[ 91.963270][ T42] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.219' (ED25519) to the list of known hosts.
2025/12/09 07:34:23 parsed 1 programs
[ 101.160041][ T5784] cgroup: Unknown subsys name 'net'
[ 101.300020][ T5784] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 103.038663][ T5784] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 105.104146][ T5798] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 105.113271][ T5798] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 105.120828][ T5798] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 105.129669][ T5798] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 105.138737][ T5798] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 105.146486][ T5798] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 105.920955][ T2997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.929263][ T2997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.957053][ T2926] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.965504][ T2926] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.341106][ T5856] chnl_net:caif_netlink_parms(): no params data found
[ 108.437784][ T5856] bridge0: port 1(bridge_slave_0) entered blocking state
[ 108.445754][ T5856] bridge0: port 1(bridge_slave_0) entered disabled state
[ 108.453029][ T5856] bridge_slave_0: entered allmulticast mode
[ 108.460457][ T5856] bridge_slave_0: entered promiscuous mode
[ 108.478442][ T5856] bridge0: port 2(bridge_slave_1) entered blocking state
[ 108.485735][ T5856] bridge0: port 2(bridge_slave_1) entered disabled state
[ 108.493095][ T5856] bridge_slave_1: entered allmulticast mode
[ 108.500185][ T5856] bridge_slave_1: entered promiscuous mode
[ 108.548715][ T5856] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 108.560662][ T5856] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 108.607516][ T5856] team0: Port device team_slave_0 added
[ 108.618173][ T5856] team0: Port device team_slave_1 added
[ 108.647113][ T5856] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 108.654134][ T5856] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 108.680221][ T5856] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 108.703393][ T5856] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 108.710381][ T5856] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 108.736430][ T5856] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 108.792810][ T5856] hsr_slave_0: entered promiscuous mode
[ 108.799294][ T5856] hsr_slave_1: entered promiscuous mode
[ 108.982921][ T5856] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 108.995783][ T5856] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 109.014947][ T5856] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 109.025743][ T5856] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 109.118525][ T5856] 8021q: adding VLAN 0 to HW filter on device bond0
[ 109.142858][ T5856] 8021q: adding VLAN 0 to HW filter on device team0
[ 109.156422][ T2926] bridge0: port 1(bridge_slave_0) entered blocking state
[ 109.163785][ T2926] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 109.187483][ T2926] bridge0: port 2(bridge_slave_1) entered blocking state
[ 109.194743][ T2926] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 109.400213][ T5856] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 109.449188][ T5856] veth0_vlan: entered promiscuous mode
[ 109.460789][ T5856] veth1_vlan: entered promiscuous mode
[ 109.495108][ T5856] veth0_macvtap: entered promiscuous mode
[ 109.505547][ T5856] veth1_macvtap: entered promiscuous mode
[ 109.525119][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 109.545087][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 109.557715][ T5856] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 109.567204][ T5856] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 109.577433][ T5856] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 109.588126][ T5856] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 109.726117][ T5856] syz-executor (5856) used greatest stack depth: 20616 bytes left
[ 109.909314][ T1313] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/09 07:34:35 executed programs: 0
[ 110.481314][ T5086] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 110.490031][ T5086] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 110.498510][ T5086] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 110.507384][ T5086] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 110.515632][ T5086] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 110.523713][ T5086] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 110.704020][ T5886] chnl_net:caif_netlink_parms(): no params data found
[ 110.782990][ T5886] bridge0: port 1(bridge_slave_0) entered blocking state
[ 110.790213][ T5886] bridge0: port 1(bridge_slave_0) entered disabled state
[ 110.798342][ T5886] bridge_slave_0: entered allmulticast mode
[ 110.805510][ T5886] bridge_slave_0: entered promiscuous mode
[ 110.814325][ T5886] bridge0: port 2(bridge_slave_1) entered blocking state
[ 110.821697][ T5886] bridge0: port 2(bridge_slave_1) entered disabled state
[ 110.828863][ T5886] bridge_slave_1: entered allmulticast mode
[ 110.835958][ T5886] bridge_slave_1: entered promiscuous mode
