[ 9.464060][ T3991] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: [ 9.495714][ T224] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 9.499489][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready OK Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.223' (ED25519) to the list of known hosts. 1970/01/01 00:00:25 parsed 1 programs syzkaller login: [ 26.975908][ T4326] cgroup: Unknown subsys name 'net' [ 27.218668][ T4326] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 27.489766][ T4326] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 37.193592][ T4335] chnl_net:caif_netlink_parms(): no params data found [ 37.211862][ T4335] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.213040][ T4335] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.214608][ T4335] device bridge_slave_0 entered promiscuous mode [ 37.217632][ T4335] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.218795][ T4335] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.220264][ T4335] device bridge_slave_1 entered promiscuous mode [ 37.226943][ T4335] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 37.229948][ T4335] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 37.236440][ T4335] team0: Port device team_slave_0 added [ 37.238212][ T4335] team0: Port device team_slave_1 added [ 37.243519][ T4335] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.244591][ T4335] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.248729][ T4335] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.251405][ T4335] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.252525][ T4335] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.256553][ T4335] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.307094][ T4335] device hsr_slave_0 entered promiscuous mode [ 37.346000][ T4335] device hsr_slave_1 entered promiscuous mode [ 37.422256][ T4335] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 37.467358][ T4335] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 37.506972][ T4335] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 37.547043][ T4335] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 37.594558][ T4335] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.595910][ T4335] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.597296][ T4335] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.598475][ T4335] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.615904][ T4335] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.620050][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 37.622438][ T224] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.624344][ T224] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.627551][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 37.631839][ T4335] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.637583][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.639148][ T224] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.640339][ T224] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.641726][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.643167][ T224] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.644356][ T224] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.652173][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 37.653735][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 37.657288][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 37.659995][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 37.662644][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 37.665007][ T4335] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 37.717497][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 37.718679][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 37.721970][ T4335] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.729238][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 37.735651][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 37.738153][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 37.739496][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 37.742001][ T4335] device veth0_vlan entered promiscuous mode [ 37.745095][ T4335] device veth1_vlan entered promiscuous mode [ 37.752804][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 37.754319][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 37.756927][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 37.759424][ T4335] device veth0_macvtap entered promiscuous mode [ 37.762386][ T4335] device veth1_macvtap entered promiscuous mode [ 37.768706][ T4335] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.769935][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 37.771821][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 37.774635][ T4335] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.777432][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 37.780311][ T4335] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.781513][ T4335] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.782799][ T4335] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.784159][ T4335] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.157610][ T1646] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 38.232931][ T4357] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 38.234603][ T4357] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 38.236499][ T4357] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 38.238097][ T4357] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 38.239426][ T4357] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 38.240693][ T4357] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 38.747947][ T224] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.749162][ T224] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.751645][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 38.760176][ T224] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.761407][ T224] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.762967][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:00:39 executed programs: 0 [ 39.467532][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 39.469004][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 39.470412][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 39.471794][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 39.473138][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 39.474339][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 39.517902][ T4416] chnl_net:caif_netlink_parms(): no params data found [ 39.534118][ T4416] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.535329][ T4416] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.536894][ T4416] device bridge_slave_0 entered promiscuous mode [ 39.538834][ T4416] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.540005][ T4416] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.541497][ T4416] device bridge_slave_1 entered promiscuous mode [ 39.548396][ T4416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 39.550886][ T4416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 39.558680][ T4416] team0: Port device team_slave_0 added [ 39.560349][ T4416] team0: Port device team_slave_1 added [ 39.565570][ T4416] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 39.566755][ T4416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 39.570667][ T4416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 39.573029][ T4416] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 39.574080][ T4416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 39.578397][ T4416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 39.647882][ T4416] device hsr_slave_0 entered promiscuous mode [ 39.686094][ T4416] device hsr_slave_1 entered promiscuous mode [ 39.725889][ T4416] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 39.727201][ T4416] Cannot create hsr debugfs directory [ 41.066656][ T1646] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 41.526250][ T4357] Bluetooth: hci0: command 0x0409 tx timeout [ 43.605927][ T4357] Bluetooth: hci0: command 0x041b tx timeout [ 43.697057][ T1646] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.777845][ T1646] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 44.831405][ T4416] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 44.928482][ T4416] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 44.977605][ T4416] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 45.027869][ T4416] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 45.140433][ T4416] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.144212][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 45.145724][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.148982][ T4416] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.156244][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.157869][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 45.159219][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.160375][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.161962][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 45.163521][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 45.165191][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.166371][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.176816][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 45.178816][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 45.180499][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 45.182109][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 45.187319][ T1646] device hsr_slave_0 left promiscuous mode [ 45.226386][ T1646] device hsr_slave_1 left promiscuous mode [ 45.296330][ T1646] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 45.297630][ T1646] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 45.299536][ T1646] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 45.300644][ T1646] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 45.302044][ T1646] device bridge_slave_1 left promiscuous mode [ 45.303128][ T1646] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.327027][ T1646] device bridge_slave_0 left promiscuous mode [ 45.328087][ T1646] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.446108][ T1646] device veth1_macvtap left promiscuous mode [ 45.447112][ T1646] device veth0_macvtap left promiscuous mode [ 45.448092][ T1646] device veth1_vlan left promiscuous mode [ 45.449122][ T1646] device veth0_vlan left promiscuous mode [ 45.685845][ T4357] Bluetooth: hci0: command 0x040f tx timeout [ 47.717057][ T1646] team0 (unregistering): Port device team_slave_1 removed [ 47.765843][ T4357] Bluetooth: hci0: command 0x0419 tx timeout [ 47.917075][ T1646] team0 (unregistering): Port device team_slave_0 removed [ 48.097201][ T1646] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 48.346407][ T1646] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 49.956662][ T1646] bond0 (unregistering): Released all slaves [ 50.260954][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 50.262407][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 50.263914][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 50.265493][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 50.268730][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 50.270760][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 50.273383][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 50.275507][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 50.279123][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 50.338321][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 50.339537][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 50.342462][ T4416] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.349593][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 50.351362][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 50.357166][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 50.359156][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 50.360678][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 50.362091][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 50.364252][ T4416] device veth0_vlan entered promiscuous mode [ 50.369372][ T4416] device veth1_vlan entered promiscuous mode [ 50.377061][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 50.378561][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 50.380070][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 50.381759][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 50.385012][ T4416] device veth0_macvtap entered promiscuous mode [ 50.387910][ T4416] device veth1_macvtap entered promiscuous mode [ 50.392610][ T4416] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 50.393918][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 50.395541][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 50.398955][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 50.400485][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 50.403537][ T4416] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 50.404721][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 50.407393][ T1612] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 50.410252][ T4416] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.411615][ T4416] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.413029][ T4416] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.414449][ T4416] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.433503][ T224] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.434712][ T224] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.437454][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 50.448604][ T1612] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.449899][ T1612] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.451402][ T224] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:00:50 executed programs: 2 [ 50.609115][ T4532] loop0: detected capacity change from 0 to 32768 [ 50.610867][ T4532] ======================================================= [ 50.610867][ T4532] WARNING: The mand mount option has been deprecated and [ 50.610867][ T4532] and is ignored by this kernel. Remove the mand [ 50.610867][ T4532] option from the mount to silence this warning. [ 50.610867][ T4532] ======================================================= [ 50.624873][ T4532] JBD2: Ignoring recovery information on journal [ 50.634643][ T4532] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 51.177491][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 51.316441][ T4536] loop0: detected capacity change from 0 to 32768 [ 51.343881][ T4536] JBD2: Ignoring recovery information on journal [ 51.369023][ T4536] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 51.898651][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 52.014422][ T4550] loop0: detected capacity change from 0 to 32768 [ 52.023462][ T4550] JBD2: Ignoring recovery information on journal [ 52.038998][ T4550] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 52.537186][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 52.655219][ T4553] loop0: detected capacity change from 0 to 32768 [ 52.660381][ T4553] JBD2: Ignoring recovery information on journal [ 52.668718][ T4553] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 53.159530][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 