Warning: Permanently added '10.128.1.136' (ED25519) to the list of known hosts.
1970/01/01 00:00:38 ignoring optional flag "sandboxArg"="0"
1970/01/01 00:00:39 parsed 1 programs
[   42.580033][ T6532] cgroup: Unknown subsys name 'net'
[   42.727357][ T6532] cgroup: Unknown subsys name 'cpuset'
[   42.732117][ T6532] cgroup: Unknown subsys name 'rlimit'
[   42.931241][ T6532] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SS
[   60.010111][ T6547] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   60.769165][ T6568] chnl_net:caif_netlink_parms(): no params data found
[   60.814936][ T6568] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.815633][ T6568] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.815754][ T6568] bridge_slave_0: entered allmulticast mode
[   60.816620][ T6568] bridge_slave_0: entered promiscuous mode
[   60.818552][ T6568] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.818613][ T6568] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.818701][ T6568] bridge_slave_1: entered allmulticast mode
[   60.819744][ T6568] bridge_slave_1: entered promiscuous mode
[   60.875637][ T6568] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.877717][ T6568] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.895625][ T6568] team0: Port device team_slave_0 added
[   60.897872][ T6568] team0: Port device team_slave_1 added
[   60.910144][ T6568] batman_adv: batadv0: Adding interface: batadv_slave_0
[   60.910194][ T6568] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.910225][ T6568] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   60.911513][ T6568] batman_adv: batadv0: Adding interface: batadv_slave_1
[   60.911539][ T6568] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.911568][ T6568] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.945507][ T6568] hsr_slave_0: entered promiscuous mode
[   60.947713][ T6568] hsr_slave_1: entered promiscuous mode
[   61.112979][ T6568] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   61.117347][ T6568] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   61.121204][ T6568] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   61.126266][ T6568] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   61.146490][ T6568] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.146605][ T6568] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.146927][ T6568] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.146989][ T6568] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.178923][ T6568] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.189179][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.191602][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.200516][ T6568] 8021q: adding VLAN 0 to HW filter on device team0
[   61.208045][  T767] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.208128][  T767] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.216439][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.216522][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.312731][ T6568] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.336380][ T6568] veth0_vlan: entered promiscuous mode
[   61.339483][ T6568] veth1_vlan: entered promiscuous mode
[   61.354238][ T6568] veth0_macvtap: entered promiscuous mode
[   61.356153][ T6568] veth1_macvtap: entered promiscuous mode
[   61.364096][ T6568] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.367219][ T6568] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.368856][ T6568] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.368925][ T6568] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.368955][ T6568] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.368984][ T6568] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.807228][   T41] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.886362][   T41] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.988345][   T41] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.097961][   T41] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.748441][  T767] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.748532][  T767] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.764055][  T767] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.764113][  T767] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.862059][ T6626] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   62.862763][ T6626] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   62.863161][ T6626] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   62.863785][ T6626] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   62.864660][ T6626] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
1970/01/01 00:01:03 executed programs: 0
[   63.348899][ T6626] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   63.351103][ T6626] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   63.353289][ T6626] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   63.357051][ T6626] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   63.357642][ T6626] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   63.450315][ T6638] chnl_net:caif_netlink_parms(): no params data found
[   63.494859][ T6638] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.496157][ T6638] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.496299][ T6638] bridge_slave_0: entered allmulticast mode
[   63.497163][ T6638] bridge_slave_0: entered promiscuous mode
[   63.498652][ T6638] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.498700][ T6638] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.498833][ T6638] bridge_slave_1: entered allmulticast mode
[   63.499920][ T6638] bridge_slave_1: entered promiscuous mode
[   63.518553][ T6638] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.520274][ T6638] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.537637][ T6638] team0: Port device team_slave_0 added
