Warning: Permanently added '10.128.1.30' (ED25519) to the list of known hosts.
[ 92.044097][ T9] cfg80211: failed to load regulatory.db
2025/12/03 07:54:29 parsed 1 programs
[ 96.784642][ T5811] cgroup: Unknown subsys name 'net'
[ 97.025267][ T5811] cgroup: Unknown subsys name 'cpuset'
[ 97.080752][ T5811] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 99.012333][ T5811] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 103.496117][ T5840] chnl_net:caif_netlink_parms(): no params data found
[ 103.782634][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state
[ 103.782913][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state
[ 103.784064][ T5840] bridge_slave_0: entered allmulticast mode
[ 103.786376][ T5840] bridge_slave_0: entered promiscuous mode
[ 103.795702][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state
[ 103.795852][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state
[ 103.796026][ T5840] bridge_slave_1: entered allmulticast mode
[ 103.799722][ T5840] bridge_slave_1: entered promiscuous mode
[ 103.956082][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 103.959200][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 104.093499][ T5840] team0: Port device team_slave_0 added
[ 104.096579][ T5840] team0: Port device team_slave_1 added
[ 104.272597][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 104.272610][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 104.272627][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 104.275411][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 104.275425][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 104.275448][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 104.728045][ T5840] hsr_slave_0: entered promiscuous mode
[ 104.729062][ T5840] hsr_slave_1: entered promiscuous mode
[ 105.128090][ T5840] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 105.146510][ T5840] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 105.184260][ T5840] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 105.223757][ T5840] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 105.365059][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0
[ 105.391952][ T5840] 8021q: adding VLAN 0 to HW filter on device team0
[ 105.398513][ T2227] bridge0: port 1(bridge_slave_0) entered blocking state
[ 105.399400][ T2227] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 105.432073][ T3090] bridge0: port 2(bridge_slave_1) entered blocking state
[ 105.432222][ T3090] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 105.664232][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 105.712077][ T5840] veth0_vlan: entered promiscuous mode
[ 105.728012][ T5840] veth1_vlan: entered promiscuous mode
[ 105.780417][ T5840] veth0_macvtap: entered promiscuous mode
[ 105.784363][ T5840] veth1_macvtap: entered promiscuous mode
[ 105.813672][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 105.823319][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 105.848526][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.859389][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.869397][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.876619][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 106.534685][ T3192] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 106.793986][ T3192] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 107.552298][ T3192] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 108.153503][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.153530][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.209099][ T3090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.209120][ T3090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.764622][ T3192] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 109.202160][ T3192] bridge_slave_1: left allmulticast mode
[ 109.202351][ T3192] bridge_slave_1: left promiscuous mode
[ 109.204214][ T3192] bridge0: port 2(bridge_slave_1) entered disabled state
[ 109.323871][ T3192] bridge_slave_0: left allmulticast mode
[ 109.323902][ T3192] bridge_slave_0: left promiscuous mode
[ 109.325371][ T3192] bridge0: port 1(bridge_slave_0) entered disabled state
[ 109.496073][ T61] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 109.497770][ T61] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 109.498594][ T61] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 109.511156][ T61] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 109.512115][ T61] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 111.260650][ T3192] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 111.321469][ T3192] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 111.362630][ T3192] bond0 (unregistering): Released all slaves
[ 111.561634][ T61] Bluetooth: hci0: command tx timeout
[ 111.660201][ T3192] hsr_slave_0: left promiscuous mode
[ 111.684091][ T3192] hsr_slave_1: left promiscuous mode
