Warning: Permanently added '10.128.1.192' (ED25519) to the list of known hosts. 1970/01/01 00:00:29 parsed 1 programs [ 30.533013][ T6555] cgroup: Unknown subsys name 'net' [ 30.693422][ T6555] cgroup: Unknown subsys name 'cpuset' [ 30.695571][ T6555] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 30.877381][ T6555] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 38.584642][ T6564] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 38.803519][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.804991][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.813169][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.814596][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.078312][ T6591] chnl_net:caif_netlink_parms(): no params data found [ 39.102181][ T6591] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.103439][ T6591] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.104792][ T6591] bridge_slave_0: entered allmulticast mode [ 39.105286][ T6591] bridge_slave_0: entered promiscuous mode [ 39.106595][ T6591] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.106641][ T6591] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.106688][ T6591] bridge_slave_1: entered allmulticast mode [ 39.107064][ T6591] bridge_slave_1: entered promiscuous mode [ 39.141541][ T6591] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 39.142585][ T6591] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 39.150362][ T6591] team0: Port device team_slave_0 added [ 39.151051][ T6591] team0: Port device team_slave_1 added [ 39.157340][ T6591] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 39.157363][ T6591] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 39.157377][ T6591] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 39.158156][ T6591] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 39.158163][ T6591] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 39.158176][ T6591] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 39.174913][ T6591] hsr_slave_0: entered promiscuous mode [ 39.175250][ T6591] hsr_slave_1: entered promiscuous mode [ 39.217942][ T6591] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 39.220803][ T6591] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 39.223320][ T6591] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 39.225352][ T6591] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 39.233957][ T6591] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.234001][ T6591] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.234167][ T6591] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.234198][ T6591] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.293091][ T6591] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.296331][ T15] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.297746][ T15] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.301985][ T6591] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.304192][ T15] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.304237][ T15] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.307846][ T731] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.307889][ T731] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.397577][ T6591] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 39.408279][ T6591] veth0_vlan: entered promiscuous mode [ 39.409791][ T6591] veth1_vlan: entered promiscuous mode [ 39.416579][ T6591] veth0_macvtap: entered promiscuous mode [ 39.417497][ T6591] veth1_macvtap: entered promiscuous mode [ 39.420841][ T6591] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 39.421947][ T6591] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 39.424490][ T4856] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.425421][ T4856] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.425479][ T4856] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.425531][ T4856] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.770223][ T254] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 39.819904][ T254] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 39.887020][ T254] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 39.936886][ T254] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.018915][ T6640] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 40.020648][ T6640] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 40.024401][ T6640] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 40.026175][ T6640] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 40.028056][ T6640] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 1970/01/01 00:00:40 executed programs: 0 [ 40.483268][ T6144] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 40.484953][ T6144] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 