[   63.539736][ T6638] team0: Port device team_slave_1 added
[   63.552847][ T6638] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.552912][ T6638] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.552946][ T6638] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.554009][ T6638] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.554034][ T6638] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.554065][ T6638] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.583093][ T6638] hsr_slave_0: entered promiscuous mode
[   63.583690][ T6638] hsr_slave_1: entered promiscuous mode
[   63.584062][ T6638] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   63.584174][ T6638] Cannot create hsr debugfs directory
[   64.745865][ T2404] ieee802154 phy0 wpan0: encryption failed: -22
[   64.746108][ T2404] ieee802154 phy1 wpan1: encryption failed: -22
[   65.064490][   T41] bridge_slave_1: left allmulticast mode
[   65.064578][   T41] bridge_slave_1: left promiscuous mode
[   65.065015][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.072146][   T41] bridge_slave_0: left allmulticast mode
[   65.072197][   T41] bridge_slave_0: left promiscuous mode
[   65.072644][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.385214][ T6093] Bluetooth: hci0: command tx timeout
[   66.676815][   T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   66.717082][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   66.766111][   T41] bond0 (unregistering): Released all slaves
[   66.852428][   T41] hsr_slave_0: left promiscuous mode
[   66.855100][   T41] hsr_slave_1: left promiscuous mode
[   66.857159][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.859705][   T41] batman_adv: batadv0: Removing interface: batadv_slave_0
[   66.862699][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   66.866503][   T41] batman_adv: batadv0: Removing interface: batadv_slave_1
[   66.877688][   T41] veth1_macvtap: left promiscuous mode
[   66.879465][   T41] veth0_macvtap: left promiscuous mode
[   66.881320][   T41] veth1_vlan: left promiscuous mode
[   66.882949][   T41] veth0_vlan: left promiscuous mode
[   67.464424][ T6093] Bluetooth: hci0: command tx timeout
[   68.796226][   T41] team0 (unregistering): Port device team_slave_1 removed
[   68.955823][   T41] team0 (unregistering): Port device team_slave_0 removed
[   69.544407][ T6093] Bluetooth: hci0: command tx timeout
[   69.865957][ T2311] cfg80211: failed to load regulatory.db
[   71.634419][ T6093] Bluetooth: hci0: command tx timeout
[   71.974040][ T6638] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   71.982977][ T6638] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   71.987268][ T6638] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   71.991196][ T6638] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   72.040453][ T6638] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.334130][ T6638] 8021q: adding VLAN 0 to HW filter on device team0
[   72.364295][ T4147] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.364375][ T4147] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.365313][ T4147] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.365357][ T4147] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.397284][ T6638] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   72.598928][ T6638] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.616767][ T6638] veth0_vlan: entered promiscuous mode
[   72.619694][ T6638] veth1_vlan: entered promiscuous mode
[   72.630402][ T6638] veth0_macvtap: entered promiscuous mode
[   72.632169][ T6638] veth1_macvtap: entered promiscuous mode
[   72.643232][ T6638] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.646137][ T6638] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.647531][ T6638] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.647571][ T6638] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.647600][ T6638] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.647629][ T6638] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.851839][  T767] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.851907][  T767] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.868361][  T233] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.868418][  T233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
1970/01/01 00:01:12 executed programs: 2
[   73.105089][ T6717] loop0: detected capacity change from 0 to 32768
[   73.106110][ T6717] =======================================================
[   73.106110][ T6717] WARNING: The mand mount option has been deprecated and
[   73.106110][ T6717]          and is ignored by this kernel. Remove the mand
[   73.106110][ T6717]          option from the mount to silence this warning.
[   73.106110][ T6717] =======================================================
[   73.139943][ T6717] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   73.153338][ T6717] 
[   73.154089][ T6717] ======================================================
[   73.156018][ T6717] WARNING: possible circular locking dependency detected
[   73.157848][ T6717] 6.16.0-rc6-syzkaller-gaaef6f251176 #0 Not tainted
[   73.159743][ T6717] ------------------------------------------------------
[   73.161615][ T6717] syz.0.16/6717 is trying to acquire lock:
[   73.163129][ T6717] ffff0000e3330660 (&oi->ip_alloc_sem){+.+.}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xb4/0x2d8
[   73.166042][ T6717] 
[   73.166042][ T6717] but task is already holding lock:
[   73.168040][ T6717] ffff0000e33306f8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa8/0x2d8
[   73.170900][ T6717] 
[   73.170900][ T6717] which lock already depends on the new lock.
