Warning: Permanently added '10.128.0.226' (ED25519) to the list of known hosts. 1970/01/01 00:00:31 parsed 1 programs [ 33.117012][ T4326] cgroup: Unknown subsys name 'net' [ 33.391321][ T4326] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 33.660219][ T4326] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 36.500757][ T4335] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 36.502240][ T4335] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 36.503588][ T4335] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 36.505188][ T4335] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 36.506530][ T4335] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 36.507800][ T4335] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 37.006237][ T4361] chnl_net:caif_netlink_parms(): no params data found [ 37.026741][ T4361] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.027956][ T4361] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.029784][ T4361] device bridge_slave_0 entered promiscuous mode [ 37.032133][ T4361] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.033315][ T4361] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.034873][ T4361] device bridge_slave_1 entered promiscuous mode [ 37.042360][ T4361] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 37.044975][ T4361] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 37.051633][ T4361] team0: Port device team_slave_0 added [ 37.053281][ T4361] team0: Port device team_slave_1 added [ 37.059373][ T4361] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.060483][ T4361] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.064796][ T4361] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.067407][ T4361] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.068506][ T4361] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.073468][ T4361] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.110047][ T4361] device hsr_slave_0 entered promiscuous mode [ 37.159036][ T4361] device hsr_slave_1 entered promiscuous mode [ 37.234308][ T4361] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 37.271991][ T4361] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 37.320908][ T4361] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 37.381957][ T4361] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 37.468553][ T4361] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.469890][ T4361] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.471193][ T4361] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.472297][ T4361] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.490631][ T4361] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.494721][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 37.497462][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.501399][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.503320][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 37.508499][ T4361] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.513606][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.515223][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.516341][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.522623][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.524775][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.525898][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.531875][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 37.533594][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 37.537161][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 37.541354][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 37.544207][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 37.546486][ T4361] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 37.601898][ T468] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 37.603183][ T468] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 37.606440][ T4361] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.613904][ T468] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 37.621142][ T4361] device veth0_vlan entered promiscuous mode [ 37.622662][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 37.624342][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 37.625738][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 37.630749][ T4361] device veth1_vlan entered promiscuous mode [ 37.637967][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 37.639557][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 37.640997][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 37.644858][ T4361] device veth0_macvtap entered promiscuous mode [ 37.647389][ T4361] device veth1_macvtap entered promiscuous mode [ 37.654701][ T4361] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.655911][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 37.657868][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 37.661463][ T4361] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.663568][ T468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 37.666475][ T4361] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.667789][ T4361] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.670325][ T4361] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.671743][ T4361] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.284709][ T468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.285987][ T468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.287654][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 38.298620][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.300109][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.301674][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:00:38 executed programs: 0 [ 38.645564][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 38.647031][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 38.648357][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 38.650326][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 38.651655][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 38.652947][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 38.764606][ T4426] chnl_net:caif_netlink_parms(): no params data found [ 38.783215][ T4426] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.784292][ T4426] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.785776][ T4426] device bridge_slave_0 entered promiscuous mode [ 38.787716][ T4426] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.789253][ T4426] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.790768][ T4426] device bridge_slave_1 entered promiscuous mode [ 38.796860][ T4426] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 38.799929][ T4426] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 38.807063][ T4426] team0: Port device team_slave_0 added [ 38.809417][ T4426] team0: Port device team_slave_1 added [ 38.815149][ T4426] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 38.816178][ T4426] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.820205][ T4426] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 38.822771][ T4426] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 38.823908][ T4426] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.828052][ T4426] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 39.152479][ T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 39.200159][ T4426] device hsr_slave_0 entered promiscuous mode [ 39.238945][ T4426] device hsr_slave_1 entered promiscuous mode [ 39.278764][ T4426] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 39.280090][ T4426] Cannot create hsr debugfs directory [ 40.729105][ T4335] Bluetooth: hci0: command 0x0409 tx timeout [ 41.020302][ T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 42.808971][ T4335] Bluetooth: hci0: command 0x041b tx timeout [ 43.069907][ T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.150564][ T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 44.141174][ T4426] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 44.222746][ T4426] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 44.259964][ T4426] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 44.371276][ T4426] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 44.530869][ T4426] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.534618][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 44.536067][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.538384][ T4426] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.573158][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 44.574934][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.576466][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.577643][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.579616][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 44.582093][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.583539][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.584962][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.586107][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.589857][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 44.592540][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 44.595119][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 44.596775][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.598398][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.601719][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 44.603574][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 44.606400][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 44.607939][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.612165][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 44.613646][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.616082][ T4426] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 44.685401][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 44.686712][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 44.690768][ T4426] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.696189][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 44.697658][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 44.745838][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 44.747306][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 44.749296][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 44.750625][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 44.752970][ T4426] device veth0_vlan entered promiscuous mode [ 44.756036][ T4426] device veth1_vlan