40.485223][ T6144] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 40.485543][ T6144] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 40.485722][ T6144] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 40.535047][ T6665] chnl_net:caif_netlink_parms(): no params data found [ 40.555910][ T6665] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.555985][ T6665] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.556042][ T6665] bridge_slave_0: entered allmulticast mode [ 40.556460][ T6665] bridge_slave_0: entered promiscuous mode [ 40.557460][ T6665] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.557503][ T6665] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.557551][ T6665] bridge_slave_1: entered allmulticast mode [ 40.557951][ T6665] bridge_slave_1: entered promiscuous mode [ 40.567812][ T6665] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 40.568786][ T6665] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 40.576463][ T6665] team0: Port device team_slave_0 added [ 40.577157][ T6665] team0: Port device team_slave_1 added [ 40.584019][ T6665] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 40.584039][ T6665] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 40.584053][ T6665] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 40.584599][ T6665] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 40.584605][ T6665] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 40.584616][ T6665] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 40.602825][ T6665] hsr_slave_0: entered promiscuous mode [ 40.603131][ T6665] hsr_slave_1: entered promiscuous mode [ 40.603331][ T6665] debugfs: 'hsr0' already exists in 'hsr' [ 40.603373][ T6665] Cannot create hsr debugfs directory [ 42.501909][ T6640] Bluetooth: hci0: command tx timeout [ 42.991139][ T254] bridge_slave_1: left allmulticast mode [ 42.991182][ T254] bridge_slave_1: left promiscuous mode [ 42.991481][ T254] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.997273][ T254] bridge_slave_0: left allmulticast mode [ 42.997298][ T254] bridge_slave_0: left promiscuous mode [ 42.997398][ T254] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.183991][ T254] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 43.223491][ T254] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 43.282471][ T254] bond0 (unregistering): Released all slaves [ 43.347823][ T254] hsr_slave_0: left promiscuous mode [ 43.349099][ T254] hsr_slave_1: left promiscuous mode [ 43.350441][ T254] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 43.353415][ T254] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 43.355277][ T254] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 43.356705][ T254] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 43.363876][ T254] veth1_macvtap: left promiscuous mode [ 43.364861][ T254] veth0_macvtap: left promiscuous mode [ 43.366090][ T254] veth1_vlan: left promiscuous mode [ 43.366998][ T254] veth0_vlan: left promiscuous mode [ 43.477580][ T254] team0 (unregistering): Port device team_slave_1 removed [ 43.483356][ T254] team0 (unregistering): Port device team_slave_0 removed [ 43.773865][ T6665] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 43.777971][ T6665] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 43.780304][ T6665] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 43.782054][ T6665] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 43.804252][ T6665] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.809596][ T6665] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.817844][ T15] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.817887][ T15] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.821512][ T4856] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.821586][ T4856] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.837413][ T6665] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 43.917137][ T6665] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.928044][ T6665] veth0_vlan: entered promiscuous mode [ 43.930671][ T6665] veth1_vlan: entered promiscuous mode [ 43.937891][ T6665] veth0_macvtap: entered promiscuous mode [ 43.938820][ T6665] veth1_macvtap: entered promiscuous mode [ 43.943443][ T6665] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 43.944349][ T6665] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 43.947416][ T15] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.948044][ T15] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.948068][ T15] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.948084][ T15] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.970104][ T15] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 43.970127][ T15] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 43.986772][ T254] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 43.986808][ T254] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 44.094703][ T6728] loop0: detected capacity change from 0 to 32768 [ 44.096608][ T6728] ======================================================= [ 44.096608][ T6728] WARNING: The mand mount option has been deprecated and [ 44.096608][ T6728] and is ignored by this kernel. Remove the mand [ 44.096608][ T6728] option from the mount to silence this warning. [ 44.096608][ T6728] ======================================================= [ 44.128807][ T6728] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 44.135848][ T6728] overlayfs: upper fs does not support tmpfile. [ 44.138374][ T6728] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 44.140446][ T6728] [ 44.140821][ T6728] ====================================================== [ 44.141949][ T6728] WARNING: possible circular locking dependency detected [ 44.143010][ T6728] syzkaller #0 Not tainted [ 44.143691][ T6728] ------------------------------------------------------ [ 44.144797][ T6728] syz.0.17/6728 is trying to acquire lock: [ 44.145630][ T6728] ffff0000f4562640 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 44.147644][ T6728] [ 44.147644][ T6728] but task is already holding lock: [ 44.148802][ T6728] ffff0000f4565c78 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 44.150266][ T6728] [ 44.150266][ T6728] which lock already depends on the new lock. [ 44.150266][ T6728] [ 44.151770][ T6728] [ 44.151770][ T6728] the existing dependency chain (in reverse order) is: [ 44.153085][ T6728] [ 44.153085][ T6728] -> #4 (&oi->ip_xattr_sem){+.+.}-{4:4}: [ 44.154180][ T6728] down_write+0x50/0xc0 [ 44.154912][ T6728] ocfs2_xattr_set_handle+0x2a8/0x5e4 [ 44.155798][ T6728] ocfs2_init_security_set+0xb4/0xd8 [ 44.156678][ T6728] ocfs2_mknod+0x106c/0x1cf0 [ 44.157460][ T6728] ocfs2_mkdir+0x190/0x474 [ 44.158231][ T6728] vfs_mkdir+0x284/0x424 [ 44.158903][ T6728] do_mkdirat+0x1f8/0x4c8 [ 44.159644][ T6728] __arm64_sys_mkdirat+0x8c/0xa4 [ 44.160496][ T6728] invoke_syscall+0x98/0x254 [ 44.161241][ T6728] el0_svc_common+0xe8/0x23c [ 44.161999][ T6728] do_el0_svc+0x48/0x58 [ 44.162631][ T6728] el0_svc+0x5c/0x254 [ 44.163260][ T6728] el0t_64_sync_handler+0x84/0x12c [ 44.164101][ T6728] el0t_64_sync+0x198/0x19c [ 44.164854][ T6728] [ 44.164854][ T6728] -> #3 (jbd2_handle){++++}-{0:0}: [ 44.165921][ T6728] start_this_handle+0xe74/0x10dc [ 44.166743][ T6728] jbd2__journal_start+0x288/0x51c [ 44.167557][ T6728] jbd2_journal_start+0x3c/0x4c [ 44.168321][ T6728] ocfs2_start_trans+0x368/0x6b0 [ 44.169139][ T6728] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 44.170097][ T6728] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 44.171078][ T6728] ocfs2_mknod+0xbd8/0x1cf0 [ 44.171873][ T6728] ocfs2_mkdir+0x190/0x474 [ 44.172582][ T6728] vfs_mkdir+0x284/0x424 [ 44.173277][ T6728] do_mkdirat+0x1f8/0x4c8 [ 44.173966][ T6728] __arm64_sys_mkdirat+0x8c/0xa4 [ 44.174836][ T6728] invoke_syscall+0x98/0x254 [ 44.175624][ T6728] el0_svc_common+0xe8/0x23c [ 44.176363][ T6728] do_el0_svc+0x48/0x58 [ 44.177097][ T6728] el0_svc+0x5c/0x254 [ 44.177781][ T6728] el0t_64_sync_handler+0x84/0x12c [ 44.178681][ T6728] el0t_64_sync+0x198/0x19c [ 44.179428][ T6728] [ 44.179428][ T6728] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 44.180755][ T6728] down_read+0x58/0x2f8 [ 44.181486][ T6728] ocfs2_start_trans+0x35c/0x6b0 [ 44.182267][ T6728] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 44.183148][ T6728] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 44.184084][ T6728] ocfs2_mknod+0xbd8/0x1cf0 [ 44.184808][ T6728] ocfs2_mkdir+0x190/0x474 [ 44.185457][ T6728] vfs_mkdir+0x284/0x424 [ 44.186141][ T6728] do_mkdirat+0x1f8/0x4c8 [ 44.186841][ T6728] __arm64_sys_mkdirat+0x8c/0xa4 [ 44.187623][ T6728] invoke_syscall+0x98/0x254 [ 44.188442][ T6728] el0_svc_common+0xe8/0x23c [ 44.189179][ T6728] do_el0_svc+0x48/0x58 [ 44.189851][ T6728] el0_svc+0x5c/0x254 [ 44.190489][ T6728] el0t_64_sync_handler+0x84/0x12c [ 44.191314][ T6728] el0t_64_sync+0x198/0x19c [ 44.192021][ T6728] [ 44.192021][ T6728] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 44.193128][ T6728] ocfs2_start_trans+0x1f4/0x6b0 [ 44.193968][ T6728] ocfs2_mknod+0xc50/0x1cf0 [ 44.194727][ T6728] ocfs2_mkdir+0x190/0x474 [ 44.195459][ T6728] vfs_mkdir+0x284/0x424 [ 44.196148][ T6728] do_mkdirat+0x1f8/0x4c8 [ 44.196868][ T6728] __arm64_sys_mkdirat+0x8c/0xa4 [ 44.197645][ T6728] invoke_syscall+0x98/0x254 [ 44.198402][ T6728] el0_svc_common+0xe8/0x23c [ 44.199083][ T6728] do_el0_svc+0x48/0x58 [ 44.199797][ T6728] el0_svc+0x5c/0x254 [ 44.200500][ T6728] el0t_64_sync_handler+0x84/0x12c [ 44.201331][ T6728] el0t_64_sync+0x198/0x19c [ 44.202059][ T6728] [ 44.202059][ T6728] -> #0 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}: [ 44.203612][ T6728] __lock_acquire+0x1774/0x30a4 [ 44.204399][ T6728] lock_acquire+0x14c/0x2e0 [ 44.205144][ T6728] down_write+0x50/0xc0 [ 44.205773][ T6728] ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 44.206933][ T6728] ocfs2_reserve_clusters_with_limit+0x198/0x9e0 [ 44.208024][ T6728] ocfs2_reserve_clusters+0x3c/0x50 [ 44.208914][ T6728] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 44.209889][ T6728] ocfs2_xattr_set+0x920/0xe9c [ 44.210698][ T6728] ocfs2_xattr_trusted_set+0x4c/0x64 [ 44.211597][ T6728] __vfs_setxattr+0x3d8/0x400 [ 44.212363][ T6728] __vfs_setxattr_noperm+0x120/0x5c4 [ 44.213277][ T6728] __vfs_setxattr_locked+0x1ec/0x218 [ 44.214157][ T6728] vfs_setxattr+0x158/0x2ac [ 44.214920][ T6728] ovl_get_workdir+0x9d4/0x1270 [ 44.215736][ T6728] ovl_fill_super+0x10d8/0x3118 [ 44.216648][ T6728] get_tree_nodev+0xb4/0x144 [ 44.217448][ T6728] ovl_get_tree+0x28/0x38 [ 44.218135][ T6728] vfs_get_tree+0x90/0x28c [ 44.218869][ T6728] do_new_mount+0x284/0x944 [ 44.219654][ T6728] path_mount+0x5b4/0xdfc [ 44.220357][ T6728] __arm64_sys_mount+0x3e8/0x468 [ 44.221191][ T6728] invoke_syscall+0x98/0x254 [ 44.221989][ T6728] el0_svc_common+0xe8/0x23c [ 44.222689][ T6728] do_el0_svc+0x48/0x58 [ 44.223398][ T6728] el0_svc+0x5c/0x254 [ 44.224072][ T6728] el0t_64_sync_handler+0x84/0x12c [ 44.224898][ T6728] el0t_64_sync+0x198/0x19c [ 44.225669][ T6728] [ 44.225669][ T6728] other info that might help us debug this: [ 44.225669][ T6728] [ 44.227189][ T6728] Chain exists of: [ 44.227189][ T6728] &ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE] --> jbd2_handle --> &oi->ip_xattr_sem [ 44.227189][ T6728] [ 44.229528][ T6728] Possible unsafe locking scenario: [ 44.229528][ T6728] [ 44.230583][ T6728] CPU0 CPU1 [ 44.231377][ T6728] ---- ---- [ 44.232189][ T6728] lock(&oi->ip_xattr_sem); [ 44.232846][ T6728] lock(jbd2_handle); [ 44.233895][ T6728] lock(&oi->ip_xattr_sem); [ 44.235014][ T6728] lock(&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]); [ 44.236025][ T6728] [ 44.236025][ T6728] *** DEADLOCK *** [ 44.236025][ T6728] [ 44.237178][ T6728] 4 locks held by syz.0.17/6728: [ 44.237919][ T6728] #0: ffff0000c6a8c0e0 (&type->s_umount_key#54/1){+.+.}-{4:4}, at: alloc_super+0x168/0x7d4 [ 44.239512][ T6728] #1: ffff0000cab90420 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 44.240885][ T6728] #2: ffff0000f4565f40 (&sb->s_type->i_mutex_key#22){++++}-{4:4}, at: vfs_setxattr+0x138/0x2ac [ 44.242531][ T6728] #3: ffff0000f4565c78 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 44.244052][ T6728] [ 44.244052][ T6728] stack backtrace: [ 44.244913][ T6728] CPU: 0 UID: 0 PID: 6728 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT [ 44.246194][ T6728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 44.247607][ T6728] Call trace: [ 44.248088][ T6728] show_stack+0x2c/0x3c (C) [ 44.248841][ T6728] __dump_stack+0x30/0x40 [ 44.249498][ T6728] dump_stack_lvl+0xd8/0x12c [ 44.250236][ T6728] dump_stack+0x1c/0x28 [ 44.250839][ T6728] print_circular_bug+0x324/0x32c [ 44.251546][ T6728] check_noncircular+0x154/0x174 [ 44.252261][ T6728] __lock_acquire+0x1774/0x30a4 [ 44.252965][ T6728] lock_acquire+0x14c/0x2e0 [ 44.253611][ T6728] down_write+0x50/0xc0 [ 44.254257][ T6728] ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 44.255137][ T6728] ocfs2_reserve_clusters_with_limit+0x198/0x9e0 [ 44.256056][ T6728] ocfs2_reserve_clusters+0x3c/0x50 [ 44.256758][ T6728] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 44.257560][ T6728] ocfs2_xattr_set+0x920/0xe9c [ 44.258332][ T6728] ocfs2_xattr_trusted_set+0x4c/0x64 [ 44.259130][ T6728] __vfs_setxattr+0x3d8/0x400 [ 44.259822][ T6728] __vfs_setxattr_noperm+0x120/0x5c4 [ 44.260627][ T6728] __vfs_setxattr_locked+0x1ec/0x218 [ 44.261408][ T6728] vfs_setxattr+0x158/0x2ac [ 44.262076][ T6728] ovl_get_workdir+0x9d4/0x1270 [ 44.262801][ T6728] ovl_fill_super+0x10d8/0x3118 [ 44.263497][ T6728] get_tree_nodev+0xb4/0x144 [ 44.264128][ T6728] ovl_get_tree+0x28/0x38 [ 44.264765][ T6728] vfs_get_tree+0x90/0x28c [ 44.265398][ T6728] do_new_mount+0x284/0x944 [ 44.265998][ T6728] path_mount+0x5b4/0xdfc [ 44.266603][ T6728] __arm64_sys_mount+0x3e8/0x468 [ 44.267353][ T6728] invoke_syscall+0x98/0x254 [ 44.268013][ T6728] el0_svc_common+0xe8/0x23c [ 44.268656][ T6728] do_el0_svc+0x48/0x58 [ 44.269300][ T6728] el0_svc+0x5c/0x254 [ 44.269923][ T6728] el0t_64_sync_handler+0x84/0x12c [ 44.270699][ T6728] el0t_64_sync+0x198/0x19c [ 44.273808][ T6728] overlayfs: upper fs missing required features. [ 44.281254][ T6665] ocfs2: Unmounting device (7,0) on (node local)