[ 110.871907][ T5886] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 110.883792][ T5886] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 110.918508][ T5886] team0: Port device team_slave_0 added
[ 110.928370][ T5886] team0: Port device team_slave_1 added
[ 110.960654][ T5886] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 110.967851][ T5886] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 110.993955][ T5886] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 111.007750][ T5886] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 111.014790][ T5886] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 111.040866][ T5886] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 111.094939][ T5886] hsr_slave_0: entered promiscuous mode
[ 111.101586][ T5886] hsr_slave_1: entered promiscuous mode
[ 111.107800][ T5886] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 111.116575][ T5886] Cannot create hsr debugfs directory
[ 112.394361][ T1313] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 112.602139][ T5798] Bluetooth: hci0: command tx timeout
[ 114.692268][ T5798] Bluetooth: hci0: command tx timeout
[ 114.862678][ T1313] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 114.918673][ T1313] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.838556][ T5886] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 115.866614][ T5886] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 115.888666][ T1313] hsr_slave_0: left promiscuous mode
[ 115.897849][ T1313] hsr_slave_1: left promiscuous mode
[ 115.906228][ T1313] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 115.916327][ T1313] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 115.926438][ T1313] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 115.938004][ T1313] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 115.949513][ T1313] bridge_slave_1: left allmulticast mode
[ 115.958981][ T1313] bridge_slave_1: left promiscuous mode
[ 115.981958][ T1313] bridge0: port 2(bridge_slave_1) entered disabled state
[ 116.005585][ T1313] bridge_slave_0: left allmulticast mode
[ 116.011282][ T1313] bridge_slave_0: left promiscuous mode
[ 116.034174][ T1313] bridge0: port 1(bridge_slave_0) entered disabled state
[ 116.099623][ T1313] veth1_macvtap: left promiscuous mode
[ 116.107005][ T1313] veth0_macvtap: left promiscuous mode
[ 116.113185][ T1313] veth1_vlan: left promiscuous mode
[ 116.118735][ T1313] veth0_vlan: left promiscuous mode
[ 116.595475][ T1313] team0 (unregistering): Port device team_slave_1 removed
[ 116.630745][ T1313] team0 (unregistering): Port device team_slave_0 removed
[ 116.663875][ T1313] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 116.706280][ T1313] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 116.761535][ T5798] Bluetooth: hci0: command tx timeout
[ 117.035957][ T1313] bond0 (unregistering): Released all slaves
[ 117.123553][ T5886] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 117.134530][ T5886] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 117.229774][ T5886] 8021q: adding VLAN 0 to HW filter on device bond0
[ 117.251197][ T5886] 8021q: adding VLAN 0 to HW filter on device team0
[ 117.265863][ T1142] bridge0: port 1(bridge_slave_0) entered blocking state
[ 117.273046][ T1142] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 117.300998][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state
[ 117.308185][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 117.574413][ T5886] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 117.639386][ T5886] veth0_vlan: entered promiscuous mode
[ 117.661050][ T5886] veth1_vlan: entered promiscuous mode
[ 117.692139][ T5886] veth0_macvtap: entered promiscuous mode
[ 117.703132][ T5886] veth1_macvtap: entered promiscuous mode
[ 117.728374][ T5886] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 117.740455][ T5886] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 117.757317][ T5886] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.768898][ T5886] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.780275][ T5886] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.789424][ T5886] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.869617][ T2926] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.878373][ T2926] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.905509][ T2997] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.913468][ T2997] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.972977][ T5943] syz.0.17[5943]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 117.997521][ T5943] loop0: detected capacity change from 0 to 512
[ 118.026942][ T5943]
[ 118.029329][ T5943] ======================================================
[ 118.036377][ T5943] WARNING: possible circular locking dependency detected
[ 118.043415][ T5943] syzkaller #0 Not tainted
[ 118.047930][ T5943] ------------------------------------------------------
[ 118.054948][ T5943] syz.0.17/5943 is trying to acquire lock:
[ 118.060746][ T5943] ffff88807db0ebd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0
[ 118.070771][ T5943]
[ 118.070771][ T5943] but task is already holding lock:
[ 118.078133][ T5943] ffff888076b9bcc8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 118.087974][ T5943]
[ 118.087974][ T5943] which lock already depends on the new lock.
