Warning: Permanently added '10.128.1.133' (ED25519) to the list of known hosts.
1970/01/01 00:00:29 parsed 1 programs
syzkaller login: [   30.678205][ T4336] cgroup: Unknown subsys name 'net'
[   30.900827][ T4336] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   31.198027][ T4336] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   38.782519][ T4360] chnl_net:caif_netlink_parms(): no params data found
[   38.799771][ T4360] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.801110][ T4360] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.802664][ T4360] device bridge_slave_0 entered promiscuous mode
[   38.804960][ T4360] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.806132][ T4360] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.807638][ T4360] device bridge_slave_1 entered promiscuous mode
[   38.814349][ T4360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.816750][ T4360] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.825706][ T4360] team0: Port device team_slave_0 added
[   38.827459][ T4360] team0: Port device team_slave_1 added
[   38.833219][ T4360] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.834378][ T4360] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.838654][ T4360] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.841591][ T4360] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.842688][ T4360] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.846665][ T4360] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.889538][ T4360] device hsr_slave_0 entered promiscuous mode
[   38.928405][ T4360] device hsr_slave_1 entered promiscuous mode
[   39.003463][ T4360] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   39.051509][ T4360] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   39.120686][ T4360] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   39.149264][ T4360] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   39.195784][ T4360] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.197114][ T4360] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.198602][ T4360] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.199850][ T4360] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.219399][ T4360] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.222957][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   39.225448][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.227107][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.229944][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   39.233906][ T4360] 8021q: adding VLAN 0 to HW filter on device team0
[   39.237013][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   39.238640][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.239823][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.244335][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   39.245985][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.247153][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.254861][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   39.256609][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   39.260293][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   39.263159][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   39.265886][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   39.268966][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   39.323386][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   39.324844][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   39.328900][ T4360] 8021q: adding VLAN 0 to HW filter on device batadv0
[   39.335676][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   39.342049][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   39.343734][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   39.345069][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   39.347276][ T4360] device veth0_vlan entered promiscuous mode
[   39.352353][ T4360] device veth1_vlan entered promiscuous mode
[   39.359754][  T253] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   39.361193][  T253] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   39.362681][  T253] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   39.365026][ T4360] device veth0_macvtap entered promiscuous mode
[   39.367433][ T4360] device veth1_macvtap entered promiscuous mode
