syzkaller login: [ 92.022086][ T993] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.31' (ED25519) to the list of known hosts. 2026/04/11 03:45:14 parsed 1 programs [ 99.351519][ T5801] cgroup: Unknown subsys name 'net' [ 99.612959][ T5801] cgroup: Unknown subsys name 'cpuset' [ 99.658024][ T5801] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 101.648195][ T5801] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 105.644406][ T5112] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 105.646474][ T5112] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 105.647174][ T5112] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 105.671893][ T5112] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 105.672640][ T5112] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 106.661936][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 106.791084][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.792011][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.792154][ T5838] bridge_slave_0: entered allmulticast mode [ 106.794126][ T5838] bridge_slave_0: entered promiscuous mode [ 106.805513][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.806073][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.806550][ T5838] bridge_slave_1: entered allmulticast mode [ 106.816168][ T5838] bridge_slave_1: entered promiscuous mode [ 106.883346][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.886351][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.935319][ T5838] team0: Port device team_slave_0 added [ 107.009648][ T5838] team0: Port device team_slave_1 added [ 107.098830][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.098844][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.098863][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.178566][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.178585][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.178613][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.277766][ T5838] hsr_slave_0: entered promiscuous mode [ 107.278833][ T5838] hsr_slave_1: entered promiscuous mode [ 107.509037][ T5838] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 107.558210][ T5838] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 107.603334][ T5838] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 107.868695][ T5838] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 107.983624][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.012154][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.026265][ T1017] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.027138][ T1017] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.059218][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.059358][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.300159][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.355439][ T5838] veth0_vlan: entered promiscuous mode [ 108.368573][ T5838] veth1_vlan: entered promiscuous mode [ 108.406973][ T5838] veth0_macvtap: entered promiscuous mode [ 108.420136][ T5838] veth1_macvtap: entered promiscuous mode [ 108.441629][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 108.459532][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 108.477272][ T1017] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.480377][ T1017] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.481055][ T1017] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.481323][ T1017] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.232390][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.482747][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.739936][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.555366][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.667995][ T12] bridge_slave_1: left allmulticast mode [ 111.668109][ T12] bridge_slave_1: left promiscuous mode [ 111.669549][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 111.789473][ T12] bridge_slave_0: left allmulticast mode [ 111.789503][ T12] bridge_slave_0: left promiscuous mode [ 111.789754][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.618181][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 112.699086][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 112.719750][ T12] bond0 (unregistering): Released all slaves [ 113.117715][ T12] hsr_slave_0: left promiscuous mode [ 113.158909][ T12] hsr_slave_1: left promiscuous mode [ 113.160196][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 113.160258][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 