Warning: Permanently added '10.128.1.70' (ED25519) to the list of known hosts. 1970/01/01 00:01:02 parsed 1 programs [ 63.688285][ T4424] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 68.456210][ T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.457675][ T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.461367][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 68.464872][ T4240] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.466038][ T4240] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.468365][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 68.671392][ T4560] chnl_net:caif_netlink_parms(): no params data found [ 68.689547][ T4560] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.690761][ T4560] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.692222][ T4560] device bridge_slave_0 entered promiscuous mode [ 68.694104][ T4560] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.695161][ T4560] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.696538][ T4560] device bridge_slave_1 entered promiscuous mode [ 68.705870][ T4560] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.708770][ T4560] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.716186][ T4560] team0: Port device team_slave_0 added [ 68.718321][ T4560] team0: Port device team_slave_1 added [ 68.724909][ T4560] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.725997][ T4560] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.730091][ T4560] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.732415][ T4560] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.733420][ T4560] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.737286][ T4560] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.778321][ T4560] device hsr_slave_0 entered promiscuous mode [ 68.837330][ T4560] device hsr_slave_1 entered promiscuous mode [ 69.480879][ T4560] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 69.528326][ T4560] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 69.572241][ T4560] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 69.608205][ T2064] ieee802154 phy0 wpan0: encryption failed: -22 [ 69.608769][ T7] cfg80211: failed to load regulatory.db [ 69.609285][ T2064] ieee802154 phy1 wpan1: encryption failed: -22 [ 69.628268][ T4560] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 69.782263][ T4560] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.786417][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 69.787965][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 69.799766][ T4560] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.803455][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 69.805080][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 69.806868][ T136] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.808088][ T136] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.811654][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 69.819017][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 69.820636][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 69.827961][ T136] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.829164][ T136] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.830615][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 69.840246][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 69.842117][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 69.848607][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 69.850195][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 69.851823][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 69.862214][ T4560] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 69.863849][ T4560] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 69.868495][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 69.870076][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 69.878685][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 69.880930][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 69.882536][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 69.884114][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 69.942575][ T4560] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 69.948288][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 69.949555][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 69.953163][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 69.954997][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 69.982627][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 69.984181][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 69.985721][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 69.987007][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 70.000224][ T4560] device veth0_vlan entered promiscuous mode [ 70.003339][ T4560] device veth1_vlan entered promiscuous mode [ 70.021711][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 70.023166][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 70.024596][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 70.026104][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 70.029768][ T4560] device veth0_macvtap entered promiscuous mode [ 70.039209][ T4560] device veth1_macvtap entered promiscuous mode [ 70.049749][ T4560] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 70.051034][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 70.052624][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 70.054072][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 70.055647][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 70.062396][ T4560] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 70.064609][ T4560] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.065975][ T4560] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.077966][ T4560] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.079168][ T4560] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.088403][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 70.090127][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 1970/01/01 00:01:10 executed programs: 0 [ 70.704978][ T4748] chnl_net:caif_netlink_parms(): no params data found [ 70.721931][ T4748] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.723117][ T4748] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.724621][ T4748] device bridge_slave_0 entered promiscuous mode [ 70.726658][ T4748] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.728491][ T4748] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.730000][ T4748] device bridge_slave_1 entered promiscuous mode [ 70.738977][ T4748] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.741560][ T4748] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.749918][ T4748] team0: Port device team_slave_0 added [ 70.751741][ T4748] team0: Port device team_slave_1 added [ 70.761731][ T4748] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.762933][ T4748] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.766858][ T4748] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.770001][ T4748] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.771044][ T4748] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.774857][ T4748] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.808357][ T4748] device hsr_slave_0 entered promiscuous mode [ 70.847396][ T4748] device hsr_slave_1 entered promiscuous mode [ 70.897196][ T4748] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.898495][ T4748] Cannot create hsr debugfs directory [ 70.933515][ T4748] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.727095][ T4171] Bluetooth: hci0: command 0x0409 tx timeout [ 72.910731][ T4748] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 74.807590][ T4061] Bluetooth: hci0: command 0x041b tx timeout [ 75.090561][ T4748] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 75.143170][ T4748] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 75.359321][ T4748] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 75.408944][ T4748] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 75.458579][ T4748] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 75.498278][ T4748] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 75.559481][ T4748] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.563059][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 75.564620][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 75.567429][ T4748] 8021q: adding VLAN 0 to HW filter on device team0 [ 75.570096][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 75.571664][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 75.573155][ T148] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.574242][ T148] bridge0: port 1(bridge_slave_0) entered forwarding state [ 75.575608][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 75.579561][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 75.581052][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 75.582516][ T148] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.583626][ T148] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.584966][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 75.587786][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 75.590475][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 75.592626][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 75.594263][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 75.596659][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 75.599767][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 75.602482][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 75.604015][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 75.606628][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 75.609527][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 75.612029][ T4748] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 75.661253][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 75.662571][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 75.666006][ T4748] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.673237][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 75.674811][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 75.680938][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 75.682425][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 75.683939][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 75.685304][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 75.687883][ T4748] device veth0_vlan entered promiscuous mode [ 75.691876][ T4748] device veth1_vlan entered promiscuous mode [ 75.699469][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 75.701015][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 75.702356][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 75.703848][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 75.706334][ T4748] device veth0_macvtap entered promiscuous mode [ 75.709842][ T4748] device veth1_macvtap entered promiscuous mode [ 75.714208][ T4748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 75.715807][ T4748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.718562][ T4748] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 75.719735][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 75.721355][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 75.722728][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 75.724143][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 75.726386][ T4748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 75.728323][ T4748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.730218][ T4748] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 75.732198][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 75.733728][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 75.735521][ T4748] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.736931][ T4748] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.738463][ T4748] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.739746][ T4748] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.760771][ T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.761944][ T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.763496][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 75.773867][ T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.775216][ T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.776939][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:15 executed programs: 2 [ 75.794938][ T4981] loop0: detected capacity change from 0 to 128 [ 75.836687][ T4981] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.839218][ T4981] Bad inode number on dev loop0: 2 is out of range [ 75.840174][ T4981] SysV FS: get root inode failed [ 75.840976][ T4981] oldfs: cannot read superblock [ 75.845274][ T4544] ------------[ cut here ]------------ [ 75.846129][ T4544] VFS: brelse: Trying to free free buffer [ 75.847064][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.848316][ T4544] Modules linked in: [ 75.848893][ T4544] CPU: 0 PID: 4544 Comm: udevd Not tainted syzkaller #0 [ 75.850015][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.851635][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.852880][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 75.853662][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 75.854568][ T4544] sp : ffff80001f2877c0 [ 75.855236][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 75.856596][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 75.857929][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2442318 [ 75.859161][ T4544] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 75.860381][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.861541][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 75.862722][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 75.863978][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 75.865093][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 75.866377][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 75.867631][ T4544] Call trace: [ 75.868177][ T4544] invalidate_bh_lru+0x128/0x234 [ 75.868983][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 75.869899][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 75.870696][ T4544] invalidate_bh_lrus+0x34/0x40 [ 75.871451][ T4544] blkdev_flush_mapping+0x168/0x31c [ 75.872313][ T4544] blkdev_put+0x490/0x6ac [ 75.873043][ T4544] blkdev_close+0x74/0xb0 [ 75.873730][ T4544] __fput+0x1c0/0x7f8 [ 75.874380][ T4544] ____fput+0x20/0x30 [ 75.875063][ T4544] task_work_run+0x12c/0x1e0 [ 75.875747][ T4544] do_notify_resume+0x24b4/0x3128 [ 75.876453][ T4544] el0_svc+0xf0/0x1e0 [ 75.877012][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 75.877847][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 75.878548][ T4544] irq event stamp: 47248 [ 75.879235][ T4544] hardirqs last enabled at (47247): [] kasan_quarantine_put+0xc4/0x204 [ 75.880841][ T4544] hardirqs last disabled at (47248): [] smp_call_function_many_cond+0xa44/0xeb0 [ 75.882492][ T4544] softirqs last enabled at (47040): [] local_bh_enable+0x10/0x34 [ 75.883991][ T4544] softirqs last disabled at (47038): [] local_bh_disable+0x10/0x34 [ 75.885502][ T4544] ---[ end trace 5889a8ac30535cd5 ]--- [ 75.927564][ T4983] loop0: detected capacity change from 0 to 128 [ 75.970347][ T4983] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 75.971480][ T4983] Bad inode number on dev loop0: 2 is out of range [ 75.972421][ T4983] SysV FS: get root inode failed [ 75.973260][ T4983] oldfs: cannot read superblock [ 75.982490][ C1] ------------[ cut here ]------------ [ 75.983466][ C1] VFS: brelse: Trying to free free buffer [ 75.984398][ C1] WARNING: CPU: 1 PID: 523 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 75.985576][ C1] Modules linked in: [ 75.986155][ C1] CPU: 1 PID: 523 Comm: kworker/u4:4 Tainted: G W syzkaller #0 [ 75.987568][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 75.988989][ C1] Workqueue: netns cleanup_net [ 75.989727][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 75.990945][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 75.991987][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 75.992810][ C1] sp : ffff800008017de0 [ 75.993416][ C1] x29: ffff800008017de0 x28: ffff0000c83b8000 x27: 1fffe0003421c65b [ 75.994500][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 75.995592][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24725d0 [ 75.996851][ C1] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000010404 [ 75.998234][ C1] x17: 0000000000010404 x16: ffff8000111c8944 x15: 00000000ffffffff [ 75.999529][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.000791][ C1] x11: 0000000000010403 x10: 0000000000010403 x9 : bd72fff7dbe5a400 [ 76.002100][ C1] x8 : bd72fff7dbe5a400 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.003340][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.004651][ C1] x2 : 0000000000000001 x1 : 0000000100010403 x0 : 0000000000000027 [ 76.005944][ C1] Call trace: [ 76.006429][ C1] invalidate_bh_lru+0x128/0x234 [ 76.007130][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 76.008092][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.009166][ C1] ipi_handler+0x10c/0x710 [ 76.009857][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 76.010665][ C1] handle_domain_irq+0x144/0x1fc [ 76.011410][ C1] gic_handle_irq+0x78/0x1c8 [ 76.012177][ C1] call_on_irq_stack+0x30/0x48 [ 76.012965][ C1] do_interrupt_handler+0x6c/0x88 [ 76.013758][ C1] el1_interrupt+0x30/0x58 [ 76.014440][ C1] el1h_64_irq_handler+0x18/0x24 [ 76.015257][ C1] el1h_64_irq+0x78/0x7c [ 76.015978][ C1] lock_release+0x4a0/0x8e8 [ 76.016686][ C1] _raw_write_unlock_bh+0x90/0x174 [ 76.017477][ C1] fib6_walk+0x22c/0x254 [ 76.018162][ C1] __fib6_clean_all+0x1e4/0x320 [ 76.018948][ C1] fib6_clean_all+0x3c/0x50 [ 76.019636][ C1] rt6_disable_ip+0x100/0x658 [ 76.020318][ C1] addrconf_ifdown+0x148/0x1688 [ 76.021054][ C1] addrconf_notify+0x2f4/0xc6c [ 76.021724][ C1] raw_notifier_call_chain+0xd4/0x164 [ 76.022477][ C1] unregister_netdevice_many+0xe10/0x17d0 [ 76.023305][ C1] sit_exit_batch_net+0x440/0x490 [ 76.024122][ C1] cleanup_net+0x644/0xa98 [ 76.024837][ C1] process_one_work+0x79c/0x1140 [ 76.025639][ C1] worker_thread+0x8f4/0x101c [ 76.026415][ C1] kthread+0x374/0x454 [ 76.027042][ C1] ret_from_fork+0x10/0x20 [ 76.027690][ C1] irq event stamp: 1300397 [ 76.028345][ C1] hardirqs last enabled at (1300396): [] __local_bh_enable_ip+0x1f8/0x380 [ 76.029843][ C1] hardirqs last disabled at (1300397): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.031262][ C1] softirqs last enabled at (1300392): [] clusterip_netdev_event+0x384/0x3ac [ 76.032778][ C1] softirqs last disabled at (1300394): [] __fib6_clean_all+0x1ac/0x320 [ 76.034188][ C1] ---[ end trace 5889a8ac30535cd6 ]--- [ 76.055972][ T4985] loop0: detected capacity change from 0 to 128 [ 76.062144][ T4985] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.063545][ T4985] Bad inode number on dev loop0: 2 is out of range [ 76.064595][ T4985] SysV FS: get root inode failed [ 76.065423][ T4985] oldfs: cannot read superblock [ 76.072070][ T4544] ------------[ cut here ]------------ [ 76.072973][ T4544] VFS: brelse: Trying to free free buffer [ 76.073904][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.075234][ T4544] Modules linked in: [ 76.075857][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 76.077223][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.078791][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.080069][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 76.080954][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 76.081840][ T4544] sp : ffff80001f2877c0 [ 76.082549][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 76.083886][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 76.085153][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24426b8 [ 76.086433][ T4544] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 76.087834][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.089119][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.090329][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 76.091504][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.092722][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.094102][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.095441][ T4544] Call trace: [ 76.095949][ T4544] invalidate_bh_lru+0x128/0x234 [ 76.096779][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 76.097668][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.098603][ T4544] invalidate_bh_lrus+0x34/0x40 [ 76.099324][ T4544] blkdev_flush_mapping+0x168/0x31c [ 76.100077][ T4544] blkdev_put+0x490/0x6ac [ 76.100732][ T4544] blkdev_close+0x74/0xb0 [ 76.101331][ T4544] __fput+0x1c0/0x7f8 [ 76.101989][ T4544] ____fput+0x20/0x30 [ 76.102612][ T4544] task_work_run+0x12c/0x1e0 [ 76.103368][ T4544] do_notify_resume+0x24b4/0x3128 [ 76.104201][ T4544] el0_svc+0xf0/0x1e0 [ 76.104853][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 76.105673][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 76.106427][ T4544] irq event stamp: 56060 [ 76.107122][ T4544] hardirqs last enabled at (56059): [] kasan_quarantine_put+0xc4/0x204 [ 76.108673][ T4544] hardirqs last disabled at (56060): [] smp_call_function_many_cond+0xa44/0xeb0 [ 76.110419][ T4544] softirqs last enabled at (55860): [] local_bh_enable+0x10/0x34 [ 76.111859][ T4544] softirqs last disabled at (55858): [] local_bh_disable+0x10/0x34 [ 76.113322][ T4544] ---[ end trace 5889a8ac30535cd7 ]--- [ 76.158170][ T4987] loop0: detected capacity change from 0 to 128 [ 76.161708][ T4987] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.162925][ T4987] Bad inode number on dev loop0: 2 is out of range [ 76.164020][ T4987] SysV FS: get root inode failed [ 76.164912][ T4987] oldfs: cannot read superblock [ 76.169739][ C1] ------------[ cut here ]------------ [ 76.170627][ C1] VFS: brelse: Trying to free free buffer [ 76.171468][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.172823][ C1] Modules linked in: [ 76.173397][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 76.174801][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.176396][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.177596][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 76.178401][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 76.179215][ C1] sp : ffff800008017de0 [ 76.179782][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 76.181017][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 76.182230][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2472970 [ 76.183415][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 76.184544][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.185709][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.186962][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 0085605f569feb00 [ 76.188268][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.189577][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.190793][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 76.192089][ C1] Call trace: [ 76.192608][ C1] invalidate_bh_lru+0x128/0x234 [ 76.193363][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 76.194275][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.195363][ C1] ipi_handler+0x10c/0x710 [ 76.196092][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 76.196954][ C1] handle_domain_irq+0x144/0x1fc [ 76.197714][ C1] gic_handle_irq+0x78/0x1c8 [ 76.198405][ C1] call_on_irq_stack+0x30/0x48 [ 76.199154][ C1] do_interrupt_handler+0x6c/0x88 [ 76.199947][ C1] el1_interrupt+0x30/0x58 [ 76.200658][ C1] el1h_64_irq_handler+0x18/0x24 [ 76.201404][ C1] el1h_64_irq+0x78/0x7c [ 76.202030][ C1] lock_release+0x4a0/0x8e8 [ 76.202718][ C1] rcu_lock_release+0x24/0x30 [ 76.203424][ C1] mutex_optimistic_spin+0x1c0/0x2b0 [ 76.204245][ C1] __mutex_lock_common+0x1b4/0x1edc [ 76.205112][ C1] mutex_lock_nested+0xac/0x11c [ 76.205890][ C1] blkdev_get_by_dev+0x120/0x874 [ 76.206703][ C1] blkdev_open+0x108/0x27c [ 76.207358][ C1] do_dentry_open+0x760/0xebc [ 76.208114][ C1] vfs_open+0x7c/0x90 [ 76.208778][ C1] path_openat+0x1f80/0x26e4 [ 76.209502][ C1] do_filp_open+0x164/0x330 [ 76.210233][ C1] do_sys_openat2+0x128/0x3d8 [ 76.211010][ C1] __arm64_sys_openat+0x120/0x154 [ 76.211824][ C1] invoke_syscall+0x98/0x2b8 [ 76.212524][ C1] el0_svc_common+0x138/0x258 [ 76.213239][ C1] do_el0_svc+0x58/0x14c [ 76.213916][ C1] el0_svc+0x78/0x1e0 [ 76.214548][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 76.215371][ C1] el0t_64_sync+0x1a0/0x1a4 [ 76.216006][ C1] irq event stamp: 132596 [ 76.216613][ C1] hardirqs last enabled at (132595): [] kasan_quarantine_put+0xc4/0x204 [ 76.218094][ C1] hardirqs last disabled at (132596): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.219573][ C1] softirqs last enabled at (131762): [] local_bh_enable+0x10/0x34 [ 76.221027][ C1] softirqs last disabled at (131760): [] local_bh_disable+0x10/0x34 [ 76.222520][ C1] ---[ end trace 5889a8ac30535cd8 ]--- [ 76.245898][ T4989] loop0: detected capacity change from 0 to 128 [ 76.299609][ T4989] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.300714][ T4989] Bad inode number on dev loop0: 2 is out of range [ 76.301624][ T4989] SysV FS: get root inode failed [ 76.302494][ T4989] oldfs: cannot read superblock [ 76.303383][ T4989] ------------[ cut here ]------------ [ 76.304246][ T4989] VFS: brelse: Trying to free free buffer [ 76.305169][ T4989] WARNING: CPU: 0 PID: 4989 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.306456][ T4989] Modules linked in: [ 76.307078][ T4989] CPU: 0 PID: 4989 Comm: syz.0.19 Tainted: G W syzkaller #0 [ 76.308383][ T4989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.309991][ T4989] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.311230][ T4989] pc : invalidate_bh_lru+0x128/0x234 [ 76.312110][ T4989] lr : invalidate_bh_lru+0x128/0x234 [ 76.312853][ T4989] sp : ffff80001f9376e0 [ 76.313472][ T4989] x29: ffff80001f9376e0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 76.314635][ T4989] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 76.315831][ T4989] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2442df8 [ 76.317048][ T4989] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 76.318243][ T4989] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.319515][ T4989] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.320832][ T4989] x11: 0000000000000002 x10: 0000000000000000 x9 : f5fa84c9df904800 [ 76.322138][ T4989] x8 : f5fa84c9df904800 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.323391][ T4989] x5 : ffff80001f936fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.324726][ T4989] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.326024][ T4989] Call trace: [ 76.326529][ T4989] invalidate_bh_lru+0x128/0x234 [ 76.327301][ T4989] smp_call_function_many_cond+0xa50/0xeb0 [ 76.328214][ T4989] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.329092][ T4989] invalidate_bh_lrus+0x34/0x40 [ 76.329797][ T4989] blkdev_flush_mapping+0x168/0x31c [ 76.330570][ T4989] blkdev_put+0x490/0x6ac [ 76.331260][ T4989] kill_block_super+0x98/0xdc [ 76.331968][ T4989] deactivate_locked_super+0xb8/0x13c [ 76.332735][ T4989] mount_bdev+0x284/0x358 [ 76.333403][ T4989] sysv_mount+0x44/0x58 [ 76.334023][ T4989] legacy_get_tree+0xd4/0x16c [ 76.334756][ T4989] vfs_get_tree+0x90/0x274 [ 76.335346][ T4989] do_new_mount+0x228/0x810 [ 76.336055][ T4989] path_mount+0x5b4/0x1000 [ 76.336718][ T4989] __arm64_sys_mount+0x514/0x5e4 [ 76.337545][ T4989] invoke_syscall+0x98/0x2b8 [ 76.338319][ T4989] el0_svc_common+0x138/0x258 [ 76.339095][ T4989] do_el0_svc+0x58/0x14c [ 76.339847][ T4989] el0_svc+0x78/0x1e0 [ 76.340497][ T4989] el0t_64_sync_handler+0xcc/0xe4 [ 76.341328][ T4989] el0t_64_sync+0x1a0/0x1a4 [ 76.342014][ T4989] irq event stamp: 1006 [ 76.342673][ T4989] hardirqs last enabled at (1005): [] kasan_quarantine_put+0xc4/0x204 [ 76.344233][ T4989] hardirqs last disabled at (1006): [] smp_call_function_many_cond+0xa44/0xeb0 [ 76.345852][ T4989] softirqs last enabled at (810): [] local_bh_enable+0x10/0x34 [ 76.347426][ T4989] softirqs last disabled at (808): [] local_bh_disable+0x10/0x34 [ 76.348891][ T4989] ---[ end trace 5889a8ac30535cd9 ]--- [ 76.464801][ T4991] loop0: detected capacity change from 0 to 128 [ 76.469121][ T4991] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.470311][ T4991] Bad inode number on dev loop0: 2 is out of range [ 76.471388][ T4991] SysV FS: get root inode failed [ 76.472177][ T4991] oldfs: cannot read superblock [ 76.474059][ C1] ------------[ cut here ]------------ [ 76.474904][ C1] VFS: brelse: Trying to free free buffer [ 76.475802][ C1] WARNING: CPU: 1 PID: 4991 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.477175][ C1] Modules linked in: [ 76.477754][ C1] CPU: 1 PID: 4991 Comm: syz.0.20 Tainted: G W syzkaller #0 [ 76.479059][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.480645][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.481853][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 76.482683][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 76.483555][ C1] sp : ffff800008017de0 [ 76.484232][ C1] x29: ffff800008017de0 x28: ffff0000d3d4b680 x27: 1fffe0003421c65c [ 76.485541][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 76.486834][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2472d10 [ 76.488062][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 76.489375][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.490704][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.491925][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 7aadc46e4a5d8500 [ 76.493132][ C1] x8 : 7aadc46e4a5d8500 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.494404][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.495659][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 76.496925][ C1] Call trace: [ 76.497398][ C1] invalidate_bh_lru+0x128/0x234 [ 76.498139][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 76.499065][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.500143][ C1] ipi_handler+0x10c/0x710 [ 76.500847][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 76.501682][ C1] handle_domain_irq+0x144/0x1fc [ 76.502405][ C1] gic_handle_irq+0x78/0x1c8 [ 76.503066][ C1] call_on_irq_stack+0x30/0x48 [ 76.503710][ C1] do_interrupt_handler+0x6c/0x88 [ 76.504463][ C1] el1_interrupt+0x30/0x58 [ 76.505132][ C1] el1h_64_irq_handler+0x18/0x24 [ 76.505843][ C1] el1h_64_irq+0x78/0x7c [ 76.506496][ C1] lock_page_memcg+0x120/0x234 [ 76.507192][ C1] page_remove_rmap+0x3c/0xfd0 [ 76.507959][ C1] unmap_page_range+0xbb4/0x1958 [ 76.508652][ C1] unmap_single_vma+0x13c/0x1e4 [ 76.509411][ C1] unmap_vmas+0x104/0x200 [ 76.510042][ C1] exit_mmap+0x2a8/0x4e0 [ 76.510716][ C1] __mmput+0xec/0x3b8 [ 76.511348][ C1] mmput+0x80/0xc8 [ 76.511944][ C1] exit_mm+0x4a0/0x684 [ 76.512545][ C1] do_exit+0x4ec/0x1f58 [ 76.513161][ C1] do_group_exit+0x100/0x268 [ 76.513891][ C1] get_signal+0x73c/0x1340 [ 76.514582][ C1] do_notify_resume+0x35c/0x3128 [ 76.515392][ C1] el0_svc+0xf0/0x1e0 [ 76.515965][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 76.516686][ C1] el0t_64_sync+0x1a0/0x1a4 [ 76.517361][ C1] irq event stamp: 1862 [ 76.518086][ C1] hardirqs last enabled at (1861): [] lock_page_memcg+0x110/0x234 [ 76.519475][ C1] hardirqs last disabled at (1862): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.520963][ C1] softirqs last enabled at (1024): [] local_bh_enable+0x10/0x34 [ 76.522370][ C1] softirqs last disabled at (1022): [] local_bh_disable+0x10/0x34 [ 76.523790][ C1] ---[ end trace 5889a8ac30535cda ]--- [ 76.548521][ T4993] loop0: detected capacity change from 0 to 128 [ 76.557458][ T4993] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.558645][ T4993] Bad inode number on dev loop0: 2 is out of range [ 76.559663][ T4993] SysV FS: get root inode failed [ 76.560473][ T4993] oldfs: cannot read superblock [ 76.561171][ T4993] ------------[ cut here ]------------ [ 76.561904][ T4993] VFS: brelse: Trying to free free buffer [ 76.562699][ T4993] WARNING: CPU: 1 PID: 4993 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.563904][ T4993] Modules linked in: [ 76.564509][ T4993] CPU: 1 PID: 4993 Comm: syz.0.21 Tainted: G W syzkaller #0 [ 76.565746][ T4993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.567043][ T4993] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.568298][ T4993] pc : invalidate_bh_lru+0x128/0x234 [ 76.569182][ T4993] lr : invalidate_bh_lru+0x128/0x234 [ 76.569982][ T4993] sp : ffff80001f8376e0 [ 76.570665][ T4993] x29: ffff80001f8376e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 76.571916][ T4993] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 76.573185][ T4993] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e246e148 [ 76.574484][ T4993] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 76.575660][ T4993] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.576884][ T4993] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.578222][ T4993] x11: 0000000000000002 x10: 0000000000000000 x9 : 30ad6e6a84be2800 [ 76.579431][ T4993] x8 : 30ad6e6a84be2800 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.580584][ T4993] x5 : ffff80001f836fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.581794][ T4993] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.583027][ T4993] Call trace: [ 76.583515][ T4993] invalidate_bh_lru+0x128/0x234 [ 76.584281][ T4993] smp_call_function_many_cond+0xa50/0xeb0 [ 76.585133][ T4993] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.585840][ T4993] invalidate_bh_lrus+0x34/0x40 [ 76.586525][ T4993] blkdev_flush_mapping+0x168/0x31c [ 76.587269][ T4993] blkdev_put+0x490/0x6ac [ 76.587889][ T4993] kill_block_super+0x98/0xdc [ 76.588695][ T4993] deactivate_locked_super+0xb8/0x13c [ 76.589605][ T4993] mount_bdev+0x284/0x358 [ 76.590291][ T4993] sysv_mount+0x44/0x58 [ 76.590917][ T4993] legacy_get_tree+0xd4/0x16c [ 76.591647][ T4993] vfs_get_tree+0x90/0x274 [ 76.592326][ T4993] do_new_mount+0x228/0x810 [ 76.593019][ T4993] path_mount+0x5b4/0x1000 [ 76.593641][ T4993] __arm64_sys_mount+0x514/0x5e4 [ 76.594328][ T4993] invoke_syscall+0x98/0x2b8 [ 76.594991][ T4993] el0_svc_common+0x138/0x258 [ 76.595667][ T4993] do_el0_svc+0x58/0x14c [ 76.596304][ T4993] el0_svc+0x78/0x1e0 [ 76.596938][ T4993] el0t_64_sync_handler+0xcc/0xe4 [ 76.597707][ T4993] el0t_64_sync+0x1a0/0x1a4 [ 76.598358][ T4993] irq event stamp: 948 [ 76.599044][ T4993] hardirqs last enabled at (947): [] kasan_quarantine_put+0xc4/0x204 [ 76.600591][ T4993] hardirqs last disabled at (948): [] smp_call_function_many_cond+0xa44/0xeb0 [ 76.602406][ T4993] softirqs last enabled at (788): [] local_bh_enable+0x10/0x34 [ 76.603797][ T4993] softirqs last disabled at (786): [] local_bh_disable+0x10/0x34 [ 76.605325][ T4993] ---[ end trace 5889a8ac30535cdb ]--- [ 76.734310][ T4997] loop0: detected capacity change from 0 to 128 [ 76.736788][ T4997] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.738082][ T4997] Bad inode number on dev loop0: 2 is out of range [ 76.739183][ T4997] SysV FS: get root inode failed [ 76.740090][ T4997] oldfs: cannot read superblock [ 76.748917][ C1] ------------[ cut here ]------------ [ 76.749734][ C1] VFS: brelse: Trying to free free buffer [ 76.750703][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.752089][ C1] Modules linked in: [ 76.752686][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 76.754129][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.755779][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.757054][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 76.757860][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 76.758715][ C1] sp : ffff800008017de0 [ 76.759342][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 76.760663][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 76.761931][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e246e4e8 [ 76.763266][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 76.764521][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.765735][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.767059][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 76.768393][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.769723][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.771011][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 76.772280][ C1] Call trace: [ 76.772822][ C1] invalidate_bh_lru+0x128/0x234 [ 76.773632][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 76.774627][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.775773][ C1] ipi_handler+0x10c/0x710 [ 76.776495][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 76.777419][ C1] handle_domain_irq+0x144/0x1fc [ 76.778224][ C1] gic_handle_irq+0x78/0x1c8 [ 76.778996][ C1] call_on_irq_stack+0x30/0x48 [ 76.779698][ C1] do_interrupt_handler+0x6c/0x88 [ 76.780510][ C1] el1_interrupt+0x30/0x58 [ 76.781165][ C1] el1h_64_irq_handler+0x18/0x24 [ 76.781977][ C1] el1h_64_irq+0x78/0x7c [ 76.782639][ C1] seqcount_lockdep_reader_access+0x15c/0x230 [ 76.783599][ C1] bad_range+0xa0/0x2a0 [ 76.784277][ C1] get_page_from_freelist+0x2954/0x2aa8 [ 76.785165][ C1] __alloc_pages+0x1a0/0x470 [ 76.785910][ C1] alloc_pages_vma+0x284/0x7a8 [ 76.786617][ C1] wp_page_copy+0x1d4/0x11ec [ 76.787291][ C1] do_wp_page+0x6c0/0x994 [ 76.787913][ C1] handle_mm_fault+0x1770/0x2950 [ 76.788634][ C1] do_page_fault+0x694/0xad4 [ 76.789333][ C1] do_mem_abort+0x6c/0x1ac [ 76.790069][ C1] el0_da+0x90/0x1fc [ 76.790674][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 76.791460][ C1] el0t_64_sync+0x1a0/0x1a4 [ 76.792166][ C1] irq event stamp: 146652 [ 76.792821][ C1] hardirqs last enabled at (146651): [] seqcount_lockdep_reader_access+0x14c/0x230 [ 76.794307][ C1] hardirqs last disabled at (146652): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.795770][ C1] softirqs last enabled at (146624): [] local_bh_enable+0x10/0x34 [ 76.797234][ C1] softirqs last disabled at (146622): [] local_bh_disable+0x10/0x34 [ 76.798600][ C1] ---[ end trace 5889a8ac30535cdc ]--- [ 76.822657][ T4999] loop0: detected capacity change from 0 to 128 [ 76.832287][ T4999] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.833617][ T4999] Bad inode number on dev loop0: 2 is out of range [ 76.834663][ T4999] SysV FS: get root inode failed [ 76.835468][ T4999] oldfs: cannot read superblock [ 76.842407][ T4544] ------------[ cut here ]------------ [ 76.843306][ T4544] VFS: brelse: Trying to free free buffer [ 76.844269][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.845568][ T4544] Modules linked in: [ 76.846216][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 76.847488][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.848924][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.850074][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 76.850839][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 76.851591][ T4544] sp : ffff80001f2877c0 [ 76.852213][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 76.853487][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 76.854656][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e246e888 [ 76.855920][ T4544] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 76.857192][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.858458][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.859650][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 76.860905][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.862126][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.863372][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 76.864476][ T4544] Call trace: [ 76.865069][ T4544] invalidate_bh_lru+0x128/0x234 [ 76.865853][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 76.866779][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 76.867605][ T4544] invalidate_bh_lrus+0x34/0x40 [ 76.868394][ T4544] blkdev_flush_mapping+0x168/0x31c [ 76.869227][ T4544] blkdev_put+0x490/0x6ac [ 76.869916][ T4544] blkdev_close+0x74/0xb0 [ 76.870618][ T4544] __fput+0x1c0/0x7f8 [ 76.871193][ T4544] ____fput+0x20/0x30 [ 76.871841][ T4544] task_work_run+0x12c/0x1e0 [ 76.872546][ T4544] do_notify_resume+0x24b4/0x3128 [ 76.873337][ T4544] el0_svc+0xf0/0x1e0 [ 76.873966][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 76.874704][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 76.875358][ T4544] irq event stamp: 89352 [ 76.875973][ T4544] hardirqs last enabled at (89351): [] kasan_quarantine_put+0xc4/0x204 [ 76.877524][ T4544] hardirqs last disabled at (89352): [] smp_call_function_many_cond+0xa44/0xeb0 [ 76.879222][ T4544] softirqs last enabled at (89150): [] local_bh_enable+0x10/0x34 [ 76.880704][ T4544] softirqs last disabled at (89148): [] local_bh_disable+0x10/0x34 [ 76.882243][ T4544] ---[ end trace 5889a8ac30535cdd ]--- [ 76.887814][ T3624] Bluetooth: hci0: command 0x040f tx timeout [ 76.930437][ T5001] loop0: detected capacity change from 0 to 128 [ 76.932701][ T5001] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 76.933843][ T5001] Bad inode number on dev loop0: 2 is out of range [ 76.934921][ T5001] SysV FS: get root inode failed [ 76.935710][ T5001] oldfs: cannot read superblock [ 76.941420][ C1] ------------[ cut here ]------------ [ 76.942286][ C1] VFS: brelse: Trying to free free buffer [ 76.943188][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 76.944546][ C1] Modules linked in: [ 76.945155][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 76.946442][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 76.948028][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 76.949192][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 76.950050][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 76.950811][ C1] sp : ffff800008017de0 [ 76.951456][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 76.952746][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 76.954046][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24d0400 [ 76.955341][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 76.956559][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 76.957735][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 76.958922][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 76.960198][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 76.961579][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 76.962831][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 76.964155][ C1] Call trace: [ 76.964699][ C1] invalidate_bh_lru+0x128/0x234 [ 76.965471][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 76.966374][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 76.967443][ C1] ipi_handler+0x10c/0x710 [ 76.968136][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 76.968967][ C1] handle_domain_irq+0x144/0x1fc [ 76.969671][ C1] gic_handle_irq+0x78/0x1c8 [ 76.970331][ C1] call_on_irq_stack+0x30/0x48 [ 76.971038][ C1] do_interrupt_handler+0x6c/0x88 [ 76.971834][ C1] el1_interrupt+0x30/0x58 [ 76.972570][ C1] el1h_64_irq_handler+0x18/0x24 [ 76.973350][ C1] el1h_64_irq+0x78/0x7c [ 76.973993][ C1] kasan_quarantine_put+0xd4/0x204 [ 76.974784][ C1] ____kasan_slab_free+0x124/0x164 [ 76.975542][ C1] __kasan_slab_free+0x18/0x28 [ 76.976244][ C1] slab_free_freelist_hook+0x128/0x1e8 [ 76.976981][ C1] kfree+0x170/0x40c [ 76.977516][ C1] kvfree+0x40/0x50 [ 76.978076][ C1] translate_table+0xe0c/0x1850 [ 76.978767][ C1] do_ip6t_set_ctl+0xa10/0xe00 [ 76.979425][ C1] nf_setsockopt+0x270/0x290 [ 76.980092][ C1] ipv6_setsockopt+0x1a18/0x36dc [ 76.980819][ C1] tcp_setsockopt+0x1d4/0x1bf4 [ 76.981579][ C1] sock_common_setsockopt+0xb0/0xcc [ 76.982324][ C1] __sys_setsockopt+0x260/0x36c [ 76.983020][ C1] __arm64_sys_setsockopt+0xb8/0xd4 [ 76.983792][ C1] invoke_syscall+0x98/0x2b8 [ 76.984511][ C1] el0_svc_common+0x138/0x258 [ 76.985237][ C1] do_el0_svc+0x58/0x14c [ 76.985846][ C1] el0_svc+0x78/0x1e0 [ 76.986416][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 76.987241][ C1] el0t_64_sync+0x1a0/0x1a4 [ 76.987897][ C1] irq event stamp: 151106 [ 76.988564][ C1] hardirqs last enabled at (151105): [] kasan_quarantine_put+0xc4/0x204 [ 76.990158][ C1] hardirqs last disabled at (151106): [] enter_el1_irq_or_nmi+0x10/0x1c [ 76.991623][ C1] softirqs last enabled at (151096): [] release_sock+0x1d0/0x258 [ 76.993061][ C1] softirqs last disabled at (151094): [] release_sock+0x34/0x258 [ 76.994455][ C1] ---[ end trace 5889a8ac30535cde ]--- [ 77.060049][ T5003] loop0: detected capacity change from 0 to 128 [ 77.063027][ T5003] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.064586][ T5003] Bad inode number on dev loop0: 2 is out of range [ 77.065907][ T5003] SysV FS: get root inode failed [ 77.066617][ T5003] oldfs: cannot read superblock [ 77.074669][ C0] ------------[ cut here ]------------ [ 77.075580][ C0] VFS: brelse: Trying to free free buffer [ 77.076493][ C0] WARNING: CPU: 0 PID: 5004 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.077901][ C0] Modules linked in: [ 77.078557][ C0] CPU: 0 PID: 5004 Comm: syz.0.27 Tainted: G W syzkaller #0 [ 77.079909][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.081478][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.082652][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 77.083461][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 77.084205][ C0] sp : ffff800008007de0 [ 77.084841][ C0] x29: ffff800008007de0 x28: ffff0000db4b3680 x27: 1fffe0003421845b [ 77.086083][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 77.087359][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066cd10 [ 77.088586][ C0] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 77.089893][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.091227][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.092439][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : c5cb19f0ef73c800 [ 77.093685][ C0] x8 : c5cb19f0ef73c800 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.095007][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.096244][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 77.097553][ C0] Call trace: [ 77.098081][ C0] invalidate_bh_lru+0x128/0x234 [ 77.098886][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 77.099720][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.100850][ C0] ipi_handler+0x10c/0x710 [ 77.101463][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 77.102311][ C0] handle_domain_irq+0x144/0x1fc [ 77.103025][ C0] gic_handle_irq+0x78/0x1c8 [ 77.103698][ C0] call_on_irq_stack+0x30/0x48 [ 77.104356][ C0] do_interrupt_handler+0x6c/0x88 [ 77.105060][ C0] el1_interrupt+0x30/0x58 [ 77.105690][ C0] el1h_64_irq_handler+0x18/0x24 [ 77.106444][ C0] el1h_64_irq+0x78/0x7c [ 77.107070][ C0] try_charge_memcg+0x1e8/0x11bc [ 77.107768][ C0] charge_memcg+0xac/0x220 [ 77.108427][ C0] __mem_cgroup_charge+0x38/0xb0 [ 77.109205][ C0] handle_mm_fault+0x193c/0x2950 [ 77.109971][ C0] do_page_fault+0x694/0xad4 [ 77.110613][ C0] do_translation_fault+0xe0/0x130 [ 77.111326][ C0] do_mem_abort+0x6c/0x1ac [ 77.111980][ C0] el0_da+0x90/0x1fc [ 77.112532][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 77.113328][ C0] el0t_64_sync+0x1a0/0x1a4 [ 77.114004][ C0] irq event stamp: 1282 [ 77.114616][ C0] hardirqs last enabled at (1281): [] try_charge_memcg+0x1d8/0x11bc [ 77.116045][ C0] hardirqs last disabled at (1282): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.117484][ C0] softirqs last enabled at (1084): [] local_bh_enable+0x10/0x34 [ 77.118962][ C0] softirqs last disabled at (1082): [] local_bh_disable+0x10/0x34 [ 77.120283][ C0] ---[ end trace 5889a8ac30535cdf ]--- [ 77.169918][ T5005] loop0: detected capacity change from 0 to 128 [ 77.259141][ T5005] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.260325][ T5005] Bad inode number on dev loop0: 2 is out of range [ 77.261493][ T5005] SysV FS: get root inode failed [ 77.262259][ T5005] oldfs: cannot read superblock [ 77.269478][ C1] ------------[ cut here ]------------ [ 77.270411][ C1] VFS: brelse: Trying to free free buffer [ 77.271227][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.272385][ C1] Modules linked in: [ 77.272935][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 77.274317][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.275795][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.276864][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 77.277814][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 77.278703][ C1] sp : ffff800008017de0 [ 77.279365][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 77.280504][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 77.281697][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24d07a0 [ 77.282858][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 77.284205][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.285519][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.286830][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 0085605f569feb00 [ 77.288038][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.289286][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.290602][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 77.291854][ C1] Call trace: [ 77.292358][ C1] invalidate_bh_lru+0x128/0x234 [ 77.293156][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 77.293984][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.295174][ C1] ipi_handler+0x10c/0x710 [ 77.295932][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 77.296863][ C1] handle_domain_irq+0x144/0x1fc [ 77.297689][ C1] gic_handle_irq+0x78/0x1c8 [ 77.298388][ C1] call_on_irq_stack+0x30/0x48 [ 77.299178][ C1] do_interrupt_handler+0x6c/0x88 [ 77.299959][ C1] el1_interrupt+0x30/0x58 [ 77.300736][ C1] el1h_64_irq_handler+0x18/0x24 [ 77.301565][ C1] el1h_64_irq+0x78/0x7c [ 77.302237][ C1] up_write+0x2d0/0x644 [ 77.302916][ C1] copy_mm+0x904/0x1090 [ 77.303538][ C1] copy_process+0x14d8/0x34ac [ 77.304160][ C1] kernel_clone+0x1d8/0x9d4 [ 77.305007][ C1] __arm64_sys_clone+0x138/0x190 [ 77.305788][ C1] invoke_syscall+0x98/0x2b8 [ 77.306492][ C1] el0_svc_common+0x138/0x258 [ 77.307299][ C1] do_el0_svc+0x58/0x14c [ 77.307958][ C1] el0_svc+0x78/0x1e0 [ 77.308624][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 77.309443][ C1] el0t_64_sync+0x1a0/0x1a4 [ 77.310122][ C1] irq event stamp: 156746 [ 77.310796][ C1] hardirqs last enabled at (156745): [] pte_alloc_one+0x194/0x258 [ 77.312182][ C1] hardirqs last disabled at (156746): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.313695][ C1] softirqs last enabled at (156626): [] local_bh_enable+0x10/0x34 [ 77.315243][ C1] softirqs last disabled at (156624): [] local_bh_disable+0x10/0x34 [ 77.316643][ C1] ---[ end trace 5889a8ac30535ce0 ]--- [ 77.351461][ T5007] loop0: detected capacity change from 0 to 128 [ 77.438044][ T5007] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.439281][ T5007] Bad inode number on dev loop0: 2 is out of range [ 77.440255][ T5007] SysV FS: get root inode failed [ 77.441008][ T5007] oldfs: cannot read superblock [ 77.450127][ T4544] ------------[ cut here ]------------ [ 77.451081][ T4544] VFS: brelse: Trying to free free buffer [ 77.451932][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.453370][ T4544] Modules linked in: [ 77.454013][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 77.455143][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.456581][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.457690][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 77.458523][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 77.459404][ T4544] sp : ffff80001f2877c0 [ 77.459975][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 77.461274][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 77.462461][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066c970 [ 77.463773][ T4544] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 77.465072][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.466359][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.467855][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 77.469154][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.470421][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.471639][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 77.472870][ T4544] Call trace: [ 77.473396][ T4544] invalidate_bh_lru+0x128/0x234 [ 77.474251][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 77.475134][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 77.475927][ T4544] invalidate_bh_lrus+0x34/0x40 [ 77.476662][ T4544] blkdev_flush_mapping+0x168/0x31c [ 77.477561][ T4544] blkdev_put+0x490/0x6ac [ 77.478266][ T4544] blkdev_close+0x74/0xb0 [ 77.478948][ T4544] __fput+0x1c0/0x7f8 [ 77.479599][ T4544] ____fput+0x20/0x30 [ 77.480220][ T4544] task_work_run+0x12c/0x1e0 [ 77.480860][ T4544] do_notify_resume+0x24b4/0x3128 [ 77.481657][ T4544] el0_svc+0xf0/0x1e0 [ 77.482318][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 77.483210][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 77.483984][ T4544] irq event stamp: 102544 [ 77.484666][ T4544] hardirqs last enabled at (102543): [] kasan_quarantine_put+0xc4/0x204 [ 77.486362][ T4544] hardirqs last disabled at (102544): [] smp_call_function_many_cond+0xa44/0xeb0 [ 77.488075][ T4544] softirqs last enabled at (102338): [] local_bh_enable+0x10/0x34 [ 77.489611][ T4544] softirqs last disabled at (102336): [] local_bh_disable+0x10/0x34 [ 77.491227][ T4544] ---[ end trace 5889a8ac30535ce1 ]--- [ 77.539951][ T5009] loop0: detected capacity change from 0 to 128 [ 77.543135][ T5009] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.544444][ T5009] Bad inode number on dev loop0: 2 is out of range [ 77.545478][ T5009] SysV FS: get root inode failed [ 77.546334][ T5009] oldfs: cannot read superblock [ 77.552606][ T4544] ------------[ cut here ]------------ [ 77.553535][ T4544] VFS: brelse: Trying to free free buffer [ 77.554516][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.555740][ T4544] Modules linked in: [ 77.556332][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 77.557628][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.559122][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.560359][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 77.561136][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 77.562042][ T4544] sp : ffff80001f2877c0 [ 77.562710][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 77.564063][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 77.565434][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e25f2230 [ 77.566672][ T4544] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 77.567954][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.569255][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.570500][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 77.571714][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.572953][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.574265][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 77.575595][ T4544] Call trace: [ 77.576150][ T4544] invalidate_bh_lru+0x128/0x234 [ 77.576969][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 77.577984][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 77.578824][ T4544] invalidate_bh_lrus+0x34/0x40 [ 77.579633][ T4544] blkdev_flush_mapping+0x168/0x31c [ 77.580505][ T4544] blkdev_put+0x490/0x6ac [ 77.581191][ T4544] blkdev_close+0x74/0xb0 [ 77.581926][ T4544] __fput+0x1c0/0x7f8 [ 77.582558][ T4544] ____fput+0x20/0x30 [ 77.583198][ T4544] task_work_run+0x12c/0x1e0 [ 77.583938][ T4544] do_notify_resume+0x24b4/0x3128 [ 77.584708][ T4544] el0_svc+0xf0/0x1e0 [ 77.585296][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 77.586017][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 77.586652][ T4544] irq event stamp: 105464 [ 77.587384][ T4544] hardirqs last enabled at (105463): [] kasan_quarantine_put+0xc4/0x204 [ 77.589043][ T4544] hardirqs last disabled at (105464): [] smp_call_function_many_cond+0xa44/0xeb0 [ 77.590863][ T4544] softirqs last enabled at (105252): [] local_bh_enable+0x10/0x34 [ 77.592336][ T4544] softirqs last disabled at (105250): [] local_bh_disable+0x10/0x34 [ 77.593710][ T4544] ---[ end trace 5889a8ac30535ce2 ]--- [ 77.645689][ T5011] loop0: detected capacity change from 0 to 128 [ 77.648141][ T5011] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.649228][ T5011] Bad inode number on dev loop0: 2 is out of range [ 77.650138][ T5011] SysV FS: get root inode failed [ 77.650861][ T5011] oldfs: cannot read superblock [ 77.656865][ C1] ------------[ cut here ]------------ [ 77.657717][ C1] VFS: brelse: Trying to free free buffer [ 77.658699][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.660081][ C1] Modules linked in: [ 77.660640][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 77.662019][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.663538][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.664740][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 77.665625][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 77.666480][ C1] sp : ffff800008017de0 [ 77.667123][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 77.668347][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 77.669625][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24d0b40 [ 77.670859][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 77.672023][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.673206][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.674490][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 77.675762][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.677033][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.678288][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 77.679505][ C1] Call trace: [ 77.680030][ C1] invalidate_bh_lru+0x128/0x234 [ 77.680742][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 77.681648][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.682645][ C1] ipi_handler+0x10c/0x710 [ 77.683328][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 77.684138][ C1] handle_domain_irq+0x144/0x1fc [ 77.684898][ C1] gic_handle_irq+0x78/0x1c8 [ 77.685630][ C1] call_on_irq_stack+0x30/0x48 [ 77.686416][ C1] do_interrupt_handler+0x6c/0x88 [ 77.687224][ C1] el1_interrupt+0x30/0x58 [ 77.687908][ C1] el1h_64_irq_handler+0x18/0x24 [ 77.688692][ C1] el1h_64_irq+0x78/0x7c [ 77.689404][ C1] __sanitizer_cov_trace_cmp8+0xbc/0xc0 [ 77.690213][ C1] arch_stack_walk+0x200/0x2b4 [ 77.690935][ C1] stack_trace_save+0x94/0xd8 [ 77.691641][ C1] __kasan_kmalloc+0xb0/0xf0 [ 77.692329][ C1] __kmalloc_node+0x2bc/0x520 [ 77.693066][ C1] kvmalloc_node+0x88/0x200 [ 77.693747][ C1] xt_alloc_table_info+0x54/0xc8 [ 77.694509][ C1] do_ip6t_set_ctl+0x870/0xe00 [ 77.695175][ C1] nf_setsockopt+0x270/0x290 [ 77.695918][ C1] ipv6_setsockopt+0x1a18/0x36dc [ 77.696655][ C1] tcp_setsockopt+0x1d4/0x1bf4 [ 77.697383][ C1] sock_common_setsockopt+0xb0/0xcc [ 77.698234][ C1] __sys_setsockopt+0x260/0x36c [ 77.698941][ C1] __arm64_sys_setsockopt+0xb8/0xd4 [ 77.699812][ C1] invoke_syscall+0x98/0x2b8 [ 77.700558][ C1] el0_svc_common+0x138/0x258 [ 77.701274][ C1] do_el0_svc+0x58/0x14c [ 77.701926][ C1] el0_svc+0x78/0x1e0 [ 77.702553][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 77.703355][ C1] el0t_64_sync+0x1a0/0x1a4 [ 77.704086][ C1] irq event stamp: 164674 [ 77.704763][ C1] hardirqs last enabled at (164673): [] __local_bh_enable_ip+0x1f8/0x380 [ 77.706491][ C1] hardirqs last disabled at (164674): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.707968][ C1] softirqs last enabled at (164672): [] release_sock+0x1d0/0x258 [ 77.709513][ C1] softirqs last disabled at (164670): [] release_sock+0x34/0x258 [ 77.710935][ C1] ---[ end trace 5889a8ac30535ce3 ]--- [ 77.739253][ T5013] loop0: detected capacity change from 0 to 128 [ 77.741910][ T5013] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.743101][ T5013] Bad inode number on dev loop0: 2 is out of range [ 77.744139][ T5013] SysV FS: get root inode failed [ 77.744907][ T5013] oldfs: cannot read superblock [ 77.762739][ T4544] ------------[ cut here ]------------ [ 77.763600][ T4544] VFS: brelse: Trying to free free buffer [ 77.764416][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.765672][ T4544] Modules linked in: [ 77.766304][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 77.767622][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.769223][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.770393][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 77.771219][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 77.772082][ T4544] sp : ffff80001f2877c0 [ 77.772703][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 77.773843][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 77.775076][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24d0ee0 [ 77.776342][ T4544] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 77.777655][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.778915][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.780224][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 77.781447][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.782695][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.783908][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 77.785180][ T4544] Call trace: [ 77.785694][ T4544] invalidate_bh_lru+0x128/0x234 [ 77.786415][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 77.787290][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 77.788027][ T4544] invalidate_bh_lrus+0x34/0x40 [ 77.788802][ T4544] blkdev_flush_mapping+0x168/0x31c [ 77.789606][ T4544] blkdev_put+0x490/0x6ac [ 77.790303][ T4544] blkdev_close+0x74/0xb0 [ 77.791039][ T4544] __fput+0x1c0/0x7f8 [ 77.791669][ T4544] ____fput+0x20/0x30 [ 77.792276][ T4544] task_work_run+0x12c/0x1e0 [ 77.793048][ T4544] do_notify_resume+0x24b4/0x3128 [ 77.793769][ T4544] el0_svc+0xf0/0x1e0 [ 77.794424][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 77.795207][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 77.796168][ T4544] irq event stamp: 119722 [ 77.796842][ T4544] hardirqs last enabled at (119721): [] kasan_quarantine_put+0xc4/0x204 [ 77.798263][ T4544] hardirqs last disabled at (119722): [] smp_call_function_many_cond+0xa44/0xeb0 [ 77.799996][ T4544] softirqs last enabled at (119508): [] local_bh_enable+0x10/0x34 [ 77.801515][ T4544] softirqs last disabled at (119506): [] local_bh_disable+0x10/0x34 [ 77.802909][ T4544] ---[ end trace 5889a8ac30535ce4 ]--- [ 77.820103][ T5017] loop0: detected capacity change from 0 to 128 [ 77.822785][ T5017] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.823893][ T5017] Bad inode number on dev loop0: 2 is out of range [ 77.824874][ T5017] SysV FS: get root inode failed [ 77.825556][ T5017] oldfs: cannot read superblock [ 77.834697][ C0] ------------[ cut here ]------------ [ 77.835631][ C0] VFS: brelse: Trying to free free buffer [ 77.836409][ C0] WARNING: CPU: 0 PID: 5018 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.837608][ C0] Modules linked in: [ 77.838227][ C0] CPU: 0 PID: 5018 Comm: syz.0.34 Tainted: G W syzkaller #0 [ 77.839535][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.841064][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.842320][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 77.843160][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 77.844071][ C0] sp : ffff800008007de0 [ 77.844659][ C0] x29: ffff800008007de0 x28: ffff0000de073680 x27: 1fffe0003421845c [ 77.845822][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 77.846998][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e25f25d0 [ 77.848280][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 77.849414][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.850591][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.851812][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 0b0d9ca165398700 [ 77.853055][ C0] x8 : 0b0d9ca165398700 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.854293][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.855532][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 77.856724][ C0] Call trace: [ 77.857226][ C0] invalidate_bh_lru+0x128/0x234 [ 77.857948][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 77.858812][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.859857][ C0] ipi_handler+0x10c/0x710 [ 77.860510][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 77.861245][ C0] handle_domain_irq+0x144/0x1fc [ 77.862052][ C0] gic_handle_irq+0x78/0x1c8 [ 77.862771][ C0] call_on_irq_stack+0x30/0x48 [ 77.863491][ C0] do_interrupt_handler+0x6c/0x88 [ 77.864318][ C0] el1_interrupt+0x30/0x58 [ 77.864988][ C0] el1h_64_irq_handler+0x18/0x24 [ 77.865775][ C0] el1h_64_irq+0x78/0x7c [ 77.866405][ C0] lock_page_memcg+0x120/0x234 [ 77.867072][ C0] page_add_file_rmap+0x148/0x8e4 [ 77.867836][ C0] do_set_pte+0x394/0x4e0 [ 77.868440][ C0] filemap_map_pages+0x9c4/0xc50 [ 77.869160][ C0] handle_mm_fault+0x19c0/0x2950 [ 77.869881][ C0] do_page_fault+0x694/0xad4 [ 77.870536][ C0] do_translation_fault+0xe0/0x130 [ 77.871313][ C0] do_mem_abort+0x6c/0x1ac [ 77.872013][ C0] el0_da+0x90/0x1fc [ 77.872583][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 77.873367][ C0] el0t_64_sync+0x1a0/0x1a4 [ 77.874062][ C0] irq event stamp: 1410 [ 77.874672][ C0] hardirqs last enabled at (1409): [] lock_page_memcg+0x110/0x234 [ 77.875954][ C0] hardirqs last disabled at (1410): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.877509][ C0] softirqs last enabled at (532): [] local_bh_enable+0x10/0x34 [ 77.878992][ C0] softirqs last disabled at (530): [] local_bh_disable+0x10/0x34 [ 77.880469][ C0] ---[ end trace 5889a8ac30535ce5 ]--- [ 77.920233][ T5019] loop0: detected capacity change from 0 to 128 [ 77.922581][ T5019] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 77.923679][ T5019] Bad inode number on dev loop0: 2 is out of range [ 77.924643][ T5019] SysV FS: get root inode failed [ 77.925321][ T5019] oldfs: cannot read superblock [ 77.929823][ C1] ------------[ cut here ]------------ [ 77.930698][ C1] VFS: brelse: Trying to free free buffer [ 77.931584][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 77.932902][ C1] Modules linked in: [ 77.933455][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 77.934852][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 77.936330][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 77.937508][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 77.938369][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 77.939228][ C1] sp : ffff800008017de0 [ 77.939912][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 77.941262][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 77.942573][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24d1df8 [ 77.943960][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 77.945285][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 77.946538][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 77.947667][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 0085605f569feb00 [ 77.948805][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 77.950014][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 77.951156][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 77.952420][ C1] Call trace: [ 77.952937][ C1] invalidate_bh_lru+0x128/0x234 [ 77.953787][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 77.954873][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 77.955934][ C1] ipi_handler+0x10c/0x710 [ 77.956594][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 77.957352][ C1] handle_domain_irq+0x144/0x1fc [ 77.958117][ C1] gic_handle_irq+0x78/0x1c8 [ 77.958785][ C1] call_on_irq_stack+0x30/0x48 [ 77.959497][ C1] do_interrupt_handler+0x6c/0x88 [ 77.960254][ C1] el1_interrupt+0x30/0x58 [ 77.960881][ C1] el1h_64_irq_handler+0x18/0x24 [ 77.961592][ C1] el1h_64_irq+0x78/0x7c [ 77.962279][ C1] lock_acquire+0xa8/0x620 [ 77.962933][ C1] _raw_spin_lock+0xb0/0x10c [ 77.963736][ C1] evict+0x18c/0x810 [ 77.964395][ C1] iput+0x6c4/0x77c [ 77.964995][ C1] vfs_rmdir+0x2f4/0x3ec [ 77.965707][ C1] do_rmdir+0x240/0x634 [ 77.966462][ C1] __arm64_sys_unlinkat+0xcc/0xfc [ 77.967249][ C1] invoke_syscall+0x98/0x2b8 [ 77.967978][ C1] el0_svc_common+0x138/0x258 [ 77.968759][ C1] do_el0_svc+0x58/0x14c [ 77.969413][ C1] el0_svc+0x78/0x1e0 [ 77.970057][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 77.970891][ C1] el0t_64_sync+0x1a0/0x1a4 [ 77.971593][ C1] irq event stamp: 172366 [ 77.972257][ C1] hardirqs last enabled at (172365): [] read_seqbegin+0x1fc/0x304 [ 77.973748][ C1] hardirqs last disabled at (172366): [] enter_el1_irq_or_nmi+0x10/0x1c [ 77.975338][ C1] softirqs last enabled at (171816): [] local_bh_enable+0x10/0x34 [ 77.976921][ C1] softirqs last disabled at (171814): [] local_bh_disable+0x10/0x34 [ 77.978333][ C1] ---[ end trace 5889a8ac30535ce6 ]--- [ 78.026557][ T5021] loop0: detected capacity change from 0 to 128 [ 78.068866][ T5021] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.070090][ T5021] Bad inode number on dev loop0: 2 is out of range [ 78.071076][ T5021] SysV FS: get root inode failed [ 78.071847][ T5021] oldfs: cannot read superblock [ 78.081424][ T4544] ------------[ cut here ]------------ [ 78.082359][ T4544] VFS: brelse: Trying to free free buffer [ 78.083270][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.084658][ T4544] Modules linked in: [ 78.085214][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 78.086474][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.087953][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.089136][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 78.090001][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 78.090774][ T4544] sp : ffff80001f2877c0 [ 78.091392][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 78.092653][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 78.093977][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e25f2970 [ 78.095301][ T4544] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.096603][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.097898][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.099185][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 78.100474][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.101802][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.103105][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.104472][ T4544] Call trace: [ 78.105008][ T4544] invalidate_bh_lru+0x128/0x234 [ 78.105806][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 78.106767][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.107632][ T4544] invalidate_bh_lrus+0x34/0x40 [ 78.108382][ T4544] blkdev_flush_mapping+0x168/0x31c [ 78.109242][ T4544] blkdev_put+0x490/0x6ac [ 78.109934][ T4544] blkdev_close+0x74/0xb0 [ 78.110609][ T4544] __fput+0x1c0/0x7f8 [ 78.111252][ T4544] ____fput+0x20/0x30 [ 78.111887][ T4544] task_work_run+0x12c/0x1e0 [ 78.112669][ T4544] do_notify_resume+0x24b4/0x3128 [ 78.113411][ T4544] el0_svc+0xf0/0x1e0 [ 78.114098][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 78.114939][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 78.115714][ T4544] irq event stamp: 133344 [ 78.116394][ T4544] hardirqs last enabled at (133343): [] kasan_quarantine_put+0xc4/0x204 [ 78.117925][ T4544] hardirqs last disabled at (133344): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.119682][ T4544] softirqs last enabled at (133142): [] local_bh_enable+0x10/0x34 [ 78.121220][ T4544] softirqs last disabled at (133140): [] local_bh_disable+0x10/0x34 [ 78.122789][ T4544] ---[ end trace 5889a8ac30535ce7 ]--- [ 78.159941][ T5023] loop0: detected capacity change from 0 to 128 [ 78.162888][ T5023] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.164107][ T5023] Bad inode number on dev loop0: 2 is out of range [ 78.165228][ T5023] SysV FS: get root inode failed [ 78.166037][ T5023] oldfs: cannot read superblock [ 78.186253][ T4544] ------------[ cut here ]------------ [ 78.187100][ T4544] VFS: brelse: Trying to free free buffer [ 78.188094][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.189383][ T4544] Modules linked in: [ 78.189999][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 78.191189][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.192677][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.193875][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 78.194677][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 78.195493][ T4544] sp : ffff80001f2877c0 [ 78.196127][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 78.197340][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 78.198674][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e25f2d10 [ 78.199940][ T4544] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.201192][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.202482][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.203718][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 78.204919][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.206298][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.207658][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.209010][ T4544] Call trace: [ 78.209549][ T4544] invalidate_bh_lru+0x128/0x234 [ 78.210295][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 78.211138][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.211958][ T4544] invalidate_bh_lrus+0x34/0x40 [ 78.212705][ T4544] blkdev_flush_mapping+0x168/0x31c [ 78.213462][ T4544] blkdev_put+0x490/0x6ac [ 78.214126][ T4544] blkdev_close+0x74/0xb0 [ 78.214755][ T4544] __fput+0x1c0/0x7f8 [ 78.215346][ T4544] ____fput+0x20/0x30 [ 78.215992][ T4544] task_work_run+0x12c/0x1e0 [ 78.216697][ T4544] do_notify_resume+0x24b4/0x3128 [ 78.217482][ T4544] el0_svc+0xf0/0x1e0 [ 78.218107][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 78.218917][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 78.219527][ T4544] irq event stamp: 137054 [ 78.220163][ T4544] hardirqs last enabled at (137053): [] kasan_quarantine_put+0xc4/0x204 [ 78.221752][ T4544] hardirqs last disabled at (137054): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.223323][ T4544] softirqs last enabled at (136968): [] local_bh_enable+0x10/0x34 [ 78.224713][ T4544] softirqs last disabled at (136966): [] local_bh_disable+0x10/0x34 [ 78.226256][ T4544] ---[ end trace 5889a8ac30535ce8 ]--- [ 78.259937][ T5027] loop0: detected capacity change from 0 to 128 [ 78.263291][ T5027] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.264498][ T5027] Bad inode number on dev loop0: 2 is out of range [ 78.265523][ T5027] SysV FS: get root inode failed [ 78.266226][ T5027] oldfs: cannot read superblock [ 78.274663][ T4544] ------------[ cut here ]------------ [ 78.275474][ T4544] VFS: brelse: Trying to free free buffer [ 78.276329][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.277577][ T4544] Modules linked in: [ 78.278129][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 78.279321][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.280716][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.281908][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 78.282724][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 78.283570][ T4544] sp : ffff80001f2877c0 [ 78.284256][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 78.285605][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 78.286911][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e25f3400 [ 78.288329][ T4544] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.289686][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.291007][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.292289][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 78.293675][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.295061][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.296405][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.297794][ T4544] Call trace: [ 78.298366][ T4544] invalidate_bh_lru+0x128/0x234 [ 78.299212][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 78.300177][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.300913][ T4544] invalidate_bh_lrus+0x34/0x40 [ 78.301724][ T4544] blkdev_flush_mapping+0x168/0x31c [ 78.302535][ T4544] blkdev_put+0x490/0x6ac [ 78.303249][ T4544] blkdev_close+0x74/0xb0 [ 78.303910][ T4544] __fput+0x1c0/0x7f8 [ 78.304520][ T4544] ____fput+0x20/0x30 [ 78.305138][ T4544] task_work_run+0x12c/0x1e0 [ 78.305844][ T4544] do_notify_resume+0x24b4/0x3128 [ 78.306668][ T4544] el0_svc+0xf0/0x1e0 [ 78.307317][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 78.308095][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 78.308768][ T4544] irq event stamp: 140030 [ 78.309382][ T4544] hardirqs last enabled at (140029): [] kasan_quarantine_put+0xc4/0x204 [ 78.311029][ T4544] hardirqs last disabled at (140030): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.312812][ T4544] softirqs last enabled at (139822): [] local_bh_enable+0x10/0x34 [ 78.314368][ T4544] softirqs last disabled at (139820): [] local_bh_disable+0x10/0x34 [ 78.315878][ T4544] ---[ end trace 5889a8ac30535ce9 ]--- [ 78.350042][ T5029] loop0: detected capacity change from 0 to 128 [ 78.352432][ T5029] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.353842][ T5029] Bad inode number on dev loop0: 2 is out of range [ 78.354890][ T5029] SysV FS: get root inode failed [ 78.355635][ T5029] oldfs: cannot read superblock [ 78.365730][ T4544] ------------[ cut here ]------------ [ 78.366595][ T4544] VFS: brelse: Trying to free free buffer [ 78.367551][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.369017][ T4544] Modules linked in: [ 78.369641][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 78.371030][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.372644][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.373851][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 78.374724][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 78.375552][ T4544] sp : ffff80001f2877c0 [ 78.376171][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 78.377542][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 78.378822][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e25f37a0 [ 78.380105][ T4544] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.381506][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.382729][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.384041][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 78.385415][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.386706][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.387995][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.389361][ T4544] Call trace: [ 78.389875][ T4544] invalidate_bh_lru+0x128/0x234 [ 78.390720][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 78.391626][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.392405][ T4544] invalidate_bh_lrus+0x34/0x40 [ 78.393244][ T4544] blkdev_flush_mapping+0x168/0x31c [ 78.394032][ T4544] blkdev_put+0x490/0x6ac [ 78.394745][ T4544] blkdev_close+0x74/0xb0 [ 78.395450][ T4544] __fput+0x1c0/0x7f8 [ 78.396143][ T4544] ____fput+0x20/0x30 [ 78.396779][ T4544] task_work_run+0x12c/0x1e0 [ 78.397366][ T4544] do_notify_resume+0x24b4/0x3128 [ 78.398183][ T4544] el0_svc+0xf0/0x1e0 [ 78.398818][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 78.399535][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 78.400241][ T4544] irq event stamp: 143314 [ 78.400837][ T4544] hardirqs last enabled at (143313): [] kasan_quarantine_put+0xc4/0x204 [ 78.402275][ T4544] hardirqs last disabled at (143314): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.403828][ T4544] softirqs last enabled at (143122): [] local_bh_enable+0x10/0x34 [ 78.405227][ T4544] softirqs last disabled at (143120): [] local_bh_disable+0x10/0x34 [ 78.406577][ T4544] ---[ end trace 5889a8ac30535cea ]--- [ 78.451735][ T5031] loop0: detected capacity change from 0 to 128 [ 78.454083][ T5031] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.455305][ T5031] Bad inode number on dev loop0: 2 is out of range [ 78.456666][ T5031] SysV FS: get root inode failed [ 78.457978][ T5031] oldfs: cannot read superblock [ 78.458820][ T5031] ------------[ cut here ]------------ [ 78.459635][ T5031] VFS: brelse: Trying to free free buffer [ 78.460582][ T5031] WARNING: CPU: 0 PID: 5031 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.461912][ T5031] Modules linked in: [ 78.462539][ T5031] CPU: 0 PID: 5031 Comm: syz.0.40 Tainted: G W syzkaller #0 [ 78.463845][ T5031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.465411][ T5031] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.466604][ T5031] pc : invalidate_bh_lru+0x128/0x234 [ 78.467451][ T5031] lr : invalidate_bh_lru+0x128/0x234 [ 78.468311][ T5031] sp : ffff80001f9376e0 [ 78.468932][ T5031] x29: ffff80001f9376e0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 78.470247][ T5031] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 78.471612][ T5031] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e243f148 [ 78.472907][ T5031] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.474164][ T5031] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.475456][ T5031] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.476734][ T5031] x11: 0000000000000002 x10: 0000000000000000 x9 : 2cedf8fcd8c5ec00 [ 78.478138][ T5031] x8 : 2cedf8fcd8c5ec00 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.479528][ T5031] x5 : ffff80001f936fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.480826][ T5031] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.482102][ T5031] Call trace: [ 78.482669][ T5031] invalidate_bh_lru+0x128/0x234 [ 78.483403][ T5031] smp_call_function_many_cond+0xa50/0xeb0 [ 78.484265][ T5031] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.485060][ T5031] invalidate_bh_lrus+0x34/0x40 [ 78.485783][ T5031] blkdev_flush_mapping+0x168/0x31c [ 78.486680][ T5031] blkdev_put+0x490/0x6ac [ 78.487393][ T5031] kill_block_super+0x98/0xdc [ 78.488107][ T5031] deactivate_locked_super+0xb8/0x13c [ 78.488987][ T5031] mount_bdev+0x284/0x358 [ 78.489665][ T5031] sysv_mount+0x44/0x58 [ 78.490319][ T5031] legacy_get_tree+0xd4/0x16c [ 78.491055][ T5031] vfs_get_tree+0x90/0x274 [ 78.491794][ T5031] do_new_mount+0x228/0x810 [ 78.492524][ T5031] path_mount+0x5b4/0x1000 [ 78.493250][ T5031] __arm64_sys_mount+0x514/0x5e4 [ 78.494110][ T5031] invoke_syscall+0x98/0x2b8 [ 78.494887][ T5031] el0_svc_common+0x138/0x258 [ 78.495635][ T5031] do_el0_svc+0x58/0x14c [ 78.496302][ T5031] el0_svc+0x78/0x1e0 [ 78.496931][ T5031] el0t_64_sync_handler+0xcc/0xe4 [ 78.497702][ T5031] el0t_64_sync+0x1a0/0x1a4 [ 78.498371][ T5031] irq event stamp: 1146 [ 78.498959][ T5031] hardirqs last enabled at (1145): [] kasan_quarantine_put+0xc4/0x204 [ 78.500352][ T5031] hardirqs last disabled at (1146): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.501892][ T5031] softirqs last enabled at (1130): [] handle_softirqs+0xa4c/0xbf0 [ 78.503314][ T5031] softirqs last disabled at (1105): [] __irq_exit_rcu+0x240/0x440 [ 78.504718][ T5031] ---[ end trace 5889a8ac30535ceb ]--- [ 78.613973][ T5035] loop0: detected capacity change from 0 to 128 [ 78.616157][ T5035] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.617684][ T5035] Bad inode number on dev loop0: 2 is out of range [ 78.618729][ T5035] SysV FS: get root inode failed [ 78.619493][ T5035] oldfs: cannot read superblock [ 78.628347][ T4544] ------------[ cut here ]------------ [ 78.629203][ T4544] VFS: brelse: Trying to free free buffer [ 78.630187][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.631566][ T4544] Modules linked in: [ 78.632165][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 78.633381][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.634759][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.636062][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 78.636958][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 78.637746][ T4544] sp : ffff80001f2877c0 [ 78.638463][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 78.639768][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 78.641102][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e243f4e8 [ 78.642328][ T4544] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.643664][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.645024][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.646281][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 78.647664][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.649001][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.650208][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.651410][ T4544] Call trace: [ 78.651909][ T4544] invalidate_bh_lru+0x128/0x234 [ 78.652702][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 78.653679][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.654473][ T4544] invalidate_bh_lrus+0x34/0x40 [ 78.655202][ T4544] blkdev_flush_mapping+0x168/0x31c [ 78.655990][ T4544] blkdev_put+0x490/0x6ac [ 78.656697][ T4544] blkdev_close+0x74/0xb0 [ 78.657392][ T4544] __fput+0x1c0/0x7f8 [ 78.657984][ T4544] ____fput+0x20/0x30 [ 78.658633][ T4544] task_work_run+0x12c/0x1e0 [ 78.659371][ T4544] do_notify_resume+0x24b4/0x3128 [ 78.660113][ T4544] el0_svc+0xf0/0x1e0 [ 78.660816][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 78.661577][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 78.662309][ T4544] irq event stamp: 152134 [ 78.662996][ T4544] hardirqs last enabled at (152133): [] kasan_quarantine_put+0xc4/0x204 [ 78.664563][ T4544] hardirqs last disabled at (152134): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.666305][ T4544] softirqs last enabled at (151928): [] local_bh_enable+0x10/0x34 [ 78.667921][ T4544] softirqs last disabled at (151926): [] local_bh_disable+0x10/0x34 [ 78.669549][ T4544] ---[ end trace 5889a8ac30535cec ]--- [ 78.690256][ T5037] loop0: detected capacity change from 0 to 128 [ 78.692750][ T5037] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.693983][ T5037] Bad inode number on dev loop0: 2 is out of range [ 78.695110][ T5037] SysV FS: get root inode failed [ 78.695966][ T5037] oldfs: cannot read superblock [ 78.704778][ T4544] ------------[ cut here ]------------ [ 78.705704][ T4544] VFS: brelse: Trying to free free buffer [ 78.706676][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.708072][ T4544] Modules linked in: [ 78.708721][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 78.710065][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.711676][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.712922][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 78.713704][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 78.714497][ T4544] sp : ffff80001f2877c0 [ 78.715084][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 78.716352][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 78.717671][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e243f888 [ 78.718991][ T4544] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.720311][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.721574][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.722941][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 78.724330][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.725738][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.727013][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.728375][ T4544] Call trace: [ 78.728884][ T4544] invalidate_bh_lru+0x128/0x234 [ 78.729635][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 78.730573][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.731370][ T4544] invalidate_bh_lrus+0x34/0x40 [ 78.732184][ T4544] blkdev_flush_mapping+0x168/0x31c [ 78.733103][ T4544] blkdev_put+0x490/0x6ac [ 78.733887][ T4544] blkdev_close+0x74/0xb0 [ 78.734595][ T4544] __fput+0x1c0/0x7f8 [ 78.735215][ T4544] ____fput+0x20/0x30 [ 78.735879][ T4544] task_work_run+0x12c/0x1e0 [ 78.736623][ T4544] do_notify_resume+0x24b4/0x3128 [ 78.737482][ T4544] el0_svc+0xf0/0x1e0 [ 78.738147][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 78.738885][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 78.739530][ T4544] irq event stamp: 155406 [ 78.740201][ T4544] hardirqs last enabled at (155405): [] kasan_quarantine_put+0xc4/0x204 [ 78.741792][ T4544] hardirqs last disabled at (155406): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.743491][ T4544] softirqs last enabled at (155194): [] local_bh_enable+0x10/0x34 [ 78.744912][ T4544] softirqs last disabled at (155192): [] local_bh_disable+0x10/0x34 [ 78.746434][ T4544] ---[ end trace 5889a8ac30535ced ]--- [ 78.769037][ T523] device hsr_slave_0 left promiscuous mode [ 78.789432][ T5039] loop0: detected capacity change from 0 to 128 [ 78.792315][ T5039] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.793495][ T5039] Bad inode number on dev loop0: 2 is out of range [ 78.794706][ T5039] SysV FS: get root inode failed [ 78.795499][ T5039] oldfs: cannot read superblock [ 78.803762][ T4544] ------------[ cut here ]------------ [ 78.804770][ T4544] VFS: brelse: Trying to free free buffer [ 78.805696][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.807016][ T4544] Modules linked in: [ 78.807607][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 78.808939][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.810494][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.811693][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 78.812561][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 78.813441][ T4544] sp : ffff80001f2877c0 [ 78.814107][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 78.815492][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 78.816811][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24d1060 [ 78.818091][ T4544] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.819405][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.820812][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.822156][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 78.823449][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.824948][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.826264][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.827542][ T4544] Call trace: [ 78.828058][ T4544] invalidate_bh_lru+0x128/0x234 [ 78.828871][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 78.829753][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.830559][ T4544] invalidate_bh_lrus+0x34/0x40 [ 78.831333][ T4544] blkdev_flush_mapping+0x168/0x31c [ 78.832193][ T4544] blkdev_put+0x490/0x6ac [ 78.832917][ T4544] blkdev_close+0x74/0xb0 [ 78.833540][ T4544] __fput+0x1c0/0x7f8 [ 78.834182][ T4544] ____fput+0x20/0x30 [ 78.834813][ T4544] task_work_run+0x12c/0x1e0 [ 78.835528][ T4544] do_notify_resume+0x24b4/0x3128 [ 78.836296][ T4544] el0_svc+0xf0/0x1e0 [ 78.836891][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 78.837685][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 78.838356][ T4544] irq event stamp: 158456 [ 78.839050][ T4544] hardirqs last enabled at (158455): [] kasan_quarantine_put+0xc4/0x204 [ 78.840554][ T4544] hardirqs last disabled at (158456): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.842177][ T4544] softirqs last enabled at (158258): [] local_bh_enable+0x10/0x34 [ 78.843624][ T4544] softirqs last disabled at (158256): [] local_bh_disable+0x10/0x34 [ 78.845118][ T4544] ---[ end trace 5889a8ac30535cee ]--- [ 78.846929][ T523] device hsr_slave_1 left promiscuous mode [ 78.880177][ T5041] loop0: detected capacity change from 0 to 128 [ 78.927139][ T523] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 78.928319][ T5041] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 78.928418][ T523] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 78.929500][ T5041] Bad inode number on dev loop0: 2 is out of range [ 78.932722][ T5041] SysV FS: get root inode failed [ 78.933530][ T5041] oldfs: cannot read superblock [ 78.936128][ T523] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 78.937695][ T523] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 78.940383][ T523] device bridge_slave_1 left promiscuous mode [ 78.941419][ T523] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.942406][ T4544] ------------[ cut here ]------------ [ 78.943467][ T4544] VFS: brelse: Trying to free free buffer [ 78.944317][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 78.945674][ T4544] Modules linked in: [ 78.946214][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 78.947529][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 78.949167][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 78.950422][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 78.951224][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 78.952018][ T4544] sp : ffff80001f2877c0 [ 78.952642][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 78.953927][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 78.955218][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24d1400 [ 78.956506][ T4544] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 78.957758][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 78.958896][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 78.960264][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 78.961592][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 78.962798][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 78.964017][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 78.965214][ T4544] Call trace: [ 78.965739][ T4544] invalidate_bh_lru+0x128/0x234 [ 78.966510][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 78.967386][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 78.968176][ T4544] invalidate_bh_lrus+0x34/0x40 [ 78.968974][ T4544] blkdev_flush_mapping+0x168/0x31c [ 78.969753][ T4544] blkdev_put+0x490/0x6ac [ 78.970420][ T4544] blkdev_close+0x74/0xb0 [ 78.971125][ T4544] __fput+0x1c0/0x7f8 [ 78.971767][ T4544] ____fput+0x20/0x30 [ 78.972422][ T4544] task_work_run+0x12c/0x1e0 [ 78.973140][ T4544] do_notify_resume+0x24b4/0x3128 [ 78.973947][ T4544] el0_svc+0xf0/0x1e0 [ 78.974577][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 78.975412][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 78.976142][ T4544] irq event stamp: 161796 [ 78.976842][ T4544] hardirqs last enabled at (161795): [] kasan_quarantine_put+0xc4/0x204 [ 78.978444][ T4544] hardirqs last disabled at (161796): [] smp_call_function_many_cond+0xa44/0xeb0 [ 78.980162][ T4544] softirqs last enabled at (161608): [] local_bh_enable+0x10/0x34 [ 78.981648][ T4544] softirqs last disabled at (161606): [] local_bh_disable+0x10/0x34 [ 78.983117][ T4544] ---[ end trace 5889a8ac30535cef ]--- [ 78.984178][ T4170] Bluetooth: hci0: command 0x0419 tx timeout [ 79.028226][ T523] device bridge_slave_0 left promiscuous mode [ 79.029270][ T523] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.037685][ T5043] loop0: detected capacity change from 0 to 128 [ 79.127957][ T5043] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.129217][ T5043] Bad inode number on dev loop0: 2 is out of range [ 79.130209][ T5043] SysV FS: get root inode failed [ 79.131011][ T5043] oldfs: cannot read superblock [ 79.131857][ T5043] ------------[ cut here ]------------ [ 79.132711][ T5043] VFS: brelse: Trying to free free buffer [ 79.133634][ T5043] WARNING: CPU: 1 PID: 5043 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.135010][ T5043] Modules linked in: [ 79.135545][ T5043] CPU: 1 PID: 5043 Comm: syz.0.46 Tainted: G W syzkaller #0 [ 79.136933][ T5043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.138393][ T5043] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.139517][ T5043] pc : invalidate_bh_lru+0x128/0x234 [ 79.140311][ T5043] lr : invalidate_bh_lru+0x128/0x234 [ 79.141151][ T5043] sp : ffff80001fa476e0 [ 79.141772][ T5043] x29: ffff80001fa476e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 79.142962][ T5043] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 79.144296][ T5043] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2485888 [ 79.145531][ T5043] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 79.146718][ T5043] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.148010][ T5043] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.149243][ T5043] x11: 0000000000000002 x10: 0000000000000000 x9 : 77471d70767f9700 [ 79.150442][ T5043] x8 : 77471d70767f9700 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.151683][ T5043] x5 : ffff80001fa46fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.152886][ T5043] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 79.154108][ T5043] Call trace: [ 79.154586][ T5043] invalidate_bh_lru+0x128/0x234 [ 79.155355][ T5043] smp_call_function_many_cond+0xa50/0xeb0 [ 79.156221][ T5043] on_each_cpu_cond_mask+0x5c/0xc4 [ 79.157004][ T5043] invalidate_bh_lrus+0x34/0x40 [ 79.157762][ T5043] blkdev_flush_mapping+0x168/0x31c [ 79.158619][ T5043] blkdev_put+0x490/0x6ac [ 79.159310][ T5043] kill_block_super+0x98/0xdc [ 79.160128][ T5043] deactivate_locked_super+0xb8/0x13c [ 79.160963][ T5043] mount_bdev+0x284/0x358 [ 79.161600][ T5043] sysv_mount+0x44/0x58 [ 79.162231][ T5043] legacy_get_tree+0xd4/0x16c [ 79.162940][ T5043] vfs_get_tree+0x90/0x274 [ 79.163640][ T5043] do_new_mount+0x228/0x810 [ 79.164379][ T5043] path_mount+0x5b4/0x1000 [ 79.165088][ T5043] __arm64_sys_mount+0x514/0x5e4 [ 79.165883][ T5043] invoke_syscall+0x98/0x2b8 [ 79.166570][ T5043] el0_svc_common+0x138/0x258 [ 79.167302][ T5043] do_el0_svc+0x58/0x14c [ 79.167995][ T5043] el0_svc+0x78/0x1e0 [ 79.168651][ T5043] el0t_64_sync_handler+0xcc/0xe4 [ 79.169425][ T5043] el0t_64_sync+0x1a0/0x1a4 [ 79.170160][ T5043] irq event stamp: 1022 [ 79.170820][ T5043] hardirqs last enabled at (1021): [] kasan_quarantine_put+0xc4/0x204 [ 79.172289][ T5043] hardirqs last disabled at (1022): [] smp_call_function_many_cond+0xa44/0xeb0 [ 79.173956][ T5043] softirqs last enabled at (836): [] local_bh_enable+0x10/0x34 [ 79.175438][ T5043] softirqs last disabled at (834): [] local_bh_disable+0x10/0x34 [ 79.176923][ T5043] ---[ end trace 5889a8ac30535cf0 ]--- [ 79.187223][ T523] device veth1_macvtap left promiscuous mode [ 79.188310][ T523] device veth0_macvtap left promiscuous mode [ 79.189260][ T523] device veth1_vlan left promiscuous mode [ 79.190152][ T523] device veth0_vlan left promiscuous mode [ 79.271071][ T5047] loop0: detected capacity change from 0 to 128 [ 79.282804][ T5047] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.284068][ T5047] Bad inode number on dev loop0: 2 is out of range [ 79.285062][ T5047] SysV FS: get root inode failed [ 79.285876][ T5047] oldfs: cannot read superblock [ 79.293073][ T4544] ------------[ cut here ]------------ [ 79.294044][ T4544] VFS: brelse: Trying to free free buffer [ 79.295006][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.296260][ T4544] Modules linked in: [ 79.296786][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 79.298100][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.299815][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.301055][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 79.301815][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 79.302700][ T4544] sp : ffff80001f2877c0 [ 79.303386][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 79.304669][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 79.306054][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e243fc28 [ 79.307453][ T4544] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 79.308758][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.309946][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.311224][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 79.312534][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.313759][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.314918][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 79.316164][ T4544] Call trace: [ 79.316655][ T4544] invalidate_bh_lru+0x128/0x234 [ 79.317444][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 79.318394][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 79.319282][ T4544] invalidate_bh_lrus+0x34/0x40 [ 79.320073][ T4544] blkdev_flush_mapping+0x168/0x31c [ 79.320938][ T4544] blkdev_put+0x490/0x6ac [ 79.321669][ T4544] blkdev_close+0x74/0xb0 [ 79.322382][ T4544] __fput+0x1c0/0x7f8 [ 79.323043][ T4544] ____fput+0x20/0x30 [ 79.323709][ T4544] task_work_run+0x12c/0x1e0 [ 79.324454][ T4544] do_notify_resume+0x24b4/0x3128 [ 79.325293][ T4544] el0_svc+0xf0/0x1e0 [ 79.325915][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 79.326663][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 79.327373][ T4544] irq event stamp: 169488 [ 79.328059][ T4544] hardirqs last enabled at (169487): [] kasan_quarantine_put+0xc4/0x204 [ 79.329572][ T4544] hardirqs last disabled at (169488): [] smp_call_function_many_cond+0xa44/0xeb0 [ 79.331203][ T4544] softirqs last enabled at (169276): [] local_bh_enable+0x10/0x34 [ 79.332556][ T4544] softirqs last disabled at (169274): [] local_bh_disable+0x10/0x34 [ 79.333942][ T4544] ---[ end trace 5889a8ac30535cf1 ]--- [ 79.335983][ T523] team0 (unregistering): Port device team_slave_1 removed [ 79.340456][ T523] team0 (unregistering): Port device team_slave_0 removed [ 79.344349][ T523] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 79.349254][ T5049] loop0: detected capacity change from 0 to 128 [ 79.358356][ T5049] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.359559][ T5049] Bad inode number on dev loop0: 2 is out of range [ 79.360520][ T5049] SysV FS: get root inode failed [ 79.361307][ T5049] oldfs: cannot read superblock [ 79.371647][ T523] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 79.375433][ T5051] ------------[ cut here ]------------ [ 79.376270][ T5051] VFS: brelse: Trying to free free buffer [ 79.377171][ T5051] WARNING: CPU: 1 PID: 5051 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.378619][ T5051] Modules linked in: [ 79.379214][ T5051] CPU: 1 PID: 5051 Comm: syz.0.50 Tainted: G W syzkaller #0 [ 79.380850][ T5051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.382394][ T5051] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.383742][ T5051] pc : invalidate_bh_lru+0x128/0x234 [ 79.384562][ T5051] lr : invalidate_bh_lru+0x128/0x234 [ 79.385337][ T5051] sp : ffff80001fa077c0 [ 79.385966][ T5051] x29: ffff80001fa077c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 79.387192][ T5051] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 79.388512][ T5051] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2485c28 [ 79.389860][ T5051] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 79.391053][ T5051] x17: 0000000000000000 x16: ffff800008302168 x15: 00000000ffffffff [ 79.392368][ T5051] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.393581][ T5051] x11: 0000000000000002 x10: 0000000000000000 x9 : 0252e2d5f6eb5d00 [ 79.394895][ T5051] x8 : 0252e2d5f6eb5d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.396109][ T5051] x5 : ffff80001fa070b8 x4 : ffff80001425f420 x3 : ffff800008302278 [ 79.397331][ T5051] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 79.398613][ T5051] Call trace: [ 79.399097][ T5051] invalidate_bh_lru+0x128/0x234 [ 79.399848][ T5051] smp_call_function_many_cond+0xa50/0xeb0 [ 79.400810][ T5051] on_each_cpu_cond_mask+0x5c/0xc4 [ 79.401607][ T5051] invalidate_bh_lrus+0x34/0x40 [ 79.402326][ T5051] blkdev_flush_mapping+0x168/0x31c [ 79.403152][ T5051] blkdev_put+0x490/0x6ac [ 79.403829][ T5051] blkdev_close+0x74/0xb0 [ 79.404515][ T5051] __fput+0x1c0/0x7f8 [ 79.405195][ T5051] ____fput+0x20/0x30 [ 79.405845][ T5051] task_work_run+0x12c/0x1e0 [ 79.406522][ T5051] do_notify_resume+0x24b4/0x3128 [ 79.407392][ T5051] el0_svc+0xf0/0x1e0 [ 79.408086][ T5051] el0t_64_sync_handler+0xcc/0xe4 [ 79.408854][ T5051] el0t_64_sync+0x1a0/0x1a4 [ 79.409600][ T5051] irq event stamp: 680 [ 79.410241][ T5051] hardirqs last enabled at (679): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 79.411923][ T5051] hardirqs last disabled at (680): [] smp_call_function_many_cond+0xa44/0xeb0 [ 79.413613][ T5051] softirqs last enabled at (656): [] local_bh_enable+0x10/0x34 [ 79.415148][ T5051] softirqs last disabled at (654): [] local_bh_disable+0x10/0x34 [ 79.416665][ T5051] ---[ end trace 5889a8ac30535cf2 ]--- [ 79.456026][ T5053] loop0: detected capacity change from 0 to 128 [ 79.460421][ T5053] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.461581][ T5053] Bad inode number on dev loop0: 2 is out of range [ 79.462619][ T5053] SysV FS: get root inode failed [ 79.463429][ T5053] oldfs: cannot read superblock [ 79.474990][ C1] ------------[ cut here ]------------ [ 79.475803][ C1] VFS: brelse: Trying to free free buffer [ 79.476612][ C1] WARNING: CPU: 1 PID: 523 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.477951][ C1] Modules linked in: [ 79.478572][ C1] CPU: 1 PID: 523 Comm: kworker/u4:4 Tainted: G W syzkaller #0 [ 79.480008][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.481625][ C1] Workqueue: netns cleanup_net [ 79.482420][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.483684][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 79.484518][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 79.485379][ C1] sp : ffff800008017de0 [ 79.486070][ C1] x29: ffff800008017de0 x28: ffff0000c83b8000 x27: 1fffe0003421c65c [ 79.487374][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 79.488605][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e248a060 [ 79.489870][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010203 [ 79.491195][ C1] x17: 0000000000010203 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.492397][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.493693][ C1] x11: 0000000000010202 x10: 0000000000010202 x9 : bd72fff7dbe5a400 [ 79.494888][ C1] x8 : bd72fff7dbe5a400 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.496067][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.497259][ C1] x2 : 0000000000000001 x1 : 0000000100010202 x0 : 0000000000000027 [ 79.498580][ C1] Call trace: [ 79.499107][ C1] invalidate_bh_lru+0x128/0x234 [ 79.499878][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 79.500812][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 79.501830][ C1] ipi_handler+0x10c/0x710 [ 79.502518][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 79.503382][ C1] handle_domain_irq+0x144/0x1fc [ 79.504146][ C1] gic_handle_irq+0x78/0x1c8 [ 79.504835][ C1] call_on_irq_stack+0x30/0x48 [ 79.505566][ C1] do_interrupt_handler+0x6c/0x88 [ 79.506372][ C1] el1_interrupt+0x30/0x58 [ 79.507061][ C1] el1h_64_irq_handler+0x18/0x24 [ 79.507863][ C1] el1h_64_irq+0x78/0x7c [ 79.508552][ C1] __local_bh_enable_ip+0x200/0x380 [ 79.509388][ C1] _raw_write_unlock_bh+0xec/0x174 [ 79.510229][ C1] fib6_walk+0x138/0x254 [ 79.510915][ C1] __fib6_clean_all+0x1e4/0x320 [ 79.511612][ C1] fib6_clean_all+0x3c/0x50 [ 79.512304][ C1] rt6_disable_ip+0x100/0x658 [ 79.513028][ C1] addrconf_ifdown+0x148/0x1688 [ 79.513686][ C1] addrconf_notify+0x2f4/0xc6c [ 79.514331][ C1] raw_notifier_call_chain+0xd4/0x164 [ 79.515215][ C1] unregister_netdevice_many+0xe10/0x17d0 [ 79.516177][ C1] default_device_exit_batch+0x444/0x4a4 [ 79.517063][ C1] cleanup_net+0x644/0xa98 [ 79.517707][ C1] process_one_work+0x79c/0x1140 [ 79.518526][ C1] worker_thread+0x8f4/0x101c [ 79.519296][ C1] kthread+0x374/0x454 [ 79.519947][ C1] ret_from_fork+0x10/0x20 [ 79.520579][ C1] irq event stamp: 1515831 [ 79.521260][ C1] hardirqs last enabled at (1515830): [] __local_bh_enable_ip+0x1f8/0x380 [ 79.522928][ C1] hardirqs last disabled at (1515831): [] enter_el1_irq_or_nmi+0x10/0x1c [ 79.524486][ C1] softirqs last enabled at (1515826): [] clusterip_netdev_event+0x384/0x3ac [ 79.526172][ C1] softirqs last disabled at (1515828): [] __fib6_clean_all+0x1ac/0x320 [ 79.527698][ C1] ---[ end trace 5889a8ac30535cf3 ]--- [ 79.550411][ T5055] loop0: detected capacity change from 0 to 128 [ 79.570109][ T523] bond0 (unregistering): Released all slaves [ 79.619089][ T5055] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.620317][ T5055] Bad inode number on dev loop0: 2 is out of range [ 79.621362][ T5055] SysV FS: get root inode failed [ 79.622113][ T5055] oldfs: cannot read superblock [ 79.622910][ T5055] ------------[ cut here ]------------ [ 79.623755][ T5055] VFS: brelse: Trying to free free buffer [ 79.624724][ T5055] WARNING: CPU: 1 PID: 5055 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.626127][ T5055] Modules linked in: [ 79.626724][ T5055] CPU: 1 PID: 5055 Comm: syz.0.52 Tainted: G W syzkaller #0 [ 79.627938][ T5055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.629513][ T5055] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.630734][ T5055] pc : invalidate_bh_lru+0x128/0x234 [ 79.631584][ T5055] lr : invalidate_bh_lru+0x128/0x234 [ 79.632416][ T5055] sp : ffff80001fa576e0 [ 79.632992][ T5055] x29: ffff80001fa576e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 79.634226][ T5055] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 79.635525][ T5055] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e248a400 [ 79.636793][ T5055] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 79.638078][ T5055] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.639349][ T5055] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.640731][ T5055] x11: 0000000000000002 x10: 0000000000000000 x9 : b66bd7e0d12ab500 [ 79.641925][ T5055] x8 : b66bd7e0d12ab500 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.643280][ T5055] x5 : ffff80001fa56fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.644497][ T5055] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 79.645695][ T5055] Call trace: [ 79.646176][ T5055] invalidate_bh_lru+0x128/0x234 [ 79.646958][ T5055] smp_call_function_many_cond+0xa50/0xeb0 [ 79.647809][ T5055] on_each_cpu_cond_mask+0x5c/0xc4 [ 79.648624][ T5055] invalidate_bh_lrus+0x34/0x40 [ 79.649363][ T5055] blkdev_flush_mapping+0x168/0x31c [ 79.650109][ T5055] blkdev_put+0x490/0x6ac [ 79.650742][ T5055] kill_block_super+0x98/0xdc [ 79.651456][ T5055] deactivate_locked_super+0xb8/0x13c [ 79.652230][ T5055] mount_bdev+0x284/0x358 [ 79.652898][ T5055] sysv_mount+0x44/0x58 [ 79.653508][ T5055] legacy_get_tree+0xd4/0x16c [ 79.654260][ T5055] vfs_get_tree+0x90/0x274 [ 79.655010][ T5055] do_new_mount+0x228/0x810 [ 79.655790][ T5055] path_mount+0x5b4/0x1000 [ 79.656524][ T5055] __arm64_sys_mount+0x514/0x5e4 [ 79.657323][ T5055] invoke_syscall+0x98/0x2b8 [ 79.658098][ T5055] el0_svc_common+0x138/0x258 [ 79.658869][ T5055] do_el0_svc+0x58/0x14c [ 79.659591][ T5055] el0_svc+0x78/0x1e0 [ 79.660247][ T5055] el0t_64_sync_handler+0xcc/0xe4 [ 79.661056][ T5055] el0t_64_sync+0x1a0/0x1a4 [ 79.661734][ T5055] irq event stamp: 1512 [ 79.662355][ T5055] hardirqs last enabled at (1511): [] kasan_quarantine_put+0xc4/0x204 [ 79.663927][ T5055] hardirqs last disabled at (1512): [] smp_call_function_many_cond+0xa44/0xeb0 [ 79.665498][ T5055] softirqs last enabled at (1350): [] local_bh_enable+0x10/0x34 [ 79.666924][ T5055] softirqs last disabled at (1348): [] local_bh_disable+0x10/0x34 [ 79.668490][ T5055] ---[ end trace 5889a8ac30535cf4 ]--- [ 79.765814][ T5057] loop0: detected capacity change from 0 to 128 [ 79.808770][ T5057] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.810020][ T5057] Bad inode number on dev loop0: 2 is out of range [ 79.811050][ T5057] SysV FS: get root inode failed [ 79.811792][ T5057] oldfs: cannot read superblock [ 79.812509][ T5057] ------------[ cut here ]------------ [ 79.813234][ T5057] VFS: brelse: Trying to free free buffer [ 79.814114][ T5057] WARNING: CPU: 1 PID: 5057 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.815349][ T5057] Modules linked in: [ 79.815886][ T5057] CPU: 1 PID: 5057 Comm: syz.0.53 Tainted: G W syzkaller #0 [ 79.817028][ T5057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.818684][ T5057] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.819996][ T5057] pc : invalidate_bh_lru+0x128/0x234 [ 79.820853][ T5057] lr : invalidate_bh_lru+0x128/0x234 [ 79.821716][ T5057] sp : ffff80001fa576e0 [ 79.822381][ T5057] x29: ffff80001fa576e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 79.823731][ T5057] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 79.824993][ T5057] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e248a7a0 [ 79.826180][ T5057] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 79.827584][ T5057] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.828871][ T5057] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.830123][ T5057] x11: 0000000000000002 x10: 0000000000000000 x9 : 2eca9381b4552000 [ 79.831403][ T5057] x8 : 2eca9381b4552000 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.832684][ T5057] x5 : ffff80001fa56fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.833953][ T5057] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 79.835355][ T5057] Call trace: [ 79.835898][ T5057] invalidate_bh_lru+0x128/0x234 [ 79.836666][ T5057] smp_call_function_many_cond+0xa50/0xeb0 [ 79.837511][ T5057] on_each_cpu_cond_mask+0x5c/0xc4 [ 79.838286][ T5057] invalidate_bh_lrus+0x34/0x40 [ 79.839036][ T5057] blkdev_flush_mapping+0x168/0x31c [ 79.839906][ T5057] blkdev_put+0x490/0x6ac [ 79.840552][ T5057] kill_block_super+0x98/0xdc [ 79.841351][ T5057] deactivate_locked_super+0xb8/0x13c [ 79.842239][ T5057] mount_bdev+0x284/0x358 [ 79.842922][ T5057] sysv_mount+0x44/0x58 [ 79.843602][ T5057] legacy_get_tree+0xd4/0x16c [ 79.844331][ T5057] vfs_get_tree+0x90/0x274 [ 79.845076][ T5057] do_new_mount+0x228/0x810 [ 79.845825][ T5057] path_mount+0x5b4/0x1000 [ 79.846605][ T5057] __arm64_sys_mount+0x514/0x5e4 [ 79.847448][ T5057] invoke_syscall+0x98/0x2b8 [ 79.848127][ T5057] el0_svc_common+0x138/0x258 [ 79.848900][ T5057] do_el0_svc+0x58/0x14c [ 79.849562][ T5057] el0_svc+0x78/0x1e0 [ 79.850228][ T5057] el0t_64_sync_handler+0xcc/0xe4 [ 79.851072][ T5057] el0t_64_sync+0x1a0/0x1a4 [ 79.851804][ T5057] irq event stamp: 1008 [ 79.852437][ T5057] hardirqs last enabled at (1007): [] kasan_quarantine_put+0xc4/0x204 [ 79.853944][ T5057] hardirqs last disabled at (1008): [] smp_call_function_many_cond+0xa44/0xeb0 [ 79.855722][ T5057] softirqs last enabled at (840): [] local_bh_enable+0x10/0x34 [ 79.857201][ T5057] softirqs last disabled at (838): [] local_bh_disable+0x10/0x34 [ 79.858595][ T5057] ---[ end trace 5889a8ac30535cf5 ]--- [ 79.963259][ T5061] loop0: detected capacity change from 0 to 128 [ 79.967302][ T5061] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 79.968478][ T5061] Bad inode number on dev loop0: 2 is out of range [ 79.969771][ T5061] SysV FS: get root inode failed [ 79.970535][ T5061] oldfs: cannot read superblock [ 79.977459][ T4544] ------------[ cut here ]------------ [ 79.978362][ T4544] VFS: brelse: Trying to free free buffer [ 79.979269][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 79.980569][ T4544] Modules linked in: [ 79.981089][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 79.982254][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 79.983640][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 79.984925][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 79.985790][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 79.986652][ T4544] sp : ffff80001f2877c0 [ 79.987302][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 79.988576][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 79.989887][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e243b060 [ 79.991190][ T4544] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 79.992397][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 79.993652][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 79.994919][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 79.996141][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 79.997315][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 79.998565][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 79.999687][ T4544] Call trace: [ 80.000207][ T4544] invalidate_bh_lru+0x128/0x234 [ 80.000986][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 80.001952][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 80.002759][ T4544] invalidate_bh_lrus+0x34/0x40 [ 80.003513][ T4544] blkdev_flush_mapping+0x168/0x31c [ 80.004421][ T4544] blkdev_put+0x490/0x6ac [ 80.005112][ T4544] blkdev_close+0x74/0xb0 [ 80.005767][ T4544] __fput+0x1c0/0x7f8 [ 80.006312][ T4544] ____fput+0x20/0x30 [ 80.006957][ T4544] task_work_run+0x12c/0x1e0 [ 80.007720][ T4544] do_notify_resume+0x24b4/0x3128 [ 80.008531][ T4544] el0_svc+0xf0/0x1e0 [ 80.009132][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 80.009897][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 80.010552][ T4544] irq event stamp: 193012 [ 80.011145][ T4544] hardirqs last enabled at (193011): [] kasan_quarantine_put+0xc4/0x204 [ 80.012634][ T4544] hardirqs last disabled at (193012): [] smp_call_function_many_cond+0xa44/0xeb0 [ 80.014141][ T4544] softirqs last enabled at (192826): [] local_bh_enable+0x10/0x34 [ 80.015726][ T4544] softirqs last disabled at (192824): [] local_bh_disable+0x10/0x34 [ 80.017365][ T4544] ---[ end trace 5889a8ac30535cf6 ]--- [ 80.063639][ T5063] loop0: detected capacity change from 0 to 128 [ 80.066159][ T5063] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.067661][ T5063] Bad inode number on dev loop0: 2 is out of range [ 80.068642][ T5063] SysV FS: get root inode failed [ 80.069469][ T5063] oldfs: cannot read superblock [ 80.074786][ C0] ------------[ cut here ]------------ [ 80.075671][ C0] VFS: brelse: Trying to free free buffer [ 80.076550][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.077908][ C0] Modules linked in: [ 80.078463][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 80.079882][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.081371][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.082539][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 80.083369][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 80.084229][ C0] sp : ffff800008007de0 [ 80.084920][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845c [ 80.086047][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 80.087333][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e243b400 [ 80.088581][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 80.089922][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.091230][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.092499][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 80.093719][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.094939][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.096259][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 80.097505][ C0] Call trace: [ 80.098024][ C0] invalidate_bh_lru+0x128/0x234 [ 80.098770][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 80.099663][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 80.100773][ C0] ipi_handler+0x10c/0x710 [ 80.101435][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 80.102250][ C0] handle_domain_irq+0x144/0x1fc [ 80.102999][ C0] gic_handle_irq+0x78/0x1c8 [ 80.103730][ C0] call_on_irq_stack+0x30/0x48 [ 80.104506][ C0] do_interrupt_handler+0x6c/0x88 [ 80.105285][ C0] el1_interrupt+0x30/0x58 [ 80.106030][ C0] el1h_64_irq_handler+0x18/0x24 [ 80.106768][ C0] el1h_64_irq+0x78/0x7c [ 80.107434][ C0] account_kernel_stack+0x150/0x274 [ 80.108280][ C0] dup_task_struct+0x768/0xc44 [ 80.109076][ C0] copy_process+0x4c8/0x34ac [ 80.109746][ C0] kernel_clone+0x1d8/0x9d4 [ 80.110455][ C0] __arm64_sys_clone+0x138/0x190 [ 80.111255][ C0] invoke_syscall+0x98/0x2b8 [ 80.112010][ C0] el0_svc_common+0x138/0x258 [ 80.112785][ C0] do_el0_svc+0x58/0x14c [ 80.113454][ C0] el0_svc+0x78/0x1e0 [ 80.114105][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 80.114856][ C0] el0t_64_sync+0x1a0/0x1a4 [ 80.115590][ C0] irq event stamp: 225928 [ 80.116273][ C0] hardirqs last enabled at (225927): [] account_kernel_stack+0x130/0x274 [ 80.117939][ C0] hardirqs last disabled at (225928): [] enter_el1_irq_or_nmi+0x10/0x1c [ 80.119504][ C0] softirqs last enabled at (225908): [] local_bh_enable+0x10/0x34 [ 80.120944][ C0] softirqs last disabled at (225906): [] local_bh_disable+0x10/0x34 [ 80.122477][ C0] ---[ end trace 5889a8ac30535cf7 ]--- [ 80.140013][ T5065] loop0: detected capacity change from 0 to 128 [ 80.218034][ T5065] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.219118][ T5065] Bad inode number on dev loop0: 2 is out of range [ 80.220062][ T5065] SysV FS: get root inode failed [ 80.220863][ T5065] oldfs: cannot read superblock [ 80.230872][ T4544] ------------[ cut here ]------------ [ 80.231774][ T4544] VFS: brelse: Trying to free free buffer [ 80.232749][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.234046][ T4544] Modules linked in: [ 80.234625][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 80.235792][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.237238][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.238336][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 80.239207][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 80.239945][ T4544] sp : ffff80001f2877c0 [ 80.240533][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 80.241768][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 80.243053][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e248ab40 [ 80.244260][ T4544] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 80.245597][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.246828][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.248036][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 80.249238][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.250511][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.251737][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 80.253056][ T4544] Call trace: [ 80.253551][ T4544] invalidate_bh_lru+0x128/0x234 [ 80.254311][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 80.255278][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 80.256039][ T4544] invalidate_bh_lrus+0x34/0x40 [ 80.256734][ T4544] blkdev_flush_mapping+0x168/0x31c [ 80.257535][ T4544] blkdev_put+0x490/0x6ac [ 80.258204][ T4544] blkdev_close+0x74/0xb0 [ 80.258869][ T4544] __fput+0x1c0/0x7f8 [ 80.259459][ T4544] ____fput+0x20/0x30 [ 80.260057][ T4544] task_work_run+0x12c/0x1e0 [ 80.260770][ T4544] do_notify_resume+0x24b4/0x3128 [ 80.261574][ T4544] el0_svc+0xf0/0x1e0 [ 80.262174][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 80.262981][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 80.263662][ T4544] irq event stamp: 199726 [ 80.264377][ T4544] hardirqs last enabled at (199725): [] kasan_quarantine_put+0xc4/0x204 [ 80.265957][ T4544] hardirqs last disabled at (199726): [] smp_call_function_many_cond+0xa44/0xeb0 [ 80.267731][ T4544] softirqs last enabled at (199174): [] local_bh_enable+0x10/0x34 [ 80.269314][ T4544] softirqs last disabled at (199172): [] local_bh_disable+0x10/0x34 [ 80.270823][ T4544] ---[ end trace 5889a8ac30535cf8 ]--- [ 80.298511][ T5067] loop0: detected capacity change from 0 to 128 [ 80.307256][ T5067] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.308275][ T5067] Bad inode number on dev loop0: 2 is out of range [ 80.309237][ T5067] SysV FS: get root inode failed [ 80.309997][ T5067] oldfs: cannot read superblock [ 80.316934][ T4544] ------------[ cut here ]------------ [ 80.317779][ T4544] VFS: brelse: Trying to free free buffer [ 80.318599][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.319984][ T4544] Modules linked in: [ 80.320520][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 80.321801][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.323386][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.324642][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 80.325517][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 80.326324][ T4544] sp : ffff80001f2877c0 [ 80.326937][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 80.328097][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 80.329295][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066bdf8 [ 80.330525][ T4544] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 80.331737][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.332965][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.334131][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 80.335447][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.336732][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.338057][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 80.339359][ T4544] Call trace: [ 80.339833][ T4544] invalidate_bh_lru+0x128/0x234 [ 80.340649][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 80.341539][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 80.342363][ T4544] invalidate_bh_lrus+0x34/0x40 [ 80.343192][ T4544] blkdev_flush_mapping+0x168/0x31c [ 80.343947][ T4544] blkdev_put+0x490/0x6ac [ 80.344633][ T4544] blkdev_close+0x74/0xb0 [ 80.345317][ T4544] __fput+0x1c0/0x7f8 [ 80.345969][ T4544] ____fput+0x20/0x30 [ 80.346631][ T4544] task_work_run+0x12c/0x1e0 [ 80.347392][ T4544] do_notify_resume+0x24b4/0x3128 [ 80.348227][ T4544] el0_svc+0xf0/0x1e0 [ 80.348899][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 80.349741][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 80.350452][ T4544] irq event stamp: 205512 [ 80.351090][ T4544] hardirqs last enabled at (205511): [] kasan_quarantine_put+0xc4/0x204 [ 80.352614][ T4544] hardirqs last disabled at (205512): [] smp_call_function_many_cond+0xa44/0xeb0 [ 80.354265][ T4544] softirqs last enabled at (205290): [] local_bh_enable+0x10/0x34 [ 80.355760][ T4544] softirqs last disabled at (205288): [] local_bh_disable+0x10/0x34 [ 80.357264][ T4544] ---[ end trace 5889a8ac30535cf9 ]--- [ 80.392648][ T5069] loop0: detected capacity change from 0 to 128 [ 80.394998][ T5069] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.396173][ T5069] Bad inode number on dev loop0: 2 is out of range [ 80.397122][ T5069] SysV FS: get root inode failed [ 80.397791][ T5069] oldfs: cannot read superblock [ 80.458664][ C1] ------------[ cut here ]------------ [ 80.459567][ C1] VFS: brelse: Trying to free free buffer [ 80.460499][ C1] WARNING: CPU: 1 PID: 0 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.461836][ C1] Modules linked in: [ 80.462441][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W syzkaller #0 [ 80.463790][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.465283][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.466416][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 80.467243][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 80.468128][ C1] sp : ffff800008017de0 [ 80.468786][ C1] x29: ffff800008017de0 x28: ffff0000c0a68000 x27: 1fffe0003421c65c [ 80.470037][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 80.471292][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066ba58 [ 80.472576][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 80.473797][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.475035][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.476250][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 72b28cc4667e1000 [ 80.477379][ C1] x8 : 72b28cc4667e1000 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.478648][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.479825][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 80.481123][ C1] Call trace: [ 80.481625][ C1] invalidate_bh_lru+0x128/0x234 [ 80.482375][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 80.483335][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 80.484395][ C1] ipi_handler+0x10c/0x710 [ 80.485061][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 80.485889][ C1] handle_domain_irq+0x144/0x1fc [ 80.486639][ C1] gic_handle_irq+0x78/0x1c8 [ 80.487379][ C1] call_on_irq_stack+0x30/0x48 [ 80.488141][ C1] do_interrupt_handler+0x6c/0x88 [ 80.488938][ C1] el1_interrupt+0x30/0x58 [ 80.489651][ C1] el1h_64_irq_handler+0x18/0x24 [ 80.490404][ C1] el1h_64_irq+0x78/0x7c [ 80.491059][ C1] arch_local_irq_enable+0xc/0x18 [ 80.491875][ C1] default_idle_call+0xcc/0x418 [ 80.492613][ C1] do_idle+0x1c8/0x480 [ 80.493241][ C1] cpu_startup_entry+0x24/0x28 [ 80.494006][ C1] secondary_start_kernel+0x23c/0x294 [ 80.494818][ C1] __secondary_switched+0x94/0x98 [ 80.495577][ C1] irq event stamp: 455980 [ 80.496245][ C1] hardirqs last enabled at (455979): [] default_idle_call+0xb8/0x418 [ 80.497798][ C1] hardirqs last disabled at (455980): [] enter_el1_irq_or_nmi+0x10/0x1c [ 80.499366][ C1] softirqs last enabled at (455968): [] handle_softirqs+0xa4c/0xbf0 [ 80.500887][ C1] softirqs last disabled at (455821): [] __irq_exit_rcu+0x240/0x440 [ 80.502416][ C1] ---[ end trace 5889a8ac30535cfa ]--- [ 80.520672][ T5071] loop0: detected capacity change from 0 to 128 [ 80.558990][ T5071] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.560194][ T5071] Bad inode number on dev loop0: 2 is out of range [ 80.561211][ T5071] SysV FS: get root inode failed [ 80.561986][ T5071] oldfs: cannot read superblock [ 80.570684][ C1] ------------[ cut here ]------------ [ 80.571531][ C1] VFS: brelse: Trying to free free buffer [ 80.572480][ C1] WARNING: CPU: 1 PID: 5072 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.573790][ C1] Modules linked in: [ 80.574342][ C1] CPU: 1 PID: 5072 Comm: syz.0.61 Tainted: G W syzkaller #0 [ 