53.278825][ T4556] loop0: detected capacity change from 0 to 32768 [ 53.288467][ T4556] JBD2: Ignoring recovery information on journal [ 53.302541][ T4556] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 53.792252][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 53.910500][ T4559] loop0: detected capacity change from 0 to 32768 [ 53.919865][ T4559] JBD2: Ignoring recovery information on journal [ 53.950686][ T4559] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 54.494289][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 54.613391][ T4562] loop0: detected capacity change from 0 to 32768 [ 54.622098][ T4562] JBD2: Ignoring recovery information on journal [ 54.634779][ T4562] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 55.139519][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 55.261941][ T4566] loop0: detected capacity change from 0 to 32768 [ 55.279967][ T4566] JBD2: Ignoring recovery information on journal [ 55.292027][ T4566] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. 1970/01/01 00:00:55 executed programs: 10 [ 55.807675][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 55.921096][ T4570] loop0: detected capacity change from 0 to 32768 [ 55.933864][ T4570] JBD2: Ignoring recovery information on journal [ 55.954720][ T4570] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 56.460482][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 56.578886][ T4573] loop0: detected capacity change from 0 to 32768 [ 56.589178][ T4573] JBD2: Ignoring recovery information on journal [ 56.598903][ T4573] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 57.081188][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 57.194514][ T4576] loop0: detected capacity change from 0 to 32768 [ 57.207755][ T4576] JBD2: Ignoring recovery information on journal [ 57.233052][ T4576] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 57.237229][ T4576] [ 57.237631][ T4576] ====================================================== [ 57.238671][ T4576] WARNING: possible circular locking dependency detected [ 57.239696][ T4576] syzkaller #0 Not tainted [ 57.240397][ T4576] ------------------------------------------------------ [ 57.241500][ T4576] syz.0.27/4576 is trying to acquire lock: [ 57.242401][ T4576] ffff0000d6879488 (&osb->system_file_mutex){+.+.}-{3:3}, at: ocfs2_get_system_file_inode+0x158/0x690 [ 57.244206][ T4576] [ 57.244206][ T4576] but task is already holding lock: [ 57.245464][ T4576] ffff0000e57614a0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_write_begin+0x194/0x31c [ 57.247282][ T4576] [ 57.247282][ T4576] which lock already depends on the new lock. [ 57.247282][ T4576] [ 57.248967][ T4576] [ 57.248967][ T4576] the existing dependency chain (in reverse order) is: [ 57.250337][ T4576] [ 57.250337][ T4576] -> #1 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}: [ 57.251731][ T4576] down_read+0x64/0x300 [ 57.252470][ T4576] ocfs2_read_virt_blocks+0x238/0x8f0 [ 57.253420][ T4576] ocfs2_find_entry+0x2e4/0x1d6c [ 57.254288][ T4576] ocfs2_find_files_on_disk+0x128/0x40c [ 57.255336][ T4576] ocfs2_lookup_ino_from_name+0x60/0x114 [ 57.256408][ T4576] ocfs2_get_system_file_inode+0x2c0/0x690 [ 57.257500][ T4576] ocfs2_init_global_system_inodes+0x2a0/0x5c8 [ 57.258529][ T4576] ocfs2_fill_super+0x2408/0x436c [ 57.259379][ T4576] mount_bdev+0x264/0x358 [ 57.260135][ T4576] ocfs2_mount+0x44/0x58 [ 57.260955][ T4576] legacy_get_tree+0xd4/0x16c [ 57.261804][ T4576] vfs_get_tree+0x90/0x274 [ 57.262553][ T4576] do_new_mount+0x228/0x810 [ 57.263345][ T4576] path_mount+0x5bc/0xe80 [ 57.264114][ T4576] __arm64_sys_mount+0x49c/0x59c [ 57.264940][ T4576] invoke_syscall+0x98/0x2b4 [ 57.265712][ T4576] el0_svc_common+0x138/0x258 [ 57.266534][ T4576] do_el0_svc+0x58/0x130 [ 57.267272][ T4576] el0_svc+0x58/0x128 [ 57.267981][ T4576] el0t_64_sync_handler+0x84/0xf0 [ 57.268829][ T4576] el0t_64_sync+0x18c/0x190 [ 57.269682][ T4576] [ 57.269682][ T4576] -> #0 (&osb->system_file_mutex){+.+.}-{3:3}: [ 57.271064][ T4576] __lock_acquire+0x2880/0x6800 [ 57.271907][ T4576] lock_acquire+0x20c/0x63c [ 57.272745][ T4576] __mutex_lock_common+0x190/0x1f60 [ 57.273657][ T4576] mutex_lock_nested+0x38/0x44 [ 57.274587][ T4576] ocfs2_get_system_file_inode+0x158/0x690 [ 57.275681][ T4576] ocfs2_reserve_local_alloc_bits+0xd0/0x26c8 [ 57.276766][ T4576] ocfs2_reserve_clusters_with_limit+0x188/0xa28 [ 57.277920][ T4576] ocfs2_lock_allocators+0x270/0x530 [ 57.278890][ T4576] ocfs2_write_begin_nolock+0x1d88/0x3a44 [ 57.279886][ T4576] ocfs2_write_begin+0x1b8/0x31c [ 57.280809][ T4576] generic_perform_write+0x234/0x4f4 [ 57.281722][ T4576] __generic_file_write_iter+0x130/0x250 [ 57.282662][ T4576] ocfs2_file_write_iter+0x138c/0x1c64 [ 57.283630][ T4576] do_iter_write+0x53c/0x940 [ 57.284495][ T4576] vfs_iter_write+0x88/0xac [ 57.285224][ T4576] iter_file_splice_write+0x520/0xa7c [ 57.286176][ T4576] direct_splice_actor+0xe4/0x134 [ 57.287080][ T4576] splice_direct_to_actor+0x3a0/0x954 [ 57.288084][ T4576] do_splice_direct+0x168/0x25c [ 57.288945][ T4576] do_sendfile+0x478/0xcc8 [ 57.289715][ T4576] __arm64_sys_sendfile64+0x134/0x36c [ 57.290728][ T4576] invoke_syscall+0x98/0x2b4 [ 57.291576][ T4576] el0_svc_common+0x138/0x258 [ 57.292420][ T4576] do_el0_svc+0x58/0x130 [ 57.293219][ T4576] el0_svc+0x58/0x128 [ 57.293966][ T4576] el0t_64_sync_handler+0x84/0xf0 [ 57.294875][ T4576] el0t_64_sync+0x18c/0x190 [ 57.295729][ T4576] [ 57.295729][ T4576] other info that might help us debug this: [ 57.295729][ T4576] [ 57.297428][ T4576] Possible unsafe locking scenario: [ 57.297428][ T4576] [ 57.298727][ T4576] CPU0 CPU1 [ 57.299576][ T4576] ---- ---- [ 57.300475][ T4576] lock(&ocfs2_file_ip_alloc_sem_key); [ 57.301359][ T4576] lock(&osb->system_file_mutex); [ 57.302658][ T4576] lock(&ocfs2_file_ip_alloc_sem_key); [ 57.303994][ T4576] lock(&osb->system_file_mutex); [ 57.304806][ T4576] [ 57.304806][ T4576] *** DEADLOCK *** [ 57.304806][ T4576] [ 57.306064][ T4576] 3 locks held by syz.0.27/4576: [ 57.306885][ T4576] #0: ffff0000ee42c460 (sb_writers#12){.+.+}-{0:0}, at: do_sendfile+0x45c/0xcc8 [ 57.308353][ T4576] #1: ffff0000e5761808 (&sb->s_type->i_mutex_key#20){+.+.}-{3:3}, at: ocfs2_file_write_iter+0x39c/0x1c64 [ 57.310180][ T4576] #2: ffff0000e57614a0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_write_begin+0x194/0x31c [ 57.311908][ T4576] [ 57.311908][ T4576] stack backtrace: [ 57.312993][ T4576] CPU: 0 PID: 4576 Comm: syz.0.27 Not tainted syzkaller #0 [ 57.314092][ T4576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 57.315671][ T4576] Call trace: [ 57.316183][ T4576] dump_backtrace+0x1c0/0x1ec [ 57.316949][ T4576] show_stack+0x2c/0x3c [ 57.317592][ T4576] __dump_stack+0x30/0x40 [ 57.318369][ T4576] dump_stack_lvl+0xf4/0x15c [ 57.319162][ T4576] dump_stack+0x1c/0x5c [ 57.319862][ T4576] print_circular_bug+0x148/0x1b0 [ 57.320692][ T4576] check_noncircular+0x264/0x2f8 [ 57.321488][ T4576] __lock_acquire+0x2880/0x6800 [ 57.322282][ T4576] lock_acquire+0x20c/0x63c [ 57.322994][ T4576] __mutex_lock_common+0x190/0x1f60 [ 57.323822][ T4576] mutex_lock_nested+0x38/0x44 [ 57.324594][ T4576] ocfs2_get_system_file_inode+0x158/0x690 [ 57.325495][ T4576] ocfs2_reserve_local_alloc_bits+0xd0/0x26c8 [ 57.326474][ T4576] ocfs2_reserve_clusters_with_limit+0x188/0xa28 [ 57.327528][ T4576] ocfs2_lock_allocators+0x270/0x530 [ 57.328395][ T4576] ocfs2_write_begin_nolock+0x1d88/0x3a44 [ 57.329313][ T4576] ocfs2_write_begin+0x1b8/0x31c [ 57.330134][ T4576] generic_perform_write+0x234/0x4f4 [ 57.330983][ T4576] __generic_file_write_iter+0x130/0x250 [ 57.331965][ T4576] ocfs2_file_write_iter+0x138c/0x1c64 [ 57.332920][ T4576] do_iter_write+0x53c/0x940 [ 57.333688][ T4576] vfs_iter_write+0x88/0xac [ 57.334424][ T4576] iter_file_splice_write+0x520/0xa7c [ 57.335313][ T4576] direct_splice_actor+0xe4/0x134 [ 57.336121][ T4576] splice_direct_to_actor+0x3a0/0x954 [ 57.337050][ T4576] do_splice_direct+0x168/0x25c [ 57.337838][ T4576] do_sendfile+0x478/0xcc8 [ 57.338525][ T4576] __arm64_sys_sendfile64+0x134/0x36c [ 57.339510][ T4576] invoke_syscall+0x98/0x2b4 [ 57.340273][ T4576] el0_svc_common+0x138/0x258 [ 57.341096][ T4576] do_el0_svc+0x58/0x130 [ 57.341779][ T4576] el0_svc+0x58/0x128 [ 57.342392][ T4576] el0t_64_sync_handler+0x84/0xf0 [ 57.343220][ T4576] el0t_64_sync+0x18c/0x190 [ 57.657687][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 57.734746][ T4579] loop0: detected capacity change from 0 to 32768 [ 57.737892][ T4579] JBD2: Ignoring recovery information on journal [ 57.743409][ T4579] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 58.060531][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 58.140553][ T4582] loop0: detected capacity change from 0 to 32768 [ 58.143765][ T4582] JBD2: Ignoring recovery information on journal [ 58.149591][ T4582] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 58.466090][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 58.543759][ T4585] loop0: detected capacity change from 0 to 32768 [ 58.553831][ T4585] JBD2: Ignoring recovery information on journal [ 58.559405][ T4585] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 58.876891][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 58.956808][ T4588] loop0: detected capacity change from 0 to 32768 [ 58.964356][ T4588] JBD2: Ignoring recovery information on journal [ 58.971887][ T4588] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 59.293922][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 59.370777][ T4591] loop0: detected capacity change from 0 to 32768 [ 59.374247][ T4591] JBD2: Ignoring recovery information on journal [ 59.380165][ T4591] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 59.694552][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 59.769821][ T4594] loop0: detected capacity change from 0 to 32768 [ 59.772959][ T4594] JBD2: Ignoring recovery information on journal [ 59.778839][ T4594] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 60.096013][ T4416] ocfs2: Unmounting device (7,0) on (node local) [ 60.177555][ T4597] loop0: detected capacity change from 0 to 32768 [ 60.185230][ T4597] JBD2: Ignoring recovery information on journal [ 60.191878][ T4597] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.