Warning: Permanently added '10.128.1.154' (ED25519) to the list of known hosts.
1970/01/01 00:00:32 parsed 1 programs
[   33.145999][ T4326] cgroup: Unknown subsys name 'net'
[   33.369848][ T4326] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   33.644159][ T4326] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   37.863245][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.864428][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.867022][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   37.876624][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.878274][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.879957][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   38.140711][ T4370] chnl_net:caif_netlink_parms(): no params data found
[   38.159335][ T4370] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.160567][ T4370] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.162120][ T4370] device bridge_slave_0 entered promiscuous mode
[   38.165619][ T4370] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.166757][ T4370] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.168604][ T4370] device bridge_slave_1 entered promiscuous mode
[   38.175647][ T4370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.178647][ T4370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.185650][ T4370] team0: Port device team_slave_0 added
[   38.187737][ T4370] team0: Port device team_slave_1 added
[   38.194154][ T4370] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.195196][ T4370] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.199086][ T4370] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.201496][ T4370] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.202724][ T4370] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.206301][ T4370] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.298239][ T4370] device hsr_slave_0 entered promiscuous mode
[   38.347407][ T4370] device hsr_slave_1 entered promiscuous mode
[   38.441313][ T4370] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   38.459089][ T4370] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   38.508991][ T4370] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   38.549138][ T4370] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   38.591958][ T4370] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.593383][ T4370] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.594946][ T4370] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.595953][ T4370] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.614089][ T4370] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.618541][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   38.621269][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.623023][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.627541][ T4370] 8021q: adding VLAN 0 to HW filter on device team0
[   38.632026][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   38.633624][ T1610] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.634681][ T1610] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.636053][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   38.637752][ T1610] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.638829][ T1610] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.644975][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   38.646549][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   38.658075][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   38.660991][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   38.663555][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   38.665785][ T4370] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   38.717768][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   38.719040][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   38.722605][ T4370] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.729230][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   38.735082][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   38.736757][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   38.738907][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   38.741160][ T4370] device veth0_vlan entered promiscuous mode
[   38.744640][ T4370] device veth1_vlan entered promiscuous mode
[   38.751845][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   38.753326][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   38.754874][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   38.758041][ T4370] device veth0_macvtap entered promiscuous mode
[   38.760435][ T4370] device veth1_macvtap entered promiscuous mode
[   38.765486][ T4370] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.766758][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   38.769882][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   38.773094][ T4370] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.774387][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   38.776855][ T4370] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.778960][ T4370] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.780349][ T4370] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.781636][ T4370] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.176546][ T4428] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   39.178233][ T4428] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   39.179532][ T4428] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   39.180973][ T4428] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   39.182458][ T4428] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   39.183629][ T4428] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
1970/01/01 00:00:39 executed programs: 0
[   39.418043][   T47] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   39.419482][   T47] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   39.420706][   T47] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   39.422701][   T47] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   39.424405][   T47] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   39.425564][   T47] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   39.471797][ T4438] chnl_net:caif_netlink_parms(): no params data found
[   39.488846][ T4438] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.490022][ T4438] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.491562][ T4438] device bridge_slave_0 entered promiscuous mode
[   39.493433][ T4438] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.494492][ T4438] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.495810][ T4438] device bridge_slave_1 entered promiscuous mode
[   39.502844][ T4438] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.505660][ T4438] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.887147][ T4438] team0: Port device team_slave_0 added
[   39.890299][ T4438] team0: Port device team_slave_1 added
[   39.896239][ T4438] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.897449][ T4438] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.901350][ T4438] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.903558][ T4438] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.904620][ T4438] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.908961][ T4438] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.948293][ T4438] device hsr_slave_0 entered promiscuous mode
[   40.007350][ T4438] device hsr_slave_1 entered promiscuous mode
