Warning: Permanently added '10.128.0.9' (ED25519) to the list of known hosts. 2025/10/05 11:01:13 parsed 1 programs [ 76.179451][ T4194] cgroup: Unknown subsys name 'net' [ 76.319989][ T4194] cgroup: Unknown subsys name 'rlimit' [ 77.804522][ T4194] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 79.710185][ T4213] chnl_net:caif_netlink_parms(): no params data found [ 79.762418][ T4213] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.770439][ T4213] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.778712][ T4213] device bridge_slave_0 entered promiscuous mode [ 79.787770][ T4213] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.795104][ T4213] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.803460][ T4213] device bridge_slave_1 entered promiscuous mode [ 79.829399][ T4213] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.840497][ T4213] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.868220][ T4213] team0: Port device team_slave_0 added [ 79.875830][ T4213] team0: Port device team_slave_1 added [ 79.895931][ T4213] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.903072][ T4213] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.929992][ T4213] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.943110][ T4213] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.950123][ T4213] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.976444][ T4213] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.011534][ T4213] device hsr_slave_0 entered promiscuous mode [ 80.018641][ T4213] device hsr_slave_1 entered promiscuous mode [ 80.163271][ T4213] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 80.176209][ T4213] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 80.186429][ T4213] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 80.196892][ T4213] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 80.229810][ T4213] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.237109][ T4213] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.245285][ T4213] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.252398][ T4213] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.315861][ T4213] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.331168][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 80.343287][ T156] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.354339][ T156] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.369491][ T4213] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.384006][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.394440][ T156] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.401642][ T156] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.414536][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 80.424015][ T154] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.431128][ T154] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.457482][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 80.467093][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 80.487136][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.503677][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 80.520589][ T4213] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 80.533824][ T4213] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 80.542513][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 80.668761][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 80.677411][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 80.692382][ T4213] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.714940][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 80.725307][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 80.747396][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 80.756493][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 80.769947][ T4213] device veth0_vlan entered promiscuous mode [ 80.786700][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 80.795876][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 80.809060][ T4213] device veth1_vlan entered promiscuous mode [ 80.832577][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 80.843998][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 80.852275][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 80.863297][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 80.874515][ T4213] device veth0_macvtap entered promiscuous mode [ 80.886168][ T4213] device veth1_macvtap entered promiscuous mode [ 80.905237][ T4213] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.913886][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 80.923156][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 80.931524][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 80.941458][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 80.954473][ T4213] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.963839][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 80.973544][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 80.986243][ T4213] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.995635][ T4213] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.004459][ T4213] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.013635][ T4213] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.242163][ T156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.255839][ T156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.271957][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 81.297051][ T4226] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.307022][ T4226] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.318146][ T156] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 81.482082][ T144] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2025/10/05 11:01:23 executed programs: 0 [ 83.566840][ T4285] chnl_net:caif_netlink_parms(): no params data found [ 83.610947][ T4285] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.619111][ T4285] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.627183][ T4285] device bridge_slave_0 entered promiscuous mode [ 83.635547][ T4285] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.642866][ T4285] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.650858][ T4285] device bridge_slave_1 entered promiscuous mode [ 83.674135][ T4285] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.685798][ T4285] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.710613][ T4285] team0: Port device team_slave_0 added [ 83.718238][ T4285] team0: Port device team_slave_1 added [ 83.737461][ T4285] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.745934][ T4285] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.772289][ T4285] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.785023][ T4285] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.791998][ T4285] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.818398][ T4285] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.850293][ T4285] device hsr_slave_0 entered promiscuous mode [ 83.858244][ T4285] device hsr_slave_1 entered promiscuous mode [ 83.865463][ T4285] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 83.873383][ T4285] Cannot create hsr debugfs directory [ 83.937260][ T144] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.494187][ T2856] Bluetooth: hci0: command 0x0409 tx timeout [ 86.775740][ T23] cfg80211: failed to load regulatory.db [ 86.798543][ T144] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.851980][ T144] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 87.583082][ T4297] Bluetooth: hci0: command 0x041b tx timeout [ 87.661640][ T4285] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 87.675616][ T4285] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 87.686602][ T4285] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 87.696305][ T4285] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 87.764478][ T4285] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.791665][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 87.799811][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 87.811297][ T4285] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.821195][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 87.830997][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 87.840055][ T4226] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.847201][ T4226] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.856455][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 87.876629][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 87.885540][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 87.894853][ T4226] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.902052][ T4226] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.915282][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 87.927915][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 87.965435][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 87.974905][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 87.983919][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 87.993513][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 88.002026][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 88.011179][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 88.020756][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 88.033234][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 88.041852][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 88.065063][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 88.146563][ T144] device hsr_slave_0 left promiscuous mode [ 88.153582][ T144] device hsr_slave_1 left promiscuous mode [ 88.160476][ T144] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 