Warning: Permanently added '10.128.1.216' (ED25519) to the list of known hosts.
2025/12/10 23:26:42 parsed 1 programs
[ 88.573535][ T5772] cgroup: Unknown subsys name 'net'
[ 88.741377][ T5772] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 90.490130][ T5772] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 92.220627][ T9] cfg80211: failed to load regulatory.db
[ 94.120865][ T3542] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.131215][ T3542] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 94.161232][ T143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.169411][ T143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 95.079595][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 95.088437][ T5833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 95.097187][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 95.108298][ T5833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 95.116360][ T5833] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 95.124423][ T5833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 96.428925][ T5855] chnl_net:caif_netlink_parms(): no params data found
[ 96.521120][ T5855] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.529111][ T5855] bridge0: port 1(bridge_slave_0) entered disabled state
[ 96.537219][ T5855] bridge_slave_0: entered allmulticast mode
[ 96.544597][ T5855] bridge_slave_0: entered promiscuous mode
[ 96.553986][ T5855] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.561169][ T5855] bridge0: port 2(bridge_slave_1) entered disabled state
[ 96.568474][ T5855] bridge_slave_1: entered allmulticast mode
[ 96.576615][ T5855] bridge_slave_1: entered promiscuous mode
[ 96.626149][ T5855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 96.652579][ T5855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 96.704774][ T5855] team0: Port device team_slave_0 added
[ 96.713885][ T5855] team0: Port device team_slave_1 added
[ 96.766828][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 96.773959][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 96.801313][ T5855] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 96.827152][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 96.834196][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 96.860152][ T5855] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 96.922960][ T5855] hsr_slave_0: entered promiscuous mode
[ 96.929880][ T5855] hsr_slave_1: entered promiscuous mode
[ 97.140181][ T5855] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 97.170906][ T5855] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 97.185349][ T5855] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 97.196907][ T5855] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 97.329982][ T5855] 8021q: adding VLAN 0 to HW filter on device bond0
[ 97.356643][ T5855] 8021q: adding VLAN 0 to HW filter on device team0
[ 97.371990][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.379502][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 97.395936][ T3542] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.403180][ T3542] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 97.605619][ T5855] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 97.653680][ T5855] veth0_vlan: entered promiscuous mode
[ 97.666983][ T5855] veth1_vlan: entered promiscuous mode
[ 97.701459][ T5855] veth0_macvtap: entered promiscuous mode
[ 97.711593][ T5855] veth1_macvtap: entered promiscuous mode
[ 97.733691][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 97.748353][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 97.761198][ T5855] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.770948][ T5855] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.781136][ T5855] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.789993][ T5855] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.968545][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/10 23:26:54 executed programs: 0
[ 98.547215][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 98.557459][ T5833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 98.565771][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 98.574844][ T5833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 98.584619][ T5833] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 98.592845][ T5833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 98.765496][ T5879] chnl_net:caif_netlink_parms(): no params data found
[ 98.843108][ T5879] bridge0: port 1(bridge_slave_0) entered blocking state
[ 98.850326][ T5879] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.859681][ T5879] bridge_slave_0: entered allmulticast mode
[ 98.867134][ T5879] bridge_slave_0: entered promiscuous mode
[ 98.876175][ T5879] bridge0: port 2(bridge_slave_1) entered blocking state
[ 98.883547][ T5879] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.890733][ T5879] bridge_slave_1: entered allmulticast mode
[ 98.898035][ T5879] bridge_slave_1: entered promiscuous mode
