[   81.775584][   T10] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.10.16' (ED25519) to the list of known hosts.
2025/10/08 00:20:37 parsed 1 programs
[   86.515324][ T5801] cgroup: Unknown subsys name 'net'
[   86.746450][ T5801] cgroup: Unknown subsys name 'cpuset'
[   86.802054][ T5801] cgroup: Unknown subsys name 'rlimit'
[   88.487850][ T5801] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   91.593745][   T61] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   91.595025][   T61] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   91.595662][   T61] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   91.596873][   T61] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   91.597548][   T61] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   94.858395][ T1166] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.858419][ T1166] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.912561][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.912582][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.927840][ T5880] chnl_net:caif_netlink_parms(): no params data found
[   97.413648][ T5880] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.415690][ T5880] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.415840][ T5880] bridge_slave_0: entered allmulticast mode
[   97.417457][ T5880] bridge_slave_0: entered promiscuous mode
[   97.435355][ T5880] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.435480][ T5880] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.435683][ T5880] bridge_slave_1: entered allmulticast mode
[   97.438247][ T5880] bridge_slave_1: entered promiscuous mode
[   97.597644][ T5880] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   97.603063][ T5880] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   97.893204][ T5880] team0: Port device team_slave_0 added
[   97.895479][ T5880] team0: Port device team_slave_1 added
[   98.043435][ T5880] batman_adv: batadv0: Adding interface: batadv_slave_0
[   98.043447][ T5880] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   98.043460][ T5880] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   98.046032][ T5880] batman_adv: batadv0: Adding interface: batadv_slave_1
[   98.046046][ T5880] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   98.046067][ T5880] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   98.307805][ T5880] hsr_slave_0: entered promiscuous mode
[   98.308866][ T5880] hsr_slave_1: entered promiscuous mode
[   98.967269][ T5880] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   98.987843][ T5880] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   99.026137][ T5880] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   99.065309][ T5880] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   99.193097][ T5880] 8021q: adding VLAN 0 to HW filter on device bond0
[   99.212975][ T5880] 8021q: adding VLAN 0 to HW filter on device team0
[   99.222969][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.223206][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.246813][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.246989][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.456692][ T5880] 8021q: adding VLAN 0 to HW filter on device batadv0
[   99.504614][ T5880] veth0_vlan: entered promiscuous mode
[   99.510164][ T5880] veth1_vlan: entered promiscuous mode
[   99.550993][ T5880] veth0_macvtap: entered promiscuous mode
[   99.558450][ T5880] veth1_macvtap: entered promiscuous mode
[   99.577659][ T5880] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.592535][ T5880] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.608546][ T1876] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.615516][ T1876] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.617139][ T1876] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.624472][ T1876] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.325965][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.575690][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/10/08 00:20:53 executed programs: 0
[  100.804341][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.840337][   T61] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  100.855769][   T61] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  100.856587][   T61] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  100.857735][   T61] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  100.858501][   T61] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  101.035642][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.265784][ T5905] chnl_net:caif_netlink_parms(): no params data found
[  101.534896][ T5905] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.535067][ T5905] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.535392][ T5905] bridge_slave_0: entered allmulticast mode
[  101.536986][ T5905] bridge_slave_0: entered promiscuous mode
[  101.540510][ T5905] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.540597][ T5905] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.540715][ T5905] bridge_slave_1: entered allmulticast mode
[  101.544193][ T5905] bridge_slave_1: entered promiscuous mode
