Warning: Permanently added '10.128.1.111' (ED25519) to the list of known hosts. 1970/01/01 00:00:32 parsed 1 programs [ 33.364269][ T4326] cgroup: Unknown subsys name 'net' [ 33.622213][ T4326] cgroup: Unknown subsys name 'rlimit' [ 33.881883][ T4326] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 39.451519][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.452785][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.454752][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 39.461584][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.462770][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.464324][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.841557][ T4373] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 39.843125][ T4373] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 39.844664][ T4373] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 39.846048][ T4373] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 39.847604][ T4373] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 39.848777][ T4373] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 40.156853][ T4386] chnl_net:caif_netlink_parms(): no params data found [ 40.175949][ T4386] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.177150][ T4386] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.178607][ T4386] device bridge_slave_0 entered promiscuous mode [ 40.180768][ T4386] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.181829][ T4386] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.183287][ T4386] device bridge_slave_1 entered promiscuous mode [ 40.190486][ T4386] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 40.192765][ T4386] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 40.200293][ T4386] team0: Port device team_slave_0 added [ 40.201899][ T4386] team0: Port device team_slave_1 added [ 40.207310][ T4386] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 40.208356][ T4386] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.212838][ T4386] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 40.215145][ T4386] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 40.216036][ T4386] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.219628][ T4386] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 40.260972][ T4386] device hsr_slave_0 entered promiscuous mode [ 40.299965][ T4386] device hsr_slave_1 entered promiscuous mode [ 40.381757][ T4386] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 40.411166][ T4386] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 40.482642][ T4386] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 40.530648][ T4386] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 40.602386][ T4386] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.605791][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.607365][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.610418][ T4386] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.612676][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.614198][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.615775][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.616919][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.618415][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 40.621672][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.623179][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.624599][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.625707][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.628683][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.641889][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.644443][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.646217][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.647736][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.652225][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 40.653802][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.655299][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.656843][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.659161][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.661223][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.663767][ T4386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.730049][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 40.731263][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 40.734419][ T4386] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.739575][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 40.741888][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.747249][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 40.748718][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.750475][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.751825][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.753996][ T4386] device