Warning: Permanently added '10.128.1.231' (ED25519) to the list of known hosts. 1970/01/01 00:01:01 parsed 1 programs [ 62.635279][ T4400] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 64.675710][ T1621] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.677110][ T1621] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.680568][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 64.684514][ T1621] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.687452][ T1621] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.688990][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 65.118335][ T4552] chnl_net:caif_netlink_parms(): no params data found [ 65.134956][ T4552] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.136183][ T4552] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.137755][ T4552] device bridge_slave_0 entered promiscuous mode [ 65.140427][ T4552] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.141491][ T4552] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.142930][ T4552] device bridge_slave_1 entered promiscuous mode [ 65.151083][ T4552] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 65.153816][ T4552] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 65.162066][ T4552] team0: Port device team_slave_0 added [ 65.163874][ T4552] team0: Port device team_slave_1 added [ 65.169977][ T4552] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 65.170985][ T4552] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.175565][ T4552] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 65.178940][ T4552] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 65.179930][ T4552] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.184083][ T4552] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 65.225662][ T4552] device hsr_slave_0 entered promiscuous mode [ 65.265569][ T4552] device hsr_slave_1 entered promiscuous mode [ 65.878967][ T4552] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 65.898277][ T4552] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 65.956466][ T4552] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 65.985792][ T4552] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 66.048045][ T4552] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.051988][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 66.053376][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 66.057306][ T4552] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.062540][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 66.064065][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 66.066526][ T356] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.067689][ T356] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.069245][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 66.073574][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 66.076167][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 66.077618][ T356] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.078671][ T356] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.092017][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 66.093779][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 66.096482][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 66.098292][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 66.100164][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 66.101912][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 66.104267][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 66.106150][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 66.107721][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 66.109174][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 66.111315][ T4552] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 66.122301][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 66.165879][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 66.167262][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 66.170889][ T4552] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 66.177677][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 66.179267][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 66.189617][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 66.191097][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 66.193690][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 66.210935][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 66.212323][ T4552] device veth0_vlan entered promiscuous mode [ 66.216635][ T4552] device veth1_vlan entered promiscuous mode [ 66.223290][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 66.224752][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 66.226170][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 66.227688][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 66.230531][ T4552] device veth0_macvtap entered promiscuous mode [ 66.232720][ T4552] device veth1_macvtap entered promiscuous mode [ 66.238322][ T4552] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 66.239495][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 66.240964][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 66.242287][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 66.243784][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 66.247501][ T4552] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 66.249672][ T4552] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.250951][ T4552] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.252432][ T4552] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.253717][ T4552] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.256705][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 66.258390][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 1970/01/01 00:01:06 executed programs: 0 [ 66.603611][ T4719] chnl_net:caif_netlink_parms(): no params data found [ 66.620633][ T4719] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.621817][ T4719] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.623280][ T4719] device bridge_slave_0 entered promiscuous mode [ 66.625897][ T4719] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.626976][ T4719] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.628519][ T4719] device bridge_slave_1 entered promiscuous mode [ 66.637828][ T4719] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.640178][ T4719] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.649437][ T4719] team0: Port device team_slave_0 added [ 66.651215][ T4719] team0: Port device team_slave_1 added [ 66.665349][ T4719] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 66.666437][ T4719] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 66.670645][ T4719] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 66.672986][ T4719] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 66.674038][ T4719] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 66.678303][ T4719] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 66.715776][ T4719] device hsr_slave_0 entered promiscuous mode [ 66.754977][ T4719] device hsr_slave_1 entered promiscuous mode [ 66.785937][ T4719] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 66.787149][ T4719] Cannot create hsr debugfs directory [ 66.815704][ T4719] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 68.594655][ T4650] Bluetooth: hci0: command 0x0409 tx timeout [ 69.498063][ T4719] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.625737][ T2063] ieee802154 phy0 wpan0: encryption failed: -22 [ 69.626793][ T2063] ieee802154 phy1 wpan1: encryption failed: -22 [ 69.635489][ T21] cfg80211: failed to load regulatory.db [ 70.665066][ T4652] Bluetooth: hci0: command 0x041b tx timeout [ 71.907908][ T4719] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.959452][ T4719] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.138571][ T4719] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 72.196884][ T4719] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 72.245681][ T4719] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 72.293237][ T4719] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 72.367251][ T4719] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.371339][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 72.372838][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 72.375326][ T4719] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.377610][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 72.379191][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 72.380566][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.381622][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.382955][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 72.385970][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 72.387529][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 72.389024][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.390141][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.392471][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 72.395357][ T1621] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 72.397977][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 72.399776][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 72.401395][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 72.403885][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 72.406276][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 72.408880][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 72.410225][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 72.412774][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 72.414232][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 72.417579][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 72.458590][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 72.459945][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 72.463345][ T4719] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.470796][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 72.472335][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 72.478508][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 72.480018][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 72.481597][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 72.482937][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 72.485486][ T4719] device veth0_vlan entered promiscuous mode [ 72.489946][ T4719] device veth1_vlan entered promiscuous mode [ 72.496548][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 72.498097][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 72.499469][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 72.500808][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 72.503038][ T4719] device veth0_macvtap entered promiscuous mode [ 72.507109][ T4719] device veth1_macvtap entered promiscuous mode [ 72.511427][ T4719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.513047][ T4719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.515379][ T4719] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.516625][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 72.518269][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 72.519729][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 72.521303][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 72.523623][ T4719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.526253][ T4719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.528855][ T4719] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.530236][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 72.531761][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 72.534153][ T4719] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.535628][ T4719] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.536894][ T4719] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.538307][ T4719] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.557446][ T356] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.562183][ T356] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.564055][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 72.566205][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.567441][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.568848][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:12 executed programs: 2 [ 72.583909][ T4949] loop0: detected capacity change from 0 to 128 [ 72.621495][ T4949] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.622708][ T4949] Bad inode number on dev loop0: 2 is out of range [ 72.623689][ T4949] SysV FS: get root inode failed [ 72.624806][ T4949] oldfs: cannot read superblock [ 72.632887][ T4933] ------------[ cut here ]------------ [ 72.633717][ T4933] VFS: brelse: Trying to free free buffer [ 72.634659][ T4933] WARNING: CPU: 1 PID: 4933 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 72.636115][ T4933] Modules linked in: [ 72.636751][ T4933] CPU: 1 PID: 4933 Comm: udevd Not tainted syzkaller #0 [ 72.637843][ T4933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 72.639424][ T4933] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.640622][ T4933] pc : invalidate_bh_lru+0x128/0x234 [ 72.641520][ T4933] lr : invalidate_bh_lru+0x128/0x234 [ 72.642360][ T4933] sp : ffff80001f6d77c0 [ 72.643034][ T4933] x29: ffff80001f6d77c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 72.644222][ T4933] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 72.645511][ T4933] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e29077a0 [ 72.646802][ T4933] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 72.648075][ T4933] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 72.649381][ T4933] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 72.650607][ T4933] x11: 0000000000000002 x10: 0000000000000000 x9 : 8c364d5cc0ffe200 [ 72.651891][ T4933] x8 : 8c364d5cc0ffe200 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.653119][ T4933] x5 : ffff80001f6d70b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 72.654418][ T4933] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 72.655673][ T4933] Call trace: [ 72.656193][ T4933] invalidate_bh_lru+0x128/0x234 [ 72.656952][ T4933] smp_call_function_many_cond+0xa50/0xeb0 [ 72.657911][ T4933] on_each_cpu_cond_mask+0x5c/0xc4 [ 72.658782][ T4933] invalidate_bh_lrus+0x34/0x40 [ 72.659539][ T4933] blkdev_flush_mapping+0x168/0x31c [ 72.660280][ T4933] blkdev_put+0x490/0x6ac [ 72.661039][ T4933] blkdev_close+0x74/0xb0 [ 72.661695][ T4933] __fput+0x1c0/0x7f8 [ 72.662333][ T4933] ____fput+0x20/0x30 [ 72.662998][ T4933] task_work_run+0x12c/0x1e0 [ 72.663725][ T4933] do_notify_resume+0x24b4/0x3128 [ 72.664552][ T4933] el0_svc+0xf0/0x1e0 [ 72.665179][ T4933] el0t_64_sync_handler+0xcc/0xe4 [ 72.665922][ T4933] el0t_64_sync+0x1a0/0x1a4 [ 72.666648][ T4933] irq event stamp: 9750 [ 72.667318][ T4933] hardirqs last enabled at (9749): [] kasan_quarantine_put+0xc4/0x204 [ 72.668827][ T4933] hardirqs last disabled at (9750): [] smp_call_function_many_cond+0xa44/0xeb0 [ 72.670456][ T4933] softirqs last enabled at (9534): [] local_bh_enable+0x10/0x34 [ 72.672012][ T4933] softirqs last disabled at (9532): [] local_bh_disable+0x10/0x34 [ 72.673543][ T4933] ---[ end trace 6903da8befc062c8 ]--- [ 72.709190][ T4951] loop0: detected capacity change from 0 to 128 [ 72.712029][ T4951] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.713277][ T4951] Bad inode number on dev loop0: 2 is out of range [ 72.714120][ T4951] SysV FS: get root inode failed [ 72.716155][ T4951] oldfs: cannot read superblock [ 72.719390][ C0] ------------[ cut here ]------------ [ 72.720264][ C0] VFS: brelse: Trying to free free buffer [ 72.721161][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 72.722355][ C0] Modules linked in: [ 72.722947][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 72.724223][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 72.725534][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.726726][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 72.727559][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 72.728431][ C0] sp : ffff800008007de0 [ 72.729068][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 72.730340][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 72.731617][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2bc2318 [ 72.732932][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 72.734242][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 72.735512][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 72.736746][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 72.737965][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.739086][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 72.740188][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 72.741343][ C0] Call trace: [ 72.741780][ C0] invalidate_bh_lru+0x128/0x234 [ 72.742618][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 72.743561][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 72.744650][ C0] ipi_handler+0x10c/0x710 [ 72.745386][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 72.746197][ C0] handle_domain_irq+0x144/0x1fc [ 72.747014][ C0] gic_handle_irq+0x78/0x1c8 [ 72.747679][ C0] call_on_irq_stack+0x30/0x48 [ 72.748402][ C0] do_interrupt_handler+0x6c/0x88 [ 72.749157][ C0] el1_interrupt+0x30/0x58 [ 72.749820][ C0] el1h_64_irq_handler+0x18/0x24 [ 72.750595][ C0] el1h_64_irq+0x78/0x7c [ 72.751235][ C0] __srcu_read_lock+0x4/0x13c [ 72.751982][ C0] tomoyo_inode_getattr+0x28/0x38 [ 72.752748][ C0] security_inode_getattr+0xd8/0x124 [ 72.753568][ C0] vfs_statx+0x118/0x458 [ 72.754274][ C0] __arm64_sys_newfstatat+0x10c/0x190 [ 72.755088][ C0] invoke_syscall+0x98/0x2b8 [ 72.755753][ C0] el0_svc_common+0x138/0x258 [ 72.756557][ C0] do_el0_svc+0x58/0x14c [ 72.757239][ C0] el0_svc+0x78/0x1e0 [ 72.757848][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 72.758639][ C0] el0t_64_sync+0x1a0/0x1a4 [ 72.759369][ C0] irq event stamp: 122676 [ 72.759972][ C0] hardirqs last enabled at (122675): [] kasan_quarantine_put+0xc4/0x204 [ 72.761630][ C0] hardirqs last disabled at (122676): [] enter_el1_irq_or_nmi+0x10/0x1c [ 72.763215][ C0] softirqs last enabled at (122520): [] local_bh_enable+0x10/0x34 [ 72.764678][ C0] softirqs last disabled at (122518): [] local_bh_disable+0x10/0x34 [ 72.766179][ C0] ---[ end trace 6903da8befc062c9 ]--- [ 72.768730][ T4060] Bluetooth: hci0: command 0x040f tx timeout [ 72.796471][ T4953] loop0: detected capacity change from 0 to 128 [ 72.845929][ T4953] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.847174][ T4953] Bad inode number on dev loop0: 2 is out of range [ 72.848193][ T4953] SysV FS: get root inode failed [ 72.848888][ T4953] oldfs: cannot read superblock [ 72.861130][ T4933] ------------[ cut here ]------------ [ 72.861973][ T4933] VFS: brelse: Trying to free free buffer [ 72.862862][ T4933] WARNING: CPU: 0 PID: 4933 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 72.864228][ T4933] Modules linked in: [ 72.864894][ T4933] CPU: 0 PID: 4933 Comm: udevd Tainted: G W syzkaller #0 [ 72.866134][ T4933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 72.867782][ T4933] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.869063][ T4933] pc : invalidate_bh_lru+0x128/0x234 [ 72.869915][ T4933] lr : invalidate_bh_lru+0x128/0x234 [ 72.870756][ T4933] sp : ffff80001f6d77c0 [ 72.871393][ T4933] x29: ffff80001f6d77c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 72.872642][ T4933] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 72.873917][ T4933] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28a94e8 [ 72.875160][ T4933] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 72.876322][ T4933] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 72.877553][ T4933] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 72.878714][ T4933] x11: 0000000000000002 x10: 0000000000000000 x9 : 8c364d5cc0ffe200 [ 72.879866][ T4933] x8 : 8c364d5cc0ffe200 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.881032][ T4933] x5 : ffff80001f6d70b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 72.882139][ T4933] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 72.883319][ T4933] Call trace: [ 72.883785][ T4933] invalidate_bh_lru+0x128/0x234 [ 72.884540][ T4933] smp_call_function_many_cond+0xa50/0xeb0 [ 72.885412][ T4933] on_each_cpu_cond_mask+0x5c/0xc4 [ 72.886241][ T4933] invalidate_bh_lrus+0x34/0x40 [ 72.887032][ T4933] blkdev_flush_mapping+0x168/0x31c [ 72.887805][ T4933] blkdev_put+0x490/0x6ac [ 72.888436][ T4933] blkdev_close+0x74/0xb0 [ 72.889151][ T4933] __fput+0x1c0/0x7f8 [ 72.889769][ T4933] ____fput+0x20/0x30 [ 72.890376][ T4933] task_work_run+0x12c/0x1e0 [ 72.891067][ T4933] do_notify_resume+0x24b4/0x3128 [ 72.891794][ T4933] el0_svc+0xf0/0x1e0 [ 72.892403][ T4933] el0t_64_sync_handler+0xcc/0xe4 [ 72.893186][ T4933] el0t_64_sync+0x1a0/0x1a4 [ 72.893849][ T4933] irq event stamp: 19386 [ 72.894410][ T4933] hardirqs last enabled at (19385): [] kasan_quarantine_put+0xc4/0x204 [ 72.895804][ T4933] hardirqs last disabled at (19386): [] smp_call_function_many_cond+0xa44/0xeb0 [ 72.897420][ T4933] softirqs last enabled at (19374): [] local_bh_enable+0x10/0x34 [ 72.898780][ T4933] softirqs last disabled at (19372): [] local_bh_disable+0x10/0x34 [ 72.900320][ T4933] ---[ end trace 6903da8befc062ca ]--- [ 72.947695][ T4956] loop0: detected capacity change from 0 to 128 [ 72.952982][ T4956] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 72.954063][ T4956] Bad inode number on dev loop0: 2 is out of range [ 72.957107][ T4956] SysV FS: get root inode failed [ 72.957929][ T4956] oldfs: cannot read superblock [ 72.972650][ C0] ------------[ cut here ]------------ [ 72.973548][ C0] VFS: brelse: Trying to free free buffer [ 72.974479][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 72.975915][ C0] Modules linked in: [ 72.976542][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 72.977950][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 72.979549][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 72.980865][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 72.981703][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 72.982554][ C0] sp : ffff800008007de0 [ 72.983152][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 72.984332][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 72.985496][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28a9888 [ 72.986776][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 72.988100][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 72.989403][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 72.990770][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 72.992108][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.993366][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 72.994703][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 72.996003][ C0] Call trace: [ 72.996526][ C0] invalidate_bh_lru+0x128/0x234 [ 72.997298][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 72.998222][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 72.999184][ C0] ipi_handler+0x10c/0x710 [ 72.999840][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 73.000659][ C0] handle_domain_irq+0x144/0x1fc [ 73.001339][ C0] gic_handle_irq+0x78/0x1c8 [ 73.002007][ C0] call_on_irq_stack+0x30/0x48 [ 73.002671][ C0] do_interrupt_handler+0x6c/0x88 [ 73.003353][ C0] el1_interrupt+0x30/0x58 [ 73.004027][ C0] el1h_64_irq_handler+0x18/0x24 [ 73.004723][ C0] el1h_64_irq+0x78/0x7c [ 73.005319][ C0] filter_irq_stacks+0x78/0xd8 [ 73.005993][ C0] __kasan_slab_alloc+0x98/0xcc [ 73.006701][ C0] slab_post_alloc_hook+0x74/0x408 [ 73.007440][ C0] kmem_cache_alloc+0x1e0/0x3e4 [ 73.008101][ C0] getname_flags+0xb8/0x450 [ 73.008736][ C0] __arm64_sys_mkdirat+0x80/0xa8 [ 73.009426][ C0] invoke_syscall+0x98/0x2b8 [ 73.010108][ C0] el0_svc_common+0x138/0x258 [ 73.010799][ C0] do_el0_svc+0x58/0x14c [ 73.011391][ C0] el0_svc+0x78/0x1e0 [ 73.011947][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 73.012669][ C0] el0t_64_sync+0x1a0/0x1a4 [ 73.013323][ C0] irq event stamp: 130444 [ 73.013918][ C0] hardirqs last enabled at (130443): [] el0_svc_common+0x9c/0x258 [ 73.015283][ C0] hardirqs last disabled at (130444): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.016858][ C0] softirqs last enabled at (130050): [] local_bh_enable+0x10/0x34 [ 73.018379][ C0] softirqs last disabled at (130048): [] local_bh_disable+0x10/0x34 [ 73.019927][ C0] ---[ end trace 6903da8befc062cb ]--- [ 73.045692][ T4962] loop0: detected capacity change from 0 to 128 [ 73.096582][ T4962] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.097812][ T4962] Bad inode number on dev loop0: 2 is out of range [ 73.098806][ T4962] SysV FS: get root inode failed [ 73.099493][ T4962] oldfs: cannot read superblock [ 73.109000][ T4954] ------------[ cut here ]------------ [ 73.109879][ T4954] VFS: brelse: Trying to free free buffer [ 73.110728][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 73.112071][ T4954] Modules linked in: [ 73.112647][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 73.113828][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 73.115280][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.116461][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 73.117196][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 73.118020][ T4954] sp : ffff80001fb177c0 [ 73.118632][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 73.119845][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 73.121088][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e29186b8 [ 73.122414][ T4954] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 73.123688][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 73.125000][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 73.126331][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 73.127639][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.128906][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 73.130240][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 73.131504][ T4954] Call trace: [ 73.131973][ T4954] invalidate_bh_lru+0x128/0x234 [ 73.132705][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 73.133544][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 73.134259][ T4954] invalidate_bh_lrus+0x34/0x40 [ 73.134987][ T4954] blkdev_flush_mapping+0x168/0x31c [ 73.135833][ T4954] blkdev_put+0x490/0x6ac [ 73.136464][ T4954] blkdev_close+0x74/0xb0 [ 73.137139][ T4954] __fput+0x1c0/0x7f8 [ 73.137799][ T4954] ____fput+0x20/0x30 [ 73.138484][ T4954] task_work_run+0x12c/0x1e0 [ 73.139269][ T4954] do_notify_resume+0x24b4/0x3128 [ 73.140050][ T4954] el0_svc+0xf0/0x1e0 [ 73.140630][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 73.141446][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 73.142178][ T4954] irq event stamp: 9412 [ 73.142851][ T4954] hardirqs last enabled at (9411): [] kasan_quarantine_put+0xc4/0x204 [ 73.144413][ T4954] hardirqs last disabled at (9412): [] smp_call_function_many_cond+0xa44/0xeb0 [ 73.145983][ T4954] softirqs last enabled at (9230): [] local_bh_enable+0x10/0x34 [ 73.147472][ T4954] softirqs last disabled at (9228): [] local_bh_disable+0x10/0x34 [ 73.148930][ T4954] ---[ end trace 6903da8befc062cc ]--- [ 73.197692][ T4964] loop0: detected capacity change from 0 to 128 [ 73.235827][ T4964] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.237038][ T4964] Bad inode number on dev loop0: 2 is out of range [ 73.238054][ T4964] SysV FS: get root inode failed [ 73.238847][ T4964] oldfs: cannot read superblock [ 73.248574][ C1] ------------[ cut here ]------------ [ 73.249441][ C1] VFS: brelse: Trying to free free buffer [ 73.250383][ C1] WARNING: CPU: 1 PID: 4965 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 73.251708][ C1] Modules linked in: [ 73.252268][ C1] CPU: 1 PID: 4965 Comm: syz-executor Tainted: G W syzkaller #0 [ 73.253551][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 73.254958][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.256069][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 73.256904][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 73.257742][ C1] sp : ffff800008017de0 [ 73.258380][ C1] x29: ffff800008017de0 x28: ffff0000c139d1c0 x27: 1fffe0003421c65b [ 73.259574][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 73.260789][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2918a58 [ 73.261966][ C1] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 73.263278][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 73.264538][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 73.265711][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 522923ed67208c00 [ 73.266837][ C1] x8 : 522923ed67208c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.268012][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 73.269220][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 73.270496][ C1] Call trace: [ 73.271016][ C1] invalidate_bh_lru+0x128/0x234 [ 73.271816][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 73.272713][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.273827][ C1] ipi_handler+0x10c/0x710 [ 73.274501][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 73.275383][ C1] handle_domain_irq+0x144/0x1fc [ 73.276165][ C1] gic_handle_irq+0x78/0x1c8 [ 73.276871][ C1] call_on_irq_stack+0x30/0x48 [ 73.277658][ C1] do_interrupt_handler+0x6c/0x88 [ 73.278485][ C1] el1_interrupt+0x30/0x58 [ 73.279198][ C1] el1h_64_irq_handler+0x18/0x24 [ 73.279928][ C1] el1h_64_irq+0x78/0x7c [ 73.280556][ C1] call_rcu+0x580/0x8fc [ 73.281141][ C1] put_task_struct_rcu_user+0x70/0xe0 [ 73.281917][ C1] finish_task_switch+0x350/0x6b0 [ 73.282701][ C1] schedule_tail+0x20/0x150 [ 73.283415][ C1] ret_from_fork+0x4/0x20 [ 73.284017][ C1] irq event stamp: 38 [ 73.284645][ C1] hardirqs last enabled at (37): [] call_rcu+0x570/0x8fc [ 73.286002][ C1] hardirqs last disabled at (38): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.287387][ C1] softirqs last enabled at (0): [] copy_process+0x111c/0x34ac [ 73.288673][ C1] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 73.289638][ C1] ---[ end trace 6903da8befc062cd ]--- [ 73.327162][ T4966] loop0: detected capacity change from 0 to 128 [ 73.426171][ T4966] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.427336][ T4966] Bad inode number on dev loop0: 2 is out of range [ 73.428489][ T4966] SysV FS: get root inode failed [ 73.429309][ T4966] oldfs: cannot read superblock [ 73.442398][ C0] ------------[ cut here ]------------ [ 73.443281][ C0] VFS: brelse: Trying to free free buffer [ 73.444204][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 73.445612][ C0] Modules linked in: [ 73.446330][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 73.447674][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 73.449222][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.450497][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 73.451254][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 73.451975][ C0] sp : ffff800008007de0 [ 73.452591][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 73.453849][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 73.455098][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28a9c28 [ 73.456350][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 73.457671][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 73.458903][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 73.460108][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 73.461238][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.462405][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 73.463641][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 73.464950][ C0] Call trace: [ 73.465507][ C0] invalidate_bh_lru+0x128/0x234 [ 73.466289][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 73.467196][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.468257][ C0] ipi_handler+0x10c/0x710 [ 73.468998][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 73.469806][ C0] handle_domain_irq+0x144/0x1fc [ 73.470528][ C0] gic_handle_irq+0x78/0x1c8 [ 73.471199][ C0] call_on_irq_stack+0x30/0x48 [ 73.471868][ C0] do_interrupt_handler+0x6c/0x88 [ 73.472728][ C0] el1_interrupt+0x30/0x58 [ 73.473435][ C0] el1h_64_irq_handler+0x18/0x24 [ 73.474198][ C0] el1h_64_irq+0x78/0x7c [ 73.474820][ C0] seqcount_lockdep_reader_access+0x214/0x2bc [ 73.475719][ C0] prepend_path+0x298/0xad4 [ 73.476501][ C0] d_absolute_path+0xa0/0x148 [ 73.477308][ C0] tomoyo_realpath_from_path+0x2a0/0x510 [ 73.478129][ C0] tomoyo_path_perm+0x1b4/0x440 [ 73.478974][ C0] tomoyo_path_unlink+0xa4/0xe8 [ 73.479711][ C0] security_path_unlink+0xe4/0x134 [ 73.480484][ C0] do_unlinkat+0x280/0x600 [ 73.481129][ C0] __arm64_sys_unlinkat+0xe0/0xfc [ 73.481830][ C0] invoke_syscall+0x98/0x2b8 [ 73.482503][ C0] el0_svc_common+0x138/0x258 [ 73.483152][ C0] do_el0_svc+0x58/0x14c [ 73.483778][ C0] el0_svc+0x78/0x1e0 [ 73.484333][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 73.485082][ C0] el0t_64_sync+0x1a0/0x1a4 [ 73.485823][ C0] irq event stamp: 140544 [ 73.486469][ C0] hardirqs last enabled at (140543): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 73.488097][ C0] hardirqs last disabled at (140544): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.489619][ C0] softirqs last enabled at (140172): [] local_bh_enable+0x10/0x34 [ 73.491033][ C0] softirqs last disabled at (140170): [] local_bh_disable+0x10/0x34 [ 73.492568][ C0] ---[ end trace 6903da8befc062ce ]--- [ 73.531178][ T4970] loop0: detected capacity change from 0 to 128 [ 73.534170][ T4970] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.535655][ T4970] Bad inode number on dev loop0: 2 is out of range [ 73.536661][ T4970] SysV FS: get root inode failed [ 73.537375][ T4970] oldfs: cannot read superblock [ 73.543067][ C0] ------------[ cut here ]------------ [ 73.543910][ C0] VFS: brelse: Trying to free free buffer [ 73.544852][ C0] WARNING: CPU: 0 PID: 4971 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 73.546284][ C0] Modules linked in: [ 73.546923][ C0] CPU: 0 PID: 4971 Comm: syz-executor Tainted: G W syzkaller #0 [ 73.548327][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 73.549892][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.551062][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 73.551804][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 73.552630][ C0] sp : ffff800008007de0 [ 73.553265][ C0] x29: ffff800008007de0 x28: ffff0000d3a98000 x27: 1fffe0003421845b [ 73.554462][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 73.555775][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28a9148 [ 73.557163][ C0] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 73.558421][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 73.559635][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 73.560884][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : c1e846f5183d6e00 [ 73.562111][ C0] x8 : c1e846f5183d6e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.563364][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 73.564666][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 73.565841][ C0] Call trace: [ 73.566347][ C0] invalidate_bh_lru+0x128/0x234 [ 73.567116][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 73.568016][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.569096][ C0] ipi_handler+0x10c/0x710 [ 73.569743][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 73.570548][ C0] handle_domain_irq+0x144/0x1fc [ 73.571369][ C0] gic_handle_irq+0x78/0x1c8 [ 73.572032][ C0] call_on_irq_stack+0x30/0x48 [ 73.572786][ C0] do_interrupt_handler+0x6c/0x88 [ 73.573505][ C0] el1_interrupt+0x30/0x58 [ 73.574191][ C0] el1h_64_irq_handler+0x18/0x24 [ 73.574910][ C0] el1h_64_irq+0x78/0x7c [ 73.575523][ C0] arch_local_irq_restore+0x8/0x10 [ 73.576358][ C0] ___might_sleep+0x48/0x4d4 [ 73.577032][ C0] __might_sleep+0x98/0x124 [ 73.577579][ C0] slab_pre_alloc_hook+0x58/0xec [ 73.578412][ C0] __kmalloc+0xbc/0x44c [ 73.579067][ C0] tomoyo_encode+0x274/0x4a4 [ 73.579797][ C0] tomoyo_realpath_from_path+0x4bc/0x510 [ 73.580738][ C0] tomoyo_path_perm+0x1b4/0x440 [ 73.581468][ C0] tomoyo_path_symlink+0xa8/0xec [ 73.582255][ C0] security_path_symlink+0xec/0x13c [ 73.583108][ C0] do_symlinkat+0x108/0x5a8 [ 73.583818][ C0] __arm64_sys_symlinkat+0xa4/0xbc [ 73.584604][ C0] invoke_syscall+0x98/0x2b8 [ 73.585378][ C0] el0_svc_common+0x138/0x258 [ 73.586068][ C0] do_el0_svc+0x58/0x14c [ 73.586717][ C0] el0_svc+0x78/0x1e0 [ 73.587275][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 73.588000][ C0] el0t_64_sync+0x1a0/0x1a4 [ 73.588640][ C0] irq event stamp: 676 [ 73.589229][ C0] hardirqs last enabled at (675): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 73.590791][ C0] hardirqs last disabled at (676): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.592177][ C0] softirqs last enabled at (510): [] local_bh_enable+0x10/0x34 [ 73.593691][ C0] softirqs last disabled at (508): [] local_bh_disable+0x10/0x34 [ 73.595154][ C0] ---[ end trace 6903da8befc062cf ]--- [ 73.628377][ T4972] loop0: detected capacity change from 0 to 128 [ 73.675716][ T4972] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.676947][ T4972] Bad inode number on dev loop0: 2 is out of range [ 73.677891][ T4972] SysV FS: get root inode failed [ 73.678790][ T4972] oldfs: cannot read superblock [ 73.682449][ C1] ------------[ cut here ]------------ [ 73.683269][ C1] VFS: brelse: Trying to free free buffer [ 73.684071][ C1] WARNING: CPU: 1 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 73.685502][ C1] Modules linked in: [ 73.686106][ C1] CPU: 1 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 73.687438][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 73.689039][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.690329][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 73.691118][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 73.692014][ C1] sp : ffff800008017de0 [ 73.692725][ C1] x29: ffff800008017de0 x28: ffff0000d67bd1c0 x27: 1fffe0003421c65c [ 73.694057][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 73.695317][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2918df8 [ 73.696583][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 73.697842][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 73.699052][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 73.700396][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 200a83cfaff65300 [ 73.701572][ C1] x8 : 200a83cfaff65300 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.702778][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 73.703912][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 73.705069][ C1] Call trace: [ 73.705629][ C1] invalidate_bh_lru+0x128/0x234 [ 73.706464][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 73.707399][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.708516][ C1] ipi_handler+0x10c/0x710 [ 73.709158][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 73.710009][ C1] handle_domain_irq+0x144/0x1fc [ 73.710730][ C1] gic_handle_irq+0x78/0x1c8 [ 73.711477][ C1] call_on_irq_stack+0x30/0x48 [ 73.712114][ C1] do_interrupt_handler+0x6c/0x88 [ 73.712869][ C1] el1_interrupt+0x30/0x58 [ 73.713530][ C1] el1h_64_irq_handler+0x18/0x24 [ 73.714196][ C1] el1h_64_irq+0x78/0x7c [ 73.714749][ C1] arch_local_irq_restore+0x8/0x10 [ 73.715625][ C1] ___might_sleep+0x48/0x4d4 [ 73.716366][ C1] __might_sleep+0x98/0x124 [ 73.717065][ C1] __might_fault+0x80/0x128 [ 73.717733][ C1] __arm64_sys_getdents64+0x180/0x340 [ 73.718557][ C1] invoke_syscall+0x98/0x2b8 [ 73.719211][ C1] el0_svc_common+0x138/0x258 [ 73.719867][ C1] do_el0_svc+0x58/0x14c [ 73.720454][ C1] el0_svc+0x78/0x1e0 [ 73.721097][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 73.721917][ C1] el0t_64_sync+0x1a0/0x1a4 [ 73.722606][ C1] irq event stamp: 857888 [ 73.723246][ C1] hardirqs last enabled at (857887): [] seqcount_lockdep_reader_access+0x1fc/0x2c4 [ 73.724918][ C1] hardirqs last disabled at (857888): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.726531][ C1] softirqs last enabled at (857830): [] local_bh_enable+0x10/0x34 [ 73.728070][ C1] softirqs last disabled at (857828): [] local_bh_disable+0x10/0x34 [ 73.729614][ C1] ---[ end trace 6903da8befc062d0 ]--- [ 73.774267][ T4974] loop0: detected capacity change from 0 to 128 [ 73.776664][ T4974] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.777806][ T4974] Bad inode number on dev loop0: 2 is out of range [ 73.778799][ T4974] SysV FS: get root inode failed [ 73.779553][ T4974] oldfs: cannot read superblock [ 73.796401][ C0] ------------[ cut here ]------------ [ 73.797278][ C0] VFS: brelse: Trying to free free buffer [ 73.798150][ C0] WARNING: CPU: 0 PID: 4977 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 73.799504][ C0] Modules linked in: [ 73.800074][ C0] CPU: 0 PID: 4977 Comm: syz-executor Tainted: G W syzkaller #0 [ 73.801409][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 73.802831][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.803916][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 73.804682][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 73.805461][ C0] sp : ffff800008007de0 [ 73.806049][ C0] x29: ffff800008007de0 x28: ffff0000d97fb680 x27: 1fffe0003421845c [ 73.807203][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 73.808338][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2bc3318 [ 73.809490][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 73.810600][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 73.811783][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 73.812999][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : aa062a76d3271300 [ 73.814210][ C0] x8 : aa062a76d3271300 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.815422][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 73.816703][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 73.817927][ C0] Call trace: [ 73.818433][ C0] invalidate_bh_lru+0x128/0x234 [ 73.819137][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 73.819990][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.821094][ C0] ipi_handler+0x10c/0x710 [ 73.821822][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 73.822646][ C0] handle_domain_irq+0x144/0x1fc [ 73.823345][ C0] gic_handle_irq+0x78/0x1c8 [ 73.824004][ C0] call_on_irq_stack+0x30/0x48 [ 73.824690][ C0] do_interrupt_handler+0x6c/0x88 [ 73.825404][ C0] el1_interrupt+0x30/0x58 [ 73.826016][ C0] el1h_64_irq_handler+0x18/0x24 [ 73.826773][ C0] el1h_64_irq+0x78/0x7c [ 73.827325][ C0] arch_local_irq_restore+0x8/0x10 [ 73.828104][ C0] rcu_read_lock_held+0x34/0x50 [ 73.828851][ C0] xas_next_entry+0x1d8/0x394 [ 73.829570][ C0] filemap_map_pages+0x958/0xc50 [ 73.830334][ C0] handle_mm_fault+0x19c0/0x2950 [ 73.831042][ C0] do_page_fault+0x694/0xad4 [ 73.831772][ C0] do_translation_fault+0xe0/0x130 [ 73.832479][ C0] do_mem_abort+0x6c/0x1ac [ 73.833091][ C0] el0_ia+0xe0/0x2d0 [ 73.833676][ C0] el0t_64_sync_handler+0xc0/0xe4 [ 73.834416][ C0] el0t_64_sync+0x1a0/0x1a4 [ 73.835148][ C0] irq event stamp: 598 [ 73.835768][ C0] hardirqs last enabled at (597): [] lock_page_memcg+0x110/0x234 [ 73.837264][ C0] hardirqs last disabled at (598): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.838796][ C0] softirqs last enabled at (542): [] local_bh_enable+0x10/0x34 [ 73.840194][ C0] softirqs last disabled at (540): [] local_bh_disable+0x10/0x34 [ 73.841719][ C0] ---[ end trace 6903da8befc062d1 ]--- [ 73.868468][ T4978] loop0: detected capacity change from 0 to 128 [ 73.870381][ T4978] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 73.871463][ T4978] Bad inode number on dev loop0: 2 is out of range [ 73.872404][ T4978] SysV FS: get root inode failed [ 73.873113][ T4978] oldfs: cannot read superblock [ 73.883838][ C1] ------------[ cut here ]------------ [ 73.884733][ C1] VFS: brelse: Trying to free free buffer [ 73.885670][ C1] WARNING: CPU: 1 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 73.886925][ C1] Modules linked in: [ 73.887582][ C1] CPU: 1 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 73.888821][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 73.890310][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 73.891450][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 73.892263][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 73.893062][ C1] sp : ffff800008017de0 [ 73.893635][ C1] x29: ffff800008017de0 x28: ffff0000d67bd1c0 x27: 1fffe0003421c65c [ 73.894908][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 73.896156][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2918230 [ 73.897469][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 73.898766][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 73.900004][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 73.901215][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 200a83cfaff65300 [ 73.902481][ C1] x8 : 200a83cfaff65300 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.903651][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 73.904992][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 73.906322][ C1] Call trace: [ 73.906876][ C1] invalidate_bh_lru+0x128/0x234 [ 73.907672][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 73.908675][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 73.909828][ C1] ipi_handler+0x10c/0x710 [ 73.910520][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 73.911379][ C1] handle_domain_irq+0x144/0x1fc [ 73.912173][ C1] gic_handle_irq+0x78/0x1c8 [ 73.912899][ C1] call_on_irq_stack+0x30/0x48 [ 73.913537][ C1] do_interrupt_handler+0x6c/0x88 [ 73.914360][ C1] el1_interrupt+0x30/0x58 [ 73.915072][ C1] el1h_64_irq_handler+0x18/0x24 [ 73.915861][ C1] el1h_64_irq+0x78/0x7c [ 73.916553][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 73.917431][ C1] hrtimer_try_to_cancel+0x300/0x3f0 [ 73.918275][ C1] schedule_hrtimeout_range_clock+0x194/0x340 [ 73.919248][ C1] schedule_hrtimeout_range+0x38/0x4c [ 73.920085][ C1] ep_poll+0x1328/0x1598 [ 73.920745][ C1] do_epoll_wait+0x1a0/0x218 [ 73.921481][ C1] do_epoll_pwait+0x70/0x19c [ 73.922152][ C1] __arm64_sys_epoll_pwait+0x1e0/0x234 [ 73.923088][ C1] invoke_syscall+0x98/0x2b8 [ 73.923844][ C1] el0_svc_common+0x138/0x258 [ 73.924636][ C1] do_el0_svc+0x58/0x14c [ 73.925322][ C1] el0_svc+0x78/0x1e0 [ 73.925994][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 73.926751][ C1] el0t_64_sync+0x1a0/0x1a4 [ 73.927384][ C1] irq event stamp: 863968 [ 73.928004][ C1] hardirqs last enabled at (863967): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 73.929718][ C1] hardirqs last disabled at (863968): [] enter_el1_irq_or_nmi+0x10/0x1c [ 73.931249][ C1] softirqs last enabled at (863834): [] local_bh_enable+0x10/0x34 [ 73.932717][ C1] softirqs last disabled at (863832): [] local_bh_disable+0x10/0x34 [ 73.934312][ C1] ---[ end trace 6903da8befc062d2 ]--- [ 73.986998][ T4982] loop0: detected capacity change from 0 to 128 [ 73.989095][ T136] device hsr_slave_0 left promiscuous mode [ 74.035943][ T136] device hsr_slave_1 left promiscuous mode [ 74.042053][ T4982] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.043344][ T4982] Bad inode number on dev loop0: 2 is out of range [ 74.044386][ T4982] SysV FS: get root inode failed [ 74.045585][ T4982] oldfs: cannot read superblock [ 74.053540][ C0] ------------[ cut here ]------------ [ 74.054404][ C0] VFS: brelse: Trying to free free buffer [ 74.055383][ C0] WARNING: CPU: 0 PID: 4984 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 74.056750][ C0] Modules linked in: [ 74.057381][ C0] CPU: 0 PID: 4984 Comm: syz.0.32 Tainted: G W syzkaller #0 [ 74.058624][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 74.060102][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.061266][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 74.062024][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 74.062844][ C0] sp : ffff800008007de0 [ 74.063573][ C0] x29: ffff800008007de0 x28: ffff0000c6748000 x27: 1fffe0003421845b [ 74.064830][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 74.065995][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e280b318 [ 74.067195][ C0] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 74.068312][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 74.069375][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 74.070508][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0d15556e46862400 [ 74.071738][ C0] x8 : 0d15556e46862400 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.072977][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 74.074258][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 74.075414][ C0] Call trace: [ 74.075895][ C0] invalidate_bh_lru+0x128/0x234 [ 74.076556][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 74.077404][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 74.078490][ C0] ipi_handler+0x10c/0x710 [ 74.079213][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 74.079957][ C0] handle_domain_irq+0x144/0x1fc [ 74.080674][ C0] gic_handle_irq+0x78/0x1c8 [ 74.081347][ C0] call_on_irq_stack+0x30/0x48 [ 74.082044][ C0] do_interrupt_handler+0x6c/0x88 [ 74.082684][ C0] el1_interrupt+0x30/0x58 [ 74.083314][ C0] el1h_64_irq_handler+0x18/0x24 [ 74.083954][ C0] el1h_64_irq+0x78/0x7c [ 74.084646][ C0] count_memcg_event_mm+0x1d0/0x308 [ 74.085371][ C0] handle_mm_fault+0x1a0/0x2950 [ 74.086154][ C0] do_page_fault+0x694/0xad4 [ 74.086876][ C0] do_translation_fault+0xe0/0x130 [ 74.087564][ C0] do_mem_abort+0x6c/0x1ac [ 74.088212][ C0] el0_da+0x90/0x1fc [ 74.088813][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 74.089610][ C0] el0t_64_sync+0x1a0/0x1a4 [ 74.090287][ C0] irq event stamp: 84 [ 74.090898][ C0] hardirqs last enabled at (83): [] count_memcg_event_mm+0x1b0/0x308 [ 74.092390][ C0] hardirqs last disabled at (84): [] enter_el1_irq_or_nmi+0x10/0x1c [ 74.093772][ C0] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 74.095237][ C0] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 74.096607][ C0] ---[ end trace 6903da8befc062d3 ]--- [ 74.136906][ T4984] loop0: detected capacity change from 0 to 128 [ 74.139654][ T4984] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.140873][ T4984] Bad inode number on dev loop0: 2 is out of range [ 74.141905][ T4984] SysV FS: get root inode failed [ 74.142717][ T4984] oldfs: cannot read superblock [ 74.144735][ T136] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 74.145933][ T136] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 74.147501][ T136] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 74.148659][ T136] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 74.150057][ T136] device bridge_slave_1 left promiscuous mode [ 74.151087][ T136] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.152234][ C1] ------------[ cut here ]------------ [ 74.152241][ C1] VFS: brelse: Trying to free free buffer [ 74.152286][ C1] WARNING: CPU: 1 PID: 136 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 74.152303][ C1] Modules linked in: [ 74.152310][ C1] CPU: 1 PID: 136 Comm: kworker/u4:1 Tainted: G W syzkaller #0 [ 74.152316][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 74.152320][ C1] Workqueue: netns cleanup_net [ 74.152329][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.152336][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 74.152341][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 74.152345][ C1] sp : ffff800008017de0 [ 74.152348][ C1] x29: ffff800008017de0 x28: ffff0000c2390000 x27: 1fffe0003421c65c [ 74.152358][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 74.152367][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2915c28 [ 74.152378][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010203 [ 74.152386][ C1] x17: 0000000000010203 x16: ffff8000111c8944 x15: 0000000000000063 [ 74.152394][ C1] x14: 0000000000ff0100 x13: 1ffff0000283006b x12: 0000000000ff0100 [ 74.152402][ C1] x11: 0000000000010203 x10: 0000000000010203 x9 : d12403da36391600 [ 74.152410][ C1] x8 : d12403da36391600 x7 : ffff8000082f7030 x6 : 0000000000000000 [ 74.152418][ C1] x5 : 0000000000000080 x4 : 0000000000000001 x3 : ffff80000850471c [ 74.152426][ C1] x2 : 0000000000000001 x1 : 0000000000010203 x0 : 0000000000000027 [ 74.152434][ C1] Call trace: [ 74.152436][ C1] invalidate_bh_lru+0x128/0x234 [ 74.152441][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 74.152447][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 74.152452][ C1] ipi_handler+0x10c/0x710 [ 74.152458][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 74.152463][ C1] handle_domain_irq+0x144/0x1fc [ 74.152468][ C1] gic_handle_irq+0x78/0x1c8 [ 74.152472][ C1] call_on_irq_stack+0x30/0x48 [ 74.152476][ C1] do_interrupt_handler+0x6c/0x88 [ 74.152481][ C1] el1_interrupt+0x30/0x58 [ 74.152487][ C1] el1h_64_irq_handler+0x18/0x24 [ 74.152492][ C1] el1h_64_irq+0x78/0x7c [ 74.152495][ C1] console_unlock+0xc90/0x133c [ 74.152500][ C1] vprintk_emit+0x13c/0x218 [ 74.152505][ C1] vprintk_default+0x54/0x80 [ 74.152510][ C1] vprintk+0x1e8/0x284 [ 74.152514][ C1] _printk+0xd0/0x118 [ 74.152519][ C1] br_set_state+0x26c/0x458 [ 74.152524][ C1] br_stp_disable_port+0x78/0x19c [ 74.152529][ C1] del_nbp+0x128/0x944 [ 74.152533][ C1] br_dev_delete+0x70/0x108 [ 74.152537][ C1] default_device_exit_batch+0x264/0x4a4 [ 74.152542][ C1] cleanup_net+0x644/0xa98 [ 74.152547][ C1] process_one_work+0x79c/0x1140 [ 74.152552][ C1] worker_thread+0x8f4/0x101c [ 74.152556][ C1] kthread+0x374/0x454 [ 74.152560][ C1] ret_from_fork+0x10/0x20 [ 74.152565][ C1] irq event stamp: 1424601 [ 74.152567][ C1] hardirqs last enabled at (1424600): [] console_unlock+0xc6c/0x133c [ 74.152574][ C1] hardirqs last disabled at (1424601): [] enter_el1_irq_or_nmi+0x10/0x1c [ 74.152579][ C1] softirqs last enabled at (1424588): [] dev_set_rx_mode+0x1bc/0x25c [ 74.152585][ C1] softirqs last disabled at (1424590): [] del_nbp+0x120/0x944 [ 74.152591][ C1] ---[ end trace 6903da8befc062d4 ]--- [ 74.232499][ T4986] loop0: detected capacity change from 0 to 128 [ 74.237906][ T4986] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.239041][ T4986] Bad inode number on dev loop0: 2 is out of range [ 74.244906][ T4986] SysV FS: get root inode failed [ 74.245690][ T4986] oldfs: cannot read superblock [ 74.247156][ T4954] ------------[ cut here ]------------ [ 74.248040][ T4954] VFS: brelse: Trying to free free buffer [ 74.248951][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 74.250151][ T4954] Modules linked in: [ 74.250671][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 74.251984][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 74.253453][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.254632][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 74.255404][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 74.256196][ T4954] sp : ffff80001fb177c0 [ 74.256770][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 74.258016][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 74.259261][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e280b6b8 [ 74.260532][ T4954] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 74.261654][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 74.262980][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 74.264166][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 74.265324][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.266605][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 74.267873][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 74.269126][ T4954] Call trace: [ 74.269683][ T4954] invalidate_bh_lru+0x128/0x234 [ 74.270435][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 74.271313][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 74.272016][ T4954] invalidate_bh_lrus+0x34/0x40 [ 74.272688][ T4954] blkdev_flush_mapping+0x168/0x31c [ 74.273479][ T4954] blkdev_put+0x490/0x6ac [ 74.274058][ T4954] blkdev_close+0x74/0xb0 [ 74.274677][ T4954] __fput+0x1c0/0x7f8 [ 74.275266][ T4954] ____fput+0x20/0x30 [ 74.275832][ T4954] task_work_run+0x12c/0x1e0 [ 74.276493][ T4954] do_notify_resume+0x24b4/0x3128 [ 74.277233][ T4954] el0_svc+0xf0/0x1e0 [ 74.277858][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 74.278634][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 74.279299][ T4954] irq event stamp: 51970 [ 74.279967][ T4954] hardirqs last enabled at (51969): [] kasan_quarantine_put+0xc4/0x204 [ 74.281527][ T4954] hardirqs last disabled at (51970): [] smp_call_function_many_cond+0xa44/0xeb0 [ 74.283256][ T4954] softirqs last enabled at (51762): [] local_bh_enable+0x10/0x34 [ 74.284713][ T4954] softirqs last disabled at (51760): [] local_bh_disable+0x10/0x34 [ 74.286262][ T4954] ---[ end trace 6903da8befc062d5 ]--- [ 74.288912][ T136] device bridge_slave_0 left promiscuous mode [ 74.290013][ T136] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.316822][ T4988] loop0: detected capacity change from 0 to 128 [ 74.318981][ T4988] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.320379][ T4988] Bad inode number on dev loop0: 2 is out of range [ 74.321449][ T4988] SysV FS: get root inode failed [ 74.322338][ T4988] oldfs: cannot read superblock [ 74.330125][ C0] ------------[ cut here ]------------ [ 74.331044][ C0] VFS: brelse: Trying to free free buffer [ 74.331947][ C0] WARNING: CPU: 0 PID: 4989 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 74.333239][ C0] Modules linked in: [ 74.333781][ C0] CPU: 0 PID: 4989 Comm: syz.0.35 Tainted: G W syzkaller #0 [ 74.335127][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 74.336669][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.337852][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 74.338635][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 74.339476][ C0] sp : ffff800008007de0 [ 74.340162][ C0] x29: ffff800008007de0 x28: ffff0000c6170000 x27: 1fffe0003421845c [ 74.341469][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 74.342782][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e280ba58 [ 74.344068][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 74.345445][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 74.346793][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 74.348107][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : f7541e8eb8d17500 [ 74.349439][ C0] x8 : f7541e8eb8d17500 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.350735][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 74.352046][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 74.353295][ C0] Call trace: [ 74.353799][ C0] invalidate_bh_lru+0x128/0x234 [ 74.354503][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 74.355400][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 74.356529][ C0] ipi_handler+0x10c/0x710 [ 74.357211][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 74.357947][ C0] handle_domain_irq+0x144/0x1fc [ 74.358721][ C0] gic_handle_irq+0x78/0x1c8 [ 74.359379][ C0] call_on_irq_stack+0x30/0x48 [ 74.360111][ C0] do_interrupt_handler+0x6c/0x88 [ 74.360893][ C0] el1_interrupt+0x30/0x58 [ 74.361523][ C0] el1h_64_irq_handler+0x18/0x24 [ 74.362305][ C0] el1h_64_irq+0x78/0x7c [ 74.362946][ C0] seqcount_lockdep_reader_access+0x15c/0x230 [ 74.363917][ C0] bad_range+0xa0/0x2a0 [ 74.364595][ C0] get_page_from_freelist+0x2954/0x2aa8 [ 74.365419][ C0] __alloc_pages+0x1a0/0x470 [ 74.366172][ C0] alloc_pages_vma+0x284/0x7a8 [ 74.366967][ C0] alloc_zeroed_user_highpage_movable+0x9c/0xd8 [ 74.367959][ C0] handle_mm_fault+0x1904/0x2950 [ 74.368793][ C0] do_page_fault+0x694/0xad4 [ 74.369544][ C0] do_translation_fault+0xe0/0x130 [ 74.370368][ C0] do_mem_abort+0x6c/0x1ac [ 74.371023][ C0] el0_da+0x90/0x1fc [ 74.371648][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 74.372372][ C0] el0t_64_sync+0x1a0/0x1a4 [ 74.373078][ C0] irq event stamp: 1296 [ 74.373713][ C0] hardirqs last enabled at (1295): [] seqcount_lockdep_reader_access+0x14c/0x230 [ 74.375245][ C0] hardirqs last disabled at (1296): [] enter_el1_irq_or_nmi+0x10/0x1c [ 74.376668][ C0] softirqs last enabled at (1108): [] local_bh_enable+0x10/0x34 [ 74.378065][ C0] softirqs last disabled at (1106): [] local_bh_disable+0x10/0x34 [ 74.379571][ C0] ---[ end trace 6903da8befc062d6 ]--- [ 74.417326][ T4990] loop0: detected capacity change from 0 to 128 [ 74.419790][ T4990] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.421008][ T4990] Bad inode number on dev loop0: 2 is out of range [ 74.422090][ T4990] SysV FS: get root inode failed [ 74.422898][ T4990] oldfs: cannot read superblock [ 74.424987][ T136] device veth1_macvtap left promiscuous mode [ 74.426005][ T136] device veth0_macvtap left promiscuous mode [ 74.426909][ C1] ------------[ cut here ]------------ [ 74.426916][ C1] VFS: brelse: Trying to free free buffer [ 74.426961][ C1] WARNING: CPU: 1 PID: 136 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 74.426978][ C1] Modules linked in: [ 74.426985][ C1] CPU: 1 PID: 136 Comm: kworker/u4:1 Tainted: G W syzkaller #0 [ 74.426991][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 74.426995][ C1] Workqueue: netns cleanup_net [ 74.427004][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.427011][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 74.427016][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 74.427021][ C1] sp : ffff800008017de0 [ 74.427023][ C1] x29: ffff800008017de0 x28: ffff0000c2390000 x27: 1fffe0003421c65c [ 74.427034][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 74.427042][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2915060 [ 74.427049][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010203 [ 74.427057][ C1] x17: 0000000000010203 x16: ffff8000111c8944 x15: 0000000000000063 [ 74.427065][ C1] x14: 0000000000ff0100 x13: 1ffff0000283006b x12: 0000000000ff0100 [ 74.427072][ C1] x11: 0000000000010203 x10: 0000000000010203 x9 : d12403da36391600 [ 74.427080][ C1] x8 : d12403da36391600 x7 : ffff8000082f7030 x6 : 0000000000000000 [ 74.427088][ C1] x5 : 0000000000000080 x4 : 0000000000000001 x3 : ffff80000850471c [ 74.427095][ C1] x2 : 0000000000000001 x1 : 0000000100010203 x0 : 0000000000000027 [ 74.427103][ C1] Call trace: [ 74.427105][ C1] invalidate_bh_lru+0x128/0x234 [ 74.427110][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 74.427116][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 74.427121][ C1] ipi_handler+0x10c/0x710 [ 74.427127][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 74.427132][ C1] handle_domain_irq+0x144/0x1fc [ 74.427136][ C1] gic_handle_irq+0x78/0x1c8 [ 74.427140][ C1] call_on_irq_stack+0x30/0x48 [ 74.427144][ C1] do_interrupt_handler+0x6c/0x88 [ 74.427149][ C1] el1_interrupt+0x30/0x58 [ 74.427155][ C1] el1h_64_irq_handler+0x18/0x24 [ 74.427160][ C1] el1h_64_irq+0x78/0x7c [ 74.427164][ C1] console_unlock+0xc90/0x133c [ 74.427169][ C1] vprintk_emit+0x13c/0x218 [ 74.427173][ C1] vprintk_default+0x54/0x80 [ 74.427178][ C1] vprintk+0x1e8/0x284 [ 74.427182][ C1] _printk+0xd0/0x118 [ 74.427187][ C1] __dev_set_promiscuity+0x1c4/0x508 [ 74.427191][ C1] __dev_set_rx_mode+0x13c/0x21c [ 74.427196][ C1] dev_uc_del+0xb0/0xfc [ 74.427201][ C1] macvlan_stop+0x1f4/0x35c [ 74.427207][ C1] __dev_close_many+0x2b8/0x3a8 [ 74.427211][ C1] dev_close_many+0x1e8/0x440 [ 74.427216][ C1] unregister_netdevice_many+0x3d4/0x17d0 [ 74.427221][ C1] default_device_exit_batch+0x444/0x4a4 [ 74.427226][ C1] cleanup_net+0x644/0xa98 [ 74.427230][ C1] process_one_work+0x79c/0x1140 [ 74.427235][ C1] worker_thread+0x8f4/0x101c [ 74.427240][ C1] kthread+0x374/0x454 [ 74.427244][ C1] ret_from_fork+0x10/0x20 [ 74.427249][ C1] irq event stamp: 1427867 [ 74.427251][ C1] hardirqs last enabled at (1427866): [] console_unlock+0xc6c/0x133c [ 74.427258][ C1] hardirqs last disabled at (1427867): [] enter_el1_irq_or_nmi+0x10/0x1c [ 74.427263][ C1] softirqs last enabled at (1427856): [] dev_mc_unsync+0x1b4/0x238 [ 74.427268][ C1] softirqs last disabled at (1427858): [] local_bh_disable+0x10/0x34 [ 74.427273][ C1] ---[ end trace 6903da8befc062d7 ]--- [ 74.479188][ T136] device veth1_vlan left promiscuous mode [ 74.480175][ T136] device veth0_vlan left promiscuous mode [ 74.520680][ T4992] loop0: detected capacity change from 0 to 128 [ 74.557188][ T4992] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.558256][ T4992] Bad inode number on dev loop0: 2 is out of range [ 74.564455][ T4992] SysV FS: get root inode failed [ 74.567988][ T4992] oldfs: cannot read superblock [ 74.576407][ T4954] ------------[ cut here ]------------ [ 74.577266][ T4954] VFS: brelse: Trying to free free buffer [ 74.578105][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 74.579442][ T4954] Modules linked in: [ 74.580065][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 74.581272][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 74.582897][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.584083][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 74.584883][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 74.585742][ T4954] sp : ffff80001fb177c0 [ 74.586382][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 74.587767][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 74.588981][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e280bdf8 [ 74.590130][ T4954] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 74.591272][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 74.592523][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 74.593722][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 74.594919][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.596104][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000a7281cc [ 74.597239][ T4954] x2 : ffff0001a10b3d50 x1 : 0000000100000002 x0 : 0000000000000027 [ 74.598334][ T4954] Call trace: [ 74.598827][ T4954] invalidate_bh_lru+0x128/0x234 [ 74.599596][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 74.600495][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 74.601229][ T4954] invalidate_bh_lrus+0x34/0x40 [ 74.601959][ T4954] blkdev_flush_mapping+0x168/0x31c [ 74.602713][ T4954] blkdev_put+0x490/0x6ac [ 74.603390][ T4954] blkdev_close+0x74/0xb0 [ 74.604063][ T4954] __fput+0x1c0/0x7f8 [ 74.604655][ T4954] ____fput+0x20/0x30 [ 74.605244][ T4954] task_work_run+0x12c/0x1e0 [ 74.605995][ T4954] do_notify_resume+0x24b4/0x3128 [ 74.606806][ T4954] el0_svc+0xf0/0x1e0 [ 74.607437][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 74.608275][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 74.608990][ T4954] irq event stamp: 70702 [ 74.609597][ T4954] hardirqs last enabled