Warning: Permanently added '10.128.1.104' (ED25519) to the list of known hosts. 2025/12/12 00:46:08 parsed 1 programs [ 103.820049][ T5838] cgroup: Unknown subsys name 'net' [ 103.946492][ T5838] cgroup: Unknown subsys name 'cpuset' [ 103.955308][ T5838] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 105.287844][ T5838] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 107.680551][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 107.688508][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 107.696229][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 107.704849][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 107.712655][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 107.796379][ T5844] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 109.156346][ T4044] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.165508][ T4044] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.197367][ T4044] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.206902][ T4044] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.120843][ T5889] chnl_net:caif_netlink_parms(): no params data found [ 110.207857][ T5889] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.216237][ T5889] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.224650][ T5889] bridge_slave_0: entered allmulticast mode [ 110.231772][ T5889] bridge_slave_0: entered promiscuous mode [ 110.240982][ T5889] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.248226][ T5889] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.255495][ T5889] bridge_slave_1: entered allmulticast mode [ 110.262371][ T5889] bridge_slave_1: entered promiscuous mode [ 110.300250][ T5889] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 110.314397][ T5889] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 110.344812][ T5889] team0: Port device team_slave_0 added [ 110.352323][ T5889] team0: Port device team_slave_1 added [ 110.375717][ T5889] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 110.382686][ T5889] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 110.409512][ T5889] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 110.422308][ T5889] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 110.429283][ T5889] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 110.455743][ T5889] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 110.495803][ T5889] hsr_slave_0: entered promiscuous mode [ 110.502101][ T5889] hsr_slave_1: entered promiscuous mode [ 110.640796][ T5889] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 110.654149][ T5889] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 110.665189][ T5889] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 110.678246][ T5889] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 110.747614][ T5889] 8021q: adding VLAN 0 to HW filter on device bond0 [ 110.770616][ T5889] 8021q: adding VLAN 0 to HW filter on device team0 [ 110.784725][ T4044] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.792215][ T4044] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.810584][ T4578] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.818093][ T4578] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.973310][ T5889] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 111.018361][ T5889] veth0_vlan: entered promiscuous mode [ 111.030306][ T5889] veth1_vlan: entered promiscuous mode [ 111.060550][ T5889] veth0_macvtap: entered promiscuous mode [ 111.070034][ T5889] veth1_macvtap: entered promiscuous mode [ 111.089300][ T5889] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 111.105094][ T5889] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 111.120129][ T4044] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.130135][ T4044] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.141169][ T4044] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.151204][ T4044] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.325034][ T4578] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.388909][ T4578] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.508310][ T4578] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.634952][ T4578] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2025/12/12 00:46:19 executed programs: 0 [ 112.802554][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 112.810833][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 112.820497][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 112.829039][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 112.837180][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 112.977945][ T5940] chnl_net:caif_netlink_parms(): no params data found [ 113.045197][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state [ 113.052530][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state [ 113.060959][ T5940] bridge_slave_0: entered allmulticast mode [ 113.070114][ T5940] bridge_slave_0: entered promiscuous mode [ 113.079060][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state [ 113.087171][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state [ 113.094546][ T5940] bridge_slave_1: entered allmulticast mode [ 113.101440][ T5940] bridge_slave_1: entered promiscuous mode [ 113.131313][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 113.142815][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 113.172373][ T5940] team0: Port device team_slave_0 added [ 113.180415][ T5940] team0: Port device team_slave_1 added [ 113.204124][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 113.211256][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 113.238171][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 113.251908][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 113.259497][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 113.286025][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 113.330600][ T5940] hsr_slave_0: entered promiscuous mode [ 113.338772][ T5940] hsr_slave_1: entered promiscuous mode [ 113.345590][ T5940] debugfs: 'hsr0' already exists in 'hsr' [ 113.351459][ T5940] Cannot create hsr debugfs directory [ 114.314780][ T4578] bridge_slave_1: left allmulticast mode [ 114.320527][ T4578] bridge_slave_1: left promiscuous mode [ 114.326928][ T4578] bridge0: port 2(bridge_slave_1) entered disabled state [ 114.338118][ T4578] bridge_slave_0: left allmulticast mode [ 114.345660][ T4578] bridge_slave_0: left promiscuous mode [ 114.351439][ T4578] bridge0: port 1(bridge_slave_0) entered disabled state [ 114.564864][ T4578] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 114.576418][ T4578] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 114.586495][ T4578] bond0 (unregistering): Released all slaves [ 114.719627][ T4578] hsr_slave_0: left promiscuous mode [ 114.730500][ T4578] hsr_slave_1: left promiscuous mode [ 114.740321][ T4578] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 114.748440][ T4578] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 114.759337][ T4578] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 114.767403][ T4578] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 114.788742][ T4578] veth1_macvtap: left promiscuous mode [ 114.796318][ T4578] veth0_macvtap: left promiscuous mode [ 114.802581][ T4578] veth1_vlan: left promiscuous mode [ 114.808442][ T4578] veth0_vlan: left promiscuous mode [ 114.927824][ T5147] Bluetooth: hci0: command tx timeout [ 115.286847][ T4578] team0 (unregistering): Port device team_slave_1 removed [ 115.312571][ T4578] team0 (unregistering): Port device team_slave_0 