Warning: Permanently added '10.128.1.145' (ED25519) to the list of known hosts. 2025/07/26 23:49:46 ignoring optional flag "sandboxArg"="0" 2025/07/26 23:49:47 parsed 1 programs [ 87.972842][ T5793] cgroup: Unknown subsys name 'net' [ 88.113994][ T5793] cgroup: Unknown subsys name 'rlimit' [ 89.762546][ T5793] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 92.047865][ T9] cfg80211: failed to load regulatory.db [ 93.710907][ T5843] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 93.719658][ T5843] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 93.727463][ T5843] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 93.739743][ T5843] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 93.748791][ T5843] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 93.757077][ T5843] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.644435][ T5855] chnl_net:caif_netlink_parms(): no params data found [ 94.740664][ T5855] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.748538][ T5855] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.755917][ T5855] bridge_slave_0: entered allmulticast mode [ 94.763077][ T5855] bridge_slave_0: entered promiscuous mode [ 94.774220][ T5855] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.782687][ T5855] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.789982][ T5855] bridge_slave_1: entered allmulticast mode [ 94.797596][ T5855] bridge_slave_1: entered promiscuous mode [ 94.835699][ T5855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 94.848289][ T5855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 94.898133][ T5855] team0: Port device team_slave_0 added [ 94.907572][ T5855] team0: Port device team_slave_1 added [ 94.945533][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 94.952543][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 94.978971][ T5855] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 94.993479][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 95.000770][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 95.027666][ T5855] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 95.093502][ T5855] hsr_slave_0: entered promiscuous mode [ 95.101987][ T5855] hsr_slave_1: entered promiscuous mode [ 95.260185][ T5855] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 95.279463][ T5855] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 95.289875][ T5855] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 95.300350][ T5855] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 95.341479][ T5855] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.349103][ T5855] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.357284][ T5855] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.364423][ T5855] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.431062][ T5855] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.457526][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.466349][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.490040][ T5855] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.512899][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.520099][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.533161][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.540371][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.787680][ T5855] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.831249][ T5855] veth0_vlan: entered promiscuous mode [ 95.843291][ T5855] veth1_vlan: entered promiscuous mode [ 95.873604][ T5855] veth0_macvtap: entered promiscuous mode [ 95.883947][ T5855] veth1_macvtap: entered promiscuous mode [ 95.903535][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.918279][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.930392][ T5855] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.939686][ T5855] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.949719][ T5855] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.958523][ T5855] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.086486][ T5855] syz-executor (5855) used greatest stack depth: 20552 bytes left [ 96.119905][ T42] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.603112][ T1108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.611795][ T1108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.643377][ T1108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.651552][ T1108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/07/26 23:49:59 executed programs: 0 [ 97.218642][ T5103] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 97.227579][ T5103] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 97.239073][ T5103] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 97.247444][ T5103] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 97.256971][ T5103] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 97.264623][ T5103] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 97.443354][ T5897] chnl_net:caif_netlink_parms(): no params data found [ 97.520448][ T5897] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.527878][ T5897] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.535145][ T5897] bridge_slave_0: entered allmulticast mode [ 97.542144][ T5897] bridge_slave_0: entered promiscuous mode [ 97.551531][ T5897] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.559053][ T5897] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.566920][ T5897] bridge_slave_1: entered allmulticast mode [ 97.573908][ T5897] bridge_slave_1: entered promiscuous mode [ 97.608632][ T5897] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.622292][ T5897] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.662069][ T5897] team0: Port device team_slave_0 added [ 97.671585][ T5897] team0: Port device team_slave_1 added [ 97.701014][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.708370][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.735182][ T5897] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.754576][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.761948][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.788357][ T5897] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.839750][ T5897] hsr_slave_0: entered promiscuous mode [ 97.847038][ T5897] hsr_slave_1: entered promiscuous mode [ 97.853250][ T5897] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.861578][ T5897] Cannot create hsr debugfs directory [ 98.840321][ T42] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.316259][ T5103] Bluetooth: hci0: command tx timeout [ 101.087852][ T42] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.172513][ T42] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.399306][ T5103] Bluetooth: hci0: command tx timeout [ 102.026681][ T42] hsr_slave_0: left promiscuous mode [ 102.033431][ T42] hsr_slave_1: left promiscuous mode [ 102.041054][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 102.048967][ T42] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 102.060345][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 102.068441][ T42] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 102.079163][ T42] bridge_slave_1: left allmulticast mode [ 102.084857][ T42] bridge_slave_1: left promiscuous mode [ 102.092090][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.108750][ T42] bridge_slave_0: left allmulticast mode [ 102.114460][ T42] bridge_slave_0: left promiscuous mode [ 102.123434][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.154600][ T42] veth1_macvtap: left promiscuous mode [ 102.161017][ T42] veth0_macvtap: left promiscuous mode [ 102.167148][ T42] veth1_vlan: left promiscuous mode [ 102.172717][ T42] veth0_vlan: left promiscuous mode [ 102.629354][ T42] team0 (unregistering): Port device team_slave_1 removed [ 102.662917][ T42] team0 (unregistering): Port device team_slave_0 removed [ 102.699504][ T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 102.733319][ T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 103.063386][ T42] bond0 (unregistering): Released all slaves [ 103.172091][ T5897] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 103.183632][ T5897] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 103.196524][ T5897] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 103.207770][ T5897] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 