Warning: Permanently added '10.128.1.104' (ED25519) to the list of known hosts.
2025/12/02 05:07:11 parsed 1 programs
[   86.624832][ T5792] cgroup: Unknown subsys name 'net'
[   86.764781][ T5792] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   88.517605][ T5792] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   92.107589][ T1188] cfg80211: failed to load regulatory.db
[   92.442953][ T5840] chnl_net:caif_netlink_parms(): no params data found
[   92.531295][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.539565][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.546913][ T5840] bridge_slave_0: entered allmulticast mode
[   92.555251][ T5840] bridge_slave_0: entered promiscuous mode
[   92.565427][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.572586][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.581024][ T5840] bridge_slave_1: entered allmulticast mode
[   92.589080][ T5840] bridge_slave_1: entered promiscuous mode
[   92.626773][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.639432][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.680938][ T5840] team0: Port device team_slave_0 added
[   92.689597][ T5840] team0: Port device team_slave_1 added
[   92.727874][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.736424][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.765121][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.778743][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.787516][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.815086][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.863129][ T5840] hsr_slave_0: entered promiscuous mode
[   92.870410][ T5840] hsr_slave_1: entered promiscuous mode
[   93.068810][ T5840] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   93.080966][ T5840] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   93.109119][ T5840] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   93.120832][ T5840] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.172600][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.180180][ T5840] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.188334][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.195559][ T5840] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.294927][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.307332][   T59] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.317059][   T59] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.359073][ T5840] 8021q: adding VLAN 0 to HW filter on device team0
[   93.371524][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.378738][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.397359][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.404627][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.658133][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.709905][ T5840] veth0_vlan: entered promiscuous mode
[   93.730055][ T5840] veth1_vlan: entered promiscuous mode
[   93.772464][ T5840] veth0_macvtap: entered promiscuous mode
[   93.797021][ T5840] veth1_macvtap: entered promiscuous mode
[   93.826383][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.841478][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.857390][ T5840] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.873083][ T5840] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.881883][ T5840] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.891390][ T5840] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.052521][   T59] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.751892][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.763304][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.793740][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.801738][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.158669][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   95.169608][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   95.177584][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   95.187286][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   95.196007][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   95.204060][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/12/02 05:07:23 executed programs: 0
