[  102.948770][    T8] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.148' (ED25519) to the list of known hosts.
executing program
[  107.600548][ T5773] syz-executor331[5773]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[  107.947059][ T5773] loop0: detected capacity change from 0 to 32768
[  107.958928][ T5773] =======================================================
[  107.958928][ T5773] WARNING: The mand mount option has been deprecated and
[  107.958928][ T5773]          and is ignored by this kernel. Remove the mand
[  107.958928][ T5773]          option from the mount to silence this warning.
[  107.958928][ T5773] =======================================================
[  108.055889][ T5773] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  108.117374][ T5773] 
[  108.123992][ T5773] ======================================================
[  108.135346][ T5773] WARNING: possible circular locking dependency detected
[  108.149497][ T5773] 6.6.94-syzkaller #0 Not tainted
[  108.156041][ T5773] ------------------------------------------------------
[  108.173331][ T5773] syz-executor331/5773 is trying to acquire lock:
[  108.182053][ T5773] ffff88802e9b2608 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_setattr+0x95a/0x1b20
[  108.202082][ T5773] 
[  108.202082][ T5773] but task is already holding lock:
[  108.217068][ T5773] ffff888076dd4da0 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0x94b/0x1b20
[  108.238169][ T5773] 
[  108.238169][ T5773] which lock already depends on the new lock.
[  108.238169][ T5773] 
[  108.269858][ T5773] 
[  108.269858][ T5773] the existing dependency chain (in reverse order) is:
[  108.281431][ T5773] 
[  108.281431][ T5773] -> #4 (&oi->ip_alloc_sem){+.+.}-{3:3}:
[  108.294461][ T5773]        down_write+0x97/0x1f0
[  108.305441][ T5773]        ocfs2_try_remove_refcount_tree+0xb7/0x320
[  108.312780][ T5773]        ocfs2_xattr_set+0x596/0x11f0
[  108.322313][ T5773]        ocfs2_set_acl+0x4e1/0x590
[  108.331289][ T5773]        ocfs2_iop_set_acl+0x1ab/0x2a0
[  108.338254][ T5773]        vfs_remove_acl+0x4e3/0x740
[  108.349451][ T5773]        ovl_workdir_create+0x409/0x760
[  108.356529][ T5773]        ovl_get_workdir+0x300/0x1740
[  108.365959][ T5773]        ovl_fill_super+0x1345/0x3560
[  108.372359][ T5773]        get_tree_nodev+0xb5/0x140
[  108.382470][ T5773]        vfs_get_tree+0x8c/0x280
[  108.388657][ T5773]        do_new_mount+0x24b/0xa40
[  108.395761][ T5773]        __se_sys_mount+0x2da/0x3c0
[  108.407146][ T5773]        do_syscall_64+0x55/0xb0
[  108.414688][ T5773]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  108.423248][ T5773] 
[  108.423248][ T5773] -> #3 (&oi->ip_xattr_sem){++++}-{3:3}:
[  108.436208][ T5773]        down_read+0x46/0x2e0
[  108.445697][ T5773]        ocfs2_init_acl+0x2fa/0x720
[  108.454242][ T5773]        ocfs2_mknod+0x12e5/0x20f0
[  108.461052][ T5773]        ocfs2_mkdir+0x196/0x410
[  108.470136][ T5773]        vfs_mkdir+0x296/0x440
[  108.476438][ T5773]        do_mkdirat+0x1d4/0x440
[  108.483856][ T5773]        __x64_sys_mkdirat+0x89/0xa0
[  108.494330][ T5773]        do_syscall_64+0x55/0xb0
[  108.504211][ T5773]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  108.513410][ T5773] 
[  108.513410][ T5773] -> #2 (jbd2_handle){.+.+}-{0:0}:
[  108.522100][ T5773]        start_this_handle+0x1e9d/0x20c0
[  108.531497][ T5773]        jbd2__journal_start+0x2bb/0x5b0
[  108.546618][ T5773]        jbd2_journal_start+0x2a/0x40
[  108.552718][ T5773]        ocfs2_start_trans+0x376/0x6c0
[  108.559004][ T5773]        ocfs2_mknod+0xe47/0x20f0
[  108.570182][ T5773]        ocfs2_mkdir+0x196/0x410
[  108.576800][ T5773]        vfs_mkdir+0x296/0x440
[  108.590510][ T5773]        do_mkdirat+0x1d4/0x440
[  108.597063][ T5773]        __x64_sys_mkdirat+0x89/0xa0
[  108.611425][ T5773]        do_syscall_64+0x55/0xb0