[ 98.937433][ T5879] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 98.950366][ T5879] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 98.997323][ T5879] team0: Port device team_slave_0 added
[ 99.005267][ T5879] team0: Port device team_slave_1 added
[ 99.038999][ T5879] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 99.046870][ T5879] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 99.073110][ T5879] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 99.086246][ T5879] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 99.093803][ T5879] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 99.119822][ T5879] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 99.176068][ T5879] hsr_slave_0: entered promiscuous mode
[ 99.185622][ T5879] hsr_slave_1: entered promiscuous mode
[ 99.192990][ T5879] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 99.200824][ T5879] Cannot create hsr debugfs directory
[ 100.612886][ T5833] Bluetooth: hci0: command tx timeout
[ 100.684230][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 102.693309][ T5833] Bluetooth: hci0: command tx timeout
[ 102.975164][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 103.048373][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 103.961438][ T5879] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 103.996950][ T5879] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 104.008902][ T5879] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 104.023225][ T5879] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 104.055406][ T12] hsr_slave_0: left promiscuous mode
[ 104.071476][ T12] hsr_slave_1: left promiscuous mode
[ 104.080926][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 104.090238][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 104.099346][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 104.110759][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 104.119332][ T12] bridge_slave_1: left allmulticast mode
[ 104.126381][ T12] bridge_slave_1: left promiscuous mode
[ 104.133553][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 104.147852][ T12] bridge_slave_0: left allmulticast mode
[ 104.155174][ T12] bridge_slave_0: left promiscuous mode
[ 104.160964][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 104.185744][ T12] veth1_macvtap: left promiscuous mode
[ 104.191604][ T12] veth0_macvtap: left promiscuous mode
[ 104.198106][ T12] veth1_vlan: left promiscuous mode
[ 104.203775][ T12] veth0_vlan: left promiscuous mode
[ 104.650090][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 104.688523][ T12] team0 (unregistering): Port device team_slave_0 removed
[ 104.726301][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 104.767038][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 104.775796][ T5833] Bluetooth: hci0: command tx timeout
[ 105.134851][ T12] bond0 (unregistering): Released all slaves
[ 105.288278][ T5879] 8021q: adding VLAN 0 to HW filter on device bond0
[ 105.313227][ T5879] 8021q: adding VLAN 0 to HW filter on device team0
[ 105.328803][ T49] bridge0: port 1(bridge_slave_0) entered blocking state
[ 105.336034][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 105.370791][ T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 105.378199][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 105.633902][ T5879] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 105.675220][ T5879] veth0_vlan: entered promiscuous mode
[ 105.695121][ T5879] veth1_vlan: entered promiscuous mode
[ 105.726800][ T5879] veth0_macvtap: entered promiscuous mode
[ 105.736659][ T5879] veth1_macvtap: entered promiscuous mode
[ 105.761387][ T5879] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 105.776252][ T5879] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 105.796487][ T5879] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.805662][ T5879] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.814872][ T5879] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.824337][ T5879] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.899301][ T3542] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.911737][ T3542] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.938213][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.946377][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 106.005217][ T5927] syz.0.17[5927]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 106.026652][ T5927] loop0: detected capacity change from 0 to 512
[ 106.064880][ T5927]
[ 106.067298][ T5927] ======================================================
[ 106.074345][ T5927] WARNING: possible circular locking dependency detected
[ 106.081410][ T5927] syzkaller #0 Not tainted
[ 106.085863][ T5927] ------------------------------------------------------
[ 106.092912][ T5927] syz.0.17/5927 is trying to acquire lock:
[ 106.098781][ T5927] ffff88802e3b0bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0
[ 106.108866][ T5927]
[ 106.108866][ T5927] but task is already holding lock:
[ 106.116235][ T5927] ffff8880605614c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 106.126093][ T5927]
[ 106.126093][ T5927] which lock already depends on the new lock.
