Warning: Permanently added '10.128.1.67' (ED25519) to the list of known hosts. 1970/01/01 00:00:35 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:36 parsed 1 programs [ 39.532849][ T6533] cgroup: Unknown subsys name 'net' [ 39.641137][ T6533] cgroup: Unknown subsys name 'cpuset' [ 39.644987][ T6533] cgroup: Unknown subsys name 'rlimit' [ 39.839670][ T6533] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 50.668096][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.670376][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.684374][ T763] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.686700][ T763] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.734039][ T6546] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 51.797378][ T6575] chnl_net:caif_netlink_parms(): no params data found [ 51.866687][ T6575] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.866826][ T6575] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.866944][ T6575] bridge_slave_0: entered allmulticast mode [ 51.867805][ T6575] bridge_slave_0: entered promiscuous mode [ 51.870683][ T6575] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.870753][ T6575] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.870857][ T6575] bridge_slave_1: entered allmulticast mode [ 51.871709][ T6575] bridge_slave_1: entered promiscuous mode [ 51.891026][ T6575] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 51.892602][ T6575] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 51.961057][ T6575] team0: Port device team_slave_0 added [ 51.964005][ T6575] team0: Port device team_slave_1 added [ 52.062814][ T6575] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 52.062878][ T6575] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.062939][ T6575] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 52.077954][ T6575] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 52.078352][ T6575] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.078384][ T6575] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 52.115945][ T6575] hsr_slave_0: entered promiscuous mode [ 52.118548][ T6575] hsr_slave_1: entered promiscuous mode [ 52.235721][ T6575] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 52.241242][ T6575] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 52.245595][ T6575] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 52.249904][ T6575] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 52.275147][ T6575] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.275259][ T6575] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.275605][ T6575] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.275667][ T6575] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.300325][ T6575] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.307764][ T763] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.312977][ T763] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.322596][ T6575] 8021q: adding VLAN 0 to HW filter on device team0 [ 52.374548][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.374645][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.389012][ T763] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.389091][ T763] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.484264][ T6575] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 52.503467][ T6575] veth0_vlan: entered promiscuous mode [ 52.509367][ T6575] veth1_vlan: entered promiscuous mode [ 52.524262][ T6575] veth0_macvtap: entered promiscuous mode [ 52.526078][ T6575] veth1_macvtap: entered promiscuous mode [ 52.534608][ T6575] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 52.536615][ T6575] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 52.538466][ T6575] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.538520][ T6575] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.538550][ T6575] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.538590][ T6575] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.931514][ T42] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.010336][ T42] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.059905][ T6603] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 53.063119][ T6603] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 53.065308][ T6603] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 53.067214][ T6603] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 53.068348][ T6603] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 53.121393][ T42] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.210996][ T42] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:54 executed programs: 0 [ 54.287556][ T6096] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 