Warning: Permanently added '10.128.1.159' (ED25519) to the list of known hosts.
2026/01/10 10:47:33 parsed 1 programs
[ 120.627547][ T5792] cgroup: Unknown subsys name 'net'
[ 120.792438][ T5792] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 122.605203][ T5792] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 124.487290][ T5804] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 124.496480][ T5804] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 124.504769][ T5804] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 124.518852][ T5804] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 124.527672][ T5804] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 124.535326][ T5804] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 126.249804][ T5839] chnl_net:caif_netlink_parms(): no params data found
[ 126.358635][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[ 126.366248][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[ 126.374192][ T5839] bridge_slave_0: entered allmulticast mode
[ 126.381589][ T5839] bridge_slave_0: entered promiscuous mode
[ 126.402920][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[ 126.410125][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[ 126.417497][ T5839] bridge_slave_1: entered allmulticast mode
[ 126.425118][ T5839] bridge_slave_1: entered promiscuous mode
[ 126.479589][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 126.493977][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 126.529957][ T5839] team0: Port device team_slave_0 added
[ 126.539092][ T5839] team0: Port device team_slave_1 added
[ 126.573968][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 126.580957][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 126.607240][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 126.633934][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 126.640961][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 126.675042][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 126.735173][ T5839] hsr_slave_0: entered promiscuous mode
[ 126.741892][ T5839] hsr_slave_1: entered promiscuous mode
[ 127.020139][ T5839] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 127.042860][ T5839] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 127.057325][ T5839] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 127.089529][ T5839] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 127.176779][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[ 127.184209][ T5839] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 127.192625][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[ 127.199952][ T5839] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 127.228374][ T2956] bridge0: port 1(bridge_slave_0) entered disabled state
[ 127.239840][ T2956] bridge0: port 2(bridge_slave_1) entered disabled state
[ 127.310544][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[ 127.344487][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[ 127.357635][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 127.364882][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 127.380101][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 127.387346][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 127.640186][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 127.698257][ T5839] veth0_vlan: entered promiscuous mode
[ 127.715719][ T5839] veth1_vlan: entered promiscuous mode
[ 127.757208][ T5839] veth0_macvtap: entered promiscuous mode
[ 127.768340][ T5839] veth1_macvtap: entered promiscuous mode
[ 127.804867][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 127.821354][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 127.838099][ T5839] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.849016][ T5839] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.857954][ T5839] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.866923][ T5839] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.044016][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 129.357923][ T2918] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.376060][ T2918] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.418551][ T2956] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.428342][ T2956] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/01/10 10:47:45 executed programs: 0
[ 130.548813][ T5804] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 130.557182][ T5804] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 130.567130][ T5804] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 130.577141][ T5804] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 130.586300][ T5804] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 130.594200][ T5804] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 130.629062][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 130.800091][ T5898] chnl_net:caif_netlink_parms(): no params data found
[ 130.875264][ T5898] bridge0: port 1(bridge_slave_0) entered blocking state
[ 130.882482][ T5898] bridge0: port 1(bridge_slave_0) entered disabled state
[ 130.890337][ T5898] bridge_slave_0: entered allmulticast mode
[ 130.899005][ T5898] bridge_slave_0: entered promiscuous mode
[ 130.908015][ T5898] bridge0: port 2(bridge_slave_1) entered blocking state
[ 130.915263][ T5898] bridge0: port 2(bridge_slave_1) entered disabled state