[ 111.685297][ T3192] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 111.685378][ T3192] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 111.722419][ T3192] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 111.722444][ T3192] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 111.849347][ T3192] veth1_macvtap: left promiscuous mode
[ 111.849497][ T3192] veth0_macvtap: left promiscuous mode
[ 111.849686][ T3192] veth1_vlan: left promiscuous mode
[ 111.864833][ T3192] veth0_vlan: left promiscuous mode
[ 113.803422][ T3192] team0 (unregistering): Port device team_slave_1 removed
[ 113.990578][ T3192] team0 (unregistering): Port device team_slave_0 removed
2025/12/03 07:54:54 executed programs: 0
[ 118.448789][ T5123] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 118.454301][ T5123] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 118.472496][ T5123] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 118.477651][ T5123] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 118.478371][ T5123] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 118.759097][ T5982] chnl_net:caif_netlink_parms(): no params data found
[ 119.721617][ T5982] bridge0: port 1(bridge_slave_0) entered blocking state
[ 119.721761][ T5982] bridge0: port 1(bridge_slave_0) entered disabled state
[ 119.721940][ T5982] bridge_slave_0: entered allmulticast mode
[ 119.723834][ T5982] bridge_slave_0: entered promiscuous mode
[ 119.728064][ T5982] bridge0: port 2(bridge_slave_1) entered blocking state
[ 119.728386][ T5982] bridge0: port 2(bridge_slave_1) entered disabled state
[ 119.728534][ T5982] bridge_slave_1: entered allmulticast mode
[ 119.732214][ T5982] bridge_slave_1: entered promiscuous mode
[ 119.914954][ T5982] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 120.045517][ T5982] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 120.223874][ T5982] team0: Port device team_slave_0 added
[ 120.261988][ T5982] team0: Port device team_slave_1 added
[ 120.510954][ T5982] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 120.510969][ T5982] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 120.510988][ T5982] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 120.571122][ T5982] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 120.571136][ T5982] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 120.571154][ T5982] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 120.599983][ T61] Bluetooth: hci0: command tx timeout
[ 121.002518][ T5982] hsr_slave_0: entered promiscuous mode
[ 121.003979][ T5982] hsr_slave_1: entered promiscuous mode
[ 122.680858][ T61] Bluetooth: hci0: command tx timeout
[ 122.728011][ T5982] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 122.766870][ T5982] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 122.806666][ T5982] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 122.845177][ T5982] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 123.031656][ T5982] 8021q: adding VLAN 0 to HW filter on device bond0
[ 123.072472][ T5982] 8021q: adding VLAN 0 to HW filter on device team0
[ 123.088739][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 123.088962][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 123.108195][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 123.108351][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 123.466228][ T5982] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 123.536335][ T5982] veth0_vlan: entered promiscuous mode
[ 123.547136][ T5982] veth1_vlan: entered promiscuous mode
[ 123.593352][ T5982] veth0_macvtap: entered promiscuous mode
[ 123.598961][ T5982] veth1_macvtap: entered promiscuous mode
[ 123.626572][ T5982] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 123.648371][ T5982] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 123.668845][ T83] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.670753][ T83] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.670798][ T83] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.670838][ T83] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.883430][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.883453][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.953387][ T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.953409][ T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/03 07:55:00 executed programs: 2
[ 124.109087][ T6067] loop0: detected capacity change from 0 to 512
[ 124.211740][ T6067]
[ 124.211751][ T6067] ======================================================
[ 124.211770][ T6067] WARNING: possible circular locking dependency detected
[ 124.211788][ T6067] syzkaller #0 Not tainted
[ 124.211798][ T6067] ------------------------------------------------------
[ 124.211805][ T6067] syz.0.17/6067 is trying to acquire lock:
[ 124.211816][ T6067] ffff888035c9ac58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[ 124.211890][ T6067]
[ 124.211890][ T6067] but task is already holding lock:
[ 124.211896][ T6067] ffff888049f56b50 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3db/0x6e0
[ 124.211938][ T6067]
[ 124.211938][ T6067] which lock already depends on the new lock.