54.288725][ T6096] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 54.289122][ T6096] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 54.289875][ T6096] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 54.290284][ T6096] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 54.381072][ T6639] chnl_net:caif_netlink_parms(): no params data found [ 54.424476][ T6639] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.424577][ T6639] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.424687][ T6639] bridge_slave_0: entered allmulticast mode [ 54.425505][ T6639] bridge_slave_0: entered promiscuous mode [ 54.426912][ T6639] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.427001][ T6639] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.427108][ T6639] bridge_slave_1: entered allmulticast mode [ 54.427877][ T6639] bridge_slave_1: entered promiscuous mode [ 54.448602][ T6639] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.450304][ T6639] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.464209][ T6639] team0: Port device team_slave_0 added [ 54.466777][ T6639] team0: Port device team_slave_1 added [ 54.479850][ T6639] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.479908][ T6639] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.479986][ T6639] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.481261][ T6639] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.481285][ T6639] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.481314][ T6639] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.510988][ T6639] hsr_slave_0: entered promiscuous mode [ 54.511545][ T6639] hsr_slave_1: entered promiscuous mode [ 54.511953][ T6639] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.512059][ T6639] Cannot create hsr debugfs directory [ 55.824487][ T42] bridge_slave_1: left allmulticast mode [ 55.824573][ T42] bridge_slave_1: left promiscuous mode [ 55.825008][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.833704][ T42] bridge_slave_0: left allmulticast mode [ 55.833756][ T42] bridge_slave_0: left promiscuous mode [ 55.833886][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.328662][ T6603] Bluetooth: hci0: command tx timeout [ 57.380475][ T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 57.421101][ T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 57.469999][ T42] bond0 (unregistering): Released all slaves [ 57.561478][ T42] hsr_slave_0: left promiscuous mode [ 57.562027][ T42] hsr_slave_1: left promiscuous mode [ 57.562788][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 57.563005][ T42] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 57.564087][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 57.564320][ T42] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 57.579348][ T42] veth1_macvtap: left promiscuous mode [ 57.579452][ T42] veth0_macvtap: left promiscuous mode [ 57.579547][ T42] veth1_vlan: left promiscuous mode [ 57.579636][ T42] veth0_vlan: left promiscuous mode [ 58.398706][ T6603] Bluetooth: hci0: command tx timeout [ 59.690056][ T42] team0 (unregistering): Port device team_slave_1 removed [ 59.949876][ T42] team0 (unregistering): Port device team_slave_0 removed [ 60.478737][ T6603] Bluetooth: hci0: command tx timeout [ 62.489986][ T6639] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.494498][ T6639] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.499419][ T6639] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.514061][ T6639] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.558102][ T6603] Bluetooth: hci0: command tx timeout [ 62.639311][ T6639] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.905240][ T6639] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.911884][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.911998][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.912931][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.912981][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.936726][ T6639] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 62.936944][ T6639] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 63.067466][ T6639] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.432784][ T6639] veth0_vlan: entered promiscuous mode [ 63.436740][ T6639] veth1_vlan: entered promiscuous mode [ 63.452928][ T6639] veth0_macvtap: entered promiscuous mode [ 63.455897][ T6639] veth1_macvtap: entered promiscuous mode [ 63.469865][ T6639] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.473647][ T6639] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.475311][ T6639] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.475349][ T6639] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.475378][ T6639] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.475407][ T6639] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.537885][ T763] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.537944][ T763] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.561468][ T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.561523][ T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.760047][ T6730] loop0: detected capacity change from 0 to 32768 [ 63.761017][ T6730] ======================================================= [ 63.761017][ T6730] WARNING: The mand mount option has been deprecated and [ 63.761017][ T6730] and is ignored by this kernel. Remove the mand [ 63.761017][ T6730] option from the mount to silence this warning. [ 63.761017][ T6730] ======================================================= [ 63.789650][ T6730] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 63.805769][ T6730] [ 63.806537][ T6730] ====================================================== [ 63.808589][ T6730] WARNING: possible circular locking dependency detected [ 63.810635][ T6730] 6.16.0-rc6-syzkaller-gaaef6f251176 #0 Not tainted [ 63.812683][ T6730] ------------------------------------------------------ [ 63.814937][ T6730] syz.0.16/6730 is trying to acquire lock: [ 63.816744][ T6730] ffff0000f3c75100 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x12c/0x3b9c [ 63.820662][ T6730] [ 63.820662][ T6730] but task is already holding lock: [ 63.822761][ T6730] ffff0000f3c7bff8 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 63.825522][ T6730] [ 63.825522][ T6730] which lock already depends on the new lock. [ 63.825522][ T6730] [ 63.828434][ T6730] [ 63.828434][ T6730] the existing dependency chain (in reverse order) is: [ 63.831098][ T6730] [ 63.831098][ T6730] -> #4 (&oi->ip_xattr_sem){+.+.}-{4:4}: [ 63.833349][ T6730] down_write+0x50/0xc0 [ 63.834663][ T6730] ocfs2_xattr_set_handle+0x2a8/0x5e4 [ 63.836373][ T6730] ocfs2_init_security_set+0xb4/0xd8 [ 63.838116][ T6730] ocfs2_mknod+0x106c/0x1cf0 [ 63.839542][ T6730] ocfs2_create+0x190/0x474 [ 63.840992][ T6730] path_openat+0x12d8/0x2c40 [ 63.842502][ T6730] do_filp_open+0x18c/0x36c [ 63.843979][ T6730] do_sys_openat2+0x11c/0x1b4 [ 63.845398][ T6730] __arm64_sys_openat+0x120/0x158 [ 63.846833][ T6730] invoke_syscall+0x98/0x2b8 [ 63.848208][ T6730] el0_svc_common+0x130/0x23c [ 63.849615][ T6730] do_el0_svc+0x48/0x58 [ 63.850868][ T6730] el0_svc+0x58/0x180 [ 63.852084][ T6730] el0t_64_sync_handler+0x84/0x12c [ 63.853534][ T6730] el0t_64_sync+0x198/0x19c [ 63.854987][ T6730] [ 63.854987][ T6730] -> #3 (jbd2_handle){++++}-{0:0}: [ 63.857132][ T6730] start_this_handle+0xe74/0x10dc [ 63.858753][ T6730] jbd2__journal_start+0x288/0x51c [ 63.860380][ T6730] jbd2_journal_start+0x3c/0x4c [ 63.861908][ T6730] ocfs2_start_trans+0x368/0x6b0 [ 63.863527][ T6730] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 63.865320][ T6730] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 63.867243][ T6730] ocfs2_mknod+0xbd8/0x1cf0 [ 63.868679][ T6730] ocfs2_create+0x190/0x474 [ 63.870172][ T6730] path_openat+0x12d8/0x2c40 [ 63.871565][ T6730] do_filp_open+0x18c/0x36c [ 63.873019][ T6730] do_sys_openat2+0x11c/0x1b4 [ 63.874522][ T6730] __arm64_sys_openat+0x120/0x158 [ 63.876145][ T6730] invoke_syscall+0x98/0x2b8 [ 63.877565][ T6730] el0_svc_common+0x130/0x23c [ 63.879022][ T6730] do_el0_svc+0x48/0x58 [ 63.880327][ T6730] el0_svc+0x58/0x180 [ 63.881646][ T6730] el0t_64_sync_handler+0x84/0x12c [ 63.883241][ T6730] el0t_64_sync+0x198/0x19c [ 63.884727][ T6730] [ 63.884727][ T6730] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 63.887100][ T6730] down_read+0x58/0x2f8 [ 63.888457][ T6730] ocfs2_start_trans+0x35c/0x6b0 [ 63.890099][ T6730] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 63.891905][ T6730] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 63.893869][ T6730] ocfs2_mknod+0xbd8/0x1cf0 [ 63.895307][ T6730] ocfs2_create+0x190/0x474 [ 63.896666][ T6730] path_openat+0x12d8/0x2c40 [ 63.898246][ T6730] do_filp_open+0x18c/0x36c [ 63.899592][ T6730] do_sys_openat2+0x11c/0x1b4 [ 63.901115][ T6730] __arm64_sys_openat+0x120/0x158 [ 63.902632][ T6730] invoke_syscall+0x98/0x2b8 [ 63.904112][ T6730] el0_svc_common+0x130/0x23c [ 63.905600][ T6730] do_el0_svc+0x48/0x58 [ 63.906926][ T6730] el0_svc+0x58/0x180 [ 63.908219][ T6730] el0t_64_sync_handler+0x84/0x12c [ 63.909871][ T6730] el0t_64_sync+0x198/0x19c [ 63.911282][ T6730] [ 63.911282][ T6730] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 63.913607][ T6730] ocfs2_start_trans+0x1f4/0x6b0 [ 63.915209][ T6730] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 