[ 130.922590][ T5898] bridge_slave_1: entered allmulticast mode
[ 130.930013][ T5898] bridge_slave_1: entered promiscuous mode
[ 130.965985][ T5898] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 130.979014][ T5898] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 131.020211][ T5898] team0: Port device team_slave_0 added
[ 131.028610][ T5898] team0: Port device team_slave_1 added
[ 131.059281][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 131.066781][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 131.093075][ T5898] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 131.107409][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 131.114492][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 131.140679][ T5898] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 131.187408][ T5898] hsr_slave_0: entered promiscuous mode
[ 131.194189][ T5898] hsr_slave_1: entered promiscuous mode
[ 131.200676][ T5898] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 131.209924][ T5898] Cannot create hsr debugfs directory
[ 132.620088][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 132.664062][ T5804] Bluetooth: hci0: command tx timeout
[ 132.694239][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 133.548916][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.555719][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 133.592299][ T12] hsr_slave_0: left promiscuous mode
[ 133.601277][ T12] hsr_slave_1: left promiscuous mode
[ 133.607861][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 133.616150][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 133.626849][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 133.636658][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 133.647068][ T12] bridge_slave_1: left allmulticast mode
[ 133.653080][ T12] bridge_slave_1: left promiscuous mode
[ 133.660273][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 133.676604][ T12] bridge_slave_0: left allmulticast mode
[ 133.682347][ T12] bridge_slave_0: left promiscuous mode
[ 133.688728][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 133.725690][ T12] veth1_macvtap: left promiscuous mode
[ 133.731797][ T12] veth0_macvtap: left promiscuous mode
[ 133.738280][ T12] veth1_vlan: left promiscuous mode
[ 133.744076][ T12] veth0_vlan: left promiscuous mode
[ 134.305417][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 134.346687][ T12] team0 (unregistering): Port device team_slave_0 removed
[ 134.385630][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 134.428593][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 134.752742][ T5804] Bluetooth: hci0: command tx timeout
[ 134.829842][ T12] bond0 (unregistering): Released all slaves
[ 134.909108][ T5898] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 134.921045][ T5898] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 134.931957][ T5898] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 134.954781][ T5898] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 135.077333][ T5898] 8021q: adding VLAN 0 to HW filter on device bond0
[ 135.122297][ T5898] 8021q: adding VLAN 0 to HW filter on device team0
[ 135.138071][ T2918] bridge0: port 1(bridge_slave_0) entered blocking state
[ 135.145325][ T2918] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 135.161511][ T56] bridge0: port 2(bridge_slave_1) entered blocking state
[ 135.168723][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 135.495987][ T5898] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 135.540567][ T5898] veth0_vlan: entered promiscuous mode
[ 135.556124][ T5898] veth1_vlan: entered promiscuous mode
[ 135.590349][ T5898] veth0_macvtap: entered promiscuous mode
[ 135.601033][ T5898] veth1_macvtap: entered promiscuous mode
[ 135.622544][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 135.661998][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 135.677384][ T5898] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 135.691810][ T5898] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 135.701502][ T5898] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 135.711403][ T5898] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 135.872497][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 135.887802][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 135.917421][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 135.932877][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 136.004871][ T5944] syz.0.17[5944]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 136.036087][ T5944] loop0: detected capacity change from 0 to 512
[ 136.071824][ T5944]
[ 136.074239][ T5944] ======================================================
[ 136.081283][ T5944] WARNING: possible circular locking dependency detected
[ 136.088345][ T5944] syzkaller #0 Not tainted
[ 136.092789][ T5944] ------------------------------------------------------
[ 136.099844][ T5944] syz.0.17/5944 is trying to acquire lock:
[ 136.105698][ T5944] ffff88802c0aebd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0
[ 136.115816][ T5944]
[ 136.115816][ T5944] but task is already holding lock:
[ 136.123210][ T5944] ffff8880746900c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 136.133101][ T5944]
[ 136.133101][ T5944] which lock already depends on the new lock.