removed [ 115.840700][ T5940] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 115.871483][ T5940] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 115.884897][ T5940] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 115.896739][ T5940] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 116.341422][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0 [ 116.359534][ T5940] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.390744][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.398131][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.452885][ T2023] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.460729][ T2023] bridge0: port 2(bridge_slave_1) entered forwarding state [ 116.739878][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 116.785943][ T5940] veth0_vlan: entered promiscuous mode [ 116.798801][ T5940] veth1_vlan: entered promiscuous mode [ 116.828185][ T5940] veth0_macvtap: entered promiscuous mode [ 116.837079][ T5940] veth1_macvtap: entered promiscuous mode [ 116.852526][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 116.867902][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 116.881983][ T292] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.891470][ T292] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.903275][ T292] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.918532][ T292] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.971380][ T292] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.981680][ T292] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.003521][ T5147] Bluetooth: hci0: command tx timeout [ 117.016262][ T2023] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.025058][ T2023] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.217481][ T5993] loop0: detected capacity change from 0 to 32768 [ 117.240381][ T5993] (syz.0.17,5993,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 117.258324][ T5993] (syz.0.17,5993,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 117.305809][ T5993] JBD2: Ignoring recovery information on journal [ 117.385286][ T5993] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 117.416299][ T5993] [ 117.418652][ T5993] ====================================================== [ 117.425836][ T5993] WARNING: possible circular locking dependency detected [ 117.432919][ T5993] syzkaller #0 Not tainted [ 117.437343][ T5993] ------------------------------------------------------ [ 117.444689][ T5993] syz.0.17/5993 is trying to acquire lock: [ 117.450573][ T5993] ffff888061dd86f8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_init_acl+0x2f7/0x7a0 [ 117.460116][ T5993] [ 117.460116][ T5993] but task is already holding lock: [ 117.467557][ T5993] ffff888142fa94e8 (&journal->j_trans_barrier){.+.+}-{4:4}, at: ocfs2_start_trans+0x36a/0x6d0 [ 117.477884][ T5993] [ 117.477884][ T5993] which lock already depends on the new lock. [ 117.477884][ T5993] [ 117.488531][ T5993] [ 117.488531][ T5993] the existing dependency chain (in reverse order) is: [ 117.497610][ T5993] [ 117.497610][ T5993] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 117.506186][ T5993] down_read+0x47/0x2e0 [ 117.510844][ T5993] ocfs2_start_trans+0x36a/0x6d0 [ 117.516374][ T5993] ocfs2_modify_bh+0xe8/0x470 [ 117.521667][ T5993] ocfs2_local_read_info+0x1465/0x17e0 [ 117.527733][ T5993] dquot_load_quota_sb+0x791/0xbd0 [ 117.533637][ T5993] dquot_load_quota_inode+0x2e1/0x5d0 [ 117.539798][ T5993] ocfs2_enable_quotas+0x1c6/0x450 [ 117.545514][ T5993] ocfs2_fill_super+0x50dd/0x63a0 [ 117.551055][ T5993] get_tree_bdev_flags+0x40e/0x4d0 [ 117.556688][ T5993] vfs_get_tree+0x92/0x2a0 [ 117.561810][ T5993] do_new_mount+0x302/0xa10 [ 117.567561][ T5993] __se_sys_mount+0x313/0x410 [ 117.573032][ T5993] do_syscall_64+0xfa/0xf80 [ 117.578079][ T5993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.584527][ T5993] [ 117.584527][ T5993] -> #2 (sb_internal#2){.