80.575632][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.577176][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.578407][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 80.579192][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 80.579962][ C1] sp : ffff800008017de0 [ 80.580519][ C1] x29: ffff800008017de0 x28: ffff0000d8bcd1c0 x27: 1fffe0003421c65c [ 80.581632][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 80.582862][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066b6b8 [ 80.584182][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 80.585481][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.586789][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.588040][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 7419dc9c8334b900 [ 80.589329][ C1] x8 : 7419dc9c8334b900 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.590712][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.592049][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 80.593400][ C1] Call trace: [ 80.593918][ C1] invalidate_bh_lru+0x128/0x234 [ 80.594675][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 80.595713][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 80.596876][ C1] ipi_handler+0x10c/0x710 [ 80.597555][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 80.598357][ C1] handle_domain_irq+0x144/0x1fc [ 80.599204][ C1] gic_handle_irq+0x78/0x1c8 [ 80.599873][ C1] call_on_irq_stack+0x30/0x48 [ 80.600551][ C1] do_interrupt_handler+0x6c/0x88 [ 80.601310][ C1] el1_interrupt+0x30/0x58 [ 80.602059][ C1] el1h_64_irq_handler+0x18/0x24 [ 80.602903][ C1] el1h_64_irq+0x78/0x7c [ 80.603589][ C1] __sanitizer_cov_trace_pc+0x20/0xac [ 80.604387][ C1] check_preemption_disabled+0x38/0x164 [ 80.605221][ C1] debug_smp_processor_id+0x20/0x2c [ 80.606032][ C1] rcu_is_watching+0x50/0x134 [ 80.606791][ C1] lock_release+0xb4/0x8e8 [ 80.607514][ C1] up_read+0x8c/0xe8 [ 80.608176][ C1] do_page_fault+0x7c8/0xad4 [ 80.608924][ C1] do_mem_abort+0x6c/0x1ac [ 80.609669][ C1] el0_da+0x90/0x1fc [ 80.610298][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 80.611124][ C1] el0t_64_sync+0x1a0/0x1a4 [ 80.611796][ C1] irq event stamp: 1312 [ 80.612402][ C1] hardirqs last enabled at (1311): [] charge_memcg+0x190/0x220 [ 80.613750][ C1] hardirqs last disabled at (1312): [] enter_el1_irq_or_nmi+0x10/0x1c [ 80.615128][ C1] softirqs last enabled at (1100): [] local_bh_enable+0x10/0x34 [ 80.616617][ C1] softirqs last disabled at (1098): [] local_bh_disable+0x10/0x34 [ 80.618126][ C1] ---[ end trace 5889a8ac30535cfb ]--- [ 80.660425][ T5073] loop0: detected capacity change from 0 to 128 [ 80.663188][ T5073] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.664313][ T5073] Bad inode number on dev loop0: 2 is out of range [ 80.665480][ T5073] SysV FS: get root inode failed [ 80.666251][ T5073] oldfs: cannot read superblock [ 80.674768][ C0] ------------[ cut here ]------------ [ 80.675763][ C0] VFS: brelse: Trying to free free buffer [ 80.676687][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.678091][ C0] Modules linked in: [ 80.678694][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 80.680004][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.681473][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.682610][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 80.683387][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 80.684276][ C0] sp : ffff800008007de0 [ 80.684949][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845e [ 80.686191][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000003 [ 80.687405][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e243b7a0 [ 80.688773][ C0] x20: ffff0001a10c22f0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 80.689953][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.691308][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.692621][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 0085605f569feb00 [ 80.693881][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.695155][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.696415][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 80.697679][ C0] Call trace: [ 80.698239][ C0] invalidate_bh_lru+0x128/0x234 [ 80.698987][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 80.699964][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 80.701066][ C0] ipi_handler+0x10c/0x710 [ 80.701740][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 80.702618][ C0] handle_domain_irq+0x144/0x1fc [ 80.703370][ C0] gic_handle_irq+0x78/0x1c8 [ 80.704103][ C0] call_on_irq_stack+0x30/0x48 [ 80.704868][ C0] do_interrupt_handler+0x6c/0x88 [ 80.705608][ C0] el1_interrupt+0x30/0x58 [ 80.706265][ C0] el1h_64_irq_handler+0x18/0x24 [ 80.707029][ C0] el1h_64_irq+0x78/0x7c [ 80.707679][ C0] lock_release+0x4a0/0x8e8 [ 80.708366][ C0] _raw_spin_unlock+0x8c/0x11c [ 80.709121][ C0] __get_vm_area_node+0x298/0x2e8 [ 80.709868][ C0] __vmalloc_node_range+0xe8/0x8d8 [ 80.710715][ C0] vzalloc+0x118/0x190 [ 80.711363][ C0] alloc_counters+0x84/0x7a4 [ 80.712081][ C0] do_ipt_get_ctl+0xaf4/0x13a8 [ 80.712848][ C0] nf_getsockopt+0x264/0x284 [ 80.713518][ C0] ip_getsockopt+0xffc/0x158c [ 80.714295][ C0] tcp_getsockopt+0x208/0x2e78 [ 80.715022][ C0] sock_common_getsockopt+0xa8/0xc4 [ 80.715886][ C0] __sys_getsockopt+0x1b8/0x250 [ 80.716620][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 80.717492][ C0] invoke_syscall+0x98/0x2b8 [ 80.718216][ C0] el0_svc_common+0x138/0x258 [ 80.719016][ C0] do_el0_svc+0x58/0x14c [ 80.719734][ C0] el0_svc+0x78/0x1e0 [ 80.720343][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 80.721171][ C0] el0t_64_sync+0x1a0/0x1a4 [ 80.721887][ C0] irq event stamp: 237426 [ 80.722567][ C0] hardirqs last enabled at (237425): [] __local_bh_enable_ip+0x1f8/0x380 [ 80.724180][ C0] hardirqs last disabled at (237426): [] enter_el1_irq_or_nmi+0x10/0x1c [ 80.725749][ C0] softirqs last enabled at (237424): [] release_sock+0x1d0/0x258 [ 80.727289][ C0] softirqs last disabled at (237422): [] release_sock+0x34/0x258 [ 80.728690][ C0] ---[ end trace 5889a8ac30535cfc ]--- [ 80.791701][ T5075] loop0: detected capacity change from 0 to 128 [ 80.839246][ T5075] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.840594][ T5075] Bad inode number on dev loop0: 2 is out of range [ 80.841654][ T5075] SysV FS: get root inode failed [ 80.842466][ T5075] oldfs: cannot read superblock [ 80.844765][ C1] ------------[ cut here ]------------ [ 80.845654][ C1] VFS: brelse: Trying to free free buffer [ 80.846486][ C1] WARNING: CPU: 1 PID: 5075 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 80.847743][ C1] Modules linked in: [ 80.848308][ C1] CPU: 1 PID: 5075 Comm: syz.0.62 Tainted: G W syzkaller #0 [ 80.849518][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 80.851153][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 80.852384][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 80.853194][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 80.854060][ C1] sp : ffff800008017de0 [ 80.854743][ C1] x29: ffff800008017de0 x28: ffff0000c23a3680 x27: 1fffe0003421c65c [ 80.856046][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 80.857365][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066b318 [ 80.858668][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 80.859993][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 80.861280][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 80.862474][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 9c42e02617bbfa00 [ 80.863729][ C1] x8 : 9c42e02617bbfa00 x7 : 0000000000000001 x6 : 0000000000000001 [ 80.864993][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 80.866264][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 80.867428][ C1] Call trace: [ 80.867949][ C1] invalidate_bh_lru+0x128/0x234 [ 80.868766][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 80.869710][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 80.870787][ C1] ipi_handler+0x10c/0x710 [ 80.871428][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 80.872284][ C1] handle_domain_irq+0x144/0x1fc [ 80.873046][ C1] gic_handle_irq+0x78/0x1c8 [ 80.873809][ C1] call_on_irq_stack+0x30/0x48 [ 80.874528][ C1] do_interrupt_handler+0x6c/0x88 [ 80.875290][ C1] el1_interrupt+0x30/0x58 [ 80.875948][ C1] el1h_64_irq_handler+0x18/0x24 [ 80.876652][ C1] el1h_64_irq+0x78/0x7c [ 80.877262][ C1] debug_smp_processor_id+0x1c/0x2c [ 80.878077][ C1] rcu_is_watching+0x50/0x134 [ 80.878736][ C1] obj_cgroup_put+0x28/0x170 [ 80.879369][ C1] memcg_slab_free_hook+0x84/0x1f8 [ 80.880161][ C1] kmem_cache_free+0x108/0x3b4 [ 80.880959][ C1] __put_anon_vma+0x124/0x2ec [ 80.881709][ C1] unlink_anon_vmas+0x3e4/0x53c [ 80.882477][ C1] free_pgtables+0x14c/0x278 [ 80.883246][ C1] exit_mmap+0x2bc/0x4e0 [ 80.883986][ C1] __mmput+0xec/0x3b8 [ 80.884664][ C1] mmput+0x80/0xc8 [ 80.885259][ C1] exit_mm+0x4a0/0x684 [ 80.885842][ C1] do_exit+0x4ec/0x1f58 [ 80.886507][ C1] do_group_exit+0x100/0x268 [ 80.887308][ C1] get_signal+0x73c/0x1340 [ 80.887997][ C1] do_notify_resume+0x35c/0x3128 [ 80.888794][ C1] el0_svc+0xf0/0x1e0 [ 80.889403][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 80.890204][ C1] el0t_64_sync+0x1a0/0x1a4 [ 80.890948][ C1] irq event stamp: 2202 [ 80.891563][ C1] hardirqs last enabled at (2201): [] pgtable_pmd_page_dtor+0x140/0x200 [ 80.893032][ C1] hardirqs last disabled at (2202): [] enter_el1_irq_or_nmi+0x10/0x1c [ 80.894472][ C1] softirqs last enabled at (1106): [] local_bh_enable+0x10/0x34 [ 80.895894][ C1] softirqs last disabled at (1104): [] local_bh_disable+0x10/0x34 [ 80.897435][ C1] ---[ end trace 5889a8ac30535cfd ]--- [ 80.936591][ T5077] loop0: detected capacity change from 0 to 128 1970/01/01 00:01:20 executed programs: 50 [ 80.998025][ T5077] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 80.999295][ T5077] Bad inode number on dev loop0: 2 is out of range [ 81.000406][ T5077] SysV FS: get root inode failed [ 81.001137][ T5077] oldfs: cannot read superblock [ 81.001963][ T5077] ------------[ cut here ]------------ [ 81.002799][ T5077] VFS: brelse: Trying to free free buffer [ 81.003745][ T5077] WARNING: CPU: 1 PID: 5077 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.005081][ T5077] Modules linked in: [ 81.005721][ T5077] CPU: 1 PID: 5077 Comm: syz.0.63 Tainted: G W syzkaller #0 [ 81.007076][ T5077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.008586][ T5077] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.009793][ T5077] pc : invalidate_bh_lru+0x128/0x234 [ 81.010732][ T5077] lr : invalidate_bh_lru+0x128/0x234 [ 81.011563][ T5077] sp : ffff80001f1576e0 [ 81.012238][ T5077] x29: ffff80001f1576e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 81.013429][ T5077] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 81.014574][ T5077] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066a888 [ 81.015721][ T5077] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 81.017134][ T5077] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.018373][ T5077] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.019771][ T5077] x11: 0000000000000002 x10: 0000000000000000 x9 : dfdde94ba1e5d500 [ 81.020996][ T5077] x8 : dfdde94ba1e5d500 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.022280][ T5077] x5 : ffff80001f156fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.023400][ T5077] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 81.024678][ T5077] Call trace: [ 81.025226][ T5077] invalidate_bh_lru+0x128/0x234 [ 81.026013][ T5077] smp_call_function_many_cond+0xa50/0xeb0 [ 81.026910][ T5077] on_each_cpu_cond_mask+0x5c/0xc4 [ 81.027660][ T5077] invalidate_bh_lrus+0x34/0x40 [ 81.028414][ T5077] blkdev_flush_mapping+0x168/0x31c [ 81.029151][ T5077] blkdev_put+0x490/0x6ac [ 81.029726][ T5077] kill_block_super+0x98/0xdc [ 81.030360][ T5077] deactivate_locked_super+0xb8/0x13c [ 81.031203][ T5077] mount_bdev+0x284/0x358 [ 81.031859][ T5077] sysv_mount+0x44/0x58 [ 81.032464][ T5077] legacy_get_tree+0xd4/0x16c [ 81.033198][ T5077] vfs_get_tree+0x90/0x274 [ 81.033878][ T5077] do_new_mount+0x228/0x810 [ 81.034641][ T5077] path_mount+0x5b4/0x1000 [ 81.035346][ T5077] __arm64_sys_mount+0x514/0x5e4 [ 81.036100][ T5077] invoke_syscall+0x98/0x2b8 [ 81.036772][ T5077] el0_svc_common+0x138/0x258 [ 81.037548][ T5077] do_el0_svc+0x58/0x14c [ 81.038264][ T5077] el0_svc+0x78/0x1e0 [ 81.038867][ T5077] el0t_64_sync_handler+0xcc/0xe4 [ 81.039634][ T5077] el0t_64_sync+0x1a0/0x1a4 [ 81.040317][ T5077] irq event stamp: 1394 [ 81.040959][ T5077] hardirqs last enabled at (1393): [] kasan_quarantine_put+0xc4/0x204 [ 81.042575][ T5077] hardirqs last disabled at (1394): [] smp_call_function_many_cond+0xa44/0xeb0 [ 81.044205][ T5077] softirqs last enabled at (1222): [] local_bh_enable+0x10/0x34 [ 81.045653][ T5077] softirqs last disabled at (1220): [] local_bh_disable+0x10/0x34 [ 81.047142][ T5077] ---[ end trace 5889a8ac30535cfe ]--- [ 81.150993][ T5079] loop0: detected capacity change from 0 to 128 [ 81.159138][ T5079] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.160283][ T5079] Bad inode number on dev loop0: 2 is out of range [ 81.161217][ T5079] SysV FS: get root inode failed [ 81.161968][ T5079] oldfs: cannot read superblock [ 81.165100][ C0] ------------[ cut here ]------------ [ 81.165932][ C0] VFS: brelse: Trying to free free buffer [ 81.166860][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.168227][ C0] Modules linked in: [ 81.168825][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 81.170227][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.171787][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.173049][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 81.173942][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 81.174819][ C0] sp : ffff800008007de0 [ 81.175456][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845c [ 81.176775][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 81.178226][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2437a58 [ 81.179534][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 81.180826][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.182157][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.183353][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 81.184517][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.185683][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.186900][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 81.188232][ C0] Call trace: [ 81.188782][ C0] invalidate_bh_lru+0x128/0x234 [ 81.189568][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 81.190532][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 81.191619][ C0] ipi_handler+0x10c/0x710 [ 81.192293][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 81.193124][ C0] handle_domain_irq+0x144/0x1fc [ 81.193885][ C0] gic_handle_irq+0x78/0x1c8 [ 81.194548][ C0] call_on_irq_stack+0x30/0x48 [ 81.195268][ C0] do_interrupt_handler+0x6c/0x88 [ 81.196054][ C0] el1_interrupt+0x30/0x58 [ 81.196735][ C0] el1h_64_irq_handler+0x18/0x24 [ 81.197400][ C0] el1h_64_irq+0x78/0x7c [ 81.198082][ C0] el0_svc_common+0xa8/0x258 [ 81.198830][ C0] do_el0_svc+0x58/0x14c [ 81.199483][ C0] el0_svc+0x78/0x1e0 [ 81.200118][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 81.200875][ C0] el0t_64_sync+0x1a0/0x1a4 [ 81.201581][ C0] irq event stamp: 243934 [ 81.202316][ C0] hardirqs last enabled at (243933): [] el0_svc_common+0x9c/0x258 [ 81.203897][ C0] hardirqs last disabled at (243934): [] enter_el1_irq_or_nmi+0x10/0x1c [ 81.205553][ C0] softirqs last enabled at (243724): [] local_bh_enable+0x10/0x34 [ 81.207075][ C0] softirqs last disabled at (243722): [] local_bh_disable+0x10/0x34 [ 81.208603][ C0] ---[ end trace 5889a8ac30535cff ]--- [ 81.247684][ T5081] loop0: detected capacity change from 0 to 128 [ 81.298353][ T5081] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.299536][ T5081] Bad inode number on dev loop0: 2 is out of range [ 81.300572][ T5081] SysV FS: get root inode failed [ 81.301353][ T5081] oldfs: cannot read superblock [ 81.306849][ T4544] ------------[ cut here ]------------ [ 81.307746][ T4544] VFS: brelse: Trying to free free buffer [ 81.308673][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.310085][ T4544] Modules linked in: [ 81.310682][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 81.312047][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.313596][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.314866][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 81.315720][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 81.316585][ T4544] sp : ffff80001f2877c0 [ 81.317255][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 81.318430][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 81.319700][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066a4e8 [ 81.320929][ T4544] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 81.322265][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.323602][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.324931][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 81.326223][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.327521][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.328850][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 81.330155][ T4544] Call trace: [ 81.330697][ T4544] invalidate_bh_lru+0x128/0x234 [ 81.331441][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 81.332411][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 81.333239][ T4544] invalidate_bh_lrus+0x34/0x40 [ 81.334003][ T4544] blkdev_flush_mapping+0x168/0x31c [ 81.334814][ T4544] blkdev_put+0x490/0x6ac [ 81.335538][ T4544] blkdev_close+0x74/0xb0 [ 81.336251][ T4544] __fput+0x1c0/0x7f8 [ 81.336909][ T4544] ____fput+0x20/0x30 [ 81.337636][ T4544] task_work_run+0x12c/0x1e0 [ 81.338386][ T4544] do_notify_resume+0x24b4/0x3128 [ 81.339175][ T4544] el0_svc+0xf0/0x1e0 [ 81.339838][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 81.340702][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 81.341421][ T4544] irq event stamp: 240564 [ 81.342164][ T4544] hardirqs last enabled at (240563): [] kasan_quarantine_put+0xc4/0x204 [ 81.343746][ T4544] hardirqs last disabled at (240564): [] smp_call_function_many_cond+0xa44/0xeb0 [ 81.345478][ T4544] softirqs last enabled at (240350): [] local_bh_enable+0x10/0x34 [ 81.346973][ T4544] softirqs last disabled at (240348): [] local_bh_disable+0x10/0x34 [ 81.348399][ T4544] ---[ end trace 5889a8ac30535d00 ]--- [ 81.397335][ T5083] loop0: detected capacity change from 0 to 128 [ 81.438945][ T5083] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.440897][ T5083] Bad inode number on dev loop0: 2 is out of range [ 81.441988][ T5083] SysV FS: get root inode failed [ 81.442876][ T5083] oldfs: cannot read superblock [ 81.448787][ C0] ------------[ cut here ]------------ [ 81.449631][ C0] VFS: brelse: Trying to free free buffer [ 81.450541][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.451851][ C0] Modules linked in: [ 81.452423][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 81.453862][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.455409][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.456660][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 81.457504][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 81.458340][ C0] sp : ffff800008007de0 [ 81.458972][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845c [ 81.460258][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 81.461608][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2437df8 [ 81.462940][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 81.464252][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.465357][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.466634][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 81.467993][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.469310][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.470636][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 81.471909][ C0] Call trace: [ 81.472381][ C0] invalidate_bh_lru+0x128/0x234 [ 81.473173][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 81.474170][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 81.475272][ C0] ipi_handler+0x10c/0x710 [ 81.475949][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 81.476798][ C0] handle_domain_irq+0x144/0x1fc [ 81.477577][ C0] gic_handle_irq+0x78/0x1c8 [ 81.478309][ C0] call_on_irq_stack+0x30/0x48 [ 81.479102][ C0] do_interrupt_handler+0x6c/0x88 [ 81.479913][ C0] el1_interrupt+0x30/0x58 [ 81.480578][ C0] el1h_64_irq_handler+0x18/0x24 [ 81.481431][ C0] el1h_64_irq+0x78/0x7c [ 81.482096][ C0] stack_depot_save+0x6c/0x49c [ 81.482846][ C0] __kasan_kmalloc+0xcc/0xf0 [ 81.483600][ C0] __kmalloc_node+0x2bc/0x520 [ 81.484261][ C0] kvmalloc_node+0x88/0x200 [ 81.484943][ C0] xt_alloc_table_info+0x54/0xc8 [ 81.485677][ C0] do_ip6t_set_ctl+0x870/0xe00 [ 81.486395][ C0] nf_setsockopt+0x270/0x290 [ 81.487106][ C0] ipv6_setsockopt+0x1a18/0x36dc [ 81.487812][ C0] tcp_setsockopt+0x1d4/0x1bf4 [ 81.488587][ C0] sock_common_setsockopt+0xb0/0xcc [ 81.489412][ C0] __sys_setsockopt+0x260/0x36c [ 81.490199][ C0] __arm64_sys_setsockopt+0xb8/0xd4 [ 81.490941][ C0] invoke_syscall+0x98/0x2b8 [ 81.491699][ C0] el0_svc_common+0x138/0x258 [ 81.492357][ C0] do_el0_svc+0x58/0x14c [ 81.493009][ C0] el0_svc+0x78/0x1e0 [ 81.493584][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 81.494287][ C0] el0t_64_sync+0x1a0/0x1a4 [ 81.495036][ C0] irq event stamp: 250054 [ 81.495702][ C0] hardirqs last enabled at (250053): [] ___slab_alloc+0xc34/0xda8 [ 81.497156][ C0] hardirqs last disabled at (250054): [] enter_el1_irq_or_nmi+0x10/0x1c [ 81.498742][ C0] softirqs last enabled at (250040): [] release_sock+0x1d0/0x258 [ 81.500102][ C0] softirqs last disabled at (250038): [] release_sock+0x34/0x258 [ 81.501526][ C0] ---[ end trace 5889a8ac30535d01 ]--- [ 81.557993][ T5085] loop0: detected capacity change from 0 to 128 [ 81.562636][ T5085] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.563779][ T5085] Bad inode number on dev loop0: 2 is out of range [ 81.564725][ T5085] SysV FS: get root inode failed [ 81.565460][ T5085] oldfs: cannot read superblock [ 81.576510][ T4544] ------------[ cut here ]------------ [ 81.577429][ T4544] VFS: brelse: Trying to free free buffer [ 81.578454][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.579847][ T4544] Modules linked in: [ 81.580449][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 81.581738][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.583397][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.584682][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 81.585462][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 81.586295][ T4544] sp : ffff80001f2877c0 [ 81.586912][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 81.588209][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 81.589562][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2434230 [ 81.590963][ T4544] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 81.592314][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.593635][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.595006][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 81.596388][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.597710][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.599019][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 81.600293][ T4544] Call trace: [ 81.600835][ T4544] invalidate_bh_lru+0x128/0x234 [ 81.601670][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 81.602587][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 81.603390][ T4544] invalidate_bh_lrus+0x34/0x40 [ 81.604174][ T4544] blkdev_flush_mapping+0x168/0x31c [ 81.605005][ T4544] blkdev_put+0x490/0x6ac [ 81.605669][ T4544] blkdev_close+0x74/0xb0 [ 81.606415][ T4544] __fput+0x1c0/0x7f8 [ 81.607097][ T4544] ____fput+0x20/0x30 [ 81.607790][ T4544] task_work_run+0x12c/0x1e0 [ 81.608536][ T4544] do_notify_resume+0x24b4/0x3128 [ 81.609372][ T4544] el0_svc+0xf0/0x1e0 [ 81.610029][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 81.610858][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 81.611578][ T4544] irq event stamp: 254182 [ 81.612293][ T4544] hardirqs last enabled at (254181): [] kasan_quarantine_put+0xc4/0x204 [ 81.614000][ T4544] hardirqs last disabled at (254182): [] smp_call_function_many_cond+0xa44/0xeb0 [ 81.615725][ T4544] softirqs last enabled at (253978): [] local_bh_enable+0x10/0x34 [ 81.617237][ T4544] softirqs last disabled at (253976): [] local_bh_disable+0x10/0x34 [ 81.618755][ T4544] ---[ end trace 5889a8ac30535d02 ]--- [ 81.655322][ T5087] loop0: detected capacity change from 0 to 128 [ 81.698465][ T5087] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.699689][ T5087] Bad inode number on dev loop0: 2 is out of range [ 81.700712][ T5087] SysV FS: get root inode failed [ 81.701462][ T5087] oldfs: cannot read superblock [ 81.702274][ T5087] ------------[ cut here ]------------ [ 81.703103][ T5087] VFS: brelse: Trying to free free buffer [ 81.704074][ T5087] WARNING: CPU: 0 PID: 5087 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.705555][ T5087] Modules linked in: [ 81.706157][ T5087] CPU: 0 PID: 5087 Comm: syz.0.68 Tainted: G W syzkaller #0 [ 81.707573][ T5087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.709197][ T5087] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.710408][ T5087] pc : invalidate_bh_lru+0x128/0x234 [ 81.711146][ T5087] lr : invalidate_bh_lru+0x128/0x234 [ 81.711908][ T5087] sp : ffff80001f5d76e0 [ 81.712578][ T5087] x29: ffff80001f5d76e0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 81.713789][ T5087] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 81.715097][ T5087] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24345d0 [ 81.716339][ T5087] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 81.717531][ T5087] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.718798][ T5087] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.719964][ T5087] x11: 0000000000000002 x10: 0000000000000000 x9 : b801e590d3af9000 [ 81.721262][ T5087] x8 : b801e590d3af9000 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.722480][ T5087] x5 : ffff80001f5d6fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.723759][ T5087] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 81.725091][ T5087] Call trace: [ 81.725597][ T5087] invalidate_bh_lru+0x128/0x234 [ 81.726365][ T5087] smp_call_function_many_cond+0xa50/0xeb0 [ 81.727308][ T5087] on_each_cpu_cond_mask+0x5c/0xc4 [ 81.728173][ T5087] invalidate_bh_lrus+0x34/0x40 [ 81.728977][ T5087] blkdev_flush_mapping+0x168/0x31c [ 81.729799][ T5087] blkdev_put+0x490/0x6ac [ 81.730470][ T5087] kill_block_super+0x98/0xdc [ 81.731144][ T5087] deactivate_locked_super+0xb8/0x13c [ 81.731950][ T5087] mount_bdev+0x284/0x358 [ 81.732600][ T5087] sysv_mount+0x44/0x58 [ 81.733242][ T5087] legacy_get_tree+0xd4/0x16c [ 81.734028][ T5087] vfs_get_tree+0x90/0x274 [ 81.734691][ T5087] do_new_mount+0x228/0x810 [ 81.735325][ T5087] path_mount+0x5b4/0x1000 [ 81.736006][ T5087] __arm64_sys_mount+0x514/0x5e4 [ 81.736755][ T5087] invoke_syscall+0x98/0x2b8 [ 81.737489][ T5087] el0_svc_common+0x138/0x258 [ 81.738187][ T5087] do_el0_svc+0x58/0x14c [ 81.738818][ T5087] el0_svc+0x78/0x1e0 [ 81.739478][ T5087] el0t_64_sync_handler+0xcc/0xe4 [ 81.740189][ T5087] el0t_64_sync+0x1a0/0x1a4 [ 81.740917][ T5087] irq event stamp: 988 [ 81.741581][ T5087] hardirqs last enabled at (987): [] kasan_quarantine_put+0xc4/0x204 [ 81.743109][ T5087] hardirqs last disabled at (988): [] smp_call_function_many_cond+0xa44/0xeb0 [ 81.744743][ T5087] softirqs last enabled at (778): [] local_bh_enable+0x10/0x34 [ 81.746150][ T5087] softirqs last disabled at (776): [] local_bh_disable+0x10/0x34 [ 81.747554][ T5087] ---[ end trace 5889a8ac30535d03 ]--- [ 81.894960][ T5089] loop0: detected capacity change from 0 to 128 [ 81.897306][ T5089] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 81.898344][ T5089] Bad inode number on dev loop0: 2 is out of range [ 81.899316][ T5089] SysV FS: get root inode failed [ 81.900048][ T5089] oldfs: cannot read superblock [ 81.905036][ C1] ------------[ cut here ]------------ [ 81.905874][ C1] VFS: brelse: Trying to free free buffer [ 81.906779][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 81.907998][ C1] Modules linked in: [ 81.908569][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 81.909935][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 81.911477][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 81.912672][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 81.913554][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 81.914332][ C1] sp : ffff800008017de0 [ 81.914914][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65b [ 81.916084][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 81.917302][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066a148 [ 81.918502][ C1] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000010004 [ 81.919729][ C1] x17: 0000000000010004 x16: ffff8000111c8944 x15: 00000000ffffffff [ 81.920909][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 81.922197][ C1] x11: 0000000000010003 x10: 0000000000010003 x9 : 0085605f569feb00 [ 81.923349][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 81.924540][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 81.925635][ C1] x2 : 0000000000000001 x1 : 0000000100010003 x0 : 0000000000000027 [ 81.926835][ C1] Call trace: [ 81.927318][ C1] invalidate_bh_lru+0x128/0x234 [ 81.928048][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 81.928920][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 81.929977][ C1] ipi_handler+0x10c/0x710 [ 81.930641][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 81.931451][ C1] handle_domain_irq+0x144/0x1fc [ 81.932149][ C1] gic_handle_irq+0x78/0x1c8 [ 81.932805][ C1] call_on_irq_stack+0x30/0x48 [ 81.933486][ C1] do_interrupt_handler+0x6c/0x88 [ 81.934153][ C1] el1_interrupt+0x30/0x58 [ 81.934811][ C1] el1h_64_irq_handler+0x18/0x24 [ 81.935488][ C1] el1h_64_irq+0x78/0x7c [ 81.936074][ C1] copy_page_range+0xf0c/0x22b8 [ 81.936795][ C1] copy_mm+0x9d4/0x1090 [ 81.937389][ C1] copy_process+0x14d8/0x34ac [ 81.938069][ C1] kernel_clone+0x1d8/0x9d4 [ 81.938758][ C1] __arm64_sys_clone+0x138/0x190 [ 81.939489][ C1] invoke_syscall+0x98/0x2b8 [ 81.940107][ C1] el0_svc_common+0x138/0x258 [ 81.940754][ C1] do_el0_svc+0x58/0x14c [ 81.941348][ C1] el0_svc+0x78/0x1e0 [ 81.941898][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 81.942588][ C1] el0t_64_sync+0x1a0/0x1a4 [ 81.943312][ C1] irq event stamp: 257296 [ 81.944022][ C1] hardirqs last enabled at (257295): [] pte_alloc_one+0x194/0x258 [ 81.945405][ C1] hardirqs last disabled at (257296): [] enter_el1_irq_or_nmi+0x10/0x1c [ 81.946810][ C1] softirqs last enabled at (257230): [] local_bh_enable+0x10/0x34 [ 81.948173][ C1] softirqs last disabled at (257228): [] local_bh_disable+0x10/0x34 [ 81.949543][ C1] ---[ end trace 5889a8ac30535d04 ]--- [ 81.990407][ T5091] loop0: detected capacity change from 0 to 128 [ 82.031149][ T5091] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.032463][ T5091] Bad inode number on dev loop0: 2 is out of range [ 82.033515][ T5091] SysV FS: get root inode failed [ 82.034335][ T5091] oldfs: cannot read superblock [ 82.041449][ C0] ------------[ cut here ]------------ [ 82.042381][ C0] VFS: brelse: Trying to free free buffer [ 82.043299][ C0] WARNING: CPU: 0 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.044603][ C0] Modules linked in: [ 82.045159][ C0] CPU: 0 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 82.046380][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.047845][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.048883][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 82.049682][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 82.050478][ C0] sp : ffff800008007de0 [ 82.051075][ C0] x29: ffff800008007de0 x28: ffff0000d6cfb680 x27: 1fffe0003421845c [ 82.052252][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 82.053399][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2434970 [ 82.054706][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 82.055984][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.057279][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.058611][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 