[ 136.133101][ T5944]
[ 136.143546][ T5944]
[ 136.143546][ T5944] the existing dependency chain (in reverse order) is:
[ 136.152596][ T5944]
[ 136.152596][ T5944] -> #2 (&ei->xattr_sem){++++}-{3:3}:
[ 136.160213][ T5944] down_read+0x46/0x2e0
[ 136.164938][ T5944] ext4_setattr+0x86b/0x1c90
[ 136.170079][ T5944] notify_change+0xb0d/0xe10
[ 136.175218][ T5944] chown_common+0x3f9/0x5a0
[ 136.180271][ T5944] do_fchownat+0x168/0x270
[ 136.185226][ T5944] __x64_sys_chown+0x82/0x90
[ 136.190348][ T5944] do_syscall_64+0x55/0xb0
[ 136.195302][ T5944] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 136.201741][ T5944]
[ 136.201741][ T5944] -> #1 (jbd2_handle){++++}-{0:0}:
[ 136.209061][ T5944] start_this_handle+0x1e9d/0x20c0
[ 136.214740][ T5944] jbd2__journal_start+0x2bb/0x5b0
[ 136.220390][ T5944] __ext4_journal_start_sb+0x203/0x570
[ 136.226403][ T5944] ext4_do_writepages+0xf92/0x38d0
[ 136.232064][ T5944] ext4_writepages+0x1a8/0x2f0
[ 136.237371][ T5944] do_writepages+0x3a2/0x600
[ 136.242500][ T5944] __writeback_single_inode+0x153/0xee0
[ 136.248592][ T5944] writeback_sb_inodes+0x77c/0xef0
[ 136.254246][ T5944] __writeback_inodes_wb+0x111/0x240
[ 136.260072][ T5944] wb_writeback+0x464/0xba0
[ 136.265124][ T5944] wb_workfn+0xabc/0xe20
[ 136.269910][ T5944] process_scheduled_works+0xa45/0x15b0
[ 136.276003][ T5944] worker_thread+0xa55/0xfc0
[ 136.281156][ T5944] kthread+0x2fa/0x390
[ 136.285763][ T5944] ret_from_fork+0x48/0x80
[ 136.290723][ T5944] ret_from_fork_asm+0x11/0x20
[ 136.296031][ T5944]
[ 136.296031][ T5944] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 136.304487][ T5944] __lock_acquire+0x2ddb/0x7c80
[ 136.309879][ T5944] lock_acquire+0x197/0x410
[ 136.314953][ T5944] percpu_down_read+0x44/0x1a0
[ 136.320260][ T5944] ext4_writepages+0x170/0x2f0
[ 136.325573][ T5944] do_writepages+0x3a2/0x600
[ 136.330714][ T5944] __writeback_single_inode+0x153/0xee0
[ 136.336806][ T5944] writeback_single_inode+0x211/0x720
[ 136.342726][ T5944] write_inode_now+0x161/0x1e0
[ 136.348033][ T5944] iput+0x5b2/0x920
[ 136.352376][ T5944] ext4_xattr_block_set+0x273a/0x32a0
[ 136.358315][ T5944] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 136.364756][ T5944] __ext4_expand_extra_isize+0x306/0x400
[ 136.370932][ T5944] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 136.376934][ T5944] ext4_evict_inode+0x7ed/0xea0
[ 136.382322][ T5944] evict+0x486/0x870
[ 136.386753][ T5944] ext4_orphan_cleanup+0xbd4/0x1400
[ 136.392497][ T5944] ext4_fill_super+0x5de4/0x66c0
[ 136.397971][ T5944] get_tree_bdev+0x3e4/0x510
[ 136.403114][ T5944] vfs_get_tree+0x8c/0x280
[ 136.408085][ T5944] do_new_mount+0x24b/0xa40
[ 136.413123][ T5944] __se_sys_mount+0x2da/0x3c0
[ 136.418332][ T5944] do_syscall_64+0x55/0xb0
[ 136.423287][ T5944] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 136.429727][ T5944]
[ 136.429727][ T5944] other info that might help us debug this:
[ 136.429727][ T5944]
[ 136.439976][ T5944] Chain exists of:
[ 136.439976][ T5944] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[ 136.439976][ T5944]
[ 136.453387][ T5944] Possible unsafe locking scenario:
[ 136.453387][ T5944]
[ 136.460846][ T5944] CPU0 CPU1
[ 136.466221][ T5944] ---- ----
[ 136.471599][ T5944] lock(&ei->xattr_sem);
