Warning: Permanently added '10.128.0.42' (ED25519) to the list of known hosts. 1970/01/01 00:01:26 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:26 parsed 1 programs [ 89.405084][ T4450] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 97.587947][ T1779] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.590200][ T1779] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.592866][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 97.603413][ T1779] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.606270][ T1779] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.609369][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 97.876638][ T4512] chnl_net:caif_netlink_parms(): no params data found [ 97.911407][ T4512] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.913517][ T4512] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.918038][ T4512] device bridge_slave_0 entered promiscuous mode [ 97.922217][ T4512] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.924546][ T4512] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.927175][ T4512] device bridge_slave_1 entered promiscuous mode [ 97.944933][ T4512] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.950416][ T4512] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.967033][ T4512] team0: Port device team_slave_0 added [ 97.970533][ T4512] team0: Port device team_slave_1 added [ 97.985752][ T4512] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.987761][ T4512] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.996138][ T4512] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.000561][ T4512] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.002406][ T4512] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.009579][ T4512] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.065778][ T4512] device hsr_slave_0 entered promiscuous mode [ 98.104271][ T4512] device hsr_slave_1 entered promiscuous mode [ 98.970523][ T4512] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.995595][ T4512] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 99.025981][ T4512] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 99.098390][ T4512] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 99.192553][ T4512] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.199730][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 99.202384][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 99.207927][ T4512] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.216937][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 99.219750][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 99.222263][ T1779] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.224279][ T1779] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.227954][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 99.230708][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 99.233250][ T1779] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.235158][ T1779] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.248381][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 99.251421][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 99.255916][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 99.258838][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 99.262405][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 99.275719][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 99.278766][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 99.281641][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 99.284813][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 99.287406][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 99.290009][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 99.292565][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 99.298583][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 99.380782][ T4512] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.386168][ T4161] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 99.388309][ T4161] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 99.400662][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 99.403459][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 99.417074][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 99.419839][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 99.422717][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 99.428368][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 99.459853][ T4512] device veth0_vlan entered promiscuous mode [ 99.468358][ T4512] device veth1_vlan entered promiscuous mode [ 99.485813][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 99.488561][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 99.491305][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 99.495267][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 99.500154][ T4512] device veth0_macvtap entered promiscuous mode [ 99.506208][ T4512] device veth1_macvtap entered promiscuous mode [ 99.517009][ T4512] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.519095][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 99.521857][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 99.527505][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 99.530676][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 99.536629][ T4512] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.540651][ T4512] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.543038][ T4512] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.547483][ T4512] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.549913][ T4512] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.555039][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 99.558384][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 1970/01/01 00:01:39 executed programs: 0 [ 99.799856][ T4616] chnl_net:caif_netlink_parms(): no params data found [ 99.838793][ T4616] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.840876][ T4616] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.843549][ T4616] device bridge_slave_0 entered promiscuous mode [ 99.849372][ T4616] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.851516][ T4616] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.855920][ T4616] device bridge_slave_1 entered promiscuous mode [ 99.873387][ T4616] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 99.879507][ T4616] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 99.897582][ T4616] team0: Port device team_slave_0 added [ 99.900801][ T4616] team0: Port device team_slave_1 added [ 99.916355][ T4616] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 99.918262][ T4616] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.926985][ T4616] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 99.931112][ T4616] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 99.932937][ T4616] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.941070][ T4616] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 100.006935][ T4616] device hsr_slave_0 entered promiscuous mode [ 100.044138][ T4616] device hsr_slave_1 entered promiscuous mode [ 100.064501][ T4616] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 100.066610][ T4616] Cannot create hsr debugfs directory [ 100.126297][ T4616] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.703938][ T4124] Bluetooth: hci0: command 0x0409 tx timeout [ 102.915493][ T4616] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.783886][ T4124] Bluetooth: hci0: command 0x041b tx timeout [ 105.340279][ T4616] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.430286][ T4616] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.580180][ T4616] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 105.650833][ T4616] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 105.701628][ T4616] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 105.760969][ T4616] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 105.864290][ T4125] Bluetooth: hci0: command 0x040f tx timeout [ 105.871241][ T4616] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.879304][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 105.882013][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 105.890117][ T4616] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.896483][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 105.899384][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 105.901998][ T1779] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.904071][ T1779] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.907548][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 105.918369][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 105.921366][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 105.926516][ T1779] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.928621][ T1779] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.933508][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 105.939784][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 105.951948][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 105.955352][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 105.958282][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 105.963185][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 105.966983][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 105.972407][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 105.975602][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 105.980684][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 105.983400][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 105.989193][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 106.074067][ T4161] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 106.076303][ T4161] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 106.082909][ T4616] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.096147][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 106.099017][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 106.112689][ T9] device hsr_slave_0 left promiscuous mode [ 106.164209][ T9] device hsr_slave_1 left promiscuous mode [ 106.253957][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 106.256091][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 106.258590][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 106.260671][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 106.263110][ T9] device bridge_slave_1 left promiscuous mode [ 106.265014][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.314846][ T9] device bridge_slave_0 left promiscuous mode [ 106.316777][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.454034][ T9] device veth1_macvtap left promiscuous mode [ 106.455727][ T9] device veth0_macvtap left promiscuous mode [ 106.457378][ T9] device veth1_vlan left promiscuous mode [ 106.459015][ T9] device veth0_vlan left promiscuous mode [ 106.637228][ T9] team0 (unregistering): Port device team_slave_1 removed [ 106.645489][ T9] team0 (unregistering): Port device team_slave_0 removed [ 106.652720][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 106.680761][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 106.800330][ T9] bond0 (unregistering): Released all slaves [ 106.921926][ T4616] device veth0_vlan entered promiscuous mode [ 106.928577][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 106.931505][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 106.941200][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 106.944297][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 106.948835][ T4616] device veth1_vlan entered promiscuous mode [ 106.968516][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 106.971469][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 106.980009][ T4616] device veth0_macvtap entered promiscuous mode [ 106.986853][ T4616] device veth1_macvtap entered promiscuous mode [ 107.001553][ T4616] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.004563][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 107.007344][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 107.009962][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 107.012663][ T1779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 107.024676][ T4616] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.026873][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 107.029982][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 107.035521][ T4616] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.038135][ T4616] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.040701][ T4616] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.043262][ T4616] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.095780][ T1779] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.098014][ T1779] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.101020][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 107.120766][ T1779] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.123163][ T1779] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.126680][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:47 executed programs: 2 [ 107.181146][ T4892] loop0: detected capacity change from 0 to 128 [ 107.293235][ T4892] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.300851][ T4892] Bad inode number on dev loop0: 2 is out of range [ 107.302634][ T4892] SysV FS: get root inode failed [ 107.313875][ T4892] oldfs: cannot read superblock [ 107.327488][ C0] ------------[ cut here ]------------ [ 107.329154][ C0] VFS: brelse: Trying to free free buffer [ 107.330853][ C0] WARNING: CPU: 0 PID: 4616 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.333270][ C0] Modules linked in: [ 107.334378][ C0] CPU: 0 PID: 4616 Comm: syz-executor Not tainted 5.15.187-syzkaller #0 [ 107.336574][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.339384][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.341572][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 107.343153][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 107.344667][ C0] sp : ffff800008007de0 [ 107.345892][ C0] x29: ffff800008007de0 x28: ffff0000d9c93680 x27: 1fffe0003421845c [ 107.348101][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 107.350283][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2114148 [ 107.352500][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 107.354618][ C0] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 107.356790][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.359000][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : e8800a58eeb82f00 [ 107.361236][ C0] x8 : e8800a58eeb82f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.363492][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 107.365646][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 107.367861][ C0] Call trace: [ 107.368742][ C0] invalidate_bh_lru+0x128/0x234 [ 107.370120][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 107.371752][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 107.373653][ C0] ipi_handler+0x10c/0x710 [ 107.374890][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 107.376456][ C0] handle_domain_irq+0x144/0x1fc [ 107.377901][ C0] gic_handle_irq+0x78/0x1c8 [ 107.379299][ C0] call_on_irq_stack+0x24/0x30 [ 107.380757][ C0] do_interrupt_handler+0x6c/0x88 [ 107.382189][ C0] el1_interrupt+0x30/0x58 [ 107.383354][ C0] el1h_64_irq_handler+0x18/0x24 [ 107.384887][ C0] el1h_64_irq+0x78/0x7c [ 107.386066][ C0] __sanitizer_cov_trace_cmp8+0x2c/0xc0 [ 107.387610][ C0] arch_stack_walk+0x200/0x2b4 [ 107.388846][ C0] stack_trace_save+0x94/0xd8 [ 107.390216][ C0] kasan_set_track+0x4c/0x84 [ 107.391500][ C0] kasan_set_free_info+0x28/0x4c [ 107.392843][ C0] ____kasan_slab_free+0x118/0x164 [ 107.394334][ C0] __kasan_slab_free+0x18/0x28 [ 107.395695][ C0] slab_free_freelist_hook+0x128/0x1e8 [ 107.397263][ C0] kmem_cache_free+0xdc/0x3b4 [ 107.398508][ C0] free_vmap_area_noflush+0x690/0x8d0 [ 107.399915][ C0] remove_vm_area+0x1ac/0x1c4 [ 107.401378][ C0] __vunmap+0x304/0x9bc [ 107.402504][ C0] vfree+0xbc/0x154 [ 107.403490][ C0] __do_replace+0x830/0x988 [ 107.404763][ C0] do_ip6t_set_ctl+0xa94/0xe00 [ 107.406139][ C0] nf_setsockopt+0x270/0x290 [ 107.407488][ C0] ipv6_setsockopt+0x1a18/0x36dc [ 107.408930][ C0] tcp_setsockopt+0x1d4/0x1bf4 [ 107.410200][ C0] sock_common_setsockopt+0xb0/0xcc [ 107.411586][ C0] __sys_setsockopt+0x2f8/0x4b0 [ 107.412930][ C0] __arm64_sys_setsockopt+0xb8/0xd4 [ 107.414393][ C0] invoke_syscall+0x98/0x2b8 [ 107.415729][ C0] el0_svc_common+0x138/0x258 [ 107.416981][ C0] do_el0_svc+0x58/0x14c [ 107.418205][ C0] el0_svc+0x78/0x1e0 [ 107.419308][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 107.420691][ C0] el0t_64_sync+0x1a0/0x1a4 [ 107.421964][ C0] irq event stamp: 118946 [ 107.423208][ C0] hardirqs last enabled at (118945): [] kasan_quarantine_put+0xc4/0x204 [ 107.426067][ C0] hardirqs last disabled at (118946): [] enter_el1_irq_or_nmi+0x10/0x1c [ 107.428963][ C0] softirqs last enabled at (118934): [] local_bh_enable+0x10/0x34 [ 107.431614][ C0] softirqs last disabled at (118932): [] local_bh_disable+0x10/0x34 [ 107.434313][ C0] ---[ end trace da7f9e8b5c98ce53 ]--- [ 107.480269][ T4894] loop0: detected capacity change from 0 to 128 [ 107.486049][ T4894] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.488027][ T4894] Bad inode number on dev loop0: 2 is out of range [ 107.489716][ T4894] SysV FS: get root inode failed [ 107.491045][ T4894] oldfs: cannot read superblock [ 107.508138][ T4487] ------------[ cut here ]------------ [ 107.509809][ T4487] VFS: brelse: Trying to free free buffer [ 107.511499][ T4487] WARNING: CPU: 1 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.513993][ T4487] Modules linked in: [ 107.515093][ T4487] CPU: 1 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 107.517773][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.520579][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.522782][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 107.524499][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 107.525998][ T4487] sp : ffff80001f2277c0 [ 107.527124][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 107.529322][ T4487] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 107.531634][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd5e6ee0 [ 107.533841][ T4487] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 107.536118][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 107.538292][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.540521][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 107.542816][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.545014][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 107.547282][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 107.549505][ T4487] Call trace: [ 107.550433][ T4487] invalidate_bh_lru+0x128/0x234 [ 107.551791][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 107.553445][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 107.555036][ T4487] invalidate_bh_lrus+0x34/0x40 [ 107.556488][ T4487] blkdev_flush_mapping+0x168/0x31c [ 107.557899][ T4487] blkdev_put+0x490/0x6ac [ 107.559166][ T4487] blkdev_close+0x74/0xb0 [ 107.560353][ T4487] __fput+0x1c0/0x7f8 [ 107.561422][ T4487] ____fput+0x20/0x30 [ 107.562518][ T4487] task_work_run+0x12c/0x1e0 [ 107.563755][ T4487] do_notify_resume+0x24b4/0x3128 [ 107.565054][ T4487] el0_svc+0xf0/0x1e0 [ 107.566170][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 107.567577][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 107.568832][ T4487] irq event stamp: 40148 [ 107.569964][ T4487] hardirqs last enabled at (40147): [] kasan_quarantine_put+0xc4/0x204 [ 107.572880][ T4487] hardirqs last disabled at (40148): [] smp_call_function_many_cond+0xa44/0xeb0 [ 107.575924][ T4487] softirqs last enabled at (38798): [] handle_softirqs+0xa4c/0xbf0 [ 107.578611][ T4487] softirqs last disabled at (38783): [] __irq_exit_rcu+0x240/0x440 [ 107.581224][ T4487] ---[ end trace da7f9e8b5c98ce54 ]--- [ 107.638582][ T4896] loop0: detected capacity change from 0 to 128 [ 107.643375][ T4896] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.645689][ T4896] Bad inode number on dev loop0: 2 is out of range [ 107.647941][ T4896] SysV FS: get root inode failed [ 107.649300][ T4896] oldfs: cannot read superblock [ 107.699398][ T4487] ------------[ cut here ]------------ [ 107.700949][ T4487] VFS: brelse: Trying to free free buffer [ 107.702573][ T4487] WARNING: CPU: 1 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.705149][ T4487] Modules linked in: [ 107.706224][ T4487] CPU: 1 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 107.708744][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.711507][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.713614][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 107.715100][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 107.716589][ T4487] sp : ffff80001f2277c0 [ 107.717726][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 107.719874][ T4487] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 107.722015][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd689148 [ 107.724150][ T4487] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 107.726285][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 107.728467][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.730615][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 107.732825][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.735200][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 107.737430][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 107.739741][ T4487] Call trace: [ 107.740645][ T4487] invalidate_bh_lru+0x128/0x234 [ 107.741976][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 107.743598][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 107.745058][ T4487] invalidate_bh_lrus+0x34/0x40 [ 107.746422][ T4487] blkdev_flush_mapping+0x168/0x31c [ 107.747828][ T4487] blkdev_put+0x490/0x6ac [ 107.749068][ T4487] blkdev_close+0x74/0xb0 [ 107.750314][ T4487] __fput+0x1c0/0x7f8 [ 107.751410][ T4487] ____fput+0x20/0x30 [ 107.752464][ T4487] task_work_run+0x12c/0x1e0 [ 107.753706][ T4487] do_notify_resume+0x24b4/0x3128 [ 107.755173][ T4487] el0_svc+0xf0/0x1e0 [ 107.756270][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 107.757659][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 107.758874][ T4487] irq event stamp: 45894 [ 107.760058][ T4487] hardirqs last enabled at (45893): [] kasan_quarantine_put+0xc4/0x204 [ 107.762746][ T4487] hardirqs last disabled at (45894): [] smp_call_function_many_cond+0xa44/0xeb0 [ 107.765632][ T4487] softirqs last enabled at (44594): [] local_bh_enable+0x10/0x34 [ 107.768223][ T4487] softirqs last disabled at (44592): [] local_bh_disable+0x10/0x34 [ 107.770825][ T4487] ---[ end trace da7f9e8b5c98ce55 ]--- [ 107.838930][ T4902] loop0: detected capacity change from 0 to 128 [ 107.845631][ T4902] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 107.847606][ T4902] Bad inode number on dev loop0: 2 is out of range [ 107.849406][ T4902] SysV FS: get root inode failed [ 107.850738][ T4902] oldfs: cannot read superblock [ 107.902751][ C1] ------------[ cut here ]------------ [ 107.904403][ C1] VFS: brelse: Trying to free free buffer [ 107.906080][ C1] WARNING: CPU: 1 PID: 3652 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 107.908587][ C1] Modules linked in: [ 107.909778][ C1] CPU: 1 PID: 3652 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 107.912249][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 107.915023][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 107.917120][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 107.918667][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 107.920110][ C1] sp : ffff800008017de0 [ 107.921205][ C1] x29: ffff800008017de0 x28: ffff0000d6990000 x27: 1fffe0003421c65c [ 107.923429][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 107.925645][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd6894e8 [ 107.927871][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 107.930038][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 107.932227][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 107.934434][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 6ab363681ea5f200 [ 107.936664][ C1] x8 : 6ab363681ea5f200 x7 : 0000000000000001 x6 : 0000000000000001 [ 107.938825][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 107.941024][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 107.943279][ C1] Call trace: [ 107.944163][ C1] invalidate_bh_lru+0x128/0x234 [ 107.945547][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 107.947214][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 107.949146][ C1] ipi_handler+0x10c/0x710 [ 107.950343][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 107.951811][ C1] handle_domain_irq+0x144/0x1fc [ 107.953200][ C1] gic_handle_irq+0x78/0x1c8 [ 107.954426][ C1] call_on_irq_stack+0x24/0x30 [ 107.955779][ C1] do_interrupt_handler+0x6c/0x88 [ 107.957178][ C1] el1_interrupt+0x30/0x58 [ 107.958408][ C1] el1h_64_irq_handler+0x18/0x24 [ 107.959752][ C1] el1h_64_irq+0x78/0x7c [ 107.960936][ C1] el0_svc_common+0xa8/0x258 [ 107.962118][ C1] do_el0_svc+0x58/0x14c [ 107.963254][ C1] el0_svc+0x78/0x1e0 [ 107.964362][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 107.965727][ C1] el0t_64_sync+0x1a0/0x1a4 [ 107.966922][ C1] irq event stamp: 1010930 [ 107.968168][ C1] hardirqs last enabled at (1010929): [] el0_svc_common+0x9c/0x258 [ 107.970765][ C1] hardirqs last disabled at (1010930): [] enter_el1_irq_or_nmi+0x10/0x1c [ 107.973531][ C1] softirqs last enabled at (1010260): [] local_bh_enable+0x10/0x34 [ 107.976250][ C1] softirqs last disabled at (1010258): [] local_bh_disable+0x10/0x34 [ 107.978886][ C1] ---[ end trace da7f9e8b5c98ce56 ]--- [ 107.981141][ T4124] Bluetooth: hci0: command 0x0419 tx timeout [ 108.026822][ T4908] loop0: detected capacity change from 0 to 128 [ 108.032852][ T4908] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.035444][ T4908] Bad inode number on dev loop0: 2 is out of range [ 108.037477][ T4908] SysV FS: get root inode failed [ 108.038800][ T4908] oldfs: cannot read superblock [ 108.057929][ C0] ------------[ cut here ]------------ [ 108.059554][ C0] VFS: brelse: Trying to free free buffer [ 108.061140][ C0] WARNING: CPU: 0 PID: 9 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.063573][ C0] Modules linked in: [ 108.064657][ C0] CPU: 0 PID: 9 Comm: kworker/u4:0 Tainted: G W 5.15.187-syzkaller #0 [ 108.067265][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.069998][ C0] Workqueue: netns cleanup_net [ 108.071275][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.073444][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 108.074917][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 108.076328][ C0] sp : ffff800008007de0 [ 108.077488][ C0] x29: ffff800008007de0 x28: ffff0000c0948000 x27: 1fffe0003421845c [ 108.079717][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 108.082001][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e21144e8 [ 108.084275][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 108.086427][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.088617][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.090876][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : ef904afe6d31c100 [ 108.093057][ C0] x8 : ef904afe6d31c100 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.095254][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.097534][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 108.099740][ C0] Call trace: [ 108.100602][ C0] invalidate_bh_lru+0x128/0x234 [ 108.102028][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 108.103758][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.105748][ C0] ipi_handler+0x10c/0x710 [ 108.107011][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 108.108475][ C0] handle_domain_irq+0x144/0x1fc [ 108.109780][ C0] gic_handle_irq+0x78/0x1c8 [ 108.111015][ C0] call_on_irq_stack+0x24/0x30 [ 108.112411][ C0] do_interrupt_handler+0x6c/0x88 [ 108.113809][ C0] el1_interrupt+0x30/0x58 [ 108.115041][ C0] el1h_64_irq_handler+0x18/0x24 [ 108.116478][ C0] el1h_64_irq+0x78/0x7c [ 108.117622][ C0] __local_bh_enable_ip+0x200/0x380 [ 108.119114][ C0] _raw_spin_unlock_bh+0xec/0x174 [ 108.120560][ C0] __batadv_dat_purge+0x2c4/0x374 [ 108.121978][ C0] batadv_dat_free+0x7c/0xc4 [ 108.123242][ C0] batadv_mesh_free+0x78/0x13c [ 108.124575][ C0] batadv_softif_free+0x20/0x34 [ 108.125875][ C0] netdev_run_todo+0x7d0/0x9cc [ 108.127211][ C0] rtnl_unlock+0x14/0x20 [ 108.128370][ C0] default_device_exit_batch+0x448/0x4a4 [ 108.129870][ C0] cleanup_net+0x644/0xa98 [ 108.131082][ C0] process_one_work+0x79c/0x1140 [ 108.132454][ C0] worker_thread+0x8f4/0x101c [ 108.133758][ C0] kthread+0x374/0x454 [ 108.134849][ C0] ret_from_fork+0x10/0x20 [ 108.136086][ C0] irq event stamp: 1476214 [ 108.137286][ C0] hardirqs last enabled at (1476213): [] __local_bh_enable_ip+0x1f8/0x380 [ 108.140073][ C0] hardirqs last disabled at (1476214): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.142858][ C0] softirqs last enabled at (1476212): [] __batadv_dat_purge+0x2c4/0x374 [ 108.145523][ C0] softirqs last disabled at (1476210): [] __batadv_dat_purge+0xe8/0x374 [ 108.148550][ C0] ---[ end trace da7f9e8b5c98ce57 ]--- [ 108.185752][ T4910] loop0: detected capacity change from 0 to 128 [ 108.199295][ T4910] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.201422][ T4910] Bad inode number on dev loop0: 2 is out of range [ 108.203220][ T4910] SysV FS: get root inode failed [ 108.205017][ T4910] oldfs: cannot read superblock [ 108.215236][ C1] ------------[ cut here ]------------ [ 108.216927][ C1] VFS: brelse: Trying to free free buffer [ 108.218584][ C1] WARNING: CPU: 1 PID: 4616 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.221145][ C1] Modules linked in: [ 108.222317][ C1] CPU: 1 PID: 4616 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 108.225159][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.227927][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.230086][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 108.231512][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 108.232930][ C1] sp : ffff800008017de0 [ 108.234026][ C1] x29: ffff800008017de0 x28: ffff0000d9c93680 x27: 1fffe0003421c65c [ 108.236311][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 108.238460][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd689888 [ 108.240652][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 108.242792][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.244966][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.247112][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : e8800a58eeb82f00 [ 108.249221][ C1] x8 : e8800a58eeb82f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.251337][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.253380][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 108.255417][ C1] Call trace: [ 108.256299][ C1] invalidate_bh_lru+0x128/0x234 [ 108.257639][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 108.259242][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.261142][ C1] ipi_handler+0x10c/0x710 [ 108.262311][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 108.263722][ C1] handle_domain_irq+0x144/0x1fc [ 108.265036][ C1] gic_handle_irq+0x78/0x1c8 [ 108.266279][ C1] call_on_irq_stack+0x24/0x30 [ 108.267568][ C1] do_interrupt_handler+0x6c/0x88 [ 108.269005][ C1] el1_interrupt+0x30/0x58 [ 108.270286][ C1] el1h_64_irq_handler+0x18/0x24 [ 108.271639][ C1] el1h_64_irq+0x78/0x7c [ 108.272996][ C1] local_daif_restore+0x20/0x3c [ 108.274379][ C1] el0_da+0x80/0x1fc [ 108.275486][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 108.276936][ C1] el0t_64_sync+0x1a0/0x1a4 [ 108.278250][ C1] irq event stamp: 138914 [ 108.279471][ C1] hardirqs last enabled at (138913): [] local_daif_restore+0x1c/0x3c [ 108.282132][ C1] hardirqs last disabled at (138914): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.285008][ C1] softirqs last enabled at (138908): [] release_sock+0x1d0/0x258 [ 108.287645][ C1] softirqs last disabled at (138906): [] release_sock+0x34/0x258 [ 108.290179][ C1] ---[ end trace da7f9e8b5c98ce58 ]--- [ 108.325533][ T4912] loop0: detected capacity change from 0 to 128 [ 108.351141][ T4912] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.353131][ T4912] Bad inode number on dev loop0: 2 is out of range [ 108.355041][ T4912] SysV FS: get root inode failed [ 108.356428][ T4912] oldfs: cannot read superblock [ 108.372662][ T4487] ------------[ cut here ]------------ [ 108.374207][ T4487] VFS: brelse: Trying to free free buffer [ 108.375929][ T4487] WARNING: CPU: 1 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.378349][ T4487] Modules linked in: [ 108.379398][ T4487] CPU: 1 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 108.381948][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.384642][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.386837][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 108.388352][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 108.389867][ T4487] sp : ffff80001f2277c0 [ 108.391097][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 108.393289][ T4487] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 108.395520][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd689c28 [ 108.397757][ T4487] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 108.399886][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.402138][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.404308][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 108.406500][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.408799][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.411017][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.413246][ T4487] Call trace: [ 108.414204][ T4487] invalidate_bh_lru+0x128/0x234 [ 108.415609][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 108.417211][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.418658][ T4487] invalidate_bh_lrus+0x34/0x40 [ 108.420038][ T4487] blkdev_flush_mapping+0x168/0x31c [ 108.421468][ T4487] blkdev_put+0x490/0x6ac [ 108.422657][ T4487] blkdev_close+0x74/0xb0 [ 108.423871][ T4487] __fput+0x1c0/0x7f8 [ 108.424948][ T4487] ____fput+0x20/0x30 [ 108.426027][ T4487] task_work_run+0x12c/0x1e0 [ 108.427279][ T4487] do_notify_resume+0x24b4/0x3128 [ 108.428584][ T4487] el0_svc+0xf0/0x1e0 [ 108.429663][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 108.431058][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 108.432276][ T4487] irq event stamp: 70134 [ 108.433417][ T4487] hardirqs last enabled at (70133): [] kasan_quarantine_put+0xc4/0x204 [ 108.436139][ T4487] hardirqs last disabled at (70134): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.439128][ T4487] softirqs last enabled at (69192): [] local_bh_enable+0x10/0x34 [ 108.441716][ T4487] softirqs last disabled at (69190): [] local_bh_disable+0x10/0x34 [ 108.444306][ T4487] ---[ end trace da7f9e8b5c98ce59 ]--- [ 108.488543][ T4914] loop0: detected capacity change from 0 to 128 [ 108.493486][ T4914] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.497351][ T4914] Bad inode number on dev loop0: 2 is out of range [ 108.505054][ T4914] SysV FS: get root inode failed [ 108.506526][ T4914] oldfs: cannot read superblock [ 108.546566][ C0] ------------[ cut here ]------------ [ 108.548172][ C0] VFS: brelse: Trying to free free buffer [ 108.549808][ C0] WARNING: CPU: 0 PID: 9 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.552153][ C0] Modules linked in: [ 108.553198][ C0] CPU: 0 PID: 9 Comm: kworker/u4:0 Tainted: G W 5.15.187-syzkaller #0 [ 108.555839][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.558628][ C0] Workqueue: netns cleanup_net [ 108.559958][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.562074][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 108.563514][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 108.565044][ C0] sp : ffff800008007de0 [ 108.566159][ C0] x29: ffff800008007de0 x28: ffff0000c0948000 x27: 1fffe0003421845c [ 108.568168][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 108.570446][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2114888 [ 108.572715][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 108.574939][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.577264][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.579491][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : ef904afe6d31c100 [ 108.581726][ C0] x8 : ef904afe6d31c100 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.584002][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.586245][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 108.588512][ C0] Call trace: [ 108.589444][ C0] invalidate_bh_lru+0x128/0x234 [ 108.590818][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 108.592476][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 108.594482][ C0] ipi_handler+0x10c/0x710 [ 108.595704][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 108.597243][ C0] handle_domain_irq+0x144/0x1fc [ 108.598642][ C0] gic_handle_irq+0x78/0x1c8 [ 108.599926][ C0] call_on_irq_stack+0x24/0x30 [ 108.601293][ C0] do_interrupt_handler+0x6c/0x88 [ 108.602726][ C0] el1_interrupt+0x30/0x58 [ 108.603905][ C0] el1h_64_irq_handler+0x18/0x24 [ 108.605267][ C0] el1h_64_irq+0x78/0x7c [ 108.606460][ C0] lock_acquire+0x108/0x620 [ 108.607705][ C0] rcu_lock_acquire+0x40/0x4c [ 108.609072][ C0] inet_twsk_purge+0x10c/0x7ac [ 108.610386][ C0] dccp_v6_exit_batch+0x20/0x2c [ 108.611683][ C0] cleanup_net+0x644/0xa98 [ 108.612949][ C0] process_one_work+0x79c/0x1140 [ 108.614321][ C0] worker_thread+0x8f4/0x101c [ 108.615678][ C0] kthread+0x374/0x454 [ 108.616819][ C0] ret_from_fork+0x10/0x20 [ 108.618114][ C0] irq event stamp: 1491740 [ 108.619323][ C0] hardirqs last enabled at (1491739): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 108.622232][ C0] hardirqs last disabled at (1491740): [] enter_el1_irq_or_nmi+0x10/0x1c [ 108.624948][ C0] softirqs last enabled at (1491732): [] handle_softirqs+0xa4c/0xbf0 [ 108.627740][ C0] softirqs last disabled at (1491705): [] __irq_exit_rcu+0x240/0x440 [ 108.630407][ C0] ---[ end trace da7f9e8b5c98ce5a ]--- [ 108.678174][ T4918] loop0: detected capacity change from 0 to 128 [ 108.687389][ T4918] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.689643][ T4918] Bad inode number on dev loop0: 2 is out of range [ 108.691514][ T4918] SysV FS: get root inode failed [ 108.692962][ T4918] oldfs: cannot read superblock [ 108.709781][ T4487] ------------[ cut here ]------------ [ 108.711457][ T4487] VFS: brelse: Trying to free free buffer [ 108.713217][ T4487] WARNING: CPU: 1 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.715766][ T4487] Modules linked in: [ 108.716820][ T4487] CPU: 1 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 108.719505][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.722384][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.724575][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 108.726099][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 108.727570][ T4487] sp : ffff80001f2277c0 [ 108.728696][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 108.730998][ T4487] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 108.733297][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd691318 [ 108.735578][ T4487] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 108.737908][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.740153][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.742416][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 108.744707][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.746875][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.749075][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.751588][ T4487] Call trace: [ 108.752544][ T4487] invalidate_bh_lru+0x128/0x234 [ 108.753889][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 108.755569][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.757081][ T4487] invalidate_bh_lrus+0x34/0x40 [ 108.758469][ T4487] blkdev_flush_mapping+0x168/0x31c [ 108.760012][ T4487] blkdev_put+0x490/0x6ac [ 108.761335][ T4487] blkdev_close+0x74/0xb0 [ 108.762587][ T4487] __fput+0x1c0/0x7f8 [ 108.763697][ T4487] ____fput+0x20/0x30 [ 108.764760][ T4487] task_work_run+0x12c/0x1e0 [ 108.766099][ T4487] do_notify_resume+0x24b4/0x3128 [ 108.767501][ T4487] el0_svc+0xf0/0x1e0 [ 108.768652][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 108.770058][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 108.771303][ T4487] irq event stamp: 78810 [ 108.772483][ T4487] hardirqs last enabled at (78809): [] kasan_quarantine_put+0xc4/0x204 [ 108.775220][ T4487] hardirqs last disabled at (78810): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.778242][ T4487] softirqs last enabled at (77460): [] handle_softirqs+0xa4c/0xbf0 [ 108.780937][ T4487] softirqs last disabled at (77445): [] __irq_exit_rcu+0x240/0x440 [ 108.783645][ T4487] ---[ end trace da7f9e8b5c98ce5b ]--- [ 108.842945][ T4920] loop0: detected capacity change from 0 to 128 [ 108.855424][ T4920] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 108.857486][ T4920] Bad inode number on dev loop0: 2 is out of range [ 108.859230][ T4920] SysV FS: get root inode failed [ 108.872974][ T4920] oldfs: cannot read superblock [ 108.876147][ T4920] ------------[ cut here ]------------ [ 108.877691][ T4920] VFS: brelse: Trying to free free buffer [ 108.879353][ T4920] WARNING: CPU: 1 PID: 4920 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 108.881829][ T4920] Modules linked in: [ 108.882861][ T4920] CPU: 1 PID: 4920 Comm: syz.0.29 Tainted: G W 5.15.187-syzkaller #0 [ 108.885601][ T4920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.888440][ T4920] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 108.890727][ T4920] pc : invalidate_bh_lru+0x128/0x234 [ 108.892196][ T4920] lr : invalidate_bh_lru+0x128/0x234 [ 108.893751][ T4920] sp : ffff80001f7376e0 [ 108.894991][ T4920] x29: ffff80001f7376e0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 108.897291][ T4920] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 108.899541][ T4920] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd6916b8 [ 108.901697][ T4920] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 108.903905][ T4920] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 108.906120][ T4920] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 108.908312][ T4920] x11: 0000000000000002 x10: 0000000000000000 x9 : 2952ee9822ccfc00 [ 108.910527][ T4920] x8 : 2952ee9822ccfc00 x7 : 0000000000000001 x6 : 0000000000000001 [ 108.912651][ T4920] x5 : ffff80001f736fd8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 108.914859][ T4920] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 108.917106][ T4920] Call trace: [ 108.917970][ T4920] invalidate_bh_lru+0x128/0x234 [ 108.919401][ T4920] smp_call_function_many_cond+0xa50/0xeb0 [ 108.920960][ T4920] on_each_cpu_cond_mask+0x5c/0xc4 [ 108.922323][ T4920] invalidate_bh_lrus+0x34/0x40 [ 108.923702][ T4920] blkdev_flush_mapping+0x168/0x31c [ 108.925223][ T4920] blkdev_put+0x490/0x6ac [ 108.926404][ T4920] kill_block_super+0x98/0xdc [ 108.927701][ T4920] deactivate_locked_super+0xb8/0x13c [ 108.929239][ T4920] mount_bdev+0x284/0x358 [ 108.930435][ T4920] sysv_mount+0x44/0x58 [ 108.931530][ T4920] legacy_get_tree+0xd4/0x16c [ 108.932911][ T4920] vfs_get_tree+0x90/0x274 [ 108.934128][ T4920] do_new_mount+0x228/0x810 [ 108.935361][ T4920] path_mount+0x5b4/0x1000 [ 108.936577][ T4920] __arm64_sys_mount+0x514/0x5e4 [ 108.938030][ T4920] invoke_syscall+0x98/0x2b8 [ 108.939272][ T4920] el0_svc_common+0x138/0x258 [ 108.940555][ T4920] do_el0_svc+0x58/0x14c [ 108.941722][ T4920] el0_svc+0x78/0x1e0 [ 108.942807][ T4920] el0t_64_sync_handler+0xcc/0xe4 [ 108.944222][ T4920] el0t_64_sync+0x1a0/0x1a4 [ 108.945474][ T4920] irq event stamp: 1050 [ 108.946629][ T4920] hardirqs last enabled at (1049): [] kasan_quarantine_put+0xc4/0x204 [ 108.949360][ T4920] hardirqs last disabled at (1050): [] smp_call_function_many_cond+0xa44/0xeb0 [ 108.952629][ T4920] softirqs last enabled at (1042): [] handle_softirqs+0xa4c/0xbf0 [ 108.955504][ T4920] softirqs last disabled at (1005): [] __irq_exit_rcu+0x240/0x440 [ 108.958266][ T4920] ---[ end trace da7f9e8b5c98ce5c ]--- [ 109.045893][ T4922] loop0: detected capacity change from 0 to 128 [ 109.053781][ T4922] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.055787][ T4922] Bad inode number on dev loop0: 2 is out of range [ 109.057673][ T4922] SysV FS: get root inode failed [ 109.058979][ T4922] oldfs: cannot read superblock [ 109.092108][ C0] ------------[ cut here ]------------ [ 109.093846][ C0] VFS: brelse: Trying to free free buffer [ 109.095516][ C0] WARNING: CPU: 0 PID: 9 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.097992][ C0] Modules linked in: [ 109.099052][ C0] CPU: 0 PID: 9 Comm: kworker/u4:0 Tainted: G W 5.15.187-syzkaller #0 [ 109.101726][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 109.104629][ C0] Workqueue: netns cleanup_net [ 109.105951][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.108484][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 109.110035][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 109.111504][ C0] sp : ffff800008007de0 [ 109.112691][ C0] x29: ffff800008007de0 x28: ffff0000c0948000 x27: 1fffe0003421845c [ 109.115111][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 109.117357][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e2114c28 [ 109.119689][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 109.122034][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 109.124372][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.126737][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : ef904afe6d31c100 [ 109.129077][ C0] x8 : ef904afe6d31c100 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.131408][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 109.133779][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 109.136023][ C0] Call trace: [ 109.136887][ C0] invalidate_bh_lru+0x128/0x234 [ 109.138279][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 109.140032][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 109.142016][ C0] ipi_handler+0x10c/0x710 [ 109.143349][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 109.144910][ C0] handle_domain_irq+0x144/0x1fc [ 109.146364][ C0] gic_handle_irq+0x78/0x1c8 [ 109.147655][ C0] call_on_irq_stack+0x24/0x30 [ 109.149095][ C0] do_interrupt_handler+0x6c/0x88 [ 109.150546][ C0] el1_interrupt+0x30/0x58 [ 109.151763][ C0] el1h_64_irq_handler+0x18/0x24 [ 109.153232][ C0] el1h_64_irq+0x78/0x7c [ 109.154498][ C0] lock_acquire+0xc0/0x620 [ 109.155734][ C0] rcu_lock_acquire+0x40/0x4c [ 109.156992][ C0] inet_twsk_purge+0x10c/0x7ac [ 109.158279][ C0] dccp_v4_exit_batch+0x20/0x2c [ 109.159669][ C0] cleanup_net+0x644/0xa98 [ 109.160968][ C0] process_one_work+0x79c/0x1140 [ 109.162506][ C0] worker_thread+0x8f4/0x101c [ 109.163924][ C0] kthread+0x374/0x454 [ 109.165122][ C0] ret_from_fork+0x10/0x20 [ 109.166488][ C0] irq event stamp: 1493732 [ 109.167712][ C0] hardirqs last enabled at (1493731): [] exit_to_kernel_mode+0xe0/0x168 [ 109.170502][ C0] hardirqs last disabled at (1493732): [] enter_el1_irq_or_nmi+0x10/0x1c [ 109.173320][ C0] softirqs last enabled at (1493724): [] handle_softirqs+0xa4c/0xbf0 [ 109.176021][ C0] softirqs last disabled at (1493711): [] __irq_exit_rcu+0x240/0x440 [ 109.178742][ C0] ---[ end trace da7f9e8b5c98ce5d ]--- [ 109.240037][ T4924] loop0: detected capacity change from 0 to 128 [ 109.277064][ T4924] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.279116][ T4924] Bad inode number on dev loop0: 2 is out of range [ 109.280928][ T4924] SysV FS: get root inode failed [ 109.291952][ T4924] oldfs: cannot read superblock [ 109.343548][ T4487] ------------[ cut here ]------------ [ 109.345272][ T4487] VFS: brelse: Trying to free free buffer [ 109.346955][ T4487] WARNING: CPU: 1 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.349463][ T4487] Modules linked in: [ 109.350541][ T4487] CPU: 1 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 109.353113][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 109.355862][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.357967][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 109.359471][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 109.360914][ T4487] sp : ffff80001f2277c0 [ 109.362038][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 109.364269][ T4487] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 109.366497][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd691a58 [ 109.368887][ T4487] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 109.371044][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 109.373307][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.375556][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 109.377839][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.380073][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 109.382228][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 109.384533][ T4487] Call trace: [ 109.385415][ T4487] invalidate_bh_lru+0x128/0x234 [ 109.386749][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 109.388322][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 109.389833][ T4487] invalidate_bh_lrus+0x34/0x40 [ 109.391286][ T4487] blkdev_flush_mapping+0x168/0x31c [ 109.392784][ T4487] blkdev_put+0x490/0x6ac [ 109.393959][ T4487] blkdev_close+0x74/0xb0 [ 109.395205][ T4487] __fput+0x1c0/0x7f8 [ 109.396340][ T4487] ____fput+0x20/0x30 [ 109.397533][ T4487] task_work_run+0x12c/0x1e0 [ 109.398833][ T4487] do_notify_resume+0x24b4/0x3128 [ 109.400264][ T4487] el0_svc+0xf0/0x1e0 [ 109.401442][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 109.402889][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 109.404148][ T4487] irq event stamp: 91528 [ 109.405271][ T4487] hardirqs last enabled at (91527): [] kasan_quarantine_put+0xc4/0x204 [ 109.408034][ T4487] hardirqs last disabled at (91528): [] smp_call_function_many_cond+0xa44/0xeb0 [ 109.410996][ T4487] softirqs last enabled at (89612): [] local_bh_enable+0x10/0x34 [ 109.413750][ T4487] softirqs last disabled at (89610): [] local_bh_disable+0x10/0x34 [ 109.416580][ T4487] ---[ end trace da7f9e8b5c98ce5e ]--- [ 109.458568][ T4926] loop0: detected capacity change from 0 to 128 [ 109.463433][ T4926] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.468223][ T4926] Bad inode number on dev loop0: 2 is out of range [ 109.470243][ T4926] SysV FS: get root inode failed [ 109.472366][ T4926] oldfs: cannot read superblock [ 109.486688][ C0] ------------[ cut here ]------------ [ 109.488384][ C0] VFS: brelse: Trying to free free buffer [ 109.490125][ C0] WARNING: CPU: 0 PID: 4927 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.492598][ C0] Modules linked in: [ 109.493665][ C0] CPU: 0 PID: 4927 Comm: syz.0.33 Tainted: G W 5.15.187-syzkaller #0 [ 109.496272][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 109.499112][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.501279][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 109.502788][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 109.504441][ C0] sp : ffff800008007de0 [ 109.505575][ C0] x29: ffff800008007de0 x28: ffff0000c25f0000 x27: 1fffe0003421845c [ 109.508032][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 109.510267][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20c7060 [ 109.512505][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 109.514669][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 109.517003][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.519315][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 3210f01ddfd31500 [ 109.521569][ C0] x8 : 3210f01ddfd31500 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.523816][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 109.526141][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 109.528466][ C0] Call trace: [ 109.529364][ C0] invalidate_bh_lru+0x128/0x234 [ 109.530714][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 109.532341][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 109.534226][ C0] ipi_handler+0x10c/0x710 [ 109.535429][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 109.537035][ C0] handle_domain_irq+0x144/0x1fc [ 109.538442][ C0] gic_handle_irq+0x78/0x1c8 [ 109.539706][ C0] call_on_irq_stack+0x24/0x30 [ 109.541027][ C0] do_interrupt_handler+0x6c/0x88 [ 109.542426][ C0] el1_interrupt+0x30/0x58 [ 109.543710][ C0] el1h_64_irq_handler+0x18/0x24 [ 109.545047][ C0] el1h_64_irq+0x78/0x7c [ 109.546197][ C0] get_page_from_freelist+0x2244/0x2aa8 [ 109.547688][ C0] __alloc_pages+0x1a0/0x470 [ 109.548946][ C0] alloc_pages_vma+0x284/0x7a8 [ 109.550225][ C0] alloc_zeroed_user_highpage_movable+0x9c/0xd8 [ 109.551904][ C0] handle_mm_fault+0x1904/0x2950 [ 109.553248][ C0] do_page_fault+0x694/0xad4 [ 109.554523][ C0] do_translation_fault+0xe0/0x130 [ 109.555963][ C0] do_mem_abort+0x6c/0x1ac [ 109.557175][ C0] el0_da+0x90/0x1fc [ 109.558224][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 109.559645][ C0] el0t_64_sync+0x1a0/0x1a4 [ 109.560827][ C0] irq event stamp: 1092 [ 109.562052][ C0] hardirqs last enabled at (1091): [] get_page_from_freelist+0x2234/0x2aa8 [ 109.564996][ C0] hardirqs last disabled at (1092): [] enter_el1_irq_or_nmi+0x10/0x1c [ 109.567686][ C0] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 109.570253][ C0] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 109.572868][ C0] ---[ end trace da7f9e8b5c98ce5f ]--- [ 109.614571][ T4928] loop0: detected capacity change from 0 to 128 [ 109.618130][ T4928] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.620116][ T4928] Bad inode number on dev loop0: 2 is out of range [ 109.621887][ T4928] SysV FS: get root inode failed [ 109.623183][ T4928] oldfs: cannot read superblock [ 109.723000][ C0] ------------[ cut here ]------------ [ 109.724641][ C0] VFS: brelse: Trying to free free buffer [ 109.726257][ C0] WARNING: CPU: 0 PID: 4933 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.728708][ C0] Modules linked in: [ 109.729778][ C0] CPU: 0 PID: 4933 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 109.732578][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 109.735381][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.737605][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 109.739120][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 109.740614][ C0] sp : ffff800008007de0 [ 109.741773][ C0] x29: ffff800008007de0 x28: ffff0000cbcc1b40 x27: 1fffe0003421845c [ 109.743926][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 109.746171][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20c7400 [ 109.748363][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 109.750558][ C0] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 109.752756][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.754966][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 16fab81031340200 [ 109.757221][ C0] x8 : 16fab81031340200 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.759405][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 109.761692][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 109.764024][ C0] Call trace: [ 109.764923][ C0] invalidate_bh_lru+0x128/0x234 [ 109.766317][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 109.767991][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 109.769930][ C0] ipi_handler+0x10c/0x710 [ 109.771161][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 109.772755][ C0] handle_domain_irq+0x144/0x1fc [ 109.774256][ C0] gic_handle_irq+0x78/0x1c8 [ 109.775575][ C0] call_on_irq_stack+0x24/0x30 [ 109.776961][ C0] do_interrupt_handler+0x6c/0x88 [ 109.778333][ C0] el1_interrupt+0x30/0x58 [ 109.779646][ C0] el1h_64_irq_handler+0x18/0x24 [ 109.780999][ C0] el1h_64_irq+0x78/0x7c [ 109.782127][ C0] xas_next_entry+0x28/0x394 [ 109.783424][ C0] filemap_map_pages+0x958/0xc50 [ 109.784782][ C0] handle_mm_fault+0x19c0/0x2950 [ 109.786125][ C0] do_page_fault+0x694/0xad4 [ 109.787408][ C0] do_translation_fault+0xe0/0x130 [ 109.788889][ C0] do_mem_abort+0x6c/0x1ac [ 109.790112][ C0] el0_da+0x90/0x1fc [ 109.791267][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 109.792638][ C0] el0t_64_sync+0x1a0/0x1a4 [ 109.793945][ C0] irq event stamp: 398 [ 109.795025][ C0] hardirqs last enabled at (397): [] lock_page_memcg+0x110/0x234 [ 109.797624][ C0] hardirqs last disabled at (398): [] enter_el1_irq_or_nmi+0x10/0x1c [ 109.800315][ C0] softirqs last enabled at (30): [] local_bh_enable+0x10/0x34 [ 109.802756][ C0] softirqs last disabled at (28): [] local_bh_disable+0x10/0x34 [ 109.805244][ C0] ---[ end trace da7f9e8b5c98ce60 ]--- [ 109.834689][ T4934] loop0: detected capacity change from 0 to 128 [ 109.924350][ T4934] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 109.926334][ T4934] Bad inode number on dev loop0: 2 is out of range [ 109.928097][ T4934] SysV FS: get root inode failed [ 109.929547][ T4934] oldfs: cannot read superblock [ 109.931430][ C0] ------------[ cut here ]------------ [ 109.933012][ C0] VFS: brelse: Trying to free free buffer [ 109.934740][ C0] WARNING: CPU: 0 PID: 4934 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 109.937180][ C0] Modules linked in: [ 109.938331][ C0] CPU: 0 PID: 4934 Comm: syz.0.36 Tainted: G W 5.15.187-syzkaller #0 [ 109.940934][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 109.943700][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 109.945977][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 109.947472][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 109.948993][ C0] sp : ffff800008007de0 [ 109.950167][ C0] x29: ffff800008007de0 x28: ffff0000c0f1b680 x27: 1fffe0003421845b [ 109.952601][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 109.954851][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20c77a0 [ 109.957139][ C0] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000010004 [ 109.959382][ C0] x17: 0000000000010004 x16: ffff8000111d162c x15: 00000000ffffffff [ 109.961646][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 109.963990][ C0] x11: 0000000000010003 x10: 0000000000010003 x9 : 850f1665bde61f00 [ 109.966173][ C0] x8 : 850f1665bde61f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 109.968457][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 109.970964][ C0] x2 : 0000000000000001 x1 : 0000000000010003 x0 : 0000000000000027 [ 109.973430][ C0] Call trace: [ 109.974472][ C0] invalidate_bh_lru+0x128/0x234 [ 109.976158][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 109.977819][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 109.979773][ C0] ipi_handler+0x10c/0x710 [ 109.981075][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 109.982613][ C0] handle_domain_irq+0x144/0x1fc [ 109.983940][ C0] gic_handle_irq+0x78/0x1c8 [ 109.985187][ C0] call_on_irq_stack+0x24/0x30 [ 109.986486][ C0] do_interrupt_handler+0x6c/0x88 [ 109.987981][ C0] el1_interrupt+0x30/0x58 [ 109.989143][ C0] el1h_64_irq_handler+0x18/0x24 [ 109.990681][ C0] el1h_64_irq+0x78/0x7c [ 109.991895][ C0] _raw_spin_unlock_irqrestore+0xb8/0x14c [ 109.993600][ C0] try_to_wake_up+0x3a4/0xa64 [ 109.994994][ C0] wake_up_q+0x94/0x114 [ 109.996075][ C0] futex_wake+0x46c/0x4f4 [ 109.997330][ C0] do_futex+0x1684/0x257c [ 109.998572][ C0] __arm64_sys_futex+0x388/0x400 [ 110.000132][ C0] invoke_syscall+0x98/0x2b8 [ 110.001438][ C0] el0_svc_common+0x138/0x258 [ 110.002749][ C0] do_el0_svc+0x58/0x14c [ 110.003946][ C0] el0_svc+0x78/0x1e0 [ 110.005241][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 110.006664][ C0] el0t_64_sync+0x1a0/0x1a4 [ 110.007977][ C0] irq event stamp: 1124 [ 110.009276][ C0] hardirqs last enabled at (1123): [] _raw_spin_unlock_irqrestore+0xa8/0x14c [ 110.012638][ C0] hardirqs last disabled at (1124): [] enter_el1_irq_or_nmi+0x10/0x1c [ 110.015312][ C0] softirqs last enabled at (1052): [] local_bh_enable+0x10/0x34 [ 110.018157][ C0] softirqs last disabled at (1050): [] local_bh_disable+0x10/0x34 [ 110.020831][ C0] ---[ end trace da7f9e8b5c98ce61 ]--- [ 110.079365][ T4936] loop0: detected capacity change from 0 to 128 [ 110.125645][ T4936] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.127927][ T4936] Bad inode number on dev loop0: 2 is out of range [ 110.129785][ T4936] SysV FS: get root inode failed [ 110.131238][ T4936] oldfs: cannot read superblock [ 110.132589][ C0] ------------[ cut here ]------------ [ 110.134192][ C0] VFS: brelse: Trying to free free buffer [ 110.135932][ C0] WARNING: CPU: 0 PID: 3652 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.138364][ C0] Modules linked in: [ 110.139476][ C0] CPU: 0 PID: 3652 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 110.142137][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 110.145053][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.147297][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 110.148773][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 110.150283][ C0] sp : ffff800008007de0 [ 110.151504][ C0] x29: ffff800008007de0 x28: ffff0000d6990000 x27: 1fffe0003421845b [ 110.153864][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 110.156188][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20c7b40 [ 110.158387][ C0] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000010002 [ 110.160731][ C0] x17: 0000000000010002 x16: ffff8000083020fc x15: 00000000ffffffff [ 110.163032][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.165371][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 6ab363681ea5f200 [ 110.167741][ C0] x8 : 6ab363681ea5f200 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.170086][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff80000830220c [ 110.172384][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 110.174706][ C0] Call trace: [ 110.175641][ C0] invalidate_bh_lru+0x128/0x234 [ 110.177070][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 110.178835][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 110.180829][ C0] ipi_handler+0x10c/0x710 [ 110.182118][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 110.183650][ C0] handle_domain_irq+0x144/0x1fc [ 110.185032][ C0] gic_handle_irq+0x78/0x1c8 [ 110.186393][ C0] call_on_irq_stack+0x24/0x30 [ 110.187769][ C0] do_interrupt_handler+0x6c/0x88 [ 110.189197][ C0] el1_interrupt+0x30/0x58 [ 110.190445][ C0] el1h_64_irq_handler+0x18/0x24 [ 110.191886][ C0] el1h_64_irq+0x78/0x7c [ 110.193074][ C0] el0_svc_common+0xa8/0x258 [ 110.194333][ C0] do_el0_svc+0x58/0x14c [ 110.195483][ C0] el0_svc+0x78/0x1e0 [ 110.196705][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 110.198196][ C0] el0t_64_sync+0x1a0/0x1a4 [ 110.199467][ C0] irq event stamp: 1048016 [ 110.200662][ C0] hardirqs last enabled at (1048015): [] el0_svc_common+0x9c/0x258 [ 110.203241][ C0] hardirqs last disabled at (1048016): [] enter_el1_irq_or_nmi+0x10/0x1c [ 110.206033][ C0] softirqs last enabled at (1046136): [] local_bh_enable+0x10/0x34 [ 110.208733][ C0] softirqs last disabled at (1046134): [] local_bh_disable+0x10/0x34 [ 110.211462][ C0] ---[ end trace da7f9e8b5c98ce62 ]--- [ 110.299253][ T4938] loop0: detected capacity change from 0 to 128 [ 110.305891][ T4938] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.308255][ T4938] Bad inode number on dev loop0: 2 is out of range [ 110.310960][ T4938] SysV FS: get root inode failed [ 110.312302][ T4938] oldfs: cannot read superblock [ 110.330163][ T4487] ------------[ cut here ]------------ [ 110.331644][ T4487] VFS: brelse: Trying to free free buffer [ 110.333221][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.335633][ T4487] Modules linked in: [ 110.336636][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 110.339149][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 110.341824][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.343954][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 110.345400][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 110.346847][ T4487] sp : ffff80001f2277c0 [ 110.347989][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 110.350188][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 110.352329][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20c7ee0 [ 110.354565][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 110.356680][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 110.358775][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.360977][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 110.363167][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.365310][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 110.367464][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 110.369633][ T4487] Call trace: [ 110.370539][ T4487] invalidate_bh_lru+0x128/0x234 [ 110.371934][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 110.373530][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 110.374926][ T4487] invalidate_bh_lrus+0x34/0x40 [ 110.376272][ T4487] blkdev_flush_mapping+0x168/0x31c [ 110.377731][ T4487] blkdev_put+0x490/0x6ac [ 110.378846][ T4487] blkdev_close+0x74/0xb0 [ 110.379994][ T4487] __fput+0x1c0/0x7f8 [ 110.381063][ T4487] ____fput+0x20/0x30 [ 110.382151][ T4487] task_work_run+0x12c/0x1e0 [ 110.383463][ T4487] do_notify_resume+0x24b4/0x3128 [ 110.384850][ T4487] el0_svc+0xf0/0x1e0 [ 110.385949][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 110.387301][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 110.388562][ T4487] irq event stamp: 112016 [ 110.389744][ T4487] hardirqs last enabled at (112015): [] kasan_quarantine_put+0xc4/0x204 [ 110.392510][ T4487] hardirqs last disabled at (112016): [] smp_call_function_many_cond+0xa44/0xeb0 [ 110.395512][ T4487] softirqs last enabled at (110722): [] handle_softirqs+0xa4c/0xbf0 [ 110.398190][ T4487] softirqs last disabled at (110707): [] __irq_exit_rcu+0x240/0x440 [ 110.400847][ T4487] ---[ end trace da7f9e8b5c98ce63 ]--- [ 110.457768][ T4940] loop0: detected capacity change from 0 to 128 [ 110.471148][ T4940] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.473239][ T4940] Bad inode number on dev loop0: 2 is out of range [ 110.475251][ T4940] SysV FS: get root inode failed [ 110.476686][ T4940] oldfs: cannot read superblock [ 110.491249][ T4487] ------------[ cut here ]------------ [ 110.492859][ T4487] VFS: brelse: Trying to free free buffer [ 110.494643][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.497172][ T4487] Modules linked in: [ 110.498267][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 110.500768][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 110.503574][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.505790][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 110.507248][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 110.508776][ T4487] sp : ffff80001f2277c0 [ 110.509965][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 110.512167][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 110.514478][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20f1318 [ 110.516634][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 110.518834][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 110.521080][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.523526][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 110.525707][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.527850][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 110.530019][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 110.532201][ T4487] Call trace: [ 110.533067][ T4487] invalidate_bh_lru+0x128/0x234 [ 110.534376][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 110.535975][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 110.537362][ T4487] invalidate_bh_lrus+0x34/0x40 [ 110.538695][ T4487] blkdev_flush_mapping+0x168/0x31c [ 110.540215][ T4487] blkdev_put+0x490/0x6ac [ 110.541419][ T4487] blkdev_close+0x74/0xb0 [ 110.542595][ T4487] __fput+0x1c0/0x7f8 [ 110.543718][ T4487] ____fput+0x20/0x30 [ 110.544786][ T4487] task_work_run+0x12c/0x1e0 [ 110.546177][ T4487] do_notify_resume+0x24b4/0x3128 [ 110.547616][ T4487] el0_svc+0xf0/0x1e0 [ 110.548754][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 110.550146][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 110.551461][ T4487] irq event stamp: 117430 [ 110.552697][ T4487] hardirqs last enabled at (117429): [] kasan_quarantine_put+0xc4/0x204 [ 110.555513][ T4487] hardirqs last disabled at (117430): [] smp_call_function_many_cond+0xa44/0xeb0 [ 110.558466][ T4487] softirqs last enabled at (116082): [] handle_softirqs+0xa4c/0xbf0 [ 110.561281][ T4487] softirqs last disabled at (116071): [] __irq_exit_rcu+0x240/0x440 [ 110.563990][ T4487] ---[ end trace da7f9e8b5c98ce64 ]--- [ 110.608611][ T4942] loop0: detected capacity change from 0 to 128 [ 110.658193][ T4942] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.660317][ T4942] Bad inode number on dev loop0: 2 is out of range [ 110.662083][ T4942] SysV FS: get root inode failed [ 110.663482][ T4942] oldfs: cannot read superblock [ 110.677264][ T4487] ------------[ cut here ]------------ [ 110.678935][ T4487] VFS: brelse: Trying to free free buffer [ 110.680642][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.683115][ T4487] Modules linked in: [ 110.684148][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 110.686652][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 110.689343][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.691632][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 110.693172][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 110.694832][ T4487] sp : ffff80001f2277c0 [ 110.695994][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 110.698368][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 110.700694][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20f16b8 [ 110.702913][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 110.705093][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 110.707346][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.709646][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 110.711910][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.714251][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 110.716602][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 110.718883][ T4487] Call trace: [ 110.719824][ T4487] invalidate_bh_lru+0x128/0x234 [ 110.721255][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 110.722932][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 110.724332][ T4487] invalidate_bh_lrus+0x34/0x40 [ 110.725671][ T4487] blkdev_flush_mapping+0x168/0x31c [ 110.727206][ T4487] blkdev_put+0x490/0x6ac [ 110.728459][ T4487] blkdev_close+0x74/0xb0 [ 110.729679][ T4487] __fput+0x1c0/0x7f8 [ 110.730838][ T4487] ____fput+0x20/0x30 [ 110.731975][ T4487] task_work_run+0x12c/0x1e0 [ 110.733304][ T4487] do_notify_resume+0x24b4/0x3128 [ 110.734738][ T4487] el0_svc+0xf0/0x1e0 [ 110.735829][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 110.737301][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 110.738523][ T4487] irq event stamp: 120662 [ 110.739692][ T4487] hardirqs last enabled at (120661): [] kasan_quarantine_put+0xc4/0x204 [ 110.742355][ T4487] hardirqs last disabled at (120662): [] smp_call_function_many_cond+0xa44/0xeb0 [ 110.745693][ T4487] softirqs last enabled at (119554): [] handle_softirqs+0xa4c/0xbf0 [ 110.748273][ T4487] softirqs last disabled at (119539): [] __irq_exit_rcu+0x240/0x440 [ 110.751000][ T4487] ---[ end trace da7f9e8b5c98ce65 ]--- [ 110.805541][ T4944] loop0: detected capacity change from 0 to 128 [ 110.812970][ T4944] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 110.815378][ T4944] Bad inode number on dev loop0: 2 is out of range [ 110.817164][ T4944] SysV FS: get root