Warning: Permanently added '10.128.1.128' (ED25519) to the list of known hosts.
1970/01/01 00:00:33 parsed 1 programs
[   34.593750][ T4325] cgroup: Unknown subsys name 'net'
[   34.852043][ T4325] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   35.132912][ T4325] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   41.130729][  T237] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.132013][  T237] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.134330][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   41.144320][  T237] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.145546][  T237] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.146956][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   41.521902][ T4370] chnl_net:caif_netlink_parms(): no params data found
[   41.538080][ T4370] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.539335][ T4370] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.541269][ T4370] device bridge_slave_0 entered promiscuous mode
[   41.543428][ T4370] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.544522][ T4370] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.545933][ T4370] device bridge_slave_1 entered promiscuous mode
[   41.553458][ T4370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   41.555668][ T4370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   41.562767][ T4370] team0: Port device team_slave_0 added
[   41.564526][ T4370] team0: Port device team_slave_1 added
[   41.600583][ T4370] batman_adv: batadv0: Adding interface: batadv_slave_0
[   41.601654][ T4370] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.605538][ T4370] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   41.607982][ T4370] batman_adv: batadv0: Adding interface: batadv_slave_1
[   41.609040][ T4370] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.613165][ T4370] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   41.661214][ T4370] device hsr_slave_0 entered promiscuous mode
[   41.699690][ T4370] device hsr_slave_1 entered promiscuous mode
[   41.792724][ T4370] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   41.831451][ T4370] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   41.871247][ T4370] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   41.910537][ T4370] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   41.947963][ T4370] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.949210][ T4370] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.950652][ T4370] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.951729][ T4370] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.968542][ T4370] 8021q: adding VLAN 0 to HW filter on device bond0
[   41.972604][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   41.974597][  T237] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.976148][  T237] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.981744][ T4370] 8021q: adding VLAN 0 to HW filter on device team0
[   41.984739][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   41.986187][  T237] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.987292][  T237] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.991117][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   41.992574][  T237] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.993657][  T237] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.999316][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   42.001601][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   42.004247][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   42.006708][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   42.009267][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   42.012157][ T4370] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   42.059967][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   42.061130][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   42.064175][ T4370] 8021q: adding VLAN 0 to HW filter on device batadv0
[   42.069336][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   42.077586][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   42.079315][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   42.081310][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   42.083522][ T4370] device veth0_vlan entered promiscuous mode
[   42.086516][ T4370] device veth1_vlan entered promiscuous mode
[   42.092476][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   42.093947][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   42.095458][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   42.097661][ T4370] device veth0_macvtap entered promiscuous mode
[   42.100373][ T4370] device veth1_macvtap entered promiscuous mode
[   42.105543][ T4370] batman_adv: batadv0: Interface activated: batadv_slave_0
[   42.106748][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   42.108561][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   42.112022][ T4370] batman_adv: batadv0: Interface activated: batadv_slave_1
[   42.113311][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   42.115692][ T4370] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.117010][ T4370] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.118287][ T4370] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.120282][ T4370] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   42.516484][ T4425] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   42.517964][ T4427] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   42.519199][ T4427] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   42.521029][ T4427] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   42.522328][ T4427] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   42.523599][ T4427] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
1970/01/01 00:00:43 executed programs: 0
[   43.092858][   T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   43.094388][   T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   43.095795][   T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   43.097467][   T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   43.098769][   T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   43.100512][   T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   43.331319][ T4434] chnl_net:caif_netlink_parms(): no params data found
[   43.355390][ T4434] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.356468][ T4434] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.357978][ T4434] device bridge_slave_0 entered promiscuous mode
[   43.360103][ T4434] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.361213][ T4434] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.362582][ T4434] device bridge_slave_1 entered promiscuous mode
[   43.371551][ T4434] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   43.373941][ T4434] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   43.383205][ T4434] team0: Port device team_slave_0 added
[   43.470482][ T4434] team0: Port device team_slave_1 added
[   43.632055][ T4434] batman_adv: batadv0: Adding interface: batadv_slave_0