[   73.170900][ T6717] 
[   73.173771][ T6717] 
[   73.173771][ T6717] the existing dependency chain (in reverse order) is:
[   73.176151][ T6717] 
[   73.176151][ T6717] -> #4 (&oi->ip_xattr_sem){++++}-{4:4}:
[   73.178299][ T6717]        down_write+0x50/0xc0
[   73.179528][ T6717]        ocfs2_xattr_set_handle+0x2a8/0x5e4
[   73.181117][ T6717]        ocfs2_init_security_set+0xb4/0xd8
[   73.182664][ T6717]        ocfs2_mknod+0x106c/0x1cf0
[   73.184052][ T6717]        ocfs2_create+0x190/0x474
[   73.185437][ T6717]        path_openat+0x12d8/0x2c40
[   73.187184][ T6717]        do_filp_open+0x18c/0x36c
[   73.188560][ T6717]        do_sys_openat2+0x11c/0x1b4
[   73.189946][ T6717]        __arm64_sys_openat+0x120/0x158
[   73.191465][ T6717]        invoke_syscall+0x98/0x2b8
[   73.192843][ T6717]        el0_svc_common+0x130/0x23c
[   73.194259][ T6717]        do_el0_svc+0x48/0x58
[   73.195522][ T6717]        el0_svc+0x58/0x180
[   73.196728][ T6717]        el0t_64_sync_handler+0x84/0x12c
[   73.198200][ T6717]        el0t_64_sync+0x198/0x19c
[   73.199563][ T6717] 
[   73.199563][ T6717] -> #3 (jbd2_handle){++++}-{0:0}:
[   73.201533][ T6717]        start_this_handle+0xe74/0x10dc
[   73.202962][ T6717]        jbd2__journal_start+0x288/0x51c
[   73.204477][ T6717]        jbd2_journal_start+0x3c/0x4c
[   73.205942][ T6717]        ocfs2_start_trans+0x368/0x6b0
[   73.207412][ T6717]        ocfs2_reserve_suballoc_bits+0x630/0x3b9c
[   73.209129][ T6717]        ocfs2_reserve_new_metadata_blocks+0x368/0x810
[   73.211037][ T6717]        ocfs2_mknod+0xbd8/0x1cf0
[   73.212397][ T6717]        ocfs2_create+0x190/0x474
[   73.213782][ T6717]        path_openat+0x12d8/0x2c40
[   73.215154][ T6717]        do_filp_open+0x18c/0x36c
[   73.216562][ T6717]        do_sys_openat2+0x11c/0x1b4
[   73.217980][ T6717]        __arm64_sys_openat+0x120/0x158
[   73.219424][ T6717]        invoke_syscall+0x98/0x2b8
[   73.220858][ T6717]        el0_svc_common+0x130/0x23c
[   73.222293][ T6717]        do_el0_svc+0x48/0x58
[   73.223543][ T6717]        el0_svc+0x58/0x180
[   73.224777][ T6717]        el0t_64_sync_handler+0x84/0x12c
[   73.226353][ T6717]        el0t_64_sync+0x198/0x19c
[   73.227763][ T6717] 
[   73.227763][ T6717] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}:
[   73.230161][ T6717]        down_read+0x58/0x2f8
[   73.231535][ T6717]        ocfs2_start_trans+0x35c/0x6b0
[   73.232998][ T6717]        ocfs2_reserve_suballoc_bits+0x630/0x3b9c
[   73.234729][ T6717]        ocfs2_reserve_new_metadata_blocks+0x368/0x810
[   73.236704][ T6717]        ocfs2_mknod+0xbd8/0x1cf0
[   73.238029][ T6717]        ocfs2_create+0x190/0x474
[   73.239378][ T6717]        path_openat+0x12d8/0x2c40
[   73.240802][ T6717]        do_filp_open+0x18c/0x36c
[   73.242178][ T6717]        do_sys_openat2+0x11c/0x1b4
[   73.243656][ T6717]        __arm64_sys_openat+0x120/0x158
[   73.245130][ T6717]        invoke_syscall+0x98/0x2b8
[   73.246455][ T6717]        el0_svc_common+0x130/0x23c
[   73.247870][ T6717]        do_el0_svc+0x48/0x58
[   73.249134][ T6717]        el0_svc+0x58/0x180
[   73.250306][ T6717]        el0t_64_sync_handler+0x84/0x12c
[   73.251851][ T6717]        el0t_64_sync+0x198/0x19c
[   73.253266][ T6717] 
[   73.253266][ T6717] -> #1 (sb_internal#2){.+.+}-{0:0}:
[   73.255316][ T6717]        ocfs2_start_trans+0x1f4/0x6b0
[   73.256808][ T6717]        ocfs2_truncate_file+0x5b0/0x12f4
[   73.258383][ T6717]        ocfs2_setattr+0x1148/0x17a0
[   73.259879][ T6717]        notify_change+0x9a4/0xc50
[   73.261326][ T6717]        do_truncate+0x198/0x210
[   73.262664][ T6717]        path_openat+0x25a0/0x2c40
[   73.264105][ T6717]        do_filp_open+0x18c/0x36c
[   73.265462][ T6717]        do_sys_openat2+0x11c/0x1b4
[   73.266847][ T6717]        __arm64_sys_openat+0x120/0x158
[   73.268409][ T6717]        invoke_syscall+0x98/0x2b8
[   73.269777][ T6717]        el0_svc_common+0x130/0x23c
[   73.271216][ T6717]        do_el0_svc+0x48/0x58
[   73.272472][ T6717]        el0_svc+0x58/0x180
[   73.273725][ T6717]        el0t_64_sync_handler+0x84/0x12c
[   73.275279][ T6717]        el0t_64_sync+0x198/0x19c
[   73.276656][ T6717] 
[   73.276656][ T6717] -> #0 (&oi->ip_alloc_sem){+.+.}-{4:4}:
[   73.278878][ T6717]        __lock_acquire+0x1774/0x30a4
[   73.280342][ T6717]        lock_acquire+0x14c/0x2e0
[   73.281671][ T6717]        down_write+0x50/0xc0
[   73.282965][ T6717]        ocfs2_try_remove_refcount_tree+0xb4/0x2d8
[   73.284682][ T6717]        ocfs2_truncate_file+0xc28/0x12f4
[   73.286212][ T6717]        ocfs2_setattr+0x1148/0x17a0
[   73.287639][ T6717]        notify_change+0x9a4/0xc50
[   73.288976][ T6717]        do_truncate+0x198/0x210
[   73.290316][ T6717]        path_openat+0x25a0/0x2c40
