Warning: Permanently added '10.128.1.92' (ED25519) to the list of known hosts. 1970/01/01 00:00:45 parsed 1 programs [ 46.518982][ T4329] cgroup: Unknown subsys name 'net' [ 46.744838][ T4329] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 47.007690][ T4329] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 50.853501][ T489] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.854858][ T489] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.856455][ T169] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 50.864250][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.865503][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.866999][ T169] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 51.187596][ T4358] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 51.189030][ T4358] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 51.190413][ T4358] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 51.191873][ T4358] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 51.193943][ T4358] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 51.195191][ T4358] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 52.524748][ T4392] chnl_net:caif_netlink_parms(): no params data found [ 52.541689][ T4392] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.543034][ T4392] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.544499][ T4392] device bridge_slave_0 entered promiscuous mode [ 52.546734][ T4392] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.547923][ T4392] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.549405][ T4392] device bridge_slave_1 entered promiscuous mode [ 52.556886][ T4392] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 52.559269][ T4392] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 52.566191][ T4392] team0: Port device team_slave_0 added [ 52.567892][ T4392] team0: Port device team_slave_1 added [ 52.574413][ T4392] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 52.575544][ T4392] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.579447][ T4392] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 52.581816][ T4392] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 52.583118][ T4392] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.587060][ T4392] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 52.643448][ T4392] device hsr_slave_0 entered promiscuous mode [ 52.692498][ T4392] device hsr_slave_1 entered promiscuous mode [ 52.777500][ T4392] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 52.793946][ T4392] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 52.833249][ T4392] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 52.864576][ T4392] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 52.921084][ T4392] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.922319][ T4392] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.923743][ T4392] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.924823][ T4392] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.941523][ T4392] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.945340][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 52.947318][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.949020][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.954978][ T4392] 8021q: adding VLAN 0 to HW filter on device team0 [ 52.957249][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 52.958839][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 52.960356][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.961484][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.977826][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 52.979282][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 52.980738][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.981879][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.984450][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 52.987294][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 52.989819][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 52.991608][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 52.994074][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 52.996793][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 52.998344][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 53.001004][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 53.002392][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 53.005618][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 53.007133][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 53.009533][ T4392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 53.077580][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 53.078889][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 53.081933][ T4392] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 53.087923][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 53.089553][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 53.094970][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 53.096250][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 53.097764][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 