[  108.618480][ T5773]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  108.633639][ T5773] 
[  108.633639][ T5773] -> #1 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  108.653556][ T5773]        down_read+0x46/0x2e0
[  108.668989][ T5773]        ocfs2_start_trans+0x36a/0x6c0
[  108.675993][ T5773]        ocfs2_mknod+0xe47/0x20f0
[  108.683073][ T5773]        ocfs2_mkdir+0x196/0x410
[  108.691015][ T5773]        vfs_mkdir+0x296/0x440
[  108.696335][ T5773]        do_mkdirat+0x1d4/0x440
[  108.703886][ T5773]        __x64_sys_mkdirat+0x89/0xa0
[  108.710652][ T5773]        do_syscall_64+0x55/0xb0
[  108.716496][ T5773]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  108.728610][ T5773] 
[  108.728610][ T5773] -> #0 (sb_internal#2){.+.+}-{0:0}:
[  108.736558][ T5773]        __lock_acquire+0x2ddb/0x7c80
[  108.748376][ T5773]        lock_acquire+0x197/0x410
[  108.754229][ T5773]        ocfs2_start_trans+0x26b/0x6c0
[  108.762945][ T5773]        ocfs2_setattr+0x95a/0x1b20
[  108.770770][ T5773]        notify_change+0xb0d/0xe10
[  108.776087][ T5773]        ovl_workdir_create+0x5de/0x760
[  108.782238][ T5773]        ovl_get_workdir+0x300/0x1740
[  108.789897][ T5773]        ovl_fill_super+0x1345/0x3560
[  108.796146][ T5773]        get_tree_nodev+0xb5/0x140
[  108.808623][ T5773]        vfs_get_tree+0x8c/0x280
[  108.815399][ T5773]        do_new_mount+0x24b/0xa40
[  108.826998][ T5773]        __se_sys_mount+0x2da/0x3c0
[  108.832885][ T5773]        do_syscall_64+0x55/0xb0
[  108.838998][ T5773]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  108.851068][ T5773] 
[  108.851068][ T5773] other info that might help us debug this:
[  108.851068][ T5773] 
[  108.864543][ T5773] Chain exists of:
[  108.864543][ T5773]   sb_internal#2 --> &oi->ip_xattr_sem --> &oi->ip_alloc_sem
[  108.864543][ T5773] 
[  108.879814][ T5773]  Possible unsafe locking scenario:
[  108.879814][ T5773] 
[  108.892427][ T5773]        CPU0                    CPU1
[  108.898612][ T5773]        ----                    ----
[  108.909188][ T5773]   lock(&oi->ip_alloc_sem);
[  108.913983][ T5773]                                lock(&oi->ip_xattr_sem);
[  108.922429][ T5773]                                lock(&oi->ip_alloc_sem);
[  108.932180][ T5773]   rlock(sb_internal#2);
[  108.937109][ T5773] 
[  108.937109][ T5773]  *** DEADLOCK ***
[  108.937109][ T5773] 
[  108.946034][ T5773] 5 locks held by syz-executor331/5773:
[  108.952527][ T5773]  #0: ffff88802fe400e0 (&type->s_umount_key#46/1){+.+.}-{3:3}, at: alloc_super+0x1fa/0x920
[  108.964154][ T5773]  #1: ffff88802e9b2418 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  108.977632][ T5773]  #2: ffff888076dd3498 (&sb->s_type->i_mutex_key#15/1){+.+.}-{3:3}, at: ovl_workdir_create+0x150/0x760
[  108.995914][ T5773]  #3: ffff888076dd5118 (&sb->s_type->i_mutex_key#17){+.+.}-{3:3}, at: ovl_workdir_create+0x557/0x760
[  109.012003][ T5773]  #4: ffff888076dd4da0 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0x94b/0x1b20
[  109.029471][ T5773] 
[  109.029471][ T5773] stack backtrace:
[  109.036287][ T5773] CPU: 0 PID: 5773 Comm: syz-executor331 Not tainted 6.6.94-syzkaller #0
[  109.052931][ T5773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  109.069585][ T5773] Call Trace:
[  109.073074][ T5773]  <TASK>
[  109.076117][ T5773]  dump_stack_lvl+0x16c/0x230
[  109.081243][ T5773]  ? load_image+0x3b0/0x3b0
[  109.089465][ T5773]  ? show_regs_print_info+0x20/0x20
[  109.099480][ T5773]  ? print_circular_bug+0x12b/0x1a0
[  109.106134][ T5773]  check_noncircular+0x2bd/0x3c0
[  109.112426][ T5773]  ? print_deadlock_bug+0x5d0/0x5d0
[  109.118898][ T5773]  ? lockdep_lock+0xe0/0x220
[  109.124204][ T5773]  ? _find_first_zero_bit+0xd3/0x100
[  109.132054][ T5773]  __lock_acquire+0x2ddb/0x7c80
[  109.137419][ T5773]  ? verify_lock_unused+0x140/0x140
[  109.151380][ T5773]  ? verify_lock_unused+0x140/0x140