[ 106.126093][ T5927]
[ 106.136516][ T5927]
[ 106.136516][ T5927] the existing dependency chain (in reverse order) is:
[ 106.145622][ T5927]
[ 106.145622][ T5927] -> #2 (&ei->xattr_sem){++++}-{3:3}:
[ 106.153193][ T5927] down_read+0x46/0x2e0
[ 106.157884][ T5927] ext4_setattr+0x86b/0x1c90
[ 106.163033][ T5927] notify_change+0xb0d/0xe10
[ 106.168161][ T5927] chown_common+0x3f9/0x5a0
[ 106.173205][ T5927] do_fchownat+0x168/0x270
[ 106.178161][ T5927] __x64_sys_chown+0x82/0x90
[ 106.183287][ T5927] do_syscall_64+0x55/0xb0
[ 106.188238][ T5927] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 106.194667][ T5927]
[ 106.194667][ T5927] -> #1 (jbd2_handle){++++}-{0:0}:
[ 106.201982][ T5927] start_this_handle+0x1e9d/0x20c0
[ 106.207862][ T5927] jbd2__journal_start+0x2bb/0x5b0
[ 106.213545][ T5927] __ext4_journal_start_sb+0x203/0x570
[ 106.219549][ T5927] ext4_do_writepages+0xf92/0x38d0
[ 106.225204][ T5927] ext4_writepages+0x1a8/0x2f0
[ 106.230514][ T5927] do_writepages+0x3a2/0x600
[ 106.235694][ T5927] __writeback_single_inode+0x153/0xee0
[ 106.241789][ T5927] writeback_sb_inodes+0x77c/0xef0
[ 106.247453][ T5927] __writeback_inodes_wb+0x111/0x240
[ 106.253279][ T5927] wb_writeback+0x464/0xba0
[ 106.258319][ T5927] wb_workfn+0xabc/0xe20
[ 106.263098][ T5927] process_scheduled_works+0xa45/0x15b0
[ 106.269187][ T5927] worker_thread+0xa55/0xfc0
[ 106.274312][ T5927] kthread+0x2fa/0x390
[ 106.278911][ T5927] ret_from_fork+0x48/0x80
[ 106.283863][ T5927] ret_from_fork_asm+0x11/0x20
[ 106.289167][ T5927]
[ 106.289167][ T5927] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 106.297616][ T5927] __lock_acquire+0x2ddb/0x7c80
[ 106.303018][ T5927] lock_acquire+0x197/0x410
[ 106.308068][ T5927] percpu_down_read+0x44/0x1a0
[ 106.313373][ T5927] ext4_writepages+0x170/0x2f0
[ 106.318675][ T5927] do_writepages+0x3a2/0x600
[ 106.323828][ T5927] __writeback_single_inode+0x153/0xee0
[ 106.329928][ T5927] writeback_single_inode+0x211/0x720
[ 106.335849][ T5927] write_inode_now+0x161/0x1e0
[ 106.341151][ T5927] iput+0x5b2/0x920
[ 106.345495][ T5927] ext4_xattr_block_set+0x273a/0x32a0
[ 106.351404][ T5927] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 106.357840][ T5927] __ext4_expand_extra_isize+0x306/0x400
[ 106.364018][ T5927] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 106.370022][ T5927] ext4_evict_inode+0x7ed/0xea0
[ 106.375416][ T5927] evict+0x486/0x870
[ 106.379846][ T5927] ext4_orphan_cleanup+0xbd4/0x1400
[ 106.385590][ T5927] ext4_fill_super+0x5de4/0x66c0
[ 106.391063][ T5927] get_tree_bdev+0x3e4/0x510
[ 106.396191][ T5927] vfs_get_tree+0x8c/0x280
[ 106.401146][ T5927] do_new_mount+0x24b/0xa40
[ 106.406182][ T5927] __se_sys_mount+0x2da/0x3c0
[ 106.411395][ T5927] do_syscall_64+0x55/0xb0
[ 106.416437][ T5927] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 106.422880][ T5927]
[ 106.422880][ T5927] other info that might help us debug this:
[ 106.422880][ T5927]
[ 106.433163][ T5927] Chain exists of:
[ 106.433163][ T5927] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 106.433163][ T5927]
[ 106.446661][ T5927] Possible unsafe locking scenario:
[ 106.446661][ T5927]
[ 106.454131][ T5927] CPU0 CPU1
[ 106.459503][ T5927] ---- ----
[ 106.464875][ T5927] lock(&ei->xattr_sem);
