Warning: Permanently added '10.128.10.31' (ED25519) to the list of known hosts. 1970/01/01 00:00:34 parsed 1 programs [ 35.704542][ T4324] cgroup: Unknown subsys name 'net' [ 35.934599][ T4324] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 36.205654][ T4324] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 39.366725][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.368017][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.369653][ T251] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 39.378286][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.379453][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.380914][ T251] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.656230][ T4366] chnl_net:caif_netlink_parms(): no params data found [ 39.675328][ T4366] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.676549][ T4366] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.678048][ T4366] device bridge_slave_0 entered promiscuous mode [ 39.680299][ T4366] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.681386][ T4366] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.683198][ T4366] device bridge_slave_1 entered promiscuous mode [ 39.690199][ T4366] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 39.692594][ T4366] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 39.699954][ T4366] team0: Port device team_slave_0 added [ 39.701889][ T4366] team0: Port device team_slave_1 added [ 39.708612][ T4366] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 39.709688][ T4366] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 39.713800][ T4366] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 39.716364][ T4366] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 39.717404][ T4366] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 39.721066][ T4366] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 39.763417][ T4366] device hsr_slave_0 entered promiscuous mode [ 39.802192][ T4366] device hsr_slave_1 entered promiscuous mode [ 39.884979][ T4366] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 39.924781][ T4366] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 39.973470][ T4366] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 40.073027][ T4366] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 40.153757][ T4366] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.154887][ T4366] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.156115][ T4366] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.157101][ T4366] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.174285][ T4366] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.178962][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.181153][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.183729][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.191097][ T4366] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.199704][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.201298][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.202400][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.205588][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.206971][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.208025][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.215596][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.217151][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.220280][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.223236][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.225830][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.228111][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.289379][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 40.290556][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 40.294525][ T4366] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.299672][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.314783][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.317028][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.318379][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.320465][ T4366] device veth0_vlan entered promiscuous mode [ 40.324575][ T4366] device veth1_vlan entered promiscuous mode [ 40.331232][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 40.332795][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 40.334237][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.336648][ T4366] device veth0_macvtap entered promiscuous mode [ 40.338881][ T4366] device veth1_macvtap entered promiscuous mode [ 40.345238][ T4366] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 40.346448][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.348228][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 40.351167][ T4366] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 40.354533][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.357227][ T4366] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.358485][ T4366] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.359843][ T4366] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.361047][ T4366] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.441765][ T4402] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 40.443577][ T4402] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 40.444860][ T4402] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 40.446258][ T4402] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 40.447596][ T4402] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 