Warning: Permanently added '10.128.1.71' (ED25519) to the list of known hosts. 1970/01/01 00:00:27 parsed 1 programs [ 28.637475][ T4325] cgroup: Unknown subsys name 'net' [ 28.852565][ T4325] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 29.122948][ T4325] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 32.149491][ T4341] chnl_net:caif_netlink_parms(): no params data found [ 32.166072][ T4341] bridge0: port 1(bridge_slave_0) entered blocking state [ 32.167270][ T4341] bridge0: port 1(bridge_slave_0) entered disabled state [ 32.168711][ T4341] device bridge_slave_0 entered promiscuous mode [ 32.173629][ T4341] bridge0: port 2(bridge_slave_1) entered blocking state [ 32.174720][ T4341] bridge0: port 2(bridge_slave_1) entered disabled state [ 32.176686][ T4341] device bridge_slave_1 entered promiscuous mode [ 32.184003][ T4341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 32.186482][ T4341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 32.194041][ T4341] team0: Port device team_slave_0 added [ 32.195795][ T4341] team0: Port device team_slave_1 added [ 32.201729][ T4341] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 32.202793][ T4341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 32.206442][ T4341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 32.208811][ T4341] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 32.210608][ T4341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 32.214422][ T4341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 32.250473][ T4341] device hsr_slave_0 entered promiscuous mode [ 32.299627][ T4341] device hsr_slave_1 entered promiscuous mode [ 32.393269][ T4341] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 32.412690][ T4341] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 32.460901][ T4341] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 32.522084][ T4341] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 32.578445][ T4341] bridge0: port 2(bridge_slave_1) entered blocking state [ 32.579586][ T4341] bridge0: port 2(bridge_slave_1) entered forwarding state [ 32.580933][ T4341] bridge0: port 1(bridge_slave_0) entered blocking state [ 32.582029][ T4341] bridge0: port 1(bridge_slave_0) entered forwarding state [ 32.599969][ T4341] 8021q: adding VLAN 0 to HW filter on device bond0 [ 32.604761][ T1578] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 32.607070][ T1578] bridge0: port 1(bridge_slave_0) entered disabled state [ 32.608794][ T1578] bridge0: port 2(bridge_slave_1) entered disabled state [ 32.614412][ T4341] 8021q: adding VLAN 0 to HW filter on device team0 [ 32.617451][ T1578] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 32.619090][ T1578] bridge0: port 1(bridge_slave_0) entered blocking state [ 32.620220][ T1578] bridge0: port 1(bridge_slave_0) entered forwarding state [ 32.626837][ T1578] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 32.628256][ T1578] bridge0: port 2(bridge_slave_1) entered blocking state [ 32.629344][ T1578] bridge0: port 2(bridge_slave_1) entered forwarding state [ 32.635825][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 32.637482][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 32.640805][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 32.643729][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 32.646464][ T1578] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 32.649011][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 32.699972][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 32.701362][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 32.704361][ T4341] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 32.710766][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 32.718115][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 32.720428][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 32.721828][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 32.724101][ T4341] device veth0_vlan entered promiscuous mode [ 32.727147][ T4341] device veth1_vlan entered promiscuous mode [ 32.734742][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 32.736221][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 32.737740][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 32.740423][ T4341] device veth0_macvtap entered promiscuous mode [ 32.742717][ T4341] device veth1_macvtap entered promiscuous mode [ 32.747802][ T4341] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 32.749128][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 32.751628][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 32.755217][ T4341] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 