entered promiscuous mode [ 44.763432][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 44.764894][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 44.766287][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 44.767722][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 44.770979][ T4426] device veth0_macvtap entered promiscuous mode [ 44.773156][ T4426] device veth1_macvtap entered promiscuous mode [ 44.777374][ T4426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 44.779847][ T4426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 44.782488][ T4426] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 44.831148][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 44.833614][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 44.835075][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 44.836852][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 44.839299][ T4426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 44.841041][ T4426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 44.843170][ T4426] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 44.844326][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 44.846390][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 44.849169][ T4426] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.850349][ T4426] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.851637][ T4426] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.852921][ T4426] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.889145][ T4335] Bluetooth: hci0: command 0x040f tx timeout [ 44.912957][ T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 44.917151][ T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 44.920318][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 44.921891][ T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 44.923172][ T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 44.924843][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 45.039380][ T4488] loop0: detected capacity change from 0 to 32768 [ 45.044003][ T4488] (syz.0.17,4488,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 45.046463][ T4488] (syz.0.17,4488,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 45.056163][ T4488] JBD2: Ignoring recovery information on journal [ 45.065793][ T4488] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 45.079322][ T4488] [ 45.079729][ T4488] ====================================================== [ 45.080742][ T4488] WARNING: possible circular locking dependency detected [ 45.081857][ T4488] syzkaller #0 Not tainted [ 45.082532][ T4488] ------------------------------------------------------ [ 45.083601][ T4488] syz.0.17/4488 is trying to acquire lock: [ 45.084458][ T4488] ffff0000f2069808 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x10c/0x3c80 [ 45.086496][ T4488] [ 45.086496][ T4488] but task is already holding lock: [ 45.087574][ T4488] ffff0000f20706f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x34c/0xf20 [ 45.088977][ T4488] [ 45.088977][ T4488] which lock already depends on the new lock. [ 45.088977][ T4488] [ 45.090459][ T4488] [ 45.090459][ T4488] the existing dependency chain (in reverse order) is: [ 45.091775][ T4488] [ 45.091775][ T4488] -> #4 (&oi->ip_xattr_sem){++++}-{3:3}: [ 45.092954][ T4488] down_read+0x64/0x300 [ 45.093697][ T4488] ocfs2_init_acl+0x264/0x61c [ 45.094503][ T4488] ocfs2_mknod+0x129c/0x2110 [ 45.095417][ T4488] ocfs2_create+0x19c/0x4f8 [ 45.096251][ T4488] path_openat+0xe18/0x26bc [ 45.097036][ T4488] do_filp_open+0x194/0x384 [ 45.097855][ T4488] do_sys_openat2+0x134/0x3f4 [ 45.098649][ T4488] __arm64_sys_openat+0x118/0x14c [ 45.099518][ T4488] invoke_syscall+0x98/0x2b4 [ 45.100285][ T4488] el0_svc_common+0x138/0x258 [ 45.101015][ T4488] do_el0_svc+0x58/0x130 [ 45.101701][ T4488] el0_svc+0x58/0x128 [ 45.102389][ T4488] el0t_64_sync_handler+0x84/0xf0 [ 45.103282][ T4488] el0t_64_sync+0x18c/0x190 [ 45.104076][ T4488] [ 45.104076][ T4488] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 45.105382][ T4488] down_read+0x64/0x300 [ 45.106117][ T4488] ocfs2_start_trans+0x374/0x6cc [ 45.106992][ T4488] ocfs2_modify_bh+0xd8/0x44c [ 45.107784][ T4488] ocfs2_local_read_info+0x107c/0x1378 [ 45.108671][ T4488] dquot_load_quota_sb+0x6c4/0xa24 [ 45.109460][ T4488] dquot_load_quota_inode+0x274/0x4e4 [ 45.110352][ T4488] ocfs2_enable_quotas+0x17c/0x3c0 [ 45.111217][ T4488] ocfs2_fill_super+0x34ec/0x436c [ 45.112087][ T4488] mount_bdev+0x264/0x358 [ 45.112802][ T4488] ocfs2_mount+0x44/0x58 [ 45.113576][ T4488] legacy_get_tree+0xd4/0x16c [ 45.114375][ T4488] vfs_get_tree+0x90/0x274 [ 45.115116][ T4488] do_new_mount+0x228/0x810 [ 45.115902][ T4488] path_mount+0x5bc/0xe80 [ 45.116677][ T4488] __arm64_sys_mount+0x49c/0x59c [ 45.117501][ T4488] invoke_syscall+0x98/0x2b4 [ 45.118333][ T4488] el0_svc_common+0x138/0x258 [ 45.119108][ T4488] do_el0_svc+0x58/0x130 [ 45.119834][ T4488] el0_svc+0x58/0x128 [ 45.120568][ T4488] el0t_64_sync_handler+0x84/0xf0 [ 45.121394][ T4488] el0t_64_sync+0x18c/0x190 [ 45.122127][ T4488] [ 45.122127][ T4488] -> #2 (sb_internal#2){.+.