[   43.633116][ T4434] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   43.636886][ T4434] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   43.639085][ T4434] batman_adv: batadv0: Adding interface: batadv_slave_1
[   43.640475][ T4434] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   43.644411][ T4434] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   43.681178][ T4434] device hsr_slave_0 entered promiscuous mode
[   43.739701][ T4434] device hsr_slave_1 entered promiscuous mode
[   43.789795][ T4434] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   43.791048][ T4434] Cannot create hsr debugfs directory
[   43.890809][ T4434] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.129862][ T4427] Bluetooth: hci0: command 0x0409 tx timeout
[   46.620898][ T4434] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.219972][ T4427] Bluetooth: hci0: command 0x041b tx timeout
[   47.810778][ T4434] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.901525][ T4434] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.122502][ T4434] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   48.222158][ T4434] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   48.250715][ T4434] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   48.332262][ T4434] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   48.449131][ T4434] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.452374][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   48.453763][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   48.456343][ T4434] 8021q: adding VLAN 0 to HW filter on device team0
[   48.458723][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   48.460591][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   48.461993][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.463042][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.464430][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   48.466871][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   48.468233][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   48.470237][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.471320][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.522313][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   48.525666][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   48.528221][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   48.530220][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   48.532348][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   48.535073][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   48.536670][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   48.539102][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   48.540696][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   48.543126][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   48.544478][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   48.546790][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   48.582864][ T1702] device hsr_slave_0 left promiscuous mode
[   48.610508][ T1702] device hsr_slave_1 left promiscuous mode
[   48.729617][ T1702] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   48.730764][ T1702] batman_adv: batadv0: Removing interface: batadv_slave_0
[   48.732405][ T1702] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   48.733471][ T1702] batman_adv: batadv0: Removing interface: batadv_slave_1
[   48.734802][ T1702] device bridge_slave_1 left promiscuous mode
[   48.736170][ T1702] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.770207][ T1702] device bridge_slave_0 left promiscuous mode
[   48.771195][ T1702] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.899677][ T1702] device veth1_macvtap left promiscuous mode
[   48.900679][ T1702] device veth0_macvtap left promiscuous mode
[   48.901687][ T1702] device veth1_vlan left promiscuous mode
[   48.902599][ T1702] device veth0_vlan left promiscuous mode
[   49.299516][ T4427] Bluetooth: hci0: command 0x040f tx timeout
[   50.650777][ T1702] team0 (unregistering): Port device team_slave_1 removed
[   50.830031][ T1702] team0 (unregistering): Port device team_slave_0 removed
[   51.020419][ T1702] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   51.249865][ T1702] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   51.369517][ T4427] Bluetooth: hci0: command 0x0419 tx timeout
[   53.821176][ T1702] bond0 (unregistering): Released all slaves
[   54.036830][ T4434] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.041302][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   54.042552][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   54.046269][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   54.047791][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   54.053229][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   54.054687][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   54.056958][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   54.058230][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   54.061290][ T4434] device veth0_vlan entered promiscuous mode
[   54.064565][ T4434] device veth1_vlan entered promiscuous mode
[   54.071784][ T4434] device veth0_macvtap entered promiscuous mode
[   54.074178][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   54.075593][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   54.076930][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   54.078587][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   54.080938][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   54.082604][ T4434] device veth1_macvtap entered promiscuous mode
[   54.087777][ T4434] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.088872][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   54.092050][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   54.093495][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   54.096167][ T4434] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.097264][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   54.098880][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   54.101682][ T4434] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.102863][ T4434] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.104126][ T4434] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.105440][ T4434] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.124442][ T1574] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.125595][ T1574] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.127083][ T1574] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   54.136094][  T237] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.137383][  T237] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.139112][  T237] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   54.255635][ T4454] loop0: detected capacity change from 0 to 32768
[   54.257072][ T4454] =======================================================
[   54.257072][ T4454] WARNING: The mand mount option has been deprecated and
[   54.257072][ T4454]          and is ignored by this kernel. Remove the mand
[   54.257072][ T4454]          option from the mount to silence this warning.