veth0_vlan entered promiscuous mode [ 40.756800][ T4386] device veth1_vlan entered promiscuous mode [ 40.772710][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 40.774159][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 40.775738][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 40.777400][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.779536][ T4386] device veth0_macvtap entered promiscuous mode [ 40.782503][ T4386] device veth1_macvtap entered promiscuous mode [ 40.786960][ T4386] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 40.788132][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 40.789588][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 40.791602][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.793058][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.795885][ T4386] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 40.797055][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.798507][ T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.810865][ T4386] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.812144][ T4386] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.813473][ T4386] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.814799][ T4386] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:41 executed programs: 0 [ 41.108435][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 41.109923][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 41.111448][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 41.113057][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 41.114432][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 41.115541][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 41.363010][ T4430] chnl_net:caif_netlink_parms(): no params data found [ 41.377823][ T4430] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.378953][ T4430] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.380512][ T4430] device bridge_slave_0 entered promiscuous mode [ 41.382185][ T4430] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.383316][ T4430] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.384653][ T4430] device bridge_slave_1 entered promiscuous mode [ 41.722604][ T4430] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 41.726858][ T4430] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 41.735014][ T4430] team0: Port device team_slave_0 added [ 41.736674][ T4430] team0: Port device team_slave_1 added [ 41.742258][ T4430] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 41.743310][ T4430] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 41.747066][ T4430] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 41.749191][ T4430] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 41.750874][ T4430] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 41.754635][ T4430] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 41.840876][ T4430] device hsr_slave_0 entered promiscuous mode [ 41.879993][ T4430] device hsr_slave_1 entered promiscuous mode [ 41.939890][ T4430] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 41.941158][ T4430] Cannot create hsr debugfs directory [ 42.400858][ T4430] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 43.130033][ T47] Bluetooth: hci0: command 0x0409 tx timeout [ 44.660832][ T4430] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 45.210308][ T47] Bluetooth: hci0: command 0x041b tx timeout [ 46.161014][ T4430] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.251351][ T4430] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.413909][ T4430] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 46.460787][ T4430] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 46.571475][ T4430] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 46.620675][ T4430] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 46.741893][ T4430] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.745026][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 46.746432][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.748680][ T4430] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.783151][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 46.784757][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 46.786220][ T4440] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.787380][ T4440] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.788756][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 46.791357][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 46.792785][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 46.794142][ T4440] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.795209][ T4440] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.797348][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 46.800893][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 46.803438][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 