[   96.412007][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   96.421856][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   96.429821][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   96.440090][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   96.449199][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   96.456728][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   96.624091][ T5900] chnl_net:caif_netlink_parms(): no params data found
[   96.699143][ T5900] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.706612][ T5900] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.714415][ T5900] bridge_slave_0: entered allmulticast mode
[   96.721480][ T5900] bridge_slave_0: entered promiscuous mode
[   96.730088][ T5900] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.739992][ T5900] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.748251][ T5900] bridge_slave_1: entered allmulticast mode
[   96.755806][ T5900] bridge_slave_1: entered promiscuous mode
[   96.775382][   T59] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.813343][ T5900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   96.825858][ T5900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   96.861255][ T5900] team0: Port device team_slave_0 added
[   96.869329][ T5900] team0: Port device team_slave_1 added
[   96.899533][ T5900] batman_adv: batadv0: Adding interface: batadv_slave_0
[   96.906590][ T5900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.932731][ T5900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   96.946266][ T5900] batman_adv: batadv0: Adding interface: batadv_slave_1
[   96.953327][ T5900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.979631][ T5900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   97.027061][ T5900] hsr_slave_0: entered promiscuous mode
[   97.034104][ T5900] hsr_slave_1: entered promiscuous mode
[   97.040776][ T5900] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   97.048899][ T5900] Cannot create hsr debugfs directory
[   98.507457][   T51] Bluetooth: hci0: command tx timeout
[   98.957980][   T59] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.048757][   T59] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.937144][ T5900] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   99.951303][ T5900] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   99.986171][ T5900] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  100.000484][ T5900] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  100.047481][   T59] hsr_slave_0: left promiscuous mode
[  100.057207][   T59] hsr_slave_1: left promiscuous mode
[  100.065907][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.076425][   T59] batman_adv: batadv0: Removing interface: batadv_slave_0
[  100.086192][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  100.096340][   T59] batman_adv: batadv0: Removing interface: batadv_slave_1
[  100.105454][   T59] bridge_slave_1: left allmulticast mode
[  100.111254][   T59] bridge_slave_1: left promiscuous mode
[  100.122197][   T59] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.139363][   T59] bridge_slave_0: left allmulticast mode
[  100.145380][   T59] bridge_slave_0: left promiscuous mode
[  100.151206][   T59] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.188315][   T59] veth1_macvtap: left promiscuous mode
[  100.195331][   T59] veth0_macvtap: left promiscuous mode
[  100.201118][   T59] veth1_vlan: left promiscuous mode
