no interfaces have a carrier [ 50.822439][ T3932] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.838945][ T3932] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: OK Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.128' (ED25519) to the list of known hosts. 2025/08/10 05:13:25 ignoring optional flag "sandboxArg"="0" 2025/08/10 05:13:26 parsed 1 programs syzkaller login: [ 81.504045][ T4271] cgroup: Unknown subsys name 'net' [ 81.635895][ T4271] cgroup: Unknown subsys name 'rlimit' [ 83.239184][ T4271] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 86.066469][ T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.075910][ T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.092229][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 86.110237][ T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.118497][ T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.127092][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 86.739159][ T33] cfg80211: failed to load regulatory.db [ 87.442706][ T4342] chnl_net:caif_netlink_parms(): no params data found [ 87.532474][ T4342] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.541249][ T4342] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.550311][ T4342] device bridge_slave_0 entered promiscuous mode [ 87.563013][ T4342] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.570575][ T4342] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.579559][ T4342] device bridge_slave_1 entered promiscuous mode [ 87.614300][ T4342] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.625978][ T4342] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.654224][ T4342] team0: Port device team_slave_0 added [ 87.662934][ T4342] team0: Port device team_slave_1 added [ 87.685790][ T4342] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.693213][ T4342] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.719377][ T4342] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.739162][ T4342] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.746161][ T4342] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.772260][ T4342] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.809684][ T4342] device hsr_slave_0 entered promiscuous mode [ 87.816564][ T4342] device hsr_slave_1 entered promiscuous mode [ 87.983952][ T4342] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 88.004179][ T4342] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 88.015167][ T4342] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 88.024499][ T4342] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 88.050980][ T4342] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.058442][ T4342] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.066322][ T4342] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.073509][ T4342] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.123978][ T4342] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.139037][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 88.149058][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.157497][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.173561][ T4342] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.194451][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 88.203076][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.210266][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.221981][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 88.232340][ T75] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.239500][ T75] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.276844][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 88.286145][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 88.299020][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 88.309458][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 88.330987][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 88.340380][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 88.353124][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 88.362535][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 88.385254][ T4342] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 88.578945][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 88.586496][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 88.608528][ T4342] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.626897][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 88.636816][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 88.663040][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 88.672077][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 88.681226][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 88.689981][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 88.709034][ T4342] device veth0_vlan entered promiscuous mode [ 88.721060][ T4342] device veth1_vlan entered promiscuous mode [ 88.751191][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 88.760032][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 88.768728][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 88.778142][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 88.788952][ T4342] device