Warning: Permanently added '10.128.0.161' (ED25519) to the list of known hosts. 1970/01/01 00:00:52 parsed 1 programs syzkaller login: [ 53.380531][ T4330] cgroup: Unknown subsys name 'net' [ 53.611790][ T4330] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 53.884125][ T4330] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 61.383636][ T4389] chnl_net:caif_netlink_parms(): no params data found [ 61.400865][ T4389] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.402063][ T4389] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.403653][ T4389] device bridge_slave_0 entered promiscuous mode [ 61.405765][ T4389] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.406857][ T4389] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.408310][ T4389] device bridge_slave_1 entered promiscuous mode [ 61.415590][ T4389] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.417866][ T4389] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.424919][ T4389] team0: Port device team_slave_0 added [ 61.427082][ T4389] team0: Port device team_slave_1 added [ 61.432655][ T4389] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.433751][ T4389] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.437994][ T4389] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.440725][ T4389] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.441796][ T4389] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.445661][ T4389] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.490237][ T4389] device hsr_slave_0 entered promiscuous mode [ 61.529250][ T4389] device hsr_slave_1 entered promiscuous mode [ 61.620294][ T4389] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 61.667748][ T4389] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 61.718098][ T4389] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 61.760938][ T4389] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 61.812675][ T4389] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.813856][ T4389] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.815316][ T4389] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.816443][ T4389] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.836195][ T4389] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.840778][ T1691] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.843459][ T1691] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.845340][ T1691] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.850201][ T4389] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.853090][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.854673][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.855973][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.858740][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.862043][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.863168][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.878608][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.881782][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.883340][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.886575][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.889978][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.891987][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 61.942810][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 61.944176][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 61.947334][ T4389] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.953341][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 61.966030][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 61.967768][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 61.970121][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 61.971680][ T4389] device veth0_vlan entered promiscuous mode [ 61.974943][ T4389] device veth1_vlan entered promiscuous mode [ 61.982587][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 61.984079][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 61.985934][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 61.988220][ T4389] device veth0_macvtap entered promiscuous mode [ 61.996723][ T4389] device veth1_macvtap entered promiscuous mode [ 62.002459][ T4389] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.003653][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 62.005562][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 62.008372][ T4389] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.010839][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 62.013618][ T4389] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.014919][ T4389] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.016406][ T4389] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.017838][ T4389] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.126908][ T4410] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 62.128358][ T4410] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 62.130372][ T4410] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 62.131905][ T4410] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 62.133275][ T4410] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 62.134492][ T4410] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 62.950727][ T39] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 62.974054][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.975366][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.977305][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 62.984429][ T553] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.985938][ T553] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.987322][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:03 executed programs: 0 [ 63.199831][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 63.201354][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 63.202728][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 63.204260][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 63.205717][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 63.207018][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 63.250700][ T4430] chnl_net:caif_netlink_parms(): no params data found [ 63.267558][ T4430] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.268750][ T4430] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.270936][ T4430] device bridge_slave_0 entered promiscuous mode [ 63.272892][ T4430] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.274006][ T4430] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.275582][ T4430] device bridge_slave_1 entered promiscuous mode [ 63.283161][ T4430] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.285542][ T4430] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.293313][ T4430] team0: Port device team_slave_0 added [ 63.295044][ T4430] team0: Port device team_slave_1 added [ 63.301467][ T4430] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 63.302546][ T4430] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.306524][ T4430] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 63.308864][ T4430] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 63.310690][ T4430] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.314714][ T4430] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 63.360067][ T4430] device hsr_slave_0 entered promiscuous mode [ 63.400136][ T4430] device hsr_slave_1 entered promiscuous mode [ 63.449380][ T4430] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 63.450831][ T4430] Cannot create hsr debugfs directory [ 64.489867][ T2061] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.491022][ T2061] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.979803][ T39] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 65.289432][ T4410] Bluetooth: hci0: command 0x0409 tx timeout [ 67.270113][ T39] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 67.369135][ T4410] Bluetooth: hci0: command 0x041b tx timeout [ 67.371713][ T39] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 68.523528][ T4430] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 68.602444][ T4430] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 68.640074][ T4430] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 68.721358][ T4430] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 68.830499][ T4430] 8021q: adding VLAN 0 to HW filter on device bond0 [ 68.834705][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 68.836263][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 68.839234][ T4430] 8021q: adding VLAN 0 to HW filter on device team0 [ 68.841533][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 68.843102][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 68.844577][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.845669][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 68.847240][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 68.852066][ T39] device hsr_slave_0 left promiscuous mode [ 68.879141][ T39] device hsr_slave_1 left promiscuous mode [ 68.959050][ T39] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 68.960277][ T39] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 68.961950][ T39] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 68.963172][ T39] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 68.964608][ T39] device bridge_slave_1 left promiscuous mode [ 68.965664][ T39] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.999738][ T39] device bridge_slave_0 left promiscuous mode [ 69.000811][ T39] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.130286][ T39] device veth1_macvtap left promiscuous mode [ 69.131392][ T39] device veth0_macvtap left promiscuous mode [ 69.132453][ T39] device veth1_vlan left promiscuous mode [ 69.133505][ T39] device veth0_vlan left promiscuous mode [ 69.448993][ T47] Bluetooth: hci0: command 0x040f tx timeout [ 69.619715][ T110] cfg80211: failed to load regulatory.db [ 71.400409][ T39] team0 (unregistering): Port device team_slave_1 removed [ 71.529002][ T4410] Bluetooth: hci0: command 0x0419 tx timeout [ 71.559865][ T39] team0 (unregistering): Port device team_slave_0 removed [ 71.750145][ T39] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 71.980023][ T39] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 73.649814][ T39] bond0 (unregistering): Released all slaves [ 73.971203][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 73.972692][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 73.974086][ T553] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.975242][ T553] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.976573][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 73.978199][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 73.980260][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 73.982185][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 73.983764][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 73.985575][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 73.987227][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 73.988671][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 73.990364][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 73.991836][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 