[  109.157721][ T5773]  ? verify_lock_unused+0x140/0x140
[  109.163059][ T5773]  lock_acquire+0x197/0x410
[  109.167956][ T5773]  ? ocfs2_setattr+0x95a/0x1b20
[  109.174728][ T5773]  ? __might_sleep+0xe0/0xe0
[  109.179973][ T5773]  ? do_raw_spin_lock+0x121/0x2c0
[  109.187409][ T5773]  ? read_lock_is_recursive+0x20/0x20
[  109.197037][ T5773]  ? __rwlock_init+0x150/0x150
[  109.202103][ T5773]  ? do_raw_spin_unlock+0x121/0x230
[  109.208081][ T5773]  ocfs2_start_trans+0x26b/0x6c0
[  109.216469][ T5773]  ? ocfs2_setattr+0x95a/0x1b20
[  109.225865][ T5773]  ? ocfs2_recovery_exit+0x50/0x50
[  109.232254][ T5773]  ? setattr_prepare+0x1e6/0xac0
[  109.238796][ T5773]  ocfs2_setattr+0x95a/0x1b20
[  109.244471][ T5773]  ? ocfs2_extend_allocation+0x1760/0x1760
[  109.253026][ T5773]  ? ktime_get_coarse_real_ts64+0x3a/0x120
[  109.259953][ T5773]  ? seqcount_lockdep_reader_access+0x176/0x1c0
[  109.266993][ T5773]  ? ktime_get_coarse_real_ts64+0x110/0x120
[  109.274464][ T5773]  ? current_time+0x18e/0x270
[  109.280003][ T5773]  ? inode_set_ctime_current+0x2d0/0x2d0
[  109.288122][ T5773]  ? down_write+0x162/0x1f0
[  109.296278][ T5773]  ? evm_inode_setattr+0x94/0x6a0
[  109.303583][ T5773]  ? bpf_lsm_inode_setattr+0x9/0x10
[  109.311987][ T5773]  ? try_break_deleg+0x79/0x120
[  109.319223][ T5773]  ? ocfs2_extend_allocation+0x1760/0x1760
[  109.327290][ T5773]  notify_change+0xb0d/0xe10
[  109.333215][ T5773]  ovl_workdir_create+0x5de/0x760
[  109.340521][ T5773]  ? ovl_statfs+0x2f0/0x2f0
[  109.346210][ T5773]  ? rcu_read_lock_any_held+0xb4/0x120
[  109.355416][ T5773]  ? __mnt_want_write+0x223/0x2a0
[  109.361991][ T5773]  ovl_get_workdir+0x300/0x1740
[  109.369247][ T5773]  ? ovl_fill_super+0x3560/0x3560
[  109.375758][ T5773]  ? ovl_inuse_trylock+0xbd/0xd0
[  109.381755][ T5773]  ? __lock_acquire+0x7c80/0x7c80
[  109.387974][ T5773]  ? __rwlock_init+0x150/0x150
[  109.399515][ T5773]  ? clone_mnt+0xa10/0xc60
[  109.404312][ T5773]  ? do_raw_spin_unlock+0x121/0x230
[  109.410900][ T5773]  ? _raw_spin_unlock+0x28/0x40
[  109.418796][ T5773]  ? ovl_inuse_trylock+0xbd/0xd0
[  109.425893][ T5773]  ovl_fill_super+0x1345/0x3560
[  109.433546][ T5773]  ? ida_alloc_range+0x79e/0x830
[  109.440240][ T5773]  ? virtio_fs_zero_page_range+0x140/0x140
[  109.447534][ T5773]  ? sget_fc+0x7f0/0x8d0
[  109.454172][ T5773]  ? __lock_acquire+0x7c80/0x7c80
[  109.462031][ T5773]  ? down_write+0x162/0x1f0
[  109.466942][ T5773]  ? down_read_killable+0x340/0x340
[  109.472889][ T5773]  ? sget_fc+0x7f0/0x8d0
[  109.479539][ T5773]  ? kill_litter_super+0xb0/0xb0
[  109.485031][ T5773]  ? virtio_fs_zero_page_range+0x140/0x140
[  109.492628][ T5773]  get_tree_nodev+0xb5/0x140
[  109.500375][ T5773]  vfs_get_tree+0x8c/0x280
[  109.508080][ T5773]  do_new_mount+0x24b/0xa40
[  109.513668][ T5773]  __se_sys_mount+0x2da/0x3c0
[  109.527866][ T5773]  ? __x64_sys_mount+0xc0/0xc0
[  109.533210][ T5773]  ? lockdep_hardirqs_on+0x98/0x150
[  109.539117][ T5773]  ? __x64_sys_mount+0x20/0xc0
[  109.544414][ T5773]  do_syscall_64+0x55/0xb0
[  109.548981][ T5773]  ? clear_bhb_loop+0x40/0x90
[  109.554971][ T5773]  ? clear_bhb_loop+0x40/0x90
[  109.560312][ T5773]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  109.568715][ T5773] RIP: 0033:0x7f28c95367b9
[  109.575413][ T5773] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  109.599585][ T5773] RSP: 002b:00007ffc5663d548 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  109.610123][ T5773] RAX: ffffffffffffffda RBX: 0000200000000000 RCX: 00007f28c95367b9
[  109.622637][ T5773] RDX: 0000200000000340 RSI: 00002000000000c0 RDI: 0000000000000000
[  109.633388][ T5773] RBP: 00007f28c95ad610 R08: 00002000000002c0 R09: 0000000000000000
[  109.645852][ T5773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.659477][ T5773] R13: 00007ffc5663d718 R14: 0000000000000001 R15: 0000000000000001
[  109.671668][ T5773]  </TASK>
[