[ 124.211938][ T6067]
[ 124.211945][ T6067]
[ 124.211945][ T6067] the existing dependency chain (in reverse order) is:
[ 124.211952][ T6067]
[ 124.211952][ T6067] -> #2 (&ei->xattr_sem){++++}-{4:[ 124.211952][ T6067]
[ 124.211952][ T6067] -> #2 (&ei->xattr_sem){++++}-{4:4}:
[ 124.211978][ T6067] down_write+0x3a/0x50
[ 124.212000][ T6067] ext4_xattr_set_handle+0x165/0x1590
[ 124.212023][ T6067] ext4_initxattrs+0x9f/0x110
[ 124.212039][ T6067] security_inode_init_security+0x2a0/0x3f0
[ 124.212064][ T6067] __ext4_new_inode+0x32f7/0x3c90
[ 124.212088][ T6067] ext4_create+0x22d/0x460
[ 124.212105][ T6067] path_openat+0x18d1/0x3df0
[ 124.212131][ T6067] do_filp_open+0x1fa/0x410
[ 124.212157][ T6067] do_sys_openat2+0x121/0x200
[ 124.212178][ T6067] __x64_sys_openat+0x138/0x170
[ 124.212199][ T6067] do_syscall_64+0xfa/0xf80
[ 124.212217][ T6067] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.212236][ T6067]
[ 124.212236][ T6067] -> #1 (jbd2_handle){++++}-{0:0}:
[ 124.212262][ T6067] start_this_handle+0x1fa7/0x21c0
[ 124.212281][ T6067] jbd2__journal_start+0x2c1/0x5b0
[ 124.212300][ T6067] __ext4_journal_start_sb+0x203/0x580
[ 124.212324][ T6067] ext4_do_writepages+0xf6f/0x45a0
[ 124.212344][ T6067] ext4_writepages+0x205/0x350
[ 124.212390][ T6067] do_writepages+0x32e/0x550
[ 124.212415][ T6067] __writeback_single_inode+0x133/0x1240
[ 124.212434][ T6067] writeback_sb_inodes+0x8c8/0x1840
[ 124.212465][ T6067] __writeback_inodes_wb+0x111/0x240
[ 124.212483][ T6067] wb_writeback+0x43f/0xaa0
[ 124.212514][ T6067] wb_workfn+0xad7/0xee0
[ 124.212539][ T6067] process_scheduled_works+0xad1/0x1770
[ 124.212560][ T6067] worker_thread+0x8a0/0xda0
[ 124.212581][ T6067] kthread+0x711/0x8a0
[ 124.212612][ T6067] ret_from_fork+0x599/0xb30
[ 124.212630][ T6067] ret_from_fork_asm+0x1a/0x30
[ 124.212663][ T6067]
[ 124.212663][ T6067] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 124.212692][ T6067] __lock_acquire+0x15a6/0x2cf0
[ 124.212718][ T6067] lock_acquire+0x117/0x340
[ 124.212743][ T6067] percpu_down_read_internal+0x48/0x1d0
[ 124.212770][ T6067] ext4_writepages+0x1cc/0x350
[ 124.212799][ T6067] do_writepages+0x32e/0x550
[ 124.212823][ T6067] __writeback_single_inode+0x133/0x1240
[ 124.212842][ T6067] writeback_single_inode+0x488/0xd60
[ 124.212871][ T6067] write_inode_now+0x160/0x1d0
[ 124.212898][ T6067] iput+0xa77/0x1030
[ 124.212919][ T6067] ext4_xattr_block_set+0x1fce/0x2ac0
[ 124.212944][ T6067] ext4_expand_extra_isize_ea+0x12da/0x1ea0
[ 124.212970][ T6067] __ext4_expand_extra_isize+0x30d/0x400
[ 124.212998][ T6067] __ext4_mark_inode_dirty+0x45c/0x6e0
[ 124.213017][ T6067] ext4_evict_inode+0x79c/0xe60
[ 124.213034][ T6067] evict+0x5f4/0xae0
[ 124.213061][ T6067] ext4_orphan_cleanup+0xc20/0x1460
[ 124.213077][ T6067] ext4_fill_super+0x5930/0x61f0
[ 124.213110][ T6067] get_tree_bdev_flags+0x40e/0x4d0
[ 124.213140][ T6067] vfs_get_tree+0x92/0x2a0
[ 124.213188][ T6067] do_new_mount+0x302/0xa10
[ 124.213206][ T6067] __se_sys_mount+0x313/0x410
[ 124.213226][ T6067] do_syscall_64+0xfa/0xf80
[ 124.213246][ T6067] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.213266][ T6067]
[ 124.213266][ T6067] other info that might help us debug this:
[ 124.213266][ T6067]
[ 124.213274][ T6067] Chain exists of:
[ 124.213274][ T6067] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 124.213274][ T6067]
[ 124.213309][ T6067] Possible unsafe locking scenario:
[ 124.213309][ T6067]
[ 124.213316][ T6067] CPU0 CPU1
[ 124.213322][ T6067] ---- ----
[ 124.213328][ T6067] lock(&ei->xattr_sem);
[ 124.213342][ T6067] lock(jbd2_handle);
[ 124.213358][ T6067] lock(&ei->xattr_sem);
[ 124.213373][ T6067] rlock(&sbi->s_writepages_rwsem);
[ 124.213388][ T6067]
[ 124.213388][ T6067] *** DEADLOCK ***
[ 124.213388][ T6067]
[ 124.213394][ T6067] 3 locks held by syz.0.17/6067:
[ 124.213406][ T6067] #0: ffff888035c980d0 (&type->s_umount_key#26/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xab0
[ 124.213473][ T6067] #1: ffff888035c98770 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x26f/0xe60
[ 124.213522][ T6067] #2: ffff888049f56b50 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3db/0x6e0
[ 124.213572][ T6067]
[ 124.213572][ T6067] stack backtrace:
[ 124.213595][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 124.213618][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 124.213639][ T6067] Call Trace:
[ 124.213648][ T6067]
[ 124.213663][ T6067] dump_stack_lvl+0x189/0x250
[ 124.213696][ T6067] ? __pfx_dump_stack_lvl+0x10/0x10
[ 124.213722][ T6067] ? __pfx__printk+0x10/0x10
[ 124.213756][ T6067] ? print_lock_name+0xde/0x100
[ 124.213790][ T6067] print_circular_bug+0x2e2/0x300
[ 124.213827][ T6067] check_noncircular+0x12e/0x150
[ 124.213865][ T6067] __lock_acquire+0x15a6/0x2cf0
[ 124.213894][ T6067] ? __lock_acquire+0x6b6/0x2cf0
[ 124.213932][ T6067] ? ext4_writepages+0x1cc/0x350
[ 124.213963][ T6067] lock_acquire+0x117/0x340
[ 124.213990][ T6067] ? ext4_writepages+0x1cc/0x350
[ 124.214024][ T6067] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 124.214047][ T6067] ? lockdep_hardirqs_on+0x98/0x140
[ 124.214071][ T6067] percpu_down_read_internal+0x48/0x1d0
[ 124.214102][ T6067] ? ext4_writepages+0x1cc/0x350
[ 124.214134][ T6067] ext4_writepages+0x1cc/0x350
[ 124.214168][ T6067] ? __pfx_ext4_writepages+0x10/0x10
[ 124.214198][ T6067] ? rt_mutex_slowunlock+0x493/0x8a0
[ 124.214234][ T6067] ? rt_spin_unlock+0x150/0x200
[ 124.214266][ T6067] ? rt_spin_unlock+0x161/0x200
[ 124.214296][ T6067] ? __pfx_ext4_writepages+0x10/0x10
[ 124.214328][ T6067] do_writepages+0x32e/0x550
[ 124.214369][ T6067] ? rt_mutex_slowunlock+0x493/0x8a0
[ 124.214404][ T6067] __writeback_single_inode+0x133/0x1240
[ 124.214426][ T6067] ? rt_spin_unlock+0x161/0x200
[ 124.214457][ T6067] writeback_single_inode+0x488/0xd60
[ 124.214488][ T6067] write_inode_now+0x160/0x1d0
[ 124.214517][ T6067] ? __pfx_write_inode_now+0x10/0x10
[ 124.214563][ T6067] ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 124.214596][ T6067] ? rt_spin_unlock+0x161/0x200
[ 124.214628][ T6067] iput+0xa77/0x1030
[ 124.214662][ T6067] ext4_xattr_block_set+0x1fce/0x2ac0
[ 124.214705][ T6067] ? __pfx_ext4_xattr_block_set+0x10/0x10
[ 124.214733][ T6067] ? ext4_xattr_block_find+0x2d4/0x350
[ 124.214760][ T6067] ext4_expand_extra_isize_ea+0x12da/0x1ea0
[ 124.214805][ T6067] __ext4_expand_extra_isize+0x30d/0x400
[ 124.214837][ T6067] __ext4_mark_inode_dirty+0x45c/0x6e0
[ 124.214863][ T6067] ext4_evict_inode+0x79c/0xe60