73.993546][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 73.996025][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 74.049555][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 74.050849][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 74.054018][ T4430] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 74.061691][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 74.063329][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 74.067616][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 74.069778][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 74.071484][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 74.072936][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 74.075336][ T4430] device veth0_vlan entered promiscuous mode [ 74.078440][ T4430] device veth1_vlan entered promiscuous mode [ 74.085996][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 74.087507][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 74.089487][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 74.090979][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 74.093739][ T4430] device veth0_macvtap entered promiscuous mode [ 74.095947][ T4430] device veth1_macvtap entered promiscuous mode [ 74.103611][ T4430] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.104818][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 74.106364][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 74.108332][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 74.110490][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 74.113189][ T4430] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.114361][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 74.115739][ T553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 74.118040][ T4430] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.120088][ T4430] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.121376][ T4430] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.122714][ T4430] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.142078][ T1691] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.143322][ T1691] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.144856][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 74.152398][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.153666][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.155066][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 74.310022][ T4512] loop0: detected capacity change from 0 to 32768 [ 74.317567][ T4512] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 74.318909][ T4512] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 74.333552][ T4512] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 74.335643][ T14] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 74.336817][ T14] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 74.347620][ T14] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 10ms [ 74.349634][ T14] gfs2: fsid=syz:syz.0: jid=0: Done [ 74.351078][ T4512] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 74.442476][ T4430] ------------[ cut here ]------------ [ 74.443390][ T4430] WARNING: CPU: 0 PID: 4430 at include/linux/backing-dev.h:247 __folio_mark_dirty+0x8a0/0xcd8 [ 74.445036][ T4430] Modules linked in: [ 74.445706][ T4430] CPU: 0 PID: 4430 Comm: syz-executor Not tainted syzkaller #0 [ 74.446940][ T4430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 74.448505][ T4430] pstate: 824000c5 (Nzcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.449840][ T4430] pc : __folio_mark_dirty+0x8a0/0xcd8 [ 74.450779][ T4430] lr : __folio_mark_dirty+0x8a0/0xcd8 [ 74.451636][ T4430] sp : ffff8000212476e0 [ 74.452333][ T4430] x29: ffff800021247700 x28: 1fffff80006f14c0 x27: dfff800000000000 [ 74.453618][ T4430] x26: 0000000000000000 x25: ffff0000c5a3be90 x24: 0000000000000001 [ 74.454868][ T4430] x23: 0000000000000000 x22: fffffc000378a608 x21: 1fffe00018b477d2 [ 74.456165][ T4430] x20: ffff0000d19ca250 x19: fffffc000378a600 x18: ffff800011b8bf60 [ 74.457540][ T4430] x17: ffff800018349000 x16: ffff8000082d7ca0 x15: ffff800017e2a000 [ 74.458799][ T4430] x14: 0000000000000001 x13: 1fffe00018b477d2 x12: 0000000000ff0100 [ 74.460050][ T4430] x11: ff00800008708b70 x10: 0000000000000000 x9 : ffff800008708b70 [ 74.461379][ T4430] x8 : ffff0000df33d340 x7 : 0000000000000000 x6 : 0000000000000000 [ 74.462596][ T4430] x5 : 0000000000000020 x4 : 0000000000000000 x3 : ffff800008a56aa8 [ 74.463753][ T4430] x2 : ffff0000cedce060 x1 : 0000000000000000 x0 : 0000000000000000 [ 74.465054][ T4430] Call trace: [ 74.465646][ T4430] __folio_mark_dirty+0x8a0/0xcd8 [ 74.466446][ T4430] mark_buffer_dirty+0x2b8/0x5c0 [ 74.467260][ T4430] gfs2_unpin+0x120/0x8fc [ 74.467963][ T4430] buf_lo_after_commit+0x140/0x188 [ 74.468814][ T4430] gfs2_log_flush+0xc00/0x1b20 [ 74.469607][ T4430] gfs2_kill_sb+0x5c/0xd4 [ 74.470324][ T4430] deactivate_locked_super+0xac/0x120 [ 74.471247][ T4430] deactivate_super+0xe4/0x104 [ 74.472049][ T4430] cleanup_mnt+0x390/0x418 [ 74.472796][ T4430] __cleanup_mnt+0x20/0x30 [ 74.473485][ T4430] task_work_run+0x1ec/0x278 [ 74.474262][ T4430] do_notify_resume+0x1fa0/0x2aa4 [ 74.475104][ T4430] el0_svc+0x98/0x128 [ 74.475792][ T4430] el0t_64_sync_handler+0x84/0xf0 [ 74.476629][ T4430] el0t_64_sync+0x18c/0x190 [ 74.477367][ T4430] irq event stamp: 160484 [ 74.478053][ T4430] hardirqs last enabled at (160483): [] folio_memcg_lock+0xe8/0x1f4 [ 74.479653][ T4430] hardirqs last disabled at (160484): [] _raw_spin_lock_irqsave+0xa4/0xb0 [ 74.481156][ T4430] softirqs last enabled at (160368): [] local_bh_enable+0x10/0x34 [ 74.482643][ T4430] softirqs last disabled at (160366): [] local_bh_disable+0x10/0x34 [ 74.484185][ T4430] ---[ end trace 0000000000000000 ]--- [ 74.486957][ T4430] ------------[ cut here ]------------ [ 74.487789][ T4430] WARNING: CPU: 0 PID: 4430 at include/linux/backing-dev.h:247 __folio_start_writeback+0x88c/0xa7c [ 74.489497][ T4430] Modules linked in: [ 74.490136][ T4430] CPU: 0 PID: 4430 Comm: syz-executor Tainted: G W syzkaller #0 [ 74.491568][ T4430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 74.493195][ T4430] pstate: 824000c5 (Nzcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.494447][ T4430] pc : __folio_start_writeback+0x88c/0xa7c [ 74.495371][ T4430] lr : __folio_start_writeback+0x88c/0xa7c [ 74.496273][ T4430] sp : ffff800021247180 [ 74.497000][ T4430] x29: ffff800021247260 x28: dfff800000000000 x27: 0000000000000000 [ 74.498346][ T4430] x26: ffff700004248e38 x25: 0000000000000000 x24: ffff0000d19ca250 [ 74.499685][ T4430] x23: ffff8000212471e0 x22: ffff0000c5a3bce8 x21: 0000000000000001 [ 74.500971][ T4430] x20: fffffc000378a608 x19: fffffc000378a600 x18: ffff800011b8bf60 [ 74.502432][ T4430] x17: ffff800018349000 x16: ffff8000082d7ca0 x15: 0000000000000000 [ 74.503835][ T4430] x14: 0000000000000001 x13: 1fffff80006f14c0 x12: 0000000000ff0100 [ 74.505137][ T4430] x11: ff0080000870b07c x10: 0000000000000000 x9 : ffff80000870b07c [ 74.506398][ T4430] x8 : ffff0000df33d340 x7 : ffff80000870aae8 x6 : 0000000000000000 [ 74.507719][ T4430] x5 : 0000000000000080 x4 : 0000000000000001 x3 : ffff80000870ab28 [ 74.509030][ T4430] x2 : 0000000000000001 x1 : 0000000000000000 x0 : 0000000000000000 [ 74.510444][ T4430] Call trace: [ 74.510984][ T4430] __folio_start_writeback+0x88c/0xa7c [ 74.511949][ T4430] set_page_writeback+0x5c/0x7c [ 74.512777][ T4430] gfs2_aspace_writepage+0x514/0x6dc [ 74.513693][ T4430] __gfs2_writepage+0x70/0x184 [ 74.514476][ T4430] write_cache_pages+0x74c/0xde8 [ 74.515244][ T4430] gfs2_ail1_flush+0x7c4/0xa14 [ 74.515989][ T4430] empty_ail1_list+0x130/0x214 [ 74.516776][ T4430] gfs2_log_flush+0x12b4/0x1b20 [ 74.517644][ T4430] gfs2_kill_sb+0x5c/0xd4 [ 74.518406][ T4430] deactivate_locked_super+0xac/0x120 [ 74.519267][ T4430] deactivate_super+0xe4/0x104 [ 74.519966][ T4430] cleanup_mnt+0x390/0x418 [ 74.520605][ T4430] __cleanup_mnt+0x20/0x30 [ 74.521297][ T4430] task_work_run+0x1ec/0x278 [ 74.522000][ T4430] do_notify_resume+0x1fa0/0x2aa4 [ 74.522786][ T4430] el0_svc+0x98/0x128 [ 74.523425][ T4430] el0t_64_sync_handler+0x84/0xf0 [ 74.524300][ T4430] el0t_64_sync+0x18c/0x190 [ 74.525081][ T4430] irq event stamp: 160598 [ 74.525823][ T4430] hardirqs last enabled at (160597): [] folio_memcg_lock+0xe8/0x1f4 [ 74.527506][ T4430] hardirqs last disabled at (160598): [] _raw_spin_lock_irqsave+0xa4/0xb0 [ 74.529137][ T4430] softirqs last enabled at (160556): [] handle_softirqs+0xaec/0xc60 [ 74.530725][ T4430] softirqs last disabled at (160487): [] __do_softirq+0x14/0x20 [ 74.532329][ T4430] ---[ end trace 0000000000000000 ]--- [ 74.540764][ C1] ------------[ cut here ]------------ [ 74.541811][ C1] WARNING: CPU: 1 PID: 21 at include/linux/backing-dev.h:247 __folio_end_writeback+0x7d0/0x9cc [ 74.543403][ C1] Modules linked in: [ 74.543976][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W syzkaller #0 [ 74.545345][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 74.546849][ C1] pstate: 424000c5 (nZcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 74.548120][ C1] pc : __folio_end_writeback+0x7d0/0x9cc [ 74.548985][ C1] lr : __folio_end_writeback+0x7d0/0x9cc [ 74.549950][ C1] sp : ffff80001ca87970 [ 74.550679][ C1] x29: ffff80001ca87990 x28: dfff800000000000 x27: ffff0000c5a3bce8 [ 74.552030][ C1] x26: 0000000000000000 x25: 05ffd60000002052 x24: 1fffff8000689168 [ 74.553357][ C1] x23: 0000000000000001 x22: ffff0000d19c82a0 x21: ffff0000d19c82a8 [ 74.554650][ C1] x20: 0000000000000001 x19: fffffc0003448b40 x18: ffff800011b8bf60 [ 74.556011][ C1] x17: 1fffe00033eac97e x16: ffff8000082d7ca0 x15: 0000000000000000 [ 74.557261][ C1] x14: 0000000000000003 x13: 1ffff00003950f20 x12: 0000000000ff0100 [ 74.558554][ C1] x11: ff0080000870a5f4 x10: 0000000000000000 x9 : ffff80000870a5f4 [ 74.559787][ C1] x8 : ffff0000c0a51bc0 x7 : 0000000000000000 x6 : 0000000000000000 [ 74.561142][ C1] x5 : 0000000000000080 x4 : 0000000000000000 x3 : 0000000000000010 [ 74.562653][ C1] x2 : 0000000000000008 x1 : 0000000000000000 x0 : 0000000000000000 [ 74.563966][ C1] Call trace: [ 74.564459][ C1] __folio_end_writeback+0x7d0/0x9cc [ 74.565322][ C1] folio_end_writeback+0x12c/0x410 [ 74.566085][ C1] end_page_writeback+0x58/0x74 [ 74.566874][ C1] end_buffer_async_write+0x32c/0x4f4 [ 74.567719][ C1] end_bio_bh_io_sync+0xb0/0x1dc [ 74.568570][ C1] bio_endio+0x750/0x794 [ 74.569308][ C1] blk_update_request+0x49c/0xbec [ 74.570154][ C1] blk_mq_end_request+0x54/0x88 [ 74.570998][ C1] lo_complete_rq+0x1ec/0x250 [ 74.571818][ C1] blk_done_softirq+0x11c/0x168 [ 74.572659][ C1] handle_softirqs+0x318/0xc60 [ 74.573510][ C1] run_ksoftirqd+0x7c/0x2ac [ 74.574294][ C1] smpboot_thread_fn+0x4b0/0x964 [ 74.575178][ C1] kthread+0x250/0x2d8 [ 74.575870][ C1] ret_from_fork+0x10/0x20 [ 74.576681][ C1] irq event stamp: 425245 [ 74.577372][ C1] hardirqs last enabled at (425244): [] folio_memcg_lock+0xe8/0x1f4 [ 74.578920][ C1] hardirqs last disabled at (425245): [] _raw_spin_lock_irqsave+0xa4/0xb0 [ 74.580544][ C1] softirqs last enabled at (425234): [] handle_softirqs+0xaec/0xc60 [ 74.582040][ C1] softirqs last disabled at (425239): [] run_ksoftirqd+0x7c/0x2ac [ 74.583569][ C1] ---[ end trace 0000000000000000 ]---