32.756554][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 32.759050][ T4341] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.761303][ T4341] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.762690][ T4341] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 32.764011][ T4341] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 33.281381][ T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 33.652745][ T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 33.654030][ T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 33.655686][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 33.663938][ T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 33.665176][ T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 33.666867][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 33.777538][ T4397] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 33.779113][ T4397] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 33.780972][ T4397] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 33.782505][ T4397] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 33.784005][ T4397] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 33.785218][ T4397] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 1970/01/01 00:00:34 executed programs: 0 [ 34.205562][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 34.207136][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 34.208473][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 34.210739][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 34.212302][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 34.213482][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 34.262467][ T4414] chnl_net:caif_netlink_parms(): no params data found [ 34.279127][ T4414] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.280478][ T4414] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.281831][ T4414] device bridge_slave_0 entered promiscuous mode [ 34.283878][ T4414] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.284966][ T4414] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.286523][ T4414] device bridge_slave_1 entered promiscuous mode [ 34.294699][ T4414] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.297149][ T4414] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.304288][ T4414] team0: Port device team_slave_0 added [ 34.306099][ T4414] team0: Port device team_slave_1 added [ 34.312639][ T4414] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.313768][ T4414] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.317332][ T4414] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.319544][ T4414] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.320572][ T4414] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.324376][ T4414] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.380520][ T4414] device hsr_slave_0 entered promiscuous mode [ 34.419743][ T4414] device hsr_slave_1 entered promiscuous mode [ 34.459487][ T4414] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 34.460855][ T4414] Cannot create hsr debugfs directory [ 35.771267][ T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 36.249639][ T4397] Bluetooth: hci0: command 0x0409 tx timeout [ 38.050558][ T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 38.141402][ T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 38.339644][ T4397] Bluetooth: hci0: command 0x041b tx timeout [ 39.121415][ T4414] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 39.203062][ T4414] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 39.230696][ T4414] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 39.301193][ T4414] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 39.390615][ T4414] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.394255][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.395883][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.398445][ T4414] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.401322][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 39.403007][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.404467][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.405536][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.407014][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.412566][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 39.414141][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.415577][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.416931][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.419350][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 