[ 136.475942][ T5944] lock(jbd2_handle);
[ 136.482558][ T5944] lock(&ei->xattr_sem);
[ 136.489429][ T5944] rlock(&sbi->s_writepages_rwsem);
[ 136.494734][ T5944]
[ 136.494734][ T5944] *** DEADLOCK ***
[ 136.494734][ T5944]
[ 136.502889][ T5944] 3 locks held by syz.0.17/5944:
[ 136.507833][ T5944] #0: ffff88802ce020e0 (&type->s_umount_key#31){++++}-{3:3}, at: get_tree_bdev+0x344/0x510
[ 136.517962][ T5944] #1: ffff88802ce02608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0
[ 136.527407][ T5944] #2: ffff8880746900c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[ 136.537729][ T5944]
[ 136.537729][ T5944] stack backtrace:
[ 136.543652][ T5944] CPU: 1 PID: 5944 Comm: syz.0.17 Not tainted syzkaller #0
[ 136.550872][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 136.560991][ T5944] Call Trace:
[ 136.564293][ T5944]
[ 136.567264][ T5944] dump_stack_lvl+0x16c/0x230
[ 136.571976][ T5944] ? load_image+0x3b0/0x3b0
[ 136.576510][ T5944] ? show_regs_print_info+0x20/0x20
[ 136.581741][ T5944] ? print_circular_bug+0x12b/0x1a0
[ 136.586967][ T5944] check_noncircular+0x2bd/0x3c0
[ 136.591931][ T5944] ? look_up_lock_class+0x75/0x140
[ 136.597066][ T5944] ? print_deadlock_bug+0x5d0/0x5d0
[ 136.602293][ T5944] ? lockdep_lock+0xe0/0x220
[ 136.606910][ T5944] ? _find_first_zero_bit+0xd3/0x100
[ 136.612228][ T5944] __lock_acquire+0x2ddb/0x7c80
[ 136.617228][ T5944] ? mark_lock+0x94/0x320
[ 136.621583][ T5944] ? verify_lock_unused+0x140/0x140
[ 136.626828][ T5944] ? __lock_acquire+0x1334/0x7c80
[ 136.631880][ T5944] ? verify_lock_unused+0x140/0x140
[ 136.637112][ T5944] lock_acquire+0x197/0x410
[ 136.641637][ T5944] ? ext4_writepages+0x170/0x2f0
[ 136.646613][ T5944] ? __might_sleep+0xe0/0xe0
[ 136.651231][ T5944] ? mark_lock+0x94/0x320
[ 136.655589][ T5944] ? read_lock_is_recursive+0x20/0x20
[ 136.660984][ T5944] ? __lock_acquire+0x1334/0x7c80
[ 136.666038][ T5944] percpu_down_read+0x44/0x1a0
[ 136.670830][ T5944] ? ext4_writepages+0x170/0x2f0
[ 136.675792][ T5944] ext4_writepages+0x170/0x2f0
[ 136.680581][ T5944] ? ext4_read_folio+0x2f0/0x2f0
[ 136.685556][ T5944] ? __rwlock_init+0x150/0x150
[ 136.690337][ T5944] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 136.696252][ T5944] ? do_raw_spin_unlock+0x121/0x230
[ 136.701475][ T5944] ? ext4_read_folio+0x2f0/0x2f0
[ 136.706454][ T5944] do_writepages+0x3a2/0x600
[ 136.711079][ T5944] ? folio_clear_dirty_for_io+0xc30/0xc30
[ 136.716829][ T5944] ? writeback_single_inode+0x206/0x720
[ 136.722399][ T5944] ? __lock_acquire+0x7c80/0x7c80
[ 136.727448][ T5944] ? do_raw_spin_lock+0x121/0x2c0
[ 136.732514][ T5944] ? get_tree_bdev+0x3e4/0x510
[ 136.737304][ T5944] __writeback_single_inode+0x153/0xee0
[ 136.742887][ T5944] writeback_single_inode+0x211/0x720
[ 136.748291][ T5944] ? write_inode_now+0x1e0/0x1e0
[ 136.753263][ T5944] write_inode_now+0x161/0x1e0
[ 136.758086][ T5944] ? bdi_split_work_to_wbs+0x890/0x890
[ 136.763573][ T5944] ? do_raw_spin_unlock+0x121/0x230
[ 136.768792][ T5944] iput+0x5b2/0x920
[ 136.772621][ T5944] ext4_xattr_block_set+0x273a/0x32a0
[ 136.778022][ T5944] ? __might_sleep+0xe0/0xe0
[ 136.782643][ T5944] ? xattr_find_entry+0x12b/0x2f0
[ 136.787702][ T5944] ? ext4_xattr_block_find+0x350/0x350