[   54.257072][ T4454] =======================================================
[   54.273032][ T4454] JBD2: Ignoring recovery information on journal
[   54.274865][ T4454] jbd2_journal_bmap: journal block not found at offset 32 on loop0-75
[   54.276121][ T4454] JBD2: bad block at offset 32
[   54.287833][ T4454] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   54.293874][ T4454] 
[   54.294221][ T4454] ======================================================
[   54.295244][ T4454] WARNING: possible circular locking dependency detected
[   54.296222][ T4454] syzkaller #0 Not tainted
[   54.296911][ T4454] ------------------------------------------------------
[   54.297883][ T4454] syz.0.17/4454 is trying to acquire lock:
[   54.298684][ T4454] ffff0000ea363f60 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xb4/0x2d8
[   54.300202][ T4454] 
[   54.300202][ T4454] but task is already holding lock:
[   54.301286][ T4454] ffff0000ea363ff8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa8/0x2d8
[   54.302869][ T4454] 
[   54.302869][ T4454] which lock already depends on the new lock.
[   54.302869][ T4454] 
[   54.304347][ T4454] 
[   54.304347][ T4454] the existing dependency chain (in reverse order) is:
[   54.305656][ T4454] 
[   54.305656][ T4454] -> #4 (&oi->ip_xattr_sem){++++}-{3:3}:
[   54.306828][ T4454]        down_read+0x64/0x304
[   54.307491][ T4454]        ocfs2_init_acl+0x258/0x5f0
[   54.308209][ T4454]        ocfs2_mknod+0x1168/0x1f18
[   54.308923][ T4454]        ocfs2_create+0x19c/0x4f0
[   54.309631][ T4454]        path_openat+0x112c/0x2680
[   54.310362][ T4454]        do_filp_open+0x174/0x344
[   54.311081][ T4454]        do_sys_openat2+0x128/0x3d8
[   54.311732][ T4454]        __arm64_sys_openat+0x120/0x154
[   54.312538][ T4454]        invoke_syscall+0x98/0x2bc
[   54.313245][ T4454]        el0_svc_common+0x138/0x258
[   54.313932][ T4454]        do_el0_svc+0x58/0x13c
[   54.314607][ T4454]        el0_svc+0x58/0x138
[   54.315207][ T4454]        el0t_64_sync_handler+0x84/0xf0
[   54.316013][ T4454]        el0t_64_sync+0x18c/0x190
[   54.316696][ T4454] 
[   54.316696][ T4454] -> #3 (jbd2_handle){++++}-{0:0}:
[   54.317702][ T4454]        start_this_handle+0xfe0/0x122c
[   54.318539][ T4454]        jbd2__journal_start+0x288/0x51c
[   54.319305][ T4454]        jbd2_journal_start+0x3c/0x4c
[   54.320061][ T4454]        ocfs2_start_trans+0x380/0x6c4
[   54.320791][ T4454]        ocfs2_mknod+0xc7c/0x1f18
[   54.321515][ T4454]        ocfs2_create+0x19c/0x4f0
[   54.322323][ T4454]        path_openat+0x112c/0x2680
[   54.323048][ T4454]        do_filp_open+0x174/0x344
[   54.323760][ T4454]        do_sys_openat2+0x128/0x3d8
[   54.324486][ T4454]        __arm64_sys_openat+0x120/0x154
[   54.325350][ T4454]        invoke_syscall+0x98/0x2bc
[   54.326038][ T4454]        el0_svc_common+0x138/0x258
[   54.326884][ T4454]        do_el0_svc+0x58/0x13c