39.454719][ T1578] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 39.458137][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 39.460301][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 39.462439][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 39.463916][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 39.465610][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 39.468223][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 39.470444][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 39.472819][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 39.474361][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 39.476611][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 39.545992][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 39.547415][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 39.551317][ T4414] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 39.557321][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 39.559018][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 39.566027][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 39.567583][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 39.569082][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 39.571615][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 39.574547][ T4414] device veth0_vlan entered promiscuous mode [ 39.577682][ T4414] device veth1_vlan entered promiscuous mode [ 39.626840][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 39.628897][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 39.630728][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 39.632243][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 39.634723][ T4414] device veth0_macvtap entered promiscuous mode [ 39.637105][ T4414] device veth1_macvtap entered promiscuous mode [ 39.642423][ T4414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 39.643971][ T4414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 39.645831][ T4414] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 39.647043][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 39.648529][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 39.650756][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 39.652345][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 39.654640][ T4414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 39.656242][ T4414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 39.658302][ T4414] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 39.701696][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 39.703325][ T4494] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 39.705764][ T4414] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.707088][ T4414] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.708332][ T4414] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.709723][ T4414] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.727674][ T4494] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.733225][ T4494] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.735084][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 39.737222][ T250] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.738474][ T250] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.740206][ T250] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.754488][ T11] device hsr_slave_0 left promiscuous mode [ 39.780631][ T11] device hsr_slave_1 left promiscuous mode [ 39.849527][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 39.850743][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 39.853343][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 39.854545][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 39.855956][ T11] device bridge_slave_1 left promiscuous mode [ 39.856666][ T4500] loop0: detected capacity change from 0 to 32768 [ 39.857353][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.863309][ T4500] (syz.0.17,4500,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 39.865900][ T4500] (syz.0.17,4500,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 39.878982][ T4500] JBD2: Ignoring recovery information on journal [ 39.899038][ T4500] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 39.901026][ T11] device bridge_slave_0 left promiscuous mode [ 39.902179][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.917789][ T4500] [ 39.918211][ T4500] ====================================================== [ 39.919219][ T4500] WARNING: possible circular locking dependency detected [ 39.920233][ T4500] syzkaller #0 Not tainted [ 39.920858][ T4500] ------------------------------------------------------ [ 39.921834][ T4500] syz.0.17/4500 is trying to acquire lock: [ 39.922679][ T4500] ffff0000d1c82650 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_setattr+0xafc/0x18d4 [ 39.924058][ T4500] [ 39.924058][ T4500] but task is already holding lock: [ 39.925118][ T4500] ffff0000e53922e0 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0xaf0/0x18d4 [ 39.926394][ T4500] [ 39.926394][ T4500] which lock already depends on the new lock. [ 39.926394][ T4500] [ 39.927831][ T4500] [ 39.927831][ T4500] the existing dependency chain (in reverse order) is: [ 39.929108][ T4500] [ 39.929108][ T4500] -> #4 (&oi->ip_alloc_sem){+.