88.171459][ T144] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 88.180624][ T144] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 88.191858][ T144] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 88.200244][ T144] device bridge_slave_1 left promiscuous mode [ 88.207675][ T144] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.221483][ T144] device bridge_slave_0 left promiscuous mode [ 88.229310][ T144] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.249712][ T144] device veth1_macvtap left promiscuous mode [ 88.256198][ T144] device veth0_macvtap left promiscuous mode [ 88.262246][ T144] device veth1_vlan left promiscuous mode [ 88.268926][ T144] device veth0_vlan left promiscuous mode [ 88.425984][ T144] team0 (unregistering): Port device team_slave_1 removed [ 88.440112][ T144] team0 (unregistering): Port device team_slave_0 removed [ 88.456301][ T144] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 88.469825][ T144] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 88.529790][ T144] bond0 (unregistering): Released all slaves [ 88.630996][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 88.638549][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 88.650177][ T4285] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.670839][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 88.679984][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 88.702841][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 88.712414][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 88.721910][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 88.731461][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 88.742143][ T4285] device veth0_vlan entered promiscuous mode [ 88.753480][ T4285] device veth1_vlan entered promiscuous mode [ 88.771391][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 88.781453][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 88.789779][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 88.798395][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 88.811189][ T4285] device veth0_macvtap entered promiscuous mode [ 88.830726][ T4285] device veth1_macvtap entered promiscuous mode [ 88.851075][ T4285] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.858959][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 88.868940][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 88.882087][ T4285] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.889940][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 88.899330][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 88.917411][ T4285] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.926817][ T4285] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.935936][ T4285] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.945457][ T4285] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.002180][ T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.013130][ T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.023383][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 89.053256][ T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.061839][ T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.076300][ T4226] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 89.375624][ T4336] loop0: detected capacity change from 0 to 32768 [ 89.405426][ T4336] (syz.0.17,4336,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 89.434813][ T4336] (syz.0.17,4336,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 89.468037][ T4336] JBD2: Ignoring recovery information on journal [ 89.526021][ T4336] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 89.619012][ T4336] [ 89.621387][ T4336] ====================================================== [ 89.628721][ T4336] WARNING: possible circular locking dependency detected [ 89.635770][ T4336] syzkaller #0 Not tainted [ 89.640395][ T4336] ------------------------------------------------------ [ 89.647442][ T4336] syz.0.17/4336 is trying to acquire lock: [ 89.653266][ T4336] ffff88802a79c650 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_setattr+0x886/0x1a10 [ 89.662298][ T4336] [ 89.662298][ T4336] but task is already holding lock: [ 89.669857][ T4336] ffff88805a048660 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0x877/0x1a10 [ 89.679231][ T4336] [ 89.679231][ T4336] which lock already depends on the new lock. [ 89.679231][ T4336] [ 89.689662][ T4336] [ 89.689662][ T4336] the existing dependency chain (in reverse order) is: [ 89.698866][ T4336] [ 89.698866][ T4336] -> #4 (&oi->ip_alloc_sem){+.+.