[  101.677830][ T5905] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  101.680926][ T5905] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  101.924424][ T5905] team0: Port device team_slave_0 added
[  101.928017][ T5905] team0: Port device team_slave_1 added
[  102.114161][ T5905] batman_adv: batadv0: Adding interface: batadv_slave_0
[  102.114175][ T5905] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  102.114192][ T5905] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  102.117407][ T5905] batman_adv: batadv0: Adding interface: batadv_slave_1
[  102.117420][ T5905] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  102.117438][ T5905] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.317710][ T5905] hsr_slave_0: entered promiscuous mode
[  102.318454][ T5905] hsr_slave_1: entered promiscuous mode
[  102.319215][ T5905] debugfs: 'hsr0' already exists in 'hsr'
[  102.319297][ T5905] Cannot create hsr debugfs directory
[  102.744972][   T12] bridge_slave_1: left allmulticast mode
[  102.745062][   T12] bridge_slave_1: left promiscuous mode
[  102.746755][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.842398][   T12] bridge_slave_0: left allmulticast mode
[  102.842418][   T12] bridge_slave_0: left promiscuous mode
[  102.842638][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.893370][   T61] Bluetooth: hci0: command tx timeout
[  104.481956][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  104.562000][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  104.583489][   T12] bond0 (unregistering): Released all slaves
[  104.971298][   T61] Bluetooth: hci0: command tx timeout
[  104.986887][   T12] hsr_slave_0: left promiscuous mode
[  105.021517][   T12] hsr_slave_1: left promiscuous mode
[  105.022659][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.022762][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.073183][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.073209][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.157425][   T12] veth1_macvtap: left promiscuous mode
[  105.157584][   T12] veth0_macvtap: left promiscuous mode
[  105.157742][   T12] veth1_vlan: left promiscuous mode
[  105.157911][   T12] veth0_vlan: left promiscuous mode
[  107.033043][   T12] team0 (unregistering): Port device team_slave_1 removed
[  107.051327][   T61] Bluetooth: hci0: command tx timeout
[  107.232461][   T12] team0 (unregistering): Port device team_slave_0 removed
[  109.131388][   T61] Bluetooth: hci0: command tx timeout
[  109.786303][ T5905] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  109.815238][ T5905] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  109.866044][ T5905] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  109.923731][ T5905] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  110.150290][ T5905] 8021q: adding VLAN 0 to HW filter on device bond0
[  110.328559][ T5905] 8021q: adding VLAN 0 to HW filter on device team0
[  110.337193][ T1876] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.338128][ T1876] bridge0: port 1(bridge_slave_0) entered forwarding state
[  110.348662][ T4356] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.350780][ T4356] bridge0: port 2(bridge_slave_1) entered forwarding state
[  110.641908][ T5905] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.680569][ T5905] veth0_vlan: entered promiscuous mode
[  110.700028][ T5905] veth1_vlan: entered promiscuous mode
[  110.724925][ T5905] veth0_macvtap: entered promiscuous mode
[  110.728195][ T5905] veth1_macvtap: entered promiscuous mode
[  110.746440][ T5905] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.754143][ T5905] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.765167][ T4356] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.765884][ T4356] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.765922][ T4356] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.765955][ T4356] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.948692][ T1876] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.948712][ T1876] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.999698][ T1876] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.999718][ T1876] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/08 00:21:04 executed programs: 2
[  111.130458][ T5969] loop0: detected capacity change from 0 to 512
[  111.190627][ T5969] 
[  111.190638][ T5969] =========================[  111.190638][ T5969] ======================================================
[  111.190644][ T5969] WARNING: possible circular locking dependency detected
[  111.190658][ T5969] syzkaller #0 Not tainted
[  111.190667][ T5969] ------------------------------------------------------
[  111.190673][ T5969] syz.0.17/5969 is trying to acquire lock:
[  111.190682][ T5969] ffff888030d7cc58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[  111.190730][ T5969] 
[  111.190730][ T5969] but task is already holding lock:
[  111.190735][ T5969] ffff888041eadf78 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[  111.190774][ T5969] 
[  111.190774][ T5969] which lock already depends on the new lock.