+.}-{3:3}: [ 39.930196][ T4500] down_write+0x5c/0x88 [ 39.930887][ T4500] ocfs2_try_remove_refcount_tree+0xb4/0x2d8 [ 39.931838][ T4500] ocfs2_xattr_set+0x45c/0xe98 [ 39.932757][ T4500] ocfs2_set_acl+0x3ec/0x4a0 [ 39.933587][ T4500] ocfs2_iop_set_acl+0x174/0x240 [ 39.934453][ T4500] posix_acl_xattr_set+0x2f8/0x398 [ 39.935303][ T4500] __vfs_removexattr+0x370/0x38c [ 39.936125][ T4500] __vfs_removexattr_locked+0x1d0/0x208 [ 39.937011][ T4500] vfs_removexattr+0x80/0x190 [ 39.937770][ T4500] ovl_workdir_create+0x330/0x634 [ 39.938587][ T4500] ovl_get_workdir+0x2fc/0x1068 [ 39.939355][ T4500] ovl_fill_super+0x139c/0x2294 [ 39.940148][ T4500] mount_nodev+0x68/0x104 [ 39.940844][ T4500] ovl_mount+0x3c/0x50 [ 39.941524][ T4500] legacy_get_tree+0xd4/0x16c [ 39.942293][ T4500] vfs_get_tree+0x90/0x274 [ 39.943018][ T4500] do_new_mount+0x228/0x810 [ 39.943771][ T4500] path_mount+0x5b4/0xe78 [ 39.944463][ T4500] __arm64_sys_mount+0x49c/0x584 [ 39.945223][ T4500] invoke_syscall+0x98/0x2bc [ 39.945971][ T4500] el0_svc_common+0x138/0x258 [ 39.946707][ T4500] do_el0_svc+0x58/0x13c [ 39.947402][ T4500] el0_svc+0x58/0x138 [ 39.948078][ T4500] el0t_64_sync_handler+0x84/0xf0 [ 39.948888][ T4500] el0t_64_sync+0x18c/0x190 [ 39.949647][ T4500] [ 39.949647][ T4500] -> #3 (&oi->ip_xattr_sem){++++}-{3:3}: [ 39.950796][ T4500] down_read+0x64/0x304 [ 39.951509][ T4500] ocfs2_init_acl+0x258/0x5f0 [ 39.952270][ T4500] ocfs2_mknod+0x1168/0x1f18 [ 39.953055][ T4500] ocfs2_mkdir+0x19c/0x4f0 [ 39.953793][ T4500] vfs_mkdir+0x314/0x4d4 [ 39.954511][ T4500] do_mkdirat+0x1b4/0x3e0 [ 39.955265][ T4500] __arm64_sys_mkdirat+0x90/0xa8 [ 39.956065][ T4500] invoke_syscall+0x98/0x2bc [ 39.956769][ T4500] el0_svc_common+0x138/0x258 [ 39.957491][ T4500] do_el0_svc+0x58/0x13c [ 39.958178][ T4500] el0_svc+0x58/0x138 [ 39.958825][ T4500] el0t_64_sync_handler+0x84/0xf0 [ 39.959620][ T4500] el0t_64_sync+0x18c/0x190 [ 39.960398][ T4500] [ 39.960398][ T4500] -> #2 (jbd2_handle){++++}-{0:0}: [ 39.961484][ T4500] start_this_handle+0xfe0/0x122c [ 39.962308][ T4500] jbd2__journal_start+0x288/0x51c [ 39.963076][ T4500] jbd2_journal_start+0x3c/0x4c [ 39.963870][ T4500] ocfs2_start_trans+0x380/0x6c4 [ 39.964670][ T4500] ocfs2_modify_bh+0xe4/0x43c [ 39.965437][ T4500] ocfs2_local_read_info+0x102c/0x131c [ 39.966316][ T4500] dquot_load_quota_sb+0x6c4/0xa24 [ 39.967197][ T4500] dquot_load_quota_inode+0x274/0x4e4 [ 39.968170][ T4500] ocfs2_enable_quotas+0x17c/0x3b4 [ 39.969072][ T4500] ocfs2_fill_super+0x3060/0x3e98 [ 39.969922][ T4500] mount_bdev+0x264/0x358 [ 39.970697][ T4500] ocfs2_mount+0x44/0x58 [ 39.971398][ T4500] legacy_get_tree+0xd4/0x16c [ 39.972172][ T4500] vfs_get_tree+0x90/0x274 [ 39.972964][ T4500] do_new_mount+0x228/0x810 [ 39.973795][ T4500] path_mount+0x5b4/0xe78 [ 39.974549][ T4500] __arm64_sys_mount+0x49c/0x584 [ 39.975373][ T4500] invoke_syscall+0x98/0x2bc [ 39.976147][ T4500] el0_svc_common+0x138/0x258 [ 39.976891][ T4500] do_el0_svc+0x58/0x13c [ 39.977571][ T4500] el0_svc+0x58/0x138 [ 39.978232][ T4500] el0t_64_sync_handler+0x84/0xf0 [ 39.979042][ T4500] el0t_64_sync+0x18c/0x190 [ 39.979791][ T4500] [ 39.979791][ T4500] -> #1 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 39.981089][ T4500] down_read+0x64/0x304 [ 39.981807][ T4500] ocfs2_start_trans+0x374/0x6c4 [ 39.982634][ T4500] ocfs2_modify_bh+0xe4/0x43c [ 39.983440][ T4500] ocfs2_local_read_info+0x102c/0x131c [ 39.984275][ T4500] dquot_load_quota_sb+0x6c4/0xa24 [ 39.985128][ T4500] dquot_load_quota_inode+0x274/0x4e4 [ 39.986010][ T4500] ocfs2_enable_quotas+0x17c/0x3b4 [ 39.986847][ T4500] ocfs2_fill_super+0x3060/0x3e98 [ 39.987591][ T4500] mount_bdev+0x264/0x358 [ 39.988344][ T4500] ocfs2_mount+0x44/0x58 [ 39.989002][ T4500] legacy_get_tree+0xd4/0x16c [ 39.989775][ T4500] vfs_get_tree+0x90/0x274 [ 39.990519][ T4500] do_new_mount+0x228/0x810 [ 39.991253][ T4500] path_mount+0x5b4/0xe78 [ 39.991964][ T4500] __arm64_sys_mount+0x49c/0x584 [ 39.992827][ T4500] invoke_syscall+0x98/0x2bc [ 39.993587][ T4500] el0_svc_common+0x138/0x258 [ 39.994450][ T4500] do_el0_svc+0x58/0x13c [ 39.995160][ T4500] el0_svc+0x58/0x138 [ 39.995832][ T4500] el0t_64_sync_handler+0x84/0xf0 [ 39.996665][ T4500] el0t_64_sync+0x18c/0x190 [ 39.997406][ T4500] [ 39.997406][ T4500] -> #0 (sb_internal#2){.