[ 118.087974][ T5943]
[ 118.098380][ T5943]
[ 118.098380][ T5943] the existing dependency chain (in reverse order) is:
[ 118.107392][ T5943]
[ 118.107392][ T5943] -> #2 (&ei->xattr_sem){++++}-{3:3}:
[ 118.114951][ T5943] down_read+0x46/0x2e0
[ 118.119626][ T5943] ext4_setattr+0x86b/0x1c90
[ 118.124750][ T5943] notify_change+0xb0d/0xe10
[ 118.129875][ T5943] chown_common+0x3f9/0x5a0
[ 118.134912][ T5943] do_fchownat+0x168/0x270
[ 118.139856][ T5943] __x64_sys_chown+0x82/0x90
[ 118.144973][ T5943] do_syscall_64+0x55/0xb0
[ 118.149926][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 118.156370][ T5943]
[ 118.156370][ T5943] -> #1 (jbd2_handle){++++}-{0:0}:
[ 118.163682][ T5943] start_this_handle+0x1e9d/0x20c0
[ 118.169340][ T5943] jbd2__journal_start+0x2bb/0x5b0
[ 118.174985][ T5943] __ext4_journal_start_sb+0x203/0x570
[ 118.180992][ T5943] ext4_do_writepages+0xf92/0x38d0
[ 118.186733][ T5943] ext4_writepages+0x1a8/0x2f0
[ 118.192030][ T5943] do_writepages+0x3a2/0x600
[ 118.197152][ T5943] __writeback_single_inode+0x153/0xee0
[ 118.203226][ T5943] writeback_sb_inodes+0x77c/0xef0
[ 118.208866][ T5943] __writeback_inodes_wb+0x111/0x240
[ 118.214681][ T5943] wb_writeback+0x464/0xba0
[ 118.219712][ T5943] wb_workfn+0xabc/0xe20
[ 118.224484][ T5943] process_scheduled_works+0xa45/0x15b0
[ 118.230562][ T5943] worker_thread+0xa55/0xfc0
[ 118.235682][ T5943] kthread+0x2fa/0x390
[ 118.240274][ T5943] ret_from_fork+0x48/0x80
[ 118.245214][ T5943] ret_from_fork_asm+0x11/0x20
[ 118.250509][ T5943]
[ 118.250509][ T5943] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 118.258997][ T5943] __lock_acquire+0x2ddb/0x7c80
[ 118.264383][ T5943] lock_acquire+0x197/0x410
[ 118.269433][ T5943] percpu_down_read+0x44/0x1a0
[ 118.274727][ T5943] ext4_writepages+0x170/0x2f0
[ 118.280025][ T5943] do_writepages+0x3a2/0x600
[ 118.285150][ T5943] __writeback_single_inode+0x153/0xee0
[ 118.291258][ T5943] writeback_single_inode+0x211/0x720
[ 118.297162][ T5943] write_inode_now+0x161/0x1e0
[ 118.302451][ T5943] iput+0x5b2/0x920
[ 118.306780][ T5943] ext4_xattr_block_set+0x273a/0x32a0
[ 118.312678][ T5943] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 118.319097][ T5943] __ext4_expand_extra_isize+0x306/0x400
[ 118.325260][ T5943] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 118.331249][ T5943] ext4_evict_inode+0x7ed/0xea0
[ 118.336630][ T5943] evict+0x486/0x870
[ 118.341140][ T5943] ext4_orphan_cleanup+0xbd4/0x1400
[ 118.346963][ T5943] ext4_fill_super+0x5de4/0x66c0
[ 118.352449][ T5943] get_tree_bdev+0x3e4/0x510
[ 118.357564][ T5943] vfs_get_tree+0x8c/0x280
[ 118.362502][ T5943] do_new_mount+0x24b/0xa40
[ 118.367526][ T5943] __se_sys_mount+0x2da/0x3c0
[ 118.372722][ T5943] do_syscall_64+0x55/0xb0
[ 118.377666][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 118.384086][ T5943]
[ 118.384086][ T5943] other info that might help us debug this:
[ 118.384086][ T5943]
[ 118.394314][ T5943] Chain exists of:
[ 118.394314][ T5943] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 118.394314][ T5943]
[ 118.407721][ T5943] Possible unsafe locking scenario:
[ 118.407721][ T5943]
[ 118.415168][ T5943] CPU0 CPU1
[ 118.420534][ T5943] ---- ----
[ 118.425902][ T5943] lock(&ei->xattr_sem);
