Warning: Permanently added '10.128.0.141' (ED25519) to the list of known hosts. 1970/01/01 00:00:27 parsed 1 programs [ 28.692150][ T6555] cgroup: Unknown subsys name 'net' [ 28.792275][ T6555] cgroup: Unknown subsys name 'cpuset' [ 28.794125][ T6555] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 28.957217][ T6555] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 34.083516][ T6562] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 34.435963][ T6599] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 34.436440][ T6599] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 34.436633][ T6599] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 34.436935][ T6599] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 34.437120][ T6599] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 34.702464][ T6610] chnl_net:caif_netlink_parms(): no params data found [ 34.739109][ T6610] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.740697][ T6610] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.742192][ T6610] bridge_slave_0: entered allmulticast mode [ 34.742664][ T6610] bridge_slave_0: entered promiscuous mode [ 34.743948][ T6610] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.743967][ T6610] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.744011][ T6610] bridge_slave_1: entered allmulticast mode [ 34.744445][ T6610] bridge_slave_1: entered promiscuous mode [ 34.757622][ T6610] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.760262][ T6610] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.811561][ T6610] team0: Port device team_slave_0 added [ 34.812338][ T6610] team0: Port device team_slave_1 added [ 34.914661][ T6610] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.914690][ T6610] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.914706][ T6610] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.915541][ T6610] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.915549][ T6610] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.915563][ T6610] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.930991][ T6610] hsr_slave_0: entered promiscuous mode [ 34.931358][ T6610] hsr_slave_1: entered promiscuous mode [ 34.977101][ T6610] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 34.979878][ T6610] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 34.983743][ T6610] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 34.985795][ T6610] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 35.008905][ T6610] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.008954][ T6610] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.009132][ T6610] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.009158][ T6610] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.025516][ T6610] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.029084][ T749] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.031246][ T749] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.035825][ T6610] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.043070][ T749] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.043119][ T749] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.043479][ T749] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.043500][ T749] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.091611][ T6610] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.106154][ T6610] veth0_vlan: entered promiscuous mode [ 35.107721][ T6610] veth1_vlan: entered promiscuous mode [ 35.114791][ T6610] veth0_macvtap: entered promiscuous mode [ 35.115750][ T6610] veth1_macvtap: entered promiscuous mode [ 35.118974][ T6610] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.120493][ T6610] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.124607][ T2160] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.126467][ T2160] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.128301][ T2160] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.129684][ T2160] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.426679][ T2160] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.486110][ T2160] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.545622][ T2160] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.576388][ T2160] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.607608][ T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.608992][ T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.618266][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.619566][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:00:35 executed programs: 0 [ 36.014345][ T6599] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 36.016017][ T6599] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 36.017540][ T6599] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 36.019238][ T6599] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 36.020666][ T6599] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 36.069102][ T6660] chnl_net:caif_netlink_parms(): no params data found [ 36.087648][ T6660] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.087722][ T6660] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.087788][ T6660] bridge_slave_0: entered allmulticast mode [ 36.088199][ T6660] bridge_slave_0: entered promiscuous mode [ 36.088946][ T6660] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.088987][ T6660] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.089050][ T6660] bridge_slave_1: entered allmulticast mode [ 36.089435][ T6660] bridge_slave_1: entered promiscuous mode [ 36.099110][ T6660] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.099995][ T6660] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.107140][ T6660] team0: Port device team_slave_0 added [ 36.108169][ T6660] team0: Port device team_slave_1 added [ 36.114234][ T6660] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.114253][ T6660] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 36.114266][ T6660] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.114755][ T6660] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.114761][ T6660] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 36.114773][ T6660] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.131959][ T6660] hsr_slave_0: entered promiscuous mode [ 36.132269][ T6660] hsr_slave_1: entered promiscuous mode [ 36.132455][ T6660] debugfs: 'hsr0' already exists in 'hsr' [ 36.132510][ T6660] Cannot create hsr debugfs directory [ 38.101285][ T6599] Bluetooth: hci0: command tx timeout [ 38.818434][ T2160] bridge_slave_1: left allmulticast mode [ 38.818482][ T2160] bridge_slave_1: left promiscuous mode [ 38.818782][ T2160] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.827635][ T2160] bridge_slave_0: left allmulticast mode [ 38.827676][ T2160] bridge_slave_0: left promiscuous mode [ 38.827769][ T2160] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.003653][ T2160] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 39.052067][ T2160] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 39.101707][ T2160] bond0 (unregistering): Released all slaves [ 39.172904][ T2160] hsr_slave_0: left promiscuous mode [ 39.174188][ T2160] hsr_slave_1: left promiscuous mode [ 39.175691][ T2160] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 39.177201][ T2160] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 39.179109][ T2160] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 39.180509][ T2160] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 39.186622][ T2160] veth1_macvtap: left promiscuous mode [ 39.187728][ T2160] veth0_macvtap: left promiscuous mode [ 39.188667][ T2160] veth1_vlan: left promiscuous mode [ 39.189623][ T2160] veth0_vlan: left promiscuous mode [ 39.300841][ T2160] team0 (unregistering): Port device team_slave_1 removed [ 39.307879][ T2160] team0 (unregistering): Port device team_slave_0 removed [ 39.598839][ T6660] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 39.601780][ T6660] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 39.604015][ T6660] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 39.608138][ T6660] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 39.637716][ T6660] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.664427][ T6660] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.666261][ T1685] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.666298][ T1685] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.672358][ T14] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.672400][ T14] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.801825][ T6660] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 39.810463][ T6660] veth0_vlan: entered promiscuous mode [ 39.812155][ T6660] veth1_vlan: entered promiscuous mode [ 39.816456][ T6660] veth0_macvtap: entered promiscuous mode [ 39.817269][ T6660] veth1_macvtap: entered promiscuous mode [ 39.822423][ T6660] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 39.823281][ T6660] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 39.829149][ T42] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.829199][ T42] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.829229][ T42] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.829246][ T42] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.863740][ T1685] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.863773][ T1685] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.872681][ T1685] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.872707][ T1685] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.987684][ T6727] loop0: detected capacity change from 0 to 32768 [ 39.989402][ T6727] ======================================================= [ 39.989402][ T6727] WARNING: The mand mount option has been deprecated and [ 39.989402][ T6727] and is ignored by this kernel. Remove the mand [ 39.989402][ T6727] option from the mount to silence this warning. [ 39.989402][ T6727] ======================================================= [ 40.003444][ T6727] JBD2: Ignoring recovery information on journal [ 40.015252][ T6727] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 40.024596][ T6727] overlayfs: upper fs does not support tmpfile. [ 40. ** replaying previous printk message ** [ 40.025635][ T6727] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 40.025768][ T6727] [ 40.027601][ T6727] ====================================================== [ 40.028676][ T6727] WARNING: possible circular locking dependency detected [ 40.029665][ T6727] syzkaller #0 Not tainted [ 40.030300][ T6727] ------------------------------------------------------ [ 40.031299][ T6727] syz.0.17/6727 is trying to acquire lock: [ 40.032152][ T6727] ffff0000f4d8a640 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 40.034060][ T6727] [ 40.034060][ T6727] but task is already holding lock: [ 40.035112][ T6727] ffff0000f4d8dc78 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 40.036552][ T6727] [ 40.036552][ T6727] which lock already depends on the new lock. [ 40.036552][ T6727] [ 40.038047][ T6727] [ 40.038047][ T6727] the existing dependency chain (in reverse order) is: [ 40.039328][ T6727] [ 40.039328][ T6727] -> #4 (&oi->ip_xattr_sem){+.+.}-{4:4}: [ 40.040461][ T6727] down_write+0x50/0xc0 [ 40.041154][ T6727] ocfs2_xattr_set_handle+0x2a8/0x5e4 [ 40.041985][ T6727] ocfs2_init_security_set+0xb4/0xd8 [ 40.042813][ T6727] ocfs2_mknod+0x106c/0x1cf0 [ 40.043535][ T6727] ocfs2_mkdir+0x190/0x474 [ 40.044262][ T6727] vfs_mkdir+0x284/0x424 [ 40.044976][ T6727] do_mkdirat+0x1f8/0x4c8 [ 40.045713][ T6727] __arm64_sys_mkdirat+0x8c/0xa4 [ 40.046578][ T6727] invoke_syscall+0x98/0x254 [ 40.047332][ T6727] el0_svc_common+0xe8/0x23c [ 40.048122][ T6727] do_el0_svc+0x48/0x58 [ 40.048828][ T6727] el0_svc+0x5c/0x254 [ 40.049502][ T6727] el0t_64_sync_handler+0x84/0x12c [ 40.050359][ T6727] el0t_64_sync+0x198/0x19c [ 40.051144][ T6727] [ 40.051144][ T6727] -> #3 (jbd2_handle){++++}-{0:0}: [ 40.052291][ T6727] start_this_handle+0xe74/0x10dc [ 40.053136][ T6727] jbd2__journal_start+0x288/0x51c [ 40.054000][ T6727] jbd2_journal_start+0x3c/0x4c [ 40.054780][ T6727] ocfs2_start_trans+0x368/0x6b0 [ 40.055606][ T6727] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 40.056576][ T6727] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 40.057638][ T6727] ocfs2_mknod+0xbd8/0x1cf0 [ 40.058446][ T6727] ocfs2_mkdir+0x190/0x474 [ 40.059161][ T6727] vfs_mkdir+0x284/0x424 [ 40.059906][ T6727] do_mkdirat+0x1f8/0x4c8 [ 40.060633][ T6727] __arm64_sys_mkdirat+0x8c/0xa4 [ 40.061396][ T6727] invoke_syscall+0x98/0x254 [ 40.062118][ T6727] el0_svc_common+0xe8/0x23c [ 40.062871][ T6727] do_el0_svc+0x48/0x58 [ 40.063553][ T6727] el0_svc+0x5c/0x254 [ 40.064234][ T6727] el0t_64_sync_handler+0x84/0x12c [ 40.065070][ T6727] el0t_64_sync+0x198/0x19c [ 40.065821][ T6727] [ 40.065821][ T6727] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 40.067136][ T6727] down_read+0x58/0x2f8 [ 40.067869][ T6727] ocfs2_start_trans+0x35c/0x6b0 [ 40.068669][ T6727] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 40.069627][ T6727] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 40.070637][ T6727] ocfs2_mknod+0xbd8/0x1cf0 [ 40.071328][ T6727] ocfs2_mkdir+0x190/0x474 [ 40.072110][ T6727] vfs_mkdir+0x284/0x424 [ 40.072806][ T6727] do_mkdirat+0x1f8/0x4c8 [ 40.073487][ T6727] __arm64_sys_mkdirat+0x8c/0xa4 [ 40.074322][ T6727] invoke_syscall+0x98/0x254 [ 40.075060][ T6727] el0_svc_common+0xe8/0x23c [ 40.075799][ T6727] do_el0_svc+0x48/0x58 [ 40.076516][ T6727] el0_svc+0x5c/0x254 [ 40.077223][ T6727] el0t_64_sync_handler+0x84/0x12c [ 40.078119][ T6727] el0t_64_sync+0x198/0x19c [ 40.078890][ T6727] [ 40.078890][ T6727] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 40.080028][ T6727] ocfs2_start_trans+0x1f4/0x6b0 [ 40.080871][ T6727] ocfs2_mknod+0xc50/0x1cf0 [ 40.081647][ T6727] ocfs2_mkdir+0x190/0x474 [ 40.082395][ T6727] vfs_mkdir+0x284/0x424 [ 40.083077][ T6727] do_mkdirat+0x1f8/0x4c8 [ 40.083774][ T6727] __arm64_sys_mkdirat+0x8c/0xa4 [ 40.084616][ T6727] invoke_syscall+0x98/0x254 [ 40.085382][ T6727] el0_svc_common+0xe8/0x23c [ 40.086140][ T6727] do_el0_svc+0x48/0x58 [ 40.086871][ T6727] el0_svc+0x5c/0x254 [ 40.087502][ T6727] el0t_64_sync_handler+0x84/0x12c [ 40.088375][ T6727] el0t_64_sync+0x198/0x19c [ 40.089067][ T6727] [ 40.089067][ T6727] -> #0 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}: [ 40.090566][ T6727] __lock_acquire+0x1774/0x30a4 [ 40.091366][ T6727] lock_acquire+0x14c/0x2e0 [ 40.092116][ T6727] down_write+0x50/0xc0 [ 40.092824][ T6727] ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 40.093807][ T6727] ocfs2_reserve_clusters_with_limit+0x198/0x9e0 [ 40.094813][ T6727] ocfs2_reserve_clusters+0x3c/0x50 [ 40.095661][ T6727] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 40.096538][ T6727] ocfs2_xattr_set+0x920/0xe9c [ 40.097321][ T6727] ocfs2_xattr_trusted_set+0x4c/0x64 [ 40.098151][ T6727] __vfs_setxattr+0x3d8/0x400 [ 40.099017][ T6727] __vfs_setxattr_noperm+0x120/0x5c4 [ 40.099826][ T6727] __vfs_setxattr_locked+0x1ec/0x218 [ 40.100671][ T6727] vfs_setxattr+0x158/0x2ac [ 40.101381][ T6727] ovl_get_workdir+0x9d4/0x1270 [ 40.102165][ T6727] ovl_fill_super+0x10d8/0x3118 [ 40.103019][ T6727] get_tree_nodev+0xb4/0x144 [ 40.103786][ T6727] ovl_get_tree+0x28/0x38 [ 40.104541][ T6727] vfs_get_tree+0x90/0x28c [ 40.105319][ T6727] do_new_mount+0x284/0x944 [ 40.106055][ T6727] path_mount+0x5b4/0xdfc [ 40.106722][ T6727] __arm64_sys_mount+0x3e8/0x468 [ 40.107461][ T6727] invoke_syscall+0x98/0x254 [ 40.108202][ T6727] el0_svc_common+0xe8/0x23c [ 40.108980][ T6727] do_el0_svc+0x48/0x58 [ 40.109686][ T6727] el0_svc+0x5c/0x254 [ 40.110344][ T6727] el0t_64_sync_handler+0x84/0x12c [ 40.111130][ T6727] el0t_64_sync+0x198/0x19c [ 40.111870][ T6727] [ 40.111870][ T6727] other info that might help us debug this: [ 40.111870][ T6727] [ 40.113405][ T6727] Chain exists of: [ 40.113405][ T6727] &ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE] --> jbd2_handle --> &oi->ip_xattr_sem [ 40.113405][ T6727] [ 40.115755][ T6727] Possible unsafe locking scenario: [ 40.115755][ T6727] [ 40.116877][ T6727] CPU0 CPU1 [ 40.117653][ T6727] ---- ---- [ 40.118438][ T6727] lock(&oi->ip_xattr_sem); [ 40.119076][ T6727] lock(jbd2_handle); [ 40.119979][ T6727] lock(&oi->ip_xattr_sem); [ 40.121052][ T6727] lock(&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]); [ 40.122100][ T6727] [ 40.122100][ T6727] *** DEADLOCK *** [ 40.122100][ T6727] [ 40.123209][ T6727] 4 locks held by syz.0.17/6727: [ 40.123965][ T6727] #0: ffff0000c96e20e0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x168/0x7d4 [ 40.125484][ T6727] #1: ffff0000c6878420 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 40.126835][ T6727] #2: ffff0000f4d8df40 (&sb->s_type->i_mutex_key#22){++++}-{4:4}, at: vfs_setxattr+0x138/0x2ac [ 40.128564][ T6727] #3: ffff0000f4d8dc78 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 40.130068][ T6727] [ 40.130068][ T6727] stack backtrace: [ 40.130935][ T6727] CPU: 1 UID: 0 PID: 6727 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT [ 40.132160][ T6727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 40.133625][ T6727] Call trace: [ 40.134081][ T6727] show_stack+0x2c/0x3c (C) [ 40.134708][ T6727] __dump_stack+0x30/0x40 [ 40.135325][ T6727] dump_stack_lvl+0xd8/0x12c [ 40.135992][ T6727] dump_stack+0x1c/0x28 [ 40.136583][ T6727] print_circular_bug+0x324/0x32c [ 40.137324][ T6727] check_noncircular+0x154/0x174 [ 40.138086][ T6727] __lock_acquire+0x1774/0x30a4 [ 40.138807][ T6727] lock_acquire+0x14c/0x2e0 [ 40.139483][ T6727] down_write+0x50/0xc0 [ 40.140078][ T6727] ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 40.140946][ T6727] ocfs2_reserve_clusters_with_limit+0x198/0x9e0 [ 40.141849][ T6727] ocfs2_reserve_clusters+0x3c/0x50 [ 40.142570][ T6727] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 40.143411][ T6727] ocfs2_xattr_set+0x920/0xe9c [ 40.144096][ T6727] ocfs2_xattr_trusted_set+0x4c/0x64 [ 40.144835][ T6727] __vfs_setxattr+0x3d8/0x400 [ 40.145507][ T6727] __vfs_setxattr_noperm+0x120/0x5c4 [ 40.146294][ T6727] __vfs_setxattr_locked+0x1ec/0x218 [ 40.147040][ T6727] vfs_setxattr+0x158/0x2ac [ 40.147708][ T6727] ovl_get_workdir+0x9d4/0x1270 [ 40.148393][ T6727] ovl_fill_super+0x10d8/0x3118 [ 40.149100][ T6727] get_tree_nodev+0xb4/0x144 [ 40.149834][ T6727] ovl_get_tree+0x28/0x38 [ 40.150417][ T6727] vfs_get_tree+0x90/0x28c [ 40.151023][ T6727] do_new_mount+0x284/0x944 [ 40.151662][ T6727] path_mount+0x5b4/0xdfc [ 40.152209][ T6727] __arm64_sys_mount+0x3e8/0x468 [ 40.152937][ T6727] invoke_syscall+0x98/0x254 [ 40.153572][ T6727] el0_svc_common+0xe8/0x23c [ 40.154227][ T6727] do_el0_svc+0x48/0x58 [ 40.154851][ T6727] el0_svc+0x5c/0x254 [ 40.155408][ T6727] el0t_64_sync_handler+0x84/0x12c [ 40.156163][ T6727] el0t_64_sync+0x198/0x19c [ 40.159964][ T6727] overlayfs: upper fs missing required features. [ 40.169138][ T6660] ocfs2: Unmounting device (7,0) on (node local) [ 40.180813][ T6599] Bluetooth: hci0: command tx timeout