[ 106.469301][ T5927] lock(jbd2_handle);
[ 106.475903][ T5927] lock(&ei->xattr_sem);
[ 106.482802][ T5927] rlock(&sbi->s_writepages_rwsem);
[ 106.488100][ T5927]
[ 106.488100][ T5927] *** DEADLOCK ***
[ 106.488100][ T5927]
[ 106.496253][ T5927] 3 locks held by syz.0.17/5927:
[ 106.501195][ T5927] #0: ffff88802d3ce0e0 (&type->s_umount_key#31){++++}-{3:3}, at: get_tree_bdev+0x344/0x510
[ 106.511321][ T5927] #1: ffff88802d3ce608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0
[ 106.520745][ T5927] #2: ffff8880605614c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 106.531047][ T5927]
[ 106.531047][ T5927] stack backtrace:
[ 106.536960][ T5927] CPU: 0 PID: 5927 Comm: syz.0.17 Not tainted syzkaller #0
[ 106.544181][ T5927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 106.554270][ T5927] Call Trace:
[ 106.557564][ T5927]
[ 106.560521][ T5927] dump_stack_lvl+0x16c/0x230
[ 106.565227][ T5927] ? load_image+0x3b0/0x3b0
[ 106.569752][ T5927] ? show_regs_print_info+0x20/0x20
[ 106.574989][ T5927] ? print_circular_bug+0x12b/0x1a0
[ 106.580216][ T5927] check_noncircular+0x2bd/0x3c0
[ 106.585172][ T5927] ? look_up_lock_class+0x75/0x140
[ 106.590311][ T5927] ? print_deadlock_bug+0x5d0/0x5d0
[ 106.595552][ T5927] ? lockdep_lock+0xe0/0x220
[ 106.600174][ T5927] ? __lock_acquire+0x1334/0x7c80
[ 106.605223][ T5927] ? _find_first_zero_bit+0xd3/0x100
[ 106.610535][ T5927] __lock_acquire+0x2ddb/0x7c80
[ 106.615410][ T5927] ? mark_lock+0x94/0x320
[ 106.619840][ T5927] ? verify_lock_unused+0x140/0x140
[ 106.625054][ T5927] ? __lock_acquire+0x1334/0x7c80
[ 106.630097][ T5927] ? verify_lock_unused+0x140/0x140
[ 106.635320][ T5927] lock_acquire+0x197/0x410
[ 106.639842][ T5927] ? ext4_writepages+0x170/0x2f0
[ 106.644807][ T5927] ? __might_sleep+0xe0/0xe0
[ 106.649414][ T5927] ? mark_lock+0x94/0x320
[ 106.653764][ T5927] ? read_lock_is_recursive+0x20/0x20
[ 106.659158][ T5927] ? __lock_acquire+0x1334/0x7c80
[ 106.664201][ T5927] percpu_down_read+0x44/0x1a0
[ 106.668991][ T5927] ? ext4_writepages+0x170/0x2f0
[ 106.673955][ T5927] ext4_writepages+0x170/0x2f0
[ 106.678749][ T5927] ? ext4_read_folio+0x2f0/0x2f0
[ 106.683807][ T5927] ? __rwlock_init+0x150/0x150
[ 106.688586][ T5927] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 106.694499][ T5927] ? do_raw_spin_unlock+0x121/0x230
[ 106.699716][ T5927] ? ext4_read_folio+0x2f0/0x2f0
[ 106.704676][ T5927] do_writepages+0x3a2/0x600
[ 106.709296][ T5927] ? folio_clear_dirty_for_io+0xc30/0xc30
[ 106.715035][ T5927] ? writeback_single_inode+0x206/0x720
[ 106.720600][ T5927] ? __lock_acquire+0x7c80/0x7c80
[ 106.725726][ T5927] ? do_raw_spin_lock+0x121/0x2c0
[ 106.730778][ T5927] ? get_tree_bdev+0x3e4/0x510
[ 106.735562][ T5927] __writeback_single_inode+0x153/0xee0
[ 106.741135][ T5927] writeback_single_inode+0x211/0x720
[ 106.746531][ T5927] ? write_inode_now+0x1e0/0x1e0
[ 106.751498][ T5927] write_inode_now+0x161/0x1e0
[ 106.756284][ T5927] ? bdi_split_work_to_wbs+0x890/0x890
[ 106.761775][ T5927] ? do_raw_spin_unlock+0x121/0x230
[ 106.766996][ T5927] iput+0x5b2/0x920
[ 106.770821][ T5927] ext4_xattr_block_set+0x273a/0x32a0
[ 106.776220][ T5927] ? __might_sleep+0xe0/0xe0
[ 106.780841][ T5927] ? xattr_find_entry+0x12b/0x2f0
[ 106.785892][ T5927] ? ext4_xattr_block_find+0x350/0x350
