Warning: Permanently added '10.128.0.252' (ED25519) to the list of known hosts. 1970/01/01 00:01:24 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:25 parsed 1 programs [ 87.848893][ T4481] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 90.027508][ T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.029772][ T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.037761][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 90.047465][ T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.049707][ T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.052792][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 91.040584][ T4537] chnl_net:caif_netlink_parms(): no params data found [ 91.081087][ T4537] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.083285][ T4537] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.087879][ T4537] device bridge_slave_0 entered promiscuous mode [ 91.091738][ T4537] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.093730][ T4537] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.096951][ T4537] device bridge_slave_1 entered promiscuous mode [ 91.116932][ T4537] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.121919][ T4537] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.141409][ T4537] team0: Port device team_slave_0 added [ 91.147137][ T4537] team0: Port device team_slave_1 added [ 91.162343][ T4537] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.164236][ T4537] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.173132][ T4537] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.178532][ T4537] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.180498][ T4537] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.189340][ T4537] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.266645][ T4537] device hsr_slave_0 entered promiscuous mode [ 91.304862][ T4537] device hsr_slave_1 entered promiscuous mode [ 92.137605][ T4537] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 92.177342][ T4537] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 92.206391][ T4537] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 92.247660][ T4537] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 92.385286][ T4537] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.392581][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 92.395514][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 92.400457][ T4537] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.406925][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 92.409715][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 92.412343][ T4188] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.414232][ T4188] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.425894][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 92.428529][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 92.431256][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 92.433786][ T4188] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.435698][ T4188] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.441914][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 92.455713][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 92.459626][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 92.463389][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 92.467944][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 92.471835][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 92.474726][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 92.477337][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 92.480006][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 92.486267][ T4537] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 92.489572][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 92.502539][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 92.505337][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 92.585497][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 92.587744][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 92.599010][ T4537] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.615017][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 92.618019][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 92.633653][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 92.636636][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 92.639502][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 92.642676][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 92.684728][ T4537] device veth0_vlan entered promiscuous mode [ 92.690739][ T4537] device veth1_vlan entered promiscuous mode [ 92.709036][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 92.711626][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 92.715914][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 92.718722][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 92.723236][ T4537] device veth0_macvtap entered promiscuous mode [ 92.727601][ T4537] device veth1_macvtap entered promiscuous mode [ 92.739770][ T4537] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.741908][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 92.744680][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 92.747757][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 92.750608][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 92.756311][ T4537] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.760934][ T4537] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.763358][ T4537] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.766536][ T4537] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.768980][ T4537] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.772553][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 92.777190][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 1970/01/01 00:01:32 executed programs: 0 [ 93.193168][ T4645] chnl_net:caif_netlink_parms(): no params data found [ 93.271667][ T4645] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.273677][ T4645] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.276467][ T4645] device bridge_slave_0 entered promiscuous mode [ 93.280241][ T4645] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.282343][ T4645] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.285179][ T4645] device bridge_slave_1 entered promiscuous mode [ 93.301254][ T4645] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.308629][ T4645] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.326353][ T4645] team0: Port device team_slave_0 added [ 93.330304][ T4645] team0: Port device team_slave_1 added [ 93.345371][ T4645] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.347276][ T4645] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.354148][ T4645] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.359366][ T4645] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.361290][ T4645] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.368461][ T4645] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.436617][ T4645] device hsr_slave_0 entered promiscuous mode [ 93.475087][ T4645] device hsr_slave_1 entered promiscuous mode [ 93.524710][ T4645] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 93.526822][ T4645] Cannot create hsr debugfs directory [ 93.604256][ T4645] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.064966][ T7] Bluetooth: hci0: command 0x0409 tx timeout [ 95.543192][ T4645] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 97.147425][ T4076] Bluetooth: hci0: command 0x041b tx timeout [ 97.675748][ T4645] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 97.724605][ T4645] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.126509][ T4645] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.147909][ T4645] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 98.233802][ T4645] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 98.286448][ T4645] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.386364][ T4645] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.393709][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 98.399015][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 98.403774][ T4645] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.410698][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 98.413370][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 98.416392][ T4188] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.418441][ T4188] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.421684][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 98.428160][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 98.430891][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 98.433502][ T4188] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.435455][ T4188] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.440816][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 98.447211][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 98.455858][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 98.459259][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 98.462143][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 98.484107][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 98.487403][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 98.490145][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 98.492773][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 98.497488][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 98.500251][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 98.505080][ T4645] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 98.597388][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 98.599545][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 98.606574][ T4645] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.619953][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 98.622929][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 98.645737][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 98.648963][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 98.652839][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 98.657115][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 98.661831][ T4645] device veth0_vlan entered promiscuous mode [ 98.669266][ T4645] device veth1_vlan entered promiscuous mode [ 98.685079][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 98.687696][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 98.690228][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 98.692988][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 98.701197][ T4645] device veth0_macvtap entered promiscuous mode [ 98.706149][ T4645] device veth1_macvtap entered promiscuous mode [ 98.716470][ T4645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 98.719479][ T4645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 98.723115][ T4645] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.726950][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 98.729725][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 98.732273][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 98.736099][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 98.740565][ T4645] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 98.743411][ T4645] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 98.748035][ T4645] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.760899][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 98.763890][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 98.769798][ T4645] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.772346][ T4645] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.774949][ T4645] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.777252][ T4645] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.817511][ T148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.823992][ T148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.832144][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 98.836259][ T4188] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.838527][ T4188] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.841639][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:38 executed programs: 2 [ 98.883291][ T4920] loop0: detected capacity change from 0 to 128 [ 98.920671][ T4920] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 98.922966][ T4920] Bad inode number on dev loop0: 2 is out of range [ 98.925480][ T4920] SysV FS: get root inode failed [ 98.926803][ T4920] oldfs: cannot read superblock [ 98.949335][ C1] ------------[ cut here ]------------ [ 98.951057][ C1] VFS: brelse: Trying to free free buffer [ 98.952676][ C1] WARNING: CPU: 1 PID: 4922 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 98.955089][ C1] Modules linked in: [ 98.956129][ C1] CPU: 1 PID: 4922 Comm: syz.0.16 Not tainted 5.15.187-syzkaller #0 [ 98.958361][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 98.961103][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 98.963245][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 98.964719][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 98.966156][ C1] sp : ffff800008017de0 [ 98.967263][ C1] x29: ffff800008017de0 x28: ffff0000caccd1c0 x27: 1fffe0003421c65c [ 98.969433][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 98.971598][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e24a8c28 [ 98.973789][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 98.976037][ C1] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 98.978163][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 98.980360][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 6bca97df046cfd00 [ 98.982544][ C1] x8 : 6bca97df046cfd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 98.984747][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 98.986941][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 98.989156][ C1] Call trace: [ 98.990063][ C1] invalidate_bh_lru+0x128/0x234 [ 98.991420][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 98.993038][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 98.994983][ C1] ipi_handler+0x10c/0x710 [ 98.996154][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 98.997632][ C1] handle_domain_irq+0x144/0x1fc [ 98.998944][ C1] gic_handle_irq+0x78/0x1c8 [ 99.000147][ C1] call_on_irq_stack+0x24/0x30 [ 99.001389][ C1] do_interrupt_handler+0x6c/0x88 [ 99.002794][ C1] el1_interrupt+0x30/0x58 [ 99.004010][ C1] el1h_64_irq_handler+0x18/0x24 [ 99.005368][ C1] el1h_64_irq+0x78/0x7c [ 99.006533][ C1] _raw_spin_unlock_irq+0xa0/0x128 [ 99.007932][ C1] shmem_getpage_gfp+0x181c/0x1ef0 [ 99.009366][ C1] shmem_write_begin+0xe0/0x29c [ 99.010656][ C1] generic_perform_write+0x204/0x480 [ 99.012088][ C1] __generic_file_write_iter+0x23c/0x454 [ 99.013644][ C1] generic_file_write_iter+0xb0/0x1b4 [ 99.015109][ C1] vfs_write+0x7c8/0xa2c [ 99.016280][ C1] ksys_write+0x120/0x210 [ 99.017458][ C1] __arm64_sys_write+0x7c/0x90 [ 99.018734][ C1] invoke_syscall+0x98/0x2b8 [ 99.020026][ C1] el0_svc_common+0x138/0x258 [ 99.021317][ C1] do_el0_svc+0x58/0x14c [ 99.022523][ C1] el0_svc+0x78/0x1e0 [ 99.023635][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 99.025054][ C1] el0t_64_sync+0x1a0/0x1a4 [ 99.026298][ C1] irq event stamp: 388 [ 99.027405][ C1] hardirqs last enabled at (387): [] _raw_spin_unlock_irq+0x98/0x128 [ 99.030128][ C1] hardirqs last disabled at (388): [] enter_el1_irq_or_nmi+0x10/0x1c [ 99.032869][ C1] softirqs last enabled at (32): [] handle_softirqs+0xa4c/0xbf0 [ 99.035433][ C1] softirqs last disabled at (17): [] __irq_exit_rcu+0x240/0x440 [ 99.038020][ C1] ---[ end trace 5ca76294e75f1856 ]--- [ 99.063711][ T4922] loop0: detected capacity change from 0 to 128 [ 99.076898][ T4922] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.078951][ T4922] Bad inode number on dev loop0: 2 is out of range [ 99.080770][ T4922] SysV FS: get root inode failed [ 99.082154][ T4922] oldfs: cannot read superblock [ 99.093931][ C0] ------------[ cut here ]------------ [ 99.095522][ C0] VFS: brelse: Trying to free free buffer [ 99.097336][ C0] WARNING: CPU: 0 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.099768][ C0] Modules linked in: [ 99.100820][ C0] CPU: 0 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 99.103560][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 99.106378][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.108441][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 99.109910][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 99.111345][ C0] sp : ffff800008007de0 [ 99.112481][ C0] x29: ffff800008007de0 x28: ffff0000c1bf9b40 x27: 1fffe0003421845c [ 99.114767][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 99.116983][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000decc66b8 [ 99.119166][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 99.121302][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 99.123519][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 99.125716][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : abd15cb6bd53e700 [ 99.127927][ C0] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 99.130286][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 99.132511][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 99.134757][ C0] Call trace: [ 99.135598][ C0] invalidate_bh_lru+0x128/0x234 [ 99.136931][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 99.138561][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 99.140511][ C0] ipi_handler+0x10c/0x710 [ 99.141765][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 99.143311][ C0] handle_domain_irq+0x144/0x1fc [ 99.144658][ C0] gic_handle_irq+0x78/0x1c8 [ 99.145940][ C0] call_on_irq_stack+0x24/0x30 [ 99.147338][ C0] do_interrupt_handler+0x6c/0x88 [ 99.148762][ C0] el1_interrupt+0x30/0x58 [ 99.149965][ C0] el1h_64_irq_handler+0x18/0x24 [ 99.151292][ C0] el1h_64_irq+0x78/0x7c [ 99.152458][ C0] get_page_from_freelist+0x2244/0x2aa8 [ 99.154061][ C0] __alloc_pages+0x1a0/0x470 [ 99.155400][ C0] alloc_pages+0x34c/0x5c0 [ 99.156675][ C0] __vmalloc_node_range+0x514/0x8d8 [ 99.158143][ C0] vzalloc+0x118/0x190 [ 99.159324][ C0] alloc_counters+0x84/0x7a4 [ 99.160660][ C0] do_ipt_get_ctl+0xaf4/0x13a8 [ 99.161989][ C0] nf_getsockopt+0x264/0x284 [ 99.163312][ C0] ip_getsockopt+0xffc/0x158c [ 99.164631][ C0] tcp_getsockopt+0x214/0x2e74 [ 99.165941][ C0] sock_common_getsockopt+0xa8/0xc4 [ 99.167384][ C0] __sys_getsockopt+0x1e0/0x45c [ 99.168689][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 99.170144][ C0] invoke_syscall+0x98/0x2b8 [ 99.171452][ C0] el0_svc_common+0x138/0x258 [ 99.172793][ C0] do_el0_svc+0x58/0x14c [ 99.173928][ C0] el0_svc+0x78/0x1e0 [ 99.174964][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 99.176329][ C0] el0t_64_sync+0x1a0/0x1a4 [ 99.177543][ C0] irq event stamp: 168526 [ 99.178696][ C0] hardirqs last enabled at (168525): [] get_page_from_freelist+0x2234/0x2aa8 [ 99.181548][ C0] hardirqs last disabled at (168526): [] enter_el1_irq_or_nmi+0x10/0x1c [ 99.184282][ C0] softirqs last enabled at (168522): [] release_sock+0x1d0/0x258 [ 99.186888][ C0] softirqs last disabled at (168520): [] release_sock+0x34/0x258 [ 99.189481][ C0] ---[ end trace 5ca76294e75f1857 ]--- [ 99.225029][ T4906] Bluetooth: hci0: command 0x040f tx timeout [ 99.240076][ T4924] loop0: detected capacity change from 0 to 128 [ 99.260689][ T4924] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.262770][ T4924] Bad inode number on dev loop0: 2 is out of range [ 99.265345][ T4924] SysV FS: get root inode failed [ 99.266690][ T4924] oldfs: cannot read superblock [ 99.289484][ C0] ------------[ cut here ]------------ [ 99.291014][ C0] VFS: brelse: Trying to free free buffer [ 99.292652][ C0] WARNING: CPU: 0 PID: 4926 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.295165][ C0] Modules linked in: [ 99.296237][ C0] CPU: 0 PID: 4926 Comm: syz.0.18 Tainted: G W 5.15.187-syzkaller #0 [ 99.298960][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 99.301719][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.303897][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 99.305398][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 99.306858][ C0] sp : ffff800008007de0 [ 99.308076][ C0] x29: ffff800008007de0 x28: ffff0000c23b8000 x27: 1fffe0003421845c [ 99.310341][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 99.312526][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000decc6a58 [ 99.314866][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 99.317076][ C0] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 99.319237][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 99.321512][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 22751f784d6c3900 [ 99.323729][ C0] x8 : 22751f784d6c3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 99.325926][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 99.328144][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 99.330367][ C0] Call trace: [ 99.331262][ C0] invalidate_bh_lru+0x128/0x234 [ 99.332695][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 99.334335][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 99.336289][ C0] ipi_handler+0x10c/0x710 [ 99.337456][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 99.338964][ C0] handle_domain_irq+0x144/0x1fc [ 99.340349][ C0] gic_handle_irq+0x78/0x1c8 [ 99.341685][ C0] call_on_irq_stack+0x24/0x30 [ 99.343050][ C0] do_interrupt_handler+0x6c/0x88 [ 99.344471][ C0] el1_interrupt+0x30/0x58 [ 99.345659][ C0] el1h_64_irq_handler+0x18/0x24 [ 99.347059][ C0] el1h_64_irq+0x78/0x7c [ 99.348235][ C0] lock_page_memcg+0x120/0x234 [ 99.349528][ C0] page_remove_rmap+0x3c/0xfd0 [ 99.350815][ C0] unmap_page_range+0xbb4/0x1958 [ 99.352193][ C0] unmap_single_vma+0x13c/0x1e4 [ 99.353518][ C0] unmap_vmas+0x104/0x200 [ 99.354724][ C0] exit_mmap+0x2a8/0x4e0 [ 99.355854][ C0] __mmput+0xec/0x3b8 [ 99.356983][ C0] mmput+0x80/0xc8 [ 99.358028][ C0] exit_mm+0x4a0/0x684 [ 99.359109][ C0] do_exit+0x4ec/0x1f58 [ 99.360256][ C0] do_group_exit+0x100/0x268 [ 99.361524][ C0] get_signal+0x73c/0x1340 [ 99.362775][ C0] do_notify_resume+0x35c/0x3128 [ 99.364118][ C0] el0_svc+0xf0/0x1e0 [ 99.365287][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 99.366716][ C0] el0t_64_sync+0x1a0/0x1a4 [ 99.368016][ C0] irq event stamp: 1328 [ 99.369107][ C0] hardirqs last enabled at (1327): [] lock_page_memcg+0x110/0x234 [ 99.371610][ C0] hardirqs last disabled at (1328): [] enter_el1_irq_or_nmi+0x10/0x1c [ 99.374411][ C0] softirqs last enabled at (374): [] handle_softirqs+0xa4c/0xbf0 [ 99.376978][ C0] softirqs last disabled at (265): [] __irq_exit_rcu+0x240/0x440 [ 99.379541][ C0] ---[ end trace 5ca76294e75f1858 ]--- [ 99.433391][ T4928] loop0: detected capacity change from 0 to 128 [ 99.445691][ T4928] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.447897][ T4928] Bad inode number on dev loop0: 2 is out of range [ 99.449676][ T4928] SysV FS: get root inode failed [ 99.451021][ T4928] oldfs: cannot read superblock [ 99.458282][ T9] device hsr_slave_0 left promiscuous mode [ 99.463916][ T4486] ------------[ cut here ]------------ [ 99.465604][ T4486] VFS: brelse: Trying to free free buffer [ 99.467259][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.469761][ T4486] Modules linked in: [ 99.470861][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 99.473311][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 99.476077][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.478255][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 