Warning: Permanently added '10.128.1.4' (ED25519) to the list of known hosts. 1970/01/01 00:00:38 parsed 1 programs [ 39.524537][ T4327] cgroup: Unknown subsys name 'net' [ 39.795751][ T4327] cgroup: Unknown subsys name 'rlimit' [ 40.101935][ T4327] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 43.724589][ T4339] chnl_net:caif_netlink_parms(): no params data found [ 43.741909][ T4339] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.743932][ T4339] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.745624][ T4339] device bridge_slave_0 entered promiscuous mode [ 43.748545][ T4339] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.749714][ T4339] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.751238][ T4339] device bridge_slave_1 entered promiscuous mode [ 43.759108][ T4339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.761486][ T4339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.769395][ T4339] team0: Port device team_slave_0 added [ 43.771125][ T4339] team0: Port device team_slave_1 added [ 43.777270][ T4339] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.778417][ T4339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.782572][ T4339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.785558][ T4339] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.786584][ T4339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.790512][ T4339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.834001][ T4339] device hsr_slave_0 entered promiscuous mode [ 43.893088][ T4339] device hsr_slave_1 entered promiscuous mode [ 43.979232][ T4339] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 44.035709][ T4339] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 44.084365][ T4339] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 44.125648][ T4339] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 44.184074][ T4339] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.185223][ T4339] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.186537][ T4339] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.187637][ T4339] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.205445][ T4339] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.208960][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.212316][ T206] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.214521][ T206] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.216322][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 44.220570][ T4339] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.224875][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.226322][ T206] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.227477][ T206] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.231476][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.232969][ T206] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.234106][ T206] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.240742][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.242471][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 44.246237][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 44.249047][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.251687][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.255130][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 44.309675][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 44.311023][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 44.314657][ T4339] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.321953][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 44.329087][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 44.330822][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 44.332172][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 44.335533][ T4339] device veth0_vlan entered promiscuous mode [ 44.338475][ T4339] device veth1_vlan entered promiscuous mode [ 44.345795][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 44.347419][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 44.348920][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 44.351070][ T4339] device veth0_macvtap entered promiscuous mode [ 44.354961][ T4339] device veth1_macvtap entered promiscuous mode [ 44.359961][ T4339] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 44.361232][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 44.364368][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 44.367788][ T4339] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 44.369108][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 