Warning: Permanently added '10.128.0.199' (ED25519) to the list of known hosts. 2026/04/05 21:03:36 parsed 1 programs syzkaller login: [ 92.123746][ T810] cfg80211: failed to load regulatory.db [ 95.185235][ T5796] cgroup: Unknown subsys name 'net' [ 95.436591][ T5796] cgroup: Unknown subsys name 'cpuset' [ 95.491691][ T5796] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 97.428588][ T5796] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 101.736188][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 101.854263][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.854992][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 101.855353][ T5826] bridge_slave_0: entered allmulticast mode [ 101.857317][ T5826] bridge_slave_0: entered promiscuous mode [ 101.890370][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.890478][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 101.890626][ T5826] bridge_slave_1: entered allmulticast mode [ 101.913266][ T5826] bridge_slave_1: entered promiscuous mode [ 101.954841][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 101.957799][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 102.113420][ T5826] team0: Port device team_slave_0 added [ 102.116685][ T5826] team0: Port device team_slave_1 added [ 102.162136][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 102.162150][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 102.162168][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 102.164463][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 102.164474][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 102.164492][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 102.299976][ T5826] hsr_slave_0: entered promiscuous mode [ 102.302372][ T5826] hsr_slave_1: entered promiscuous mode [ 102.621861][ T5826] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 102.671579][ T5826] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 102.714832][ T5826] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 102.963777][ T5826] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 103.079807][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 103.104386][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 103.120380][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.127900][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 103.147974][ T1167] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.148216][ T1167] bridge0: port 2(bridge_slave_1) entered forwarding state [ 103.375397][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.427414][ T5826] veth0_vlan: entered promiscuous mode [ 103.440818][ T5826] veth1_vlan: entered promiscuous mode [ 103.476370][ T5826] veth0_macvtap: entered promiscuous mode [ 103.480557][ T5826] veth1_macvtap: entered promiscuous mode [ 103.513020][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 103.529719][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 103.550837][ T69] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.562818][ T69] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.564635][ T69] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.567499][ T69] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.335832][ T171] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.595644][ T171] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.415364][ T171] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.128186][ T5875] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 106.133639][ T5875] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 106.136427][ T5875] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 106.150236][ T5875] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 106.155422][ T5875] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 106.395854][ T171] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.117869][ T171] bridge_slave_1: left allmulticast mode [ 107.118084][ T171] bridge_slave_1: left promiscuous mode [ 107.120000][ T171] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.213248][ T171] bridge_slave_0: left allmulticast mode [ 107.213279][ T171] bridge_slave_0: left promiscuous mode [ 107.213845][ T171] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.981948][ T171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 108.061863][ T171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 108.083765][ T171] bond0 (unregistering): Released all slaves [ 108.482145][ T171] hsr_slave_0: left promiscuous mode [ 108.531248][ T171] hsr_slave_1: left promiscuous mode [ 108.532633][ T171] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 108.532710][ T171] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 108.601240][ T171] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 108.601271][ T171] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 108.685160][ T171] veth1_macvtap: left promiscuous mode [ 108.685407][ T171] veth0_macvtap: left promiscuous mode [ 108.685697][ T171] veth1_vlan: left promiscuous mode [ 108.685989][ T171] veth0_vlan: left promiscuous mode [ 109.482088][ T171] team0 (unregistering): Port device team_slave_1 removed [ 109.521816][ T171] team0 (unregistering): Port device team_slave_0 removed [ 109.964242][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.964270][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.069094][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.069116][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2026/04/05 21:03:57 executed programs: 0 [ 112.750282][ T5875] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 112.763211][ T5875] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 112.764848][ T5875] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 112.766313][ T5875] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 112.767126][ T5875] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 113.319698][ T5967] chnl_net:caif_netlink_parms(): no params data found [ 113.931510][ T5967] bridge0: port 1(bridge_slave_0) entered blocking state [ 113.931597][ T5967] bridge0: port 1(bridge_slave_0) entered disabled state [ 113.931751][ T5967] bridge_slave_0: entered allmulticast mode [ 113.933683][ T5967] bridge_slave_0: entered promiscuous mode [ 113.992583][ T5967] bridge0: port 2(bridge_slave_1) entered blocking state [ 113.992686][ T5967] bridge0: port 2(bridge_slave_1) entered disabled state [ 113.992840][ T5967] bridge_slave_1: entered allmulticast mode [ 113.994729][ T5967] bridge_slave_1: entered promiscuous mode [ 114.094272][ T5967] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 114.143755][ T5967] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 114.203141][ T5967] team0: Port device team_slave_0 added [ 114.206291][ T5967] team0: Port device team_slave_1 added [ 114.255223][ T5967] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 114.255247][ T5967] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 114.255274][ T5967] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 114.258118][ T5967] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 114.258133][ T5967] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 114.258159][ T5967] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 114.479675][ T5967] hsr_slave_0: entered promiscuous mode [ 114.480597][ T5967] hsr_slave_1: entered promiscuous mode [ 114.822597][ T5875] Bluetooth: hci0: command tx timeout [ 116.279754][ T5967] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 116.306654][ T5967] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 116.348628][ T5967] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 116.385976][ T5967] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 116.577470][ T5967] 8021q: adding VLAN 0 to HW filter on device bond0 [ 116.606746][ T5967] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.624557][ T171] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.624789][ T171] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.650131][ T171] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.650223][ T171] bridge0: port 2(bridge_slave_1) entered forwarding state [ 116.901239][ T5875] Bluetooth: hci0: command tx timeout [ 116.994220][ T5967] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 117.068542][ T5967] veth0_vlan: entered promiscuous mode [ 117.087260][ T5967] veth1_vlan: entered promiscuous mode [ 117.142771][ T5967] veth0_macvtap: entered promiscuous mode [ 117.148387][ T5967] veth1_macvtap: entered promiscuous mode [ 117.180005][ T5967] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 117.200377][ T5967] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 117.218261][ T69] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.218491][ T69] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.218532][ T69] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.218570][ T69] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.509772][ T1167] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.509794][ T1167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.589196][ T1167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.589218][ T1167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2026/04/05 21:04:02 executed programs: 2 [ 118.099179][ T6063] loop0: detected capacity change from 0 to 32768 [ 118.159302][ T6063] (syz.0.17,6063,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 118.160902][ T6063] (syz.0.17,6063,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 118.264957][ T6063] JBD2: Ignoring recovery information on journal [ 118.388092][ T6063] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 118.536886][ T6063] [ 118.536899][ T6063] ====================================================== [ 118.536908][ T6063] WARNING: possible circular locking dependency detected [ 118.536929][ T6063] syzkaller #0 Not tainted [ 118.536940][ T6063] ------------------------------------------------------ [ 118.536948][ T6063] syz.0.17/6063 is trying to acquire lock: [ 118.536959][ T6063] ffff888055f7db90 (&oi->ip_alloc_sem){+.