99.479735][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 99.481205][ T4486] sp : ffff80001f6977c0 [ 99.482357][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 99.484665][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 99.486883][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def96ee0 [ 99.489169][ T4486] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 99.491412][ T4486] x17: 0000000000000000 x16: ffff8000083020fc x15: 00000000ffffffff [ 99.493629][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 99.495848][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 99.498096][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 99.500330][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff80000830220c [ 99.502584][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 99.504697][ T4486] Call trace: [ 99.505633][ T4486] invalidate_bh_lru+0x128/0x234 [ 99.507012][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 99.508630][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 99.510037][ T4486] invalidate_bh_lrus+0x34/0x40 [ 99.511352][ T4486] blkdev_flush_mapping+0x168/0x31c [ 99.512824][ T4486] blkdev_put+0x490/0x6ac [ 99.514008][ T4486] blkdev_close+0x74/0xb0 [ 99.515275][ T4486] __fput+0x1c0/0x7f8 [ 99.516364][ T4486] ____fput+0x20/0x30 [ 99.517445][ T4486] task_work_run+0x12c/0x1e0 [ 99.518699][ T4486] do_notify_resume+0x24b4/0x3128 [ 99.520155][ T4486] el0_svc+0xf0/0x1e0 [ 99.521284][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 99.522672][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 99.523981][ T4486] irq event stamp: 87630 [ 99.525133][ T4486] hardirqs last enabled at (87629): [] kasan_quarantine_put+0xc4/0x204 [ 99.527864][ T4486] hardirqs last disabled at (87630): [] smp_call_function_many_cond+0xa44/0xeb0 [ 99.530824][ T4486] softirqs last enabled at (87616): [] local_bh_enable+0x10/0x34 [ 99.533474][ T4486] softirqs last disabled at (87614): [] local_bh_disable+0x10/0x34 [ 99.536202][ T4486] ---[ end trace 5ca76294e75f1859 ]--- [ 99.565301][ T9] device hsr_slave_1 left promiscuous mode [ 99.609379][ T4930] loop0: detected capacity change from 0 to 128 [ 99.612957][ T4930] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.617923][ T4930] Bad inode number on dev loop0: 2 is out of range [ 99.619914][ T4930] SysV FS: get root inode failed [ 99.621246][ T4930] oldfs: cannot read superblock [ 99.632540][ C0] ------------[ cut here ]------------ [ 99.634142][ C0] VFS: brelse: Trying to free free buffer [ 99.635822][ C0] WARNING: CPU: 0 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.638247][ C0] Modules linked in: [ 99.639321][ C0] CPU: 0 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 99.642031][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 99.644851][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.646976][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 99.648495][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 99.649961][ C0] sp : ffff800008007de0 [ 99.651119][ C0] x29: ffff800008007de0 x28: ffff0000c1bf9b40 x27: 1fffe0003421845c [ 99.653310][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 99.655470][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ed001b40 [ 99.657787][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 99.660045][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 99.662217][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 99.664413][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : abd15cb6bd53e700 [ 99.666608][ C0] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 99.668798][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 99.670958][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 99.673173][ C0] Call trace: [ 99.674040][ C0] invalidate_bh_lru+0x128/0x234 [ 99.675365][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 99.677048][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 99.678983][ C0] ipi_handler+0x10c/0x710 [ 99.680269][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 99.681792][ C0] handle_domain_irq+0x144/0x1fc [ 99.683085][ C0] gic_handle_irq+0x78/0x1c8 [ 99.684381][ C0] call_on_irq_stack+0x24/0x30 [ 99.685742][ C0] do_interrupt_handler+0x6c/0x88 [ 99.687051][ C0] el1_interrupt+0x30/0x58 [ 99.688305][ C0] el1h_64_irq_handler+0x18/0x24 [ 99.689741][ C0] el1h_64_irq+0x78/0x7c [ 99.690964][ C0] __sanitizer_cov_trace_cmp8+0xb4/0xc0 [ 99.692504][ C0] arch_stack_walk+0x200/0x2b4 [ 99.693812][ C0] stack_trace_save+0x94/0xd8 [ 99.695082][ C0] kasan_set_track+0x4c/0x84 [ 99.696357][ C0] kasan_set_free_info+0x28/0x4c [ 99.697803][ C0] ____kasan_slab_free+0x118/0x164 [ 99.699153][ C0] __kasan_slab_free+0x18/0x28 [ 99.700546][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 99.702025][ C0] kfree+0x170/0x40c [ 99.703106][ C0] kvfree+0x40/0x50 [ 99.704113][ C0] __vunmap+0x8e4/0x9bc [ 99.705284][ C0] vfree+0xbc/0x154 [ 99.706365][ C0] __do_replace+0x830/0x988 [ 99.707592][ C0] do_ipt_set_ctl+0xa94/0xe00 [ 99.708952][ C0] nf_setsockopt+0x270/0x290 [ 99.710283][ C0] ip_setsockopt+0x1d0c/0x2978 [ 99.711619][ C0] tcp_setsockopt+0x1d4/0x1bf4 [ 99.712876][ C0] sock_common_setsockopt+0xb0/0xcc [ 99.714239][ C0] __sys_setsockopt+0x2f8/0x4b0 [ 99.715564][ C0] __arm64_sys_setsockopt+0xb8/0xd4 [ 99.717012][ C0] invoke_syscall+0x98/0x2b8 [ 99.718291][ C0] el0_svc_common+0x138/0x258 [ 99.719646][ C0] do_el0_svc+0x58/0x14c [ 99.720819][ C0] el0_svc+0x78/0x1e0 [ 99.721921][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 99.723318][ C0] el0t_64_sync+0x1a0/0x1a4 [ 99.724583][ C0] irq event stamp: 183244 [ 99.725768][ C0] hardirqs last enabled at (183243): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 99.728719][ C0] hardirqs last disabled at (183244): [] enter_el1_irq_or_nmi+0x10/0x1c [ 99.731424][ C0] softirqs last enabled at (183212): [] local_bh_enable+0x10/0x34 [ 99.734094][ C0] softirqs last disabled at (183210): [] local_bh_disable+0x10/0x34 [ 99.736785][ C0] ---[ end trace 5ca76294e75f185a ]--- [ 99.747731][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 99.749816][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 99.755651][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 99.757713][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 99.760109][ T9] device bridge_slave_1 left promiscuous mode [ 99.761915][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.799482][ T4932] loop0: detected capacity change from 0 to 128 [ 99.804187][ T4932] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.809603][ T4932] Bad inode number on dev loop0: 2 is out of range [ 99.811957][ T4932] SysV FS: get root inode failed [ 99.812560][ T9] device bridge_slave_0 left promiscuous mode [ 99.813279][ T4932] oldfs: cannot read superblock [ 99.815704][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.836727][ T4486] ------------[ cut here ]------------ [ 99.838312][ T4486] VFS: brelse: Trying to free free buffer [ 99.840097][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.842626][ T4486] Modules linked in: [ 99.843722][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 99.846206][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 99.849016][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.851255][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 99.852772][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 99.854194][ T4486] sp : ffff80001f6977c0 [ 99.855345][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 99.857520][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 99.859772][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def965d0 [ 99.862019][ T4486] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 99.864270][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 99.866504][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 99.868795][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 99.871087][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 99.873267][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 99.875407][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 99.877683][ T4486] Call trace: [ 99.878627][ T4486] invalidate_bh_lru+0x128/0x234 [ 99.880023][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 99.881614][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 99.883069][ T4486] invalidate_bh_lrus+0x34/0x40 [ 99.884365][ T4486] blkdev_flush_mapping+0x168/0x31c [ 99.885853][ T4486] blkdev_put+0x490/0x6ac [ 99.887048][ T4486] blkdev_close+0x74/0xb0 [ 99.888275][ T4486] __fput+0x1c0/0x7f8 [ 99.889377][ T4486] ____fput+0x20/0x30 [ 99.890513][ T4486] task_work_run+0x12c/0x1e0 [ 99.891807][ T4486] do_notify_resume+0x24b4/0x3128 [ 99.893234][ T4486] el0_svc+0xf0/0x1e0 [ 99.894368][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 99.895734][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 99.896987][ T4486] irq event stamp: 98120 [ 99.898162][ T4486] hardirqs last enabled at (98119): [] kasan_quarantine_put+0xc4/0x204 [ 99.901008][ T4486] hardirqs last disabled at (98120): [] smp_call_function_many_cond+0xa44/0xeb0 [ 99.903941][ T4486] softirqs last enabled at (97282): [] handle_softirqs+0xa4c/0xbf0 [ 99.906568][ T4486] softirqs last disabled at (97273): [] __irq_exit_rcu+0x240/0x440 [ 99.909214][ T4486] ---[ end trace 5ca76294e75f185b ]--- [ 99.940458][ T4934] loop0: detected capacity change from 0 to 128 [ 99.950040][ T4934] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 99.952193][ T4934] Bad inode number on dev loop0: 2 is out of range [ 99.954012][ T4934] SysV FS: get root inode failed [ 99.956538][ T4934] oldfs: cannot read superblock [ 99.972783][ T4486] ------------[ cut here ]------------ [ 99.974296][ T4486] VFS: brelse: Trying to free free buffer [ 99.976005][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 99.978350][ T4486] Modules linked in: [ 99.979479][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 99.982034][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 99.984803][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 99.986956][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 99.988412][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 99.989910][ T4486] sp : ffff80001f6977c0 [ 99.991070][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 99.993260][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 99.995491][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ed002060 [ 99.997729][ T4486] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 99.999944][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 100.002053][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.004326][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 100.006450][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.008585][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 100.010816][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 100.013126][ T4486] Call trace: [ 100.014100][ T4486] invalidate_bh_lru+0x128/0x234 [ 100.015458][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 100.017040][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 100.018490][ T4486] invalidate_bh_lrus+0x34/0x40 [ 100.019905][ T4486] blkdev_flush_mapping+0x168/0x31c [ 100.021283][ T4486] blkdev_put+0x490/0x6ac [ 100.022511][ T4486] blkdev_close+0x74/0xb0 [ 100.023729][ T4486] __fput+0x1c0/0x7f8 [ 100.024890][ T4486] ____fput+0x20/0x30 [ 100.025993][ T4486] task_work_run+0x12c/0x1e0 [ 100.027254][ T4486] do_notify_resume+0x24b4/0x3128 [ 100.028666][ T4486] el0_svc+0xf0/0x1e0 [ 100.029751][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 100.031190][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 100.032476][ T4486] irq event stamp: 101896 [ 100.033655][ T4486] hardirqs last enabled at (101895): [] kasan_quarantine_put+0xc4/0x204 [ 100.036433][ T4486] hardirqs last disabled at (101896): [] smp_call_function_many_cond+0xa44/0xeb0 [ 100.039443][ T4486] softirqs last enabled at (100536): [] local_bh_enable+0x10/0x34 [ 100.042124][ T4486] softirqs last disabled at (100534): [] local_bh_disable+0x10/0x34 [ 100.044740][ T4486] ---[ end trace 5ca76294e75f185c ]--- [ 100.054900][ T9] device veth1_macvtap left promiscuous mode [ 100.056814][ T9] device veth0_macvtap left promiscuous mode [ 100.058679][ T9] device veth1_vlan left promiscuous mode [ 100.060363][ T9] device veth0_vlan left promiscuous mode [ 100.086637][ T4936] loop0: detected capacity change from 0 to 128 [ 100.110523][ T4936] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 100.112704][ T4936] Bad inode number on dev loop0: 2 is out of range [ 100.115527][ T4936] SysV FS: get root inode failed [ 100.116859][ T4936] oldfs: cannot read superblock [ 100.118119][ T4936] ------------[ cut here ]------------ [ 100.119567][ T4936] VFS: brelse: Trying to free free buffer [ 100.121189][ T4936] WARNING: CPU: 0 PID: 4936 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 100.123596][ T4936] Modules linked in: [ 100.124677][ T4936] CPU: 0 PID: 4936 Comm: syz.0.23 Tainted: G W 5.15.187-syzkaller #0 [ 100.127249][ T4936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.130069][ T4936] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.132118][ T4936] pc : invalidate_bh_lru+0x128/0x234 [ 100.133637][ T4936] lr : invalidate_bh_lru+0x128/0x234 [ 100.135176][ T4936] sp : ffff80001f8576e0 [ 100.136323][ T4936] x29: ffff80001f8576e0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 100.138616][ T4936] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 100.140861][ T4936] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ed001ee0 [ 100.143055][ T4936] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 100.145310][ T4936] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 100.147538][ T4936] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.149747][ T4936] x11: 0000000000000002 x10: 0000000000000000 x9 : 87b2d7ba12983a00 [ 100.151977][ T4936] x8 : 87b2d7ba12983a00 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.154177][ T4936] x5 : ffff80001f856fd8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 100.156467][ T4936] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 100.158658][ T4936] Call trace: [ 100.159501][ T4936] invalidate_bh_lru+0x128/0x234 [ 100.160869][ T4936] smp_call_function_many_cond+0xa50/0xeb0 [ 100.162482][ T4936] on_each_cpu_cond_mask+0x5c/0xc4 [ 100.163848][ T4936] invalidate_bh_lrus+0x34/0x40 [ 100.165195][ T4936] blkdev_flush_mapping+0x168/0x31c [ 100.166641][ T4936] blkdev_put+0x490/0x6ac [ 100.167844][ T4936] kill_block_super+0x98/0xdc [ 100.169137][ T4936] deactivate_locked_super+0xb8/0x13c [ 100.170580][ T4936] mount_bdev+0x284/0x358 [ 100.171773][ T4936] sysv_mount+0x44/0x58 [ 100.172863][ T4936] legacy_get_tree+0xd4/0x16c [ 100.174133][ T4936] vfs_get_tree+0x90/0x274 [ 100.175373][ T4936] do_new_mount+0x228/0x810 [ 100.176595][ T4936] path_mount+0x5b4/0x1000 [ 100.177811][ T4936] __arm64_sys_mount+0x514/0x5e4 [ 100.179110][ T4936] invoke_syscall+0x98/0x2b8 [ 100.180325][ T4936] el0_svc_common+0x138/0x258 [ 100.181589][ T4936] do_el0_svc+0x58/0x14c [ 100.182805][ T4936] el0_svc+0x78/0x1e0 [ 100.183947][ T4936] el0t_64_sync_handler+0xcc/0xe4 [ 100.185378][ T4936] el0t_64_sync+0x1a0/0x1a4 [ 100.186593][ T4936] irq event stamp: 1186 [ 100.187699][ T4936] hardirqs last enabled at (1185): [] kasan_quarantine_put+0xc4/0x204 [ 100.190422][ T4936] hardirqs last disabled at (1186): [] smp_call_function_many_cond+0xa44/0xeb0 [ 100.193391][ T4936] softirqs last enabled at (1160): [] handle_softirqs+0xa4c/0xbf0 [ 100.196052][ T4936] softirqs last disabled at (1149): [] __irq_exit_rcu+0x240/0x440 [ 100.198783][ T4936] ---[ end trace 5ca76294e75f185d ]--- [ 100.382168][ T9] team0 (unregistering): Port device team_slave_1 removed [ 100.396432][ T4940] loop0: detected capacity change from 0 to 128 [ 100.400855][ T4940] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 100.401908][ T9] team0 (unregistering): Port device team_slave_0 removed [ 100.403504][ T4940] Bad inode number on dev loop0: 2 is out of range [ 100.411221][ T4940] SysV FS: get root inode failed [ 100.412692][ T4940] oldfs: cannot read superblock [ 100.419073][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 100.444132][ C0] ------------[ cut here ]------------ [ 100.445775][ C0] VFS: brelse: Trying to free free buffer [ 100.447442][ C0] WARNING: CPU: 0 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 100.449948][ C0] Modules linked in: [ 100.451015][ C0] CPU: 0 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 100.453733][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.456822][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.459017][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 100.460505][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 100.461942][ C0] sp : ffff800008007de0 [ 100.463078][ C0] x29: ffff800008007de0 x28: ffff0000c1bf9b40 x27: 1fffe0003421845c [ 100.465320][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 100.467582][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee89060 [ 100.469888][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 100.472195][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 100.474509][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.476814][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : abd15cb6bd53e700 [ 100.479039][ C0] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.481165][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 100.483079][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 100.485027][ C0] Call trace: [ 100.485970][ C0] invalidate_bh_lru+0x128/0x234 [ 100.487345][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 100.488971][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 100.490961][ C0] ipi_handler+0x10c/0x710 [ 100.492200][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 100.493735][ C0] handle_domain_irq+0x144/0x1fc [ 100.495100][ C0] gic_handle_irq+0x78/0x1c8 [ 100.496435][ C0] call_on_irq_stack+0x24/0x30 [ 100.497758][ C0] do_interrupt_handler+0x6c/0x88 [ 100.499166][ C0] el1_interrupt+0x30/0x58 [ 100.500381][ C0] el1h_64_irq_handler+0x18/0x24 [ 100.501816][ C0] el1h_64_irq+0x78/0x7c [ 100.503033][ C0] __sanitizer_cov_trace_pc+0x74/0xac [ 100.504623][ C0] arch_stack_walk+0x200/0x2b4 [ 100.506063][ C0] stack_trace_save+0x94/0xd8 [ 100.507363][ C0] __kasan_kmalloc+0xb0/0xf0 [ 100.508610][ C0] __kmalloc+0x298/0x44c [ 100.509722][ C0] tomoyo_encode+0x274/0x4a4 [ 100.511039][ C0] tomoyo_realpath_from_path+0x4bc/0x510 [ 100.512600][ C0] tomoyo_path_perm+0x1b4/0x440 [ 100.513954][ C0] tomoyo_inode_getattr+0x28/0x38 [ 100.515368][ C0] security_inode_getattr+0xd8/0x124 [ 100.516839][ C0] vfs_statx+0x118/0x458 [ 100.517998][ C0] __arm64_sys_newfstatat+0x10c/0x190 [ 100.519562][ C0] invoke_syscall+0x98/0x2b8 [ 100.520826][ C0] el0_svc_common+0x138/0x258 [ 100.522131][ C0] do_el0_svc+0x58/0x14c [ 100.523481][ C0] el0_svc+0x78/0x1e0 [ 100.524554][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 100.525949][ C0] el0t_64_sync+0x1a0/0x1a4 [ 100.527165][ C0] irq event stamp: 200934 [ 100.528288][ C0] hardirqs last enabled at (200933): [] ___slab_alloc+0xc34/0xda8 [ 100.530940][ C0] hardirqs last disabled at (200934): [] enter_el1_irq_or_nmi+0x10/0x1c [ 100.533482][ C0] softirqs last enabled at (200518): [] local_bh_enable+0x10/0x34 [ 100.536110][ C0] softirqs last disabled at (200516): [] local_bh_disable+0x10/0x34 [ 100.538793][ C0] ---[ end trace 5ca76294e75f185e ]--- [ 100.552719][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 100.620986][ T4944] loop0: detected capacity change from 0 to 128 [ 100.626268][ T4944] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 100.628324][ T4944] Bad inode number on dev loop0: 2 is out of range [ 100.630150][ T4944] SysV FS: get root inode failed [ 100.631580][ T4944] oldfs: cannot read superblock [ 100.651007][ T4486] ------------[ cut here ]------------ [ 100.652680][ T4486] VFS: brelse: Trying to free free buffer [ 100.654372][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 100.656745][ T4486] Modules linked in: [ 100.657869][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 100.660336][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.663106][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.665308][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 100.666826][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 100.668234][ T4486] sp : ffff80001f6977c0 [ 100.669404][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 100.671699][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 100.673917][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee89400 [ 100.676175][ T4486] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 100.678403][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 100.680611][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.682790][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 100.684996][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.687190][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 100.689437][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 100.691660][ T4486] Call trace: [ 100.692504][ T4486] invalidate_bh_lru+0x128/0x234 [ 100.693870][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 100.695533][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 100.696925][ T4486] invalidate_bh_lrus+0x34/0x40 [ 100.698253][ T4486] blkdev_flush_mapping+0x168/0x31c [ 100.699661][ T4486] blkdev_put+0x490/0x6ac [ 100.700864][ T4486] blkdev_close+0x74/0xb0 [ 100.702032][ T4486] __fput+0x1c0/0x7f8 [ 100.703188][ T4486] ____fput+0x20/0x30 [ 100.704320][ T4486] task_work_run+0x12c/0x1e0 [ 100.705675][ T4486] do_notify_resume+0x24b4/0x3128 [ 100.707069][ T4486] el0_svc+0xf0/0x1e0 [ 100.708175][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 100.709624][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 100.710903][ T4486] irq event stamp: 125116 [ 100.712050][ T4486] hardirqs last enabled at (125115): [] kasan_quarantine_put+0xc4/0x204 [ 100.714910][ T4486] hardirqs last disabled at (125116): [] smp_call_function_many_cond+0xa44/0xeb0 [ 100.717887][ T4486] softirqs last enabled at (122926): [] handle_softirqs+0xa4c/0xbf0 [ 100.720536][ T4486] softirqs last disabled at (122909): [] __irq_exit_rcu+0x240/0x440 [ 100.723260][ T4486] ---[ end trace 5ca76294e75f185f ]--- [ 100.783834][ T4946] loop0: detected capacity change from 0 to 128 [ 100.786013][ T9] bond0 (unregistering): Released all slaves [ 100.790178][ T4946] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 100.792215][ T4946] Bad inode number on dev loop0: 2 is out of range [ 100.794123][ T4946] SysV FS: get root inode failed [ 100.805012][ T4946] oldfs: cannot read superblock [ 100.811071][ T4486] ------------[ cut here ]------------ [ 100.812623][ T4486] VFS: brelse: Trying to free free buffer [ 100.814237][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 100.816747][ T4486] Modules linked in: [ 100.817780][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 100.820300][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.823072][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.825244][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 100.826763][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 100.828257][ T4486] sp : ffff80001f6977c0 [ 100.829450][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 100.831696][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 100.833901][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee897a0 [ 100.836070][ T4486] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 