53.099092][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 53.101048][ T4392] device veth0_vlan entered promiscuous mode [ 53.104824][ T4392] device veth1_vlan entered promiscuous mode [ 53.110582][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 53.111900][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 53.114545][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 53.116134][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 53.126506][ T4392] device veth0_macvtap entered promiscuous mode [ 53.128762][ T4392] device veth1_macvtap entered promiscuous mode [ 53.135455][ T4392] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 53.136729][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 53.138172][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 53.140185][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 53.141577][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 53.144752][ T4392] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 53.145963][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 53.147447][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 53.149785][ T4392] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.151107][ T4392] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.154128][ T4392] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.155573][ T4392] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:53 executed programs: 0 [ 53.438093][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 53.439715][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 53.441003][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 53.443219][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 53.444579][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 53.445906][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 54.001989][ T4450] chnl_net:caif_netlink_parms(): no params data found [ 54.018405][ T4450] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.019573][ T4450] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.021009][ T4450] device bridge_slave_0 entered promiscuous mode [ 54.025604][ T4450] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.026800][ T4450] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.028698][ T4450] device bridge_slave_1 entered promiscuous mode [ 54.036639][ T4450] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.038854][ T4450] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.046109][ T4450] team0: Port device team_slave_0 added [ 54.048612][ T4450] team0: Port device team_slave_1 added [ 54.054871][ T4450] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.055922][ T4450] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.060034][ T4450] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.062241][ T4450] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.063843][ T4450] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.067630][ T4450] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.133642][ T4450] device hsr_slave_0 entered promiscuous mode [ 54.182484][ T4450] device hsr_slave_1 entered promiscuous mode [ 54.222388][ T4450] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.223585][ T4450] Cannot create hsr debugfs directory [ 54.574213][ T489] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.452579][ T47] Bluetooth: hci0: command 0x0409 tx timeout [ 57.273726][ T489] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 57.532578][ T4358] Bluetooth: hci0: command 0x041b tx timeout [ 58.683393][ T489] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 58.764436][ T489] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 59.612636][ T47] Bluetooth: hci0: command 0x040f tx timeout [ 59.774694][ T4450] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 59.864132][ T4450] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 59.903190][ T4450] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 59.994403][ T4450] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 60.121086][ T4450] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.124723][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.126620][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.129061][ T4450] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.131682][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 60.133503][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 60.135042][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.136227][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.137630][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.141620][ T489] device hsr_slave_0 left promiscuous mode [ 60.202419][ T489] device hsr_slave_1 left promiscuous mode [ 60.282714][ T489] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 60.283854][ T489] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 60.285455][ T489] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 60.286535][ T489] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 60.287903][ T489] device bridge_slave_1 left promiscuous mode [ 60.288988][ T489] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.333151][ T489] device bridge_slave_0 left promiscuous mode [ 60.334241][ T489] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.462468][ T489] device veth1_macvtap left promiscuous mode [ 60.463599][ T489] device veth0_macvtap left promiscuous mode [ 60.464619][ T489] device veth1_vlan left promiscuous mode [ 60.465572][ T489] device veth0_vlan left promiscuous mode [ 61.692354][ T47] Bluetooth: hci0: command 0x0419 tx timeout [ 62.283520][ T489] team0 (unregistering): Port device team_slave_1 removed [ 62.472830][ T489] team0 (unregistering): Port device team_slave_0 removed [ 62.642795][ T489] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 62.822648][ T489] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 64.493561][ T2061] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.494562][ T7] cfg80211: failed to load regulatory.db [ 64.494702][ T2061] ieee802154 phy1 wpan1: encryption failed: -22 [ 65.393921][ T489] bond0 (unregistering): Released all slaves [ 65.630917][ T4450] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 65.632719][ T4450] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 65.636439][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 65.637995][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 65.639644][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.640720][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 65.642036][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 65.644220][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 65.645856][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 65.647458][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 65.649417][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 65.651026][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 65.655447][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 65.656926][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 65.658648][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 65.659994][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 65.662015][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 65.664431][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 65.714967][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 65.716173][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 65.718879][ T4450] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 65.725346][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 65.726968][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 65.732673][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 65.734242][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 65.735720][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 65.737048][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 65.738829][ T4450] device veth0_vlan entered promiscuous mode [ 65.741771][ T4450] device veth1_vlan entered promiscuous mode [ 65.748442][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 65.749895][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 65.751288][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 65.753167][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 65.755482][ T4450] device veth0_macvtap entered promiscuous mode [ 65.757662][ T4450] device veth1_macvtap entered promiscuous mode [ 65.763248][ T4450] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.764357][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 65.765895][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 65.767275][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 65.768746][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 65.771276][ T4450] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.772833][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 65.774307][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 65.776584][ T4450] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.777966][ T4450] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.779328][ T4450] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.780677][ T4450] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.798199][ T4458] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.801973][ T4458] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.806080][ T169] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 65.809400][ T4458] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.810692][ T4458] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.812753][ T4458] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 65.862889][ T4518] loop0: detected capacity change from 0 to 512 [ 65.881997][ T4518] [ 65.882412][ T4518] ====================================================== [ 65.883496][ T4518] WARNING: possible circular locking dependency detected [ 65.884727][ T4518] syzkaller #0 Not tainted [ 65.885406][ T4518] ------------------------------------------------------ [ 65.886540][ T4518] syz.0.17/4518 is trying to acquire lock: [ 65.887475][ T4518] ffff0000d8b18b98 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x188/0x284c [ 65.889041][ T4518] [ 65.889041][ T4518] but task is already holding lock: [ 65.890155][ T4518] ffff0000ea7b0ad0 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790 [ 65.891749][ T4518] [ 65.891749][ T4518] which lock