44.371840][ T4339] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.374404][ T4339] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.375719][ T4339] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.377006][ T4339] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.974816][ T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 45.081640][ T4386] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.085075][ T4386] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.086532][ T4386] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.088045][ T4386] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.089435][ T4386] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 45.090814][ T4386] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.725545][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.726859][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.728604][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 45.738463][ T477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.739825][ T477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.741695][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:00:46 executed programs: 0 [ 46.109698][ T4386] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 46.111178][ T4386] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 46.112521][ T4386] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 46.114570][ T4386] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 46.115892][ T4386] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 46.117071][ T4386] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 46.165421][ T4422] chnl_net:caif_netlink_parms(): no params data found [ 46.183271][ T4422] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.184398][ T4422] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.185828][ T4422] device bridge_slave_0 entered promiscuous mode [ 46.188406][ T4422] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.189681][ T4422] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.191351][ T4422] device bridge_slave_1 entered promiscuous mode [ 46.198656][ T4422] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.201198][ T4422] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.208785][ T4422] team0: Port device team_slave_0 added [ 46.210821][ T4422] team0: Port device team_slave_1 added [ 46.216809][ T4422] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.217940][ T4422] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.222092][ T4422] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.224787][ T4422] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.225847][ T4422] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.229911][ T4422] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.274152][ T4422] device hsr_slave_0 entered promiscuous mode [ 46.313174][ T4422] device hsr_slave_1 entered promiscuous mode [ 46.352971][ T4422] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.354288][ T4422] Cannot create hsr debugfs directory [ 47.364080][ T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 48.173268][ T47] Bluetooth: hci0: command 0x0409 tx timeout [ 49.914019][ T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 49.995264][ T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.253717][ T47] Bluetooth: hci0: command 0x041b tx timeout [ 50.954776][ T4422] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 51.044742][ T4422] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 51.124562][ T4422] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 51.224790][ T4422] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 51.343301][ T4422] 8021q: adding VLAN 0 to HW filter on device bond0 [ 51.346810][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 51.348341][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 51.350853][ T4422] 8021q: adding VLAN 0 to HW filter on device team0 [ 51.353407][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 51.355162][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 51.356634][ T206] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.357740][ T206] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.359519][ T206] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 51.362584][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 51.364227][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 51.365925][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.367053][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.416230][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 