+.}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xb6/0x340 [ 118.537026][ T6063] [ 118.537026][ T6063] but task is already holding lock: [ 118.537034][ T6063] ffff888055f7dc18 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa4/0x340 [ 118.537085][ T6063] [ 118.537085][ T6063] which lock already depends on the new lock. [ 118.537085][ T6063] [ 118.537093][ T6063] [ 118.537093][ T6063] the existing dependency chain (in reverse order) is: [ 118.537100][ T6063] [ 118.537100][ T6063] -> #3 (&oi->ip_xattr_sem){++++}-{4:4}: [ 118.537129][ T6063] down_read+0x97/0x200 [ 118.537153][ T6063] ocfs2_init_acl+0x1c3/0x800 [ 118.537176][ T6063] ocfs2_mknod+0x1679/0x2290 [ 118.537195][ T6063] ocfs2_create+0x195/0x490 [ 118.537212][ T6063] path_openat+0x13b4/0x38a0 [ 118.537240][ T6063] do_file_open+0x23e/0x4a0 [ 118.537267][ T6063] do_sys_openat2+0x113/0x200 [ 118.537292][ T6063] __x64_sys_openat+0x138/0x170 [ 118.537316][ T6063] do_syscall_64+0x14d/0xf80 [ 118.537337][ T6063] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.537358][ T6063] [ 118.537358][ T6063] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 118.537388][ T6063] down_read+0x97/0x200 [ 118.537410][ T6063] ocfs2_start_trans+0x3ac/0x700 [ 118.537434][ T6063] ocfs2_modify_bh+0xe3/0x4d0 [ 118.537455][ T6063] ocfs2_local_read_info+0x1454/0x1810 [ 118.537476][ T6063] dquot_load_quota_sb+0x791/0xbd0 [ 118.537498][ T6063] dquot_load_quota_inode+0x2e1/0x5d0 [ 118.537522][ T6063] ocfs2_enable_quotas+0x1c8/0x4a0 [ 118.537552][ T6063] ocfs2_fill_super+0x53b7/0x69a0 [ 118.537581][ T6063] get_tree_bdev_flags+0x431/0x4f0 [ 118.537612][ T6063] vfs_get_tree+0x92/0x2a0 [ 118.537628][ T6063] do_new_mount+0x341/0xd30 [ 118.537652][ T6063] __se_sys_mount+0x31d/0x420 [ 118.537676][ T6063] do_syscall_64+0x14d/0xf80 [ 118.537697][ T6063] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.537717][ T6063] [ 118.537717][ T6063] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 118.537751][ T6063] ocfs2_start_trans+0x2ac/0x700 [ 118.537775][ T6063] ocfs2_truncate_file+0x631/0x1540 [ 118.537808][ T6063] ocfs2_setattr+0x15e5/0x1cc0 [ 118.537847][ T6063] notify_change+0xc18/0xf60 [ 118.537867][ T6063] do_truncate+0x1c2/0x250 [ 118.537883][ T6063] path_openat+0x2fc4/0x38a0 [ 118.537913][ T6063] do_file_open+0x23e/0x4a0 [ 118.537944][ T6063] do_sys_openat2+0x113/0x200 [ 118.537969][ T6063] __x64_sys_openat+0x138/0x170 [ 118.537993][ T6063] do_syscall_64+0x14d/0xf80 [ 118.538015][ T6063] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.538035][ T6063] [ 118.538035][ T6063] -> #0 (&oi->ip_alloc_sem){+.+.}-{4:4}: [ 118.538064][ T6063] __lock_acquire+0x15a5/0x2cf0 [ 118.538083][ T6063] lock_acquire+0xf0/0x2e0 [ 118.538099][ T6063] down_write+0x3a/0x50 [ 118.538121][ T6063] ocfs2_try_remove_refcount_tree+0xb6/0x340 [ 118.538144][ T6063] ocfs2_truncate_file+0xdf3/0x1540 [ 118.538176][ T6063] ocfs2_setattr+0x15e5/0x1cc0 [ 118.538207][ T6063] notify_change+0xc18/0xf60 [ 118.538227][ T6063] do_truncate+0x1c2/0x250 [ 118.538243][ T6063] path_openat+0x2fc4/0x38a0 [ 118.538273][ T6063] do_file_open+0x23e/0x4a0 [ 118.538305][ T6063] do_sys_openat2+0x113/0x200 [ 118.538329][ T6063] __x64_sys_openat+0x138/0x170 [ 118.538354][ T6063] do_syscall_64+0x14d/0xf80 [ 118.538375][ T6063] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.538395][ T6063] [ 118.538395][ T6063] other info that might help us debug this: [ 118.538395][ T6063] [ 118.538402][ T6063] Chain exists of: [ 118.538402][ T6063] &oi->ip_alloc_sem --> &journal->j_trans_barrier --> &oi->ip_xattr_sem [ 118.538402][ T6063] [ 118.538438][ T6063] Possible unsafe locking scenario: [ 118.538438][ T6063] [ 118.538446][ T6063] CPU0 CPU1 [ 118.538453][ T6063] ---- ---- [ 118.538459][ T6063] lock(&oi->ip_xattr_sem); [ 118.538474][ T6063] lock(&journal->j_trans_barrier); [ 118.538491][ T6063] lock(&oi->ip_xattr_sem); [ 118.538508][ T6063] lock(&oi->ip_alloc_sem); [ 118.538522][ T6063] [ 118.538522][ T6063] *** DEADLOCK *** [ 118.538522][ T6063] [ 118.538528][ T6063] 3 locks held by syz.0.17/6063: [ 118.538540][ T6063] #0: ffff88803995e480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 118.538606][ T6063] #1: ffff888055f7df40 (&sb->s_type->i_mutex_key#24){+.