[  100.209013][   T59] veth0_vlan: left promiscuous mode
[  100.586412][   T51] Bluetooth: hci0: command tx timeout
[  100.671100][   T59] team0 (unregistering): Port device team_slave_1 removed
[  100.709795][   T59] team0 (unregistering): Port device team_slave_0 removed
[  100.747469][   T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  100.783310][   T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  101.133100][   T59] bond0 (unregistering): Released all slaves
[  101.289193][ T5900] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.327680][ T5900] 8021q: adding VLAN 0 to HW filter on device team0
[  101.340266][ T2985] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.347514][ T2985] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.363917][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.371083][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.622479][ T5900] 8021q: adding VLAN 0 to HW filter on device batadv0
[  101.670469][ T5900] veth0_vlan: entered promiscuous mode
[  101.688961][ T5900] veth1_vlan: entered promiscuous mode
[  101.764230][ T5900] veth0_macvtap: entered promiscuous mode
[  101.780287][ T5900] veth1_macvtap: entered promiscuous mode
[  101.807795][ T5900] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.839848][ T5900] batman_adv: batadv0: Interface activated: batadv_slave_1
[  101.855274][ T5900] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.864667][ T5900] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.873979][ T5900] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.882702][ T5900] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.983750][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.991613][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.026200][ T2938] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.034575][ T2938] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.091272][ T5948] syz.0.17[5948]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[  102.110194][ T5948] loop0: detected capacity change from 0 to 512
[  102.155974][ T5948] 
[  102.158368][ T5948] ======================================================
[  102.165527][ T5948] WARNING: possible circular locking dependency detected
[  102.172573][ T5948] syzkaller #0 Not tainted
[  102.176995][ T5948] ------------------------------------------------------
[  102.184016][ T5948] syz.0.17/5948 is trying to acquire lock:
[  102.189825][ T5948] ffff88807ca66bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0
[  102.199867][ T5948] 
[  102.199867][ T5948] but task is already holding lock:
[  102.207236][ T5948] ffff8880608cc6c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[  102.217082][ T5948] 
[  102.217082][ T5948] which lock already depends on the new lock.
[  102.217082][ T5948] 
[  102.227492][ T5948] 
[  102.227492][ T5948] the existing dependency chain (in reverse order) is:
[  102.236543][ T5948] 
[  102.236543][ T5948] -> #2 (&ei->xattr_sem){++++}-{3:3}:
[  102.244117][ T5948]        down_read+0x46/0x2e0
[  102.248844][ T5948]        ext4_setattr+0x86b/0x1c90
[  102.254078][ T5948]        notify_change+0xb0d/0xe10
[  102.259196][ T5948]        chown_common+0x3f9/0x5a0
[  102.264236][ T5948]        do_fchownat+0x168/0x270
[  102.269180][ T5948]        __x64_sys_chown+0x82/0x90
[  102.274395][ T5948]        do_syscall_64+0x55/0xb0
[  102.279347][ T5948]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  102.285776][ T5948] 
[  102.285776][ T5948] -> #1 (jbd2_handle){++++}-{0:0}:
[  102.293085][ T5948]        start_this_handle+0x1e9d/0x20c0
[  102.298731][ T5948]        jbd2__journal_start+0x2bb/0x5b0
[  102.304378][ T5948]        __ext4_journal_start_sb+0x203/0x570
[  102.310387][ T5948]        ext4_do_writepages+0xf92/0x38d0
[  102.316075][ T5948]        ext4_writepages+0x1a8/0x2f0
