Warning: Permanently added '[localhost]:52690' (ED25519) to the list of known hosts. 2025/06/11 15:17:07 ignoring optional flag "sandboxArg"="0" [ 143.463271][ T1316] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.466604][ T1316] ieee802154 phy1 wpan1: encryption failed: -22 2025/06/11 15:17:09 parsed 1 programs [ 148.692450][ T5686] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 152.992524][ T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 152.998331][ T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 153.003288][ T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 153.009641][ T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 153.014820][ T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 154.336005][ T5724] chnl_net:caif_netlink_parms(): no params data found [ 154.408101][ T5724] bridge0: port 1(bridge_slave_0) entered blocking state [ 154.412041][ T5724] bridge0: port 1(bridge_slave_0) entered disabled state [ 154.415804][ T5724] bridge_slave_0: entered allmulticast mode [ 154.420914][ T5724] bridge_slave_0: entered promiscuous mode [ 154.426247][ T5724] bridge0: port 2(bridge_slave_1) entered blocking state [ 154.430892][ T5724] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.434408][ T5724] bridge_slave_1: entered allmulticast mode [ 154.438728][ T5724] bridge_slave_1: entered promiscuous mode [ 154.465840][ T5724] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 154.475497][ T5724] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 154.503948][ T5724] team0: Port device team_slave_0 added [ 154.509529][ T5724] team0: Port device team_slave_1 added [ 154.538521][ T5724] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 154.542888][ T5724] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 154.556228][ T5724] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 154.564638][ T5724] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 154.567903][ T5724] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 154.582316][ T5724] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 154.627802][ T5724] hsr_slave_0: entered promiscuous mode [ 154.631442][ T5724] hsr_slave_1: entered promiscuous mode [ 155.414026][ T5724] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 155.433475][ T5724] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 155.453532][ T5724] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 155.476189][ T5724] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 155.656587][ T5724] 8021q: adding VLAN 0 to HW filter on device bond0 [ 155.696922][ T5724] 8021q: adding VLAN 0 to HW filter on device team0 [ 155.724273][ T31] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.728070][ T31] bridge0: port 1(bridge_slave_0) entered forwarding state [ 155.748186][ T31] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.752326][ T31] bridge0: port 2(bridge_slave_1) entered forwarding state [ 155.845538][ T5724] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 156.201116][ T5724] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 156.306578][ T5724] veth0_vlan: entered promiscuous mode [ 156.346430][ T5724] veth1_vlan: entered promiscuous mode [ 156.403805][ T5724] veth0_macvtap: entered promiscuous mode [ 156.427660][ T5724] veth1_macvtap: entered promiscuous mode [ 156.473025][ T5724] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 156.494520][ T5724] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 156.511308][ T5724] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.516013][ T5724] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.533909][ T5724] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.537994][ T5724] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.856025][ T1131] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 156.973583][ T1131] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.081233][ T1131] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.024166][ T1131] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 159.385590][ T1131] bridge_slave_1: left allmulticast mode [ 159.388655][ T1131] bridge_slave_1: left promiscuous mode [ 159.410301][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.418231][ T1131] bridge_slave_0: left allmulticast mode [ 159.430753][ T1131] bridge_slave_0: left promiscuous mode [ 159.433632][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.093319][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 160.101159][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 160.107270][ T1131] bond0 (unregistering): Released all slaves [ 160.254143][ T1131] hsr_slave_0: left promiscuous mode [ 160.258800][ T1131] hsr_slave_1: left promiscuous mode [ 