+.+}-{0:0}: [ 39.998544][ T4500] __lock_acquire+0x293c/0x6544 [ 39.999339][ T4500] lock_acquire+0x20c/0x644 [ 40.000118][ T4500] ocfs2_start_trans+0x20c/0x6c4 [ 40.000994][ T4500] ocfs2_setattr+0xafc/0x18d4 [ 40.001823][ T4500] notify_change+0xb0c/0xdcc [ 40.002581][ T4500] ovl_workdir_create+0x4a8/0x634 [ 40.003403][ T4500] ovl_get_workdir+0x2fc/0x1068 [ 40.004291][ T4500] ovl_fill_super+0x139c/0x2294 [ 40.005075][ T4500] mount_nodev+0x68/0x104 [ 40.005797][ T4500] ovl_mount+0x3c/0x50 [ 40.006484][ T4500] legacy_get_tree+0xd4/0x16c [ 40.007252][ T4500] vfs_get_tree+0x90/0x274 [ 40.007994][ T4500] do_new_mount+0x228/0x810 [ 40.008776][ T4500] path_mount+0x5b4/0xe78 [ 40.009488][ T4500] __arm64_sys_mount+0x49c/0x584 [ 40.010280][ T4500] invoke_syscall+0x98/0x2bc [ 40.011077][ T4500] el0_svc_common+0x138/0x258 [ 40.011887][ T4500] do_el0_svc+0x58/0x13c [ 40.012608][ T4500] el0_svc+0x58/0x138 [ 40.013296][ T4500] el0t_64_sync_handler+0x84/0xf0 [ 40.014133][ T4500] el0t_64_sync+0x18c/0x190 [ 40.014871][ T4500] [ 40.014871][ T4500] other info that might help us debug this: [ 40.014871][ T4500] [ 40.016326][ T4500] Chain exists of: [ 40.016326][ T4500] sb_internal#2 --> &oi->ip_xattr_sem --> &oi->ip_alloc_sem [ 40.016326][ T4500] [ 40.018389][ T4500] Possible unsafe locking scenario: [ 40.018389][ T4500] [ 40.019437][ T4500] CPU0 CPU1 [ 40.020230][ T4500] ---- ---- [ 40.020980][ T4500] lock(&oi->ip_alloc_sem); [ 40.021656][ T4500] lock(&oi->ip_xattr_sem); [ 40.022707][ T4500] lock(&oi->ip_alloc_sem); [ 40.023696][ T4500] lock(sb_internal#2); [ 40.024314][ T4500] [ 40.024314][ T4500] *** DEADLOCK *** [ 40.024314][ T4500] [ 40.025565][ T4500] 5 locks held by syz.0.17/4500: [ 40.026279][ T4500] #0: ffff0000d2cb00e0 (&type->s_umount_key#51/1){+.+.}-{3:3}, at: alloc_super+0x1a4/0x804 [ 40.027859][ T4500] #1: ffff0000d1c82460 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 40.029365][ T4500] #2: ffff0000e5391808 (&sb->s_type->i_mutex_key#20/1){+.+.}-{3:3}, at: ovl_workdir_create+0x128/0x634 [ 40.031071][ T4500] #3: ffff0000e5392648 (&sb->s_type->i_mutex_key#22){+.+.}-{3:3}, at: ovl_workdir_create+0x44c/0x634 [ 40.032839][ T4500] #4: ffff0000e53922e0 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0xaf0/0x18d4 [ 40.034356][ T4500] [ 40.034356][ T4500] stack backtrace: [ 40.035228][ T4500] CPU: 0 PID: 4500 Comm: syz.0.17 Not tainted syzkaller #0 [ 40.036331][ T4500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 40.037877][ T4500] Call trace: [ 40.038351][ T4500] dump_backtrace+0x1c8/0x1f4 [ 40.039057][ T4500] show_stack+0x2c/0x3c [ 40.039699][ T4500] __dump_stack+0x30/0x40 [ 40.040345][ T4500] dump_stack_lvl+0xf8/0x160 [ 40.041029][ T4500] dump_stack+0x1c/0x5c [ 40.041685][ T4500] print_circular_bug+0x148/0x1b0 [ 40.042459][ T4500] check_noncircular+0x240/0x2d4 [ 40.043265][ T4500] __lock_acquire+0x293c/0x6544 [ 40.043971][ T4500] lock_acquire+0x20c/0x644 [ 40.044669][ T4500] ocfs2_start_trans+0x20c/0x6c4 [ 40.045364][ T4500] ocfs2_setattr+0xafc/0x18d4 [ 40.046055][ T4500] notify_change+0xb0c/0xdcc [ 40.046821][ T4500] ovl_workdir_create+0x4a8/0x634 [ 40.047535][ T4500] ovl_get_workdir+0x2fc/0x1068 [ 40.048241][ T4500] ovl_fill_super+0x139c/0x2294 [ 40.048899][ T4500] mount_nodev+0x68/0x104 [ 40.049513][ T4500] ovl_mount+0x3c/0x50 [ 40.050124][ T4500] legacy_get_tree+0xd4/0x16c [ 40.050819][ T4500] vfs_get_tree+0x90/0x274 [ 40.051449][ T4500] do_new_mount+0x228/0x810 [ 40.052070][ T4500] path_mount+0x5b4/0xe78 [ 40.052697][ T4500] __arm64_sys_mount+0x49c/0x584 [ 40.053394][ T4500] invoke_syscall+0x98/0x2bc [ 40.054178][ T4500] el0_svc_common+0x138/0x258 [ 40.054979][ T4500] do_el0_svc+0x58/0x13c [ 40.055641][ T4500] el0_svc+0x58/0x138 [ 40.056322][ T4500] el0t_64_sync_handler+0x84/0xf0 [ 40.057136][ T4500] el0t_64_sync+0x18c/0x190 [ 40.060055][ T4500] overlayfs: upper fs does not support tmpfile. [ 40.061423][ T4500] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 40.062875][ T4500] overlayfs: upper fs missing required features. [ 40.101188][ T4414] ocfs2: Unmounting device (7,0) on (node local) [ 40.159561][ T11] device veth1_macvtap left promiscuous mode [ 40.160576][ T11] device veth0_macvtap left promiscuous mode [ 40.161464][ T11] device veth1_vlan left promiscuous mode [ 40.162374][ T11] device veth0_vlan left promiscuous mode