Warning: Permanently added '10.128.1.9' (ED25519) to the list of known hosts. 2025/11/03 05:47:57 parsed 1 programs syzkaller login: [ 58.855429][ T4273] cgroup: Unknown subsys name 'net' [ 58.987461][ T4273] cgroup: Unknown subsys name 'rlimit' [ 60.221854][ T4273] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 61.546335][ T4285] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.554528][ T4285] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.561847][ T4285] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.569629][ T4285] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.581450][ T4285] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 61.588718][ T4285] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 62.584943][ T4321] chnl_net:caif_netlink_parms(): no params data found [ 62.623922][ T4321] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.631346][ T4321] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.640173][ T4321] device bridge_slave_0 entered promiscuous mode [ 62.654204][ T4321] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.661289][ T4321] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.669043][ T4321] device bridge_slave_1 entered promiscuous mode [ 62.687518][ T4321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.705962][ T4321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.727303][ T4321] team0: Port device team_slave_0 added [ 62.734178][ T4321] team0: Port device team_slave_1 added [ 62.750576][ T4321] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.757576][ T4321] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.783790][ T4321] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.802227][ T4321] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.809273][ T4321] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.835304][ T4321] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.873250][ T4321] device hsr_slave_0 entered promiscuous mode [ 62.880236][ T4321] device hsr_slave_1 entered promiscuous mode [ 62.978889][ T4321] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.989357][ T4321] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 63.000148][ T4321] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 63.009177][ T4321] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 63.084598][ T4321] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.097512][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.106149][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 63.116917][ T4321] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.127537][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 63.136519][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 63.145623][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.152862][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.161917][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 63.183963][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 63.194383][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 63.203492][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.210583][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.226611][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 63.235408][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 63.251157][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 63.260401][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 63.269534][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 63.279079][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 63.287901][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 63.301812][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 63.315183][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 63.325999][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 63.466967][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 63.474660][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 63.486590][ T4321] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.508471][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 63.525673][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 63.534224][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 63.541910][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 63.551061][ T4321] device veth0_vlan entered promiscuous mode [ 63.565388][ T4321] device veth1_vlan entered promiscuous mode [ 63.582439][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 63.590856][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 63.599041][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 63.609339][ T4321] device veth0_macvtap entered promiscuous mode [ 63.628380][ T4321] device veth1_macvtap entered promiscuous mode [ 63.642117][ T4321] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.649858][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 63.658613][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 63.667370][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 63.680276][ T4321] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.693986][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 63.702350][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 63.712169][ T4321] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.721978][ T4321] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.731068][ T4321] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.739875][ T4321] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.014735][ T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.303239][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.311183][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.344217][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 64.369800][ T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.377998][ T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.386417][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 2025/11/03 05:48:05 executed programs: 0 [ 65.458260][ T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 65.467113][ T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 65.474791][ T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 65.483415][ T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 65.490898][ T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 65.498168][ T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 65.598183][ T4371] chnl_net:caif_netlink_parms(): no params data found [ 65.637579][ T4371] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.644745][ T4371] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.652336][ T4371] device bridge_slave_0 entered promiscuous mode [ 65.660625][ T4371] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.668049][ T4371] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.675683][ T4371] device bridge_slave_1 entered promiscuous mode [ 65.695282][ T4371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 65.707432][ T4371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 65.728557][ T4371] team0: Port device team_slave_0 added [ 65.735441][ T4371] team0: Port device team_slave_1 added [ 65.752397][ T4371] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 65.759466][ T4371] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.786315][ T4371] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 65.801068][ T4371] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 65.808316][ T4371] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.834552][ T4371] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 65.861846][ T4371] device hsr_slave_0 entered promiscuous mode [ 65.869042][ T4371] device hsr_slave_1 entered promiscuous mode [ 65.877415][ T4371] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 65.885211][ T4371] Cannot create hsr debugfs directory [ 66.341200][ T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 67.542908][ T4285] Bluetooth: hci0: command 0x0409 tx timeout [ 68.601511][ T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 68.662480][ T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.513449][ T4371] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 69.530027][ T11] device hsr_slave_0 left promiscuous mode [ 69.537066][ T11] device hsr_slave_1 left promiscuous mode [ 69.544059][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 69.551446][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 69.560112][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 69.567574][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 69.575060][ T11] device bridge_slave_1 left promiscuous mode [ 69.581765][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.591766][ T11] device bridge_slave_0 left promiscuous mode [ 69.598915][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.617204][ T11] device veth1_macvtap left promiscuous mode [ 69.623555][ T4285] Bluetooth: hci0: command 0x041b tx timeout [ 69.624025][ T11] device veth0_macvtap left promiscuous mode [ 69.635675][ T11] device veth1_vlan left promiscuous mode [ 69.641509][ T11] device veth0_vlan left promiscuous mode [ 69.888771][ T11] team0 (unregistering): Port device team_slave_1 removed [ 69.915802][ T11] team0 (unregistering): Port device team_slave_0 removed [ 69.940709][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 69.970540][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 70.185751][ T11] bond0 (unregistering): Released all slaves [ 70.260371][ T4371] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 70.269134][ T4371] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 70.277640][ T4371] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 70.335178][ T4371] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.348045][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 70.356639][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 70.379191][ T4371] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.388353][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 70.397623][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 70.406177][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.413366][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.421256][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 70.448379][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 70.457968][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 70.466828][ T2949] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.473915][ T2949] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.481919][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 70.491445][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 70.504388][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 