100.838253][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 100.840476][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.842627][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 100.844887][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.847074][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 100.849267][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 100.851552][ T4486] Call trace: [ 100.852381][ T4486] invalidate_bh_lru+0x128/0x234 [ 100.853720][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 100.855310][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 100.856805][ T4486] invalidate_bh_lrus+0x34/0x40 [ 100.858198][ T4486] blkdev_flush_mapping+0x168/0x31c [ 100.859702][ T4486] blkdev_put+0x490/0x6ac [ 100.860926][ T4486] blkdev_close+0x74/0xb0 [ 100.862088][ T4486] __fput+0x1c0/0x7f8 [ 100.863199][ T4486] ____fput+0x20/0x30 [ 100.864315][ T4486] task_work_run+0x12c/0x1e0 [ 100.865725][ T4486] do_notify_resume+0x24b4/0x3128 [ 100.867057][ T4486] el0_svc+0xf0/0x1e0 [ 100.868207][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 100.869582][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 100.870901][ T4486] irq event stamp: 129428 [ 100.872029][ T4486] hardirqs last enabled at (129427): [] kasan_quarantine_put+0xc4/0x204 [ 100.874850][ T4486] hardirqs last disabled at (129428): [] smp_call_function_many_cond+0xa44/0xeb0 [ 100.877775][ T4486] softirqs last enabled at (128568): [] local_bh_enable+0x10/0x34 [ 100.880437][ T4486] softirqs last disabled at (128566): [] local_bh_disable+0x10/0x34 [ 100.883178][ T4486] ---[ end trace 5ca76294e75f1860 ]--- [ 100.926456][ T4948] loop0: detected capacity change from 0 to 128 [ 100.930343][ T4948] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 100.932381][ T4948] Bad inode number on dev loop0: 2 is out of range [ 100.934192][ T4948] SysV FS: get root inode failed [ 100.938223][ T4948] oldfs: cannot read superblock [ 100.955679][ C0] ------------[ cut here ]------------ [ 100.957373][ C0] VFS: brelse: Trying to free free buffer [ 100.959239][ C0] WARNING: CPU: 0 PID: 4188 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 100.961729][ C0] Modules linked in: [ 100.962790][ C0] CPU: 0 PID: 4188 Comm: kworker/u4:6 Tainted: G W 5.15.187-syzkaller #0 [ 100.965555][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.968435][ C0] Workqueue: bat_events batadv_nc_worker [ 100.970068][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.972297][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 100.973760][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 100.975218][ C0] sp : ffff800008007de0 [ 100.976411][ C0] x29: ffff800008007de0 x28: ffff0000d6798000 x27: 1fffe0003421845c [ 100.978699][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 100.980882][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee89b40 [ 100.983112][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 100.985286][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 100.987501][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.989702][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 28dd1c7e45531d00 [ 100.991925][ C0] x8 : 28dd1c7e45531d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.994232][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 100.996403][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 100.998614][ C0] Call trace: [ 100.999517][ C0] invalidate_bh_lru+0x128/0x234 [ 101.000911][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 101.002573][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 101.004516][ C0] ipi_handler+0x10c/0x710 [ 101.005801][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 101.007319][ C0] handle_domain_irq+0x144/0x1fc [ 101.008749][ C0] gic_handle_irq+0x78/0x1c8 [ 101.010053][ C0] call_on_irq_stack+0x24/0x30 [ 101.011394][ C0] do_interrupt_handler+0x6c/0x88 [ 101.012801][ C0] el1_interrupt+0x30/0x58 [ 101.014025][ C0] el1h_64_irq_handler+0x18/0x24 [ 101.015413][ C0] el1h_64_irq+0x78/0x7c [ 101.016618][ C0] rcu_is_watching+0x18/0x134 [ 101.017944][ C0] lock_acquire+0xc4/0x620 [ 101.019141][ C0] rcu_lock_acquire+0x40/0x4c [ 101.020395][ C0] batadv_nc_process_nc_paths+0x9c/0x31c [ 101.021947][ C0] batadv_nc_worker+0x3a8/0x554 [ 101.023258][ C0] process_one_work+0x79c/0x1140 [ 101.024591][ C0] worker_thread+0x8f4/0x101c [ 101.025891][ C0] kthread+0x374/0x454 [ 101.027055][ C0] ret_from_fork+0x10/0x20 [ 101.028264][ C0] irq event stamp: 428644 [ 101.029503][ C0] hardirqs last enabled at (428643): [] __local_bh_enable_ip+0x1f8/0x380 [ 101.032246][ C0] hardirqs last disabled at (428644): [] enter_el1_irq_or_nmi+0x10/0x1c [ 101.034960][ C0] softirqs last enabled at (428642): [] batadv_nc_purge_paths+0x308/0x390 [ 101.037857][ C0] softirqs last disabled at (428640): [] batadv_nc_purge_paths+0xd0/0x390 [ 101.040825][ C0] ---[ end trace 5ca76294e75f1861 ]--- [ 101.108105][ T4950] loop0: detected capacity change from 0 to 128 [ 101.200004][ T4950] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.202019][ T4950] Bad inode number on dev loop0: 2 is out of range [ 101.203871][ T4950] SysV FS: get root inode failed [ 101.205315][ T4950] oldfs: cannot read superblock [ 101.221585][ C0] ------------[ cut here ]------------ [ 101.223175][ C0] VFS: brelse: Trying to free free buffer [ 101.224769][ C0] WARNING: CPU: 0 PID: 4951 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.227497][ C0] Modules linked in: [ 101.228561][ C0] CPU: 0 PID: 4951 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 101.231430][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 101.234222][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.236372][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 101.237845][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 101.239293][ C0] sp : ffff800008007de0 [ 101.240406][ C0] x29: ffff800008007de0 x28: ffff0000ce37d1c0 x27: 1fffe0003421845c [ 101.242624][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 101.244851][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee89ee0 [ 101.247132][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 101.249321][ C0] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 101.251559][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.253814][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : d58efc2f71940000 [ 101.256051][ C0] x8 : d58efc2f71940000 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.258365][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 101.260618][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 101.262848][ C0] Call trace: [ 101.263745][ C0] invalidate_bh_lru+0x128/0x234 [ 101.265095][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 101.266698][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 101.268583][ C0] ipi_handler+0x10c/0x710 [ 101.269816][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 101.271243][ C0] handle_domain_irq+0x144/0x1fc [ 101.272620][ C0] gic_handle_irq+0x78/0x1c8 [ 101.273852][ C0] call_on_irq_stack+0x24/0x30 [ 101.275119][ C0] do_interrupt_handler+0x6c/0x88 [ 101.276480][ C0] el1_interrupt+0x30/0x58 [ 101.277688][ C0] el1h_64_irq_handler+0x18/0x24 [ 101.279002][ C0] el1h_64_irq+0x78/0x7c [ 101.280171][ C0] __sanitizer_cov_trace_pc+0x74/0xac [ 101.281658][ C0] filemap_map_pages+0x9c4/0xc50 [ 101.282971][ C0] handle_mm_fault+0x19c0/0x2950 [ 101.284349][ C0] do_page_fault+0x694/0xad4 [ 101.285579][ C0] do_translation_fault+0xe0/0x130 [ 101.286934][ C0] do_mem_abort+0x6c/0x1ac [ 101.288127][ C0] el0_ia+0xe0/0x2d0 [ 101.289217][ C0] el0t_64_sync_handler+0xc0/0xe4 [ 101.290640][ C0] el0t_64_sync+0x1a0/0x1a4 [ 101.291886][ C0] irq event stamp: 914 [ 101.293055][ C0] hardirqs last enabled at (913): [] lock_page_memcg+0x110/0x234 [ 101.295604][ C0] hardirqs last disabled at (914): [] enter_el1_irq_or_nmi+0x10/0x1c [ 101.298296][ C0] softirqs last enabled at (54): [] local_bh_enable+0x10/0x34 [ 101.300818][ C0] softirqs last disabled at (52): [] local_bh_disable+0x10/0x34 [ 101.303317][ C0] ---[ end trace 5ca76294e75f1862 ]--- [ 101.314950][ T4055] Bluetooth: hci0: command 0x0419 tx timeout [ 101.338772][ T4952] loop0: detected capacity change from 0 to 128 [ 101.344319][ T4952] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.349561][ T4952] Bad inode number on dev loop0: 2 is out of range [ 101.351331][ T4952] SysV FS: get root inode failed [ 101.352579][ T4952] oldfs: cannot read superblock [ 101.396453][ T4645] ------------[ cut here ]------------ [ 101.397972][ T4645] VFS: brelse: Trying to free free buffer [ 101.399735][ T4645] WARNING: CPU: 1 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.402167][ T4645] Modules linked in: [ 101.403242][ T4645] CPU: 1 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 101.405877][ T4645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 101.408695][ T4645] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.410795][ T4645] pc : invalidate_bh_lru+0x128/0x234 [ 101.412266][ T4645] lr : invalidate_bh_lru+0x128/0x234 [ 101.413668][ T4645] sp : ffff80001fa26f70 [ 101.414836][ T4645] x29: ffff80001fa26f70 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 101.417093][ T4645] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 101.419281][ T4645] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ed002400 [ 101.421518][ T4645] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 101.423781][ T4645] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 101.425946][ T4645] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.428375][ T4645] x11: 0000000000000002 x10: 0000000000000000 x9 : abd15cb6bd53e700 [ 101.430668][ T4645] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.432867][ T4645] x5 : ffff80001fa26858 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 101.435173][ T4645] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 101.437387][ T4645] Call trace: [ 101.438273][ T4645] invalidate_bh_lru+0x128/0x234 [ 101.439606][ T4645] smp_call_function_many_cond+0xa50/0xeb0 [ 101.441261][ T4645] on_each_cpu_cond_mask+0x5c/0xc4 [ 101.442705][ T4645] invalidate_bh_lrus+0x34/0x40 [ 101.444036][ T4645] invalidate_bdev+0x90/0xc0 [ 101.445244][ T4645] __loop_clr_fd+0x4e4/0x978 [ 101.446557][ T4645] lo_ioctl+0xd90/0x1c08 [ 101.447674][ T4645] blkdev_ioctl+0x5f8/0xbb8 [ 101.448938][ T4645] block_ioctl+0xa4/0x118 [ 101.450081][ T4645] __arm64_sys_ioctl+0x14c/0x1c8 [ 101.451492][ T4645] invoke_syscall+0x98/0x2b8 [ 101.452741][ T4645] el0_svc_common+0x138/0x258 [ 101.453974][ T4645] do_el0_svc+0x58/0x14c [ 101.455092][ T4645] el0_svc+0x78/0x1e0 [ 101.456196][ T4645] el0t_64_sync_handler+0xcc/0xe4 [ 101.457517][ T4645] el0t_64_sync+0x1a0/0x1a4 [ 101.458738][ T4645] irq event stamp: 217368 [ 101.459898][ T4645] hardirqs last enabled at (217367): [] _raw_spin_unlock_irq+0x98/0x128 [ 101.462688][ T4645] hardirqs last disabled at (217368): [] smp_call_function_many_cond+0xa44/0xeb0 [ 101.465688][ T4645] softirqs last enabled at (216440): [] local_bh_enable+0x10/0x34 [ 101.468203][ T4645] softirqs last disabled at (216438): [] local_bh_disable+0x10/0x34 [ 101.470768][ T4645] ---[ end trace 5ca76294e75f1863 ]--- [ 101.497347][ T4954] loop0: detected capacity change from 0 to 128 [ 101.505044][ T4954] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.507187][ T4954] Bad inode number on dev loop0: 2 is out of range [ 101.508980][ T4954] SysV FS: get root inode failed [ 101.510286][ T4954] oldfs: cannot read superblock [ 101.538584][ C0] ------------[ cut here ]------------ [ 101.540121][ C0] VFS: brelse: Trying to free free buffer [ 101.541740][ C0] WARNING: CPU: 0 PID: 4955 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.544191][ C0] Modules linked in: [ 101.545264][ C0] CPU: 0 PID: 4955 Comm: syz.0.33 Tainted: G W 5.15.187-syzkaller #0 [ 101.547800][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 101.550590][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.552693][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 101.554244][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 101.555750][ C0] sp : ffff800008007de0 [ 101.556822][ C0] x29: ffff800008007de0 x28: ffff0000cd181b40 x27: 1fffe0003421845c [ 101.559016][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 101.561269][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee85318 [ 101.563509][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 101.565719][ C0] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 101.568014][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.570165][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : b4b0fbdc90347300 [ 101.572278][ C0] x8 : b4b0fbdc90347300 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.574516][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 101.576697][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 101.578892][ C0] Call trace: [ 101.579778][ C0] invalidate_bh_lru+0x128/0x234 [ 101.581147][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 101.582797][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 101.584671][ C0] ipi_handler+0x10c/0x710 [ 101.585862][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 101.587407][ C0] handle_domain_irq+0x144/0x1fc [ 101.588794][ C0] gic_handle_irq+0x78/0x1c8 [ 101.590017][ C0] call_on_irq_stack+0x24/0x30 [ 101.591391][ C0] do_interrupt_handler+0x6c/0x88 [ 101.592862][ C0] el1_interrupt+0x30/0x58 [ 101.594101][ C0] el1h_64_irq_handler+0x18/0x24 [ 101.595489][ C0] el1h_64_irq+0x78/0x7c [ 101.596695][ C0] __sanitizer_cov_trace_pc+0x18/0xac [ 101.598161][ C0] filemap_map_pages+0x9cc/0xc50 [ 101.599500][ C0] handle_mm_fault+0x19c0/0x2950 [ 101.600879][ C0] do_page_fault+0x694/0xad4 [ 101.602154][ C0] do_translation_fault+0xe0/0x130 [ 101.603577][ C0] do_mem_abort+0x6c/0x1ac [ 101.604804][ C0] el0_ia+0xe0/0x2d0 [ 101.605934][ C0] el0t_64_sync_handler+0xc0/0xe4 [ 101.607311][ C0] el0t_64_sync+0x1a0/0x1a4 [ 101.608557][ C0] irq event stamp: 1082 [ 101.609653][ C0] hardirqs last enabled at (1081): [] lock_page_memcg+0x110/0x234 [ 101.612202][ C0] hardirqs last disabled at (1082): [] enter_el1_irq_or_nmi+0x10/0x1c [ 101.614900][ C0] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 101.617411][ C0] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 101.620170][ C0] ---[ end trace 5ca76294e75f1864 ]--- [ 101.678892][ T4956] loop0: detected capacity change from 0 to 128 [ 101.718263][ T4956] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.720800][ T4956] Bad inode number on dev loop0: 2 is out of range [ 101.722533][ T4956] SysV FS: get root inode failed [ 101.723903][ T4956] oldfs: cannot read superblock [ 101.738327][ T4486] ------------[ cut here ]------------ [ 101.739890][ T4486] VFS: brelse: Trying to free free buffer [ 101.741548][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.743887][ T4486] Modules linked in: [ 101.744972][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 101.747414][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 101.750120][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.752337][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 101.753796][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 101.755212][ T4486] sp : ffff80001f6977c0 [ 101.756345][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 101.758481][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 101.760740][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee856b8 [ 101.762846][ T4486] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 101.765039][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 101.767243][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.769484][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 101.771743][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.773942][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 101.776054][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 101.778269][ T4486] Call trace: [ 101.779214][ T4486] invalidate_bh_lru+0x128/0x234 [ 101.780571][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 101.782155][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 101.783582][ T4486] invalidate_bh_lrus+0x34/0x40 [ 101.784916][ T4486] blkdev_flush_mapping+0x168/0x31c [ 101.786349][ T4486] blkdev_put+0x490/0x6ac [ 101.787516][ T4486] blkdev_close+0x74/0xb0 [ 101.788765][ T4486] __fput+0x1c0/0x7f8 [ 101.789850][ T4486] ____fput+0x20/0x30 [ 101.790902][ T4486] task_work_run+0x12c/0x1e0 [ 101.792122][ T4486] do_notify_resume+0x24b4/0x3128 [ 101.793457][ T4486] el0_svc+0xf0/0x1e0 [ 101.794537][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 101.795942][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 101.797142][ T4486] irq event stamp: 155178 [ 101.798356][ T4486] hardirqs last enabled at (155177): [] kasan_quarantine_put+0xc4/0x204 [ 101.801134][ T4486] hardirqs last disabled at (155178): [] smp_call_function_many_cond+0xa44/0xeb0 [ 101.804129][ T4486] softirqs last enabled at (154010): [] handle_softirqs+0xa4c/0xbf0 [ 101.806824][ T4486] softirqs last disabled at (153959): [] __irq_exit_rcu+0x240/0x440 [ 101.809379][ T4486] ---[ end trace 5ca76294e75f1865 ]--- [ 101.861063][ T4958] loop0: detected capacity change from 0 to 128 [ 101.867729][ T4958] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 101.869783][ T4958] Bad inode number on dev loop0: 2 is out of range [ 101.871502][ T4958] SysV FS: get root inode failed [ 101.872790][ T4958] oldfs: cannot read superblock [ 101.889967][ T4486] ------------[ cut here ]------------ [ 101.891560][ T4486] VFS: brelse: Trying to free free buffer [ 101.893222][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 101.895641][ T4486] Modules linked in: [ 101.896722][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 101.899257][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 101.902137][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.904248][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 101.905720][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 101.907193][ T4486] sp : ffff80001f6977c0 [ 101.908297][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 101.910469][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 101.912630][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ed0027a0 [ 101.914876][ T4486] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 101.916975][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 101.919170][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 101.921403][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 101.923586][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 101.925852][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 101.928043][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 101.930383][ T4486] Call trace: [ 101.931369][ T4486] invalidate_bh_lru+0x128/0x234 [ 101.932792][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 101.934424][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 101.935781][ T4486] invalidate_bh_lrus+0x34/0x40 [ 101.937056][ T4486] blkdev_flush_mapping+0x168/0x31c [ 101.938485][ T4486] blkdev_put+0x490/0x6ac [ 101.939689][ T4486] blkdev_close+0x74/0xb0 [ 101.940851][ T4486] __fput+0x1c0/0x7f8 [ 101.941940][ T4486] ____fput+0x20/0x30 [ 101.943104][ T4486] task_work_run+0x12c/0x1e0 [ 101.944409][ T4486] do_notify_resume+0x24b4/0x3128 [ 101.945781][ T4486] el0_svc+0xf0/0x1e0 [ 101.946837][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 101.948204][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 101.949434][ T4486] irq event stamp: 164196 [ 101.950597][ T4486] hardirqs last enabled at (164195): [] kasan_quarantine_put+0xc4/0x204 [ 101.953355][ T4486] hardirqs last disabled at (164196): [] smp_call_function_many_cond+0xa44/0xeb0 [ 101.956325][ T4486] softirqs last enabled at (162198): [] handle_softirqs+0xa4c/0xbf0 [ 101.959027][ T4486] softirqs last disabled at (162023): [] __irq_exit_rcu+0x240/0x440 [ 101.961757][ T4486] ---[ end trace 5ca76294e75f1866 ]--- [ 102.012814][ T4960] loop0: detected capacity change from 0 to 128 [ 102.017103][ T4960] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.019185][ T4960] Bad inode number on dev loop0: 2 is out of range [ 102.020933][ T4960] SysV FS: get root inode failed [ 102.022356][ T4960] oldfs: cannot read superblock [ 102.049835][ C0] ------------[ cut here ]------------ [ 102.051471][ C0] VFS: brelse: Trying to free free buffer [ 102.053213][ C0] WARNING: CPU: 0 PID: 3652 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.055666][ C0] Modules linked in: [ 102.056735][ C0] CPU: 0 PID: 3652 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 102.059308][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 102.062250][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.064345][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 102.065792][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 102.067205][ C0] sp : ffff800008007de0 [ 102.068316][ C0] x29: ffff800008007de0 x28: ffff0000d6d13680 x27: 1fffe0003421845b [ 102.070551][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 102.072711][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee85a58 [ 102.074947][ C0] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000010002 [ 102.077097][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 102.079253][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.081391][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 00f5ffe6053fcd00 [ 102.083569][ C0] x8 : 00f5ffe6053fcd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.085716][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 102.087831][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 102.089987][ C0] Call trace: [ 102.090838][ C0] invalidate_bh_lru+0x128/0x234 [ 102.092156][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 102.093759][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.095727][ C0] ipi_handler+0x10c/0x710 [ 102.096981][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 102.098492][ C0] handle_domain_irq+0x144/0x1fc [ 102.099835][ C0] gic_handle_irq+0x78/0x1c8 [ 102.100996][ C0] call_on_irq_stack+0x24/0x30 [ 102.102261][ C0] do_interrupt_handler+0x6c/0x88 [ 102.103650][ C0] el1_interrupt+0x30/0x58 [ 102.104872][ C0] el1h_64_irq_handler+0x18/0x24 [ 102.106218][ C0] el1h_64_irq+0x78/0x7c [ 102.107366][ C0] arch_local_irq_restore+0x8/0x10 [ 102.108850][ C0] ___might_sleep+0x48/0x4d4 [ 102.110075][ C0] __might_sleep+0x98/0x124 [ 102.111286][ C0] slab_pre_alloc_hook+0x58/0xec [ 102.112644][ C0] kmem_cache_alloc+0x94/0x3e4 [ 102.113923][ C0] security_file_alloc+0x38/0x11c [ 102.115237][ C0] __alloc_file+0xb0/0x240 [ 102.116427][ C0] alloc_empty_file+0xa0/0x184 [ 102.117704][ C0] path_openat+0xcc/0x26e4 [ 102.118861][ C0] do_filp_open+0x164/0x330 [ 102.120102][ C0] do_sys_openat2+0x128/0x3d8 [ 102.121333][ C0] __arm64_sys_openat+0x120/0x154 [ 102.122766][ C0] invoke_syscall+0x98/0x2b8 [ 102.123943][ C0] el0_svc_common+0x138/0x258 [ 102.125222][ C0] do_el0_svc+0x58/0x14c [ 102.126425][ C0] el0_svc+0x78/0x1e0 [ 102.127536][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 102.128954][ C0] el0t_64_sync+0x1a0/0x1a4 [ 102.130140][ C0] irq event stamp: 1093118 [ 102.131351][ C0] hardirqs last enabled at (1093117): [] el0_svc_common+0x9c/0x258 [ 102.134108][ C0] hardirqs last disabled at (1093118): [] enter_el1_irq_or_nmi+0x10/0x1c [ 102.136893][ C0] softirqs last enabled at (1093084): [] local_bh_enable+0x10/0x34 [ 102.139535][ C0] softirqs last disabled at (1093082): [] local_bh_disable+0x10/0x34 [ 102.142220][ C0] ---[ end trace 5ca76294e75f1867 ]--- [ 102.219550][ T4964] loop0: detected capacity