113.219086][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 113.219115][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 113.331009][ T12] veth1_macvtap: left promiscuous mode [ 113.331882][ T12] veth0_macvtap: left promiscuous mode [ 113.332191][ T12] veth1_vlan: left promiscuous mode [ 113.332480][ T12] veth0_vlan: left promiscuous mode [ 114.138163][ T12] team0 (unregistering): Port device team_slave_1 removed [ 114.179514][ T12] team0 (unregistering): Port device team_slave_0 removed [ 115.303770][ T1017] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.303792][ T1017] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.429155][ T1017] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.429179][ T1017] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2026/04/11 03:45:35 executed programs: 0 [ 116.710774][ T5112] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 116.714656][ T5112] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 116.715593][ T5112] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 116.740885][ T5112] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 116.742881][ T5112] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 117.194943][ T5967] chnl_net:caif_netlink_parms(): no params data found [ 117.313808][ T5967] bridge0: port 1(bridge_slave_0) entered blocking state [ 117.313958][ T5967] bridge0: port 1(bridge_slave_0) entered disabled state [ 117.314066][ T5967] bridge_slave_0: entered allmulticast mode [ 117.315882][ T5967] bridge_slave_0: entered promiscuous mode [ 117.342831][ T5967] bridge0: port 2(bridge_slave_1) entered blocking state [ 117.343537][ T5967] bridge0: port 2(bridge_slave_1) entered disabled state [ 117.344066][ T5967] bridge_slave_1: entered allmulticast mode [ 117.356934][ T5967] bridge_slave_1: entered promiscuous mode [ 117.405710][ T5967] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 117.422977][ T5967] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 117.461359][ T5967] team0: Port device team_slave_0 added [ 117.464739][ T5967] team0: Port device team_slave_1 added [ 117.511712][ T5967] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 117.511729][ T5967] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 117.511754][ T5967] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 117.513980][ T5967] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 117.513994][ T5967] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 117.514018][ T5967] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 117.654834][ T5967] hsr_slave_0: entered promiscuous mode [ 117.660870][ T5967] hsr_slave_1: entered promiscuous mode [ 118.819323][ T60] Bluetooth: hci0: command tx timeout [ 119.947811][ T5967] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 120.030132][ T5967] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 120.107765][ T5967] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 120.190068][ T5967] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 120.518992][ T5967] 8021q: adding VLAN 0 to HW filter on device bond0 [ 120.560877][ T5967] 8021q: adding VLAN 0 to HW filter on device team0 [ 120.575404][ T144] bridge0: port 1(bridge_slave_0) entered blocking state [ 120.575496][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state [ 120.597509][ T3584] bridge0: port 2(bridge_slave_1) entered blocking state [ 120.597681][ T3584] bridge0: port 2(bridge_slave_1) entered forwarding state [ 120.897515][ T60] Bluetooth: hci0: command tx timeout [ 121.031326][ T5967] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 121.101050][ T5967] veth0_vlan: entered promiscuous mode [ 121.116715][ T5967] veth1_vlan: entered promiscuous mode [ 121.165721][ T5967] veth0_macvtap: entered promiscuous mode [ 121.178592][ T5967] veth1_macvtap: entered promiscuous mode [ 121.206736][ T5967] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 121.232092][ T5967] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 121.263870][ T3584] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.264101][ T3584] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.268515][ T3584] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.290962][ T3584] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.523310][ T3584] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.523332][ T3584] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.598691][ T1017] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.598713][ T1017] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2026/04/11 03:45:40 executed programs: 2 [ 