[ 118.430260][ T5943] lock(jbd2_handle);
[ 118.436859][ T5943] lock(&ei->xattr_sem);
[ 118.443715][ T5943] rlock(&sbi->s_writepages_rwsem);
[ 118.449009][ T5943]
[ 118.449009][ T5943] *** DEADLOCK ***
[ 118.449009][ T5943]
[ 118.457151][ T5943] 3 locks held by syz.0.17/5943:
[ 118.462091][ T5943] #0: ffff88807de980e0 (&type->s_umount_key#31){++++}-{3:3}, at: get_tree_bdev+0x344/0x510
[ 118.472202][ T5943] #1: ffff88807de98608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0
[ 118.481616][ T5943] #2: ffff888076b9bcc8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 118.491896][ T5943]
[ 118.491896][ T5943] stack backtrace:
[ 118.497801][ T5943] CPU: 1 PID: 5943 Comm: syz.0.17 Not tainted syzkaller #0
[ 118.505002][ T5943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 118.515071][ T5943] Call Trace:
[ 118.518354][ T5943]
[ 118.521301][ T5943] dump_stack_lvl+0x16c/0x230
[ 118.526000][ T5943] ? load_image+0x3b0/0x3b0
[ 118.530525][ T5943] ? show_regs_print_info+0x20/0x20
[ 118.535748][ T5943] ? print_circular_bug+0x12b/0x1a0
[ 118.540983][ T5943] check_noncircular+0x2bd/0x3c0
[ 118.545929][ T5943] ? look_up_lock_class+0x75/0x140
[ 118.551057][ T5943] ? print_deadlock_bug+0x5d0/0x5d0
[ 118.556267][ T5943] ? lockdep_lock+0xe0/0x220
[ 118.560884][ T5943] ? _find_first_zero_bit+0xd3/0x100
[ 118.566190][ T5943] __lock_acquire+0x2ddb/0x7c80
[ 118.571062][ T5943] ? mark_lock+0x94/0x320
[ 118.575399][ T5943] ? verify_lock_unused+0x140/0x140
[ 118.580601][ T5943] ? __lock_acquire+0x1334/0x7c80
[ 118.585632][ T5943] ? verify_lock_unused+0x140/0x140
[ 118.590849][ T5943] lock_acquire+0x197/0x410
[ 118.595357][ T5943] ? ext4_writepages+0x170/0x2f0
[ 118.600308][ T5943] ? __might_sleep+0xe0/0xe0
[ 118.604904][ T5943] ? mark_lock+0x94/0x320
[ 118.609238][ T5943] ? read_lock_is_recursive+0x20/0x20
[ 118.614613][ T5943] ? __lock_acquire+0x1334/0x7c80
[ 118.619646][ T5943] percpu_down_read+0x44/0x1a0
[ 118.624423][ T5943] ? ext4_writepages+0x170/0x2f0
[ 118.629378][ T5943] ext4_writepages+0x170/0x2f0
[ 118.634162][ T5943] ? ext4_read_folio+0x2f0/0x2f0
[ 118.639117][ T5943] ? __rwlock_init+0x150/0x150
[ 118.643906][ T5943] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 118.649827][ T5943] ? do_raw_spin_unlock+0x121/0x230
[ 118.655034][ T5943] ? ext4_read_folio+0x2f0/0x2f0
[ 118.660004][ T5943] do_writepages+0x3a2/0x600
[ 118.664615][ T5943] ? folio_clear_dirty_for_io+0xc30/0xc30
[ 118.670348][ T5943] ? writeback_single_inode+0x206/0x720
[ 118.675906][ T5943] ? __lock_acquire+0x7c80/0x7c80
[ 118.680944][ T5943] ? do_raw_spin_lock+0x121/0x2c0
[ 118.685981][ T5943] ? get_tree_bdev+0x3e4/0x510
[ 118.690757][ T5943] __writeback_single_inode+0x153/0xee0
[ 118.696318][ T5943] writeback_single_inode+0x211/0x720
[ 118.701703][ T5943] ? write_inode_now+0x1e0/0x1e0
[ 118.706679][ T5943] write_inode_now+0x161/0x1e0
[ 118.711454][ T5943] ? bdi_split_work_to_wbs+0x890/0x890
[ 118.716928][ T5943] ? do_raw_spin_unlock+0x121/0x230
[ 118.722144][ T5943] iput+0x5b2/0x920
[ 118.725969][ T5943] ext4_xattr_block_set+0x273a/0x32a0
[ 118.731353][ T5943] ? __might_sleep+0xe0/0xe0
[ 118.735967][ T5943] ? xattr_find_entry+0x12b/0x2f0
[ 118.741005][ T5943] ? ext4_xattr_block_find+0x350/0x350