[ 124.214889][ T6067] ? __pfx_ext4_evict_inode+0x10/0x10
[ 124.214907][ T6067] ? rt_spin_unlock+0x150/0x200
[ 124.214938][ T6067] ? rt_spin_unlock+0x161/0x200
[ 124.214965][ T6067] ? __pfx_ext4_evict_inode+0x10/0x10
[ 124.214986][ T6067] evict+0x5f4/0xae0
[ 124.215019][ T6067] ? __pfx_evict+0x10/0x10
[ 124.215047][ T6067] ? rt_spin_unlock+0x161/0x200
[ 124.215078][ T6067] ? iput+0xcc6/0x1030
[ 124.215104][ T6067] ext4_orphan_cleanup+0xc20/0x1460
[ 124.215130][ T6067] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 124.215151][ T6067] ? ext4_register_li_request+0x640/0x720
[ 124.215184][ T6067] ? errseq_check_and_advance+0x66/0x120
[ 124.215208][ T6067] ext4_fill_super+0x5930/0x61f0
[ 124.215248][ T6067] ? __pfx_ext4_fill_super+0x10/0x10
[ 124.215274][ T6067] ? snprintf+0xda/0x120
[ 124.215297][ T6067] ? rt_spin_lock+0x1c1/0x3e0
[ 124.215328][ T6067] ? __pfx_snprintf+0x10/0x10
[ 124.215355][ T6067] ? set_blocksize+0x219/0x450
[ 124.215382][ T6067] ? rt_spin_unlock+0x150/0x200
[ 124.215414][ T6067] ? sb_set_blocksize+0x11b/0x210
[ 124.215441][ T6067] ? setup_bdev_super+0x4c1/0x5b0
[ 124.215472][ T6067] get_tree_bdev_flags+0x40e/0x4d0
[ 124.215504][ T6067] ? __pfx_ext4_fill_super+0x10/0x10
[ 124.215533][ T6067] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 124.215564][ T6067] ? cap_capable+0x123/0x440
[ 124.215594][ T6067] ? safesetid_security_capable+0xa9/0x1a0
[ 124.215658][ T6067] vfs_get_tree+0x92/0x2a0
[ 124.215689][ T6067] do_new_mount+0x302/0xa10
[ 124.215709][ T6067] ? safesetid_security_capable+0xa9/0x1a0
[ 124.215740][ T6067] ? __pfx_do_new_mount+0x10/0x10
[ 124.215760][ T6067] ? ns_capable+0x8a/0xf0
[ 124.215789][ T6067] __se_sys_mount+0x313/0x410
[ 124.215814][ T6067] ? __pfx___se_sys_mount+0x10/0x10
[ 124.215838][ T6067] ? do_syscall_64+0xbe/0xf80
[ 124.215858][ T6067] ? __x64_sys_mount+0x20/0xc0
[ 124.215880][ T6067] do_syscall_64+0xfa/0xf80
[ 124.215901][ T6067] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.215922][ T6067] ? clear_bhb_loop+0x60/0xb0
[ 124.215945][ T6067] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.215966][ T6067] RIP: 0033:0x7ff669a30eea
[ 124.215994][ T6067] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 124.216012][ T6067] RSP: 002b:00007fffd131d118 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 124.216033][ T6067] RAX: ffffffffffffffda RBX: 00007fffd131d1a0 RCX: 00007ff669a30eea
[ 124.216048][ T6067] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fffd131d160
[ 124.216063][ T6067] RBP: 0000200000000180 R08: 00007fffd131d1a0 R09: 0000000000800718
[ 124.216077][ T6067] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 124.216091][ T6067] R13: 00007fffd131d160 R14: 000000000000046f R15: 0000200000000200
[ 124.216113][ T6067]
[ 124.302327][ T6067] ------------[ cut here ]------------
[ 124.302343][ T6067] EA inode 11 i_nlink=2
[ 124.302353][ T6067] WARNING: fs/ext4/xattr.c:1058 at 0x0, CPU#1: syz.0.17/6067
[ 124.302384][ T6067] Modules linked in:
[ 124.302404][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 124.302430][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 124.302445][ T6067] RIP: 0010:ext4_xattr_inode_update_ref+0x4dc/0x570
[ 124.302483][ T6067] Code: 74 08 4c 89 ef e8 d4 3a a0 ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 bd fe ff ff e8 90 1f 3f 08 44 89