40.448774][ T4402] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 1970/01/01 00:00:41 executed programs: 0 [ 41.534134][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 41.535634][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 41.536941][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 41.538412][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 41.539762][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 41.540982][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 41.925871][ T4432] chnl_net:caif_netlink_parms(): no params data found [ 41.997508][ T4432] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.998671][ T4432] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.000168][ T4432] device bridge_slave_0 entered promiscuous mode [ 42.001949][ T4432] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.003130][ T4432] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.004524][ T4432] device bridge_slave_1 entered promiscuous mode [ 42.011298][ T4432] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 42.013897][ T4432] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 42.021358][ T4432] team0: Port device team_slave_0 added [ 42.023334][ T4432] team0: Port device team_slave_1 added [ 42.028685][ T4432] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 42.029786][ T4432] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 42.033494][ T4432] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 42.035540][ T4432] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 42.036666][ T4432] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 42.040161][ T4432] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 42.213005][ T4432] device hsr_slave_0 entered promiscuous mode [ 42.252170][ T4432] device hsr_slave_1 entered promiscuous mode [ 42.312140][ T4432] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 42.313369][ T4432] Cannot create hsr debugfs directory [ 42.633471][ T4432] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.612487][ T47] Bluetooth: hci0: command 0x0409 tx timeout [ 45.692101][ T4402] Bluetooth: hci0: command 0x041b tx timeout [ 46.063133][ T4432] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.192820][ T4432] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.293764][ T4432] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.534902][ T4432] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 46.655541][ T4432] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 46.754024][ T4432] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 46.854743][ T4432] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.011852][ T4432] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.016597][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 47.018064][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 47.020477][ T4432] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.023136][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 47.024628][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 47.025937][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.027016][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.028765][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 47.031164][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 47.033620][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 47.035022][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.036067][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.040487][ T9] device hsr_slave_0 left promiscuous mode [ 47.063152][ T9] device hsr_slave_1 left promiscuous mode [ 47.142518][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 47.143689][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 47.145192][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 47.146327][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 47.147690][ T9] device bridge_slave_1 left promiscuous mode [ 47.148736][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.182689][ T9] device bridge_slave_0 left promiscuous mode [ 47.183762][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.322206][ T9] device veth1_macvtap left promiscuous mode [ 47.323243][ T9] device veth0_macvtap left promiscuous mode [ 47.324148][ T9] device veth1_vlan left promiscuous mode [ 47.325054][ T9] device veth0_vlan left promiscuous mode [ 47.782010][ T47] Bluetooth: hci0: command 0x040f tx timeout [ 49.073097][ T9] team0 (unregistering): Port device team_slave_1 removed [ 49.242865][ T9] team0 (unregistering): Port device team_slave_0 removed [ 49.452395][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 49.712402][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 49.852162][ T47] Bluetooth: hci0: command 0x0419 tx timeout [ 52.253369][ T9] bond0 (unregistering): Released all slaves [ 52.489838][ T4432] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 52.491389][ T4432] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 52.494172][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 52.495977][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 52.497491][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 52.499176][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 52.500493][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 52.501860][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 52.503856][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 52.505200][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 52.506628][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 