[  102.321401][ T5948]        do_writepages+0x3a2/0x600
[  102.326553][ T5948]        __writeback_single_inode+0x153/0xee0
[  102.332642][ T5948]        writeback_sb_inodes+0x77c/0xef0
[  102.338291][ T5948]        __writeback_inodes_wb+0x111/0x240
[  102.344118][ T5948]        wb_writeback+0x464/0xba0
[  102.349197][ T5948]        wb_workfn+0xb32/0xe20
[  102.353976][ T5948]        process_scheduled_works+0xa45/0x15b0
[  102.360056][ T5948]        worker_thread+0xa55/0xfc0
[  102.365177][ T5948]        kthread+0x2fa/0x390
[  102.369778][ T5948]        ret_from_fork+0x48/0x80
[  102.374725][ T5948]        ret_from_fork_asm+0x11/0x20
[  102.380025][ T5948] 
[  102.380025][ T5948] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  102.388461][ T5948]        __lock_acquire+0x2ddb/0x7c80
[  102.393841][ T5948]        lock_acquire+0x197/0x410
[  102.398893][ T5948]        percpu_down_read+0x44/0x1a0
[  102.404207][ T5948]        ext4_writepages+0x170/0x2f0
[  102.409947][ T5948]        do_writepages+0x3a2/0x600
[  102.415074][ T5948]        __writeback_single_inode+0x153/0xee0
[  102.421154][ T5948]        writeback_single_inode+0x211/0x720
[  102.427062][ T5948]        write_inode_now+0x161/0x1e0
[  102.432374][ T5948]        iput+0x5b2/0x920
[  102.436714][ T5948]        ext4_xattr_block_set+0x273a/0x32a0
[  102.442623][ T5948]        ext4_expand_extra_isize_ea+0x10ea/0x19e0
[  102.449263][ T5948]        __ext4_expand_extra_isize+0x306/0x400
[  102.455452][ T5948]        __ext4_mark_inode_dirty+0x45d/0x6e0
[  102.461459][ T5948]        ext4_evict_inode+0x7ed/0xea0
[  102.466852][ T5948]        evict+0x486/0x870
[  102.471278][ T5948]        ext4_orphan_cleanup+0xbd4/0x1400
[  102.477014][ T5948]        ext4_fill_super+0x5de4/0x66c0
[  102.482482][ T5948]        get_tree_bdev+0x3e4/0x510
[  102.487597][ T5948]        vfs_get_tree+0x8c/0x280
[  102.492559][ T5948]        do_new_mount+0x24b/0xa40
[  102.497591][ T5948]        __se_sys_mount+0x2da/0x3c0
[  102.502798][ T5948]        do_syscall_64+0x55/0xb0
[  102.507748][ T5948]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  102.514175][ T5948] 
[  102.514175][ T5948] other info that might help us debug this:
[  102.514175][ T5948] 
[  102.524409][ T5948] Chain exists of:
[  102.524409][ T5948]   &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[  102.524409][ T5948] 
[  102.537809][ T5948]  Possible unsafe locking scenario:
[  102.537809][ T5948] 
[  102.545263][ T5948]        CPU0                    CPU1
[  102.550631][ T5948]        ----                    ----
[  102.555998][ T5948]   lock(&ei->xattr_sem);
[  102.560339][ T5948]                                lock(jbd2_handle);
[  102.566935][ T5948]                                lock(&ei->xattr_sem);
[  102.573789][ T5948]   rlock(&sbi->s_writepages_rwsem);
[  102.579177][ T5948] 
[  102.579177][ T5948]  *** DEADLOCK ***
[  102.579177][ T5948] 
[  102.587327][ T5948] 3 locks held by syz.0.17/5948:
[  102.592291][ T5948]  #0: ffff88807ca640e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510
[  102.602424][ T5948]  #1: ffff88807ca64608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0
[  102.611849][ T5948]  #2: ffff8880608cc6c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[  102.622134][ T5948] 
[  102.622134][ T5948] stack backtrace:
[  102.628048][ T5948] CPU: 1 PID: 5948 Comm: syz.0.17 Not tainted syzkaller #0
[  102.635250][ T5948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  102.645344][ T5948] Call Trace:
[  102.648645][ T5948]  <TASK>
[  102.651602][ T5948]  dump_stack_lvl+0x16c/0x230
[  102.656422][ T5948]  ? load_image+0x3b0/0x3b0
[  102.660956][ T5948]  ? show_regs_print_info+0x20/0x20
[  102.666205][ T5948]  ? print_circular_bug+0x12b/0x1a0
[  102.671449][ T5948]  check_noncircular+0x2bd/0x3c0
[  102.676407][ T5948]  ? look_up_lock_class+0x75/0x140