[ 124.302503][ T6067] RSP: 0018:ffffc900042f7100 EFLAGS: 00010246
[ 124.302524][ T6067] RAX: 0000000000000000 RBX: 1ffff1100a9c33a1 RCX: dffffc0000000000
[ 124.302541][ T6067] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff8edf54b0
[ 124.302555][ T6067] RBP: ffffc900042f71f8 R08: 0000000000000000 R09: 0000000000000000
[ 124.302571][ T6067] R10: dffffc0000000000 R11: ffffed100a9c33a2 R12: ffffffff8edf54b0
[ 124.302588][ T6067] R13: 000000000000000b R14: 1ffff1100a9c3366 R15: ffff888054e19b30
[ 124.302606][ T6067] FS: 00005555800f7500(0000) GS:ffff888126e85000(0000) knlGS:0000000000000000
[ 124.302625][ T6067] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 124.302641][ T6067] CR2: 0000564aff751950 CR3: 0000000036dc4000 CR4: 00000000003526f0
[ 124.302670][ T6067] Call Trace:
[ 124.302679][ T6067]
[ 124.302688][ T6067] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 124.302726][ T6067] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 124.302761][ T6067] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 124.302797][ T6067] ext4_xattr_set_entry+0xabb/0x1e20
[ 124.302837][ T6067] ext4_xattr_ibody_set+0x254/0x6a0
[ 124.302871][ T6067] ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[ 124.302922][ T6067] __ext4_expand_extra_isize+0x30d/0x400
[ 124.302959][ T6067] __ext4_mark_inode_dirty+0x45c/0x6e0
[ 124.302988][ T6067] ext4_evict_inode+0x79c/0xe60
[ 124.303018][ T6067] ? __pfx_ext4_evict_inode+0x10/0x10
[ 124.303039][ T6067] ? rt_spin_unlock+0x150/0x200
[ 124.303074][ T6067] ? rt_spin_unlock+0x161/0x200
[ 124.303111][ T6067] ? __pfx_ext4_evict_inode+0x10/0x10
[ 124.303135][ T6067] evict+0x5f4/0xae0
[ 124.303168][ T6067] ? __pfx_evict+0x10/0x10
[ 124.303219][ T6067] ? rt_spin_unlock+0x161/0x200
[ 124.303254][ T6067] ? iput+0xcc6/0x1030
[ 124.303284][ T6067] ext4_orphan_cleanup+0xc20/0x1460
[ 124.303314][ T6067] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 124.303339][ T6067] ? ext4_register_li_request+0x640/0x720
[ 124.303379][ T6067] ? errseq_check_and_advance+0x66/0x120
[ 124.303408][ T6067] ext4_fill_super+0x5930/0x61f0
[ 124.303454][ T6067] ? __pfx_ext4_fill_super+0x10/0x10
[ 124.303488][ T6067] ? snprintf+0xda/0x120
[ 124.303518][ T6067] ? rt_spin_lock+0x1c1/0x3e0
[ 124.303554][ T6067] ? __pfx_snprintf+0x10/0x10
[ 124.303583][ T6067] ? set_blocksize+0x219/0x450
[ 124.303615][ T6067] ? rt_spin_unlock+0x150/0x200
[ 124.303656][ T6067] ? sb_set_blocksize+0x11b/0x210
[ 124.303689][ T6067] ? setup_bdev_super+0x4c1/0x5b0
[ 124.303727][ T6067] get_tree_bdev_flags+0x40e/0x4d0
[ 124.303763][ T6067] ? __pfx_ext4_fill_super+0x10/0x10
[ 124.303797][ T6067] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 124.303834][ T6067] ? cap_capable+0x123/0x440
[ 124.303869][ T6067] ? safesetid_security_capable+0xa9/0x1a0
[ 124.303909][ T6067] vfs_get_tree+0x92/0x2a0
[ 124.303945][ T6067] do_new_mount+0x302/0xa10
[ 124.303970][ T6067] ? safesetid_security_capable+0xa9/0x1a0
[ 124.304008][ T6067] ? __pfx_do_new_mount+0x10/0x10
[ 124.304033][ T6067] ? ns_capable+0x8a/0xf0
[ 124.304066][ T6067] __se_sys_mount+0x313/0x410
[ 124.304094][ T6067] ? __pfx___se_sys_mount+0x10/0x10
[ 124.304123][ T6067] ? do_syscall_64+0xbe/0xf80
