Warning: Permanently added '10.128.1.17' (ED25519) to the list of known hosts.
1970/01/01 00:00:33 parsed 1 programs
[   34.469797][ T4325] cgroup: Unknown subsys name 'net'
[   34.693838][ T4325] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   34.968078][ T4325] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   40.994732][ T4352] chnl_net:caif_netlink_parms(): no params data found
[   41.011291][ T4352] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.012498][ T4352] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.013871][ T4352] device bridge_slave_0 entered promiscuous mode
[   41.016157][ T4352] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.017317][ T4352] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.018705][ T4352] device bridge_slave_1 entered promiscuous mode
[   41.026410][ T4352] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   41.028675][ T4352] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   41.035610][ T4352] team0: Port device team_slave_0 added
[   41.037378][ T4352] team0: Port device team_slave_1 added
[   41.045440][ T4352] batman_adv: batadv0: Adding interface: batadv_slave_0
[   41.046581][ T4352] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.050230][ T4352] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   41.053064][ T4352] batman_adv: batadv0: Adding interface: batadv_slave_1
[   41.054132][ T4352] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.057812][ T4352] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   41.111952][ T4352] device hsr_slave_0 entered promiscuous mode
[   41.150940][ T4352] device hsr_slave_1 entered promiscuous mode
[   41.224888][ T4352] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   41.263566][ T4352] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   41.303235][ T4352] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   41.343119][ T4352] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   41.390184][ T4352] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.391517][ T4352] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.392800][ T4352] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.393898][ T4352] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.411784][ T4352] 8021q: adding VLAN 0 to HW filter on device bond0
[   41.415983][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   41.418494][  T251] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.420174][  T251] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.422849][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   41.426938][ T4352] 8021q: adding VLAN 0 to HW filter on device team0
[   41.429850][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   41.433156][  T251] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.434206][  T251] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.438404][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   41.440059][  T251] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.441223][  T251] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.447922][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   41.449619][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   41.453051][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   41.455660][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   41.458374][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   41.460647][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   41.515059][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   41.516381][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   41.520041][ T4352] 8021q: adding VLAN 0 to HW filter on device batadv0
[   41.526632][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   41.532754][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   41.534416][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   41.535736][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   41.537857][ T4352] device veth0_vlan entered promiscuous mode
[   41.571671][ T4352] device veth1_vlan entered promiscuous mode
[   41.579613][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   41.581435][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   41.582982][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   41.585565][ T4352] device veth0_macvtap entered promiscuous mode
[   41.587860][ T4352] device veth1_macvtap entered promiscuous mode
[   41.593099][ T4352] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.594428][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   41.596387][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   41.599188][ T4352] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.600454][  T251] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   41.603505][ T4352] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.604910][ T4352] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.606282][ T4352] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.607648][ T4352] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.723451][  T251] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.724739][  T251] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.726306][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   41.737952][  T251] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.739485][  T251] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.741533][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   42.081189][ T4392] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   42.082814][ T4392] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   42.084093][ T4392] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   42.085502][ T4392] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   42.086910][ T4392] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   42.088081][ T4392] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   42.963689][  T251] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