[  102.682400][ T5948]  ? print_deadlock_bug+0x5d0/0x5d0
[  102.687612][ T5948]  ? lockdep_lock+0xe0/0x220
[  102.692220][ T5948]  ? _find_first_zero_bit+0xd3/0x100
[  102.697544][ T5948]  __lock_acquire+0x2ddb/0x7c80
[  102.702713][ T5948]  ? mark_lock+0x94/0x320
[  102.707089][ T5948]  ? verify_lock_unused+0x140/0x140
[  102.712309][ T5948]  ? __lock_acquire+0x1334/0x7c80
[  102.717352][ T5948]  ? verify_lock_unused+0x140/0x140
[  102.722569][ T5948]  lock_acquire+0x197/0x410
[  102.727087][ T5948]  ? ext4_writepages+0x170/0x2f0
[  102.732047][ T5948]  ? __might_sleep+0xe0/0xe0
[  102.736653][ T5948]  ? mark_lock+0x94/0x320
[  102.740993][ T5948]  ? read_lock_is_recursive+0x20/0x20
[  102.746376][ T5948]  ? __lock_acquire+0x1334/0x7c80
[  102.751421][ T5948]  percpu_down_read+0x44/0x1a0
[  102.756214][ T5948]  ? ext4_writepages+0x170/0x2f0
[  102.761172][ T5948]  ext4_writepages+0x170/0x2f0
[  102.765956][ T5948]  ? ext4_read_folio+0x2f0/0x2f0
[  102.770914][ T5948]  ? __rwlock_init+0x150/0x150
[  102.775689][ T5948]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  102.781597][ T5948]  ? do_raw_spin_unlock+0x121/0x230
[  102.786816][ T5948]  ? ext4_read_folio+0x2f0/0x2f0
[  102.791799][ T5948]  do_writepages+0x3a2/0x600
[  102.796415][ T5948]  ? folio_clear_dirty_for_io+0xc30/0xc30
[  102.802153][ T5948]  ? writeback_single_inode+0x206/0x720
[  102.807720][ T5948]  ? __lock_acquire+0x7c80/0x7c80
[  102.812760][ T5948]  ? do_raw_spin_lock+0x121/0x2c0
[  102.817803][ T5948]  ? get_tree_bdev+0x3e4/0x510
[  102.822582][ T5948]  __writeback_single_inode+0x153/0xee0
[  102.828150][ T5948]  writeback_single_inode+0x211/0x720
[  102.833564][ T5948]  ? write_inode_now+0x1e0/0x1e0
[  102.838524][ T5948]  write_inode_now+0x161/0x1e0
[  102.843310][ T5948]  ? bdi_split_work_to_wbs+0x890/0x890
[  102.848788][ T5948]  ? do_raw_spin_unlock+0x121/0x230
[  102.854003][ T5948]  iput+0x5b2/0x920
[  102.857823][ T5948]  ext4_xattr_block_set+0x273a/0x32a0
[  102.863216][ T5948]  ? __might_sleep+0xe0/0xe0
[  102.867827][ T5948]  ? xattr_find_entry+0x12b/0x2f0
[  102.872871][ T5948]  ? ext4_xattr_block_find+0x350/0x350
[  102.878346][ T5948]  ? ext4_xattr_block_find+0x2d4/0x350
[  102.883820][ T5948]  ext4_expand_extra_isize_ea+0x10ea/0x19e0
[  102.889743][ T5948]  __ext4_expand_extra_isize+0x306/0x400
[  102.895395][ T5948]  __ext4_mark_inode_dirty+0x45d/0x6e0
[  102.900886][ T5948]  ext4_evict_inode+0x7ed/0xea0
[  102.905759][ T5948]  ? _raw_spin_unlock+0x28/0x40
[  102.910629][ T5948]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  102.916540][ T5948]  ? do_raw_spin_unlock+0x121/0x230
[  102.921753][ T5948]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  102.927671][ T5948]  evict+0x486/0x870
[  102.931578][ T5948]  ? __lock_acquire+0x7c80/0x7c80
[  102.936637][ T5948]  ? proc_nr_inodes+0x230/0x230
[  102.941513][ T5948]  ? do_raw_spin_unlock+0x121/0x230
[  102.946740][ T5948]  ? _raw_spin_unlock+0x28/0x40
[  102.951694][ T5948]  ? iput+0x70a/0x920
[  102.955714][ T5948]  ext4_orphan_cleanup+0xbd4/0x1400
[  102.960938][ T5948]  ? ext4_orphan_del+0xba0/0xba0
[  102.965898][ T5948]  ? ext4_register_li_request+0x183/0x940
[  102.971640][ T5948]  ? errseq_check_and_advance+0x66/0x120
[  102.977293][ T5948]  ext4_fill_super+0x5de4/0x66c0
[  102.982253][ T5948]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  102.988511][ T5948]  ? __might_sleep+0xe0/0xe0
[  102.993132][ T5948]  ? read_lock_is_recursive+0x20/0x20
[  102.998538][ T5948]  ? snprintf+0xdb/0x120
[  103.002808][ T5948]  ? vscnprintf+0x80/0x80
[  103.007176][ T5948]  ? down_write+0x162/0x1f0
[  103.011710][ T5948]  ? down_read_killable+0x340/0x340
[  103.017042][ T5948]  ? setup_bdev_super+0x56b/0x660
[  103.022132][ T5948]  get_tree_bdev+0x3e4/0x510
[  103.026761][ T5948]  ? vfs_parse_fs_string+0x160/0x160