122.192155][ T6065] loop0: detected capacity change from 0 to 32768 [ 122.249597][ T6065] (syz.0.17,6065,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 122.274801][ T6065] (syz.0.17,6065,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 122.383119][ T6065] JBD2: Ignoring recovery information on journal [ 122.519775][ T6065] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 122.703400][ T6065] [ 122.703414][ T6065] ====================================================== [ 122.703422][ T6065] WARNING: possible circular locking dependency detected [ 122.703444][ T6065] syzkaller #0 Not tainted [ 122.703455][ T6065] ------------------------------------------------------ [ 122.703462][ T6065] syz.0.17/6065 is trying to acquire lock: [ 122.703473][ T6065] ffff88803b1f2770 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_setattr+0xcc6/0x1cc0 [ 122.703563][ T6065] [ 122.703563][ T6065] but task is already holding lock: [ 122.703570][ T6065] ffff88804af53a10 (&oi->ip_alloc_sem){+.+.}-{4:4}, at: ocfs2_setattr+0xcb7/0x1cc0 [ 122.703624][ T6065] [ 122.703624][ T6065] which lock already depends on the new lock. [ 122.703624][ T6065] [ 122.703631][ T6065] [ 122.703631][ T6065] the existing dependency chain (in reverse order) is: [ 122.703639][ T6065] [ 122.703639][ T6065] -> #3 (&oi->ip_alloc_sem){+.+.}-{4:4}: [ 122.703665][ T6065] down_write+0x3a/0x50 [ 122.703690][ T6065] ocfs2_try_remove_refcount_tree+0xb6/0x340 [ 122.703713][ T6065] ocfs2_xattr_set+0x61a/0x13e0 [ 122.703738][ T6065] ocfs2_set_acl+0x701/0x7b0 [ 122.703758][ T6065] ocfs2_iop_set_acl+0x1b1/0x2b0 [ 122.703779][ T6065] vfs_remove_acl+0x54e/0x840 [ 122.703805][ T6065] ovl_workdir_create+0x5b3/0x940 [ 122.703830][ T6065] ovl_fill_super+0x1a56/0x5e40 [ 122.703853][ T6065] get_tree_nodev+0xbb/0x150 [ 122.703880][ T6065] vfs_get_tree+0x92/0x2a0 [ 122.703895][ T6065] do_new_mount+0x341/0xd30 [ 122.703917][ T6065] __se_sys_mount+0x31d/0x420 [ 122.703940][ T6065] do_syscall_64+0x14d/0xf80 [ 122.703961][ T6065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.703980][ T6065] [ 122.703980][ T6065] -> #2 (&oi->ip_xattr_sem){++++}-{4:4}: [ 122.704015][ T6065] down_read+0x97/0x200 [ 122.704038][ T6065] ocfs2_init_acl+0x1c3/0x800 [ 122.704060][ T6065] ocfs2_mknod+0x1679/0x2290 [ 122.704078][ T6065] ocfs2_mkdir+0x181/0x490 [ 122.704096][ T6065] vfs_mkdir+0x40b/0x630 [ 122.704113][ T6065] filename_mkdirat+0x289/0x520 [ 122.704130][ T6065] __se_sys_mkdirat+0x35/0x150 [ 122.704147][ T6065] do_syscall_64+0x14d/0xf80 [ 122.704167][ T6065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.704186][ T6065] [ 122.704186][ T6065] -> #1 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 122.704213][ T6065] down_read+0x97/0x200 [ 122.704234][ T6065] ocfs2_start_trans+0x3ac/0x700 [ 122.704258][ T6065] ocfs2_modify_bh+0xe3/0x4d0 [ 122.704278][ T6065] ocfs2_local_read_info+0x1454/0x1810 [ 122.704299][ T6065] dquot_load_quota_sb+0x791/0xbd0 [ 122.704321][ T6065] dquot_load_quota_inode+0x2e1/0x5d0 [ 122.704344][ T6065] ocfs2_enable_quotas+0x1c8/0x4a0 [ 122.704372][ T6065] ocfs2_fill_super+0x53b7/0x69a0 [ 122.704399][ T6065] get_tree_bdev_flags+0x431/0x4f0 [ 122.704428][ T6065] vfs_get_tree+0x92/0x2a0 [ 122.704444][ T6065] do_new_mount+0x341/0xd30 [ 122.704465][ T6065] __se_sys_mount+0x31d/0x420 [ 122.704488][ T6065] do_syscall_64+0x14d/0xf80 [ 122.704508][ T6065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.704526][ T6065] [ 122.704526][ T6065] -> #0 (sb_internal#2){.+.+}-{0:0}: [ 122.704558][ T6065] __lock_acquire+0x15a5/0x2cf0 [ 122.704575][ T6065] lock_acquire+0xf0/0x2e0 [ 122.704591][ T6065] ocfs2_start_trans+0x2ac/0x700 [ 122.704614][ T6065] ocfs2_setattr+0xcc6/0x1cc0 [ 122.704642][ T6065] notify_change+0xc18/0xf60 [ 122.704660][ T6065] ovl_workdir_create+0x716/0x940 [ 122.704684][ T6065] ovl_fill_super+0x1a56/0x5e40 [ 122.704707][ T6065] get_tree_nodev+0xbb/0x150 [ 122.704735][ T6065] vfs_get_tree+0x92/0x2a0 [ 122.704750][ T6065] do_new_mount+0x341/0xd30 [ 122.704772][ T6065] __se_sys_mount+0x31d/0x420 [ 122.704794][ T6065] do_syscall_64+0x14d/0xf80 [ 122.704814][ T6065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.704833][ T6065] [ 122.704833][ T6065] other info that might help us debug this: [ 122.704833][ T6065] [ 122.704839][ T6065] Chain exists of: [ 122.704839][ T6065] sb_internal#2 --> &oi->ip_xattr_sem --> &oi->ip_alloc_sem [ 122.704839][ T6065] [ 122.704876][ T6065] Possible unsafe locking scenario: [ 122.704876][ T6065] [ 122.704882][ T6065] CPU0 CPU1 [ 122.704889][ T6065] ---- ---- [ 122.704896][ T6065] lock(&oi->ip_alloc_sem); [ 122.704909][ T6065] lock(&oi->ip_xattr_sem); [ 122.704924][ T6065] lock(&oi->ip_alloc_sem); [ 122.704939][ T6065] rlock(sb_internal#2); [ 122.704957][ T6065] [ 122.704957][ T6065] *** DEADLOCK *** [ 122.704957][ T6065] [ 122.704962][ T6065] 4 locks held by syz.0.17/6065: [ 122.704974][ T6065] #0: ffff88803e9b40d0 (&type->s_umount_key#56/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0 [ 122.705047][ T6065] #1: ffff88803b1f2480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 122.705111][ T6065] #2: ffff88804af53dc0 (&sb->s_type->i_mutex_key#26){+.