Warning: Permanently added '10.128.0.240' (ED25519) to the list of known hosts. 1970/01/01 00:00:32 parsed 1 programs [ 33.234361][ T6532] cgroup: Unknown subsys name 'net' [ 33.351250][ T6532] cgroup: Unknown subsys name 'cpuset' [ 33.353156][ T6532] cgroup: Unknown subsys name 'rlimit' [ 33.558942][ T6532] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 38.582089][ T6541] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 38.625879][ T6550] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 38.627743][ T6550] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 38.628934][ T6550] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 38.631812][ T6550] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 38.633147][ T6550] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 38.733387][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.733416][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.761147][ T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.761189][ T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.808628][ T6607] chnl_net:caif_netlink_parms(): no params data found [ 39.831082][ T6607] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.832585][ T6607] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.834110][ T6607] bridge_slave_0: entered allmulticast mode [ 39.835805][ T6607] bridge_slave_0: entered promiscuous mode [ 39.838127][ T6607] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.840614][ T6607] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.840686][ T6607] bridge_slave_1: entered allmulticast mode [ 39.841103][ T6607] bridge_slave_1: entered promiscuous mode [ 39.900914][ T6607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 39.901891][ T6607] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 40.069783][ T6607] team0: Port device team_slave_0 added [ 40.090782][ T6607] team0: Port device team_slave_1 added [ 40.097904][ T6607] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 40.097944][ T6607] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.097956][ T6607] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 40.098674][ T6607] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 40.098680][ T6607] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.098693][ T6607] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 40.113559][ T6607] hsr_slave_0: entered promiscuous mode [ 40.113891][ T6607] hsr_slave_1: entered promiscuous mode [ 40.162827][ T6607] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 40.165644][ T6607] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 40.167808][ T6607] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 40.170449][ T6607] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 40.180280][ T6607] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.180330][ T6607] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.180485][ T6607] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.180508][ T6607] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.193541][ T6607] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.197003][ T1067] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.198212][ T1067] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.215064][ T6607] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.217361][ T1067] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.217406][ T1067] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.221148][ T1067] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.221195][ T1067] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.269535][ T6607] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.281344][ T6607] veth0_vlan: entered promiscuous mode [ 40.282953][ T6607] veth1_vlan: entered promiscuous mode [ 40.288642][ T6607] veth0_macvtap: entered promiscuous mode [ 40.289649][ T6607] veth1_macvtap: entered promiscuous mode [ 40.293521][ T6607] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 40.294780][ T6607] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 40.298640][ T778] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.298727][ T778] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.298749][ T778] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.298760][ T778] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.648010][ T929] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.705124][ T929] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.741199][ T929] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.774003][ T929] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:40 executed programs: 0 [ 40.893719][ T6550] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 40.894181][ T6550] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 40.894445][ T6550] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 40.894728][ T6550] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 40.894905][ T6550] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 40.940082][ T6642] chnl_net:caif_netlink_parms(): no params data found [ 40.958238][ T6642] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.958299][ T6642] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.958347][ T6642] bridge_slave_0: entered allmulticast mode [ 40.958744][ T6642] bridge_slave_0: entered promiscuous mode [ 40.960898][ T6642] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.960944][ T6642] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.960991][ T6642] bridge_slave_1: entered allmulticast mode [ 40.961393][ T6642] bridge_slave_1: entered promiscuous mode [ 40.972844][ T6642] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 40.975280][ T6642] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 40.984647][ T6642] team0: Port device team_slave_0 added [ 40.986454][ T6642] team0: Port device team_slave_1 added [ 40.993539][ T6642] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 40.994657][ T6642] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.998657][ T6642] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 41.001182][ T6642] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 41.001210][ T6642] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 41.001223][ T6642] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 41.014125][ T6642] hsr_slave_0: entered promiscuous mode [ 41.014417][ T6642] hsr_slave_1: entered promiscuous mode [ 41.014589][ T6642] debugfs: 'hsr0' already exists in 'hsr' [ 41.014643][ T6642] Cannot create hsr debugfs directory [ 42.969600][ T6550] Bluetooth: hci0: command tx timeout [ 44.099490][ T929] bridge_slave_1: left allmulticast mode [ 44.099527][ T929] bridge_slave_1: left promiscuous mode [ 44.099825][ T929] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.104474][ T929] bridge_slave_0: left allmulticast mode [ 44.104500][ T929] bridge_slave_0: left promiscuous mode [ 44.104571][ T929] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.224528][ T929] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 44.251103][ T929] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 44.279984][ T929] bond0 (unregistering): Released all slaves [ 44.360044][ T929] hsr_slave_0: left promiscuous mode [ 44.361352][ T929] hsr_slave_1: left promiscuous mode [ 44.362904][ T929] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 44.364140][ T929] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 44.365880][ T929] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 44.367112][ T929] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 44.372962][ T929] veth1_macvtap: left promiscuous mode [ 44.373979][ T929] veth0_macvtap: left promiscuous mode [ 44.374968][ T929] veth1_vlan: left promiscuous mode [ 44.376113][ T929] veth0_vlan: left promiscuous mode [ 44.483901][ T929] team0 (unregistering): Port device team_slave_1 removed [ 44.492070][ T929] team0 (unregistering): Port device team_slave_0 removed [ 44.701247][ T6642] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 44.703656][ T6642] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 44.705211][ T6642] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 44.707267][ T6642] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 44.728527][ T6642] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.740467][ T6642] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.743270][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.743310][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.747116][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.747151][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.754659][ T6642] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 44.754691][ T6642] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 44.797377][ T6642] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.808299][ T6642] veth0_vlan: entered promiscuous mode [ 44.811128][ T6642] veth1_vlan: entered promiscuous mode [ 44.830244][ T6642] veth0_macvtap: entered promiscuous mode [ 44.831928][ T6642] veth1_macvtap: entered promiscuous mode [ 44.835365][ T6642] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 44.838169][ T6642] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 44.841847][ T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.842068][ T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.842085][ T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.842098][ T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.863101][ T778] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 44.863130][ T778] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 44.872654][ T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 44.872681][ T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 44.981142][ T6694] loop0: detected capacity change from 0 to 32768 [ 44.981814][ T6694] ======================================================= [ 44.981814][ T6694] WARNING: The mand mount option has been deprecated and [ 44.981814][ T6694] and is ignored by this kernel. Remove the mand [ 44.981814][ T6694] option from the mount to silence this warning. [ 44.981814][ T6694] ======================================================= [ 45.010275][ T6694] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 45.016706][ T6694] overlayfs: upper fs does not support tmpfile. [ 45.019276][ T6694] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 45.020632][ T6694] [ 45.021023][ T6694] ====================================================== [ 45.022121][ T6694] WARNING: possible circular locking dependency detected [ 45.023217][ T6694] syzkaller #0 Not tainted [ 45.023826][ T6694] ------------------------------------------------------ [ 45.025028][ T6694] syz.0.17/6694 is trying to acquire lock: [ 45.025901][ T6694] ffff0000f61a5100 (&ocfs2_sysfile_lock_key[GLOBAL_BITMAP_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x12c/0x3b9c [ 45.027848][ T6694] [ 45.027848][ T6694] but task is already holding lock: [ 45.028879][ T6694] ffff0000f6202378 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 45.030148][ T6694] [ 45.030148][ T6694] which lock already depends on the new lock. [ 45.030148][ T6694] [ 45.031635][ T6694] [ 45.031635][ T6694] the existing dependency chain (in reverse order) is: [ 45.033007][ T6694] [ 45.033007][ T6694] -> #4 (&oi->ip_xattr_sem){+.+.