[  103.032064][ T5948]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  103.038327][ T5948]  ? setup_bdev_super+0x660/0x660
[  103.043384][ T5948]  ? apparmor_capable+0x137/0x1a0
[  103.048459][ T5948]  ? bpf_lsm_capable+0x9/0x10
[  103.053155][ T5948]  ? security_capable+0x89/0xb0
[  103.058020][ T5948]  vfs_get_tree+0x8c/0x280
[  103.062450][ T5948]  do_new_mount+0x24b/0xa40
[  103.066967][ T5948]  __se_sys_mount+0x2da/0x3c0
[  103.071660][ T5948]  ? __x64_sys_mount+0xc0/0xc0
[  103.076433][ T5948]  ? lockdep_hardirqs_on+0x98/0x150
[  103.081645][ T5948]  ? __x64_sys_mount+0x20/0xc0
[  103.086509][ T5948]  do_syscall_64+0x55/0xb0
[  103.090940][ T5948]  ? clear_bhb_loop+0x40/0x90
[  103.095632][ T5948]  ? clear_bhb_loop+0x40/0x90
[  103.100325][ T5948]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  103.106238][ T5948] RIP: 0033:0x7fbb42b90eea
[  103.110685][ T5948] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.130306][ T5948] RSP: 002b:00007fff9331e448 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  103.138740][ T5948] RAX: ffffffffffffffda RBX: 00007fff9331e4d0 RCX: 00007fbb42b90eea
[  103.146751][ T5948] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fff9331e490
[  103.154929][ T5948] RBP: 0000200000000180 R08: 00007fff9331e4d0 R09: 0000000000800700
[  103.163008][ T5948] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  103.170996][ T5948] R13: 00007fff9331e490 R14: 000000000000046f R15: 000000000000002c
[  103.178982][ T5948]  </TASK>
[  103.192465][   T51] Bluetooth: hci0: command tx timeout
[  103.202734][ T5948] ------------[ cut here ]------------
[  103.208288][ T5948] EA inode 11 i_nlink=2
[  103.208585][ T5948] WARNING: CPU: 1 PID: 5948 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550
[  103.222961][ T5948] Modules linked in:
[  103.226887][ T5948] CPU: 1 PID: 5948 Comm: syz.0.17 Not tainted syzkaller #0
[  103.234149][ T5948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  103.244849][ T5948] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[  103.251514][ T5948] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 ff 49 2c 08
[  103.271527][ T5948] RSP: 0018:ffffc900034b71c0 EFLAGS: 00010246
[  103.277718][ T5948] RAX: 8912daf380683c00 RBX: 0000000000000002 RCX: ffff88807c955a00
[  103.285761][ T5948] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  103.293935][ T5948] RBP: ffffc900034b72b8 R08: ffffc900034b6dc7 R09: 1ffff92000696db8
[  103.302080][ T5948] R10: dffffc0000000000 R11: fffff52000696db9 R12: dffffc0000000000
[  103.310184][ T5948] R13: ffff8880608cd4a8 R14: ffff8880608cd2b0 R15: ffff8880608cd300
[  103.318254][ T5948] FS:  000055556fffa500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  103.327284][ T5948] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  103.333931][ T5948] CR2: 00007f6361b909c0 CR3: 000000007ef4f000 CR4: 00000000003506e0
[  103.341932][ T5948] Call Trace:
[  103.345267][ T5948]  <TASK>
[  103.348549][ T5948]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  103.354332][ T5948]  ? ext4_xattr_inode_iget+0x3df/0x600
[  103.359852][ T5948]  ext4_xattr_set_entry+0xcda/0x1e90
[  103.365405][ T5948]  ext4_xattr_ibody_set+0x254/0x6a0
[  103.370643][ T5948]  ext4_expand_extra_isize_ea+0x113a/0x19e0
[  103.376610][ T5948]  __ext4_expand_extra_isize+0x306/0x400
[  103.382284][ T5948]  __ext4_mark_inode_dirty+0x45d/0x6e0
[  103.387812][ T5948]  ext4_evict_inode+0x7ed/0xea0
[  103.392696][ T5948]  ? _raw_spin_unlock+0x28/0x40
[  103.397631][ T5948]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  103.403609][ T5948]  ? do_raw_spin_unlock+0x121/0x230
[  103.408844][ T5948]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  103.414800][ T5948]  evict+0x486/0x870
[  103.418726][ T5948]  ? __lock_acquire+0x7c80/0x7c80
[  103.423802][ T5948]  ? proc_nr_inodes+0x230/0x230
[  103.429010][ T5948]  ? do_raw_spin_unlock+0x121/0x230