[ 106.791374][ T5927] ? ext4_xattr_block_find+0x2d4/0x350
[ 106.796882][ T5927] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 106.802816][ T5927] __ext4_expand_extra_isize+0x306/0x400
[ 106.808476][ T5927] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 106.813963][ T5927] ext4_evict_inode+0x7ed/0xea0
[ 106.818836][ T5927] ? _raw_spin_unlock+0x28/0x40
[ 106.823720][ T5927] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 106.829729][ T5927] ? do_raw_spin_unlock+0x121/0x230
[ 106.834952][ T5927] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 106.840860][ T5927] evict+0x486/0x870
[ 106.844773][ T5927] ? __lock_acquire+0x7c80/0x7c80
[ 106.849811][ T5927] ? proc_nr_inodes+0x230/0x230
[ 106.854694][ T5927] ? do_raw_spin_unlock+0x121/0x230
[ 106.859922][ T5927] ? _raw_spin_unlock+0x28/0x40
[ 106.864791][ T5927] ? iput+0x70a/0x920
[ 106.868799][ T5927] ext4_orphan_cleanup+0xbd4/0x1400
[ 106.874031][ T5927] ? ext4_orphan_del+0xba0/0xba0
[ 106.879006][ T5927] ? ext4_register_li_request+0x183/0x940
[ 106.884761][ T5927] ? errseq_check_and_advance+0x66/0x120
[ 106.890413][ T5927] ext4_fill_super+0x5de4/0x66c0
[ 106.895379][ T5927] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 106.901674][ T5927] ? __might_sleep+0xe0/0xe0
[ 106.906286][ T5927] ? read_lock_is_recursive+0x20/0x20
[ 106.911676][ T5927] ? snprintf+0xdb/0x120
[ 106.915946][ T5927] ? vscnprintf+0x80/0x80
[ 106.920293][ T5927] ? down_write+0x162/0x1f0
[ 106.924901][ T5927] ? down_read_killable+0x340/0x340
[ 106.930117][ T5927] ? setup_bdev_super+0x56b/0x660
[ 106.935160][ T5927] get_tree_bdev+0x3e4/0x510
[ 106.939769][ T5927] ? vfs_parse_fs_string+0x160/0x160
[ 106.945081][ T5927] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 106.951365][ T5927] ? setup_bdev_super+0x660/0x660
[ 106.956402][ T5927] ? apparmor_capable+0x137/0x1a0
[ 106.961443][ T5927] ? bpf_lsm_capable+0x9/0x10
[ 106.966145][ T5927] ? security_capable+0x89/0xb0
[ 106.971035][ T5927] vfs_get_tree+0x8c/0x280
[ 106.975496][ T5927] do_new_mount+0x24b/0xa40
[ 106.980025][ T5927] __se_sys_mount+0x2da/0x3c0
[ 106.984726][ T5927] ? __x64_sys_mount+0xc0/0xc0
[ 106.989511][ T5927] ? lockdep_hardirqs_on+0x98/0x150
[ 106.994730][ T5927] ? __x64_sys_mount+0x20/0xc0
[ 106.999596][ T5927] do_syscall_64+0x55/0xb0
[ 107.004121][ T5927] ? clear_bhb_loop+0x40/0x90
[ 107.008815][ T5927] ? clear_bhb_loop+0x40/0x90
[ 107.013516][ T5927] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 107.019431][ T5927] RIP: 0033:0x7fe771590eea
[ 107.023876][ T5927] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 107.043512][ T5927] RSP: 002b:00007ffdadb18aa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 107.051944][ T5927] RAX: ffffffffffffffda RBX: 00007ffdadb18b30 RCX: 00007fe771590eea
[ 107.059936][ T5927] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffdadb18af0
[ 107.067935][ T5927] RBP: 0000200000000180 R08: 00007ffdadb18b30 R09: 0000000000800718
[ 107.075933][ T5927] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 107.083925][ T5927] R13: 00007ffdadb18af0 R14: 000000000000046f R15: 0000200000000200
[ 107.091923][ T5927]
[ 107.110485][ T5927] ------------[ cut here ]------------
[ 107.116451][ T5927] EA inode 11 i_nlink=2