1970/01/01 00:00:43 executed programs: 0
[   43.294416][   T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   43.295823][   T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   43.297097][   T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   43.298549][   T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   43.300027][   T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   43.301937][   T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   43.347294][ T4423] chnl_net:caif_netlink_parms(): no params data found
[   43.362589][ T4423] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.363775][ T4423] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.365259][ T4423] device bridge_slave_0 entered promiscuous mode
[   43.367657][ T4423] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.368767][ T4423] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.370179][ T4423] device bridge_slave_1 entered promiscuous mode
[   43.378338][ T4423] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   43.380695][ T4423] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   43.388100][ T4423] team0: Port device team_slave_0 added
[   43.389999][ T4423] team0: Port device team_slave_1 added
[   43.396209][ T4423] batman_adv: batadv0: Adding interface: batadv_slave_0
[   43.397275][ T4423] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   43.401548][ T4423] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   43.404213][ T4423] batman_adv: batadv0: Adding interface: batadv_slave_1
[   43.405287][ T4423] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   43.409212][ T4423] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   43.451868][ T4423] device hsr_slave_0 entered promiscuous mode
[   43.490971][ T4423] device hsr_slave_1 entered promiscuous mode
[   43.531072][ T4423] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   43.532342][ T4423] Cannot create hsr debugfs directory
[   45.381027][ T4392] Bluetooth: hci0: command 0x0409 tx timeout
[   45.392080][  T251] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.111866][  T251] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.212717][  T251] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.452164][ T4392] Bluetooth: hci0: command 0x041b tx timeout
[   48.274931][ T4423] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   48.332193][ T4423] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   48.482610][ T4423] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   48.592699][ T4423] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   48.721920][ T4423] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.725299][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   48.726784][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   48.729132][ T4423] 8021q: adding VLAN 0 to HW filter on device team0
[   48.732132][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   48.733754][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   48.735249][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.736343][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.738229][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   48.802668][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   48.804355][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   48.805803][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.806917][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.809876][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   48.813646][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   48.816287][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   48.818111][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   48.819643][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   48.823208][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   48.824814][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   48.827296][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   48.828782][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   48.831391][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   48.832853][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   48.834993][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   48.936207][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   48.937582][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   48.941021][ T4423] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.946833][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   48.948421][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   48.986137][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   48.987695][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   48.989124][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   48.990508][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   48.994054][ T4423] device veth0_vlan entered promiscuous mode
[   48.997457][ T4423] device veth1_vlan entered promiscuous mode
[   49.003534][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   49.004968][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   49.006368][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   49.007767][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   49.009881][ T4423] device veth0_macvtap entered promiscuous mode
