loop9: detected capacity change from 0 to 512 ------------[ cut here ]------------ EA inode 11 i_nlink=0 WARNING: fs/ext4/xattr.c:1059 at ext4_xattr_inode_update_ref+0x480/0x488 fs/ext4/xattr.c:1057, CPU#1: syz.9.1175/10057 Modules linked in: CPU: 1 UID: 0 PID: 10057 Comm: syz.9.1175 Tainted: G L syzkaller #0 PREEMPT Tainted: [L]=SOFTLOCKUP Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/02/2026 pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) pc : ext4_xattr_inode_update_ref+0x480/0x488 fs/ext4/xattr.c:1057 lr : ext4_xattr_inode_update_ref+0x480/0x488 fs/ext4/xattr.c:1057 sp : ffff800095f26f40 x29: ffff800095f26fe0 x28: 0000000000000000 x27: 1fffe0001e9441af x26: ffff0000f4a20bd0 x25: dfff800000000000 x24: ffff800095f26f60 x23: ffff700012be4dec x22: ffff80008a04a000 x21: 0000000000000000 x20: 0000000000000001 x19: ffff0000f4a20b90 x18: 1fffe00035bf0220 x17: ffff80008a680000 x16: 0000000000000004 x15: ffff80008a209c80 x14: ffff80008a47fd08 x13: 0000000000000001 x12: 0000000000000000 x11: 0000000000000000 x10: 0000000000080000 x9 : 04e005a5d10a1e00 x8 : 04e005a5d10a1e00 x7 : ffff80008048076c x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000802f45e0 x2 : 0000000100000000 x1 : ffff0000f5afd700 x0 : 0000000000000001 Call trace: ext4_xattr_inode_update_ref+0x480/0x488 fs/ext4/xattr.c:1057 (P) ext4_xattr_inode_dec_ref fs/ext4/xattr.c:1082 [inline] ext4_xattr_inode_dec_ref_all+0x7f0/0xb84 fs/ext4/xattr.c:1228 ext4_xattr_delete_inode+0x778/0x900 fs/ext4/xattr.c:2952 ext4_evict_inode+0xa0c/0xfb8 fs/ext4/inode.c:284 evict+0x4c0/0x74c fs/inode.c:841 iput_final fs/inode.c:1960 [inline] iput+0x884/0xbc0 fs/inode.c:2009 ext4_process_orphan+0x24c/0x2c0 fs/ext4/orphan.c:358 ext4_orphan_cleanup+0x7d4/0xd20 fs/ext4/orphan.c:472 __ext4_fill_super fs/ext4/super.c:5701 [inline] ext4_fill_super+0x4628/0x4e14 fs/ext4/super.c:5824 get_tree_bdev_flags+0x388/0x43c fs/super.c:1694 get_tree_bdev+0x2c/0x3c fs/super.c:1717 ext4_get_tree+0x28/0x38 fs/ext4/super.c:5856 vfs_get_tree+0x90/0x28c fs/super.c:1754 fc_mount+0x24/0xac fs/namespace.c:1193 do_new_mount_fc fs/namespace.c:3758 [inline] do_new_mount+0x2a4/0x538 fs/namespace.c:3834 path_mount+0x5f0/0xa88 fs/namespace.c:4154 do_mount+0xe8/0x148 fs/namespace.c:4167 __do_sys_mount fs/namespace.c:4383 [inline] __se_sys_mount fs/namespace.c:4360 [inline] __arm64_sys_mount+0x334/0x380 fs/namespace.c:4360 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x244 arch/arm64/kernel/syscall.c:49 el0_svc_common+0xec/0x23c arch/arm64/kernel/syscall.c:121 do_el0_svc+0x4c/0x5c arch/arm64/kernel/syscall.c:140 el0_svc+0x64/0x260 arch/arm64/kernel/entry-common.c:736 el0t_64_sync_handler+0x48/0x148 arch/arm64/kernel/entry-common.c:755 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:594 irq event stamp: 2132 hardirqs last enabled at (2131): [] irqentry_exit_to_kernel_mode_after_preempt include/linux/irq-entry-common.h:507 [inline] hardirqs last enabled at (2131): [] arm64_exit_to_kernel_mode+0x80/0x94 arch/arm64/kernel/entry-common.c:62 hardirqs last disabled at (2132): [] el1_brk64+0x20/0x54 arch/arm64/kernel/entry-common.c:425 softirqs last enabled at (1710): [] local_bh_enable include/linux/bottom_half.h:33 [inline] softirqs last enabled at (1710): [] put_cpu_fpsimd_context arch/arm64/kernel/fpsimd.c:251 [inline] softirqs last enabled at (1710): [] do_sve_acc+0x32c/0x4b8 arch/arm64/kernel/fpsimd.c:1349 softirqs last disabled at (1708): [] local_bh_disable include/linux/bottom_half.h:20 [inline] softirqs last disabled at (1708): [] get_cpu_fpsimd_context arch/arm64/kernel/fpsimd.c:234 [inline] softirqs last disabled at (1708): [] do_sve_acc+0x10c/0x4b8 arch/arm64/kernel/fpsimd.c:1325 ---[ end trace 0000000000000000 ]--- EXT4-fs (loop9): 1 orphan inode deleted EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. cgroup2: Unknown parameter 'euid' netlink: 'syz.9.1175': attribute type 1 has an invalid length. netlink: 4 bytes leftover after parsing attributes in process `syz.9.1175'.