80001414d000 x27: 1fffe0003685d253 [ 123.705887][ T4959] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 123.708075][ T4959] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd07fd10 [ 123.710238][ T4959] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000000003 [ 123.712398][ T4959] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 123.714621][ T4959] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 123.716737][ T4959] x11: 0000000000000002 x10: 0000000000000000 x9 : a36158c53d374900 [ 123.718938][ T4959] x8 : a36158c53d374900 x7 : 0000000000000001 x6 : 0000000000000001 [ 123.721132][ T4959] x5 : ffff80001f786fd8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 123.723277][ T4959] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 123.725446][ T4959] Call trace: [ 123.726341][ T4959] invalidate_bh_lru+0x128/0x234 [ 123.727663][ T4959] smp_call_function_many_cond+0xa50/0xeb0 [ 123.729280][ T4959] on_each_cpu_cond_mask+0x5c/0xc4 [ 123.730653][ T4959] invalidate_bh_lrus+0x34/0x40 [ 123.731988][ T4959] blkdev_flush_mapping+0x168/0x31c [ 123.733422][ T4959] blkdev_put+0x490/0x6ac [ 123.734612][ T4959] kill_block_super+0x98/0xdc [ 123.735936][ T4959] deactivate_locked_super+0xb8/0x13c [ 123.737374][ T4959] mount_bdev+0x284/0x358 [ 123.738564][ T4959] sysv_mount+0x44/0x58 [ 123.739701][ T4959] legacy_get_tree+0xd4/0x16c [ 123.741014][ T4959] vfs_get_tree+0x90/0x274 [ 123.742260][ T4959] do_new_mount+0x228/0x810 [ 123.743522][ T4959] path_mount+0x5b4/0x1000 [ 123.744724][ T4959] __arm64_sys_mount+0x514/0x5e4 [ 123.746066][ T4959] invoke_syscall+0x98/0x2b8 [ 123.747245][ T4959] el0_svc_common+0x138/0x258 [ 123.748498][ T4959] do_el0_svc+0x58/0x14c [ 123.749632][ T4959] el0_svc+0x78/0x1e0 [ 123.750720][ T4959] el0t_64_sync_handler+0xcc/0xe4 [ 123.752162][ T4959] el0t_64_sync+0x1a0/0x1a4 [ 123.753359][ T4959] irq event stamp: 1040 [ 123.754438][ T4959] hardirqs last enabled at (1039): [] kasan_quarantine_put+0xc4/0x204 [ 123.757093][ T4959] hardirqs last disabled at (1040): [] smp_call_function_many_cond+0xa44/0xeb0 [ 123.759924][ T4959] softirqs last enabled at (956): [] handle_softirqs+0xa4c/0xbf0 [ 123.762488][ T4959] softirqs last disabled at (947): [] __irq_exit_rcu+0x240/0x440 [ 123.764996][ T4959] ---[ end trace b25f55a3f632363d ]--- [ 123.861093][ T4961] loop0: detected capacity change from 0 to 128 [ 123.942790][ T4961] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 123.944795][ T4961] Bad inode number on dev loop0: 2 is out of range [ 123.946608][ T4961] SysV FS: get root inode failed [ 123.948484][ T4961] oldfs: cannot read superblock [ 123.953989][ C0] ------------[ cut here ]------------ [ 123.955467][ C0] VFS: brelse: Trying to free free buffer [ 123.957046][ C0] WARNING: CPU: 0 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 123.959431][ C0] Modules linked in: [ 123.960502][ C0] CPU: 0 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 123.963086][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 123.965899][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 123.968047][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 123.969457][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 123.970893][ C0] sp : ffff800008007de0 [ 123.972009][ C0] x29: ffff800008007de0 x28: ffff0000db088000 x27: 1fffe00036859054 [ 123.974121][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 123.976342][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dbea0b40 [ 123.978529][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 123.980793][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 123.982985][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 123.985162][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : c58cfbd79cdf0600 [ 123.987292][ C0] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 123.989469][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 123.991641][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 123.993736][ C0] Call trace: [ 123.994597][ C0] invalidate_bh_lru+0x128/0x234 [ 123.995956][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 123.997614][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 123.999485][ C0] ipi_handler+0x108/0x70c [ 124.000661][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 124.002108][ C0] handle_domain_irq+0x144/0x1fc [ 124.003484][ C0] gic_handle_irq+0x78/0x1c8 [ 124.004701][ C0] call_on_irq_stack+0x24/0x4c [ 124.005977][ C0] do_interrupt_handler+0x6c/0x88 [ 124.007379][ C0] el1_interrupt+0x30/0x58 [ 124.008545][ C0] el1h_64_irq_handler+0x18/0x24 [ 124.009894][ C0] el1h_64_irq+0x78/0x7c [ 124.011061][ C0] el0_svc_common+0xa8/0x258 [ 124.012234][ C0] do_el0_svc+0x58/0x14c [ 124.013349][ C0] el0_svc+0x78/0x1e0 [ 124.014391][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 124.015784][ C0] el0t_64_sync+0x1a0/0x1a4 [ 124.017020][ C0] irq event stamp: 320272 [ 124.018157][ C0] hardirqs last enabled at (320271): [] el0_svc_common+0x9c/0x258 [ 124.020738][ C0] hardirqs last disabled at (320272): [] enter_el1_irq_or_nmi+0x10/0x1c [ 124.023431][ C0] softirqs last enabled at (320256): [] local_bh_enable+0x10/0x34 [ 124.026032][ C0] softirqs last disabled at (320254): [] local_bh_disable+0x10/0x34 [ 124.028493][ C0] ---[ end trace b25f55a3f632363e ]--- [ 124.073560][ T4963] loop0: detected capacity change from 0 to 128 [ 124.110793][ T4963] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 124.112926][ T4963] Bad inode number on dev loop0: 2 is out of range [ 124.114618][ T4963] SysV FS: get root inode failed [ 124.115920][ T4963] oldfs: cannot read superblock [ 124.123443][ T4855] ------------[ cut here ]------------ [ 124.124927][ T4855] VFS: brelse: Trying to free free buffer [ 124.126436][ T4855] WARNING: CPU: 0 PID: 4855 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 124.128800][ T4855] Modules linked in: [ 124.129866][ T4855] CPU: 0 PID: 4855 Comm: udevd Tainted: G W 5.15.181-syzkaller #0 [ 124.132309][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 124.134967][ T4855] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 124.137016][ T4855] pc : invalidate_bh_lru+0x128/0x234 [ 124.138434][ T4855] lr : invalidate_bh_lru+0x128/0x234 [ 124.139832][ T4855] sp : ffff80001f0877c0 [ 124.141011][ T4855] x29: ffff80001f0877c0 x28: ffff80001414d000 x27: 1fffe00036859054 [ 124.143208][ T4855] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 124.145402][ T4855] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05eb970 [ 124.147618][ T4855] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000000003 [ 124.149859][ T4855] x17: 0000000000000000 x16: ffff8000111a3970 x15: 00000000ffffffff [ 124.151997][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 124.154133][ T4855] x11: 0000000000000002 x10: 0000000000000000 x9 : 9ebd7f83c88e7b00 [ 124.156248][ T4855] x8 : 9ebd7f83c88e7b00 x7 : 0000000000000001 x6 : 0000000000000001 [ 124.158429][ T4855] x5 : ffff80001f0870b8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 124.160528][ T4855] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 124.162692][ T4855] Call trace: [ 124.163549][ T4855] invalidate_bh_lru+0x128/0x234 [ 124.164930][ T4855] smp_call_function_many_cond+0xa50/0xeb0 [ 124.166444][ T4855] on_each_cpu_cond_mask+0x5c/0xc4 [ 124.167807][ T4855] invalidate_bh_lrus+0x34/0x40 [ 124.169136][ T4855] blkdev_flush_mapping+0x168/0x31c [ 124.170545][ T4855] blkdev_put+0x490/0x6ac [ 124.171738][ T4855] blkdev_close+0x74/0xb0 [ 124.172945][ T4855] __fput+0x1c0/0x7f8 [ 124.174017][ T4855] ____fput+0x20/0x30 [ 124.175108][ T4855] task_work_run+0x12c/0x1e0 [ 124.176317][ T4855] do_notify_resume+0x24b4/0x3128 [ 124.177711][ T4855] el0_svc+0xf0/0x1e0 [ 124.178835][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 124.180193][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 124.181415][ T4855] irq event stamp: 309290 [ 124.182588][ T4855] hardirqs last enabled at (309289): [] kasan_quarantine_put+0xc4/0x204 [ 124.185322][ T4855] hardirqs last disabled at (309290): [] smp_call_function_many_cond+0xa44/0xeb0 [ 124.188251][ T4855] softirqs last enabled at (307778): [] local_bh_enable+0x10/0x34 [ 124.190861][ T4855] softirqs last disabled at (307776): [] local_bh_disable+0x10/0x34 [ 124.193441][ T4855] ---[ end trace b25f55a3f632363f ]--- [ 124.225545][ T4965] loop0: detected capacity change from 0 to 128 [ 124.231668][ T4965] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 124.233614][ T4965] Bad inode number on dev loop0: 2 is out of range [ 124.235434][ T4965] SysV FS: get root inode failed [ 124.236742][ T4965] oldfs: cannot read superblock [ 124.245410][ C0] ------------[ cut here ]------------ [ 124.246896][ C0] VFS: brelse: Trying to free free buffer [ 124.248475][ C0] WARNING: CPU: 0 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 124.250936][ C0] Modules linked in: [ 124.251953][ C0] CPU: 0 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 