Warning: Permanently added '10.128.0.74' (ED25519) to the list of known hosts. 2025/10/08 14:10:52 parsed 1 programs [ 89.301898][ T5795] cgroup: Unknown subsys name 'net' [ 89.438316][ T5795] cgroup: Unknown subsys name 'rlimit' [ 91.160476][ T5795] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 92.251941][ T786] cfg80211: failed to load regulatory.db [ 94.119521][ T5823] chnl_net:caif_netlink_parms(): no params data found [ 94.218712][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.227105][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.236004][ T5823] bridge_slave_0: entered allmulticast mode [ 94.243638][ T5823] bridge_slave_0: entered promiscuous mode [ 94.252744][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.260102][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.267360][ T5823] bridge_slave_1: entered allmulticast mode [ 94.274933][ T5823] bridge_slave_1: entered promiscuous mode [ 94.317939][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 94.329901][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 94.365740][ T5823] team0: Port device team_slave_0 added [ 94.385538][ T5823] team0: Port device team_slave_1 added [ 94.414079][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 94.421151][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 94.448848][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 94.471726][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 94.478741][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 94.505117][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 94.564657][ T5823] hsr_slave_0: entered promiscuous mode [ 94.571285][ T5823] hsr_slave_1: entered promiscuous mode [ 94.737239][ T5823] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 94.759672][ T5823] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 94.770520][ T5823] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 94.782751][ T5823] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 94.828532][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.835891][ T5823] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.844206][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.851408][ T5823] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.926979][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.959341][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.970402][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.989467][ T5823] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.006324][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.013537][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.032903][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.040176][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.264407][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.307456][ T5823] veth0_vlan: entered promiscuous mode [ 95.321259][ T5823] veth1_vlan: entered promiscuous mode [ 95.349142][ T5823] veth0_macvtap: entered promiscuous mode [ 95.359225][ T5823] veth1_macvtap: entered promiscuous mode [ 95.382028][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.397927][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.410691][ T5823] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.420138][ T5823] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.428895][ T5823] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.437724][ T5823] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.584652][ T1306] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.938703][ T5868] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 96.947958][ T5868] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 96.956038][ T5868] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 96.964540][ T5868] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 96.974585][ T5868] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 96.982822][ T5868] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 97.410986][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.419006][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.453230][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.461331][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.030366][ T1306] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2025/10/08 14:11:04 executed programs: 0 [ 98.388881][ T5868] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 98.397174][ T5868] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 98.407671][ T5868] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 98.416778][ T5868] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 98.424685][ T5868] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 98.432310][ T5868] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 98.607340][ T5895] chnl_net:caif_netlink_parms(): no params data found [ 98.684480][ T5895] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.692017][ T5895] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.699367][ T5895] bridge_slave_0: entered allmulticast mode [ 98.706414][ T5895] bridge_slave_0: entered promiscuous mode [ 98.715763][ T5895] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.723308][ T5895] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.730726][ T5895] bridge_slave_1: entered allmulticast mode [ 98.737741][ T5895] bridge_slave_1: entered promiscuous mode [ 98.770474][ T5895] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.783922][ T5895] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.820220][ T5895] team0: Port device team_slave_0 added [ 98.828758][ T5895] team0: Port device team_slave_1 added [ 98.857783][ T5895] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.865634][ T5895] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.892535][ T5895] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.905741][ T5895] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.912904][ T5895] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.939100][ T5895] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.983283][ T5895] hsr_slave_0: entered promiscuous mode [ 98.990545][ T5895] hsr_slave_1: entered promiscuous mode [ 98.996731][ T5895] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 99.004704][ T5895] Cannot create hsr debugfs directory [ 100.424721][ T1306] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.492717][ T5103] Bluetooth: hci0: command tx timeout [ 100.502232][ T1306] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.329264][ T1306] hsr_slave_0: left promiscuous mode [ 101.336247][ T1306] hsr_slave_1: left promiscuous mode [ 101.344944][ T1306] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 101.352872][ T1306] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 101.365497][ T1306] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 101.374957][ T1306] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 101.385954][ T1306] bridge_slave_1: left allmulticast mode [ 101.400750][ T1306] bridge_slave_1: left promiscuous mode [ 101.407229][ T1306] bridge0: port 2(bridge_slave_1) entered disabled state [ 101.424562][ T1306] bridge_slave_0: left allmulticast mode [ 101.439928][ T1306] bridge_slave_0: left promiscuous mode [ 101.445862][ T1306] bridge0: port 1(bridge_slave_0) entered disabled state [ 101.492695][ T1306] veth1_macvtap: left promiscuous mode [ 101.498667][ T1306] veth0_macvtap: left promiscuous mode [ 101.508198][ T1306] veth1_vlan: left promiscuous mode [ 101.513944][ T1306] veth0_vlan: left promiscuous mode [ 102.015567][ T1306] team0 (unregistering): Port