[  111.190774][ T5969] 
[  111.190780][ T5969] 
[  111.190780][ T5969] the existing dependency chain (in reverse order) is:
[  111.190785][ T5969] 
[  111.190785][ T5969] -> #2 (&ei->xattr_sem){++++}-{4:4}:
[  111.190807][ T5969]        lock_acquire+0x120/0x360
[  111.190829][ T5969]        down_write+0x3a/0x50
[  111.190847][ T5969]        ext4_xattr_set_handle+0x165/0x1590
[  111.190870][ T5969]        ext4_initxattrs+0x9f/0x110
[  111.190887][ T5969]        security_inode_init_security+0x29d/0x3f0
[  111.190908][ T5969]        __ext4_new_inode+0x3314/0x3cb0
[  111.190929][ T5969]        ext4_create+0x22d/0x460
[  111.190946][ T5969]        path_openat+0x14fd/0x3840
[  111.190962][ T5969]        do_filp_open+0x1fa/0x410
[  111.190978][ T5969]        do_sys_openat2+0x121/0x1c0
[  111.190992][ T5969]        __x64_sys_openat+0x138/0x170
[  111.191006][ T5969]        do_syscall_64+0xfa/0xfa0
[  111.191023][ T5969]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.191045][ T5969] 
[  111.191045][ T5969] -> #1 (jbd2_handle){++++}-{0:0}:
[  111.191070][ T5969]        lock_acquire+0x120/0x360
[  111.191089][ T5969]        start_this_handle+0x1fa7/0x21c0
[  111.191109][ T5969]        jbd2__journal_start+0x2c1/0x5b0
[  111.191128][ T5969]        __ext4_journal_start_sb+0x227/0x5c0
[  111.191153][ T5969]        ext4_do_writepages+0xf6f/0x4600
[  111.191169][ T5969]        ext4_writepages+0x205/0x350
[  111.191180][ T5969]        do_writepages+0x32e/0x550
[  111.191194][ T5969]        file_write_and_wait_range+0x244/0x340
[  111.191211][ T5969]        ext4_sync_file+0x2b4/0xb20
[  111.191229][ T5969]        __x64_sys_fsync+0x191/0x1f0
[  111.191251][ T5969]        do_syscall_64+0xfa/0xfa0
[  111.191266][ T5969]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.191281][ T5969] 
[  111.191281][ T5969] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  111.191306][ T5969]        validate_chain+0xb9b/0x2140
[  111.191328][ T5969]        __lock_acquire+0xab9/0xd20
[  111.191347][ T5969]        lock_acquire+0x120/0x360
[  111.191366][ T5969]        percpu_down_read_internal+0x48/0x1d0
[  111.191389][ T5969]        ext4_writepages+0x1cc/0x350
[  111.191403][ T5969]        do_writepages+0x32e/0x550
[  111.191418][ T5969]        __writeback_single_inode+0x145/0x1000
[  111.191437][ T5969]        writeback_single_inode+0x1db/0x640
[  111.191452][ T5969]        write_inode_now+0x160/0x1d0
[  111.191466][ T5969]        iput+0x830/0xc50
[  111.191485][ T5969]        ext4_xattr_block_set+0x1fce/0x2ac0
[  111.191506][ T5969]        ext4_expand_extra_isize_ea+0x12da/0x1ea0
[  111.191529][ T5969]        __ext4_expand_extra_isize+0x30d/0x400
[  111.191551][ T5969]        __ext4_mark_inode_dirty+0x46c/0x700
[  111.191567][ T5969]        ext4_evict_inode+0x80d/0xee0
[  111.191583][ T5969]        evict+0x501/0x9c0
[  111.191598][ T5969]        ext4_orphan_cleanup+0xc20/0x1460
[  111.191614][ T5969]        ext4_fill_super+0x593b/0x61f0
[  111.191629][ T5969]        get_tree_bdev_flags+0x40e/0x4d0
[  111.191648][ T5969]        vfs_get_tree+0x92/0x2b0
[  111.191665][ T5969]        do_new_mount+0x302/0xa10
[  111.191685][ T5969]        __se_sys_mount+0x313/0x410
[  111.191705][ T5969]        do_syscall_64+0xfa/0xfa0
[  111.191721][ T5969]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.191736][ T5969] 
[  111.191736][ T5969] other info that might help us debug this:
[  111.191736][ T5969] 