124.254692][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 124.257446][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 124.259553][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 124.260954][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 124.262330][ C0] sp : ffff800008007de0 [ 124.263434][ C0] x29: ffff800008007de0 x28: ffff0000db088000 x27: 1fffe00036859054 [ 124.265552][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 124.267752][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05eb5d0 [ 124.269906][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010002 [ 124.272052][ C0] x17: 0000000000010002 x16: ffff8000111a3970 x15: 00000000ffffffff [ 124.274237][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 124.276372][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : c58cfbd79cdf0600 [ 124.278507][ C0] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 124.280633][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 124.282772][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 124.284998][ C0] Call trace: [ 124.285835][ C0] invalidate_bh_lru+0x128/0x234 [ 124.287101][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 124.288755][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 124.290623][ C0] ipi_handler+0x108/0x70c [ 124.291807][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 124.293304][ C0] handle_domain_irq+0x144/0x1fc [ 124.294699][ C0] gic_handle_irq+0x78/0x1c8 [ 124.295937][ C0] call_on_irq_stack+0x24/0x4c [ 124.297235][ C0] do_interrupt_handler+0x6c/0x88 [ 124.298581][ C0] el1_interrupt+0x30/0x58 [ 124.299773][ C0] el1h_64_irq_handler+0x18/0x24 [ 124.301103][ C0] el1h_64_irq+0x78/0x7c [ 124.302264][ C0] lock_acquire+0x234/0x620 [ 124.303463][ C0] fs_reclaim_acquire+0x118/0x1c4 [ 124.304817][ C0] slab_pre_alloc_hook+0x38/0xec [ 124.306149][ C0] kmem_cache_alloc_node_trace+0x9c/0x438 [ 124.307679][ C0] __get_vm_area_node+0x14c/0x2e8 [ 124.308996][ C0] __vmalloc_node_range+0xe8/0x8d8 [ 124.310408][ C0] vzalloc+0x118/0x190 [ 124.311474][ C0] alloc_counters+0x84/0x7a4 [ 124.312725][ C0] do_arpt_get_ctl+0xab8/0x12a4 [ 124.314042][ C0] nf_getsockopt+0x264/0x284 [ 124.315279][ C0] ip_getsockopt+0xffc/0x158c [ 124.316476][ C0] tcp_getsockopt+0x214/0x2e74 [ 124.317733][ C0] sock_common_getsockopt+0xa8/0xc4 [ 124.319163][ C0] __sys_getsockopt+0x1e0/0x45c [ 124.320454][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 124.321828][ C0] invoke_syscall+0x98/0x2b8 [ 124.323153][ C0] el0_svc_common+0x138/0x258 [ 124.324418][ C0] do_el0_svc+0x58/0x14c [ 124.325571][ C0] el0_svc+0x78/0x1e0 [ 124.326659][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 124.328087][ C0] el0t_64_sync+0x1a0/0x1a4 [ 124.329426][ C0] irq event stamp: 327994 [ 124.330600][ C0] hardirqs last enabled at (327993): [] __local_bh_enable_ip+0x1f8/0x380 [ 124.333342][ C0] hardirqs last disabled at (327994): [] enter_el1_irq_or_nmi+0x10/0x1c [ 124.335978][ C0] softirqs last enabled at (327992): [] release_sock+0x1d0/0x258 [ 124.338516][ C0] softirqs last disabled at (327990): [] release_sock+0x34/0x258 [ 124.341010][ C0] ---[ end trace b25f55a3f6323640 ]--- [ 124.381154][ T4967] loop0: detected capacity change from 0 to 128 [ 124.419571][ T4967] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 124.422298][ T4967] Bad inode number on dev loop0: 2 is out of range [ 124.424393][ T4967] SysV FS: get root inode failed [ 124.425770][ T4967] oldfs: cannot read superblock [ 124.433522][ C1] ------------[ cut here ]------------ [ 124.435102][ C1] VFS: brelse: Trying to free free buffer [ 124.436707][ C1] WARNING: CPU: 1 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 124.439164][ C1] Modules linked in: [ 124.440244][ C1] CPU: 1 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 124.442976][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 124.445693][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 124.447853][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 124.449273][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 124.450695][ C1] sp : ffff800008017de0 [ 124.451822][ C1] x29: ffff800008017de0 x28: ffff0000db088000 x27: 1fffe0003685d253 [ 124.453987][ C1] x26: 0000000000000001 x25: ffff0001b42e9298 x24: 0000000000000000 [ 124.456155][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd07c148 [ 124.458310][ C1] x20: ffff0001b42e9298 x19: ffff8000113aada0 x18: 0000000000010003 [ 124.460500][ C1] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 