Warning: Permanently added '10.128.0.225' (ED25519) to the list of known hosts.
executing program
[   33.198985][ T6424] loop0: detected capacity change from 0 to 32768
[   33.202688][ T6424] =======================================================
[   33.202688][ T6424] WARNING: The mand mount option has been deprecated and
[   33.202688][ T6424]          and is ignored by this kernel. Remove the mand
[   33.202688][ T6424]          option from the mount to silence this warning.
[   33.202688][ T6424] =======================================================
[   33.223270][ T6424] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   33.234588][ T6424] 
[   33.235160][ T6424] ======================================================
[   33.236484][ T6424] WARNING: possible circular locking dependency detected
[   33.237796][ T6424] 6.12.0-syzkaller-g7b1d1d4cfac0 #0 Not tainted
[   33.238977][ T6424] ------------------------------------------------------
[   33.240354][ T6424] syz-executor366/6424 is trying to acquire lock:
[   33.241617][ T6424] ffff0000dff5bf60 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xb4/0x2f0
[   33.243756][ T6424] 
[   33.243756][ T6424] but task is already holding lock:
[   33.245185][ T6424] ffff0000dff5bff8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa8/0x2f0
[   33.247256][ T6424] 
[   33.247256][ T6424] which lock already depends on the new lock.
[   33.247256][ T6424] 
[   33.249279][ T6424] 
[   33.249279][ T6424] the existing dependency chain (in reverse order) is:
[   33.251021][ T6424] 
[   33.251021][ T6424] -> #4 (&oi->ip_xattr_sem){++++}-{3:3}:
[   33.252555][ T6424]        down_read+0x58/0x2fc
[   33.253463][ T6424]        ocfs2_init_acl+0x2c8/0x764
[   33.254471][ T6424]        ocfs2_mknod+0x1388/0x243c
[   33.255467][ T6424]        ocfs2_create+0x194/0x4e0
[   33.256430][ T6424]        path_openat+0x13e4/0x2b14
[   33.257411][ T6424]        do_filp_open+0x1bc/0x3cc
[   33.258402][ T6424]        do_sys_openat2+0x124/0x1b8
[   33.259424][ T6424]        __arm64_sys_openat+0x1f0/0x240
[   33.260489][ T6424]        invoke_syscall+0x98/0x2b8
[   33.261509][ T6424]        el0_svc_common+0x130/0x23c
[   33.262570][ T6424]        do_el0_svc+0x48/0x58
[   33.263541][ T6424]        el0_svc+0x54/0x168
[   33.264450][ T6424]        el0t_64_sync_handler+0x84/0x108
[   33.265535][ T6424]        el0t_64_sync+0x198/0x19c
[   33.266515][ T6424] 
[   33.266515][ T6424] -> #3 (jbd2_handle){.+.+}-{0:0}:
[   33.267970][ T6424]        start_this_handle+0xf34/0x11c4
[   33.269060][ T6424]        jbd2__journal_start+0x298/0x544
[   33.270191][ T6424]        jbd2_journal_start+0x3c/0x4c
[   33.271233][ T6424]        ocfs2_start_trans+0x3d0/0x71c
[   33.272284][ T6424]        ocfs2_reserve_suballoc_bits+0x840/0x4288
[   33.273526][ T6424]        ocfs2_reserve_new_metadata_blocks+0x384/0x848
[   33.274882][ T6424]        ocfs2_mknod+0xdc8/0x243c
[   33.275877][ T6424]        ocfs2_create+0x194/0x4e0
[   33.276844][ T6424]        path_openat+0x13e4/0x2b14
[   33.277856][ T6424]        do_filp_open+0x1bc/0x3cc