[   54.327669][ T4454]        el0_svc+0x58/0x138
[   54.328400][ T4454]        el0t_64_sync_handler+0x84/0xf0
[   54.329273][ T4454]        el0t_64_sync+0x18c/0x190
[   54.329982][ T4454] 
[   54.329982][ T4454] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}:
[   54.331253][ T4454]        down_read+0x64/0x304
[   54.331948][ T4454]        ocfs2_start_trans+0x374/0x6c4
[   54.332722][ T4454]        ocfs2_mknod+0xc7c/0x1f18
[   54.333429][ T4454]        ocfs2_create+0x19c/0x4f0
[   54.334146][ T4454]        path_openat+0x112c/0x2680
[   54.334879][ T4454]        do_filp_open+0x174/0x344
[   54.335587][ T4454]        do_sys_openat2+0x128/0x3d8
[   54.336284][ T4454]        __arm64_sys_openat+0x120/0x154
[   54.337094][ T4454]        invoke_syscall+0x98/0x2bc
[   54.337812][ T4454]        el0_svc_common+0x138/0x258
[   54.338572][ T4454]        do_el0_svc+0x58/0x13c
[   54.339228][ T4454]        el0_svc+0x58/0x138
[   54.339868][ T4454]        el0t_64_sync_handler+0x84/0xf0
[   54.340666][ T4454]        el0t_64_sync+0x18c/0x190
[   54.341352][ T4454] 
[   54.341352][ T4454] -> #1 (sb_internal#2){.+.+}-{0:0}:
[   54.342525][ T4454]        ocfs2_start_trans+0x20c/0x6c4
[   54.343337][ T4454]        ocfs2_truncate_file+0x5f4/0x149c
[   54.344147][ T4454]        ocfs2_setattr+0x1234/0x18d4
[   54.344966][ T4454]        notify_change+0xb0c/0xdcc
[   54.345652][ T4454]        do_truncate+0x178/0x1f0
[   54.346342][ T4454]        path_openat+0x20d0/0x2680
[   54.347094][ T4454]        do_filp_open+0x174/0x344
[   54.347809][ T4454]        do_sys_openat2+0x128/0x3d8
[   54.348543][ T4454]        __arm64_sys_openat+0x120/0x154
[   54.349301][ T4454]        invoke_syscall+0x98/0x2bc
[   54.350049][ T4454]        el0_svc_common+0x138/0x258
[   54.350793][ T4454]        do_el0_svc+0x58/0x13c
[   54.351490][ T4454]        el0_svc+0x58/0x138
[   54.352106][ T4454]        el0t_64_sync_handler+0x84/0xf0
[   54.352874][ T4454]        el0t_64_sync+0x18c/0x190
[   54.353591][ T4454] 
[   54.353591][ T4454] -> #0 (&oi->ip_alloc_sem){+.+.}-{3:3}:
[   54.354709][ T4454]        __lock_acquire+0x293c/0x6544
[   54.355407][ T4454]        lock_acquire+0x20c/0x644
[   54.356081][ T4454]        down_write+0x5c/0x88
[   54.356705][ T4454]        ocfs2_try_remove_refcount_tree+0xb4/0x2d8
[   54.357605][ T4454]        ocfs2_truncate_file+0xce8/0x149c
[   54.358471][ T4454]        ocfs2_setattr+0x1234/0x18d4
[   54.359221][ T4454]        notify_change+0xb0c/0xdcc
[   54.359933][ T4454]        do_truncate+0x178/0x1f0
[   54.360598][ T4454]        path_openat+0x20d0/0x2680
[   54.361297][ T4454]        do_filp_open+0x174/0x344
[   54.361990][ T4454]        do_sys_openat2+0x128/0x3d8
[   54.362745][ T4454]        __arm64_sys_openat+0x120/0x154
[   54.363497][ T4454]        invoke_syscall+0x98/0x2bc
[   54.364225][ T4454]        el0_svc_common+0x138/0x258
[   54.364947][ T4454]        do_el0_svc+0x58/0x13c