[   73.291753][ T6717]        do_filp_open+0x18c/0x36c
[   73.293121][ T6717]        do_sys_openat2+0x11c/0x1b4
[   73.294548][ T6717]        __arm64_sys_openat+0x120/0x158
[   73.296083][ T6717]        invoke_syscall+0x98/0x2b8
[   73.297459][ T6717]        el0_svc_common+0x130/0x23c
[   73.298899][ T6717]        do_el0_svc+0x48/0x58
[   73.300153][ T6717]        el0_svc+0x58/0x180
[   73.301332][ T6717]        el0t_64_sync_handler+0x84/0x12c
[   73.302810][ T6717]        el0t_64_sync+0x198/0x19c
[   73.304197][ T6717] 
[   73.304197][ T6717] other info that might help us debug this:
[   73.304197][ T6717] 
[   73.306951][ T6717] Chain exists of:
[   73.306951][ T6717]   &oi->ip_alloc_sem --> jbd2_handle --> &oi->ip_xattr_sem
[   73.306951][ T6717] 
[   73.310518][ T6717]  Possible unsafe locking scenario:
[   73.310518][ T6717] 
[   73.312541][ T6717]        CPU0                    CPU1
[   73.313976][ T6717]        ----                    ----
[   73.315428][ T6717]   lock(&oi->ip_xattr_sem);
[   73.316662][ T6717]                                lock(jbd2_handle);
[   73.318543][ T6717]                                lock(&oi->ip_xattr_sem);
[   73.320409][ T6717]   lock(&oi->ip_alloc_sem);
[   73.321704][ T6717] 
[   73.321704][ T6717]  *** DEADLOCK ***
[   73.321704][ T6717] 
[   73.323971][ T6717] 3 locks held by syz.0.16/6717:
[   73.325330][ T6717]  #0: ffff0000cbb92428 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c
[   73.327832][ T6717]  #1: ffff0000e33309c0 (&sb->s_type->i_mutex_key#20){+.+.}-{4:4}, at: do_truncate+0x164/0x210
[   73.330685][ T6717]  #2: ffff0000e33306f8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa8/0x2d8
[   73.333663][ T6717] 
[   73.333663][ T6717] stack backtrace:
[   73.335357][ T6717] CPU: 1 UID: 0 PID: 6717 Comm: syz.0.16 Not tainted 6.16.0-rc6-syzkaller-gaaef6f251176 #0 PREEMPT 
[   73.338339][ T6717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.341051][ T6717] Call trace:
[   73.341946][ T6717]  show_stack+0x2c/0x3c (C)
[   73.343182][ T6717]  __dump_stack+0x30/0x40
[   73.344403][ T6717]  dump_stack_lvl+0xd8/0x12c
[   73.345648][ T6717]  dump_stack+0x1c/0x28
[   73.346816][ T6717]  print_circular_bug+0x324/0x32c
[   73.348160][ T6717]  check_noncircular+0x154/0x174
[   73.349463][ T6717]  __lock_acquire+0x1774/0x30a4
[   73.350795][ T6717]  lock_acquire+0x14c/0x2e0
[   73.351979][ T6717]  down_write+0x50/0xc0
[   73.353073][ T6717]  ocfs2_try_remove_refcount_tree+0xb4/0x2d8
[   73.354671][ T6717]  ocfs2_truncate_file+0xc28/0x12f4
[   73.356075][ T6717]  ocfs2_setattr+0x1148/0x17a0
[   73.357337][ T6717]  notify_change+0x9a4/0xc50
[   73.358522][ T6717]  do_truncate+0x198/0x210
[   73.359721][ T6717]  path_openat+0x25a0/0x2c40
[   73.360971][ T6717]  do_filp_open+0x18c/0x36c
[   73.362249][ T6717]  do_sys_openat2+0x11c/0x1b4
[   73.363501][ T6717]  __arm64_sys_openat+0x120/0x158
[   73.364854][ T6717]  invoke_syscall+0x98/0x2b8
[   73.366100][ T6717]  el0_svc_common+0x130/0x23c
[   73.367389][ T6717]  do_el0_svc+0x48/0x58
[   73.368594][ T6717]  el0_svc+0x58/0x180
[   73.369678][ T6717]  el0t_64_sync_handler+0x84/0x12c
[   73.371162][ T6717]  el0t_64_sync+0x198/0x19c
[   73.383735][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   73.529246][ T6720] loop0: detected capacity change from 0 to 32768
[   73.541416][ T6720] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   73.558643][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   73.675652][ T6723] loop0: detected capacity change from 0 to 32768
[   73.681668][ T6723] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   73.695644][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   73.809807][ T6726] loop0: detected capacity change from 0 to 32768
[   73.819039][ T6726] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   73.836612][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   73.949672][ T6729] loop0: detected capacity change from 0 to 32768
[   73.958219][ T6729] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   73.968323][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   74.071181][ T6732] loop0: detected capacity change from 0 to 32768
[   74.078021][ T6732] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   74.087897][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   74.190734][ T6735] loop0: detected capacity change from 0 to 32768
[   74.199520][ T6735] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   74.209224][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   74.319941][ T6738] loop0: detected capacity change from 0 to 32768
[   74.328801][ T6738] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   74.338570][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   74.446487][ T6741] loop0: detected capacity change from 0 to 32768