52.507932][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 52.509725][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 52.511081][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 52.561007][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 52.562437][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 52.565906][ T4432] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 52.571782][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 52.573410][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 52.578564][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 52.580069][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 52.581706][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 52.583806][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 52.585794][ T4432] device veth0_vlan entered promiscuous mode [ 52.588841][ T4432] device veth1_vlan entered promiscuous mode [ 52.596389][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 52.597873][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 52.599310][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 52.600821][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 52.604181][ T4432] device veth0_macvtap entered promiscuous mode [ 52.606482][ T4432] device veth1_macvtap entered promiscuous mode [ 52.610942][ T4432] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 52.613420][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 52.614902][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 52.616205][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 52.617666][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 52.620107][ T4432] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 52.621225][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 52.623807][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 52.626319][ T4432] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.627491][ T4432] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.628772][ T4432] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.630122][ T4432] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.649114][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.650258][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.651549][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 52.664548][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.665783][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.667425][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 52.741949][ T4453] loop0: detected capacity change from 0 to 512 [ 52.756889][ T4453] [ 52.757330][ T4453] ====================================================== [ 52.758382][ T4453] WARNING: possible circular locking dependency detected [ 52.759403][ T4453] syzkaller #0 Not tainted [ 52.760072][ T4453] ------------------------------------------------------ [ 52.761098][ T4453] syz.0.17/4453 is trying to acquire lock: [ 52.761954][ T4453] ffff0000d1fd6b98 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x188/0x284c [ 52.763506][ T4453] [ 52.763506][ T4453] but task is already holding lock: [ 52.764553][ T4453] ffff0000e4e132f0 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790 [ 52.766090][ T4453] [ 52.766090][ T4453] which lock already depends on the new lock. [ 52.766090][ T4453] [ 52.767659][ T4453] [ 52.767659][ T4453] the existing dependency chain (in reverse order) is: [ 52.768951][ T4453] [ 52.768951][ T4453] -> #2 (&ei->xattr_sem){++++}-{3:3}: [ 52.770074][ T4453] down_read+0x64/0x304 [ 52.770759][ T4453] ext4_setattr+0x7c4/0x150c [ 52.771494][ T4453] notify_change+0xb0c/0xdcc [ 52.772248][ T4453] chown_common+0x414/0x574 [ 52.772997][ T4453] do_fchownat+0x158/0x268 [ 52.773745][ T4453] __arm64_sys_fchownat+0xb8/0xd4 [ 52.774547][ T4453] invoke_syscall+0x98/0x2bc [ 52.775306][ T4453] el0_svc_common+0x138/0x258 [ 52.776093][ T4453] do_el0_svc+0x58/0x13c [ 52.776805][ T4453] el0_svc+0x58/0x138 [ 52.777473][ T4453] el0t_64_sync_handler+0x84/0xf0 [ 52.778292][ T4453] el0t_64_sync+0x18c/0x190 [ 52.779034][ T4453] [ 52.779034][ T4453] -> #1 (jbd2_handle){.+.+}-{0:0}: [ 52.780062][ T4453] start_this_handle+0xfe0/0x122c [ 52.780855][ T4453] jbd2__journal_start+0x288/0x51c [ 52.781669][ T4453] __ext4_journal_start_sb+0x2fc/0x674 [ 52.782537][ T4453] ext4_writepages+0xa28/0x284c [ 52.783322][ T4453] do_writepages+0x2c0/0x4fc [ 52.784083][ T4453] __writeback_single_inode+0x164/0x157c [ 52.784966][ T4453] writeback_sb_inodes+0x824/0x1404 [ 52.785806][ T4453] __writeback_inodes_wb+0x110/0x394 [ 52.786657][ T4453] wb_writeback+0x414/0xfb0 [ 52.787389][ T4453] wb_workfn+0xac0/0xd98 [ 52.788053][ T4453] process_one_work+0x7f4/0x13a8 [ 52.788830][ T4453] worker_thread+0x8c8/0xfbc [ 52.789573][ T4453] kthread+0x250/0x2d8 [ 52.790247][ T4453] ret_from_fork+0x10/0x20 [ 52.790978][ T4453] [ 52.790978][ T4453] -> #0 (&sbi->s_writepages_rwsem){.+.