[   39.374740][ T4360] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.376104][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   39.378030][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   39.383636][ T4360] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.384968][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   39.387595][ T4360] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.389531][ T4360] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.391133][ T4360] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.392688][ T4360] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.501671][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.503035][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.504887][  T253] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   39.518428][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.519664][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.520966][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   39.860009][    T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.183933][ T4399] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   40.185604][ T4399] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   40.186984][ T4399] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   40.189483][ T4399] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   40.190823][ T4399] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   40.192031][ T4399] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
1970/01/01 00:00:40 executed programs: 0
[   41.012372][   T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   41.013986][   T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   41.015497][   T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   41.016993][   T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   41.019012][   T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   41.020240][   T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   41.064440][ T4428] chnl_net:caif_netlink_parms(): no params data found
[   41.081159][ T4428] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.082453][ T4428] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.084066][ T4428] device bridge_slave_0 entered promiscuous mode
[   41.085967][ T4428] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.087098][ T4428] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.089422][ T4428] device bridge_slave_1 entered promiscuous mode
[   41.095724][ T4428] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   41.098583][ T4428] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   41.105508][ T4428] team0: Port device team_slave_0 added
[   41.107364][ T4428] team0: Port device team_slave_1 added
[   41.113040][ T4428] batman_adv: batadv0: Adding interface: batadv_slave_0
[   41.114201][ T4428] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.119436][ T4428] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   41.122851][ T4428] batman_adv: batadv0: Adding interface: batadv_slave_1
[   41.123976][ T4428] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.128271][ T4428] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   41.179398][ T4428] device hsr_slave_0 entered promiscuous mode
[   41.218428][ T4428] device hsr_slave_1 entered promiscuous mode
[   41.258368][ T4428] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   41.259718][ T4428] Cannot create hsr debugfs directory
[   42.779335][    T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.038794][ T4399] Bluetooth: hci0: command 0x0409 tx timeout
[   45.118646][ T4399] Bluetooth: hci0: command 0x041b tx timeout
[   45.329318][    T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.410229][    T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.415953][ T4428] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   46.522018][ T4428] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   46.579358][ T4428] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   46.662334][ T4428] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   46.781398][ T4428] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.785907][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   46.787499][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   46.790632][ T4428] 8021q: adding VLAN 0 to HW filter on device team0