+.+}-{0:0}: [ 117.592009][ T5993] ocfs2_start_trans+0x26b/0x6d0 [ 117.597561][ T5993] ocfs2_xattr_set+0xd69/0x11f0 [ 117.602938][ T5993] ocfs2_set_acl+0x701/0x7b0 [ 117.608228][ T5993] ocfs2_iop_set_acl+0x1aa/0x2a0 [ 117.613870][ T5993] vfs_set_acl+0x87d/0xb00 [ 117.618913][ T5993] do_set_acl+0xf6/0x190 [ 117.623769][ T5993] file_setxattr+0x234/0x2b0 [ 117.629147][ T5993] path_setxattrat+0x327/0x3a0 [ 117.634432][ T5993] __x64_sys_fsetxattr+0xbc/0xe0 [ 117.639899][ T5993] do_syscall_64+0xfa/0xf80 [ 117.645103][ T5993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.652040][ T5993] [ 117.652040][ T5993] -> #1 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}: [ 117.662991][ T5993] down_write+0x96/0x1f0 [ 117.667904][ T5993] ocfs2_reserve_suballoc_bits+0x164/0x4600 [ 117.674422][ T5993] ocfs2_reserve_new_metadata_blocks+0x403/0x940 [ 117.681277][ T5993] ocfs2_init_xattr_set_ctxt+0x2f7/0x6e0 [ 117.687528][ T5993] ocfs2_xattr_set+0xb70/0x11f0 [ 117.692931][ T5993] ocfs2_set_acl+0x701/0x7b0 [ 117.698132][ T5993] ocfs2_iop_set_acl+0x1aa/0x2a0 [ 117.703705][ T5993] vfs_set_acl+0x87d/0xb00 [ 117.708734][ T5993] do_set_acl+0xf6/0x190 [ 117.713496][ T5993] file_setxattr+0x234/0x2b0 [ 117.718610][ T5993] path_setxattrat+0x327/0x3a0 [ 117.724128][ T5993] __x64_sys_fsetxattr+0xbc/0xe0 [ 117.729585][ T5993] do_syscall_64+0xfa/0xf80 [ 117.734700][ T5993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.741306][ T5993] [ 117.741306][ T5993] -> #0 (&oi->ip_xattr_sem){++++}-{4:4}: [ 117.749125][ T5993] __lock_acquire+0x15a6/0x2cf0 [ 117.754580][ T5993] lock_acquire+0x117/0x340 [ 117.759606][ T5993] down_read+0x47/0x2e0 [ 117.764463][ T5993] ocfs2_init_acl+0x2f7/0x7a0 [ 117.769753][ T5993] ocfs2_mknod+0x12ff/0x2030 [ 117.774862][ T5993] ocfs2_create+0x195/0x420 [ 117.780014][ T5993] path_openat+0x18bb/0x3dd0 [ 117.785323][ T5993] do_filp_open+0x1fa/0x410 [ 117.790448][ T5993] do_sys_openat2+0x121/0x200 [ 117.795656][ T5993] __x64_sys_openat+0x138/0x170 [ 117.801121][ T5993] do_syscall_64+0xfa/0xf80 [ 117.806146][ T5993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.812557][ T5993] [ 117.812557][ T5993] other info that might help us debug this: [ 117.812557][ T5993] [ 117.822956][ T5993] Chain exists of: [ 117.822956][ T5993] &oi->ip_xattr_sem --> sb_internal#2 --> &journal->j_trans_barrier [ 117.822956][ T5993] [ 117.836957][ T5993] Possible unsafe locking scenario: [ 117.836957][ T5993] [ 117.844411][ T5993] CPU0 CPU1 [ 117.849769][ T5993] ---- ---- [ 117.855129][ T5993] rlock(&journal->j_trans_barrier); [ 117.860503][ T5993] lock(sb_internal#2); [ 117.867445][ T5993] lock(&journal->j_trans_barrier); [ 117.875437][ T5993] rlock(&oi->ip_xattr_sem); [ 117.880114][ T5993] [ 117.880114][ T5993] *** DEADLOCK *** [ 117.880114][ T5993] [ 117.888337][ T5993] 8 locks held by syz.0.17/5993: [ 117.893269][ T5993] #0: ffff88807cb60420 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 117.902511][ T5993] #1: ffff888061dd89c0 (&type->i_mutex_dir_key#8){+.+.}-{4:4}, at: path_openat+0xb47/0x3dd0 [ 117.912791][ T5993] #2: ffff888061eced80 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x164/0x4600 [ 117.926546][ T5993] #3: ffff888061ecdf40 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x164/0x4600 [ 117.940844][ T5993] #4: ffff888061ed1800 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x125/0x24b0 [ 117.955327][ T5993] #5: ffff88807cb60610 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_mknod+0xe71/0x2030 [ 117.964845][ T5993] #6: ffff888142fa94e8 (&journal->j_trans_barrier){.+.+}-{4:4}, at: ocfs2_start_trans+0x36a/0x6d0 [ 117.975730][ T5993] #7: ffff8880791e2950 (jbd2_handle#2){.