inode failed [ 110.818620][ T4944] oldfs: cannot read superblock [ 110.829721][ C0] ------------[ cut here ]------------ [ 110.831261][ C0] VFS: brelse: Trying to free free buffer [ 110.832994][ C0] WARNING: CPU: 0 PID: 4616 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 110.835585][ C0] Modules linked in: [ 110.836690][ C0] CPU: 0 PID: 4616 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 110.839523][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 110.842317][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 110.844520][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 110.846057][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 110.847555][ C0] sp : ffff800008007de0 [ 110.848677][ C0] x29: ffff800008007de0 x28: ffff0000d9c93680 x27: 1fffe0003421845b [ 110.851026][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 110.853469][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20f1a58 [ 110.855719][ C0] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000010002 [ 110.858001][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 110.860252][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 110.862503][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : e8800a58eeb82f00 [ 110.864820][ C0] x8 : e8800a58eeb82f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 110.867191][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 110.869413][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 110.871724][ C0] Call trace: [ 110.872651][ C0] invalidate_bh_lru+0x128/0x234 [ 110.874027][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 110.875651][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 110.877642][ C0] ipi_handler+0x10c/0x710 [ 110.878859][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 110.880388][ C0] handle_domain_irq+0x144/0x1fc [ 110.881784][ C0] gic_handle_irq+0x78/0x1c8 [ 110.883025][ C0] call_on_irq_stack+0x24/0x30 [ 110.884326][ C0] do_interrupt_handler+0x6c/0x88 [ 110.885797][ C0] el1_interrupt+0x30/0x58 [ 110.887053][ C0] el1h_64_irq_handler+0x18/0x24 [ 110.888465][ C0] el1h_64_irq+0x78/0x7c [ 110.889630][ C0] account_kernel_stack+0x150/0x274 [ 110.891153][ C0] dup_task_struct+0x768/0xc44 [ 110.892515][ C0] copy_process+0x4c8/0x34ac [ 110.893803][ C0] kernel_clone+0x1d8/0x9d4 [ 110.895042][ C0] __arm64_sys_clone+0x138/0x190 [ 110.896407][ C0] invoke_syscall+0x98/0x2b8 [ 110.897692][ C0] el0_svc_common+0x138/0x258 [ 110.898972][ C0] do_el0_svc+0x58/0x14c [ 110.900154][ C0] el0_svc+0x78/0x1e0 [ 110.901197][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 110.902619][ C0] el0t_64_sync+0x1a0/0x1a4 [ 110.903863][ C0] irq event stamp: 182176 [ 110.905066][ C0] hardirqs last enabled at (182175): [] account_kernel_stack+0x130/0x274 [ 110.907838][ C0] hardirqs last disabled at (182176): [] enter_el1_irq_or_nmi+0x10/0x1c [ 110.910530][ C0] softirqs last enabled at (182162): [] local_bh_enable+0x10/0x34 [ 110.913337][ C0] softirqs last disabled at (182160): [] local_bh_disable+0x10/0x34 [ 110.916092][ C0] ---[ end trace da7f9e8b5c98ce66 ]--- [ 110.949287][ T4946] loop0: detected capacity change from 0 to 128 [ 111.003261][ T4946] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.005781][ T4946] Bad inode number on dev loop0: 2 is out of range [ 111.007638][ T4946] SysV FS: get root inode failed [ 111.008932][ T4946] oldfs: cannot read superblock [ 111.015627][ C0] ------------[ cut here ]------------ [ 111.017210][ C0] VFS: brelse: Trying to free free buffer [ 111.018852][ C0] WARNING: CPU: 0 PID: 4560 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.021376][ C0] Modules linked in: [ 111.022400][ C0] CPU: 0 PID: 4560 Comm: kworker/0:9 Tainted: G W 5.15.187-syzkaller #0 [ 111.025103][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 111.027876][ C0] Workqueue: rcu_gp process_srcu [ 111.029292][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.031458][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 111.032967][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 111.034438][ C0] sp : ffff800008007de0 [ 111.035624][ C0] x29: ffff800008007de0 x28: ffff0000cc713680 x27: 1fffe0003421845b [ 111.037816][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 111.040063][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20f1df8 [ 111.042301][ C0] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000010003 [ 111.044592][ C0] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 111.046769][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.048946][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 619f556730bf1800 [ 111.051226][ C0] x8 : 619f556730bf1800 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.053502][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 111.055747][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 111.058044][ C0] Call trace: [ 111.058968][ C0] invalidate_bh_lru+0x128/0x234 [ 111.060333][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 111.062028][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 111.063969][ C0] ipi_handler+0x10c/0x710 [ 111.065160][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 111.066667][ C0] handle_domain_irq+0x144/0x1fc [ 111.068010][ C0] gic_handle_irq+0x78/0x1c8 [ 111.069209][ C0] call_on_irq_stack+0x24/0x30 [ 111.070564][ C0] do_interrupt_handler+0x6c/0x88 [ 111.071975][ C0] el1_interrupt+0x30/0x58 [ 111.073160][ C0] el1h_64_irq_handler+0x18/0x24 [ 111.074582][ C0] el1h_64_irq+0x78/0x7c [ 111.075812][ C0] _raw_spin_unlock_irq+0xa0/0x128 [ 111.077306][ C0] process_srcu+0x9bc/0xc30 [ 111.078698][ C0] process_one_work+0x79c/0x1140 [ 111.080062][ C0] worker_thread+0x8f4/0x101c [ 111.081301][ C0] kthread+0x374/0x454 [ 111.082470][ C0] ret_from_fork+0x10/0x20 [ 111.083718][ C0] irq event stamp: 42444 [ 111.084913][ C0] hardirqs last enabled at (42443): [] _raw_spin_unlock_irq+0x98/0x128 [ 111.087747][ C0] hardirqs last disabled at (42444): [] enter_el1_irq_or_nmi+0x10/0x1c [ 111.090525][ C0] softirqs last enabled at (41978): [] nsim_dev_trap_report_work+0x5fc/0x938 [ 111.093482][ C0] softirqs last disabled at (41976): [] nsim_dev_trap_report_work+0x578/0x938 [ 111.096467][ C0] ---[ end trace da7f9e8b5c98ce67 ]--- [ 111.158510][ T4948] loop0: detected capacity change from 0 to 128 [ 111.162774][ T4948] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.165445][ T4948] Bad inode number on dev loop0: 2 is out of range [ 111.167222][ T4948] SysV FS: get root inode failed [ 111.168588][ T4948] oldfs: cannot read superblock [ 111.191100][ C1] ------------[ cut here ]------------ [ 111.192775][ C1] VFS: brelse: Trying to free free buffer [ 111.194441][ C1] WARNING: CPU: 1 PID: 4950 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.196872][ C1] Modules linked in: [ 111.198071][ C1] CPU: 1 PID: 4950 Comm: syz.0.44 Tainted: G W 5.15.187-syzkaller #0 [ 111.200628][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 111.203484][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.205754][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 111.207192][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 111.208674][ C1] sp : ffff800008017de0 [ 111.209797][ C1] x29: ffff800008017de0 x28: ffff0000d32751c0 x27: 1fffe0003421c65c [ 111.212030][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 111.214314][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd770148 [ 111.216683][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 111.219119][ C1] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 111.221493][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.223759][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : c9c3bc176618ca00 [ 111.226115][ C1] x8 : c9c3bc176618ca00 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.228416][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 111.230827][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 111.233237][ C1] Call trace: [ 111.234180][ C1] invalidate_bh_lru+0x128/0x234 [ 111.235706][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 111.237428][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 111.239360][ C1] ipi_handler+0x10c/0x710 [ 111.240824][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 111.242590][ C1] handle_domain_irq+0x144/0x1fc [ 111.243987][ C1] gic_handle_irq+0x78/0x1c8 [ 111.245229][ C1] call_on_irq_stack+0x24/0x30 [ 111.246549][ C1] do_interrupt_handler+0x6c/0x88 [ 111.247953][ C1] el1_interrupt+0x30/0x58 [ 111.249180][ C1] el1h_64_irq_handler+0x18/0x24 [ 111.250512][ C1] el1h_64_irq+0x78/0x7c [ 111.251684][ C1] _raw_spin_unlock_irq+0xa0/0x128 [ 111.253168][ C1] calculate_sigpending+0x80/0xc0 [ 111.254593][ C1] schedule_tail+0x108/0x150 [ 111.255870][ C1] ret_from_fork+0x4/0x20 [ 111.257075][ C1] irq event stamp: 4 [ 111.258137][ C1] hardirqs last enabled at (3): [] _raw_spin_unlock_irq+0x98/0x128 [ 111.260960][ C1] hardirqs last disabled at (4): [] enter_el1_irq_or_nmi+0x10/0x1c [ 111.263595][ C1] softirqs last enabled at (0): [] copy_process+0x111c/0x34ac [ 111.266204][ C1] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 111.268158][ C1] ---[ end trace da7f9e8b5c98ce68 ]--- [ 111.298578][ T4950] loop0: detected capacity change from 0 to 128 [ 111.316798][ T4950] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.318779][ T4950] Bad inode number on dev loop0: 2 is out of range [ 111.320684][ T4950] SysV FS: get root inode failed [ 111.322046][ T4950] oldfs: cannot read superblock [ 111.333079][ T4950] ------------[ cut here ]------------ [ 111.334714][ T4950] VFS: brelse: Trying to free free buffer [ 111.336601][ T4950] WARNING: CPU: 0 PID: 4950 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.339062][ T4950] Modules linked in: [ 111.340116][ T4950] CPU: 0 PID: 4950 Comm: syz.0.44 Tainted: G W 5.15.187-syzkaller #0 [ 111.342737][ T4950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 111.345568][ T4950] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.347687][ T4950] pc : invalidate_bh_lru+0x128/0x234 [ 111.349156][ T4950] lr : invalidate_bh_lru+0x128/0x234 [ 111.350686][ T4950] sp : ffff80001f7977c0 [ 111.351831][ T4950] x29: ffff80001f7977c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 111.354025][ T4950] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 111.356424][ T4950] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20f2230 [ 111.358670][ T4950] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 111.360876][ T4950] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 111.363104][ T4950] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.365265][ T4950] x11: 0000000000000002 x10: 0000000000000000 x9 : c9c3bc176618ca00 [ 111.367360][ T4950] x8 : c9c3bc176618ca00 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.369495][ T4950] x5 : ffff80001f7970b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 111.371623][ T4950] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 111.373846][ T4950] Call trace: [ 111.374766][ T4950] invalidate_bh_lru+0x128/0x234 [ 111.376145][ T4950] smp_call_function_many_cond+0xa50/0xeb0 [ 111.377760][ T4950] on_each_cpu_cond_mask+0x5c/0xc4 [ 111.379246][ T4950] invalidate_bh_lrus+0x34/0x40 [ 111.380538][ T4950] blkdev_flush_mapping+0x168/0x31c [ 111.381810][ T4950] blkdev_put+0x490/0x6ac [ 111.383034][ T4950] blkdev_close+0x74/0xb0 [ 111.384179][ T4950] __fput+0x1c0/0x7f8 [ 111.385272][ T4950] ____fput+0x20/0x30 [ 111.386329][ T4950] task_work_run+0x12c/0x1e0 [ 111.387555][ T4950] do_notify_resume+0x24b4/0x3128 [ 111.388983][ T4950] el0_svc+0xf0/0x1e0 [ 111.390100][ T4950] el0t_64_sync_handler+0xcc/0xe4 [ 111.391473][ T4950] el0t_64_sync+0x1a0/0x1a4 [ 111.392685][ T4950] irq event stamp: 1216 [ 111.393849][ T4950] hardirqs last enabled at (1215): [] finish_lock_switch+0xb0/0x1c4 [ 111.396510][ T4950] hardirqs last disabled at (1216): [] smp_call_function_many_cond+0xa44/0xeb0 [ 111.399388][ T4950] softirqs last enabled at (1158): [] local_bh_enable+0x10/0x34 [ 111.402009][ T4950] softirqs last disabled at (1156): [] local_bh_disable+0x10/0x34 [ 111.404681][ T4950] ---[ end trace da7f9e8b5c98ce69 ]--- [ 111.490428][ T4952] loop0: detected capacity change from 0 to 128 [ 111.494765][ T4952] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.496864][ T4952] Bad inode number on dev loop0: 2 is out of range [ 111.498761][ T4952] SysV FS: get root inode failed [ 111.500168][ T4952] oldfs: cannot read superblock [ 111.509818][ T4487] ------------[ cut here ]------------ [ 111.511379][ T4487] VFS: brelse: Trying to free free buffer [ 111.513079][ T4487] WARNING: CPU: 1 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.515578][ T4487] Modules linked in: [ 111.516675][ T4487] CPU: 1 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 111.519106][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 111.521945][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.524187][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 111.525596][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 111.527105][ T4487] sp : ffff80001f2277c0 [ 111.528244][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421c65c [ 111.530506][ T4487] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 111.532761][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd7704e8 [ 111.534990][ T4487] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 111.537221][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 111.539527][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.541848][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 111.544148][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.546457][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 111.548727][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 111.551080][ T4487] Call trace: [ 111.552114][ T4487] invalidate_bh_lru+0x128/0x234 [ 111.553533][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 111.555243][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 111.556683][ T4487] invalidate_bh_lrus+0x34/0x40 [ 111.557985][ T4487] blkdev_flush_mapping+0x168/0x31c [ 111.559422][ T4487] blkdev_put+0x490/0x6ac [ 111.560715][ T4487] blkdev_close+0x74/0xb0 [ 111.561908][ T4487] __fput+0x1c0/0x7f8 [ 111.563002][ T4487] ____fput+0x20/0x30 [ 111.564121][ T4487] task_work_run+0x12c/0x1e0 [ 111.565373][ T4487] do_notify_resume+0x24b4/0x3128 [ 111.566746][ T4487] el0_svc+0xf0/0x1e0 [ 111.567836][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 111.569263][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 111.570499][ T4487] irq event stamp: 142326 [ 111.571712][ T4487] hardirqs last enabled at (142325): [] kasan_quarantine_put+0xc4/0x204 [ 111.574526][ T4487] hardirqs last disabled at (142326): [] smp_call_function_many_cond+0xa44/0xeb0 [ 111.577526][ T4487] softirqs last enabled at (141396): [] local_bh_enable+0x10/0x34 [ 111.580352][ T4487] softirqs last disabled at (141394): [] local_bh_disable+0x10/0x34 [ 111.582976][ T4487] ---[ end trace da7f9e8b5c98ce6a ]--- [ 111.625926][ T4954] loop0: detected capacity change from 0 to 128 [ 111.635563][ T4954] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.637660][ T4954] Bad inode number on dev loop0: 2 is out of range [ 111.639716][ T4954] SysV FS: get root inode failed [ 111.641212][ T4954] oldfs: cannot read superblock [ 111.657249][ C1] ------------[ cut here ]------------ [ 111.659109][ C1] VFS: brelse: Trying to free free buffer [ 111.660821][ C1] WARNING: CPU: 1 PID: 4955 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.663308][ C1] Modules linked in: [ 111.664565][ C1] CPU: 1 PID: 4955 Comm: syz.0.47 Tainted: G W 5.15.187-syzkaller #0 [ 111.667272][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 111.670169][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.672345][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 111.673835][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 111.675300][ C1] sp : ffff800008017de0 [ 111.676427][ C1] x29: ffff800008017de0 x28: ffff0000ce3f3680 x27: 1fffe0003421c65c [ 111.678706][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 111.681089][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd770888 [ 111.683484][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 111.685671][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 111.687884][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.690129][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 1723a5a1218f4300 [ 111.692353][ C1] x8 : 1723a5a1218f4300 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.694521][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 111.696874][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 111.699166][ C1] Call trace: [ 111.700122][ C1] invalidate_bh_lru+0x128/0x234 [ 111.701478][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 111.703160][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 111.705132][ C1] ipi_handler+0x10c/0x710 [ 111.706361][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 111.707843][ C1] handle_domain_irq+0x144/0x1fc [ 111.709197][ C1] gic_handle_irq+0x78/0x1c8 [ 111.710430][ C1] call_on_irq_stack+0x24/0x30 [ 111.711887][ C1] do_interrupt_handler+0x6c/0x88 [ 111.713412][ C1] el1_interrupt+0x30/0x58 [ 111.714636][ C1] el1h_64_irq_handler+0x18/0x24 [ 111.715915][ C1] el1h_64_irq+0x78/0x7c [ 111.717053][ C1] kasan_check_range+0x34/0x2b0 [ 111.718389][ C1] __kasan_check_read+0x44/0x54 [ 111.719754][ C1] __up_read+0xe8/0x5d8 [ 111.720952][ C1] up_read+0x94/0xe8 [ 111.722062][ C1] do_page_fault+0x7c8/0xad4 [ 111.723346][ C1] do_translation_fault+0xe0/0x130 [ 111.724806][ C1] do_mem_abort+0x6c/0x1ac [ 111.726001][ C1] el0_da+0x90/0x1fc [ 111.727046][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 111.728407][ C1] el0t_64_sync+0x1a0/0x1a4 [ 111.729723][ C1] irq event stamp: 1218 [ 111.730860][ C1] hardirqs last enabled at (1217): [] charge_memcg+0x190/0x220 [ 111.733463][ C1] hardirqs last disabled at (1218): [] enter_el1_irq_or_nmi+0x10/0x1c [ 111.736165][ C1] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 111.738793][ C1] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 111.741321][ C1] ---[ end trace da7f9e8b5c98ce6b ]--- [ 111.799051][ T4956] loop0: detected capacity change from 0 to 128 [ 111.848890][ T4956] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 111.850946][ T4956] Bad inode number on dev loop0: 2 is out of range [ 111.852779][ T4956] SysV FS: get root inode failed [ 111.854910][ T4956] oldfs: cannot read superblock [ 111.869581][ T4487] ------------[ cut here ]------------ [ 111.871175][ T4487] VFS: brelse: Trying to free free buffer [ 111.872864][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 111.875303][ T4487] Modules linked in: [ 111.876436][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 111.879009][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 111.881702][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 111.883882][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 111.885409][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 111.886918][ T4487] sp : ffff80001f2277c0 [ 111.888060][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 111.890223][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 111.892368][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20f25d0 [ 111.894539][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 111.896729][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 111.899052][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 111.901320][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 111.903613][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 111.905720][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 111.907883][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 111.910051][ T4487] Call trace: [ 111.910932][ T4487] invalidate_bh_lru+0x128/0x234 [ 111.912289][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 111.913833][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 111.915250][ T4487] invalidate_bh_lrus+0x34/0x40 [ 111.916528][ T4487] blkdev_flush_mapping+0x168/0x31c [ 111.917926][ T4487] blkdev_put+0x490/0x6ac [ 111.919119][ T4487] blkdev_close+0x74/0xb0 [ 111.920301][ T4487] __fput+0x1c0/0x7f8 [ 111.921464][ T4487] ____fput+0x20/0x30 [ 111.922626][ T4487] task_work_run+0x12c/0x1e0 [ 111.923925][ T4487] do_notify_resume+0x24b4/0x3128 [ 111.925312][ T4487] el0_svc+0xf0/0x1e0 [ 111.926402][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 111.927832][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 111.929028][ T4487] irq event stamp: 149164 [ 111.930148][ T4487] hardirqs last enabled at (149163): [] kasan_quarantine_put+0xc4/0x204 [ 111.933015][ T4487] hardirqs last disabled at (149164): [] smp_call_function_many_cond+0xa44/0xeb0 [ 111.936046][ T4487] softirqs last enabled at (147996): [] handle_softirqs+0xa4c/0xbf0 [ 111.938750][ T4487] softirqs last disabled at (147925): [] __irq_exit_rcu+0x240/0x440 [ 111.941457][ T4487] ---[ end trace da7f9e8b5c98ce6c ]--- [ 111.988421][ T4958] loop0: detected capacity change from 0 to 128 [ 112.025996][ T4958] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.028055][ T4958] Bad inode number on dev loop0: 2 is out of range [ 112.029798][ T4958] SysV FS: get root inode failed [ 112.031046][ T4958] oldfs: cannot read superblock [ 112.049280][ T4487] ------------[ cut here ]------------ [ 112.050900][ T4487] VFS: brelse: Trying to free free buffer [ 112.052675][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.055218][ T4487] Modules linked in: [ 112.056274][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 112.058664][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 112.061303][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.063340][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 112.064817][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 112.066281][ T4487] sp : ffff80001f2277c0 [ 112.067477][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 112.069570][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 112.071732][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20f2970 [ 112.073919][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 112.076145][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 112.078387][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.080700][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 112.082929][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.085214][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 112.087539][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 112.089795][ T4487] Call trace: [ 112.090715][ T4487] invalidate_bh_lru+0x128/0x234 [ 112.092084][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 112.093738][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 112.095088][ T4487] invalidate_bh_lrus+0x34/0x40 [ 112.096388][ T4487] blkdev_flush_mapping+0x168/0x31c [ 112.097873][ T4487] blkdev_put+0x490/0x6ac [ 112.099073][ T4487] blkdev_close+0x74/0xb0 [ 112.100304][ T4487] __fput+0x1c0/0x7f8 [ 112.101560][ T4487] ____fput+0x20/0x30 [ 112.102733][ T4487] task_work_run+0x12c/0x1e0 [ 112.104040][ T4487] do_notify_resume+0x24b4/0x3128 [ 112.105463][ T4487] el0_svc+0xf0/0x1e0 [ 112.106637][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 112.108137][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 112.109483][ T4487] irq event stamp: 152320 [ 112.110784][ T4487] hardirqs last enabled at (152319): [] kasan_quarantine_put+0xc4/0x204 [ 112.113775][ T4487] hardirqs last disabled at (152320): [] smp_call_function_many_cond+0xa44/0xeb0 [ 112.116904][ T4487] softirqs last enabled at (151084): [] handle_softirqs+0xa4c/0xbf0 [ 112.119903][ T4487] softirqs last disabled at (151077): [] __irq_exit_rcu+0x240/0x440 [ 112.122532][ T4487] ---[ end trace da7f9e8b5c98ce6d ]--- [ 112.178174][ T4960] loop0: detected capacity change from 0 to 128 [ 112.181999][ T4960] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.185185][ T4960] Bad inode number on dev loop0: 2 is out of range [ 112.187039][ T4960] SysV FS: get root inode failed [ 112.188398][ T4960] oldfs: cannot read superblock [ 112.198754][ C0] ------------[ cut