46.804864][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 46.806420][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 46.809719][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 46.811591][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 46.814725][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 46.816242][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 46.818584][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 46.820292][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 46.822582][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 46.894725][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 46.895945][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 46.898636][ T4430] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.904630][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 46.906131][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 46.911213][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 46.912755][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 46.914279][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 46.915626][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 46.918052][ T4430] device veth0_vlan entered promiscuous mode [ 46.921164][ T4430] device veth1_vlan entered promiscuous mode [ 46.927402][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 46.928897][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 46.930565][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 46.932046][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 46.934223][ T4430] device veth0_macvtap entered promiscuous mode [ 46.936349][ T4430] device veth1_macvtap entered promiscuous mode [ 46.983439][ T4430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.985004][ T4430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.986920][ T4430] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.988060][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 46.989545][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 46.991052][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 46.992574][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 46.994972][ T4430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.996474][ T4430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.998259][ T4430] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.999405][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 47.000950][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 47.003227][ T4430] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.004630][ T4430] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.005971][ T4430] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.007325][ T4430] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.054059][ T4440] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.055330][ T4440] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.057637][ T4440] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 47.063043][ T4440] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.064193][ T4440] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.065791][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 47.113400][ T39] device hsr_slave_0 left promiscuous mode [ 47.121659][ T4452] loop0: detected capacity change from 0 to 512 [ 47.142102][ T4452] [ 47.142487][ T4452] ====================================================== [ 47.143579][ T4452] WARNING: possible circular locking dependency detected [ 47.144658][ T4452] syzkaller #0 Not tainted [ 47.145285][ T4452] ------------------------------------------------------ [ 47.146338][ T4452] syz.0.17/4452 is trying to acquire lock: [ 47.147191][ T4452] ffff0000d18c0b98 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x188/0x284c [ 47.148664][ T4452] [ 47.148664][ T4452] but task is already holding lock: [ 47.149710][ T4452] ffff0000e9de28e8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790 [ 47.151163][ T4452] [ 47.151163][ T4452] which lock already depends on the new lock. [ 47.151163][ T4452] [ 47.152672][ T4452] [ 47.152672][ T4452] the existing dependency chain (in reverse order) is: [ 47.153939][ T4452] [ 47.153939][ T4452] -> #2 (&ei->xattr_sem){++++}-{3:3}: [ 47.155071][ T4452] down_read+0x64/0x304 [ 47.155759][ T4452] ext4_setattr+0x7c4/0x150c [ 47.156512][ T4452] notify_change+0xb0c/0xdcc [ 47.157297][ T4452] chown_common+0x414/0x574 [ 47.157965][ T4452] do_fchownat+0x158/0x268 [ 47.158667][ T4452] __arm64_sys_fchownat+0xb8/0xd4 [ 47.159552][ T4452] invoke_syscall+0x98/0x2bc [ 47.160274][ T4452] el0_svc_common+0x138/0x258 [ 47.161032][ T4452] do_el0_svc+0x58/0x13c [ 47.161727][ T4452] el0_svc+0x58/0x138 [ 47.162344][ T4452] el0t_64_sync_handler+0x84/0xf0 [ 47.163174][ T4452] el0t_64_sync+0x18c/0x190 [ 47.163934][ T4452] [ 47.163934][ T4452] -> #1 (jbd2_handle){.+.