51.419281][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 51.421823][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 51.423643][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 51.425292][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 51.428307][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 51.430315][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 51.433351][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 51.434828][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 51.437313][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 51.438954][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 51.441719][ T4422] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 51.467398][ T9] device hsr_slave_0 left promiscuous mode [ 51.493162][ T9] device hsr_slave_1 left promiscuous mode [ 51.572986][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 51.574212][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 51.575975][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 51.577211][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 51.578629][ T9] device bridge_slave_1 left promiscuous mode [ 51.580051][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.613701][ T9] device bridge_slave_0 left promiscuous mode [ 51.614749][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.743174][ T9] device veth1_macvtap left promiscuous mode [ 51.744186][ T9] device veth0_macvtap left promiscuous mode [ 51.745141][ T9] device veth1_vlan left promiscuous mode [ 51.746099][ T9] device veth0_vlan left promiscuous mode [ 52.343736][ T47] Bluetooth: hci0: command 0x040f tx timeout [ 53.633957][ T9] team0 (unregistering): Port device team_slave_1 removed [ 53.793571][ T9] team0 (unregistering): Port device team_slave_0 removed [ 53.973462][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 54.194075][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 54.412905][ T47] Bluetooth: hci0: command 0x0419 tx timeout [ 56.633795][ T9] bond0 (unregistering): Released all slaves [ 56.891701][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 56.893180][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 56.896302][ T4422] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.901999][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 56.905078][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 56.913297][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 56.915335][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 56.916898][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 56.918237][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 56.920539][ T4422] device veth0_vlan entered promiscuous mode [ 56.924550][ T4422] device veth1_vlan entered promiscuous mode [ 56.931471][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 56.933109][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 56.934553][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 56.936113][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 56.938602][ T4422] device veth0_macvtap entered promiscuous mode [ 56.940826][ T4422] device veth1_macvtap entered promiscuous mode [ 56.946896][ T4422] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.948147][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 56.949746][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 56.951147][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 56.952706][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 56.955719][ T4422] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.956865][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 56.958347][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 56.960635][ T4422] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.961956][ T4422] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.964664][ T4422] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.966080][ T4422] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.985961][ T477] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.989861][ T477] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.993791][ T477] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 56.997289][ T477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.998338][ T477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.000131][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 57.123330][ T4492] loop0: detected capacity change from 0 to 32768 [ 57.138785][ T4492] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 57.140887][ T477] (kworker/u4:4,477,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=16, inode=66, rec_len=491, name_len=2 [ 57.149327][ T4492] [ 57.149754][ T4492] ====================================================== [ 57.150838][ T4492] WARNING: possible circular locking dependency detected [ 57.153229][ T4492] syzkaller #0 Not tainted [ 57.153826][ T4492] ------------------------------------------------------ [ 57.154746][ T4492] syz.0.17/4492 is trying to acquire lock: [ 57.155689][ T4492] ffff0000d49d2650 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_setattr+0xafc/0x18d4 [ 57.157193][ T4492] [ 57.157193][ T4492] but task is already holding lock: [ 57.158202][ T4492] ffff0000ea665be0 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0xaf0/0x18d4 [ 57.159830][ T4492] [ 57.159830][ T4492] which lock already depends on the new lock. [ 57.159830][ T4492] [ 57.161531][ T4492] [ 57.161531][ T4492] the existing dependency chain (in reverse order) is: [ 57.163064][ T4492] [ 57.163064][ T4492] -> #4 (&oi->ip_alloc_sem){+.+.}-{3:3}: [ 57.164232][ T4492] down_write+0x5c/0x88 [ 57.164829][ T4492] ocfs2_try_remove_refcount_tree+0xb4/0x2d8 [ 57.165757][ T4492] ocfs2_xattr_set+0x45c/0xe98 [ 57.166623][ T4492] ocfs2_set_acl+0x3ec/0x4a0 [ 57.167387][ T4492] ocfs2_iop_set_acl+0x174/0x240 [ 57.168123][ T4492] posix_acl_xattr_set+0x2f8/0x398 [ 57.168946][ T4492] __vfs_removexattr+0x370/0x38c [ 57.169780][ T4492] __vfs_removexattr_locked+0x1d0/0x208 [ 57.170639][ T4492] vfs_removexattr+0x80/0x190 [ 57.171416][ T4492] ovl_workdir_create+0x330/0x634 [ 57.172291][ T4492] ovl_get_workdir+0x2fc/0x1068 [ 57.173088][ T4492] ovl_fill_super+0x139c/0x2294 [ 57.173870][ T4492] mount_nodev+0x68/0x104 [ 57.174577][ T4492] ovl_mount+0x3c/0x50 [ 57.175276][ T4492] legacy_get_tree+0xd4/0x16c [ 57.175933][ T4492] vfs_get_tree+0x90/0x274 [ 57.176552][ T4492] do_new_mount+0x228/0x810 [ 57.177238][ T4492] path_mount+0x5b4/0xe78 [ 57.177966][ T4492] __arm64_sys_mount+0x49c/0x584 [ 57.178941][ T4492] invoke_syscall+0x98/0x2bc [ 57.179797][ T4492] el0_svc_common+0x138/0x258 [ 57.180559][ T4492] do_el0_svc+0x58/0x13c [ 57.181300][ T4492] el0_svc+0x58/0x138 [ 57.182044][ T4492] el0t_64_sync_handler+0x84/0xf0 [ 57.182994][ T4492] el0t_64_sync+0x18c/0x190 [ 57.183850][ T4492] [ 57.183850][ T4492] -> #3 (&oi->ip_xattr_sem){++++}-{3:3}: [ 57.184971][ T4492] down_read+0x64/0x304 [ 57.185625][ T4492] ocfs2_init_acl+0x258/0x5f0 [ 57.186388][ T4492] ocfs2_mknod+0x1168/0x1f18 [ 57.187131][ T4492] ocfs2_mkdir+0x19c/0x4f0 [ 57.187879][ T4492] vfs_mkdir+0x314/0x4d4 [ 57.188613][ T4492] do_mkdirat+0x1b4/0x3e0 [ 57.189336][ T4492] __arm64_sys_mkdirat+0x90/0xa8 [ 57.190069][ T4492] invoke_syscall+0x98/0x2bc [ 57.190831][ T4492] el0_svc_common+0x138/0x258 [ 57.191580][ T4492] do_el0_svc+0x58/0x13c [ 57.192221][ T4492] el0_svc+0x58/0x138 [ 57.192925][ T4492] el0t_64_sync_handler+0x84/0xf0 [ 57.193788][ T4492] el0t_64_sync+0x18c/0x190 [ 57.194495][ T4492] [ 57.194495][ T4492] -> #2 (jbd2_handle){++++}-{0:0}: [ 57.195568][ T4492] start_this_handle+0xfe0/0x122c [ 57.196400][ T4492] jbd2__journal_start+0x288/0x51c [ 57.197287][ T4492] jbd2_journal_start+0x3c/0x4c [ 57.198106][ T4492] ocfs2_start_trans+0x380/0x6c4 [ 57.198948][ T4492] ocfs2_mknod+0xc7c/0x1f18 [ 57.199610][ T4492] ocfs2_mkdir+0x19c/0x4f0 [ 57.200332][ T4492] vfs_mkdir+0x314/0x4d4 [ 57.201078][ T4492] do_mkdirat+0x1b4/0x3e0 [ 57.201766][ T4492] __arm64_sys_mkdirat+0x90/0xa8 [ 57.202643][ T4492] invoke_syscall+0x98/0x2bc [ 57.203574][ T4492] el0_svc_common+0x138/0x258 [ 57.204460][ T4492] do_el0_svc+0x58/0x13c [ 57.205295][ T4492] el0_svc+0x58/0x138 [ 57.206037][ T4492] el0t_64_sync_handler+0x84/0xf0 [ 57.206788][ T4492] el0t_64_sync+0x18c/0x190 [ 57.207408][ T4492] [ 57.207408][ T4492] -> #1 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 57.208464][ T4492] down_read+0x64/0x304 [ 57.209088][ T4492] ocfs2_start_trans+0x374/0x6c4 [ 57.209918][ T4492] ocfs2_mknod+0xc7c/0x1f18 [ 57.210675][ T4492] ocfs2_mkdir+0x19c/0x4f0 [ 57.211259][ T4492] vfs_mkdir+0x314/0x4d4 [ 57.211993][ T4492] do_mkdirat+0x1b4/0x3e0 [ 57.212693][ T4492] __arm64_sys_mkdirat+0x90/0xa8 [ 57.213736][ T4492] invoke_syscall+0x98/0x2bc [ 57.214478][ T4492] el0_svc_common+0x138/0x258 [ 57.215325][ T4492] do_el0_svc+0x58/0x13c [ 57.215983][ T4492] el0_svc+0x58/0x138 [ 57.216639][ T4492] el0t_64_sync_handler+0x84/0xf0 [ 57.217366][ T4492] el0t_64_sync+0x18c/0x190 [ 57.218162][ T4492] [ 57.218162][ T4492] -> #0 (sb_internal#2){.+.