103.316687][ T5897] 8021q: adding VLAN 0 to HW filter on device bond0 [ 103.350903][ T5897] 8021q: adding VLAN 0 to HW filter on device team0 [ 103.366962][ T1117] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.374116][ T1117] bridge0: port 1(bridge_slave_0) entered forwarding state [ 103.390357][ T1131] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.397572][ T1131] bridge0: port 2(bridge_slave_1) entered forwarding state [ 103.448957][ T5897] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 103.478011][ T5103] Bluetooth: hci0: command tx timeout [ 103.683242][ T5897] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.727577][ T5897] veth0_vlan: entered promiscuous mode [ 103.740437][ T5897] veth1_vlan: entered promiscuous mode [ 103.773071][ T5897] veth0_macvtap: entered promiscuous mode [ 103.783690][ T5897] veth1_macvtap: entered promiscuous mode [ 103.819592][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 103.834713][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 103.851406][ T5897] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.861686][ T5897] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.871732][ T5897] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.880685][ T5897] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.984545][ T1131] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.997991][ T1131] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.047070][ T1131] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.055602][ T1131] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/07/26 23:50:06 executed programs: 2 [ 104.138121][ T5945] syz.0.16[5945]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 104.403352][ T5945] loop0: detected capacity change from 0 to 32768 [ 104.411634][ T5945] ======================================================= [ 104.411634][ T5945] WARNING: The mand mount option has been deprecated and [ 104.411634][ T5945] and is ignored by this kernel. Remove the mand [ 104.411634][ T5945] option from the mount to silence this warning. [ 104.411634][ T5945] ======================================================= [ 104.517196][ T5945] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 105.397286][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 105.555442][ T5103] Bluetooth: hci0: command tx timeout [ 105.739907][ T5948] loop0: detected capacity change from 0 to 32768 [ 105.761060][ T5948] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 106.453575][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 106.772700][ T5951] loop0: detected capacity change from 0 to 32768 [ 106.792605][ T5951] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 107.475555][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 107.812747][ T5954] loop0: detected capacity change from 0 to 32768 [ 107.842432][ T5954] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 108.554430][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 108.886201][ T5957] loop0: detected capacity change from 0 to 32768 [ 108.912554][ T5957] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. 2025/07/26 23:50:11 executed programs: 7 [ 109.627024][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 109.962772][ T5960] loop0: detected capacity change from 0 to 32768 [ 109.985167][ T5960] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 110.692041][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 111.018365][ T5963] loop0: detected capacity change from 0 to 32768 [ 111.051284][ T5963] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 111.764183][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 112.104504][ T5966] loop0: detected capacity change from 0 to 32768 [ 112.133330][ T5966] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 112.846850][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 113.180272][ T5969] loop0: detected capacity change from 0 to 32768 [ 113.203349][ T5969] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 113.909137][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 114.243274][ T5972] loop0: detected capacity change from 0 to 32768 [ 114.273948][ T5972] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. 