+.}-{4:4}, at: ovl_workdir_create+0x6b7/0x940 [ 122.705172][ T6065] #3: ffff88804af53a10 (&oi->ip_alloc_sem){+.+.}-{4:4}, at: ocfs2_setattr+0xcb7/0x1cc0 [ 122.705233][ T6065] [ 122.705233][ T6065] stack backtrace: [ 122.705261][ T6065] CPU: 0 UID: 0 PID: 6065 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 122.705310][ T6065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 122.705332][ T6065] Call Trace: [ 122.705340][ T6065] [ 122.705349][ T6065] dump_stack_lvl+0xe8/0x150 [ 122.705380][ T6065] print_circular_bug+0x2e1/0x300 [ 122.705407][ T6065] check_noncircular+0x12e/0x150 [ 122.705436][ T6065] __lock_acquire+0x15a5/0x2cf0 [ 122.705460][ T6065] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 122.705485][ T6065] ? lockdep_hardirqs_on+0x7a/0x110 [ 122.705509][ T6065] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 122.705534][ T6065] ? rt_mutex_slowunlock+0x4a7/0x8b0 [ 122.705567][ T6065] ? reacquire_held_locks+0x104/0x190 [ 122.705589][ T6065] ? rt_spin_lock+0x1e0/0x400 [ 122.705622][ T6065] lock_acquire+0xf0/0x2e0 [ 122.705640][ T6065] ? ocfs2_setattr+0xcc6/0x1cc0 [ 122.705679][ T6065] ocfs2_start_trans+0x2ac/0x700 [ 122.705705][ T6065] ? ocfs2_setattr+0xcc6/0x1cc0 [ 122.705736][ T6065] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 122.705762][ T6065] ? __pfx_ocfs2_start_trans+0x10/0x10 [ 122.705793][ T6065] ocfs2_setattr+0xcc6/0x1cc0 [ 122.705832][ T6065] ? __pfx_ocfs2_setattr+0x10/0x10 [ 122.705863][ T6065] ? smk_access+0x14c/0x4e0 [ 122.705898][ T6065] ? smack_inode_setattr+0x191/0x230 [ 122.705928][ T6065] ? __pfx_smack_inode_setattr+0x10/0x10 [ 122.705962][ T6065] ? current_time+0x22a/0x370 [ 122.705998][ T6065] ? evm_inode_setattr+0x1bd/0x7d0 [ 122.706023][ T6065] ? __pfx_current_time+0x10/0x10 [ 122.706056][ T6065] ? try_break_deleg+0x5b/0x190 [ 122.706076][ T6065] ? __pfx_ocfs2_setattr+0x10/0x10 [ 122.706108][ T6065] notify_change+0xc18/0xf60 [ 122.706134][ T6065] ovl_workdir_create+0x716/0x940 [ 122.706165][ T6065] ? __pfx_ovl_workdir_create+0x10/0x10 [ 122.706199][ T6065] ? mnt_get_write_access+0x262/0x2d0 [ 122.706236][ T6065] ovl_fill_super+0x1a56/0x5e40 [ 122.706263][ T6065] ? kernel_text_address+0xa5/0xe0 [ 122.706298][ T6065] ? stack_trace_save+0xa9/0x100 [ 122.706332][ T6065] ? __pfx_ovl_fill_super+0x10/0x10 [ 122.706360][ T6065] ? add_lock_to_list+0xc7/0x100 [ 122.706385][ T6065] ? __lock_acquire+0x6b5/0x2cf0 [ 122.706408][ T6065] ? __lock_acquire+0x6b5/0x2cf0 [ 122.706433][ T6065] ? do_raw_spin_lock+0x12b/0x2f0 [ 122.706468][ T6065] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 122.706490][ T6065] ? lockdep_hardirqs_on+0x7a/0x110 [ 122.706512][ T6065] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 122.706535][ T6065] ? rt_mutex_slowunlock+0x1cb/0x300 [ 122.706566][ T6065] ? __raw_spin_lock_init+0x45/0x100 [ 122.706600][ T6065] ? sget_fc+0x962/0xa40 [ 122.706628][ T6065] ? __pfx_set_anon_super_fc+0x10/0x10 [ 122.706657][ T6065] ? __pfx_ovl_fill_super+0x10/0x10 [ 122.706685][ T6065] get_tree_nodev+0xbb/0x150 [ 122.706716][ T6065] vfs_get_tree+0x92/0x2a0 [ 122.706736][ T6065] do_new_mount+0x341/0xd30 [ 122.706760][ T6065] ? safesetid_security_capable+0xa9/0x1a0 [ 122.706784][ T6065] ? __pfx_do_new_mount+0x10/0x10 [ 122.706809][ T6065] ? ns_capable+0x89/0xe0 [ 122.706837][ T6065] ? path_mount+0x690/0x10e0 [ 122.706863][ T6065] ? user_path_at+0xd4/0x160 [ 122.706894][ T6065] __se_sys_mount+0x31d/0x420 [ 122.706924][ T6065] ? __pfx___se_sys_mount+0x10/0x10 [ 122.706950][ T6065] ? __se_sys_mkdirat+0xc9/0x150 [ 122.706974][ T6065] ? __x64_sys_mount+0x20/0xc0 [ 122.707011][ T6065] do_syscall_64+0x14d/0xf80 [ 122.707033][ T6065] ? trace_irq_disable+0x3b/0x150 [ 122.707058][ T6065] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.707078][ T6065] ? clear_bhb_loop+0x40/0x90 [ 122.707102][ T6065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.707122][ T6065] RIP: 0033:0x7f8b5a48c819 [ 122.707147][ T6065] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 122.707164][ T6065] RSP: 002b:00007ffef81370f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 122.707185][ T6065] RAX: ffffffffffffffda RBX: 00007f8b5a705fa0 RCX: 00007f8b5a48c819 [ 122.707200][ T6065] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 122.707213][ T6065] RBP: 00007f8b5a522c91 R08: 0000200000000140 R09: 0000000000000000 [ 122.707227][ T6065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.707239][ T6065] R13: 00007f8b5a705fac R14: 00007f8b5a705fa0 R15: 00007f8b5a705fa0 [ 122.707262][ T6065] [ 122.718683][ T6065] overlayfs: upper fs does not support tmpfile. [ 122.722227][ T6065] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 122.725714][ T6065] overlayfs: upper fs missing required features. [ 122.977826][ T60] Bluetooth: hci0: command tx timeout [ 123.644190][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 123.954818][ T6097] loop0: detected capacity change from 0 to 32768 [ 123.969139][ T6097] (syz.0.18,6097,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 123.969680][ T6097] (syz.0.18,6097,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 124.000955][ T6097] JBD2: Ignoring recovery information on journal [ 124.030444][ T6097] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 124.054656][ T6097] overlayfs: upper fs does not support tmpfile. [ 124.055911][ T6097] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 124.057131][ T6097] overlayfs: upper fs missing required features. [ 124.208125][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 124.416322][ T6101] loop0: detected capacity change from 0 to 32768 [ 124.425285][ T6101] (syz.0.19,6101,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 124.425496][ T6101] (syz.0.19,6101,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 124.472410][ T6101] JBD2: Ignoring recovery information on journal [ 124.510755][ T6101] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 124.542125][ T6101] overlayfs: upper fs does not support tmpfile. [ 124.542960][ T6101] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 124.543789][ T6101] overlayfs: upper fs missing required features. [ 124.708075][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 124.924590][ T6104] loop0: detected capacity change from 0 to 32768 [ 124.934777][ T6104] (syz.0.20,6104,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 124.934981][ T6104] (syz.0.20,6104,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 124.977405][ T6104] JBD2: Ignoring recovery information on journal [ 125.009525][ T6104] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 125.041630][ T6104] overlayfs: upper fs does not support tmpfile. [ 125.042457][ T6104] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 125.043306][ T6104] overlayfs: upper fs missing required features. [ 125.067651][ T60] Bluetooth: hci0: command tx timeout [ 125.188144][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 125.408650][ T6108] loop0: detected capacity change from 0 to 32768 [ 125.424655][ T6108] (syz.0.21,6108,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.424866][ T6108] (syz.0.21,6108,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.458341][ T6108] JBD2: Ignoring recovery information on journal [ 125.493102][ T6108] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 125.522967][ T6108] overlayfs: upper fs does not support tmpfile. [ 125.524208][ T6108] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 125.525418][ T6108] overlayfs: upper fs missing required features. [ 125.668492][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 125.893757][ T6111] loop0: detected capacity change from 0 to 32768 [ 125.905737][ T6111] (syz.0.22,6111,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.905957][ T6111] (syz.0.22,6111,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 125.939080][ T6111] JBD2: Ignoring recovery information on journal [ 125.963159][ T6111] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 126.000298][ T6111] overlayfs: upper fs does not support tmpfile. [ 126.001120][ T6111] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 126.001946][ T6111] overlayfs: upper fs missing required features. [ 126.138385][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 126.353316][ T6114] loop0: detected capacity change from 0 to 32768 [ 126.367357][ T6114] (syz.0.23,6114,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 126.367568][ T6114] (syz.0.23,6114,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 126.404011][ T6114] JBD2: Ignoring recovery information on journal [ 126.449782][ T6114] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 126.475765][ T6114] overlayfs: upper fs does not support tmpfile. [ 126.476589][ T6114] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 126.478083][ T6114] overlayfs: upper fs missing required features. [ 126.618271][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 126.833026][ T6117] loop0: detected capacity change from 0 to 32768 [ 126.836284][ T6117] (syz.0.24,6117,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 126.836511][ T6117] (syz.0.24,6117,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 126.879494][ T6117] JBD2: Ignoring recovery information on journal [ 126.910535][ T6117] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 126.931900][ T6117] overlayfs: upper fs does not support tmpfile. [ 126.933118][ T6117] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 126.934335][ T6117] overlayfs: upper fs missing required features. 2026/04/11 03:45:45 executed programs: 10 [ 127.068116][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 127.288943][ T6120] loop0: detected capacity change from 0 to 32768 [ 127.291329][ T6120] (syz.0.25,6120,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.291550][ T6120] (syz.0.25,6120,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.334217][ T6120] JBD2: Ignoring recovery information on journal [ 127.359173][ T6120] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 127.383192][ T6120] overlayfs: upper fs does not support tmpfile. [ 127.384020][ T6120] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 127.384829][ T6120] overlayfs: upper fs missing required features. [ 127.518097][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 127.732391][ T6124] loop0: detected capacity change from 0 to 32768 [ 127.745429][ T6124] (syz.0.26,6124,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.745605][ T6124] (syz.0.26,6124,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.773077][ T6124] JBD2: Ignoring recovery information on journal [ 127.798059][ T6124] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 127.823198][ T6124] overlayfs: upper fs does not support tmpfile. [ 127.824043][ T6124] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 127.824874][ T6124] overlayfs: upper fs missing required features. [ 127.948099][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 128.163438][ T6127] loop0: detected capacity change from 0 to 32768 [ 128.174802][ T6127] (syz.0.27,6127,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.175089][ T6127] (syz.0.27,6127,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.210001][ T6127] JBD2: Ignoring recovery information on journal [ 128.248528][ T6127] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 128.273253][ T6127] overlayfs: upper fs does not support tmpfile. [ 128.274575][ T6127] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 128.275813][ T6127] overlayfs: upper fs missing required features. [ 128.418659][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 128.639064][ T6133] loop0: detected capacity change from 0 to 32768 [ 128.654480][ T6133] (syz.0.28,6133,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.655611][ T6133] (syz.0.28,6133,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.686950][ T6133] JBD2: Ignoring recovery information on journal [ 128.711638][ T6133] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 128.740589][ T6133] overlayfs: upper fs does not support tmpfile. [ 128.741841][ T6133] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 128.743110][ T6133] overlayfs: upper fs missing required features. [ 128.908090][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 129.122748][ T6136] loop0: detected capacity change from 0 to 32768 [ 129.136687][ T6136] (syz.0.29,6136,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 129.136893][ T6136] (syz.0.29,6136,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 129.179920][ T6136] JBD2: Ignoring recovery information on journal [ 129.218685][ T6136] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 129.245065][ T6136] overlayfs: upper fs does not support tmpfile. [ 129.246322][ T6136] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 129.262843][ T6136] overlayfs: upper fs missing required features. [ 129.388107][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 129.600963][ T6140] loop0: detected capacity change from 0 to 32768 [ 129.617198][ T6140] (syz.0.30,6140,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 