at (70701): [] kasan_quarantine_put+0xc4/0x204 [ 74.611081][ T4954] hardirqs last disabled at (70702): [] smp_call_function_many_cond+0xa44/0xeb0 [ 74.612548][ T4954] softirqs last enabled at (70106): [] local_bh_enable+0x10/0x34 [ 74.613917][ T4954] softirqs last disabled at (70104): [] local_bh_disable+0x10/0x34 [ 74.615286][ T4954] ---[ end trace 6903da8befc062d8 ]--- [ 74.619960][ T136] team0 (unregistering): Port device team_slave_1 removed [ 74.624152][ T136] team0 (unregistering): Port device team_slave_0 removed [ 74.629963][ T136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 74.668004][ T4994] loop0: detected capacity change from 0 to 128 [ 74.678120][ T136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 74.705755][ T4994] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.706946][ T4994] Bad inode number on dev loop0: 2 is out of range [ 74.707998][ T4994] SysV FS: get root inode failed [ 74.708770][ T4994] oldfs: cannot read superblock [ 74.718842][ T4954] ------------[ cut here ]------------ [ 74.719662][ T4954] VFS: brelse: Trying to free free buffer [ 74.720596][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 74.721883][ T4954] Modules linked in: [ 74.722447][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 74.723571][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 74.724980][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.726201][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 74.727124][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 74.727920][ T4954] sp : ffff80001fb177c0 [ 74.728587][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 74.729884][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 74.731166][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2915400 [ 74.732444][ T4954] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 74.733795][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 74.735078][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 74.736431][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 74.737705][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.738895][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 74.740088][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 74.741267][ T4954] Call trace: [ 74.741755][ T4954] invalidate_bh_lru+0x128/0x234 [ 74.742533][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 74.743459][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 74.744356][ T4954] invalidate_bh_lrus+0x34/0x40 [ 74.745182][ T4954] blkdev_flush_mapping+0x168/0x31c [ 74.745965][ T4954] blkdev_put+0x490/0x6ac [ 74.746585][ T4954] blkdev_close+0x74/0xb0 [ 74.747217][ T4954] __fput+0x1c0/0x7f8 [ 74.747870][ T4954] ____fput+0x20/0x30 [ 74.748498][ T4954] task_work_run+0x12c/0x1e0 [ 74.749264][ T4954] do_notify_resume+0x24b4/0x3128 [ 74.750099][ T4954] el0_svc+0xf0/0x1e0 [ 74.750772][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 74.751629][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 74.752351][ T4954] irq event stamp: 74074 [ 74.752945][ T4954] hardirqs last enabled at (74073): [] kasan_quarantine_put+0xc4/0x204 [ 74.754432][ T4954] hardirqs last disabled at (74074): [] smp_call_function_many_cond+0xa44/0xeb0 [ 74.756122][ T4954] softirqs last enabled at (73866): [] local_bh_enable+0x10/0x34 [ 74.757386][ T4954] softirqs last disabled at (73864): [] local_bh_disable+0x10/0x34 [ 74.758768][ T4954] ---[ end trace 6903da8befc062d9 ]--- [ 74.819650][ T4996] loop0: detected capacity change from 0 to 128 [ 74.821839][ T4996] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 74.822980][ T4996] Bad inode number on dev loop0: 2 is out of range [ 74.824040][ T4996] SysV FS: get root inode failed [ 74.824648][ T136] bond0 (unregistering): Released all slaves [ 74.825158][ T4652] Bluetooth: hci0: command 0x0419 tx timeout [ 74.827313][ T4996] oldfs: cannot read superblock [ 74.833617][ C1] ------------[ cut here ]------------ [ 74.834500][ C1] VFS: brelse: Trying to free free buffer [ 74.835494][ C1] WARNING: CPU: 1 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 74.836913][ C1] Modules linked in: [ 74.837503][ C1] CPU: 1 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 74.838834][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 74.840558][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.841801][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 74.842619][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 74.843451][ C1] sp : ffff800008017de0 [ 74.844141][ C1] x29: ffff800008017de0 x28: ffff0000da2d1b40 x27: 1fffe0003421c65c [ 74.845420][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 74.846690][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e29157a0 [ 74.847929][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 74.849247][ C1] x17: 0000000000010003 x16: ffff800008302168 x15: 00000000ffffffff [ 74.850612][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 74.851851][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 28df45644c0a0d00 [ 74.853163][ C1] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 74.854489][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff800008302278 [ 74.855792][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 74.857029][ C1] Call trace: [ 74.857563][ C1] invalidate_bh_lru+0x128/0x234 [ 74.858341][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 74.859387][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 74.860486][ C1] ipi_handler+0x10c/0x710 [ 74.861215][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 74.862095][ C1] handle_domain_irq+0x144/0x1fc [ 74.862787][ C1] gic_handle_irq+0x78/0x1c8 [ 74.863492][ C1] call_on_irq_stack+0x30/0x48 [ 74.864285][ C1] do_interrupt_handler+0x6c/0x88 [ 74.865075][ C1] el1_interrupt+0x30/0x58 [ 74.865735][ C1] el1h_64_irq_handler+0x18/0x24 [ 74.866517][ C1] el1h_64_irq+0x78/0x7c [ 74.867081][ C1] rcu_lockdep_current_cpu_online+0xf8/0x1e0 [ 74.868118][ C1] rcu_read_lock_held+0x20/0x50 [ 74.868917][ C1] get_obj_cgroup_from_current+0x2f4/0x524 [ 74.869856][ C1] slab_pre_alloc_hook+0xa8/0xec [ 74.870666][ C1] kmem_cache_alloc+0x94/0x3e4 [ 74.871424][ C1] anon_vma_fork+0x190/0x49c [ 74.872184][ C1] copy_mm+0x7bc/0x1090 [ 74.872787][ C1] copy_process+0x14d8/0x34ac [ 74.873494][ C1] kernel_clone+0x1d8/0x9d4 [ 74.874169][ C1] __arm64_sys_clone+0x138/0x190 [ 74.874956][ C1] invoke_syscall+0x98/0x2b8 [ 74.875689][ C1] el0_svc_common+0x138/0x258 [ 74.876355][ C1] do_el0_svc+0x58/0x14c [ 74.877003][ C1] el0_svc+0x78/0x1e0 [ 74.877643][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 74.878482][ C1] el0t_64_sync+0x1a0/0x1a4 [ 74.879245][ C1] irq event stamp: 173346 [ 74.879952][ C1] hardirqs last enabled at (173345): [] ___slab_alloc+0xc34/0xda8 [ 74.881431][ C1] hardirqs last disabled at (173346): [] enter_el1_irq_or_nmi+0x10/0x1c [ 74.882990][ C1] softirqs last enabled at (173214): [] local_bh_enable+0x10/0x34 [ 74.884497][ C1] softirqs last disabled at (173212): [] local_bh_disable+0x10/0x34 [ 74.886110][ C1] ---[ end trace 6903da8befc062da ]--- [ 74.927669][ T4998] loop0: detected capacity change from 0 to 128 [ 75.015643][ T4998] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.016718][ T4998] Bad inode number on dev loop0: 2 is out of range [ 75.017633][ T4998] SysV FS: get root inode failed [ 75.018419][ T4998] oldfs: cannot read superblock [ 75.036803][ T4954] ------------[ cut here ]------------ [ 75.037700][ T4954] VFS: brelse: Trying to free free buffer [ 75.038588][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.039856][ T4954] Modules linked in: [ 75.040406][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 75.041533][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.043057][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.044165][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 75.045008][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 75.045810][ T4954] sp : ffff80001fb177c0 [ 75.046432][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 75.047627][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 75.048875][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2807230 [ 75.050074][ T4954] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 75.051352][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.052676][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 75.054016][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 75.055287][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.056458][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 75.057651][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 75.058913][ T4954] Call trace: [ 75.059492][ T4954] invalidate_bh_lru+0x128/0x234 [ 75.060197][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 75.061067][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 75.061846][ T4954] invalidate_bh_lrus+0x34/0x40 [ 75.062615][ T4954] blkdev_flush_mapping+0x168/0x31c [ 75.063437][ T4954] blkdev_put+0x490/0x6ac [ 75.064113][ T4954] blkdev_close+0x74/0xb0 [ 75.064817][ T4954] __fput+0x1c0/0x7f8 [ 75.065493][ T4954] ____fput+0x20/0x30 [ 75.066119][ T4954] task_work_run+0x12c/0x1e0 [ 75.066901][ T4954] do_notify_resume+0x24b4/0x3128 [ 75.067741][ T4954] el0_svc+0xf0/0x1e0 [ 75.068407][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 75.069228][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 75.069914][ T4954] irq event stamp: 81648 [ 75.070588][ T4954] hardirqs last enabled at (81647): [] kasan_quarantine_put+0xc4/0x204 [ 75.072039][ T4954] hardirqs last disabled at (81648): [] smp_call_function_many_cond+0xa44/0xeb0 [ 75.073732][ T4954] softirqs last enabled at (81442): [] local_bh_enable+0x10/0x34 [ 75.075199][ T4954] softirqs last disabled at (81440): [] local_bh_disable+0x10/0x34 [ 75.076620][ T4954] ---[ end trace 6903da8befc062db ]--- [ 75.136699][ T5002] loop0: detected capacity change from 0 to 128 [ 75.165907][ T5002] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.167068][ T5002] Bad inode number on dev loop0: 2 is out of range [ 75.168204][ T5002] SysV FS: get root inode failed [ 75.169029][ T5002] oldfs: cannot read superblock [ 75.181369][ C0] ------------[ cut here ]------------ [ 75.182247][ C0] VFS: brelse: Trying to free free buffer [ 75.183168][ C0] WARNING: CPU: 0 PID: 5004 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.184567][ C0] Modules linked in: [ 75.185172][ C0] CPU: 0 PID: 5004 Comm: syz.0.42 Tainted: G W syzkaller #0 [ 75.186474][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.188041][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.189220][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 75.190053][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 75.190910][ C0] sp : ffff800008007de0 [ 75.191576][ C0] x29: ffff800008007de0 x28: ffff0000d607b680 x27: 1fffe0003421845c [ 75.192879][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 75.194143][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28075d0 [ 75.195335][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 75.196642][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.197985][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 75.199256][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 5b0a03653dde0700 [ 75.200530][ C0] x8 : 5b0a03653dde0700 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.201729][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 75.202944][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 75.204225][ C0] Call trace: [ 75.204693][ C0] invalidate_bh_lru+0x128/0x234 [ 75.205452][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 75.206375][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.207409][ C0] ipi_handler+0x10c/0x710 [ 75.208119][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 75.208974][ C0] handle_domain_irq+0x144/0x1fc [ 75.209710][ C0] gic_handle_irq+0x78/0x1c8 [ 75.210402][ C0] call_on_irq_stack+0x30/0x48 [ 75.211127][ C0] do_interrupt_handler+0x6c/0x88 [ 75.211785][ C0] el1_interrupt+0x30/0x58 [ 75.212448][ C0] el1h_64_irq_handler+0x18/0x24 [ 75.213218][ C0] el1h_64_irq+0x78/0x7c [ 75.213844][ C0] lock_page_memcg+0x120/0x234 [ 75.214557][ C0] page_remove_rmap+0x3c/0xfd0 [ 75.215272][ C0] unmap_page_range+0xbb4/0x1958 [ 75.215990][ C0] unmap_single_vma+0x13c/0x1e4 [ 75.216720][ C0] unmap_vmas+0x104/0x200 [ 75.217451][ C0] exit_mmap+0x2a8/0x4e0 [ 75.218131][ C0] __mmput+0xec/0x3b8 [ 75.218741][ C0] mmput+0x80/0xc8 [ 75.219325][ C0] exit_mm+0x4a0/0x684 [ 75.219968][ C0] do_exit+0x4ec/0x1f58 [ 75.220600][ C0] do_group_exit+0x100/0x268 [ 75.221271][ C0] get_signal+0x73c/0x1340 [ 75.221933][ C0] do_notify_resume+0x35c/0x3128 [ 75.222700][ C0] el0_svc+0xf0/0x1e0 [ 75.223298][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 75.224101][ C0] el0t_64_sync+0x1a0/0x1a4 [ 75.224821][ C0] irq event stamp: 1362 [ 75.225464][ C0] hardirqs last enabled at (1361): [] lock_page_memcg+0x110/0x234 [ 75.226993][ C0] hardirqs last disabled at (1362): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.228609][ C0] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 75.230065][ C0] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 75.231464][ C0] ---[ end trace 6903da8befc062dc ]--- [ 75.280994][ T5006] loop0: detected capacity change from 0 to 128 [ 75.284019][ T5006] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.286748][ T5006] Bad inode number on dev loop0: 2 is out of range [ 75.287843][ T5006] SysV FS: get root inode failed [ 75.288928][ T5006] oldfs: cannot read superblock [ 75.294868][ C0] ------------[ cut here ]------------ [ 75.295688][ C0] VFS: brelse: Trying to free free buffer [ 75.296604][ C0] WARNING: CPU: 0 PID: 3646 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.297954][ C0] Modules linked in: [ 75.298564][ C0] CPU: 0 PID: 3646 Comm: syslogd Tainted: G W syzkaller #0 [ 75.299909][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.301533][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.302784][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 75.303579][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 75.304323][ C0] sp : ffff800008007de0 [ 75.304878][ C0] x29: ffff800008007de0 x28: ffff0000d5b9d1c0 x27: 1fffe0003421845b [ 75.306135][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 75.307509][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2807970 [ 75.308878][ C0] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 75.310091][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.311397][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 75.312729][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 11048b5c94d15600 [ 75.313996][ C0] x8 : 11048b5c94d15600 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.315306][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 75.316462][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 75.317616][ C0] Call trace: [ 75.318115][ C0] invalidate_bh_lru+0x128/0x234 [ 75.318902][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 75.319841][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.320884][ C0] ipi_handler+0x10c/0x710 [ 75.321536][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 75.322416][ C0] handle_domain_irq+0x144/0x1fc [ 75.323155][ C0] gic_handle_irq+0x78/0x1c8 [ 75.323812][ C0] call_on_irq_stack+0x30/0x48 [ 75.324497][ C0] do_interrupt_handler+0x6c/0x88 [ 75.325290][ C0] el1_interrupt+0x30/0x58 [ 75.325965][ C0] el1h_64_irq_handler+0x18/0x24 [ 75.326804][ C0] el1h_64_irq+0x78/0x7c [ 75.327560][ C0] kasan_quarantine_put+0xd4/0x204 [ 75.328323][ C0] ____kasan_slab_free+0x124/0x164 [ 75.329074][ C0] __kasan_slab_free+0x18/0x28 [ 75.329793][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 75.330637][ C0] kfree+0x170/0x40c [ 75.331294][ C0] skb_release_data+0x3c0/0x5ac [ 75.332019][ C0] consume_skb+0x138/0x33c [ 75.332705][ C0] skb_free_datagram+0x30/0xe4 [ 75.333478][ C0] __unix_dgram_recvmsg+0x7e4/0xb28 [ 75.334358][ C0] unix_dgram_recvmsg+0xd4/0xec [ 75.335159][ C0] sock_read_iter+0x23c/0x2dc [ 75.335915][ C0] vfs_read+0x7c4/0xa10 [ 75.336568][ C0] ksys_read+0x120/0x210 [ 75.337214][ C0] __arm64_sys_read+0x7c/0x90 [ 75.337870][ C0] invoke_syscall+0x98/0x2b8 [ 75.338521][ C0] el0_svc_common+0x138/0x258 [ 75.339192][ C0] do_el0_svc+0x58/0x14c [ 75.339785][ C0] el0_svc+0x78/0x1e0 [ 75.340393][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 75.341188][ C0] el0t_64_sync+0x1a0/0x1a4 [ 75.341893][ C0] irq event stamp: 65896 [ 75.342600][ C0] hardirqs last enabled at (65895): [] kasan_quarantine_put+0xc4/0x204 [ 75.344275][ C0] hardirqs last disabled at (65896): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.345770][ C0] softirqs last enabled at (65876): [] local_bh_enable+0x10/0x34 [ 75.347102][ C0] softirqs last disabled at (65874): [] local_bh_disable+0x10/0x34 [ 75.348473][ C0] ---[ end trace 6903da8befc062dd ]--- [ 75.406806][ T5008] loop0: detected capacity change from 0 to 128 [ 75.536392][ T5008] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.537541][ T5008] Bad inode number on dev loop0: 2 is out of range [ 75.538544][ T5008] SysV FS: get root inode failed [ 75.539331][ T5008] oldfs: cannot read superblock [ 75.546302][ C1] ------------[ cut here ]------------ [ 75.547208][ C1] VFS: brelse: Trying to free free buffer [ 75.548118][ C1] WARNING: CPU: 1 PID: 805 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.549460][ C1] Modules linked in: [ 75.550073][ C1] CPU: 1 PID: 805 Comm: kworker/u4:4 Tainted: G W syzkaller #0 [ 75.551399][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.552960][ C1] Workqueue: events_power_efficient wg_ratelimiter_gc_entries [ 75.554208][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.555546][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 75.556375][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 75.557256][ C1] sp : ffff800008017de0 [ 75.557950][ C1] x29: ffff800008017de0 x28: ffff0000c820d1c0 x27: 1fffe0003421c65c [ 75.559329][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 75.560652][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000d01a4060 [ 75.561991][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 75.563326][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.564648][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 75.565905][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : bd36a2a37df60600 [ 75.567199][ C1] x8 : bd36a2a37df60600 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.568447][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 75.569723][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 75.570950][ C1] Call trace: [ 75.571529][ C1] invalidate_bh_lru+0x128/0x234 [ 75.572316][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 75.573289][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.574376][ C1] ipi_handler+0x10c/0x710 [ 75.575083][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 75.575915][ C1] handle_domain_irq+0x144/0x1fc [ 75.576639][ C1] gic_handle_irq+0x78/0x1c8 [ 75.577398][ C1] call_on_irq_stack+0x30/0x48 [ 75.578239][ C1] do_interrupt_handler+0x6c/0x88 [ 75.579106][ C1] el1_interrupt+0x30/0x58 [ 75.579808][ C1] el1h_64_irq_handler+0x18/0x24 [ 75.580608][ C1] el1h_64_irq+0x78/0x7c [ 75.581302][ C1] arch_local_irq_restore+0x8/0x10 [ 75.582192][ C1] ___might_sleep+0x48/0x4d4 [ 75.582928][ C1] wg_ratelimiter_gc_entries+0x350/0x3f0 [ 75.583823][ C1] process_one_work+0x79c/0x1140 [ 75.584665][ C1] worker_thread+0x8f4/0x101c [ 75.585435][ C1] kthread+0x374/0x454 [ 75.586084][ C1] ret_from_fork+0x10/0x20 [ 75.586764][ C1] irq event stamp: 406726 [ 75.587447][ C1] hardirqs last enabled at (406725): [] seqcount_lockdep_reader_access+0x1fc/0x2c4 [ 75.589231][ C1] hardirqs last disabled at (406726): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.590834][ C1] softirqs last enabled at (406600): [] ieee80211_ibss_work+0x2a4/0xd60 [ 75.592457][ C1] softirqs last disabled at (406598): [] ieee80211_ibss_work+0xd0/0xd60 [ 75.594063][ C1] ---[ end trace 6903da8befc062de ]--- [ 75.638633][ T5010] loop0: detected capacity change from 0 to 128 [ 75.645890][ T5010] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.646982][ T5010] Bad inode number on dev loop0: 2 is out of range [ 75.647917][ T5010] SysV FS: get root inode failed [ 75.648630][ T5010] oldfs: cannot read superblock [ 75.652727][ C0] ------------[ cut here ]------------ [ 75.653583][ C0] VFS: brelse: Trying to free free buffer [ 75.654516][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.655836][ C0] Modules linked in: [ 75.656357][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 75.657673][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.659119][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.660178][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 75.660982][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 75.661782][ C0] sp : ffff800008007de0 [ 75.662383][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 75.663650][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 75.664781][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2807d10 [ 75.666058][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 75.667280][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.668713][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 75.670011][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 75.671287][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.672491][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 75.673731][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 75.674940][ C0] Call trace: [ 75.675411][ C0] invalidate_bh_lru+0x128/0x234 [ 75.676196][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 75.677087][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.678054][ C0] ipi_handler+0x10c/0x710 [ 75.678707][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 75.679565][ C0] handle_domain_irq+0x144/0x1fc [ 75.680340][ C0] gic_handle_irq+0x78/0x1c8 [ 75.681061][ C0] call_on_irq_stack+0x30/0x48 [ 75.681773][ C0] do_interrupt_handler+0x6c/0x88 [ 75.682537][ C0] el1_interrupt+0x30/0x58 [ 75.683219][ C0] el1h_64_irq_handler+0x18/0x24 [ 75.683966][ C0] el1h_64_irq+0x78/0x7c [ 75.684591][ C0] __sanitizer_cov_trace_const_cmp4+0xc4/0xc8 [ 75.685460][ C0] tomoyo_check_acl+0x11c/0x378 [ 75.686167][ C0] tomoyo_path_permission+0x164/0x310 [ 75.686937][ C0] tomoyo_path_perm+0x2e0/0x440 [ 75.687610][ C0] tomoyo_path_rmdir+0xa4/0xe8 [ 75.688346][ C0] security_path_rmdir+0xe4/0x134 [ 75.689117][ C0] do_rmdir+0x1d0/0x634 [ 75.689707][ C0] __arm64_sys_unlinkat+0xcc/0xfc [ 75.690433][ C0] invoke_syscall+0x98/0x2b8 [ 75.691082][ C0] el0_svc_common+0x138/0x258 [ 75.691834][ C0] do_el0_svc+0x58/0x14c [ 75.692463][ C0] el0_svc+0x78/0x1e0 [ 75.693036][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 75.693744][ C0] el0t_64_sync+0x1a0/0x1a4 [ 75.694447][ C0] irq event stamp: 188828 [ 75.695061][ C0] hardirqs last enabled at (188827): [] kasan_quarantine_put+0xc4/0x204 [ 75.696598][ C0] hardirqs last disabled at (188828): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.698025][ C0] softirqs last enabled at (188300): [] local_bh_enable+0x10/0x34 [ 75.699413][ C0] softirqs last disabled at (188298): [] local_bh_disable+0x10/0x34 [ 75.700772][ C0] ---[ end trace 6903da8befc062df ]--- [ 75.745025][ T5012] loop0: detected capacity change from 0 to 128 [ 75.747166][ T5012] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.748292][ T5012] Bad inode number on dev loop0: 2 is out of range [ 75.749309][ T5012] SysV FS: get root inode failed [ 75.750079][ T5012] oldfs: cannot read superblock [ 75.753697][ C1] ------------[ cut here ]------------ [ 75.754553][ C1] VFS: brelse: Trying to free free buffer [ 75.755506][ C1] WARNING: CPU: 1 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.756757][ C1] Modules linked in: [ 75.757343][ C1] CPU: 1 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 75.758744][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.760400][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.761625][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 75.762503][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 75.763314][ C1] sp : ffff800008017de0 [ 75.763940][ C1] x29: ffff800008017de0 x28: ffff0000da2d1b40 x27: 1fffe0003421c65c [ 75.765049][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 75.766350][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000d01a4400 [ 75.767679][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 75.768981][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.770196][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 75.771423][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 75.772641][ C1] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.773946][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 75.775172][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 75.776509][ C1] Call trace: [ 75.777044][ C1] invalidate_bh_lru+0x128/0x234 [ 75.777828][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 75.778744][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.779885][ C1] ipi_handler+0x10c/0x710 [ 75.780595][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 75.781377][ C1] handle_domain_irq+0x144/0x1fc [ 75.782088][ C1] gic_handle_irq+0x78/0x1c8 [ 75.782828][ C1] call_on_irq_stack+0x30/0x48 [ 75.783596][ C1] do_interrupt_handler+0x6c/0x88 [ 75.784363][ C1] el1_interrupt+0x30/0x58 [ 75.784990][ C1] el1h_64_irq_handler+0x18/0x24 [ 75.785792][ C1] el1h_64_irq+0x78/0x7c [ 75.786451][ C1] nd_jump_root+0x298/0x3cc [ 75.787151][ C1] path_init+0x348/0xed8 [ 75.787883][ C1] path_openat+0x12c/0x26e4 [ 75.788570][ C1] do_filp_open+0x164/0x330 [ 75.789377][ C1] do_sys_openat2+0x128/0x3d8 [ 75.790121][ C1] __arm64_sys_openat+0x120/0x154 [ 75.790921][ C1] invoke_syscall+0x98/0x2b8 [ 75.791688][ C1] el0_svc_common+0x138/0x258 [ 75.792430][ C1] do_el0_svc+0x58/0x14c [ 75.793004][ C1] el0_svc+0x78/0x1e0 [ 75.793591][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 75.794284][ C1] el0t_64_sync+0x1a0/0x1a4 [ 75.794888][ C1] irq event stamp: 191282 [ 75.795527][ C1] hardirqs last enabled at (191281): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 75.797023][ C1] hardirqs last disabled at (191282): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.798750][ C1] softirqs last enabled at (190608): [] local_bh_enable+0x10/0x34 [ 75.800112][ C1] softirqs last disabled at (190606): [] local_bh_disable+0x10/0x34 [ 75.801587][ C1] ---[ end trace 6903da8befc062e0 ]--- [ 75.832442][ T5014] loop0: detected capacity change from 0 to 128 [ 75.835252][ T5014] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.836399][ T5014] Bad inode number on dev loop0: 2 is out of range [ 75.837319][ T5014] SysV FS: get root inode failed [ 75.838027][ T5014] oldfs: cannot read superblock [ 75.848813][ T5016] ------------[ cut here ]------------ [ 75.849602][ T5016] VFS: brelse: Trying to free free buffer [ 75.850468][ T5016] WARNING: CPU: 0 PID: 5016 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.851791][ T5016] Modules linked in: [ 75.852422][ T5016] CPU: 0 PID: 5016 Comm: syz.0.48 Tainted: G W syzkaller #0 [ 75.853674][ T5016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.855102][ T5016] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.856175][ T5016] pc : invalidate_bh_lru+0x128/0x234 [ 75.856896][ T5016] lr : invalidate_bh_lru+0x128/0x234 [ 75.857645][ T5016] sp : ffff80001ff677c0 [ 75.858201][ T5016] x29: ffff80001ff677c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 75.859347][ T5016] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 75.860592][ T5016] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2804148 [ 75.861846][ T5016] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 75.863101][ T5016] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.864351][ T5016] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 75.865579][ T5016] x11: 0000000000000002 x10: 0000000000000000 x9 : 8315068dbabbd700 [ 75.866848][ T5016] x8 : 8315068dbabbd700 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.868019][ T5016] x5 : ffff80001ff670b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 75.869190][ T5016] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 75.870388][ T5016] Call trace: [ 75.870846][ T5016] invalidate_bh_lru+0x128/0x234 [ 75.871603][ T5016] smp_call_function_many_cond+0xa50/0xeb0 [ 75.872509][ T5016] on_each_cpu_cond_mask+0x5c/0xc4 [ 75.873302][ T5016] invalidate_bh_lrus+0x34/0x40 [ 75.874092][ T5016] blkdev_flush_mapping+0x168/0x31c [ 75.874842][ T5016] blkdev_put+0x490/0x6ac [ 75.875472][ T5016] blkdev_close+0x74/0xb0 [ 75.876086][ T5016] __fput+0x1c0/0x7f8 [ 75.876731][ T5016] ____fput+0x20/0x30 [ 75.877379][ T5016] task_work_run+0x12c/0x1e0 [ 75.878090][ T5016] do_notify_resume+0x24b4/0x3128 [ 75.878908][ T5016] el0_svc+0xf0/0x1e0 [ 75.879590][ T5016] el0t_64_sync_handler+0xcc/0xe4 [ 75.880399][ T5016] el0t_64_sync+0x1a0/0x1a4 [ 75.881127][ T5016] irq event stamp: 662 [ 75.881737][ T5016] hardirqs last enabled at (661): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 75.883335][ T5016] hardirqs last disabled at (662): [] smp_call_function_many_cond+0xa44/0xeb0 [ 75.884959][ T5016] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 75.886401][ T5016] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 75.887861][ T5016] ---[ end trace 6903da8befc062e1 ]--- [ 75.926654][ T5018] loop0: detected capacity change from 0 to 128 [ 75.928711][ T5018] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.929848][ T5018] Bad inode number on dev loop0: 2 is out of range [ 75.930865][ T5018] SysV FS: get root inode failed [ 75.931643][ T5018] oldfs: cannot read superblock [ 75.939701][ C0] ------------[ cut here ]------------ [ 75.940545][ C0] VFS: brelse: Trying to free free buffer [ 75.941421][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.942753][ C0] Modules linked in: [ 75.943325][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 75.944775][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.946342][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.947575][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 75.948420][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 75.949250][ C0] sp : ffff800008007de0 [ 75.949904][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 75.951092][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 75.952281][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28044e8 [ 75.953461][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 75.954654][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.955872][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 75.957123][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 75.958451][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.959652][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 75.960977][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 75.962290][ C0] Call trace: [ 75.962828][ C0] invalidate_bh_lru+0x128/0x234 [ 75.963624][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 75.964644][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 75.965810][ C0] ipi_handler+0x10c/0x710 [ 75.966488][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 75.967371][ C0] handle_domain_irq+0x144/0x1fc [ 75.968237][ C0] gic_handle_irq+0x78/0x1c8 [ 75.968961][ C0] call_on_irq_stack+0x30/0x48 [ 75.969691][ C0] do_interrupt_handler+0x6c/0x88 [ 75.970450][ C0] el1_interrupt+0x30/0x58 [ 75.971120][ C0] el1h_64_irq_handler+0x18/0x24 [ 75.971853][ C0] el1h_64_irq+0x78/0x7c [ 75.972555][ C0] alloc_counters+0x3f8/0x7a4 [ 75.973256][ C0] do_arpt_get_ctl+0xab8/0x12a4 [ 75.974016][ C0] nf_getsockopt+0x264/0x284 [ 75.974817][ C0] ip_getsockopt+0xffc/0x158c [ 75.975543][ C0] tcp_getsockopt+0x208/0x2e78 [ 75.976235][ C0] sock_common_getsockopt+0xa8/0xc4 [ 75.977038][ C0] __sys_getsockopt+0x1b8/0x250 [ 75.977826][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 75.978640][ C0] invoke_syscall+0x98/0x2b8 [ 75.979376][ C0] el0_svc_common+0x138/0x258 [ 75.980099][ C0] do_el0_svc+0x58/0x14c [ 75.980743][ C0] el0_svc+0x78/0x1e0 [ 75.981348][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 75.982128][ C0] el0t_64_sync+0x1a0/0x1a4 [ 75.982801][ C0] irq event stamp: 198288 [ 75.983405][ C0] hardirqs last enabled at (198287): [] alloc_counters+0x3d4/0x7a4 [ 75.984882][ C0] hardirqs last disabled at (198288): [] enter_el1_irq_or_nmi+0x10/0x1c [ 75.986486][ C0] softirqs last enabled at (198272): [] release_sock+0x1d0/0x258 [ 75.987927][ C0] softirqs last disabled at (198270): [] release_sock+0x34/0x258 [ 75.989266][ C0] ---[ end trace 6903da8befc062e2 ]--- [ 76.017185][ T5020] loop0: detected capacity change from 0 to 128 [ 76.021040][ T5020] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.022174][ T5020] Bad inode number on dev loop0: 2 is out of range [ 76.023207][ T5020] SysV FS: get root inode failed [ 76.024012][ T5020] oldfs: cannot read superblock [ 76.032117][ C1] ------------[ cut here ]------------ [ 76.032962][ C1] VFS: brelse: Trying to free free buffer [ 76.033848][ C1] WARNING: CPU: 1 PID: 5021 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.035183][ C1] Modules linked in: [ 76.035754][ C1] CPU: 1 PID: 5021 Comm: syz-executor Tainted: G W syzkaller #0 [ 76.037198][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.038788][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.040142][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 