70.513521][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 70.522279][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 70.534747][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 70.544724][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 70.560885][ T4371] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 70.571789][ T4371] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 70.583539][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 70.592059][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 70.601342][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 70.609937][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 70.618412][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 70.809124][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 70.817982][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 70.836557][ T4371] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.854733][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 70.863281][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 70.881186][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 70.889556][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 70.897973][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 70.907554][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 70.917032][ T4371] device veth0_vlan entered promiscuous mode [ 70.927135][ T4371] device veth1_vlan entered promiscuous mode [ 70.943791][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 70.951741][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 70.960183][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 70.968961][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 70.978848][ T4371] device veth0_macvtap entered promiscuous mode [ 70.989075][ T4371] device veth1_macvtap entered promiscuous mode [ 71.002009][ T4371] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.010370][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 71.018932][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 71.026823][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 71.035644][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 71.046483][ T4371] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.054535][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 71.063783][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 71.074017][ T4371] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.083318][ T4371] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.092002][ T4371] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.100723][ T4371] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.145974][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.152432][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.172272][ T37] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.181568][ T37] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.195466][ T2949] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 71.215716][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.224033][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.232301][ T62] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 71.329127][ T4430] loop0: detected capacity change from 0 to 8192 [ 71.348363][ T4430] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 71.363262][ T4430] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 71.372500][ T4430] REISERFS (device loop0): using ordered data mode [ 71.380747][ T4430] reiserfs: using flush barriers [ 71.394305][ T4430] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 71.415361][ T4430] REISERFS (device loop0): checking transaction log (loop0) [ 71.426021][ T4430] REISERFS (device loop0): Using tea hash to sort names [ 71.436255][ T4430] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 71.448674][ T4430] [ 71.451011][ T4430] ====================================================== [ 71.458023][ T4430] WARNING: possible circular locking dependency detected [ 71.465040][ T4430] syzkaller #0 Not tainted [ 71.469448][ T4430] ------------------------------------------------------ [ 71.476457][ T4430] syz.0.17/4430 is trying to acquire lock: [ 71.482256][ T4430] ffffc900034290f0 (&journal->j_mutex){+.+.}-{3:3}, at: do_journal_begin_r+0x37a/0x1040 [ 71.492022][ T4430] [ 71.492022][ T4430] but task is already holding lock: [ 71.499380][ T4430] ffff888078856460 (sb_writers#13){.+.+}-{0:0}, at: mnt_want_write_file+0x5c/0x200 [ 71.508730][ T4430] [ 71.508730][ T4430] which lock already depends on the new lock. [ 71.508730][ T4430] [ 71.519128][ T4430] [ 71.519128][ T4430] the existing dependency chain (in reverse order) is: [ 71.528135][ T4430] [ 71.528135][ T4430] -> #2 (sb_writers#13){.+.+}-{0:0}: [ 71.535612][ T4430] sb_start_write+0x4d/0x1c0 [ 71.540727][ T4430] mnt_want_write_file+0x5c/0x200 [ 71.546280][ T4430] reiserfs_ioctl+0x10a/0x330 [ 71.551484][ T4430] __se_sys_ioctl+0xfa/0x170 [ 71.556604][ T4430] do_syscall_64+0x4c/0xa0 [ 71.561541][ T4430] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 71.567953][ T4430] [ 71.567953][ T4430] -> #1 (&sbi->lock){+.+.