[ 136.793205][ T5944] ? ext4_xattr_block_find+0x2d4/0x350
[ 136.798694][ T5944] ext4_expand_extra_isize_ea+0x10ea/0x19e0
[ 136.804625][ T5944] __ext4_expand_extra_isize+0x306/0x400
[ 136.810291][ T5944] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 136.815783][ T5944] ext4_evict_inode+0x7ed/0xea0
[ 136.820666][ T5944] ? _raw_spin_unlock+0x28/0x40
[ 136.825554][ T5944] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 136.831471][ T5944] ? do_raw_spin_unlock+0x121/0x230
[ 136.836698][ T5944] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 136.842648][ T5944] evict+0x486/0x870
[ 136.846579][ T5944] ? __lock_acquire+0x7c80/0x7c80
[ 136.851636][ T5944] ? proc_nr_inodes+0x230/0x230
[ 136.856522][ T5944] ? do_raw_spin_unlock+0x121/0x230
[ 136.861781][ T5944] ? _raw_spin_unlock+0x28/0x40
[ 136.866661][ T5944] ? iput+0x70a/0x920
[ 136.870690][ T5944] ext4_orphan_cleanup+0xbd4/0x1400
[ 136.875955][ T5944] ? ext4_orphan_del+0xba0/0xba0
[ 136.880948][ T5944] ? ext4_register_li_request+0x183/0x940
[ 136.886697][ T5944] ? errseq_check_and_advance+0x66/0x120
[ 136.892445][ T5944] ext4_fill_super+0x5de4/0x66c0
[ 136.897420][ T5944] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 136.903689][ T5944] ? __might_sleep+0xe0/0xe0
[ 136.908396][ T5944] ? read_lock_is_recursive+0x20/0x20
[ 136.913793][ T5944] ? snprintf+0xdb/0x120
[ 136.918267][ T5944] ? vscnprintf+0x80/0x80
[ 136.922630][ T5944] ? down_write+0x162/0x1f0
[ 136.927163][ T5944] ? down_read_killable+0x340/0x340
[ 136.932480][ T5944] ? setup_bdev_super+0x56b/0x660
[ 136.937531][ T5944] get_tree_bdev+0x3e4/0x510
[ 136.942235][ T5944] ? vfs_parse_fs_string+0x160/0x160
[ 136.947565][ T5944] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 136.953866][ T5944] ? setup_bdev_super+0x660/0x660
[ 136.958913][ T5944] ? apparmor_capable+0x137/0x1a0
[ 136.963966][ T5944] ? bpf_lsm_capable+0x9/0x10
[ 136.968684][ T5944] ? security_capable+0x89/0xb0
[ 136.973568][ T5944] vfs_get_tree+0x8c/0x280
[ 136.978013][ T5944] do_new_mount+0x24b/0xa40
[ 136.982542][ T5944] __se_sys_mount+0x2da/0x3c0
[ 136.987329][ T5944] ? __x64_sys_mount+0xc0/0xc0
[ 136.992126][ T5944] ? lockdep_hardirqs_on+0x98/0x150
[ 136.997346][ T5944] ? __x64_sys_mount+0x20/0xc0
[ 137.002132][ T5944] do_syscall_64+0x55/0xb0
[ 137.006572][ T5944] ? clear_bhb_loop+0x40/0x90
[ 137.011270][ T5944] ? clear_bhb_loop+0x40/0x90
[ 137.015970][ T5944] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 137.021891][ T5944] RIP: 0033:0x7f6bd9390eea
[ 137.026348][ T5944] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 137.046076][ T5944] RSP: 002b:00007ffecc057438 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 137.054518][ T5944] RAX: ffffffffffffffda RBX: 00007ffecc0574c0 RCX: 00007f6bd9390eea
[ 137.062517][ T5944] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffecc057480
[ 137.070523][ T5944] RBP: 0000200000000180 R08: 00007ffecc0574c0 R09: 0000000000800700
[ 137.078516][ T5944] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 137.086593][ T5944] R13: 00007ffecc057480 R14: 000000000000046f R15: 000000000000002c
[ 137.094602][ T5944]
[ 137.109359][ T5944] ------------[ cut here ]------------
[ 137.115319][ T5944] EA inode 11 i_nlink=2
