[ 9.503268][ T3991] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: OK [ 9.552149][ T39] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 9.561982][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.176' (ED25519) to the list of known hosts. 1970/01/01 00:00:29 parsed 1 programs syzkaller login: [ 30.478117][ T4325] cgroup: Unknown subsys name 'net' [ 30.704854][ T4325] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 30.971300][ T4325] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 33.679208][ T4365] chnl_net:caif_netlink_parms(): no params data found [ 33.696837][ T4365] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.698045][ T4365] bridge0: port 1(bridge_slave_0) entered disabled state [ 33.699641][ T4365] device bridge_slave_0 entered promiscuous mode [ 33.701965][ T4365] bridge0: port 2(bridge_slave_1) entered blocking state [ 33.703482][ T4365] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.704964][ T4365] device bridge_slave_1 entered promiscuous mode [ 33.712004][ T4365] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 33.714438][ T4365] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 33.720820][ T4365] team0: Port device team_slave_0 added [ 33.722600][ T4365] team0: Port device team_slave_1 added [ 33.728494][ T4365] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 33.729584][ T4365] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 33.734491][ T4365] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 33.738238][ T4365] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 33.739187][ T4365] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 33.743289][ T4365] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 33.803492][ T4365] device hsr_slave_0 entered promiscuous mode [ 33.842512][ T4365] device hsr_slave_1 entered promiscuous mode [ 33.977683][ T4365] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 33.993859][ T4365] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 34.024389][ T4365] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 34.063593][ T4365] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 34.099655][ T4365] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.100815][ T4365] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.102262][ T4365] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.103341][ T4365] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.126986][ T4365] 8021q: adding VLAN 0 to HW filter on device bond0 [ 34.131737][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 34.139179][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.141882][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.153825][ T4365] 8021q: adding VLAN 0 to HW filter on device team0 [ 34.156684][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 34.158622][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.159838][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.163082][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 34.164626][ T1318] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.165657][ T1318] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.171512][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 34.173635][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 34.176718][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 34.179686][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 34.183041][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 34.185715][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 34.239580][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 34.240880][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 34.244193][ T4365] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 34.249598][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 34.257255][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 34.258915][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 34.260389][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 34.262703][ T4365] device veth0_vlan entered promiscuous mode [ 34.266358][ T4365] device veth1_vlan entered promiscuous mode [ 34.275190][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 34.276803][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 34.279067][ T4365] device veth0_macvtap entered promiscuous mode [ 34.281316][ T4365] device veth1_macvtap entered promiscuous mode [ 34.287724][ T4365] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 34.288955][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 34.290465][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 34.291853][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 34.294378][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 34.303677][ T4365] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 34.304849][ T1661] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 34.306432][ T1661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 34.308863][ T4365] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.310218][ T4365] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.311486][ T4365] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.313490][ T4365] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.390402][ T4397] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 34.391796][ T4397] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 34.393568][ T4397] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 34.395164][ T4397] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 34.396626][ T4397] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 34.397787][ T4397] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 34.625797][ T1615] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 34.627147][ T1615] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 34.629179][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 34.642171][ T1615] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 34.643720][ T1615] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 34.649467][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:00:35 executed programs: 0 [ 35.313553][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 35.315523][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 35.316832][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 35.318356][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 35.319608][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 35.320892][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 35.474825][ T1615] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.516895][ T4422] chnl_net:caif_netlink_parms(): no params data found [ 35.531568][ T4422] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.533310][ T4422] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.534768][ T4422] device bridge_slave_0 entered promiscuous mode [ 35.537786][ T4422] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.538894][ T4422] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.540441][ T4422] device bridge_slave_1 entered promiscuous mode [ 35.547381][ T4422] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.550282][ T4422] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.558206][ T4422] team0: Port device team_slave_0 added [ 35.560051][ T4422] team0: Port device team_slave_1 added [ 35.565714][ T4422] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.566758][ T4422] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.570767][ T4422] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.573295][ T4422] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.574451][ T4422] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.578549][ T4422] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.634262][ T4422] device hsr_slave_0 entered promiscuous mode [ 35.673320][ T4422] device hsr_slave_1 entered promiscuous mode [ 35.712303][ T4422] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.713565][ T4422] Cannot create hsr debugfs directory [ 37.372549][ T4397] Bluetooth: hci0: command 0x0409 tx timeout [ 37.673353][ T1615] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 39.452669][ T4397] Bluetooth: hci0: command 0x041b tx timeout [ 39.673730][ T1615] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 39.754385][ T1615] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.967797][ T4422] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 41.054114][ T4422] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 41.083461][ T4422] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 41.194247][ T4422] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 41.293413][ T4422] 8021q: adding VLAN 0 to HW filter on device bond0 [ 41.296885][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.298337][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.302694][ T4422] 8021q: adding VLAN 0 to HW filter on device team0 [ 41.305034][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 41.306490][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.307864][ T1318] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.308932][ T1318] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.310352][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 41.354242][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 41.355769][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.357221][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.358348][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.360836][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 41.364266][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 41.366803][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 