[ 118.746473][ T5943] ? ext4_xattr_block_find+0x2d4/0x350
[ 118.752030][ T5943] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 118.758034][ T5943] __ext4_expand_extra_isize+0x306/0x400
[ 118.763696][ T5943] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 118.769172][ T5943] ext4_evict_inode+0x7ed/0xea0
[ 118.774033][ T5943] ? _raw_spin_unlock+0x28/0x40
[ 118.778987][ T5943] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 118.784891][ T5943] ? do_raw_spin_unlock+0x121/0x230
[ 118.790109][ T5943] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 118.796096][ T5943] evict+0x486/0x870
[ 118.799996][ T5943] ? __lock_acquire+0x7c80/0x7c80
[ 118.805030][ T5943] ? proc_nr_inodes+0x230/0x230
[ 118.809885][ T5943] ? do_raw_spin_unlock+0x121/0x230
[ 118.815096][ T5943] ? _raw_spin_unlock+0x28/0x40
[ 118.819958][ T5943] ? iput+0x70a/0x920
[ 118.823953][ T5943] ext4_orphan_cleanup+0xbd4/0x1400
[ 118.829167][ T5943] ? ext4_orphan_del+0xba0/0xba0
[ 118.834118][ T5943] ? ext4_register_li_request+0x183/0x940
[ 118.839850][ T5943] ? errseq_check_and_advance+0x66/0x120
[ 118.845490][ T5943] ext4_fill_super+0x5de4/0x66c0
[ 118.850447][ T5943] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 118.856693][ T5943] ? __might_sleep+0xe0/0xe0
[ 118.861290][ T5943] ? read_lock_is_recursive+0x20/0x20
[ 118.866668][ T5943] ? snprintf+0xdb/0x120
[ 118.870937][ T5943] ? vscnprintf+0x80/0x80
[ 118.875276][ T5943] ? down_write+0x162/0x1f0
[ 118.879782][ T5943] ? down_read_killable+0x340/0x340
[ 118.885426][ T5943] ? setup_bdev_super+0x56b/0x660
[ 118.890457][ T5943] get_tree_bdev+0x3e4/0x510
[ 118.895055][ T5943] ? vfs_parse_fs_string+0x160/0x160
[ 118.900349][ T5943] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 118.906596][ T5943] ? setup_bdev_super+0x660/0x660
[ 118.911625][ T5943] ? apparmor_capable+0x137/0x1a0
[ 118.916689][ T5943] ? bpf_lsm_capable+0x9/0x10
[ 118.921391][ T5943] ? security_capable+0x89/0xb0
[ 118.926258][ T5943] vfs_get_tree+0x8c/0x280
[ 118.930680][ T5943] do_new_mount+0x24b/0xa40
[ 118.935195][ T5943] __se_sys_mount+0x2da/0x3c0
[ 118.939879][ T5943] ? __x64_sys_mount+0xc0/0xc0
[ 118.944649][ T5943] ? lockdep_hardirqs_on+0x98/0x150
[ 118.949855][ T5943] ? __x64_sys_mount+0x20/0xc0
[ 118.954619][ T5943] do_syscall_64+0x55/0xb0
[ 118.959035][ T5943] ? clear_bhb_loop+0x40/0x90
[ 118.963737][ T5943] ? clear_bhb_loop+0x40/0x90
[ 118.968450][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 118.974351][ T5943] RIP: 0033:0x7f47f8190eea
[ 118.978788][ T5943] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 118.998744][ T5943] RSP: 002b:00007ffe49c8ce68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 119.007160][ T5943] RAX: ffffffffffffffda RBX: 00007ffe49c8cef0 RCX: 00007f47f8190eea
[ 119.015136][ T5943] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffe49c8ceb0
[ 119.023112][ T5943] RBP: 0000200000000180 R08: 00007ffe49c8cef0 R09: 0000000000800718
[ 119.031089][ T5943] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 119.039071][ T5943] R13: 00007ffe49c8ceb0 R14: 000000000000046f R15: 0000200000000200
[ 119.047057][ T5943]
[ 119.059970][ T5798] Bluetooth: hci0: command tx timeout
[ 119.077481][ T5943] ------------[ cut here ]------------
[ 119.084120][ T5943] EA inode 11 i_nlink=2