199f2c5450dc0f00 [ 82.059912][ C0] x8 : 199f2c5450dc0f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.061224][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.062539][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 82.063769][ C0] Call trace: [ 82.064313][ C0] invalidate_bh_lru+0x128/0x234 [ 82.065086][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 82.066097][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 82.067191][ C0] ipi_handler+0x10c/0x710 [ 82.067842][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 82.068723][ C0] handle_domain_irq+0x144/0x1fc [ 82.069519][ C0] gic_handle_irq+0x78/0x1c8 [ 82.070258][ C0] call_on_irq_stack+0x30/0x48 [ 82.071034][ C0] do_interrupt_handler+0x6c/0x88 [ 82.071796][ C0] el1_interrupt+0x30/0x58 [ 82.072514][ C0] el1h_64_irq_handler+0x18/0x24 [ 82.073219][ C0] el1h_64_irq+0x78/0x7c [ 82.073779][ C0] __sanitizer_cov_trace_pc+0x0/0xac [ 82.074631][ C0] walk_stackframe+0x6c/0xa8 [ 82.075384][ C0] return_address+0xd0/0x144 [ 82.076199][ C0] preempt_count_add+0x13c/0x3bc [ 82.076971][ C0] _raw_spin_lock+0x24/0x10c [ 82.077642][ C0] dput+0x26c/0x458 [ 82.078220][ C0] step_into+0x27c/0xa24 [ 82.078916][ C0] walk_component+0x1f0/0x3a8 [ 82.079674][ C0] link_path_walk+0x590/0xb8c [ 82.080448][ C0] path_lookupat+0x90/0x3d0 [ 82.081106][ C0] filename_lookup+0x180/0x414 [ 82.081869][ C0] user_path_at_empty+0x5c/0x1a0 [ 82.082721][ C0] do_readlinkat+0xd4/0x3e0 [ 82.083490][ C0] __arm64_sys_readlinkat+0x9c/0xb8 [ 82.084351][ C0] invoke_syscall+0x98/0x2b8 [ 82.085147][ C0] el0_svc_common+0x138/0x258 [ 82.085872][ C0] do_el0_svc+0x58/0x14c [ 82.086561][ C0] el0_svc+0x78/0x1e0 [ 82.087139][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 82.087905][ C0] el0t_64_sync+0x1a0/0x1a4 [ 82.088658][ C0] irq event stamp: 996654 [ 82.089326][ C0] hardirqs last enabled at (996653): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 82.090933][ C0] hardirqs last disabled at (996654): [] enter_el1_irq_or_nmi+0x10/0x1c [ 82.092478][ C0] softirqs last enabled at (996644): [] local_bh_enable+0x10/0x34 [ 82.094036][ C0] softirqs last disabled at (996642): [] local_bh_disable+0x10/0x34 [ 82.095622][ C0] ---[ end trace 5889a8ac30535d05 ]--- [ 82.125785][ T5093] loop0: detected capacity change from 0 to 128 [ 82.128648][ T5093] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.129894][ T5093] Bad inode number on dev loop0: 2 is out of range [ 82.130972][ T5093] SysV FS: get root inode failed [ 82.131781][ T5093] oldfs: cannot read superblock [ 82.134513][ C0] ------------[ cut here ]------------ [ 82.135374][ C0] VFS: brelse: Trying to free free buffer [ 82.136237][ C0] WARNING: CPU: 0 PID: 4424 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.137585][ C0] Modules linked in: [ 82.138222][ C0] CPU: 0 PID: 4424 Comm: syz-executor Tainted: G W syzkaller #0 [ 82.139592][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.141171][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.142430][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 82.143264][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 82.144061][ C0] sp : ffff800008007de0 [ 82.144654][ C0] x29: ffff800008007de0 x28: ffff0000d56f9b40 x27: 1fffe0003421845c [ 82.145815][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 82.147033][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2434d10 [ 82.148210][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 82.149379][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.150633][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.151872][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : e2d33f7682ca2c00 [ 82.153134][ C0] x8 : e2d33f7682ca2c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.154375][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.155644][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 82.156847][ C0] Call trace: [ 82.157336][ C0] invalidate_bh_lru+0x128/0x234 [ 82.158143][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 82.159027][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 82.160099][ C0] ipi_handler+0x10c/0x710 [ 82.160787][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 82.161644][ C0] handle_domain_irq+0x144/0x1fc [ 82.162396][ C0] gic_handle_irq+0x78/0x1c8 [ 82.163108][ C0] call_on_irq_stack+0x30/0x48 [ 82.163842][ C0] do_interrupt_handler+0x6c/0x88 [ 82.164595][ C0] el0_interrupt+0x94/0x260 [ 82.165256][ C0] __el0_irq_handler_common+0x18/0x24 [ 82.166078][ C0] el0t_64_irq_handler+0x10/0x1c [ 82.166834][ C0] el0t_64_irq+0x1a0/0x1a4 [ 82.167550][ C0] irq event stamp: 632070 [ 82.168238][ C0] hardirqs last enabled at (632069): [] el0t_64_sync_handler+0xcc/0xe4 [ 82.169954][ C0] hardirqs last disabled at (632070): [] __el0_irq_handler_common+0x18/0x24 [ 82.171534][ C0] softirqs last enabled at (632066): [] local_bh_enable+0x10/0x34 [ 82.172873][ C0] softirqs last disabled at (632064): [] local_bh_disable+0x10/0x34 [ 82.174369][ C0] ---[ end trace 5889a8ac30535d06 ]--- [ 82.206119][ T5095] loop0: detected capacity change from 0 to 128 [ 82.252020][ T5095] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.253168][ T5095] Bad inode number on dev loop0: 2 is out of range [ 82.254169][ T5095] SysV FS: get root inode failed [ 82.254909][ T5095] oldfs: cannot read superblock [ 82.272651][ T4544] ------------[ cut here ]------------ [ 82.273541][ T4544] VFS: brelse: Trying to free free buffer [ 82.274423][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.275616][ T4544] Modules linked in: [ 82.276157][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 82.277447][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.279044][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.280381][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 82.281229][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 82.282066][ T4544] sp : ffff80001f2877c0 [ 82.282700][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 82.284007][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 82.285230][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb5c148 [ 82.286421][ T4544] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 82.287607][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.288831][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.290073][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 82.291340][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.292572][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.293833][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 82.295157][ T4544] Call trace: [ 82.295686][ T4544] invalidate_bh_lru+0x128/0x234 [ 82.296496][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 82.297412][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 82.298223][ T4544] invalidate_bh_lrus+0x34/0x40 [ 82.299022][ T4544] blkdev_flush_mapping+0x168/0x31c [ 82.299818][ T4544] blkdev_put+0x490/0x6ac [ 82.300439][ T4544] blkdev_close+0x74/0xb0 [ 82.301063][ T4544] __fput+0x1c0/0x7f8 [ 82.301694][ T4544] ____fput+0x20/0x30 [ 82.302310][ T4544] task_work_run+0x12c/0x1e0 [ 82.302970][ T4544] do_notify_resume+0x24b4/0x3128 [ 82.303742][ T4544] el0_svc+0xf0/0x1e0 [ 82.304324][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 82.305093][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 82.305808][ T4544] irq event stamp: 276260 [ 82.306453][ T4544] hardirqs last enabled at (276259): [] kasan_quarantine_put+0xc4/0x204 [ 82.307990][ T4544] hardirqs last disabled at (276260): [] smp_call_function_many_cond+0xa44/0xeb0 [ 82.309795][ T4544] softirqs last enabled at (276060): [] local_bh_enable+0x10/0x34 [ 82.311316][ T4544] softirqs last disabled at (276058): [] local_bh_disable+0x10/0x34 [ 82.312723][ T4544] ---[ end trace 5889a8ac30535d07 ]--- [ 82.383572][ T5099] loop0: detected capacity change from 0 to 128 [ 82.385867][ T5099] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.387013][ T5099] Bad inode number on dev loop0: 2 is out of range [ 82.388130][ T5099] SysV FS: get root inode failed [ 82.388960][ T5099] oldfs: cannot read superblock [ 82.392760][ C0] ------------[ cut here ]------------ [ 82.393585][ C0] VFS: brelse: Trying to free free buffer [ 82.394455][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.395776][ C0] Modules linked in: [ 82.396344][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 82.397563][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.399082][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.400285][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 82.401121][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 82.401916][ C0] sp : ffff800008007de0 [ 82.402571][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845c [ 82.403939][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 82.405275][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb5c4e8 [ 82.406611][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 82.407828][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.409034][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.410259][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 82.411524][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.412812][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.414082][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 82.415289][ C0] Call trace: [ 82.415802][ C0] invalidate_bh_lru+0x128/0x234 [ 82.416660][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 82.417585][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 82.418638][ C0] ipi_handler+0x10c/0x710 [ 82.419315][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 82.420227][ C0] handle_domain_irq+0x144/0x1fc [ 82.421056][ C0] gic_handle_irq+0x78/0x1c8 [ 82.421841][ C0] call_on_irq_stack+0x30/0x48 [ 82.422628][ C0] do_interrupt_handler+0x6c/0x88 [ 82.423437][ C0] el0_interrupt+0x94/0x260 [ 82.424184][ C0] __el0_irq_handler_common+0x18/0x24 [ 82.425061][ C0] el0t_64_irq_handler+0x10/0x1c [ 82.425853][ C0] el0t_64_irq+0x1a0/0x1a4 [ 82.426608][ C0] irq event stamp: 266762 [ 82.427304][ C0] hardirqs last enabled at (266761): [] el0t_64_sync_handler+0xcc/0xe4 [ 82.428961][ C0] hardirqs last disabled at (266762): [] __el0_irq_handler_common+0x18/0x24 [ 82.430581][ C0] softirqs last enabled at (266512): [] local_bh_enable+0x10/0x34 [ 82.432118][ C0] softirqs last disabled at (266510): [] local_bh_disable+0x10/0x34 [ 82.433619][ C0] ---[ end trace 5889a8ac30535d08 ]--- [ 82.475746][ T5101] loop0: detected capacity change from 0 to 128 [ 82.538171][ T5101] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.539524][ T5101] Bad inode number on dev loop0: 2 is out of range [ 82.540531][ T5101] SysV FS: get root inode failed [ 82.541333][ T5101] oldfs: cannot read superblock [ 82.545869][ C1] ------------[ cut here ]------------ [ 82.546737][ C1] VFS: brelse: Trying to free free buffer [ 82.547677][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.549010][ C1] Modules linked in: [ 82.549592][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 82.550991][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.552485][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.553799][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 82.554669][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 82.555559][ C1] sp : ffff800008017de0 [ 82.556201][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 82.557565][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 82.558872][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066ad10 [ 82.560209][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 82.561465][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.562803][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.564140][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 82.565445][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.566726][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.567968][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 82.569241][ C1] Call trace: [ 82.569754][ C1] invalidate_bh_lru+0x128/0x234 [ 82.570522][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 82.571432][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 82.572543][ C1] ipi_handler+0x10c/0x710 [ 82.573206][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 82.574134][ C1] handle_domain_irq+0x144/0x1fc [ 82.574915][ C1] gic_handle_irq+0x78/0x1c8 [ 82.575645][ C1] call_on_irq_stack+0x30/0x48 [ 82.576369][ C1] do_interrupt_handler+0x6c/0x88 [ 82.577193][ C1] el1_interrupt+0x30/0x58 [ 82.577848][ C1] el1h_64_irq_handler+0x18/0x24 [ 82.578604][ C1] el1h_64_irq+0x78/0x7c [ 82.579359][ C1] __sanitizer_cov_trace_const_cmp8+0xbc/0xc0 [ 82.580288][ C1] memcg_slab_free_hook+0xa8/0x1f8 [ 82.581065][ C1] ___cache_free+0x78/0x1bc [ 82.581781][ C1] qlink_free+0x5c/0xa4 [ 82.582410][ C1] qlist_free_all+0x40/0xa8 [ 82.583087][ C1] kasan_quarantine_reduce+0x124/0x130 [ 82.583967][ C1] __kasan_slab_alloc+0x34/0xcc [ 82.584777][ C1] slab_post_alloc_hook+0x74/0x408 [ 82.585577][ C1] kmem_cache_alloc+0x1e0/0x3e4 [ 82.586317][ C1] getname_flags+0xb8/0x450 [ 82.587002][ C1] __arm64_sys_unlinkat+0xb4/0xfc [ 82.587806][ C1] invoke_syscall+0x98/0x2b8 [ 82.588531][ C1] el0_svc_common+0x138/0x258 [ 82.589286][ C1] do_el0_svc+0x58/0x14c [ 82.590003][ C1] el0_svc+0x78/0x1e0 [ 82.590648][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 82.591435][ C1] el0t_64_sync+0x1a0/0x1a4 [ 82.592148][ C1] irq event stamp: 269286 [ 82.592887][ C1] hardirqs last enabled at (269285): [] put_cpu_partial+0x188/0x218 [ 82.594501][ C1] hardirqs last disabled at (269286): [] enter_el1_irq_or_nmi+0x10/0x1c [ 82.596184][ C1] softirqs last enabled at (268598): [] local_bh_enable+0x10/0x34 [ 82.597738][ C1] softirqs last disabled at (268596): [] local_bh_disable+0x10/0x34 [ 82.599194][ C1] ---[ end trace 5889a8ac30535d09 ]--- [ 82.645077][ T5103] loop0: detected capacity change from 0 to 128 [ 82.653185][ T5103] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.654389][ T5103] Bad inode number on dev loop0: 2 is out of range [ 82.655293][ T5103] SysV FS: get root inode failed [ 82.656053][ T5103] oldfs: cannot read superblock [ 82.662654][ T4544] ------------[ cut here ]------------ [ 82.663622][ T4544] VFS: brelse: Trying to free free buffer [ 82.664530][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.665856][ T4544] Modules linked in: [ 82.666472][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 82.667769][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.669344][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.670614][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 82.671447][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 82.672315][ T4544] sp : ffff80001f2877c0 [ 82.672968][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 82.674201][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 82.675455][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd278148 [ 82.676550][ T4544] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 82.677841][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.679067][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.680320][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 82.681632][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.682973][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.684323][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 82.685618][ T4544] Call trace: [ 82.686171][ T4544] invalidate_bh_lru+0x128/0x234 [ 82.687022][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 82.687882][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 82.688729][ T4544] invalidate_bh_lrus+0x34/0x40 [ 82.689497][ T4544] blkdev_flush_mapping+0x168/0x31c [ 82.690327][ T4544] blkdev_put+0x490/0x6ac [ 82.690989][ T4544] blkdev_close+0x74/0xb0 [ 82.691613][ T4544] __fput+0x1c0/0x7f8 [ 82.692233][ T4544] ____fput+0x20/0x30 [ 82.692841][ T4544] task_work_run+0x12c/0x1e0 [ 82.693559][ T4544] do_notify_resume+0x24b4/0x3128 [ 82.694323][ T4544] el0_svc+0xf0/0x1e0 [ 82.694927][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 82.695756][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 82.696479][ T4544] irq event stamp: 289088 [ 82.697113][ T4544] hardirqs last enabled at (289087): [] kasan_quarantine_put+0xc4/0x204 [ 82.698711][ T4544] hardirqs last disabled at (289088): [] smp_call_function_many_cond+0xa44/0xeb0 [ 82.700335][ T4544] softirqs last enabled at (288882): [] local_bh_enable+0x10/0x34 [ 82.701924][ T4544] softirqs last disabled at (288880): [] local_bh_disable+0x10/0x34 [ 82.703346][ T4544] ---[ end trace 5889a8ac30535d0a ]--- [ 82.749857][ T5105] loop0: detected capacity change from 0 to 128 [ 82.752937][ T5105] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.754074][ T5105] Bad inode number on dev loop0: 2 is out of range [ 82.755102][ T5105] SysV FS: get root inode failed [ 82.755927][ T5105] oldfs: cannot read superblock [ 82.759826][ C1] ------------[ cut here ]------------ [ 82.760639][ C1] VFS: brelse: Trying to free free buffer [ 82.761570][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.762835][ C1] Modules linked in: [ 82.763462][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 82.764834][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.766419][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.767630][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 82.768466][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 82.769309][ C1] sp : ffff800008017de0 [ 82.769974][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 82.771269][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 82.772474][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd2784e8 [ 82.773689][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 82.774955][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.776351][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.777640][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 82.778897][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.780073][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.781350][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 82.782481][ C1] Call trace: [ 82.782999][ C1] invalidate_bh_lru+0x128/0x234 [ 82.783770][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 82.784670][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 82.785744][ C1] ipi_handler+0x10c/0x710 [ 82.786458][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 82.787310][ C1] handle_domain_irq+0x144/0x1fc [ 82.788064][ C1] gic_handle_irq+0x78/0x1c8 [ 82.788785][ C1] call_on_irq_stack+0x30/0x48 [ 82.789556][ C1] do_interrupt_handler+0x6c/0x88 [ 82.790272][ C1] el1_interrupt+0x30/0x58 [ 82.791013][ C1] el1h_64_irq_handler+0x18/0x24 [ 82.791800][ C1] el1h_64_irq+0x78/0x7c [ 82.792524][ C1] unwind_frame+0x3dc/0x668 [ 82.793276][ C1] arch_stack_walk+0x200/0x2b4 [ 82.794042][ C1] stack_trace_save+0x94/0xd8 [ 82.794841][ C1] kasan_set_track+0x4c/0x84 [ 82.795609][ C1] kasan_set_free_info+0x28/0x4c [ 82.796407][ C1] ____kasan_slab_free+0x118/0x164 [ 82.797247][ C1] __kasan_slab_free+0x18/0x28 [ 82.798021][ C1] slab_free_freelist_hook+0x128/0x1e8 [ 82.798988][ C1] kfree+0x170/0x40c [ 82.799652][ C1] tomoyo_realpath_from_path+0x4c8/0x510 [ 82.800562][ C1] tomoyo_path_perm+0x1b4/0x440 [ 82.801358][ C1] tomoyo_inode_getattr+0x28/0x38 [ 82.802168][ C1] security_inode_getattr+0xd8/0x124 [ 82.802986][ C1] vfs_statx+0x118/0x458 [ 82.803649][ C1] __arm64_sys_newfstatat+0x10c/0x190 [ 82.804472][ C1] invoke_syscall+0x98/0x2b8 [ 82.805200][ C1] el0_svc_common+0x138/0x258 [ 82.806010][ C1] do_el0_svc+0x58/0x14c [ 82.806688][ C1] el0_svc+0x78/0x1e0 [ 82.807283][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 82.807966][ C1] el0t_64_sync+0x1a0/0x1a4 [ 82.808747][ C1] irq event stamp: 273558 [ 82.809424][ C1] hardirqs last enabled at (273557): [] ___slab_alloc+0xc34/0xda8 [ 82.810963][ C1] hardirqs last disabled at (273558): [] enter_el1_irq_or_nmi+0x10/0x1c [ 82.812392][ C1] softirqs last enabled at (273452): [] local_bh_enable+0x10/0x34 [ 82.813829][ C1] softirqs last disabled at (273450): [] local_bh_disable+0x10/0x34 [ 82.815345][ C1] ---[ end trace 5889a8ac30535d0b ]--- [ 82.864175][ T5107] loop0: detected capacity change from 0 to 128 [ 82.867522][ T5107] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.868810][ T5107] Bad inode number on dev loop0: 2 is out of range [ 82.869926][ T5107] SysV FS: get root inode failed [ 82.870730][ T5107] oldfs: cannot read superblock [ 82.880505][ T4544] ------------[ cut here ]------------ [ 82.881377][ T4544] VFS: brelse: Trying to free free buffer [ 82.882250][ T4544] WARNING: CPU: 0 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.883532][ T4544] Modules linked in: [ 82.884134][ T4544] CPU: 0 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 82.885528][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.887038][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.888315][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 82.889170][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 82.890058][ T4544] sp : ffff80001f2877c0 [ 82.890722][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 82.892078][ T4544] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 82.893392][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb5c888 [ 82.894789][ T4544] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 82.896170][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 82.897607][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.898911][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 82.900154][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.901467][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 82.902854][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 82.904184][ T4544] Call trace: [ 82.904692][ T4544] invalidate_bh_lru+0x128/0x234 [ 82.905529][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 82.906416][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 82.907171][ T4544] invalidate_bh_lrus+0x34/0x40 [ 82.907889][ T4544] blkdev_flush_mapping+0x168/0x31c [ 82.908728][ T4544] blkdev_put+0x490/0x6ac [ 82.909425][ T4544] blkdev_close+0x74/0xb0 [ 82.910114][ T4544] __fput+0x1c0/0x7f8 [ 82.910812][ T4544] ____fput+0x20/0x30 [ 82.911475][ T4544] task_work_run+0x12c/0x1e0 [ 82.912236][ T4544] do_notify_resume+0x24b4/0x3128 [ 82.913115][ T4544] el0_svc+0xf0/0x1e0 [ 82.913773][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 82.914596][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 82.915317][ T4544] irq event stamp: 295948 [ 82.915977][ T4544] hardirqs last enabled at (295947): [] kasan_quarantine_put+0xc4/0x204 [ 82.917561][ T4544] hardirqs last disabled at (295948): [] smp_call_function_many_cond+0xa44/0xeb0 [ 82.919282][ T4544] softirqs last enabled at (295754): [] local_bh_enable+0x10/0x34 [ 82.920747][ T4544] softirqs last disabled at (295752): [] local_bh_disable+0x10/0x34 [ 82.922145][ T4544] ---[ end trace 5889a8ac30535d0c ]--- [ 82.949462][ T5109] loop0: detected capacity change from 0 to 128 [ 82.957894][ T5109] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 82.959067][ T5109] Bad inode number on dev loop0: 2 is out of range [ 82.960066][ T5109] SysV FS: get root inode failed [ 82.960865][ T5109] oldfs: cannot read superblock [ 82.965937][ C1] ------------[ cut here ]------------ [ 82.966844][ C1] VFS: brelse: Trying to free free buffer [ 82.967769][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 82.969211][ C1] Modules linked in: [ 82.969831][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 82.971233][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 82.972675][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 82.973762][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 82.974539][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 82.975431][ C1] sp : ffff800008017de0 [ 82.976048][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 82.977345][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 82.978722][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd278888 [ 82.979934][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 82.981200][ C1] x17: 0000000000010002 x16: ffff800008302168 x15: 00000000ffffffff [ 82.982472][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 82.983797][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 82.985087][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 82.986311][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff800008302278 [ 82.987731][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 82.989041][ C1] Call trace: [ 82.989552][ C1] invalidate_bh_lru+0x128/0x234 [ 82.990365][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 82.991352][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 82.992437][ C1] ipi_handler+0x10c/0x710 [ 82.993112][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 82.994016][ C1] handle_domain_irq+0x144/0x1fc [ 82.994781][ C1] gic_handle_irq+0x78/0x1c8 [ 82.995568][ C1] call_on_irq_stack+0x30/0x48 [ 82.996325][ C1] do_interrupt_handler+0x6c/0x88 [ 82.997043][ C1] el1_interrupt+0x30/0x58 [ 82.997713][ C1] el1h_64_irq_handler+0x18/0x24 [ 82.998479][ C1] el1h_64_irq+0x78/0x7c [ 82.999162][ C1] refill_stock+0x1ec/0x39c [ 82.999878][ C1] refill_obj_stock+0x1fc/0x388 [ 83.000638][ C1] obj_cgroup_uncharge+0x14/0x20 [ 83.001404][ C1] memcg_slab_free_hook+0x15c/0x1f8 [ 83.002256][ C1] kmem_cache_free+0x108/0x3b4 [ 83.002929][ C1] __sk_destruct+0x40c/0x604 [ 83.003647][ C1] __sk_free+0x320/0x430 [ 83.004276][ C1] sk_free+0x68/0xdc [ 83.004913][ C1] tcp_close+0xcc/0x158 [ 83.005587][ C1] inet_release+0x120/0x16c [ 83.006345][ C1] sock_close+0xb4/0x1f8 [ 83.007019][ C1] __fput+0x1c0/0x7f8 [ 83.007614][ C1] ____fput+0x20/0x30 [ 83.008206][ C1] task_work_run+0x12c/0x1e0 [ 83.008913][ C1] do_notify_resume+0x24b4/0x3128 [ 83.009649][ C1] el0_svc+0xf0/0x1e0 [ 83.010345][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 83.011089][ C1] el0t_64_sync+0x1a0/0x1a4 [ 83.011778][ C1] irq event stamp: 278992 [ 83.012418][ C1] hardirqs last enabled at (278991): [] refill_stock+0x1dc/0x39c [ 83.013908][ C1] hardirqs last disabled at (278992): [] enter_el1_irq_or_nmi+0x10/0x1c [ 83.015485][ C1] softirqs last enabled at (278986): [] release_sock+0x1d0/0x258 [ 83.016928][ C1] softirqs last disabled at (278984): [] release_sock+0x34/0x258 [ 83.018282][ C1] ---[ end trace 5889a8ac30535d0d ]--- [ 83.060295][ T5111] loop0: detected capacity change from 0 to 128 [ 83.108323][ T5111] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 83.109517][ T5111] Bad inode number on dev loop0: 2 is out of range [ 83.110516][ T5111] SysV FS: get root inode failed [ 83.111338][ T5111] oldfs: cannot read superblock [ 83.115264][ C0] ------------[ cut here ]------------ [ 83.116112][ C0] VFS: brelse: Trying to free free buffer [ 83.117081][ C0] WARNING: CPU: 0 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 83.118411][ C0] Modules linked in: [ 83.118947][ C0] CPU: 0 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 83.120192][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 83.121757][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 83.123016][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 83.123872][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 83.124711][ C0] sp : ffff800008007de0 [ 83.125413][ C0] x29: ffff800008007de0 x28: ffff0000d6cfb680 x27: 1fffe0003421845b [ 83.126767][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 83.128044][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000deb5cc28 [ 83.129347][ C0] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 83.130720][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 83.132098][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 83.133310][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 199f2c5450dc0f00 [ 83.134610][ C0] x8 : 199f2c5450dc0f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 83.135996][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 83.137389][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 83.138761][ C0] Call trace: [ 83.139241][ C0] invalidate_bh_lru+0x128/0x234 [ 83.140037][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 83.140990][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 83.142024][ C0] ipi_handler+0x10c/0x710 [ 83.142735][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 83.143551][ C0] handle_domain_irq+0x144/0x1fc [ 83.144253][ C0] gic_handle_irq+0x78/0x1c8 [ 83.144938][ C0] call_on_irq_stack+0x30/0x48 [ 83.145661][ C0] do_interrupt_handler+0x6c/0x88 [ 83.146351][ C0] el1_interrupt+0x30/0x58 [ 83.147093][ C0] el1h_64_irq_handler+0x18/0x24 [ 83.147887][ C0] el1h_64_irq+0x78/0x7c [ 83.148573][ C0] kasan_quarantine_put+0xd4/0x204 [ 83.149402][ C0] ____kasan_slab_free+0x124/0x164 [ 83.150299][ C0] __kasan_slab_free+0x18/0x28 [ 83.151066][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 83.152003][ C0] kmem_cache_free+0xdc/0x3b4 [ 83.152767][ C0] user_path_at_empty+0x144/0x1a0 [ 83.153566][ C0] do_readlinkat+0xd4/0x3e0 [ 83.154319][ C0] __arm64_sys_readlinkat+0x9c/0xb8 [ 83.155205][ C0] invoke_syscall+0x98/0x2b8 [ 83.155972][ C0] el0_svc_common+0x138/0x258 [ 83.156735][ C0] do_el0_svc+0x58/0x14c [ 83.157481][ C0] el0_svc+0x78/0x1e0 [ 83.158161][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 83.158940][ C0] el0t_64_sync+0x1a0/0x1a4 [ 83.159631][ C0] irq event stamp: 1025872 [ 83.160281][ C0] hardirqs last enabled at (1025871): [] kasan_quarantine_put+0xc4/0x204 [ 83.161744][ C0] hardirqs last disabled at (1025872): [] enter_el1_irq_or_nmi+0x10/0x1c [ 83.163194][ C0] softirqs last enabled at (1025830): [] local_bh_enable+0x10/0x34 [ 83.164659][ C0] softirqs last disabled at (1025828): [] local_bh_disable+0x10/0x34 [ 83.166202][ C0] ---[ end trace 5889a8ac30535d0e ]--- [ 83.235712][ T5113] loop0: detected capacity change from 0 to 128 [ 83.238123][ T5113] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 83.239305][ T5113] Bad inode number on dev loop0: 2 is out of range [ 83.240341][ T5113] SysV FS: get root inode failed [ 83.241117][ T5113] oldfs: cannot read superblock [ 83.245374][ T4544] ------------[ cut here ]------------ [ 83.246250][ T4544] VFS: brelse: Trying to free free buffer [ 83.247213][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 83.248611][ T4544] Modules linked in: [ 83.249201][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 83.250609][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 83.252322][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 83.253588][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 83.254409][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 83.255192][ T4544] sp : ffff80001f2877c0 [ 83.255818][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 83.257110][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 83.258421][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd278c28 [ 83.259726][ T4544] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 83.260939][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 83.262128][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 83.263285][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 83.264434][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 83.265587][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 83.266894][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 83.268283][ T4544] Call trace: [ 83.268804][ T4544] invalidate_bh_lru+0x128/0x234 [ 83.269538][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 83.270405][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 83.271233][ T4544] invalidate_bh_lrus+0x34/0x40 [ 83.271985][ T4544] blkdev_flush_mapping+0x168/0x31c [ 83.272728][ T4544] blkdev_put+0x490/0x6ac [ 83.273433][ T4544] blkdev_close+0x74/0xb0 [ 83.274120][ T4544] __fput+0x1c0/0x7f8 [ 83.274772][ T4544] ____fput+0x20/0x30 [ 83.275415][ T4544] task_work_run+0x12c/0x1e0 [ 83.276123][ T4544] do_notify_resume+0x24b4/0x3128 [ 83.276970][ T4544] el0_svc+0xf0/0x1e0 [ 83.277600][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 83.278430][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 83.279129][ T4544] irq event stamp: 304508 [ 83.279787][ T4544] hardirqs last enabled at (304507): [] kasan_quarantine_put+0xc4/0x204 [ 83.281264][ T4544] hardirqs last disabled at (304508): [] smp_call_function_many_cond+0xa44/0xeb0 [ 83.282844][ T4544] softirqs last enabled at (304298): [] local_bh_enable+0x10/0x34 [ 83.284392][ T4544] softirqs last disabled at (304296): [] local_bh_disable+0x10/0x34 [ 83.285957][ T4544] ---[ end trace 5889a8ac30535d0f ]--- [ 83.315333][ T5115] loop0: detected capacity change from 0 to 128 [ 83.318763][ T5115] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 83.319869][ T5115] Bad inode number on dev loop0: 2 is out of range [ 83.320915][ T5115] SysV FS: get root inode failed [ 83.321983][ T5115] oldfs: cannot read superblock [ 83.326975][ C1] ------------[ cut here ]------------ [ 83.327920][ C1] VFS: brelse: Trying to free free buffer [ 83.328863][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 83.330125][ C1] Modules linked in: [ 83.330712][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 83.332143][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 83.333659][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 83.334825][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 83.335645][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 83.336414][ C1] sp : ffff800008017de0 [ 83.337036][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 83.338386][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 83.339755][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cc6cb060 [ 83.341146][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 83.342341][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 83.343552][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 83.344731][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 83.345976][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 83.347104][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 83.348318][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 83.349539][ C1] Call trace: [ 83.350031][ C1] invalidate_bh_lru+0x128/0x234 [ 83.350853][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 83.351790][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 83.352887][ C1] ipi_handler+0x10c/0x710 [ 83.353612][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 83.354460][ C1] handle_domain_irq+0x144/0x1fc [ 83.355230][ C1] gic_handle_irq+0x78/0x1c8 [ 83.355963][ C1] call_on_irq_stack+0x30/0x48 [ 83.356663][ C1] do_interrupt_handler+0x6c/0x88 [ 83.357371][ C1] el1_interrupt+0x30/0x58 [ 83.358096][ C1] el1h_64_irq_handler+0x18/0x24 [ 83.358880][ C1] el1h_64_irq+0x78/0x7c [ 83.359484][ C1] __memset+0x18/0x1c0 [ 83.360094][ C1] unwind_frame+0x124/0x668 [ 83.360814][ C1] arch_stack_walk+0x200/0x2b4 [ 83.361471][ C1] stack_trace_save+0x94/0xd8 [ 83.362085][ C1] __kasan_slab_alloc+0x8c/0xcc [ 83.362913][ C1] slab_post_alloc_hook+0x74/0x408 [ 83.363639][ C1] kmem_cache_alloc+0x1e0/0x3e4 [ 83.364429][ C1] anon_vma_fork+0x190/0x49c [ 83.365144][ C1] copy_mm+0x7bc/0x1090 [ 83.365724][ C1] copy_process+0x14d8/0x34ac [ 83.366458][ C1] kernel_clone+0x1d8/0x9d4 [ 83.367155][ C1] __arm64_sys_clone+0x138/0x190 [ 83.367876][ C1] invoke_syscall+0x98/0x2b8 [ 83.368571][ C1] el0_svc_common+0x138/0x258 [ 83.369298][ C1] do_el0_svc+0x58/0x14c [ 83.369948][ C1] el0_svc+0x78/0x1e0 [ 83.370508][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 83.371183][ C1] el0t_64_sync+0x1a0/0x1a4 [ 83.371835][ C1] irq event stamp: 286322 [ 83.372442][ C1] hardirqs last enabled at (286321): [] try_charge_memcg+0x1d8/0x11bc [ 83.373847][ C1] hardirqs last disabled at (286322): [] enter_el1_irq_or_nmi+0x10/0x1c [ 83.375343][ C1] softirqs last enabled at (286206): [] local_bh_enable+0x10/0x34 [ 83.376808][ C1] softirqs last disabled at (286204): [] local_bh_disable+0x10/0x34 [ 83.378318][ C1] ---[ end trace 5889a8ac30535d10 ]--- [ 83.409884][ T5117] loop0: detected capacity change from 0 to 128 [ 83.488122][ T5117] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 83.489332][ T5117] Bad inode number on dev loop0: 2 is out of range [ 83.490319][ T5117] SysV FS: get root inode failed [ 83.491012][ T5117] oldfs: cannot read superblock [ 83.491685][ T5117] ------------[ cut here ]------------ [ 83.492466][ T5117] VFS: brelse: Trying to free free buffer [ 83.493393][ T5117] WARNING: CPU: 0 PID: 5117 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 83.494686][ T5117] Modules linked in: [ 83.495298][ T5117] CPU: 0 PID: 5117 Comm: syz.0.83 Tainted: G W syzkaller #0 [ 83.496685][ T5117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 83.498311][ T5117] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 83.499663][ T5117] pc : invalidate_bh_lru+0x128/0x234 [ 83.500494][ T5117] lr : invalidate_bh_lru+0x128/0x234 [ 83.501363][ T5117] sp : ffff80001fa776e0 [ 83.502044][ T5117] x29: ffff80001fa776e0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 83.503405][ T5117] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 83.504732][ T5117] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e254f060 [ 83.505967][ T5117] x20: ffff0001a10c22d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 83.507248][ T5117] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 83.508461][ T5117] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 83.509690][ T5117] x11: 0000000000000002 x10: 0000000000000000 x9 : 689450b41633ee00 [ 83.511018][ T5117] x8 : 689450b41633ee00 x7 : 0000000000000001 x6 : 0000000000000001 [ 83.512318][ T5117] x5 : ffff80001fa76fd8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 83.513603][ T5117] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 83.514880][ T5117] Call trace: [ 83.515371][ T5117] invalidate_bh_lru+0x128/0x234 [ 83.516198][ T5117] smp_call_function_many_cond+0xa50/0xeb0 [ 83.517034][ T5117] on_each_cpu_cond_mask+0x5c/0xc4 [ 83.517814][ T5117] invalidate_bh_lrus+0x34/0x40 [ 83.518600][ T5117] blkdev_flush_mapping+0x168/0x31c [ 83.519478][ T5117] blkdev_put+0x490/0x6ac [ 83.520170][ T5117] kill_block_super+0x98/0xdc [ 83.520911][ T5117] deactivate_locked_super+0xb8/0x13c [ 83.521828][ T5117] mount_bdev+0x284/0x358 [ 83.522502][ T5117] sysv_mount+0x44/0x58 [ 83.523197][ T5117] legacy_get_tree+0xd4/0x16c [ 83.523910][ T5117] vfs_get_tree+0x90/0x274 [ 83.524545][ T5117] do_new_mount+0x228/0x810 [ 83.525220][ T5117] path_mount+0x5b4/0x1000 [ 83.525872][ T5117] __arm64_sys_mount+0x514/0x5e4 [ 83.526632][ T5117] invoke_syscall+0x98/0x2b8 [ 83.527340][ T5117] el0_svc_common+0x138/0x258 [ 83.528073][ T5117] do_el0_svc+0x58/0x14c [ 83.528727][ T5117] el0_svc+0x78/0x1e0 [ 83.529334][ T5117] el0t_64_sync_handler+0xcc/0xe4 [ 83.530162][ T5117] el0t_64_sync+0x1a0/0x1a4 [ 83.530868][ T5117] irq event stamp: 928 [ 83.531471][ T5117] hardirqs last enabled at (927): [] kasan_quarantine_put+0xc4/0x204 [ 83.532879][ T5117] hardirqs last disabled at (928): [] smp_call_function_many_cond+0xa44/0xeb0 [ 83.534463][ T5117] softirqs last enabled at (768): [] local_bh_enable+0x10/0x34 [ 83.535876][ T5117] softirqs last disabled at (766): [] local_bh_disable+0x10/0x34 [ 83.537278][ T5117] ---[ end trace 5889a8ac30535d11 ]--- [ 83.650002][ T5121] loop0: detected capacity change from 0 to 128 [ 83.652465][ T5121] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 83.653632][ T5121] Bad inode number on dev loop0: 2 is out of range [ 83.654596][ T5121] SysV FS: get root inode failed [ 83.655430][ T5121] oldfs: cannot read superblock [ 83.678218][ C0] ------------[ cut here ]------------ [ 83.679052][ C0] VFS: brelse: Trying to free free buffer [ 83.679917][ C0] WARNING: CPU: 0 PID: 5125 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 83.681169][ C0] Modules linked in: [ 83.681769][ C0] CPU: 0 PID: 5125 Comm: syz.0.87 Tainted: G W syzkaller #0 [ 83.682905][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 83.684412][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 83.685686][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 83.686602][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 83.687466][ C0] sp : ffff800008007de0 [ 83.688162][ C0] x29: ffff800008007de0 x28: ffff0000d8ba1b40 x27: 1fffe0003421845c [ 83.689440][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 83.690729][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e254f400 [ 83.692026][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 83.693292][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 83.694629][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 83.695873][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 471b8f1fd15f6a00 [ 83.697222][ C0] x8 : 471b8f1fd15f6a00 x7 : 0000000000000001 x6 : 0000000000000001 [ 83.698537][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 83.699780][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 83.700972][ C0] Call trace: [ 83.701506][ C0] invalidate_bh_lru+0x128/0x234 [ 83.702260][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 83.703258][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 83.704378][ C0] ipi_handler+0x10c/0x710 [ 83.705081][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 83.706003][ C0] handle_domain_irq+0x144/0x1fc [ 83.706826][ C0] gic_handle_irq+0x78/0x1c8 [ 83.707551][ C0] call_on_irq_stack+0x30/0x48 [ 83.708316][ C0] do_interrupt_handler+0x6c/0x88 [ 83.709126][ C0] el0_interrupt+0x94/0x260 [ 83.709882][ C0] __el0_irq_handler_common+0x18/0x24 [ 83.710748][ C0] el0t_64_irq_handler+0x10/0x1c [ 83.711533][ C0] el0t_64_irq+0x1a0/0x1a4 [ 83.712250][ C0] irq event stamp: 284 [ 83.712864][ C0] hardirqs last enabled at (283): [] el0t_64_sync_handler+0xd8/0xe4 [ 83.714371][ C0] hardirqs last disabled at (284): [] __el0_irq_handler_common+0x18/0x24 [ 83.716074][ C0] softirqs last enabled at (256): [] handle_softirqs+0xa4c/0xbf0 [ 83.717596][ C0] softirqs last disabled at (149): [] __irq_exit_rcu+0x240/0x440 [ 83.719098][ C0] ---[ end trace 5889a8ac30535d12 ]--- [ 83.760418][ T5125] loop0: detected capacity change from 0 to 128 [ 83.762806][ T5125] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 83.764339][ T5125] Bad inode number on dev loop0: 2 is out of range [ 83.765445][ T5125] SysV FS: get root inode failed [ 83.766254][ T5125] oldfs: cannot read superblock [ 83.772277][ C1] ------------[ cut here ]------------ [ 83.773149][ C1] VFS: brelse: Trying to free free buffer [ 83.774049][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 83.775418][ C1] Modules linked in: [ 83.775974][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 83.777317][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 83.778782][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 83.779908][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 83.780740][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 83.781542][ C1] sp : ffff800008017de0 [ 83.782181][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 83.783344][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 83.784545][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cc6cb400 [ 83.785697][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 83.786965][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 83.788074][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 83.789266][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 83.790458][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 83.791645][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 83.792913][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 83.794163][ C1] Call trace: [ 83.794696][ C1] invalidate_bh_lru+0x128/0x234 [ 83.795455][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 83.796399][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 83.797533][ C1] ipi_handler+0x10c/0x710 [ 83.798239][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 83.799142][ C1] handle_domain_irq+0x144/0x1fc [ 83.799935][ C1] gic_handle_irq+0x78/0x1c8 [ 83.800601][ C1] call_on_irq_stack+0x30/0x48 [ 83.801309][ C1] do_interrupt_handler+0x6c/0x88 [ 83.802170][ C1] el1_interrupt+0x30/0x58 [ 83.802932][ C1] el1h_64_irq_handler+0x18/0x24 [ 83.803689][ C1] el1h_64_irq+0x78/0x7c [ 83.804324][ C1] __read_once_word_nocheck+0x18/0x2c [ 83.805122][ C1] unwind_frame+0x3c4/0x668 [ 83.805774][ C1] arch_stack_walk+0x200/0x2b4 [ 83.806528][ C1] stack_trace_save+0x94/0xd8 [ 83.807301][ C1] kasan_set_track+0x4c/0x84 [ 83.808076][ C1] kasan_set_free_info+0x28/0x4c [ 83.808860][ C1] ____kasan_slab_free+0x118/0x164 [ 83.809654][ C1] __kasan_slab_free+0x18/0x28 [ 83.810364][ C1] slab_free_freelist_hook+0x128/0x1e8 [ 83.811252][ C1] kfree+0x170/0x40c [ 83.811829][ C1] kvfree+0x40/0x50 [ 83.812489][ C1] __vunmap+0x8e4/0x9bc [ 83.813157][ C1] vfree+0xbc/0x154 [ 83.813794][ C1] do_ip6t_get_ctl+0x10ec/0x13a8 [ 83.814563][ C1] nf_getsockopt+0x264/0x284 [ 83.815321][ C1] ipv6_getsockopt+0x52c/0x2584 [ 83.816057][ C1] tcp_getsockopt+0x208/0x2e78 [ 83.816813][ C1] sock_common_getsockopt+0xa8/0xc4 [ 83.817601][ C1] __sys_getsockopt+0x1b8/0x250 [ 83.818339][ C1] __arm64_sys_getsockopt+0xb8/0xd4 [ 83.819171][ C1] invoke_syscall+0x98/0x2b8 [ 83.819879][ C1] el0_svc_common+0x138/0x258 [ 83.820614][ C1] do_el0_svc+0x58/0x14c [ 83.821212][ C1] el0_svc+0x78/0x1e0 [ 83.821912][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 83.822726][ C1] el0t_64_sync+0x1a0/0x1a4 [ 83.823455][ C1] irq event stamp: 296780 [ 83.824147][ C1] hardirqs last enabled at (296779): [] free_unref_page+0x148/0x1fc [ 83.825618][ C1] hardirqs last disabled at (296780): [] enter_el1_irq_or_nmi+0x10/0x1c [ 83.827082][ C1] softirqs last enabled at (296542): [] release_sock+0x1d0/0x258 [ 83.828560][ C1] softirqs last disabled at (296540): [] release_sock+0x34/0x258 [ 83.830044][ C1] ---[ end trace 5889a8ac30535d13 ]--- [ 83.849852][ T5127] loop0: detected capacity change from 0 to 128 [ 83.882988][ T5127] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 83.884182][ T5127] Bad inode number on dev loop0: 2 is out of range [ 83.885166][ T5127] SysV FS: get root inode failed [ 83.885992][ T5127] oldfs: cannot read superblock [ 83.890581][ C0] ------------[ cut here ]------------ [ 83.891418][ C0] VFS: brelse: Trying to free free buffer [ 83.892375][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 83.893678][ C0] Modules linked in: [ 83.894247][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 83.895595][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 83.897198][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 83.898465][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 83.899351][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 83.900213][ C0] sp : ffff800008007de0 [ 83.900858][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845c [ 83.902103][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 83.903361][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e254f7a0 [ 83.904652][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 83.905970][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 83.907281][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 83.908567][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 83.909826][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 83.911093][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 83.912366][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 83.913670][ C0] Call trace: [ 83.914160][ C0] invalidate_bh_lru+0x128/0x234 [ 83.914942][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 83.915841][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 83.916907][ C0] ipi_handler+0x10c/0x710 [ 83.917606][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 83.918409][ C0] handle_domain_irq+0x144/0x1fc [ 83.919147][ C0] gic_handle_irq+0x78/0x1c8 [ 83.919853][ C0] call_on_irq_stack+0x30/0x48 [ 83.920617][ C0] do_interrupt_handler+0x6c/0x88 [ 83.921353][ C0] el1_interrupt+0x30/0x58 [ 83.921931][ C0] el1h_64_irq_handler+0x18/0x24 [ 83.922742][ C0] el1h_64_irq+0x78/0x7c [ 83.923438][ C0] get_page_from_freelist+0x2244/0x2aa8 [ 83.924316][ C0] __alloc_pages+0x1a0/0x470 [ 83.925059][ C0] alloc_pages+0x34c/0x5c0 [ 83.925723][ C0] new_slab+0xe0/0x55c [ 83.926389][ C0] ___slab_alloc+0x6c0/0xda8 [ 83.927036][ C0] __slab_alloc+0x68/0xc0 [ 83.927673][ C0] kmem_cache_alloc+0x2ac/0x3e4 [ 83.928342][ C0] getname_flags+0xb8/0x450 [ 83.929009][ C0] __arm64_sys_unlinkat+0xb4/0xfc [ 83.929839][ C0] invoke_syscall+0x98/0x2b8 [ 83.930589][ C0] el0_svc_common+0x138/0x258 [ 83.931381][ C0] do_el0_svc+0x58/0x14c [ 83.932066][ C0] el0_svc+0x78/0x1e0 [ 83.932691][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 83.933470][ C0] el0t_64_sync+0x1a0/0x1a4 [ 83.934188][ C0] irq event stamp: 297960 [ 83.934897][ C0] hardirqs last enabled at (297959): [] get_page_from_freelist+0x2234/0x2aa8 [ 83.936560][ C0] hardirqs last disabled at (297960): [] enter_el1_irq_or_nmi+0x10/0x1c [ 83.938095][ C0] softirqs last enabled at (297444): [] local_bh_enable+0x10/0x34 [ 83.939419][ C0] softirqs last disabled at (297442): [] local_bh_disable+0x10/0x34 [ 83.940876][ C0] ---[ end trace 5889a8ac30535d14 ]--- [ 83.968196][ T5129] loop0: detected capacity change from 0 to 128 [ 83.970544][ T5129] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 83.971765][ T5129] Bad inode number on dev loop0: 2 is out of range [ 83.972707][ T5129] SysV FS: get root inode failed [ 83.973464][ T5129] oldfs: cannot read superblock [ 83.978127][ C0] ------------[ cut here ]------------ [ 83.979049][ C0] VFS: brelse: Trying to free free buffer [ 83.979992][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 83.981447][ C0] Modules linked in: [ 83.982096][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 83.983425][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 83.984893][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 83.986204][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 83.987023][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 83.987835][ C0] sp : ffff800008007de0 [ 83.988496][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845c [ 83.989762][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 83.991032][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e254fb40 [ 83.992380][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 83.993691][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 83.994921][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 83.996180][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 83.997416][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 83.998561][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 83.999790][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 84.000935][ C0] Call trace: [ 84.001393][ C0] invalidate_bh_lru+0x128/0x234 [ 84.002114][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 84.003006][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 84.004046][ C0] ipi_handler+0x10c/0x710 [ 84.004740][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 84.005640][ C0] handle_domain_irq+0x144/0x1fc [ 84.006470][ C0] gic_handle_irq+0x78/0x1c8 [ 84.007222][ C0] call_on_irq_stack+0x30/0x48 [ 84.008023][ C0] do_interrupt_handler+0x6c/0x88 [ 84.008785][ C0] el1_interrupt+0x30/0x58 [ 84.009489][ C0] el1h_64_irq_handler+0x18/0x24 [ 84.010307][ C0] el1h_64_irq+0x78/0x7c [ 84.010977][ C0] memset+0x78/0x88 [ 84.011581][ C0] unwind_frame+0x124/0x668 [ 84.012228][ C0] arch_stack_walk+0x200/0x2b4 [ 84.012975][ C0] stack_trace_save+0x94/0xd8 [ 84.013704][ C0] kasan_set_track+0x4c/0x84 [ 84.014385][ C0] kasan_set_free_info+0x28/0x4c [ 84.015220][ C0] ____kasan_slab_free+0x118/0x164 [ 84.016033][ C0] __kasan_slab_free+0x18/0x28 [ 84.016808][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 84.017723][ C0] kmem_cache_free+0xdc/0x3b4 [ 84.018468][ C0] do_rmdir+0x56c/0x634 [ 84.019130][ C0] __arm64_sys_unlinkat+0xcc/0xfc [ 84.019957][ C0] invoke_syscall+0x98/0x2b8 [ 84.020693][ C0] el0_svc_common+0x138/0x258 [ 84.021476][ C0] do_el0_svc+0x58/0x14c [ 84.022156][ C0] el0_svc+0x78/0x1e0 [ 84.022780][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 84.023575][ C0] el0t_64_sync+0x1a0/0x1a4 [ 84.024307][ C0] irq event stamp: 300020 [ 84.025007][ C0] hardirqs last enabled at (300019): [] call_rcu+0x570/0x8fc [ 84.026460][ C0] hardirqs last disabled at (300020): [] enter_el1_irq_or_nmi+0x10/0x1c [ 84.028081][ C0] softirqs last enabled at (299588): [] local_bh_enable+0x10/0x34 [ 84.029610][ C0] softirqs last disabled at (299586): [] local_bh_disable+0x10/0x34 [ 84.031180][ C0] ---[ end trace 5889a8ac30535d15 ]--- [ 84.097434][ T5131] loop0: detected capacity change from 0 to 128 [ 84.149035][ T5131] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 84.150255][ T5131] Bad inode number on dev loop0: 2 is out of range [ 84.151218][ T5131] SysV FS: get root inode failed [ 84.152042][ T5131] oldfs: cannot read superblock [ 84.159633][ C1] ------------[ cut here ]------------ [ 84.160548][ C1] VFS: brelse: Trying to free free buffer [ 84.161490][ C1] WARNING: CPU: 1 PID: 5132 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 84.162837][ C1] Modules linked in: [ 84.163462][ C1] CPU: 1 PID: 5132 Comm: syz.0.91 Tainted: G W syzkaller #0 [ 84.164801][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 84.166239][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 84.167420][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 84.168141][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 84.168912][ C1] sp : ffff800008017de0 [ 84.169518][ C1] x29: ffff800008017de0 x28: ffff0000c2251b40 x27: 1fffe0003421c65c [ 84.170779][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 84.172064][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cc6cb7a0 [ 84.173307][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 84.174640][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 84.175961][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 84.177091][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : f60076dd9a6c1600 [ 84.178303][ C1] x8 : f60076dd9a6c1600 x7 : 0000000000000001 x6 : 0000000000000001 [ 84.179519][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 84.180751][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 84.182003][ C1] Call trace: [ 84.182510][ C1] invalidate_bh_lru+0x128/0x234 [ 84.183304][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 84.184227][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 84.185340][ C1] ipi_handler+0x10c/0x710 [ 84.186114][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 84.186930][ C1] handle_domain_irq+0x144/0x1fc [ 84.187735][ C1] gic_handle_irq+0x78/0x1c8 [ 84.188494][ C1] call_on_irq_stack+0x30/0x48 [ 84.189300][ C1] do_interrupt_handler+0x6c/0x88 [ 84.190096][ C1] el1_interrupt+0x30/0x58 [ 84.190794][ C1] el1h_64_irq_handler+0x18/0x24 [ 84.191599][ C1] el1h_64_irq+0x78/0x7c [ 84.192280][ C1] lock_page_memcg+0x120/0x234 [ 84.193028][ C1] page_add_file_rmap+0x148/0x8e4 [ 84.193845][ C1] do_set_pte+0x394/0x4e0 [ 84.194534][ C1] filemap_map_pages+0x9c4/0xc50 [ 84.195295][ C1] handle_mm_fault+0x19c0/0x2950 [ 84.196020][ C1] do_page_fault+0x694/0xad4 [ 84.196738][ C1] do_translation_fault+0xe0/0x130 [ 84.197566][ C1] do_mem_abort+0x6c/0x1ac [ 84.198258][ C1] el0_da+0x90/0x1fc [ 84.198857][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 84.199654][ C1] el0t_64_sync+0x1a0/0x1a4 [ 84.200309][ C1] irq event stamp: 1068 [ 84.200926][ C1] hardirqs last enabled at (1067): [] lock_page_memcg+0x110/0x234 [ 84.202332][ C1] hardirqs last disabled at (1068): [] enter_el1_irq_or_nmi+0x10/0x1c [ 84.203910][ C1] softirqs last enabled at (538): [] local_bh_enable+0x10/0x34 [ 84.205421][ C1] softirqs last disabled at (536): [] local_bh_disable+0x10/0x34 [ 84.206953][ C1] ---[ end trace 5889a8ac30535d16 ]--- [ 84.250286][ T5133] loop0: detected capacity change from 0 to 128 [ 84.302807][ T5133] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 84.303960][ T5133] Bad inode number on dev loop0: 2 is out of range [ 84.305281][ T5133] SysV FS: get root inode failed [ 84.306319][ T5133] oldfs: cannot read superblock [ 84.311895][ C1] ------------[ cut here ]------------ [ 84.312794][ C1] VFS: brelse: Trying to free free buffer [ 84.313697][ C1] WARNING: CPU: 1 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 84.314951][ C1] Modules linked in: [ 84.315486][ C1] CPU: 1 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 84.316835][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 84.318411][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 84.319582][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 84.320478][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 84.321314][ C1] sp : ffff800008017de0 [ 84.321942][ C1] x29: ffff800008017de0 x28: ffff0000d62e1b40 x27: 1fffe0003421c65c [ 84.323196][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 84.324527][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cc6cbb40 [ 84.325719][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 84.327027][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 84.328315][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 84.329473][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 84.330770][ C1] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 84.332083][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 84.333379][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 84.334721][ C1] Call trace: [ 84.335250][ C1] invalidate_bh_lru+0x128/0x234 [ 84.336065][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 84.337046][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 84.338099][ C1] ipi_handler+0x10c/0x710 [ 84.338826][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 84.339707][ C1] handle_domain_irq+0x144/0x1fc [ 84.340479][ C1] gic_handle_irq+0x78/0x1c8 [ 84.341123][ C1] call_on_irq_stack+0x30/0x48 [ 84.341865][ C1] do_interrupt_handler+0x6c/0x88 [ 84.342637][ C1] el1_interrupt+0x30/0x58 [ 84.343305][ C1] el1h_64_irq_handler+0x18/0x24 [ 84.344071][ C1] el1h_64_irq+0x78/0x7c [ 84.344746][ C1] kasan_quarantine_put+0xd4/0x204 [ 84.345520][ C1] ____kasan_slab_free+0x124/0x164 [ 84.346389][ C1] __kasan_slab_free+0x18/0x28 [ 84.347147][ C1] slab_free_freelist_hook+0x128/0x1e8 [ 84.347992][ C1] kfree+0x170/0x40c [ 84.348660][ C1] kvfree+0x40/0x50 [ 84.349255][ C1] translate_table+0xe0c/0x1850 [ 84.350011][ C1] do_ip6t_set_ctl+0xa10/0xe00 [ 84.350750][ C1] nf_setsockopt+0x270/0x290 [ 84.351444][ C1] ipv6_setsockopt+0x1a18/0x36dc [ 84.352174][ C1] tcp_setsockopt+0x1d4/0x1bf4 [ 84.352953][ C1] sock_common_setsockopt+0xb0/0xcc [ 84.353712][ C1] __sys_setsockopt+0x260/0x36c [ 84.354498][ C1] __arm64_sys_setsockopt+0xb8/0xd4 [ 84.355353][ C1] invoke_syscall+0x98/0x2b8 [ 84.356055][ C1] el0_svc_common+0x138/0x258 [ 84.356807][ C1] do_el0_svc+0x58/0x14c [ 84.357456][ C1] el0_svc+0x78/0x1e0 [ 84.358116][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 84.358869][ C1] el0t_64_sync+0x1a0/0x1a4 [ 84.359603][ C1] irq event stamp: 305378 [ 84.360306][ C1] hardirqs last enabled at (305377): [] kasan_quarantine_put+0xc4/0x204 [ 84.361845][ C1] hardirqs last disabled at (305378): [] enter_el1_irq_or_nmi+0x10/0x1c [ 84.363361][ C1] softirqs last enabled at (305372): [] release_sock+0x1d0/0x258 [ 84.364827][ C1] softirqs last disabled at (305370): [] release_sock+0x34/0x258 [ 84.366364][ C1] ---[ end trace 5889a8ac30535d17 ]--- [ 84.439845][ T5135] loop0: detected capacity change from 0 to 128 [ 84.442585][ T5135] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 84.443774][ T5135] Bad inode number on dev loop0: 2 is out of range [ 84.444770][ T5135] SysV FS: get root inode failed [ 84.445565][ T5135] oldfs: cannot read superblock [ 84.449246][ C0] ------------[ cut here ]------------ [ 84.450114][ C0] VFS: brelse: Trying to free free buffer [ 84.451085][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 84.452491][ C0] Modules linked in: [ 84.453188][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 84.454574][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 84.456201][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 84.457471][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 84.458352][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 84.459201][ C0] sp : ffff800008007de0 [ 84.459886][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845c [ 84.461116][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 84.462405][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e254fee0 [ 84.463777][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 84.465207][ C0] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 84.466609][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 84.467950][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 0085605f569feb00 [ 84.469263][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 84.470558][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 84.471789][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 84.473045][ C0] Call trace: [ 84.473559][ C0] invalidate_bh_lru+0x128/0x234 [ 84.474328][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 84.475288][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 84.476493][ C0] ipi_handler+0x10c/0x710 [ 84.477209][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 84.478072][ C0] handle_domain_irq+0x144/0x1fc [ 84.478837][ C0] gic_handle_irq+0x78/0x1c8 [ 84.479556][ C0] call_on_irq_stack+0x30/0x48 [ 84.480313][ C0] do_interrupt_handler+0x6c/0x88 [ 84.481118][ C0] el1_interrupt+0x30/0x58 [ 84.481848][ C0] el1h_64_irq_handler+0x18/0x24 [ 84.482667][ C0] el1h_64_irq+0x78/0x7c [ 84.483335][ C0] __sanitizer_cov_trace_pc+0x74/0xac [ 84.484139][ C0] __check_object_size+0x2f4/0x4f4 [ 84.484915][ C0] strncpy_from_user+0xbc/0x598 [ 84.485669][ C0] getname_flags+0xec/0x450 [ 84.486403][ C0] user_path_at_empty+0x40/0x1a0 [ 84.487220][ C0] vfs_statx+0xf4/0x458 [ 84.487848][ C0] __arm64_sys_newfstatat+0x10c/0x190 [ 84.488708][ C0] invoke_syscall+0x98/0x2b8 [ 84.489474][ C0] el0_svc_common+0x138/0x258 [ 84.490212][ C0] do_el0_svc+0x58/0x14c [ 84.490861][ C0] el0_svc+0x78/0x1e0 [ 84.491491][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 84.492273][ C0] el0t_64_sync+0x1a0/0x1a4 [ 84.493014][ C0] irq event stamp: 306268 [ 84.493757][ C0] hardirqs last enabled at (306267): [] el0_svc_common+0x9c/0x258 [ 84.495289][ C0] hardirqs last disabled at (306268): [] enter_el1_irq_or_nmi+0x10/0x1c [ 84.496821][ C0] softirqs last enabled at (306176): [] local_bh_enable+0x10/0x34 [ 84.498393][ C0] softirqs last disabled at (306174): [] local_bh_disable+0x10/0x34 [ 84.499885][ C0] ---[ end trace 5889a8ac30535d18 ]--- [ 84.535695][ T5137] loop0: detected capacity change from 0 to 128 [ 84.568414][ T5137] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 84.569915][ T5137] Bad inode number on dev loop0: 2 is out of range [ 84.570993][ T5137] SysV FS: get root inode failed [ 84.571798][ T5137] oldfs: cannot read superblock [ 84.580860][ T4544] ------------[ cut here ]------------ [ 84.581784][ T4544] VFS: brelse: Trying to free free buffer [ 84.582724][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 84.584045][ T4544] Modules linked in: [ 84.584608][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 84.585895][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 84.587380][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 84.588553][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 84.589352][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 84.590203][ T4544] sp : ffff80001f2877c0 [ 84.590884][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 84.592068][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 84.593254][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000cc6cbee0 [ 84.594590][ T4544] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 84.595915][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 84.597213][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 84.598491][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 84.599680][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 84.600982][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 84.602252][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 84.603398][ T4544] Call trace: [ 84.603854][ T4544] invalidate_bh_lru+0x128/0x234 [ 84.604581][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 84.605581][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 84.606458][ T4544] invalidate_bh_lrus+0x34/0x40 [ 84.607230][ T4544] blkdev_flush_mapping+0x168/0x31c [ 84.608062][ T4544] blkdev_put+0x490/0x6ac [ 84.608686][ T4544] blkdev_close+0x74/0xb0 [ 84.609406][ T4544] __fput+0x1c0/0x7f8 [ 84.610034][ T4544] ____fput+0x20/0x30 [ 84.610669][ T4544] task_work_run+0x12c/0x1e0 [ 84.611383][ T4544] do_notify_resume+0x24b4/0x3128 [ 84.612173][ T4544] el0_svc+0xf0/0x1e0 [ 84.612822][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 