Warning: Permanently added '10.128.1.117' (ED25519) to the list of known hosts. 2026/01/04 09:01:33 parsed 1 programs [ 70.960327][ T5764] cgroup: Unknown subsys name 'net' [ 71.061573][ T5764] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 71.678884][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.685519][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 72.483711][ T5764] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 73.992106][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.000550][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.026290][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.034142][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.162798][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.174291][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.182608][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.190985][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.199761][ T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 76.207833][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.364425][ T5845] chnl_net:caif_netlink_parms(): no params data found [ 77.430660][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.438788][ T5845] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.446171][ T5845] bridge_slave_0: entered allmulticast mode [ 77.452985][ T5845] bridge_slave_0: entered promiscuous mode [ 77.462861][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.470518][ T5845] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.478046][ T5845] bridge_slave_1: entered allmulticast mode [ 77.485366][ T5845] bridge_slave_1: entered promiscuous mode [ 77.541311][ T5845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.557929][ T5845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.588947][ T5845] team0: Port device team_slave_0 added [ 77.598514][ T5845] team0: Port device team_slave_1 added [ 77.620258][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 77.627580][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.653677][ T5845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 77.667872][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.674920][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.700868][ T5845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.740140][ T5845] hsr_slave_0: entered promiscuous mode [ 77.747213][ T5845] hsr_slave_1: entered promiscuous mode [ 77.883139][ T5845] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 77.895914][ T5845] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 77.905905][ T5845] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 77.915451][ T5845] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 77.950563][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.957791][ T5845] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.965910][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.973012][ T5845] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.032972][ T5845] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.060411][ T49] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.069600][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.090085][ T5845] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.102614][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.109874][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.125658][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.132784][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.316275][ T5845] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.364763][ T5845] veth0_vlan: entered promiscuous mode [ 78.387464][ T5845] veth1_vlan: entered promiscuous mode [ 78.413733][ T5845] veth0_macvtap: entered promiscuous mode [ 78.423996][ T5845] veth1_macvtap: entered promiscuous mode [ 78.442627][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 78.457462][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.470111][ T5845] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.479687][ T5845] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.488574][ T5845] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.497494][ T5845] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.616983][ T5845] syz-executor (5845) used greatest stack depth: 19976 bytes left [ 78.652468][ T42] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2026/01/04 09:01:43 executed programs: 0 [ 79.066462][ T5081] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 79.074549][ T5081] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 79.083325][ T5081] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 79.092417][ T5081] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 79.100446][ T5081] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 79.107991][ T5081] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 79.242146][ T5874] chnl_net:caif_netlink_parms(): no params data found [ 79.298143][ T5874] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.305523][ T5874] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.312691][ T5874] bridge_slave_0: entered allmulticast mode [ 79.319656][ T5874] bridge_slave_0: entered promiscuous mode [ 79.328502][ T5874] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.336203][ T5874] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.343361][ T5874] bridge_slave_1: entered allmulticast mode [ 79.350984][ T5874] bridge_slave_1: entered promiscuous mode [ 79.384694][ T5874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.396720][ T5874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.426246][ T5874] team0: Port device team_slave_0 added [ 79.433771][ T5874] team0: Port device team_slave_1 added [ 79.463916][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.471025][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.497349][ T5874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.509860][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.518144][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.544365][ T5874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.587456][ T5874] hsr_slave_0: entered promiscuous mode [ 79.593633][ T5874] hsr_slave_1: entered promiscuous mode [ 79.602041][ T5874] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.610819][ T5874] Cannot create hsr debugfs directory [ 81.195985][ T51] Bluetooth: hci0: command tx timeout [ 81.307054][ T42] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.917371][ T9] cfg80211: failed to load regulatory.db [ 83.275789][ T51] Bluetooth: hci0: command tx timeout [ 83.785428][ T42] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.858090][ T42] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.647807][ T42] hsr_slave_0: left promiscuous mode [ 84.654586][ T42] hsr_slave_1: left promiscuous mode [ 84.664635][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 84.674095][ T42] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 84.688242][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 84.696922][ T42] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 84.710112][ T42] bridge_slave_1: left allmulticast mode [ 84.723833][ T42] bridge_slave_1: left promiscuous mode [ 84.730964][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.742097][ T42] bridge_slave_0: left allmulticast mode [ 84.748701][ T42] bridge_slave_0: left promiscuous mode [ 84.754423][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.774237][ T42] veth1_macvtap: left promiscuous mode [ 84.780178][ T42] veth0_macvtap: left promiscuous mode [ 84.785860][ T42] veth1_vlan: left promiscuous mode [ 84.791926][ T42] veth0_vlan: left promiscuous mode [ 85.158515][ T42] team0 (unregistering): Port device team_slave_1 removed [ 85.190901][ T42] team0 (unregistering): Port device team_slave_0 removed [ 85.222562][ T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 85.256646][ T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 85.357535][ T51] Bluetooth: hci0: command tx timeout [ 85.561773][ T42] bond0 (unregistering): Released all slaves [ 85.680125][ T5874] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 85.699633][ T5874] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 85.709690][ T5874] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 85.720671][ T5874] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 