veth0_macvtap entered promiscuous mode [ 88.807193][ T4342] device veth1_macvtap entered promiscuous mode [ 88.829492][ T4342] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.837269][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 88.846877][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 88.855627][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 88.864692][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 88.876885][ T4342] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.888722][ T4342] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.897746][ T4342] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.908920][ T4342] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.917740][ T4342] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.931840][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 88.940563][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 89.093294][ T41] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 89.101439][ T4364] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 89.114368][ T4364] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 89.122397][ T4364] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 89.131859][ T4364] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 89.140460][ T4364] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 89.147869][ T4364] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 2025/08/10 05:13:37 executed programs: 0 [ 89.548509][ T4364] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 89.557034][ T4364] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 89.566000][ T4364] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 89.576341][ T4364] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 89.584596][ T4364] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 89.591966][ T4364] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 89.725310][ T4374] chnl_net:caif_netlink_parms(): no params data found [ 89.774926][ T4374] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.782774][ T4374] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.791283][ T4374] device bridge_slave_0 entered promiscuous mode [ 89.801163][ T4374] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.808403][ T4374] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.816247][ T4374] device bridge_slave_1 entered promiscuous mode [ 89.840808][ T4374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.852021][ T4374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.881948][ T4374] team0: Port device team_slave_0 added [ 89.891200][ T4374] team0: Port device team_slave_1 added [ 89.911732][ T4374] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.919223][ T4374] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.945540][ T4374] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.959770][ T4374] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.966751][ T4374] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.994028][ T4374] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.037434][ T4374] device hsr_slave_0 entered promiscuous mode [ 90.044338][ T4374] device hsr_slave_1 entered promiscuous mode [ 90.051109][ T4374] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 90.059497][ T4374] Cannot create hsr debugfs directory [ 91.169348][ T41] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.618569][ T48] Bluetooth: hci0: command 0x0409 tx timeout [ 93.448102][ T41] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.523603][ T41] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.698375][ T48] Bluetooth: hci0: command 0x041b tx timeout [ 94.329740][ T4374] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 94.341975][ T4374] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 94.351985][ T4374] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 94.374111][ T4374] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 94.438578][ T41] device hsr_slave_0 left promiscuous mode [ 94.445375][ T41] device hsr_slave_1 left promiscuous mode [ 94.452636][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 94.460578][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 94.469744][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 94.477188][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 94.485652][ T41] device bridge_slave_1 left promiscuous mode [ 94.493114][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.505225][ T41] device bridge_slave_0 left promiscuous mode [ 94.513938][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.543838][ T41] device veth1_macvtap left promiscuous mode [ 94.551619][ T41] device veth0_macvtap left promiscuous mode [ 94.559262][ T41] device veth1_vlan left promiscuous mode [ 94.565321][ T41] device veth0_vlan left promiscuous mode [ 94.934317][ T41] team0 (unregistering): Port device team_slave_1 removed [ 94.964964][ T41] team0 (unregistering): Port device team_slave_0 removed [ 94.994803][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 95.024859][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 95.299156][ T41] bond0 (unregistering): Released all slaves [ 95.393364][ T4374] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.407494][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 95.416012][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 95.430354][ T4374] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.443593][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 95.452694][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 95.462468][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.470189][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.478317][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 95.500991][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 95.510503][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 95.519347][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.526534][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.536712][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 95.552013][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 95.572077][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 95.581338][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 95.590606][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 95.602049][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 95.612854][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 95.625666][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 95.634481][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 95.651762][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 95.666128][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 95.677503][ T4374] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 95.787973][ T48] Bluetooth: hci0: command 0x040f tx timeout [ 95.889877][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 95.897447][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 95.911049][ T4374] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.941055][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 95.952050][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 95.976169][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 95.985233][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 95.995381][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 96.003599][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 96.013748][ T4374] device veth0_vlan entered promiscuous mode [ 96.024761][ T4374] device veth1_vlan entered promiscuous mode [ 96.044156][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 96.052736][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 96.061954][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 96.070567][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 96.081918][ T4374] device veth0_macvtap entered promiscuous mode [ 96.096514][ T4374] device veth1_macvtap entered promiscuous mode [ 96.112503][ T4374] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.120739][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 96.129430][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 96.137438][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 96.146656][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 96.160097][ T4374] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.173655][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 96.185784][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 96.196672][ T4374] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.205597][ T4374] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.214691][ T4374] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.223620][ T4374] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.285812][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.299952][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.322106][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 96.335410][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.344324][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.353405][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 96.456291][ T4424] loop0: detected capacity change from 0 to 8192 [ 96.470878][ T4424] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 96.486399][ T4424] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 96.495932][ T4424] REISERFS (device loop0): using ordered data mode [ 96.503685][ T4424] reiserfs: using flush barriers [ 96.510835][ T4424] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 96.528937][ T4424] REISERFS (device loop0): checking transaction log (loop0) [ 96.543640][ T4424] REISERFS (device loop0): Using tea hash to sort names [ 96.553970][ T4424] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 96.569218][ T4424] [ 96.571599][ T4424] ====================================================== [ 96.578654][ T4424] WARNING: possible circular locking dependency detected [ 96.585714][ T4424] 6.1.147-syzkaller #0 Not tainted [ 96.590850][ T4424] ------------------------------------------------------ [ 96.597891][ T4424] syz.0.17/4424 is trying to acquire lock: [ 96.603721][ T4424] ffff888079e02460 (sb_writers#13){.+.