}-{3:3}: [ 89.706765][ T4336] down_write+0x38/0x60 [ 89.711468][ T4336] ocfs2_try_remove_refcount_tree+0xb3/0x320 [ 89.717987][ T4336] ocfs2_xattr_set+0x592/0x11e0 [ 89.723369][ T4336] ocfs2_set_acl+0x4e1/0x590 [ 89.728496][ T4336] ocfs2_iop_set_acl+0x16f/0x270 [ 89.733972][ T4336] posix_acl_xattr_set+0x36f/0x3e0 [ 89.739625][ T4336] __vfs_removexattr+0x3b7/0x3f0 [ 89.745110][ T4336] __vfs_removexattr_locked+0x1e4/0x230 [ 89.751203][ T4336] vfs_removexattr+0x7d/0x1b0 [ 89.756430][ T4336] ovl_workdir_create+0x2ea/0x580 [ 89.761997][ T4336] ovl_get_workdir+0x352/0x11a0 [ 89.767394][ T4336] ovl_fill_super+0x1925/0x2ae0 [ 89.772785][ T4336] mount_nodev+0x52/0xe0 [ 89.777563][ T4336] legacy_get_tree+0xe6/0x180 [ 89.782790][ T4336] vfs_get_tree+0x88/0x270 [ 89.787750][ T4336] do_new_mount+0x24a/0xa40 [ 89.792794][ T4336] __se_sys_mount+0x2d6/0x3c0 [ 89.798157][ T4336] do_syscall_64+0x4c/0xa0 [ 89.803129][ T4336] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 89.809577][ T4336] [ 89.809577][ T4336] -> #3 (&oi->ip_xattr_sem){++++}-{3:3}: [ 89.817541][ T4336] down_read+0x44/0x2e0 [ 89.822232][ T4336] ocfs2_init_acl+0x2fb/0x720 [ 89.827574][ T4336] ocfs2_mknod+0x142f/0x22b0 [ 89.832708][ T4336] ocfs2_mkdir+0x192/0x410 [ 89.837785][ T4336] vfs_mkdir+0x387/0x570 [ 89.842656][ T4336] do_mkdirat+0x1d7/0x5a0 [ 89.847538][ T4336] __x64_sys_mkdir+0x6a/0x80 [ 89.852662][ T4336] do_syscall_64+0x4c/0xa0 [ 89.857618][ T4336] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 89.864049][ T4336] [ 89.864049][ T4336] -> #2 (jbd2_handle){++++}-{0:0}: [ 89.871356][ T4336] start_this_handle+0x1338/0x15a0 [ 89.877018][ T4336] jbd2__journal_start+0x2b7/0x5a0 [ 89.882663][ T4336] jbd2_journal_start+0x26/0x30 [ 89.888224][ T4336] ocfs2_start_trans+0x374/0x6c0 [ 89.893875][ T4336] ocfs2_modify_bh+0xe5/0x470 [ 89.899179][ T4336] ocfs2_local_read_info+0x13b1/0x16e0 [ 89.905163][ T4336] dquot_load_quota_sb+0x756/0xac0 [ 89.910896][ T4336] dquot_load_quota_inode+0x2d8/0x5d0 [ 89.916795][ T4336] ocfs2_enable_quotas+0x1c3/0x440 [ 89.922452][ T4336] ocfs2_fill_super+0x3a1f/0x4d80 [ 89.927998][ T4336] mount_bdev+0x287/0x3c0 [ 89.932851][ T4336] legacy_get_tree+0xe6/0x180 [ 89.938056][ T4336] vfs_get_tree+0x88/0x270 [ 89.942996][ T4336] do_new_mount+0x24a/0xa40 [ 89.948029][ T4336] __se_sys_mount+0x2d6/0x3c0 [ 89.953262][ T4336] do_syscall_64+0x4c/0xa0 [ 89.958204][ T4336] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 89.964633][ T4336] [ 89.964633][ T4336] -> #1 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 89.973147][ T4336] down_read+0x44/0x2e0 [ 89.977855][ T4336] ocfs2_start_trans+0x368/0x6c0 [ 89.983324][ T4336] ocfs2_modify_bh+0xe5/0x470 [ 89.988525][ T4336] ocfs2_local_read_info+0x13b1/0x16e0 [ 89.994512][ T4336] dquot_load_quota_sb+0x756/0xac0 [ 90.000152][ T4336] dquot_load_quota_inode+0x2d8/0x5d0 [ 90.006047][ T4336] ocfs2_enable_quotas+0x1c3/0x440 [ 90.011687][ T4336] ocfs2_fill_super+0x3a1f/0x4d80 [ 90.017233][ T4336] mount_bdev+0x287/0x3c0 [ 90.022084][ T4336] legacy_get_tree+0xe6/0x180 [ 90.027287][ T4336] vfs_get_tree+0x88/0x270 [ 90.032231][ T4336] do_new_mount+0x24a/0xa40 [ 90.037262][ T4336] __se_sys_mount+0x2d6/0x3c0 [ 90.042465][ T4336] do_syscall_64+0x4c/0xa0 [ 90.047406][ T4336] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 90.053866][ T4336] [ 90.053866][ T4336] -> #0 (sb_internal#2){.+.+}-{0:0}: [ 90.061344][ T4336] __lock_acquire+0x2c33/0x7c60 [ 90.066727][ T4336] lock_acquire+0x197/0x3f0 [ 90.071762][ T4336] ocfs2_start_trans+0x269/0x6c0 [ 90.077227][ T4336] ocfs2_setattr+0x886/0x1a10 [ 90.082427][ T4336] notify_change+0xbcd/0xee0 [ 90.087577][ T4336] ovl_workdir_create+0x3ee/0x580 [ 90.093129][ T4336] ovl_get_workdir+0x352/0x11a0 [ 90.098527][ T4336] ovl_fill_super+0x1925/0x2ae0 [ 90.103901][ T4336] mount_nodev+0x52/0xe0 [ 90.108769][ T4336] legacy_get_tree+0xe6/0x180 [ 90.113969][ T4336] vfs_get_tree+0x88/0x270 [ 90.119018][ T4336] do_new_mount+0x24a/0xa40 [ 90.124131][ T4336] __se_sys_mount+0x2d6/0x3c0 [ 90.129338][ T4336] do_syscall_64+0x4c/0xa0 [ 90.134278][ T4336] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 90.140872][ T4336] [ 90.140872][ T4336] other info that might help us debug this: [ 90.140872][ T4336] [ 90.151101][ T4336] Chain exists of: [ 90.151101][ T4336] sb_internal#2 --> &oi->ip_xattr_sem --> &oi->ip_alloc_sem [ 90.151101][ T4336] [ 90.164488][ T4336] Possible unsafe locking scenario: [ 90.164488][ T4336] [ 90.171940][ T4336] CPU0 CPU1 [ 90.177301][ T4336] ---- ---- [ 90.182664][ T4336] lock(&oi->ip_alloc_sem); [ 90.187261][ T4336] lock(&oi->ip_xattr_sem); [ 90.194398][ T4336] lock(&oi->ip_alloc_sem); [ 90.201599][ T4336] lock(sb_internal#2); [ 90.205848][ T4336] [ 90.205848][ T4336] *** DEADLOCK *** [ 90.205848][ T4336] [ 90.214085][ T4336] 5 locks held by syz.0.17/4336: [ 90.219108][ T4336] #0: ffff88807d5b40e0 (&type->s_umount_key#54/1){+.+.}-{3:3}, at: alloc_super+0x201/0x950 [ 90.229219][ T4336] #1: ffff88802a79c460 (sb_writers#13){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90 [ 90.238564][ T4336] #2: ffff88805a01ed88 (&sb->s_type->i_mutex_key#21/1){+.+.