76.040967][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 76.041698][ C1] sp : ffff800008017de0 [ 76.042425][ C1] x29: ffff800008017de0 x28: ffff0000d610d1c0 x27: 1fffe0003421c65c [ 76.043790][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 76.045130][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000d01a47a0 [ 76.046342][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 76.047505][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.048859][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.050254][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 9ad5520871bd1300 [ 76.051601][ C1] x8 : 9ad5520871bd1300 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.052872][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.054162][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 76.055462][ C1] Call trace: [ 76.055994][ C1] invalidate_bh_lru+0x128/0x234 [ 76.056718][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 76.057592][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.058801][ C1] ipi_handler+0x10c/0x710 [ 76.059470][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 76.060307][ C1] handle_domain_irq+0x144/0x1fc [ 76.061107][ C1] gic_handle_irq+0x78/0x1c8 [ 76.061801][ C1] call_on_irq_stack+0x30/0x48 [ 76.062550][ C1] do_interrupt_handler+0x6c/0x88 [ 76.063332][ C1] el1_interrupt+0x30/0x58 [ 76.063996][ C1] el1h_64_irq_handler+0x18/0x24 [ 76.064749][ C1] el1h_64_irq+0x78/0x7c [ 76.065334][ C1] lock_page_memcg+0x120/0x234 [ 76.066166][ C1] page_add_file_rmap+0x148/0x8e4 [ 76.066908][ C1] do_set_pte+0x394/0x4e0 [ 76.067587][ C1] filemap_map_pages+0x9c4/0xc50 [ 76.068309][ C1] handle_mm_fault+0x19c0/0x2950 [ 76.069059][ C1] do_page_fault+0x694/0xad4 [ 76.069752][ C1] do_translation_fault+0xe0/0x130 [ 76.070576][ C1] do_mem_abort+0x6c/0x1ac [ 76.071291][ C1] el0_ia+0xe0/0x2d0 [ 76.071925][ C1] el0t_64_sync_handler+0xc0/0xe4 [ 76.072743][ C1] el0t_64_sync+0x1a0/0x1a4 [ 76.073474][ C1] irq event stamp: 390 [ 76.074118][ C1] hardirqs last enabled at (389): [] lock_page_memcg+0x110/0x234 [ 76.075675][ C1] hardirqs last disabled at (390): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.077197][ C1] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 76.078649][ C1] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 76.080148][ C1] ---[ end trace 6903da8befc062e3 ]--- [ 76.116996][ T5022] loop0: detected capacity change from 0 to 128 [ 76.119037][ T5022] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.120270][ T5022] Bad inode number on dev loop0: 2 is out of range [ 76.121302][ T5022] SysV FS: get root inode failed [ 76.122106][ T5022] oldfs: cannot read superblock [ 76.126337][ C0] ------------[ cut here ]------------ [ 76.127138][ C0] VFS: brelse: Trying to free free buffer [ 76.128008][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.129233][ C0] Modules linked in: [ 76.129771][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 76.131045][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.132427][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.133644][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 76.134476][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 76.135253][ C0] sp : ffff800008007de0 [ 76.135900][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 76.137157][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 76.138496][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2804888 [ 76.139761][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 76.141090][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.142387][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.143691][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 76.145022][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.146346][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.147720][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 76.149004][ C0] Call trace: [ 76.149542][ C0] invalidate_bh_lru+0x128/0x234 [ 76.150288][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 76.151250][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.152398][ C0] ipi_handler+0x10c/0x710 [ 76.153159][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 76.154021][ C0] handle_domain_irq+0x144/0x1fc [ 76.154773][ C0] gic_handle_irq+0x78/0x1c8 [ 76.155436][ C0] call_on_irq_stack+0x30/0x48 [ 76.156118][ C0] do_interrupt_handler+0x6c/0x88 [ 76.156917][ C0] el1_interrupt+0x30/0x58 [ 76.157637][ C0] el1h_64_irq_handler+0x18/0x24 [ 76.158438][ C0] el1h_64_irq+0x78/0x7c [ 76.159082][ C0] __sanitizer_cov_trace_pc+0x10/0xac [ 76.159946][ C0] unwind_frame+0x3a0/0x668 [ 76.160609][ C0] arch_stack_walk+0x200/0x2b4 [ 76.161346][ C0] stack_trace_save+0x94/0xd8 [ 76.161990][ C0] kasan_set_track+0x4c/0x84 [ 76.162634][ C0] kasan_set_free_info+0x28/0x4c [ 76.163340][ C0] ____kasan_slab_free+0x118/0x164 [ 76.164173][ C0] __kasan_slab_free+0x18/0x28 [ 76.164892][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 76.165786][ C0] kfree+0x170/0x40c [ 76.166381][ C0] tomoyo_realpath_from_path+0x4c8/0x510 [ 76.167256][ C0] tomoyo_path_perm+0x1b4/0x440 [ 76.167975][ C0] tomoyo_path_unlink+0xa4/0xe8 [ 76.168762][ C0] security_path_unlink+0xe4/0x134 [ 76.169505][ C0] do_unlinkat+0x280/0x600 [ 76.170138][ C0] __arm64_sys_unlinkat+0xe0/0xfc [ 76.170947][ C0] invoke_syscall+0x98/0x2b8 [ 76.171655][ C0] el0_svc_common+0x138/0x258 [ 76.172378][ C0] do_el0_svc+0x58/0x14c [ 76.173020][ C0] el0_svc+0x78/0x1e0 [ 76.173603][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 76.174335][ C0] el0t_64_sync+0x1a0/0x1a4 [ 76.174966][ C0] irq event stamp: 202246 [ 76.175584][ C0] hardirqs last enabled at (202245): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 76.177146][ C0] hardirqs last disabled at (202246): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.178585][ C0] softirqs last enabled at (201738): [] local_bh_enable+0x10/0x34 [ 76.179935][ C0] softirqs last disabled at (201736): [] local_bh_disable+0x10/0x34 [ 76.181443][ C0] ---[ end trace 6903da8befc062e4 ]--- [ 76.212165][ T5024] loop0: detected capacity change from 0 to 128 [ 76.295992][ T5024] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.297153][ T5024] Bad inode number on dev loop0: 2 is out of range [ 76.298026][ T5024] SysV FS: get root inode failed [ 76.298759][ T5024] oldfs: cannot read superblock [ 76.312488][ T4954] ------------[ cut here ]------------ [ 76.313380][ T4954] VFS: brelse: Trying to free free buffer [ 76.314335][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.315675][ T4954] Modules linked in: [ 76.316310][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 76.317557][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.319070][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.320230][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 76.320951][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 76.321722][ T4954] sp : ffff80001fb177c0 [ 76.322322][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 76.323457][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 76.324562][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2804c28 [ 76.325766][ T4954] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 76.326874][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.328057][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.329225][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 76.330402][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.331574][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.332673][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.333744][ T4954] Call trace: [ 76.334217][ T4954] invalidate_bh_lru+0x128/0x234 [ 76.334942][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 76.335737][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.336535][ T4954] invalidate_bh_lrus+0x34/0x40 [ 76.337210][ T4954] blkdev_flush_mapping+0x168/0x31c [ 76.337919][ T4954] blkdev_put+0x490/0x6ac [ 76.338551][ T4954] blkdev_close+0x74/0xb0 [ 76.339141][ T4954] __fput+0x1c0/0x7f8 [ 76.339738][ T4954] ____fput+0x20/0x30 [ 76.340300][ T4954] task_work_run+0x12c/0x1e0 [ 76.341003][ T4954] do_notify_resume+0x24b4/0x3128 [ 76.341688][ T4954] el0_svc+0xf0/0x1e0 [ 76.342306][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 76.342960][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 76.343524][ T4954] irq event stamp: 130524 [ 76.344186][ T4954] hardirqs last enabled at (130523): [] kasan_quarantine_put+0xc4/0x204 [ 76.345689][ T4954] hardirqs last disabled at (130524): [] smp_call_function_many_cond+0xa44/0xeb0 [ 76.347277][ T4954] softirqs last enabled at (130306): [] local_bh_enable+0x10/0x34 [ 76.348649][ T4954] softirqs last disabled at (130304): [] local_bh_disable+0x10/0x34 [ 76.350016][ T4954] ---[ end trace 6903da8befc062e5 ]--- [ 76.397196][ T5028] loop0: detected capacity change from 0 to 128 [ 76.399895][ T5028] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.401042][ T5028] Bad inode number on dev loop0: 2 is out of range [ 76.402003][ T5028] SysV FS: get root inode failed [ 76.402835][ T5028] oldfs: cannot read superblock [ 76.411875][ T4954] ------------[ cut here ]------------ [ 76.412664][ T4954] VFS: brelse: Trying to free free buffer [ 76.413566][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.414880][ T4954] Modules linked in: [ 76.415496][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 76.416715][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.418187][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.419417][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 76.420212][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 76.420998][ T4954] sp : ffff80001fb177c0 [ 76.421668][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 76.422909][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 76.424145][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000d014ba58 [ 76.425325][ T4954] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 76.426586][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.427860][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.429125][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 76.430383][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.431616][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.432827][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.434022][ T4954] Call trace: [ 76.434557][ T4954] invalidate_bh_lru+0x128/0x234 [ 76.435353][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 76.436257][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.437112][ T4954] invalidate_bh_lrus+0x34/0x40 [ 76.437947][ T4954] blkdev_flush_mapping+0x168/0x31c [ 76.438736][ T4954] blkdev_put+0x490/0x6ac [ 76.439428][ T4954] blkdev_close+0x74/0xb0 [ 76.440113][ T4954] __fput+0x1c0/0x7f8 [ 76.440709][ T4954] ____fput+0x20/0x30 [ 76.441324][ T4954] task_work_run+0x12c/0x1e0 [ 76.442073][ T4954] do_notify_resume+0x24b4/0x3128 [ 76.442847][ T4954] el0_svc+0xf0/0x1e0 [ 76.443486][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 76.444316][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 76.445030][ T4954] irq event stamp: 137590 [ 76.445715][ T4954] hardirqs last enabled at (137589): [] kasan_quarantine_put+0xc4/0x204 [ 76.447257][ T4954] hardirqs last disabled at (137590): [] smp_call_function_many_cond+0xa44/0xeb0 [ 76.448935][ T4954] softirqs last enabled at (137390): [] local_bh_enable+0x10/0x34 [ 76.450365][ T4954] softirqs last disabled at (137388): [] local_bh_disable+0x10/0x34 [ 76.451675][ T4954] ---[ end trace 6903da8befc062e6 ]--- [ 76.489476][ T5030] loop0: detected capacity change from 0 to 128 [ 76.491500][ T5030] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.492663][ T5030] Bad inode number on dev loop0: 2 is out of range [ 76.493656][ T5030] SysV FS: get root inode failed [ 76.494400][ T5030] oldfs: cannot read superblock [ 76.501864][ T4954] ------------[ cut here ]------------ [ 76.502753][ T4954] VFS: brelse: Trying to free free buffer [ 76.503550][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.504753][ T4954] Modules linked in: [ 76.505328][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 76.506513][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.507987][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.509110][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 76.509892][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 76.510636][ T4954] sp : ffff80001fb177c0 [ 76.511228][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 76.512438][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 76.513600][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2800060 [ 76.514998][ T4954] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 76.516120][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.517250][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.518328][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 76.519447][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.520626][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.521798][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.522949][ T4954] Call trace: [ 76.523489][ T4954] invalidate_bh_lru+0x128/0x234 [ 76.524222][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 76.525149][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.525897][ T4954] invalidate_bh_lrus+0x34/0x40 [ 76.526644][ T4954] blkdev_flush_mapping+0x168/0x31c [ 76.527438][ T4954] blkdev_put+0x490/0x6ac [ 76.528049][ T4954] blkdev_close+0x74/0xb0 [ 76.528667][ T4954] __fput+0x1c0/0x7f8 [ 76.529206][ T4954] ____fput+0x20/0x30 [ 76.529743][ T4954] task_work_run+0x12c/0x1e0 [ 76.530355][ T4954] do_notify_resume+0x24b4/0x3128 [ 76.531068][ T4954] el0_svc+0xf0/0x1e0 [ 76.531635][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 76.532400][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 76.533133][ T4954] irq event stamp: 141222 [ 76.533787][ T4954] hardirqs last enabled at (141221): [] kasan_quarantine_put+0xc4/0x204 [ 76.535237][ T4954] hardirqs last disabled at (141222): [] smp_call_function_many_cond+0xa44/0xeb0 [ 76.536796][ T4954] softirqs last enabled at (141016): [] local_bh_enable+0x10/0x34 [ 76.538277][ T4954] softirqs last disabled at (141014): [] local_bh_disable+0x10/0x34 [ 76.539777][ T4954] ---[ end trace 6903da8befc062e7 ]--- [ 76.555942][ T5032] loop0: detected capacity change from 0 to 128 [ 76.560161][ T5032] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.561355][ T5032] Bad inode number on dev loop0: 2 is out of range [ 76.562422][ T5032] SysV FS: get root inode failed [ 76.563131][ T5032] oldfs: cannot read superblock [ 76.574724][ C1] ------------[ cut here ]------------ [ 76.575695][ C1] VFS: brelse: Trying to free free buffer [ 76.576686][ C1] WARNING: CPU: 1 PID: 5034 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.577990][ C1] Modules linked in: [ 76.578594][ C1] CPU: 1 PID: 5034 Comm: syz.0.57 Tainted: G W syzkaller #0 [ 76.580045][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.581656][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.582930][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 76.583798][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 76.584652][ C1] sp : ffff800008017de0 [ 76.585315][ C1] x29: ffff800008017de0 x28: ffff0000c237b680 x27: 1fffe0003421c65c [ 76.586601][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 76.587815][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000d014bdf8 [ 76.589066][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 76.590257][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.591513][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.592736][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 251b8c19e13f4200 [ 76.593919][ C1] x8 : 251b8c19e13f4200 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.595058][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.596281][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 76.597502][ C1] Call trace: [ 76.598043][ C1] invalidate_bh_lru+0x128/0x234 [ 76.598784][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 76.599753][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.600932][ C1] ipi_handler+0x10c/0x710 [ 76.601675][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 76.602448][ C1] handle_domain_irq+0x144/0x1fc [ 76.603202][ C1] gic_handle_irq+0x78/0x1c8 [ 76.603885][ C1] call_on_irq_stack+0x30/0x48 [ 76.604708][ C1] do_interrupt_handler+0x6c/0x88 [ 76.605513][ C1] el1_interrupt+0x30/0x58 [ 76.606221][ C1] el1h_64_irq_handler+0x18/0x24 [ 76.606957][ C1] el1h_64_irq+0x78/0x7c [ 76.607600][ C1] get_page_from_freelist+0x2244/0x2aa8 [ 76.608412][ C1] __alloc_pages+0x1a0/0x470 [ 76.609057][ C1] alloc_pages_vma+0x284/0x7a8 [ 76.609794][ C1] alloc_zeroed_user_highpage_movable+0x9c/0xd8 [ 76.610708][ C1] handle_mm_fault+0x1904/0x2950 [ 76.611394][ C1] do_page_fault+0x694/0xad4 [ 76.612076][ C1] do_translation_fault+0xe0/0x130 [ 76.612786][ C1] do_mem_abort+0x6c/0x1ac [ 76.613416][ C1] el0_da+0x90/0x1fc [ 76.613959][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 76.614774][ C1] el0t_64_sync+0x1a0/0x1a4 [ 76.615395][ C1] irq event stamp: 54 [ 76.615937][ C1] hardirqs last enabled at (53): [] get_page_from_freelist+0x2234/0x2aa8 [ 76.617423][ C1] hardirqs last disabled at (54): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.618718][ C1] softirqs last enabled at (44): [] local_bh_enable+0x10/0x34 [ 76.619985][ C1] softirqs last disabled at (42): [] local_bh_disable+0x10/0x34 [ 76.621363][ C1] ---[ end trace 6903da8befc062e8 ]--- [ 76.658181][ T5034] loop0: detected capacity change from 0 to 128 [ 76.660865][ T5034] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.661894][ T5034] Bad inode number on dev loop0: 2 is out of range [ 76.662849][ T5034] SysV FS: get root inode failed [ 76.663629][ T5034] oldfs: cannot read superblock [ 76.689757][ T4954] ------------[ cut here ]------------ [ 76.690685][ T4954] VFS: brelse: Trying to free free buffer [ 76.691683][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.692974][ T4954] Modules linked in: [ 76.693507][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 76.694878][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.696507][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.697752][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 76.698536][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 76.699393][ T4954] sp : ffff80001fb177c0 [ 76.700082][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 76.701405][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 76.702729][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c065f7a0 [ 76.704027][ T4954] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 76.705329][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.706621][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.707976][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 76.709287][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.710689][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.712026][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.713402][ T4954] Call trace: [ 76.713923][ T4954] invalidate_bh_lru+0x128/0x234 [ 76.714731][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 76.715600][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.716358][ T4954] invalidate_bh_lrus+0x34/0x40 [ 76.717053][ T4954] blkdev_flush_mapping+0x168/0x31c [ 76.717815][ T4954] blkdev_put+0x490/0x6ac [ 76.718520][ T4954] blkdev_close+0x74/0xb0 [ 76.719187][ T4954] __fput+0x1c0/0x7f8 [ 76.719746][ T4954] ____fput+0x20/0x30 [ 76.720312][ T4954] task_work_run+0x12c/0x1e0 [ 76.720996][ T4954] do_notify_resume+0x24b4/0x3128 [ 76.721717][ T4954] el0_svc+0xf0/0x1e0 [ 76.722306][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 76.723081][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 76.723720][ T4954] irq event stamp: 147502 [ 76.724276][ T4954] hardirqs last enabled at (147501): [] kasan_quarantine_put+0xc4/0x204 [ 76.725658][ T4954] hardirqs last disabled at (147502): [] smp_call_function_many_cond+0xa44/0xeb0 [ 76.727127][ T4954] softirqs last enabled at (147268): [] local_bh_enable+0x10/0x34 [ 76.728442][ T4954] softirqs last disabled at (147266): [] local_bh_disable+0x10/0x34 [ 76.729821][ T4954] ---[ end trace 6903da8befc062e9 ]--- [ 76.777812][ T5038] loop0: detected capacity change from 0 to 128 [ 76.815683][ T5038] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.816788][ T5038] Bad inode number on dev loop0: 2 is out of range [ 76.817699][ T5038] SysV FS: get root inode failed [ 76.818386][ T5038] oldfs: cannot read superblock [ 76.819157][ T5038] ------------[ cut here ]------------ [ 76.819932][ T5038] VFS: brelse: Trying to free free buffer [ 76.820758][ T5038] WARNING: CPU: 1 PID: 5038 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.822054][ T5038] Modules linked in: [ 76.822618][ T5038] CPU: 1 PID: 5038 Comm: syz.0.59 Tainted: G W syzkaller #0 [ 76.823947][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.825493][ T5038] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.826747][ T5038] pc : invalidate_bh_lru+0x128/0x234 [ 76.827532][ T5038] lr : invalidate_bh_lru+0x128/0x234 [ 76.828347][ T5038] sp : ffff80001fe076e0 [ 76.828929][ T5038] x29: ffff80001fe076e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 76.830005][ T5038] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 76.831190][ T5038] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c065f318 [ 76.832421][ T5038] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 76.833593][ T5038] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.834816][ T5038] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.836075][ T5038] x11: 0000000000000002 x10: 0000000000000000 x9 : cd8f48604106a400 [ 76.837360][ T5038] x8 : cd8f48604106a400 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.838617][ T5038] x5 : ffff80001fe06fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.839875][ T5038] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.841171][ T5038] Call trace: [ 76.841680][ T5038] invalidate_bh_lru+0x128/0x234 [ 76.842497][ T5038] smp_call_function_many_cond+0xa50/0xeb0 [ 76.843381][ T5038] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.844185][ T5038] invalidate_bh_lrus+0x34/0x40 [ 76.844940][ T5038] blkdev_flush_mapping+0x168/0x31c [ 76.845751][ T5038] blkdev_put+0x490/0x6ac [ 76.846455][ T5038] kill_block_super+0x98/0xdc [ 76.847173][ T5038] deactivate_locked_super+0xb8/0x13c [ 76.847979][ T5038] mount_bdev+0x284/0x358 [ 76.848650][ T5038] sysv_mount+0x44/0x58 [ 76.849323][ T5038] legacy_get_tree+0xd4/0x16c [ 76.850025][ T5038] vfs_get_tree+0x90/0x274 [ 76.850744][ T5038] do_new_mount+0x228/0x810 [ 76.851416][ T5038] path_mount+0x5b4/0x1000 [ 76.852110][ T5038] __arm64_sys_mount+0x514/0x5e4 [ 76.852872][ T5038] invoke_syscall+0x98/0x2b8 [ 76.853566][ T5038] el0_svc_common+0x138/0x258 [ 76.854343][ T5038] do_el0_svc+0x58/0x14c [ 76.854985][ T5038] el0_svc+0x78/0x1e0 [ 76.855604][ T5038] el0t_64_sync_handler+0xcc/0xe4 [ 76.856427][ T5038] el0t_64_sync+0x1a0/0x1a4 [ 76.857145][ T5038] irq event stamp: 952 [ 76.857751][ T5038] hardirqs last enabled at (951): [] kasan_quarantine_put+0xc4/0x204 [ 76.859287][ T5038] hardirqs last disabled at (952): [] smp_call_function_many_cond+0xa44/0xeb0 [ 76.861031][ T5038] softirqs last enabled at (786): [] local_bh_enable+0x10/0x34 [ 76.862545][ T5038] softirqs last disabled at (784): [] local_bh_disable+0x10/0x34 [ 76.864017][ T5038] ---[ end trace 6903da8befc062ea ]--- [ 76.956804][ T5040] loop0: detected capacity change from 0 to 128 [ 77.035466][ T5040] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.036735][ T5040] Bad inode number on dev loop0: 2 is out of range [ 77.037626][ T5040] SysV FS: get root inode failed [ 77.038311][ T5040] oldfs: cannot read superblock [ 77.053797][ T5042] ------------[ cut here ]------------ [ 77.054687][ T5042] VFS: brelse: Trying to free free buffer [ 77.055569][ T5042] WARNING: CPU: 0 PID: 5042 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.056919][ T5042] Modules linked in: [ 77.057516][ T5042] CPU: 0 PID: 5042 Comm: syz.0.61 Tainted: G W syzkaller #0 [ 77.058877][ T5042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.060503][ T5042] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.061650][ T5042] pc : invalidate_bh_lru+0x128/0x234 [ 77.062333][ T5042] lr : invalidate_bh_lru+0x128/0x234 [ 77.063195][ T5042] sp : ffff80001ffa77c0 [ 77.063832][ T5042] x29: ffff80001ffa77c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 77.065093][ T5042] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 77.066378][ T5042] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2800400 [ 77.067598][ T5042] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 77.068827][ T5042] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.070022][ T5042] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.071354][ T5042] x11: 0000000000000002 x10: 0000000000000000 x9 : 7d87c1ee97d5b500 [ 77.072616][ T5042] x8 : 7d87c1ee97d5b500 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.073849][ T5042] x5 : ffff80001ffa70b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.075173][ T5042] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 77.076463][ T5042] Call trace: [ 77.077008][ T5042] invalidate_bh_lru+0x128/0x234 [ 77.077785][ T5042] smp_call_function_many_cond+0xa50/0xeb0 [ 77.078805][ T5042] on_each_cpu_cond_mask+0x5c/0xc4 [ 77.079573][ T5042] invalidate_bh_lrus+0x34/0x40 [ 77.080295][ T5042] blkdev_flush_mapping+0x168/0x31c [ 77.081084][ T5042] blkdev_put+0x490/0x6ac [ 77.081686][ T5042] blkdev_close+0x74/0xb0 [ 77.082392][ T5042] __fput+0x1c0/0x7f8 [ 77.083053][ T5042] ____fput+0x20/0x30 [ 77.083649][ T5042] task_work_run+0x12c/0x1e0 [ 77.084339][ T5042] do_notify_resume+0x24b4/0x3128 [ 77.085155][ T5042] el0_svc+0xf0/0x1e0 [ 77.085784][ T5042] el0t_64_sync_handler+0xcc/0xe4 [ 77.086587][ T5042] el0t_64_sync+0x1a0/0x1a4 [ 77.087283][ T5042] irq event stamp: 706 [ 77.087883][ T5042] hardirqs last enabled at (705): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 77.089524][ T5042] hardirqs last disabled at (706): [] smp_call_function_many_cond+0xa44/0xeb0 [ 77.091116][ T5042] softirqs last enabled at (682): [] local_bh_enable+0x10/0x34 [ 77.092576][ T5042] softirqs last disabled at (680): [] local_bh_disable+0x10/0x34 [ 77.093864][ T5042] ---[ end trace 6903da8befc062eb ]--- [ 77.137332][ T5044] loop0: detected capacity change from 0 to 128 [ 77.141011][ T5044] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.142172][ T5044] Bad inode number on dev loop0: 2 is out of range [ 77.143140][ T5044] SysV FS: get root inode failed [ 77.143961][ T5044] oldfs: cannot read superblock [ 77.165297][ C1] ------------[ cut here ]------------ [ 77.166177][ C1] VFS: brelse: Trying to free free buffer [ 77.167124][ C1] WARNING: CPU: 1 PID: 0 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.168332][ C1] Modules linked in: [ 77.168930][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W syzkaller #0 [ 77.170279][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.171861][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.173060][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 77.173840][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 77.174614][ C1] sp : ffff800008017de0 [ 77.175285][ C1] x29: ffff800008017de0 x28: ffff0000c0a68000 x27: 1fffe0003421c65c [ 77.176573][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 77.177859][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52bbee0 [ 77.179137][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 77.180497][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.181765][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.183079][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 1be67d17c9a0d400 [ 77.184352][ C1] x8 : 1be67d17c9a0d400 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.185711][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.187021][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 77.188391][ C1] Call trace: [ 77.188899][ C1] invalidate_bh_lru+0x128/0x234 [ 77.189675][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 77.190590][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.191679][ C1] ipi_handler+0x10c/0x710 [ 77.192431][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 77.193254][ C1] handle_domain_irq+0x144/0x1fc [ 77.194025][ C1] gic_handle_irq+0x78/0x1c8 [ 77.194766][ C1] call_on_irq_stack+0x30/0x48 [ 77.195560][ C1] do_interrupt_handler+0x6c/0x88 [ 77.196340][ C1] el1_interrupt+0x30/0x58 [ 77.197035][ C1] el1h_64_irq_handler+0x18/0x24 [ 77.197779][ C1] el1h_64_irq+0x78/0x7c [ 77.198411][ C1] arch_local_irq_enable+0xc/0x18 [ 77.199130][ C1] default_idle_call+0xcc/0x418 [ 77.199798][ C1] do_idle+0x1c8/0x480 [ 77.200378][ C1] cpu_startup_entry+0x24/0x28 [ 77.201060][ C1] secondary_start_kernel+0x23c/0x294 [ 77.201968][ C1] __secondary_switched+0x94/0x98 [ 77.202791][ C1] irq event stamp: 449540 [ 77.203473][ C1] hardirqs last enabled at (449539): [] default_idle_call+0xb8/0x418 [ 77.204914][ C1] hardirqs last disabled at (449540): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.206504][ C1] softirqs last enabled at (449516): [] handle_softirqs+0xa4c/0xbf0 [ 77.208103][ C1] softirqs last disabled at (449477): [] __irq_exit_rcu+0x240/0x440 [ 77.209739][ C1] ---[ end trace 6903da8befc062ec ]--- [ 77.227787][ T5048] loop0: detected capacity change from 0 to 128 [ 77.279444][ T5048] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.280633][ T5048] Bad inode number on dev loop0: 2 is out of range [ 77.281640][ T5048] SysV FS: get root inode failed [ 77.282402][ T5048] oldfs: cannot read superblock [ 77.283066][ T5048] ------------[ cut here ]------------ [ 77.283928][ T5048] VFS: brelse: Trying to free free buffer [ 77.284804][ T5048] WARNING: CPU: 1 PID: 5048 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.286221][ T5048] Modules linked in: [ 77.286941][ T5048] CPU: 1 PID: 5048 Comm: syz.0.64 Tainted: G W syzkaller #0 [ 77.288323][ T5048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.289920][ T5048] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.291102][ T5048] pc : invalidate_bh_lru+0x128/0x234 [ 77.291984][ T5048] lr : invalidate_bh_lru+0x128/0x234 [ 77.292815][ T5048] sp : ffff80001fe076e0 [ 77.293420][ T5048] x29: ffff80001fe076e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 77.294705][ T5048] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 77.296105][ T5048] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52bbb40 [ 77.297345][ T5048] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 77.298637][ T5048] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.299919][ T5048] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.301268][ T5048] x11: 0000000000000002 x10: 0000000000000000 x9 : 29f72584ba769f00 [ 77.302570][ T5048] x8 : 29f72584ba769f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.303815][ T5048] x5 : ffff80001fe06fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.305092][ T5048] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 77.306384][ T5048] Call trace: [ 77.306932][ T5048] invalidate_bh_lru+0x128/0x234 [ 77.307680][ T5048] smp_call_function_many_cond+0xa50/0xeb0 [ 77.308509][ T5048] on_each_cpu_cond_mask+0x5c/0xc4 [ 77.309263][ T5048] invalidate_bh_lrus+0x34/0x40 [ 77.309982][ T5048] blkdev_flush_mapping+0x168/0x31c [ 77.310738][ T5048] blkdev_put+0x490/0x6ac [ 77.311441][ T5048] kill_block_super+0x98/0xdc [ 77.312178][ T5048] deactivate_locked_super+0xb8/0x13c [ 77.312987][ T5048] mount_bdev+0x284/0x358 [ 77.313671][ T5048] sysv_mount+0x44/0x58 [ 77.314301][ T5048] legacy_get_tree+0xd4/0x16c [ 77.315001][ T5048] vfs_get_tree+0x90/0x274 [ 77.315684][ T5048] do_new_mount+0x228/0x810 [ 77.316357][ T5048] path_mount+0x5b4/0x1000 [ 77.317044][ T5048] __arm64_sys_mount+0x514/0x5e4 [ 77.317869][ T5048] invoke_syscall+0x98/0x2b8 [ 77.318547][ T5048] el0_svc_common+0x138/0x258 [ 77.319212][ T5048] do_el0_svc+0x58/0x14c [ 77.319907][ T5048] el0_svc+0x78/0x1e0 [ 77.320552][ T5048] el0t_64_sync_handler+0xcc/0xe4 [ 77.321379][ T5048] el0t_64_sync+0x1a0/0x1a4 [ 77.322080][ T5048] irq event stamp: 952 [ 77.322683][ T5048] hardirqs last enabled at (951): [] kasan_quarantine_put+0xc4/0x204 [ 77.324147][ T5048] hardirqs last disabled at (952): [] smp_call_function_many_cond+0xa44/0xeb0 [ 77.325768][ T5048] softirqs last enabled at (766): [] local_bh_enable+0x10/0x34 [ 77.327240][ T5048] softirqs last disabled at (764): [] local_bh_disable+0x10/0x34 [ 77.328754][ T5048] ---[ end trace 6903da8befc062ed ]--- [ 77.433310][ T5052] loop0: detected capacity change from 0 to 128 [ 77.435945][ T5052] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.437078][ T5052] Bad inode number on dev loop0: 2 is out of range [ 77.438113][ T5052] SysV FS: get root inode failed [ 77.438786][ T5052] oldfs: cannot read superblock [ 77.447647][ C0] ------------[ cut here ]------------ [ 77.448507][ C0] VFS: brelse: Trying to free free buffer [ 77.449342][ C0] WARNING: CPU: 0 PID: 5053 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.450727][ C0] Modules linked in: [ 77.451316][ C0] CPU: 0 PID: 5053 Comm: syz.0.67 Tainted: G W syzkaller #0 [ 77.452469][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.453811][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.454933][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 77.455693][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 77.456533][ C0] sp : ffff800008007de0 [ 77.457155][ C0] x29: ffff800008007de0 x28: ffff0000d0cf1b40 x27: 1fffe0003421845c [ 77.458398][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 77.459605][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28007a0 [ 77.460792][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 77.461908][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.463085][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.464445][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : ac01804b479aaf00 [ 77.465786][ C0] x8 : ac01804b479aaf00 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.467130][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.468543][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 77.469890][ C0] Call trace: [ 77.470433][ C0] invalidate_bh_lru+0x128/0x234 [ 77.471223][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 77.472239][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.473332][ C0] ipi_handler+0x10c/0x710 [ 77.474005][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 77.474851][ C0] handle_domain_irq+0x144/0x1fc [ 77.475641][ C0] gic_handle_irq+0x78/0x1c8 [ 77.476397][ C0] call_on_irq_stack+0x30/0x48 [ 77.477197][ C0] do_interrupt_handler+0x6c/0x88 [ 77.477987][ C0] el1_interrupt+0x30/0x58 [ 77.478590][ C0] el1h_64_irq_handler+0x18/0x24 [ 77.479321][ C0] el1h_64_irq+0x78/0x7c [ 77.479945][ C0] _raw_write_unlock_irq+0xa0/0x128 [ 77.480695][ C0] copy_process+0x312c/0x34ac [ 77.481409][ C0] kernel_clone+0x1d8/0x9d4 [ 77.482150][ C0] __arm64_sys_clone+0x138/0x190 [ 77.482939][ C0] invoke_syscall+0x98/0x2b8 [ 77.483635][ C0] el0_svc_common+0x138/0x258 [ 77.484337][ C0] do_el0_svc+0x58/0x14c [ 77.484965][ C0] el0_svc+0x78/0x1e0 [ 77.485571][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 77.486299][ C0] el0t_64_sync+0x1a0/0x1a4 [ 77.486884][ C0] irq event stamp: 1570 [ 77.487506][ C0] hardirqs last enabled at (1569): [] _raw_write_unlock_irq+0x98/0x128 [ 77.489051][ C0] hardirqs last disabled at (1570): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.490596][ C0] softirqs last enabled at (1522): [] local_bh_enable+0x10/0x34 [ 77.491957][ C0] softirqs last disabled at (1520): [] local_bh_disable+0x10/0x34 [ 77.493337][ C0] ---[ end trace 6903da8befc062ee ]--- [ 77.527238][ T5054] loop0: detected capacity change from 0 to 128 [ 77.529498][ T5054] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.530698][ T5054] Bad inode number on dev loop0: 2 is out of range [ 77.531691][ T5054] SysV FS: get root inode failed [ 77.532423][ T5054] oldfs: cannot read superblock [ 77.536645][ C1] ------------[ cut here ]------------ [ 77.537542][ C1] VFS: brelse: Trying to free free buffer [ 77.538447][ C1] WARNING: CPU: 1 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.539768][ C1] Modules linked in: [ 77.540322][ C1] CPU: 1 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 77.541499][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.542937][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.544039][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 77.544769][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 77.545558][ C1] sp : ffff800008017de0 [ 77.546198][ C1] x29: ffff800008017de0 x28: ffff0000da2d1b40 x27: 1fffe0003421c65c [ 77.547376][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 77.548734][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52bb7a0 [ 77.550017][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 77.551284][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.552505][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.553784][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 77.555156][ C1] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.556462][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.557756][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 77.558989][ C1] Call trace: [ 77.559482][ C1] invalidate_bh_lru+0x128/0x234 [ 77.560260][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 77.561183][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.562236][ C1] ipi_handler+0x10c/0x710 [ 77.562910][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 77.563776][ C1] handle_domain_irq+0x144/0x1fc [ 77.564550][ C1] gic_handle_irq+0x78/0x1c8 [ 77.565260][ C1] call_on_irq_stack+0x30/0x48 [ 77.565988][ C1] do_interrupt_handler+0x6c/0x88 [ 77.566887][ C1] el1_interrupt+0x30/0x58 [ 77.567544][ C1] el1h_64_irq_handler+0x18/0x24 [ 77.568310][ C1] el1h_64_irq+0x78/0x7c [ 77.568947][ C1] __sanitizer_cov_trace_const_cmp8+0x44/0xc0 [ 77.569906][ C1] ___cache_free+0x48/0x1bc [ 77.570579][ C1] qlink_free+0x5c/0xa4 [ 77.571199][ C1] qlist_free_all+0x40/0xa8 [ 77.571880][ C1] kasan_quarantine_reduce+0x124/0x130 [ 77.572734][ C1] __kasan_slab_alloc+0x34/0xcc [ 77.573521][ C1] slab_post_alloc_hook+0x74/0x408 [ 77.574347][ C1] __kmalloc+0x208/0x44c [ 77.575011][ C1] tomoyo_realpath_from_path+0xcc/0x510 [ 77.575894][ C1] tomoyo_path_perm+0x1b4/0x440 [ 77.576634][ C1] tomoyo_inode_getattr+0x28/0x38 [ 77.577371][ C1] security_inode_getattr+0xd8/0x124 [ 77.578073][ C1] vfs_statx+0x118/0x458 [ 77.578722][ C1] __arm64_sys_newfstatat+0x10c/0x190 [ 77.579554][ C1] invoke_syscall+0x98/0x2b8 [ 77.580245][ C1] el0_svc_common+0x138/0x258 [ 77.580936][ C1] do_el0_svc+0x58/0x14c [ 77.581536][ C1] el0_svc+0x78/0x1e0 [ 77.582218][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 77.583063][ C1] el0t_64_sync+0x1a0/0x1a4 [ 77.583808][ C1] irq event stamp: 236948 [ 77.584502][ C1] hardirqs last enabled at (236947): [] free_unref_page+0x148/0x1fc [ 77.586020][ C1] hardirqs last disabled at (236948): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.587652][ C1] softirqs last enabled at (236604): [] local_bh_enable+0x10/0x34 [ 77.589075][ C1] softirqs last disabled at (236602): [] local_bh_disable+0x10/0x34 [ 77.590471][ C1] ---[ end trace 6903da8befc062ef ]--- 1970/01/01 00:01:17 executed programs: 54 [ 77.632310][ T5056] loop0: detected capacity change from 0 to 128 [ 77.634394][ T5056] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.635643][ T5056] Bad inode number on dev loop0: 2 is out of range [ 77.636915][ T5056] SysV FS: get root inode failed [ 77.638031][ T5056] oldfs: cannot read superblock [ 77.642837][ C0] ------------[ cut here ]------------ [ 77.643672][ C0] VFS: brelse: Trying to free free buffer [ 77.644571][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.645974][ C0] Modules linked in: [ 77.646571][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 77.648073][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.649736][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.651050][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 77.651927][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 77.652766][ C0] sp : ffff800008007de0 [ 77.653425][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 77.654768][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 77.656042][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2800b40 [ 77.657335][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 77.658546][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.659765][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.660928][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 28df45644c0a0d00 [ 77.662095][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.663300][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.664450][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 77.665679][ C0] Call trace: [ 77.666149][ C0] invalidate_bh_lru+0x128/0x234 [ 77.666887][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 77.667889][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.669057][ C0] ipi_handler+0x10c/0x710 [ 77.669749][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 77.670565][ C0] handle_domain_irq+0x144/0x1fc [ 77.671375][ C0] gic_handle_irq+0x78/0x1c8 [ 77.672070][ C0] call_on_irq_stack+0x30/0x48 [ 77.672775][ C0] do_interrupt_handler+0x6c/0x88 [ 77.673586][ C0] el1_interrupt+0x30/0x58 [ 77.674232][ C0] el1h_64_irq_handler+0x18/0x24 [ 77.674866][ C0] el1h_64_irq+0x78/0x7c [ 77.675560][ C0] kasan_check_range+0x34/0x2b0 [ 77.676275][ C0] memset+0x58/0x88 [ 77.676896][ C0] unwind_frame+0x124/0x668 [ 77.677616][ C0] walk_stackframe+0x6c/0xa8 [ 77.678287][ C0] return_address+0xd0/0x144 [ 77.678949][ C0] preempt_count_add+0x13c/0x3bc [ 77.679677][ C0] _raw_spin_lock+0x24/0x10c [ 77.680338][ C0] free_vmap_area_noflush+0x40/0x8d0 [ 77.681175][ C0] remove_vm_area+0x1ac/0x1c4 [ 77.681884][ C0] __vunmap+0x304/0x9bc [ 77.682475][ C0] vfree+0xbc/0x154 [ 77.683058][ C0] __do_replace+0x830/0x988 [ 77.683771][ C0] do_ipt_set_ctl+0xa94/0xe00 [ 77.684453][ C0] nf_setsockopt+0x270/0x290 [ 77.685122][ C0] ip_setsockopt+0x1d0c/0x2978 [ 77.685826][ C0] tcp_setsockopt+0x1d4/0x1bf4 [ 77.686555][ C0] sock_common_setsockopt+0xb0/0xcc [ 77.687244][ C0] __sys_setsockopt+0x260/0x36c [ 77.687950][ C0] __arm64_sys_setsockopt+0xb8/0xd4 [ 77.688766][ C0] invoke_syscall+0x98/0x2b8 [ 77.689565][ C0] el0_svc_common+0x138/0x258 [ 77.690270][ C0] do_el0_svc+0x58/0x14c [ 77.690867][ C0] el0_svc+0x78/0x1e0 [ 77.691532][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 77.692336][ C0] el0t_64_sync+0x1a0/0x1a4 [ 77.693108][ C0] irq event stamp: 240358 [ 77.693808][ C0] hardirqs last enabled at (240357): [] kasan_quarantine_put+0xc4/0x204 [ 77.695424][ C0] hardirqs last disabled at (240358): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.697081][ C0] softirqs last enabled at (240346): [] local_bh_enable+0x10/0x34 [ 77.698521][ C0] softirqs last disabled at (240344): [] local_bh_disable+0x10/0x34 [ 77.700054][ C0] ---[ end trace 6903da8befc062f0 ]--- [ 77.736800][ T5058] loop0: detected capacity change from 0 to 128 [ 77.739059][ T5058] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.740267][ T5058] Bad inode number on dev loop0: 2 is out of range [ 77.741315][ T5058] SysV FS: get root inode failed [ 77.742046][ T5058] oldfs: cannot read superblock [ 77.744916][ C1] ------------[ cut here ]------------ [ 77.745838][ C1] VFS: brelse: Trying to free free buffer [ 77.746773][ C1] WARNING: CPU: 1 PID: 3646 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.747986][ C1] Modules linked in: [ 77.748530][ C1] CPU: 1 PID: 3646 Comm: syslogd Tainted: G W syzkaller #0 [ 77.749883][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.751508][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.752775][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 77.753631][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 77.754486][ C1] sp : ffff800008017de0 [ 77.755149][ C1] x29: ffff800008017de0 x28: ffff0000d5b9d1c0 x27: 1fffe0003421c65c [ 77.756454][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 77.757759][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52bb400 [ 77.759178][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 77.760368][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.761700][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.762912][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 11048b5c94d15600 [ 77.764051][ C1] x8 : 11048b5c94d15600 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.765207][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.766410][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 77.767763][ C1] Call trace: [ 77.768286][ C1] invalidate_bh_lru+0x128/0x234 [ 77.769107][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 77.770069][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.771090][ C1] ipi_handler+0x10c/0x710 [ 77.771847][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 77.772694][ C1] handle_domain_irq+0x144/0x1fc [ 77.773506][ C1] gic_handle_irq+0x78/0x1c8 [ 77.774247][ C1] call_on_irq_stack+0x30/0x48 [ 77.774953][ C1] do_interrupt_handler+0x6c/0x88 [ 77.775684][ C1] el1_interrupt+0x30/0x58 [ 77.776350][ C1] el1h_64_irq_handler+0x18/0x24 [ 77.777091][ C1] el1h_64_irq+0x78/0x7c [ 77.777752][ C1] pid_vnr+0x34/0x1c0 [ 77.778387][ C1] __unix_dgram_recvmsg+0x658/0xb28 [ 77.779178][ C1] unix_dgram_recvmsg+0xd4/0xec [ 77.779908][ C1] sock_read_iter+0x23c/0x2dc [ 77.780617][ C1] vfs_read+0x7c4/0xa10 [ 77.781210][ C1] ksys_read+0x120/0x210 [ 77.781792][ C1] __arm64_sys_read+0x7c/0x90 [ 77.782432][ C1] invoke_syscall+0x98/0x2b8 [ 77.783091][ C1] el0_svc_common+0x138/0x258 [ 77.783939][ C1] do_el0_svc+0x58/0x14c [ 77.784588][ C1] el0_svc+0x78/0x1e0 [ 77.785213][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 77.786040][ C1] el0t_64_sync+0x1a0/0x1a4 [ 77.786766][ C1] irq event stamp: 78382 [ 77.787380][ C1] hardirqs last enabled at (78381): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 77.789008][ C1] hardirqs last disabled at (78382): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.790610][ C1] softirqs last enabled at (78268): [] local_bh_enable+0x10/0x34 [ 77.792149][ C1] softirqs last disabled at (78266): [] local_bh_disable+0x10/0x34 [ 77.793563][ C1] ---[ end trace 6903da8befc062f1 ]--- [ 77.854557][ T5060] loop0: detected capacity change from 0 to 128 [ 77.885844][ T5060] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.886935][ T5060] Bad inode number on dev loop0: 2 is out of range [ 77.887868][ T5060] SysV FS: get root inode failed [ 77.888569][ T5060] oldfs: cannot read superblock [ 77.889279][ T5060] ------------[ cut here ]------------ [ 77.890060][ T5060] VFS: brelse: Trying to free free buffer [ 77.891018][ T5060] WARNING: CPU: 0 PID: 5060 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.892444][ T5060] Modules linked in: [ 77.893029][ T5060] CPU: 0 PID: 5060 Comm: syz.0.70 Tainted: G W syzkaller #0 [ 77.894370][ T5060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.895813][ T5060] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.897046][ T5060] pc : invalidate_bh_lru+0x128/0x234 [ 77.897761][ T5060] lr : invalidate_bh_lru+0x128/0x234 [ 77.898511][ T5060] sp : ffff80001fff76e0 [ 77.899170][ T5060] x29: ffff80001fff76e0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 77.900377][ T5060] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 77.901518][ T5060] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debfc230 [ 77.902770][ T5060] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 77.904070][ T5060] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.905346][ T5060] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.906503][ T5060] x11: 0000000000000002 x10: 0000000000000000 x9 : 175aa63d9f9f8600 [ 77.907697][ T5060] x8 : 175aa63d9f9f8600 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.908866][ T5060] x5 : ffff80001fff6fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.910146][ T5060] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 77.911416][ T5060] Call trace: [ 77.911938][ T5060] invalidate_bh_lru+0x128/0x234 [ 77.912703][ T5060] smp_call_function_many_cond+0xa50/0xeb0 [ 77.913520][ T5060] on_each_cpu_cond_mask+0x5c/0xc4 [ 77.914294][ T5060] invalidate_bh_lrus+0x34/0x40 [ 77.915075][ T5060] blkdev_flush_mapping+0x168/0x31c [ 77.915930][ T5060] blkdev_put+0x490/0x6ac [ 77.916663][ T5060] kill_block_super+0x98/0xdc [ 77.917347][ T5060] deactivate_locked_super+0xb8/0x13c [ 77.918136][ T5060] mount_bdev+0x284/0x358 [ 77.918797][ T5060] sysv_mount+0x44/0x58 [ 77.919496][ T5060] legacy_get_tree+0xd4/0x16c [ 77.920288][ T5060] vfs_get_tree+0x90/0x274 [ 77.920989][ T5060] do_new_mount+0x228/0x810 [ 77.921699][ T5060] path_mount+0x5b4/0x1000 [ 77.922292][ T5060] __arm64_sys_mount+0x514/0x5e4 [ 77.922983][ T5060] invoke_syscall+0x98/0x2b8 [ 77.923692][ T5060] el0_svc_common+0x138/0x258 [ 77.924410][ T5060] do_el0_svc+0x58/0x14c [ 77.925030][ T5060] el0_svc+0x78/0x1e0 [ 77.925674][ T5060] el0t_64_sync_handler+0xcc/0xe4 [ 77.926456][ T5060] el0t_64_sync+0x1a0/0x1a4 [ 77.927143][ T5060] irq event stamp: 1016 [ 77.927725][ T5060] hardirqs last enabled at (1015): [] kasan_quarantine_put+0xc4/0x204 [ 77.929169][ T5060] hardirqs last disabled at (1016): [] smp_call_function_many_cond+0xa44/0xeb0 [ 77.930683][ T5060] softirqs last enabled at (834): [] local_bh_enable+0x10/0x34 [ 77.932055][ T5060] softirqs last disabled at (832): [] local_bh_disable+0x10/0x34 [ 77.933383][ T5060] ---[ end trace 6903da8befc062f2 ]--- [ 78.027948][ T5064] loop0: detected capacity change from 0 to 128 [ 78.030511][ T5064] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.031696][ T5064] Bad inode number on dev loop0: 2 is out of range [ 78.032680][ T5064] SysV FS: get root inode failed [ 78.033420][ T5064] oldfs: cannot read superblock [ 78.041931][ C1] ------------[ cut here ]------------ [ 78.042777][ C1] VFS: brelse: Trying to free free buffer [ 78.043735][ C1] WARNING: CPU: 1 PID: 5065 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.045120][ C1] Modules linked in: [ 78.045772][ C1] CPU: 1 PID: 5065 Comm: syz-executor Tainted: G W syzkaller #0 [ 78.047189][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.048864][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.050158][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 78.050959][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 78.051840][ C1] sp : ffff800008017de0 [ 78.052500][ C1] x29: ffff800008017de0 x28: ffff0000ced98000 x27: 1fffe0003421c65c [ 78.053871][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 78.055121][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52bb060 [ 78.056420][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 78.057638][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.058979][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.060215][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 99991619a8cf0700 [ 78.061506][ C1] x8 : 99991619a8cf0700 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.062754][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.064002][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 78.065250][ C1] Call trace: [ 78.065774][ C1] invalidate_bh_lru+0x128/0x234 [ 78.066550][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 78.067530][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 78.068643][ C1] ipi_handler+0x10c/0x710 [ 78.069382][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 78.070270][ C1] handle_domain_irq+0x144/0x1fc [ 78.071085][ C1] gic_handle_irq+0x78/0x1c8 [ 78.071831][ C1] call_on_irq_stack+0x30/0x48 [ 78.072643][ C1] do_interrupt_handler+0x6c/0x88 [ 78.073508][ C1] el1_interrupt+0x30/0x58 [ 78.074182][ C1] el1h_64_irq_handler+0x18/0x24 [ 78.074889][ C1] el1h_64_irq+0x78/0x7c [ 78.075574][ C1] ___slab_alloc+0x2e8/0xda8 [ 78.076365][ C1] __slab_alloc+0x68/0xc0 [ 78.077021][ C1] kmem_cache_alloc+0x2ac/0x3e4 [ 78.077767][ C1] security_inode_alloc+0x38/0x11c [ 78.078600][ C1] inode_init_always+0x670/0xa84 [ 78.079415][ C1] new_inode_pseudo+0x7c/0x1fc [ 78.080143][ C1] new_inode+0x38/0x174 [ 78.080768][ C1] shmem_get_inode+0x2d8/0x96c [ 78.081577][ C1] shmem_symlink+0xa4/0x4a0 [ 78.082317][ C1] vfs_symlink+0x238/0x3b0 [ 78.083011][ C1] do_symlinkat+0x184/0x5a8 [ 78.083714][ C1] __arm64_sys_symlinkat+0xa4/0xbc [ 78.084502][ C1] invoke_syscall+0x98/0x2b8 [ 78.085233][ C1] el0_svc_common+0x138/0x258 [ 78.085918][ C1] do_el0_svc+0x58/0x14c [ 78.086594][ C1] el0_svc+0x78/0x1e0 [ 78.087285][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 78.088091][ C1] el0t_64_sync+0x1a0/0x1a4 [ 78.088843][ C1] irq event stamp: 714 [ 78.089515][ C1] hardirqs last enabled at (713): [] ___slab_alloc+0x2d8/0xda8 [ 78.090916][ C1] hardirqs last disabled at (714): [] enter_el1_irq_or_nmi+0x10/0x1c [ 78.092551][ C1] softirqs last enabled at (504): [] local_bh_enable+0x10/0x34 [ 78.094016][ C1] softirqs last disabled at (502): [] local_bh_disable+0x10/0x34 [ 78.095478][ C1] ---[ end trace 6903da8befc062f3 ]--- [ 78.117779][ T5066] loop0: detected capacity change from 0 to 128 [ 78.121472][ T5066] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.122737][ T5066] Bad inode number on dev loop0: 2 is out of range [ 78.123745][ T5066] SysV FS: get root inode failed [ 78.124521][ T5066] oldfs: cannot read superblock [ 78.131904][ T4954] ------------[ cut here ]------------ [ 78.132804][ T4954] VFS: brelse: Trying to free free buffer [ 78.133737][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.134928][ T4954] Modules linked in: [ 78.135471][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 78.136591][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.137972][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.139143][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 78.139842][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 78.140602][ T4954] sp : ffff80001fb177c0 [ 78.141203][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 78.142421][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 78.143533][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debfc5d0 [ 78.144792][ T4954] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.146043][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.147226][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.148408][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 78.149593][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.150788][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.152123][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.153326][ T4954] Call trace: [ 78.153807][ T4954] invalidate_bh_lru+0x128/0x234 [ 78.154507][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 78.155455][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.156311][ T4954] invalidate_bh_lrus+0x34/0x40 [ 78.157132][ T4954] blkdev_flush_mapping+0x168/0x31c [ 78.157943][ T4954] blkdev_put+0x490/0x6ac [ 78.158587][ T4954] blkdev_close+0x74/0xb0 [ 78.159245][ T4954] __fput+0x1c0/0x7f8 [ 78.159876][ T4954] ____fput+0x20/0x30 [ 78.160497][ T4954] task_work_run+0x12c/0x1e0 [ 78.161119][ T4954] do_notify_resume+0x24b4/0x3128 [ 78.161800][ T4954] el0_svc+0xf0/0x1e0 [ 78.162367][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 78.163130][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 78.163895][ T4954] irq event stamp: 198666 [ 78.164575][ T4954] hardirqs last enabled at (198665): [] kasan_quarantine_put+0xc4/0x204 [ 78.166030][ T4954] hardirqs last disabled at (198666): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.167843][ T4954] softirqs last enabled at (198460): [] local_bh_enable+0x10/0x34 [ 78.169329][ T4954] softirqs last disabled at (198458): [] local_bh_disable+0x10/0x34 [ 78.170815][ T4954] ---[ end trace 6903da8befc062f4 ]--- [ 78.197144][ T5068] loop0: detected capacity change from 0 to 128 [ 78.199134][ T5068] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.200329][ T5068] Bad inode number on dev loop0: 2 is out of range [ 78.201421][ T5068] SysV FS: get root inode failed [ 78.202203][ T5068] oldfs: cannot read superblock [ 78.211809][ C0] ------------[ cut here ]------------ [ 78.212706][ C0] VFS: brelse: Trying to free free buffer [ 78.213553][ C0] WARNING: CPU: 0 PID: 5070 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.214812][ C0] Modules linked in: [ 78.215414][ C0] CPU: 0 PID: 5070 Comm: syz.0.75 Tainted: G W syzkaller #0 [ 78.216622][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.218035][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.219203][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 78.220052][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 78.220844][ C0] sp : ffff800008007de0 [ 78.221426][ C0] x29: ffff800008007de0 x28: ffff0000de3d51c0 x27: 1fffe0003421845c [ 78.222584][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 78.223778][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debfc970 [ 78.224920][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 78.226096][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.227244][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.228449][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : ad63c8edb4a20c00 [ 78.229611][ C0] x8 : ad63c8edb4a20c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.230959][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.232151][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 78.233311][ C0] Call trace: [ 78.233753][ C0] invalidate_bh_lru+0x128/0x234 [ 78.234480][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 78.235328][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 78.236291][ C0] ipi_handler+0x10c/0x710 [ 78.236941][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 78.237754][ C0] handle_domain_irq+0x144/0x1fc [ 78.238506][ C0] gic_handle_irq+0x78/0x1c8 [ 78.239133][ C0] call_on_irq_stack+0x30/0x48 [ 78.239759][ C0] do_interrupt_handler+0x6c/0x88 [ 78.240475][ C0] el0_interrupt+0x94/0x260 [ 78.241168][ C0] __el0_irq_handler_common+0x18/0x24 [ 78.242012][ C0] el0t_64_irq_handler+0x10/0x1c [ 78.242718][ C0] el0t_64_irq+0x1a0/0x1a4 [ 78.243367][ C0] irq event stamp: 188 [ 78.244022][ C0] hardirqs last enabled at (187): [] el0t_64_sync_handler+0xd8/0xe4 [ 78.245610][ C0] hardirqs last disabled at (188): [] __el0_irq_handler_common+0x18/0x24 [ 78.247240][ C0] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 78.248716][ C0] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 78.250132][ C0] ---[ end trace 6903da8befc062f5 ]--- [ 78.277346][ T5070] loop0: detected capacity change from 0 to 128 [ 78.279551][ T5070] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.280687][ T5070] Bad inode number on dev loop0: 2 is out of range [ 78.281664][ T5070] SysV FS: get root inode failed [ 78.282442][ T5070] oldfs: cannot read superblock [ 78.286269][ C1] ------------[ cut here ]------------ [ 78.287133][ C1] VFS: brelse: Trying to free free buffer [ 78.288057][ C1] WARNING: CPU: 1 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.289409][ C1] Modules linked in: [ 78.289998][ C1] CPU: 1 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 78.291320][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.292907][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.293971][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 78.294760][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 78.295635][ C1] sp : ffff800008017de0 [ 78.296305][ C1] x29: ffff800008017de0 x28: ffff0000da2d1b40 x27: 1fffe0003421c65c [ 78.297655][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 78.298988][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c52bac28 [ 78.300279][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 78.301538][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.302800][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.303993][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 78.305267][ C1] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.306455][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.307706][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 78.308901][ C1] Call trace: [ 78.309406][ C1] invalidate_bh_lru+0x128/0x234 [ 78.310107][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 78.310971][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 78.311965][ C1] ipi_handler+0x10c/0x710 [ 78.312658][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 78.313595][ C1] handle_domain_irq+0x144/0x1fc [ 78.314406][ C1] gic_handle_irq+0x78/0x1c8 [ 78.315164][ C1] call_on_irq_stack+0x30/0x48 [ 78.315917][ C1] do_interrupt_handler+0x6c/0x88 [ 78.316729][ C1] el1_interrupt+0x30/0x58 [ 78.317456][ C1] el1h_64_irq_handler+0x18/0x24 [ 78.318238][ C1] el1h_64_irq+0x78/0x7c [ 78.318917][ C1] qlist_free_all+0x3c/0xa8 [ 78.319632][ C1] kasan_quarantine_reduce+0x124/0x130 [ 78.320461][ C1] __kasan_slab_alloc+0x34/0xcc [ 78.321271][ C1] slab_post_alloc_hook+0x74/0x408 [ 78.322131][ C1] kmem_cache_alloc+0x1e0/0x3e4 [ 78.322917][ C1] __d_alloc+0x3c/0x65c [ 78.323596][ C1] d_alloc_cursor+0x48/0xd8 [ 78.324320][ C1] dcache_dir_open+0x3c/0x78 [ 78.325122][ C1] do_dentry_open+0x760/0xebc [ 78.325854][ C1] vfs_open+0x7c/0x90 [ 78.326470][ C1] path_openat+0x1f80/0x26e4 [ 78.327148][ C1] do_filp_open+0x164/0x330 [ 78.327829][ C1] do_sys_openat2+0x128/0x3d8 [ 78.328503][ C1] __arm64_sys_openat+0x120/0x154 [ 78.329343][ C1] invoke_syscall+0x98/0x2b8 [ 78.330021][ C1] el0_svc_common+0x138/0x258 [ 78.330699][ C1] do_el0_svc+0x58/0x14c [ 78.331305][ C1] el0_svc+0x78/0x1e0 [ 78.331905][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 78.332648][ C1] el0t_64_sync+0x1a0/0x1a4 [ 78.333312][ C1] irq event stamp: 256276 [ 78.333977][ C1] hardirqs last enabled at (256275): [] free_unref_page+0x148/0x1fc [ 78.335532][ C1] hardirqs last disabled at (256276): [] enter_el1_irq_or_nmi+0x10/0x1c [ 78.337150][ C1] softirqs last enabled at (256116): [] local_bh_enable+0x10/0x34 [ 78.338648][ C1] softirqs last disabled at (256114): [] local_bh_disable+0x10/0x34 [ 78.340128][ C1] ---[ end trace 6903da8befc062f6 ]--- [ 78.363792][ T5072] loop0: detected capacity change from 0 to 128 [ 78.408483][ T5072] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.409635][ T5072] Bad inode number on dev loop0: 2 is out of range [ 78.410538][ T5072] SysV FS: get root inode failed [ 78.411215][ T5072] oldfs: cannot read superblock [ 78.413001][ C0] ------------[ cut here ]------------ [ 78.413825][ C0] VFS: brelse: Trying to free free buffer [ 78.414728][ C0] WARNING: CPU: 0 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.416110][ C0] Modules linked in: [ 78.416737][ C0] CPU: 0 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 78.418058][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.419684][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.420921][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 78.421640][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 78.422424][ C0] sp : ffff800008007de0 [ 78.423047][ C0] x29: ffff800008007de0 x28: ffff0000d67bd1c0 x27: 1fffe0003421845b [ 78.424362][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 78.425564][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debfcd10 [ 78.426763][ C0] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 78.428051][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.429260][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.430326][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 200a83cfaff65300 [ 78.431594][ C0] x8 : 200a83cfaff65300 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.432852][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.434087][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 78.435248][ C0] Call trace: [ 78.435779][ C0] invalidate_bh_lru+0x128/0x234 [ 78.436575][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 78.437467][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 78.438529][ C0] ipi_handler+0x10c/0x710 [ 78.439174][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 78.439944][ C0] handle_domain_irq+0x144/0x1fc [ 78.440705][ C0] gic_handle_irq+0x78/0x1c8 [ 78.441441][ C0] call_on_irq_stack+0x30/0x48 [ 78.442215][ C0] do_interrupt_handler+0x6c/0x88 [ 78.442969][ C0] el1_interrupt+0x30/0x58 [ 78.443641][ C0] el1h_64_irq_handler+0x18/0x24 [ 78.444504][ C0] el1h_64_irq+0x78/0x7c [ 78.445184][ C0] __sanitizer_cov_trace_pc+0xa4/0xac [ 78.445952][ C0] vsnprintf+0xd0/0x1890 [ 78.446585][ C0] vscnprintf+0x5c/0xd8 [ 78.447230][ C0] sysfs_emit_at+0x120/0x194 [ 78.447877][ C0] uevent_show+0x2a0/0x334 [ 78.448469][ C0] dev_attr_show+0x60/0xcc [ 78.449164][ C0] sysfs_kf_seq_show+0x2ac/0x440 [ 78.449975][ C0] kernfs_seq_show+0x118/0x154 [ 78.450720][ C0] seq_read_iter+0x3ac/0xc00 [ 78.451448][ C0] kernfs_fop_read_iter+0x140/0x500 [ 78.452264][ C0] vfs_read+0x7c4/0xa10 [ 78.452896][ C0] ksys_read+0x120/0x210 [ 78.453505][ C0] __arm64_sys_read+0x7c/0x90 [ 78.454187][ C0] invoke_syscall+0x98/0x2b8 [ 78.454875][ C0] el0_svc_common+0x138/0x258 [ 78.455560][ C0] do_el0_svc+0x58/0x14c [ 78.456159][ C0] el0_svc+0x78/0x1e0 [ 78.456718][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 78.457418][ C0] el0t_64_sync+0x1a0/0x1a4 [ 78.458089][ C0] irq event stamp: 996202 [ 78.458728][ C0] hardirqs last enabled at (996201): [] ___slab_alloc+0xc34/0xda8 [ 78.460193][ C0] hardirqs last disabled at (996202): [] enter_el1_irq_or_nmi+0x10/0x1c [ 78.461875][ C0] softirqs last enabled at (996136): [] local_bh_enable+0x10/0x34 [ 78.463437][ C0] softirqs last disabled at (996134): [] local_bh_disable+0x10/0x34 [ 78.464976][ C0] ---[ end trace 6903da8befc062f7 ]--- [ 78.502674][ T5074] loop0: detected capacity change from 0 to 128 [ 78.505239][ T5074] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.506364][ T5074] Bad inode number on dev loop0: 2 is out of range [ 78.507445][ T5074] SysV FS: get root inode failed [ 78.508232][ T5074] oldfs: cannot read superblock [ 78.519443][ T4954] ------------[ cut here ]------------ [ 78.520310][ T4954] VFS: brelse: Trying to free free buffer [ 78.521174][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.522435][ T4954] Modules linked in: [ 78.522981][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 78.524233][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.525796][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.527051][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 