device team_slave_1 removed [ 102.047582][ T1306] team0 (unregistering): Port device team_slave_0 removed [ 102.085084][ T1306] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 102.120631][ T1306] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 102.468213][ T1306] bond0 (unregistering): Released all slaves [ 102.570461][ T5103] Bluetooth: hci0: command tx timeout [ 102.677076][ T5895] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 102.720058][ T5895] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 102.753652][ T5895] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 102.770281][ T5895] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 102.884110][ T5895] 8021q: adding VLAN 0 to HW filter on device bond0 [ 102.910931][ T5895] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.924189][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.931392][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 102.947577][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.954756][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 103.246680][ T5895] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.309028][ T5895] veth0_vlan: entered promiscuous mode [ 103.322592][ T5895] veth1_vlan: entered promiscuous mode [ 103.352065][ T5895] veth0_macvtap: entered promiscuous mode [ 103.362037][ T5895] veth1_macvtap: entered promiscuous mode [ 103.381848][ T5895] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 103.399307][ T5895] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 103.413138][ T5895] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.422399][ T5895] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.431262][ T5895] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.440234][ T5895] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.504135][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.517346][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.550978][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.558886][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.659936][ T5943] syz.0.17[5943]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 103.961927][ T5943] loop0: detected capacity change from 0 to 32768 [ 103.999171][ T5943] (syz.0.17,5943,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 104.032487][ T5943] (syz.0.17,5943,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 104.086597][ T5943] JBD2: Ignoring recovery information on journal [ 104.152368][ T5943] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 104.254250][ T5943] [ 104.256646][ T5943] ====================================================== [ 104.263688][ T5943] WARNING: possible circular locking dependency detected [ 104.270740][ T5943] syzkaller #0 Not tainted [ 104.275179][ T5943] ------------------------------------------------------ [ 104.282304][ T5943] syz.0.17/5943 is trying to acquire lock: [ 104.288110][ T5943] ffff888072fe2658 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 104.301355][ T5943] [ 104.301355][ T5943] but task is already holding lock: [ 104.308714][ T5943] ffff8880601386f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x410/0x11f0 [ 104.318211][ T5943] [ 104.318211][ T5943] which lock already depends on the new lock. [ 104.318211][ T5943] [ 104.328617][ T5943] [ 104.328617][ T5943] the existing dependency chain (in reverse order) is: [ 104.337632][ T5943] [ 104.337632][ T5943] -> #5 (&oi->ip_xattr_sem){++++}-{3:3}: [ 104.345472][ T5943] down_read+0x46/0x2e0 [ 104.350161][ T5943] ocfs2_init_acl+0x2fa/0x720 [ 104.355366][ T5943] ocfs2_mknod+0x12e5/0x20f0 [ 104.360493][ T5943] ocfs2_mkdir+0x196/0x410 [ 104.365520][ T5943] vfs_mkdir+0x296/0x440 [ 104.370327][ T5943] do_mkdirat+0x1d4/0x440 [ 104.375191][ T5943] __x64_sys_mkdirat+0x89/0xa0 [ 104.380492][ T5943] do_syscall_64+0x55/0xb0 [ 104.385539][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 104.391959][ T5943] [ 104.391959][ T5943] -> #4 (jbd2_handle){++++}-{0:0}: [ 104.399286][ T5943] start_this_handle+0x1e9d/0x20c0 [ 104.404956][ T5943] jbd2__journal_start+0x2bb/0x5b0 [ 104.410597][ T5943] jbd2_journal_start+0x2a/0x40 [ 104.415972][ T5943] ocfs2_start_trans+0x376/0x6c0 [ 104.421444][ T5943] ocfs2_modify_bh+0xe9/0x470 [ 104.426648][ T5943] ocfs2_local_read_info+0x13fd/0x1770 [ 104.432640][ T5943] dquot_load_quota_sb+0x757/0xb80 [ 104.438289][ T5943] dquot_load_quota_inode+0x2dc/0x5d0 [ 104.444192][ T5943] ocfs2_enable_quotas+0x1c7/0x440 [ 104.449832][ T5943] ocfs2_fill_super+0x3f6d/0x4d90 [ 104.455385][ T5943] mount_bdev+0x22b/0x2d0 [ 104.460239][ T5943] legacy_get_tree+0xea/0x180 [ 104.465554][ T5943] vfs_get_tree+0x8c/0x280 [ 104.470513][ T5943] do_new_mount+0x24b/0xa40 [ 104.475574][ T5943] __se_sys_mount+0x2da/0x3c0 [ 104.480794][ T5943] do_syscall_64+0x55/0xb0 [ 104.485744][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 104.492162][ T5943] [ 104.492162][ T5943] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 104.500687][ T5943] down_read+0x46/0x2e0 [ 104.505377][ T5943] ocfs2_start_trans+0x36a/0x6c0 [ 104.510853][ T5943] ocfs2_modify_bh+0xe9/0x470 [ 104.516063][ T5943] ocfs2_local_read_info+0x13fd/0x1770 [ 104.522055][ T5943] dquot_load_quota_sb+0x757/0xb80 [ 104.527701][ T5943] dquot_load_quota_inode+0x2dc/0x5d0 [ 104.533608][ T5943] ocfs2_enable_quotas+0x1c7/0x440 [ 104.539246][ T5943] ocfs2_fill_super+0x3f6d/0x4d90 [ 104.544795][ T5943] mount_bdev+0x22b/0x2d0 [ 104.549652][ T5943] legacy_get_tree+0xea/0x180 [ 104.554859][ T5943] vfs_get_tree+0x8c/0x280 [ 104.559802][ T5943] do_new_mount+0x24b/0xa40 [ 104.564830][ T5943] __se_sys_mount+0x2da/0x3c0 [ 104.570039][ T5943] do_syscall_64+0x55/0xb0 [ 104.574986][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 104.581412][ T5943] [ 104.581412][ T5943] -> #2 (sb_internal#2){.+.+}-{0:0}: [ 104.588904][ T5943] ocfs2_start_trans+0x26b/0x6c0 [ 104.594379][ T5943] ocfs2_mknod+0xe47/0x20f0 [ 104.599419][ T5943] ocfs2_mkdir+0x196/0x410 [ 104.604369][ T5943] vfs_mkdir+0x296/0x440 [ 104.609151][ T5943] do_mkdirat+0x1d4/0x440 [ 104.614026][ T5943] __x64_sys_mkdirat+0x89/0xa0 [ 104.619328][ T5943] do_syscall_64+0x55/0xb0 [ 104.624282][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 104.630710][ T5943] [ 104.630710][ T5943] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}: [ 104.641236][ T5943] down_write+0x97/0x1f0 [ 104.646018][ T5943] ocfs2_reserve_local_alloc_bits+0x126/0x24b0 [ 104.652723][ T5943] ocfs2_reserve_clusters_with_limit+0x1bf/0xba0 [ 104.659678][ T5943] ocfs2_mknod+0xdee/0x20f0 [ 104.664723][ T5943] ocfs2_mkdir+0x196/0x410 [ 104.669672][ T5943] vfs_mkdir+0x296/0x440 [ 104.674449][ T5943] do_mkdirat+0x1d4/0x440 [ 104.679325][ T5943] __x64_sys_mkdirat+0x89/0xa0 [ 104.684630][ T5943] do_syscall_64+0x55/0xb0 [ 104.689579][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 104.696004][ T5943] [ 104.696004][ T5943] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}: [ 104.706532][ T5943] __lock_acquire+0x2ddb/0x7c80 [ 104.711912][ T5943] lock_acquire+0x197/0x410 [ 104.716947][ T5943] down_write+0x97/0x1f0 [ 104.721722][ T5943] ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 104.728150][ T5943] ocfs2_reserve_new_metadata_blocks+0x404/0x940 [ 104.735019][ T5943] ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0 [ 104.741275][ T5943] ocfs2_xattr_set+0xb6d/0x11f0 [ 104.746654][ T5943] ocfs2_set_acl+0x4e1/0x590 [ 104.751783][ T5943] ocfs2_iop_set_acl+0x1ab/0x2a0 [ 104.757260][ T5943] vfs_set_acl+0x803/0xa60 [ 104.762216][ T5943] do_set_acl+0xf5/0x180 [ 104.766992][ T5943] path_setxattr+0x39f/0x550 [ 104.772119][ T5943] __x64_sys_setxattr+0xbb/0xd0 [ 104.777504][ T5943] do_syscall_64+0x55/0xb0 [ 104.782449][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 104.788905][ T5943] [ 104.788905][ T5943] other info that might help us debug this: [ 104.788905][ T5943] [ 104.799225][ T5943] Chain exists of: [ 104.799225][ T5943] &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5 --> jbd2_handle --> &oi->ip_xattr_sem [ 104.799225][ T5943] [ 104.814971][ T5943] Possible unsafe locking scenario: [ 104.814971][ T5943] [ 104.822424][ T5943] CPU0 CPU1 [ 104.827789][ T5943] ---- ---- [ 104.833155][ T5943] lock(&oi->ip_xattr_sem); [ 104.837753][ T5943] lock(jbd2_handle); [ 104.844348][ T5943] lock(&oi->ip_xattr_sem); [ 104.851554][ T5943] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5); [ 104.858847][ T5943] [ 104.858847][ T5943] *** DEADLOCK *** [ 104.858847][ T5943] [ 104.866994][ T5943] 3 locks held by syz.0.17/5943: [ 104.871948][ T5943] #0: ffff88807c99c418 (sb_writers#13){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 104.881198][ T5943] #1: ffff8880601389d8 (&type->i_mutex_dir_key#9){+.+.}-{3:3}, at: vfs_set_acl+0x37a/0xa60 [ 104.891317][ T5943] #2: ffff8880601386f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x410/0x11f0 [ 104.901259][ T5943] [ 104.901259][ T5943] stack backtrace: [ 104.907254][ T5943] CPU: 1 PID: 5943 Comm: syz.0.17 Not tainted syzkaller #0 [ 104.914478][ T5943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 104.924634][ T5943] Call Trace: [ 104.927926][ T5943] [ 104.930869][ T5943] dump_stack_lvl+0x16c/0x230 [ 104.935563][ T5943] ? load_image+0x3b0/0x3b0 [ 104.940163][ T5943] ? show_regs_print_info+0x20/0x20 [ 104.945376][ T5943] ? print_circular_bug+0x12b/0x1a0 [ 104.950679][ T5943] check_noncircular+0x2bd/0x3c0 [ 104.955631][ T5943] ? print_deadlock_bug+0x5d0/0x5d0 [ 104.960847][ T5943] ? lockdep_lock+0xe0/0x220 [ 104.965448][ T5943] ? _find_first_zero_bit+0xd3/0x100 [ 104.970835][ T5943] __lock_acquire+0x2ddb/0x7c80 [ 104.975793][ T5943] ? ocfs2_get_system_file_inode+0x1e3/0x7b0 [ 104.981781][ T5943] ? __lock_acquire+0x7c80/0x7c80 [ 104.986809][ T5943] ? verify_lock_unused+0x140/0x140 [ 104.992024][ T5943] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 104.997673][ T5943] ? do_raw_spin_lock+0x121/0x2c0 [ 105.002705][ T5943] ? mutex_unlock+0x10/0x10 [ 105.007221][ T5943] lock_acquire+0x197/0x410 [ 105.011821][ T5943] ? ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 105.018004][ T5943] ? ocfs2_get_system_file_inode+0x1f1/0x7b0 [ 105.023999][ T5943] ? __might_sleep+0xe0/0xe0 [ 105.028603][ T5943] ? read_lock_is_recursive+0x20/0x20 [ 105.033989][ T5943] ? ocfs2_fast_symlink_read_folio+0x530/0x530 [ 105.040154][ T5943] ? verify_lock_unused+0x140/0x140 [ 105.045359][ T5943] ? check_noncircular+0x175/0x3c0 [ 105.050482][ T5943] down_write+0x97/0x1f0 [ 105.054762][ T5943] ? ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 105.060936][ T5943] ? down_read_killable+0x340/0x340 [ 105.066170][ T5943] ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 105.072089][ T5943] ? mark_lock+0x94/0x320 [ 105.076431][ T5943] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 105.082508][ T5943] ? lock_chain_count+0x20/0x20 [ 105.087390][ T5943] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 105.093294][ T5943] ? ocfs2_block_group_search+0x470/0x470 [ 105.099026][ T5943] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 105.104927][ T5943] ? _raw_spin_unlock+0x40/0x40 [ 105.109804][ T5943] ? stack_trace_save+0x9c/0xe0 [ 105.114668][ T5943] ? stack_trace_snprint+0xf0/0xf0 [ 105.119792][ T5943] ? __stack_depot_save+0x560/0x630 [ 105.125006][ T5943] ? kasan_set_track+0x5f/0x70 [ 105.129780][ T5943] ? kasan_set_track+0x4e/0x70 [ 105.134554][ T5943] ? __kasan_kmalloc+0x8f/0xa0 [ 105.139322][ T5943] ? ocfs2_reserve_new_metadata_blocks+0x114/0x940 [ 105.145869][ T5943] ? ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0 [ 105.151690][ T5943] ? ocfs2_xattr_set+0xb6d/0x11f0 [ 105.156721][ T5943] ? ocfs2_set_acl+0x4e1/0x590 [ 105.161500][ T5943] ? ocfs2_iop_set_acl+0x1ab/0x2a0 [ 105.166629][ T5943] ? vfs_set_acl+0x803/0xa60 [ 105.171235][ T5943] ? do_set_acl+0xf5/0x180 [ 105.175752][ T5943] ? path_setxattr+0x39f/0x550 [ 105.180525][ T5943] ? __x64_sys_setxattr+0xbb/0xd0 [ 105.185557][ T5943] ? do_syscall_64+0x55/0xb0 [ 105.190157][ T5943] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 105.196247][ T5943] ocfs2_reserve_new_metadata_blocks+0x404/0x940 [ 105.202592][ T5943] ? ocfs2_init_steal_slots+0x160/0x160 [ 105.208154][ T5943] ? ocfs2_xattr_block_set+0x2b40/0x2b40 [ 105.213809][ T5943] ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0 [ 105.219458][ T5943] ? ocfs2_xattr_set+0xb33/0x11f0 [ 105.224512][ T5943] ? ocfs2_prepare_refcount_xattr+0xf20/0xf20 [ 105.230591][ T5943] ? ocfs2_truncate_log_needs_flush+0x135/0x2e0 [ 105.236845][ T5943] ? ocfs2_remove_btree_range+0x1480/0x1480 [ 105.242762][ T5943] ? down_write+0x162/0x1f0 [ 105.247286][ T5943] ? down_read_killable+0x340/0x340 [ 105.252506][ T5943] ? up_write+0x1c3/0x410 [ 105.256843][ T5943] ocfs2_xattr_set+0xb6d/0x11f0 [ 105.261714][ T5943] ? __ocfs2_xattr_set_handle+0xf10/0xf10 [ 105.267455][ T5943] ? __kasan_kmalloc+0x8f/0xa0 [ 105.272235][ T5943] ? ocfs2_set_acl+0x11e/0x590 [ 105.277011][ T5943] ? ocfs2_iop_set_acl+0x1ab/0x2a0 [ 105.282146][ T5943] ? vfs_set_acl+0x803/0xa60 [ 105.286754][ T5943] ? path_setxattr+0x39f/0x550 [ 105.291533][ T5943] ? do_syscall_64+0x55/0xb0 [ 105.296152][ T5943] ? ocfs2_set_acl+0x11e/0x590 [ 105.300928][ T5943] ? rcu_is_watching+0x15/0xb0 [ 105.305712][ T5943] ? ocfs2_set_acl+0x11e/0x590 [ 105.310510][ T5943] ? __kmalloc+0xe2/0x240 [ 105.314854][ T5943] ? ocfs2_inode_lock_atime+0x4e0/0x4e0 [ 105.320414][ T5943] ocfs2_set_acl+0x4e1/0x590 [ 105.325023][ T5943] ocfs2_iop_set_acl+0x1ab/0x2a0 [ 105.329999][ T5943] ? ocfs2_xattr_get+0x220/0x220 [ 105.334960][ T5943] ? evm_inode_set_acl+0xbb/0x410 [ 105.340000][ T5943] ? down_read_killable+0x340/0x340 [ 105.345217][ T5943] ? evm_revalidate_status+0x4f/0xb0 [ 105.350536][ T5943] ? posix_acl_valid+0x352/0x3d0 [ 105.355575][ T5943] vfs_set_acl+0x803/0xa60 [ 105.360034][ T5943] do_set_acl+0xf5/0x180 [ 105.364333][ T5943] path_setxattr+0x39f/0x550 [ 105.368958][ T5943] ? simple_xattrs_free+0x150/0x150 [ 105.374193][ T5943] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 105.380193][ T5943] ? lock_chain_count+0x20/0x20 [ 105.385055][ T5943] __x64_sys_setxattr+0xbb/0xd0 [ 105.389975][ T5943] do_syscall_64+0x55/0xb0 [ 105.394430][ T5943] ? clear_bhb_loop+0x40/0x90 [ 105.399118][ T5943] ? clear_bhb_loop+0x40/0x90 [ 105.403806][ T5943] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 105.409714][ T5943] RIP: 0033:0x7f6d9d38eec9 [ 105.414154][ T5943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 105.433782][ T5943] RSP: 002b:00007ffdf12344b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 105.442222][ T5943] RAX: ffffffffffffffda RBX: 00007f6d9d5e5fa0 RCX: 00007f6d9d38eec9 [ 105.450222][ T5943] RDX: 0000200000002b40 RSI: 0000200000002a40 RDI: 0000200000002a00 [ 105.458221][ T5943] RBP: 00007f6d9d411f91 R08: 0000000000000000 R09: 0000000000000000 [ 105.466201][ T5943] R10: 0000000000000024 R11: 0000000000000246 R12: 0000000000000000 [ 105.474182][ T5943] R13: 00007f6d9d5e5fa0 R14: 00007f6d9d5e5fa0 R15: 0000000000000005 [ 105.482345][ T5943] [ 105.505637][ T5103] Bluetooth: hci0: command tx timeout [ 105.525951][ T5895] ocfs2: Unmounting device (7,0) on (node local)