[ 137.118961][ T5944] WARNING: CPU: 0 PID: 5944 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550
[ 137.121618][ T5804] Bluetooth: hci0: command tx timeout
[ 137.123666][ T5944] Modules linked in:
[ 137.143861][ T5944] CPU: 0 PID: 5944 Comm: syz.0.17 Not tainted syzkaller #0
[ 137.151119][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 137.161915][ T5944] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[ 137.168960][ T5944] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08
[ 137.189023][ T5944] RSP: 0018:ffffc900048a71c0 EFLAGS: 00010246
[ 137.195607][ T5944] RAX: ea38cc2ca5798500 RBX: 0000000000000002 RCX: ffff888079719e00
[ 137.204157][ T5944] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 137.212177][ T5944] RBP: ffffc900048a72b8 R08: ffffc900048a6dc7 R09: 1ffff92000914db8
[ 137.220691][ T5944] R10: dffffc0000000000 R11: fffff52000914db9 R12: dffffc0000000000
[ 137.229179][ T5944] R13: ffff88806e1636a8 R14: ffff88806e1634b0 R15: ffff88806e163500
[ 137.237586][ T5944] FS: 000055558c265500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 137.246956][ T5944] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 137.254613][ T5944] CR2: 00007fa7e534c000 CR3: 0000000076daa000 CR4: 00000000003506f0
[ 137.262644][ T5944] Call Trace:
[ 137.266419][ T5944]
[ 137.269395][ T5944] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 137.275425][ T5944] ? ext4_xattr_inode_iget+0x3df/0x600
[ 137.280962][ T5944] ext4_xattr_set_entry+0xcda/0x1e90
[ 137.286701][ T5944] ext4_xattr_ibody_set+0x254/0x6a0
[ 137.291968][ T5944] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 137.298289][ T5944] __ext4_expand_extra_isize+0x306/0x400
[ 137.304344][ T5944] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 137.309848][ T5944] ext4_evict_inode+0x7ed/0xea0
[ 137.315180][ T5944] ? _raw_spin_unlock+0x28/0x40
[ 137.320082][ T5944] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 137.326405][ T5944] ? do_raw_spin_unlock+0x121/0x230
[ 137.331635][ T5944] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 137.337971][ T5944] evict+0x486/0x870
[ 137.341911][ T5944] ? __lock_acquire+0x7c80/0x7c80
[ 137.347970][ T5944] ? proc_nr_inodes+0x230/0x230
[ 137.353411][ T5944] ? do_raw_spin_unlock+0x121/0x230
[ 137.358710][ T5944] ? _raw_spin_unlock+0x28/0x40
[ 137.364157][ T5944] ? iput+0x70a/0x920
[ 137.368449][ T5944] ext4_orphan_cleanup+0xbd4/0x1400
[ 137.374044][ T5944] ? ext4_orphan_del+0xba0/0xba0
[ 137.379036][ T5944] ? ext4_register_li_request+0x183/0x940
[ 137.385098][ T5944] ? errseq_check_and_advance+0x66/0x120
[ 137.390772][ T5944] ext4_fill_super+0x5de4/0x66c0
[ 137.396083][ T5944] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 137.402343][ T5944] ? __might_sleep+0xe0/0xe0
[ 137.407317][ T5944] ? read_lock_is_recursive+0x20/0x20
[ 137.413120][ T5944] ? snprintf+0xdb/0x120
[ 137.417406][ T5944] ? vscnprintf+0x80/0x80
[ 137.421752][ T5944] ? down_write+0x162/0x1f0
[ 137.426687][ T5944] ? down_read_killable+0x340/0x340
[ 137.431903][ T5944] ? setup_bdev_super+0x56b/0x660
[ 137.437358][ T5944] get_tree_bdev+0x3e4/0x510
[ 137.442168][ T5944] ? vfs_parse_fs_string+0x160/0x160
[ 137.447629][ T5944] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 137.454451][ T5944] ? setup_bdev_super+0x660/0x660