[  111.191742][ T5969] Chain exists of:
[  111.191742][ T5969]   &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[  111.191742][ T5969] 
[  111.191771][ T5969]  Possible unsafe locking scenario:
[  111.191771][ T5969] 
[  111.191777][ T5969]        CPU0                    CPU1
[  111.191783][ T5969]        ----                    ----
[  111.191787][ T5969]   lock(&ei->xattr_sem);
[  111.191799][ T5969]                                lock(jbd2_handle);
[  111.191811][ T5969]                                lock(&ei->xattr_sem);
[  111.191823][ T5969]   rlock(&sbi->s_writepages_rwsem);
[  111.191835][ T5969] 
[  111.191835][ T5969]  *** DEADLOCK ***
[  111.191835][ T5969] 
[  111.191840][ T5969] 3 locks held by syz.0.17/5969:
[  111.191850][ T5969]  #0: ffff888030d7a0d0 (&type->s_umount_key#27/1){+.+.}-{4:4}, at: alloc_super+0x1ba/0x9a0
[  111.191900][ T5969]  #1: ffff888030d7a770 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2d6/0xee0
[  111.191943][ T5969]  #2: ffff888041eadf78 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[  111.191983][ T5969] 
[  111.191983][ T5969] stack backtrace:
[  111.192004][ T5969] CPU: 0 UID: 0 PID: 5969 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  111.192024][ T5969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  111.192047][ T5969] Call Trace:
[  111.192057][ T5969]  <TASK>
[  111.192065][ T5969]  dump_stack_lvl+0x189/0x250
[  111.192088][ T5969]  ? __pfx_dump_stack_lvl+0x10/0x10
[  111.192108][ T5969]  ? __pfx__printk+0x10/0x10
[  111.192129][ T5969]  ? print_lock_name+0xde/0x100
[  111.192148][ T5969]  print_circular_bug+0x2ee/0x310
[  111.192166][ T5969]  check_noncircular+0x134/0x160
[  111.192185][ T5969]  validate_chain+0xb9b/0x2140
[  111.192213][ T5969]  ? look_up_lock_class+0x74/0x170
[  111.192232][ T5969]  ? register_lock_class+0x51/0x320
[  111.192256][ T5969]  __lock_acquire+0xab9/0xd20
[  111.192278][ T5969]  ? ext4_writepages+0x1cc/0x350
[  111.192292][ T5969]  lock_acquire+0x120/0x360
[  111.192311][ T5969]  ? ext4_writepages+0x1cc/0x350
[  111.192328][ T5969]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  111.192347][ T5969]  ? lockdep_hardirqs_on+0x9c/0x150
[  111.192366][ T5969]  percpu_down_read_internal+0x48/0x1d0
[  111.192389][ T5969]  ? ext4_writepages+0x1cc/0x350
[  111.192404][ T5969]  ext4_writepages+0x1cc/0x350
[  111.192421][ T5969]  ? __pfx_ext4_writepages+0x10/0x10
[  111.192437][ T5969]  ? rt_mutex_slowunlock+0x493/0x8a0
[  111.192463][ T5969]  ? rt_spin_unlock+0x150/0x200
[  111.192485][ T5969]  ? rt_spin_unlock+0x161/0x200
[  111.192507][ T5969]  ? __pfx_ext4_writepages+0x10/0x10
[  111.192523][ T5969]  do_writepages+0x32e/0x550
[  111.192540][ T5969]  ? reacquire_held_locks+0x127/0x1d0
[  111.192564][ T5969]  ? rt_spin_lock+0x1c1/0x3e0
[  111.192587][ T5969]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  111.192613][ T5969]  __writeback_single_inode+0x145/0x1000
[  111.192637][ T5969]  writeback_single_inode+0x1db/0x640
[  111.192657][ T5969]  write_inode_now+0x160/0x1d0
[  111.192673][ T5969]  ? __pfx_write_inode_now+0x10/0x10
[  111.192702][ T5969]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  111.192726][ T5969]  ? rt_spin_unlock+0x150/0x200
[  111.192750][ T5969]  ? rt_spin_unlock+0x161/0x200
[  111.192774][ T5969]  iput+0x830/0xc50
[  111.192797][ T5969]  ext4_xattr_block_set+0x1fce/0x2ac0
[  111.192833][ T5969]  ? __pfx_ext4_xattr_block_set+0x10/0x10