85.819519][ T5874] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.838574][ T5874] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.849650][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.856811][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.871185][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.878525][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.071065][ T5874] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.113884][ T5874] veth0_vlan: entered promiscuous mode [ 86.127607][ T5874] veth1_vlan: entered promiscuous mode [ 86.158728][ T5874] veth0_macvtap: entered promiscuous mode [ 86.167418][ T5874] veth1_macvtap: entered promiscuous mode [ 86.183249][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.208323][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.220408][ T5874] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.231671][ T5874] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.240816][ T5874] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.249693][ T5874] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.316824][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.328414][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.358310][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.366519][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.418567][ T5920] syz.0.17[5920]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 86.432151][ T5920] loop0: detected capacity change from 0 to 512 [ 86.464773][ T5920] [ 86.467149][ T5920] ====================================================== [ 86.474169][ T5920] WARNING: possible circular locking dependency detected [ 86.481185][ T5920] syzkaller #0 Not tainted [ 86.485584][ T5920] ------------------------------------------------------ [ 86.492577][ T5920] syz.0.17/5920 is trying to acquire lock: [ 86.498369][ T5920] ffff888076622bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0 [ 86.508378][ T5920] [ 86.508378][ T5920] but task is already holding lock: [ 86.515728][ T5920] ffff8880726bc6c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 86.525541][ T5920] [ 86.525541][ T5920] which lock already depends on the new lock. [ 86.525541][ T5920] [ 86.535931][ T5920] [ 86.535931][ T5920] the existing dependency chain (in reverse order) is: [ 86.544944][ T5920] [ 86.544944][ T5920] -> #2 (&ei->xattr_sem){++++}-{3:3}: [ 86.552509][ T5920] down_read+0x46/0x2e0 [ 86.557190][ T5920] ext4_setattr+0x86b/0x1c90 [ 86.562301][ T5920] notify_change+0xb0d/0xe10 [ 86.567408][ T5920] chown_common+0x3f9/0x5a0 [ 86.572423][ T5920] do_fchownat+0x168/0x270 [ 86.577345][ T5920] __x64_sys_chown+0x82/0x90 [ 86.582447][ T5920] do_syscall_64+0x55/0xb0 [ 86.587367][ T5920] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 86.593772][ T5920] [ 86.593772][ T5920] -> #1 (jbd2_handle){++++}-{0:0}: [ 86.601061][ T5920] start_this_handle+0x1e9d/0x20c0 [ 86.606690][ T5920] jbd2__journal_start+0x2bb/0x5b0 [ 86.612339][ T5920] __ext4_journal_start_sb+0x203/0x570 [ 86.618325][ T5920] ext4_do_writepages+0xf92/0x38d0 [ 86.623959][ T5920] ext4_writepages+0x1a8/0x2f0 [ 86.629233][ T5920] do_writepages+0x3a2/0x600 [ 86.634336][ T5920] filemap_fdatawrite_wbc+0x122/0x180 [ 86.640218][ T5920] file_write_and_wait_range+0x171/0x240 [ 86.646362][ T5920] ext4_sync_file+0x281/0xc10 [ 86.651552][ T5920] __x64_sys_fsync+0x195/0x1d0 [ 86.656826][ T5920] do_syscall_64+0x55/0xb0 [ 86.661745][ T5920] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 86.668152][ T5920] [ 86.668152][ T5920] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 86.676567][ T5920] __lock_acquire+0x2ddb/0x7c80 [ 86.681933][ T5920] lock_acquire+0x197/0x410 [ 86.686946][ T5920] percpu_down_read+0x44/0x1a0 [ 86.692220][ T5920] ext4_writepages+0x170/0x2f0 [ 86.697493][ T5920] do_writepages+0x3a2/0x600 [ 86.702593][ T5920] __writeback_single_inode+0x153/0xee0 [ 86.708656][ T5920] writeback_single_inode+0x211/0x720 [ 86.714537][ T5920] write_inode_now+0x161/0x1e0 [ 86.719808][ T5920] iput+0x5b2/0x920 [ 86.724120][ T5920] ext4_xattr_block_set+0x273a/0x32a0 [ 86.730005][ T5920] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 