}-{3:3}, at: ovl_workdir_create+0x127/0x580 [ 90.249714][ T4336] #3: ffff88805a0489c8 (&sb->s_type->i_mutex_key#23){+.+.}-{3:3}, at: ovl_workdir_create+0x3d3/0x580 [ 90.260789][ T4336] #4: ffff88805a048660 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0x877/0x1a10 [ 90.270543][ T4336] [ 90.270543][ T4336] stack backtrace: [ 90.276444][ T4336] CPU: 0 PID: 4336 Comm: syz.0.17 Not tainted syzkaller #0 [ 90.283645][ T4336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 90.293809][ T4336] Call Trace: [ 90.297093][ T4336] [ 90.300029][ T4336] dump_stack_lvl+0x168/0x230 [ 90.304822][ T4336] ? load_image+0x3b0/0x3b0 [ 90.309340][ T4336] ? show_regs_print_info+0x20/0x20 [ 90.314562][ T4336] ? print_circular_bug+0x12b/0x1a0 [ 90.319873][ T4336] check_noncircular+0x274/0x310 [ 90.324951][ T4336] ? add_chain_block+0x940/0x940 [ 90.329903][ T4336] ? lockdep_lock+0xdc/0x1e0 [ 90.334525][ T4336] ? add_lock_to_list+0x18d/0x280 [ 90.339569][ T4336] ? mark_lock+0x94/0x320 [ 90.343915][ T4336] __lock_acquire+0x2c33/0x7c60 [ 90.348791][ T4336] ? verify_lock_unused+0x140/0x140 [ 90.353998][ T4336] ? verify_lock_unused+0x140/0x140 [ 90.359209][ T4336] ? verify_lock_unused+0x140/0x140 [ 90.364590][ T4336] lock_acquire+0x197/0x3f0 [ 90.369117][ T4336] ? ocfs2_setattr+0x886/0x1a10 [ 90.373977][ T4336] ? __might_sleep+0xf0/0xf0 [ 90.378592][ T4336] ? do_raw_spin_lock+0x11d/0x280 [ 90.383624][ T4336] ? read_lock_is_recursive+0x10/0x10 [ 90.389001][ T4336] ? __rwlock_init+0x140/0x140 [ 90.393774][ T4336] ? do_raw_spin_unlock+0x11d/0x230 [ 90.399064][ T4336] ocfs2_start_trans+0x269/0x6c0 [ 90.404011][ T4336] ? ocfs2_setattr+0x886/0x1a10 [ 90.408872][ T4336] ? ocfs2_recovery_exit+0x50/0x50 [ 90.413995][ T4336] ? mark_lock+0x94/0x320 [ 90.418421][ T4336] ocfs2_setattr+0x886/0x1a10 [ 90.423139][ T4336] ? ocfs2_extend_allocation+0x1760/0x1760 [ 90.428957][ T4336] ? ktime_get_coarse_real_ts64+0x36/0x120 [ 90.434767][ T4336] ? seqcount_lockdep_reader_access+0x172/0x1c0 [ 90.441042][ T4336] ? ktime_get_coarse_real_ts64+0x10c/0x120 [ 90.446948][ T4336] ? current_time+0x197/0x2b0 [ 90.451636][ T4336] ? atime_needs_update+0x780/0x780 [ 90.456926][ T4336] ? __might_sleep+0xf0/0xf0 [ 90.461518][ T4336] ? preempt_count_add+0x8d/0x190 [ 90.466551][ T4336] ? bpf_lsm_inode_setattr+0x5/0x10 [ 90.471757][ T4336] ? try_break_deleg+0x79/0x120 [ 90.476621][ T4336] ? ocfs2_extend_allocation+0x1760/0x1760 [ 90.482448][ T4336] notify_change+0xbcd/0xee0 [ 90.487139][ T4336] ovl_workdir_create+0x3ee/0x580 [ 90.492177][ T4336] ? ovl_mount_dir_noesc+0x240/0x240 [ 90.497625][ T4336] ? rcu_read_lock_any_held+0xb0/0x120 [ 90.503107][ T4336] ? __mnt_want_write+0x1e2/0x260 [ 90.508170][ T4336] ovl_get_workdir+0x352/0x11a0 [ 90.513036][ T4336] ? do_raw_spin_unlock+0x11d/0x230 [ 90.518332][ T4336] ? ovl_get_upper+0x580/0x580 [ 90.523131][ T4336] ? ovl_inuse_trylock+0xb9/0xd0 [ 90.528075][ T4336] ? ovl_get_upper+0x3f8/0x580 [ 90.532852][ T4336] ? ovl_fill_super+0x2ae0/0x2ae0 [ 90.537899][ T4336] ovl_fill_super+0x1925/0x2ae0 [ 90.542769][ T4336] ? ovl_mount+0x30/0x30 [ 90.547019][ T4336] ? preempt_count_add+0x8d/0x190 [ 90.552049][ T4336] ? sget+0x427/0x440 [ 90.556039][ T4336] ? free_anon_bdev+0x20/0x20 [ 90.560817][ T4336] ? ovl_mount+0x30/0x30 [ 90.565066][ T4336] mount_nodev+0x52/0xe0 [ 90.569317][ T4336] legacy_get_tree+0xe6/0x180 [ 90.574001][ T4336] ? virtio_fs_zero_page_range+0x120/0x120 [ 90.579820][ T4336] vfs_get_tree+0x88/0x270 [ 90.584244][ T4336] do_new_mount+0x24a/0xa40 [ 90.588754][ T4336] __se_sys_mount+0x2d6/0x3c0 [ 90.593438][ T4336] ? __x64_sys_mount+0xc0/0xc0 [ 90.598232][ T4336] ? lockdep_hardirqs_on+0x94/0x140 [ 90.603434][ T4336] ? __x64_sys_mount+0x1c/0xc0 [ 90.608208][ T4336] do_syscall_64+0x4c/0xa0 [ 90.612627][ T4336] ? clear_bhb_loop+0x30/0x80 [ 90.617313][ T4336] ? clear_bhb_loop+0x30/0x80 [ 90.621993][ T4336] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 90.627912][ T4336] RIP: 0033:0x7f7138a79ec9 [ 90.632346][ T4336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 90.651963][ T4336] RSP: 002b:00007ffe8bb30878 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 90.660402][ T4336] RAX: ffffffffffffffda RBX: 00007f7138cd0fa0 RCX: 00007f7138a79ec9 [ 90.668473][ T4336] RDX: 0000200000000080 RSI: 00002000000000c0 RDI: 0000000000000000 [ 90.676451][ T4336] RBP: 00007f7138afcf91 R08: 0000200000000340 R09: 0000000000000000 [ 90.685119][ T4336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 90.693204][ T4336] R13: 00007f7138cd0fa0 R14: 00007f7138cd0fa0 R15: 0000000000000005 [ 90.701202][ T4336] [ 90.708601][ T4296] Bluetooth: hci0: command 0x040f tx timeout [ 90.748594][ T4336] overlayfs: upper fs does not support tmpfile. [ 90.756204][ T4336] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 90.765583][ T4336] overlayfs: upper fs missing required features. [ 90.823541][ T4285] ocfs2: Unmounting device (7,0) on (node local)