[ 124.304146][ T6067] ? __x64_sys_mount+0x20/0xc0
[ 124.304172][ T6067] do_syscall_64+0xfa/0xf80
[ 124.304198][ T6067] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.304223][ T6067] ? clear_bhb_loop+0x60/0xb0
[ 124.304250][ T6067] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.304273][ T6067] RIP: 0033:0x7ff669a30eea
[ 124.304292][ T6067] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 124.304312][ T6067] RSP: 002b:00007fffd131d118 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 124.304335][ T6067] RAX: ffffffffffffffda RBX: 00007fffd131d1a0 RCX: 00007ff669a30eea
[ 124.304353][ T6067] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fffd131d160
[ 124.304370][ T6067] RBP: 0000200000000180 R08: 00007fffd131d1a0 R09: 0000000000800718
[ 124.304387][ T6067] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 124.304402][ T6067] R13: 00007fffd131d160 R14: 000000000000046f R15: 0000200000000200
[ 124.304428][ T6067]
[ 124.304446][ T6067] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 124.304464][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 124.304491][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 124.304506][ T6067] Call Trace:
[ 124.304514][ T6067]
[ 124.304523][ T6067] dump_stack_lvl+0x99/0x250
[ 124.304553][ T6067] ? __asan_memcpy+0x40/0x70
[ 124.304587][ T6067] ? __pfx_dump_stack_lvl+0x10/0x10
[ 124.304616][ T6067] ? __pfx__printk+0x10/0x10
[ 124.304668][ T6067] vpanic+0x237/0x6d0
[ 124.304698][ T6067] ? __pfx_vpanic+0x10/0x10
[ 124.304729][ T6067] ? is_bpf_text_address+0x292/0x2b0
[ 124.304757][ T6067] ? is_bpf_text_address+0x26/0x2b0
[ 124.304787][ T6067] panic+0xb9/0xc0
[ 124.304818][ T6067] ? __pfx_panic+0x10/0x10
[ 124.304857][ T6067] __warn+0x317/0x4b0
[ 124.304892][ T6067] __report_bug+0x288/0x500
[ 124.304918][ T6067] ? __pfx___report_bug+0x10/0x10
[ 124.304940][ T6067] ? __ext4_get_inode_loc+0x69a/0x1040
[ 124.304973][ T6067] ? ext4_fc_track_inode+0x133/0xb20
[ 124.305010][ T6067] ? set_normalized_timespec64+0xf0/0x1a0
[ 124.305044][ T6067] ? __ext4_journal_get_write_access+0x84/0x570
[ 124.305081][ T6067] report_bug_entry+0x16a/0x220
[ 124.305105][ T6067] ? ext4_xattr_inode_update_ref+0x4dc/0x570
[ 124.305139][ T6067] ? ext4_xattr_inode_update_ref+0x4e1/0x570
[ 124.305171][ T6067] handle_bug+0xca/0x200
[ 124.305198][ T6067] exc_invalid_op+0x1a/0x50
[ 124.305229][ T6067] asm_exc_invalid_op+0x1a/0x20
[ 124.305251][ T6067] RIP: 0010:ext4_xattr_inode_update_ref+0x4dc/0x570
[ 124.305286][ T6067] Code: 74 08 4c 89 ef e8 d4 3a a0 ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 bd fe ff ff e8 90 1f 3f 08 44 89
[ 124.305306][ T6067] RSP: 0018:ffffc900042f7100 EFLAGS: 00010246
[ 124.305325][ T6067] RAX: 0000000000000000 RBX: 1ffff1100a9c33a1 RCX: dffffc0000000000
[ 124.305343][ T6067] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff8edf54b0
[ 124.305359][ T6067] RBP: ffffc900042f71f8 R08: 0000000000000000 R09: 0000000000000000
[ 124.305387][ T6067] R10: dffffc0000000000 R11: ffffed100a9c33a2 R12: ffffffff8edf54b0
[ 124.305405][ T6067] R13: 000000000000000b R14: 1ffff1100a9c3366 R15: ffff888054e19b30