+}-{0:0}: [ 57.219481][ T4492] __lock_acquire+0x293c/0x6544 [ 57.220299][ T4492] lock_acquire+0x20c/0x644 [ 57.221038][ T4492] ocfs2_start_trans+0x20c/0x6c4 [ 57.221879][ T4492] ocfs2_setattr+0xafc/0x18d4 [ 57.222773][ T4492] notify_change+0xb0c/0xdcc [ 57.223677][ T4492] ovl_workdir_create+0x4a8/0x634 [ 57.224451][ T4492] ovl_get_workdir+0x2fc/0x1068 [ 57.225101][ T4492] ovl_fill_super+0x139c/0x2294 [ 57.225885][ T4492] mount_nodev+0x68/0x104 [ 57.226727][ T4492] ovl_mount+0x3c/0x50 [ 57.227419][ T4492] legacy_get_tree+0xd4/0x16c [ 57.228137][ T4492] vfs_get_tree+0x90/0x274 [ 57.228857][ T4492] do_new_mount+0x228/0x810 [ 57.229570][ T4492] path_mount+0x5b4/0xe78 [ 57.230229][ T4492] __arm64_sys_mount+0x49c/0x584 [ 57.230986][ T4492] invoke_syscall+0x98/0x2bc [ 57.231739][ T4492] el0_svc_common+0x138/0x258 [ 57.232338][ T4492] do_el0_svc+0x58/0x13c [ 57.232892][ T4492] el0_svc+0x58/0x138 [ 57.233490][ T4492] el0t_64_sync_handler+0x84/0xf0 [ 57.234156][ T4492] el0t_64_sync+0x18c/0x190 [ 57.234793][ T4492] [ 57.234793][ T4492] other info that might help us debug this: [ 57.234793][ T4492] [ 57.236287][ T4492] Chain exists of: [ 57.236287][ T4492] sb_internal#2 --> &oi->ip_xattr_sem --> &oi->ip_alloc_sem [ 57.236287][ T4492] [ 57.238197][ T4492] Possible unsafe locking scenario: [ 57.238197][ T4492] [ 57.239255][ T4492] CPU0 CPU1 [ 57.240049][ T4492] ---- ---- [ 57.240768][ T4492] lock(&oi->ip_alloc_sem); [ 57.241462][ T4492] lock(&oi->ip_xattr_sem); [ 57.242574][ T4492] lock(&oi->ip_alloc_sem); [ 57.243472][ T4492] lock(sb_internal#2); [ 57.244056][ T4492] [ 57.244056][ T4492] *** DEADLOCK *** [ 57.244056][ T4492] [ 57.245209][ T4492] 5 locks held by syz.0.17/4492: [ 57.245928][ T4492] #0: ffff0000d42240e0 (&type->s_umount_key#51/1){+.+.}-{3:3}, at: alloc_super+0x1a4/0x804 [ 57.247606][ T4492] #1: ffff0000d49d2460 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 57.249013][ T4492] #2: ffff0000ea665108 (&sb->s_type->i_mutex_key#20/1){+.+.}-{3:3}, at: ovl_workdir_create+0x128/0x634 [ 57.250623][ T4492] #3: ffff0000ea665f48 (&sb->s_type->i_mutex_key#22){+.+.}-{3:3}, at: ovl_workdir_create+0x44c/0x634 [ 57.252276][ T4492] #4: ffff0000ea665be0 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0xaf0/0x18d4 [ 57.253967][ T4492] [ 57.253967][ T4492] stack backtrace: [ 57.254909][ T4492] CPU: 1 PID: 4492 Comm: syz.0.17 Not tainted syzkaller #0 [ 57.256072][ T4492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 57.257553][ T4492] Call trace: [ 57.257997][ T4492] dump_backtrace+0x1c8/0x1f4 [ 57.258633][ T4492] show_stack+0x2c/0x3c [ 57.259180][ T4492] __dump_stack+0x30/0x40 [ 57.259752][ T4492] dump_stack_lvl+0xf8/0x160 [ 57.260455][ T4492] dump_stack+0x1c/0x5c [ 57.261273][ T4492] print_circular_bug+0x148/0x1b0 [ 57.262010][ T4492] check_noncircular+0x240/0x2d4 [ 57.262786][ T4492] __lock_acquire+0x293c/0x6544 [ 57.263544][ T4492] lock_acquire+0x20c/0x644 [ 57.264191][ T4492] ocfs2_start_trans+0x20c/0x6c4 [ 57.264813][ T4492] ocfs2_setattr+0xafc/0x18d4 [ 57.265479][ T4492] notify_change+0xb0c/0xdcc [ 57.266085][ T4492] ovl_workdir_create+0x4a8/0x634 [ 57.266942][ T4492] ovl_get_workdir+0x2fc/0x1068 [ 57.267780][ T4492] ovl_fill_super+0x139c/0x2294 [ 57.268565][ T4492] mount_nodev+0x68/0x104 [ 57.269291][ T4492] ovl_mount+0x3c/0x50 [ 57.269980][ T4492] legacy_get_tree+0xd4/0x16c [ 57.270713][ T4492] vfs_get_tree+0x90/0x274 [ 57.271413][ T4492] do_new_mount+0x228/0x810 [ 57.272128][ T4492] path_mount+0x5b4/0xe78 [ 57.272812][ T4492] __arm64_sys_mount+0x49c/0x584 [ 57.273503][ T4492] invoke_syscall+0x98/0x2bc [ 57.274174][ T4492] el0_svc_common+0x138/0x258 [ 57.274948][ T4492] do_el0_svc+0x58/0x13c [ 57.275585][ T4492] el0_svc+0x58/0x138 [ 57.276148][ T4492] el0t_64_sync_handler+0x84/0xf0 [ 57.276797][ T4492] el0t_64_sync+0x18c/0x190 [ 57.278563][ T4492] overlayfs: upper fs does not support tmpfile. [ 57.279691][ T4492] (syz.0.17,4492,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=16, inode=66, rec_len=491, name_len=2 [ 57.282134][ T4492] (syz.0.17,4492,1):ocfs2_prepare_dir_for_insert:4311 ERROR: status = -2 [ 57.283514][ T4492] (syz.0.17,4492,1):__ocfs2_prepare_orphan_dir:2168 ERROR: status = -2 [ 57.284750][ T4492] (syz.0.17,4492,1):ocfs2_prepare_orphan_dir:2210 ERROR: status = -2 [ 57.286039][ T4492] (syz.0.17,4492,1):ocfs2_prepare_orphan_dir:2226 ERROR: status = -2 [ 57.287089][ T4492] (syz.0.17,4492,1):ocfs2_unlink:964 ERROR: status = -2 [ 57.287936][ T4492] overlayfs: cleanup of 'work/#1' failed (-2) [ 57.288867][ T4492] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 57.290232][ T4492] overlayfs: upper fs missing required features. [ 57.298623][ T4422] ocfs2: Unmounting device (7,0) on (node local)