[  111.192857][ T5969]  ? ext4_xattr_block_find+0x2d4/0x350
[  111.192879][ T5969]  ext4_expand_extra_isize_ea+0x12da/0x1ea0
[  111.192916][ T5969]  __ext4_expand_extra_isize+0x30d/0x400
[  111.192942][ T5969]  __ext4_mark_inode_dirty+0x46c/0x700
[  111.192964][ T5969]  ext4_evict_inode+0x80d/0xee0
[  111.192986][ T5969]  ? __pfx_ext4_evict_inode+0x10/0x10
[  111.193003][ T5969]  ? rt_spin_unlock+0x150/0x200
[  111.193027][ T5969]  ? rt_spin_unlock+0x161/0x200
[  111.193064][ T5969]  ? __pfx_ext4_evict_inode+0x10/0x10
[  111.193081][ T5969]  evict+0x501/0x9c0
[  111.193100][ T5969]  ? __pfx_evict+0x10/0x10
[  111.193115][ T5969]  ? rt_spin_unlock+0x161/0x200
[  111.193147][ T5969]  ? iput+0x946/0xc50
[  111.193170][ T5969]  ext4_orphan_cleanup+0xc20/0x1460
[  111.193192][ T5969]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  111.193212][ T5969]  ? ext4_register_li_request+0x640/0x720
[  111.193230][ T5969]  ? errseq_check_and_advance+0x66/0x120
[  111.193254][ T5969]  ext4_fill_super+0x593b/0x61f0
[  111.193276][ T5969]  ? __pfx_ext4_fill_super+0x10/0x10
[  111.193290][ T5969]  ? snprintf+0xda/0x120
[  111.193310][ T5969]  ? rt_spin_lock+0x1c1/0x3e0
[  111.193332][ T5969]  ? __pfx_snprintf+0x10/0x10
[  111.193352][ T5969]  ? set_blocksize+0x219/0x450
[  111.193373][ T5969]  ? rt_spin_unlock+0x150/0x200
[  111.193396][ T5969]  ? sb_set_blocksize+0x104/0x180
[  111.193418][ T5969]  ? setup_bdev_super+0x4c1/0x5b0
[  111.193439][ T5969]  get_tree_bdev_flags+0x40e/0x4d0
[  111.193459][ T5969]  ? __pfx_ext4_fill_super+0x10/0x10
[  111.193474][ T5969]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  111.193493][ T5969]  ? cap_capable+0x11f/0x460
[  111.193514][ T5969]  ? safesetid_security_capable+0xa9/0x1a0
[  111.193540][ T5969]  vfs_get_tree+0x92/0x2b0
[  111.193560][ T5969]  do_new_mount+0x302/0xa10
[  111.193579][ T5969]  ? safesetid_security_capable+0xa9/0x1a0
[  111.193604][ T5969]  ? __pfx_do_new_mount+0x10/0x10
[  111.193625][ T5969]  ? ns_capable+0x8a/0xf0
[  111.193650][ T5969]  __se_sys_mount+0x313/0x410
[  111.193674][ T5969]  ? __pfx___se_sys_mount+0x10/0x10
[  111.193697][ T5969]  ? do_syscall_64+0xbe/0xfa0
[  111.193715][ T5969]  ? __x64_sys_mount+0x20/0xc0
[  111.193736][ T5969]  do_syscall_64+0xfa/0xfa0
[  111.193753][ T5969]  ? lockdep_hardirqs_on+0x9c/0x150
[  111.193771][ T5969]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.193787][ T5969]  ? clear_bhb_loop+0x60/0xb0
[  111.193802][ T5969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.193817][ T5969] RIP: 0033:0x7f3d0abb066a
[  111.193838][ T5969] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.193852][ T5969] RSP: 002b:00007fffffad9a28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  111.193870][ T5969] RAX: ffffffffffffffda RBX: 00007fffffad9ab0 RCX: 00007f3d0abb066a
[  111.193884][ T5969] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fffffad9a70
[  111.193897][ T5969] RBP: 0000200000000180 R08: 00007fffffad9ab0 R09: 0000000000800700
[  111.193908][ T5969] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  111.193920][ T5969] R13: 00007fffffad9a70 R14: 0000000000000473 R15: 0000200000000680
[  111.193939][ T5969]  </TASK>
[  111.197564][ T5969] ------------[ cut here ]------------
[  111.197576][ T5969] EA inode 11 i_nlink=2
[  111.197882][ T5969] WARNING: CPU: 1 PID: 5969 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x51a/0x5b0
[  111.197925][ T5969] Modules linked in:
[  111.197941][ T5969] CPU: 1 UID: 0 PID: 5969 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  111.197961][ T5969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  111.197971][ T5969] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[  111.197999][ T5969] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 c0 98 ff 8a 4c 89 e6 e8 e7 b8 03 ff 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 a3 93 46 08 44 89 f9
[  111.198013][ T5969] RSP: 0018:ffffc90003c27100 EFLAGS: 00010246
[  111.198028][ T5969] RAX: d57999de983e4000 RBX: 0000000000000001 RCX: ffff888031ce9e00
[  111.198041][ T5969] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  111.198052][ T5969] RBP: ffffc90003c271f8 R08: 0000000000000000 R09: 0000000000000000
[  111.198064][ T5969] R10: dffffc0000000000 R11: ffffed101712487b R12: 000000000000000b
[  111.198076][ T5969] R13: ffff888055220450 R14: 1ffff1100aa44070 R15: ffff888055220380
[  111.198091][ T5969] FS:  00005555573ed500(0000) GS:ffff888126ccd000(0000) knlGS:0000000000000000
[  111.198106][ T5969] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  111.198118][ T5969] CR2: 00007fb1a728c9c0 CR3: 000000002c130000 CR4: 00000000003526f0
[  111.198134][ T5969] Call Trace:
[  111.198140][ T5969]  <TASK>
[  111.198147][ T5969]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  111.198168][ T5969]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  111.198195][ T5969]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[  111.198221][ T5969]  ext4_xattr_set_entry+0xabb/0x1e20
[  111.198252][ T5969]  ext4_xattr_ibody_set+0x254/0x6a0
[  111.198278][ T5969]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[  111.198315][ T5969]  __ext4_expand_extra_isize+0x30d/0x400
[  111.198344][ T5969]  __ext4_mark_inode_dirty+0x46c/0x700
[  111.198368][ T5969]  ext4_evict_inode+0x80d/0xee0
[  111.198391][ T5969]  ? __pfx_ext4_evict_inode+0x10/0x10
[  111.198409][ T5969]  ? rt_spin_unlock+0x150/0x200
[  111.198434][ T5969]  ? rt_spin_unlock+0x161/0x200
[  111.198457][ T5969]  ? __pfx_ext4_evict_inode+0x10/0x10
[  111.198476][ T5969]  evict+0x501/0x9c0
[  111.198495][ T5969]  ? __pfx_evict+0x10/0x10
[  111.198511][ T5969]  ? rt_spin_unlock+0x161/0x200
[  111.198535][ T5969]  ? iput+0x946/0xc50
[  111.198560][ T5969]  ext4_orphan_cleanup+0xc20/0x1460
[  111.198583][ T5969]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  111.198603][ T5969]  ? ext4_register_li_request+0x640/0x720
[  111.198620][ T5969]  ? errseq_check_and_advance+0x66/0x120
[  111.198645][ T5969]  ext4_fill_super+0x593b/0x61f0
[  111.198681][ T5969]  ? __pfx_ext4_fill_super+0x10/0x10
[  111.198695][ T5969]  ? snprintf+0xda/0x120
[  111.198717][ T5969]  ? rt_spin_lock+0x1c1/0x3e0
[  111.198741][ T5969]  ? __pfx_snprintf+0x10/0x10
[  111.198762][ T5969]  ? set_blocksize+0x219/0x450
[  111.198788][ T5969]  ? rt_spin_unlock+0x150/0x200
[  111.198813][ T5969]  ? sb_set_blocksize+0x104/0x180
[  111.198834][ T5969]  ? setup_bdev_super+0x4c1/0x5b0
[  111.198856][ T5969]  get_tree_bdev_flags+0x40e/0x4d0
[  111.198876][ T5969]  ? __pfx_ext4_fill_super+0x10/0x10
[  111.198891][ T5969]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  111.198911][ T5969]  ? cap_capable+0x11f/0x460
[  111.198934][ T5969]  ? safesetid_security_capable+0xa9/0x1a0
[  111.198961][ T5969]  vfs_get_tree+0x92/0x2b0
[  111.198982][ T5969]  do_new_mount+0x302/0xa10
[  111.199002][ T5969]  ? safesetid_security_capable+0xa9/0x1a0