+.}-{4:4}, at: do_truncate+0x18f/0x250 [ 118.538660][ T6063] #2: ffff888055f7dc18 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa4/0x340 [ 118.538716][ T6063] [ 118.538716][ T6063] stack backtrace: [ 118.538746][ T6063] CPU: 0 UID: 0 PID: 6063 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 118.538769][ T6063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 118.538791][ T6063] Call Trace: [ 118.538804][ T6063] [ 118.538813][ T6063] dump_stack_lvl+0xe8/0x150 [ 118.538852][ T6063] print_circular_bug+0x2e1/0x300 [ 118.538881][ T6063] check_noncircular+0x12e/0x150 [ 118.538909][ T6063] __lock_acquire+0x15a5/0x2cf0 [ 118.538932][ T6063] ? do_raw_spin_lock+0x12b/0x2f0 [ 118.538969][ T6063] lock_acquire+0xf0/0x2e0 [ 118.538986][ T6063] ? ocfs2_try_remove_refcount_tree+0xb6/0x340 [ 118.539020][ T6063] down_write+0x3a/0x50 [ 118.539044][ T6063] ? ocfs2_try_remove_refcount_tree+0xb6/0x340 [ 118.539070][ T6063] ocfs2_try_remove_refcount_tree+0xb6/0x340 [ 118.539099][ T6063] ? __pfx_ocfs2_try_remove_refcount_tree+0x10/0x10 [ 118.539127][ T6063] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 118.539151][ T6063] ? lockdep_hardirqs_on+0x7a/0x110 [ 118.539173][ T6063] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 118.539198][ T6063] ocfs2_truncate_file+0xdf3/0x1540 [ 118.539229][ T6063] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 118.539259][ T6063] ? __pfx_ocfs2_truncate_file+0x10/0x10 [ 118.539291][ T6063] ? rt_spin_unlock+0x14f/0x200 [ 118.539322][ T6063] ? rt_spin_unlock+0x160/0x200 [ 118.539353][ T6063] ? ocfs2_inode_lock_tracker+0x436/0x710 [ 118.539379][ T6063] ? __pfx_ocfs2_inode_lock_tracker+0x10/0x10 [ 118.539402][ T6063] ? ocfs2_rw_lock+0x13a/0x250 [ 118.539421][ T6063] ? __pfx___dquot_initialize+0x10/0x10 [ 118.539444][ T6063] ? __pfx_ocfs2_rw_lock+0x10/0x10 [ 118.539463][ T6063] ? rt_spin_unlock+0x14f/0x200 [ 118.539494][ T6063] ? jbd2_journal_begin_ordered_truncate+0xbb/0x150 [ 118.539522][ T6063] ocfs2_setattr+0x15e5/0x1cc0 [ 118.539558][ T6063] ? __pfx_ocfs2_setattr+0x10/0x10 [ 118.539590][ T6063] ? smk_access+0x14c/0x4e0 [ 118.539627][ T6063] ? smack_inode_setattr+0x191/0x230 [ 118.539659][ T6063] ? __pfx_smack_inode_setattr+0x10/0x10 [ 118.539692][ T6063] ? current_time+0x22a/0x370 [ 118.539723][ T6063] ? evm_inode_setattr+0x1b6/0x7d0 [ 118.539748][ T6063] ? __pfx_current_time+0x10/0x10 [ 118.539781][ T6063] ? try_break_deleg+0x5b/0x190 [ 118.539801][ T6063] ? __pfx_ocfs2_setattr+0x10/0x10 [ 118.539843][ T6063] notify_change+0xc18/0xf60 [ 118.539870][ T6063] do_truncate+0x1c2/0x250 [ 118.539889][ T6063] ? __pfx_do_truncate+0x10/0x10 [ 118.539918][ T6063] path_openat+0x2fc4/0x38a0 [ 118.539965][ T6063] ? __pfx_path_openat+0x10/0x10 [ 118.539997][ T6063] ? __lock_acquire+0x6b5/0x2cf0 [ 118.540018][ T6063] ? kmem_cache_alloc_noprof+0x33b/0x680 [ 118.540053][ T6063] ? do_raw_spin_lock+0x12b/0x2f0 [ 118.540085][ T6063] do_file_open+0x23e/0x4a0 [ 118.540116][ T6063] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 118.540142][ T6063] ? __pfx_do_file_open+0x10/0x10 [ 118.540171][ T6063] ? rt_mutex_slowunlock+0x4a7/0x8b0 [ 118.540214][ T6063] ? alloc_fd+0x64e/0x6c0 [ 118.540244][ T6063] do_sys_openat2+0x113/0x200 [ 118.540270][ T6063] ? __se_sys_futex+0x3a8/0x450 [ 118.540291][ T6063] ? __pfx_do_sys_openat2+0x10/0x10 [ 118.540319][ T6063] ? __pfx___se_sys_futex+0x10/0x10 [ 118.540339][ T6063] ? rcu_is_watching+0x15/0xb0 [ 118.540364][ T6063] __x64_sys_openat+0x138/0x170 [ 118.540393][ T6063] do_syscall_64+0x14d/0xf80 [ 118.540416][ T6063] ? trace_irq_disable+0x3b/0x150 [ 118.540441][ T6063] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.540463][ T6063] ? clear_bhb_loop+0x40/0x90 [ 118.540486][ T6063] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.540508][ T6063] RIP: 0033:0x7f11a6b4c819 [ 118.540534][ T6063] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 118.540552][ T6063] RSP: 002b:00007ffcf3789728 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 118.540572][ T6063] RAX: ffffffffffffffda RBX: 00007f11a6dc5fa0 RCX: 00007f11a6b4c819 [ 118.540588][ T6063] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 118.540602][ T6063] RBP: 00007f11a6be2c91 R08: 0000000000000000 R09: 0000000000000000 [ 118.540615][ T6063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 118.540627][ T6063] R13: 00007f11a6dc5fac R14: 00007f11a6dc5fa0 R15: 00007f11a6dc5fa0 [ 118.540651][ T6063] [ 118.981231][ T5875] Bluetooth: hci0: command tx timeout [ 119.218174][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 119.765130][ T6091] loop0: detected capacity change from 0 to 32768 [ 119.767671][ T6091] (syz.0.18,6091,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 119.767899][ T6091] (syz.0.18,6091,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 119.814818][ T6091] JBD2: Ignoring recovery information on journal [ 119.868168][ T6091] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 120.041787][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 120.338845][ T6113] loop0: detected capacity change from 0 to 32768 [ 120.360855][ T6113] (syz.0.19,6113,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 120.362382][ T6113] (syz.0.19,6113,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 120.381712][ T6113] JBD2: Ignoring recovery information on journal [ 120.419364][ T6113] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 120.551866][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 120.767230][ T6117] loop0: detected capacity change from 0 to 32768 [ 120.778487][ T6117] (syz.0.20,6117,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 120.778728][ T6117] (syz.0.20,6117,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 120.808312][ T6117] JBD2: Ignoring recovery information on journal [ 120.832999][ T6117] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 120.961843][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 121.061169][ T5875] Bluetooth: hci0: command tx timeout [ 121.181705][ T6120] loop0: detected capacity change from 0 to 32768 [ 121.188005][ T6120] (syz.0.21,6120,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 121.188209][ T6120] (syz.0.21,6120,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 121.212010][ T6120] JBD2: Ignoring recovery information on journal [ 121.258804][ T6120] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 121.388867][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 121.603078][ T6123] loop0: detected capacity change from 0 to 32768 [ 121.608430][ T6123] (syz.0.22,6123,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 121.608662][ T6123] (syz.0.22,6123,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 121.634014][ T6123] JBD2: Ignoring recovery information on journal [ 121.694592][ T6123] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 121.811800][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 122.025931][ T6126] loop0: detected capacity change from 0 to 32768 [ 122.039681][ T6126] (syz.0.23,6126,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 122.039878][ T6126] (syz.0.23,6126,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 122.072165][ T6126] JBD2: Ignoring recovery information on journal [ 122.101913][ T6126] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 122.231817][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 122.457450][ T6129] loop0: detected capacity change from 0 to 32768 [ 122.459775][ T6129] (syz.0.24,6129,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 122.459998][ T6129] (syz.0.24,6129,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 122.480865][ T6129] JBD2: Ignoring recovery information on journal [ 122.520864][ T6129] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 122.651869][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 122.860802][ T6132] loop0: detected capacity change from 0 to 32768 [ 122.872308][ T6132] (syz.0.25,6132,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 122.872523][ T6132] (syz.0.25,6132,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 122.880040][ T6132] JBD2: Ignoring recovery information on journal [ 122.963544][ T6132] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. 2026/04/05 21:04:07 executed programs: 11 [ 123.111957][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 123.320199][ T6135] loop0: detected capacity change from 0 to 32768 [ 123.329276][ T6135] (syz.0.26,6135,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 123.329474][ T6135] (syz.0.26,6135,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 123.360464][ T6135] JBD2: Ignoring recovery information on journal [ 123.387582][ T6135] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 123.551835][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 123.762973][ T6138] loop0: detected capacity change from 0 to 32768 [ 123.765475][ T6138] (syz.0.27,6138,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 123.765701][ T6138] (syz.0.27,6138,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 123.806818][ T6138] JBD2: Ignoring recovery information on journal [ 123.852680][ T6138] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 123.971816][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 124.182585][ T6141] loop0: detected capacity change from 0 to 32768 [ 124.198320][ T6141] (syz.0.28,6141,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 