here ]------------ [ 112.200353][ C0] VFS: brelse: Trying to free free buffer [ 112.202211][ C0] WARNING: CPU: 0 PID: 4616 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.204665][ C0] Modules linked in: [ 112.205810][ C0] CPU: 0 PID: 4616 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 112.208558][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 112.211379][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.213624][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 112.215198][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 112.216674][ C0] sp : ffff800008007de0 [ 112.217914][ C0] x29: ffff800008007de0 x28: ffff0000d9c93680 x27: 1fffe0003421845e [ 112.220212][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000003 [ 112.222488][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e21e85d0 [ 112.224809][ C0] x20: ffff0001a10c22f0 x19: ffff8000113daee0 x18: 0000000000010002 [ 112.227070][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 112.229298][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.231486][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : e8800a58eeb82f00 [ 112.233718][ C0] x8 : e8800a58eeb82f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.235961][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 112.238249][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 112.240387][ C0] Call trace: [ 112.241283][ C0] invalidate_bh_lru+0x128/0x234 [ 112.242679][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 112.244399][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 112.246680][ C0] ipi_handler+0x10c/0x710 [ 112.247986][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 112.249619][ C0] handle_domain_irq+0x144/0x1fc [ 112.250960][ C0] gic_handle_irq+0x78/0x1c8 [ 112.252220][ C0] call_on_irq_stack+0x24/0x30 [ 112.253497][ C0] do_interrupt_handler+0x6c/0x88 [ 112.254935][ C0] el1_interrupt+0x30/0x58 [ 112.256114][ C0] el1h_64_irq_handler+0x18/0x24 [ 112.257473][ C0] el1h_64_irq+0x78/0x7c [ 112.258701][ C0] alloc_counters+0x3f8/0x7a4 [ 112.259981][ C0] do_ipt_get_ctl+0xaf4/0x13a8 [ 112.261312][ C0] nf_getsockopt+0x264/0x284 [ 112.262654][ C0] ip_getsockopt+0xffc/0x158c [ 112.263912][ C0] tcp_getsockopt+0x214/0x2e74 [ 112.265191][ C0] sock_common_getsockopt+0xa8/0xc4 [ 112.266632][ C0] __sys_getsockopt+0x1e0/0x45c [ 112.268008][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 112.269403][ C0] invoke_syscall+0x98/0x2b8 [ 112.270684][ C0] el0_svc_common+0x138/0x258 [ 112.271986][ C0] do_el0_svc+0x58/0x14c [ 112.273143][ C0] el0_svc+0x78/0x1e0 [ 112.274289][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 112.275735][ C0] el0t_64_sync+0x1a0/0x1a4 [ 112.276963][ C0] irq event stamp: 201646 [ 112.278095][ C0] hardirqs last enabled at (201645): [] alloc_counters+0x3d4/0x7a4 [ 112.280767][ C0] hardirqs last disabled at (201646): [] enter_el1_irq_or_nmi+0x10/0x1c [ 112.283479][ C0] softirqs last enabled at (201632): [] release_sock+0x1d0/0x258 [ 112.286031][ C0] softirqs last disabled at (201630): [] release_sock+0x34/0x258 [ 112.288559][ C0] ---[ end trace da7f9e8b5c98ce6e ]--- 1970/01/01 00:01:52 executed programs: 37 [ 112.357571][ T4962] loop0: detected capacity change from 0 to 128 [ 112.362194][ T4962] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.364681][ T4962] Bad inode number on dev loop0: 2 is out of range [ 112.366367][ T4962] SysV FS: get root inode failed [ 112.367706][ T4962] oldfs: cannot read superblock [ 112.375393][ C1] ------------[ cut here ]------------ [ 112.376982][ C1] VFS: brelse: Trying to free free buffer [ 112.378734][ C1] WARNING: CPU: 1 PID: 4161 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.381184][ C1] Modules linked in: [ 112.382241][ C1] CPU: 1 PID: 4161 Comm: kworker/u4:7 Tainted: G W 5.15.187-syzkaller #0 [ 112.385055][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 112.387825][ C1] Workqueue: bat_events batadv_nc_worker [ 112.389461][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.391749][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 112.393239][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 112.394736][ C1] sp : ffff800008017de0 [ 112.395848][ C1] x29: ffff800008017de0 x28: ffff0000d308d1c0 x27: 1fffe0003421c65c [ 112.398029][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 112.400204][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd770c28 [ 112.402439][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 112.404752][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 112.407018][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.409335][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 8260e89813102c00 [ 112.411575][ C1] x8 : 8260e89813102c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.413885][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 112.416151][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 112.418477][ C1] Call trace: [ 112.419423][ C1] invalidate_bh_lru+0x128/0x234 [ 112.420812][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 112.422501][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 112.424436][ C1] ipi_handler+0x10c/0x710 [ 112.425670][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 112.427216][ C1] handle_domain_irq+0x144/0x1fc [ 112.428646][ C1] gic_handle_irq+0x78/0x1c8 [ 112.429879][ C1] call_on_irq_stack+0x24/0x30 [ 112.431364][ C1] do_interrupt_handler+0x6c/0x88 [ 112.432803][ C1] el1_interrupt+0x30/0x58 [ 112.434001][ C1] el1h_64_irq_handler+0x18/0x24 [ 112.435399][ C1] el1h_64_irq+0x78/0x7c [ 112.436623][ C1] lock_release+0x4a0/0x8e8 [ 112.437847][ C1] rcu_lock_release+0x2c/0x38 [ 112.439200][ C1] batadv_nc_process_nc_paths+0x288/0x31c [ 112.440929][ C1] batadv_nc_worker+0x3a8/0x554 [ 112.442324][ C1] process_one_work+0x79c/0x1140 [ 112.443736][ C1] worker_thread+0x8f4/0x101c [ 112.445004][ C1] kthread+0x374/0x454 [ 112.446166][ C1] ret_from_fork+0x10/0x20 [ 112.447478][ C1] irq event stamp: 461798 [ 112.448754][ C1] hardirqs last enabled at (461797): [] __local_bh_enable_ip+0x1f8/0x380 [ 112.451658][ C1] hardirqs last disabled at (461798): [] enter_el1_irq_or_nmi+0x10/0x1c [ 112.454291][ C1] softirqs last enabled at (461796): [] batadv_nc_purge_paths+0x308/0x390 [ 112.457240][ C1] softirqs last disabled at (461794): [] batadv_nc_purge_paths+0xd0/0x390 [ 112.459920][ C1] ---[ end trace da7f9e8b5c98ce6f ]--- [ 112.508770][ T4964] loop0: detected capacity change from 0 to 128 [ 112.515620][ T4964] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.517660][ T4964] Bad inode number on dev loop0: 2 is out of range [ 112.519402][ T4964] SysV FS: get root inode failed [ 112.520745][ T4964] oldfs: cannot read superblock [ 112.540771][ T4487] ------------[ cut here ]------------ [ 112.542384][ T4487] VFS: brelse: Trying to free free buffer [ 112.544025][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.546746][ T4487] Modules linked in: [ 112.547809][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 112.550354][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 112.553178][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.555341][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 112.556795][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 112.558305][ T4487] sp : ffff80001f2277c0 [ 112.559472][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 112.561768][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 112.563984][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000e20c6b40 [ 112.566150][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 112.568341][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 112.570535][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.572715][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 112.574916][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.577155][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 112.579292][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 112.581471][ T4487] Call trace: [ 112.582393][ T4487] invalidate_bh_lru+0x128/0x234 [ 112.583741][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 112.585252][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 112.586628][ T4487] invalidate_bh_lrus+0x34/0x40 [ 112.588015][ T4487] blkdev_flush_mapping+0x168/0x31c [ 112.589477][ T4487] blkdev_put+0x490/0x6ac [ 112.590684][ T4487] blkdev_close+0x74/0xb0 [ 112.591886][ T4487] __fput+0x1c0/0x7f8 [ 112.592981][ T4487] ____fput+0x20/0x30 [ 112.594069][ T4487] task_work_run+0x12c/0x1e0 [ 112.595390][ T4487] do_notify_resume+0x24b4/0x3128 [ 112.596844][ T4487] el0_svc+0xf0/0x1e0 [ 112.598013][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 112.599434][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 112.600738][ T4487] irq event stamp: 162968 [ 112.602009][ T4487] hardirqs last enabled at (162967): [] kasan_quarantine_put+0xc4/0x204 [ 112.604936][ T4487] hardirqs last disabled at (162968): [] smp_call_function_many_cond+0xa44/0xeb0 [ 112.607801][ T4487] softirqs last enabled at (161776): [] local_bh_enable+0x10/0x34 [ 112.610346][ T4487] softirqs last disabled at (161774): [] local_bh_disable+0x10/0x34 [ 112.612933][ T4487] ---[ end trace da7f9e8b5c98ce70 ]--- [ 112.685327][ T4966] loop0: detected capacity change from 0 to 128 [ 112.688889][ T4966] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.692823][ T4966] Bad inode number on dev loop0: 2 is out of range [ 112.695370][ T4966] SysV FS: get root inode failed [ 112.696753][ T4966] oldfs: cannot read superblock [ 112.714421][ C0] ------------[ cut here ]------------ [ 112.716223][ C0] VFS: brelse: Trying to free free buffer [ 112.718011][ C0] WARNING: CPU: 0 PID: 4968 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.720534][ C0] Modules linked in: [ 112.721650][ C0] CPU: 0 PID: 4968 Comm: syz.0.53 Tainted: G W 5.15.187-syzkaller #0 [ 112.724336][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 112.727110][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.729291][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 112.730840][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 112.732324][ C0] sp : ffff800008007de0 [ 112.733491][ C0] x29: ffff800008007de0 x28: ffff0000ce643680 x27: 1fffe0003421845c [ 112.735764][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 112.738111][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05fcc28 [ 112.740423][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 112.742733][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 112.744999][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.747373][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : a643d3ae913cb100 [ 112.749749][ C0] x8 : a643d3ae913cb100 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.751995][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 112.754182][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 112.756498][ C0] Call trace: [ 112.757485][ C0] invalidate_bh_lru+0x128/0x234 [ 112.758839][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 112.760561][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 112.762590][ C0] ipi_handler+0x10c/0x710 [ 112.763844][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 112.765423][ C0] handle_domain_irq+0x144/0x1fc [ 112.766873][ C0] gic_handle_irq+0x78/0x1c8 [ 112.768058][ C0] call_on_irq_stack+0x24/0x30 [ 112.769325][ C0] do_interrupt_handler+0x6c/0x88 [ 112.770741][ C0] el1_interrupt+0x30/0x58 [ 112.772027][ C0] el1h_64_irq_handler+0x18/0x24 [ 112.773401][ C0] el1h_64_irq+0x78/0x7c [ 112.774663][ C0] count_memcg_event_mm+0x1d0/0x308 [ 112.776076][ C0] handle_mm_fault+0x1a0/0x2950 [ 112.777462][ C0] do_page_fault+0x694/0xad4 [ 112.778741][ C0] do_translation_fault+0xe0/0x130 [ 112.780286][ C0] do_mem_abort+0x6c/0x1ac [ 112.781532][ C0] el0_da+0x90/0x1fc [ 112.782640][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 112.784019][ C0] el0t_64_sync+0x1a0/0x1a4 [ 112.785235][ C0] irq event stamp: 88 [ 112.786354][ C0] hardirqs last enabled at (87): [] count_memcg_event_mm+0x1b0/0x308 [ 112.789029][ C0] hardirqs last disabled at (88): [] enter_el1_irq_or_nmi+0x10/0x1c [ 112.791629][ C0] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 112.794094][ C0] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 112.796665][ C0] ---[ end trace da7f9e8b5c98ce71 ]--- [ 112.828477][ T4968] loop0: detected capacity change from 0 to 128 [ 112.833619][ T4968] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 112.836138][ T4968] Bad inode number on dev loop0: 2 is out of range [ 112.838043][ T4968] SysV FS: get root inode failed [ 112.839544][ T4968] oldfs: cannot read superblock [ 112.859672][ C0] ------------[ cut here ]------------ [ 112.861274][ C0] VFS: brelse: Trying to free free buffer [ 112.862963][ C0] WARNING: CPU: 0 PID: 4969 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 112.865400][ C0] Modules linked in: [ 112.866484][ C0] CPU: 0 PID: 4969 Comm: syz.0.54 Tainted: G W 5.15.187-syzkaller #0 [ 112.869168][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 112.871927][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 112.874080][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 112.875550][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 112.877052][ C0] sp : ffff800008007de0 [ 112.878258][ C0] x29: ffff800008007de0 x28: ffff0000dba78000 x27: 1fffe0003421845c [ 112.880456][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 112.882690][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05ef060 [ 112.884845][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 112.887111][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 112.889405][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 112.891776][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : f0b66ba5f9477600 [ 112.893974][ C0] x8 : f0b66ba5f9477600 x7 : 0000000000000001 x6 : 0000000000000001 [ 112.896202][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 112.898411][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 112.900597][ C0] Call trace: [ 112.901487][ C0] invalidate_bh_lru+0x128/0x234 [ 112.902817][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 112.904499][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 112.906511][ C0] ipi_handler+0x10c/0x710 [ 112.907824][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 112.909316][ C0] handle_domain_irq+0x144/0x1fc [ 112.910795][ C0] gic_handle_irq+0x78/0x1c8 [ 112.912068][ C0] call_on_irq_stack+0x24/0x30 [ 112.913500][ C0] do_interrupt_handler+0x6c/0x88 [ 112.914817][ C0] el1_interrupt+0x30/0x58 [ 112.916076][ C0] el1h_64_irq_handler+0x18/0x24 [ 112.917478][ C0] el1h_64_irq+0x78/0x7c [ 112.918655][ C0] prepare_alloc_pages+0x110/0x460 [ 112.920172][ C0] __alloc_pages+0x108/0x470 [ 112.921494][ C0] alloc_pages_vma+0x284/0x7a8 [ 112.922775][ C0] alloc_zeroed_user_highpage_movable+0x9c/0xd8 [ 112.924623][ C0] handle_mm_fault+0x1904/0x2950 [ 112.925977][ C0] do_page_fault+0x694/0xad4 [ 112.927192][ C0] do_translation_fault+0xe0/0x130 [ 112.928707][ C0] do_mem_abort+0x6c/0x1ac [ 112.929980][ C0] el0_da+0x90/0x1fc [ 112.931056][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 112.932446][ C0] el0t_64_sync+0x1a0/0x1a4 [ 112.933693][ C0] irq event stamp: 1852 [ 112.934807][ C0] hardirqs last enabled at (1851): [] count_memcg_event_mm+0x1b0/0x308 [ 112.937492][ C0] hardirqs last disabled at (1852): [] enter_el1_irq_or_nmi+0x10/0x1c [ 112.940183][ C0] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 112.942737][ C0] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 112.945286][ C0] ---[ end trace da7f9e8b5c98ce72 ]--- [ 112.965372][ T4970] loop0: detected capacity change from 0 to 128 [ 113.044752][ T4970] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.047115][ T4970] Bad inode number on dev loop0: 2 is out of range [ 113.049380][ T4970] SysV FS: get root inode failed [ 113.050978][ T4970] oldfs: cannot read superblock [ 113.065412][ T4487] ------------[ cut here ]------------ [ 113.067008][ T4487] VFS: brelse: Trying to free free buffer [ 113.068650][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.071059][ T4487] Modules linked in: [ 113.072169][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 113.074677][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.077483][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.079696][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 113.081157][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 113.082638][ T4487] sp : ffff80001f2277c0 [ 113.083804][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 113.086012][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 113.088366][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05eddf8 [ 113.090569][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 113.092883][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 113.095130][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.097392][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 113.099701][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.101925][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 113.104146][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 113.106344][ T4487] Call trace: [ 113.107297][ T4487] invalidate_bh_lru+0x128/0x234 [ 113.108707][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 113.110269][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 113.111728][ T4487] invalidate_bh_lrus+0x34/0x40 [ 113.113146][ T4487] blkdev_flush_mapping+0x168/0x31c [ 113.114580][ T4487] blkdev_put+0x490/0x6ac [ 113.115807][ T4487] blkdev_close+0x74/0xb0 [ 113.117021][ T4487] __fput+0x1c0/0x7f8 [ 113.118135][ T4487] ____fput+0x20/0x30 [ 113.119328][ T4487] task_work_run+0x12c/0x1e0 [ 113.120678][ T4487] do_notify_resume+0x24b4/0x3128 [ 113.122060][ T4487] el0_svc+0xf0/0x1e0 [ 113.123146][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 113.124491][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 113.125742][ T4487] irq event stamp: 172020 [ 113.127007][ T4487] hardirqs last enabled at (172019): [] kasan_quarantine_put+0xc4/0x204 [ 113.129787][ T4487] hardirqs last disabled at (172020): [] smp_call_function_many_cond+0xa44/0xeb0 [ 113.132784][ T4487] softirqs last enabled at (171568): [] handle_softirqs+0xa4c/0xbf0 [ 113.135425][ T4487] softirqs last disabled at (171547): [] __irq_exit_rcu+0x240/0x440 [ 113.138113][ T4487] ---[ end trace da7f9e8b5c98ce73 ]--- [ 113.168952][ T4972] loop0: detected capacity change from 0 to 128 [ 113.173243][ T4972] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.175519][ T4972] Bad inode number on dev loop0: 2 is out of range [ 113.177973][ T4972] SysV FS: get root inode failed [ 113.179366][ T4972] oldfs: cannot read superblock [ 113.189480][ T4487] ------------[ cut here ]------------ [ 113.191082][ T4487] VFS: brelse: Trying to free free buffer [ 113.192761][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.195271][ T4487] Modules linked in: [ 113.196417][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 113.198955][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.201741][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.203914][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 113.205316][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 113.206803][ T4487] sp : ffff80001f2277c0 [ 113.207927][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 113.210177][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 113.212408][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000c05eda58 [ 113.214579][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 113.216776][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 113.218943][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.221046][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 113.223184][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.225362][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 113.227593][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 113.229845][ T4487] Call trace: [ 113.230702][ T4487] invalidate_bh_lru+0x128/0x234 [ 113.232090][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 113.233672][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 113.235105][ T4487] invalidate_bh_lrus+0x34/0x40 [ 113.236400][ T4487] blkdev_flush_mapping+0x168/0x31c [ 113.237837][ T4487] blkdev_put+0x490/0x6ac [ 113.239090][ T4487] blkdev_close+0x74/0xb0 [ 113.240337][ T4487] __fput+0x1c0/0x7f8 [ 113.241395][ T4487] ____fput+0x20/0x30 [ 113.242513][ T4487] task_work_run+0x12c/0x1e0 [ 113.243772][ T4487] do_notify_resume+0x24b4/0x3128 [ 113.245226][ T4487] el0_svc+0xf0/0x1e0 [ 113.246358][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 113.247757][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 113.248911][ T4487] irq event stamp: 175222 [ 113.250089][ T4487] hardirqs last enabled at (175221): [] kasan_quarantine_put+0xc4/0x204 [ 113.252785][ T4487] hardirqs last disabled at (175222): [] smp_call_function_many_cond+0xa44/0xeb0 [ 113.255780][ T4487] softirqs last enabled at (174044): [] handle_softirqs+0xa4c/0xbf0 [ 113.258327][ T4487] softirqs last disabled at (174035): [] __irq_exit_rcu+0x240/0x440 [ 113.261032][ T4487] ---[ end trace da7f9e8b5c98ce74 ]--- [ 113.295505][ T4974] loop0: detected capacity change from 0 to 128 [ 113.365485][ T4974] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.367752][ T4974] Bad inode number on dev loop0: 2 is out of range [ 113.369556][ T4974] SysV FS: get root inode failed [ 113.370954][ T4974] oldfs: cannot read superblock [ 113.387662][ C0] ------------[ cut here ]------------ [ 113.389242][ C0] VFS: brelse: Trying to free free buffer [ 113.390863][ C0] WARNING: CPU: 0 PID: 4975 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.393423][ C0] Modules linked in: [ 113.394467][ C0] CPU: 0 PID: 4975 Comm: syz.0.57 Tainted: G W 5.15.187-syzkaller #0 [ 113.397046][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.399809][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.401976][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 113.403443][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 113.404920][ C0] sp : ffff800008007de0 [ 113.405993][ C0] x29: ffff800008007de0 x28: ffff0000cba43680 x27: 1fffe0003421845b [ 113.408109][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 113.410332][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb56148 [ 113.412586][ C0] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000010002 [ 113.414726][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 113.417113][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.419382][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : b3acfd9c43515a00 [ 113.421511][ C0] x8 : b3acfd9c43515a00 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.423767][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 113.426006][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 113.428245][ C0] Call trace: [ 113.429147][ C0] invalidate_bh_lru+0x128/0x234 [ 113.430636][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 113.432362][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 113.434370][ C0] ipi_handler+0x10c/0x710 [ 113.435600][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 113.437107][ C0] handle_domain_irq+0x144/0x1fc [ 113.438521][ C0] gic_handle_irq+0x78/0x1c8 [ 113.439851][ C0] call_on_irq_stack+0x24/0x30 [ 113.441187][ C0] do_interrupt_handler+0x6c/0x88 [ 113.442615][ C0] el1_interrupt+0x30/0x58 [ 113.443784][ C0] el1h_64_irq_handler+0x18/0x24 [ 113.445181][ C0] el1h_64_irq+0x78/0x7c [ 113.446367][ C0] seqcount_lockdep_reader_access+0x15c/0x230 [ 113.448033][ C0] bad_range+0xa0/0x2a0 [ 113.449229][ C0] get_page_from_freelist+0x2954/0x2aa8 [ 113.450768][ C0] __alloc_pages+0x1a0/0x470 [ 113.451997][ C0] alloc_pages+0x34c/0x5c0 [ 113.453228][ C0] __pmd_alloc+0x54/0x498 [ 113.454376][ C0] handle_mm_fault+0x1e04/0x2950 [ 113.455698][ C0] do_page_fault+0x694/0xad4 [ 113.457015][ C0] do_translation_fault+0xe0/0x130 [ 113.458375][ C0] do_mem_abort+0x6c/0x1ac [ 113.459550][ C0] el0_da+0x90/0x1fc [ 113.460573][ C0] el0t_64_sync_handler+0xd8/0xe4 [ 113.461961][ C0] el0t_64_sync+0x1a0/0x1a4 [ 113.463123][ C0] irq event stamp: 872 [ 113.464263][ C0] hardirqs last enabled at (871): [] seqcount_lockdep_reader_access+0x14c/0x230 [ 113.467271][ C0] hardirqs last disabled at (872): [] enter_el1_irq_or_nmi+0x10/0x1c [ 113.469962][ C0] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 113.472503][ C0] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 113.475039][ C0] ---[ end trace da7f9e8b5c98ce75 ]--- [ 113.508798][ T4976] loop0: detected capacity change from 0 to 128 [ 113.512735][ T4976] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.515482][ T4976] Bad inode number on dev loop0: 2 is out of range [ 113.517275][ T4976] SysV FS: get root inode failed [ 113.518664][ T4976] oldfs: cannot read superblock [ 113.528907][ C1] ------------[ cut here ]------------ [ 113.530579][ C1] VFS: brelse: Trying to free free buffer [ 113.532205][ C1] WARNING: CPU: 1 PID: 4616 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.534592][ C1] Modules linked in: [ 113.535683][ C1] CPU: 1 PID: 4616 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 113.538439][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.541376][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.543522][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 113.544989][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 113.546380][ C1] sp : ffff800008017de0 [ 113.547482][ C1] x29: ffff800008017de0 x28: ffff0000d9c93680 x27: 1fffe0003421c65c [ 113.549599][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 113.551759][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd76c060 [ 113.554016][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 113.556324][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 113.558595][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.560910][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : e8800a58eeb82f00 [ 113.563189][ C1] x8 : e8800a58eeb82f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.565373][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 113.567561][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 113.569738][ C1] Call trace: [ 113.570612][ C1] invalidate_bh_lru+0x128/0x234 [ 113.571918][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 113.573629][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 113.575521][ C1] ipi_handler+0x10c/0x710 [ 113.576739][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 113.578218][ C1] handle_domain_irq+0x144/0x1fc [ 113.579558][ C1] gic_handle_irq+0x78/0x1c8 [ 113.580826][ C1] call_on_irq_stack+0x24/0x30 [ 113.582116][ C1] do_interrupt_handler+0x6c/0x88 [ 113.583471][ C1] el1_interrupt+0x30/0x58 [ 113.584718][ C1] el1h_64_irq_handler+0x18/0x24 [ 113.586112][ C1] el1h_64_irq+0x78/0x7c [ 113.587319][ C1] arch_stack_walk+0x214/0x2b4 [ 113.588735][ C1] stack_trace_save+0x94/0xd8 [ 113.590092][ C1] __kasan_kmalloc+0xb0/0xf0 [ 113.591407][ C1] kmem_cache_alloc_node_trace+0x29c/0x438 [ 113.593055][ C1] __get_vm_area_node+0x14c/0x2e8 [ 113.594402][ C1] __vmalloc_node_range+0xe8/0x8d8 [ 113.595852][ C1] vzalloc+0x118/0x190 [ 113.597054][ C1] alloc_counters+0x84/0x7a4 [ 113.598340][ C1] do_ipt_get_ctl+0xaf4/0x13a8 [ 113.599640][ C1] nf_getsockopt+0x264/0x284 [ 113.600958][ C1] ip_getsockopt+0xffc/0x158c [ 113.602259][ C1] tcp_getsockopt+0x214/0x2e74 [ 113.603635][ C1] sock_common_getsockopt+0xa8/0xc4 [ 113.605083][ C1] __sys_getsockopt+0x1e0/0x45c [ 113.606389][ C1] __arm64_sys_getsockopt+0xb8/0xd4 [ 113.607856][ C1] invoke_syscall+0x98/0x2b8 [ 113.609112][ C1] el0_svc_common+0x138/0x258 [ 113.610467][ C1] do_el0_svc+0x58/0x14c [ 113.611779][ C1] el0_svc+0x78/0x1e0 [ 113.612880][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 113.614294][ C1] el0t_64_sync+0x1a0/0x1a4 [ 113.615671][ C1] irq event stamp: 221576 [ 113.616995][ C1] hardirqs last enabled at (221575): [] __local_bh_enable_ip+0x1f8/0x380 [ 113.619957][ C1] hardirqs last disabled at (221576): [] enter_el1_irq_or_nmi+0x10/0x1c [ 113.622881][ C1] softirqs last enabled at (221574): [] release_sock+0x1d0/0x258 [ 113.625617][ C1] softirqs last disabled at (221572): [] release_sock+0x34/0x258 [ 113.628279][ C1] ---[ end trace da7f9e8b5c98ce76 ]--- [ 113.678777][ T4978] loop0: detected capacity change from 0 to 128 [ 113.696177][ T4978] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.698487][ T4978] Bad inode number on dev loop0: 2 is out of range [ 113.700230][ T4978] SysV FS: get root inode failed [ 113.701712][ T4978] oldfs: cannot read superblock [ 113.708895][ C1] ------------[ cut here ]------------ [ 113.710441][ C1] VFS: brelse: Trying to free free buffer [ 113.712170][ C1] WARNING: CPU: 1 PID: 4616 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.714741][ C1] Modules linked in: [ 113.715791][ C1] CPU: 1 PID: 4616 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 113.718490][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.721235][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.723382][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 113.724854][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 113.726410][ C1] sp : ffff800008017de0 [ 113.727609][ C1] x29: ffff800008017de0 x28: ffff0000d9c93680 x27: 1fffe0003421c65c [ 113.729876][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 113.732166][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd76c400 [ 113.734376][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 113.736659][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 113.739082][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.741317][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : e8800a58eeb82f00 [ 113.743678][ C1] x8 : e8800a58eeb82f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.746040][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 113.748333][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 113.750593][ C1] Call trace: [ 113.751535][ C1] invalidate_bh_lru+0x128/0x234 [ 113.752878][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 113.754482][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 113.756548][ C1] ipi_handler+0x10c/0x710 [ 113.757858][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 113.759409][ C1] handle_domain_irq+0x144/0x1fc [ 113.760803][ C1] gic_handle_irq+0x78/0x1c8 [ 113.762101][ C1] call_on_irq_stack+0x24/0x30 [ 113.763463][ C1] do_interrupt_handler+0x6c/0x88 [ 113.764916][ C1] el1_interrupt+0x30/0x58 [ 113.766102][ C1] el1h_64_irq_handler+0x18/0x24 [ 113.767465][ C1] el1h_64_irq+0x78/0x7c [ 113.768619][ C1] put_cpu_partial+0x198/0x218 [ 113.769894][ C1] __slab_free+0x184/0x254 [ 113.771080][ C1] ___cache_free+0x178/0x1bc [ 113.772307][ C1] qlink_free+0x5c/0xa4 [ 113.773424][ C1] qlist_free_all+0x40/0xa8 [ 113.774620][ C1] kasan_quarantine_reduce+0x124/0x130 [ 113.776095][ C1] __kasan_slab_alloc+0x34/0xcc [ 113.777483][ C1] slab_post_alloc_hook+0x74/0x408 [ 113.778876][ C1] kmem_cache_alloc+0x1e0/0x3e4 [ 113.780179][ C1] getname_flags+0xb8/0x450 [ 113.781397][ C1] __arm64_sys_unlinkat+0xb4/0xfc [ 113.782831][ C1] invoke_syscall+0x98/0x2b8 [ 113.784128][ C1] el0_svc_common+0x138/0x258 [ 113.785386][ C1] do_el0_svc+0x58/0x14c [ 113.786601][ C1] el0_svc+0x78/0x1e0 [ 113.787720][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 113.789120][ C1] el0t_64_sync+0x1a0/0x1a4 [ 113.790298][ C1] irq event stamp: 222966 [ 113.791535][ C1] hardirqs last enabled at (222965): [] put_cpu_partial+0x188/0x218 [ 113.794354][ C1] hardirqs last disabled at (222966): [] enter_el1_irq_or_nmi+0x10/0x1c [ 113.797157][ C1] softirqs last enabled at (222752): [] local_bh_enable+0x10/0x34 [ 113.799804][ C1] softirqs last disabled at (222750): [] local_bh_disable+0x10/0x34 [ 113.802487][ C1] ---[ end trace da7f9e8b5c98ce77 ]--- [ 113.856690][ T4980] loop0: detected capacity change from 0 to 128 [ 113.860644][ T4980] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 113.862762][ T4980] Bad inode number on dev loop0: 2 is out of range [ 113.865092][ T4980] SysV FS: get root inode failed [ 113.866488][ T4980] oldfs: cannot read superblock [ 113.875551][ C0] ------------[ cut here ]------------ [ 113.877227][ C0] VFS: brelse: Trying to free free buffer [ 113.878965][ C0] WARNING: CPU: 0 PID: 4616 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 113.881444][ C0] Modules linked in: [ 113.882507][ C0] CPU: 0 PID: 4616 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 113.885312][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.888204][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 113.890407][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 113.891984][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 113.893536][ C0] sp : ffff800008007de0 [ 113.894764][ C0] x29: ffff800008007de0 x28: ffff0000d9c93680 x27: 1fffe0003421845c [ 113.897046][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 113.899383][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb564e8 [ 113.901545][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 113.903836][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 113.906090][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 113.908354][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : e8800a58eeb82f00 [ 113.910587][ C0] x8 : e8800a58eeb82f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 113.912878][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 113.915153][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 113.917400][ C0] Call trace: [ 113.918286][ C0] invalidate_bh_lru+0x128/0x234 [ 113.919677][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 113.921412][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 113.923318][ C0] ipi_handler+0x10c/0x710 [ 113.924569][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 113.926077][ C0] handle_domain_irq+0x144/0x1fc [ 113.927441][ C0] gic_handle_irq+0x78/0x1c8 [ 113.928800][ C0] call_on_irq_stack+0x24/0x30 [ 113.930190][ C0] do_interrupt_handler+0x6c/0x88 [ 113.931578][ C0] el1_interrupt+0x30/0x58 [ 113.932852][ C0] el1h_64_irq_handler+0x18/0x24 [ 113.934214][ C0] el1h_64_irq+0x78/0x7c [ 113.935408][ C0] lock_acquire+0x234/0x620 [ 113.936685][ C0] __might_fault+0xc8/0x128 [ 113.937911][ C0] xt_data_to_user+0x80/0x314 [ 113.939157][ C0] xt_target_to_user+0xfc/0x1a8 [ 113.940568][ C0] do_ip6t_get_ctl+0xfc0/0x13a8 [ 113.941881][ C0] nf_getsockopt+0x264/0x284 [ 113.943159][ C0] ipv6_getsockopt+0x52c/0x2584 [ 113.944526][ C0] tcp_getsockopt+0x214/0x2e74 [ 113.945869][ C0] sock_common_getsockopt+0xa8/0xc4 [ 113.947532][ C0] __sys_getsockopt+0x1e0/0x45c [ 113.949163][ C0] __arm64_sys_getsockopt+0xb8/0xd4 [ 113.950651][ C0] invoke_syscall+0x98/0x2b8 [ 113.951941][ C0] el0_svc_common+0x138/0x258 [ 113.953241][ C0] do_el0_svc+0x58/0x14c [ 113.954455][ C0] el0_svc+0x78/0x1e0 [ 113.955703][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 113.957149][ C0] el0t_64_sync+0x1a0/0x1a4 [ 113.958414][ C0] irq event stamp: 226748 [ 113.959631][ C0] hardirqs last enabled at (226747): [] alloc_counters+0x3d4/0x7a4 [ 113.962301][ C0] hardirqs last disabled at (226748): [] enter_el1_irq_or_nmi+0x10/0x1c [ 113.965052][ C0] softirqs last enabled at (226636): [] release_sock+0x1d0/0x258 [ 113.967757][ C0] softirqs last disabled at (226634): [] release_sock+0x34/0x258 [ 113.970380][ C0] ---[ end trace da7f9e8b5c98ce78 ]--- [ 114.018909][ T4982] loop0: detected capacity change from 0 to 128 [ 114.027566][ T4982] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.029941][ T4982] Bad inode number on dev loop0: 2 is out of range [ 114.031972][ T4982] SysV FS: get root inode failed [ 114.033335][ T4982] oldfs: cannot read superblock [ 114.046947][ T4487] ------------[ cut here ]------------ [ 114.048590][ T4487] VFS: brelse: Trying to free free buffer [ 114.050328][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.052664][ T4487] Modules linked in: [ 114.053726][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 114.056320][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 114.059097][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.061311][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 114.062811][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 114.064320][ T4487] sp : ffff80001f2277c0 [ 114.065479][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 114.067623][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 114.069888][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb56888 [ 114.072099][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 114.074299][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 114.076571][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.078869][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 114.081082][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.083327][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 114.085612][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 114.087735][ T4487] Call trace: [ 114.088611][ T4487] invalidate_bh_lru+0x128/0x234 [ 114.090030][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 114.091576][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 114.093047][ T4487] invalidate_bh_lrus+0x34/0x40 [ 114.094409][ T4487] blkdev_flush_mapping+0x168/0x31c [ 114.095772][ T4487] blkdev_put+0x490/0x6ac [ 114.096979][ T4487] blkdev_close+0x74/0xb0 [ 114.098172][ T4487] __fput+0x1c0/0x7f8 [ 114.099272][ T4487] ____fput+0x20/0x30 [ 114.100331][ T4487] task_work_run+0x12c/0x1e0 [ 114.101602][ T4487] do_notify_resume+0x24b4/0x3128 [ 114.103058][ T4487] el0_svc+0xf0/0x1e0 [ 114.104560][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 114.106070][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 114.107246][ T4487] irq event stamp: 190412 [ 114.108477][ T4487] hardirqs last enabled at (190411): [] kasan_quarantine_put+0xc4/0x204 [ 114.111317][ T4487] hardirqs last disabled at (190412): [] smp_call_function_many_cond+0xa44/0xeb0 [ 114.114365][ T4487] softirqs last enabled at (190274): [] local_bh_enable+0x10/0x34 [ 114.117058][ T4487] softirqs last disabled at (190272): [] local_bh_disable+0x10/0x34 [ 114.119948][ T4487] ---[ end trace da7f9e8b5c98ce79 ]--- [ 114.148433][ T4984] loop0: detected capacity change from 0 to 128 [ 114.185586][ T4984] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.187823][ T4984] Bad inode number on dev loop0: 2 is out of range [ 114.189605][ T4984] SysV FS: get root inode failed [ 114.191014][ T4984] oldfs: cannot read superblock [ 114.200098][ C0] ------------[ cut here ]------------ [ 114.201698][ C0] VFS: brelse: Trying to free free buffer [ 114.203393][ C0] WARNING: CPU: 0 PID: 3652 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.205830][ C0] Modules linked in: [ 114.206888][ C0] CPU: 0 PID: 3652 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 114.209379][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 114.212107][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.214394][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 114.215915][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 114.217446][ C0] sp : ffff800008007180 [ 114.218578][ C0] x29: ffff800008007180 x28: ffff0000d6990000 x27: 1fffe0003421845b [ 114.220742][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 114.223012][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb56c28 [ 114.225481][ C0] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000010305 [ 114.227788][ C0] x17: 0000000000010305 x16: ffff8000111d162c x15: 00000000ffffffff [ 114.230018][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.232420][ C0] x11: 0000000000010304 x10: 0000000000010304 x9 : 6ab363681ea5f200 [ 114.234797][ C0] x8 : 6ab363681ea5f200 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.237076][ C0] x5 : ffff800008006a78 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 114.239309][ C0] x2 : 0000000000000001 x1 : 0000000000010304 x0 : 0000000000000027 [ 114.241542][ C0] Call trace: [ 114.242480][ C0] invalidate_bh_lru+0x128/0x234 [ 114.243990][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 114.245714][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 114.247726][ C0] ipi_handler+0x10c/0x710 [ 114.249014][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 114.250537][ C0] handle_domain_irq+0x144/0x1fc [ 114.252046][ C0] gic_handle_irq+0x78/0x1c8 [ 114.253280][ C0] do_interrupt_handler+0x74/0x88 [ 114.254786][ C0] el1_interrupt+0x30/0x58 [ 114.256117][ C0] el1h_64_irq_handler+0x18/0x24 [ 114.257566][ C0] el1h_64_irq+0x78/0x7c [ 114.258730][ C0] queue_work_on+0x110/0x17c [ 114.259973][ C0] ieee80211_queue_work+0xb4/0x138 [ 114.261383][ C0] ieee80211_rx_h_mgmt+0x3b8/0x55c [ 114.262799][ C0] ieee80211_rx_handlers+0x5790/0x6c38 [ 114.264388][ C0] ieee80211_prepare_and_rx_handle+0x1eac/0x43f4 [ 114.266128][ C0] ieee80211_rx_list+0x17cc/0x1e2c [ 114.267528][ C0] ieee80211_rx_napi+0x164/0x338 [ 114.268859][ C0] ieee80211_handle_queued_frames+0xe8/0x188 [ 114.270632][ C0] ieee80211_tasklet_handler+0x20/0x30 [ 114.272254][ C0] tasklet_action_common+0x340/0x3f4 [ 114.273709][ C0] tasklet_action+0x60/0x84 [ 114.275076][ C0] handle_softirqs+0x344/0xbf0 [ 114.276401][ C0] __irq_exit_rcu+0x240/0x440 [ 114.277708][ C0] irq_exit+0x14/0x88 [ 114.278857][ C0] handle_domain_irq+0x14c/0x1fc [ 114.280227][ C0] gic_handle_irq+0x78/0x1c8 [ 114.281500][ C0] call_on_irq_stack+0x24/0x30 [ 114.282846][ C0] do_interrupt_handler+0x6c/0x88 [ 114.284313][ C0] el1_interrupt+0x30/0x58 [ 114.285554][ C0] el1h_64_irq_handler+0x18/0x24 [ 114.286941][ C0] el1h_64_irq+0x78/0x7c [ 114.288056][ C0] evict+0x57c/0x810 [ 114.289179][ C0] iput+0x6c4/0x77c [ 114.290271][ C0] dentry_unlink_inode+0x360/0x438 [ 114.291768][ C0] __dentry_kill+0x320/0x598 [ 114.293016][ C0] dentry_kill+0xc8/0x248 [ 114.294387][ C0] dput+0x23c/0x458 [ 114.295517][ C0] lookup_fast+0x4b4/0x588 [ 114.296779][ C0] walk_component+0x8c/0x3a8 [ 114.298080][ C0] path_lookupat+0x13c/0x3d0 [ 114.299332][ C0] filename_lookup+0x180/0x414 [ 114.300697][ C0] user_path_at_empty+0x5c/0x1a0 [ 114.302094][ C0] do_readlinkat+0xd4/0x3e0 [ 114.303330][ C0] __arm64_sys_readlinkat+0x9c/0xb8 [ 114.304796][ C0] invoke_syscall+0x98/0x2b8 [ 114.306070][ C0] el0_svc_common+0x138/0x258 [ 114.307408][ C0] do_el0_svc+0x58/0x14c [ 114.308531][ C0] el0_svc+0x78/0x1e0 [ 114.309618][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 114.311037][ C0] el0t_64_sync+0x1a0/0x1a4 [ 114.312220][ C0] irq event stamp: 1099359 [ 114.313401][ C0] hardirqs last enabled at (1099358): [] queue_work_on+0xf0/0x17c [ 114.315987][ C0] hardirqs last disabled at (1099359): [] enter_el1_irq_or_nmi+0x10/0x1c [ 114.318886][ C0] softirqs last enabled at (1098298): [] local_bh_enable+0x10/0x34 [ 114.321612][ C0] softirqs last disabled at (1099319): [] __irq_exit_rcu+0x240/0x440 [ 114.324341][ C0] ---[ end trace da7f9e8b5c98ce7a ]--- [ 114.395415][ T4986] loop0: detected capacity change from 0 to 128 [ 114.398959][ T4986] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.401204][ T4986] Bad inode number on dev loop0: 2 is out of range [ 114.403094][ T4986] SysV FS: get root inode failed [ 114.407993][ T4986] oldfs: cannot read superblock [ 114.427481][ C1] ------------[ cut here ]------------ [ 114.429095][ C1] VFS: brelse: Trying to free free buffer [ 114.430758][ C1] WARNING: CPU: 1 PID: 3652 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.433249][ C1] Modules linked in: [ 114.434325][ C1] CPU: 1 PID: 3652 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 114.436870][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 114.439677][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.441812][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 114.443290][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 114.444901][ C1] sp : ffff800008017de0 [ 114.446018][ C1] x29: ffff800008017de0 x28: ffff0000d6990000 x27: 1fffe0003421c65c [ 114.448190][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 114.450418][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd76c7a0 [ 114.452602][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 114.454893][ C1] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 114.457122][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.459398][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : 6ab363681ea5f200 [ 114.461687][ C1] x8 : 6ab363681ea5f200 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.463837][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 114.466137][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 114.468457][ C1] Call trace: [ 114.469353][ C1] invalidate_bh_lru+0x128/0x234 [ 114.470876][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 114.472550][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 114.474535][ C1] ipi_handler+0x10c/0x710 [ 114.475777][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 114.477433][ C1] handle_domain_irq+0x144/0x1fc [ 114.478894][ C1] gic_handle_irq+0x78/0x1c8 [ 114.480231][ C1] call_on_irq_stack+0x24/0x30 [ 114.481558][ C1] do_interrupt_handler+0x6c/0x88 [ 114.482932][ C1] el1_interrupt+0x30/0x58 [ 114.484164][ C1] el1h_64_irq_handler+0x18/0x24 [ 114.485535][ C1] el1h_64_irq+0x78/0x7c [ 114.486793][ C1] _raw_spin_unlock_irq+0xa0/0x128 [ 114.488212][ C1] kernfs_fop_open+0x6c0/0xa8c [ 114.489766][ C1] do_dentry_open+0x760/0xebc [ 114.491042][ C1] vfs_open+0x7c/0x90 [ 114.492215][ C1] path_openat+0x1f80/0x26e4 [ 114.493481][ C1] do_filp_open+0x164/0x330 [ 114.494840][ C1] do_sys_openat2+0x128/0x3d8 [ 114.496145][ C1] __arm64_sys_openat+0x120/0x154 [ 114.497521][ C1] invoke_syscall+0x98/0x2b8 [ 114.498765][ C1] el0_svc_common+0x138/0x258 [ 114.500094][ C1] do_el0_svc+0x58/0x14c [ 114.501289][ C1] el0_svc+0x78/0x1e0 [ 114.502421][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 114.503942][ C1] el0t_64_sync+0x1a0/0x1a4 [ 114.505174][ C1] irq event stamp: 1104610 [ 114.506441][ C1] hardirqs last enabled at (1104609): [] _raw_spin_unlock_irq+0x98/0x128 [ 114.509353][ C1] hardirqs last disabled at (1104610): [] enter_el1_irq_or_nmi+0x10/0x1c [ 114.512150][ C1] softirqs last enabled at (1104486): [] local_bh_enable+0x10/0x34 [ 114.514775][ C1] softirqs last disabled at (1104484): [] local_bh_disable+0x10/0x34 [ 114.517565][ C1] ---[ end trace da7f9e8b5c98ce7b ]--- [ 114.596786][ T4990] loop0: detected capacity change from 0 to 128 [ 114.647843][ T4990] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.649929][ T4990] Bad inode number on dev loop0: 2 is out of range [ 114.651884][ T4990] SysV FS: get root inode failed [ 114.653351][ T4990] oldfs: cannot read superblock [ 114.671310][ C1] ------------[ cut here ]------------ [ 114.672960][ C1] VFS: brelse: Trying to free free buffer [ 114.674656][ C1] WARNING: CPU: 1 PID: 148 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.677157][ C1] Modules linked in: [ 114.678250][ C1] CPU: 1 PID: 148 Comm: kworker/u4:2 Tainted: G W 5.15.187-syzkaller #0 [ 114.680938][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 114.683830][ C1] Workqueue: events_power_efficient wg_ratelimiter_gc_entries [ 114.685890][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.688069][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 114.689526][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 114.690981][ C1] sp : ffff800008017de0 [ 114.692163][ C1] x29: ffff800008017de0 x28: ffff0000c5440000 x27: 1fffe0003421c65c [ 114.694388][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 114.696551][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd76cb40 [ 114.698718][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010003 [ 114.700901][ C1] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 114.703095][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.705409][ C1] x11: 0000000000010002 x10: 0000000000010002 x9 : fe548536646e8600 [ 114.707776][ C1] x8 : fe548536646e8600 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.710057][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 114.712503][ C1] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 114.714788][ C1] Call trace: [ 114.715763][ C1] invalidate_bh_lru+0x128/0x234 [ 114.717183][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 