2025/07/26 23:50:16 executed programs: 12 [ 114.987751][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 115.321916][ T5975] loop0: detected capacity change from 0 to 32768 [ 115.340547][ T5975] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 116.027408][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 116.350199][ T5978] loop0: detected capacity change from 0 to 32768 [ 116.381679][ T5978] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 117.102587][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 117.427319][ T5982] loop0: detected capacity change from 0 to 32768 [ 117.453845][ T5982] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 118.175439][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 118.513021][ T5986] loop0: detected capacity change from 0 to 32768 [ 118.531664][ T5986] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 119.222038][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 119.544173][ T5992] loop0: detected capacity change from 0 to 32768 [ 119.564544][ T5992] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. 2025/07/26 23:50:21 executed programs: 17 [ 120.252656][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 120.585986][ T5996] loop0: detected capacity change from 0 to 32768 [ 120.617276][ T5996] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 121.329179][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 121.656400][ T5999] loop0: detected capacity change from 0 to 32768 [ 121.683175][ T5999] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 122.409908][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 122.737574][ T6002] loop0: detected capacity change from 0 to 32768 [ 122.780344][ T6002] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 123.478470][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 123.811176][ T6005] loop0: detected capacity change from 0 to 32768 [ 123.843590][ T6005] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 123.859865][ T6005] [ 123.862261][ T6005] ====================================================== [ 123.869305][ T6005] WARNING: possible circular locking dependency detected [ 123.876370][ T6005] 6.6.100-syzkaller #0 Not tainted [ 123.881512][ T6005] ------------------------------------------------------ [ 123.888550][ T6005] syz.0.34/6005 is trying to acquire lock: [ 123.894402][ T6005] ffff8880605b42d8 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}, at: ocfs2_reserve_local_alloc_bits+0x126/0x24b0 [ 123.907972][ T6005] [ 123.907972][ T6005] but task is already holding lock: [ 123.915368][ T6005] ffff8880605b5be0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_write_begin+0x199/0x310 [ 123.925962][ T6005] [ 123.925962][ T6005] which lock already depends on the new lock. [ 123.925962][ T6005] [ 123.936400][ T6005] [ 123.936400][ T6005] the existing dependency chain (in reverse order) is: [ 123.945551][ T6005] [ 123.945551][ T6005] -> #5 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}: [ 123.954387][ T6005] down_write+0x97/0x1f0 [ 123.959189][ T6005] ocfs2_try_remove_refcount_tree+0xb7/0x320 [ 123.965706][ T6005] ocfs2_xattr_set+0x596/0x11f0 [ 123.971108][ T6005] ocfs2_set_acl+0x4e1/0x590 [ 123.976237][ T6005] ocfs2_iop_set_acl+0x1ab/0x2a0 [ 123.981710][ T6005] vfs_set_acl+0x803/0xa60 [ 123.986665][ T6005] path_setxattr+0x39f/0x550 [ 123.991790][ T6005] __x64_sys_setxattr+0xbb/0xd0 [ 123.997175][ T6005] do_syscall_64+0x55/0xb0 [ 124.002132][ T6005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 124.008583][ T6005] [ 124.008583][ T6005] -> #4 (&oi->ip_xattr_sem){++++}-{3:3}: [ 124.016429][ T6005] down_read+0x46/0x2e0 [ 124.021124][ T6005] ocfs2_init_acl+0x2fa/0x720 [ 124.026347][ T6005] ocfs2_mknod+0x12e5/0x20f0 [ 124.031472][ T6005] ocfs2_create+0x196/0x410 [ 124.036518][ T6005] path_openat+0x1277/0x3190 [ 124.041671][ T6005] do_filp_open+0x1c5/0x3d0 [ 124.046724][ T6005] do_sys_openat2+0x12c/0x1c0 [ 124.051940][ T6005] __x64_sys_openat+0x139/0x160 [ 124.057328][ T6005] do_syscall_64+0x55/0xb0 [ 124.062291][ T6005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 124.068731][ T6005] [ 