[ 107.121261][ T5927] WARNING: CPU: 1 PID: 5927 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550
[ 107.122322][ T5833] Bluetooth: hci0: command tx timeout
[ 107.125623][ T5927] Modules linked in:
[ 107.144999][ T5927] CPU: 1 PID: 5927 Comm: syz.0.17 Not tainted syzkaller #0
[ 107.152271][ T5927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 107.162915][ T5927] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[ 107.169578][ T5927] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08
[ 107.189344][ T5927] RSP: 0018:ffffc900033171c0 EFLAGS: 00010246
[ 107.195482][ T5927] RAX: 6048bc9c20f45700 RBX: 0000000000000002 RCX: ffff88807b715a00
[ 107.203559][ T5927] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 107.211648][ T5927] RBP: ffffc900033172b8 R08: ffffc90003316dc7 R09: 1ffff92000662db8
[ 107.219689][ T5927] R10: dffffc0000000000 R11: fffff52000662db9 R12: dffffc0000000000
[ 107.227777][ T5927] R13: ffff888072e7b6a8 R14: ffff888072e7b4b0 R15: ffff888072e7b500
[ 107.235813][ T5927] FS: 0000555574f7c500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 107.244796][ T5927] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 107.251385][ T5927] CR2: 00007fd2c9a7f000 CR3: 0000000077006000 CR4: 00000000003506e0
[ 107.259477][ T5927] Call Trace:
[ 107.263130][ T5927]
[ 107.266096][ T5927] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 107.271746][ T5927] ? ext4_xattr_inode_iget+0x3df/0x600
[ 107.277355][ T5927] ext4_xattr_set_entry+0xcda/0x1e90
[ 107.282866][ T5927] ext4_xattr_ibody_set+0x254/0x6a0
[ 107.288207][ T5927] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 107.294210][ T5927] __ext4_expand_extra_isize+0x306/0x400
[ 107.299888][ T5927] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 107.305411][ T5927] ext4_evict_inode+0x7ed/0xea0
[ 107.310301][ T5927] ? _raw_spin_unlock+0x28/0x40
[ 107.315263][ T5927] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 107.321281][ T5927] ? do_raw_spin_unlock+0x121/0x230
[ 107.326552][ T5927] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 107.332503][ T5927] evict+0x486/0x870
[ 107.336406][ T5927] ? __lock_acquire+0x7c80/0x7c80
[ 107.341442][ T5927] ? proc_nr_inodes+0x230/0x230
[ 107.346354][ T5927] ? do_raw_spin_unlock+0x121/0x230
[ 107.351590][ T5927] ? _raw_spin_unlock+0x28/0x40
[ 107.356524][ T5927] ? iput+0x70a/0x920
[ 107.360541][ T5927] ext4_orphan_cleanup+0xbd4/0x1400
[ 107.366204][ T5927] ? ext4_orphan_del+0xba0/0xba0
[ 107.371177][ T5927] ? ext4_register_li_request+0x183/0x940
[ 107.377049][ T5927] ? errseq_check_and_advance+0x66/0x120
[ 107.382749][ T5927] ext4_fill_super+0x5de4/0x66c0
[ 107.387710][ T5927] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 107.394033][ T5927] ? __might_sleep+0xe0/0xe0
[ 107.398683][ T5927] ? read_lock_is_recursive+0x20/0x20
[ 107.404134][ T5927] ? snprintf+0xdb/0x120
[ 107.408410][ T5927] ? vscnprintf+0x80/0x80
[ 107.412803][ T5927] ? down_write+0x162/0x1f0
[ 107.417333][ T5927] ? down_read_killable+0x340/0x340
[ 107.422595][ T5927] ? setup_bdev_super+0x56b/0x660
[ 107.427656][ T5927] get_tree_bdev+0x3e4/0x510
[ 107.432305][ T5927] ? vfs_parse_fs_string+0x160/0x160
[ 107.437622][ T5927] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 107.443918][ T5927] ? setup_bdev_super+0x660/0x660