+}-{0:0}: [ 45.123283][ T4488] ocfs2_start_trans+0x20c/0x6cc [ 45.124152][ T4488] ocfs2_mknod+0xd1c/0x2110 [ 45.124941][ T4488] ocfs2_create+0x19c/0x4f8 [ 45.125754][ T4488] path_openat+0xe18/0x26bc [ 45.126527][ T4488] do_filp_open+0x194/0x384 [ 45.127389][ T4488] do_sys_openat2+0x134/0x3f4 [ 45.128206][ T4488] __arm64_sys_openat+0x118/0x14c [ 45.129085][ T4488] invoke_syscall+0x98/0x2b4 [ 45.129891][ T4488] el0_svc_common+0x138/0x258 [ 45.130711][ T4488] do_el0_svc+0x58/0x130 [ 45.131496][ T4488] el0_svc+0x58/0x128 [ 45.132178][ T4488] el0t_64_sync_handler+0x84/0xf0 [ 45.133024][ T4488] el0t_64_sync+0x18c/0x190 [ 45.133814][ T4488] [ 45.133814][ T4488] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}: [ 45.135417][ T4488] down_write+0x5c/0x88 [ 45.136141][ T4488] ocfs2_reserve_local_alloc_bits+0xe4/0x26c8 [ 45.137165][ T4488] ocfs2_reserve_clusters_with_limit+0x188/0xa28 [ 45.138211][ T4488] ocfs2_reserve_clusters+0x3c/0x50 [ 45.139101][ T4488] ocfs2_mknod+0xcc8/0x2110 [ 45.139852][ T4488] ocfs2_create+0x19c/0x4f8 [ 45.140570][ T4488] path_openat+0xe18/0x26bc [ 45.141315][ T4488] do_filp_open+0x194/0x384 [ 45.142064][ T4488] do_sys_openat2+0x134/0x3f4 [ 45.142831][ T4488] __arm64_sys_openat+0x118/0x14c [ 45.143671][ T4488] invoke_syscall+0x98/0x2b4 [ 45.144441][ T4488] el0_svc_common+0x138/0x258 [ 45.145219][ T4488] do_el0_svc+0x58/0x130 [ 45.145913][ T4488] el0_svc+0x58/0x128 [ 45.146596][ T4488] el0t_64_sync_handler+0x84/0xf0 [ 45.147513][ T4488] el0t_64_sync+0x18c/0x190 [ 45.148330][ T4488] [ 45.148330][ T4488] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}: [ 45.150007][ T4488] __lock_acquire+0x2880/0x6800 [ 45.150836][ T4488] lock_acquire+0x20c/0x63c [ 45.151588][ T4488] down_write+0x5c/0x88 [ 45.152310][ T4488] ocfs2_reserve_suballoc_bits+0x10c/0x3c80 [ 45.153259][ T4488] ocfs2_reserve_new_metadata_blocks+0x36c/0x830 [ 45.154338][ T4488] ocfs2_init_xattr_set_ctxt+0x310/0x7dc [ 45.155339][ T4488] ocfs2_xattr_set+0x974/0xf20 [ 45.156180][ T4488] ocfs2_xattr_trusted_set+0x4c/0x64 [ 45.157070][ T4488] __vfs_setxattr+0x384/0x3a0 [ 45.157821][ T4488] __vfs_setxattr_noperm+0x120/0x564 [ 45.158806][ T4488] __vfs_setxattr_locked+0x1ec/0x218 [ 45.159730][ T4488] vfs_setxattr+0x158/0x2ac [ 45.160461][ T4488] setxattr+0x258/0x2d8 [ 45.161195][ T4488] path_setxattr+0x130/0x260 [ 45.161980][ T4488] __arm64_sys_setxattr+0xbc/0xd8 [ 45.162841][ T4488] invoke_syscall+0x98/0x2b4 [ 45.163672][ T4488] el0_svc_common+0x138/0x258 [ 45.164472][ T4488] do_el0_svc+0x58/0x130 [ 45.165236][ T4488] el0_svc+0x58/0x128 [ 45.165940][ T4488] el0t_64_sync_handler+0x84/0xf0 [ 45.166795][ T4488] el0t_64_sync+0x18c/0x190 [ 45.167606][ T4488] [ 45.167606][ T4488] other info that might help us debug this: [ 45.167606][ T4488] [ 45.169185][ T4488] Chain exists of: [ 45.169185][ T4488] &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5 --> &journal->j_trans_barrier --> &oi->ip_xattr_sem [ 45.169185][ T4488] [ 45.171797][ T4488] Possible unsafe locking scenario: [ 45.171797][ T4488] [ 45.172869][ T4488] CPU0 CPU1 [ 45.173700][ T4488] ---- ---- [ 45.174478][ T4488] lock(&oi->ip_xattr_sem); [ 45.175166][ T4488] lock(&journal->j_trans_barrier); [ 45.176345][ T4488] lock(&oi->ip_xattr_sem); [ 45.177395][ T4488] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5); [ 45.178590][ T4488] [ 45.178590][ T4488] *** DEADLOCK *** [ 45.178590][ T4488] [ 45.179791][ T4488] 3 locks held by syz.0.17/4488: [ 45.180506][ T4488] #0: ffff0000d387c460 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 45.181941][ T4488] #1: ffff0000f20709c8 (&sb->s_type->i_mutex_key#20){+.+.}-{3:3}, at: vfs_setxattr+0x138/0x2ac [ 45.183613][ T4488] #2: ffff0000f20706f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x34c/0xf20 [ 45.185167][ T4488] [ 45.185167][ T4488] stack backtrace: [ 45.186095][ T4488] CPU: 0 PID: 4488 Comm: syz.0.17 Not tainted syzkaller #0 [ 45.187201][ T4488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 45.188690][ T4488] Call trace: [ 45.189155][ T4488] dump_backtrace+0x1c0/0x1ec [ 45.189861][ T4488] show_stack+0x2c/0x3c [ 45.190540][ T4488] __dump_stack+0x30/0x40 [ 45.191138][ T4488] dump_stack_lvl+0xf4/0x15c [ 45.191849][ T4488] dump_stack+0x1c/0x5c [ 45.192471][ T4488] print_circular_bug+0x148/0x1b0 [ 45.193188][ T4488] check_noncircular+0x264/0x2f8 [ 45.193945][ T4488] __lock_acquire+0x2880/0x6800 [ 45.194714][ T4488] lock_acquire+0x20c/0x63c [ 45.195417][ T4488] down_write+0x5c/0x88 [ 45.196058][ T4488] ocfs2_reserve_suballoc_bits+0x10c/0x3c80 [ 45.197026][ T4488] ocfs2_reserve_new_metadata_blocks+0x36c/0x830 [ 45.198030][ T4488] ocfs2_init_xattr_set_ctxt+0x310/0x7dc [ 45.198871][ T4488] ocfs2_xattr_set+0x974/0xf20 [ 45.199611][ T4488] ocfs2_xattr_trusted_set+0x4c/0x64 [ 45.200410][ T4488] __vfs_setxattr+0x384/0x3a0 [ 45.201108][ T4488] __vfs_setxattr_noperm+0x120/0x564 [ 45.201901][ T4488] __vfs_setxattr_locked+0x1ec/0x218 [ 45.202697][ T4488] vfs_setxattr+0x158/0x2ac [ 45.203361][ T4488] setxattr+0x258/0x2d8 [ 45.203953][ T4488] path_setxattr+0x130/0x260 [ 45.204623][ T4488] __arm64_sys_setxattr+0xbc/0xd8 [ 45.205335][ T4488] invoke_syscall+0x98/0x2b4 [ 45.206022][ T4488] el0_svc_common+0x138/0x258 [ 45.206746][ T4488] do_el0_svc+0x58/0x130 [ 45.207420][ T4488] el0_svc+0x58/0x128 [ 45.208052][ T4488] el0t_64_sync_handler+0x84/0xf0 [ 45.208832][ T4488] el0t_64_sync+0x18c/0x190 [ 45.260735][ T4426] ocfs2: Unmounting device (7,0) on (node local)