+}-{0:0}: [ 52.792186][ T4453] __lock_acquire+0x293c/0x6544 [ 52.792965][ T4453] lock_acquire+0x20c/0x644 [ 52.793705][ T4453] percpu_down_read+0x70/0x2a8 [ 52.794455][ T4453] ext4_writepages+0x188/0x284c [ 52.795243][ T4453] do_writepages+0x2c0/0x4fc [ 52.795989][ T4453] __writeback_single_inode+0x164/0x157c [ 52.796846][ T4453] writeback_single_inode+0x1c0/0x720 [ 52.797700][ T4453] write_inode_now+0x144/0x1b0 [ 52.798469][ T4453] iput+0x5cc/0x7f4 [ 52.799094][ T4453] ext4_xattr_block_set+0x17a4/0x2810 [ 52.799939][ T4453] ext4_expand_extra_isize_ea+0xcb8/0x15cc [ 52.800837][ T4453] __ext4_expand_extra_isize+0x298/0x358 [ 52.801719][ T4453] __ext4_mark_inode_dirty+0x3e4/0x790 [ 52.802567][ T4453] ext4_evict_inode+0xb58/0x1270 [ 52.803357][ T4453] evict+0x3c8/0x810 [ 52.803994][ T4453] iput+0x764/0x7f4 [ 52.804617][ T4453] ext4_process_orphan+0x240/0x2b4 [ 52.805483][ T4453] ext4_orphan_cleanup+0x908/0x104c [ 52.806411][ T4453] ext4_fill_super+0x6440/0x68a8 [ 52.807240][ T4453] get_tree_bdev+0x358/0x544 [ 52.808013][ T4453] ext4_get_tree+0x28/0x38 [ 52.808743][ T4453] vfs_get_tree+0x90/0x274 [ 52.809483][ T4453] do_new_mount+0x228/0x810 [ 52.810250][ T4453] path_mount+0x5b4/0xe78 [ 52.810965][ T4453] __arm64_sys_mount+0x49c/0x584 [ 52.811751][ T4453] invoke_syscall+0x98/0x2bc [ 52.812499][ T4453] el0_svc_common+0x138/0x258 [ 52.813236][ T4453] do_el0_svc+0x58/0x13c [ 52.813919][ T4453] el0_svc+0x58/0x138 [ 52.814596][ T4453] el0t_64_sync_handler+0x84/0xf0 [ 52.815359][ T4453] el0t_64_sync+0x18c/0x190 [ 52.816049][ T4453] [ 52.816049][ T4453] other info that might help us debug this: [ 52.816049][ T4453] [ 52.817443][ T4453] Chain exists of: [ 52.817443][ T4453] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem [ 52.817443][ T4453] [ 52.819270][ T4453] Possible unsafe locking scenario: [ 52.819270][ T4453] [ 52.820431][ T4453] CPU0 CPU1 [ 52.821297][ T4453] ---- ---- [ 52.822206][ T4453] lock(&ei->xattr_sem); [ 52.822849][ T4453] lock(jbd2_handle); [ 52.823833][ T4453] lock(&ei->xattr_sem); [ 52.824856][ T4453] lock(&sbi->s_writepages_rwsem); [ 52.825602][ T4453] [ 52.825602][ T4453] *** DEADLOCK *** [ 52.825602][ T4453] [ 52.826692][ T4453] 3 locks held by syz.0.17/4453: [ 52.827415][ T4453] #0: ffff0000d1fd40e0 (&type->s_umount_key#26/1){+.+.}-{3:3}, at: alloc_super+0x1a4/0x804 [ 52.828856][ T4453] #1: ffff0000d1fd4650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x3dc/0x1270 [ 52.830239][ T4453] #2: ffff0000e4e132f0 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790 [ 52.831913][ T4453] [ 52.831913][ T4453] stack backtrace: [ 52.832785][ T4453] CPU: 1 PID: 4453 Comm: syz.0.17 Not tainted syzkaller #0 [ 52.833859][ T4453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 52.835352][ T4453] Call trace: [ 52.835846][ T4453] dump_backtrace+0x1c8/0x1f4 [ 52.836619][ T4453] show_stack+0x2c/0x3c [ 52.837231][ T4453] __dump_stack+0x30/0x40 [ 52.837915][ T4453] dump_stack_lvl+0xf8/0x160 [ 52.838649][ T4453] dump_stack+0x1c/0x5c [ 52.839253][ T4453] print_circular_bug+0x148/0x1b0 [ 52.840018][ T4453] check_noncircular+0x240/0x2d4 [ 52.840779][ T4453] __lock_acquire+0x293c/0x6544 [ 52.841488][ T4453] lock_acquire+0x20c/0x644 [ 52.842174][ T4453] percpu_down_read+0x70/0x2a8 [ 52.842946][ T4453] ext4_writepages+0x188/0x284c [ 52.843654][ T4453] do_writepages+0x2c0/0x4fc [ 52.844303][ T4453] __writeback_single_inode+0x164/0x157c [ 52.845119][ T4453] writeback_single_inode+0x1c0/0x720 [ 52.845908][ T4453] write_inode_now+0x144/0x1b0 [ 52.846546][ T4453] iput+0x5cc/0x7f4 [ 52.847097][ T4453] ext4_xattr_block_set+0x17a4/0x2810 [ 52.847922][ T4453] ext4_expand_extra_isize_ea+0xcb8/0x15cc [ 52.848767][ T4453] __ext4_expand_extra_isize+0x298/0x358 [ 52.849601][ T4453] __ext4_mark_inode_dirty+0x3e4/0x790 [ 52.850385][ T4453] ext4_evict_inode+0xb58/0x1270 [ 52.851126][ T4453] evict+0x3c8/0x810 [ 52.851694][ T4453] iput+0x764/0x7f4 [ 52.852322][ T4453] ext4_process_orphan+0x240/0x2b4 [ 52.853145][ T4453] ext4_orphan_cleanup+0x908/0x104c [ 52.854024][ T4453] ext4_fill_super+0x6440/0x68a8 [ 52.854767][ T4453] get_tree_bdev+0x358/0x544 [ 52.855484][ T4453] ext4_get_tree+0x28/0x38 [ 52.856158][ T4453] vfs_get_tree+0x90/0x274 [ 52.856820][ T4453] do_new_mount+0x228/0x810 [ 52.857550][ T4453] path_mount+0x5b4/0xe78 [ 52.858195][ T4453] __arm64_sys_mount+0x49c/0x584 [ 52.858898][ T4453] invoke_syscall+0x98/0x2bc [ 52.859582][ T4453] el0_svc_common+0x138/0x258 [ 52.860251][ T4453] do_el0_svc+0x58/0x13c [ 52.860848][ T4453] el0_svc+0x58/0x138 [ 52.861428][ T4453] el0t_64_sync_handler+0x84/0xf0 [ 52.862141][ T4453] el0t_64_sync+0x18c/0x190 [ 52.864137][ T4453] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 52.866373][ T4453] EXT4-fs (loop0): Remounting filesystem read-only [ 52.867441][ T4453] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 11 err=-117 [ 52.869441][ T4453] EXT4-fs (loop0): Remounting filesystem read-only [ 52.870482][ T4453] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2819: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 52.872963][ T4453] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 52.875189][ T4453] EXT4-fs (loop0): Remounting filesystem read-only [ 52.876210][ T4453] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 11 err=-117 [ 52.878148][ T4453] EXT4-fs (loop0): Remounting filesystem read-only [ 52.879104][ T4453] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 52.881059][ T4453] EXT4-fs (loop0): Remounting filesystem read-only [ 52.882165][ T4453] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117 [ 52.884185][ T4453] EXT4-fs (loop0): Remounting filesystem read-only [ 52.885196][ T4453] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 52.887221][ T4453] EXT4-fs (loop0): Remounting filesystem read-only [ 52.888169][ T4453] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117 [ 52.889910][ T4453] EXT4-fs (loop0): Remounting filesystem read-only [ 52.890935][ T4453] EXT4-fs (loop0): 1 orphan inode deleted [ 52.891829][ T4453] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 52.900996][ T4432] EXT4-fs (loop0): unmounting filesystem.