[   74.463667][ T6741] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   74.473541][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   74.580846][ T6744] loop0: detected capacity change from 0 to 32768
[   74.591793][ T6744] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   74.602908][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   74.711085][ T6747] loop0: detected capacity change from 0 to 32768
[   74.725708][ T6747] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   74.753623][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   74.858088][ T6750] loop0: detected capacity change from 0 to 32768
[   74.867552][ T6750] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   74.889783][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   74.998260][ T6753] loop0: detected capacity change from 0 to 32768
[   75.002468][ T6753] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   75.011410][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   75.117882][ T6756] loop0: detected capacity change from 0 to 32768
[   75.138111][ T6756] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   75.149294][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   75.254763][ T6759] loop0: detected capacity change from 0 to 32768
[   75.261988][ T6759] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   75.272344][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   75.377353][ T6762] loop0: detected capacity change from 0 to 32768
[   75.388947][ T6762] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   75.415957][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   75.524967][ T6765] loop0: detected capacity change from 0 to 32768
[   75.537332][ T6765] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   75.548203][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   75.652225][ T6768] loop0: detected capacity change from 0 to 32768
[   75.669370][ T6768] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   75.678100][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   75.789101][ T6771] loop0: detected capacity change from 0 to 32768
[   75.796376][ T6771] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   75.809379][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   75.915458][ T6774] loop0: detected capacity change from 0 to 32768
[   75.936775][ T6774] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   75.947561][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   76.054924][ T6777] loop0: detected capacity change from 0 to 32768
[   76.062784][ T6777] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   76.074074][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   76.180187][ T6780] loop0: detected capacity change from 0 to 32768
[   76.197557][ T6780] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   76.206567][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   76.315728][ T6783] loop0: detected capacity change from 0 to 32768
[   76.331370][ T6783] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   76.338663][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   76.445435][ T6786] loop0: detected capacity change from 0 to 32768
[   76.456503][ T6786] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   76.464563][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   76.580278][ T6790] loop0: detected capacity change from 0 to 32768
[   76.588208][ T6790] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   76.600853][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   76.715687][ T6793] loop0: detected capacity change from 0 to 32768
[   76.725550][ T6793] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   76.738524][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   76.841349][ T6796] loop0: detected capacity change from 0 to 32768
[   76.851632][ T6796] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   76.862211][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   76.970485][ T6799] loop0: detected capacity change from 0 to 32768
[   76.990611][ T6799] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   76.998394][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   77.105155][ T6802] loop0: detected capacity change from 0 to 32768
[   77.125410][ T6802] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   77.136707][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   77.247275][ T6805] loop0: detected capacity change from 0 to 32768
[   77.257409][ T6805] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   77.266800][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   77.373413][ T6808] loop0: detected capacity change from 0 to 32768
