Warning: Permanently added '10.128.0.29' (ED25519) to the list of known hosts. 1970/01/01 00:00:38 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:39 parsed 1 programs [ 42.463229][ T6528] cgroup: Unknown subsys name 'net' [ 42.572266][ T6528] cgroup: Unknown subsys name 'cpuset' [ 42.576039][ T6528] cgroup: Unknown subsys name 'rlimit' [ 42.835278][ T6528] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 53.170876][ T6540] chnl_net:caif_netlink_parms(): no params data found [ 53.210866][ T6540] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.210967][ T6540] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.211074][ T6540] bridge_slave_0: entered allmulticast mode [ 53.211951][ T6540] bridge_slave_0: entered promiscuous mode [ 53.213534][ T6540] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.213579][ T6540] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.213689][ T6540] bridge_slave_1: entered allmulticast mode [ 53.214479][ T6540] bridge_slave_1: entered promiscuous mode [ 53.233811][ T6540] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.235337][ T6540] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.251434][ T6540] team0: Port device team_slave_0 added [ 53.254061][ T6540] team0: Port device team_slave_1 added [ 53.266769][ T6540] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.266818][ T6540] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.266857][ T6540] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.268242][ T6540] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.268267][ T6540] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.268295][ T6540] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.299133][ T6540] hsr_slave_0: entered promiscuous mode [ 53.302161][ T6540] hsr_slave_1: entered promiscuous mode [ 53.380801][ T6540] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 53.385617][ T6540] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 53.389219][ T6540] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 53.392981][ T6540] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 53.411458][ T6540] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.411564][ T6540] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.411905][ T6540] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.411966][ T6540] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.438140][ T6540] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.445148][ T15] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.447644][ T15] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.458485][ T6540] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.464582][ T555] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.464684][ T555] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.469235][ T555] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.469314][ T555] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.488278][ T6540] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 53.491579][ T6540] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 53.570746][ T6540] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 53.593257][ T6540] veth0_vlan: entered promiscuous mode [ 53.596806][ T6540] veth1_vlan: entered promiscuous mode [ 53.609572][ T6540] veth0_macvtap: entered promiscuous mode [ 53.611381][ T6540] veth1_macvtap: entered promiscuous mode [ 53.617827][ T6540] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 53.622020][ T6540] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 53.625801][ T6540] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.626080][ T6540] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.626111][ T6540] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.626139][ T6540] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.695143][ T6540] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 54.012375][ T15] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.101253][ T15] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.204971][ T15] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.313007][ T15] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.881062][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 54.881863][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 54.882262][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 54.882925][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 54.883372][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 55.213259][ T290] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.213336][ T290] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.230934][ T290] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.230988][ T290] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:00:56 executed programs: 0 [ 56.171832][ T6092] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 56.173404][ T6092] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 56.174064][ T6092] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 56.174782][ T6092] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 56.175207][ T6092] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 56.265224][ T6636] chnl_net:caif_netlink_parms(): no params data found [ 56.302536][ T6636] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.302645][ T6636] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.302794][ T6636] bridge_slave_0: entered allmulticast mode [ 56.303664][ T6636] bridge_slave_0: entered promiscuous mode [ 56.305465][ T6636] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.305547][ T6636] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.305669][ T6636] bridge_slave_1: entered allmulticast mode [ 56.306510][ T6636] bridge_slave_1: entered promiscuous mode [ 56.332960][ T6636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.334712][ T6636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.350023][ T6636] team0: Port device team_slave_0 added [ 56.351539][ T6636] team0: Port device team_slave_1 added [ 56.365887][ T6636] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.365943][ T6636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.365978][ T6636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.367105][ T6636] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.367129][ T6636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.367160][ T6636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.400955][ T6636] hsr_slave_0: entered promiscuous mode [ 56.401517][ T6636] hsr_slave_1: entered promiscuous mode [ 56.401962][ T6636] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 56.402051][ T6636] Cannot create hsr debugfs directory [ 57.376812][ T15] bridge_slave_1: left allmulticast mode [ 57.376906][ T15] bridge_slave_1: left promiscuous mode [ 57.377328][ T15] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.388859][ T15] bridge_slave_0: left allmulticast mode [ 57.388918][ T15] bridge_slave_0: left promiscuous mode [ 57.389040][ T15] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.240375][ T6092] Bluetooth: hci0: command tx timeout [ 58.861987][ T15] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 58.902328][ T15] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 58.971267][ T15] bond0 (unregistering): Released all slaves [ 59.063774][ T15] hsr_slave_0: left promiscuous mode [ 59.065445][ T15] hsr_slave_1: left promiscuous mode [ 59.067453][ T15] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 59.069975][ T15] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 59.072961][ T15] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 59.075296][ T15] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 59.089241][ T15] veth1_macvtap: left promiscuous mode [ 59.092180][ T15] veth0_macvtap: left promiscuous mode [ 59.092309][ T15] veth1_vlan: left promiscuous mode [ 59.095763][ T15] veth0_vlan: left promiscuous mode [ 60.320318][ T6092] Bluetooth: hci0: command tx timeout [ 61.061704][ T15] team0 (unregistering): Port device team_slave_1 removed [ 61.291494][ T15] team0 (unregistering): Port device team_slave_0 removed [ 62.400168][ T6092] Bluetooth: hci0: command tx timeout [ 63.970465][ T6636] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 63.976829][ T6636] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 63.981031][ T6636] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 63.984674][ T6636] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 64.481296][ T2405] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.481407][ T2405] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.483640][ T6092] Bluetooth: hci0: command tx timeout [ 64.497087][ T6636] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.505592][ T6636] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.522800][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.522896][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.532092][ T290] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.532165][ T290] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.843342][ T6636] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.860052][ T6636] veth0_vlan: entered promiscuous mode [ 64.865015][ T6636] veth1_vlan: entered promiscuous mode [ 64.875671][ T6636] veth0_macvtap: entered promiscuous mode [ 64.877396][ T6636] veth1_macvtap: entered promiscuous mode [ 64.888933][ T6636] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.925994][ T6636] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.929407][ T6636] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.929772][ T6636] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.929803][ T6636] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.929832][ T6636] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.968034][ T555] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.973604][ T555] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.110957][ T555] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.111018][ T555] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.334525][ T6741] loop0: detected capacity change from 0 to 32768 [ 65.335672][ T6741] ======================================================= [ 65.335672][ T6741] WARNING: The mand mount option has been deprecated and [ 65.335672][ T6741] and is ignored by this kernel. Remove the mand [ 65.335672][ T6741] option from the mount to silence this warning. [ 65.335672][ T6741] ======================================================= [ 65.363781][ T6741] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 65.375842][ T6741] [ 65.376517][ T6741] ====================================================== [ 65.378360][ T6741] WARNING: possible circular locking dependency detected [ 65.380269][ T6741] 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 Not tainted [ 65.382144][ T6741] ------------------------------------------------------ [ 65.384129][ T6741] syz.0.17/6741 is trying to acquire lock: [ 65.385792][ T6741] ffff0000f3c13f60 (&oi->ip_alloc_sem){+.+.}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xb4/0x2d8 [ 65.388736][ T6741] [ 65.388736][ T6741] but task is already holding lock: [ 65.390794][ T6741] ffff0000f3c13ff8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa8/0x2d8 [ 65.393752][ T6741] [ 65.393752][ T6741] which lock already depends on the new lock. [ 65.393752][ T6741] [ 65.396660][ T6741] [ 65.396660][ T6741] the existing dependency chain (in reverse order) is: [ 65.399108][ T6741] [ 65.399108][ T6741] -> #4 (&oi->ip_xattr_sem){++++}-{4:4}: [ 65.401227][ T6741] down_read+0x58/0x2f8 [ 65.402452][ T6741] ocfs2_init_acl+0x258/0x5f0 [ 65.403904][ T6741] ocfs2_mknod+0x1028/0x1cf0 [ 65.405318][ T6741] ocfs2_create+0x190/0x474 [ 65.406728][ T6741] path_openat+0x12d8/0x2c40 [ 65.408196][ T6741] do_filp_open+0x18c/0x36c [ 65.409571][ T6741] do_sys_openat2+0x11c/0x1b4 [ 65.411088][ T6741] __arm64_sys_openat+0x120/0x158 [ 65.412747][ T6741] invoke_syscall+0x98/0x2b8 [ 65.414176][ T6741] el0_svc_common+0x130/0x23c [ 65.415606][ T6741] do_el0_svc+0x48/0x58 [ 65.416892][ T6741] el0_svc+0x58/0x180 [ 65.418058][ T6741] el0t_64_sync_handler+0x84/0x12c [ 65.419573][ T6741] el0t_64_sync+0x198/0x19c [ 65.420970][ T6741] [ 65.420970][ T6741] -> #3 (jbd2_handle){++++}-{0:0}: [ 65.422925][ T6741] start_this_handle+0xe74/0x10dc [ 65.424389][ T6741] jbd2__journal_start+0x288/0x51c [ 65.425918][ T6741] jbd2_journal_start+0x3c/0x4c [ 65.427448][ T6741] ocfs2_start_trans+0x368/0x6b0 [ 65.428932][ T6741] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 65.430680][ T6741] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 65.432557][ T6741] ocfs2_mknod+0xbd8/0x1cf0 [ 65.433948][ T6741] ocfs2_create+0x190/0x474 [ 65.435332][ T6741] path_openat+0x12d8/0x2c40 [ 65.436723][ T6741] do_filp_open+0x18c/0x36c [ 65.438223][ T6741] do_sys_openat2+0x11c/0x1b4 [ 65.439706][ T6741] __arm64_sys_openat+0x120/0x158 [ 65.441247][ T6741] invoke_syscall+0x98/0x2b8 [ 65.442634][ T6741] el0_svc_common+0x130/0x23c [ 65.444061][ T6741] do_el0_svc+0x48/0x58 [ 65.445287][ T6741] el0_svc+0x58/0x180 [ 65.446521][ T6741] el0t_64_sync_handler+0x84/0x12c [ 65.448023][ T6741] el0t_64_sync+0x198/0x19c [ 65.449418][ T6741] [ 65.449418][ T6741] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 65.451758][ T6741] down_read+0x58/0x2f8 [ 65.453043][ T6741] ocfs2_start_trans+0x35c/0x6b0 [ 65.454522][ T6741] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 65.456271][ T6741] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 65.458074][ T6741] ocfs2_mknod+0xbd8/0x1cf0 [ 65.459404][ T6741] ocfs2_create+0x190/0x474 [ 65.460787][ T6741] path_openat+0x12d8/0x2c40 [ 65.462240][ T6741] do_filp_open+0x18c/0x36c [ 65.463630][ T6741] do_sys_openat2+0x11c/0x1b4 [ 