[ 137.459497][ T5944] ? apparmor_capable+0x137/0x1a0
[ 137.464679][ T5944] ? bpf_lsm_capable+0x9/0x10
[ 137.469403][ T5944] ? security_capable+0x89/0xb0
[ 137.474339][ T5944] vfs_get_tree+0x8c/0x280
[ 137.478785][ T5944] do_new_mount+0x24b/0xa40
[ 137.483363][ T5944] __se_sys_mount+0x2da/0x3c0
[ 137.488082][ T5944] ? __x64_sys_mount+0xc0/0xc0
[ 137.492944][ T5944] ? lockdep_hardirqs_on+0x98/0x150
[ 137.498197][ T5944] ? __x64_sys_mount+0x20/0xc0
[ 137.503044][ T5944] do_syscall_64+0x55/0xb0
[ 137.507488][ T5944] ? clear_bhb_loop+0x40/0x90
[ 137.512174][ T5944] ? clear_bhb_loop+0x40/0x90
[ 137.516938][ T5944] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 137.522909][ T5944] RIP: 0033:0x7f6bd9390eea
[ 137.527352][ T5944] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 137.547041][ T5944] RSP: 002b:00007ffecc057438 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 137.556124][ T5944] RAX: ffffffffffffffda RBX: 00007ffecc0574c0 RCX: 00007f6bd9390eea
[ 137.564307][ T5944] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffecc057480
[ 137.572319][ T5944] RBP: 0000200000000180 R08: 00007ffecc0574c0 R09: 0000000000800700
[ 137.580380][ T5944] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 137.588433][ T5944] R13: 00007ffecc057480 R14: 000000000000046f R15: 000000000000002c
[ 137.596487][ T5944]
[ 137.599562][ T5944] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 137.606869][ T5944] CPU: 0 PID: 5944 Comm: syz.0.17 Not tainted syzkaller #0
[ 137.614071][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 137.624128][ T5944] Call Trace:
[ 137.627435][ T5944]
[ 137.630368][ T5944] dump_stack_lvl+0x16c/0x230
[ 137.635068][ T5944] ? show_regs_print_info+0x20/0x20
[ 137.640280][ T5944] ? load_image+0x3b0/0x3b0
[ 137.644798][ T5944] panic+0x2c0/0x710
[ 137.648705][ T5944] ? bpf_jit_dump+0xd0/0xd0
[ 137.653263][ T5944] __warn+0x2e0/0x470
[ 137.657281][ T5944] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 137.663300][ T5944] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 137.669310][ T5944] report_bug+0x2be/0x4f0
[ 137.673694][ T5944] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 137.679705][ T5944] ? ext4_xattr_inode_update_ref+0x4fb/0x550
[ 137.685709][ T5944] ? ext4_xattr_inode_update_ref+0x4fd/0x550
[ 137.691745][ T5944] handle_bug+0xcf/0x120
[ 137.696019][ T5944] exc_invalid_op+0x1a/0x50
[ 137.700653][ T5944] asm_exc_invalid_op+0x1a/0x20
[ 137.705536][ T5944] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[ 137.712172][ T5944] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08
[ 137.731807][ T5944] RSP: 0018:ffffc900048a71c0 EFLAGS: 00010246
[ 137.737905][ T5944] RAX: ea38cc2ca5798500 RBX: 0000000000000002 RCX: ffff888079719e00
[ 137.745892][ T5944] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 137.753880][ T5944] RBP: ffffc900048a72b8 R08: ffffc900048a6dc7 R09: 1ffff92000914db8
[ 137.761875][ T5944] R10: dffffc0000000000 R11: fffff52000914db9 R12: dffffc0000000000
[ 137.769866][ T5944] R13: ffff88806e1636a8 R14: ffff88806e1634b0 R15: ffff88806e163500
[ 137.777869][ T5944] ? ext4_xattr_list_entries+0x3d0/0x3d0
[ 137.783544][ T5944] ? ext4_xattr_inode_iget+0x3df/0x600