already depends on the new lock. [ 65.891749][ T4518] [ 65.893315][ T4518] [ 65.893315][ T4518] the existing dependency chain (in reverse order) is: [ 65.894723][ T4518] [ 65.894723][ T4518] -> #2 (&ei->xattr_sem){++++}-{3:3}: [ 65.895859][ T4518] down_read+0x64/0x304 [ 65.896607][ T4518] ext4_setattr+0x7c4/0x150c [ 65.897363][ T4518] notify_change+0xb0c/0xdcc [ 65.898154][ T4518] chown_common+0x414/0x574 [ 65.898889][ T4518] do_fchownat+0x158/0x268 [ 65.899648][ T4518] __arm64_sys_fchownat+0xb8/0xd4 [ 65.900459][ T4518] invoke_syscall+0x98/0x2bc [ 65.901245][ T4518] el0_svc_common+0x138/0x258 [ 65.902092][ T4518] do_el0_svc+0x58/0x13c [ 65.902787][ T4518] el0_svc+0x58/0x138 [ 65.903533][ T4518] el0t_64_sync_handler+0x84/0xf0 [ 65.904497][ T4518] el0t_64_sync+0x18c/0x190 [ 65.905347][ T4518] [ 65.905347][ T4518] -> #1 (jbd2_handle){++++}-{0:0}: [ 65.906625][ T4518] start_this_handle+0xfe0/0x122c [ 65.907623][ T4518] jbd2__journal_start+0x288/0x51c [ 65.908606][ T4518] __ext4_journal_start_sb+0x2fc/0x674 [ 65.909647][ T4518] ext4_writepages+0xa28/0x284c [ 65.910546][ T4518] do_writepages+0x2c0/0x4fc [ 65.911340][ T4518] __writeback_single_inode+0x164/0x157c [ 65.912292][ T4518] writeback_sb_inodes+0x824/0x1404 [ 65.913231][ T4518] __writeback_inodes_wb+0x110/0x394 [ 65.914151][ T4518] wb_writeback+0x414/0xfb0 [ 65.914933][ T4518] wb_workfn+0xac0/0xd98 [ 65.915661][ T4518] process_one_work+0x7f4/0x13a8 [ 65.916514][ T4518] worker_thread+0x8c8/0xfbc [ 65.917308][ T4518] kthread+0x250/0x2d8 [ 65.917982][ T4518] ret_from_fork+0x10/0x20 [ 65.918726][ T4518] [ 65.918726][ T4518] -> #0 (&sbi->s_writepages_rwsem){.+.+}-{0:0}: [ 65.920225][ T4518] __lock_acquire+0x293c/0x6544 [ 65.921140][ T4518] lock_acquire+0x20c/0x644 [ 65.921966][ T4518] percpu_down_read+0x70/0x2a8 [ 65.922810][ T4518] ext4_writepages+0x188/0x284c [ 65.923647][ T4518] do_writepages+0x2c0/0x4fc [ 65.924488][ T4518] __writeback_single_inode+0x164/0x157c [ 65.925386][ T4518] writeback_single_inode+0x1c0/0x720 [ 65.926288][ T4518] write_inode_now+0x144/0x1b0 [ 65.927061][ T4518] iput+0x5cc/0x7f4 [ 65.927758][ T4518] ext4_xattr_block_set+0x17a4/0x2810 [ 65.928645][ T4518] ext4_expand_extra_isize_ea+0xcb8/0x15cc [ 65.929588][ T4518] __ext4_expand_extra_isize+0x298/0x358 [ 65.930549][ T4518] __ext4_mark_inode_dirty+0x3e4/0x790 [ 65.931454][ T4518] ext4_evict_inode+0xb58/0x1270 [ 65.932286][ T4518] evict+0x3c8/0x810 [ 65.932931][ T4518] iput+0x764/0x7f4 [ 65.933566][ T4518] ext4_process_orphan+0x240/0x2b4 [ 65.934431][ T4518] ext4_orphan_cleanup+0x908/0x104c [ 65.935289][ T4518] ext4_fill_super+0x6440/0x68a8 [ 65.936140][ T4518] get_tree_bdev+0x358/0x544 [ 65.936965][ T4518] ext4_get_tree+0x28/0x38 [ 65.937826][ T4518] vfs_get_tree+0x90/0x274 [ 65.938642][ T4518] do_new_mount+0x228/0x810 [ 65.939476][ T4518] path_mount+0x5b4/0xe78 [ 65.940224][ T4518] __arm64_sys_mount+0x49c/0x584 [ 65.941105][ T4518] invoke_syscall+0x98/0x2bc [ 65.941950][ T4518] el0_svc_common+0x138/0x258 [ 65.942734][ T4518] do_el0_svc+0x58/0x13c [ 65.943478][ T4518] el0_svc+0x58/0x138 [ 65.944209][ T4518] el0t_64_sync_handler+0x84/0xf0 [ 65.945094][ T4518] el0t_64_sync+0x18c/0x190 [ 65.945867][ T4518] [ 65.945867][ T4518] other info that might help us debug this: [ 65.945867][ T4518] [ 65.947460][ T4518] Chain exists of: [ 65.947460][ T4518] &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem [ 65.947460][ T4518] [ 65.949604][ T4518] Possible unsafe locking scenario: [ 65.949604][ T4518] [ 65.950732][ T4518] CPU0 CPU1 [ 65.951515][ T4518] ---- ---- [ 65.952248][ T4518] lock(&ei->xattr_sem); [ 65.952979][ T4518] lock(jbd2_handle); [ 65.954096][ T4518] lock(&ei->xattr_sem); [ 65.955232][ T4518] lock(&sbi->s_writepages_rwsem); [ 65.956064][ T4518] [ 65.956064][ T4518] *** DEADLOCK *** [ 65.956064][ T4518] [ 65.957255][ T4518] 3 locks held by syz.0.17/4518: [ 65.958028][ T4518] #0: ffff0000d8b1a0e0 (&type->s_umount_key#26/1){+.+.}-{3:3}, at: alloc_super+0x1a4/0x804 [ 65.959791][ T4518] #1: ffff0000d8b1a650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x3dc/0x1270 [ 65.961409][ T4518] #2: ffff0000ea7b0ad0 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x790 [ 65.963123][ T4518] [ 65.963123][ T4518] stack backtrace: [ 65.964084][ T4518] CPU: 0 PID: 4518 Comm: syz.0.17 Not tainted syzkaller #0 [ 65.965303][ T4518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 65.966858][ T4518] Call trace: [ 65.967363][ T4518] dump_backtrace+0x1c8/0x1f4 [ 65.968076][ T4518] show_stack+0x2c/0x3c [ 65.968719][ T4518] __dump_stack+0x30/0x40 [ 65.969391][ T4518] dump_stack_lvl+0xf8/0x160 [ 65.970188][ T4518] dump_stack+0x1c/0x5c [ 65.970881][ T4518] print_circular_bug+0x148/0x1b0 [ 65.971701][ T4518] check_noncircular+0x240/0x2d4 [ 65.972480][ T4518] __lock_acquire+0x293c/0x6544 [ 65.973301][ T4518] lock_acquire+0x20c/0x644 [ 65.974071][ T4518] percpu_down_read+0x70/0x2a8 [ 65.974879][ T4518] ext4_writepages+0x188/0x284c [ 65.975668][ T4518] do_writepages+0x2c0/0x4fc [ 65.976371][ T4518] __writeback_single_inode+0x164/0x157c [ 65.977241][ T4518] writeback_single_inode+0x1c0/0x720 [ 65.978096][ T4518] write_inode_now+0x144/0x1b0 [ 65.978896][ T4518] iput+0x5cc/0x7f4 [ 65.979560][ T4518] ext4_xattr_block_set+0x17a4/0x2810 [ 65.980434][ T4518] ext4_expand_extra_isize_ea+0xcb8/0x15cc [ 65.981379][ T4518] __ext4_expand_extra_isize+0x298/0x358 [ 65.982231][ T4518] __ext4_mark_inode_dirty+0x3e4/0x790 [ 65.983110][ T4518] ext4_evict_inode+0xb58/0x1270 [ 65.983884][ T4518] evict+0x3c8/0x810 [ 65.984487][ T4518] iput+0x764/0x7f4 [ 65.985098][ T4518] ext4_process_orphan+0x240/0x2b4 [ 65.985922][ T4518] ext4_orphan_cleanup+0x908/0x104c [ 65.986676][ T4518] ext4_fill_super+0x6440/0x68a8 [ 65.987544][ T4518] get_tree_bdev+0x358/0x544 [ 65.988343][ T4518] ext4_get_tree+0x28/0x38 [ 65.989019][ T4518] vfs_get_tree+0x90/0x274 [ 65.989768][ T4518] do_new_mount+0x228/0x810 [ 65.990498][ T4518] path_mount+0x5b4/0xe78 [ 65.991164][ T4518] __arm64_sys_mount+0x49c/0x584 [ 65.991971][ T4518] invoke_syscall+0x98/0x2bc [ 65.992754][ T4518] el0_svc_common+0x138/0x258 [ 65.993554][ T4518] do_el0_svc+0x58/0x13c [ 65.994183][ T4518] el0_svc+0x58/0x138 [ 65.994806][ T4518] el0t_64_sync_handler+0x84/0xf0 [ 65.995547][ T4518] el0t_64_sync+0x18c/0x190 [ 65.997358][ T4518] ------------[ cut here ]------------ [ 65.998244][ T4518] EA inode 11 i_nlink=2 [ 65.998312][ T4518] WARNING: CPU: 0 PID: 4518 at fs/ext4/xattr.c:1022 ext4_xattr_inode_update_ref+0x42c/0x470 [ 66.000436][ T4518] Modules linked in: [ 66.001032][ T4518] CPU: 0 PID: 4518 Comm: syz.0.17 Not tainted syzkaller #0 [ 66.002206][ T4518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 66.003752][ T4518] pstate: 62400005 (nZCv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 66.005093][ T4518] pc : ext4_xattr_inode_update_ref+0x42c/0x470 [ 66.006075][ T4518] lr : ext4_xattr_inode_update_ref+0x42c/0x470 [ 66.007155][ T4518] sp : ffff800021356e00 [ 66.007784][ T4518] x29: ffff800021356ea0 x28: 0000000000000000 x27: dfff800000000000 [ 66.009041][ T4518] x26: 1fffe0001d4f6599 x25: ffff70000426adc4 x24: 0000000000000000 [ 66.010293][ T4518] x23: ffff800017a15000 x22: ffff0000ea7b2b10 x21: 0000000000000002 [ 66.011586][ T4518] x20: 0000000000000001 x19: ffff0000ea7b2ad0 x18: ffff800011a5bd40 [ 66.012985][ T4518] x17: 0000000000000000 x16: ffff800008042d90 x15: 0000000000000000 [ 66.014237][ T4518] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000ff0100 [ 66.015571][ T4518] x11: ff008000081924a8 x10: 0000000000000000 x9 : 07219e422e5e9300 [ 66.016851][ T4518] x8 : 07219e422e5e9300 x7 : 0000000000000001 x6 : 0000000000000001 [ 66.018116][ T4518] x5 : ffff800021356898 x4 : ffff800015134e00 x3 : ffff800008313428 [ 66.019308][ T4518] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 66.020440][ T4518] Call trace: [ 66.020923][ T4518] ext4_xattr_inode_update_ref+0x42c/0x470 [ 66.021859][ T4518] ext4_xattr_set_entry+0x918/0x15ac [ 66.022726][ T4518] ext4_xattr_ibody_set+0x204/0x600 [ 66.023475][ T4518] ext4_expand_extra_isize_ea+0xd00/0x15cc [ 66.024365][ T4518] __ext4_expand_extra_isize+0x298/0x358 [ 66.025217][ T4518] __ext4_mark_inode_dirty+0x3e4/0x790 [ 66.026072][ T4518] ext4_evict_inode+0xb58/0x1270 [ 66.026836][ T4518] evict+0x3c8/0x810 [ 66.027481][ T4518] iput+0x764/0x7f4 [ 66.028016][ T4518] ext4_process_orphan+0x240/0x2b4 [ 66.028746][ T4518] ext4_orphan_cleanup+0x908/0x104c [ 66.029567][ T4518] ext4_fill_super+0x6440/0x68a8 [ 66.030353][ T4518] get_tree_bdev+0x358/0x544 [ 66.031049][ T4518] ext4_get_tree+0x28/0x38 [ 66.031683][ T4518] vfs_get_tree+0x90/0x274 [ 66.032416][ T4518] do_new_mount+0x228/0x810 [ 66.033095][ T4518] path_mount+0x5b4/0xe78 [ 66.033813][ T4518] __arm64_sys_mount+0x49c/0x584 [ 66.034596][ T4518] invoke_syscall+0x98/0x2bc [ 66.035402][ T4518] el0_svc_common+0x138/0x258 [ 66.036162][ T4518] do_el0_svc+0x58/0x13c [ 66.036875][ T4518] el0_svc+0x58/0x138 [ 66.037548][ T4518] el0t_64_sync_handler+0x84/0xf0 [ 66.038364][ T4518] el0t_64_sync+0x18c/0x190 [ 66.039088][ T4518] irq event stamp: 4309 [ 66.039783][ T4518] hardirqs last enabled at (4309): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 66.041419][ T4518] hardirqs last disabled at (4308): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 66.043037][ T4518] softirqs last enabled at (2752): [] handle_softirqs+0xaf8/0xc6c [ 66.044489][ T4518] softirqs last disabled at (2747): [] __do_softirq+0x14/0x20 [ 66.045930][ T4518] ---[ end trace 0000000000000000 ]--- [ 66.047378][ T4518] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 66.049533][ T4518] EXT4-fs (loop0): Remounting filesystem read-only [ 66.050576][ T4518] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117 [ 66.053015][ T4518] EXT4-fs (loop0): Remounting filesystem read-only [ 66.054093][ T4518] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #18: comm syz.0.17: iget: bad extra_isize 90 (inode size 256) [ 66.056335][ T4518] EXT4-fs (loop0): Remounting filesystem read-only [ 66.057434][ T4518] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.17: error while reading EA inode 18 err=-117 [ 66.059603][ T4518] EXT4-fs (loop0): Remounting filesystem read-only [ 66.060661][ T4518] EXT4-fs (loop0): 1 orphan inode deleted [ 66.061620][ T4518] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 66.070421][ T4450] EXT4-fs (loop0): unmounting filesystem.