78.527867][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 78.528696][ T4954] sp : ffff80001fb177c0 [ 78.529369][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 78.530531][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 78.531844][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debf9148 [ 78.533039][ T4954] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.534194][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.535298][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.536467][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 78.537615][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.538943][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.540186][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.541461][ T4954] Call trace: [ 78.541951][ T4954] invalidate_bh_lru+0x128/0x234 [ 78.542756][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 78.543712][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.544473][ T4954] invalidate_bh_lrus+0x34/0x40 [ 78.545170][ T4954] blkdev_flush_mapping+0x168/0x31c [ 78.546028][ T4954] blkdev_put+0x490/0x6ac [ 78.546725][ T4954] blkdev_close+0x74/0xb0 [ 78.547362][ T4954] __fput+0x1c0/0x7f8 [ 78.547996][ T4954] ____fput+0x20/0x30 [ 78.548698][ T4954] task_work_run+0x12c/0x1e0 [ 78.549450][ T4954] do_notify_resume+0x24b4/0x3128 [ 78.550233][ T4954] el0_svc+0xf0/0x1e0 [ 78.550839][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 78.551624][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 78.552324][ T4954] irq event stamp: 214842 [ 78.553002][ T4954] hardirqs last enabled at (214841): [] kasan_quarantine_put+0xc4/0x204 [ 78.554617][ T4954] hardirqs last disabled at (214842): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.556273][ T4954] softirqs last enabled at (214642): [] local_bh_enable+0x10/0x34 [ 78.557639][ T4954] softirqs last disabled at (214640): [] local_bh_disable+0x10/0x34 [ 78.559120][ T4954] ---[ end trace 6903da8befc062f8 ]--- [ 78.577627][ T5076] loop0: detected capacity change from 0 to 128 [ 78.580035][ T5076] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.581085][ T5076] Bad inode number on dev loop0: 2 is out of range [ 78.582126][ T5076] SysV FS: get root inode failed [ 78.582925][ T5076] oldfs: cannot read superblock [ 78.586756][ C0] ------------[ cut here ]------------ [ 78.587530][ C0] VFS: brelse: Trying to free free buffer [ 78.588334][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.589549][ C0] Modules linked in: [ 78.590092][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 78.591331][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.592751][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.593935][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 78.594752][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 78.595568][ C0] sp : ffff800008007de0 [ 78.596216][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 78.597525][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 78.598801][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debf94e8 [ 78.600100][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 78.601358][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.602509][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.603714][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 78.605024][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.606336][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.607642][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 78.608937][ C0] Call trace: [ 78.609476][ C0] invalidate_bh_lru+0x128/0x234 [ 78.610278][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 78.611234][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 78.612408][ C0] ipi_handler+0x10c/0x710 [ 78.613085][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 78.613977][ C0] handle_domain_irq+0x144/0x1fc [ 78.614726][ C0] gic_handle_irq+0x78/0x1c8 [ 78.615502][ C0] call_on_irq_stack+0x30/0x48 [ 78.616265][ C0] do_interrupt_handler+0x6c/0x88 [ 78.617091][ C0] el0_interrupt+0x94/0x260 [ 78.617796][ C0] __el0_irq_handler_common+0x18/0x24 [ 78.618631][ C0] el0t_64_irq_handler+0x10/0x1c [ 78.619434][ C0] el0t_64_irq+0x1a0/0x1a4 [ 78.620140][ C0] irq event stamp: 263682 [ 78.620738][ C0] hardirqs last enabled at (263681): [] el0t_64_sync_handler+0xcc/0xe4 [ 78.622190][ C0] hardirqs last disabled at (263682): [] __el0_irq_handler_common+0x18/0x24 [ 78.623659][ C0] softirqs last enabled at (263350): [] local_bh_enable+0x10/0x34 [ 78.625215][ C0] softirqs last disabled at (263348): [] local_bh_disable+0x10/0x34 [ 78.626731][ C0] ---[ end trace 6903da8befc062f9 ]--- [ 78.686128][ T5078] loop0: detected capacity change from 0 to 128 [ 78.688673][ T5078] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.689948][ T5078] Bad inode number on dev loop0: 2 is out of range [ 78.690982][ T5078] SysV FS: get root inode failed [ 78.691664][ T5078] oldfs: cannot read superblock [ 78.699013][ T4954] ------------[ cut here ]------------ [ 78.699869][ T4954] VFS: brelse: Trying to free free buffer [ 78.700776][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.701998][ T4954] Modules linked in: [ 78.702540][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 78.703722][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.705184][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.706265][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 78.707049][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 78.707863][ T4954] sp : ffff80001fb177c0 [ 78.708526][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 78.709890][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 78.711221][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd2b8230 [ 78.712432][ T4954] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.713677][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.714999][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.716273][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 78.717500][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.718665][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.719902][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.721109][ T4954] Call trace: [ 78.721605][ T4954] invalidate_bh_lru+0x128/0x234 [ 78.722330][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 78.723179][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.723959][ T4954] invalidate_bh_lrus+0x34/0x40 [ 78.724703][ T4954] blkdev_flush_mapping+0x168/0x31c [ 78.725527][ T4954] blkdev_put+0x490/0x6ac [ 78.726212][ T4954] blkdev_close+0x74/0xb0 [ 78.726880][ T4954] __fput+0x1c0/0x7f8 [ 78.727524][ T4954] ____fput+0x20/0x30 [ 78.728162][ T4954] task_work_run+0x12c/0x1e0 [ 78.728974][ T4954] do_notify_resume+0x24b4/0x3128 [ 78.729790][ T4954] el0_svc+0xf0/0x1e0 [ 78.730385][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 78.731147][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 78.731830][ T4954] irq event stamp: 224694 [ 78.732496][ T4954] hardirqs last enabled at (224693): [] kasan_quarantine_put+0xc4/0x204 [ 78.734008][ T4954] hardirqs last disabled at (224694): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.735755][ T4954] softirqs last enabled at (224476): [] local_bh_enable+0x10/0x34 [ 78.737157][ T4954] softirqs last disabled at (224474): [] local_bh_disable+0x10/0x34 [ 78.738498][ T4954] ---[ end trace 6903da8befc062fa ]--- [ 78.757889][ T5080] loop0: detected capacity change from 0 to 128 [ 78.764672][ T5080] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.765683][ T5080] Bad inode number on dev loop0: 2 is out of range [ 78.766653][ T5080] SysV FS: get root inode failed [ 78.767377][ T5080] oldfs: cannot read superblock [ 78.774065][ T4954] ------------[ cut here ]------------ [ 78.774922][ T4954] VFS: brelse: Trying to free free buffer [ 78.775853][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.777206][ T4954] Modules linked in: [ 78.777823][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 78.779186][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.780694][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.781889][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 78.782739][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 78.783559][ T4954] sp : ffff80001fb177c0 [ 78.784211][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 78.785435][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 78.786573][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd2b85d0 [ 78.787716][ T4954] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.788946][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.790246][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.791416][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 78.792729][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.793954][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.795111][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.796325][ T4954] Call trace: [ 78.796878][ T4954] invalidate_bh_lru+0x128/0x234 [ 78.797669][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 78.798602][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.799448][ T4954] invalidate_bh_lrus+0x34/0x40 [ 78.800195][ T4954] blkdev_flush_mapping+0x168/0x31c [ 78.801017][ T4954] blkdev_put+0x490/0x6ac [ 78.801699][ T4954] blkdev_close+0x74/0xb0 [ 78.802381][ T4954] __fput+0x1c0/0x7f8 [ 78.803035][ T4954] ____fput+0x20/0x30 [ 78.803657][ T4954] task_work_run+0x12c/0x1e0 [ 78.804401][ T4954] do_notify_resume+0x24b4/0x3128 [ 78.805194][ T4954] el0_svc+0xf0/0x1e0 [ 78.805834][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 78.806670][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 78.807309][ T4954] irq event stamp: 230330 [ 78.807960][ T4954] hardirqs last enabled at (230329): [] kasan_quarantine_put+0xc4/0x204 [ 78.809412][ T4954] hardirqs last disabled at (230330): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.810957][ T4954] softirqs last enabled at (230146): [] local_bh_enable+0x10/0x34 [ 78.812461][ T4954] softirqs last disabled at (230144): [] local_bh_disable+0x10/0x34 [ 78.814056][ T4954] ---[ end trace 6903da8befc062fb ]--- [ 78.857038][ T5082] loop0: detected capacity change from 0 to 128 [ 78.859652][ T5082] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.860852][ T5082] Bad inode number on dev loop0: 2 is out of range [ 78.861788][ T5082] SysV FS: get root inode failed [ 78.862500][ T5082] oldfs: cannot read superblock [ 78.869245][ T4954] ------------[ cut here ]------------ [ 78.870023][ T4954] VFS: brelse: Trying to free free buffer [ 78.870902][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.872150][ T4954] Modules linked in: [ 78.872771][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 78.874122][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.875802][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.877065][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 78.877955][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 78.878857][ T4954] sp : ffff80001fb177c0 [ 78.879532][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 78.880691][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 78.881970][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd2b8970 [ 78.883265][ T4954] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.884593][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.885939][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.887209][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 78.888552][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.889923][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.891198][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.892493][ T4954] Call trace: [ 78.892974][ T4954] invalidate_bh_lru+0x128/0x234 [ 78.893778][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 78.894748][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.895591][ T4954] invalidate_bh_lrus+0x34/0x40 [ 78.896286][ T4954] blkdev_flush_mapping+0x168/0x31c [ 78.897048][ T4954] blkdev_put+0x490/0x6ac [ 78.897660][ T4954] blkdev_close+0x74/0xb0 [ 78.898288][ T4954] __fput+0x1c0/0x7f8 [ 78.898868][ T4954] ____fput+0x20/0x30 [ 78.899537][ T4954] task_work_run+0x12c/0x1e0 [ 78.900259][ T4954] do_notify_resume+0x24b4/0x3128 [ 78.901106][ T4954] el0_svc+0xf0/0x1e0 [ 78.901778][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 78.902634][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 78.903348][ T4954] irq event stamp: 233498 [ 78.903955][ T4954] hardirqs last enabled at (233497): [] kasan_quarantine_put+0xc4/0x204 [ 78.905389][ T4954] hardirqs last disabled at (233498): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.906875][ T4954] softirqs last enabled at (233274): [] local_bh_enable+0x10/0x34 [ 78.908181][ T4954] softirqs last disabled at (233272): [] local_bh_disable+0x10/0x34 [ 78.909551][ T4954] ---[ end trace 6903da8befc062fc ]--- [ 78.937168][ T5084] loop0: detected capacity change from 0 to 128 [ 78.940660][ T5084] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.941708][ T5084] Bad inode number on dev loop0: 2 is out of range [ 78.942707][ T5084] SysV FS: get root inode failed [ 78.943444][ T5084] oldfs: cannot read superblock [ 78.951222][ T4954] ------------[ cut here ]------------ [ 78.952065][ T4954] VFS: brelse: Trying to free free buffer [ 78.952993][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.954272][ T4954] Modules linked in: [ 78.954832][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 78.955928][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.957244][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.958290][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 78.959030][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 78.959885][ T4954] sp : ffff80001fb177c0 [ 78.960535][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 78.961809][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 78.963164][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd2b8d10 [ 78.964470][ T4954] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.965641][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.966832][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.968105][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 78.969324][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.970586][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.971846][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.973076][ T4954] Call trace: [ 78.973570][ T4954] invalidate_bh_lru+0x128/0x234 [ 78.974280][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 78.975218][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.976059][ T4954] invalidate_bh_lrus+0x34/0x40 [ 78.976843][ T4954] blkdev_flush_mapping+0x168/0x31c [ 78.977669][ T4954] blkdev_put+0x490/0x6ac [ 78.978366][ T4954] blkdev_close+0x74/0xb0 [ 78.979116][ T4954] __fput+0x1c0/0x7f8 [ 78.979768][ T4954] ____fput+0x20/0x30 [ 78.980405][ T4954] task_work_run+0x12c/0x1e0 [ 78.981133][ T4954] do_notify_resume+0x24b4/0x3128 [ 78.981929][ T4954] el0_svc+0xf0/0x1e0 [ 78.982527][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 78.983233][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 78.983855][ T4954] irq event stamp: 237310 [ 78.984459][ T4954] hardirqs last enabled at (237309): [] kasan_quarantine_put+0xc4/0x204 [ 78.985873][ T4954] hardirqs last disabled at (237310): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.987360][ T4954] softirqs last enabled at (237092): [] local_bh_enable+0x10/0x34 [ 78.988775][ T4954] softirqs last disabled at (237090): [] local_bh_disable+0x10/0x34 [ 78.990057][ T4954] ---[ end trace 6903da8befc062fd ]--- [ 79.037242][ T5086] loop0: detected capacity change from 0 to 128 [ 79.087221][ T5086] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.088283][ T5086] Bad inode number on dev loop0: 2 is out of range [ 79.089159][ T5086] SysV FS: get root inode failed [ 79.089922][ T5086] oldfs: cannot read superblock [ 79.096473][ C1] ------------[ cut here ]------------ [ 79.097247][ C1] VFS: brelse: Trying to free free buffer [ 79.098215][ C1] WARNING: CPU: 1 PID: 5087 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.099633][ C1] Modules linked in: [ 79.100255][ C1] CPU: 1 PID: 5087 Comm: syz-executor Tainted: G W syzkaller #0 [ 79.101636][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.103235][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.104452][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 79.105326][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 79.106206][ C1] sp : ffff800008017de0 [ 79.106858][ C1] x29: ffff800008017de0 x28: ffff0000d56d9b40 x27: 1fffe0003421c65c [ 79.108145][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 79.109440][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb00148 [ 79.110622][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 79.111966][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.113236][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.114521][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 64d84a97532cb200 [ 79.115871][ C1] x8 : 64d84a97532cb200 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.117169][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.118489][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 79.119846][ C1] Call trace: [ 79.120381][ C1] invalidate_bh_lru+0x128/0x234 [ 79.121126][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 79.122002][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.123052][ C1] ipi_handler+0x10c/0x710 [ 79.123738][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 79.124540][ C1] handle_domain_irq+0x144/0x1fc [ 79.125402][ C1] gic_handle_irq+0x78/0x1c8 [ 79.126138][ C1] call_on_irq_stack+0x30/0x48 [ 79.126903][ C1] do_interrupt_handler+0x6c/0x88 [ 79.127701][ C1] el1_interrupt+0x30/0x58 [ 79.128430][ C1] el1h_64_irq_handler+0x18/0x24 [ 79.129236][ C1] el1h_64_irq+0x78/0x7c [ 79.129976][ C1] el0_svc_common+0xa8/0x258 [ 79.130753][ C1] do_el0_svc+0x58/0x14c [ 79.131424][ C1] el0_svc+0x78/0x1e0 [ 79.132063][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 79.132773][ C1] el0t_64_sync+0x1a0/0x1a4 [ 79.133482][ C1] irq event stamp: 352 [ 79.134117][ C1] hardirqs last enabled at (351): [] el0_svc_common+0x9c/0x258 [ 79.135599][ C1] hardirqs last disabled at (352): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.136983][ C1] softirqs last enabled at (50): [] local_bh_enable+0x10/0x34 [ 79.138447][ C1] softirqs last disabled at (48): [] local_bh_disable+0x10/0x34 [ 79.139887][ C1] ---[ end trace 6903da8befc062fe ]--- [ 79.167191][ T5088] loop0: detected capacity change from 0 to 128 [ 79.208219][ T5088] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.209360][ T5088] Bad inode number on dev loop0: 2 is out of range [ 79.210337][ T5088] SysV FS: get root inode failed [ 79.211035][ T5088] oldfs: cannot read superblock [ 79.228270][ C0] ------------[ cut here ]------------ [ 79.229126][ C0] VFS: brelse: Trying to free free buffer [ 79.230044][ C0] WARNING: CPU: 0 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.231267][ C0] Modules linked in: [ 79.231834][ C0] CPU: 0 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 79.233088][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.234665][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.235878][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 79.236652][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 79.237466][ C0] sp : ffff800008007de0 [ 79.238102][ C0] x29: ffff800008007de0 x28: ffff0000d67bd1c0 x27: 1fffe0003421845c [ 79.239459][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 79.240809][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debf9888 [ 79.242015][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 79.243185][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.244369][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.245643][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 200a83cfaff65300 [ 79.246943][ C0] x8 : 200a83cfaff65300 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.248159][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.249446][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 79.250611][ C0] Call trace: [ 79.251043][ C0] invalidate_bh_lru+0x128/0x234 [ 79.251765][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 79.252642][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.253659][ C0] ipi_handler+0x10c/0x710 [ 79.254315][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 79.255154][ C0] handle_domain_irq+0x144/0x1fc [ 79.255887][ C0] gic_handle_irq+0x78/0x1c8 [ 79.256525][ C0] call_on_irq_stack+0x30/0x48 [ 79.257197][ C0] do_interrupt_handler+0x6c/0x88 [ 79.257969][ C0] el1_interrupt+0x30/0x58 [ 79.258641][ C0] el1h_64_irq_handler+0x18/0x24 [ 79.259388][ C0] el1h_64_irq+0x78/0x7c [ 79.260046][ C0] kfree+0x4/0x40c [ 79.260573][ C0] __arm64_sys_sendmsg+0x1a8/0x254 [ 79.261314][ C0] invoke_syscall+0x98/0x2b8 [ 79.261996][ C0] el0_svc_common+0x138/0x258 [ 79.262758][ C0] do_el0_svc+0x58/0x14c [ 79.263474][ C0] el0_svc+0x78/0x1e0 [ 79.264143][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 79.264907][ C0] el0t_64_sync+0x1a0/0x1a4 [ 79.265569][ C0] irq event stamp: 1016210 [ 79.266164][ C0] hardirqs last enabled at (1016209): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 79.267657][ C0] hardirqs last disabled at (1016210): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.269265][ C0] softirqs last enabled at (1016194): [] local_bh_enable+0x10/0x34 [ 79.270860][ C0] softirqs last disabled at (1016192): [] local_bh_disable+0x10/0x34 [ 79.272389][ C0] ---[ end trace 6903da8befc062ff ]--- [ 79.335002][ T5092] loop0: detected capacity change from 0 to 128 [ 79.337514][ T5092] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.338613][ T5092] Bad inode number on dev loop0: 2 is out of range [ 79.339537][ T5092] SysV FS: get root inode failed [ 79.340263][ T5092] oldfs: cannot read superblock [ 79.343206][ C1] ------------[ cut here ]------------ [ 79.344092][ C1] VFS: brelse: Trying to free free buffer [ 79.345058][ C1] WARNING: CPU: 1 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.346484][ C1] Modules linked in: [ 79.347102][ C1] CPU: 1 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 79.348624][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.350264][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.351494][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 79.352387][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 79.353199][ C1] sp : ffff800008017de0 [ 79.353792][ C1] x29: ffff800008017de0 x28: ffff0000da2d1b40 x27: 1fffe0003421c65c [ 79.354957][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 79.356059][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb004e8 [ 79.357239][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 79.358416][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.359534][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.360764][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 79.362035][ C1] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.363196][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.364464][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 79.365700][ C1] Call trace: [ 79.366244][ C1] invalidate_bh_lru+0x128/0x234 [ 79.366982][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 79.367879][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.368920][ C1] ipi_handler+0x10c/0x710 [ 79.369540][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 79.370301][ C1] handle_domain_irq+0x144/0x1fc [ 79.370991][ C1] gic_handle_irq+0x78/0x1c8 [ 79.371658][ C1] call_on_irq_stack+0x30/0x48 [ 79.372359][ C1] do_interrupt_handler+0x6c/0x88 [ 79.373126][ C1] el1_interrupt+0x30/0x58 [ 79.373840][ C1] el1h_64_irq_handler+0x18/0x24 [ 79.374523][ C1] el1h_64_irq+0x78/0x7c [ 79.375128][ C1] __sanitizer_cov_trace_const_cmp1+0xc4/0xc8 [ 79.376106][ C1] vsnprintf+0xd0/0x1890 [ 79.376754][ C1] tomoyo_supervisor+0x12c/0xf48 [ 79.377586][ C1] tomoyo_path_permission+0x1e8/0x310 [ 79.378370][ C1] tomoyo_check_open_permission+0x1d0/0x2fc [ 79.379195][ C1] tomoyo_file_open+0x130/0x1b0 [ 79.379873][ C1] security_file_open+0x6c/0xac [ 79.380585][ C1] do_dentry_open+0x29c/0xebc [ 79.381284][ C1] vfs_open+0x7c/0x90 [ 79.381865][ C1] path_openat+0x1f80/0x26e4 [ 79.382607][ C1] do_filp_open+0x164/0x330 [ 79.383317][ C1] do_sys_openat2+0x128/0x3d8 [ 79.384022][ C1] __arm64_sys_openat+0x120/0x154 [ 79.384737][ C1] invoke_syscall+0x98/0x2b8 [ 79.385445][ C1] el0_svc_common+0x138/0x258 [ 79.386138][ C1] do_el0_svc+0x58/0x14c [ 79.386820][ C1] el0_svc+0x78/0x1e0 [ 79.387460][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 79.388261][ C1] el0t_64_sync+0x1a0/0x1a4 [ 79.388958][ C1] irq event stamp: 281558 [ 79.389579][ C1] hardirqs last enabled at (281557): [] kasan_quarantine_put+0xc4/0x204 [ 79.391116][ C1] hardirqs last disabled at (281558): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.392648][ C1] softirqs last enabled at (281410): [] local_bh_enable+0x10/0x34 [ 79.394200][ C1] softirqs last disabled at (281408): [] local_bh_disable+0x10/0x34 [ 79.395590][ C1] ---[ end trace 6903da8befc06300 ]--- [ 79.444415][ T5094] loop0: detected capacity change from 0 to 128 [ 79.486199][ T5094] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.487550][ T5094] Bad inode number on dev loop0: 2 is out of range [ 79.488560][ T5094] SysV FS: get root inode failed [ 79.489429][ T5094] oldfs: cannot read superblock [ 79.496007][ C1] ------------[ cut here ]------------ [ 79.496907][ C1] VFS: brelse: Trying to free free buffer [ 79.497947][ C1] WARNING: CPU: 1 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.499483][ C1] Modules linked in: [ 79.500067][ C1] CPU: 1 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 79.501360][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.502828][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.504024][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 79.504853][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 79.505651][ C1] sp : ffff800008017de0 [ 79.506274][ C1] x29: ffff800008017de0 x28: ffff0000da2d1b40 x27: 1fffe0003421c65c [ 79.507498][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 79.508767][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb00888 [ 79.510040][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 79.511301][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.512598][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.513871][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 79.515037][ C1] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.516174][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.517445][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 79.518601][ C1] Call trace: [ 79.519090][ C1] invalidate_bh_lru+0x128/0x234 [ 79.519851][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 79.520827][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.521946][ C1] ipi_handler+0x10c/0x710 [ 79.522687][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 79.523654][ C1] handle_domain_irq+0x144/0x1fc [ 79.524462][ C1] gic_handle_irq+0x78/0x1c8 [ 79.525200][ C1] call_on_irq_stack+0x30/0x48 [ 79.525936][ C1] do_interrupt_handler+0x6c/0x88 [ 79.526753][ C1] el1_interrupt+0x30/0x58 [ 79.527485][ C1] el1h_64_irq_handler+0x18/0x24 [ 79.528267][ C1] el1h_64_irq+0x78/0x7c [ 79.528905][ C1] seqcount_lockdep_reader_access+0x214/0x2bc [ 79.529844][ C1] step_into+0x4cc/0xa24 [ 79.530520][ C1] walk_component+0x1f0/0x3a8 [ 79.531232][ C1] link_path_walk+0x590/0xb8c [ 79.531964][ C1] path_openat+0x1c0/0x26e4 [ 79.532669][ C1] do_filp_open+0x164/0x330 [ 79.533357][ C1] do_sys_openat2+0x128/0x3d8 [ 79.534113][ C1] __arm64_sys_openat+0x120/0x154 [ 79.534951][ C1] invoke_syscall+0x98/0x2b8 [ 79.535654][ C1] el0_svc_common+0x138/0x258 [ 79.536325][ C1] do_el0_svc+0x58/0x14c [ 79.536927][ C1] el0_svc+0x78/0x1e0 [ 79.537498][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 79.538310][ C1] el0t_64_sync+0x1a0/0x1a4 [ 79.539045][ C1] irq event stamp: 284778 [ 79.539732][ C1] hardirqs last enabled at (284777): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 79.541524][ C1] hardirqs last disabled at (284778): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.543173][ C1] softirqs last enabled at (284536): [] local_bh_enable+0x10/0x34 [ 79.544722][ C1] softirqs last disabled at (284534): [] local_bh_disable+0x10/0x34 [ 79.546340][ C1] ---[ end trace 6903da8befc06301 ]--- [ 79.593379][ T5096] loop0: detected capacity change from 0 to 128 [ 79.626644][ T5096] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.627927][ T5096] Bad inode number on dev loop0: 2 is out of range [ 79.628875][ T5096] SysV FS: get root inode failed [ 79.629798][ T5096] oldfs: cannot read superblock [ 79.636592][ T4954] ------------[ cut here ]------------ [ 79.637479][ T4954] VFS: brelse: Trying to free free buffer [ 79.638441][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.639690][ T4954] Modules linked in: [ 79.640278][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 79.641431][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.642846][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.643925][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 79.644678][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 79.645381][ T4954] sp : ffff80001fb177c0 [ 79.645901][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 79.647170][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 79.648379][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb00c28 [ 79.649712][ T4954] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 79.651110][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.652388][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.653726][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 79.654946][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.656299][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.657584][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 79.658909][ T4954] Call trace: [ 79.659465][ T4954] invalidate_bh_lru+0x128/0x234 [ 79.660268][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 79.661272][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 79.662119][ T4954] invalidate_bh_lrus+0x34/0x40 [ 79.662842][ T4954] blkdev_flush_mapping+0x168/0x31c [ 79.663671][ T4954] blkdev_put+0x490/0x6ac [ 79.664313][ T4954] blkdev_close+0x74/0xb0 [ 79.665023][ T4954] __fput+0x1c0/0x7f8 [ 79.665719][ T4954] ____fput+0x20/0x30 [ 79.666348][ T4954] task_work_run+0x12c/0x1e0 [ 79.667140][ T4954] do_notify_resume+0x24b4/0x3128 [ 79.667959][ T4954] el0_svc+0xf0/0x1e0 [ 79.668578][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 79.669441][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 79.670216][ T4954] irq event stamp: 259488 [ 79.670911][ T4954] hardirqs last enabled at (259487): [] kasan_quarantine_put+0xc4/0x204 [ 79.672471][ T4954] hardirqs last disabled at (259488): [] smp_call_function_many_cond+0xa44/0xeb0 [ 79.674074][ T4954] softirqs last enabled at (259276): [] local_bh_enable+0x10/0x34 [ 79.675420][ T4954] softirqs last disabled at (259274): [] local_bh_disable+0x10/0x34 [ 79.676965][ T4954] ---[ end trace 6903da8befc06302 ]--- [ 79.717107][ T5098] loop0: detected capacity change from 0 to 128 [ 79.719123][ T5098] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.720248][ T5098] Bad inode number on dev loop0: 2 is out of range [ 79.721159][ T5098] SysV FS: get root inode failed [ 79.721870][ T5098] oldfs: cannot read superblock [ 79.725934][ C1] ------------[ cut here ]------------ [ 79.726734][ C1] VFS: brelse: Trying to free free buffer [ 79.727731][ C1] WARNING: CPU: 1 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.729098][ C1] Modules linked in: [ 79.729751][ C1] CPU: 1 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 79.731224][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.732795][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.733999][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 79.734859][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 79.735657][ C1] sp : ffff800008017de0 [ 79.736324][ C1] x29: ffff800008017de0 x28: ffff0000da2d1b40 x27: 1fffe0003421c65c [ 79.737429][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 79.738743][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd32d060 [ 79.739978][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 79.741173][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.742438][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.743750][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 79.745064][ C1] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.746398][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.747692][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 79.748935][ C1] Call trace: [ 79.749447][ C1] invalidate_bh_lru+0x128/0x234 [ 79.750197][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 79.751182][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.752258][ C1] ipi_handler+0x10c/0x710 [ 79.752962][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 79.753814][ C1] handle_domain_irq+0x144/0x1fc [ 79.754565][ C1] gic_handle_irq+0x78/0x1c8 [ 79.755278][ C1] call_on_irq_stack+0x30/0x48 [ 79.755989][ C1] do_interrupt_handler+0x6c/0x88 [ 79.756669][ C1] el1_interrupt+0x30/0x58 [ 79.757364][ C1] el1h_64_irq_handler+0x18/0x24 [ 79.758198][ C1] el1h_64_irq+0x78/0x7c [ 79.758882][ C1] __sanitizer_cov_trace_cmp8+0x74/0xc0 [ 79.759774][ C1] tomoyo_realpath_from_path+0x4bc/0x510 [ 79.760703][ C1] tomoyo_path_perm+0x1b4/0x440 [ 79.761506][ C1] tomoyo_path_unlink+0xa4/0xe8 [ 79.762334][ C1] security_path_unlink+0xe4/0x134 [ 79.763131][ C1] do_unlinkat+0x280/0x600 [ 79.763842][ C1] __arm64_sys_unlinkat+0xe0/0xfc [ 79.764606][ C1] invoke_syscall+0x98/0x2b8 [ 79.765335][ C1] el0_svc_common+0x138/0x258 [ 79.766130][ C1] do_el0_svc+0x58/0x14c [ 79.766780][ C1] el0_svc+0x78/0x1e0 [ 79.767466][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 79.768259][ C1] el0t_64_sync+0x1a0/0x1a4 [ 79.768945][ C1] irq event stamp: 289326 [ 79.769602][ C1] hardirqs last enabled at (289325): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 79.771380][ C1] hardirqs last disabled at (289326): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.772892][ C1] softirqs last enabled at (288848): [] local_bh_enable+0x10/0x34 [ 79.774376][ C1] softirqs last disabled at (288846): [] local_bh_disable+0x10/0x34 [ 79.775877][ C1] ---[ end trace 6903da8befc06303 ]--- [ 79.812462][ T5100] loop0: detected capacity change from 0 to 128 [ 79.846555][ T5100] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.847732][ T5100] Bad inode number on dev loop0: 2 is out of range [ 79.848666][ T5100] SysV FS: get root inode failed [ 79.849406][ T5100] oldfs: cannot read superblock [ 79.856195][ C1] ------------[ cut here ]------------ [ 79.857069][ C1] VFS: brelse: Trying to free free buffer [ 79.857996][ C1] WARNING: CPU: 1 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.859523][ C1] Modules linked in: [ 79.860165][ C1] CPU: 1 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 79.861603][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.863122][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.864186][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 79.865013][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 79.865831][ C1] sp : ffff800008017de0 [ 79.866460][ C1] x29: ffff800008017de0 x28: ffff0000da2d1b40 x27: 1fffe0003421c65c [ 79.867626][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 79.868907][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd32d400 [ 79.870018][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 79.871129][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.872317][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.873465][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 79.874657][ C1] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.875852][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.877053][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 79.878258][ C1] Call trace: [ 79.878761][ C1] invalidate_bh_lru+0x128/0x234 [ 79.879524][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 79.880441][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.881551][ C1] ipi_handler+0x10c/0x710 [ 79.882251][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 79.883142][ C1] handle_domain_irq+0x144/0x1fc [ 79.883926][ C1] gic_handle_irq+0x78/0x1c8 [ 79.884630][ C1] call_on_irq_stack+0x30/0x48 [ 79.885388][ C1] do_interrupt_handler+0x6c/0x88 [ 79.886211][ C1] el1_interrupt+0x30/0x58 [ 79.886912][ C1] el1h_64_irq_handler+0x18/0x24 [ 79.887619][ C1] el1h_64_irq+0x78/0x7c [ 79.888263][ C1] lock_acquire+0x234/0x620 [ 79.888976][ C1] rcu_lock_acquire+0x3c/0x48 [ 79.889793][ C1] obj_cgroup_put+0x1c/0x170 [ 79.890564][ C1] slab_post_alloc_hook+0x378/0x408 [ 79.891367][ C1] kmem_cache_alloc+0x1e0/0x3e4 [ 79.892122][ C1] anon_vma_clone+0x90/0x470 [ 79.892800][ C1] anon_vma_fork+0x80/0x49c [ 79.893443][ C1] copy_mm+0x7bc/0x1090 [ 79.894028][ C1] copy_process+0x14d8/0x34ac [ 79.894700][ C1] kernel_clone+0x1d8/0x9d4 [ 79.895403][ C1] __arm64_sys_clone+0x138/0x190 [ 79.896202][ C1] invoke_syscall+0x98/0x2b8 [ 79.896921][ C1] el0_svc_common+0x138/0x258 [ 79.897645][ C1] do_el0_svc+0x58/0x14c [ 79.898269][ C1] el0_svc+0x78/0x1e0 [ 79.898881][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 79.899703][ C1] el0t_64_sync+0x1a0/0x1a4 [ 79.900383][ C1] irq event stamp: 293588 [ 79.901078][ C1] hardirqs last enabled at (293587): [] pte_alloc_one+0x194/0x258 [ 79.902606][ C1] hardirqs last disabled at (293588): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.904177][ C1] softirqs last enabled at (293476): [] local_bh_enable+0x10/0x34 [ 79.905650][ C1] softirqs last disabled at (293474): [] local_bh_disable+0x10/0x34 [ 79.907134][ C1] ---[ end trace 6903da8befc06304 ]--- [ 79.927822][ T5102] loop0: detected capacity change from 0 to 128 [ 79.929872][ T5102] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.931200][ T5102] Bad inode number on dev loop0: 2 is out of range [ 79.932229][ T5102] SysV FS: get root inode failed [ 79.933080][ T5102] oldfs: cannot read superblock [ 79.936959][ C0] ------------[ cut here ]------------ [ 79.937720][ C0] VFS: brelse: Trying to free free buffer [ 79.938490][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.939730][ C0] Modules linked in: [ 79.940311][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 79.941743][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.943195][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.944308][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 79.945058][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 79.945873][ C0] sp : ffff800008007de0 [ 79.946458][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 79.947677][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 79.948791][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000debf9c28 [ 79.950017][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 79.951249][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.952628][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.953813][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 79.954953][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.956162][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.957453][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 79.958747][ C0] Call trace: [ 79.959230][ C0] invalidate_bh_lru+0x128/0x234 [ 79.959928][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 79.960828][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.961971][ C0] ipi_handler+0x10c/0x710 [ 79.962641][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 79.963528][ C0] handle_domain_irq+0x144/0x1fc [ 79.964364][ C0] gic_handle_irq+0x78/0x1c8 [ 79.965082][ C0] call_on_irq_stack+0x30/0x48 [ 79.965793][ C0] do_interrupt_handler+0x6c/0x88 [ 79.966662][ C0] el1_interrupt+0x30/0x58 [ 79.967367][ C0] el1h_64_irq_handler+0x18/0x24 [ 79.968184][ C0] el1h_64_irq+0x78/0x7c [ 79.968871][ C0] kasan_quarantine_put+0xd4/0x204 [ 79.969682][ C0] ____kasan_slab_free+0x124/0x164 [ 79.970518][ C0] __kasan_slab_free+0x18/0x28 [ 79.971252][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 79.972074][ C0] kfree+0x170/0x40c [ 79.972649][ C0] tomoyo_path_number_perm+0x3fc/0x518 [ 79.973422][ C0] tomoyo_path_mkdir+0xa8/0xec [ 79.974114][ C0] security_path_mkdir+0xec/0x13c [ 79.974818][ C0] do_mkdirat+0x154/0x508 [ 79.975538][ C0] __arm64_sys_mkdirat+0x90/0xa8 [ 79.976189][ C0] invoke_syscall+0x98/0x2b8 [ 79.976843][ C0] el0_svc_common+0x138/0x258 [ 79.977484][ C0] do_el0_svc+0x58/0x14c [ 79.978095][ C0] el0_svc+0x78/0x1e0 [ 79.978732][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 79.979478][ C0] el0t_64_sync+0x1a0/0x1a4 [ 79.980158][ C0] irq event stamp: 294606 [ 79.980767][ C0] hardirqs last enabled at (294605): [] kasan_quarantine_put+0xc4/0x204 [ 79.982203][ C0] hardirqs last disabled at (294606): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.983604][ C0] softirqs last enabled at (294114): [] local_bh_enable+0x10/0x34 [ 79.985013][ C0] softirqs last disabled at (294112): [] local_bh_disable+0x10/0x34 [ 79.986406][ C0] ---[ end trace 6903da8befc06305 ]--- [ 80.031763][ T5104] loop0: detected capacity change from 0 to 128 [ 80.034327][ T5104] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.035750][ T5104] Bad inode number on dev loop0: 2 is out of range [ 80.036702][ T5104] SysV FS: get root inode failed [ 80.037456][ T5104] oldfs: cannot read superblock [ 80.046271][ C1] ------------[ cut here ]------------ [ 80.047101][ C1] VFS: brelse: Trying to free free buffer [ 80.047931][ C1] WARNING: CPU: 1 PID: 5105 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.049248][ C1] Modules linked in: [ 80.049758][ C1] CPU: 1 PID: 5105 Comm: syz.0.93 Tainted: G W syzkaller #0 [ 80.050980][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.052328][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.053433][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 80.054169][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 80.054891][ C1] sp : ffff800008017de0 [ 80.055546][ C1] x29: ffff800008017de0 x28: ffff0000d75e9b40 x27: 1fffe0003421c65c [ 80.056854][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 80.058135][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd32d7a0 [ 80.059349][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 80.060710][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.061886][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.063079][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 52c69944986c2d00 [ 80.064236][ C1] x8 : 52c69944986c2d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.065472][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.066699][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 80.067946][ C1] Call trace: [ 80.068437][ C1] invalidate_bh_lru+0x128/0x234 [ 80.069162][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 80.070071][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 80.071127][ C1] ipi_handler+0x10c/0x710 [ 80.071789][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 80.072643][ C1] handle_domain_irq+0x144/0x1fc [ 80.073425][ C1] gic_handle_irq+0x78/0x1c8 [ 80.074135][ C1] call_on_irq_stack+0x30/0x48 [ 80.074895][ C1] do_interrupt_handler+0x6c/0x88 [ 80.075707][ C1] el1_interrupt+0x30/0x58 [ 80.076450][ C1] el1h_64_irq_handler+0x18/0x24 [ 80.077212][ C1] el1h_64_irq+0x78/0x7c [ 80.077839][ C1] account_kernel_stack+0x150/0x274 [ 80.078645][ C1] dup_task_struct+0x768/0xc44 [ 80.079394][ C1] copy_process+0x4c8/0x34ac [ 80.080069][ C1] kernel_clone+0x1d8/0x9d4 [ 80.080797][ C1] __arm64_sys_clone+0x138/0x190 [ 80.081627][ C1] invoke_syscall+0x98/0x2b8 [ 80.082258][ C1] el0_svc_common+0x138/0x258 [ 80.082950][ C1] do_el0_svc+0x58/0x14c [ 80.083565][ C1] el0_svc+0x78/0x1e0 [ 80.084130][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 80.084835][ C1] el0t_64_sync+0x1a0/0x1a4 [ 80.085479][ C1] irq event stamp: 1518 [ 80.086051][ C1] hardirqs last enabled at (1517): [] account_kernel_stack+0x130/0x274 [ 80.087449][ C1] hardirqs last disabled at (1518): [] enter_el1_irq_or_nmi+0x10/0x1c [ 80.088862][ C1] softirqs last enabled at (1502): [] local_bh_enable+0x10/0x34 [ 80.090159][ C1] softirqs last disabled at (1500): [] local_bh_disable+0x10/0x34 [ 80.091460][ C1] ---[ end trace 6903da8befc06306 ]--- [ 80.146967][ T5106] loop0: detected capacity change from 0 to 128 [ 80.186737][ T5106] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.187953][ T5106] Bad inode number on dev loop0: 2 is out of range [ 80.188981][ T5106] SysV FS: get root inode failed [ 80.189726][ T5106] oldfs: cannot read superblock [ 80.196479][ C0] ------------[ cut here ]------------ [ 80.197337][ C0] VFS: brelse: Trying to free free buffer [ 80.198265][ C0] WARNING: CPU: 0 PID: 5107 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.199664][ C0] Modules linked in: [ 80.200221][ C0] CPU: 0 PID: 5107 Comm: syz-executor Tainted: G W syzkaller #0 [ 80.201731][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.203343][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.204616][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 80.205441][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 80.206317][ C0] sp : ffff800008007de0 [ 80.206938][ C0] x29: ffff800008007de0 x28: ffff0000d5b99b40 x27: 1fffe0003421845c [ 80.208128][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 80.209426][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2837df8 [ 80.210581][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 80.211762][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.212962][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.214233][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0b33ad7e0ed4c600 [ 80.215405][ C0] x8 : 0b33ad7e0ed4c600 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.216594][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.217713][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 80.218849][ C0] Call trace: [ 80.219284][ C0] invalidate_bh_lru+0x128/0x234 [ 80.220031][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 80.220923][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 80.222051][ C0] ipi_handler+0x10c/0x710 [ 80.222738][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 80.223508][ C0] handle_domain_irq+0x144/0x1fc [ 80.224229][ C0] gic_handle_irq+0x78/0x1c8 [ 80.224853][ C0] call_on_irq_stack+0x30/0x48 [ 80.225532][ C0] do_interrupt_handler+0x6c/0x88 [ 80.226256][ C0] el1_interrupt+0x30/0x58 [ 80.226925][ C0] el1h_64_irq_handler+0x18/0x24 [ 80.227661][ C0] el1h_64_irq+0x78/0x7c [ 80.228277][ C0] count_memcg_event_mm+0x1d0/0x308 [ 80.229052][ C0] handle_mm_fault+0x1a0/0x2950 [ 80.229774][ C0] do_page_fault+0x694/0xad4 [ 80.230488][ C0] do_mem_abort+0x6c/0x1ac [ 80.231085][ C0] el0_da+0x90/0x1fc [ 80.231668][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 80.232346][ C0] el0t_64_sync+0x1a0/0x1a4 [ 80.232987][ C0] irq event stamp: 78 [ 80.233574][ C0] hardirqs last enabled at (77): [] count_memcg_event_mm+0x1b0/0x308 [ 80.234978][ C0] hardirqs last disabled at (78): [] enter_el1_irq_or_nmi+0x10/0x1c [ 80.236413][ C0] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 80.237862][ C0] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 80.239255][ C0] ---[ end trace 6903da8befc06307 ]--- [ 80.285906][ T5108] loop0: detected capacity change from 0 to 128 [ 80.346193][ T5108] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.347366][ T5108] Bad inode number on dev loop0: 2 is out of range [ 80.348424][ T5108] SysV FS: get root inode failed [ 80.349196][ T5108] oldfs: cannot read superblock [ 80.349948][ T5108] ------------[ cut here ]------------ [ 80.350790][ T5108] VFS: brelse: Trying to free free buffer [ 80.351614][ T5108] WARNING: CPU: 0 PID: 5108 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.352940][ T5108] Modules linked in: [ 80.353542][ T5108] CPU: 0 PID: 5108 Comm: syz.0.94 Tainted: G W syzkaller #0 [ 80.354911][ T5108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.356389][ T5108] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.357528][ T5108] pc : invalidate_bh_lru+0x128/0x234 [ 80.358402][ T5108] lr : invalidate_bh_lru+0x128/0x234 [ 80.359215][ T5108] sp : ffff8000201176e0 [ 80.359821][ T5108] x29: ffff8000201176e0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 80.360964][ T5108] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 80.362142][ T5108] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28337a0 [ 80.363283][ T5108] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 80.364378][ T5108] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.365627][ T5108] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.366955][ T5108] x11: 0000000000000002 x10: 0000000000000000 x9 : f27e2685875ceb00 [ 80.368235][ T5108] x8 : f27e2685875ceb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.369486][ T5108] x5 : ffff800020116fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.370745][ T5108] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 80.371946][ T5108] Call trace: [ 80.372416][ T5108] invalidate_bh_lru+0x128/0x234 [ 80.373150][ T5108] smp_call_function_many_cond+0xa50/0xeb0 [ 80.374069][ T5108] on_each_cpu_cond_mask+0x5c/0xc4 [ 80.374793][ T5108] invalidate_bh_lrus+0x34/0x40 [ 80.375511][ T5108] blkdev_flush_mapping+0x168/0x31c [ 80.376284][ T5108] blkdev_put+0x490/0x6ac [ 80.376889][ T5108] kill_block_super+0x98/0xdc [ 80.377599][ T5108] deactivate_locked_super+0xb8/0x13c [ 80.378414][ T5108] mount_bdev+0x284/0x358 [ 80.379080][ T5108] sysv_mount+0x44/0x58 [ 80.379696][ T5108] legacy_get_tree+0xd4/0x16c [ 80.380382][ T5108] vfs_get_tree+0x90/0x274 [ 80.380990][ T5108] do_new_mount+0x228/0x810 [ 80.381644][ T5108] path_mount+0x5b4/0x1000 [ 80.382307][ T5108] __arm64_sys_mount+0x514/0x5e4 [ 80.383009][ T5108] invoke_syscall+0x98/0x2b8 [ 80.383728][ T5108] el0_svc_common+0x138/0x258 [ 80.384490][ T5108] do_el0_svc+0x58/0x14c [ 80.385171][ T5108] el0_svc+0x78/0x1e0 [ 80.385700][ T5108] el0t_64_sync_handler+0xcc/0xe4 [ 80.386387][ T5108] el0t_64_sync+0x1a0/0x1a4 [ 80.387020][ T5108] irq event stamp: 974 [ 80.387610][ T5108] hardirqs last enabled at (973): [] kasan_quarantine_put+0xc4/0x204 [ 80.388921][ T5108] hardirqs last disabled at (974): [] smp_call_function_many_cond+0xa44/0xeb0 [ 80.390464][ T5108] softirqs last enabled at (782): [] local_bh_enable+0x10/0x34 [ 80.391927][ T5108] softirqs last disabled at (780): [] local_bh_disable+0x10/0x34 [ 80.393357][ T5108] ---[ end trace 6903da8befc06308 ]--- [ 80.475617][ T5110] loop0: detected capacity change from 0 to 128 [ 80.478072][ T5110] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.479250][ T5110] Bad inode number on dev loop0: 2 is out of range [ 80.480274][ T5110] SysV FS: get root inode failed [ 80.481105][ T5110] oldfs: cannot read superblock [ 80.488150][ C1] ------------[ cut here ]------------ [ 80.488987][ C1] VFS: brelse: Trying to free free buffer [ 80.489848][ C1] WARNING: CPU: 1 PID: 5111 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.491228][ C1] Modules linked in: [ 80.491826][ C1] CPU: 1 PID: 5111 Comm: syz.0.96 Tainted: G W syzkaller #0 [ 80.493204][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.494779][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.495947][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 80.496778][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 80.497566][ C1] sp : ffff800008017de0 [ 80.498206][ C1] x29: ffff800008017de0 x28: ffff0000d4ecd1c0 x27: 1fffe0003421c65c [ 80.499457][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 80.500748][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd32db40 [ 80.502045][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 80.503334][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.504625][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.505790][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : c606d1ef7b75e300 [ 80.507001][ C1] x8 : c606d1ef7b75e300 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.508301][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.509429][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 80.510760][ C1] Call trace: [ 80.511249][ C1] invalidate_bh_lru+0x128/0x234 [ 80.512055][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 80.513019][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 80.514079][ C1] ipi_handler+0x10c/0x710 [ 80.514775][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 80.515618][ C1] handle_domain_irq+0x144/0x1fc [ 80.516413][ C1] gic_handle_irq+0x78/0x1c8 [ 80.517087][ C1] call_on_irq_stack+0x30/0x48 [ 80.517819][ C1] do_interrupt_handler+0x6c/0x88 [ 80.518644][ C1] el0_interrupt+0x94/0x260 [ 80.519350][ C1] __el0_irq_handler_common+0x18/0x24 [ 80.520168][ C1] el0t_64_irq_handler+0x10/0x1c [ 80.520964][ C1] el0t_64_irq+0x1a0/0x1a4 [ 80.521623][ C1] irq event stamp: 1054 [ 80.522231][ C1] hardirqs last enabled at (1053): [] el0t_64_sync_handler+0xd8/0xe4 [ 80.523682][ C1] hardirqs last disabled at (1054): [] __el0_irq_handler_common+0x18/0x24 [ 80.525130][ C1] softirqs last enabled at (546): [] local_bh_enable+0x10/0x34 [ 80.526488][ C1] softirqs last disabled at (544): [] local_bh_disable+0x10/0x34 [ 80.527799][ C1] ---[ end trace 6903da8befc06309 ]--- [ 80.547537][ T5112] loop0: detected capacity change from 0 to 128 [ 80.585706][ T5112] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.586834][ T5112] Bad inode number on dev loop0: 2 is out of range [ 80.587778][ T5112] SysV FS: get root inode failed [ 80.588579][ T5112] oldfs: cannot read superblock [ 80.589352][ T5112] ------------[ cut here ]------------ [ 80.590182][ T5112] VFS: brelse: Trying to free free buffer [ 80.591152][ T5112] WARNING: CPU: 0 PID: 5112 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.592493][ T5112] Modules linked in: [ 80.593115][ T5112] CPU: 0 PID: 5112 Comm: syz.0.96 Tainted: G W syzkaller #0 [ 80.594599][ T5112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.596212][ T5112] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.597558][ T5112] pc : invalidate_bh_lru+0x128/0x234 [ 80.598413][ T5112] lr : invalidate_bh_lru+0x128/0x234 [ 80.599168][ T5112] sp : ffff8000201b76e0 [ 80.599763][ T5112] x29: ffff8000201b76e0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 80.601050][ T5112] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 80.602291][ T5112] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2833b40 [ 80.603651][ T5112] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 80.604873][ T5112] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.606042][ T5112] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.607245][ T5112] x11: 0000000000000002 x10: 0000000000000000 x9 : 0b63c206720b1900 [ 80.608402][ T5112] x8 : 0b63c206720b1900 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.609622][ T5112] x5 : ffff8000201b6fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.610948][ T5112] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 80.612230][ T5112] Call trace: [ 80.612749][ T5112] invalidate_bh_lru+0x128/0x234 [ 80.613531][ T5112] smp_call_function_many_cond+0xa50/0xeb0 [ 80.614374][ T5112] on_each_cpu_cond_mask+0x5c/0xc4 [ 80.615194][ T5112] invalidate_bh_lrus+0x34/0x40 [ 80.615957][ T5112] blkdev_flush_mapping+0x168/0x31c [ 80.616748][ T5112] blkdev_put+0x490/0x6ac [ 80.617327][ T5112] kill_block_super+0x98/0xdc [ 80.617999][ T5112] deactivate_locked_super+0xb8/0x13c [ 80.618717][ T5112] mount_bdev+0x284/0x358 [ 80.619324][ T5112] sysv_mount+0x44/0x58 [ 80.619904][ T5112] legacy_get_tree+0xd4/0x16c [ 80.620564][ T5112] vfs_get_tree+0x90/0x274 [ 80.621165][ T5112] do_new_mount+0x228/0x810 [ 80.621853][ T5112] path_mount+0x5b4/0x1000 [ 80.622603][ T5112] __arm64_sys_mount+0x514/0x5e4 [ 80.623332][ T5112] invoke_syscall+0x98/0x2b8 [ 80.624030][ T5112] el0_svc_common+0x138/0x258 [ 80.624714][ T5112] do_el0_svc+0x58/0x14c [ 80.625303][ T5112] el0_svc+0x78/0x1e0 [ 80.625857][ T5112] el0t_64_sync_handler+0xcc/0xe4 [ 80.626647][ T5112] el0t_64_sync+0x1a0/0x1a4 [ 80.627304][ T5112] irq event stamp: 966 [ 80.627940][ T5112] hardirqs last enabled at (965): [] kasan_quarantine_put+0xc4/0x204 [ 80.629393][ T5112] hardirqs last disabled at (966): [] smp_call_function_many_cond+0xa44/0xeb0 [ 80.630941][ T5112] softirqs last enabled at (794): [] local_bh_enable+0x10/0x34 [ 80.632324][ T5112] softirqs last disabled at (792): [] local_bh_disable+0x10/0x34 [ 80.633603][ T5112] ---[ end trace 6903da8befc0630a ]--- [ 80.724996][ T5114] loop0: detected capacity change from 0 to 128 [ 80.727462][ T5114] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.728683][ T5114] Bad inode number on dev loop0: 2 is out of range [ 80.729679][ T5114] SysV FS: get root inode failed [ 80.730523][ T5114] oldfs: cannot read superblock [ 80.738806][ T4954] ------------[ cut here ]------------ [ 80.739695][ T4954] VFS: brelse: Trying to free free buffer [ 80.740556][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.741744][ T4954] Modules linked in: [ 80.742261][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 80.743568][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.745040][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.746146][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 80.746888][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 80.747643][ T4954] sp : ffff80001fb177c0 [ 80.748246][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 80.749374][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 80.750476][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2833ee0 [ 80.751567][ T4954] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 80.752685][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.753793][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.754931][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 80.756115][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.757280][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.758468][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 80.759765][ T4954] Call trace: [ 80.760252][ T4954] invalidate_bh_lru+0x128/0x234 [ 80.760926][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 80.761780][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 80.762578][ T4954] invalidate_bh_lrus+0x34/0x40 [ 80.763337][ T4954] blkdev_flush_mapping+0x168/0x31c [ 80.764113][ T4954] blkdev_put+0x490/0x6ac [ 80.764802][ T4954] blkdev_close+0x74/0xb0 [ 80.765428][ T4954] __fput+0x1c0/0x7f8 [ 80.765972][ T4954] ____fput+0x20/0x30 [ 80.766583][ T4954] task_work_run+0x12c/0x1e0 [ 80.767186][ T4954] do_notify_resume+0x24b4/0x3128 [ 80.767900][ T4954] el0_svc+0xf0/0x1e0 [ 80.768527][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 80.769263][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 80.769897][ T4954] irq event stamp: 290120 [ 80.770503][ T4954] hardirqs last enabled at (290119): [] kasan_quarantine_put+0xc4/0x204 [ 80.771947][ T4954] hardirqs last disabled at (290120): [] smp_call_function_many_cond+0xa44/0xeb0 [ 80.773566][ T4954] softirqs last enabled at (289868): [] local_bh_enable+0x10/0x34 [ 80.774863][ T4954] softirqs last disabled at (289866): [] local_bh_disable+0x10/0x34 [ 80.776199][ T4954] ---[ end trace 6903da8befc0630b ]--- [ 80.807897][ T5116] loop0: detected capacity change from 0 to 128 [ 80.809922][ T5116] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.811013][ T5116] Bad inode number on dev loop0: 2 is out of range [ 80.811952][ T5116] SysV FS: get root inode failed [ 80.812708][ T5116] oldfs: cannot read superblock [ 80.817433][ C0] ------------[ cut here ]------------ [ 80.818313][ C0] VFS: brelse: Trying to free free buffer [ 80.819264][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.820466][ C0] Modules linked in: [ 80.821061][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 80.822535][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.824116][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.825374][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 80.826163][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 80.826905][ C0] sp : ffff800008007de0 [ 80.827474][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 80.828655][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 80.829822][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2833318 [ 80.831065][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 80.832258][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.833551][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.834755][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 80.836109][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.837411][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.838659][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 80.839952][ C0] Call trace: [ 80.840458][ C0] invalidate_bh_lru+0x128/0x234 [ 80.841297][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 80.842169][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 80.843167][ C0] ipi_handler+0x10c/0x710 [ 80.843845][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 80.844708][ C0] handle_domain_irq+0x144/0x1fc [ 80.845468][ C0] gic_handle_irq+0x78/0x1c8 [ 80.846131][ C0] call_on_irq_stack+0x30/0x48 [ 80.846817][ C0] do_interrupt_handler+0x6c/0x88 [ 80.847527][ C0] el1_interrupt+0x30/0x58 [ 80.848179][ C0] el1h_64_irq_handler+0x18/0x24 [ 80.848941][ C0] el1h_64_irq+0x78/0x7c [ 80.849557][ C0] alloc_counters+0x3f8/0x7a4 [ 80.850185][ C0] do_ipt_get_ctl+0xaf4/0x13a8 [ 80.850874][ C0] nf_getsockopt+0x264/0x284 [ 80.851563][ C0] ip_getsockopt+0xffc/0x158c [ 80.852217][ C0] tcp_getsockopt+0x208/0x2e78 [ 80.852882][ C0] sock_common_getsockopt+0xa8/0xc4 [ 80.853640][ C0] __sys_getsockopt+0x1b8/0x250 [ 80.854410][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 80.855259][ C0] invoke_syscall+0x98/0x2b8 [ 80.855958][ C0] el0_svc_common+0x138/0x258 [ 80.856692][ C0] do_el0_svc+0x58/0x14c [ 80.857372][ C0] el0_svc+0x78/0x1e0 [ 80.857933][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 80.858647][ C0] el0t_64_sync+0x1a0/0x1a4 [ 80.859373][ C0] irq event stamp: 309874 [ 80.860069][ C0] hardirqs last enabled at (309873): [] alloc_counters+0x3d4/0x7a4 [ 80.861512][ C0] hardirqs last disabled at (309874): [] enter_el1_irq_or_nmi+0x10/0x1c [ 80.863049][ C0] softirqs last enabled at (309836): [] release_sock+0x1d0/0x258 [ 80.864428][ C0] softirqs last disabled at (309834): [] release_sock+0x34/0x258 [ 80.865860][ C0] ---[ end trace 6903da8befc0630c ]--- [ 80.906854][ T5118] loop0: detected capacity change from 0 to 128 [ 80.909381][ T5118] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.910506][ T5118] Bad inode number on dev loop0: 2 is out of range [ 80.911443][ T5118] SysV FS: get root inode failed [ 80.912228][ T5118] oldfs: cannot read superblock [ 80.926562][ T4954] ------------[ cut here ]------------ [ 80.927499][ T4954] VFS: brelse: Trying to free free buffer [ 80.928365][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.929572][ T4954] Modules linked in: [ 80.930189][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 80.931487][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.932870][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.934100][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 80.934887][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 80.935702][ T4954] sp : ffff80001fb177c0 [ 80.936407][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 80.937772][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 80.939105][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28f4060 [ 80.940419][ T4954] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 80.941653][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.942910][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.944119][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 80.945256][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.946494][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.947786][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 80.949055][ T4954] Call trace: [ 80.949584][ T4954] invalidate_bh_lru+0x128/0x234 [ 80.950353][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 80.951237][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 80.951972][ T4954] invalidate_bh_lrus+0x34/0x40 [ 80.952681][ T4954] blkdev_flush_mapping+0x168/0x31c [ 80.953565][ T4954] blkdev_put+0x490/0x6ac [ 80.954206][ T4954] blkdev_close+0x74/0xb0 [ 80.954906][ T4954] __fput+0x1c0/0x7f8 [ 80.955549][ T4954] ____fput+0x20/0x30 [ 80.956198][ T4954] task_work_run+0x12c/0x1e0 [ 80.956855][ T4954] do_notify_resume+0x24b4/0x3128 [ 80.957678][ T4954] el0_svc+0xf0/0x1e0 [ 80.958315][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 80.959093][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 80.959755][ T4954] irq event stamp: 297670 [ 80.960451][ T4954] hardirqs last enabled at (297669): [] kasan_quarantine_put+0xc4/0x204 [ 80.961947][ T4954] hardirqs last disabled at (297670): [] smp_call_function_many_cond+0xa44/0xeb0 [ 80.963418][ T4954] softirqs last enabled at (297446): [] local_bh_enable+0x10/0x34 [ 80.964967][ T4954] softirqs last disabled at (297444): [] local_bh_disable+0x10/0x34 [ 80.966348][ T4954] ---[ end trace 6903da8befc0630d ]--- [ 80.997746][ T5122] loop0: detected capacity change from 0 to 128 [ 81.057217][ T5122] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.058377][ T5122] Bad inode number on dev loop0: 2 is out of range [ 81.059408][ T5122] SysV FS: get root inode failed [ 81.060201][ T5122] oldfs: cannot read superblock [ 81.064930][ C0] ------------[ cut here ]------------ [ 81.065789][ C0] VFS: brelse: Trying to free free buffer [ 81.066746][ C0] WARNING: CPU: 0 PID: 3646 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.068049][ C0] Modules linked in: [ 81.068668][ C0] CPU: 0 PID: 3646 Comm: syslogd Tainted: G W syzkaller #0 [ 81.069941][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.071423][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.072698][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 81.073570][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 81.074432][ C0] sp : ffff800008007de0 [ 81.075095][ C0] x29: ffff800008007de0 x28: ffff0000d5b9d1c0 x27: 1fffe0003421845c [ 81.076404][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 81.077658][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e28f47a0 [ 81.078981][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 81.080310][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.081617][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.082896][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 11048b5c94d15600 [ 81.084155][ C0] x8 : 11048b5c94d15600 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.085504][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.086739][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 81.088024][ C0] Call trace: [ 81.088483][ C0] invalidate_bh_lru+0x128/0x234 [ 81.089171][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 81.089970][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 81.090905][ C0] ipi_handler+0x10c/0x710 [ 81.091557][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 81.092318][ C0] handle_domain_irq+0x144/0x1fc [ 81.093094][ C0] gic_handle_irq+0x78/0x1c8 [ 81.093887][ C0] call_on_irq_stack+0x30/0x48 [ 81.094633][ C0] do_interrupt_handler+0x6c/0x88 [ 81.095427][ C0] el1_interrupt+0x30/0x58 [ 81.096106][ C0] el1h_64_irq_handler+0x18/0x24 [ 81.096869][ C0] el1h_64_irq+0x78/0x7c [ 81.097495][ C0] kasan_quarantine_put+0xd4/0x204 [ 81.098167][ C0] ____kasan_slab_free+0x124/0x164 [ 81.098880][ C0] __kasan_slab_free+0x18/0x28 [ 81.099553][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 81.100352][ C0] kmem_cache_free+0xdc/0x3b4 [ 81.101089][ C0] kfree_skbmem+0x114/0x1b0 [ 81.101763][ C0] consume_skb+0x140/0x33c [ 81.102469][ C0] skb_free_datagram+0x30/0xe4 [ 81.103206][ C0] __unix_dgram_recvmsg+0x7e4/0xb28 [ 81.104064][ C0] unix_dgram_recvmsg+0xd4/0xec [ 81.104829][ C0] sock_read_iter+0x23c/0x2dc [ 81.105537][ C0] vfs_read+0x7c4/0xa10 [ 81.106144][ C0] ksys_read+0x120/0x210 [ 81.106725][ C0] __arm64_sys_read+0x7c/0x90 [ 81.107383][ C0] invoke_syscall+0x98/0x2b8 [ 81.108066][ C0] el0_svc_common+0x138/0x258 [ 81.108732][ C0] do_el0_svc+0x58/0x14c [ 81.109396][ C0] el0_svc+0x78/0x1e0 [ 81.110017][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 81.110822][ C0] el0t_64_sync+0x1a0/0x1a4 [ 81.111468][ C0] irq event stamp: 96158 [ 81.112116][ C0] hardirqs last enabled at (96157): [] kasan_quarantine_put+0xc4/0x204 [ 81.113642][ C0] hardirqs last disabled at (96158): [] enter_el1_irq_or_nmi+0x10/0x1c [ 81.115084][ C0] softirqs last enabled at (96126): [] local_bh_enable+0x10/0x34 [ 81.116407][ C0] softirqs last disabled at (96124): [] local_bh_disable+0x10/0x34 [ 81.117921][ C0] ---[ end trace 6903da8befc0630e ]--- [ 81.156584][ T5124] loop0: detected capacity change from 0 to 128 [ 81.159222][ T5124] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.160327][ T5124] Bad inode number on dev loop0: 2 is out of range [ 81.161321][ T5124] SysV FS: get root inode failed [ 81.162098][ T5124] oldfs: cannot read superblock [ 81.175447][ T4954] ------------[ cut here ]------------ [ 81.176281][ T4954] VFS: brelse: Trying to free free buffer [ 81.177144][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.178455][ T4954] Modules linked in: [ 81.179019][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 81.180326][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.181905][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.183010][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 81.183828][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 81.184594][ T4954] sp : ffff80001fb177c0 [ 81.185216][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 81.186411][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 81.187668][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e29ccee0 [ 81.188923][ T4954] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 81.190066][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.191224][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.192338][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 81.193511][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.194753][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.195905][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 81.197046][ T4954] Call trace: [ 81.197512][ T4954] invalidate_bh_lru+0x128/0x234 [ 81.198351][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 81.199315][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 81.200202][ T4954] invalidate_bh_lrus+0x34/0x40 [ 81.200957][ T4954] blkdev_flush_mapping+0x168/0x31c [ 81.201790][ T4954] blkdev_put+0x490/0x6ac [ 81.202467][ T4954] blkdev_close+0x74/0xb0 [ 81.203190][ T4954] __fput+0x1c0/0x7f8 [ 81.203813][ T4954] ____fput+0x20/0x30 [ 81.204449][ T4954] task_work_run+0x12c/0x1e0 [ 81.205115][ T4954] do_notify_resume+0x24b4/0x3128 [ 81.205912][ T4954] el0_svc+0xf0/0x1e0 [ 81.206554][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 81.207324][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 81.207986][ T4954] irq event stamp: 303752 [ 81.208683][ T4954] hardirqs last enabled at (303751): [] kasan_quarantine_put+0xc4/0x204 [ 81.210198][ T4954] hardirqs last disabled at (303752): [] smp_call_function_many_cond+0xa44/0xeb0 [ 81.211853][ T4954] softirqs last enabled at (303540): [] local_bh_enable+0x10/0x34 [ 81.213389][ T4954] softirqs last disabled at (303538): [] local_bh_disable+0x10/0x34 [ 81.214883][ T4954] ---[ end trace 6903da8befc0630f ]--- [ 81.244528][ T5128] loop0: detected capacity change from 0 to 128 [ 81.286054][ T5128] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.287144][ T5128] Bad inode number on dev loop0: 2 is out of range [ 81.288060][ T5128] SysV FS: get root inode failed [ 81.288795][ T5128] oldfs: cannot read superblock [ 81.289652][ C1] ------------[ cut here ]------------ [ 81.290511][ C1] VFS: brelse: Trying to free free buffer [ 81.291452][ C1] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.292766][ C1] Modules linked in: [ 81.293400][ C1] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 81.294738][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.296321][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.297510][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 81.298316][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 81.299096][ C1] sp : ffff800008017de0 [ 81.299745][ C1] x29: ffff800008017de0 x28: ffff0000d3c30000 x27: 1fffe0003421c65b [ 81.300910][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 81.302141][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd32dee0 [ 81.303363][ C1] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 81.304613][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.305880][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.307147][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 1d3b654001abc400 [ 81.308401][ C1] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.309716][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.311030][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 81.312273][ C1] Call trace: [ 81.312802][ C1] invalidate_bh_lru+0x128/0x234 [ 81.313586][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 81.314540][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 81.315585][ C1] ipi_handler+0x10c/0x710 [ 81.316314][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 81.317148][ C1] handle_domain_irq+0x144/0x1fc [ 81.317852][ C1] gic_handle_irq+0x78/0x1c8 [ 81.318535][ C1] call_on_irq_stack+0x30/0x48 [ 81.319228][ C1] do_interrupt_handler+0x6c/0x88 [ 81.319949][ C1] el0_interrupt+0x94/0x260 [ 81.320589][ C1] __el0_irq_handler_common+0x18/0x24 [ 81.321354][ C1] el0t_64_irq_handler+0x10/0x1c [ 81.322045][ C1] el0t_64_irq+0x1a0/0x1a4 [ 81.322741][ C1] irq event stamp: 307682 [ 81.323407][ C1] hardirqs last enabled at (307681): [] el0t_64_sync_handler+0x6c/0xe4 [ 81.324928][ C1] hardirqs last disabled at (307682): [] __el0_irq_handler_common+0x18/0x24 [ 81.326558][ C1] softirqs last enabled at (307678): [] local_bh_enable+0x10/0x34 [ 81.328094][ C1] softirqs last disabled at (307676): [] local_bh_disable+0x10/0x34 [ 81.329566][ C1] ---[ end trace 6903da8befc06310 ]--- [ 81.452582][ T5132] loop0: detected capacity change from 0 to 128 [ 81.454571][ T5132] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.455821][ T5132] Bad inode number on dev loop0: 2 is out of range [ 81.456791][ T5132] SysV FS: get root inode failed [ 81.457503][ T5132] oldfs: cannot read superblock [ 81.461117][ C0] ------------[ cut here ]------------ [ 81.461948][ C0] VFS: brelse: Trying to free free buffer [ 81.462831][ C0] WARNING: CPU: 0 PID: 4719 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.464191][ C0] Modules linked in: [ 81.464744][ C0] CPU: 0 PID: 4719 Comm: syz-executor Tainted: G W syzkaller #0 [ 81.466098][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.467638][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.468865][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 81.469761][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 81.470505][ C0] sp : ffff800008007de0 [ 81.471094][ C0] x29: ffff800008007de0 x28: ffff0000da2d1b40 x27: 1fffe0003421845c [ 81.472353][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 81.473673][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2bc1148 [ 81.474995][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 81.476257][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.477494][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.478841][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28df45644c0a0d00 [ 81.480096][ C0] x8 : 28df45644c0a0d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.481326][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.482446][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 81.483676][ C0] Call trace: [ 81.484170][ C0] invalidate_bh_lru+0x128/0x234 [ 81.484879][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 81.485750][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 81.486795][ C0] ipi_handler+0x10c/0x710 [ 81.487491][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 81.488306][ C0] handle_domain_irq+0x144/0x1fc [ 81.489057][ C0] gic_handle_irq+0x78/0x1c8 [ 81.489765][ C0] call_on_irq_stack+0x30/0x48 [ 81.490529][ C0] do_interrupt_handler+0x6c/0x88 [ 81.491322][ C0] el1_interrupt+0x30/0x58 [ 81.492017][ C0] el1h_64_irq_handler+0x18/0x24 [ 81.492770][ C0] el1h_64_irq+0x78/0x7c [ 81.493404][ C0] __sanitizer_cov_trace_switch+0x24/0x10c [ 81.494253][ C0] tomoyo_path_permission+0x1e8/0x310 [ 81.495071][ C0] tomoyo_path_perm+0x328/0x440 [ 81.495833][ C0] tomoyo_inode_getattr+0x28/0x38 [ 81.496644][ C0] security_inode_getattr+0xd8/0x124 [ 81.497475][ C0] vfs_statx+0x118/0x458 [ 81.498142][ C0] __arm64_sys_newfstatat+0x10c/0x190 [ 81.499017][ C0] invoke_syscall+0x98/0x2b8 [ 81.499758][ C0] el0_svc_common+0x138/0x258 [ 81.500507][ C0] do_el0_svc+0x58/0x14c [ 81.501168][ C0] el0_svc+0x78/0x1e0 [ 81.501745][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 81.502558][ C0] el0t_64_sync+0x1a0/0x1a4 [ 81.503217][ C0] irq event stamp: 326452 [ 81.503832][ C0] hardirqs last enabled at (326451): [] kasan_quarantine_put+0xc4/0x204 [ 81.505268][ C0] hardirqs last disabled at (326452): [] enter_el1_irq_or_nmi+0x10/0x1c [ 81.506719][ C0] softirqs last enabled at (326058): [] local_bh_enable+0x10/0x34 [ 81.508152][ C0] softirqs last disabled at (326056): [] local_bh_disable+0x10/0x34 [ 81.509683][ C0] ---[ end trace 6903da8befc06311 ]--- [ 81.541986][ T5134] loop0: detected capacity change from 0 to 128 [ 81.575770][ T5134] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.576903][ T5134] Bad inode number on dev loop0: 2 is out of range [ 81.577892][ T5134] SysV FS: get root inode failed [ 81.578603][ T5134] oldfs: cannot read superblock [ 81.579456][ T5134] ------------[ cut here ]------------ [ 81.580224][ T5134] VFS: brelse: Trying to free free buffer [ 81.581108][ T5134] WARNING: CPU: 1 PID: 5134 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.582230][ T5134] Modules linked in: [ 81.582722][ T5134] CPU: 1 PID: 5134 Comm: syz.0.107 Tainted: G W syzkaller #0 [ 81.584037][ T5134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.585653][ T5134] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.586882][ T5134] pc : invalidate_bh_lru+0x128/0x234 [ 81.587689][ T5134] lr : invalidate_bh_lru+0x128/0x234 [ 81.588547][ T5134] sp : ffff8000202876e0 [ 81.589183][ T5134] x29: ffff8000202876e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 81.590350][ T5134] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 81.591569][ T5134] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd2b5318 [ 81.592778][ T5134] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 81.594162][ T5134] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.595514][ T5134] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.596790][ T5134] x11: 0000000000000002 x10: 0000000000000000 x9 : 178f606babee8100 [ 81.598067][ T5134] x8 : 178f606babee8100 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.599268][ T5134] x5 : ffff800020286fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.600538][ T5134] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 81.601795][ T5134] Call trace: [ 81.602296][ T5134] invalidate_bh_lru+0x128/0x234 [ 81.603015][ T5134] smp_call_function_many_cond+0xa50/0xeb0 [ 81.603975][ T5134] on_each_cpu_cond_mask+0x5c/0xc4 [ 81.604732][ T5134] invalidate_bh_lrus+0x34/0x40 [ 81.605416][ T5134] blkdev_flush_mapping+0x168/0x31c [ 81.606232][ T5134] blkdev_put+0x490/0x6ac [ 81.606943][ T5134] kill_block_super+0x98/0xdc [ 81.607664][ T5134] deactivate_locked_super+0xb8/0x13c [ 81.608603][ T5134] mount_bdev+0x284/0x358 [ 81.609331][ T5134] sysv_mount+0x44/0x58 [ 81.610048][ T5134] legacy_get_tree+0xd4/0x16c [ 81.610815][ T5134] vfs_get_tree+0x90/0x274 [ 81.611489][ T5134] do_new_mount+0x228/0x810 [ 81.612172][ T5134] path_mount+0x5b4/0x1000 [ 81.612835][ T5134] __arm64_sys_mount+0x514/0x5e4 [ 81.613614][ T5134] invoke_syscall+0x98/0x2b8 [ 81.614375][ T5134] el0_svc_common+0x138/0x258 [ 81.615144][ T5134] do_el0_svc+0x58/0x14c [ 81.615841][ T5134] el0_svc+0x78/0x1e0 [ 81.616423][ T5134] el0t_64_sync_handler+0xcc/0xe4 [ 81.617221][ T5134] el0t_64_sync+0x1a0/0x1a4 [ 81.617930][ T5134] irq event stamp: 916 [ 81.618603][ T5134] hardirqs last enabled at (915): [] kasan_quarantine_put+0xc4/0x204 [ 81.619961][ T5134] hardirqs last disabled at (916): [] smp_call_function_many_cond+0xa44/0xeb0 [ 81.621668][ T5134] softirqs last enabled at (756): [] local_bh_enable+0x10/0x34 [ 81.623070][ T5134] softirqs last disabled at (754): [] local_bh_disable+0x10/0x34 [ 81.624477][ T5134] ---[ end trace 6903da8befc06312 ]--- [ 81.747325][ T5138] loop0: detected capacity change from 0 to 128 [ 81.797121][ T5138] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.798336][ T5138] Bad inode number on dev loop0: 2 is out of range [ 81.799443][ T5138] SysV FS: get root inode failed [ 81.800517][ T5138] oldfs: cannot read superblock [ 81.808073][ T4954] ------------[ cut here ]------------ [ 81.808977][ T4954] VFS: brelse: Trying to free free buffer [ 81.809928][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.811277][ T4954] Modules linked in: [ 81.811898][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 81.813119][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.814660][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.815926][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 81.816648][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 81.817352][ T4954] sp : ffff80001fb177c0 [ 81.817957][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 81.819277][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 81.820577][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd2b56b8 [ 81.821877][ T4954] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 81.823187][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.824509][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.825786][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 81.827049][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.828453][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.829704][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 81.830868][ T4954] Call trace: [ 81.831340][ T4954] invalidate_bh_lru+0x128/0x234 [ 81.832072][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 81.832948][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 81.833720][ T4954] invalidate_bh_lrus+0x34/0x40 [ 81.834439][ T4954] blkdev_flush_mapping+0x168/0x31c [ 81.835166][ T4954] blkdev_put+0x490/0x6ac [ 81.835822][ T4954] blkdev_close+0x74/0xb0 [ 81.836436][ T4954] __fput+0x1c0/0x7f8 [ 81.837035][ T4954] ____fput+0x20/0x30 [ 81.837733][ T4954] task_work_run+0x12c/0x1e0 [ 81.838527][ T4954] do_notify_resume+0x24b4/0x3128 [ 81.839386][ T4954] el0_svc+0xf0/0x1e0 [ 81.840039][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 81.840832][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 81.841545][ T4954] irq event stamp: 323618 [ 81.842262][ T4954] hardirqs last enabled at (323617): [] kasan_quarantine_put+0xc4/0x204 [ 81.843938][ T4954] hardirqs last disabled at (323618): [] smp_call_function_many_cond+0xa44/0xeb0 [ 81.845562][ T4954] softirqs last enabled at (323420): [] local_bh_enable+0x10/0x34 [ 81.847204][ T4954] softirqs last disabled at (323418): [] local_bh_disable+0x10/0x34 [ 81.848854][ T4954] ---[ end trace 6903da8befc06313 ]--- [ 81.877308][ T5140] loop0: detected capacity change from 0 to 128 [ 81.915786][ T5140] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.917002][ T5140] Bad inode number on dev loop0: 2 is out of range [ 81.918121][ T5140] SysV FS: get root inode failed [ 81.918884][ T5140] oldfs: cannot read superblock [ 81.926930][ T4954] ------------[ cut here ]------------ [ 81.927875][ T4954] VFS: brelse: Trying to free free buffer [ 81.928861][ T4954] WARNING: CPU: 1 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.930164][ T4954] Modules linked in: [ 81.930719][ T4954] CPU: 1 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 81.932035][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.933633][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.934904][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 81.935734][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 81.936580][ T4954] sp : ffff80001fb177c0 [ 81.937125][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 81.938426][ T4954] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 81.939676][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd2b5a58 [ 81.940920][ T4954] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 81.942177][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.943347][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.944610][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 81.945879][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.947083][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.948348][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 81.949586][ T4954] Call trace: [ 81.950046][ T4954] invalidate_bh_lru+0x128/0x234 [ 81.950763][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 81.951659][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 81.952431][ T4954] invalidate_bh_lrus+0x34/0x40 [ 81.953223][ T4954] blkdev_flush_mapping+0x168/0x31c [ 81.954053][ T4954] blkdev_put+0x490/0x6ac [ 81.954751][ T4954] blkdev_close+0x74/0xb0 [ 81.955450][ T4954] __fput+0x1c0/0x7f8 [ 81.956081][ T4954] ____fput+0x20/0x30 [ 81.956749][ T4954] task_work_run+0x12c/0x1e0 [ 81.957532][ T4954] do_notify_resume+0x24b4/0x3128 [ 81.958369][ T4954] el0_svc+0xf0/0x1e0 [ 81.958975][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 81.959790][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 81.960461][ T4954] irq event stamp: 326820 [ 81.961044][ T4954] hardirqs last enabled at (326819): [] kasan_quarantine_put+0xc4/0x204 [ 81.962518][ T4954] hardirqs last disabled at (326820): [] smp_call_function_many_cond+0xa44/0xeb0 [ 81.964115][ T4954] softirqs last enabled at (326612): [] local_bh_enable+0x10/0x34 [ 81.965464][ T4954] softirqs last disabled at (326610): [] local_bh_disable+0x10/0x34 [ 81.966959][ T4954] ---[ end trace 6903da8befc06314 ]--- [ 82.007121][ T5142] loop0: detected capacity change from 0 to 128 [ 82.050092][ T5142] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.051341][ T5142] Bad inode number on dev loop0: 2 is out of range [ 82.052320][ T5142] SysV FS: get root inode failed [ 82.053062][ T5142] oldfs: cannot read superblock [ 82.061198][ T4954] ------------[ cut here ]------------ [ 82.061982][ T4954] VFS: brelse: Trying to free free buffer [ 82.062890][ T4954] WARNING: CPU: 0 PID: 4954 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.064128][ T4954] Modules linked in: [ 82.064652][ T4954] CPU: 0 PID: 4954 Comm: udevd Tainted: G W syzkaller #0 [ 82.065941][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.067320][ T4954] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.068442][ T4954] pc : invalidate_bh_lru+0x128/0x234 [ 82.069211][ T4954] lr : invalidate_bh_lru+0x128/0x234 [ 82.069962][ T4954] sp : ffff80001fb177c0 [ 82.070572][ T4954] x29: ffff80001fb177c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 82.071791][ T4954] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 82.073020][ T4954] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2bc14e8 [ 82.074216][ T4954] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 82.075522][ T4954] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.076781][ T4954] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.078078][ T4954] x11: 0000000000000002 x10: 0000000000000000 x9 : 1d3b654001abc400 [ 82.079319][ T4954] x8 : 1d3b654001abc400 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.080666][ T4954] x5 : ffff80001fb170b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.081991][ T4954] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 82.083099][ T4954] Call trace: [ 82.083583][ T4954] invalidate_bh_lru+0x128/0x234 [ 82.084299][ T4954] smp_call_function_many_cond+0xa50/0xeb0 [ 82.085163][ T4954] on_each_cpu_cond_mask+0x5c/0xc4 [ 82.085937][ T4954] invalidate_bh_lrus+0x34/0x40 [ 82.086650][ T4954] blkdev_flush_mapping+0x168/0x31c [ 82.087422][ T4954] blkdev_put+0x490/0x6ac [ 82.088017][ T4954] blkdev_close+0x74/0xb0 [ 82.088667][ T4954] __fput+0x1c0/0x7f8 [ 82.089229][ T4954] ____fput+0x20/0x30 [ 82.089790][ T4954] task_work_run+0x12c/0x1e0 [ 82.090485][ T4954] do_notify_resume+0x24b4/0x3128 [ 82.091240][ T4954] el0_svc+0xf0/0x1e0 [ 82.091802][ T4954] el0t_64_sync_handler+0xcc/0xe4 [ 82.092554][ T4954] el0t_64_sync+0x1a0/0x1a4 [ 82.093171][ T4954] irq event stamp: 329724 [ 82.093814][ T4954] hardirqs last enabled at (329723): [] kasan_quarantine_put+0xc4/0x204 [ 82.095405][ T4954] hardirqs last disabled at (329724): [] smp_call_function_many_cond+0xa44/0xeb0 [ 82.096949][ T4954] softirqs last enabled at (329526): [] local_bh_enable+0x10/0x34 [ 82.098410][ T4954] softirqs last disabled at (329524): [] local_bh_disable+0x10/0x34 [ 82.099761][ T4954] ---[ end trace 6903da8befc06315 ]--- [ 82.127524][ T5144] loop0: detected capacity change from 0 to 128 [ 82.130141][ T5144] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.131393][ T5144] Bad inode number on dev loop0: 2 is out of range [ 82.132491][ T5144] SysV FS: get root inode failed [ 82.133214][ T5144] oldfs: cannot read superblock [ 82.138217][ C0] ------------[ cut here ]------------ [ 82.139097][ C0] VFS: brelse: Trying to free free buffer [ 82.139946][ C0] WARNING: CPU: 0 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.141214][ C0] Modules linked in: [ 82.141784][ C0] CPU: 0 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 82.142883][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.144292][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.145571][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 82.146354][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 82.147139][ C0] sp : ffff800008007de0 [ 82.147746][ C0] x29: ffff800008007de0 x28: ffff0000d67bd1c0 x27: 1fffe0003421845c [ 82.149046][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 82.150242][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2bc1888 [ 82.151486][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 82.152656][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.153858][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.155031][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 200a83cfaff65300 [ 82.156314][ C0] x8 : 200a83cfaff65300 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.157506][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.158808][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 82.160060][ C0] Call trace: [ 82.160552][ C0] invalidate_bh_lru+0x128/0x234 [ 82.161383][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 82.162355][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 82.163416][ C0] ipi_handler+0x10c/0x710 [ 82.164109][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 82.164965][ C0] handle_domain_irq+0x144/0x1fc [ 82.165749][ C0] gic_handle_irq+0x78/0x1c8 [ 82.166468][ C0] call_on_irq_stack+0x30/0x48 [ 82.167129][ C0] do_interrupt_handler+0x6c/0x88 [ 82.167859][ C0] el1_interrupt+0x30/0x58 [ 82.168574][ C0] el1h_64_irq_handler+0x18/0x24 [ 82.169309][ C0] el1h_64_irq+0x78/0x7c [ 82.169942][ C0] lock_acquire+0x234/0x620 [ 82.170642][ C0] __might_fault+0xc8/0x128 [ 82.171358][ C0] filldir64+0x670/0x9e4 [ 82.172027][ C0] kernfs_fop_readdir+0x4b8/0x768 [ 82.172747][ C0] iterate_dir+0x1f0/0x4cc [ 82.173433][ C0] __arm64_sys_getdents64+0x11c/0x340 [ 82.174254][ C0] invoke_syscall+0x98/0x2b8 [ 82.174876][ C0] el0_svc_common+0x138/0x258 [ 82.175574][ C0] do_el0_svc+0x58/0x14c [ 82.176169][ C0] el0_svc+0x78/0x1e0 [ 82.176810][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 82.177630][ C0] el0t_64_sync+0x1a0/0x1a4 [ 82.178363][ C0] irq event stamp: 1101076 [ 82.179068][ C0] hardirqs last enabled at (1101075): [] el0_svc_common+0x9c/0x258 [ 82.180536][ C0] hardirqs last disabled at (1101076): [] enter_el1_irq_or_nmi+0x10/0x1c [ 82.182129][ C0] softirqs last enabled at (1101016): [] local_bh_enable+0x10/0x34 [ 82.183685][ C0] softirqs last disabled at (1101014): [] local_bh_disable+0x10/0x34 [ 82.185172][ C0] ---[ end trace 6903da8befc06316 ]--- [ 82.214349][ T5146] loop0: detected capacity change from 0 to 128 [ 82.255836][ T5146] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.256926][ T5146] Bad inode number on dev loop0: 2 is out of range [ 82.257882][ T5146] SysV FS: get root inode failed [ 82.258558][ T5146] oldfs: cannot read superblock [ 82.259387][ C1] ------------[ cut here ]------------ [ 82.260230][ C1] VFS: brelse: Trying to free free buffer [ 82.261107][ C1] WARNING: CPU: 1 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.262438][ C1] Modules linked in: [ 82.263048][ C1] CPU: 1 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 82.264280][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.265763][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.266869][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 82.267647][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 82.268399][ C1] sp : ffff800008017de0 [ 82.268974][ C1] x29: ffff800008017de0 x28: ffff0000d67bd1c0 x27: 1fffe0003421c65b [ 82.270159][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 82.271456][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd2b5df8 [ 82.272805][ C1] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 82.274061][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.275308][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.276502][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 200a83cfaff65300 [ 82.277708][ C1] x8 : 200a83cfaff65300 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.279042][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.280310][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 82.281552][ C1] Call trace: [ 82.282059][ C1] invalidate_bh_lru+0x128/0x234 [ 82.282923][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 82.283909][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 82.284974][ C1] ipi_handler+0x10c/0x710 [ 82.285655][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 82.286546][ C1] handle_domain_irq+0x144/0x1fc [ 82.287329][ C1] gic_handle_irq+0x78/0x1c8 [ 82.288061][ C1] call_on_irq_stack+0x30/0x48 [ 82.288798][ C1] do_interrupt_handler+0x6c/0x88 [ 82.289577][ C1] el1_interrupt+0x30/0x58 [ 82.290223][ C1] el1h_64_irq_handler+0x18/0x24 [ 82.290981][ C1] el1h_64_irq+0x78/0x7c [ 82.291626][ C1] local_daif_restore+0x20/0x3c [ 82.292427][ C1] el0_sve_acc+0x78/0x1ec [ 82.293136][ C1] el0t_64_sync_handler+0x6c/0xe4 [ 82.293986][ C1] el0t_64_sync+0x1a0/0x1a4 [ 82.294714][ C1] irq event stamp: 1106262 [ 82.295413][ C1] hardirqs last enabled at (1106261): [] local_daif_restore+0x1c/0x3c [ 82.296798][ C1] hardirqs last disabled at (1106262): [] enter_el1_irq_or_nmi+0x10/0x1c [ 82.298317][ C1] softirqs last enabled at (1106238): [] local_bh_enable+0x10/0x34 [ 82.299724][ C1] softirqs last disabled at (1106236): [] local_bh_disable+0x10/0x34 [ 82.301078][ C1] ---[ end trace 6903da8befc06317 ]--- [ 82.413911][ T5148] loop0: detected capacity change from 0 to 128 [ 82.472361][ T5148] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.473508][ T5148] Bad inode number on dev loop0: 2 is out of range [ 82.474443][ T5148] SysV FS: get root inode failed [ 82.475473][ T5148] oldfs: cannot read superblock [ 82.484164][ C1] ------------[ cut here ]------------ [ 82.485018][ C1] VFS: brelse: Trying to free free buffer [ 82.485921][ C1] WARNING: CPU: 1 PID: 5150 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.487200][ C1] Modules linked in: [ 82.487767][ C1] CPU: 1 PID: 5150 Comm: syz.0.115 Tainted: G W syzkaller #0 [ 82.489055][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.490677][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.491843][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 82.492707][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 82.493501][ C1] sp : ffff800008017de0 [ 82.494110][ C1] x29: ffff800008017de0 x28: ffff0000c5dd9b40 x27: 1fffe0003421c65b [ 82.495383][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 82.496577][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2918a58 [ 82.497900][ C1] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 82.499249][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.500516][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.501722][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0dba2642560dc700 [ 82.503026][ C1] x8 : 0dba2642560dc700 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.504354][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.505639][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 82.506898][ C1] Call trace: [ 82.507377][ C1] invalidate_bh_lru+0x128/0x234 [ 82.508105][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 82.509083][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 82.510237][ C1] ipi_handler+0x10c/0x710 [ 82.510992][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 82.511883][ C1] handle_domain_irq+0x144/0x1fc [ 82.512716][ C1] gic_handle_irq+0x78/0x1c8 [ 82.513474][ C1] call_on_irq_stack+0x30/0x48 [ 82.514219][ C1] do_interrupt_handler+0x6c/0x88 [ 82.515056][ C1] el0_interrupt+0x94/0x260 [ 82.515801][ C1] __el0_irq_handler_common+0x18/0x24 [ 82.516695][ C1] el0t_64_irq_handler+0x10/0x1c [ 82.517408][ C1] el0t_64_irq+0x1a0/0x1a4 [ 82.518120][ C1] irq event stamp: 216 [ 82.518756][ C1] hardirqs last enabled at (215): [] el0t_64_sync_handler+0xd8/0xe4 [ 82.520296][ C1] hardirqs last disabled at (216): [] __el0_irq_handler_common+0x18/0x24 [ 82.521847][ C1] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 82.523332][ C1] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 82.524767][ C1] ---[ end trace 6903da8befc06318 ]--- [ 82.567341][ T5150] loop0: detected capacity change from 0 to 128 [ 82.605811][ T5150] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.606934][ T5150] Bad inode number on dev loop0: 2 is out of range [ 82.608067][ T5150] SysV FS: get root inode failed [ 82.608863][ T5150] oldfs: cannot read superblock [ 82.617028][ C0] ------------[ cut here ]------------ [ 82.617862][ C0] VFS: brelse: Trying to free free buffer [ 82.618748][ C0] WARNING: CPU: 0 PID: 5151 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.619998][ C0] Modules linked in: [ 82.620533][ C0] CPU: 0 PID: 5151 Comm: syz.0.116 Tainted: G W syzkaller #0 [ 82.621910][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.623392][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.624625][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 82.625375][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 82.626187][ C0] sp : ffff800008007de0 [ 82.626842][ C0] x29: ffff800008007de0 x28: ffff0000ceac51c0 x27: 1fffe0003421845c [ 82.628044][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 82.629272][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2bc1c28 [ 82.630558][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 82.631821][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.633224][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.634620][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 1692e97a3d8b8f00 [ 82.635899][ C0] x8 : 1692e97a3d8b8f00 x7 : 0000000000000001 x6 : 0000000000000001