[ 107.448984][ T5927] ? apparmor_capable+0x137/0x1a0
[ 107.454070][ T5927] ? bpf_lsm_capable+0x9/0x10
[ 107.458784][ T5927] ? security_capable+0x89/0xb0
[ 107.463703][ T5927] vfs_get_tree+0x8c/0x280
[ 107.468462][ T5927] do_new_mount+0x24b/0xa40
[ 107.473092][ T5927] __se_sys_mount+0x2da/0x3c0
[ 107.477807][ T5927] ? __x64_sys_mount+0xc0/0xc0
[ 107.482624][ T5927] ? lockdep_hardirqs_on+0x98/0x150
[ 107.487850][ T5927] ? __x64_sys_mount+0x20/0xc0
[ 107.492693][ T5927] do_syscall_64+0x55/0xb0
[ 107.497266][ T5927] ? clear_bhb_loop+0x40/0x90
[ 107.502002][ T5927] ? clear_bhb_loop+0x40/0x90
[ 107.506743][ T5927] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 107.512834][ T5927] RIP: 0033:0x7fe771590eea
[ 107.517334][ T5927] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 107.537253][ T5927] RSP: 002b:00007ffdadb18aa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 107.545763][ T5927] RAX: ffffffffffffffda RBX: 00007ffdadb18b30 RCX: 00007fe771590eea
[ 107.553915][ T5927] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffdadb18af0
[ 107.562273][ T5927] RBP: 0000200000000180 R08: 00007ffdadb18b30 R09: 0000000000800718
[ 107.570612][ T5927] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 107.578867][ T5927] R13: 00007ffdadb18af0 R14: 000000000000046f R15: 0000200000000200
[ 107.587193][ T5927]
[ 107.590325][ T5927] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 107.597609][ T5927] CPU: 1 PID: 5927 Comm: syz.0.17 Not tainted syzkaller #0
[ 107.604811][ T5927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 107.614877][ T5927] Call Trace:
[ 107.618163][ T5927]
[ 107.621120][ T5927] dump_stack_lvl+0x16c/0x230
[ 107.625833][ T5927] ? show_regs_print_info+0x20/0x20
[ 107.631061][ T5927] ? load_image+0x3b0/0x3b0
[ 107.635594][ T5927] panic+0x2c0/0x710
[ 107.639531][ T5927] ? bpf_jit_dump+0xd0/0xd0
[ 107.644067][ T5927] __warn+0x2e0/0x470
[ 107.648072][ T5927] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 107.654079][ T5927] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 107.660086][ T5927] report_bug+0x2be/0x4f0
[ 107.664433][ T5927] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 107.670434][ T5927] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 107.676439][ T5927] ? ext4_xattr_inode_update_ref+0x4fd/0x550
[ 107.682441][ T5927] handle_bug+0xcf/0x120
[ 107.686705][ T5927] exc_invalid_op+0x1a/0x50
[ 107.691223][ T5927] asm_exc_invalid_op+0x1a/0x20
[ 107.696091][ T5927] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[ 107.702712][ T5927] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08
[ 107.722338][ T5927] RSP: 0018:ffffc900033171c0 EFLAGS: 00010246
[ 107.728423][ T5927] RAX: 6048bc9c20f45700 RBX: 0000000000000002 RCX: ffff88807b715a00
[ 107.736411][ T5927] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 107.744404][ T5927] RBP: ffffc900033172b8 R08: ffffc90003316dc7 R09: 1ffff92000662db8
[ 107.752393][ T5927] R10: dffffc0000000000 R11: fffff52000662db9 R12: dffffc0000000000
[ 107.760382][ T5927] R13: ffff888072e7b6a8 R14: ffff888072e7b4b0 R15: ffff888072e7b500
[ 107.768387][ T5927] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 107.774054][ T5927] ? ext4_xattr_inode_iget+0x3df/0x600