124.068731][ T6005] -> #3 (jbd2_handle){++++}-{0:0}: [ 124.076042][ T6005] start_this_handle+0x1e9d/0x20c0 [ 124.081681][ T6005] jbd2__journal_start+0x2bb/0x5b0 [ 124.087321][ T6005] jbd2_journal_start+0x2a/0x40 [ 124.092715][ T6005] ocfs2_start_trans+0x376/0x6c0 [ 124.098227][ T6005] ocfs2_mknod+0xe47/0x20f0 [ 124.103261][ T6005] ocfs2_create+0x196/0x410 [ 124.108297][ T6005] path_openat+0x1277/0x3190 [ 124.113429][ T6005] do_filp_open+0x1c5/0x3d0 [ 124.118472][ T6005] do_sys_openat2+0x12c/0x1c0 [ 124.123681][ T6005] __x64_sys_openat+0x139/0x160 [ 124.129061][ T6005] do_syscall_64+0x55/0xb0 [ 124.134038][ T6005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 124.140489][ T6005] [ 124.140489][ T6005] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 124.149020][ T6005] down_read+0x46/0x2e0 [ 124.153710][ T6005] ocfs2_start_trans+0x36a/0x6c0 [ 124.159186][ T6005] ocfs2_mknod+0xe47/0x20f0 [ 124.164216][ T6005] ocfs2_create+0x196/0x410 [ 124.169249][ T6005] path_openat+0x1277/0x3190 [ 124.174373][ T6005] do_filp_open+0x1c5/0x3d0 [ 124.179415][ T6005] do_sys_openat2+0x12c/0x1c0 [ 124.184626][ T6005] __x64_sys_openat+0x139/0x160 [ 124.190009][ T6005] do_syscall_64+0x55/0xb0 [ 124.194955][ T6005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 124.201404][ T6005] [ 124.201404][ T6005] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 124.208894][ T6005] ocfs2_start_trans+0x26b/0x6c0 [ 124.214368][ T6005] ocfs2_mknod+0xe47/0x20f0 [ 124.219401][ T6005] ocfs2_create+0x196/0x410 [ 124.224433][ T6005] path_openat+0x1277/0x3190 [ 124.229646][ T6005] do_filp_open+0x1c5/0x3d0 [ 124.234685][ T6005] do_sys_openat2+0x12c/0x1c0 [ 124.239889][ T6005] __x64_sys_openat+0x139/0x160 [ 124.245273][ T6005] do_syscall_64+0x55/0xb0 [ 124.250225][ T6005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 124.256656][ T6005] [ 124.256656][ T6005] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}: [ 124.267187][ T6005] __lock_acquire+0x2ddb/0x7c80 [ 124.272598][ T6005] lock_acquire+0x197/0x410 [ 124.277630][ T6005] down_write+0x97/0x1f0 [ 124.282406][ T6005] ocfs2_reserve_local_alloc_bits+0x126/0x24b0 [ 124.289090][ T6005] ocfs2_reserve_clusters_with_limit+0x1bf/0xba0 [ 124.295972][ T6005] ocfs2_lock_allocators+0x2fb/0x5b0 [ 124.301816][ T6005] ocfs2_write_begin_nolock+0x225a/0x4190 [ 124.308102][ T6005] ocfs2_write_begin+0x1bc/0x310 [ 124.313593][ T6005] generic_perform_write+0x2fb/0x5b0 [ 124.319453][ T6005] ocfs2_file_write_iter+0x1582/0x1d00 [ 124.325447][ T6005] vfs_write+0x43b/0x940 [ 124.330220][ T6005] ksys_write+0x147/0x250 [ 124.335166][ T6005] do_syscall_64+0x55/0xb0 [ 124.340132][ T6005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 124.346565][ T6005] [ 124.346565][ T6005] other info that might help us debug this: [ 124.346565][ T6005] [ 124.356829][ T6005] Chain exists of: [ 124.356829][ T6005] &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4 --> &oi->ip_xattr_sem --> &ocfs2_file_ip_alloc_sem_key [ 124.356829][ T6005] [ 124.374052][ T6005] Possible unsafe locking scenario: [ 124.374052][ T6005] [ 124.381515][ T6005] CPU0 CPU1 [ 124.386882][ T6005] ---- ---- [ 124.392247][ T6005] lock(&ocfs2_file_ip_alloc_sem_key); [ 124.397801][ T6005] lock(&oi->ip_xattr_sem); [ 124.404924][ T6005] lock(&ocfs2_file_ip_alloc_sem_key); [ 124.413000][ T6005] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4); [ 124.420302][ T6005] [ 124.420302][ T6005] *** DEADLOCK *** [ 124.420302][ T6005] [ 124.428456][ T6005] 3 locks held by syz.0.34/6005: [ 124.433394][ T6005] #0: ffff888075898418 (sb_writers#13){.+.+}-{0:0}, at: vfs_write+0x20e/0x940 [ 124.442387][ T6005] #1: ffff8880605b5f58 (&sb->s_type->i_mutex_key#20){+.+.