change from 0 to 128 [ 102.223869][ T4964] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.229836][ T4964] Bad inode number on dev loop0: 2 is out of range [ 102.231685][ T4964] SysV FS: get root inode failed [ 102.233255][ T4964] oldfs: cannot read superblock [ 102.250190][ C1] ------------[ cut here ]------------ [ 102.251748][ C1] VFS: brelse: Trying to free free buffer [ 102.253495][ C1] WARNING: CPU: 1 PID: 4966 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.255924][ C1] Modules linked in: [ 102.256989][ C1] CPU: 1 PID: 4966 Comm: syz.0.38 Tainted: G W 5.15.187-syzkaller #0 [ 102.259539][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 102.262333][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.264542][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 102.266046][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 102.267563][ C1] sp : ffff800008017de0 [ 102.268745][ C1] x29: ffff800008017de0 x28: ffff0000ce00d1c0 x27: 1fffe0003421c65c [ 102.270989][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 102.273224][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000ed002df8 [ 102.275467][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 102.277710][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 102.279909][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.282104][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 5762204d52190600 [ 102.284403][ C1] x8 : 5762204d52190600 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.286633][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 102.288917][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 102.291189][ C1] Call trace: [ 102.292121][ C1] invalidate_bh_lru+0x128/0x234 [ 102.293433][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 102.295107][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.297085][ C1] ipi_handler+0x10c/0x710 [ 102.298341][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 102.299977][ C1] handle_domain_irq+0x144/0x1fc [ 102.301386][ C1] gic_handle_irq+0x78/0x1c8 [ 102.302608][ C1] call_on_irq_stack+0x24/0x30 [ 102.303867][ C1] do_interrupt_handler+0x6c/0x88 [ 102.305239][ C1] el0_interrupt+0x94/0x260 [ 102.306494][ C1] __el0_irq_handler_common+0x18/0x24 [ 102.307965][ C1] el0t_64_irq_handler+0x10/0x1c [ 102.309340][ C1] el0t_64_irq+0x1a0/0x1a4 [ 102.310575][ C1] irq event stamp: 216 [ 102.311688][ C1] hardirqs last enabled at (215): [] el0t_64_sync_handler+0xd8/0xe4 [ 102.314261][ C1] hardirqs last disabled at (216): [] __el0_irq_handler_common+0x18/0x24 [ 102.317053][ C1] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 102.319589][ C1] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 102.322181][ C1] ---[ end trace 5ca76294e75f1868 ]--- [ 102.378119][ T4966] loop0: detected capacity change from 0 to 128 [ 102.381463][ T4966] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.383422][ T4966] Bad inode number on dev loop0: 2 is out of range [ 102.387289][ T4966] SysV FS: get root inode failed [ 102.388720][ T4966] oldfs: cannot read superblock [ 102.406535][ C0] ------------[ cut here ]------------ [ 102.408126][ C0] VFS: brelse: Trying to free free buffer [ 102.409710][ C0] WARNING: CPU: 0 PID: 4967 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.412161][ C0] Modules linked in: [ 102.413236][ C0] CPU: 0 PID: 4967 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 102.415922][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 102.418762][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.420928][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 102.422409][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 102.423895][ C0] sp : ffff800008007de0 [ 102.425036][ C0] x29: ffff800008007de0 x28: ffff0000ce5c3680 x27: 1fffe0003421845c [ 102.427258][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 102.429464][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee85df8 [ 102.431719][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 102.433937][ C0] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 102.436181][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.438430][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 6a1ea5a5d5453a00 [ 102.440604][ C0] x8 : 6a1ea5a5d5453a00 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.442778][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 102.445002][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 102.447182][ C0] Call trace: [ 102.448064][ C0] invalidate_bh_lru+0x128/0x234 [ 102.449395][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 102.451138][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.453052][ C0] ipi_handler+0x10c/0x710 [ 102.454239][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 102.455696][ C0] handle_domain_irq+0x144/0x1fc [ 102.457022][ C0] gic_handle_irq+0x78/0x1c8 [ 102.458283][ C0] call_on_irq_stack+0x24/0x30 [ 102.459633][ C0] do_interrupt_handler+0x6c/0x88 [ 102.460950][ C0] el1_interrupt+0x30/0x58 [ 102.462200][ C0] el1h_64_irq_handler+0x18/0x24 [ 102.463631][ C0] el1h_64_irq+0x78/0x7c [ 102.464770][ C0] __rcu_read_unlock+0x78/0x108 [ 102.466099][ C0] __unlock_page_memcg+0xdc/0xf8 [ 102.467421][ C0] unlock_page_memcg+0x4c/0x5c [ 102.468748][ C0] page_add_file_rmap+0x660/0x8e4 [ 102.470107][ C0] do_set_pte+0x394/0x4e0 [ 102.471276][ C0] filemap_map_pages+0x9c4/0xc50 [ 102.472593][ C0] handle_mm_fault+0x19c0/0x2950 [ 102.473965][ C0] do_page_fault+0x694/0xad4 [ 102.475177][ C0] do_translation_fault+0xe0/0x130 [ 102.476660][ C0] do_mem_abort+0x6c/0x1ac [ 102.477897][ C0] el0_da+0x90/0x1fc [ 102.479039][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 102.480371][ C0] el0t_64_sync+0x1a0/0x1a4 [ 102.481629][ C0] irq event stamp: 536 [ 102.482741][ C0] hardirqs last enabled at (535): [] lock_page_memcg+0x110/0x234 [ 102.485237][ C0] hardirqs last disabled at (536): [] enter_el1_irq_or_nmi+0x10/0x1c [ 102.487894][ C0] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 102.490356][ C0] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 102.492864][ C0] ---[ end trace 5ca76294e75f1869 ]--- [ 102.540194][ T4968] loop0: detected capacity change from 0 to 128 [ 102.578535][ T4968] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.580727][ T4968] Bad inode number on dev loop0: 2 is out of range [ 102.582579][ T4968] SysV FS: get root inode failed [ 102.586710][ T4968] oldfs: cannot read superblock [ 102.598502][ C0] ------------[ cut here ]------------ [ 102.600078][ C0] VFS: brelse: Trying to free free buffer [ 102.601689][ C0] WARNING: CPU: 0 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.604123][ C0] Modules linked in: [ 102.605170][ C0] CPU: 0 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 102.607836][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 102.610623][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.612724][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 102.614185][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 102.615685][ C0] sp : ffff800008007de0 [ 102.616822][ C0] x29: ffff800008007de0 x28: ffff0000c1bf9b40 x27: 1fffe0003421845c [ 102.619019][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 102.621271][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee82230 [ 102.623424][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 102.625592][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 102.627807][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.629973][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : abd15cb6bd53e700 [ 102.632170][ C0] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.634412][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 102.636721][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 102.638922][ C0] Call trace: [ 102.639819][ C0] invalidate_bh_lru+0x128/0x234 [ 102.641181][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 102.642931][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.644880][ C0] ipi_handler+0x10c/0x710 [ 102.646080][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 102.647608][ C0] handle_domain_irq+0x144/0x1fc [ 102.648969][ C0] gic_handle_irq+0x78/0x1c8 [ 102.650251][ C0] call_on_irq_stack+0x24/0x30 [ 102.651608][ C0] do_interrupt_handler+0x6c/0x88 [ 102.653017][ C0] el1_interrupt+0x30/0x58 [ 102.654247][ C0] el1h_64_irq_handler+0x18/0x24 [ 102.655607][ C0] el1h_64_irq+0x78/0x7c [ 102.656772][ C0] seqcount_lockdep_reader_access+0x15c/0x230 [ 102.658376][ C0] bad_range+0xa0/0x2a0 [ 102.659538][ C0] get_page_from_freelist+0x2954/0x2aa8 [ 102.661079][ C0] __alloc_pages+0x1a0/0x470 [ 102.662320][ C0] alloc_pages+0x34c/0x5c0 [ 102.663588][ C0] __vmalloc_node_range+0x514/0x8d8 [ 102.665018][ C0] vzalloc+0x118/0x190 [ 102.666151][ C0] alloc_counters+0x84/0x7a4 [ 102.667508][ C0] do_ip6t_get_ctl+0xaf4/0x13a8 [ 102.668846][ C0] nf_getsockopt+0x264/0x284 [ 102.670136][ C0] ipv6_getsockopt+0x52c/0x2584 [ 102.671562][ C0] tcp_getsockopt+0x214/0x2e74 [ 102.672866][ C0] sock_common_getsockopt+0xa8/0xc4 [ 102.674320][ C0] __sys_getsockopt+0x1e0/0x45c [ 102.675688][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 102.677040][ C0] invoke_syscall+0x98/0x2b8 [ 102.678307][ C0] el0_svc_common+0x138/0x258 [ 102.679626][ C0] do_el0_svc+0x58/0x14c [ 102.680878][ C0] el0_svc+0x78/0x1e0 [ 102.681960][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 102.683307][ C0] el0t_64_sync+0x1a0/0x1a4 [ 102.684549][ C0] irq event stamp: 244682 [ 102.685692][ C0] hardirqs last enabled at (244681): [] seqcount_lockdep_reader_access+0x14c/0x230 [ 102.688600][ C0] hardirqs last disabled at (244682): [] enter_el1_irq_or_nmi+0x10/0x1c [ 102.691224][ C0] softirqs last enabled at (244632): [] local_bh_enable+0x10/0x34 [ 102.693856][ C0] softirqs last disabled at (244630): [] local_bh_disable+0x10/0x34 [ 102.696491][ C0] ---[ end trace 5ca76294e75f186a ]--- [ 102.746114][ T4970] loop0: detected capacity change from 0 to 128 [ 102.754612][ T4970] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.756759][ T4970] Bad inode number on dev loop0: 2 is out of range [ 102.758562][ T4970] SysV FS: get root inode failed [ 102.759873][ T4970] oldfs: cannot read superblock [ 102.784080][ T4486] ------------[ cut here ]------------ [ 102.785696][ T4486] VFS: brelse: Trying to free free buffer [ 102.787390][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.789888][ T4486] Modules linked in: [ 102.790944][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 102.793410][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 102.796140][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.798211][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 102.799674][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 102.801091][ T4486] sp : ffff80001f6977c0 [ 102.802215][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 102.804376][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 102.806575][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee825d0 [ 102.808736][ T4486] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 102.810833][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 102.812960][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.815143][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 102.817343][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.819517][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 102.821720][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 102.823821][ T4486] Call trace: [ 102.824690][ T4486] invalidate_bh_lru+0x128/0x234 [ 102.826013][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 102.827678][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 102.829066][ T4486] invalidate_bh_lrus+0x34/0x40 [ 102.830392][ T4486] blkdev_flush_mapping+0x168/0x31c [ 102.831801][ T4486] blkdev_put+0x490/0x6ac [ 102.832951][ T4486] blkdev_close+0x74/0xb0 [ 102.834147][ T4486] __fput+0x1c0/0x7f8 [ 102.835146][ T4486] ____fput+0x20/0x30 [ 102.836091][ T4486] task_work_run+0x12c/0x1e0 [ 102.837230][ T4486] do_notify_resume+0x24b4/0x3128 [ 102.838444][ T4486] el0_svc+0xf0/0x1e0 [ 102.839573][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 102.840973][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 102.842147][ T4486] irq event stamp: 192346 [ 102.843321][ T4486] hardirqs last enabled at (192345): [] kasan_quarantine_put+0xc4/0x204 [ 102.846049][ T4486] hardirqs last disabled at (192346): [] smp_call_function_many_cond+0xa44/0xeb0 [ 102.848917][ T4486] softirqs last enabled at (190068): [] local_bh_enable+0x10/0x34 [ 102.851567][ T4486] softirqs last disabled at (190066): [] local_bh_disable+0x10/0x34 [ 102.854110][ T4486] ---[ end trace 5ca76294e75f186b ]--- [ 102.886127][ T4972] loop0: detected capacity change from 0 to 128 [ 102.899602][ T4972] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 102.901532][ T4972] Bad inode number on dev loop0: 2 is out of range [ 102.903212][ T4972] SysV FS: get root inode failed [ 102.905495][ T4972] oldfs: cannot read superblock [ 102.932637][ C1] ------------[ cut here ]------------ [ 102.934159][ C1] VFS: brelse: Trying to free free buffer [ 102.935778][ C1] WARNING: CPU: 1 PID: 3652 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 102.938153][ C1] Modules linked in: [ 102.939195][ C1] CPU: 1 PID: 3652 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 102.941713][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 102.944524][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 102.946688][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 102.948091][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 102.949559][ C1] sp : ffff800008017de0 [ 102.950669][ C1] x29: ffff800008017de0 x28: ffff0000d6d13680 x27: 1fffe0003421c65c [ 102.952845][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 102.954999][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def6fee0 [ 102.957199][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010004 [ 102.959344][ C1] x17: 0000000000010004 x16: ffff8000111d162c x15: 00000000ffffffff [ 102.961547][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 102.963714][ C1] x11: 0000000000010003 x10: 0000000000010003 x9 : 00f5ffe6053fcd00 [ 102.965986][ C1] x8 : 00f5ffe6053fcd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 102.968157][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 102.970283][ C1] x2 : 0000000000000001 x1 : 0000000100010003 x0 : 0000000000000027 [ 102.972432][ C1] Call trace: [ 102.973316][ C1] invalidate_bh_lru+0x128/0x234 [ 102.974670][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 102.976244][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 102.978137][ C1] ipi_handler+0x10c/0x710 [ 102.979338][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 102.980853][ C1] handle_domain_irq+0x144/0x1fc [ 102.982182][ C1] gic_handle_irq+0x78/0x1c8 [ 102.983473][ C1] call_on_irq_stack+0x24/0x30 [ 102.984753][ C1] do_interrupt_handler+0x6c/0x88 [ 102.986142][ C1] el1_interrupt+0x30/0x58 [ 102.987303][ C1] el1h_64_irq_handler+0x18/0x24 [ 102.988668][ C1] el1h_64_irq+0x78/0x7c [ 102.989867][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 102.991402][ C1] get_partial_node+0x240/0x2b8 [ 102.992762][ C1] ___slab_alloc+0x3ac/0xda8 [ 102.993962][ C1] __slab_alloc+0x68/0xc0 [ 102.995144][ C1] kmem_cache_alloc+0x2ac/0x3e4 [ 102.996434][ C1] __alloc_file+0x30/0x240 [ 102.997641][ C1] alloc_empty_file+0xa0/0x184 [ 102.998955][ C1] path_openat+0xcc/0x26e4 [ 103.000180][ C1] do_filp_open+0x164/0x330 [ 103.001371][ C1] do_sys_openat2+0x128/0x3d8 [ 103.002742][ C1] __arm64_sys_openat+0x120/0x154 [ 103.004105][ C1] invoke_syscall+0x98/0x2b8 [ 103.005391][ C1] el0_svc_common+0x138/0x258 [ 103.006717][ C1] do_el0_svc+0x58/0x14c [ 103.007882][ C1] el0_svc+0x78/0x1e0 [ 103.008951][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 103.010359][ C1] el0t_64_sync+0x1a0/0x1a4 [ 103.011603][ C1] irq event stamp: 1105758 [ 103.012762][ C1] hardirqs last enabled at (1105757): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 103.015670][ C1] hardirqs last disabled at (1105758): [] enter_el1_irq_or_nmi+0x10/0x1c [ 103.018471][ C1] softirqs last enabled at (1105714): [] local_bh_enable+0x10/0x34 [ 103.021080][ C1] softirqs last disabled at (1105712): [] local_bh_disable+0x10/0x34 [ 103.023655][ C1] ---[ end trace 5ca76294e75f186c ]--- [ 103.110465][ T4976] loop0: detected capacity change from 0 to 128 [ 103.116541][ T4976] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.118543][ T4976] Bad inode number on dev loop0: 2 is out of range [ 103.120289][ T4976] SysV FS: get root inode failed [ 103.121636][ T4976] oldfs: cannot read superblock [ 103.123035][ T4976] ------------[ cut here ]------------ [ 103.124517][ T4976] VFS: brelse: Trying to free free buffer [ 103.126160][ T4976] WARNING: CPU: 1 PID: 4976 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.128614][ T4976] Modules linked in: [ 103.129654][ T4976] CPU: 1 PID: 4976 Comm: syz.0.43 Tainted: G W 5.15.187-syzkaller #0 [ 103.132289][ T4976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 103.135049][ T4976] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.137192][ T4976] pc : invalidate_bh_lru+0x128/0x234 [ 103.138619][ T4976] lr : invalidate_bh_lru+0x128/0x234 [ 103.140052][ T4976] sp : ffff80001fca76e0 [ 103.141170][ T4976] x29: ffff80001fca76e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 103.143392][ T4976] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 103.145608][ T4976] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def6f318 [ 103.147869][ T4976] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 103.150053][ T4976] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 103.152219][ T4976] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.154411][ T4976] x11: 0000000000000002 x10: 0000000000000000 x9 : 443b35d9ccf54200 [ 103.156661][ T4976] x8 : 443b35d9ccf54200 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.158928][ T4976] x5 : ffff80001fca6fd8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 103.161152][ T4976] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 103.163535][ T4976] Call trace: [ 103.164439][ T4976] invalidate_bh_lru+0x128/0x234 [ 103.165878][ T4976] smp_call_function_many_cond+0xa50/0xeb0 [ 103.167460][ T4976] on_each_cpu_cond_mask+0x5c/0xc4 [ 103.168893][ T4976] invalidate_bh_lrus+0x34/0x40 [ 103.170230][ T4976] blkdev_flush_mapping+0x168/0x31c [ 103.171694][ T4976] blkdev_put+0x490/0x6ac [ 103.172895][ T4976] kill_block_super+0x98/0xdc [ 103.174142][ T4976] deactivate_locked_super+0xb8/0x13c [ 103.175635][ T4976] mount_bdev+0x284/0x358 [ 103.176829][ T4976] sysv_mount+0x44/0x58 [ 103.177996][ T4976] legacy_get_tree+0xd4/0x16c [ 103.179269][ T4976] vfs_get_tree+0x90/0x274 [ 103.180511][ T4976] do_new_mount+0x228/0x810 [ 103.181713][ T4976] path_mount+0x5b4/0x1000 [ 103.182977][ T4976] __arm64_sys_mount+0x514/0x5e4 [ 103.184290][ T4976] invoke_syscall+0x98/0x2b8 [ 103.185543][ T4976] el0_svc_common+0x138/0x258 [ 103.186781][ T4976] do_el0_svc+0x58/0x14c [ 103.187893][ T4976] el0_svc+0x78/0x1e0 [ 103.189020][ T4976] el0t_64_sync_handler+0xcc/0xe4 [ 103.190358][ T4976] el0t_64_sync+0x1a0/0x1a4 [ 103.191567][ T4976] irq event stamp: 1070 [ 103.192657][ T4976] hardirqs last enabled at (1069): [] kasan_quarantine_put+0xc4/0x204 [ 103.195291][ T4976] hardirqs last disabled at (1070): [] smp_call_function_many_cond+0xa44/0xeb0 [ 103.198081][ T4976] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 103.200478][ T4976] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 103.202883][ T4976] ---[ end trace 5ca76294e75f186d ]--- [ 103.329242][ T4978] loop0: detected capacity change from 0 to 128 [ 103.347584][ T4978] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.349584][ T4978] Bad inode number on dev loop0: 2 is out of range [ 103.351367][ T4978] SysV FS: get root inode failed [ 103.352686][ T4978] oldfs: cannot read superblock [ 103.370442][ T4486] ------------[ cut here ]------------ [ 103.371936][ T4486] VFS: brelse: Trying to free free buffer [ 103.373556][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.375977][ T4486] Modules linked in: [ 103.377013][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 103.379460][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 103.382262][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.384412][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 103.385925][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 103.387457][ T4486] sp : ffff80001f6977c0 [ 103.388829][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 103.390949][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 103.393181][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee82970 [ 103.395332][ T4486] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 103.397575][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 103.399755][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.401905][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 103.404098][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.406445][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 103.408635][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 103.410839][ T4486] Call trace: [ 103.411705][ T4486] invalidate_bh_lru+0x128/0x234 [ 103.413134][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 103.414692][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 103.416120][ T4486] invalidate_bh_lrus+0x34/0x40 [ 103.417395][ T4486] blkdev_flush_mapping+0x168/0x31c [ 103.418833][ T4486] blkdev_put+0x490/0x6ac [ 103.419975][ T4486] blkdev_close+0x74/0xb0 [ 103.421139][ T4486] __fput+0x1c0/0x7f8 [ 103.422211][ T4486] ____fput+0x20/0x30 [ 103.423256][ T4486] task_work_run+0x12c/0x1e0 [ 103.424548][ T4486] do_notify_resume+0x24b4/0x3128 [ 103.425923][ T4486] el0_svc+0xf0/0x1e0 [ 103.427012][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 103.428452][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 103.429692][ T4486] irq event stamp: 209052 [ 103.430916][ T4486] hardirqs last enabled at (209051): [] kasan_quarantine_put+0xc4/0x204 [ 103.433616][ T4486] hardirqs last disabled at (209052): [] smp_call_function_many_cond+0xa44/0xeb0 [ 103.436559][ T4486] softirqs last enabled at (207440): [] handle_softirqs+0xa4c/0xbf0 [ 103.439157][ T4486] softirqs last disabled at (207335): [] __irq_exit_rcu+0x240/0x440 [ 103.441712][ T4486] ---[ end trace 5ca76294e75f186e ]--- [ 103.535237][ T4980] loop0: detected capacity change from 0 to 128 [ 103.558317][ T4980] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.560393][ T4980] Bad inode number on dev loop0: 2 is out of range [ 103.562136][ T4980] SysV FS: get root inode failed [ 103.563534][ T4980] oldfs: cannot read superblock [ 103.579041][ T4486] ------------[ cut here ]------------ [ 103.580591][ T4486] VFS: brelse: Trying to free free buffer [ 103.582241][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.584679][ T4486] Modules linked in: [ 103.585724][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 103.588301][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 103.591125][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.593258][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 103.594704][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 103.596183][ T4486] sp : ffff80001f6977c0 [ 103.597336][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 103.599475][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 103.601769][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee82d10 [ 103.603970][ T4486] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 