[ 119.088010][ T5943] WARNING: CPU: 1 PID: 5943 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550
[ 119.102397][ T5943] Modules linked in:
[ 119.106327][ T5943] CPU: 1 PID: 5943 Comm: syz.0.17 Not tainted syzkaller #0
[ 119.113582][ T5943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 119.123686][ T5943] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[ 119.130288][ T5943] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08
[ 119.149960][ T5943] RSP: 0018:ffffc9000470f1c0 EFLAGS: 00010246
[ 119.156071][ T5943] RAX: 29bc4d37953b1500 RBX: 0000000000000002 RCX: ffff88802700bc00
[ 119.164185][ T5943] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 119.172211][ T5943] RBP: ffffc9000470f2b8 R08: ffffc9000470edc7 R09: 1ffff920008e1db8
[ 119.180202][ T5943] R10: dffffc0000000000 R11: fffff520008e1db9 R12: dffffc0000000000
[ 119.188663][ T5943] R13: ffff888071caf2a8 R14: ffff888071caf0b0 R15: ffff888071caf100
[ 119.196720][ T5943] FS: 000055557aa24500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 119.205722][ T5943] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 119.212365][ T5943] CR2: 00007f9599f71000 CR3: 000000007aaf0000 CR4: 00000000003506e0
[ 119.220376][ T5943] Call Trace:
[ 119.223723][ T5943]
[ 119.226669][ T5943] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 119.232365][ T5943] ? ext4_xattr_inode_iget+0x3df/0x600
[ 119.237886][ T5943] ext4_xattr_set_entry+0xcda/0x1e90
[ 119.243246][ T5943] ext4_xattr_ibody_set+0x254/0x6a0
[ 119.248496][ T5943] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 119.254468][ T5943] __ext4_expand_extra_isize+0x306/0x400
[ 119.260150][ T5943] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 119.265674][ T5943] ext4_evict_inode+0x7ed/0xea0
[ 119.270557][ T5943] ? _raw_spin_unlock+0x28/0x40
[ 119.275468][ T5943] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 119.281429][ T5943] ? do_raw_spin_unlock+0x121/0x230
[ 119.286964][ T5943] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 119.292978][ T5943] evict+0x486/0x870
[ 119.296905][ T5943] ? __lock_acquire+0x7c80/0x7c80
[ 119.301982][ T5943] ? proc_nr_inodes+0x230/0x230
[ 119.306859][ T5943] ? do_raw_spin_unlock+0x121/0x230
[ 119.312106][ T5943] ? _raw_spin_unlock+0x28/0x40
[ 119.316976][ T5943] ? iput+0x70a/0x920
[ 119.320957][ T5943] ext4_orphan_cleanup+0xbd4/0x1400
[ 119.326233][ T5943] ? ext4_orphan_del+0xba0/0xba0
[ 119.331202][ T5943] ? ext4_register_li_request+0x183/0x940
[ 119.336973][ T5943] ? errseq_check_and_advance+0x66/0x120
[ 119.342685][ T5943] ext4_fill_super+0x5de4/0x66c0
[ 119.347655][ T5943] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 119.353954][ T5943] ? __might_sleep+0xe0/0xe0
[ 119.358572][ T5943] ? read_lock_is_recursive+0x20/0x20
[ 119.363995][ T5943] ? snprintf+0xdb/0x120
[ 119.368262][ T5943] ? vscnprintf+0x80/0x80
[ 119.372628][ T5943] ? down_write+0x162/0x1f0
[ 119.377144][ T5943] ? down_read_killable+0x340/0x340
[ 119.382421][ T5943] ? setup_bdev_super+0x56b/0x660
[ 119.387785][ T5943] get_tree_bdev+0x3e4/0x510
[ 119.392477][ T5943] ? vfs_parse_fs_string+0x160/0x160
[ 119.397794][ T5943] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 119.404146][ T5943] ? setup_bdev_super+0x660/0x660