[  111.199027][ T5969]  ? __pfx_do_new_mount+0x10/0x10
[  111.199048][ T5969]  ? ns_capable+0x8a/0xf0
[  111.199074][ T5969]  __se_sys_mount+0x313/0x410
[  111.199097][ T5969]  ? __pfx___se_sys_mount+0x10/0x10
[  111.199120][ T5969]  ? do_syscall_64+0xbe/0xfa0
[  111.199137][ T5969]  ? __x64_sys_mount+0x20/0xc0
[  111.199160][ T5969]  do_syscall_64+0xfa/0xfa0
[  111.199177][ T5969]  ? lockdep_hardirqs_on+0x9c/0x150
[  111.199194][ T5969]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.199212][ T5969]  ? clear_bhb_loop+0x60/0xb0
[  111.199231][ T5969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.199247][ T5969] RIP: 0033:0x7f3d0abb066a
[  111.199262][ T5969] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.199276][ T5969] RSP: 002b:00007fffffad9a28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  111.199294][ T5969] RAX: ffffffffffffffda RBX: 00007fffffad9ab0 RCX: 00007f3d0abb066a
[  111.199307][ T5969] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fffffad9a70
[  111.199319][ T5969] RBP: 0000200000000180 R08: 00007fffffad9ab0 R09: 0000000000800700
[  111.199332][ T5969] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  111.199344][ T5969] R13: 00007fffffad9a70 R14: 0000000000000473 R15: 0000200000000680
[  111.199363][ T5969]  </TASK>
[  111.199373][ T5969] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  111.199385][ T5969] CPU: 1 UID: 0 PID: 5969 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  111.199405][ T5969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  111.199416][ T5969] Call Trace:
[  111.199422][ T5969]  <TASK>
[  111.199429][ T5969]  dump_stack_lvl+0x99/0x250
[  111.199449][ T5969]  ? __asan_memcpy+0x40/0x70
[  111.199469][ T5969]  ? __pfx_dump_stack_lvl+0x10/0x10
[  111.199487][ T5969]  ? __pfx__printk+0x10/0x10
[  111.199512][ T5969]  vpanic+0x237/0x6d0
[  111.199528][ T5969]  ? __pfx_vpanic+0x10/0x10
[  111.199548][ T5969]  panic+0xb9/0xc0
[  111.199563][ T5969]  ? __pfx_panic+0x10/0x10
[  111.199584][ T5969]  __warn+0x31b/0x4b0
[  111.199600][ T5969]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  111.199625][ T5969]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  111.199650][ T5969]  report_bug+0x2be/0x4f0
[  111.199667][ T5969]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  111.199691][ T5969]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  111.199716][ T5969]  ? ext4_xattr_inode_update_ref+0x51c/0x5b0
[  111.199740][ T5969]  handle_bug+0x84/0x160
[  111.199761][ T5969]  exc_invalid_op+0x1a/0x50
[  111.199786][ T5969]  asm_exc_invalid_op+0x1a/0x20
[  111.199802][ T5969] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[  111.199828][ T5969] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 c0 98 ff 8a 4c 89 e6 e8 e7 b8 03 ff 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 a3 93 46 08 44 89 f9
[  111.199843][ T5969] RSP: 0018:ffffc90003c27100 EFLAGS: 00010246
[  111.199857][ T5969] RAX: d57999de983e4000 RBX: 0000000000000001 RCX: ffff888031ce9e00
[  111.199870][ T5969] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  111.199881][ T5969] RBP: ffffc90003c271f8 R08: 0000000000000000 R09: 0000000000000000
[  111.199892][ T5969] R10: dffffc0000000000 R11: ffffed101712487b R12: 000000000000000b
[  111.199905][ T5969] R13: ffff888055220450 R14: 1ffff1100aa44070 R15: ffff888055220380