114.718809][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 114.720779][ C1] ipi_handler+0x10c/0x710 [ 114.721978][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 114.723552][ C1] handle_domain_irq+0x144/0x1fc [ 114.724954][ C1] gic_handle_irq+0x78/0x1c8 [ 114.726209][ C1] call_on_irq_stack+0x24/0x30 [ 114.727547][ C1] do_interrupt_handler+0x6c/0x88 [ 114.729001][ C1] el1_interrupt+0x30/0x58 [ 114.730264][ C1] el1h_64_irq_handler+0x18/0x24 [ 114.731655][ C1] el1h_64_irq+0x78/0x7c [ 114.732809][ C1] rcu_is_watching+0xe0/0x134 [ 114.734283][ C1] lock_acquire+0xc4/0x620 [ 114.735571][ C1] _raw_spin_lock+0xb0/0x10c [ 114.736847][ C1] wg_ratelimiter_gc_entries+0x74/0x3f0 [ 114.738483][ C1] process_one_work+0x79c/0x1140 [ 114.739842][ C1] worker_thread+0x8f4/0x101c [ 114.741136][ C1] kthread+0x374/0x454 [ 114.742314][ C1] ret_from_fork+0x10/0x20 [ 114.743573][ C1] irq event stamp: 102880 [ 114.744766][ C1] hardirqs last enabled at (102879): [] seqcount_lockdep_reader_access+0x1fc/0x2c4 [ 114.747768][ C1] hardirqs last disabled at (102880): [] enter_el1_irq_or_nmi+0x10/0x1c [ 114.750428][ C1] softirqs last enabled at (102868): [] batadv_forw_packet_steal+0x11c/0x13c [ 114.753340][ C1] softirqs last disabled at (102866): [] batadv_forw_packet_steal+0x38/0x13c [ 114.756260][ C1] ---[ end trace da7f9e8b5c98ce7c ]--- [ 114.787884][ T4992] loop0: detected capacity change from 0 to 128 [ 114.793065][ T4992] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 114.795477][ T4992] Bad inode number on dev loop0: 2 is out of range [ 114.797237][ T4992] SysV FS: get root inode failed [ 114.798607][ T4992] oldfs: cannot read superblock [ 114.808015][ C1] ------------[ cut here ]------------ [ 114.809585][ C1] VFS: brelse: Trying to free free buffer [ 114.811268][ C1] WARNING: CPU: 1 PID: 4616 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 114.813765][ C1] Modules linked in: [ 114.814831][ C1] CPU: 1 PID: 4616 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 114.817691][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 114.820460][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 114.822625][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 114.824085][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 114.825610][ C1] sp : ffff800008017de0 [ 114.826750][ C1] x29: ffff800008017de0 x28: ffff0000d9c93680 x27: 1fffe0003421c65b [ 114.828940][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 114.831147][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd76cee0 [ 114.833390][ C1] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000010002 [ 114.835621][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 114.837869][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 114.840131][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : e8800a58eeb82f00 [ 114.842293][ C1] x8 : e8800a58eeb82f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 114.844537][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 114.846782][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 114.848995][ C1] Call trace: [ 114.850021][ C1] invalidate_bh_lru+0x128/0x234 [ 114.851434][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 114.853169][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 114.855142][ C1] ipi_handler+0x10c/0x710 [ 114.856395][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 114.857958][ C1] handle_domain_irq+0x144/0x1fc [ 114.859330][ C1] gic_handle_irq+0x78/0x1c8 [ 114.860591][ C1] call_on_irq_stack+0x24/0x30 [ 114.861907][ C1] do_interrupt_handler+0x6c/0x88 [ 114.863273][ C1] el1_interrupt+0x30/0x58 [ 114.864512][ C1] el1h_64_irq_handler+0x18/0x24 [ 114.865795][ C1] el1h_64_irq+0x78/0x7c [ 114.867047][ C1] kasan_quarantine_put+0xd4/0x204 [ 114.868460][ C1] ____kasan_slab_free+0x124/0x164 [ 114.869853][ C1] __kasan_slab_free+0x18/0x28 [ 114.871148][ C1] slab_free_freelist_hook+0x128/0x1e8 [ 114.872692][ C1] kfree+0x170/0x40c [ 114.873755][ C1] __vunmap+0x8ec/0x9bc [ 114.874917][ C1] vfree+0xbc/0x154 [ 114.875969][ C1] do_ip6t_get_ctl+0x10ec/0x13a8 [ 114.877318][ C1] nf_getsockopt+0x264/0x284 [ 114.878642][ C1] ipv6_getsockopt+0x52c/0x2584 [ 114.879991][ C1] tcp_getsockopt+0x214/0x2e74 [ 114.881343][ C1] sock_common_getsockopt+0xa8/0xc4 [ 114.882761][ C1] __sys_getsockopt+0x1e0/0x45c [ 114.884172][ C1] __arm64_sys_getsockopt+0xb8/0xd4 [ 114.885657][ C1] invoke_syscall+0x98/0x2b8 [ 114.886909][ C1] el0_svc_common+0x138/0x258 [ 114.888238][ C1] do_el0_svc+0x58/0x14c [ 114.889434][ C1] el0_svc+0x78/0x1e0 [ 114.890485][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 114.891819][ C1] el0t_64_sync+0x1a0/0x1a4 [ 114.893109][ C1] irq event stamp: 239478 [ 114.894288][ C1] hardirqs last enabled at (239477): [] kasan_quarantine_put+0xc4/0x204 [ 114.897162][ C1] hardirqs last disabled at (239478): [] enter_el1_irq_or_nmi+0x10/0x1c [ 114.899981][ C1] softirqs last enabled at (239400): [] release_sock+0x1d0/0x258 [ 114.902694][ C1] softirqs last disabled at (239398): [] release_sock+0x34/0x258 [ 114.905280][ C1] ---[ end trace da7f9e8b5c98ce7d ]--- [ 114.988711][ T4994] loop0: detected capacity change from 0 to 128 [ 115.045533][ T4994] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.047816][ T4994] Bad inode number on dev loop0: 2 is out of range [ 115.049571][ T4994] SysV FS: get root inode failed [ 115.050922][ T4994] oldfs: cannot read superblock [ 115.065289][ C1] ------------[ cut here ]------------ [ 115.067055][ C1] VFS: brelse: Trying to free free buffer [ 115.068763][ C1] WARNING: CPU: 1 PID: 4995 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.071243][ C1] Modules linked in: [ 115.072302][ C1] CPU: 1 PID: 4995 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 115.075047][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 115.077961][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.080190][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 115.081644][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 115.083126][ C1] sp : ffff800008017de0 [ 115.084269][ C1] x29: ffff800008017de0 x28: ffff0000d6993680 x27: 1fffe0003421c65c [ 115.086486][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 115.088796][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd769318 [ 115.091110][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 115.093400][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 115.095756][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.097937][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 5d68c5e2f613fe00 [ 115.100171][ C1] x8 : 5d68c5e2f613fe00 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.102383][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 115.104676][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 115.106892][ C1] Call trace: [ 115.107831][ C1] invalidate_bh_lru+0x128/0x234 [ 115.109188][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 115.110884][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.112771][ C1] ipi_handler+0x10c/0x710 [ 115.114040][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 115.115591][ C1] handle_domain_irq+0x144/0x1fc [ 115.116965][ C1] gic_handle_irq+0x78/0x1c8 [ 115.118278][ C1] call_on_irq_stack+0x24/0x30 [ 115.119649][ C1] do_interrupt_handler+0x6c/0x88 [ 115.121044][ C1] el1_interrupt+0x30/0x58 [ 115.122309][ C1] el1h_64_irq_handler+0x18/0x24 [ 115.123746][ C1] el1h_64_irq+0x78/0x7c [ 115.125004][ C1] kasan_quarantine_put+0xd4/0x204 [ 115.126458][ C1] ____kasan_slab_free+0x124/0x164 [ 115.127885][ C1] __kasan_slab_free+0x18/0x28 [ 115.129248][ C1] slab_free_freelist_hook+0x128/0x1e8 [ 115.130808][ C1] kfree+0x170/0x40c [ 115.131852][ C1] kfree_link+0x20/0x30 [ 115.133059][ C1] walk_component+0x158/0x3a8 [ 115.134355][ C1] link_path_walk+0x590/0xb8c [ 115.135683][ C1] path_openat+0x1c0/0x26e4 [ 115.137011][ C1] do_filp_open+0x164/0x330 [ 115.138290][ C1] do_sys_openat2+0x128/0x3d8 [ 115.139628][ C1] __arm64_sys_openat+0x120/0x154 [ 115.140999][ C1] invoke_syscall+0x98/0x2b8 [ 115.142232][ C1] el0_svc_common+0x138/0x258 [ 115.143513][ C1] do_el0_svc+0x58/0x14c [ 115.144699][ C1] el0_svc+0x78/0x1e0 [ 115.145870][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 115.147292][ C1] el0t_64_sync+0x1a0/0x1a4 [ 115.148597][ C1] irq event stamp: 762 [ 115.149739][ C1] hardirqs last enabled at (761): [] kasan_quarantine_put+0xc4/0x204 [ 115.152474][ C1] hardirqs last disabled at (762): [] enter_el1_irq_or_nmi+0x10/0x1c [ 115.155252][ C1] softirqs last enabled at (122): [] handle_softirqs+0xa4c/0xbf0 [ 115.157943][ C1] softirqs last disabled at (101): [] __irq_exit_rcu+0x240/0x440 [ 115.160566][ C1] ---[ end trace da7f9e8b5c98ce7e ]--- [ 115.189553][ T4996] loop0: detected capacity change from 0 to 128 [ 115.193963][ T4996] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.196130][ T4996] Bad inode number on dev loop0: 2 is out of range [ 115.197915][ T4996] SysV FS: get root inode failed [ 115.199454][ T4996] oldfs: cannot read superblock [ 115.208460][ T3652] ------------[ cut here ]------------ [ 115.209996][ T3652] VFS: brelse: Trying to free free buffer [ 115.211594][ T3652] WARNING: CPU: 0 PID: 3652 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.213886][ T3652] Modules linked in: [ 115.214945][ T3652] CPU: 0 PID: 3652 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 115.217432][ T3652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 115.220310][ T3652] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.222478][ T3652] pc : invalidate_bh_lru+0x128/0x234 [ 115.223998][ T3652] lr : invalidate_bh_lru+0x128/0x234 [ 115.225436][ T3652] sp : ffff8000215c77c0 [ 115.226602][ T3652] x29: ffff8000215c77c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 115.228817][ T3652] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 115.231000][ T3652] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb52060 [ 115.233272][ T3652] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 115.235525][ T3652] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 115.237868][ T3652] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.240110][ T3652] x11: 0000000000000002 x10: 0000000000000000 x9 : 6ab363681ea5f200 [ 115.242324][ T3652] x8 : 6ab363681ea5f200 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.244590][ T3652] x5 : ffff8000215c70b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 115.246800][ T3652] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 115.249132][ T3652] Call trace: [ 115.250076][ T3652] invalidate_bh_lru+0x128/0x234 [ 115.251419][ T3652] smp_call_function_many_cond+0xa50/0xeb0 [ 115.253131][ T3652] on_each_cpu_cond_mask+0x5c/0xc4 [ 115.254559][ T3652] invalidate_bh_lrus+0x34/0x40 [ 115.255995][ T3652] blkdev_flush_mapping+0x168/0x31c [ 115.257494][ T3652] blkdev_put+0x490/0x6ac [ 115.258766][ T3652] blkdev_close+0x74/0xb0 [ 115.259952][ T3652] __fput+0x1c0/0x7f8 [ 115.261055][ T3652] ____fput+0x20/0x30 [ 115.262136][ T3652] task_work_run+0x12c/0x1e0 [ 115.263367][ T3652] do_notify_resume+0x24b4/0x3128 [ 115.264797][ T3652] el0_svc+0xf0/0x1e0 [ 115.265878][ T3652] el0t_64_sync_handler+0xcc/0xe4 [ 115.267222][ T3652] el0t_64_sync+0x1a0/0x1a4 [ 115.268416][ T3652] irq event stamp: 1115888 [ 115.269580][ T3652] hardirqs last enabled at (1115887): [] kasan_quarantine_put+0xc4/0x204 [ 115.272315][ T3652] hardirqs last disabled at (1115888): [] smp_call_function_many_cond+0xa44/0xeb0 [ 115.275347][ T3652] softirqs last enabled at (1115660): [] local_bh_enable+0x10/0x34 [ 115.277953][ T3652] softirqs last disabled at (1115658): [] local_bh_disable+0x10/0x34 [ 115.280814][ T3652] ---[ end trace da7f9e8b5c98ce7f ]--- [ 115.305140][ T4998] loop0: detected capacity change from 0 to 128 [ 115.335551][ T4998] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.343974][ T4998] Bad inode number on dev loop0: 2 is out of range [ 115.345987][ T4998] SysV FS: get root inode failed [ 115.347379][ T4998] oldfs: cannot read superblock [ 115.358646][ T4487] ------------[ cut here ]------------ [ 115.360195][ T4487] VFS: brelse: Trying to free free buffer [ 115.361888][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.364298][ T4487] Modules linked in: [ 115.365353][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 115.367871][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 115.370614][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.372720][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 115.374179][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 115.375662][ T4487] sp : ffff80001f2277c0 [ 115.376796][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 115.378977][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 115.381153][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb52400 [ 115.383398][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 115.385655][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 115.387882][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.390126][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 115.392316][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.394641][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 115.396858][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 115.399034][ T4487] Call trace: [ 115.399918][ T4487] invalidate_bh_lru+0x128/0x234 [ 115.401270][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 115.402940][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 115.404366][ T4487] invalidate_bh_lrus+0x34/0x40 [ 115.405687][ T4487] blkdev_flush_mapping+0x168/0x31c [ 115.407109][ T4487] blkdev_put+0x490/0x6ac [ 115.408289][ T4487] blkdev_close+0x74/0xb0 [ 115.409468][ T4487] __fput+0x1c0/0x7f8 [ 115.410649][ T4487] ____fput+0x20/0x30 [ 115.411758][ T4487] task_work_run+0x12c/0x1e0 [ 115.413004][ T4487] do_notify_resume+0x24b4/0x3128 [ 115.414490][ T4487] el0_svc+0xf0/0x1e0 [ 115.415692][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 115.417148][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 115.418359][ T4487] irq event stamp: 215682 [ 115.419649][ T4487] hardirqs last enabled at (215681): [] kasan_quarantine_put+0xc4/0x204 [ 115.422486][ T4487] hardirqs last disabled at (215682): [] smp_call_function_many_cond+0xa44/0xeb0 [ 115.425545][ T4487] softirqs last enabled at (214730): [] local_bh_enable+0x10/0x34 [ 115.428306][ T4487] softirqs last disabled at (214728): [] local_bh_disable+0x10/0x34 [ 115.431156][ T4487] ---[ end trace da7f9e8b5c98ce80 ]--- [ 115.480406][ T5000] loop0: detected capacity change from 0 to 128 [ 115.485266][ T5000] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.487388][ T5000] Bad inode number on dev loop0: 2 is out of range [ 115.489028][ T5000] SysV FS: get root inode failed [ 115.490337][ T5000] oldfs: cannot read superblock [ 115.508131][ C0] ------------[ cut here ]------------ [ 115.509749][ C0] VFS: brelse: Trying to free free buffer [ 115.511518][ C0] WARNING: CPU: 0 PID: 5002 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.513974][ C0] Modules linked in: [ 115.515022][ C0] CPU: 0 PID: 5002 Comm: syz.0.70 Tainted: G W 5.15.187-syzkaller #0 [ 115.517639][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 115.520465][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.522630][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 115.524175][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 115.525707][ C0] sp : ffff800008007de0 [ 115.526922][ C0] x29: ffff800008007de0 x28: ffff0000ca74b680 x27: 1fffe0003421845c [ 115.529110][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 115.531362][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb527a0 [ 115.533569][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 115.535772][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 115.538042][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.540386][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : a453aca77d575400 [ 115.542665][ C0] x8 : a453aca77d575400 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.544914][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 115.547288][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 115.549527][ C0] Call trace: [ 115.550489][ C0] invalidate_bh_lru+0x128/0x234 [ 115.551837][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 115.553537][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.555519][ C0] ipi_handler+0x10c/0x710 [ 115.556731][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 115.558248][ C0] handle_domain_irq+0x144/0x1fc [ 115.559573][ C0] gic_handle_irq+0x78/0x1c8 [ 115.560870][ C0] call_on_irq_stack+0x24/0x30 [ 115.562163][ C0] do_interrupt_handler+0x6c/0x88 [ 115.563603][ C0] el0_interrupt+0x94/0x260 [ 115.564897][ C0] __el0_irq_handler_common+0x18/0x24 [ 115.566295][ C0] el0t_64_irq_handler+0x10/0x1c [ 115.567691][ C0] el0t_64_irq+0x1a0/0x1a4 [ 115.568922][ C0] irq event stamp: 298 [ 115.570072][ C0] hardirqs last enabled at (297): [] el0t_64_sync_handler+0xd8/0xe4 [ 115.572736][ C0] hardirqs last disabled at (298): [] __el0_irq_handler_common+0x18/0x24 [ 115.575498][ C0] softirqs last enabled at (8): [] local_bh_enable+0x10/0x34 [ 115.577984][ C0] softirqs last disabled at (6): [] local_bh_disable+0x10/0x34 [ 115.580548][ C0] ---[ end trace da7f9e8b5c98ce81 ]--- [ 115.645380][ T5002] loop0: detected capacity change from 0 to 128 [ 115.648924][ T5002] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.650909][ T5002] Bad inode number on dev loop0: 2 is out of range [ 115.652776][ T5002] SysV FS: get root inode failed [ 115.654475][ T5002] oldfs: cannot read superblock [ 115.661652][ T4487] ------------[ cut here ]------------ [ 115.663139][ T4487] VFS: brelse: Trying to free free buffer [ 115.664793][ T4487] WARNING: CPU: 1 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.667241][ T4487] Modules linked in: [ 115.668329][ T4487] CPU: 1 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 115.670956][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 115.673641][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.675790][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 115.677206][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 115.678598][ T4487] sp : ffff80001f2277c0 [ 115.679689][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421c65b [ 115.681906][ T4487] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000000 [ 115.684029][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd7696b8 [ 115.686228][ T4487] x20: ffff0001a10e32d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 115.688360][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 115.690599][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.692789][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 115.694939][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.697105][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 115.699199][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 115.701384][ T4487] Call trace: [ 115.702280][ T4487] invalidate_bh_lru+0x128/0x234 [ 115.703615][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 115.705230][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 115.706612][ T4487] invalidate_bh_lrus+0x34/0x40 [ 115.707954][ T4487] blkdev_flush_mapping+0x168/0x31c [ 115.709396][ T4487] blkdev_put+0x490/0x6ac [ 115.710583][ T4487] blkdev_close+0x74/0xb0 [ 115.711806][ T4487] __fput+0x1c0/0x7f8 [ 115.712913][ T4487] ____fput+0x20/0x30 [ 115.714023][ T4487] task_work_run+0x12c/0x1e0 [ 115.715263][ T4487] do_notify_resume+0x24b4/0x3128 [ 115.716705][ T4487] el0_svc+0xf0/0x1e0 [ 115.717841][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 115.719163][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 115.720476][ T4487] irq event stamp: 223690 [ 115.721619][ T4487] hardirqs last enabled at (223689): [] kasan_quarantine_put+0xc4/0x204 [ 115.724351][ T4487] hardirqs last disabled at (223690): [] smp_call_function_many_cond+0xa44/0xeb0 [ 115.727303][ T4487] softirqs last enabled at (223070): [] local_bh_enable+0x10/0x34 [ 115.729915][ T4487] softirqs last disabled at (223068): [] local_bh_disable+0x10/0x34 [ 115.732567][ T4487] ---[ end trace da7f9e8b5c98ce82 ]--- [ 115.809425][ T5004] loop0: detected capacity change from 0 to 128 [ 115.889224][ T5004] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 115.891459][ T5004] Bad inode number on dev loop0: 2 is out of range [ 115.893346][ T5004] SysV FS: get root inode failed [ 115.896688][ T5004] oldfs: cannot read superblock [ 115.911433][ C1] ------------[ cut here ]------------ [ 115.913135][ C1] VFS: brelse: Trying to free free buffer [ 115.914780][ C1] WARNING: CPU: 1 PID: 5005 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 115.917265][ C1] Modules linked in: [ 115.918347][ C1] CPU: 1 PID: 5005 Comm: syz.0.72 Tainted: G W 5.15.187-syzkaller #0 [ 115.921011][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 115.923804][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 115.926025][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 115.927533][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 115.929005][ C1] sp : ffff800008017de0 [ 115.930171][ C1] x29: ffff800008017de0 x28: ffff0000c247d1c0 x27: 1fffe0003421c65c [ 115.932318][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 115.934489][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd769a58 [ 115.936680][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 115.938875][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 115.941015][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 115.943287][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : ef30a160558b5700 [ 115.945440][ C1] x8 : ef30a160558b5700 x7 : 0000000000000001 x6 : 0000000000000001 [ 115.947632][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 115.949846][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 115.952061][ C1] Call trace: [ 115.952978][ C1] invalidate_bh_lru+0x128/0x234 [ 115.954305][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 115.955939][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 115.957931][ C1] ipi_handler+0x10c/0x710 [ 115.959177][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 115.960639][ C1] handle_domain_irq+0x144/0x1fc [ 115.961991][ C1] gic_handle_irq+0x78/0x1c8 [ 115.963225][ C1] call_on_irq_stack+0x24/0x30 [ 115.964549][ C1] do_interrupt_handler+0x6c/0x88 [ 115.965954][ C1] el1_interrupt+0x30/0x58 [ 115.967196][ C1] el1h_64_irq_handler+0x18/0x24 [ 115.968520][ C1] el1h_64_irq+0x78/0x7c [ 115.969685][ C1] local_daif_restore+0x20/0x3c [ 115.971103][ C1] el0_da+0x80/0x1fc [ 115.972158][ C1] el0t_64_sync_handler+0xd8/0xe4 [ 115.973537][ C1] el0t_64_sync+0x1a0/0x1a4 [ 115.974727][ C1] irq event stamp: 1216 [ 115.975827][ C1] hardirqs last enabled at (1215): [] local_daif_restore+0x1c/0x3c [ 115.978405][ C1] hardirqs last disabled at (1216): [] enter_el1_irq_or_nmi+0x10/0x1c [ 115.981044][ C1] softirqs last enabled at (14): [] local_bh_enable+0x10/0x34 [ 115.983555][ C1] softirqs last disabled at (12): [] local_bh_disable+0x10/0x34 [ 115.986019][ C1] ---[ end trace da7f9e8b5c98ce83 ]--- [ 116.040331][ T5006] loop0: detected capacity change from 0 to 128 [ 116.048027][ T5006] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.050097][ T5006] Bad inode number on dev loop0: 2 is out of range [ 116.051855][ T5006] SysV FS: get root inode failed [ 116.053250][ T5006] oldfs: cannot read superblock [ 116.066052][ T4487] ------------[ cut here ]------------ [ 116.067562][ T4487] VFS: brelse: Trying to free free buffer [ 116.069136][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.071609][ T4487] Modules linked in: [ 116.072649][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 116.075224][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 116.077992][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.080075][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 116.081480][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 116.082916][ T4487] sp : ffff80001f2277c0 [ 116.084075][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 