[   46.793674][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   46.795382][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   46.797024][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.798289][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.832740][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   46.835311][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   46.836914][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   46.838913][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.840129][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.842690][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   46.845402][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   46.848007][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   46.850625][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   46.852294][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   46.855463][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   46.857193][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   46.860395][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   46.862188][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.864773][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   46.866237][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.869236][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   46.935871][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   46.937169][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   46.942377][ T4428] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.949116][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   46.950834][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.956947][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   46.959144][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.961340][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   46.962801][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   46.966745][    T9] device hsr_slave_0 left promiscuous mode
[   46.998814][    T9] device hsr_slave_1 left promiscuous mode
[   47.128273][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   47.129427][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[   47.134215][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   47.135509][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[   47.137038][    T9] device bridge_slave_1 left promiscuous mode
[   47.138502][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.188898][    T9] device bridge_slave_0 left promiscuous mode
[   47.190033][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.198616][ T4399] Bluetooth: hci0: command 0x040f tx timeout
[   47.308523][    T9] device veth1_macvtap left promiscuous mode
[   47.309701][    T9] device veth0_macvtap left promiscuous mode
[   47.310879][    T9] device veth1_vlan left promiscuous mode
[   47.312033][    T9] device veth0_vlan left promiscuous mode
[   49.288235][ T4399] Bluetooth: hci0: command 0x0419 tx timeout
[   49.559573][    T9] team0 (unregistering): Port device team_slave_1 removed
[   49.750113][    T9] team0 (unregistering): Port device team_slave_0 removed
[   49.939493][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   50.148901][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   51.709092][    T9] bond0 (unregistering): Released all slaves
[   52.022407][ T4428] device veth0_vlan entered promiscuous mode
[   52.025928][ T4428] device veth1_vlan entered promiscuous mode
[   52.031954][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   52.038046][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   52.039776][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   52.043776][ T4428] device veth0_macvtap entered promiscuous mode
[   52.046009][ T4428] device veth1_macvtap entered promiscuous mode
[   52.051199][ T4428] batman_adv: batadv0: Interface activated: batadv_slave_0
[   52.052473][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   52.054347][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   52.055888][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   52.057513][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   52.064342][ T4428] batman_adv: batadv0: Interface activated: batadv_slave_1
[   52.065597][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   52.067201][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   52.071155][ T4428] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.072547][ T4428] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.073928][ T4428] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.075402][ T4428] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.095562][ T4384] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   52.098723][ T4384] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   52.105081][ T4384] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   52.105465][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   52.106401][ T4384] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   52.109262][  T253] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   52.266739][ T4519] loop0: detected capacity change from 0 to 32768