+}-{0:0}, at: mnt_want_write_file+0x5c/0x200 [ 96.613112][ T4424] [ 96.613112][ T4424] but task is already holding lock: [ 96.620591][ T4424] ffff888073b98090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock+0x75/0xd0 [ 96.629611][ T4424] [ 96.629611][ T4424] which lock already depends on the new lock. [ 96.629611][ T4424] [ 96.640048][ T4424] [ 96.640048][ T4424] the existing dependency chain (in reverse order) is: [ 96.649260][ T4424] [ 96.649260][ T4424] -> #2 (&sbi->lock){+.+.}-{3:3}: [ 96.656511][ T4424] __mutex_lock+0x120/0xaf0 [ 96.661574][ T4424] reiserfs_write_lock+0x75/0xd0 [ 96.667075][ T4424] reiserfs_lookup+0x137/0x420 [ 96.672401][ T4424] __lookup_slow+0x27d/0x3a0 [ 96.677570][ T4424] lookup_one_len+0x18e/0x2c0 [ 96.682818][ T4424] reiserfs_lookup_privroot+0x85/0x1e0 [ 96.689039][ T4424] reiserfs_fill_super+0x1f40/0x2340 [ 96.694894][ T4424] mount_bdev+0x287/0x3c0 [ 96.699869][ T4424] legacy_get_tree+0xe6/0x180 [ 96.705107][ T4424] vfs_get_tree+0x88/0x270 [ 96.710088][ T4424] do_new_mount+0x24a/0xa40 [ 96.715235][ T4424] __se_sys_mount+0x2d6/0x3c0 [ 96.720462][ T4424] do_syscall_64+0x4c/0xa0 [ 96.725506][ T4424] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 96.731953][ T4424] [ 96.731953][ T4424] -> #1 (&type->i_mutex_dir_key#8){+.+.}-{3:3}: [ 96.740425][ T4424] down_write+0x36/0x60 [ 96.745119][ T4424] path_openat+0x7c2/0x2e70 [ 96.750195][ T4424] do_filp_open+0x1c1/0x3c0 [ 96.755230][ T4424] do_sys_openat2+0x142/0x490 [ 96.760439][ T4424] __x64_sys_open+0x11b/0x140 [ 96.765904][ T4424] do_syscall_64+0x4c/0xa0 [ 96.770865][ T4424] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 96.777387][ T4424] [ 96.777387][ T4424] -> #0 (sb_writers#13){.+.+}-{0:0}: [ 96.784880][ T4424] __lock_acquire+0x2cf8/0x7c50 [ 96.790356][ T4424] lock_acquire+0x1b4/0x490 [ 96.795402][ T4424] sb_start_write+0x4d/0x1c0 [ 96.800532][ T4424] mnt_want_write_file+0x5c/0x200 [ 96.806097][ T4424] reiserfs_ioctl+0x10a/0x330 [ 96.811315][ T4424] __se_sys_ioctl+0xfa/0x170 [ 96.816440][ T4424] do_syscall_64+0x4c/0xa0 [ 96.821481][ T4424] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 96.827912][ T4424] [ 96.827912][ T4424] other info that might help us debug this: [ 96.827912][ T4424] [ 96.838231][ T4424] Chain exists of: [ 96.838231][ T4424] sb_writers#13 --> &type->i_mutex_dir_key#8 --> &sbi->lock [ 96.838231][ T4424] [ 96.851473][ T4424] Possible unsafe locking scenario: [ 96.851473][ T4424] [ 96.858928][ T4424] CPU0 CPU1 [ 96.864294][ T4424] ---- ---- [ 96.869665][ T4424] lock(&sbi->lock); [ 96.873657][ T4424] lock(&type->i_mutex_dir_key#8); [ 96.881390][ T4424] lock(&sbi->lock); [ 96.887903][ T4424] lock(sb_writers#13); [ 96.892162][ T4424] [ 96.892162][ T4424] *** DEADLOCK *** [ 96.892162][ T4424] [ 96.900317][ T4424] 1 lock held by syz.0.17/4424: [ 96.905286][ T4424] #0: ffff888073b98090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock+0x75/0xd0 [ 96.914707][ T4424] [ 96.914707][ T4424] stack backtrace: [ 96.920725][ T4424] CPU: 0 PID: 4424 Comm: syz.0.17 Not tainted 6.1.147-syzkaller #0 [ 96.928652][ T4424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 96.939434][ T4424] Call Trace: [ 96.942737][ T4424] [ 96.945687][ T4424] dump_stack_lvl+0x168/0x22e [ 96.950385][ T4424] ? load_image+0x3b0/0x3b0 [ 96.954902][ T4424] ? show_regs_print_info+0x12/0x12 [ 96.960111][ T4424] ? print_circular_bug+0x12b/0x1a0 [ 96.965329][ T4424] check_noncircular+0x274/0x310 [ 96.970303][ T4424] ? add_chain_block+0x940/0x940 [ 96.975257][ T4424] ? lockdep_lock+0xdc/0x1e0 [ 96.979865][ T4424] ? _find_first_zero_bit+0xcf/0x100 [ 96.985168][ T4424] __lock_acquire+0x2cf8/0x7c50 [ 96.990030][ T4424] ? verify_lock_unused+0x140/0x140 [ 96.995252][ T4424] ? verify_lock_unused+0x140/0x140 [ 97.000498][ T4424] ? __mutex_trylock_common+0x14f/0x250 [ 97.006071][ T4424] ? trace_raw_output_contention_end+0xd0/0xd0 [ 97.012425][ T4424] lock_acquire+0x1b4/0x490 [ 97.016953][ T4424] ? mnt_want_write_file+0x5c/0x200 [ 97.022170][ T4424] ? __might_sleep+0xd0/0xd0 [ 97.026788][ T4424] ? read_lock_is_recursive+0x10/0x10 [ 97.032181][ T4424] ? mutex_lock_nested+0x10/0x10 [ 97.037140][ T4424] ? __se_sys_futex+0x14a/0x440 [ 97.042010][ T4424] sb_start_write+0x4d/0x1c0 [ 97.046620][ T4424] ? mnt_want_write_file+0x5c/0x200 [ 97.051930][ T4424] mnt_want_write_file+0x5c/0x200 [ 97.057068][ T4424] reiserfs_ioctl+0x10a/0x330 [ 97.061853][ T4424] ? reiserfs_unpack+0x600/0x600 [ 97.066806][ T4424] __se_sys_ioctl+0xfa/0x170 [ 97.071410][ T4424] do_syscall_64+0x4c/0xa0 [ 97.076008][ T4424] ? clear_bhb_loop+0x60/0xb0 [ 97.080697][ T4424] ? clear_bhb_loop+0x60/0xb0 [ 97.085388][ T4424] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 97.091301][ T4424] RIP: 0033:0x7fbb03f8ebe9 [ 97.095850][ T4424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 97.115563][ T4424] RSP: 002b:00007fff2acda268 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 97.123995][ T4424] RAX: ffffffffffffffda RBX: 00007fbb041b5fa0 RCX: 00007fbb03f8ebe9 [ 97.132076][ T4424] RDX: 0000000000000000 RSI: 0000000040087602 RDI: 0000000000000004 [ 97.140147][ T4424] RBP: 00007fbb04011e19 R08: 0000000000000000 R09: 0000000000000000 [ 97.148135][ T4424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 97.156114][ T4424] R13: 00007fbb041b5fa0 R14: 00007fbb041b5fa0 R15: 0000000000000003 [ 97.164103][ T4424]