[ 9.260328][ T6222] 8021q: adding VLAN 0 to HW filter on device bond0 [ 9.263100][ T6222] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: [ 9.305150][ T15] gve 0000:00:00.0 enp0s0: Device link is up. OK Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.221' (ED25519) to the list of known hosts. 1970/01/01 00:00:27 parsed 1 programs syzkaller login: [ 28.877293][ T6556] cgroup: Unknown subsys name 'net' [ 29.038831][ T6556] cgroup: Unknown subsys name 'cpuset' [ 29.040881][ T6556] cgroup: Unknown subsys name 'rlimit' [ 29.192595][ T6556] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 36.499952][ T6563] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 37.425677][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 37.426028][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 37.426179][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 37.426485][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 37.426673][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 37.558432][ T6630] chnl_net:caif_netlink_parms(): no params data found [ 37.593189][ T6630] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.593520][ T6630] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.593585][ T6630] bridge_slave_0: entered allmulticast mode [ 37.594030][ T6630] bridge_slave_0: entered promiscuous mode [ 37.595077][ T6630] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.595125][ T6630] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.595167][ T6630] bridge_slave_1: entered allmulticast mode [ 37.595555][ T6630] bridge_slave_1: entered promiscuous mode [ 37.678330][ T6630] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 37.737959][ T6630] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 37.747013][ T6630] team0: Port device team_slave_0 added [ 37.747819][ T6630] team0: Port device team_slave_1 added [ 37.754764][ T6630] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.754789][ T6630] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.754799][ T6630] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.755610][ T6630] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.755617][ T6630] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.755631][ T6630] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.773785][ T6630] hsr_slave_0: entered promiscuous mode [ 37.774096][ T6630] hsr_slave_1: entered promiscuous mode [ 37.826088][ T6630] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 37.829120][ T6630] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 37.831857][ T6630] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 37.834405][ T6630] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 37.844770][ T6630] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.844819][ T6630] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.844972][ T6630] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.844995][ T6630] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.859329][ T6630] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.863016][ T4806] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.864713][ T4806] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.871964][ T6630] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.879593][ T15] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.879639][ T15] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.879994][ T15] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.880016][ T15] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.926190][ T6630] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.938550][ T6630] veth0_vlan: entered promiscuous mode [ 37.961836][ T6630] veth1_vlan: entered promiscuous mode [ 37.968863][ T6630] veth0_macvtap: entered promiscuous mode [ 37.969938][ T6630] veth1_macvtap: entered promiscuous mode [ 37.973387][ T6630] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.974475][ T6630] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.977538][ T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.979182][ T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.981363][ T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.983722][ T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.293221][ T1793] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 38.319672][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.319703][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.328399][ T15] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.328424][ T15] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.342324][ T1793] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 38.355344][ T1793] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 38.403310][ T1793] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:38 executed programs: 0 [ 38.515648][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 38.518227][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 38.519759][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 38.520217][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 38.520414][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 38.569614][ T6661] chnl_net:caif_netlink_parms(): no params data found [ 38.590799][ T6661] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.590875][ T6661] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.590924][ T6661] bridge_slave_0: entered allmulticast mode [ 38.591323][ T6661] bridge_slave_0: entered promiscuous mode [ 38.592006][ T6661] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.592044][ T6661] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.592084][ T6661] bridge_slave_1: entered allmulticast mode [ 38.592452][ T6661] bridge_slave_1: entered promiscuous mode [ 38.603946][ T6661] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 38.604773][ T6661] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 38.612373][ T6661] team0: Port device team_slave_0 added [ 38.613022][ T6661] team0: Port device team_slave_1 added [ 38.620326][ T6661] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 38.620346][ T6661] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.620362][ T6661] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 38.620868][ T6661] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 38.620875][ T6661] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.620886][ T6661] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 38.638867][ T6661] hsr_slave_0: entered promiscuous mode [ 38.639137][ T6661] hsr_slave_1: entered promiscuous mode [ 38.639315][ T6661] debugfs: 'hsr0' already exists in 'hsr' [ 38.639367][ T6661] Cannot create hsr debugfs directory [ 40.577604][ T6120] Bluetooth: hci0: command tx timeout [ 41.534225][ T1793] bridge_slave_1: left allmulticast mode [ 41.534416][ T1793] bridge_slave_1: left promiscuous mode [ 41.534818][ T1793] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.540815][ T1793] bridge_slave_0: left allmulticast mode [ 41.540841][ T1793] bridge_slave_0: left promiscuous mode [ 41.540925][ T1793] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.710740][ T1793] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 41.738562][ T1793] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 41.768048][ T1793] bond0 (unregistering): Released all slaves [ 41.863659][ T1793] hsr_slave_0: left promiscuous mode [ 41.864884][ T1793] hsr_slave_1: left promiscuous mode [ 41.865150][ T1793] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 41.865164][ T1793] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 41.867386][ T1793] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 41.867886][ T1793] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 41.872914][ T1793] veth1_macvtap: left promiscuous mode [ 41.873923][ T1793] veth0_macvtap: left promiscuous mode [ 41.874009][ T1793] veth1_vlan: left promiscuous mode [ 41.874062][ T1793] veth0_vlan: left promiscuous mode [ 41.986016][ T1793] team0 (unregistering): Port device team_slave_1 removed [ 41.992195][ T1793] team0 (unregistering): Port device team_slave_0 removed [ 42.412623][ T6661] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 42.414318][ T6661] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 42.416674][ T6661] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 42.418887][ T6661] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 42.445588][ T6661] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.482381][ T6661] 8021q: adding VLAN 0 to HW filter on device team0 [ 42.484643][ T15] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.484695][ T15] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.487874][ T4806] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.487920][ T4806] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.499380][ T6661] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 42.499417][ T6661] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 42.555139][ T6661] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 42.568133][ T6661] veth0_vlan: entered promiscuous mode [ 42.615511][ T6661] veth1_vlan: entered promiscuous mode [ 42.621453][ T6661] veth0_macvtap: entered promiscuous mode [ 42.622378][ T6661] veth1_macvtap: entered promiscuous mode [ 42.625539][ T6661] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 42.626381][ T6661] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 42.628961][ T42] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.632112][ T42] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.634031][ T42] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.635989][ T42] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.653657][ T4806] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 42.653687][ T4806] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 42.657500][ T6120] Bluetooth: hci0: command tx timeout [ 42.681463][ T15] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 42.682919][ T15] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 42.789664][ T6757] loop0: detected capacity change from 0 to 32768 [ 42.791711][ T6757] ======================================================= [ 42.791711][ T6757] WARNING: The mand mount option has been deprecated and [ 42.791711][ T6757] and is ignored by this kernel. Remove the mand [ 42.791711][ T6757] option from the mount to silence this warning. [ 42.791711][ T6757] ======================================================= [ 42.823685][ T6757] JBD2: Ignoring recovery information on journal [ 42.835353][ T6757] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 42.843930][ T6757] [ 42.844314][ T6757] ====================================================== [ 42.845452][ T6757] WARNING: possible circular locking dependency detected [ 42.846580][ T6757] 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 Not tainted [ 42.847603][ T6757] ------------------------------------------------------ [ 42.848632][ T6757] syz.0.17/6757 is trying to acquire lock: [ 42.849496][ T6757] ffff0000f3c91800 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 42.851600][ T6757] [ 42.851600][ T6757] but task is already holding lock: [ 42.852759][ T6757] ffff0000f3c931b8 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 42.854131][ T6757] [ 42.854131][ T6757] which lock already depends on the new lock. [ 42.854131][ T6757] [ 42.855597][ T6757] [ 42.855597][ T6757] the existing dependency chain (in reverse order) is: [ 42.856905][ T6757] [ 42.856905][ T6757] -> #4 (&oi->ip_xattr_sem){+.+.}-{4:4}: [ 42.858166][ T6757] down_write+0x50/0xc0 [ 42.858960][ T6757] ocfs2_xattr_set_handle+0x2a8/0x5e4 [ 42.859897][ T6757] ocfs2_init_security_set+0xb4/0xd8 [ 42.860845][ T6757] ocfs2_mknod+0x106c/0x1cf0 [ 42.861693][ T6757] ocfs2_create+0x190/0x474 [ 42.862566][ T6757] path_openat+0x12d8/0x2c40 [ 42.863427][ T6757] do_filp_open+0x18c/0x36c [ 42.864248][ T6757] do_sys_openat2+0x11c/0x1b4 [ 42.865117][ T6757] __arm64_sys_openat+0x120/0x158 [ 42.866056][ T6757] invoke_syscall+0x98/0x2b8 [ 42.866938][ T6757] el0_svc_common+0x130/0x23c [ 42.867894][ T6757] do_el0_svc+0x48/0x58 [ 42.868718][ T6757] el0_svc+0x58/0x180 [ 42.869521][ T6757] el0t_64_sync_handler+0x84/0x12c [ 42.870519][ T6757] el0t_64_sync+0x198/0x19c [ 42.871303][ T6757] [ 42.871303][ T6757] -> #3 (jbd2_handle){++++}-{0:0}: [ 42.872584][ T6757] start_this_handle+0xe74/0x10dc [ 42.873461][ T6757] jbd2__journal_start+0x288/0x51c [ 42.874378][ T6757] jbd2_journal_start+0x3c/0x4c [ 42.875288][ T6757] ocfs2_start_trans+0x368/0x6b0 [ 42.876135][ T6757] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 42.877187][ T6757] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 42.878258][ T6757] ocfs2_mknod+0xbd8/0x1cf0 [ 42.879062][ T6757] ocfs2_create+0x190/0x474 [ 42.879867][ T6757] path_openat+0x12d8/0x2c40 [ 42.880680][ T6757] do_filp_open+0x18c/0x36c [ 42.881439][ T6757] do_sys_openat2+0x11c/0x1b4 [ 42.882185][ T6757] __arm64_sys_openat+0x120/0x158 [ 42.883037][ T6757] invoke_syscall+0x98/0x2b8 [ 42.883798][ T6757] el0_svc_common+0x130/0x23c [ 42.884556][ T6757] do_el0_svc+0x48/0x58 [ 42.885256][ T6757] el0_svc+0x58/0x180 [ 42.885921][ T6757] el0t_64_sync_handler+0x84/0x12c [ 42.886802][ T6757] el0t_64_sync+0x198/0x19c [ 42.887613][ T6757] [ 42.887613][ T6757] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 42.889026][ T6757] down_read+0x58/0x2f8 [ 42.889820][ T6757] ocfs2_start_trans+0x35c/0x6b0 [ 42.890674][ T6757] ocfs2_reserve_suballoc_bits+0x630/0x3b9c [ 42.891744][ T6757] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 42.892882][ T6757] ocfs2_mknod+0xbd8/0x1cf0 [ 42.893707][ T6757] ocfs2_create+0x190/0x474 [ 42.894469][ T6757] path_openat+0x12d8/0x2c40 [ 42.895229][ T6757] do_filp_open+0x18c/0x36c [ 42.895976][ T6757] do_sys_openat2+0x11c/0x1b4 [ 42.896835][ T6757] __arm64_sys_openat+0x120/0x158 [ 42.897701][ T6757] invoke_syscall+0x98/0x2b8 [ 42.898551][ T6757] el0_svc_common+0x130/0x23c [ 42.899365][ T6757] do_el0_svc+0x48/0x58 [ 42.900021][ T6757] el0_svc+0x58/0x180 [ 42.900704][ T6757] el0t_64_sync_handler+0x84/0x12c [ 42.901520][ T6757] el0t_64_sync+0x198/0x19c [ 42.902261][ T6757] [ 42.902261][ T6757] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 