[   52.284434][ T4519] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[   52.285961][ T4519] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[   52.300161][ T4519] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[   52.302733][   T24] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[   52.303829][   T24] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[   52.317995][   T24] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 14ms
[   52.320275][   T24] gfs2: fsid=syz:syz.0: jid=0: Done
[   52.321464][ T4519] gfs2: fsid=syz:syz.0: first mount done, others may mount
[   52.426767][ T4428] ------------[ cut here ]------------
[   52.427881][ T4428] WARNING: CPU: 1 PID: 4428 at include/linux/backing-dev.h:247 __folio_mark_dirty+0x8a0/0xcd8
[   52.429662][ T4428] Modules linked in:
[   52.430416][ T4428] CPU: 1 PID: 4428 Comm: syz-executor Not tainted syzkaller #0
[   52.431656][ T4428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   52.433215][ T4428] pstate: 824000c5 (Nzcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--)
[   52.434357][ T4428] pc : __folio_mark_dirty+0x8a0/0xcd8
[   52.435256][ T4428] lr : __folio_mark_dirty+0x8a0/0xcd8
[   52.436185][ T4428] sp : ffff800020f476e0
[   52.436942][ T4428] x29: ffff800020f47700 x28: 1fffff80006ca058 x27: dfff800000000000
[   52.438404][ T4428] x26: 0000000000000000 x25: ffff0000c058be90 x24: 0000000000000001
[   52.439778][ T4428] x23: 0000000000000000 x22: fffffc00036502c8 x21: 1fffe000180b17d2
[   52.441137][ T4428] x20: ffff0000f155a250 x19: fffffc00036502c0 x18: ffff800011b9bf60
[   52.442491][ T4428] x17: ffff80001835b000 x16: ffff8000082d7ed4 x15: ffff800017e3c000
[   52.443880][ T4428] x14: 0000000000000001 x13: 1fffe000180b17d2 x12: 0000000000ff0100
[   52.445211][ T4428] x11: ff0080000870a214 x10: 0000000000000000 x9 : ffff80000870a214
[   52.446568][ T4428] x8 : ffff0000ce993780 x7 : 0000000000000000 x6 : 0000000000000000
[   52.447886][ T4428] x5 : 0000000000000020 x4 : 0000000000000000 x3 : ffff800008a58ba4
[   52.449016][ T4428] x2 : ffff0000cf170060 x1 : 0000000000000000 x0 : 0000000000000000
[   52.450272][ T4428] Call trace:
[   52.450784][ T4428]  __folio_mark_dirty+0x8a0/0xcd8
[   52.451516][ T4428]  mark_buffer_dirty+0x2b8/0x5c0
[   52.452279][ T4428]  gfs2_unpin+0x120/0x8fc
[   52.452916][ T4428]  buf_lo_after_commit+0x140/0x188
[   52.453755][ T4428]  gfs2_log_flush+0xc00/0x1b20
[   52.454528][ T4428]  gfs2_kill_sb+0x5c/0xd4
[   52.455193][ T4428]  deactivate_locked_super+0xac/0x120
[   52.456027][ T4428]  deactivate_super+0xe4/0x104
[   52.456691][ T4428]  cleanup_mnt+0x390/0x418
[   52.457366][ T4428]  __cleanup_mnt+0x20/0x30
[   52.458063][ T4428]  task_work_run+0x1ec/0x278
[   52.458823][ T4428]  do_notify_resume+0x1fa0/0x2aa4
[   52.459627][ T4428]  el0_svc+0x98/0x128
[   52.460335][ T4428]  el0t_64_sync_handler+0x84/0xf0
[   52.461133][ T4428]  el0t_64_sync+0x18c/0x190
[   52.461919][ T4428] irq event stamp: 166750
[   52.462621][ T4428] hardirqs last  enabled at (166749): [<ffff8000089379ec>] folio_memcg_lock+0xe8/0x1f4
[   52.464293][ T4428] hardirqs last disabled at (166750): [<ffff800011b23a08>] _raw_spin_lock_irqsave+0xa4/0xb0
[   52.465911][ T4428] softirqs last  enabled at (166602): [<ffff800008030954>] local_bh_enable+0x10/0x34
[   52.467350][ T4428] softirqs last disabled at (166600): [<ffff800008030920>] local_bh_disable+0x10/0x34
[   52.468914][ T4428] ---[ end trace 0000000000000000 ]---
[   52.490888][ T4428] ------------[ cut here ]------------
[   52.491802][ T4428] WARNING: CPU: 1 PID: 4428 at include/linux/backing-dev.h:247 __folio_start_writeback+0x88c/0xa7c
[   52.493527][ T4428] Modules linked in:
[   52.494144][ T4428] CPU: 1 PID: 4428 Comm: syz-executor Tainted: G        W          syzkaller #0
[   52.495611][ T4428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   52.497294][ T4428] pstate: 824000c5 (Nzcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--)
[   52.498739][ T4428] pc : __folio_start_writeback+0x88c/0xa7c
[   52.499709][ T4428] lr : __folio_start_writeback+0x88c/0xa7c
[   52.500660][ T4428] sp : ffff800020f47180
[   52.501356][ T4428] x29: ffff800020f47260 x28: dfff800000000000 x27: 0000000000000000
[   52.502685][ T4428] x26: ffff7000041e8e38 x25: 0000000000000000 x24: ffff0000f155a250
[   52.504045][ T4428] x23: ffff800020f471e0 x22: ffff0000c058bce8 x21: 0000000000000001
[   52.505405][ T4428] x20: fffffc00036502c8 x19: fffffc00036502c0 x18: ffff800011b9bf60
[   52.506705][ T4428] x17: ffff80001835b000 x16: ffff8000082d7ed4 x15: 0000000000000000
[   52.507967][ T4428] x14: 0000000000000001 x13: 1fffff80006ca058 x12: 0000000000ff0100
[   52.509277][ T4428] x11: ff0080000870c720 x10: 0000000000000000 x9 : ffff80000870c720