41.368431][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 41.369982][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 41.414894][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 41.416568][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 41.418163][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 41.419585][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.423887][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 41.425546][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.427947][ T4422] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 41.478777][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 41.480109][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 41.483538][ T4422] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.489560][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 41.491127][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 41.497971][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 41.499477][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 41.501451][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.503349][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.532340][ T4397] Bluetooth: hci0: command 0x040f tx timeout [ 41.785939][ T4422] device veth0_vlan entered promiscuous mode [ 41.789213][ T4422] device veth1_vlan entered promiscuous mode [ 41.798451][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 41.800039][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 41.801546][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 41.804399][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 41.808600][ T4422] device veth0_macvtap entered promiscuous mode [ 41.810858][ T4422] device veth1_macvtap entered promiscuous mode [ 41.815934][ T4422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 41.817495][ T4422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.819433][ T4422] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 41.820557][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 41.822183][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 41.825257][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 41.826810][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 41.893996][ T4422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 41.895737][ T4422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.897871][ T4422] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 41.901060][ T1661] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 41.902707][ T1661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 41.904442][ T4422] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.905975][ T4422] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.907262][ T4422] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.908615][ T4422] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.928075][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 41.929342][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 41.930689][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 41.938042][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 41.939376][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 41.940741][ T1318] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 42.094498][ T4506] loop0: detected capacity change from 0 to 32768 [ 42.102121][ T4506] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 42.103593][ T4506] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 42.114124][ T4506] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 42.116286][ T4444] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 42.117369][ T4444] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 42.128125][ T4444] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 10ms [ 42.130128][ T4444] gfs2: fsid=syz:syz.0: jid=0: Done [ 42.131138][ T4506] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 42.253481][ T4509] [ 42.253931][ T4509] ====================================================== [ 42.255039][ T4509] WARNING: possible circular locking dependency detected [ 42.256184][ T4509] syzkaller #0 Not tainted [ 42.256923][ T4509] ------------------------------------------------------ [ 42.257997][ T4509] syz.0.17/4509 is trying to acquire lock: [ 42.258840][ T4509] ffff0000dce90ae0 (&sdp->sd_quota_mutex){+.+.