[ 119.409195][ T5943] ? apparmor_capable+0x137/0x1a0
[ 119.414258][ T5943] ? bpf_lsm_capable+0x9/0x10
[ 119.418960][ T5943] ? security_capable+0x89/0xb0
[ 119.423871][ T5943] vfs_get_tree+0x8c/0x280
[ 119.428329][ T5943] do_new_mount+0x24b/0xa40
[ 119.432874][ T5943] __se_sys_mount+0x2da/0x3c0
[ 119.437578][ T5943] ? __x64_sys_mount+0xc0/0xc0
[ 119.442423][ T5943] ? lockdep_hardirqs_on+0x98/0x150
[ 119.447646][ T5943] ? __x64_sys_mount+0x20/0xc0
[ 119.452451][ T5943] do_syscall_64+0x55/0xb0
[ 119.456971][ T5943] ? clear_bhb_loop+0x40/0x90
[ 119.461794][ T5943] ? clear_bhb_loop+0x40/0x90
[ 119.466498][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 119.472453][ T5943] RIP: 0033:0x7f47f8190eea
[ 119.476897][ T5943] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 119.497101][ T5943] RSP: 002b:00007ffe49c8ce68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 119.505648][ T5943] RAX: ffffffffffffffda RBX: 00007ffe49c8cef0 RCX: 00007f47f8190eea
[ 119.513680][ T5943] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffe49c8ceb0
[ 119.521692][ T5943] RBP: 0000200000000180 R08: 00007ffe49c8cef0 R09: 0000000000800718
[ 119.529682][ T5943] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 119.537701][ T5943] R13: 00007ffe49c8ceb0 R14: 000000000000046f R15: 0000200000000200
[ 119.545721][ T5943]
[ 119.548745][ T5943] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 119.556019][ T5943] CPU: 1 PID: 5943 Comm: syz.0.17 Not tainted syzkaller #0
[ 119.563221][ T5943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 119.573398][ T5943] Call Trace:
[ 119.576681][ T5943]
[ 119.579613][ T5943] dump_stack_lvl+0x16c/0x230
[ 119.584306][ T5943] ? show_regs_print_info+0x20/0x20
[ 119.589515][ T5943] ? load_image+0x3b0/0x3b0
[ 119.594035][ T5943] panic+0x2c0/0x710
[ 119.597933][ T5943] ? bpf_jit_dump+0xd0/0xd0
[ 119.602451][ T5943] __warn+0x2e0/0x470
[ 119.606446][ T5943] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 119.612441][ T5943] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 119.618436][ T5943] report_bug+0x2be/0x4f0
[ 119.622767][ T5943] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 119.628761][ T5943] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 119.634764][ T5943] ? ext4_xattr_inode_update_ref+0x4fd/0x550
[ 119.640760][ T5943] handle_bug+0xcf/0x120
[ 119.645017][ T5943] exc_invalid_op+0x1a/0x50
[ 119.649527][ T5943] asm_exc_invalid_op+0x1a/0x20
[ 119.654385][ T5943] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[ 119.660989][ T5943] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08
[ 119.680686][ T5943] RSP: 0018:ffffc9000470f1c0 EFLAGS: 00010246
[ 119.686766][ T5943] RAX: 29bc4d37953b1500 RBX: 0000000000000002 RCX: ffff88802700bc00
[ 119.694748][ T5943] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 119.702723][ T5943] RBP: ffffc9000470f2b8 R08: ffffc9000470edc7 R09: 1ffff920008e1db8
[ 119.710697][ T5943] R10: dffffc0000000000 R11: fffff520008e1db9 R12: dffffc0000000000
[ 119.718674][ T5943] R13: ffff888071caf2a8 R14: ffff888071caf0b0 R15: ffff888071caf100
[ 119.726669][ T5943] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 119.732326][ T5943] ? ext4_xattr_inode_iget+0x3df/0x600
[ 119.737823][ T5943] ext4_xattr_set_entry+0xcda/0x1e90