42.903364][ T6757] ocfs2_start_trans+0x1f4/0x6b0 [ 42.904281][ T6757] ocfs2_mknod+0xc50/0x1cf0 [ 42.905138][ T6757] ocfs2_create+0x190/0x474 [ 42.905997][ T6757] path_openat+0x12d8/0x2c40 [ 42.906898][ T6757] do_filp_open+0x18c/0x36c [ 42.907688][ T6757] do_sys_openat2+0x11c/0x1b4 [ 42.908537][ T6757] __arm64_sys_openat+0x120/0x158 [ 42.909446][ T6757] invoke_syscall+0x98/0x2b8 [ 42.910326][ T6757] el0_svc_common+0x130/0x23c [ 42.911158][ T6757] do_el0_svc+0x48/0x58 [ 42.911904][ T6757] el0_svc+0x58/0x180 [ 42.912654][ T6757] el0t_64_sync_handler+0x84/0x12c [ 42.913495][ T6757] el0t_64_sync+0x198/0x19c [ 42.914278][ T6757] [ 42.914278][ T6757] -> #0 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}: [ 42.915987][ T6757] __lock_acquire+0x1774/0x30a4 [ 42.916758][ T6757] lock_acquire+0x14c/0x2e0 [ 42.917536][ T6757] down_write+0x50/0xc0 [ 42.918226][ T6757] ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 42.919154][ T6757] ocfs2_reserve_clusters_with_limit+0x198/0x9e0 [ 42.920200][ T6757] ocfs2_reserve_clusters+0x3c/0x50 [ 42.921054][ T6757] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 42.921910][ T6757] ocfs2_xattr_set+0x920/0xe9c [ 42.922664][ T6757] ocfs2_xattr_trusted_set+0x4c/0x64 [ 42.923569][ T6757] __vfs_setxattr+0x3d8/0x400 [ 42.924311][ T6757] __vfs_setxattr_noperm+0x120/0x5c4 [ 42.925197][ T6757] __vfs_setxattr_locked+0x1ec/0x218 [ 42.926048][ T6757] vfs_setxattr+0x158/0x2ac [ 42.926795][ T6757] filename_setxattr+0x20c/0x4f8 [ 42.927620][ T6757] path_setxattrat+0x2e8/0x320 [ 42.928354][ T6757] __arm64_sys_setxattr+0xc0/0xdc [ 42.929253][ T6757] invoke_syscall+0x98/0x2b8 [ 42.930137][ T6757] el0_svc_common+0x130/0x23c [ 42.931007][ T6757] do_el0_svc+0x48/0x58 [ 42.931821][ T6757] el0_svc+0x58/0x180 [ 42.932579][ T6757] el0t_64_sync_handler+0x84/0x12c [ 42.933524][ T6757] el0t_64_sync+0x198/0x19c [ 42.934431][ T6757] [ 42.934431][ T6757] other info that might help us debug this: [ 42.934431][ T6757] [ 42.936116][ T6757] Chain exists of: [ 42.936116][ T6757] &ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE] --> jbd2_handle --> &oi->ip_xattr_sem [ 42.936116][ T6757] [ 42.938735][ T6757] Possible unsafe locking scenario: [ 42.938735][ T6757] [ 42.939906][ T6757] CPU0 CPU1 [ 42.940759][ T6757] ---- ---- [ 42.941630][ T6757] lock(&oi->ip_xattr_sem); [ 42.942349][ T6757] lock(jbd2_handle); [ 42.943396][ T6757] lock(&oi->ip_xattr_sem); [ 42.944445][ T6757] lock(&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]); [ 42.945576][ T6757] [ 42.945576][ T6757] *** DEADLOCK *** [ 42.945576][ T6757] [ 42.946820][ T6757] 3 locks held by syz.0.17/6757: [ 42.947564][ T6757] #0: ffff0000cca86428 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 42.949016][ T6757] #1: ffff0000f3c93480 (&sb->s_type->i_mutex_key#20){+.+.}-{4:4}, at: vfs_setxattr+0x138/0x2ac [ 42.950575][ T6757] #2: ffff0000f3c931b8 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x330/0xe9c [ 42.952157][ T6757] [ 42.952157][ T6757] stack backtrace: [ 42.953003][ T6757] CPU: 1 UID: 0 PID: 6757 Comm: syz.0.17 Not tainted 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 42.954627][ T6757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 42.956172][ T6757] Call trace: [ 42.956680][ T6757] show_stack+0x2c/0x3c (C) [ 42.957346][ T6757] __dump_stack+0x30/0x40 [ 42.957983][ T6757] dump_stack_lvl+0xd8/0x12c [ 42.958684][ T6757] dump_stack+0x1c/0x28 [ 42.959250][ T6757] print_circular_bug+0x324/0x32c [ 42.960092][ T6757] check_noncircular+0x154/0x174 [ 42.960930][ T6757] __lock_acquire+0x1774/0x30a4 [ 42.961730][ T6757] lock_acquire+0x14c/0x2e0 [ 42.962515][ T6757] down_write+0x50/0xc0 [ 42.963177][ T6757] ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 42.964145][ T6757] ocfs2_reserve_clusters_with_limit+0x198/0x9e0 [ 42.965223][ T6757] ocfs2_reserve_clusters+0x3c/0x50 [ 42.966090][ T6757] ocfs2_init_xattr_set_ctxt+0x37c/0x774 [ 42.967059][ T6757] ocfs2_xattr_set+0x920/0xe9c [ 42.967820][ T6757] ocfs2_xattr_trusted_set+0x4c/0x64 [ 42.968673][ T6757] __vfs_setxattr+0x3d8/0x400 [ 42.969411][ T6757] __vfs_setxattr_noperm+0x120/0x5c4 [ 42.970194][ T6757] __vfs_setxattr_locked+0x1ec/0x218 [ 42.970977][ T6757] vfs_setxattr+0x158/0x2ac [ 42.971701][ T6757] filename_setxattr+0x20c/0x4f8 [ 42.972507][ T6757] path_setxattrat+0x2e8/0x320 [ 42.973359][ T6757] __arm64_sys_setxattr+0xc0/0xdc [ 42.974181][ T6757] invoke_syscall+0x98/0x2b8 [ 42.974908][ T6757] el0_svc_common+0x130/0x23c [ 42.975584][ T6757] do_el0_svc+0x48/0x58 [ 42.976203][ T6757] el0_svc+0x58/0x180 [ 42.976776][ T6757] el0t_64_sync_handler+0x84/0x12c [ 42.977629][ T6757] el0t_64_sync+0x198/0x19c [ 42.986713][ T6661] ocfs2: Unmounting device (7,0) on (node local)