84.613644][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 84.614378][ T4544] irq event stamp: 354156 [ 84.615066][ T4544] hardirqs last enabled at (354155): [] kasan_quarantine_put+0xc4/0x204 [ 84.616708][ T4544] hardirqs last disabled at (354156): [] smp_call_function_many_cond+0xa44/0xeb0 [ 84.618306][ T4544] softirqs last enabled at (353944): [] local_bh_enable+0x10/0x34 [ 84.619752][ T4544] softirqs last disabled at (353942): [] local_bh_disable+0x10/0x34 [ 84.621186][ T4544] ---[ end trace 5889a8ac30535d19 ]--- [ 84.680422][ T5139] loop0: detected capacity change from 0 to 128 [ 84.682779][ T5139] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 84.684377][ T5139] Bad inode number on dev loop0: 2 is out of range [ 84.685424][ T5139] SysV FS: get root inode failed [ 84.686228][ T5139] oldfs: cannot read superblock [ 84.693774][ C1] ------------[ cut here ]------------ [ 84.694643][ C1] VFS: brelse: Trying to free free buffer [ 84.695609][ C1] WARNING: CPU: 1 PID: 5140 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 84.697022][ C1] Modules linked in: [ 84.697642][ C1] CPU: 1 PID: 5140 Comm: syz-executor Tainted: G W syzkaller #0 [ 84.699150][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 84.700720][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 84.701861][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 84.702648][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 84.703459][ C1] sp : ffff800008017de0 [ 84.704112][ C1] x29: ffff800008017de0 x28: ffff0000d6583680 x27: 1fffe0003421c65c [ 84.705280][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 84.706770][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dea92ee0 [ 84.708141][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 84.709502][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 84.710684][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 84.712000][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 3b250bd307571300 [ 84.713300][ C1] x8 : 3b250bd307571300 x7 : 0000000000000001 x6 : 0000000000000001 [ 84.714548][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 84.715789][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 84.716991][ C1] Call trace: [ 84.717542][ C1] invalidate_bh_lru+0x128/0x234 [ 84.718243][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 84.719195][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 84.720325][ C1] ipi_handler+0x10c/0x710 [ 84.721063][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 84.721950][ C1] handle_domain_irq+0x144/0x1fc [ 84.722701][ C1] gic_handle_irq+0x78/0x1c8 [ 84.723442][ C1] call_on_irq_stack+0x30/0x48 [ 84.724222][ C1] do_interrupt_handler+0x6c/0x88 [ 84.724984][ C1] el1_interrupt+0x30/0x58 [ 84.725664][ C1] el1h_64_irq_handler+0x18/0x24 [ 84.726405][ C1] el1h_64_irq+0x78/0x7c [ 84.727121][ C1] __sanitizer_cov_trace_pc+0xa8/0xac [ 84.727948][ C1] preempt_count_add+0x13c/0x3bc [ 84.728738][ C1] _raw_spin_lock+0x24/0x10c [ 84.729441][ C1] task_dump_owner+0x270/0x440 [ 84.730236][ C1] proc_pid_make_inode+0x140/0x1a0 [ 84.731097][ C1] proc_pident_instantiate+0x6c/0x274 [ 84.731892][ C1] proc_pident_lookup+0x178/0x264 [ 84.732712][ C1] proc_tgid_base_lookup+0x34/0x44 [ 84.733504][ C1] path_openat+0xfbc/0x26e4 [ 84.734270][ C1] do_filp_open+0x164/0x330 [ 84.735006][ C1] do_sys_openat2+0x128/0x3d8 [ 84.735765][ C1] __arm64_sys_openat+0x120/0x154 [ 84.736568][ C1] invoke_syscall+0x98/0x2b8 [ 84.737294][ C1] el0_svc_common+0x138/0x258 [ 84.737985][ C1] do_el0_svc+0x58/0x14c [ 84.738590][ C1] el0_svc+0x78/0x1e0 [ 84.739158][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 84.739911][ C1] el0t_64_sync+0x1a0/0x1a4 [ 84.740612][ C1] irq event stamp: 850 [ 84.741250][ C1] hardirqs last enabled at (849): [] seqcount_lockdep_reader_access+0x1fc/0x2c4 [ 84.742950][ C1] hardirqs last disabled at (850): [] enter_el1_irq_or_nmi+0x10/0x1c [ 84.744428][ C1] softirqs last enabled at (532): [] local_bh_enable+0x10/0x34 [ 84.745846][ C1] softirqs last disabled at (530): [] local_bh_disable+0x10/0x34 [ 84.747346][ C1] ---[ end trace 5889a8ac30535d1a ]--- [ 84.770530][ T5141] loop0: detected capacity change from 0 to 128 [ 84.772701][ T5141] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 84.774190][ T5141] Bad inode number on dev loop0: 2 is out of range [ 84.775276][ T5141] SysV FS: get root inode failed [ 84.776076][ T5141] oldfs: cannot read superblock [ 84.782369][ C0] ------------[ cut here ]------------ [ 84.783261][ C0] VFS: brelse: Trying to free free buffer [ 84.784175][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 84.785460][ C0] Modules linked in: [ 84.786037][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 84.787342][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 84.788902][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 84.790063][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 84.790809][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 84.791603][ C0] sp : ffff800008007de0 [ 84.792181][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845c [ 84.793396][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 84.794576][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e246b318 [ 84.795835][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010004 [ 84.797126][ C0] x17: 0000000000010004 x16: ffff8000111c8944 x15: 00000000ffffffff [ 84.798400][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 84.799663][ C0] x11: 0000000000010003 x10: 0000000000010003 x9 : 0085605f569feb00 [ 84.800920][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 84.802169][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 84.803451][ C0] x2 : 0000000000000001 x1 : 0000000100010003 x0 : 0000000000000027 [ 84.804788][ C0] Call trace: [ 84.805307][ C0] invalidate_bh_lru+0x128/0x234 [ 84.805996][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 84.806903][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 84.807967][ C0] ipi_handler+0x10c/0x710 [ 84.808627][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 84.809463][ C0] handle_domain_irq+0x144/0x1fc [ 84.810243][ C0] gic_handle_irq+0x78/0x1c8 [ 84.810955][ C0] call_on_irq_stack+0x30/0x48 [ 84.811730][ C0] do_interrupt_handler+0x6c/0x88 [ 84.812476][ C0] el1_interrupt+0x30/0x58 [ 84.813097][ C0] el1h_64_irq_handler+0x18/0x24 [ 84.813869][ C0] el1h_64_irq+0x78/0x7c [ 84.814515][ C0] copy_page_range+0xe2c/0x22b8 [ 84.815254][ C0] copy_mm+0x9d4/0x1090 [ 84.815868][ C0] copy_process+0x14d8/0x34ac [ 84.816550][ C0] kernel_clone+0x1d8/0x9d4 [ 84.817196][ C0] __arm64_sys_clone+0x138/0x190 [ 84.817939][ C0] invoke_syscall+0x98/0x2b8 [ 84.818660][ C0] el0_svc_common+0x138/0x258 [ 84.819388][ C0] do_el0_svc+0x58/0x14c [ 84.820078][ C0] el0_svc+0x78/0x1e0 [ 84.820715][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 84.821541][ C0] el0t_64_sync+0x1a0/0x1a4 [ 84.822235][ C0] irq event stamp: 314380 [ 84.822907][ C0] hardirqs last enabled at (314379): [] pte_alloc_one+0x194/0x258 [ 84.824347][ C0] hardirqs last disabled at (314380): [] enter_el1_irq_or_nmi+0x10/0x1c [ 84.825892][ C0] softirqs last enabled at (314252): [] local_bh_enable+0x10/0x34 [ 84.827300][ C0] softirqs last disabled at (314250): [] local_bh_disable+0x10/0x34 [ 84.828768][ C0] ---[ end trace 5889a8ac30535d1b ]--- [ 84.879648][ T5143] loop0: detected capacity change from 0 to 128 [ 84.958525][ T5143] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 84.959677][ T5143] Bad inode number on dev loop0: 2 is out of range [ 84.960589][ T5143] SysV FS: get root inode failed [ 84.961367][ T5143] oldfs: cannot read superblock [ 84.970334][ C0] ------------[ cut here ]------------ [ 84.971266][ C0] VFS: brelse: Trying to free free buffer [ 84.972112][ C0] WARNING: CPU: 0 PID: 4748 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 84.973455][ C0] Modules linked in: [ 84.973984][ C0] CPU: 0 PID: 4748 Comm: syz-executor Tainted: G W syzkaller #0 [ 84.975366][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 84.976847][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 84.978116][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 84.978946][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 84.979786][ C0] sp : ffff800008007de0 [ 84.980449][ C0] x29: ffff800008007de0 x28: ffff0000d62e1b40 x27: 1fffe0003421845c [ 84.981751][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 84.983053][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e246b6b8 [ 84.984349][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 84.985661][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 84.986987][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 84.988277][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 0085605f569feb00 [ 84.989580][ C0] x8 : 0085605f569feb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 84.990806][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 84.991973][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 84.993185][ C0] Call trace: [ 84.993668][ C0] invalidate_bh_lru+0x128/0x234 [ 84.994398][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 84.995368][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 84.996548][ C0] ipi_handler+0x10c/0x710 [ 84.997275][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 84.998130][ C0] handle_domain_irq+0x144/0x1fc [ 84.998894][ C0] gic_handle_irq+0x78/0x1c8 [ 84.999571][ C0] call_on_irq_stack+0x30/0x48 [ 85.000360][ C0] do_interrupt_handler+0x6c/0x88 [ 85.001156][ C0] el1_interrupt+0x30/0x58 [ 85.001865][ C0] el1h_64_irq_handler+0x18/0x24 [ 85.002607][ C0] el1h_64_irq+0x78/0x7c [ 85.003249][ C0] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 85.004115][ C0] hrtimer_start_range_ns+0x8a8/0xa0c [ 85.004911][ C0] do_nanosleep+0x174/0x654 [ 85.005570][ C0] hrtimer_nanosleep+0x178/0x2e4 [ 85.006316][ C0] common_nsleep+0xa0/0xb8 [ 85.007096][ C0] __arm64_sys_clock_nanosleep+0x328/0x364 [ 85.008039][ C0] invoke_syscall+0x98/0x2b8 [ 85.008767][ C0] el0_svc_common+0x138/0x258 [ 85.009592][ C0] do_el0_svc+0x58/0x14c [ 85.010254][ C0] el0_svc+0x78/0x1e0 [ 85.010876][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 85.011656][ C0] el0t_64_sync+0x1a0/0x1a4 [ 85.012339][ C0] irq event stamp: 317186 [ 85.013019][ C0] hardirqs last enabled at (317185): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 85.014685][ C0] hardirqs last disabled at (317186): [] enter_el1_irq_or_nmi+0x10/0x1c [ 85.016285][ C0] softirqs last enabled at (316614): [] local_bh_enable+0x10/0x34 [ 85.017772][ C0] softirqs last disabled at (316612): [] local_bh_disable+0x10/0x34 [ 85.019312][ C0] ---[ end trace 5889a8ac30535d1c ]--- [ 85.059811][ T5145] loop0: detected capacity change from 0 to 128 [ 85.063051][ T5145] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 85.064266][ T5145] Bad inode number on dev loop0: 2 is out of range [ 85.065353][ T5145] SysV FS: get root inode failed [ 85.066207][ T5145] oldfs: cannot read superblock [ 85.076237][ C1] ------------[ cut here ]------------ [ 85.077112][ C1] VFS: brelse: Trying to free free buffer [ 85.077989][ C1] WARNING: CPU: 1 PID: 5147 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 85.079340][ C1] Modules linked in: [ 85.079966][ C1] CPU: 1 PID: 5147 Comm: syz.0.98 Tainted: G W syzkaller #0 [ 85.081445][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 85.082994][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 85.084084][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 85.084891][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 85.085652][ C1] sp : ffff800008017de0 [ 85.086367][ C1] x29: ffff800008017de0 x28: ffff0000d3e551c0 x27: 1fffe0003421c65c [ 85.087638][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 85.088840][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c066c230 [ 85.090145][ C1] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 85.091411][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 85.092680][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 85.093897][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : a87a961678201300 [ 85.095147][ C1] x8 : a87a961678201300 x7 : 0000000000000001 x6 : 0000000000000001 [ 85.096317][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 85.097603][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 85.098966][ C1] Call trace: [ 85.099465][ C1] invalidate_bh_lru+0x128/0x234 [ 85.100247][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 85.101189][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 85.102370][ C1] ipi_handler+0x10c/0x710 [ 85.103064][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 85.103978][ C1] handle_domain_irq+0x144/0x1fc [ 85.104763][ C1] gic_handle_irq+0x78/0x1c8 [ 85.105535][ C1] call_on_irq_stack+0x30/0x48 [ 85.106310][ C1] do_interrupt_handler+0x6c/0x88 [ 85.107168][ C1] el1_interrupt+0x30/0x58 [ 85.107881][ C1] el1h_64_irq_handler+0x18/0x24 [ 85.108700][ C1] el1h_64_irq+0x78/0x7c [ 85.109384][ C1] __sanitizer_cov_trace_pc+0x14/0xac [ 85.110221][ C1] walk_stackframe+0x6c/0xa8 [ 85.110915][ C1] return_address+0xd0/0x144 [ 85.111610][ C1] preempt_count_add+0x13c/0x3bc [ 85.112402][ C1] _raw_spin_lock+0x24/0x10c [ 85.113113][ C1] lockref_get+0x20/0x78 [ 85.113714][ C1] path_get+0x64/0x7c [ 85.114280][ C1] do_dentry_open+0x48/0xebc [ 85.115000][ C1] vfs_open+0x7c/0x90 [ 85.115666][ C1] path_openat+0x1f80/0x26e4 [ 85.116409][ C1] do_filp_open+0x164/0x330 [ 85.117085][ C1] do_sys_openat2+0x128/0x3d8 [ 85.117791][ C1] __arm64_sys_openat+0x120/0x154 [ 85.118593][ C1] invoke_syscall+0x98/0x2b8 [ 85.119372][ C1] el0_svc_common+0x138/0x258 [ 85.120101][ C1] do_el0_svc+0x58/0x14c [ 85.120757][ C1] el0_svc+0x78/0x1e0 [ 85.121344][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 85.122142][ C1] el0t_64_sync+0x1a0/0x1a4 [ 85.122854][ C1] irq event stamp: 586 [ 85.123449][ C1] hardirqs last enabled at (585): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 85.125124][ C1] hardirqs last disabled at (586): [] enter_el1_irq_or_nmi+0x10/0x1c [ 85.126594][ C1] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 85.127994][ C1] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 85.129345][ C1] ---[ end trace 5889a8ac30535d1d ]--- [ 85.169350][ T5147] loop0: detected capacity change from 0 to 128 [ 85.229095][ T5147] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 85.230611][ T5147] Bad inode number on dev loop0: 2 is out of range [ 85.231704][ T5147] SysV FS: get root inode failed [ 85.232529][ T5147] oldfs: cannot read superblock [ 85.239450][ T4544] ------------[ cut here ]------------ [ 85.240296][ T4544] VFS: brelse: Trying to free free buffer [ 85.241161][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 85.242493][ T4544] Modules linked in: [ 85.243063][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 85.244379][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 85.245899][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 85.247132][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 85.247977][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 85.248836][ T4544] sp : ffff80001f2877c0 [ 85.249477][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 85.250673][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 85.251978][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e258e970 [ 85.253344][ T4544] x20: ffff0001a10e32e0 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 85.254573][ T4544] x17: 0000000000000000 x16: ffff800008302168 x15: 00000000ffffffff [ 85.255712][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 85.256961][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 85.258241][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 85.259499][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff800008302278 [ 85.260759][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 85.262065][ T4544] Call trace: [ 85.262608][ T4544] invalidate_bh_lru+0x128/0x234 [ 85.263411][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 85.264292][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 85.265063][ T4544] invalidate_bh_lrus+0x34/0x40 [ 85.265797][ T4544] blkdev_flush_mapping+0x168/0x31c [ 85.266700][ T4544] blkdev_put+0x490/0x6ac [ 85.267373][ T4544] blkdev_close+0x74/0xb0 [ 85.268092][ T4544] __fput+0x1c0/0x7f8 [ 85.268711][ T4544] ____fput+0x20/0x30 [ 85.269316][ T4544] task_work_run+0x12c/0x1e0 [ 85.269981][ T4544] do_notify_resume+0x24b4/0x3128 [ 85.270799][ T4544] el0_svc+0xf0/0x1e0 [ 85.271441][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 85.272206][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 85.272939][ T4544] irq event stamp: 371128 [ 85.273546][ T4544] hardirqs last enabled at (371127): [] kasan_quarantine_put+0xc4/0x204 [ 85.275052][ T4544] hardirqs last disabled at (371128): [] smp_call_function_many_cond+0xa44/0xeb0 [ 85.276706][ T4544] softirqs last enabled at (370926): [] local_bh_enable+0x10/0x34 [ 85.278188][ T4544] softirqs last disabled at (370924): [] local_bh_disable+0x10/0x34 [ 85.279746][ T4544] ---[ end trace 5889a8ac30535d1e ]--- [ 85.319824][ T5149] loop0: detected capacity change from 0 to 128 [ 85.321824][ T5149] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 85.323037][ T5149] Bad inode number on dev loop0: 2 is out of range [ 85.324064][ T5149] SysV FS: get root inode failed [ 85.324808][ T5149] oldfs: cannot read superblock [ 85.330139][ C1] ------------[ cut here ]------------ [ 85.330977][ C1] VFS: brelse: Trying to free free buffer [ 85.331826][ C1] WARNING: CPU: 1 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 85.333139][ C1] Modules linked in: [ 85.333774][ C1] CPU: 1 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 85.334965][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 85.336520][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 85.337718][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 85.338496][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 85.339199][ C1] sp : ffff800008017de0 [ 85.339764][ C1] x29: ffff800008017de0 x28: ffff0000d6cfb680 x27: 1fffe0003421c65b [ 85.340837][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 85.342053][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e258ed10 [ 85.343315][ C1] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000010002 [ 85.344593][ C1] x17: 0000000000010002 x16: ffff8000111c8944 x15: 00000000ffffffff [ 85.345845][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 85.347006][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 199f2c5450dc0f00 [ 85.348154][ C1] x8 : 199f2c5450dc0f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 85.349366][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 85.350599][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 85.351740][ C1] Call trace: [ 85.352241][ C1] invalidate_bh_lru+0x128/0x234 [ 85.353020][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 85.353920][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 85.354963][ C1] ipi_handler+0x10c/0x710 [ 85.355639][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 85.356462][ C1] handle_domain_irq+0x144/0x1fc [ 85.357246][ C1] gic_handle_irq+0x78/0x1c8 [ 85.357993][ C1] call_on_irq_stack+0x30/0x48 [ 85.358738][ C1] do_interrupt_handler+0x6c/0x88 [ 85.359500][ C1] el1_interrupt+0x30/0x58 [ 85.360215][ C1] el1h_64_irq_handler+0x18/0x24 [ 85.360979][ C1] el1h_64_irq+0x78/0x7c [ 85.361585][ C1] do_epoll_wait+0x13c/0x218 [ 85.362256][ C1] do_epoll_pwait+0x70/0x19c [ 85.362913][ C1] __arm64_sys_epoll_pwait+0x1e0/0x234 [ 85.363695][ C1] invoke_syscall+0x98/0x2b8 [ 85.364362][ C1] el0_svc_common+0x138/0x258 [ 85.365022][ C1] do_el0_svc+0x58/0x14c [ 85.365607][ C1] el0_svc+0x78/0x1e0 [ 85.366155][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 85.366898][ C1] el0t_64_sync+0x1a0/0x1a4 [ 85.367669][ C1] irq event stamp: 1075230 [ 85.368393][ C1] hardirqs last enabled at (1075229): [] seqcount_lockdep_reader_access+0x1fc/0x2c4 [ 85.370175][ C1] hardirqs last disabled at (1075230): [] enter_el1_irq_or_nmi+0x10/0x1c [ 85.371801][ C1] softirqs last enabled at (1075118): [] local_bh_enable+0x10/0x34 [ 85.373409][ C1] softirqs last disabled at (1075116): [] local_bh_disable+0x10/0x34 [ 85.375052][ C1] ---[ end trace 5889a8ac30535d1f ]--- [ 85.424996][ T5151] loop0: detected capacity change from 0 to 128 [ 85.427307][ T5151] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 85.428571][ T5151] Bad inode number on dev loop0: 2 is out of range [ 85.429592][ T5151] SysV FS: get root inode failed [ 85.430390][ T5151] oldfs: cannot read superblock [ 85.436399][ T4544] ------------[ cut here ]------------ [ 85.437281][ T4544] VFS: brelse: Trying to free free buffer [ 85.438199][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 85.439638][ T4544] Modules linked in: [ 85.440270][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 85.441535][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 85.443143][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 85.444353][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 85.445161][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 85.445967][ T4544] sp : ffff80001f2877c0 [ 85.446577][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 85.447764][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 85.449119][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e258f148 [ 85.450493][ T4544] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 85.451876][ T4544] x17: 0000000000000000 x16: ffff8000111c8944 x15: 00000000ffffffff [ 85.453128][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 85.454485][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 85.455826][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 85.457146][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff80000a7281cc [ 85.458332][ T4544] x2 : ffff0001a10d4d50 x1 : 0000000100000002 x0 : 0000000000000027 [ 85.459598][ T4544] Call trace: [ 85.460102][ T4544] invalidate_bh_lru+0x128/0x234 [ 85.460860][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 85.461768][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 85.462558][ T4544] invalidate_bh_lrus+0x34/0x40 [ 85.463313][ T4544] blkdev_flush_mapping+0x168/0x31c [ 85.464133][ T4544] blkdev_put+0x490/0x6ac [ 85.464802][ T4544] blkdev_close+0x74/0xb0 [ 85.465446][ T4544] __fput+0x1c0/0x7f8 [ 85.466002][ T4544] ____fput+0x20/0x30 [ 85.466630][ T4544] task_work_run+0x12c/0x1e0 [ 85.467328][ T4544] do_notify_resume+0x24b4/0x3128 [ 85.468062][ T4544] el0_svc+0xf0/0x1e0 [ 85.468635][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 85.469455][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 85.470154][ T4544] irq event stamp: 377682 [ 85.470868][ T4544] hardirqs last enabled at (377681): [] kasan_quarantine_put+0xc4/0x204 [ 85.472464][ T4544] hardirqs last disabled at (377682): [] smp_call_function_many_cond+0xa44/0xeb0 [ 85.474165][ T4544] softirqs last enabled at (376960): [] local_bh_enable+0x10/0x34 [ 85.475662][ T4544] softirqs last disabled at (376958): [] local_bh_disable+0x10/0x34 [ 85.477230][ T4544] ---[ end trace 5889a8ac30535d20 ]--- [ 85.510286][ T5153] loop0: detected capacity change from 0 to 128 [ 85.559525][ T5153] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 85.560780][ T5153] Bad inode number on dev loop0: 2 is out of range [ 85.561699][ T5153] SysV FS: get root inode failed [ 85.562398][ T5153] oldfs: cannot read superblock [ 85.565625][ C1] ------------[ cut here ]------------ [ 85.566507][ C1] VFS: brelse: Trying to free free buffer [ 85.567412][ C1] WARNING: CPU: 1 PID: 3661 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 85.568727][ C1] Modules linked in: [ 85.569282][ C1] CPU: 1 PID: 3661 Comm: udevd Tainted: G W syzkaller #0 [ 85.570459][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 85.571861][ C1] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 85.572974][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 85.573790][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 85.574535][ C1] sp : ffff800008017de0 [ 85.575138][ C1] x29: ffff800008017de0 x28: ffff0000d6cfb680 x27: 1fffe0003421c65b [ 85.576516][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 85.577819][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e258f4e8 [ 85.579093][ C1] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 85.580456][ C1] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 85.581762][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 85.583029][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 199f2c5450dc0f00 [ 85.584337][ C1] x8 : 199f2c5450dc0f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 85.585525][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 85.586802][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 85.588037][ C1] Call trace: [ 85.588558][ C1] invalidate_bh_lru+0x128/0x234 [ 85.589342][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 85.590257][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 85.591315][ C1] ipi_handler+0x10c/0x710 [ 85.592003][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 85.592896][ C1] handle_domain_irq+0x144/0x1fc [ 85.593630][ C1] gic_handle_irq+0x78/0x1c8 [ 85.594333][ C1] call_on_irq_stack+0x30/0x48 [ 85.595107][ C1] do_interrupt_handler+0x6c/0x88 [ 85.595842][ C1] el1_interrupt+0x30/0x58 [ 85.596574][ C1] el1h_64_irq_handler+0x18/0x24 [ 85.597325][ C1] el1h_64_irq+0x78/0x7c [ 85.597972][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 85.598919][ C1] hrtimer_start_range_ns+0x8a8/0xa0c [ 85.599749][ C1] schedule_hrtimeout_range_clock+0x17c/0x340 [ 85.600827][ C1] schedule_hrtimeout_range+0x38/0x4c [ 85.601687][ C1] ep_poll+0x1328/0x1598 [ 85.602352][ C1] do_epoll_wait+0x1a0/0x218 [ 85.603123][ C1] do_epoll_pwait+0x70/0x19c [ 85.603898][ C1] __arm64_sys_epoll_pwait+0x1e0/0x234 [ 85.604759][ C1] invoke_syscall+0x98/0x2b8 [ 85.605464][ C1] el0_svc_common+0x138/0x258 [ 85.606175][ C1] do_el0_svc+0x58/0x14c [ 85.606843][ C1] el0_svc+0x78/0x1e0 [ 85.607446][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 85.608268][ C1] el0t_64_sync+0x1a0/0x1a4 [ 85.609004][ C1] irq event stamp: 1080604 [ 85.609724][ C1] hardirqs last enabled at (1080603): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 85.611484][ C1] hardirqs last disabled at (1080604): [] enter_el1_irq_or_nmi+0x10/0x1c [ 85.613030][ C1] softirqs last enabled at (1080512): [] local_bh_enable+0x10/0x34 [ 85.614484][ C1] softirqs last disabled at (1080510): [] local_bh_disable+0x10/0x34 [ 85.615909][ C1] ---[ end trace 5889a8ac30535d21 ]--- [ 85.676932][ T5155] loop0: detected capacity change from 0 to 128 [ 85.683397][ T5155] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 85.684592][ T5155] Bad inode number on dev loop0: 2 is out of range [ 85.685599][ T5155] SysV FS: get root inode failed [ 85.686357][ T5155] oldfs: cannot read superblock [ 85.693462][ C0] ------------[ cut here ]------------ [ 85.694365][ C0] VFS: brelse: Trying to free free buffer [ 85.695329][ C0] WARNING: CPU: 0 PID: 5156 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 85.696760][ C0] Modules linked in: [ 85.697402][ C0] CPU: 0 PID: 5156 Comm: syz-executor Tainted: G W syzkaller #0 [ 85.698924][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 85.700512][ C0] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 85.701788][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 85.702618][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 85.703390][ C0] sp : ffff800008007de0 [ 85.704086][ C0] x29: ffff800008007de0 x28: ffff0000d6e81b40 x27: 1fffe0003421845c [ 85.705394][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 85.706675][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e246ba58 [ 85.707981][ C0] x20: ffff0001a10c22e0 x19: ffff8000113d9aa0 x18: 0000000000010003 [ 85.709383][ C0] x17: 0000000000010003 x16: ffff8000111c8944 x15: 00000000ffffffff [ 85.710764][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 85.712054][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 6c2dac3bd8a62c00 [ 85.713361][ C0] x8 : 6c2dac3bd8a62c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 85.714756][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f420 x3 : ffff80000850471c [ 85.716103][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 85.717446][ C0] Call trace: [ 85.717969][ C0] invalidate_bh_lru+0x128/0x234 [ 85.718727][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 85.719712][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 85.720883][ C0] ipi_handler+0x10c/0x710 [ 85.721578][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 85.722452][ C0] handle_domain_irq+0x144/0x1fc [ 85.723251][ C0] gic_handle_irq+0x78/0x1c8 [ 85.723973][ C0] call_on_irq_stack+0x30/0x48 [ 85.724681][ C0] do_interrupt_handler+0x6c/0x88 [ 85.725557][ C0] el1_interrupt+0x30/0x58 [ 85.726278][ C0] el1h_64_irq_handler+0x18/0x24 [ 85.727046][ C0] el1h_64_irq+0x78/0x7c [ 85.727773][ C0] lock_page_memcg+0x120/0x234 [ 85.728466][ C0] page_add_file_rmap+0x148/0x8e4 [ 85.729198][ C0] do_set_pte+0x394/0x4e0 [ 85.729834][ C0] filemap_map_pages+0x9c4/0xc50 [ 85.730578][ C0] handle_mm_fault+0x19c0/0x2950 [ 85.731301][ C0] do_page_fault+0x694/0xad4 [ 85.731975][ C0] do_translation_fault+0xe0/0x130 [ 85.732753][ C0] do_mem_abort+0x6c/0x1ac [ 85.733354][ C0] el0_ia+0xe0/0x2d0 [ 85.733922][ C0] el0t_64_sync_handler+0xc0/0xe4 [ 85.734669][ C0] el0t_64_sync+0x1a0/0x1a4 [ 85.735368][ C0] irq event stamp: 300 [ 85.735932][ C0] hardirqs last enabled at (299): [] lock_page_memcg+0x110/0x234 [ 85.737451][ C0] hardirqs last disabled at (300): [] enter_el1_irq_or_nmi+0x10/0x1c [ 85.739004][ C0] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 85.740480][ C0] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 85.741963][ C0] ---[ end trace 5889a8ac30535d22 ]--- [ 85.799201][ T5157] loop0: detected capacity change from 0 to 128 [ 85.803071][ T5157] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 85.804279][ T5157] Bad inode number on dev loop0: 2 is out of range [ 85.805321][ T5157] SysV FS: get root inode failed [ 85.806145][ T5157] oldfs: cannot read superblock [ 85.813371][ T4544] ------------[ cut here ]------------ [ 85.814276][ T4544] VFS: brelse: Trying to free free buffer [ 85.815134][ T4544] WARNING: CPU: 1 PID: 4544 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 85.816514][ T4544] Modules linked in: [ 85.817039][ T4544] CPU: 1 PID: 4544 Comm: udevd Tainted: G W syzkaller #0 [ 85.818374][ T4544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 85.819998][ T4544] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 85.821330][ T4544] pc : invalidate_bh_lru+0x128/0x234 [ 85.822232][ T4544] lr : invalidate_bh_lru+0x128/0x234 [ 85.823122][ T4544] sp : ffff80001f2877c0 [ 85.823815][ T4544] x29: ffff80001f2877c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 85.825092][ T4544] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 85.826305][ T4544] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e258f888 [ 85.827588][ T4544] x20: ffff0001a10e32d8 x19: ffff8000113d9aa0 x18: 0000000000000003 [ 85.828833][ T4544] x17: 0000000000000000 x16: ffff800008302168 x15: 00000000ffffffff [ 85.830101][ T4544] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 85.831323][ T4544] x11: 0000000000000002 x10: 0000000000000000 x9 : 0aadacbfbf5d5800 [ 85.832568][ T4544] x8 : 0aadacbfbf5d5800 x7 : 0000000000000001 x6 : 0000000000000001 [ 85.833890][ T4544] x5 : ffff80001f2870b8 x4 : ffff80001425f420 x3 : ffff800008302278 [ 85.835151][ T4544] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 85.836367][ T4544] Call trace: [ 85.836838][ T4544] invalidate_bh_lru+0x128/0x234 [ 85.837555][ T4544] smp_call_function_many_cond+0xa50/0xeb0 [ 85.838393][ T4544] on_each_cpu_cond_mask+0x5c/0xc4 [ 85.839189][ T4544] invalidate_bh_lrus+0x34/0x40 [ 85.839802][ T4544] blkdev_flush_mapping+0x168/0x31c [ 85.840595][ T4544] blkdev_put+0x490/0x6ac [ 85.841343][ T4544] blkdev_close+0x74/0xb0 [ 85.842098][ T4544] __fput+0x1c0/0x7f8 [ 85.842703][ T4544] ____fput+0x20/0x30 [ 85.843299][ T4544] task_work_run+0x12c/0x1e0 [ 85.844040][ T4544] do_notify_resume+0x24b4/0x3128 [ 85.844855][ T4544] el0_svc+0xf0/0x1e0 [ 85.845491][ T4544] el0t_64_sync_handler+0xcc/0xe4 [ 85.846304][ T4544] el0t_64_sync+0x1a0/0x1a4 [ 85.847070][ T4544] irq event stamp: 391054 [ 85.847756][ T4544] hardirqs last enabled at (391053): [] kasan_quarantine_put+0xc4/0x204 [ 85.849377][ T4544] hardirqs last disabled at (391054): [] smp_call_function_many_cond+0xa44/0xeb0