86.736410][ T5920] __ext4_expand_extra_isize+0x306/0x400 [ 86.742557][ T5920] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 86.748523][ T5920] ext4_evict_inode+0x7ed/0xea0 [ 86.753878][ T5920] evict+0x486/0x870 [ 86.758278][ T5920] ext4_orphan_cleanup+0xbd4/0x1400 [ 86.764016][ T5920] ext4_fill_super+0x5de4/0x66c0 [ 86.769460][ T5920] get_tree_bdev+0x3e4/0x510 [ 86.774555][ T5920] vfs_get_tree+0x8c/0x280 [ 86.779475][ T5920] do_new_mount+0x24b/0xa40 [ 86.784485][ T5920] __se_sys_mount+0x2da/0x3c0 [ 86.789667][ T5920] do_syscall_64+0x55/0xb0 [ 86.794590][ T5920] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 86.803091][ T5920] [ 86.803091][ T5920] other info that might help us debug this: [ 86.803091][ T5920] [ 86.813318][ T5920] Chain exists of: [ 86.813318][ T5920] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem [ 86.813318][ T5920] [ 86.826697][ T5920] Possible unsafe locking scenario: [ 86.826697][ T5920] [ 86.834131][ T5920] CPU0 CPU1 [ 86.839483][ T5920] ---- ---- [ 86.844834][ T5920] lock(&ei->xattr_sem); [ 86.849166][ T5920] lock(jbd2_handle); [ 86.855744][ T5920] lock(&ei->xattr_sem); [ 86.862584][ T5920] rlock(&sbi->s_writepages_rwsem); [ 86.867856][ T5920] [ 86.867856][ T5920] *** DEADLOCK *** [ 86.867856][ T5920] [ 86.875986][ T5920] 3 locks held by syz.0.17/5920: [ 86.880905][ T5920] #0: ffff8880766200e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510 [ 86.890993][ T5920] #1: ffff888076620608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 [ 86.900382][ T5920] #2: ffff8880726bc6c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 86.910651][ T5920] [ 86.910651][ T5920] stack backtrace: [ 86.916540][ T5920] CPU: 1 PID: 5920 Comm: syz.0.17 Not tainted syzkaller #0 [ 86.923725][ T5920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 86.933806][ T5920] Call Trace: [ 86.937075][ T5920] [ 86.940002][ T5920] dump_stack_lvl+0x16c/0x230 [ 86.944675][ T5920] ? load_image+0x3b0/0x3b0 [ 86.949171][ T5920] ? show_regs_print_info+0x20/0x20 [ 86.954369][ T5920] ? print_circular_bug+0x12b/0x1a0 [ 86.959562][ T5920] check_noncircular+0x2bd/0x3c0 [ 86.964489][ T5920] ? look_up_lock_class+0x75/0x140 [ 86.969592][ T5920] ? print_deadlock_bug+0x5d0/0x5d0 [ 86.974781][ T5920] ? lockdep_lock+0xe0/0x220 [ 86.979364][ T5920] ? _find_first_zero_bit+0xd3/0x100 [ 86.984654][ T5920] __lock_acquire+0x2ddb/0x7c80 [ 86.989498][ T5920] ? mark_lock+0x94/0x320 [ 86.993817][ T5920] ? verify_lock_unused+0x140/0x140 [ 86.999000][ T5920] ? __lock_acquire+0x1334/0x7c80 [ 87.004014][ T5920] ? verify_lock_unused+0x140/0x140 [ 87.009211][ T5920] lock_acquire+0x197/0x410 [ 87.013702][ T5920] ? ext4_writepages+0x170/0x2f0 [ 87.018899][ T5920] ? __might_sleep+0xe0/0xe0 [ 87.023475][ T5920] ? mark_lock+0x94/0x320 [ 87.027797][ T5920] ? read_lock_is_recursive+0x20/0x20 [ 87.033158][ T5920] ? __lock_acquire+0x1334/0x7c80 [ 87.038229][ T5920] percpu_down_read+0x44/0x1a0 [ 87.042987][ T5920] ? ext4_writepages+0x170/0x2f0 [ 87.047914][ T5920] ext4_writepages+0x170/0x2f0 [ 87.052672][ T5920] ? ext4_read_folio+0x2f0/0x2f0 [ 87.057603][ T5920] ? __rwlock_init+0x150/0x150 [ 87.062366][ T5920] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 87.068252][ T5920] ? do_raw_spin_unlock+0x121/0x230 [ 87.073453][ T5920] ? ext4_read_folio+0x2f0/0x2f0 [ 87.078379][ T5920] do_writepages+0x3a2/0x600 [ 87.082968][ T5920] ? folio_clear_dirty_for_io+0xc30/0xc30 [ 87.088677][ T5920] ? writeback_single_inode+0x206/0x720 [ 87.094221][ T5920] ? __lock_acquire+0x7c80/0x7c80 [ 87.099235][ T5920] ? do_raw_spin_lock+0x121/0x2c0 [ 87.104874][ T5920] ? get_tree_bdev+0x3e4/0x510 [ 87.109659][ T5920] __writeback_single_inode+0x153/0xee0 [ 87.115338][ T5920] writeback_single_inode+0x211/0x720 [ 87.120714][ T5920] ? write_inode_now+0x1e0/0x1e0 [ 87.125650][ T5920] write_inode_now+0x161/0x1e0 [ 87.130403][ T5920] ? bdi_split_work_to_wbs+0x890/0x890 [ 87.135864][ T5920] ? do_raw_spin_unlock+0x121/0x230 [ 87.141059][ T5920] iput+0x5b2/0x920 [ 87.144859][ T5920] ext4_xattr_block_set+0x273a/0x32a0 [ 87.150256][ T5920] ? __might_sleep+0xe0/0xe0 [ 87.154952][ T5920] ? xattr_find_entry+0x12b/0x2f0 [ 87.159982][ T5920] ? ext4_xattr_block_find+0x350/0x350 [ 87.165437][ T5920] ? ext4_xattr_block_find+0x2d4/0x350 [ 87.170885][ T5920] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 87.176790][ T5920] __ext4_expand_extra_isize+0x306/0x400 [ 87.182417][ T5920] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 87.187972][ T5920] ext4_evict_inode+0x7ed/0xea0 [ 87.192815][ T5920] ? _raw_spin_unlock+0x28/0x40 [ 87.197658][ T5920] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 87.203542][ T5920] ? do_raw_spin_unlock+0x121/0x230 [ 87.208738][ T5920] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 87.214624][ T5920] evict+0x486/0x870 [ 87.218508][ T5920] ? __lock_acquire+0x7c80/0x7c80 [ 87.223526][ T5920] ? proc_nr_inodes+0x230/0x230 [ 87.228451][ T5920] ? do_raw_spin_unlock+0x121/0x230 [ 87.233647][ T5920] ? _raw_spin_unlock+0x28/0x40 [ 87.238488][ T5920] ? iput+0x70a/0x920 [ 87.242464][ T5920] ext4_orphan_cleanup+0xbd4/0x1400 [ 87.247661][ T5920] ? ext4_orphan_del+0xba0/0xba0 [ 87.252593][ T5920] ? ext4_register_li_request+0x183/0x940 [ 87.258309][ T5920] ? errseq_check_and_advance+0x66/0x120 [ 87.263931][ T5920] ext4_fill_super+0x5de4/0x66c0 [ 87.268862][ T5920] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 87.275092][ T5920] ? __might_sleep+0xe0/0xe0 [ 87.279672][ T5920] ? read_lock_is_recursive+0x20/0x20 [ 87.285032][ T5920] ? snprintf+0xdb/0x120 [ 87.289269][ T5920] ? vscnprintf+0x80/0x80 [ 87.293587][ T5920] ? down_write+0x162/0x1f0 [ 87.298080][ T5920] ? down_read_killable+0x340/0x340 [ 87.303280][ T5920] ? setup_bdev_super+0x56b/0x660 [ 87.308294][ T5920] get_tree_bdev+0x3e4/0x510 [ 87.312876][ T5920] ? vfs_parse_fs_string+0x160/0x160 [ 87.318154][ T5920] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 87.324482][ T5920] ? setup_bdev_super+0x660/0x660 [ 87.329500][ T5920] ? apparmor_capable+0x137/0x1a0 [ 87.334520][ T5920] ? bpf_lsm_capable+0x9/0x10 [ 87.339188][ T5920] ? security_capable+0x89/0xb0 [ 87.344029][ T5920] vfs_get_tree+0x8c/0x280 [ 87.348443][ T5920] do_new_mount+0x24b/0xa40 [ 87.352932][ T5920] __se_sys_mount+0x2da/0x3c0 [ 87.357595][ T5920] ? __x64_sys_mount+0xc0/0xc0 [ 87.362359][ T5920] ? lockdep_hardirqs_on+0x98/0x150 [ 87.367555][ T5920] ? __x64_sys_mount+0x20/0xc0 [ 87.372303][ T5920] do_syscall_64+0x55/0xb0 [ 87.376707][ T5920] ? clear_bhb_loop+0x40/0x90 [ 87.381370][ T5920] ? clear_bhb_loop+0x40/0x90 [ 87.386032][ T5920] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 87.391910][ T5920] RIP: 0033:0x7fbf8f190eea [ 87.396322][ T5920] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 87.415917][ T5920] RSP: 002b:00007fff1c6473c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 87.424320][ T5920] RAX: ffffffffffffffda RBX: 00007fff1c647450 RCX: 00007fbf8f190eea [ 87.432282][ T5920] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fff1c647410 [ 87.440248][ T5920] RBP: 0000200000000180 R08: 00007fff1c647450 R09: 0000000000800700 [ 87.448206][ T5920] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 87.456172][ T5920] R13: 00007fff1c647410 R14: 000000000000046f R15: 00002000000007c0 [ 87.464137][ T5920] [ 87.474408][ T51] Bluetooth: hci0: command tx timeout [ 87.481610][ T5920] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 87.498195][ T5920] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 11 err=-117 [ 87.513154][ T5920] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 87.527196][ T5920] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 87.545646][ T5920] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 11 err=-117 [ 87.558195][ T5920] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 87.572335][ T5920] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 18 err=-117 [ 87.587310][ T5920] EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 87.608043][ T5920] EXT4-fs error (device loop0): ext4_xattr_inode_iget:449: comm syz.0.17: error while reading EA inode 18 err=-117 [ 87.621056][ T5920] EXT4-fs (loop0): 1 orphan inode deleted [ 87.627640][ T5920] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 87.708767][ T5874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.