[   77.389921][ T6808] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   77.400363][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   77.507183][ T6811] loop0: detected capacity change from 0 to 32768
[   77.518134][ T6811] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   77.526144][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   77.627873][ T6814] loop0: detected capacity change from 0 to 32768
[   77.645262][ T6814] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   77.653864][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   77.766944][ T6817] loop0: detected capacity change from 0 to 32768
[   77.779868][ T6817] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   77.792015][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   77.899037][ T6820] loop0: detected capacity change from 0 to 32768
[   77.910035][ T6820] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   77.919972][ T6638] ocfs2: Unmounting device (7,0) on (node local)
1970/01/01 00:01:17 executed programs: 37
[   78.026672][ T6824] loop0: detected capacity change from 0 to 32768
[   78.037471][ T6824] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   78.056149][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   78.158557][ T6827] loop0: detected capacity change from 0 to 32768
[   78.170874][ T6827] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   78.178784][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   78.284496][ T6830] loop0: detected capacity change from 0 to 32768
[   78.297927][ T6830] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   78.308492][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   78.425530][ T6833] loop0: detected capacity change from 0 to 32768
[   78.435708][ T6833] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   78.443298][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   78.574232][ T6836] loop0: detected capacity change from 0 to 32768
[   78.583519][ T6836] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   78.608684][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   78.712589][ T6840] loop0: detected capacity change from 0 to 32768
[   78.727209][ T6840] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   78.737096][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   78.849880][ T6844] loop0: detected capacity change from 0 to 32768
[   78.857472][ T6844] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   78.877874][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   78.983926][ T6848] loop0: detected capacity change from 0 to 32768
[   78.995719][ T6848] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.004207][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   79.108538][ T6851] loop0: detected capacity change from 0 to 32768
[   79.118264][ T6851] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.128835][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   79.231924][ T6854] loop0: detected capacity change from 0 to 32768
[   79.244221][ T6854] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.270481][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   79.375960][ T6857] loop0: detected capacity change from 0 to 32768
[   79.389168][ T6857] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.399808][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   79.505910][ T6860] loop0: detected capacity change from 0 to 32768
[   79.516356][ T6860] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.526685][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   79.628586][ T6863] loop0: detected capacity change from 0 to 32768
[   79.635794][ T6863] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.646914][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   79.747741][ T6866] loop0: detected capacity change from 0 to 32768
[   79.755306][ T6866] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.763646][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   79.869246][ T6869] loop0: detected capacity change from 0 to 32768
[   79.887865][ T6869] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.896334][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   80.001272][ T6872] loop0: detected capacity change from 0 to 32768
[   80.012466][ T6872] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   80.023840][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   80.127837][ T6875] loop0: detected capacity change from 0 to 32768
[   80.135458][ T6875] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   80.147382][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   80.253173][ T6878] loop0: detected capacity change from 0 to 32768