124.198604][ T6141] (syz.0.28,6141,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 124.231732][ T6141] JBD2: Ignoring recovery information on journal [ 124.256802][ T6141] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 124.382736][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 124.602480][ T6144] loop0: detected capacity change from 0 to 32768 [ 124.619041][ T6144] (syz.0.29,6144,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 124.619282][ T6144] (syz.0.29,6144,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 124.654075][ T6144] JBD2: Ignoring recovery information on journal [ 124.697779][ T6144] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 124.821916][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 125.031893][ T6147] loop0: detected capacity change from 0 to 32768 [ 125.034661][ T6147] (syz.0.30,6147,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.034883][ T6147] (syz.0.30,6147,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.044523][ T6147] JBD2: Ignoring recovery information on journal [ 125.094137][ T6147] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 125.231836][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 125.450363][ T6150] loop0: detected capacity change from 0 to 32768 [ 125.462869][ T6150] (syz.0.31,6150,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.463057][ T6150] (syz.0.31,6150,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.499062][ T6150] JBD2: Ignoring recovery information on journal [ 125.526566][ T6150] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 125.651820][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 125.866469][ T6153] loop0: detected capacity change from 0 to 32768 [ 125.879127][ T6153] (syz.0.32,6153,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.879341][ T6153] (syz.0.32,6153,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.909938][ T6153] JBD2: Ignoring recovery information on journal [ 125.942137][ T6153] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 126.061844][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 126.277807][ T6156] loop0: detected capacity change from 0 to 32768 [ 126.280308][ T6156] (syz.0.33,6156,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 126.280542][ T6156] (syz.0.33,6156,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 126.317467][ T6156] JBD2: Ignoring recovery information on journal [ 126.344700][ T6156] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 126.481877][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 126.702920][ T6159] loop0: detected capacity change from 0 to 32768 [ 126.705280][ T6159] (syz.0.34,6159,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 126.705500][ T6159] (syz.0.34,6159,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 126.712604][ T6159] JBD2: Ignoring recovery information on journal [ 126.751845][ T6159] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 126.881904][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 127.091927][ T6162] loop0: detected capacity change from 0 to 32768 [ 127.109186][ T6162] (syz.0.35,6162,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.109759][ T6162] (syz.0.35,6162,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.144114][ T6162] JBD2: Ignoring recovery information on journal [ 127.172490][ T6162] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 127.302350][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 127.522503][ T6166] (syz.0.36,6166,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.529091][ T6166] (syz.0.36,6166,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.561569][ T6166] JBD2: Ignoring recovery information on journal [ 127.592530][ T6166] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 127.731891][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 127.949260][ T6170] (syz.0.37,6170,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.949489][ T6170] (syz.0.37,6170,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.978127][ T6170] JBD2: Ignoring recovery information on journal [ 128.009204][ T6170] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. 2026/04/05 21:04:13 executed programs: 23 [ 128.131871][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 128.359555][ T6175] set_capacity_and_notify: 2 callbacks suppressed [ 128.359571][ T6175] loop0: detected capacity change from 0 to 32768 [ 128.376718][ T6175] (syz.0.38,6175,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.376941][ T6175] (syz.0.38,6175,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.412304][ T6175] JBD2: Ignoring recovery information on journal [ 128.442206][ T6175] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.