124.462710][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 124.464888][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : c58cfbd79cdf0600 [ 124.467060][ C1] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 124.469232][ C1] x5 : ffff8000080176d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 124.471335][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 124.473552][ C1] Call trace: [ 124.474458][ C1] invalidate_bh_lru+0x128/0x234 [ 124.475814][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 124.477443][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 124.479378][ C1] ipi_handler+0x108/0x70c [ 124.480582][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 124.482077][ C1] handle_domain_irq+0x144/0x1fc [ 124.483402][ C1] gic_handle_irq+0x78/0x1c8 [ 124.484646][ C1] call_on_irq_stack+0x24/0x4c [ 124.485935][ C1] do_interrupt_handler+0x6c/0x88 [ 124.487304][ C1] el1_interrupt+0x30/0x58 [ 124.488482][ C1] el1h_64_irq_handler+0x18/0x24 [ 124.489807][ C1] el1h_64_irq+0x78/0x7c [ 124.490969][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 124.492513][ C1] debug_check_no_obj_freed+0x450/0x46c [ 124.494072][ C1] slab_free_freelist_hook+0x9c/0x1e8 [ 124.495513][ C1] kfree+0x170/0x40c [ 124.496578][ C1] tomoyo_check_open_permission+0x240/0x2fc [ 124.498170][ C1] tomoyo_file_open+0x130/0x1b0 [ 124.499498][ C1] security_file_open+0x6c/0xac [ 124.500808][ C1] do_dentry_open+0x29c/0xebc [ 124.502066][ C1] vfs_open+0x7c/0x90 [ 124.503134][ C1] path_openat+0x1f80/0x26e4 [ 124.504376][ C1] do_filp_open+0x164/0x330 [ 124.505609][ C1] do_sys_openat2+0x128/0x3d8 [ 124.506831][ C1] __arm64_sys_openat+0x120/0x154 [ 124.508209][ C1] invoke_syscall+0x98/0x2b8 [ 124.509479][ C1] el0_svc_common+0x138/0x258 [ 124.510803][ C1] do_el0_svc+0x58/0x14c [ 124.512013][ C1] el0_svc+0x78/0x1e0 [ 124.513050][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 124.514497][ C1] el0t_64_sync+0x1a0/0x1a4 [ 124.515712][ C1] irq event stamp: 330500 [ 124.516947][ C1] hardirqs last enabled at (330499): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 124.519840][ C1] hardirqs last disabled at (330500): [] enter_el1_irq_or_nmi+0x10/0x1c [ 124.522671][ C1] softirqs last enabled at (329558): [] local_bh_enable+0x10/0x34 [ 124.525379][ C1] softirqs last disabled at (329556): [] local_bh_disable+0x10/0x34 [ 124.528027][ C1] ---[ end trace b25f55a3f6323641 ]--- [ 124.590100][ T4969] loop0: detected capacity change from 0 to 128 [ 124.599934][ T4969] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 124.601948][ T4969] Bad inode number on dev loop0: 2 is out of range [ 124.603712][ T4969] SysV FS: get root inode failed [ 124.605121][ T4969] oldfs: cannot read superblock [ 124.610889][ C0] ------------[ cut here ]------------ [ 124.612377][ C0] VFS: brelse: Trying to free free buffer [ 124.614127][ C0] WARNING: CPU: 0 PID: 4618 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 124.616495][ C0] Modules linked in: [ 124.617553][ C0] CPU: 0 PID: 4618 Comm: syz-executor Tainted: G W 5.15.181-syzkaller #0 [ 124.620309][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 124.623042][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 124.625202][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 124.626637][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 124.628121][ C0] sp : ffff800008007de0 [ 124.629262][ C0] x29: ffff800008007de0 x28: ffff0000db088000 x27: 1fffe00036859054 [ 124.631498][ C0] x26: 0000000000000001 x25: ffff0001b42c8298 x24: 0000000000000001 [ 124.633673][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05eb230 [ 124.635843][ C0] x20: ffff0001b42c82a0 x19: ffff8000113aada0 x18: 0000000000010003 [ 124.638057][ C0] x17: 0000000000010003 x16: ffff8000111a3970 x15: 00000000ffffffff [ 124.640189][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 124.642385][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : c58cfbd79cdf0600 [ 124.644661][ C0] x8 : c58cfbd79cdf0600 x7 : 0000000000000001 x6 : 0000000000000001 [ 124.646925][ C0] x5 : ffff8000080076d8 x4 : ffff80001422f280 x3 : ffff800008503848 [ 124.649199][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 124.651452][ C0] Call trace: [ 124.652354][ C0] invalidate_bh_lru+0x128/0x234 [ 124.653678][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 124.655282][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 124.657240][ C0] ipi_handler+0x108/0x70c [ 124.658583][ C0] handle_percpu_devid_irq+0x29c/0x76c