[   49.012224][ T4423] device veth1_macvtap entered promiscuous mode
[   49.016692][ T4423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.018212][ T4423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.020237][ T4423] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.102313][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   49.103961][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   49.105333][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   49.106853][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   49.109639][ T4423] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.111429][ T4423] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.113446][ T4423] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.114632][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   49.116229][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   49.118775][ T4423] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.120123][ T4423] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.121620][ T4423] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.122961][ T4423] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.176470][ T4430] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.177709][ T4430] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.180259][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   49.189622][ T4430] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.192068][ T4430] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.193936][ T1590] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   49.264679][ T4512] loop0: detected capacity change from 0 to 512
[   49.284458][ T4512] 
[   49.284874][ T4512] ======================================================
[   49.286000][ T4512] WARNING: possible circular locking dependency detected
[   49.286986][ T4512] syzkaller #0 Not tainted
[   49.287647][ T4512] ------------------------------------------------------
[   49.288737][ T4512] syz.0.17/4512 is trying to acquire lock:
[   49.289960][ T4512] ffff0000d4578b98 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x188/0x284c
[   49.291425][ T4512] 
[   49.291425][ T4512] but task is already holding lock:
[   49.292528][ T4512] ffff0000e23d6518 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790
[   49.294020][ T4512] 
[   49.294020][ T4512] which lock already depends on the new lock.
[   49.294020][ T4512] 
[   49.295589][ T4512] 
[   49.295589][ T4512] the existing dependency chain (in reverse order) is:
[   49.296825][ T4512] 
[   49.296825][ T4512] -> #2 (&ei->xattr_sem){++++}-{3:3}:
[   49.297960][ T4512]        down_read+0x64/0x304
[   49.298727][ T4512]        ext4_setattr+0x7c4/0x150c
[   49.299452][ T4512]        notify_change+0xb0c/0xdcc
[   49.300162][ T4512]        chown_common+0x414/0x574
[   49.300919][ T4512]        do_fchownat+0x158/0x268
[   49.301632][ T4512]        __arm64_sys_fchownat+0xb8/0xd4
[   49.302577][ T4512]        invoke_syscall+0x98/0x2bc
[   49.303380][ T4512]        el0_svc_common+0x138/0x258
[   49.304184][ T4512]        do_el0_svc+0x58/0x13c
[   49.304984][ T4512]        el0_svc+0x58/0x138
[   49.305676][ T4512]        el0t_64_sync_handler+0x84/0xf0
[   49.306570][ T4512]        el0t_64_sync+0x18c/0x190
[   49.307292][ T4512] 
[   49.307292][ T4512] -> #1 (jbd2_handle){++++}-{0:0}:
[   49.308382][ T4512]        start_this_handle+0xfe0/0x122c
[   49.309176][ T4512]        jbd2__journal_start+0x288/0x51c
[   49.309969][ T4512]        __ext4_journal_start_sb+0x2fc/0x674
[   49.310841][ T4512]        ext4_writepages+0xa28/0x284c
[   49.311623][ T4512]        do_writepages+0x2c0/0x4fc
[   49.312379][ T4512]        __writeback_single_inode+0x164/0x157c
[   49.313358][ T4512]        writeback_sb_inodes+0x824/0x1404
[   49.314231][ T4512]        __writeback_inodes_wb+0x110/0x394
[   49.315130][ T4512]        wb_writeback+0x414/0xfb0
[   49.315937][ T4512]        wb_workfn+0xac0/0xd98
[   49.316682][ T4512]        process_one_work+0x7f4/0x13a8
[   49.317568][ T4512]        worker_thread+0x8c8/0xfbc
[   49.318325][ T4512]        kthread+0x250/0x2d8
[   49.319053][ T4512]        ret_from_fork+0x10/0x20
[   49.319797][ T4512] 
[   49.319797][ T4512] -> #0 (&sbi->s_writepages_rwsem){.+.+}-{0:0}:
[   49.321037][ T4512]        __lock_acquire+0x293c/0x6544
[   49.321849][ T4512]        lock_acquire+0x20c/0x644
[   49.322654][ T4512]        percpu_down_read+0x70/0x2a8
[   49.323461][ T4512]        ext4_writepages+0x188/0x284c
[   49.324330][ T4512]        do_writepages+0x2c0/0x4fc
[   49.325086][ T4512]        __writeback_single_inode+0x164/0x157c
[   49.325949][ T4512]        writeback_single_inode+0x1c0/0x720
[   49.326773][ T4512]        write_inode_now+0x144/0x1b0
[   49.327556][ T4512]        iput+0x5cc/0x7f4
[   49.328205][ T4512]        ext4_xattr_block_set+0x17a4/0x2810
[   49.329072][ T4512]        ext4_expand_extra_isize_ea+0xcb8/0x15cc
[   49.330058][ T4512]        __ext4_expand_extra_isize+0x298/0x358
[   49.330980][ T4512]        __ext4_mark_inode_dirty+0x3e4/0x790
[   49.331887][ T4512]        ext4_evict_inode+0xb58/0x1270
[   49.332701][ T4512]        evict+0x3c8/0x810
[   49.333347][ T4512]        iput+0x764/0x7f4
[   49.334017][ T4512]        ext4_process_orphan+0x240/0x2b4
[   49.334820][ T4512]        ext4_orphan_cleanup+0x908/0x104c
[   49.335674][ T4512]        ext4_fill_super+0x6440/0x68a8
[   49.336503][ T4512]        get_tree_bdev+0x358/0x544