[  111.199925][ T5969]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  111.199945][ T5969]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  111.199971][ T5969]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[  111.199997][ T5969]  ext4_xattr_set_entry+0xabb/0x1e20
[  111.200029][ T5969]  ext4_xattr_ibody_set+0x254/0x6a0
[  111.200054][ T5969]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[  111.200092][ T5969]  __ext4_expand_extra_isize+0x30d/0x400
[  111.200120][ T5969]  __ext4_mark_inode_dirty+0x46c/0x700
[  111.200144][ T5969]  ext4_evict_inode+0x80d/0xee0
[  111.200167][ T5969]  ? __pfx_ext4_evict_inode+0x10/0x10
[  111.200186][ T5969]  ? rt_spin_unlock+0x150/0x200
[  111.200210][ T5969]  ? rt_spin_unlock+0x161/0x200
[  111.200234][ T5969]  ? __pfx_ext4_evict_inode+0x10/0x10
[  111.200253][ T5969]  evict+0x501/0x9c0
[  111.200272][ T5969]  ? __pfx_evict+0x10/0x10
[  111.200289][ T5969]  ? rt_spin_unlock+0x161/0x200
[  111.200312][ T5969]  ? iput+0x946/0xc50
[  111.200337][ T5969]  ext4_orphan_cleanup+0xc20/0x1460
[  111.200360][ T5969]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  111.200380][ T5969]  ? ext4_register_li_request+0x640/0x720
[  111.200398][ T5969]  ? errseq_check_and_advance+0x66/0x120
[  111.200421][ T5969]  ext4_fill_super+0x593b/0x61f0
[  111.200446][ T5969]  ? __pfx_ext4_fill_super+0x10/0x10
[  111.200460][ T5969]  ? snprintf+0xda/0x120
[  111.200480][ T5969]  ? rt_spin_lock+0x1c1/0x3e0
[  111.200505][ T5969]  ? __pfx_snprintf+0x10/0x10
[  111.200525][ T5969]  ? set_blocksize+0x219/0x450
[  111.200547][ T5969]  ? rt_spin_unlock+0x150/0x200
[  111.200570][ T5969]  ? sb_set_blocksize+0x104/0x180
[  111.200592][ T5969]  ? setup_bdev_super+0x4c1/0x5b0
[  111.200613][ T5969]  get_tree_bdev_flags+0x40e/0x4d0
[  111.200634][ T5969]  ? __pfx_ext4_fill_super+0x10/0x10
[  111.200650][ T5969]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  111.200670][ T5969]  ? cap_capable+0x11f/0x460
[  111.200693][ T5969]  ? safesetid_security_capable+0xa9/0x1a0
[  111.200719][ T5969]  vfs_get_tree+0x92/0x2b0
[  111.200740][ T5969]  do_new_mount+0x302/0xa10
[  111.200760][ T5969]  ? safesetid_security_capable+0xa9/0x1a0
[  111.200791][ T5969]  ? __pfx_do_new_mount+0x10/0x10
[  111.200812][ T5969]  ? ns_capable+0x8a/0xf0
[  111.200837][ T5969]  __se_sys_mount+0x313/0x410
[  111.200861][ T5969]  ? __pfx___se_sys_mount+0x10/0x10
[  111.200884][ T5969]  ? do_syscall_64+0xbe/0xfa0
[  111.200902][ T5969]  ? __x64_sys_mount+0x20/0xc0
[  111.200924][ T5969]  do_syscall_64+0xfa/0xfa0
[  111.200941][ T5969]  ? lockdep_hardirqs_on+0x9c/0x150
[  111.200959][ T5969]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.200975][ T5969]  ? clear_bhb_loop+0x60/0xb0
[  111.200994][ T5969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.201011][ T5969] RIP: 0033:0x7f3d0abb066a
[  111.201024][ T5969] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.201038][ T5969] RSP: 002b:00007fffffad9a28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  111.201055][ T5969] RAX: ffffffffffffffda RBX: 00007fffffad9ab0 RCX: 00007f3d0abb066a
[  111.201068][ T5969] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fffffad9a70
[  111.201081][ T5969] RBP: 0000200000000180 R08: 00007fffffad9ab0 R09: 0000000000800700
[  111.201094][ T5969] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  111.201106][ T5969] R13: 00007fffffad9a70 R14: 0000000000000473 R15: 0000200000000680
[  111.201125][ T5969]  </TASK>
[  111.201379][ T5969] Kernel Offset: disabled