}-{4:4}: [ 45.034095][ T6694] down_write+0x50/0xc0 [ 45.034971][ T6694] ocfs2_xattr_set_handle+0x2a8/0x5e4 [ 45.035903][ T6694] ocfs2_init_security_set+0xb4/0xd8 [ 45.036818][ T6694] ocfs2_mknod+0x106c/0x1cf0 [ 45.037655][ T6694] ocfs2_mkdir+0x190/0x474 [ 45.038468][ T6694] vfs_mkdir+0x284/0x424 [ 45.039233][ T6694] do_mkdirat+0x1f8/0x4c8 [ 45.040035][ T6694] __arm64_sys_mkdirat+0x8c/0xa4 [ 45.040900][ T6694] invoke_syscall+0x98/0x2b8 [ 45.041655][ T6694] el0_svc_common+0x130/0x23c [ 45.042423][ T6694] do_el0_svc+0x48/0x58 [ 45.043297][ T6694] el0_svc+0x58/0x180 [ 45.044073][ T6694] el0t_64_sync_handler+0x84/0x12c [ 45.045001][ T6694] el0t_64_sync+0x198/0x19c [ 45.045831][ T6694] [ 45.045831][ T6694] -> #3 (jbd2_handle){++++}-{0:0}: [ 45.047006][ T6694] start_this_handle+0xe74/0x10dc [ 45.047834][ T6694] jbd2__journal_start+0x288/0x51c [ 45.048740][ T6694] jbd2_journal_start+0x3c/0x4c [ 45.049508][ T6694] ocfs2_start_trans+0x368/0x6b0 [ 45.050245][ T6694] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 45.051224][ T6694] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 45.052254][ T6694] ocfs2_mknod+0xbd8/0x1cf0 [ 45.052965][ T6694] ocfs2_mkdir+0x190/0x474 [ 45.053672][ T6694] vfs_mkdir+0x284/0x424 [ 45.054362][ T6694] do_mkdirat+0x1f8/0x4c8 [ 45.055092][ T6694] __arm64_sys_mkdirat+0x8c/0xa4 [ 45.055863][ T6694] invoke_syscall+0x98/0x2b8 [ 45.056594][ T6694] el0_svc_common+0x130/0x23c [ 45.057505][ T6694] do_el0_svc+0x48/0x58 [ 45.058265][ T6694] el0_svc+0x58/0x180 [ 45.058973][ T6694] el0t_64_sync_handler+0x84/0x12c [ 45.059878][ T6694] el0t_64_sync+0x198/0x19c [ 45.060710][ T6694] [ 45.060710][ T6694] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 45.062130][ T6694] down_read+0x58/0x2f8 [ 45.062914][ T6694] ocfs2_start_trans+0x35c/0x6b0 [ 45.063805][ T6694] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 45.064837][ T6694] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 45.065910][ T6694] ocfs2_mknod+0xbd8/0x1cf0 [ 45.066690][ T6694] ocfs2_mkdir+0x190/0x474 [ 45.067503][ T6694] vfs_mkdir+0x284/0x424 [ 45.068242][ T6694] do_mkdirat+0x1f8/0x4c8 [ 45.068936][ T6694] __arm64_sys_mkdirat+0x8c/0xa4 [ 45.069741][ T6694] invoke_syscall+0x98/0x2b8 [ 45.070543][ T6694] el0_svc_common+0x130/0x23c [ 45.071346][ T6694] do_el0_svc+0x48/0x58 [ 45.072095][ T6694] el0_svc+0x58/0x180 [ 45.072747][ T6694] el0t_64_sync_handler+0x84/0x12c [ 45.073645][ T6694] el0t_64_sync+0x198/0x19c [ 45.074380][ T6694] [ 45.074380][ T6694] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 45.075498][ T6694] ocfs2_start_trans+0x1f4/0x6b0 [ 45.076338][ T6694] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 45.077282][ T6694] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 45.078304][ T6694] ocfs2_mknod+0xbd8/0x1cf0 [ 45.078981][ T6694] ocfs2_mkdir+0x190/0x474 [ 45.079744][ T6694] vfs_mkdir+0x284/0x424 [ 45.080538][ T6694] do_mkdirat+0x1f8/0x4c8 [ 45.081331][ T6694] __arm64_sys_mkdirat+0x8c/0xa4 [ 45.082146][ T6694] invoke_syscall+0x98/0x2b8 [ 45.082918][ T6694] el0_svc_common+0x130/0x23c [ 45.083781][ T6694] do_el0_svc+0x48/0x58 [ 45.084532][ T6694] el0_svc+0x58/0x180 [ 45.085291][ T6694] el0t_64_sync_handler+0x84/0x12c [ 45.086120][ T6694] el0t_64_sync+0x198/0x19c [ 45.086857][ T6694] [ 45.086857][ T6694] -> #0 (&ocfs2_sysfile_lock_key[GLOBAL_BITMAP_SYSTEM_INODE]){+.+.}-{4:4}: [ 45.088728][ T6694] __lock_acquire+0x1774/0x30a4 [ 45.089573][ T6694] lock_acquire+0x14c/0x2e0 [ 45.090386][ T6694] down_write+0x50/0xc0 [ 45.091104][ T6694] ocfs2_reserve_suballoc_bits+0x12c/0x3b9c [ 45.092141][ T6694] ocfs2_reserve_clusters_with_limit+0x290/0x9e0 [ 45.093248][ T6694] ocfs2_reserve_clusters+0x3c/0x50 [ 45.094149][ T6694] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 45.095096][ T6694] ocfs2_xattr_set+0x920/0xe9c [ 45.096024][ T6694] ocfs2_xattr_trusted_set+0x4c/0x64 [ 45.096967][ T6694] __vfs_setxattr+0x3d8/0x400 [ 45.097812][ T6694] __vfs_setxattr_noperm+0x120/0x5c4 [ 45.098757][ T6694] __vfs_setxattr_locked+0x1ec/0x218 [ 45.099674][ T6694] vfs_setxattr+0x158/0x2ac [ 45.100456][ T6694] ovl_get_workdir+0x9e4/0x1280 [ 45.101254][ T6694] ovl_fill_super+0xff4/0x2c38 [ 45.102025][ T6694] get_tree_nodev+0xb4/0x144 [ 45.102791][ T6694] ovl_get_tree+0x28/0x38 [ 45.103519][ T6694] vfs_get_tree+0x90/0x28c [ 45.104250][ T6694] do_new_mount+0x278/0x7f4 [ 45.105039][ T6694] path_mount+0x5b4/0xde0 [ 45.105738][ T6694] __arm64_sys_mount+0x3e8/0x468 [ 45.106516][ T6694] invoke_syscall+0x98/0x2b8 [ 45.107236][ T6694] el0_svc_common+0x130/0x23c [ 45.107966][ T6694] do_el0_svc+0x48/0x58 [ 45.108645][ T6694] el0_svc+0x58/0x180 [ 45.109274][ T6694] el0t_64_sync_handler+0x84/0x12c [ 45.110047][ T6694] el0t_64_sync+0x198/0x19c [ 45.110818][ T6694] [ 45.110818][ T6694] other info that might help us debug this: [ 45.110818][ T6694] [ 45.112270][ T6694] Chain exists of: [ 45.112270][ T6694] &ocfs2_sysfile_lock_key[GLOBAL_BITMAP_SYSTEM_INODE] --> jbd2_handle --> &oi->ip_xattr_sem [ 45.112270][ T6694] [ 45.114903][ T6694] Possible unsafe locking scenario: [ 45.114903][ T6694] [ 45.116006][ T6694] CPU0 CPU1 [ 45.116916][ T6694] ---- ---- [ 45.117785][ T6694] lock(&oi->ip_xattr_sem); [ 45.118548][ T6694] lock(jbd2_handle); [ 45.119574][ T6694] lock(&oi->ip_xattr_sem); [ 45.120671][ T6694] lock(&ocfs2_sysfile_lock_key[GLOBAL_BITMAP_SYSTEM_INODE]); [ 45.121865][ T6694] [ 45.121865][ T6694] *** DEADLOCK *** [ 45.121865][ T6694] [ 45.123239][ T6694] 4 locks held by syz.0.17/6694: [ 45.124039][ T6694] #0: ffff0000c6de00e0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x1a0/0x80c [ 45.125690][ T6694] #1: ffff0000dad44428 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 45.127247][ T6694] #2: ffff0000f6202640 (&sb->s_type->i_mutex_key#22){++++}-{4:4}, at: vfs_setxattr+0x138/0x2ac [ 45.129077][ T6694] #3: ffff0000f6202378 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 45.130641][ T6694] [ 45.130641][ T6694] stack backtrace: [ 45.131594][ T6694] CPU: 0 UID: 0 PID: 6694 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT [ 45.132951][ T6694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 45.134621][ T6694] Call trace: [ 45.135145][ T6694] show_stack+0x2c/0x3c (C) [ 45.135938][ T6694] __dump_stack+0x30/0x40 [ 45.136658][ T6694] dump_stack_lvl+0xd8/0x12c [ 45.137355][ T6694] dump_stack+0x1c/0x28 [ 45.138070][ T6694] print_circular_bug+0x324/0x32c [ 45.138835][ T6694] check_noncircular+0x154/0x174 [ 45.139660][ T6694] __lock_acquire+0x1774/0x30a4 [ 45.140425][ T6694] lock_acquire+0x14c/0x2e0 [ 45.141096][ T6694] down_write+0x50/0xc0 [ 45.141726][ T6694] ocfs2_reserve_suballoc_bits+0x12c/0x3b9c [ 45.142532][ T6694] ocfs2_reserve_clusters_with_limit+0x290/0x9e0 [ 45.143459][ T6694] ocfs2_reserve_clusters+0x3c/0x50 [ 45.144217][ T6694] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 45.144971][ T6694] ocfs2_xattr_set+0x920/0xe9c [ 45.145667][ T6694] ocfs2_xattr_trusted_set+0x4c/0x64 [ 45.146341][ T6694] __vfs_setxattr+0x3d8/0x400 [ 45.147002][ T6694] __vfs_setxattr_noperm+0x120/0x5c4 [ 45.147730][ T6694] __vfs_setxattr_locked+0x1ec/0x218 [ 45.148527][ T6694] vfs_setxattr+0x158/0x2ac [ 45.149259][ T6694] ovl_get_workdir+0x9e4/0x1280 [ 45.150009][ T6694] ovl_fill_super+0xff4/0x2c38 [ 45.150752][ T6694] get_tree_nodev+0xb4/0x144 [ 45.151525][ T6694] ovl_get_tree+0x28/0x38 [ 45.152234][ T6694] vfs_get_tree+0x90/0x28c [ 45.152917][ T6694] do_new_mount+0x278/0x7f4 [ 45.153632][ T6694] path_mount+0x5b4/0xde0 [ 45.154337][ T6694] __arm64_sys_mount+0x3e8/0x468 [ 45.155102][ T6694] invoke_syscall+0x98/0x2b8 [ 45.155742][ T6694] el0_svc_common+0x130/0x23c [ 45.156430][ T6694] do_el0_svc+0x48/0x58 [ 45.157075][ T6694] el0_svc+0x58/0x180 [ 45.157660][ T6694] el0t_64_sync_handler+0x84/0x12c [ 45.158383][ T6694] el0t_64_sync+0x198/0x19c [ 45.159979][ T6550] Bluetooth: hci0: command tx timeout [ 45.161161][ T6694] overlayfs: upper fs missing required features. [ 45.168650][ T6642] ocfs2: Unmounting device (7,0) on (node local)