[   40.047778][ T4438] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   40.049081][ T4438] Cannot create hsr debugfs directory
[   40.458915][ T4438] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.447475][   T47] Bluetooth: hci1: command 0x0409 tx timeout
[   43.008271][ T4438] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.527416][ T4428] Bluetooth: hci1: command 0x041b tx timeout
[   44.158343][ T4438] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.239185][ T4438] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.429546][ T4438] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   44.519168][ T4438] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   44.569189][ T4438] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   44.669152][ T4438] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   44.767840][ T4438] 8021q: adding VLAN 0 to HW filter on device bond0
[   44.771127][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.772553][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.774963][ T4438] 8021q: adding VLAN 0 to HW filter on device team0
[   44.777685][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.779272][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.780718][ T1610] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.781864][ T1610] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.783596][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   44.785972][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.789277][ T1610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.790727][ T1610] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.791774][ T1610] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.885362][ T4438] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   44.887048][ T4438] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   44.889979][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   44.891786][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   44.894235][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   44.895960][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   44.898008][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   44.899601][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   44.901104][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   44.902539][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.904064][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.905551][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.906935][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   44.909697][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   45.061284][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   45.062646][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   45.066301][ T4438] 8021q: adding VLAN 0 to HW filter on device batadv0
[   45.071992][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   45.073584][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   45.079718][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   45.081124][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   45.082562][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   45.083877][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   45.085908][ T4438] device veth0_vlan entered promiscuous mode
[   45.088908][ T4438] device veth1_vlan entered promiscuous mode
[   45.094854][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   45.096306][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   45.098604][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   45.099980][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   45.170383][ T4438] device veth0_macvtap entered promiscuous mode
[   45.172654][ T4438] device veth1_macvtap entered promiscuous mode
[   45.176779][ T4438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   45.178698][ T4438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.180692][ T4438] batman_adv: batadv0: Interface activated: batadv_slave_0
[   45.181852][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   45.183412][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   45.184940][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   45.186569][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   45.188957][ T4438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   45.190520][ T4438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.192445][ T4438] batman_adv: batadv0: Interface activated: batadv_slave_1
[   45.193691][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   45.195205][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   45.197627][ T4438] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   45.199033][ T4438] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   45.200391][ T4438] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   45.201825][ T4438] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   45.211220][  T250] device hsr_slave_0 left promiscuous mode
[   45.247571][  T250] device hsr_slave_1 left promiscuous mode
[   45.347322][  T250] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   45.348491][  T250] batman_adv: batadv0: Removing interface: batadv_slave_0
[   45.350084][  T250] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   45.351177][  T250] batman_adv: batadv0: Removing interface: batadv_slave_1
[   45.352495][  T250] device bridge_slave_1 left promiscuous mode
[   45.353707][  T250] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.387880][  T250] device bridge_slave_0 left promiscuous mode
[   45.388997][  T250] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.507421][  T250] device veth1_macvtap left promiscuous mode
[   45.508444][  T250] device veth0_macvtap left promiscuous mode
[   45.509366][  T250] device veth1_vlan left promiscuous mode
[   45.510204][  T250] device veth0_vlan left promiscuous mode
[   45.607514][ T4428] Bluetooth: hci1: command 0x040f tx timeout
[   47.348255][  T250] team0 (unregistering): Port device team_slave_1 removed
[   47.529078][  T250] team0 (unregistering): Port device team_slave_0 removed
[   47.697204][ T4428] Bluetooth: hci1: command 0x0419 tx timeout
[   47.717677][  T250] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   47.957632][  T250] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   50.459537][  T250] bond0 (unregistering): Released all slaves
[   50.708963][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.710091][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.713116][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   50.719515][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.720828][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.722549][  T256] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   50.767995][ T4471] loop0: detected capacity change from 0 to 512
[   50.781113][ T4471] 
[   50.781566][ T4471] ======================================================
[   50.782737][ T4471] WARNING: possible circular locking dependency detected
[   50.783842][ T4471] syzkaller #0 Not tainted
[   50.784506][ T4471] ------------------------------------------------------
[   50.785583][ T4471] syz.0.17/4471 is trying to acquire lock:
[   50.786418][ T4471] ffff0000d30fcb98 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x188/0x284c
[   50.787914][ T4471] 
[   50.787914][ T4471] but task is already holding lock:
[   50.788996][ T4471] ffff0000ea0a5b10 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790
[   50.790489][ T4471] 
[   50.790489][ T4471] which lock already depends on the new lock.