[   52.510588][ T4428] x8 : ffff0000ce993780 x7 : ffff80000870c18c x6 : 0000000000000000
[   52.511877][ T4428] x5 : 0000000000000080 x4 : 0000000000000001 x3 : ffff80000870c1cc
[   52.513234][ T4428] x2 : 0000000000000001 x1 : 0000000000000000 x0 : 0000000000000000
[   52.514573][ T4428] Call trace:
[   52.515079][ T4428]  __folio_start_writeback+0x88c/0xa7c
[   52.515982][ T4428]  set_page_writeback+0x5c/0x7c
[   52.516786][ T4428]  gfs2_aspace_writepage+0x514/0x6dc
[   52.517694][ T4428]  __gfs2_writepage+0x70/0x184
[   52.518502][ T4428]  write_cache_pages+0x74c/0xde8
[   52.519357][ T4428]  gfs2_ail1_flush+0x7c4/0xa14
[   52.520145][ T4428]  empty_ail1_list+0x130/0x214
[   52.520964][ T4428]  gfs2_log_flush+0x12b4/0x1b20
[   52.521778][ T4428]  gfs2_kill_sb+0x5c/0xd4
[   52.522494][ T4428]  deactivate_locked_super+0xac/0x120
[   52.523404][ T4428]  deactivate_super+0xe4/0x104
[   52.524168][ T4428]  cleanup_mnt+0x390/0x418
[   52.524905][ T4428]  __cleanup_mnt+0x20/0x30
[   52.525658][ T4428]  task_work_run+0x1ec/0x278
[   52.526420][ T4428]  do_notify_resume+0x1fa0/0x2aa4
[   52.527253][ T4428]  el0_svc+0x98/0x128
[   52.527942][ T4428]  el0t_64_sync_handler+0x84/0xf0
[   52.528845][ T4428]  el0t_64_sync+0x18c/0x190
[   52.529617][ T4428] irq event stamp: 166848
[   52.530371][ T4428] hardirqs last  enabled at (166847): [<ffff8000089379ec>] folio_memcg_lock+0xe8/0x1f4
[   52.531960][ T4428] hardirqs last disabled at (166848): [<ffff800011b23a08>] _raw_spin_lock_irqsave+0xa4/0xb0
[   52.533673][ T4428] softirqs last  enabled at (166824): [<ffff8000081ac410>] handle_softirqs+0xaec/0xc60
[   52.535329][ T4428] softirqs last disabled at (166753): [<ffff800008020164>] __do_softirq+0x14/0x20
[   52.536868][ T4428] ---[ end trace 0000000000000000 ]---
[   52.538732][    C0] ------------[ cut here ]------------
[   52.539843][    C0] WARNING: CPU: 0 PID: 15 at include/linux/backing-dev.h:247 __folio_end_writeback+0x7d0/0x9cc
[   52.541562][    C0] Modules linked in:
[   52.542190][    C0] CPU: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G        W          syzkaller #0
[   52.543612][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   52.545261][    C0] pstate: 424000c5 (nZcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--)
[   52.546559][    C0] pc : __folio_end_writeback+0x7d0/0x9cc
[   52.547495][    C0] lr : __folio_end_writeback+0x7d0/0x9cc
[   52.548491][    C0] sp : ffff80001ca27970
[   52.549176][    C0] x29: ffff80001ca27990 x28: dfff800000000000 x27: ffff0000c058bce8
[   52.550438][    C0] x26: 0000000000000000 x25: 05ffd60000002052 x24: 1fffff8000668f30
[   52.551843][    C0] x23: 0000000000000001 x22: ffff0000f15582a0 x21: ffff0000f15582a8
[   52.553179][    C0] x20: 0000000000000001 x19: fffffc0003347980 x18: ffff800011b9bf60
[   52.554618][    C0] x17: 1fffe00033ea637e x16: ffff8000082d7ed4 x15: 0000000000000000
[   52.555950][    C0] x14: 0000000000000003 x13: 1ffff00003944f20 x12: 0000000000ff0100
[   52.557261][    C0] x11: ff0080000870bc98 x10: 0000000000000000 x9 : ffff80000870bc98
[   52.558593][    C0] x8 : ffff0000c09b3780 x7 : 0000000000000000 x6 : 0000000000000000
[   52.559964][    C0] x5 : 0000000000000080 x4 : 0000000000000000 x3 : 0000000000000010
[   52.561359][    C0] x2 : 0000000000000008 x1 : 0000000000000000 x0 : 0000000000000000
[   52.562776][    C0] Call trace:
[   52.563366][    C0]  __folio_end_writeback+0x7d0/0x9cc
[   52.564280][    C0]  folio_end_writeback+0x12c/0x410
[   52.565158][    C0]  end_page_writeback+0x58/0x74
[   52.566000][    C0]  end_buffer_async_write+0x32c/0x4f4
[   52.566856][    C0]  end_bio_bh_io_sync+0xb0/0x1dc
[   52.567697][    C0]  bio_endio+0x750/0x794
[   52.568404][    C0]  blk_update_request+0x49c/0xbec
[   52.569308][    C0]  blk_mq_end_request+0x54/0x88
[   52.570152][    C0]  lo_complete_rq+0x1ec/0x250
[   52.570971][    C0]  blk_done_softirq+0x11c/0x168
[   52.571813][    C0]  handle_softirqs+0x318/0xc60
[   52.572650][    C0]  run_ksoftirqd+0x7c/0x2ac
[   52.573417][    C0]  smpboot_thread_fn+0x4b0/0x964
[   52.574284][    C0]  kthread+0x250/0x2d8
[   52.575004][    C0]  ret_from_fork+0x10/0x20
[   52.575726][    C0] irq event stamp: 400547
[   52.576484][    C0] hardirqs last  enabled at (400546): [<ffff8000089379ec>] folio_memcg_lock+0xe8/0x1f4
[   52.578224][    C0] hardirqs last disabled at (400547): [<ffff800011b23a08>] _raw_spin_lock_irqsave+0xa4/0xb0
[   52.579998][    C0] softirqs last  enabled at (400536): [<ffff8000081ac410>] handle_softirqs+0xaec/0xc60
[   52.581735][    C0] softirqs last disabled at (400541): [<ffff8000081af388>] run_ksoftirqd+0x7c/0x2ac
[   52.583226][    C0] ---[ end trace 0000000000000000 ]---