63.917014][ T6730] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 63.918938][ T6730] ocfs2_mknod+0xbd8/0x1cf0 [ 63.920413][ T6730] ocfs2_create+0x190/0x474 [ 63.921894][ T6730] path_openat+0x12d8/0x2c40 [ 63.923298][ T6730] do_filp_open+0x18c/0x36c [ 63.924782][ T6730] do_sys_openat2+0x11c/0x1b4 [ 63.926248][ T6730] __arm64_sys_openat+0x120/0x158 [ 63.927805][ T6730] invoke_syscall+0x98/0x2b8 [ 63.929223][ T6730] el0_svc_common+0x130/0x23c [ 63.930672][ T6730] do_el0_svc+0x48/0x58 [ 63.931977][ T6730] el0_svc+0x58/0x180 [ 63.933313][ T6730] el0t_64_sync_handler+0x84/0x12c [ 63.934941][ T6730] el0t_64_sync+0x198/0x19c [ 63.936375][ T6730] [ 63.936375][ T6730] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{4:4}: [ 63.939356][ T6730] __lock_acquire+0x1774/0x30a4 [ 63.940770][ T6730] lock_acquire+0x14c/0x2e0 [ 63.942248][ T6730] down_write+0x50/0xc0 [ 63.943532][ T6730] ocfs2_reserve_suballoc_bits+0x12c/0x3b9c [ 63.945409][ T6730] ocfs2_reserve_clusters_with_limit+0x290/0x9e0 [ 63.947363][ T6730] ocfs2_reserve_clusters+0x3c/0x50 [ 63.949016][ T6730] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 63.950776][ T6730] ocfs2_xattr_set+0x920/0xe9c [ 63.952281][ T6730] ocfs2_xattr_trusted_set+0x4c/0x64 [ 63.954002][ T6730] __vfs_setxattr+0x3d8/0x400 [ 63.955438][ T6730] __vfs_setxattr_noperm+0x120/0x5c4 [ 63.957066][ T6730] __vfs_setxattr_locked+0x1ec/0x218 [ 63.958777][ T6730] vfs_setxattr+0x158/0x2ac [ 63.960151][ T6730] filename_setxattr+0x20c/0x4f8 [ 63.961635][ T6730] path_setxattrat+0x2e8/0x320 [ 63.963166][ T6730] __arm64_sys_setxattr+0xc0/0xdc [ 63.964744][ T6730] invoke_syscall+0x98/0x2b8 [ 63.966131][ T6730] el0_svc_common+0x130/0x23c [ 63.967648][ T6730] do_el0_svc+0x48/0x58 [ 63.968926][ T6730] el0_svc+0x58/0x180 [ 63.970270][ T6730] el0t_64_sync_handler+0x84/0x12c [ 63.971881][ T6730] el0t_64_sync+0x198/0x19c [ 63.973374][ T6730] [ 63.973374][ T6730] other info that might help us debug this: [ 63.973374][ T6730] [ 63.976369][ T6730] Chain exists of: [ 63.976369][ T6730] &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4 --> jbd2_handle --> &oi->ip_xattr_sem [ 63.976369][ T6730] [ 63.980852][ T6730] Possible unsafe locking scenario: [ 63.980852][ T6730] [ 63.982931][ T6730] CPU0 CPU1 [ 63.984429][ T6730] ---- ---- [ 63.985908][ T6730] lock(&oi->ip_xattr_sem); [ 63.987183][ T6730] lock(jbd2_handle); [ 63.989013][ T6730] lock(&oi->ip_xattr_sem); [ 63.990966][ T6730] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4); [ 63.993023][ T6730] [ 63.993023][ T6730] *** DEADLOCK *** [ 63.993023][ T6730] [ 63.995411][ T6730] 3 locks held by syz.0.16/6730: [ 63.996788][ T6730] #0: ffff0000c87be428 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 63.999431][ T6730] #1: ffff0000f3c7c2c0 (&sb->s_type->i_mutex_key#20){+.+.}-{4:4}, at: vfs_setxattr+0x138/0x2ac [ 64.002411][ T6730] #2: ffff0000f3c7bff8 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 64.005179][ T6730] [ 64.005179][ T6730] stack backtrace: [ 64.006872][ T6730] CPU: 0 UID: 0 PID: 6730 Comm: syz.0.16 Not tainted 6.16.0-rc6-syzkaller-gaaef6f251176 #0 PREEMPT [ 64.009974][ T6730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 64.012784][ T6730] Call trace: [ 64.013722][ T6730] show_stack+0x2c/0x3c (C) [ 64.015053][ T6730] __dump_stack+0x30/0x40 [ 64.016290][ T6730] dump_stack_lvl+0xd8/0x12c [ 64.017643][ T6730] dump_stack+0x1c/0x28 [ 64.018829][ T6730] print_circular_bug+0x324/0x32c [ 64.020254][ T6730] check_noncircular+0x154/0x174 [ 64.021626][ T6730] __lock_acquire+0x1774/0x30a4 [ 64.022936][ T6730] lock_acquire+0x14c/0x2e0 [ 64.024207][ T6730] down_write+0x50/0xc0 [ 64.025300][ T6730] ocfs2_reserve_suballoc_bits+0x12c/0x3b9c [ 64.027034][ T6730] ocfs2_reserve_clusters_with_limit+0x290/0x9e0 [ 64.028803][ T6730] ocfs2_reserve_clusters+0x3c/0x50 [ 64.030213][ T6730] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 64.031672][ T6730] ocfs2_xattr_set+0x920/0xe9c [ 64.032989][ T6730] ocfs2_xattr_trusted_set+0x4c/0x64 [ 64.034795][ T6730] __vfs_setxattr+0x3d8/0x400 [ 64.036122][ T6730] __vfs_setxattr_noperm+0x120/0x5c4 [ 64.037656][ T6730] __vfs_setxattr_locked+0x1ec/0x218 [ 64.039084][ T6730] vfs_setxattr+0x158/0x2ac [ 64.040311][ T6730] filename_setxattr+0x20c/0x4f8 [ 64.041654][ T6730] path_setxattrat+0x2e8/0x320 [ 64.042956][ T6730] __arm64_sys_setxattr+0xc0/0xdc [ 64.044344][ T6730] invoke_syscall+0x98/0x2b8 [ 64.045600][ T6730] el0_svc_common+0x130/0x23c [ 64.046857][ T6730] do_el0_svc+0x48/0x58 [ 64.048000][ T6730] el0_svc+0x58/0x180 [ 64.049076][ T6730] el0t_64_sync_handler+0x84/0x12c [ 64.050535][ T6730] el0t_64_sync+0x198/0x19c [ 64.062496][ T6639] ocfs2: Unmounting device (7,0) on (node local)