}-{3:3}, at: ocfs2_file_write_iter+0x40b/0x1d00 [ 124.453720][ T6005] #2: ffff8880605b5be0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_write_begin+0x199/0x310 [ 124.464700][ T6005] [ 124.464700][ T6005] stack backtrace: [ 124.470604][ T6005] CPU: 1 PID: 6005 Comm: syz.0.34 Not tainted 6.6.100-syzkaller #0 [ 124.478503][ T6005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 124.488597][ T6005] Call Trace: [ 124.491884][ T6005] [ 124.494828][ T6005] dump_stack_lvl+0x16c/0x230 [ 124.499526][ T6005] ? load_image+0x3b0/0x3b0 [ 124.504045][ T6005] ? show_regs_print_info+0x20/0x20 [ 124.509258][ T6005] ? print_circular_bug+0x12b/0x1a0 [ 124.514476][ T6005] check_noncircular+0x2bd/0x3c0 [ 124.519428][ T6005] ? print_deadlock_bug+0x5d0/0x5d0 [ 124.524639][ T6005] ? lockdep_lock+0xe0/0x220 [ 124.529242][ T6005] ? _find_first_zero_bit+0xd3/0x100 [ 124.534545][ T6005] __lock_acquire+0x2ddb/0x7c80 [ 124.539430][ T6005] ? ocfs2_get_system_file_inode+0x1e3/0x7b0 [ 124.545436][ T6005] ? __lock_acquire+0x7c80/0x7c80 [ 124.550484][ T6005] ? verify_lock_unused+0x140/0x140 [ 124.555706][ T6005] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 124.561362][ T6005] ? do_raw_spin_lock+0x121/0x2c0 [ 124.566403][ T6005] ? mutex_unlock+0x10/0x10 [ 124.570921][ T6005] lock_acquire+0x197/0x410 [ 124.575526][ T6005] ? ocfs2_reserve_local_alloc_bits+0x126/0x24b0 [ 124.581868][ T6005] ? ocfs2_get_system_file_inode+0x1f1/0x7b0 [ 124.587890][ T6005] ? __might_sleep+0xe0/0xe0 [ 124.592491][ T6005] ? read_lock_is_recursive+0x20/0x20 [ 124.597874][ T6005] ? ocfs2_fast_symlink_read_folio+0x530/0x530 [ 124.604124][ T6005] ? lockdep_unlock+0x137/0x2d0 [ 124.608985][ T6005] ? lockdep_lock+0x220/0x220 [ 124.613673][ T6005] down_write+0x97/0x1f0 [ 124.617932][ T6005] ? ocfs2_reserve_local_alloc_bits+0x126/0x24b0 [ 124.624268][ T6005] ? down_read_killable+0x340/0x340 [ 124.629486][ T6005] ? __lock_acquire+0x2b6b/0x7c80 [ 124.634608][ T6005] ? kernel_text_address+0xa0/0xd0 [ 124.639743][ T6005] ocfs2_reserve_local_alloc_bits+0x126/0x24b0 [ 124.645912][ T6005] ? stack_trace_save+0x9c/0xe0 [ 124.650776][ T6005] ? verify_lock_unused+0x140/0x140 [ 124.655991][ T6005] ? ocfs2_complete_local_alloc_recovery+0x540/0x540 [ 124.662678][ T6005] ? kasan_set_track+0x5f/0x70 [ 124.667468][ T6005] ? ocfs2_file_write_iter+0x1582/0x1d00 [ 124.673154][ T6005] ? vfs_write+0x43b/0x940 [ 124.677610][ T6005] ? ksys_write+0x147/0x250 [ 124.682135][ T6005] ? do_syscall_64+0x55/0xb0 [ 124.686770][ T6005] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 124.692884][ T6005] ? ocfs2_alloc_should_use_local+0x13e/0x2d0 [ 124.698971][ T6005] ? __lock_acquire+0x7c80/0x7c80 [ 124.704009][ T6005] ? do_raw_spin_lock+0x121/0x2c0 [ 124.709141][ T6005] ? __rwlock_init+0x150/0x150 [ 124.714002][ T6005] ? do_raw_spin_unlock+0x121/0x230 [ 124.719211][ T6005] ? _raw_spin_unlock+0x28/0x40 [ 124.724076][ T6005] ? ocfs2_alloc_should_use_local+0x13e/0x2d0 [ 124.730148][ T6005] ? ocfs2_reserve_clusters_with_limit+0x16c/0xba0 [ 124.736668][ T6005] ocfs2_reserve_clusters_with_limit+0x1bf/0xba0 [ 124.743015][ T6005] ? ocfs2_reserve_clusters+0x30/0x30 [ 124.748405][ T6005] ? ocfs2_read_inode_block+0x11e/0x180 [ 124.753968][ T6005] ? rcu_is_watching+0x15/0xb0 [ 124.758748][ T6005] ? ocfs2_num_free_extents+0x2e2/0x5a0 [ 124.764306][ T6005] ? ocfs2_validate_extent_block+0x550/0x550 [ 124.770337][ T6005] ? ocfs2_get_clusters+0x2b4/0xa70 [ 124.775558][ T6005] ocfs2_lock_allocators+0x2fb/0x5b0 [ 124.780866][ T6005] ? _ocfs2_clear_bit+0x40/0x40 [ 124.785733][ T6005] ? do_raw_spin_lock+0x121/0x2c0 [ 124.790770][ T6005] ? __rwlock_init+0x150/0x150 [ 124.795549][ T6005] ? ocfs2_write_begin_nolock+0xf3a/0x4190 [ 124.801370][ T6005] ocfs2_write_begin_nolock+0x225a/0x4190 [ 124.807121][ T6005] ? ocfs2_size_fits_inline_data+0x90/0x90 [ 124.812946][ T6005] ? verify_lock_unused+0x140/0x140 [ 124.818163][ T6005] ? ocfs2_initialize_journal_triggers+0x540/0x540 [ 124.824697][ T6005] ? __might_sleep+0xe0/0xe0 [ 124.829470][ T6005] ? do_raw_spin_unlock+0x121/0x230 [ 124.834681][ T6005] ? read_lock_is_recursive+0x20/0x20 [ 124.840083][ T6005] ? mark_lock+0x94/0x320 [ 124.844423][ T6005] ? down_write+0x162/0x1f0 [ 124.848941][ T6005] ? down_read_killable+0x340/0x340 [ 124.854167][ T6005] ? lock_chain_count+0x20/0x20 [ 124.859030][ T6005] ocfs2_write_begin+0x1bc/0x310 [ 124.863983][ T6005] ? ktime_get_coarse_real_ts64+0x3a/0x120 [ 124.869824][ T6005] ? ocfs2_readahead+0x1a0/0x1a0 [ 124.874781][ T6005] ? fault_in_readable+0xef/0x160 [ 124.879815][ T6005] ? fault_in_iov_iter_readable+0xbf/0x2e0 [ 124.885635][ T6005] generic_perform_write+0x2fb/0x5b0 [ 124.890935][ T6005] ? generic_file_direct_write+0x3e0/0x3e0 [ 124.896769][ T6005] ? __generic_file_write_iter+0xf7/0x230 [ 124.902543][ T6005] ? ocfs2_file_write_iter+0x1559/0x1d00 [ 124.908211][ T6005] ocfs2_file_write_iter+0x1582/0x1d00 [ 124.913694][ T6005] ? ocfs2_file_read_iter+0xa30/0xa30 [ 124.919086][ T6005] ? rcu_read_lock_any_held+0xb4/0x120 [ 124.924555][ T6005] ? rcu_read_lock_bh_held+0xe0/0xe0 [ 124.929857][ T6005] vfs_write+0x43b/0x940 [ 124.934115][ T6005] ? file_end_write+0x250/0x250 [ 124.938979][ T6005] ? __ia32_sys_get_robust_list+0x90/0x90 [ 124.944715][ T6005] ? __fdget_pos+0x2ba/0x330 [ 124.949320][ T6005] ksys_write+0x147/0x250 [ 124.953665][ T6005] ? __ia32_sys_read+0x90/0x90 [ 124.958446][ T6005] ? lockdep_hardirqs_on+0x98/0x150 [ 124.963660][ T6005] do_syscall_64+0x55/0xb0 [ 124.968084][ T6005] ? clear_bhb_loop+0x40/0x90 [ 124.972769][ T6005] ? clear_bhb_loop+0x40/0x90 [ 124.977451][ T6005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 124.983357][ T6005] RIP: 0033:0x7f63aab8e9a9 [ 124.987794][ T6005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.007408][ T6005] RSP: 002b:00007ffe3391c908 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 125.015828][ T6005] RAX: ffffffffffffffda RBX: 00007f63aadb5fa0 RCX: 00007f63aab8e9a9 [ 125.023804][ T6005] RDX: 000000000208e24b RSI: 0000200000000000 RDI: 0000000000000004 [ 125.031798][ T6005] RBP: 00007f63aac10d69 R08: 0000000000000000 R09: 0000000000000000 [ 125.039794][ T6005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.047787][ T6005] R13: 00007f63aadb5fa0 R14: 00007f63aadb5fa0 R15: 0000000000000003 [ 125.055780][ T6005] 2025/07/26 23:50:27 executed programs: 21 [ 125.552600][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 125.796380][ T6008] loop0: detected capacity change from 0 to 32768 [ 125.820125][ T6008] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 126.344082][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 126.582706][ T6011] loop0: detected capacity change from 0 to 32768 [ 126.616256][ T6011] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 127.133680][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 127.373862][ T6014] loop0: detected capacity change from 0 to 32768 [ 127.398111][ T6014] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 127.915919][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 128.151556][ T6017] loop0: detected capacity change from 0 to 32768 [ 128.171740][ T6017] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 128.694001][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 128.930523][ T6020] loop0: detected capacity change from 0 to 32768 [ 128.952068][ T6020] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 129.476468][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 129.713678][ T6023] loop0: detected capacity change from 0 to 32768 [ 129.739880][ T6023] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 130.258065][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 130.502090][ T6026] loop0: detected capacity change from 0 to 32768 [ 130.528698][ T6026] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. 2025/07/26 23:50:32 executed programs: 28 [ 131.035490][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 131.274759][ T6029] loop0: detected capacity change from 0 to 32768 [ 131.297407][ T6029] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 131.831049][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 132.068790][ T6032] loop0: detected capacity change from 0 to 32768 [ 132.090329][ T6032] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 132.614715][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 132.861735][ T6035] loop0: detected capacity change from 0 to 32768 [ 132.882275][ T6035] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 132.999993][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.006451][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.407209][ T5897] ocfs2: Unmounting device (7,0) on (node local) [ 133.640561][ T6038] loop0: detected capacity change from 0 to 32768 [ 133.660368][ T6038] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.