+}-{0:0}: [ 47.165088][ T4452] start_this_handle+0xfe0/0x122c [ 47.165864][ T4452] jbd2__journal_start+0x288/0x51c [ 47.166696][ T4452] __ext4_journal_start_sb+0x2fc/0x674 [ 47.167556][ T4452] ext4_writepages+0xa28/0x284c [ 47.168334][ T4452] do_writepages+0x2c0/0x4fc [ 47.169058][ T4452] __writeback_single_inode+0x164/0x157c [ 47.169976][ T4452] writeback_sb_inodes+0x824/0x1404 [ 47.170766][ T4452] __writeback_inodes_wb+0x110/0x394 [ 47.171604][ T4452] wb_writeback+0x414/0xfb0 [ 47.172357][ T4452] wb_workfn+0xac0/0xd98 [ 47.173069][ T4452] process_one_work+0x7f4/0x13a8 [ 47.173890][ T4452] worker_thread+0x8c8/0xfbc [ 47.174629][ T4452] kthread+0x250/0x2d8 [ 47.175310][ T4452] ret_from_fork+0x10/0x20 [ 47.176019][ T4452] [ 47.176019][ T4452] -> #0 (&sbi->s_writepages_rwsem){.+.+}-{0:0}: [ 47.177211][ T4452] __lock_acquire+0x293c/0x6544 [ 47.177997][ T4452] lock_acquire+0x20c/0x644 [ 47.178694][ T4452] percpu_down_read+0x70/0x2a8 [ 47.179475][ T4452] ext4_writepages+0x188/0x284c [ 47.180227][ T4452] do_writepages+0x2c0/0x4fc [ 47.180940][ T4452] __writeback_single_inode+0x164/0x157c [ 47.181826][ T4452] writeback_single_inode+0x1c0/0x720 [ 47.182647][ T4452] write_inode_now+0x144/0x1b0 [ 47.183421][ T4452] iput+0x5cc/0x7f4 [ 47.184059][ T4452] ext4_xattr_block_set+0x17a4/0x2810 [ 47.184883][ T4452] ext4_expand_extra_isize_ea+0xcb8/0x15cc [ 47.185744][ T4452] __ext4_expand_extra_isize+0x298/0x358 [ 47.186626][ T4452] __ext4_mark_inode_dirty+0x3e4/0x790 [ 47.187519][ T4452] ext4_evict_inode+0xb58/0x1270 [ 47.188345][ T4452] evict+0x3c8/0x810 [ 47.188972][ T4452] iput+0x764/0x7f4 [ 47.189613][ T4452] ext4_process_orphan+0x240/0x2b4 [ 47.190456][ T4452] ext4_orphan_cleanup+0x908/0x104c [ 47.191308][ T4452] ext4_fill_super+0x6440/0x68a8 [ 47.192085][ T4452] get_tree_bdev+0x358/0x544 [ 47.192862][ T4452] ext4_get_tree+0x28/0x38 [ 47.193597][ T4452] vfs_get_tree+0x90/0x274 [ 47.194320][ T4452] do_new_mount+0x228/0x810 [ 47.195066][ T4452] path_mount+0x5b4/0xe78 [ 47.195733][ T4452] __arm64_sys_mount+0x49c/0x584 [ 47.196497][ T4452] invoke_syscall+0x98/0x2bc [ 47.197209][ T4452] el0_svc_common+0x138/0x258 [ 47.197925][ T4452] do_el0_svc+0x58/0x13c [ 47.198631][ T4452] el0_svc+0x58/0x138 [ 47.199287][ T4452] el0t_64_sync_handler+0x84/0xf0 [ 47.200065][ T4452] el0t_64_sync+0x18c/0x190 [ 47.200744][ T4452] [ 47.200744][ T4452] other info that might help us debug this: [ 47.200744][ T4452] [ 47.202156][ T4452] Chain exists of: [ 47.202156][ T4452] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem [ 47.202156][ T4452] [ 47.204092][ T4452] Possible unsafe locking scenario: [ 47.204092][ T4452] [ 47.205147][ T4452] CPU0 CPU1 [ 47.205921][ T4452] ---- ---- [ 47.206671][ T4452] lock(&ei->xattr_sem); [ 47.207302][ T4452] lock(jbd2_handle); [ 47.208263][ T4452] lock(&ei->xattr_sem); [ 47.209275][ T4452] lock(&sbi->s_writepages_rwsem); [ 47.210003][ T4452] [ 47.210003][ T4452] *** DEADLOCK *** [ 47.210003][ T4452] [ 47.211139][ T4452] 3 locks held by syz.0.17/4452: [ 47.211837][ T4452] #0: ffff0000e114e0e0 (&type->s_umount_key#26/1){+.+.}-{3:3}, at: alloc_super+0x1a4/0x804 [ 47.213286][ T4452] #1: ffff0000e114e650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x3dc/0x1270 [ 47.214659][ T4452] #2: ffff0000e9de28e8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790 [ 47.216140][ T4452] [ 47.216140][ T4452] stack backtrace: [ 47.217047][ T4452] CPU: 0 PID: 4452 Comm: syz.0.17 Not tainted syzkaller #0 [ 47.218063][ T4452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 47.219543][ T4452] Call trace: [ 47.220011][ T4452] dump_backtrace+0x1c8/0x1f4 [ 47.220719][ T4452] show_stack+0x2c/0x3c [ 47.221328][ T4452] __dump_stack+0x30/0x40 [ 47.221970][ T4452] dump_stack_lvl+0xf8/0x160 [ 47.222610][ T4452] dump_stack+0x1c/0x5c [ 47.223251][ T4452] print_circular_bug+0x148/0x1b0 [ 47.223991][ T4452] check_noncircular+0x240/0x2d4 [ 47.224728][ T4452] __lock_acquire+0x293c/0x6544 [ 47.225502][ T4452] lock_acquire+0x20c/0x644 [ 47.226189][ T4452] percpu_down_read+0x70/0x2a8 [ 47.226894][ T4452] ext4_writepages+0x188/0x284c [ 47.227611][ T4452] do_writepages+0x2c0/0x4fc [ 47.228326][ T4452] __writeback_single_inode+0x164/0x157c [ 47.229100][ T4452] writeback_single_inode+0x1c0/0x720 [ 47.229900][ T4452] write_inode_now+0x144/0x1b0 [ 47.230592][ T4452] iput+0x5cc/0x7f4 [ 47.231181][ T4452] ext4_xattr_block_set+0x17a4/0x2810 [ 47.231989][ T4452] ext4_expand_extra_isize_ea+0xcb8/0x15cc [ 47.232769][ T4452] __ext4_expand_extra_isize+0x298/0x358 [ 47.233585][ T4452] __ext4_mark_inode_dirty+0x3e4/0x790 [ 47.234358][ T4452] ext4_evict_inode+0xb58/0x1270 [ 47.235117][ T4452] evict+0x3c8/0x810 [ 47.235707][ T4452] iput+0x764/0x7f4 [ 47.236315][ T4452] ext4_process_orphan+0x240/0x2b4 [ 47.237041][ T4452] ext4_orphan_cleanup+0x908/0x104c [ 47.237800][ T4452] ext4_fill_super+0x6440/0x68a8 [ 47.238529][ T4452] get_tree_bdev+0x358/0x544 [ 