65.465112][ T6741] __arm64_sys_openat+0x120/0x158 [ 65.466656][ T6741] invoke_syscall+0x98/0x2b8 [ 65.468010][ T6741] el0_svc_common+0x130/0x23c [ 65.469484][ T6741] do_el0_svc+0x48/0x58 [ 65.470756][ T6741] el0_svc+0x58/0x180 [ 65.472028][ T6741] el0t_64_sync_handler+0x84/0x12c [ 65.473558][ T6741] el0t_64_sync+0x198/0x19c [ 65.474937][ T6741] [ 65.474937][ T6741] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 65.476976][ T6741] ocfs2_start_trans+0x1f4/0x6b0 [ 65.478512][ T6741] ocfs2_truncate_file+0x5b0/0x12f4 [ 65.480096][ T6741] ocfs2_setattr+0x1148/0x17a0 [ 65.481510][ T6741] notify_change+0x9a4/0xc50 [ 65.482891][ T6741] do_truncate+0x198/0x210 [ 65.484321][ T6741] path_openat+0x25a0/0x2c40 [ 65.485691][ T6741] do_filp_open+0x18c/0x36c [ 65.487050][ T6741] do_sys_openat2+0x11c/0x1b4 [ 65.488547][ T6741] __arm64_sys_openat+0x120/0x158 [ 65.490067][ T6741] invoke_syscall+0x98/0x2b8 [ 65.491448][ T6741] el0_svc_common+0x130/0x23c [ 65.492800][ T6741] do_el0_svc+0x48/0x58 [ 65.494105][ T6741] el0_svc+0x58/0x180 [ 65.495313][ T6741] el0t_64_sync_handler+0x84/0x12c [ 65.496834][ T6741] el0t_64_sync+0x198/0x19c [ 65.498195][ T6741] [ 65.498195][ T6741] -> #0 (&oi->ip_alloc_sem){+.+.}-{4:4}: [ 65.500342][ T6741] __lock_acquire+0x1774/0x30a4 [ 65.501776][ T6741] lock_acquire+0x14c/0x2e0 [ 65.503147][ T6741] down_write+0x50/0xc0 [ 65.504400][ T6741] ocfs2_try_remove_refcount_tree+0xb4/0x2d8 [ 65.506205][ T6741] ocfs2_truncate_file+0xc28/0x12f4 [ 65.507738][ T6741] ocfs2_setattr+0x1148/0x17a0 [ 65.509306][ T6741] notify_change+0x9a4/0xc50 [ 65.510698][ T6741] do_truncate+0x198/0x210 [ 65.512035][ T6741] path_openat+0x25a0/0x2c40 [ 65.513392][ T6741] do_filp_open+0x18c/0x36c [ 65.514733][ T6741] do_sys_openat2+0x11c/0x1b4 [ 65.516163][ T6741] __arm64_sys_openat+0x120/0x158 [ 65.517651][ T6741] invoke_syscall+0x98/0x2b8 [ 65.519022][ T6741] el0_svc_common+0x130/0x23c [ 65.520387][ T6741] do_el0_svc+0x48/0x58 [ 65.521660][ T6741] el0_svc+0x58/0x180 [ 65.522819][ T6741] el0t_64_sync_handler+0x84/0x12c [ 65.524326][ T6741] el0t_64_sync+0x198/0x19c [ 65.525754][ T6741] [ 65.525754][ T6741] other info that might help us debug this: [ 65.525754][ T6741] [ 65.528433][ T6741] Chain exists of: [ 65.528433][ T6741] &oi->ip_alloc_sem --> jbd2_handle --> &oi->ip_xattr_sem [ 65.528433][ T6741] [ 65.532046][ T6741] Possible unsafe locking scenario: [ 65.532046][ T6741] [ 65.534120][ T6741] CPU0 CPU1 [ 65.535553][ T6741] ---- ---- [ 65.537049][ T6741] lock(&oi->ip_xattr_sem); [ 65.538275][ T6741] lock(jbd2_handle); [ 65.540055][ T6741] lock(&oi->ip_xattr_sem); [ 65.542033][ T6741] lock(&oi->ip_alloc_sem); [ 65.543273][ T6741] [ 65.543273][ T6741] *** DEADLOCK *** [ 65.543273][ T6741] [ 65.545451][ T6741] 3 locks held by syz.0.17/6741: [ 65.546796][ T6741] #0: ffff0000c774a428 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 65.549372][ T6741] #1: ffff0000f3c142c0 (&sb->s_type->i_mutex_key#20){+.+.}-{4:4}, at: do_truncate+0x164/0x210 [ 65.552248][ T6741] #2: ffff0000f3c13ff8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa8/0x2d8 [ 65.555320][ T6741] [ 65.555320][ T6741] stack backtrace: [ 65.556951][ T6741] CPU: 0 UID: 0 PID: 6741 Comm: syz.0.17 Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 65.559878][ T6741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 65.562601][ T6741] Call trace: [ 65.563481][ T6741] show_stack+0x2c/0x3c (C) [ 65.564697][ T6741] __dump_stack+0x30/0x40 [ 65.565889][ T6741] dump_stack_lvl+0xd8/0x12c [ 65.567126][ T6741] dump_stack+0x1c/0x28 [ 65.568300][ T6741] print_circular_bug+0x324/0x32c [ 65.569686][ T6741] check_noncircular+0x154/0x174 [ 65.571000][ T6741] __lock_acquire+0x1774/0x30a4 [ 65.572288][ T6741] lock_acquire+0x14c/0x2e0 [ 65.573532][ T6741] down_write+0x50/0xc0 [ 65.574665][ T6741] ocfs2_try_remove_refcount_tree+0xb4/0x2d8 [ 65.576315][ T6741] ocfs2_truncate_file+0xc28/0x12f4 [ 65.577692][ T6741] ocfs2_setattr+0x1148/0x17a0 [ 65.578979][ T6741] notify_change+0x9a4/0xc50 [ 65.580225][ T6741] do_truncate+0x198/0x210 [ 65.581405][ T6741] path_openat+0x25a0/0x2c40 [ 65.582657][ T6741] do_filp_open+0x18c/0x36c [ 65.583878][ T6741] do_sys_openat2+0x11c/0x1b4 [ 65.585182][ T6741] __arm64_sys_openat+0x120/0x158 [ 65.586534][ T6741] invoke_syscall+0x98/0x2b8 [ 65.587759][ T6741] el0_svc_common+0x130/0x23c [ 65.589065][ T6741] do_el0_svc+0x48/0x58 [ 65.590221][ T6741] el0_svc+0x58/0x180 [ 65.591279][ T6741] el0t_64_sync_handler+0x84/0x12c [ 65.592692][ T6741] el0t_64_sync+0x198/0x19c [ 65.616508][ T6636] ocfs2: Unmounting device (7,0) on (node local)