103.606164][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 103.608435][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.610592][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 103.612813][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.615066][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 103.617293][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 103.619545][ T4486] Call trace: [ 103.620474][ T4486] invalidate_bh_lru+0x128/0x234 [ 103.621899][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 103.623515][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 103.624934][ T4486] invalidate_bh_lrus+0x34/0x40 [ 103.626339][ T4486] blkdev_flush_mapping+0x168/0x31c [ 103.627809][ T4486] blkdev_put+0x490/0x6ac [ 103.628996][ T4486] blkdev_close+0x74/0xb0 [ 103.630158][ T4486] __fput+0x1c0/0x7f8 [ 103.631265][ T4486] ____fput+0x20/0x30 [ 103.632344][ T4486] task_work_run+0x12c/0x1e0 [ 103.633635][ T4486] do_notify_resume+0x24b4/0x3128 [ 103.635013][ T4486] el0_svc+0xf0/0x1e0 [ 103.636191][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 103.637612][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 103.638861][ T4486] irq event stamp: 215056 [ 103.640027][ T4486] hardirqs last enabled at (215055): [] kasan_quarantine_put+0xc4/0x204 [ 103.642838][ T4486] hardirqs last disabled at (215056): [] smp_call_function_many_cond+0xa44/0xeb0 [ 103.645785][ T4486] softirqs last enabled at (213750): [] handle_softirqs+0xa4c/0xbf0 [ 103.648469][ T4486] softirqs last disabled at (213739): [] __irq_exit_rcu+0x240/0x440 [ 103.651029][ T4486] ---[ end trace 5ca76294e75f186f ]--- [ 103.686177][ T4982] loop0: detected capacity change from 0 to 128 [ 103.756730][ T4982] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.758792][ T4982] Bad inode number on dev loop0: 2 is out of range [ 103.760558][ T4982] SysV FS: get root inode failed [ 103.761910][ T4982] oldfs: cannot read superblock [ 103.787632][ T4486] ------------[ cut here ]------------ [ 103.789192][ T4486] VFS: brelse: Trying to free free buffer [ 103.790889][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.793381][ T4486] Modules linked in: [ 103.794568][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 103.797110][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 103.799921][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.802109][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 103.803630][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 103.805038][ T4486] sp : ffff80001f6977c0 [ 103.806164][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 103.808377][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 103.810572][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee7e148 [ 103.812800][ T4486] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 103.814993][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 103.817097][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.819252][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 103.821396][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.823574][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 103.825757][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 103.828061][ T4486] Call trace: [ 103.828959][ T4486] invalidate_bh_lru+0x128/0x234 [ 103.830261][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 103.831898][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 103.833363][ T4486] invalidate_bh_lrus+0x34/0x40 [ 103.834688][ T4486] blkdev_flush_mapping+0x168/0x31c [ 103.836052][ T4486] blkdev_put+0x490/0x6ac [ 103.837198][ T4486] blkdev_close+0x74/0xb0 [ 103.838454][ T4486] __fput+0x1c0/0x7f8 [ 103.839637][ T4486] ____fput+0x20/0x30 [ 103.840740][ T4486] task_work_run+0x12c/0x1e0 [ 103.841993][ T4486] do_notify_resume+0x24b4/0x3128 [ 103.843487][ T4486] el0_svc+0xf0/0x1e0 [ 103.844568][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 103.845952][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 103.847201][ T4486] irq event stamp: 220032 [ 103.848367][ T4486] hardirqs last enabled at (220031): [] kasan_quarantine_put+0xc4/0x204 [ 103.851092][ T4486] hardirqs last disabled at (220032): [] smp_call_function_many_cond+0xa44/0xeb0 [ 103.854103][ T4486] softirqs last enabled at (219460): [] local_bh_enable+0x10/0x34 [ 103.856834][ T4486] softirqs last disabled at (219458): [] local_bh_disable+0x10/0x34 [ 103.859549][ T4486] ---[ end trace 5ca76294e75f1870 ]--- [ 103.919832][ T4984] loop0: detected capacity change from 0 to 128 [ 103.933151][ T4984] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 103.944491][ T4984] Bad inode number on dev loop0: 2 is out of range [ 103.946264][ T4984] SysV FS: get root inode failed [ 103.947603][ T4984] oldfs: cannot read superblock [ 103.950763][ C1] ------------[ cut here ]------------ [ 103.952287][ C1] VFS: brelse: Trying to free free buffer [ 103.953888][ C1] WARNING: CPU: 1 PID: 4984 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 103.956251][ C1] Modules linked in: [ 103.957324][ C1] CPU: 1 PID: 4984 Comm: syz.0.47 Tainted: G W 5.15.187-syzkaller #0 [ 103.959962][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 103.962755][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 103.964917][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 103.966429][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 103.967842][ C1] sp : ffff800008017de0 [ 103.969038][ C1] x29: ffff800008017de0 x28: ffff0000d894b680 x27: 1fffe0003421c65c [ 103.971322][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 103.973527][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def6f6b8 [ 103.975680][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 103.977861][ C1] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 103.980066][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 103.982226][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 8224243a10e5cb00 [ 103.984497][ C1] x8 : 8224243a10e5cb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 103.986692][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 103.988921][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 103.991079][ C1] Call trace: [ 103.991986][ C1] invalidate_bh_lru+0x128/0x234 [ 103.993341][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 103.995013][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 103.996878][ C1] ipi_handler+0x10c/0x710 [ 103.998107][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 103.999681][ C1] handle_domain_irq+0x144/0x1fc [ 104.001129][ C1] gic_handle_irq+0x78/0x1c8 [ 104.002387][ C1] call_on_irq_stack+0x24/0x30 [ 104.003700][ C1] do_interrupt_handler+0x6c/0x88 [ 104.005126][ C1] el1_interrupt+0x30/0x58 [ 104.006393][ C1] el1h_64_irq_handler+0x18/0x24 [ 104.007788][ C1] el1h_64_irq+0x78/0x7c [ 104.008971][ C1] unmap_page_range+0x9f8/0x1958 [ 104.010402][ C1] unmap_single_vma+0x13c/0x1e4 [ 104.011760][ C1] unmap_vmas+0x104/0x200 [ 104.012987][ C1] exit_mmap+0x2a8/0x4e0 [ 104.014147][ C1] __mmput+0xec/0x3b8 [ 104.015188][ C1] mmput+0x80/0xc8 [ 104.016217][ C1] exit_mm+0x4a0/0x684 [ 104.017338][ C1] do_exit+0x4ec/0x1f58 [ 104.018476][ C1] do_group_exit+0x100/0x268 [ 104.019708][ C1] get_signal+0x73c/0x1340 [ 104.020876][ C1] do_notify_resume+0x35c/0x3128 [ 104.022220][ C1] el0_svc+0xf0/0x1e0 [ 104.023295][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 104.024769][ C1] el0t_64_sync+0x1a0/0x1a4 [ 104.026022][ C1] irq event stamp: 2100 [ 104.027205][ C1] hardirqs last enabled at (2099): [] lock_page_memcg+0x110/0x234 [ 104.029884][ C1] hardirqs last disabled at (2100): [] enter_el1_irq_or_nmi+0x10/0x1c [ 104.032545][ C1] softirqs last enabled at (1252): [] handle_softirqs+0xa4c/0xbf0 [ 104.035193][ C1] softirqs last disabled at (1237): [] __irq_exit_rcu+0x240/0x440 [ 104.037783][ C1] ---[ end trace 5ca76294e75f1871 ]--- 1970/01/01 00:01:44 executed programs: 35 [ 104.099800][ T4986] loop0: detected capacity change from 0 to 128 [ 104.138087][ T4986] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.145130][ T4986] Bad inode number on dev loop0: 2 is out of range [ 104.146924][ T4986] SysV FS: get root inode failed [ 104.148213][ T4986] oldfs: cannot read superblock [ 104.157521][ T4645] ------------[ cut here ]------------ [ 104.159071][ T4645] VFS: brelse: Trying to free free buffer [ 104.160685][ T4645] WARNING: CPU: 1 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.163001][ T4645] Modules linked in: [ 104.164036][ T4645] CPU: 1 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 104.166546][ T4645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 104.169232][ T4645] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.171267][ T4645] pc : invalidate_bh_lru+0x128/0x234 [ 104.172718][ T4645] lr : invalidate_bh_lru+0x128/0x234 [ 104.174073][ T4645] sp : ffff80001fa277c0 [ 104.175216][ T4645] x29: ffff80001fa277c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 104.177340][ T4645] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 104.179517][ T4645] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def6fa58 [ 104.181694][ T4645] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 104.183819][ T4645] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 104.186005][ T4645] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.188133][ T4645] x11: 0000000000000002 x10: 0000000000000000 x9 : abd15cb6bd53e700 [ 104.190339][ T4645] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.192468][ T4645] x5 : ffff80001fa270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 104.194594][ T4645] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 104.196770][ T4645] Call trace: [ 104.197712][ T4645] invalidate_bh_lru+0x128/0x234 [ 104.199018][ T4645] smp_call_function_many_cond+0xa50/0xeb0 [ 104.200623][ T4645] on_each_cpu_cond_mask+0x5c/0xc4 [ 104.202000][ T4645] invalidate_bh_lrus+0x34/0x40 [ 104.203310][ T4645] blkdev_flush_mapping+0x168/0x31c [ 104.204753][ T4645] blkdev_put+0x490/0x6ac [ 104.205951][ T4645] blkdev_close+0x74/0xb0 [ 104.207154][ T4645] __fput+0x1c0/0x7f8 [ 104.208283][ T4645] ____fput+0x20/0x30 [ 104.209317][ T4645] task_work_run+0x12c/0x1e0 [ 104.210562][ T4645] do_notify_resume+0x24b4/0x3128 [ 104.211943][ T4645] el0_svc+0xf0/0x1e0 [ 104.213037][ T4645] el0t_64_sync_handler+0xcc/0xe4 [ 104.214463][ T4645] el0t_64_sync+0x1a0/0x1a4 [ 104.215723][ T4645] irq event stamp: 271330 [ 104.216906][ T4645] hardirqs last enabled at (271329): [] call_rcu+0x570/0x8fc [ 104.219381][ T4645] hardirqs last disabled at (271330): [] smp_call_function_many_cond+0xa44/0xeb0 [ 104.222320][ T4645] softirqs last enabled at (270610): [] local_bh_enable+0x10/0x34 [ 104.224863][ T4645] softirqs last disabled at (270608): [] local_bh_disable+0x10/0x34 [ 104.227513][ T4645] ---[ end trace 5ca76294e75f1872 ]--- [ 104.284088][ T4988] loop0: detected capacity change from 0 to 128 [ 104.342209][ T4988] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.344233][ T4988] Bad inode number on dev loop0: 2 is out of range [ 104.346347][ T4988] SysV FS: get root inode failed [ 104.347738][ T4988] oldfs: cannot read superblock [ 104.361736][ C0] ------------[ cut here ]------------ [ 104.363250][ C0] VFS: brelse: Trying to free free buffer [ 104.364889][ C0] WARNING: CPU: 0 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.367444][ C0] Modules linked in: [ 104.368531][ C0] CPU: 0 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 104.371216][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 104.373992][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.376167][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 104.377650][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 104.379095][ C0] sp : ffff800008007de0 [ 104.380225][ C0] x29: ffff800008007de0 x28: ffff0000c1bf9b40 x27: 1fffe0003421845c [ 104.382499][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 104.384675][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee7e4e8 [ 104.386900][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 104.389043][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 104.391245][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.393470][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : abd15cb6bd53e700 [ 104.395684][ C0] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.397856][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 104.400111][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 104.402242][ C0] Call trace: [ 104.403157][ C0] invalidate_bh_lru+0x128/0x234 [ 104.404487][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 104.406087][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 104.408032][ C0] ipi_handler+0x10c/0x710 [ 104.409265][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 104.410760][ C0] handle_domain_irq+0x144/0x1fc [ 104.412110][ C0] gic_handle_irq+0x78/0x1c8 [ 104.413309][ C0] call_on_irq_stack+0x24/0x30 [ 104.414586][ C0] do_interrupt_handler+0x6c/0x88 [ 104.416023][ C0] el0_interrupt+0x94/0x260 [ 104.417182][ C0] __el0_irq_handler_common+0x18/0x24 [ 104.418655][ C0] el0t_64_irq_handler+0x10/0x1c [ 104.419998][ C0] el0t_64_irq+0x1a0/0x1a4 [ 104.421216][ C0] irq event stamp: 276776 [ 104.422446][ C0] hardirqs last enabled at (276775): [] el0t_64_sync_handler+0xd8/0xe4 [ 104.425091][ C0] hardirqs last disabled at (276776): [] __el0_irq_handler_common+0x18/0x24 [ 104.427865][ C0] softirqs last enabled at (276570): [] local_bh_enable+0x10/0x34 [ 104.430487][ C0] softirqs last disabled at (276568): [] local_bh_disable+0x10/0x34 [ 104.433147][ C0] ---[ end trace 5ca76294e75f1873 ]--- [ 104.489545][ T4990] loop0: detected capacity change from 0 to 128 [ 104.493517][ T4990] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.496041][ T4990] Bad inode number on dev loop0: 2 is out of range [ 104.497844][ T4990] SysV FS: get root inode failed [ 104.499205][ T4990] oldfs: cannot read superblock [ 104.508587][ T4486] ------------[ cut here ]------------ [ 104.510122][ T4486] VFS: brelse: Trying to free free buffer [ 104.511681][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.514122][ T4486] Modules linked in: [ 104.515186][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 104.517671][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 104.520702][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.522973][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 104.524375][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 104.525811][ T4486] sp : ffff80001f6977c0 [ 104.526917][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 104.529087][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 104.531244][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05eddf8 [ 104.533360][ T4486] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 104.535609][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 104.537784][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.539939][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 104.542103][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.544332][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 104.546594][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 104.548756][ T4486] Call trace: [ 104.549703][ T4486] invalidate_bh_lru+0x128/0x234 [ 104.551051][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 104.552623][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 104.553998][ T4486] invalidate_bh_lrus+0x34/0x40 [ 104.555330][ T4486] blkdev_flush_mapping+0x168/0x31c [ 104.556797][ T4486] blkdev_put+0x490/0x6ac [ 104.557987][ T4486] blkdev_close+0x74/0xb0 [ 104.559145][ T4486] __fput+0x1c0/0x7f8 [ 104.560212][ T4486] ____fput+0x20/0x30 [ 104.561348][ T4486] task_work_run+0x12c/0x1e0 [ 104.562662][ T4486] do_notify_resume+0x24b4/0x3128 [ 104.564075][ T4486] el0_svc+0xf0/0x1e0 [ 104.565201][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 104.566639][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 104.567853][ T4486] irq event stamp: 239804 [ 104.568966][ T4486] hardirqs last enabled at (239803): [] kasan_quarantine_put+0xc4/0x204 [ 104.571625][ T4486] hardirqs last disabled at (239804): [] smp_call_function_many_cond+0xa44/0xeb0 [ 104.574567][ T4486] softirqs last enabled at (238900): [] handle_softirqs+0xa4c/0xbf0 [ 104.577212][ T4486] softirqs last disabled at (238877): [] __irq_exit_rcu+0x240/0x440 [ 104.579819][ T4486] ---[ end trace 5ca76294e75f1874 ]--- [ 104.630926][ T4992] loop0: detected capacity change from 0 to 128 [ 104.726342][ T4992] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.728404][ T4992] Bad inode number on dev loop0: 2 is out of range [ 104.730267][ T4992] SysV FS: get root inode failed [ 104.731673][ T4992] oldfs: cannot read superblock [ 104.740024][ T4486] ------------[ cut here ]------------ [ 104.741585][ T4486] VFS: brelse: Trying to free free buffer [ 104.743254][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.745734][ T4486] Modules linked in: [ 104.746833][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 104.749282][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 104.752043][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.754180][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 104.755671][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 104.757093][ T4486] sp : ffff80001f6977c0 [ 104.758225][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 104.760459][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 104.762649][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05eda58 [ 104.764869][ T4486] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 104.767150][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 104.769433][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.771621][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 104.773957][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.776178][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 104.778444][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 104.780706][ T4486] Call trace: [ 104.781631][ T4486] invalidate_bh_lru+0x128/0x234 [ 104.782978][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 104.784626][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 104.786027][ T4486] invalidate_bh_lrus+0x34/0x40 [ 104.787311][ T4486] blkdev_flush_mapping+0x168/0x31c [ 104.788739][ T4486] blkdev_put+0x490/0x6ac [ 104.789930][ T4486] blkdev_close+0x74/0xb0 [ 104.791168][ T4486] __fput+0x1c0/0x7f8 [ 104.792299][ T4486] ____fput+0x20/0x30 [ 104.793352][ T4486] task_work_run+0x12c/0x1e0 [ 104.794653][ T4486] do_notify_resume+0x24b4/0x3128 [ 104.796147][ T4486] el0_svc+0xf0/0x1e0 [ 104.797278][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 104.798628][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 104.799860][ T4486] irq event stamp: 245566 [ 104.801044][ T4486] hardirqs last enabled at (245565): [] kasan_quarantine_put+0xc4/0x204 [ 104.803838][ T4486] hardirqs last disabled at (245566): [] smp_call_function_many_cond+0xa44/0xeb0 [ 104.806767][ T4486] softirqs last enabled at (245182): [] local_bh_enable+0x10/0x34 [ 104.809413][ T4486] softirqs last disabled at (245180): [] local_bh_disable+0x10/0x34 [ 104.811988][ T4486] ---[ end trace 5ca76294e75f1875 ]--- [ 104.867355][ T4994] loop0: detected capacity change from 0 to 128 [ 104.871038][ T4994] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.872981][ T4994] Bad inode number on dev loop0: 2 is out of range [ 104.875557][ T4994] SysV FS: get root inode failed [ 104.876957][ T4994] oldfs: cannot read superblock [ 104.889298][ T4486] ------------[ cut here ]------------ [ 104.890852][ T4486] VFS: brelse: Trying to free free buffer [ 104.892467][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 104.894861][ T4486] Modules linked in: [ 104.895946][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 104.898443][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 104.901230][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.903342][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 104.904772][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 104.906212][ T4486] sp : ffff80001f6977c0 [ 104.907345][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 104.909563][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 104.911756][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def72148 [ 104.913884][ T4486] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 104.916071][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 104.918332][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.920596][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 104.922790][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.925062][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 104.927293][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 104.929552][ T4486] Call trace: [ 104.930476][ T4486] invalidate_bh_lru+0x128/0x234 [ 104.931775][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 104.933350][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 104.934759][ T4486] invalidate_bh_lrus+0x34/0x40 [ 104.936085][ T4486] blkdev_flush_mapping+0x168/0x31c [ 104.937591][ T4486] blkdev_put+0x490/0x6ac [ 104.938798][ T4486] blkdev_close+0x74/0xb0 [ 104.939946][ T4486] __fput+0x1c0/0x7f8 [ 104.941027][ T4486] ____fput+0x20/0x30 [ 104.942094][ T4486] task_work_run+0x12c/0x1e0 [ 104.943392][ T4486] do_notify_resume+0x24b4/0x3128 [ 104.944748][ T4486] el0_svc+0xf0/0x1e0 [ 104.945855][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 104.947253][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 104.948482][ T4486] irq event stamp: 252442 [ 104.949678][ T4486] hardirqs last enabled at (252441): [] kasan_quarantine_put+0xc4/0x204 [ 104.952427][ T4486] hardirqs last disabled at (252442): [] smp_call_function_many_cond+0xa44/0xeb0 [ 104.955498][ T4486] softirqs last enabled at (250792): [] local_bh_enable+0x10/0x34 [ 104.958076][ T4486] softirqs last disabled at (250790): [] local_bh_disable+0x10/0x34 [ 104.960731][ T4486] ---[ end trace 5ca76294e75f1876 ]--- [ 104.989921][ T4996] loop0: detected capacity change from 0 to 128 [ 104.994519][ T4996] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 104.997251][ T4996] Bad inode number on dev loop0: 2 is out of range [ 104.999114][ T4996] SysV FS: get root inode failed [ 105.000408][ T4996] oldfs: cannot read superblock [ 105.012178][ C1] ------------[ cut here ]------------ [ 105.013754][ C1] VFS: brelse: Trying to free free buffer [ 105.015456][ C1] WARNING: CPU: 1 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.017915][ C1] Modules linked in: [ 105.018940][ C1] CPU: 1 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 105.021635][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 105.024403][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.026664][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 105.028065][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 105.029498][ C1] sp : ffff800008017de0 [ 105.030635][ C1] x29: ffff800008017de0 x28: ffff0000c1bf9b40 x27: 1fffe0003421c65c [ 105.032883][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 105.035231][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def724e8 [ 105.037401][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010004 [ 105.039611][ C1] x17: 0000000000010004 x16: ffff8000111d162c x15: 00000000ffffffff [ 105.041743][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.044009][ C1] x11: 0000000000010003 x10: 0000000000010003 x9 : abd15cb6bd53e700 [ 105.046247][ C1] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.048370][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 