129.617681][ T6140] (syz.0.30,6140,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 129.648882][ T6140] JBD2: Ignoring recovery information on journal [ 129.674293][ T6140] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 129.704438][ T6140] overlayfs: upper fs does not support tmpfile. [ 129.705288][ T6140] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 129.706151][ T6140] overlayfs: upper fs missing required features. [ 129.848517][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 130.068635][ T6143] loop0: detected capacity change from 0 to 32768 [ 130.085515][ T6143] (syz.0.31,6143,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 130.085931][ T6143] (syz.0.31,6143,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 130.109316][ T6143] JBD2: Ignoring recovery information on journal [ 130.138151][ T6143] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 130.166463][ T6143] overlayfs: upper fs does not support tmpfile. [ 130.174026][ T6143] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 130.174880][ T6143] overlayfs: upper fs missing required features. [ 130.318122][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 130.532104][ T6146] loop0: detected capacity change from 0 to 32768 [ 130.548832][ T6146] (syz.0.32,6146,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 130.549064][ T6146] (syz.0.32,6146,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 130.568626][ T6146] JBD2: Ignoring recovery information on journal [ 130.618654][ T6146] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 130.638146][ T6146] overlayfs: upper fs does not support tmpfile. [ 130.639381][ T6146] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 130.640590][ T6146] overlayfs: upper fs missing required features. [ 130.788021][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 131.012148][ T6149] loop0: detected capacity change from 0 to 32768 [ 131.028034][ T6149] (syz.0.33,6149,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 131.028224][ T6149] (syz.0.33,6149,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 131.035456][ T6149] JBD2: Ignoring recovery information on journal [ 131.080707][ T6149] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 131.102860][ T6149] overlayfs: upper fs does not support tmpfile. [ 131.104127][ T6149] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 131.106161][ T6149] overlayfs: upper fs missing required features. [ 131.238130][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 131.452298][ T6152] loop0: detected capacity change from 0 to 32768 [ 131.468223][ T6152] (syz.0.34,6152,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 131.468438][ T6152] (syz.0.34,6152,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 131.476657][ T6152] JBD2: Ignoring recovery information on journal [ 131.523344][ T6152] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 131.556494][ T6152] overlayfs: upper fs does not support tmpfile. [ 131.564293][ T6152] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 131.565144][ T6152] overlayfs: upper fs missing required features. [ 131.678257][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 131.901338][ T6155] (syz.0.35,6155,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 131.901546][ T6155] (syz.0.35,6155,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 131.936145][ T6155] JBD2: Ignoring recovery information on journal [ 131.978540][ T6155] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 131.995676][ T6155] overlayfs: upper fs does not support tmpfile. [ 132.024597][ T6155] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 132.025452][ T6155] overlayfs: upper fs missing required features. 2026/04/11 03:45:50 executed programs: 21 [ 132.158093][ T5967] ocfs2: Unmounting device (7,0) on (node local) [ 132.369044][ T6158] set_capacity_and_notify: 1 callbacks suppressed [ 132.369058][ T6158] loop0: detected capacity change from 0 to 32768 [ 132.392059][ T6158] (syz.0.36,6158,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 132.392251][ T6158] (syz.0.36,6158,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 132.426129][ T6158] JBD2: Ignoring recovery information on journal [ 132.469430][ T6158] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 132.492561][ T6158] overlayfs: upper fs does not support tmpfile. [ 132.493477][ T6158] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 132.494336][ T6158] overlayfs: upper fs missing required features. [ 132.648099][ T5967] ocfs2: Unmounting device (7,0) on (node local)