[   80.273438][ T6878] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   80.288514][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   80.407036][ T6881] loop0: detected capacity change from 0 to 32768
[   80.415169][ T6881] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   80.424496][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   80.541069][ T6884] loop0: detected capacity change from 0 to 32768
[   80.551877][ T6884] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   80.560441][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   80.670271][ T6887] loop0: detected capacity change from 0 to 32768
[   80.679029][ T6887] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   80.686746][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   80.795780][ T6890] loop0: detected capacity change from 0 to 32768
[   80.805455][ T6890] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   80.813250][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   80.934212][ T6893] loop0: detected capacity change from 0 to 32768
[   80.944094][ T6893] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   80.951457][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   81.057334][ T6897] loop0: detected capacity change from 0 to 32768
[   81.069240][ T6897] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   81.081733][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   81.186758][ T6900] loop0: detected capacity change from 0 to 32768
[   81.197026][ T6900] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   81.212128][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   81.325825][ T6903] loop0: detected capacity change from 0 to 32768
[   81.334076][ T6903] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   81.343555][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   81.448601][ T6906] loop0: detected capacity change from 0 to 32768
[   81.458511][ T6906] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   81.466853][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   81.569737][ T6909] loop0: detected capacity change from 0 to 32768
[   81.579197][ T6909] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   81.591153][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   81.695428][ T6912] loop0: detected capacity change from 0 to 32768
[   81.710392][ T6912] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   81.721440][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   81.825526][ T6915] loop0: detected capacity change from 0 to 32768
[   81.835004][ T6915] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   81.843468][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   81.945286][ T6918] loop0: detected capacity change from 0 to 32768
[   81.955755][ T6918] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   81.963614][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   82.065600][ T6921] loop0: detected capacity change from 0 to 32768
[   82.082687][ T6921] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   82.097366][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   82.208528][ T6924] loop0: detected capacity change from 0 to 32768
[   82.216842][ T6924] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   82.235256][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   82.336409][ T6927] loop0: detected capacity change from 0 to 32768
[   82.345298][ T6927] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   82.353096][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   82.467316][ T6930] loop0: detected capacity change from 0 to 32768
[   82.481978][ T6930] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   82.496885][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   82.600602][ T6933] loop0: detected capacity change from 0 to 32768
[   82.609177][ T6933] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   82.617746][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   82.718849][ T6936] loop0: detected capacity change from 0 to 32768
[   82.727837][ T6936] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   82.736325][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   82.842288][ T6939] loop0: detected capacity change from 0 to 32768
[   82.850239][ T6939] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   82.859866][ T6638] ocfs2: Unmounting device (7,0) on (node local)
[   82.963535][ T6942] loop0: detected capacity change from 0 to 32768
[   82.984469][ T6942] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   82.997661][ T6638] ocfs2: Unmounting device (7,0) on (node local)
1970/01/01 00:01:22 executed programs: 76
[   83.101604][ T6945] loop0: detected capacity change from 0 to 32768
[   83.118413][ T6945] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   83.126213][ T6638] ocfs2: Unmounting device (7,0) on (node local)