105.050598][ C1] x2 : 0000000000000001 x1 : 0000000100010003 x0 : 0000000000000027 [ 105.052875][ C1] Call trace: [ 105.053817][ C1] invalidate_bh_lru+0x128/0x234 [ 105.055279][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 105.056949][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 105.058865][ C1] ipi_handler+0x10c/0x710 [ 105.060163][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 105.061734][ C1] handle_domain_irq+0x144/0x1fc [ 105.063146][ C1] gic_handle_irq+0x78/0x1c8 [ 105.064413][ C1] call_on_irq_stack+0x24/0x30 [ 105.065709][ C1] do_interrupt_handler+0x6c/0x88 [ 105.067123][ C1] el1_interrupt+0x30/0x58 [ 105.068374][ C1] el1h_64_irq_handler+0x18/0x24 [ 105.069750][ C1] el1h_64_irq+0x78/0x7c [ 105.070908][ C1] _raw_spin_unlock_irq+0xa0/0x128 [ 105.072349][ C1] alloc_pid+0x2fc/0xa48 [ 105.073553][ C1] copy_process+0x17a8/0x34ac [ 105.074933][ C1] kernel_clone+0x1d8/0x9d4 [ 105.076170][ C1] __arm64_sys_clone+0x138/0x190 [ 105.077559][ C1] invoke_syscall+0x98/0x2b8 [ 105.078785][ C1] el0_svc_common+0x138/0x258 [ 105.080117][ C1] do_el0_svc+0x58/0x14c [ 105.081315][ C1] el0_svc+0x78/0x1e0 [ 105.082372][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 105.083840][ C1] el0t_64_sync+0x1a0/0x1a4 [ 105.085101][ C1] irq event stamp: 289100 [ 105.086313][ C1] hardirqs last enabled at (289099): [] _raw_spin_unlock_irq+0x98/0x128 [ 105.089140][ C1] hardirqs last disabled at (289100): [] enter_el1_irq_or_nmi+0x10/0x1c [ 105.091822][ C1] softirqs last enabled at (288942): [] local_bh_enable+0x10/0x34 [ 105.094384][ C1] softirqs last disabled at (288940): [] local_bh_disable+0x10/0x34 [ 105.096972][ C1] ---[ end trace 5ca76294e75f1877 ]--- [ 105.139921][ T4998] loop0: detected capacity change from 0 to 128 [ 105.145756][ T4998] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.147753][ T4998] Bad inode number on dev loop0: 2 is out of range [ 105.149485][ T4998] SysV FS: get root inode failed [ 105.150841][ T4998] oldfs: cannot read superblock [ 105.196136][ T4645] ------------[ cut here ]------------ [ 105.197663][ T4645] VFS: brelse: Trying to free free buffer [ 105.199310][ T4645] WARNING: CPU: 0 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.201640][ T4645] Modules linked in: [ 105.202692][ T4645] CPU: 0 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 105.205272][ T4645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 105.207958][ T4645] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.210115][ T4645] pc : invalidate_bh_lru+0x128/0x234 [ 105.211552][ T4645] lr : invalidate_bh_lru+0x128/0x234 [ 105.213050][ T4645] sp : ffff80001fa26f70 [ 105.214133][ T4645] x29: ffff80001fa26f70 x28: ffff80001417d000 x27: 1fffe0003421845b [ 105.216318][ T4645] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 105.218517][ T4645] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee7eb40 [ 105.220731][ T4645] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 105.222934][ T4645] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 105.225120][ T4645] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.227309][ T4645] x11: 0000000000000002 x10: 0000000000000000 x9 : abd15cb6bd53e700 [ 105.229548][ T4645] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.231822][ T4645] x5 : ffff80001fa26858 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 105.234049][ T4645] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 105.236255][ T4645] Call trace: [ 105.237182][ T4645] invalidate_bh_lru+0x128/0x234 [ 105.238569][ T4645] smp_call_function_many_cond+0xa50/0xeb0 [ 105.240149][ T4645] on_each_cpu_cond_mask+0x5c/0xc4 [ 105.241507][ T4645] invalidate_bh_lrus+0x34/0x40 [ 105.242931][ T4645] invalidate_bdev+0x90/0xc0 [ 105.244184][ T4645] __loop_clr_fd+0x4e4/0x978 [ 105.245454][ T4645] lo_ioctl+0xd90/0x1c08 [ 105.246548][ T4645] blkdev_ioctl+0x5f8/0xbb8 [ 105.247840][ T4645] block_ioctl+0xa4/0x118 [ 105.249069][ T4645] __arm64_sys_ioctl+0x14c/0x1c8 [ 105.250399][ T4645] invoke_syscall+0x98/0x2b8 [ 105.251734][ T4645] el0_svc_common+0x138/0x258 [ 105.253004][ T4645] do_el0_svc+0x58/0x14c [ 105.254192][ T4645] el0_svc+0x78/0x1e0 [ 105.255266][ T4645] el0t_64_sync_handler+0xcc/0xe4 [ 105.256658][ T4645] el0t_64_sync+0x1a0/0x1a4 [ 105.257910][ T4645] irq event stamp: 290660 [ 105.259088][ T4645] hardirqs last enabled at (290659): [] _raw_spin_unlock_irq+0x98/0x128 [ 105.261855][ T4645] hardirqs last disabled at (290660): [] smp_call_function_many_cond+0xa44/0xeb0 [ 105.264758][ T4645] softirqs last enabled at (289746): [] local_bh_enable+0x10/0x34 [ 105.267378][ T4645] softirqs last disabled at (289744): [] local_bh_disable+0x10/0x34 [ 105.269935][ T4645] ---[ end trace 5ca76294e75f1878 ]--- [ 105.290528][ T5000] loop0: detected capacity change from 0 to 128 [ 105.296138][ T5000] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.298082][ T5000] Bad inode number on dev loop0: 2 is out of range [ 105.299860][ T5000] SysV FS: get root inode failed [ 105.301182][ T5000] oldfs: cannot read superblock [ 105.329769][ C0] ------------[ cut here ]------------ [ 105.331314][ C0] VFS: brelse: Trying to free free buffer [ 105.332906][ C0] WARNING: CPU: 0 PID: 5002 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.335378][ C0] Modules linked in: [ 105.336435][ C0] CPU: 0 PID: 5002 Comm: syz.0.56 Tainted: G W 5.15.187-syzkaller #0 [ 105.339005][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 105.341735][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.343958][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 105.345440][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 105.346919][ C0] sp : ffff800008007de0 [ 105.348099][ C0] x29: ffff800008007de0 x28: ffff0000ccd03680 x27: 1fffe0003421845c [ 105.350271][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 105.352513][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee7eee0 [ 105.354694][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 105.356961][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 105.359178][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.361439][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : d6a3d0a87fce7e00 [ 105.363597][ C0] x8 : d6a3d0a87fce7e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.365879][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 105.368067][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 105.370240][ C0] Call trace: [ 105.371145][ C0] invalidate_bh_lru+0x128/0x234 [ 105.372561][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 105.374243][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 105.376101][ C0] ipi_handler+0x10c/0x710 [ 105.377281][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 105.378734][ C0] handle_domain_irq+0x144/0x1fc [ 105.380108][ C0] gic_handle_irq+0x78/0x1c8 [ 105.381329][ C0] call_on_irq_stack+0x24/0x30 [ 105.382604][ C0] do_interrupt_handler+0x6c/0x88 [ 105.383903][ C0] el1_interrupt+0x30/0x58 [ 105.385103][ C0] el1h_64_irq_handler+0x18/0x24 [ 105.386434][ C0] el1h_64_irq+0x78/0x7c [ 105.387663][ C0] seqcount_lockdep_reader_access+0x15c/0x230 [ 105.389295][ C0] bad_range+0xa0/0x2a0 [ 105.390481][ C0] get_page_from_freelist+0x2954/0x2aa8 [ 105.391981][ C0] __alloc_pages+0x1a0/0x470 [ 105.393241][ C0] alloc_pages_vma+0x284/0x7a8 [ 105.394578][ C0] shmem_alloc_and_acct_page+0x38c/0xac4 [ 105.396144][ C0] shmem_getpage_gfp+0x1028/0x1ef0 [ 105.397586][ C0] shmem_write_begin+0xe0/0x29c [ 105.398984][ C0] generic_perform_write+0x204/0x480 [ 105.400400][ C0] __generic_file_write_iter+0x23c/0x454 [ 105.401913][ C0] generic_file_write_iter+0xb0/0x1b4 [ 105.403424][ C0] vfs_write+0x7c8/0xa2c [ 105.404602][ C0] ksys_write+0x120/0x210 [ 105.405767][ C0] __arm64_sys_write+0x7c/0x90 [ 105.407088][ C0] invoke_syscall+0x98/0x2b8 [ 105.408339][ C0] el0_svc_common+0x138/0x258 [ 105.409657][ C0] do_el0_svc+0x58/0x14c [ 105.410813][ C0] el0_svc+0x78/0x1e0 [ 105.411943][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 105.413305][ C0] el0t_64_sync+0x1a0/0x1a4 [ 105.414532][ C0] irq event stamp: 494 [ 105.415636][ C0] hardirqs last enabled at (493): [] seqcount_lockdep_reader_access+0x14c/0x230 [ 105.418605][ C0] hardirqs last disabled at (494): [] enter_el1_irq_or_nmi+0x10/0x1c [ 105.421226][ C0] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 105.423658][ C0] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 105.426145][ C0] ---[ end trace 5ca76294e75f1879 ]--- [ 105.499203][ T5002] loop0: detected capacity change from 0 to 128 [ 105.506303][ T5002] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.508387][ T5002] Bad inode number on dev loop0: 2 is out of range [ 105.510210][ T5002] SysV FS: get root inode failed [ 105.511514][ T5002] oldfs: cannot read superblock [ 105.535596][ T4486] ------------[ cut here ]------------ [ 105.537124][ T4486] VFS: brelse: Trying to free free buffer [ 105.538868][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.541236][ T4486] Modules linked in: [ 105.542279][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 105.544694][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 105.547574][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.549796][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 105.551259][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 105.552720][ T4486] sp : ffff80001f6977c0 [ 105.553859][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 105.556103][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 105.558342][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def72888 [ 105.560493][ T4486] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 105.562693][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 105.564884][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.567023][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 105.569212][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.571483][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 105.573795][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 105.575994][ T4486] Call trace: [ 105.576942][ T4486] invalidate_bh_lru+0x128/0x234 [ 105.578266][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 105.579968][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 105.581353][ T4486] invalidate_bh_lrus+0x34/0x40 [ 105.582657][ T4486] blkdev_flush_mapping+0x168/0x31c [ 105.584050][ T4486] blkdev_put+0x490/0x6ac [ 105.585266][ T4486] blkdev_close+0x74/0xb0 [ 105.586453][ T4486] __fput+0x1c0/0x7f8 [ 105.587579][ T4486] ____fput+0x20/0x30 [ 105.588738][ T4486] task_work_run+0x12c/0x1e0 [ 105.590059][ T4486] do_notify_resume+0x24b4/0x3128 [ 105.591513][ T4486] el0_svc+0xf0/0x1e0 [ 105.592655][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 105.594066][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 105.595364][ T4486] irq event stamp: 274106 [ 105.596635][ T4486] hardirqs last enabled at (274105): [] kasan_quarantine_put+0xc4/0x204 [ 105.599470][ T4486] hardirqs last disabled at (274106): [] smp_call_function_many_cond+0xa44/0xeb0 [ 105.602430][ T4486] softirqs last enabled at (274092): [] local_bh_enable+0x10/0x34 [ 105.605026][ T4486] softirqs last disabled at (274090): [] local_bh_disable+0x10/0x34 [ 105.607746][ T4486] ---[ end trace 5ca76294e75f187a ]--- [ 105.646128][ T5004] loop0: detected capacity change from 0 to 128 [ 105.693046][ T5004] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.695259][ T5004] Bad inode number on dev loop0: 2 is out of range [ 105.697010][ T5004] SysV FS: get root inode failed [ 105.698337][ T5004] oldfs: cannot read superblock [ 105.705708][ T4486] ------------[ cut here ]------------ [ 105.707334][ T4486] VFS: brelse: Trying to free free buffer [ 105.708965][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.711458][ T4486] Modules linked in: [ 105.712450][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 105.715030][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 105.718017][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.720253][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 105.721744][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 105.723271][ T4486] sp : ffff80001f6977c0 [ 105.724436][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 105.726725][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 105.728864][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def72c28 [ 105.731122][ T4486] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 105.733382][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 105.735584][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.737772][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 105.740080][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.742377][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 105.744628][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 105.746847][ T4486] Call trace: [ 105.747724][ T4486] invalidate_bh_lru+0x128/0x234 [ 105.749128][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 105.750765][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 105.752218][ T4486] invalidate_bh_lrus+0x34/0x40 [ 105.753510][ T4486] blkdev_flush_mapping+0x168/0x31c [ 105.754946][ T4486] blkdev_put+0x490/0x6ac [ 105.756216][ T4486] blkdev_close+0x74/0xb0 [ 105.757344][ T4486] __fput+0x1c0/0x7f8 [ 105.758400][ T4486] ____fput+0x20/0x30 [ 105.759511][ T4486] task_work_run+0x12c/0x1e0 [ 105.760728][ T4486] do_notify_resume+0x24b4/0x3128 [ 105.762175][ T4486] el0_svc+0xf0/0x1e0 [ 105.763283][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 105.764705][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 105.765984][ T4486] irq event stamp: 277986 [ 105.767253][ T4486] hardirqs last enabled at (277985): [] kasan_quarantine_put+0xc4/0x204 [ 105.770010][ T4486] hardirqs last disabled at (277986): [] smp_call_function_many_cond+0xa44/0xeb0 [ 105.772882][ T4486] softirqs last enabled at (277714): [] local_bh_enable+0x10/0x34 [ 105.775567][ T4486] softirqs last disabled at (277712): [] local_bh_disable+0x10/0x34 [ 105.778350][ T4486] ---[ end trace 5ca76294e75f187b ]--- [ 105.816935][ T5006] loop0: detected capacity change from 0 to 128 [ 105.826403][ T5006] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.828429][ T5006] Bad inode number on dev loop0: 2 is out of range [ 105.830149][ T5006] SysV FS: get root inode failed [ 105.831599][ T5006] oldfs: cannot read superblock [ 105.846660][ C0] ------------[ cut here ]------------ [ 105.848252][ C0] VFS: brelse: Trying to free free buffer [ 105.849914][ C0] WARNING: CPU: 0 PID: 5007 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 105.852357][ C0] Modules linked in: [ 105.853459][ C0] CPU: 0 PID: 5007 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 105.856210][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 105.858893][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 105.860988][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 105.862498][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 105.863955][ C0] sp : ffff800008007de0 [ 105.865153][ C0] x29: ffff800008007de0 x28: ffff0000da5e0000 x27: 1fffe0003421845c [ 105.867346][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 105.869512][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee7a318 [ 105.871679][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 105.873956][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 105.876208][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 105.878422][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : e22c7884c2125c00 [ 105.880715][ C0] x8 : e22c7884c2125c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 105.883012][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 105.885310][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 105.887654][ C0] Call trace: [ 105.888557][ C0] invalidate_bh_lru+0x128/0x234 [ 105.889911][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 105.891559][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 105.893411][ C0] ipi_handler+0x10c/0x710 [ 105.894601][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 105.896179][ C0] handle_domain_irq+0x144/0x1fc [ 105.897484][ C0] gic_handle_irq+0x78/0x1c8 [ 105.898789][ C0] call_on_irq_stack+0x24/0x30 [ 105.900148][ C0] do_interrupt_handler+0x6c/0x88 [ 105.901556][ C0] el1_interrupt+0x30/0x58 [ 105.902733][ C0] el1h_64_irq_handler+0x18/0x24 [ 105.904043][ C0] el1h_64_irq+0x78/0x7c [ 105.905204][ C0] unwind_frame+0x280/0x668 [ 105.906563][ C0] arch_stack_walk+0x200/0x2b4 [ 105.907893][ C0] stack_trace_save+0x94/0xd8 [ 105.909170][ C0] __kasan_slab_alloc+0x8c/0xcc [ 105.910533][ C0] slab_post_alloc_hook+0x74/0x408 [ 105.911950][ C0] kmem_cache_alloc+0x1e0/0x3e4 [ 105.913284][ C0] getname_flags+0xb8/0x450 [ 105.914523][ C0] getname+0x28/0x38 [ 105.915595][ C0] do_sys_openat2+0xd0/0x3d8 [ 105.916887][ C0] __arm64_sys_openat+0x120/0x154 [ 105.918268][ C0] invoke_syscall+0x98/0x2b8 [ 105.919515][ C0] el0_svc_common+0x138/0x258 [ 105.920892][ C0] do_el0_svc+0x58/0x14c [ 105.922106][ C0] el0_svc+0x78/0x1e0 [ 105.923176][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 105.924520][ C0] el0t_64_sync+0x1a0/0x1a4 [ 105.925742][ C0] irq event stamp: 774 [ 105.926861][ C0] hardirqs last enabled at (773): [] el0_svc_common+0x9c/0x258 [ 105.929624][ C0] hardirqs last disabled at (774): [] enter_el1_irq_or_nmi+0x10/0x1c [ 105.932320][ C0] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 105.934807][ C0] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 105.937289][ C0] ---[ end trace 5ca76294e75f187c ]--- [ 105.978909][ T5008] loop0: detected capacity change from 0 to 128 [ 105.983815][ T5008] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 105.986360][ T5008] Bad inode number on dev loop0: 2 is out of range [ 105.988215][ T5008] SysV FS: get root inode failed [ 105.989568][ T5008] oldfs: cannot read superblock [ 105.999925][ C1] ------------[ cut here ]------------ [ 106.001471][ C1] VFS: brelse: Trying to free free buffer [ 106.003104][ C1] WARNING: CPU: 1 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.005676][ C1] Modules linked in: [ 106.006759][ C1] CPU: 1 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 106.009444][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 106.012263][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.014472][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 106.015944][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 106.017395][ C1] sp : ffff800008017de0 [ 106.018599][ C1] x29: ffff800008017de0 x28: ffff0000c1bf9b40 x27: 1fffe0003421c65c [ 106.020816][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 106.023024][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def73060 [ 106.025211][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010203 [ 106.027450][ C1] x17: 0000000000010203 x16: ffff8000111d162c x15: 00000000ffffffff [ 106.029667][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.031898][ C1] x11: 0000000000010202 x10: 0000000000010202 x9 : abd15cb6bd53e700 [ 106.034124][ C1] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.036349][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 106.038565][ C1] x2 : 0000000000000001 x1 : 0000000100010202 x0 : 0000000000000027 [ 106.040794][ C1] Call trace: [ 106.041683][ C1] invalidate_bh_lru+0x128/0x234 [ 106.043055][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 106.044725][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 106.046604][ C1] ipi_handler+0x10c/0x710 [ 106.047844][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 106.049308][ C1] handle_domain_irq+0x144/0x1fc [ 106.050678][ C1] gic_handle_irq+0x78/0x1c8 [ 106.052083][ C1] call_on_irq_stack+0x24/0x30 [ 106.053350][ C1] do_interrupt_handler+0x6c/0x88 [ 106.054735][ C1] el1_interrupt+0x30/0x58 [ 106.055959][ C1] el1h_64_irq_handler+0x18/0x24 [ 106.057330][ C1] el1h_64_irq+0x78/0x7c [ 106.058476][ C1] lock_release+0x4a0/0x8e8 [ 106.059743][ C1] _raw_spin_unlock_bh+0x90/0x174 [ 106.061216][ C1] lock_sock_nested+0x14c/0x1d4 [ 106.062572][ C1] ip_getsockopt+0x310/0x158c [ 106.063929][ C1] tcp_getsockopt+0x214/0x2e74 [ 106.065280][ C1] sock_common_getsockopt+0xa8/0xc4 [ 106.066776][ C1] __sys_getsockopt+0x1e0/0x45c [ 106.068156][ C1] __arm64_sys_getsockopt+0xb8/0xd4 [ 106.069684][ C1] invoke_syscall+0x98/0x2b8 [ 106.070974][ C1] el0_svc_common+0x138/0x258 [ 106.072322][ C1] do_el0_svc+0x58/0x14c [ 106.073506][ C1] el0_svc+0x78/0x1e0 [ 106.074723][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 106.076100][ C1] el0t_64_sync+0x1a0/0x1a4 [ 106.077330][ C1] irq event stamp: 307607 [ 106.078574][ C1] hardirqs last enabled at (307605): [] el0_svc_common+0x9c/0x258 [ 106.081342][ C1] hardirqs last disabled at (307607): [] enter_el1_irq_or_nmi+0x10/0x1c [ 106.084071][ C1] softirqs last enabled at (307600): [] release_sock+0x1d0/0x258 [ 106.086710][ C1] softirqs last disabled at (307606): [] lock_sock_nested+0xf4/0x1d4 [ 106.089408][ C1] ---[ end trace 5ca76294e75f187d ]--- [ 106.120690][ T5010] loop0: detected capacity change from 0 to 128 [ 106.189638][ T5010] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.192367][ T5010] Bad inode number on dev loop0: 2 is out of range [ 106.195563][ T5010] SysV FS: get root inode failed [ 106.197466][ T5010] oldfs: cannot read superblock [ 106.211159][ T4486] ------------[ cut here ]------------ [ 106.212655][ T4486] VFS: brelse: Trying to free free buffer [ 106.214262][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.216778][ T4486] Modules linked in: [ 106.217842][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 106.220373][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 106.223191][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.225350][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 106.226873][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 106.228301][ T4486] sp : ffff80001f6977c0 [ 106.229444][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 106.231665][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 106.233851][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def73400 [ 106.235985][ T4486] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 106.238209][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 106.240493][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.242664][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 106.244992][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.247267][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 106.249433][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 106.251718][ T4486] Call trace: [ 106.252619][ T4486] invalidate_bh_lru+0x128/0x234 [ 106.253995][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 106.255576][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 106.256956][ T4486] invalidate_bh_lrus+0x34/0x40 [ 106.258289][ T4486] blkdev_flush_mapping+0x168/0x31c [ 106.259746][ T4486] blkdev_put+0x490/0x6ac [ 106.261007][ T4486] blkdev_close+0x74/0xb0 [ 106.262256][ T4486] __fput+0x1c0/0x7f8 [ 106.263361][ T4486] ____fput+0x20/0x30 [ 106.264454][ T4486] task_work_run+0x12c/0x1e0 [ 106.265785][ T4486] do_notify_resume+0x24b4/0x3128 [ 106.267199][ T4486] el0_svc+0xf0/0x1e0 [ 106.268374][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 106.269739][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 106.270996][ T4486] irq event stamp: 290604 [ 106.272219][ T4486] hardirqs last enabled at (290603): [] kasan_quarantine_put+0xc4/0x204 [ 106.274953][ T4486] hardirqs last disabled at (290604): [] smp_call_function_many_cond+0xa44/0xeb0 [ 106.277924][ T4486] softirqs last enabled at (289116): [] local_bh_enable+0x10/0x34 [ 106.280642][ T4486] softirqs last disabled at (289114): [] local_bh_disable+0x10/0x34 [ 106.283389][ T4486] ---[ end trace 5ca76294e75f187e ]--- [ 106.309822][ T5012] loop0: detected capacity change from 0 to 128 [ 106.316457][ T5012] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.318615][ T5012] Bad inode number on dev loop0: 2 is out of range [ 106.320347][ T5012] SysV FS: get root inode failed [ 106.321685][ T5012] oldfs: cannot read superblock [ 106.348263][ C1] ------------[ cut here ]------------ [ 106.349785][ C1] VFS: brelse: Trying to free free buffer [ 106.351480][ C1] WARNING: CPU: 1 PID: 4151 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.353979][ C1] Modules linked in: [ 106.355025][ C1] CPU: 1 PID: 4151 Comm: kworker/1:11 Tainted: G W 5.15.187-syzkaller #0 [ 106.357721][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 106.360464][ C1] Workqueue: events free_work [ 106.361720][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.363960][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 106.365373][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 106.366784][ C1] sp : ffff800008017de0 [ 106.367968][ C1] x29: ffff800008017de0 x28: ffff0000c7dc0000 x27: 1fffe0003421c65c [ 106.370130][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 106.372309][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def737a0 [ 106.374533][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 106.376697][ C1] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 106.378816][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.381092][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 0b61943011c99d00 [ 106.383244][ C1] x8 : 0b61943011c99d00 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.385449][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 106.387594][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 106.389744][ C1] Call trace: [ 106.390643][ C1] invalidate_bh_lru+0x128/0x234 [ 106.392015][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 106.393624][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 106.395602][ C1] ipi_handler+0x10c/0x710 [ 106.396854][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 106.398329][ C1] handle_domain_irq+0x144/0x1fc [ 106.399673][ C1] gic_handle_irq+0x78/0x1c8 [ 106.400994][ C1] call_on_irq_stack+0x24/0x30 [ 106.402361][ C1] do_interrupt_handler+0x6c/0x88 [ 106.403799][ C1] el1_interrupt+0x30/0x58 [ 106.405040][ C1] el1h_64_irq_handler+0x18/0x24 [ 106.406391][ C1] el1h_64_irq+0x78/0x7c [ 106.407565][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 106.409103][ C1] debug_check_no_obj_freed+0x450/0x46c [ 106.410651][ C1] __vunmap+0x270/0x9bc [ 106.411747][ C1] free_work+0x7c/0xac [ 106.412867][ C1] process_one_work+0x79c/0x1140 [ 106.414234][ C1] worker_thread+0x8f4/0x101c [ 106.415558][ C1] kthread+0x374/0x454 [ 106.416668][ C1] ret_from_fork+0x10/0x20 [ 106.417882][ C1] irq event stamp: 37254 [ 106.419185][ C1] hardirqs last enabled at (37253): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 106.421832][ C1] hardirqs last disabled at (37254): [] enter_el1_irq_or_nmi+0x10/0x1c [ 106.424321][ C1] softirqs last enabled at (37218): [] wg_packet_decrypt_worker+0x8f8/0x980 [ 106.427335][ C1] softirqs last disabled at (37216): [] wg_packet_decrypt_worker+0x5cc/0x980 [ 106.430208][ C1] ---[ end trace 5ca76294e75f187f ]--- [ 106.490032][ T5016] loop0: detected capacity change from 0 to 128 [ 106.517491][ T5016] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.519566][ T5016] Bad inode number on dev loop0: 2 is out of range [ 106.522222][ T5016] SysV FS: get root inode failed [ 106.523569][ T5016] oldfs: cannot read superblock [ 106.542160][ T4486] ------------[ cut here ]------------ [ 106.543782][ T4486] VFS: brelse: Trying to free free buffer [ 106.545489][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.548149][ T4486] Modules linked in: [ 106.549178][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 106.551912][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 106.554828][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.557076][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 106.558572][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 106.560060][ T4486] sp : ffff80001f6977c0 [ 106.561242][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 106.563541][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 106.565740][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee7a6b8 [ 106.568015][ T4486] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 106.570422][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 106.572660][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.574869][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 106.577131][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.579353][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 106.581592][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 106.583768][ T4486] Call trace: [ 106.584653][ T4486] invalidate_bh_lru+0x128/0x234 [ 106.586053][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 106.587673][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 106.589055][ T4486] invalidate_bh_lrus+0x34/0x40 [ 106.590490][ T4486] blkdev_flush_mapping+0x168/0x31c [ 106.591933][ T4486] blkdev_put+0x490/0x6ac [ 106.593121][ T4486] blkdev_close+0x74/0xb0 [ 106.594291][ T4486] __fput+0x1c0/0x7f8 [ 106.595399][ T4486] ____fput+0x20/0x30 [ 106.596458][ T4486] task_work_run+0x12c/0x1e0 [ 106.597691][ T4486] do_notify_resume+0x24b4/0x3128 [ 106.599127][ T4486] el0_svc+0xf0/0x1e0 [ 106.600305][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 106.601693][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 106.602875][ T4486] irq event stamp: 302280 [ 106.604040][ T4486] hardirqs last enabled at (302279): [] kasan_quarantine_put+0xc4/0x204 [ 106.606770][ T4486] hardirqs last disabled at (302280): [] smp_call_function_many_cond+0xa44/0xeb0 [ 106.609717][ T4486] softirqs last enabled at (299988): [] handle_softirqs+0xa4c/0xbf0 [ 106.612362][ T4486] softirqs last disabled at (299897): [] __irq_exit_rcu+0x240/0x440 [ 106.614969][ T4486] ---[ end trace 5ca76294e75f1880 ]--- [ 106.678022][ T5018] loop0: detected capacity change from 0 to 128 [ 106.682111][ T5018] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.685339][ T5018] Bad inode number on dev loop0: 2 is out of range [ 106.687101][ T5018] SysV FS: get root inode failed [ 106.688424][ T5018] oldfs: cannot read superblock [ 106.704495][ C1] ------------[ cut here ]------------ [ 106.706090][ C1] VFS: brelse: Trying to free free buffer [ 106.707718][ C1] WARNING: CPU: 1 PID: 15 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.710190][ C1] Modules linked in: [ 106.711247][ C1] CPU: 1 PID: 15 Comm: rcu_preempt Tainted: G W 5.15.187-syzkaller #0 [ 106.713808][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 106.716540][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.718619][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 106.720036][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 106.721461][ C1] sp : ffff800008017de0 [ 106.722602][ C1] x29: ffff800008017de0 x28: ffff0000c0953680 x27: 1fffe0003421c65c [ 106.724764][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 106.727117][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def73b40 [ 106.729372][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 106.731632][ C1] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 106.733859][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.736138][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 284139ff26613000 [ 106.738462][ C1] x8 : 284139ff26613000 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.740738][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 106.742918][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 106.745128][ C1] Call trace: [ 106.746036][ C1] invalidate_bh_lru+0x128/0x234 [ 106.747356][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 106.749092][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 106.750982][ C1] ipi_handler+0x10c/0x710 [ 106.752234][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 106.753755][ C1] handle_domain_irq+0x144/0x1fc [ 106.755064][ C1] gic_handle_irq+0x78/0x1c8 [ 106.756305][ C1] call_on_irq_stack+0x24/0x30 [ 106.757637][ C1] do_interrupt_handler+0x6c/0x88 [ 106.759036][ C1] el1_interrupt+0x30/0x58 [ 106.760244][ C1] el1h_64_irq_handler+0x18/0x24 [ 106.761598][ C1] el1h_64_irq+0x78/0x7c [ 106.762753][ C1] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 106.764285][ C1] debug_object_free+0x290/0x3e0 [ 106.765676][ C1] schedule_timeout+0x198/0x2c8 [ 106.767006][ C1] rcu_gp_fqs_loop+0x25c/0x11f0 [ 106.768407][ C1] rcu_gp_kthread+0xc4/0x2a8 [ 106.769744][ C1] kthread+0x374/0x454 [ 106.770899][ C1] ret_from_fork+0x10/0x20 [ 106.772128][ C1] irq event stamp: 136952 [ 106.773300][ C1] hardirqs last enabled at (136951): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 106.776367][ C1] hardirqs last disabled at (136952): [] enter_el1_irq_or_nmi+0x10/0x1c [ 106.779149][ C1] softirqs last enabled at (102788): [] handle_softirqs+0xa4c/0xbf0 [ 106.781890][ C1] softirqs last disabled at (102733): [] __irq_exit_rcu+0x240/0x440 [ 106.784557][ C1] ---[ end trace 5ca76294e75f1881 ]--- [ 106.829337][ T5020] loop0: detected capacity change from 0 to 128 [ 106.915861][ T5020] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 106.917902][ T5020] Bad inode number on dev loop0: 2 is out of range [ 106.919779][ T5020] SysV FS: get root inode failed [ 106.921101][ T5020] oldfs: cannot read superblock [ 106.944297][ C1] ------------[ cut here ]------------ [ 106.945819][ C1] VFS: brelse: Trying to free free buffer [ 106.947571][ C1] WARNING: CPU: 1 PID: 3652 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 106.950036][ C1] Modules linked in: [ 106.951158][ C1] CPU: 1 PID: 3652 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 106.953652][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 106.956474][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 106.958581][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 106.960056][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 106.961430][ C1] sp : ffff800008017de0 [ 106.962521][ C1] x29: ffff800008017de0 x28: ffff0000d6d13680 x27: 1fffe0003421c65b [ 106.964694][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 106.966871][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000def73ee0 [ 106.969055][ C1] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000010002 [ 106.971188][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 106.973339][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 106.975509][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 00f5ffe6053fcd00 [ 106.977686][ C1] x8 : 00f5ffe6053fcd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 106.979812][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 106.981969][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 106.984262][ C1] Call trace: [ 106.985164][ C1] invalidate_bh_lru+0x128/0x234 [ 106.986595][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 106.988244][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 106.990323][ C1] ipi_handler+0x10c/0x710 [ 106.991565][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 106.993075][ C1] handle_domain_irq+0x144/0x1fc [ 106.994445][ C1] gic_handle_irq+0x78/0x1c8 [ 106.995704][ C1] call_on_irq_stack+0x24/0x30 [ 106.997019][ C1] do_interrupt_handler+0x6c/0x88 [ 106.998393][ C1] el1_interrupt+0x30/0x58 [ 106.999648][ C1] el1h_64_irq_handler+0x18/0x24 [ 107.001058][ C1] el1h_64_irq+0x78/0x7c [ 107.002271][ C1] netlink_attachskb+0x0/0x828 [ 107.003600][ C1] netlink_sendmsg+0x6e8/0x9cc [ 107.005060][ C1] ____sys_sendmsg+0x61c/0x920 [ 107.006364][ C1] ___sys_sendmsg+0x1d0/0x240 [ 107.007749][ C1] __arm64_sys_sendmsg+0x1a8/0x254 [ 107.009191][ C1] invoke_syscall+0x98/0x2b8 [ 107.010478][ C1] el0_svc_common+0x138/0x258 [ 107.011774][ C1] do_el0_svc+0x58/0x14c [ 107.013013][ C1] el0_svc+0x78/0x1e0 [ 107.014112][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 107.015453][ C1] el0t_64_sync+0x1a0/0x1a4 [ 107.016686][ C1] irq event stamp: 1178426 [ 107.017871][ C1] hardirqs last enabled at (1178425): [] el0_svc_common+0x9c/0x258 [ 107.020554][ C1] hardirqs last disabled at (1178426): [] enter_el1_irq_or_nmi+0x10/0x1c [ 107.023473][ C1] softirqs last enabled at (1178400): [] local_bh_enable+0x10/0x34 [ 107.026142][ C1] softirqs last disabled at (1178398): [] local_bh_disable+0x10/0x34 [ 107.028950][ C1] ---[ end trace 5ca76294e75f1882 ]--- [ 107.110888][ T5024] loop0: detected capacity change from 0 to 128 [ 107.130628][ T5024] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.132897][ T5024] Bad inode number on dev loop0: 2 is out of range [ 107.135158][ T5024] SysV FS: get root inode failed [ 107.140313][ T5024] oldfs: cannot read superblock [ 107.154289][ T4486] ------------[ cut here ]------------ [ 107.155885][ T4486] VFS: brelse: Trying to free free buffer [ 107.157564][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.160086][ T4486] Modules linked in: [ 107.161166][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 107.163617][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.166339][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.168511][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 107.170023][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 107.171445][ T4486] sp : ffff80001f6977c0 [ 107.172610][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 107.174951][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 107.177160][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee7aa58 [ 107.179471][ T4486] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 107.181756][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 107.183930][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.186154][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 107.188502][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.190719][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 107.192985][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 107.195159][ T4486] Call trace: [ 107.196066][ T4486] invalidate_bh_lru+0x128/0x234 [ 107.197563][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 107.199213][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 107.200638][ T4486] invalidate_bh_lrus+0x34/0x40 [ 107.202030][ T4486] blkdev_flush_mapping+0x168/0x31c [ 107.203473][ T4486] blkdev_put+0x490/0x6ac [ 107.204666][ T4486] blkdev_close+0x74/0xb0 [ 107.205790][ T4486] __fput+0x1c0/0x7f8 [ 107.206910][ T4486] ____fput+0x20/0x30 [ 107.208026][ T4486] task_work_run+0x12c/0x1e0 [ 107.209279][ T4486] do_notify_resume+0x24b4/0x3128 [ 107.210679][ T4486] el0_svc+0xf0/0x1e0 [ 107.211794][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 107.213242][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 107.214466][ T4486] irq event stamp: 318556 [ 107.215717][ T4486] hardirqs last enabled at (318555): [] kasan_quarantine_put+0xc4/0x204 [ 107.218521][ T4486] hardirqs last disabled at (318556): [] smp_call_function_many_cond+0xa44/0xeb0 [ 107.221499][ T4486] softirqs last enabled at (317538): [] local_bh_enable+0x10/0x34 [ 107.224175][ T4486] softirqs last disabled at (317536): [] local_bh_disable+0x10/0x34 [ 107.226875][ T4486] ---[ end trace 5ca76294e75f1883 ]--- [ 107.292306][ T5026] loop0: detected capacity change from 0 to 128 [ 107.356472][ T5026] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.358599][ T5026] Bad inode number on dev loop0: 2 is out of range [ 107.360386][ T5026] SysV FS: get root inode failed [ 107.361679][ T5026] oldfs: cannot read superblock [ 107.363149][ T5026] ------------[ cut here ]------------ [ 107.364648][ T5026] VFS: brelse: Trying to free free buffer [ 107.366302][ T5026] WARNING: CPU: 0 PID: 5026 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.368810][ T5026] Modules linked in: [ 107.369834][ T5026] CPU: 0 PID: 5026 Comm: syz.0.68 Tainted: G W 5.15.187-syzkaller #0 [ 107.372343][ T5026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.375432][ T5026] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.377552][ T5026] pc : invalidate_bh_lru+0x128/0x234 [ 107.378980][ T5026] lr : invalidate_bh_lru+0x128/0x234 [ 107.380436][ T5026] sp : ffff80001fd076e0 [ 107.381583][ T5026] x29: ffff80001fd076e0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 107.383713][ T5026] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 107.385883][ T5026] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee7adf8 [ 107.388140][ T5026] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 107.390286][ T5026] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 107.392559][ T5026] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.394700][ T5026] x11: 0000000000000002 x10: 0000000000000000 x9 : f77a0bfdfa9c2700 [ 107.396882][ T5026] x8 : f77a0bfdfa9c2700 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.398997][ T5026] x5 : ffff80001fd06fd8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 107.401142][ T5026] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 107.403341][ T5026] Call trace: [ 107.404306][ T5026] invalidate_bh_lru+0x128/0x234 [ 107.405655][ T5026] smp_call_function_many_cond+0xa50/0xeb0 [ 107.407200][ T5026] on_each_cpu_cond_mask+0x5c/0xc4 [ 107.408658][ T5026] invalidate_bh_lrus+0x34/0x40 [ 107.409963][ T5026] blkdev_flush_mapping+0x168/0x31c [ 107.411330][ T5026] blkdev_put+0x490/0x6ac [ 107.412471][ T5026] kill_block_super+0x98/0xdc [ 107.413702][ T5026] deactivate_locked_super+0xb8/0x13c [ 107.415065][ T5026] mount_bdev+0x284/0x358 [ 107.416266][ T5026] sysv_mount+0x44/0x58 [ 107.417395][ T5026] legacy_get_tree+0xd4/0x16c [ 107.418686][ T5026] vfs_get_tree+0x90/0x274 [ 107.419895][ T5026] do_new_mount+0x228/0x810 [ 107.421121][ T5026] path_mount+0x5b4/0x1000 [ 107.422322][ T5026] __arm64_sys_mount+0x514/0x5e4 [ 107.423701][ T5026] invoke_syscall+0x98/0x2b8 [ 107.424944][ T5026] el0_svc_common+0x138/0x258 [ 107.426281][ T5026] do_el0_svc+0x58/0x14c [ 107.427413][ T5026] el0_svc+0x78/0x1e0 [ 107.428588][ T5026] el0t_64_sync_handler+0xcc/0xe4 [ 107.429911][ T5026] el0t_64_sync+0x1a0/0x1a4 [ 107.431158][ T5026] irq event stamp: 1112 [ 107.432295][ T5026] hardirqs last enabled at (1111): [] kasan_quarantine_put+0xc4/0x204 [ 107.434991][ T5026] hardirqs last disabled at (1112): [] smp_call_function_many_cond+0xa44/0xeb0 [ 107.437903][ T5026] softirqs last enabled at (868): [] local_bh_enable+0x10/0x34 [ 107.440539][ T5026] softirqs last disabled at (866): [] local_bh_disable+0x10/0x34 [ 107.443266][ T5026] ---[ end trace 5ca76294e75f1884 ]--- [ 107.539980][ T5028] loop0: detected capacity change from 0 to 128 [ 107.577674][ T5028] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.580074][ T5028] Bad inode number on dev loop0: 2 is out of range [ 107.581867][ T5028] SysV FS: get root inode failed [ 107.583219][ T5028] oldfs: cannot read superblock [ 107.600268][ C1] ------------[ cut here ]------------ [ 107.601895][ C1] VFS: brelse: Trying to free free buffer [ 107.603608][ C1] WARNING: CPU: 1 PID: 5029 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.606067][ C1] Modules linked in: [ 107.607161][ C1] CPU: 1 PID: 5029 Comm: syz.0.70 Tainted: G W 5.15.187-syzkaller #0 [ 107.609923][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.612743][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.614844][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 107.616368][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 107.617939][ C1] sp : ffff800008017de0 [ 107.619052][ C1] x29: ffff800008017de0 x28: ffff0000ce58d1c0 x27: 1fffe0003421c65c [ 107.621288][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 107.623684][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee9f7a0 [ 107.625938][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 107.628189][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 107.630528][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.632848][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 7e6e82a14cef8800 [ 107.635245][ C1] x8 : 7e6e82a14cef8800 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.637448][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 107.639662][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 107.641929][ C1] Call trace: [ 107.642884][ C1] invalidate_bh_lru+0x128/0x234 [ 107.644179][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 107.645803][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 107.647771][ C1] ipi_handler+0x10c/0x710 [ 107.649035][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 107.650568][ C1] handle_domain_irq+0x144/0x1fc [ 107.651980][ C1] gic_handle_irq+0x78/0x1c8 [ 107.653264][ C1] call_on_irq_stack+0x24/0x30 [ 107.654570][ C1] do_interrupt_handler+0x6c/0x88 [ 107.655951][ C1] el0_interrupt+0x94/0x260 [ 107.657159][ C1] __el0_irq_handler_common+0x18/0x24 [ 107.658695][ C1] el0t_64_irq_handler+0x10/0x1c [ 107.660016][ C1] el0t_64_irq+0x1a0/0x1a4 [ 107.661227][ C1] irq event stamp: 1228 [ 107.662373][ C1] hardirqs last enabled at (1227): [] el0t_64_sync_handler+0xd8/0xe4 [ 107.665041][ C1] hardirqs last disabled at (1228): [] __el0_irq_handler_common+0x18/0x24 [ 107.667853][ C1] softirqs last enabled at (54): [] local_bh_enable+0x10/0x34 [ 107.670443][ C1] softirqs last disabled at (52): [] local_bh_disable+0x10/0x34 [ 107.672962][ C1] ---[ end trace 5ca76294e75f1885 ]--- [ 107.711747][ T5030] loop0: detected capacity change from 0 to 128 [ 107.716207][ T5030] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.718310][ T5030] Bad inode number on dev loop0: 2 is out of range [ 107.720033][ T5030] SysV FS: get root inode failed [ 107.721380][ T5030] oldfs: cannot read superblock [ 107.728676][ C0] ------------[ cut here ]------------ [ 107.730217][ C0] VFS: brelse: Trying to free free buffer [ 107.731798][ C0] WARNING: CPU: 0 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.734225][ C0] Modules linked in: [ 107.735302][ C0] CPU: 0 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 107.737877][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.740620][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.742730][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 107.744081][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 107.745527][ C0] sp : ffff800008007de0 [ 107.746673][ C0] x29: ffff800008007de0 x28: ffff0000c1bf9b40 x27: 1fffe0003421845c [ 107.748807][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 107.751012][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee77230 [ 107.753180][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 107.755301][ C0] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 107.757411][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.759532][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : abd15cb6bd53e700 [ 107.761709][ C0] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.763933][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 107.766061][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 107.768179][ C0] Call trace: [ 107.769095][ C0] invalidate_bh_lru+0x128/0x234 [ 107.770423][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 107.772080][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 107.773963][ C0] ipi_handler+0x10c/0x710 [ 107.775156][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 107.776631][ C0] handle_domain_irq+0x144/0x1fc [ 107.777913][ C0] gic_handle_irq+0x78/0x1c8 [ 107.779134][ C0] call_on_irq_stack+0x24/0x30 [ 107.780446][ C0] do_interrupt_handler+0x6c/0x88 [ 107.781928][ C0] el1_interrupt+0x30/0x58 [ 107.783154][ C0] el1h_64_irq_handler+0x18/0x24 [ 107.784500][ C0] el1h_64_irq+0x78/0x7c [ 107.785655][ C0] rcu_lockdep_current_cpu_online+0xc4/0x1e0 [ 107.787316][ C0] rcu_read_lock_held+0x20/0x50 [ 107.788585][ C0] __d_lookup_rcu+0x108/0x67c [ 107.789948][ C0] lookup_fast+0x110/0x588 [ 107.791073][ C0] walk_component+0x8c/0x3a8 [ 107.792350][ C0] link_path_walk+0x590/0xb8c [ 107.793643][ C0] __filename_parentat+0x1b0/0x510 [ 107.795093][ C0] do_unlinkat+0xdc/0x600 [ 107.796277][ C0] __arm64_sys_unlinkat+0xe0/0xfc [ 107.797669][ C0] invoke_syscall+0x98/0x2b8 [ 107.798990][ C0] el0_svc_common+0x138/0x258 [ 107.800244][ C0] do_el0_svc+0x58/0x14c [ 107.801392][ C0] el0_svc+0x78/0x1e0 [ 107.802567][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 107.803967][ C0] el0t_64_sync+0x1a0/0x1a4 [ 107.805144][ C0] irq event stamp: 339050 [ 107.806323][ C0] hardirqs last enabled at (339049): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 107.809351][ C0] hardirqs last disabled at (339050): [] enter_el1_irq_or_nmi+0x10/0x1c [ 107.812053][ C0] softirqs last enabled at (338728): [] local_bh_enable+0x10/0x34 [ 107.814663][ C0] softirqs last disabled at (338726): [] local_bh_disable+0x10/0x34 [ 107.817317][ C0] ---[ end trace 5ca76294e75f1886 ]--- [ 107.858185][ T5032] loop0: detected capacity change from 0 to 128 [ 107.862154][ T5032] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.864231][ T5032] Bad inode number on dev loop0: 2 is out of range [ 107.866093][ T5032] SysV FS: get root inode failed [ 107.867579][ T5032] oldfs: cannot read superblock [ 107.883109][ C1] ------------[ cut here ]------------ [ 107.884704][ C1] VFS: brelse: Trying to free free buffer [ 107.886368][ C1] WARNING: CPU: 1 PID: 5034 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.888869][ C1] Modules linked in: [ 107.889972][ C1] CPU: 1 PID: 5034 Comm: syz.0.72 Tainted: G W 5.15.187-syzkaller #0 [ 107.892562][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.895290][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.897490][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 107.898899][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 107.900326][ C1] sp : ffff800008017de0 [ 107.901465][ C1] x29: ffff800008017de0 x28: ffff0000cc8f0000 x27: 1fffe0003421c65c [ 107.903623][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 107.905802][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee9fb40 [ 107.907988][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 107.910210][ C1] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 107.912512][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.914740][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : c334d5e56efb9000 [ 107.916956][ C1] x8 : c334d5e56efb9000 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.919136][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 107.921339][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 107.923496][ C1] Call trace: [ 107.924362][ C1] invalidate_bh_lru+0x128/0x234 [ 107.925713][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 107.927398][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 107.929297][ C1] ipi_handler+0x10c/0x710 [ 107.930455][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 107.931951][ C1] handle_domain_irq+0x144/0x1fc [ 107.933245][ C1] gic_handle_irq+0x78/0x1c8 [ 107.934466][ C1] call_on_irq_stack+0x24/0x30 [ 107.935780][ C1] do_interrupt_handler+0x6c/0x88 [ 107.937185][ C1] el1_interrupt+0x30/0x58 [ 107.938365][ C1] el1h_64_irq_handler+0x18/0x24 [ 107.939754][ C1] el1h_64_irq+0x78/0x7c [ 107.940901][ C1] lock_page_memcg+0x120/0x234 [ 107.942250][ C1] page_add_file_rmap+0x148/0x8e4 [ 107.943626][ C1] do_set_pte+0x394/0x4e0 [ 107.944793][ C1] filemap_map_pages+0x9c4/0xc50 [ 107.946107][ C1] handle_mm_fault+0x19c0/0x2950 [ 107.947444][ C1] do_page_fault+0x694/0xad4 [ 107.948681][ C1] do_translation_fault+0xe0/0x130 [ 107.950038][ C1] do_mem_abort+0x6c/0x1ac [ 107.951276][ C1] el0_da+0x90/0x1fc [ 107.952341][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 107.953768][ C1] el0t_64_sync+0x1a0/0x1a4 [ 107.955014][ C1] irq event stamp: 106 [ 107.956065][ C1] hardirqs last enabled at (105): [] lock_page_memcg+0x110/0x234 [ 107.958568][ C1] hardirqs last disabled at (106): [] enter_el1_irq_or_nmi+0x10/0x1c [ 107.961251][ C1] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 107.963736][ C1] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 107.966236][ C1] ---[ end trace 5ca76294e75f1887 ]--- [ 108.019077][ T5034] loop0: detected capacity change from 0 to 128 [ 108.034474][ T5034] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.036524][ T5034] Bad inode number on dev loop0: 2 is out of range [ 108.038292][ T5034] SysV FS: get root inode failed [ 108.039583][ T5034] oldfs: cannot read superblock [ 108.040889][ T5034] ------------[ cut here ]------------ [ 108.042322][ T5034] VFS: brelse: Trying to free free buffer [ 108.043890][ T5034] WARNING: CPU: 1 PID: 5034 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.046477][ T5034] Modules linked in: [ 108.047533][ T5034] CPU: 1 PID: 5034 Comm: syz.0.72 Tainted: G W 5.15.187-syzkaller #0 [ 108.050256][ T5034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.053069][ T5034] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.055250][ T5034] pc : invalidate_bh_lru+0x128/0x234 [ 108.056729][ T5034] lr : invalidate_bh_lru+0x128/0x234 [ 108.058273][ T5034] sp : ffff80001fcd76e0 [ 108.059397][ T5034] x29: ffff80001fcd76e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 108.061588][ T5034] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 108.063964][ T5034] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee9fee0 [ 108.066140][ T5034] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 108.068277][ T5034] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.070364][ T5034] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.072535][ T5034] x11: 0000000000000002 x10: 0000000000000000 x9 : c334d5e56efb9000 [ 108.074693][ T5034] x8 : c334d5e56efb9000 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.076845][ T5034] x5 : ffff80001fcd6fd8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.079041][ T5034] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.081173][ T5034] Call trace: [ 108.082041][ T5034] invalidate_bh_lru+0x128/0x234 [ 108.083396][ T5034] smp_call_function_many_cond+0xa50/0xeb0 [ 108.084920][ T5034] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.086347][ T5034] invalidate_bh_lrus+0x34/0x40 [ 108.087735][ T5034] blkdev_flush_mapping+0x168/0x31c [ 108.089166][ T5034] blkdev_put+0x490/0x6ac [ 108.090325][ T5034] kill_block_super+0x98/0xdc [ 108.091735][ T5034] deactivate_locked_super+0xb8/0x13c [ 108.093362][ T5034] mount_bdev+0x284/0x358 [ 108.094606][ T5034] sysv_mount+0x44/0x58 [ 108.095817][ T5034] legacy_get_tree+0xd4/0x16c [ 108.097084][ T5034] vfs_get_tree+0x90/0x274 [ 108.098351][ T5034] do_new_mount+0x228/0x810 [ 108.099564][ T5034] path_mount+0x5b4/0x1000 [ 108.100799][ T5034] __arm64_sys_mount+0x514/0x5e4 [ 108.102207][ T5034] invoke_syscall+0x98/0x2b8 [ 108.103422][ T5034] el0_svc_common+0x138/0x258 [ 108.104708][ T5034] do_el0_svc+0x58/0x14c [ 108.105905][ T5034] el0_svc+0x78/0x1e0 [ 108.107012][ T5034] el0t_64_sync_handler+0xcc/0xe4 [ 108.108355][ T5034] el0t_64_sync+0x1a0/0x1a4 [ 108.109684][ T5034] irq event stamp: 1262 [ 108.110827][ T5034] hardirqs last enabled at (1261): [] kasan_quarantine_put+0xc4/0x204 [ 108.113480][ T5034] hardirqs last disabled at (1262): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.116375][ T5034] softirqs last enabled at (888): [] local_bh_enable+0x10/0x34 [ 108.118941][ T5034] softirqs last disabled at (886): [] local_bh_disable+0x10/0x34 [ 108.121553][ T5034] ---[ end trace 5ca76294e75f1888 ]--- [ 108.230262][ T5038] loop0: detected capacity change from 0 to 128 [ 108.238127][ T5038] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.240334][ T5038] Bad inode number on dev loop0: 2 is out of range [ 108.242111][ T5038] SysV FS: get root inode failed [ 108.243557][ T5038] oldfs: cannot read superblock [ 108.256444][ T4486] ------------[ cut here ]------------ [ 108.258032][ T4486] VFS: brelse: Trying to free free buffer [ 108.259641][ T4486] WARNING: CPU: 1 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.262063][ T4486] Modules linked in: [ 108.263102][ T4486] CPU: 1 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 108.265628][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.268363][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.270475][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 108.271879][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 108.273310][ T4486] sp : ffff80001f6977c0 [ 108.274510][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 108.276794][ T4486] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 108.278970][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000decc9318 [ 108.281219][ T4486] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 108.283350][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.285483][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.287666][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 108.289841][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.291935][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.294192][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.296414][ T4486] Call trace: [ 108.297344][ T4486] invalidate_bh_lru+0x128/0x234 [ 108.298736][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 108.300318][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.301711][ T4486] invalidate_bh_lrus+0x34/0x40 [ 108.303073][ T4486] blkdev_flush_mapping+0x168/0x31c [ 108.304526][ T4486] blkdev_put+0x490/0x6ac [ 108.305702][ T4486] blkdev_close+0x74/0xb0 [ 108.306849][ T4486] __fput+0x1c0/0x7f8 [ 108.307987][ T4486] ____fput+0x20/0x30 [ 108.309056][ T4486] task_work_run+0x12c/0x1e0 [ 108.310295][ T4486] do_notify_resume+0x24b4/0x3128 [ 108.311660][ T4486] el0_svc+0xf0/0x1e0 [ 108.312759][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 108.314103][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 108.315361][ T4486] irq event stamp: 347554 [ 108.316580][ T4486] hardirqs last enabled at (347553): [] kasan_quarantine_put+0xc4/0x204 [ 108.319273][ T4486] hardirqs last disabled at (347554): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.322150][ T4486] softirqs last enabled at (346906): [] local_bh_enable+0x10/0x34 [ 108.324779][ T4486] softirqs last disabled at (346904): [] local_bh_disable+0x10/0x34 [ 108.327447][ T4486] ---[ end trace 5ca76294e75f1889 ]--- [ 108.351773][ T5040] loop0: detected capacity change from 0 to 128 [ 108.362308][ T5040] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.364640][ T5040] Bad inode number on dev loop0: 2 is out of range [ 108.366380][ T5040] SysV FS: get root inode failed [ 108.367652][ T5040] oldfs: cannot read superblock [ 108.382141][ C1] ------------[ cut here ]------------ [ 108.383671][ C1] VFS: brelse: Trying to free free buffer [ 108.385340][ C1] WARNING: CPU: 1 PID: 4645 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.387737][ C1] Modules linked in: [ 108.388840][ C1] CPU: 1 PID: 4645 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 108.391527][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.394225][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.396432][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 108.397890][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 108.399369][ C1] sp : ffff800008017de0 [ 108.400548][ C1] x29: ffff800008017de0 x28: ffff0000c1bf9b40 x27: 1fffe0003421c65c [ 108.402723][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 108.404971][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000decc96b8 [ 108.407274][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 108.409427][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.411645][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.413799][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : abd15cb6bd53e700 [ 108.415978][ C1] x8 : abd15cb6bd53e700 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.418255][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.420450][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 108.422689][ C1] Call trace: [ 108.423565][ C1] invalidate_bh_lru+0x128/0x234 [ 108.424925][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 108.426621][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.428508][ C1] ipi_handler+0x10c/0x710 [ 108.429726][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 108.431206][ C1] handle_domain_irq+0x144/0x1fc [ 108.432578][ C1] gic_handle_irq+0x78/0x1c8 [ 108.433818][ C1] call_on_irq_stack+0x24/0x30 [ 108.435107][ C1] do_interrupt_handler+0x6c/0x88 [ 108.436449][ C1] el1_interrupt+0x30/0x58 [ 108.437651][ C1] el1h_64_irq_handler+0x18/0x24 [ 108.439101][ C1] el1h_64_irq+0x78/0x7c [ 108.440293][ C1] try_charge_memcg+0x1e8/0x11bc [ 108.441620][ C1] obj_cgroup_charge_pages+0x8c/0x1a0 [ 108.443108][ C1] __memcg_kmem_charge_page+0x3c0/0x59c [ 108.444549][ C1] dup_task_struct+0x828/0xc44 [ 108.445885][ C1] copy_process+0x4c8/0x34ac [ 108.447121][ C1] kernel_clone+0x1d8/0x9d4 [ 108.448371][ C1] __arm64_sys_clone+0x138/0x190 [ 108.449691][ C1] invoke_syscall+0x98/0x2b8 [ 108.450924][ C1] el0_svc_common+0x138/0x258 [ 108.452225][ C1] do_el0_svc+0x58/0x14c [ 108.453383][ C1] el0_svc+0x78/0x1e0 [ 108.454453][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 108.455883][ C1] el0t_64_sync+0x1a0/0x1a4 [ 108.457096][ C1] irq event stamp: 355826 [ 108.458259][ C1] hardirqs last enabled at (355825): [] try_charge_memcg+0x1d8/0x11bc [ 108.461004][ C1] hardirqs last disabled at (355826): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.463755][ C1] softirqs last enabled at (355746): [] release_sock+0x1d0/0x258 [ 108.466460][ C1] softirqs last disabled at (355744): [] release_sock+0x34/0x258 [ 108.469061][ C1] ---[ end trace 5ca76294e75f188a ]--- [ 108.508413][ T5042] loop0: detected capacity change from 0 to 128 [ 108.512596][ T5042] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.514645][ T5042] Bad inode number on dev loop0: 2 is out of range [ 108.516465][ T5042] SysV FS: get root inode failed [ 108.517839][ T5042] oldfs: cannot read superblock [ 108.538355][ T4486] ------------[ cut here ]------------ [ 108.539793][ T4486] VFS: brelse: Trying to free free buffer [ 108.541388][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.543824][ T4486] Modules linked in: [ 108.544888][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 108.547462][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.550173][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.552380][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 108.553865][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 108.555276][ T4486] sp : ffff80001f6977c0 [ 108.556395][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 108.558575][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 108.560887][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee775d0 [ 108.563069][ T4486] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 108.565348][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.567618][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.569781][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 108.572134][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.574331][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.576522][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.578681][ T4486] Call trace: [ 108.579625][ T4486] invalidate_bh_lru+0x128/0x234 [ 108.580980][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 108.582576][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.583948][ T4486] invalidate_bh_lrus+0x34/0x40 [ 108.585314][ T4486] blkdev_flush_mapping+0x168/0x31c [ 108.586770][ T4486] blkdev_put+0x490/0x6ac [ 108.588003][ T4486] blkdev_close+0x74/0xb0 [ 108.589222][ T4486] __fput+0x1c0/0x7f8 [ 108.590422][ T4486] ____fput+0x20/0x30 [ 108.591510][ T4486] task_work_run+0x12c/0x1e0 [ 108.592731][ T4486] do_notify_resume+0x24b4/0x3128 [ 108.594085][ T4486] el0_svc+0xf0/0x1e0 [ 108.595174][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 108.596638][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 108.597943][ T4486] irq event stamp: 356842 [ 108.599145][ T4486] hardirqs last enabled at (356841): [] kasan_quarantine_put+0xc4/0x204 [ 108.601951][ T4486] hardirqs last disabled at (356842): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.604903][ T4486] softirqs last enabled at (355330): [] local_bh_enable+0x10/0x34 [ 108.607530][ T4486] softirqs last disabled at (355328): [] local_bh_disable+0x10/0x34 [ 108.610141][ T4486] ---[ end trace 5ca76294e75f188b ]--- [ 108.639153][ T5044] loop0: detected capacity change from 0 to 128 [ 108.677929][ T5044] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.679937][ T5044] Bad inode number on dev loop0: 2 is out of range [ 108.681823][ T5044] SysV FS: get root inode failed [ 108.683177][ T5044] oldfs: cannot read superblock [ 108.697356][ T4486] ------------[ cut here ]------------ [ 108.698901][ T4486] VFS: brelse: Trying to free free buffer [ 108.700486][ T4486] WARNING: CPU: 0 PID: 4486 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.702818][ T4486] Modules linked in: [ 108.703843][ T4486] CPU: 0 PID: 4486 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 108.706410][ T4486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.709107][ T4486] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.711197][ T4486] pc : invalidate_bh_lru+0x128/0x234 [ 108.712626][ T4486] lr : invalidate_bh_lru+0x128/0x234 [ 108.714019][ T4486] sp : ffff80001f6977c0 [ 108.715139][ T4486] x29: ffff80001f6977c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 108.717318][ T4486] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 108.719479][ T4486] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee77970 [ 108.721719][ T4486] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 108.723971][ T4486] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.726172][ T4486] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.728480][ T4486] x11: 0000000000000002 x10: 0000000000000000 x9 : 89f929b8a5b09800 [ 108.730618][ T4486] x8 : 89f929b8a5b09800 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.732802][ T4486] x5 : ffff80001f6970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.735052][ T4486] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.737279][ T4486] Call trace: [ 108.738185][ T4486] invalidate_bh_lru+0x128/0x234 [ 108.739580][ T4486] smp_call_function_many_cond+0xa50/0xeb0 [ 108.741143][ T4486] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.742504][ T4486] invalidate_bh_lrus+0x34/0x40 [ 108.743773][ T4486] blkdev_flush_mapping+0x168/0x31c [ 108.745222][ T4486] blkdev_put+0x490/0x6ac [ 108.746338][ T4486] blkdev_close+0x74/0xb0 [ 108.747508][ T4486] __fput+0x1c0/0x7f8 [ 108.748645][ T4486] ____fput+0x20/0x30 [ 108.749697][ T4486] task_work_run+0x12c/0x1e0 [ 108.750928][ T4486] do_notify_resume+0x24b4/0x3128 [ 108.752331][ T4486] el0_svc+0xf0/0x1e0 [ 108.753352][ T4486] el0t_64_sync_handler+0xcc/0xe4 [ 108.754714][ T4486] el0t_64_sync+0x1a0/0x1a4 [ 108.755990][ T4486] irq event stamp: 360512 [ 108.757159][ T4486] hardirqs last enabled at (360511): [] kasan_quarantine_put+0xc4/0x204 [ 108.759857][ T4486] hardirqs last disabled at (360512): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.762936][ T4486] softirqs last enabled at (359468): [] handle_softirqs+0xa4c/0xbf0 [ 108.765604][ T4486] softirqs last disabled at (359457): [] __irq_exit_rcu+0x240/0x440 [ 108.768204][ T4486] ---[ end trace 5ca76294e75f188c ]--- [ 108.789017][ T5046] loop0: detected capacity change from 0 to 128 [ 108.792988][ T5046] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.796151][ T5046] Bad inode number on dev loop0: 2 is out of range [ 108.797860][ T5046] SysV FS: get root inode failed [ 108.799119][ T5046] oldfs: cannot read superblock [ 108.818270][ C0] ------------[ cut here ]------------ [ 108.819926][ C0] VFS: brelse: Trying to free free buffer [ 108.821575][ C0] WARNING: CPU: 0 PID: 5047 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.824110][ C0] Modules linked in: [ 108.825227][ C0] CPU: 0 PID: 5047 Comm: syz.0.79 Tainted: G W 5.15.187-syzkaller #0 [ 108.827810][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.830525][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.832619][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 108.834112][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 108.835529][ C0] sp : ffff800008007de0 [ 108.836719][ C0] x29: ffff800008007de0 x28: ffff0000d248b680 x27: 1fffe0003421845c [ 108.838944][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 108.841144][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dee77d10 [ 108.843344][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010004 [ 108.845633][ C0] x17: 0000000000010004 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.847826][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.850054][ C0] x11: 0000000000010003 x10: 0000000000010003 x9 : 2d389ef5483b1900 [ 108.852269][ C0] x8 : 2d389ef5483b1900 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.854448][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.856599][ C0] x2 : 0000000000000001 x1 : 0000000100010003 x0 : 0000000000000027 [ 108.858786][ C0] Call trace: [ 108.859719][ C0] invalidate_bh_lru+0x128/0x234 [ 108.861121][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 108.862839][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.864746][ C0] ipi_handler+0x10c/0x710 [ 108.865998][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 108.867532][ C0] handle_domain_irq+0x144/0x1fc [ 108.868851][ C0] gic_handle_irq+0x78/0x1c8 [ 108.870141][ C0] call_on_irq_stack+0x24/0x30 [ 108.871481][ C0] do_interrupt_handler+0x6c/0x88 [ 108.872821][ C0] el1_interrupt+0x30/0x58 [ 108.874005][ C0] el1h_64_irq_handler+0x18/0x24 [ 108.875342][ C0] el1h_64_irq+0x78/0x7c [ 108.876562][ C0] free_unref_page_list+0x6d8/0x754 [ 108.877963][ C0] release_pages+0x13c8/0x16e0 [ 108.879286][ C0] __pagevec_lru_add+0x12d4/0x15d4 [ 108.880677][ C0] lru_cache_add+0x470/0x6e4 [ 108.881935][ C0] lru_cache_add_inactive_or_unevictable+0x130/0x2f0 [ 108.883806][ C0] handle_mm_fault+0x22cc/0x2950 [ 108.885194][ C0] do_page_fault+0x694/0xad4 [ 108.886465][ C0] do_translation_fault+0xe0/0x130 [ 108.887927][ C0] do_mem_abort+0x6c/0x1ac [ 108.889205][ C0] el0_da+0x90/0x1fc [ 108.890243][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 108.891636][ C0] el0t_64_sync+0x1a0/0x1a4 [ 108.892790][ C0] irq event stamp: 1786 [ 108.893904][ C0] hardirqs last enabled at (1785): [] free_unref_page_list+0x6c8/0x754 [ 108.896565][ C0] hardirqs last disabled at (1786): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.899238][ C0] softirqs last enabled at (114): [] handle_softirqs+0xa4c/0xbf0 [ 108.901831][ C0] softirqs last disabled at (103): [] __irq_exit_rcu+0x240/0x440 [ 108.904498][ C0] ---[ end trace 5ca76294e75f188d ]--- [ 108.948536][ T5048] loop0: detected capacity change from 0 to 128 [ 108.952754][ T5048] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.954873][ T5048] Bad inode number on dev loop0: 2 is out of range