[ 107.779564][ T5927] ext4_xattr_set_entry+0xcda/0x1e90
[ 107.784884][ T5927] ext4_xattr_ibody_set+0x254/0x6a0
[ 107.790118][ T5927] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 107.796143][ T5927] __ext4_expand_extra_isize+0x306/0x400
[ 107.801827][ T5927] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 107.807319][ T5927] ext4_evict_inode+0x7ed/0xea0
[ 107.812202][ T5927] ? _raw_spin_unlock+0x28/0x40
[ 107.817088][ T5927] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 107.823092][ T5927] ? do_raw_spin_unlock+0x121/0x230
[ 107.828313][ T5927] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 107.834227][ T5927] evict+0x486/0x870
[ 107.838141][ T5927] ? __lock_acquire+0x7c80/0x7c80
[ 107.843189][ T5927] ? proc_nr_inodes+0x230/0x230
[ 107.848057][ T5927] ? do_raw_spin_unlock+0x121/0x230
[ 107.853275][ T5927] ? _raw_spin_unlock+0x28/0x40
[ 107.858141][ T5927] ? iput+0x70a/0x920
[ 107.862152][ T5927] ext4_orphan_cleanup+0xbd4/0x1400
[ 107.867384][ T5927] ? ext4_orphan_del+0xba0/0xba0
[ 107.872346][ T5927] ? ext4_register_li_request+0x183/0x940
[ 107.878094][ T5927] ? errseq_check_and_advance+0x66/0x120
[ 107.883752][ T5927] ext4_fill_super+0x5de4/0x66c0
[ 107.888717][ T5927] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 107.894979][ T5927] ? __might_sleep+0xe0/0xe0
[ 107.899617][ T5927] ? read_lock_is_recursive+0x20/0x20
[ 107.905004][ T5927] ? snprintf+0xdb/0x120
[ 107.909272][ T5927] ? vscnprintf+0x80/0x80
[ 107.913625][ T5927] ? down_write+0x162/0x1f0
[ 107.918144][ T5927] ? down_read_killable+0x340/0x340
[ 107.923358][ T5927] ? setup_bdev_super+0x56b/0x660
[ 107.928403][ T5927] get_tree_bdev+0x3e4/0x510
[ 107.933024][ T5927] ? vfs_parse_fs_string+0x160/0x160
[ 107.938334][ T5927] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 107.944602][ T5927] ? setup_bdev_super+0x660/0x660
[ 107.949665][ T5927] ? apparmor_capable+0x137/0x1a0
[ 107.954709][ T5927] ? bpf_lsm_capable+0x9/0x10
[ 107.959440][ T5927] ? security_capable+0x89/0xb0
[ 107.964315][ T5927] vfs_get_tree+0x8c/0x280
[ 107.968761][ T5927] do_new_mount+0x24b/0xa40
[ 107.973294][ T5927] __se_sys_mount+0x2da/0x3c0
[ 107.978007][ T5927] ? __x64_sys_mount+0xc0/0xc0
[ 107.982812][ T5927] ? lockdep_hardirqs_on+0x98/0x150
[ 107.988027][ T5927] ? __x64_sys_mount+0x20/0xc0
[ 107.992806][ T5927] do_syscall_64+0x55/0xb0
[ 107.997250][ T5927] ? clear_bhb_loop+0x40/0x90
[ 108.001964][ T5927] ? clear_bhb_loop+0x40/0x90
[ 108.006666][ T5927] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 108.012584][ T5927] RIP: 0033:0x7fe771590eea
[ 108.017016][ T5927] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 108.036735][ T5927] RSP: 002b:00007ffdadb18aa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 108.045513][ T5927] RAX: ffffffffffffffda RBX: 00007ffdadb18b30 RCX: 00007fe771590eea
[ 108.053507][ T5927] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffdadb18af0
[ 108.061501][ T5927] RBP: 0000200000000180 R08: 00007ffdadb18b30 R09: 0000000000800718
[ 108.069667][ T5927] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 108.077663][ T5927] R13: 00007ffdadb18af0 R14: 000000000000046f R15: 0000200000000200
[ 108.085664][ T5927]
[ 108.089077][ T5927] Kernel Offset: disabled
[ 108.093412][ T5927] Rebooting in 86400 seconds..