[ 119.743132][ T5943] ext4_xattr_ibody_set+0x254/0x6a0
[ 119.748364][ T5943] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 119.754404][ T5943] __ext4_expand_extra_isize+0x306/0x400
[ 119.760057][ T5943] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 119.765534][ T5943] ext4_evict_inode+0x7ed/0xea0
[ 119.770398][ T5943] ? _raw_spin_unlock+0x28/0x40
[ 119.775266][ T5943] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 119.781180][ T5943] ? do_raw_spin_unlock+0x121/0x230
[ 119.786397][ T5943] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 119.792301][ T5943] evict+0x486/0x870
[ 119.796204][ T5943] ? __lock_acquire+0x7c80/0x7c80
[ 119.801243][ T5943] ? proc_nr_inodes+0x230/0x230
[ 119.806103][ T5943] ? do_raw_spin_unlock+0x121/0x230
[ 119.811315][ T5943] ? _raw_spin_unlock+0x28/0x40
[ 119.816173][ T5943] ? iput+0x70a/0x920
[ 119.820167][ T5943] ext4_orphan_cleanup+0xbd4/0x1400
[ 119.825381][ T5943] ? ext4_orphan_del+0xba0/0xba0
[ 119.830333][ T5943] ? ext4_register_li_request+0x183/0x940
[ 119.836062][ T5943] ? errseq_check_and_advance+0x66/0x120
[ 119.841704][ T5943] ext4_fill_super+0x5de4/0x66c0
[ 119.846656][ T5943] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 119.852920][ T5943] ? __might_sleep+0xe0/0xe0
[ 119.857518][ T5943] ? read_lock_is_recursive+0x20/0x20
[ 119.862895][ T5943] ? snprintf+0xdb/0x120
[ 119.867144][ T5943] ? vscnprintf+0x80/0x80
[ 119.871480][ T5943] ? down_write+0x162/0x1f0
[ 119.875989][ T5943] ? down_read_killable+0x340/0x340
[ 119.881195][ T5943] ? setup_bdev_super+0x56b/0x660
[ 119.886222][ T5943] get_tree_bdev+0x3e4/0x510
[ 119.890813][ T5943] ? vfs_parse_fs_string+0x160/0x160
[ 119.896110][ T5943] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 119.902356][ T5943] ? setup_bdev_super+0x660/0x660
[ 119.907398][ T5943] ? apparmor_capable+0x137/0x1a0
[ 119.912424][ T5943] ? bpf_lsm_capable+0x9/0x10
[ 119.917112][ T5943] ? security_capable+0x89/0xb0
[ 119.922405][ T5943] vfs_get_tree+0x8c/0x280
[ 119.926833][ T5943] do_new_mount+0x24b/0xa40
[ 119.931346][ T5943] __se_sys_mount+0x2da/0x3c0
[ 119.936034][ T5943] ? __x64_sys_mount+0xc0/0xc0
[ 119.940807][ T5943] ? lockdep_hardirqs_on+0x98/0x150
[ 119.946015][ T5943] ? __x64_sys_mount+0x20/0xc0
[ 119.950784][ T5943] do_syscall_64+0x55/0xb0
[ 119.955212][ T5943] ? clear_bhb_loop+0x40/0x90
[ 119.959897][ T5943] ? clear_bhb_loop+0x40/0x90
[ 119.964579][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 119.970475][ T5943] RIP: 0033:0x7f47f8190eea
[ 119.974892][ T5943] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 119.994504][ T5943] RSP: 002b:00007ffe49c8ce68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 120.002926][ T5943] RAX: ffffffffffffffda RBX: 00007ffe49c8cef0 RCX: 00007f47f8190eea
[ 120.010908][ T5943] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffe49c8ceb0
[ 120.018886][ T5943] RBP: 0000200000000180 R08: 00007ffe49c8cef0 R09: 0000000000800718
[ 120.026861][ T5943] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 120.034839][ T5943] R13: 00007ffe49c8ceb0 R14: 000000000000046f R15: 0000200000000200
[ 120.042826][ T5943]
[ 120.046133][ T5943] Kernel Offset: disabled
[ 120.050720][ T5943] Rebooting in 86400 seconds..