}-{3:3}, at: do_qc+0xbc/0x648 [ 42.260190][ T4509] [ 42.260190][ T4509] but task is already holding lock: [ 42.261298][ T4509] ffff0000e5b54fd0 (&ip->i_rw_mutex){++++}-{3:3}, at: punch_hole+0x20d8/0x2e88 [ 42.262703][ T4509] [ 42.262703][ T4509] which lock already depends on the new lock. [ 42.262703][ T4509] [ 42.264248][ T4509] [ 42.264248][ T4509] the existing dependency chain (in reverse order) is: [ 42.265680][ T4509] [ 42.265680][ T4509] -> #1 (&ip->i_rw_mutex){++++}-{3:3}: [ 42.266863][ T4509] down_read+0x64/0x300 [ 42.267644][ T4509] __gfs2_iomap_get+0x114/0x1044 [ 42.268520][ T4509] gfs2_iomap_get+0xd4/0x144 [ 42.269368][ T4509] bh_get+0x1e4/0x604 [ 42.270062][ T4509] qdsb_get+0x1d4/0x378 [ 42.270773][ T4509] gfs2_quota_hold+0x16c/0x558 [ 42.271642][ T4509] punch_hole+0xb74/0x2e88 [ 42.272366][ T4509] gfs2_iomap_end+0x43c/0x608 [ 42.273179][ T4509] iomap_iter+0x1d0/0x10e0 [ 42.273892][ T4509] iomap_file_buffered_write+0x5a0/0x6b8 [ 42.274814][ T4509] gfs2_file_buffered_write+0x488/0x7e8 [ 42.275710][ T4509] gfs2_file_write_iter+0x3f0/0xc1c [ 42.276509][ T4509] __kernel_write_iter+0x208/0x56c [ 42.277312][ T4509] dump_user_range+0x314/0x5e4 [ 42.278084][ T4509] elf_core_dump+0x2880/0x2da0 [ 42.278929][ T4509] do_coredump+0x10cc/0x1c68 [ 42.279718][ T4509] get_signal+0xdec/0x1304 [ 42.280491][ T4509] do_notify_resume+0x28c/0x2aa4 [ 42.281328][ T4509] el0_da+0xb4/0x144 [ 42.282065][ T4509] el0t_64_sync_handler+0x90/0xf0 [ 42.282884][ T4509] el0t_64_sync+0x18c/0x190 [ 42.283607][ T4509] [ 42.283607][ T4509] -> #0 (&sdp->sd_quota_mutex){+.+.}-{3:3}: [ 42.284766][ T4509] __lock_acquire+0x2880/0x6800 [ 42.285495][ T4509] lock_acquire+0x20c/0x63c [ 42.286201][ T4509] __mutex_lock_common+0x190/0x1f60 [ 42.287068][ T4509] mutex_lock_nested+0x38/0x44 [ 42.287840][ T4509] do_qc+0xbc/0x648 [ 42.288545][ T4509] gfs2_quota_change+0x238/0x718 [ 42.289360][ T4509] punch_hole+0x2968/0x2e88 [ 42.290124][ T4509] gfs2_iomap_end+0x43c/0x608 [ 42.290898][ T4509] iomap_iter+0x1d0/0x10e0 [ 42.291671][ T4509] iomap_file_buffered_write+0x5a0/0x6b8 [ 42.292593][ T4509] gfs2_file_buffered_write+0x488/0x7e8 [ 42.293494][ T4509] gfs2_file_write_iter+0x3f0/0xc1c [ 42.294340][ T4509] __kernel_write_iter+0x208/0x56c [ 42.295143][ T4509] dump_user_range+0x314/0x5e4 [ 42.295965][ T4509] elf_core_dump+0x2880/0x2da0 [ 42.296762][ T4509] do_coredump+0x10cc/0x1c68 [ 42.297595][ T4509] get_signal+0xdec/0x1304 [ 42.298361][ T4509] do_notify_resume+0x28c/0x2aa4 [ 42.299222][ T4509] el0_da+0xb4/0x144 [ 42.299894][ T4509] el0t_64_sync_handler+0x90/0xf0 [ 42.300708][ T4509] el0t_64_sync+0x18c/0x190 [ 42.301491][ T4509] [ 42.301491][ T4509] other info that might help us debug this: [ 42.301491][ T4509] [ 42.303051][ T4509] Possible unsafe locking scenario: [ 42.303051][ T4509] [ 42.304164][ T4509] CPU0 CPU1 [ 42.304951][ T4509] ---- ---- [ 42.305788][ T4509] lock(&ip->i_rw_mutex); [ 42.306419][ T4509] lock(&sdp->sd_quota_mutex); [ 42.307537][ T4509] lock(&ip->i_rw_mutex); [ 42.308599][ T4509] lock(&sdp->sd_quota_mutex); [ 42.309322][ T4509] [ 42.309322][ T4509] *** DEADLOCK *** [ 42.309322][ T4509] [ 42.310552][ T4509] 5 locks held by syz.0.17/4509: [ 42.311256][ T4509] #0: ffff0000d5064460 (sb_writers#12){.+.+}-{0:0}, at: do_coredump+0x10a8/0x1c68 [ 42.312670][ T4509] #1: ffff0000e5b54b38 (&sb->s_type->i_mutex_key#20){+.+.}-{3:3}, at: gfs2_file_write_iter+0x2cc/0xc1c [ 42.314327][ T4509] #2: ffff0000d5064650 (sb_internal#2){.+.+}-{0:0}, at: gfs2_trans_begin+0xa8/0x114 [ 42.315830][ T4509] #3: ffff0000dce91058 (&sdp->sd_log_flush_lock){.+.+}-{3:3}, at: __gfs2_trans_begin+0x500/0x870 [ 42.317423][ T4509] #4: ffff0000e5b54fd0 (&ip->i_rw_mutex){++++}-{3:3}, at: punch_hole+0x20d8/0x2e88 [ 42.318814][ T4509] [ 42.318814][ T4509] stack backtrace: [ 42.319699][ T4509] CPU: 1 PID: 4509 Comm: syz.0.17 Not tainted syzkaller #0 [ 42.320779][ T4509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 42.322212][ T4509] Call trace: [ 42.322704][ T4509] dump_backtrace+0x1c0/0x1ec [ 42.323383][ T4509] show_stack+0x2c/0x3c [ 42.323935][ T4509] __dump_stack+0x30/0x40 [ 42.324579][ T4509] dump_stack_lvl+0xf4/0x15c [ 42.325261][ T4509] dump_stack+0x1c/0x5c [ 42.325900][ T4509] print_circular_bug+0x148/0x1b0 [ 42.326661][ T4509] check_noncircular+0x264/0x2f8 [ 42.327406][ T4509] __lock_acquire+0x2880/0x6800 [ 42.328221][ T4509] lock_acquire+0x20c/0x63c [ 42.328894][ T4509] __mutex_lock_common+0x190/0x1f60 [ 42.329664][ T4509] mutex_lock_nested+0x38/0x44 [ 42.330352][ T4509] do_qc+0xbc/0x648 [ 42.330882][ T4509] gfs2_quota_change+0x238/0x718 [ 42.331563][ T4509] punch_hole+0x2968/0x2e88 [ 42.332237][ T4509] gfs2_iomap_end+0x43c/0x608 [ 42.332940][ T4509] iomap_iter+0x1d0/0x10e0 [ 42.333582][ T4509] iomap_file_buffered_write+0x5a0/0x6b8 [ 42.334415][ T4509] gfs2_file_buffered_write+0x488/0x7e8 [ 42.335251][ T4509] gfs2_file_write_iter+0x3f0/0xc1c [ 42.335999][ T4509] __kernel_write_iter+0x208/0x56c [ 42.336770][ T4509] dump_user_range+0x314/0x5e4 [ 42.337462][ T4509] elf_core_dump+0x2880/0x2da0 [ 42.338170][ T4509] do_coredump+0x10cc/0x1c68 [ 42.338852][ T4509] get_signal+0xdec/0x1304 [ 42.339485][ T4509] do_notify_resume+0x28c/0x2aa4 [ 42.340263][ T4509] el0_da+0xb4/0x144 [ 42.340790][ T4509] el0t_64_sync_handler+0x90/0xf0 [ 42.341550][ T4509] el0t_64_sync+0x18c/0x190