[ 137.789034][ T5944] ext4_xattr_set_entry+0xcda/0x1e90
[ 137.794352][ T5944] ext4_xattr_ibody_set+0x254/0x6a0
[ 137.799587][ T5944] ext4_expand_extra_isize_ea+0x113a/0x19e0
[ 137.805529][ T5944] __ext4_expand_extra_isize+0x306/0x400
[ 137.811190][ T5944] __ext4_mark_inode_dirty+0x45d/0x6e0
[ 137.816772][ T5944] ext4_evict_inode+0x7ed/0xea0
[ 137.821656][ T5944] ? _raw_spin_unlock+0x28/0x40
[ 137.826575][ T5944] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 137.832493][ T5944] ? do_raw_spin_unlock+0x121/0x230
[ 137.837721][ T5944] ? ext4_inode_is_fast_symlink+0x390/0x390
[ 137.843637][ T5944] evict+0x486/0x870
[ 137.847574][ T5944] ? __lock_acquire+0x7c80/0x7c80
[ 137.852638][ T5944] ? proc_nr_inodes+0x230/0x230
[ 137.857542][ T5944] ? do_raw_spin_unlock+0x121/0x230
[ 137.862777][ T5944] ? _raw_spin_unlock+0x28/0x40
[ 137.867655][ T5944] ? iput+0x70a/0x920
[ 137.871661][ T5944] ext4_orphan_cleanup+0xbd4/0x1400
[ 137.876895][ T5944] ? ext4_orphan_del+0xba0/0xba0
[ 137.881865][ T5944] ? ext4_register_li_request+0x183/0x940
[ 137.887618][ T5944] ? errseq_check_and_advance+0x66/0x120
[ 137.893276][ T5944] ext4_fill_super+0x5de4/0x66c0
[ 137.898250][ T5944] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 137.904523][ T5944] ? __might_sleep+0xe0/0xe0
[ 137.909228][ T5944] ? read_lock_is_recursive+0x20/0x20
[ 137.914664][ T5944] ? snprintf+0xdb/0x120
[ 137.918939][ T5944] ? vscnprintf+0x80/0x80
[ 137.923337][ T5944] ? down_write+0x162/0x1f0
[ 137.927863][ T5944] ? down_read_killable+0x340/0x340
[ 137.933092][ T5944] ? setup_bdev_super+0x56b/0x660
[ 137.938136][ T5944] get_tree_bdev+0x3e4/0x510
[ 137.942750][ T5944] ? vfs_parse_fs_string+0x160/0x160
[ 137.948061][ T5944] ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[ 137.954323][ T5944] ? setup_bdev_super+0x660/0x660
[ 137.959382][ T5944] ? apparmor_capable+0x137/0x1a0
[ 137.964526][ T5944] ? bpf_lsm_capable+0x9/0x10
[ 137.969229][ T5944] ? security_capable+0x89/0xb0
[ 137.974197][ T5944] vfs_get_tree+0x8c/0x280
[ 137.978637][ T5944] do_new_mount+0x24b/0xa40
[ 137.983167][ T5944] __se_sys_mount+0x2da/0x3c0
[ 137.987955][ T5944] ? __x64_sys_mount+0xc0/0xc0
[ 137.992741][ T5944] ? lockdep_hardirqs_on+0x98/0x150
[ 137.998050][ T5944] ? __x64_sys_mount+0x20/0xc0
[ 138.002842][ T5944] do_syscall_64+0x55/0xb0
[ 138.007290][ T5944] ? clear_bhb_loop+0x40/0x90
[ 138.012007][ T5944] ? clear_bhb_loop+0x40/0x90
[ 138.016709][ T5944] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 138.022636][ T5944] RIP: 0033:0x7f6bd9390eea
[ 138.027173][ T5944] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 138.046816][ T5944] RSP: 002b:00007ffecc057438 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 138.055429][ T5944] RAX: ffffffffffffffda RBX: 00007ffecc0574c0 RCX: 00007f6bd9390eea
[ 138.063432][ T5944] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffecc057480
[ 138.071425][ T5944] RBP: 0000200000000180 R08: 00007ffecc0574c0 R09: 0000000000800700
[ 138.079422][ T5944] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 138.087460][ T5944] R13: 00007ffecc057480 R14: 000000000000046f R15: 000000000000002c
[ 138.095462][ T5944]
[ 138.099095][ T5944] Kernel Offset: disabled
[ 138.103514][ T5944] Rebooting in 86400 seconds..