[  103.434277][ T5948]  ? _raw_spin_unlock+0x28/0x40
[  103.439163][ T5948]  ? iput+0x70a/0x920
[  103.443205][ T5948]  ext4_orphan_cleanup+0xbd4/0x1400
[  103.448860][ T5948]  ? ext4_orphan_del+0xba0/0xba0
[  103.453940][ T5948]  ? ext4_register_li_request+0x183/0x940
[  103.459723][ T5948]  ? errseq_check_and_advance+0x66/0x120
[  103.465509][ T5948]  ext4_fill_super+0x5de4/0x66c0
[  103.470489][ T5948]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  103.476777][ T5948]  ? __might_sleep+0xe0/0xe0
[  103.481432][ T5948]  ? read_lock_is_recursive+0x20/0x20
[  103.486850][ T5948]  ? snprintf+0xdb/0x120
[  103.491118][ T5948]  ? vscnprintf+0x80/0x80
[  103.495499][ T5948]  ? down_write+0x162/0x1f0
[  103.500026][ T5948]  ? down_read_killable+0x340/0x340
[  103.505267][ T5948]  ? setup_bdev_super+0x56b/0x660
[  103.510326][ T5948]  get_tree_bdev+0x3e4/0x510
[  103.514997][ T5948]  ? vfs_parse_fs_string+0x160/0x160
[  103.520314][ T5948]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  103.526617][ T5948]  ? setup_bdev_super+0x660/0x660
[  103.531780][ T5948]  ? apparmor_capable+0x137/0x1a0
[  103.536886][ T5948]  ? bpf_lsm_capable+0x9/0x10
[  103.541633][ T5948]  ? security_capable+0x89/0xb0
[  103.546599][ T5948]  vfs_get_tree+0x8c/0x280
[  103.551485][ T5948]  do_new_mount+0x24b/0xa40
[  103.556124][ T5948]  __se_sys_mount+0x2da/0x3c0
[  103.560860][ T5948]  ? __x64_sys_mount+0xc0/0xc0
[  103.565692][ T5948]  ? lockdep_hardirqs_on+0x98/0x150
[  103.570927][ T5948]  ? __x64_sys_mount+0x20/0xc0
[  103.575748][ T5948]  do_syscall_64+0x55/0xb0
[  103.580179][ T5948]  ? clear_bhb_loop+0x40/0x90
[  103.584915][ T5948]  ? clear_bhb_loop+0x40/0x90
[  103.589628][ T5948]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  103.595571][ T5948] RIP: 0033:0x7fbb42b90eea
[  103.600017][ T5948] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.619679][ T5948] RSP: 002b:00007fff9331e448 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  103.628202][ T5948] RAX: ffffffffffffffda RBX: 00007fff9331e4d0 RCX: 00007fbb42b90eea
[  103.636242][ T5948] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fff9331e490
[  103.644267][ T5948] RBP: 0000200000000180 R08: 00007fff9331e4d0 R09: 0000000000800700
[  103.652249][ T5948] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  103.660952][ T5948] R13: 00007fff9331e490 R14: 000000000000046f R15: 000000000000002c
[  103.669241][ T5948]  </TASK>
[  103.672296][ T5948] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  103.679694][ T5948] CPU: 1 PID: 5948 Comm: syz.0.17 Not tainted syzkaller #0
[  103.686902][ T5948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  103.696989][ T5948] Call Trace:
[  103.700285][ T5948]  <TASK>
[  103.703230][ T5948]  dump_stack_lvl+0x16c/0x230
[  103.707932][ T5948]  ? show_regs_print_info+0x20/0x20
[  103.713148][ T5948]  ? load_image+0x3b0/0x3b0
[  103.717683][ T5948]  panic+0x2c0/0x710
[  103.721586][ T5948]  ? bpf_jit_dump+0xd0/0xd0
[  103.726121][ T5948]  __warn+0x2e0/0x470
[  103.730137][ T5948]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  103.736150][ T5948]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  103.742173][ T5948]  report_bug+0x2be/0x4f0
[  103.746585][ T5948]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  103.752584][ T5948]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  103.758588][ T5948]  ? ext4_xattr_inode_update_ref+0x4fd/0x550
[  103.764795][ T5948]  handle_bug+0xcf/0x120
[  103.769109][ T5948]  exc_invalid_op+0x1a/0x50
[  103.773636][ T5948]  asm_exc_invalid_op+0x1a/0x20
[  103.779069][ T5948] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[  103.785693][ T5948] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 ff 49 2c 08
[  103.805520][ T5948] RSP: 0018:ffffc900034b71c0 EFLAGS: 00010246
[  103.811617][ T5948] RAX: 8912daf380683c00 RBX: 0000000000000002 RCX: ffff88807c955a00