[   49.337268][ T4512]        ext4_get_tree+0x28/0x38
[   49.337970][ T4512]        vfs_get_tree+0x90/0x274
[   49.338696][ T4512]        do_new_mount+0x228/0x810
[   49.339460][ T4512]        path_mount+0x5b4/0xe78
[   49.340238][ T4512]        __arm64_sys_mount+0x49c/0x584
[   49.341083][ T4512]        invoke_syscall+0x98/0x2bc
[   49.341823][ T4512]        el0_svc_common+0x138/0x258
[   49.342646][ T4512]        do_el0_svc+0x58/0x13c
[   49.343397][ T4512]        el0_svc+0x58/0x138
[   49.344089][ T4512]        el0t_64_sync_handler+0x84/0xf0
[   49.344934][ T4512]        el0t_64_sync+0x18c/0x190
[   49.345712][ T4512] 
[   49.345712][ T4512] other info that might help us debug this:
[   49.345712][ T4512] 
[   49.347212][ T4512] Chain exists of:
[   49.347212][ T4512]   &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[   49.347212][ T4512] 
[   49.349404][ T4512]  Possible unsafe locking scenario:
[   49.349404][ T4512] 
[   49.350470][ T4512]        CPU0                    CPU1
[   49.351254][ T4512]        ----                    ----
[   49.352059][ T4512]   lock(&ei->xattr_sem);
[   49.352701][ T4512]                                lock(jbd2_handle);
[   49.353662][ T4512]                                lock(&ei->xattr_sem);
[   49.354660][ T4512]   lock(&sbi->s_writepages_rwsem);
[   49.355434][ T4512] 
[   49.355434][ T4512]  *** DEADLOCK ***
[   49.355434][ T4512] 
[   49.356658][ T4512] 3 locks held by syz.0.17/4512:
[   49.357368][ T4512]  #0: ffff0000d29160e0 (&type->s_umount_key#26/1){+.+.}-{3:3}, at: alloc_super+0x1a4/0x804
[   49.358863][ T4512]  #1: ffff0000d2916650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x3dc/0x1270
[   49.360334][ T4512]  #2: ffff0000e23d6518 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790
[   49.361874][ T4512] 
[   49.361874][ T4512] stack backtrace:
[   49.362752][ T4512] CPU: 0 PID: 4512 Comm: syz.0.17 Not tainted syzkaller #0
[   49.363882][ T4512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[   49.365434][ T4512] Call trace:
[   49.365973][ T4512]  dump_backtrace+0x1c8/0x1f4
[   49.366756][ T4512]  show_stack+0x2c/0x3c
[   49.367409][ T4512]  __dump_stack+0x30/0x40
[   49.368070][ T4512]  dump_stack_lvl+0xf8/0x160
[   49.368767][ T4512]  dump_stack+0x1c/0x5c
[   49.369371][ T4512]  print_circular_bug+0x148/0x1b0
[   49.370086][ T4512]  check_noncircular+0x240/0x2d4
[   49.370876][ T4512]  __lock_acquire+0x293c/0x6544
[   49.371605][ T4512]  lock_acquire+0x20c/0x644
[   49.372265][ T4512]  percpu_down_read+0x70/0x2a8
[   49.372984][ T4512]  ext4_writepages+0x188/0x284c
[   49.373701][ T4512]  do_writepages+0x2c0/0x4fc
[   49.374480][ T4512]  __writeback_single_inode+0x164/0x157c
[   49.375338][ T4512]  writeback_single_inode+0x1c0/0x720
[   49.376188][ T4512]  write_inode_now+0x144/0x1b0
[   49.376878][ T4512]  iput+0x5cc/0x7f4
[   49.377459][ T4512]  ext4_xattr_block_set+0x17a4/0x2810
[   49.378301][ T4512]  ext4_expand_extra_isize_ea+0xcb8/0x15cc
[   49.379166][ T4512]  __ext4_expand_extra_isize+0x298/0x358
[   49.379987][ T4512]  __ext4_mark_inode_dirty+0x3e4/0x790
[   49.380777][ T4512]  ext4_evict_inode+0xb58/0x1270
[   49.381497][ T4512]  evict+0x3c8/0x810
[   49.382080][ T4512]  iput+0x764/0x7f4
[   49.382604][ T4512]  ext4_process_orphan+0x240/0x2b4
[   49.383389][ T4512]  ext4_orphan_cleanup+0x908/0x104c
[   49.384183][ T4512]  ext4_fill_super+0x6440/0x68a8
[   49.384894][ T4512]  get_tree_bdev+0x358/0x544
[   49.385626][ T4512]  ext4_get_tree+0x28/0x38
[   49.386298][ T4512]  vfs_get_tree+0x90/0x274
[   49.386941][ T4512]  do_new_mount+0x228/0x810
[   49.387583][ T4512]  path_mount+0x5b4/0xe78
[   49.388262][ T4512]  __arm64_sys_mount+0x49c/0x584
[   49.388994][ T4512]  invoke_syscall+0x98/0x2bc
[   49.389710][ T4512]  el0_svc_common+0x138/0x258
[   49.390431][ T4512]  do_el0_svc+0x58/0x13c
[   49.391062][ T4512]  el0_svc+0x58/0x138
[   49.391662][ T4512]  el0t_64_sync_handler+0x84/0xf0
[   49.392459][ T4512]  el0t_64_sync+0x18c/0x190
[   49.394290][ T4512] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
[   49.396353][ T4512] EXT4-fs (loop0): Remounting filesystem read-only
[   49.397356][ T4512] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 11 err=-117
[   49.399313][ T4512] EXT4-fs (loop0): Remounting filesystem read-only
[   49.400331][ T4512] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2819: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   49.407625][ T4512] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
[   49.409774][ T4512] EXT4-fs (loop0): Remounting filesystem read-only
[   49.410782][ T4512] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 11 err=-117
[   49.412647][ T4512] EXT4-fs (loop0): Remounting filesystem read-only
[   49.413650][ T4512] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
[   49.415696][ T4512] EXT4-fs (loop0): Remounting filesystem read-only
[   49.416698][ T4512] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117
[   49.418675][ T4512] EXT4-fs (loop0): Remounting filesystem read-only
[   49.419686][ T4512] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
[   49.422126][ T4512] EXT4-fs (loop0): Remounting filesystem read-only
[   49.423075][ T4512] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117
[   49.424988][ T4512] EXT4-fs (loop0): Remounting filesystem read-only
[   49.426037][ T4512] EXT4-fs (loop0): 1 orphan inode deleted
[   49.426871][ T4512] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   49.437080][ T4423] EXT4-fs (loop0): unmounting filesystem.
[   49.530851][ T4394] Bluetooth: h