[ 124.305432][ T6067] ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 124.305467][ T6067] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 124.305503][ T6067] ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 124.305538][ T6067] ext4_xattr_set_entry+0xabb/0x1e20
[ 124.305580][ T6067] ext4_xattr_ibody_set+0x254/0x6a0
[ 124.305614][ T6067] ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[ 124.305670][ T6067] __ext4_expand_extra_isize+0x30d/0x400
[ 124.305708][ T6067] __ext4_mark_inode_dirty+0x45c/0x6e0
[ 124.305738][ T6067] ext4_evict_inode+0x79c/0xe60
[ 124.305770][ T6067] ? __pfx_ext4_evict_inode+0x10/0x10
[ 124.305791][ T6067] ? rt_spin_unlock+0x150/0x200
[ 124.305826][ T6067] ? rt_spin_unlock+0x161/0x200
[ 124.305858][ T6067] ? __pfx_ext4_evict_inode+0x10/0x10
[ 124.305882][ T6067] evict+0x5f4/0xae0
[ 124.305918][ T6067] ? __pfx_evict+0x10/0x10
[ 124.305949][ T6067] ? rt_spin_unlock+0x161/0x200
[ 124.305984][ T6067] ? iput+0xcc6/0x1030
[ 124.306013][ T6067] ext4_orphan_cleanup+0xc20/0x1460
[ 124.306042][ T6067] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 124.306065][ T6067] ? ext4_register_li_request+0x640/0x720
[ 124.306102][ T6067] ? errseq_check_and_advance+0x66/0x120
[ 124.306130][ T6067] ext4_fill_super+0x5930/0x61f0
[ 124.306176][ T6067] ? __pfx_ext4_fill_super+0x10/0x10
[ 124.306209][ T6067] ? snprintf+0xda/0x120
[ 124.306237][ T6067] ? rt_spin_lock+0x1c1/0x3e0
[ 124.306272][ T6067] ? __pfx_snprintf+0x10/0x10
[ 124.306303][ T6067] ? set_blocksize+0x219/0x450
[ 124.306332][ T6067] ? rt_spin_unlock+0x150/0x200
[ 124.306367][ T6067] ? sb_set_blocksize+0x11b/0x210
[ 124.306399][ T6067] ? setup_bdev_super+0x4c1/0x5b0
[ 124.306435][ T6067] get_tree_bdev_flags+0x40e/0x4d0
[ 124.306470][ T6067] ? __pfx_ext4_fill_super+0x10/0x10
[ 124.306504][ T6067] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 124.306539][ T6067] ? cap_capable+0x123/0x440
[ 124.306573][ T6067] ? safesetid_security_capable+0xa9/0x1a0
[ 124.306611][ T6067] vfs_get_tree+0x92/0x2a0
[ 124.306653][ T6067] do_new_mount+0x302/0xa10
[ 124.306677][ T6067] ? safesetid_security_capable+0xa9/0x1a0
[ 124.306714][ T6067] ? __pfx_do_new_mount+0x10/0x10
[ 124.306738][ T6067] ? ns_capable+0x8a/0xf0
[ 124.306769][ T6067] __se_sys_mount+0x313/0x410
[ 124.306796][ T6067] ? __pfx___se_sys_mount+0x10/0x10
[ 124.306825][ T6067] ? do_syscall_64+0xbe/0xf80
[ 124.306847][ T6067] ? __x64_sys_mount+0x20/0xc0
[ 124.306873][ T6067] do_syscall_64+0xfa/0xf80
[ 124.306897][ T6067] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.306921][ T6067] ? clear_bhb_loop+0x60/0xb0
[ 124.306947][ T6067] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.306970][ T6067] RIP: 0033:0x7ff669a30eea
[ 124.306988][ T6067] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 124.307007][ T6067] RSP: 002b:00007fffd131d118 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 124.307028][ T6067] RAX: ffffffffffffffda RBX: 00007fffd131d1a0 RCX: 00007ff669a30eea
[ 124.307046][ T6067] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fffd131d160
[ 124.307063][ T6067] RBP: 0000200000000180 R08: 00007fffd131d1a0 R09: 0000000000800718
[ 124.307079][ T6067] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[ 124.307095][ T6067] R13: 00007fffd131d160 R14: 000000000000046f R15: 0000200000000200
[ 124.307121][ T6067]
[ 124.307462][ T6067] Kernel Offset: disabled