}-{3:3}: [ 71.575162][ T4430] __mutex_lock+0x120/0xaf0 [ 71.580164][ T4430] reiserfs_write_lock_nested+0x5c/0xd0 [ 71.586207][ T4430] do_journal_begin_r+0x385/0x1040 [ 71.591810][ T4430] journal_begin+0x148/0x350 [ 71.596897][ T4430] reiserfs_fill_super+0x15e7/0x2340 [ 71.602682][ T4430] mount_bdev+0x287/0x3c0 [ 71.607505][ T4430] legacy_get_tree+0xe6/0x180 [ 71.612677][ T4430] vfs_get_tree+0x88/0x270 [ 71.617589][ T4430] do_new_mount+0x24a/0xa40 [ 71.622593][ T4430] __se_sys_mount+0x2d6/0x3c0 [ 71.627763][ T4430] do_syscall_64+0x4c/0xa0 [ 71.632690][ T4430] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 71.639078][ T4430] [ 71.639078][ T4430] -> #0 (&journal->j_mutex){+.+.}-{3:3}: [ 71.646871][ T4430] __lock_acquire+0x2cf8/0x7c50 [ 71.652232][ T4430] lock_acquire+0x1b4/0x490 [ 71.657243][ T4430] __mutex_lock+0x120/0xaf0 [ 71.662243][ T4430] do_journal_begin_r+0x37a/0x1040 [ 71.667847][ T4430] journal_begin+0x148/0x350 [ 71.672932][ T4430] reiserfs_dirty_inode+0x119/0x240 [ 71.678624][ T4430] __mark_inode_dirty+0x2eb/0xe90 [ 71.684146][ T4430] reiserfs_ioctl+0x286/0x330 [ 71.689318][ T4430] __se_sys_ioctl+0xfa/0x170 [ 71.694414][ T4430] do_syscall_64+0x4c/0xa0 [ 71.699327][ T4430] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 71.705715][ T4430] [ 71.705715][ T4430] other info that might help us debug this: [ 71.705715][ T4430] [ 71.715917][ T4430] Chain exists of: [ 71.715917][ T4430] &journal->j_mutex --> &sbi->lock --> sb_writers#13 [ 71.715917][ T4430] [ 71.728485][ T4430] Possible unsafe locking scenario: [ 71.728485][ T4430] [ 71.735907][ T4430] CPU0 CPU1 [ 71.741245][ T4430] ---- ---- [ 71.742678][ T4285] Bluetooth: hci0: command 0x040f tx timeout [ 71.746578][ T4430] lock(sb_writers#13); [ 71.746595][ T4430] lock(&sbi->lock); [ 71.746605][ T4430] lock(sb_writers#13); [ 71.746619][ T4430] lock(&journal->j_mutex); [ 71.746627][ T4430] [ 71.746627][ T4430] *** DEADLOCK *** [ 71.746627][ T4430] [ 71.746631][ T4430] 1 lock held by syz.0.17/4430: [ 71.746640][ T4430] #0: ffff888078856460 (sb_writers#13){.+.+}-{0:0}, at: mnt_want_write_file+0x5c/0x200 [ 71.746687][ T4430] [ 71.746687][ T4430] stack backtrace: [ 71.746711][ T4430] CPU: 0 PID: 4430 Comm: syz.0.17 Not tainted syzkaller #0 [ 71.746726][ T4430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 71.746740][ T4430] Call Trace: [ 71.746745][ T4430] [ 71.746751][ T4430] dump_stack_lvl+0x168/0x22e [ 71.746768][ T4430] ? load_image+0x3b0/0x3b0 [ 71.746788][ T4430] ? show_regs_print_info+0x12/0x12 [ 71.840861][ T4430] ? print_circular_bug+0x12b/0x1a0 [ 71.846049][ T4430] check_noncircular+0x274/0x310 [ 71.850973][ T4430] ? add_chain_block+0x940/0x940 [ 71.855893][ T4430] ? lockdep_lock+0xdc/0x1e0 [ 71.860462][ T4430] ? _find_first_zero_bit+0xcf/0x100 [ 71.865735][ T4430] __lock_acquire+0x2cf8/0x7c50 [ 71.870568][ T4430] ? stack_trace_save+0xe0/0xe0 [ 71.875396][ T4430] ? verify_lock_unused+0x140/0x140 [ 71.880572][ T4430] ? mnt_want_write_file+0x5c/0x200 [ 71.885749][ T4430] ? reacquire_held_locks+0x2f9/0x590 [ 71.891117][ T4430] ? mnt_want_write_file+0x5c/0x200 [ 71.896311][ T4430] lock_acquire+0x1b4/0x490 [ 71.900802][ T4430] ? do_journal_begin_r+0x37a/0x1040 [ 71.906102][ T4430] ? __might_sleep+0xd0/0xd0 [ 71.910673][ T4430] ? read_lock_is_recursive+0x10/0x10 [ 71.916022][ T4430] ? __lock_acquire+0x7c50/0x7c50 [ 71.921026][ T4430] __mutex_lock+0x120/0xaf0 [ 71.925518][ T4430] ? do_journal_begin_r+0x37a/0x1040 [ 71.930781][ T4430] ? mutex_unlock+0x10/0x10 [ 71.935283][ T4430] ? lockdep_unlock+0x133/0x2d0 [ 71.940110][ T4430] ? do_journal_begin_r+0x37a/0x1040 [ 71.945549][ T4430] ? mutex_lock_nested+0x10/0x10 [ 71.950475][ T4430] ? add_lock_to_list+0x191/0x280 [ 71.955490][ T4430] ? __lock_acquire+0x28b5/0x7c50 [ 71.960498][ T4430] ? reiserfs_write_unlock_nested+0xc0/0xf0 [ 71.966372][ T4430] do_journal_begin_r+0x37a/0x1040 [ 71.971462][ T4430] ? journal_join_abort+0xe0/0xe0 [ 71.976464][ T4430] ? seqcount_lockdep_reader_access+0x120/0x1c0 [ 71.982689][ T4430] ? lockdep_hardirqs_on+0x94/0x140 [ 71.987867][ T4430] ? ktime_get_coarse_real_ts64+0x36/0x120 [ 71.993655][ T4430] ? seqcount_lockdep_reader_access+0x172/0x1c0 [ 71.999886][ T4430] journal_begin+0x148/0x350 [ 72.004455][ T4430] reiserfs_dirty_inode+0x119/0x240 [ 72.009632][ T4430] ? reiserfs_free_inode+0x20/0x20 [ 72.014719][ T4430] ? current_time+0x1b9/0x2a0 [ 72.019372][ T4430] ? reiserfs_free_inode+0x20/0x20 [ 72.024462][ T4430] __mark_inode_dirty+0x2eb/0xe90 [ 72.029464][ T4430] ? __might_fault+0xa6/0x120 [ 72.034117][ T4430] reiserfs_ioctl+0x286/0x330 [ 72.038772][ T4430] ? reiserfs_unpack+0x600/0x600 [ 72.043691][ T4430] __se_sys_ioctl+0xfa/0x170 [ 72.048263][ T4430] do_syscall_64+0x4c/0xa0 [ 72.052658][ T4430] ? clear_bhb_loop+0x60/0xb0 [ 72.057315][ T4430] ? clear_bhb_loop+0x60/0xb0 [ 72.061970][ T4430] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 72.067839][ T4430] RIP: 0033:0x7fc0fa58efc9 [ 72.072239][ T4430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 72.091827][ T4430] RSP: 002b:00007fffd842deb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 72.100217][ T4430] RAX: ffffffffffffffda RBX: 00007fc0fa7e5fa0 RCX: 00007fc0fa58efc9 [ 72.108173][ T4430] RDX: 0000200000000000 RSI: 0000000040087602 RDI: 0000000000000003 [ 72.116120][ T4430] RBP: 00007fc0fa611f91 R08: 0000000000000000 R09: 0000000000000000 [ 72.124069][ T4430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 72.132015][ T4430] R13: 00007fc0fa7e5fa0 R14: 00007fc0fa7e5fa0 R15: 0000000000000003 [ 72.139964][ T4430]