[   33.278875][ T6424]        do_sys_openat2+0x124/0x1b8
[   33.279997][ T6424]        __arm64_sys_openat+0x1f0/0x240
[   33.281080][ T6424]        invoke_syscall+0x98/0x2b8
[   33.282117][ T6424]        el0_svc_common+0x130/0x23c
[   33.283229][ T6424]        do_el0_svc+0x48/0x58
[   33.284181][ T6424]        el0_svc+0x54/0x168
[   33.285062][ T6424]        el0t_64_sync_handler+0x84/0x108
[   33.286164][ T6424]        el0t_64_sync+0x198/0x19c
[   33.287137][ T6424] 
[   33.287137][ T6424] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}:
[   33.288801][ T6424]        down_read+0x58/0x2fc
[   33.289734][ T6424]        ocfs2_start_trans+0x3c4/0x71c
[   33.290798][ T6424]        ocfs2_reserve_suballoc_bits+0x840/0x4288
[   33.292048][ T6424]        ocfs2_reserve_new_metadata_blocks+0x384/0x848
[   33.293375][ T6424]        ocfs2_mknod+0xdc8/0x243c
[   33.294362][ T6424]        ocfs2_create+0x194/0x4e0
[   33.295321][ T6424]        path_openat+0x13e4/0x2b14
[   33.296382][ T6424]        do_filp_open+0x1bc/0x3cc
[   33.297423][ T6424]        do_sys_openat2+0x124/0x1b8
[   33.298467][ T6424]        __arm64_sys_openat+0x1f0/0x240
[   33.299589][ T6424]        invoke_syscall+0x98/0x2b8
[   33.300580][ T6424]        el0_svc_common+0x130/0x23c
[   33.301738][ T6424]        do_el0_svc+0x48/0x58
[   33.302704][ T6424]        el0_svc+0x54/0x168
[   33.303704][ T6424]        el0t_64_sync_handler+0x84/0x108
[   33.304875][ T6424]        el0t_64_sync+0x198/0x19c
[   33.305940][ T6424] 
[   33.305940][ T6424] -> #1 (sb_internal#2){.+.+}-{0:0}:
[   33.307409][ T6424]        ocfs2_start_trans+0x244/0x71c
[   33.308471][ T6424]        ocfs2_truncate_file+0x628/0x1534
[   33.309587][ T6424]        ocfs2_setattr+0x1328/0x19e8
[   33.310631][ T6424]        notify_change+0x9f0/0xca0
[   33.311634][ T6424]        do_truncate+0x1c0/0x28c
[   33.312613][ T6424]        path_openat+0x2494/0x2b14
[   33.313630][ T6424]        do_filp_open+0x1bc/0x3cc
[   33.314684][ T6424]        do_sys_openat2+0x124/0x1b8
[   33.315832][ T6424]        __arm64_sys_openat+0x1f0/0x240
[   33.317040][ T6424]        invoke_syscall+0x98/0x2b8
[   33.318248][ T6424]        el0_svc_common+0x130/0x23c
[   33.319346][ T6424]        do_el0_svc+0x48/0x58
[   33.320399][ T6424]        el0_svc+0x54/0x168
[   33.321390][ T6424]        el0t_64_sync_handler+0x84/0x108
[   33.322668][ T6424]        el0t_64_sync+0x198/0x19c
[   33.323809][ T6424] 
[   33.323809][ T6424] -> #0 (&oi->ip_alloc_sem){+.+.}-{3:3}:
[   33.325486][ T6424]        __lock_acquire+0x33f8/0x77c8
[   33.326642][ T6424]        lock_acquire+0x240/0x728
[   33.327682][ T6424]        down_write+0x50/0xc0
[   33.328624][ T6424]        ocfs2_try_remove_refcount_tree+0xb4/0x2f0
[   33.329933][ T6424]        ocfs2_truncate_file+0xd08/0x1534
[   33.331110][ T6424]        ocfs2_setattr+0x1328/0x19e8
[   33.332241][ T6424]        notify_change+0x9f0/0xca0
[   33.333341][ T6424]        do_truncate+0x1c0/0x28c
[   33.334412][ T6424]        path_openat+0x2494/0x2b14
[   33.335519][ T6424]        do_filp_open+0x1bc/0x3cc