116.086293][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 116.088576][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb52b40 [ 116.090795][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 116.093008][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 116.095197][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.097416][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 116.099726][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.101923][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 116.104186][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 116.106309][ T4487] Call trace: [ 116.107248][ T4487] invalidate_bh_lru+0x128/0x234 [ 116.108624][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 116.110244][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 116.111661][ T4487] invalidate_bh_lrus+0x34/0x40 [ 116.113003][ T4487] blkdev_flush_mapping+0x168/0x31c [ 116.114507][ T4487] blkdev_put+0x490/0x6ac [ 116.115684][ T4487] blkdev_close+0x74/0xb0 [ 116.116833][ T4487] __fput+0x1c0/0x7f8 [ 116.117943][ T4487] ____fput+0x20/0x30 [ 116.119038][ T4487] task_work_run+0x12c/0x1e0 [ 116.120321][ T4487] do_notify_resume+0x24b4/0x3128 [ 116.121731][ T4487] el0_svc+0xf0/0x1e0 [ 116.122824][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 116.124137][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 116.125316][ T4487] irq event stamp: 233882 [ 116.126467][ T4487] hardirqs last enabled at (233881): [] kasan_quarantine_put+0xc4/0x204 [ 116.129115][ T4487] hardirqs last disabled at (233882): [] smp_call_function_many_cond+0xa44/0xeb0 [ 116.132040][ T4487] softirqs last enabled at (233300): [] handle_softirqs+0xa4c/0xbf0 [ 116.134606][ T4487] softirqs last disabled at (233259): [] __irq_exit_rcu+0x240/0x440 [ 116.137194][ T4487] ---[ end trace da7f9e8b5c98ce84 ]--- [ 116.188173][ T5008] loop0: detected capacity change from 0 to 128 [ 116.238277][ T5008] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.240349][ T5008] Bad inode number on dev loop0: 2 is out of range [ 116.242814][ T5008] SysV FS: get root inode failed [ 116.244846][ T5008] oldfs: cannot read superblock [ 116.251581][ C0] ------------[ cut here ]------------ [ 116.253113][ C0] VFS: brelse: Trying to free free buffer [ 116.254783][ C0] WARNING: CPU: 0 PID: 5008 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.257342][ C0] Modules linked in: [ 116.258437][ C0] CPU: 0 PID: 5008 Comm: syz.0.73 Tainted: G W 5.15.187-syzkaller #0 [ 116.261060][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 116.263776][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.265917][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 116.267325][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 116.268775][ C0] sp : ffff800008007de0 [ 116.269892][ C0] x29: ffff800008007de0 x28: ffff0000e8243680 x27: 1fffe0003421845b [ 116.272139][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 116.274303][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dcb52ee0 [ 116.276572][ C0] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000010003 [ 116.278780][ C0] x17: 0000000000010003 x16: ffff8000111d162c x15: 00000000ffffffff [ 116.281021][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.283255][ C0] x11: 0000000000010002 x10: 0000000000010002 x9 : 7287b3adc6cf1300 [ 116.285336][ C0] x8 : 7287b3adc6cf1300 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.287546][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 116.289707][ C0] x2 : 0000000000000001 x1 : 0000000100010002 x0 : 0000000000000027 [ 116.291949][ C0] Call trace: [ 116.292870][ C0] invalidate_bh_lru+0x128/0x234 [ 116.294255][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 116.295933][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 116.297821][ C0] ipi_handler+0x10c/0x710 [ 116.299059][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 116.300523][ C0] handle_domain_irq+0x144/0x1fc [ 116.301858][ C0] gic_handle_irq+0x78/0x1c8 [ 116.303152][ C0] call_on_irq_stack+0x24/0x30 [ 116.304433][ C0] do_interrupt_handler+0x6c/0x88 [ 116.305820][ C0] el1_interrupt+0x30/0x58 [ 116.307000][ C0] el1h_64_irq_handler+0x18/0x24 [ 116.308368][ C0] el1h_64_irq+0x78/0x7c [ 116.309537][ C0] lock_page_memcg+0x120/0x234 [ 116.310914][ C0] page_remove_rmap+0x3c/0xfd0 [ 116.312260][ C0] unmap_page_range+0xbb4/0x1958 [ 116.313622][ C0] unmap_single_vma+0x13c/0x1e4 [ 116.314900][ C0] unmap_vmas+0x104/0x200 [ 116.316069][ C0] exit_mmap+0x2a8/0x4e0 [ 116.317221][ C0] __mmput+0xec/0x3b8 [ 116.318287][ C0] mmput+0x80/0xc8 [ 116.319308][ C0] exit_mm+0x4a0/0x684 [ 116.320394][ C0] do_exit+0x4ec/0x1f58 [ 116.321529][ C0] do_group_exit+0x100/0x268 [ 116.322785][ C0] get_signal+0x73c/0x1340 [ 116.323979][ C0] do_notify_resume+0x35c/0x3128 [ 116.325361][ C0] el0_svc+0xf0/0x1e0 [ 116.326461][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 116.327910][ C0] el0t_64_sync+0x1a0/0x1a4 [ 116.329129][ C0] irq event stamp: 1814 [ 116.330286][ C0] hardirqs last enabled at (1813): [] lock_page_memcg+0x110/0x234 [ 116.332903][ C0] hardirqs last disabled at (1814): [] enter_el1_irq_or_nmi+0x10/0x1c [ 116.335585][ C0] softirqs last enabled at (1368): [] local_bh_enable+0x10/0x34 [ 116.338040][ C0] softirqs last disabled at (1366): [] local_bh_disable+0x10/0x34 [ 116.340654][ C0] ---[ end trace da7f9e8b5c98ce85 ]--- [ 116.387786][ T5010] loop0: detected capacity change from 0 to 128 [ 116.425826][ T5010] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.436062][ T5010] Bad inode number on dev loop0: 2 is out of range [ 116.437850][ T5010] SysV FS: get root inode failed [ 116.439203][ T5010] oldfs: cannot read superblock [ 116.441900][ T4487] ------------[ cut here ]------------ [ 116.443423][ T4487] VFS: brelse: Trying to free free buffer [ 116.445100][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.447527][ T4487] Modules linked in: [ 116.448585][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 116.451191][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 116.453930][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.456018][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 116.457446][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 116.458880][ T4487] sp : ffff80001f2277c0 [ 116.460012][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845c [ 116.462184][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 116.464393][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd7c0318 [ 116.466565][ T4487] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000000003 [ 116.468881][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 116.471041][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.473279][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 116.475538][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.477761][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 116.479990][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 116.482185][ T4487] Call trace: [ 116.483104][ T4487] invalidate_bh_lru+0x128/0x234 [ 116.484481][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 116.486059][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 116.487479][ T4487] invalidate_bh_lrus+0x34/0x40 [ 116.488807][ T4487] blkdev_flush_mapping+0x168/0x31c [ 116.490221][ T4487] blkdev_put+0x490/0x6ac [ 116.491427][ T4487] blkdev_close+0x74/0xb0 [ 116.492637][ T4487] __fput+0x1c0/0x7f8 [ 116.493732][ T4487] ____fput+0x20/0x30 [ 116.494857][ T4487] task_work_run+0x12c/0x1e0 [ 116.496221][ T4487] do_notify_resume+0x24b4/0x3128 [ 116.497610][ T4487] el0_svc+0xf0/0x1e0 [ 116.498726][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 116.500147][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 116.501400][ T4487] irq event stamp: 239878 [ 116.502618][ T4487] hardirqs last enabled at (239877): [] kasan_quarantine_put+0xc4/0x204 [ 116.505362][ T4487] hardirqs last disabled at (239878): [] smp_call_function_many_cond+0xa44/0xeb0 [ 116.508338][ T4487] softirqs last enabled at (239756): [] local_bh_enable+0x10/0x34 [ 116.511051][ T4487] softirqs last disabled at (239754): [] local_bh_disable+0x10/0x34 [ 116.513629][ T4487] ---[ end trace da7f9e8b5c98ce86 ]--- [ 116.595712][ T5012] loop0: detected capacity change from 0 to 128 [ 116.636046][ T5012] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.638217][ T5012] Bad inode number on dev loop0: 2 is out of range [ 116.640016][ T5012] SysV FS: get root inode failed [ 116.641459][ T5012] oldfs: cannot read superblock [ 116.653395][ T4487] ------------[ cut here ]------------ [ 116.654941][ T4487] VFS: brelse: Trying to free free buffer [ 116.656674][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.659103][ T4487] Modules linked in: [ 116.660183][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 116.662755][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 116.665438][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.667617][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 116.669082][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 116.670557][ T4487] sp : ffff80001f2277c0 [ 116.671664][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 116.673849][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 116.676095][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd7c06b8 [ 116.678311][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 116.680601][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 116.682816][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.685033][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 116.687284][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.689396][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 116.691587][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 116.693746][ T4487] Call trace: [ 116.694633][ T4487] invalidate_bh_lru+0x128/0x234 [ 116.695978][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 116.697574][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 116.699023][ T4487] invalidate_bh_lrus+0x34/0x40 [ 116.700338][ T4487] blkdev_flush_mapping+0x168/0x31c [ 116.701792][ T4487] blkdev_put+0x490/0x6ac [ 116.702988][ T4487] blkdev_close+0x74/0xb0 [ 116.704192][ T4487] __fput+0x1c0/0x7f8 [ 116.705292][ T4487] ____fput+0x20/0x30 [ 116.706401][ T4487] task_work_run+0x12c/0x1e0 [ 116.707677][ T4487] do_notify_resume+0x24b4/0x3128 [ 116.709072][ T4487] el0_svc+0xf0/0x1e0 [ 116.710170][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 116.711552][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 116.712820][ T4487] irq event stamp: 247378 [ 116.713979][ T4487] hardirqs last enabled at (247377): [] kasan_quarantine_put+0xc4/0x204 [ 116.716733][ T4487] hardirqs last disabled at (247378): [] smp_call_function_many_cond+0xa44/0xeb0 [ 116.719607][ T4487] softirqs last enabled at (245680): [] local_bh_enable+0x10/0x34 [ 116.722172][ T4487] softirqs last disabled at (245678): [] local_bh_disable+0x10/0x34 [ 116.724733][ T4487] ---[ end trace da7f9e8b5c98ce87 ]--- [ 116.767532][ T5014] loop0: detected capacity change from 0 to 128 [ 116.771437][ T5014] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.773486][ T5014] Bad inode number on dev loop0: 2 is out of range [ 116.775670][ T5014] SysV FS: get root inode failed [ 116.777085][ T5014] oldfs: cannot read superblock [ 116.790521][ C0] ------------[ cut here ]------------ [ 116.792081][ C0] VFS: brelse: Trying to free free buffer [ 116.793761][ C0] WARNING: CPU: 0 PID: 5015 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.796168][ C0] Modules linked in: [ 116.797282][ C0] CPU: 0 PID: 5015 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 116.799924][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 116.802648][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.804783][ C0] pc : invalidate_bh_lru+0x128/0x234 [ 116.806166][ C0] lr : invalidate_bh_lru+0x128/0x234 [ 116.807667][ C0] sp : ffff800008007de0 [ 116.808819][ C0] x29: ffff800008007de0 x28: ffff0000d231b680 x27: 1fffe0003421845c [ 116.810992][ C0] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000001 [ 116.813132][ C0] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd7c0a58 [ 116.815354][ C0] x20: ffff0001a10c22e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 116.817613][ C0] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 116.819807][ C0] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 116.822088][ C0] x11: 0000000000010001 x10: 0000000000010001 x9 : 5dbef34846550c00 [ 116.824351][ C0] x8 : 5dbef34846550c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 116.826526][ C0] x5 : ffff8000080076d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 116.828689][ C0] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 116.830844][ C0] Call trace: [ 116.831715][ C0] invalidate_bh_lru+0x128/0x234 [ 116.832989][ C0] flush_smp_call_function_queue+0x38c/0x81c [ 116.834597][ C0] generic_smp_call_function_single_interrupt+0x18/0x24 [ 116.836469][ C0] ipi_handler+0x10c/0x710 [ 116.837677][ C0] handle_percpu_devid_irq+0x29c/0x76c [ 116.839162][ C0] handle_domain_irq+0x144/0x1fc [ 116.840501][ C0] gic_handle_irq+0x78/0x1c8 [ 116.841742][ C0] call_on_irq_stack+0x24/0x30 [ 116.843028][ C0] do_interrupt_handler+0x6c/0x88 [ 116.844526][ C0] el1_interrupt+0x30/0x58 [ 116.845729][ C0] el1h_64_irq_handler+0x18/0x24 [ 116.847082][ C0] el1h_64_irq+0x78/0x7c [ 116.848232][ C0] __task_pid_nr_ns+0x160/0x41c [ 116.849587][ C0] tomoyo_get_local_path+0x310/0x5fc [ 116.851132][ C0] tomoyo_realpath_from_path+0x25c/0x510 [ 116.852708][ C0] tomoyo_check_open_permission+0x168/0x2fc [ 116.854368][ C0] tomoyo_file_open+0x130/0x1b0 [ 116.855688][ C0] security_file_open+0x6c/0xac [ 116.857041][ C0] do_dentry_open+0x29c/0xebc [ 116.858298][ C0] vfs_open+0x7c/0x90 [ 116.859396][ C0] path_openat+0x1f80/0x26e4 [ 116.860635][ C0] do_filp_open+0x164/0x330 [ 116.861933][ C0] do_sys_openat2+0x128/0x3d8 [ 116.863245][ C0] __arm64_sys_openat+0x120/0x154 [ 116.864626][ C0] invoke_syscall+0x98/0x2b8 [ 116.865851][ C0] el0_svc_common+0x138/0x258 [ 116.867148][ C0] do_el0_svc+0x58/0x14c [ 116.868314][ C0] el0_svc+0x78/0x1e0 [ 116.869412][ C0] el0t_64_sync_handler+0xcc/0xe4 [ 116.870884][ C0] el0t_64_sync+0x1a0/0x1a4 [ 116.872130][ C0] irq event stamp: 750 [ 116.873264][ C0] hardirqs last enabled at (749): [] seqcount_lockdep_reader_access+0x1f4/0x2bc [ 116.876188][ C0] hardirqs last disabled at (750): [] enter_el1_irq_or_nmi+0x10/0x1c [ 116.878801][ C0] softirqs last enabled at (50): [] local_bh_enable+0x10/0x34 [ 116.881308][ C0] softirqs last disabled at (48): [] local_bh_disable+0x10/0x34 [ 116.883904][ C0] ---[ end trace da7f9e8b5c98ce88 ]--- [ 116.945444][ T5016] loop0: detected capacity change from 0 to 128 [ 116.949069][ T5016] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 116.953626][ T5016] Bad inode number on dev loop0: 2 is out of range [ 116.955928][ T5016] SysV FS: get root inode failed [ 116.957338][ T5016] oldfs: cannot read superblock [ 116.974337][ C1] ------------[ cut here ]------------ [ 116.976016][ C1] VFS: brelse: Trying to free free buffer [ 116.977796][ C1] WARNING: CPU: 1 PID: 5017 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 116.980288][ C1] Modules linked in: [ 116.981439][ C1] CPU: 1 PID: 5017 Comm: syz.0.78 Tainted: G W 5.15.187-syzkaller #0 [ 116.984068][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 116.986947][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 116.989202][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 116.990685][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 116.992198][ C1] sp : ffff800008017de0 [ 116.993399][ C1] x29: ffff800008017de0 x28: ffff0000e8160000 x27: 1fffe0003421c65c [ 116.995534][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 116.997793][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd769df8 [ 117.000065][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 117.002366][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 117.004628][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.006976][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : 7c1f4eef1ce26500 [ 117.009271][ C1] x8 : 7c1f4eef1ce26500 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.011561][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 117.013842][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 117.016181][ C1] Call trace: [ 117.016975][ C1] invalidate_bh_lru+0x128/0x234 [ 117.018444][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 117.020234][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 117.022243][ C1] ipi_handler+0x10c/0x710 [ 117.023535][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 117.025039][ C1] handle_domain_irq+0x144/0x1fc [ 117.026398][ C1] gic_handle_irq+0x78/0x1c8 [ 117.027811][ C1] call_on_irq_stack+0x24/0x30 [ 117.029176][ C1] do_interrupt_handler+0x6c/0x88 [ 117.031284][ C1] el0_interrupt+0x94/0x260 [ 117.032949][ C1] __el0_irq_handler_common+0x18/0x24 [ 117.034439][ C1] el0t_64_irq_handler+0x10/0x1c [ 117.035849][ C1] el0t_64_irq+0x1a0/0x1a4 [ 117.037169][ C1] irq event stamp: 1600 [ 117.038287][ C1] hardirqs last enabled at (1599): [] el0t_64_sync_handler+0xd8/0xe4 [ 117.041197][ C1] hardirqs last disabled at (1600): [] __el0_irq_handler_common+0x18/0x24 [ 117.044060][ C1] softirqs last enabled at (1428): [] handle_softirqs+0xa4c/0xbf0 [ 117.046693][ C1] softirqs last disabled at (1423): [] __irq_exit_rcu+0x240/0x440 [ 117.049307][ C1] ---[ end trace da7f9e8b5c98ce89 ]--- [ 117.079879][ T5018] loop0: detected capacity change from 0 to 128 [ 117.085308][ T5018] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.087367][ T5018] Bad inode number on dev loop0: 2 is out of range [ 117.089119][ T5018] SysV FS: get root inode failed [ 117.090471][ T5018] oldfs: cannot read superblock [ 117.098998][ C1] ------------[ cut here ]------------ [ 117.100592][ C1] VFS: brelse: Trying to free free buffer [ 117.102340][ C1] WARNING: CPU: 1 PID: 4616 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.104845][ C1] Modules linked in: [ 117.105933][ C1] CPU: 1 PID: 4616 Comm: syz-executor Tainted: G W 5.15.187-syzkaller #0 [ 117.108660][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 117.111494][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.113600][ C1] pc : invalidate_bh_lru+0x128/0x234 [ 117.115119][ C1] lr : invalidate_bh_lru+0x128/0x234 [ 117.116581][ C1] sp : ffff800008017de0 [ 117.117742][ C1] x29: ffff800008017de0 x28: ffff0000d9c93680 x27: 1fffe0003421c65c [ 117.119944][ C1] x26: 0000000000000001 x25: ffff0001a10e32d8 x24: 0000000000000001 [ 117.122187][ C1] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd7cb4e8 [ 117.124441][ C1] x20: ffff0001a10e32e0 x19: ffff8000113daee0 x18: 0000000000010002 [ 117.126734][ C1] x17: 0000000000010002 x16: ffff8000111d162c x15: 00000000ffffffff [ 117.128924][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.131133][ C1] x11: 0000000000010001 x10: 0000000000010001 x9 : e8800a58eeb82f00 [ 117.133355][ C1] x8 : e8800a58eeb82f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.135694][ C1] x5 : ffff8000080176d8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 117.137894][ C1] x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027 [ 117.140087][ C1] Call trace: [ 117.140975][ C1] invalidate_bh_lru+0x128/0x234 [ 117.142336][ C1] flush_smp_call_function_queue+0x38c/0x81c [ 117.144099][ C1] generic_smp_call_function_single_interrupt+0x18/0x24 [ 117.146019][ C1] ipi_handler+0x10c/0x710 [ 117.147245][ C1] handle_percpu_devid_irq+0x29c/0x76c [ 117.148793][ C1] handle_domain_irq+0x144/0x1fc [ 117.150137][ C1] gic_handle_irq+0x78/0x1c8 [ 117.151424][ C1] call_on_irq_stack+0x24/0x30 [ 117.152788][ C1] do_interrupt_handler+0x6c/0x88 [ 117.154124][ C1] el1_interrupt+0x30/0x58 [ 117.155346][ C1] el1h_64_irq_handler+0x18/0x24 [ 117.156788][ C1] el1h_64_irq+0x78/0x7c [ 117.157932][ C1] lock_release+0x4a0/0x8e8 [ 117.159197][ C1] __might_fault+0xf4/0x128 [ 117.160460][ C1] xt_obj_to_user+0x58/0x3c8 [ 117.161759][ C1] xt_target_to_user+0x88/0x1a8 [ 117.163122][ C1] do_ipt_get_ctl+0xfc0/0x13a8 [ 117.164496][ C1] nf_getsockopt+0x264/0x284 [ 117.165747][ C1] ip_getsockopt+0xffc/0x158c [ 117.166973][ C1] tcp_getsockopt+0x214/0x2e74 [ 117.168294][ C1] sock_common_getsockopt+0xa8/0xc4 [ 117.169748][ C1] __sys_getsockopt+0x1e0/0x45c [ 117.171049][ C1] __arm64_sys_getsockopt+0xb8/0xd4 [ 117.172464][ C1] invoke_syscall+0x98/0x2b8 [ 117.173750][ C1] el0_svc_common+0x138/0x258 [ 117.175056][ C1] do_el0_svc+0x58/0x14c [ 117.176271][ C1] el0_svc+0x78/0x1e0 [ 117.177368][ C1] el0t_64_sync_handler+0xcc/0xe4 [ 117.178765][ C1] el0t_64_sync+0x1a0/0x1a4 [ 117.180043][ C1] irq event stamp: 269142 [ 117.181224][ C1] hardirqs last enabled at (269141): [] alloc_counters+0x3d4/0x7a4 [ 117.183946][ C1] hardirqs last disabled at (269142): [] enter_el1_irq_or_nmi+0x10/0x1c [ 117.186611][ C1] softirqs last enabled at (269124): [] release_sock+0x1d0/0x258 [ 117.189196][ C1] softirqs last disabled at (269122): [] release_sock+0x34/0x258 [ 117.191829][ C1] ---[ end trace da7f9e8b5c98ce8a ]--- [ 117.237432][ T5020] loop0: detected capacity change from 0 to 128 [ 117.241323][ T5020] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 117.243286][ T5020] Bad inode number on dev loop0: 2 is out of range [ 117.245585][ T5020] SysV FS: get root inode failed [ 117.246942][ T5020] oldfs: cannot read superblock [ 117.257693][ T4487] ------------[ cut here ]------------ [ 117.259325][ T4487] VFS: brelse: Trying to free free buffer [ 117.260972][ T4487] WARNING: CPU: 0 PID: 4487 at fs/buffer.c:1148 invalidate_bh_lru+0x128/0x234 [ 117.263337][ T4487] Modules linked in: [ 117.264381][ T4487] CPU: 0 PID: 4487 Comm: udevd Tainted: G W 5.15.187-syzkaller #0 [ 117.266919][ T4487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 117.269819][ T4487] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.271952][ T4487] pc : invalidate_bh_lru+0x128/0x234 [ 117.273400][ T4487] lr : invalidate_bh_lru+0x128/0x234 [ 117.274937][ T4487] sp : ffff80001f2277c0 [ 117.276032][ T4487] x29: ffff80001f2277c0 x28: ffff80001417d000 x27: 1fffe0003421845b [ 117.278149][ T4487] x26: 0000000000000001 x25: ffff0001a10c22d8 x24: 0000000000000000 [ 117.280336][ T4487] x23: dfff800000000000 x22: 0000000000000000 x21: ffff0000dd7c0df8 [ 117.282467][ T4487] x20: ffff0001a10c22d8 x19: ffff8000113daee0 x18: 0000000000000003 [ 117.284668][ T4487] x17: 0000000000000000 x16: ffff8000111d162c x15: 00000000ffffffff [ 117.286771][ T4487] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 117.289042][ T4487] x11: 0000000000000002 x10: 0000000000000000 x9 : a999e5a58043a100 [ 117.291287][ T4487] x8 : a999e5a58043a100 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.293541][ T4487] x5 : ffff80001f2270b8 x4 : ffff80001425f400 x3 : ffff8000085051a4 [ 117.295734][ T4487] x2 : 0000000000000001 x1 : 0000000100000002 x0 : 0000000000000027 [ 117.297989][ T4487] Call trace: [ 117.298917][ T4487] invalidate_bh_lru+0x128/0x234 [ 117.300234][ T4487] smp_call_function_many_cond+0xa50/0xeb0 [ 117.301949][ T4487] on_each_cpu_cond_mask+0x5c/0xc4 [ 117.303397][ T4487] invalidate_bh_lrus+0x34/0x40 [ 117.304755][ T4487] blkdev_flush_mapping+0x168/0x31c [ 117.306187][ T4487] blkdev_put+0x490/0x6ac [ 117.307348][ T4487] blkdev_close+0x74/0xb0 [ 117.308516][ T4487] __fput+0x1c0/0x7f8 [ 117.309574][ T4487] ____fput+0x20/0x30 [ 117.310651][ T4487] task_work_run+0x12c/0x1e0 [ 117.311969][ T4487] do_notify_resume+0x24b4/0x3128 [ 117.313345][ T4487] el0_svc+0xf0/0x1e0 1970/01/01 00:01:57 executed programs: 67 [ 117.314457][ T4487] el0t_64_sync_handler+0xcc/0xe4 [ 117.315869][ T4487] el0t_64_sync+0x1a0/0x1a4 [ 117.317125][ T4487] irq event stamp: 260364 [ 117.318368][ T4487] hardirqs last enabled at (260363): [] kasan_quarantine_put+0xc4/0x204 [ 117.321179][ T4487] hardirqs last disabled at (260364): [] smp_call_function_many_cond+0xa44/0xeb0 [ 117.324299][ T4487] softirqs last enabled at (259640): [] local_bh_enable+0x10/0x34 [ 117.327030][ T4487] softirqs last disabled at (259638): [] local_bh_disable+0x10/0x34 [ 117.329666][ T4487] ---[ end trace da7f9e8b5c98ce8b ]---