47.239191][ T4452] ext4_get_tree+0x28/0x38 [ 47.239827][ T4452] vfs_get_tree+0x90/0x274 [ 47.240495][ T4452] do_new_mount+0x228/0x810 [ 47.241179][ T4452] path_mount+0x5b4/0xe78 [ 47.241811][ T4452] __arm64_sys_mount+0x49c/0x584 [ 47.242525][ T4452] invoke_syscall+0x98/0x2bc [ 47.243192][ T4452] el0_svc_common+0x138/0x258 [ 47.243886][ T4452] do_el0_svc+0x58/0x13c [ 47.244480][ T4452] el0_svc+0x58/0x138 [ 47.245064][ T4452] el0t_64_sync_handler+0x84/0xf0 [ 47.245844][ T4452] el0t_64_sync+0x18c/0x190 [ 47.247172][ T39] device hsr_slave_1 left promiscuous mode [ 47.247703][ T4452] ------------[ cut here ]------------ [ 47.248952][ T4452] EA inode 11 i_nlink=2 [ 47.249011][ T4452] WARNING: CPU: 0 PID: 4452 at fs/ext4/xattr.c:1022 ext4_xattr_inode_update_ref+0x42c/0x470 [ 47.251049][ T4452] Modules linked in: [ 47.251646][ T4452] CPU: 0 PID: 4452 Comm: syz.0.17 Not tainted syzkaller #0 [ 47.252716][ T4452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 47.254192][ T4452] pstate: 62400005 (nZCv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 47.255347][ T4452] pc : ext4_xattr_inode_update_ref+0x42c/0x470 [ 47.256213][ T4452] lr : ext4_xattr_inode_update_ref+0x42c/0x470 [ 47.257113][ T4452] sp : ffff800021336e00 [ 47.257708][ T4452] x29: ffff800021336ea0 x28: 0000000000000000 x27: dfff800000000000 [ 47.258895][ T4452] x26: 1fffe0001d3bc95c x25: ffff700004266dc4 x24: 0000000000000000 [ 47.260164][ T4452] x23: ffff800017a8a000 x22: ffff0000e9de4928 x21: 0000000000000002 [ 47.261396][ T4452] x20: 0000000000000001 x19: ffff0000e9de48e8 x18: ffff800011abbcc0 [ 47.262597][ T4452] x17: 0000000000000000 x16: ffff800008042d90 x15: 0000000000000000 [ 47.263746][ T4452] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000ff0100 [ 47.264989][ T4452] x11: ff00800008191ca8 x10: 0000000000000000 x9 : 9d3fae34bbad2400 [ 47.266268][ T4452] x8 : 9d3fae34bbad2400 x7 : 0000000000000001 x6 : 0000000000000001 [ 47.267512][ T4452] x5 : ffff800021336898 x4 : ffff8000151a4920 x3 : ffff800008311fcc [ 47.268712][ T4452] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 47.269860][ T4452] Call trace: [ 47.270341][ T4452] ext4_xattr_inode_update_ref+0x42c/0x470 [ 47.271208][ T4452] ext4_xattr_set_entry+0x918/0x15ac [ 47.272003][ T4452] ext4_xattr_ibody_set+0x204/0x600 [ 47.272762][ T4452] ext4_expand_extra_isize_ea+0xd00/0x15cc [ 47.273593][ T4452] __ext4_expand_extra_isize+0x298/0x358 [ 47.274407][ T4452] __ext4_mark_inode_dirty+0x3e4/0x790 [ 47.275207][ T4452] ext4_evict_inode+0xb58/0x1270 [ 47.275930][ T4452] evict+0x3c8/0x810 [ 47.276522][ T4452] iput+0x764/0x7f4 [ 47.277100][ T4452] ext4_process_orphan+0x240/0x2b4 [ 47.277863][ T4452] ext4_orphan_cleanup+0x908/0x104c [ 47.278589][ T4452] ext4_fill_super+0x6440/0x68a8 [ 47.279337][ T4452] get_tree_bdev+0x358/0x544 [ 47.279989][ T4452] ext4_get_tree+0x28/0x38 [ 47.280641][ T4452] vfs_get_tree+0x90/0x274 [ 47.281260][ T4452] do_new_mount+0x228/0x810 [ 47.281902][ T4452] path_mount+0x5b4/0xe78 [ 47.282485][ T4452] __arm64_sys_mount+0x49c/0x584 [ 47.283213][ T4452] invoke_syscall+0x98/0x2bc [ 47.283855][ T4452] el0_svc_common+0x138/0x258 [ 47.284584][ T4452] do_el0_svc+0x58/0x13c [ 47.285253][ T4452] el0_svc+0x58/0x138 [ 47.285835][ T4452] el0t_64_sync_handler+0x84/0xf0 [ 47.286570][ T4452] el0t_64_sync+0x18c/0x190 [ 47.287259][ T4452] irq event stamp: 4203 [ 47.287844][ T4452] hardirqs last enabled at (4203): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 47.289346][ T4452] hardirqs last disabled at (4202): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 47.290764][ T4452] softirqs last enabled at (2696): [] local_bh_enable+0x10/0x34 [ 47.292108][ T4452] softirqs last disabled at (2694): [] local_bh_disable+0x10/0x34 [ 47.293505][ T4452] ---[ end trace 0000000000000000 ]--- [ 47.295462][ T47] Bluetooth: hci0: command 0x040f tx timeout [ 47.295713][ T4452] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 47.298605][ T4452] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117 [ 47.300591][ T4452] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 47.302644][ T4452] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117 [ 47.304453][ T4452] EXT4-fs (loop0): 1 orphan inode deleted [ 47.305300][ T4452] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 47.315135][ T4430] EXT4-fs (loop0): unmounting filesystem. [ 47.339948][ T39] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 47.341177][ T39] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 47.342804][ T39] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 47.343863][ T39] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 47.345101][ T39] device bridge_slave_1 left promiscuous mode [ 47.345985][ T39] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.400432][ T39] device bridge_slave_0 left promiscuous mode [ 47.401382][ T39] bridge0: port 1(bridge_slave_0) entered disabled state