[   33.336559][ T6424]        do_sys_openat2+0x124/0x1b8
[   33.337718][ T6424]        __arm64_sys_openat+0x1f0/0x240
[   33.338944][ T6424]        invoke_syscall+0x98/0x2b8
[   33.339951][ T6424]        el0_svc_common+0x130/0x23c
[   33.341122][ T6424]        do_el0_svc+0x48/0x58
[   33.342114][ T6424]        el0_svc+0x54/0x168
[   33.343067][ T6424]        el0t_64_sync_handler+0x84/0x108
[   33.344289][ T6424]        el0t_64_sync+0x198/0x19c
[   33.345432][ T6424] 
[   33.345432][ T6424] other info that might help us debug this:
[   33.345432][ T6424] 
[   33.347896][ T6424] Chain exists of:
[   33.347896][ T6424]   &oi->ip_alloc_sem --> jbd2_handle --> &oi->ip_xattr_sem
[   33.347896][ T6424] 
[   33.350748][ T6424]  Possible unsafe locking scenario:
[   33.350748][ T6424] 
[   33.352326][ T6424]        CPU0                    CPU1
[   33.353466][ T6424]        ----                    ----
[   33.354551][ T6424]   lock(&oi->ip_xattr_sem);
[   33.355613][ T6424]                                lock(jbd2_handle);
[   33.357110][ T6424]                                lock(&oi->ip_xattr_sem);
[   33.358686][ T6424]   lock(&oi->ip_alloc_sem);
[   33.359681][ T6424] 
[   33.359681][ T6424]  *** DEADLOCK ***
[   33.359681][ T6424] 
[   33.361430][ T6424] 3 locks held by syz-executor366/6424:
[   33.362626][ T6424]  #0: ffff0000c5bc0420 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c
[   33.364526][ T6424]  #1: ffff0000dff5c2c0 (&sb->s_type->i_mutex_key#16){+.+.}-{3:3}, at: do_truncate+0x1ac/0x28c
[   33.366914][ T6424]  #2: ffff0000dff5bff8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa8/0x2f0
[   33.369335][ T6424] 
[   33.369335][ T6424] stack backtrace:
[   33.370719][ T6424] CPU: 1 UID: 0 PID: 6424 Comm: syz-executor366 Not tainted 6.12.0-syzkaller-g7b1d1d4cfac0 #0
[   33.372905][ T6424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   33.375179][ T6424] Call trace:
[   33.375904][ T6424]  show_stack+0x2c/0x3c (C)
[   33.376817][ T6424]  dump_stack_lvl+0xe4/0x150
[   33.377878][ T6424]  dump_stack+0x1c/0x28
[   33.378783][ T6424]  print_circular_bug+0x154/0x1c0
[   33.379993][ T6424]  check_noncircular+0x310/0x404
[   33.381073][ T6424]  __lock_acquire+0x33f8/0x77c8
[   33.382107][ T6424]  lock_acquire+0x240/0x728
[   33.383070][ T6424]  down_write+0x50/0xc0
[   33.383938][ T6424]  ocfs2_try_remove_refcount_tree+0xb4/0x2f0
[   33.385161][ T6424]  ocfs2_truncate_file+0xd08/0x1534
[   33.386289][ T6424]  ocfs2_setattr+0x1328/0x19e8
[   33.387418][ T6424]  notify_change+0x9f0/0xca0
[   33.388471][ T6424]  do_truncate+0x1c0/0x28c
[   33.389374][ T6424]  path_openat+0x2494/0x2b14
[   33.390383][ T6424]  do_filp_open+0x1bc/0x3cc
[   33.391383][ T6424]  do_sys_openat2+0x124/0x1b8
[   33.392385][ T6424]  __arm64_sys_openat+0x1f0/0x240
[   33.393605][ T6424]  invoke_syscall+0x98/0x2b8
[   33.394523][ T6424]  el0_svc_common+0x130/0x23c
[   33.395524][ T6424]  do_el0_svc+0x48/0x58
[   33.396411][ T6424]  el0_svc+0x54/0x168
[   33.397254][ T6424]  el0t_64_sync_handler+0x84/0x108
[   33.398344][ T6424]  el0t_64_sync+0x198/0x19c