+.+}-{0:0}, at: start_this_handle+0x1f87/0x21c0 [ 117.985925][ T5993] [ 117.985925][ T5993] stack backtrace: [ 117.991901][ T5993] CPU: 1 UID: 0 PID: 5993 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) [ 117.991918][ T5993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 117.991927][ T5993] Call Trace: [ 117.991933][ T5993] [ 117.991940][ T5993] dump_stack_lvl+0x189/0x250 [ 117.991961][ T5993] ? __pfx_dump_stack_lvl+0x10/0x10 [ 117.991977][ T5993] ? __pfx__printk+0x10/0x10 [ 117.991998][ T5993] ? print_lock_name+0xde/0x100 [ 117.992017][ T5993] print_circular_bug+0x2e2/0x300 [ 117.992037][ T5993] check_noncircular+0x12e/0x150 [ 117.992056][ T5993] __lock_acquire+0x15a6/0x2cf0 [ 117.992078][ T5993] ? ocfs2_init_acl+0x2f7/0x7a0 [ 117.992095][ T5993] lock_acquire+0x117/0x340 [ 117.992108][ T5993] ? ocfs2_init_acl+0x2f7/0x7a0 [ 117.992130][ T5993] down_read+0x47/0x2e0 [ 117.992148][ T5993] ? ocfs2_init_acl+0x2f7/0x7a0 [ 117.992164][ T5993] ? ocfs2_init_acl+0x17c/0x7a0 [ 117.992182][ T5993] ocfs2_init_acl+0x2f7/0x7a0 [ 117.992200][ T5993] ? ocfs2_mknod_locked+0x148/0x250 [ 117.992219][ T5993] ? __pfx_ocfs2_init_acl+0x10/0x10 [ 117.992236][ T5993] ? dquot_alloc_inode+0x8ba/0xa50 [ 117.992251][ T5993] ? dquot_alloc_inode+0x166/0xa50 [ 117.992263][ T5993] ? ocfs2_block_signals+0x94/0xe0 [ 117.992280][ T5993] ? ocfs2_init_security_get+0x139/0x1a0 [ 117.992301][ T5993] ocfs2_mknod+0x12ff/0x2030 [ 117.992322][ T5993] ? __pfx_ocfs2_mknod+0x10/0x10 [ 117.992338][ T5993] ? __pfx_ocfs2_find_entry+0x10/0x10 [ 117.992358][ T5993] ? _raw_spin_unlock+0x28/0x50 [ 117.992371][ T5993] ? ocfs2_inode_lock_full_nested+0xabe/0x1b40 [ 117.992398][ T5993] ? __lock_acquire+0x6b6/0x2cf0 [ 117.992434][ T5993] ? do_raw_spin_lock+0x121/0x290 [ 117.992461][ T5993] ? do_raw_spin_unlock+0x122/0x240 [ 117.992481][ T5993] ? rcu_is_watching+0x15/0xb0 [ 117.992498][ T5993] ? ocfs2_lookup+0x5ad/0x970 [ 117.992515][ T5993] ocfs2_create+0x195/0x420 [ 117.992531][ T5993] ? __pfx_ocfs2_lookup+0x10/0x10 [ 117.992546][ T5993] ? from_kgid+0x1b0/0x650 [ 117.992565][ T5993] ? __pfx_ocfs2_create+0x10/0x10 [ 117.992581][ T5993] ? inode_permission+0x2fd/0x5f0 [ 117.992599][ T5993] ? bpf_lsm_inode_create+0x9/0x20 [ 117.992611][ T5993] ? __pfx_ocfs2_create+0x10/0x10 [ 117.992627][ T5993] path_openat+0x18bb/0x3dd0 [ 117.992651][ T5993] ? __pfx_path_openat+0x10/0x10 [ 117.992669][ T5993] do_filp_open+0x1fa/0x410 [ 117.992683][ T5993] ? __pfx_do_filp_open+0x10/0x10 [ 117.992702][ T5993] ? _raw_spin_unlock+0x28/0x50 [ 117.992715][ T5993] ? alloc_fd+0x64c/0x6c0 [ 117.992734][ T5993] do_sys_openat2+0x121/0x200 [ 117.992754][ T5993] ? __pfx_do_sys_openat2+0x10/0x10 [ 117.992774][ T5993] ? __pfx___se_sys_futex+0x10/0x10 [ 117.992791][ T5993] __x64_sys_openat+0x138/0x170 [ 117.992811][ T5993] do_syscall_64+0xfa/0xf80 [ 117.992828][ T5993] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.992841][ T5993] ? clear_bhb_loop+0x60/0xb0 [ 117.992856][ T5993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.992870][ T5993] RIP: 0033:0x7f310558f749 [ 117.992883][ T5993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 117.992895][ T5993] RSP: 002b:00007ffc8a01ef98 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 117.992910][ T5993] RAX: ffffffffffffffda RBX: 00007f31057e5fa0 RCX: 00007f310558f749 [ 117.992920][ T5993] RDX: 000000000000275a RSI: 0000200000000840 RDI: ffffffffffffff9c [ 117.992931][ T5993] RBP: 00007f3105613f91 R08: 0000000000000000 R09: 0000000000000000 [ 117.992941][ T5993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 117.992951][ T5993] R13: 00007f31057e5fa0 R14: 00007f31057e5fa0 R15: 0000000000000004 [ 117.992966][ T5993] [ 118.418970][ T5940] ocfs2: Unmounting device (7,0) on (node local)