[  103.819611][ T5948] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  103.827607][ T5948] RBP: ffffc900034b72b8 R08: ffffc900034b6dc7 R09: 1ffff92000696db8
[  103.835593][ T5948] R10: dffffc0000000000 R11: fffff52000696db9 R12: dffffc0000000000
[  103.843621][ T5948] R13: ffff8880608cd4a8 R14: ffff8880608cd2b0 R15: ffff8880608cd300
[  103.851635][ T5948]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  103.857295][ T5948]  ? ext4_xattr_inode_iget+0x3df/0x600
[  103.862782][ T5948]  ext4_xattr_set_entry+0xcda/0x1e90
[  103.868101][ T5948]  ext4_xattr_ibody_set+0x254/0x6a0
[  103.873326][ T5948]  ext4_expand_extra_isize_ea+0x113a/0x19e0
[  103.879246][ T5948]  __ext4_expand_extra_isize+0x306/0x400
[  103.884904][ T5948]  __ext4_mark_inode_dirty+0x45d/0x6e0
[  103.890386][ T5948]  ext4_evict_inode+0x7ed/0xea0
[  103.895279][ T5948]  ? _raw_spin_unlock+0x28/0x40
[  103.900147][ T5948]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  103.906062][ T5948]  ? do_raw_spin_unlock+0x121/0x230
[  103.911282][ T5948]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  103.917733][ T5948]  evict+0x486/0x870
[  103.921656][ T5948]  ? __lock_acquire+0x7c80/0x7c80
[  103.926717][ T5948]  ? proc_nr_inodes+0x230/0x230
[  103.931627][ T5948]  ? do_raw_spin_unlock+0x121/0x230
[  103.936854][ T5948]  ? _raw_spin_unlock+0x28/0x40
[  103.941743][ T5948]  ? iput+0x70a/0x920
[  103.945746][ T5948]  ext4_orphan_cleanup+0xbd4/0x1400
[  103.950994][ T5948]  ? ext4_orphan_del+0xba0/0xba0
[  103.955953][ T5948]  ? ext4_register_li_request+0x183/0x940
[  103.961712][ T5948]  ? errseq_check_and_advance+0x66/0x120
[  103.967435][ T5948]  ext4_fill_super+0x5de4/0x66c0
[  103.972443][ T5948]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  103.978711][ T5948]  ? __might_sleep+0xe0/0xe0
[  103.983413][ T5948]  ? read_lock_is_recursive+0x20/0x20
[  103.988804][ T5948]  ? snprintf+0xdb/0x120
[  103.993080][ T5948]  ? vscnprintf+0x80/0x80
[  103.997433][ T5948]  ? down_write+0x162/0x1f0
[  104.001953][ T5948]  ? down_read_killable+0x340/0x340
[  104.007170][ T5948]  ? setup_bdev_super+0x56b/0x660
[  104.012209][ T5948]  get_tree_bdev+0x3e4/0x510
[  104.016814][ T5948]  ? vfs_parse_fs_string+0x160/0x160
[  104.022119][ T5948]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  104.028397][ T5948]  ? setup_bdev_super+0x660/0x660
[  104.033449][ T5948]  ? apparmor_capable+0x137/0x1a0
[  104.038483][ T5948]  ? bpf_lsm_capable+0x9/0x10
[  104.043177][ T5948]  ? security_capable+0x89/0xb0
[  104.048045][ T5948]  vfs_get_tree+0x8c/0x280
[  104.052476][ T5948]  do_new_mount+0x24b/0xa40
[  104.056992][ T5948]  __se_sys_mount+0x2da/0x3c0
[  104.061683][ T5948]  ? __x64_sys_mount+0xc0/0xc0
[  104.066465][ T5948]  ? lockdep_hardirqs_on+0x98/0x150
[  104.071675][ T5948]  ? __x64_sys_mount+0x20/0xc0
[  104.076453][ T5948]  do_syscall_64+0x55/0xb0
[  104.080887][ T5948]  ? clear_bhb_loop+0x40/0x90
[  104.085580][ T5948]  ? clear_bhb_loop+0x40/0x90
[  104.090270][ T5948]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  104.096176][ T5948] RIP: 0033:0x7fbb42b90eea
[  104.100628][ T5948] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.120272][ T5948] RSP: 002b:00007fff9331e448 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  104.128708][ T5948] RAX: ffffffffffffffda RBX: 00007fff9331e4d0 RCX: 00007fbb42b90eea
[  104.136694][ T5948] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fff9331e490
[  104.144692][ T5948] RBP: 0000200000000180 R08: 00007fff9331e4d0 R09: 0000000000800700
[  104.152690][ T5948] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  104.160706][ T5948] R13: 00007fff9331e490 R14: 000000000000046f R15: 000000000000002c
[  104.168703][ T5948]  </TASK>
[  104.171990][ T5948] Kernel Offset: disabled
[  104.176321][ T5948] Rebooting in 86400 seconds..