[   50.790489][ T4471] 
[   50.792012][ T4471] 
[   50.792012][ T4471] the existing dependency chain (in reverse order) is:
[   50.793325][ T4471] 
[   50.793325][ T4471] -> #2 (&ei->xattr_sem){++++}-{3:3}:
[   50.794431][ T4471]        down_read+0x64/0x304
[   50.795134][ T4471]        ext4_setattr+0x7c4/0x150c
[   50.795886][ T4471]        notify_change+0xb0c/0xdcc
[   50.796624][ T4471]        chown_common+0x414/0x574
[   50.797376][ T4471]        do_fchownat+0x158/0x268
[   50.798062][ T4471]        __arm64_sys_fchownat+0xb8/0xd4
[   50.798802][ T4471]        invoke_syscall+0x98/0x2bc
[   50.799528][ T4471]        el0_svc_common+0x138/0x258
[   50.800256][ T4471]        do_el0_svc+0x58/0x13c
[   50.800904][ T4471]        el0_svc+0x58/0x138
[   50.801499][ T4471]        el0t_64_sync_handler+0x84/0xf0
[   50.802278][ T4471]        el0t_64_sync+0x18c/0x190
[   50.802994][ T4471] 
[   50.802994][ T4471] -> #1 (jbd2_handle){++++}-{0:0}:
[   50.804017][ T4471]        start_this_handle+0xfe0/0x122c
[   50.804815][ T4471]        jbd2__journal_start+0x288/0x51c
[   50.805561][ T4471]        __ext4_journal_start_sb+0x2fc/0x674
[   50.806425][ T4471]        ext4_writepages+0xa28/0x284c
[   50.807155][ T4471]        do_writepages+0x2c0/0x4fc
[   50.807912][ T4471]        __writeback_single_inode+0x164/0x157c
[   50.808806][ T4471]        writeback_sb_inodes+0x824/0x1404
[   50.809644][ T4471]        __writeback_inodes_wb+0x110/0x394
[   50.810500][ T4471]        wb_writeback+0x414/0xfb0
[   50.811342][ T4471]        wb_workfn+0xac0/0xd98
[   50.812034][ T4471]        process_one_work+0x7f4/0x13a8
[   50.812789][ T4471]        worker_thread+0x8c8/0xfbc
[   50.813583][ T4471]        kthread+0x250/0x2d8
[   50.814247][ T4471]        ret_from_fork+0x10/0x20
[   50.815007][ T4471] 
[   50.815007][ T4471] -> #0 (&sbi->s_writepages_rwsem){.+.+}-{0:0}:
[   50.816164][ T4471]        __lock_acquire+0x293c/0x6544
[   50.816933][ T4471]        lock_acquire+0x20c/0x644
[   50.817706][ T4471]        percpu_down_read+0x70/0x2a8
[   50.818491][ T4471]        ext4_writepages+0x188/0x284c
[   50.819330][ T4471]        do_writepages+0x2c0/0x4fc
[   50.820046][ T4471]        __writeback_single_inode+0x164/0x157c
[   50.820894][ T4471]        writeback_single_inode+0x1c0/0x720
[   50.821706][ T4471]        write_inode_now+0x144/0x1b0
[   50.822520][ T4471]        iput+0x5cc/0x7f4
[   50.823134][ T4471]        ext4_xattr_block_set+0x17a4/0x2810
[   50.823965][ T4471]        ext4_expand_extra_isize_ea+0xcb8/0x15cc
[   50.824872][ T4471]        __ext4_expand_extra_isize+0x298/0x358
[   50.825753][ T4471]        __ext4_mark_inode_dirty+0x3e4/0x790
[   50.826648][ T4471]        ext4_evict_inode+0xb58/0x1270
[   50.827388][ T4471]        evict+0x3c8/0x810
[   50.828038][ T4471]        iput+0x764/0x7f4
[   50.828653][ T4471]        ext4_process_orphan+0x240/0x2b4
[   50.829568][ T4471]        ext4_orphan_cleanup+0x908/0x104c
[   50.830328][ T4471]        ext4_fill_super+0x6440/0x68a8
[   50.831076][ T4471]        get_tree_bdev+0x358/0x544
[   50.831771][ T4471]        ext4_get_tree+0x28/0x38
[   50.832528][ T4471]        vfs_get_tree+0x90/0x274
[   50.833259][ T4471]        do_new_mount+0x228/0x810
[   50.833951][ T4471]        path_mount+0x5b4/0xe78
[   50.834587][ T4471]        __arm64_sys_mount+0x49c/0x584
[   50.835348][ T4471]        invoke_syscall+0x98/0x2bc
[   50.836076][ T4471]        el0_svc_common+0x138/0x258
[   50.836822][ T4471]        do_el0_svc+0x58/0x13c
[   50.837482][ T4471]        el0_svc+0x58/0x138
[   50.838152][ T4471]        el0t_64_sync_handler+0x84/0xf0
[   50.838924][ T4471]        el0t_64_sync+0x18c/0x190
[   50.839614][ T4471] 
[   50.839614][ T4471] other info that might help us debug this:
[   50.839614][ T4471] 
[   50.841029][ T4471] Chain exists of:
[   50.841029][ T4471]   &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem
[   50.841029][ T4471] 
[   50.842892][ T4471]  Possible unsafe locking scenario:
[   50.842892][ T4471] 
[   50.843885][ T4471]        CPU0                    CPU1
[   50.844606][ T4471]        ----                    ----
[   50.845332][ T4471]   lock(&ei->xattr_sem);
[   50.845959][ T4471]                                lock(jbd2_handle);
[   50.846864][ T4471]                                lock(&ei->xattr_sem);