[   54.365617][ T4454]        el0_svc+0x58/0x138
[   54.366291][ T4454]        el0t_64_sync_handler+0x84/0xf0
[   54.367102][ T4454]        el0t_64_sync+0x18c/0x190
[   54.367835][ T4454] 
[   54.367835][ T4454] other info that might help us debug this:
[   54.367835][ T4454] 
[   54.369281][ T4454] Chain exists of:
[   54.369281][ T4454]   &oi->ip_alloc_sem --> jbd2_handle --> &oi->ip_xattr_sem
[   54.369281][ T4454] 
[   54.371136][ T4454]  Possible unsafe locking scenario:
[   54.371136][ T4454] 
[   54.372144][ T4454]        CPU0                    CPU1
[   54.372923][ T4454]        ----                    ----
[   54.373709][ T4454]   lock(&oi->ip_xattr_sem);
[   54.374356][ T4454]                                lock(jbd2_handle);
[   54.375281][ T4454]                                lock(&oi->ip_xattr_sem);
[   54.376290][ T4454]   lock(&oi->ip_alloc_sem);
[   54.376938][ T4454] 
[   54.376938][ T4454]  *** DEADLOCK ***
[   54.376938][ T4454] 
[   54.378132][ T4454] 3 locks held by syz.0.17/4454:
[   54.378790][ T4454]  #0: ffff0000d0318460 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c
[   54.380120][ T4454]  #1: ffff0000ea3642c8 (&sb->s_type->i_mutex_key#20){+.+.}-{3:3}, at: do_truncate+0x164/0x1f0
[   54.381651][ T4454]  #2: ffff0000ea363ff8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa8/0x2d8
[   54.383226][ T4454] 
[   54.383226][ T4454] stack backtrace:
[   54.384009][ T4454] CPU: 1 PID: 4454 Comm: syz.0.17 Not tainted syzkaller #0
[   54.385114][ T4454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[   54.386463][ T4454] Call trace:
[   54.386918][ T4454]  dump_backtrace+0x1c8/0x1f4
[   54.387626][ T4454]  show_stack+0x2c/0x3c
[   54.388201][ T4454]  __dump_stack+0x30/0x40
[   54.388834][ T4454]  dump_stack_lvl+0xf8/0x160
[   54.389525][ T4454]  dump_stack+0x1c/0x5c
[   54.390128][ T4454]  print_circular_bug+0x148/0x1b0
[   54.390819][ T4454]  check_noncircular+0x240/0x2d4
[   54.391547][ T4454]  __lock_acquire+0x293c/0x6544
[   54.392219][ T4454]  lock_acquire+0x20c/0x644
[   54.392858][ T4454]  down_write+0x5c/0x88
[   54.393513][ T4454]  ocfs2_try_remove_refcount_tree+0xb4/0x2d8
[   54.394295][ T4454]  ocfs2_truncate_file+0xce8/0x149c
[   54.395031][ T4454]  ocfs2_setattr+0x1234/0x18d4
[   54.395723][ T4454]  notify_change+0xb0c/0xdcc
[   54.396357][ T4454]  do_truncate+0x178/0x1f0
[   54.397055][ T4454]  path_openat+0x20d0/0x2680
[   54.397727][ T4454]  do_filp_open+0x174/0x344
[   54.398400][ T4454]  do_sys_openat2+0x128/0x3d8
[   54.399078][ T4454]  __arm64_sys_openat+0x120/0x154
[   54.399784][ T4454]  invoke_syscall+0x98/0x2bc
[   54.400468][ T4454]  el0_svc_common+0x138/0x258
[   54.401296][ T4454]  do_el0_svc+0x58/0x13c
[   54.401940][ T4454]  el0_svc+0x58/0x138
[   54.402534][ T4454]  el0t_64_sync_handler+0x84/0xf0
[   54.403323][ T4454]  el0t_64_sync+0x18c/0x190
[   54.412223][ T4434] ocfs2: Unmounting device (7,0) on (node local)