[   50.847867][ T4471]   lock(&sbi->s_writepages_rwsem);
[   50.848612][ T4471] 
[   50.848612][ T4471]  *** DEADLOCK ***
[   50.848612][ T4471] 
[   50.849815][ T4471] 3 locks held by syz.0.17/4471:
[   50.850484][ T4471]  #0: ffff0000d32280e0 (&type->s_umount_key#26/1){+.+.}-{3:3}, at: alloc_super+0x1a4/0x804
[   50.851966][ T4471]  #1: ffff0000d3228650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x3dc/0x1270
[   50.853349][ T4471]  #2: ffff0000ea0a5b10 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790
[   50.854777][ T4471] 
[   50.854777][ T4471] stack backtrace:
[   50.855603][ T4471] CPU: 0 PID: 4471 Comm: syz.0.17 Not tainted syzkaller #0
[   50.856613][ T4471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[   50.858072][ T4471] Call trace:
[   50.858533][ T4471]  dump_backtrace+0x1c8/0x1f4
[   50.859199][ T4471]  show_stack+0x2c/0x3c
[   50.859831][ T4471]  __dump_stack+0x30/0x40
[   50.860471][ T4471]  dump_stack_lvl+0xf8/0x160
[   50.861139][ T4471]  dump_stack+0x1c/0x5c
[   50.861750][ T4471]  print_circular_bug+0x148/0x1b0
[   50.862560][ T4471]  check_noncircular+0x240/0x2d4
[   50.863358][ T4471]  __lock_acquire+0x293c/0x6544
[   50.864149][ T4471]  lock_acquire+0x20c/0x644
[   50.864852][ T4471]  percpu_down_read+0x70/0x2a8
[   50.865544][ T4471]  ext4_writepages+0x188/0x284c
[   50.866326][ T4471]  do_writepages+0x2c0/0x4fc
[   50.867045][ T4471]  __writeback_single_inode+0x164/0x157c
[   50.867935][ T4471]  writeback_single_inode+0x1c0/0x720
[   50.868762][ T4471]  write_inode_now+0x144/0x1b0
[   50.869421][ T4471]  iput+0x5cc/0x7f4
[   50.869974][ T4471]  ext4_xattr_block_set+0x17a4/0x2810
[   50.870814][ T4471]  ext4_expand_extra_isize_ea+0xcb8/0x15cc
[   50.871675][ T4471]  __ext4_expand_extra_isize+0x298/0x358
[   50.872516][ T4471]  __ext4_mark_inode_dirty+0x3e4/0x790
[   50.873389][ T4471]  ext4_evict_inode+0xb58/0x1270
[   50.874148][ T4471]  evict+0x3c8/0x810
[   50.874715][ T4471]  iput+0x764/0x7f4
[   50.875332][ T4471]  ext4_process_orphan+0x240/0x2b4
[   50.876062][ T4471]  ext4_orphan_cleanup+0x908/0x104c
[   50.876722][ T4471]  ext4_fill_super+0x6440/0x68a8
[   50.877435][ T4471]  get_tree_bdev+0x358/0x544
[   50.878133][ T4471]  ext4_get_tree+0x28/0x38
[   50.878816][ T4471]  vfs_get_tree+0x90/0x274
[   50.879476][ T4471]  do_new_mount+0x228/0x810
[   50.880172][ T4471]  path_mount+0x5b4/0xe78
[   50.880827][ T4471]  __arm64_sys_mount+0x49c/0x584
[   50.881548][ T4471]  invoke_syscall+0x98/0x2bc
[   50.882165][ T4471]  el0_svc_common+0x138/0x258
[   50.882872][ T4471]  do_el0_svc+0x58/0x13c
[   50.883511][ T4471]  el0_svc+0x58/0x138
[   50.884125][ T4471]  el0t_64_sync_handler+0x84/0xf0
[   50.884842][ T4471]  el0t_64_sync+0x18c/0x190
[   50.886609][ T4471] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
[   50.889012][ T4471] EXT4-fs (loop0): Remounting filesystem read-only
[   50.890053][ T4471] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 11 err=-117
[   50.892020][ T4471] EXT4-fs (loop0): Remounting filesystem read-only
[   50.892957][ T4471] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2819: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   50.894877][ T4471] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
[   50.896888][ T4471] EXT4-fs (loop0): Remounting filesystem read-only
[   50.897932][ T4471] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 11 err=-117
[   50.899807][ T4471] EXT4-fs (loop0): Remounting filesystem read-only
[   50.900918][ T4471] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
[   50.902855][ T4471] EXT4-fs (loop0): Remounting filesystem read-only
[   50.903843][ T4471] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117
[   50.905695][ T4471] EXT4-fs (loop0): Remounting filesystem read-only
[   50.906653][ T4471] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
[   50.908947][ T4471] EXT4-fs (loop0): Remounting filesystem read-only
[   50.909823][ T4471] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117
[   50.911562][ T4471] EXT4-fs (loop0): Remounting filesystem read-only
[   50.912587][ T4471] EXT4-fs (loop0): 1 orphan inode deleted
[   50.913450][ T4471] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   50.919065][ T4438] EXT4-fs (loop0): unmounting filesystem.