160.271327][ T1131] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 160.274804][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 160.291707][ T1131] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 160.295570][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 160.323460][ T1131] veth1_macvtap: left promiscuous mode [ 160.326015][ T1131] veth0_macvtap: left promiscuous mode [ 160.328904][ T1131] veth1_vlan: left promiscuous mode [ 160.350603][ T1131] veth0_vlan: left promiscuous mode [ 161.083648][ T1131] team0 (unregistering): Port device team_slave_1 removed [ 161.141753][ T1131] team0 (unregistering): Port device team_slave_0 removed [ 161.595207][ T31] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 161.599512][ T31] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 161.693888][ T31] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 161.697607][ T31] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/06/11 15:17:31 executed programs: 0 [ 165.780721][ T4674] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 165.786307][ T4674] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 165.791564][ T4674] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 165.801463][ T4674] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 165.806237][ T4674] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 166.184520][ T5898] chnl_net:caif_netlink_parms(): no params data found [ 166.345648][ T5898] bridge0: port 1(bridge_slave_0) entered blocking state [ 166.349244][ T5898] bridge0: port 1(bridge_slave_0) entered disabled state [ 166.360967][ T5898] bridge_slave_0: entered allmulticast mode [ 166.370108][ T5898] bridge_slave_0: entered promiscuous mode [ 166.378013][ T5898] bridge0: port 2(bridge_slave_1) entered blocking state [ 166.391373][ T5898] bridge0: port 2(bridge_slave_1) entered disabled state [ 166.394969][ T5898] bridge_slave_1: entered allmulticast mode [ 166.411708][ T5898] bridge_slave_1: entered promiscuous mode [ 166.468607][ T5898] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 166.483301][ T5898] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 166.562264][ T5898] team0: Port device team_slave_0 added [ 166.583662][ T5898] team0: Port device team_slave_1 added [ 166.644102][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 166.647416][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.679414][ T5898] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 166.702079][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 166.705522][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.733137][ T5898] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 166.838182][ T5898] hsr_slave_0: entered promiscuous mode [ 166.852934][ T5898] hsr_slave_1: entered promiscuous mode [ 167.423854][ T5898] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 167.443663][ T5898] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 167.462206][ T5898] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 167.471144][ T5898] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 167.648400][ T5898] 8021q: adding VLAN 0 to HW filter on device bond0 [ 167.694523][ T5898] 8021q: adding VLAN 0 to HW filter on device team0 [ 167.708245][ T3076] bridge0: port 1(bridge_slave_0) entered blocking state [ 167.711968][ T3076] bridge0: port 1(bridge_slave_0) entered forwarding state [ 167.739615][ T3076] bridge0: port 2(bridge_slave_1) entered blocking state [ 167.743394][ T3076] bridge0: port 2(bridge_slave_1) entered forwarding state [ 167.815643][ T5898] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 167.868500][ T4674] Bluetooth: hci0: command tx timeout [ 168.102229][ T5898] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 168.146105][ T5898] veth0_vlan: entered promiscuous mode [ 168.159647][ T5898] veth1_vlan: entered promiscuous mode [ 168.188103][ T5898] veth0_macvtap: entered promiscuous mode [ 168.196444][ T5898] veth1_macvtap: entered promiscuous mode [ 168.217080][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 168.233284][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 168.242990][ T5898] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.247571][ T5898] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.254583][ T5898] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.259237][ T5898] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.354998][ T1131] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 168.358943][ T1131] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 168.396647][ T3076] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 168.402439][ T3076] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 168.688765][ T5945] loop0: detected capacity change from 0 to 32768 [ 168.698862][ T5945] ======================================================= [ 168.698862][ T5945] WARNING: The mand mount option has been deprecated and [ 168.698862][ T5945] and is ignored by this kernel. Remove the mand [ 168.698862][ T5945] option from the mount to silence this warning. [ 168.698862][ T5945] ======================================================= [ 168.834502][ T5945] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 168.875016][ T25] audit: type=1800 audit(1749655054.464:2): pid=5945 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.16" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 168.998594][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 169.344475][ T5950] loop0: detected capacity change from 0 to 32768 [ 169.393485][ T5950] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 169.414744][ T25] audit: type=1800 audit(1749655055.004:3): pid=5950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.17" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 169.514170][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 169.864907][ T5955] loop0: detected capacity change from 0 to 32768 [ 169.906446][ T5955] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 169.925687][ T25] audit: type=1800 audit(1749655055.514:4): pid=5955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.18" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 169.940305][ T4674] Bluetooth: hci0: command tx timeout [ 170.033947][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 170.355172][ T5960] loop0: detected capacity change from 0 to 32768 [ 170.383532][ T5960] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 170.404451][ T25] audit: type=1800 audit(1749655055.994:5): pid=5960 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.19" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 170.493460][ T5963] [ 170.494646][ T5963] ====================================================== [ 170.498001][ T5963] WARNING: possible circular locking dependency detected [ 170.501852][ T5963] 6.16.0-rc1-syzkaller-gaef17cb3d3c4 #0 Not tainted [ 170.506524][ T5963] ------------------------------------------------------ [ 170.509842][ T5963] syz.0.19/5963 is trying to acquire lock: [ 170.513090][ T5963] ffff888042416a20 (&oi->ip_alloc_sem){++++}-{4:4}, at: ocfs2_read_folio+0x353/0x970 [ 170.518137][ T5963] [ 170.518137][ T5963] but task is already holding lock: [ 170.521590][ T5963] ffff888042416f20 (mapping.invalidate_lock#3){.+.+}-{4:4}, at: filemap_fault+0x546/0x1200 [ 170.527008][ T5963] [ 170.527008][ T5963] which lock already depends on the new lock. [ 170.527008][ T5963] [ 170.531712][ T5963] [ 170.531712][ T5963] the existing dependency chain (in reverse order) is: [ 170.536251][ T5963] [ 170.536251][ T5963] -> #2 (mapping.invalidate_lock#3){.+.+}-{4:4}: [ 170.540612][ T5963] lock_acquire+0x120/0x360 [ 170.543139][ T5963] down_read+0x46/0x2e0 [ 170.545628][ T5963] filemap_fault+0x546/0x1200 [ 170.548320][ T5963] ocfs2_fault+0xa4/0x3f0 [ 170.550884][ T5963] __do_fault+0x138/0x390 [ 170.553025][ T5963] __handle_mm_fault+0x37ed/0x5620 [ 170.555693][ T5963] handle_mm_fault+0x40a/0x8e0 [ 170.558240][ T5963] __get_user_pages+0x1af4/0x30b0 [ 170.561070][ T5963] populate_vma_page_range+0x26b/0x340 [ 170.564333][ T5963] __mm_populate+0x24c/0x380 [ 170.566703][ T5963] vm_mmap_pgoff+0x3f0/0x4c0 [ 170.569213][ T5963] ksys_mmap_pgoff+0x51f/0x760 [ 170.571887][ T5963] do_syscall_64+0xfa/0x3b0 [ 170.574669][ T5963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.577845][ T5963] [ 170.577845][ T5963] -> #1 (&mm->mmap_lock){++++}-{4:4}: [ 170.581420][ T5963] lock_acquire+0x120/0x360 [ 170.584007][ T5963] __might_fault+0xcc/0x130 [ 170.586544][ T5963] _copy_to_user+0x2c/0xb0 [ 170.589038][ T5963] fiemap_fill_next_extent+0x1c0/0x390 [ 170.592025][ T5963] ocfs2_fiemap+0x888/0xc90 [ 170.594816][ T5963] do_vfs_ioctl+0x16d3/0x1990 [ 170.597477][ T5963] __se_sys_ioctl+0x82/0x170 [ 170.600071][ T5963] do_syscall_64+0xfa/0x3b0 [ 170.602552][ T5963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.605852][ T5963] [ 170.605852][ T5963] -> #0 (&oi->ip_alloc_sem){++++}-{4:4}: [ 170.610092][ T5963] validate_chain+0xb9b/0x2140 [ 170.612643][ T5963] __lock_acquire+0xab9/0xd20 [ 170.615162][ T5963] lock_acquire+0x120/0x360 [ 170.617597][ T5963] down_read+0x46/0x2e0 [ 170.620044][ T5963] ocfs2_read_folio+0x353/0x970 [ 170.622876][ T5963] filemap_read_folio+0x114/0x380 [ 170.625492][ T5963] filemap_fault+0xb16/0x1200 [ 170.627920][ T5963] ocfs2_fault+0xa4/0x3f0 [ 170.630232][ T5963] __do_fault+0x138/0x390 [ 170.632933][ T5963] __handle_mm_fault+0x37ed/0x5620 [ 170.635822][ T5963] handle_mm_fault+0x40a/0x8e0 [ 170.638340][ T5963] __get_user_pages+0x1af4/0x30b0 [ 170.641114][ T5963] populate_vma_page_range+0x26b/0x340 [ 170.644262][ T5963] __mm_populate+0x24c/0x380 [ 170.646738][ T5963] vm_mmap_pgoff+0x3f0/0x4c0 [ 170.649153][ T5963] ksys_mmap_pgoff+0x51f/0x760 [ 170.651797][ T5963] do_syscall_64+0xfa/0x3b0 [ 170.654489][ T5963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.657635][ T5963] [ 170.657635][ T5963] other info that might help us debug this: [ 170.657635][ T5963] [ 170.662426][ T5963] Chain exists of: [ 170.662426][ T5963] &oi->ip_alloc_sem --> &mm->mmap_lock --> mapping.invalidate_lock#3 [ 170.662426][ T5963] [ 170.669378][ T5963] Possible unsafe locking scenario: [ 170.669378][ T5963] [ 170.672854][ T5963] CPU0 CPU1 [ 170.675886][ T5963] ---- ---- [ 170.678466][ T5963] rlock(mapping.invalidate_lock#3); [ 170.681304][ T5963] lock(&mm->mmap_lock); [ 170.684504][ T5963] lock(mapping.invalidate_lock#3); [ 170.688641][ T5963] rlock(&oi->ip_alloc_sem); [ 170.690918][ T5963] [ 170.690918][ T5963] *** DEADLOCK *** [ 170.690918][ T5963] [ 170.694645][ T5963] 1 lock held by syz.0.19/5963: [ 170.697093][ T5963] #0: ffff888042416f20 (mapping.invalidate_lock#3){.+.+}-{4:4}, at: filemap_fault+0x546/0x1200 [ 170.702417][ T5963] [ 170.702417][ T5963] stack backtrace: [ 170.705392][ T5963] CPU: 0 UID: 0 PID: 5963 Comm: syz.0.19 Not tainted 6.16.0-rc1-syzkaller-gaef17cb3d3c4 #0 PREEMPT(full) [ 170.705408][ T5963] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 170.705416][ T5963] Call Trace: [ 170.705424][ T5963] [ 170.705431][ T5963] dump_stack_lvl+0x189/0x250 [ 170.705455][ T5963] ? __pfx_dump_stack_lvl+0x10/0x10 [ 170.705470][ T5963] ? __pfx__printk+0x10/0x10 [ 170.705479][ T5963] ? stack_trace_save+0x9c/0xe0 [ 170.705497][ T5963] print_circular_bug+0x2ee/0x310 [ 170.705509][ T5963] check_noncircular+0x134/0x160 [ 170.705521][ T5963] validate_chain+0xb9b/0x2140 [ 170.705530][ T5963] ? kernel_text_address+0xa5/0xe0 [ 170.705544][ T5963] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 170.705554][ T5963] ? arch_stack_walk+0xfc/0x150 [ 170.705565][ T5963] ? __pfx_ocfs2_inode_lock_full_nested+0x10/0x10 [ 170.705580][ T5963] __lock_acquire+0xab9/0xd20 [ 170.705596][ T5963] ? ocfs2_read_folio+0x353/0x970 [ 170.705609][ T5963] lock_acquire+0x120/0x360 [ 170.705622][ T5963] ? ocfs2_read_folio+0x353/0x970 [ 170.705634][ T5963] ? __pfx_down_read_trylock+0x10/0x10 [ 170.705645][ T5963] down_read+0x46/0x2e0 [ 170.705657][ T5963] ? ocfs2_read_folio+0x353/0x970 [ 170.705669][ T5963] ocfs2_read_folio+0x353/0x970 [ 170.705681][ T5963] ? __pfx_ocfs2_read_folio+0x10/0x10 [ 170.705693][ T5963] ? __lock_acquire+0xab9/0xd20 [ 170.705708][ T5963] ? __up_read+0x280/0x680 [ 170.705718][ T5963] filemap_read_folio+0x114/0x380 [ 170.705732][ T5963] ? __pfx_ocfs2_read_folio+0x10/0x10 [ 170.705742][ T5963] ? __pfx_filemap_read_folio+0x10/0x10 [ 170.705756][ T5963] ? maybe_unlock_mmap_for_io+0x16a/0x2d0 [ 170.705768][ T5963] filemap_fault+0xb16/0x1200 [ 170.705782][ T5963] ? __pfx_filemap_fault+0x10/0x10 [ 170.705797][ T5963] ocfs2_fault+0xa4/0x3f0 [ 170.705810][ T5963] ? __pfx_ocfs2_fault+0x10/0x10 [ 170.705823][ T5963] __do_fault+0x138/0x390 [ 170.705835][ T5963] __handle_mm_fault+0x37ed/0x5620 [ 170.705855][ T5963] ? __pfx___handle_mm_fault+0x10/0x10 [ 170.705872][ T5963] ? follow_page_pte+0x8d6/0x14b0 [ 170.705888][ T5963] handle_mm_fault+0x40a/0x8e0 [ 170.705904][ T5963] __get_user_pages+0x1af4/0x30b0 [ 170.705929][ T5963] ? mt_find+0x15c/0x5f0 [ 170.705943][ T5963] ? __pfx___get_user_pages+0x10/0x10 [ 170.705958][ T5963] populate_vma_page_range+0x26b/0x340 [ 170.705972][ T5963] ? __pfx_populate_vma_page_range+0x10/0x10 [ 170.705985][ T5963] ? userfaultfd_unmap_complete+0x278/0x2d0 [ 170.706001][ T5963] ? down_read+0x1ad/0x2e0 [ 170.706012][ T5963] __mm_populate+0x24c/0x380 [ 170.706027][ T5963] ? __pfx___mm_populate+0x10/0x10 [ 170.706041][ T5963] ? up_write+0x1c4/0x420 [ 170.706052][ T5963] vm_mmap_pgoff+0x3f0/0x4c0 [ 170.706068][ T5963] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 170.706081][ T5963] ? __fget_files+0x2a/0x420 [ 170.706093][ T5963] ? __fget_files+0x3a0/0x420 [ 170.706103][ T5963] ? __fget_files+0x2a/0x420 [ 170.706115][ T5963] ksys_mmap_pgoff+0x51f/0x760 [ 170.706127][ T5963] do_syscall_64+0xfa/0x3b0 [ 170.706138][ T5963] ? lockdep_hardirqs_on+0x9c/0x150 [ 170.706152][ T5963] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.706165][ T5963] ? clear_bhb_loop+0x60/0xb0 [ 170.706181][ T5963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.706191][ T5963] RIP: 0033:0x7f7a61f8e969 [ 170.706205][ T5963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.706213][ T5963] RSP: 002b:00007f7a611dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 170.706227][ T5963] RAX: ffffffffffffffda RBX: 00007f7a621b6080 RCX: 00007f7a61f8e969 [ 170.706234][ T5963] RDX: 0000000001000003 RSI: 0000000000b36000 RDI: 0000200000000000 [ 170.706241][ T5963] RBP: 00007f7a62010ab1 R08: 0000000000000006 R09: 0000000000000000 [ 170.706247][ T5963] R10: 0000000000028011 R11: 0000000000000246 R12: 0000000000000000 [ 170.706255][ T5963] R13: 0000000000000001 R14: 00007f7a621b6080 R15: 00007ffff66654f8 [ 170.706265][ T5963] [ 170.922755][ T5898] ocfs2: Unmounting device (7,0) on (node local) 2025/06/11 15:17:36 executed programs: 6 [ 171.133386][ T5965] loop0: detected capacity change from 0 to 32768 [ 171.149472][ T5965] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 171.163115][ T25] audit: type=1800 audit(1749655056.754:6): pid=5965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.20" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 171.251606][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 171.446845][ T5970] loop0: detected capacity change from 0 to 32768 [ 171.478754][ T5970] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 171.503021][ T25] audit: type=1800 audit(1749655057.094:7): pid=5970 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.21" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 171.612121][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 171.831847][ T5975] loop0: detected capacity change from 0 to 32768 [ 171.850923][ T5975] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 171.862650][ T25] audit: type=1800 audit(1749655057.454:8): pid=5975 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.22" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 171.961595][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 172.020586][ T4674] Bluetooth: hci0: command tx timeout [ 172.161788][ T5980] loop0: detected capacity change from 0 to 32768 [ 172.178168][ T5980] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 172.188984][ T25] audit: type=1800 audit(1749655057.774:9): pid=5980 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.23" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 172.275859][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 172.480425][ T5985] loop0: detected capacity change from 0 to 32768 [ 172.494074][ T5985] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 172.506760][ T25] audit: type=1800 audit(1749655058.094:10): pid=5985 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.24" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 172.591309][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 172.787851][ T5990] loop0: detected capacity change from 0 to 32768 [ 172.810427][ T5990] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 172.834262][ T25] audit: type=1800 audit(1749655058.424:11): pid=5990 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.25" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 172.919252][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 173.121413][ T5995] loop0: detected capacity change from 0 to 32768 [ 173.137247][ T5995] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 173.234901][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 173.438700][ T6000] loop0: detected capacity change from 0 to 32768 [ 173.457230][ T6000] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 173.555207][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 173.761934][ T6005] loop0: detected capacity change from 0 to 32768 [ 173.778759][ T6005] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 173.876261][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 174.073362][ T6010] loop0: detected capacity change from 0 to 32768 [ 174.088480][ T6010] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 174.099609][ T25] kauditd_printk_skb: 3 callbacks suppressed [ 174.099625][ T25] audit: type=1800 audit(1749655059.684:15): pid=6010 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.29" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 174.114541][ T4674] Bluetooth: hci0: command tx timeout [ 174.196899][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 174.397009][ T6015] loop0: detected capacity change from 0 to 32768 [ 174.416059][ T6015] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 174.432224][ T25] audit: type=1800 audit(1749655060.024:16): pid=6015 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.30" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 174.523669][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 174.716005][ T6020] loop0: detected capacity change from 0 to 32768 [ 174.731007][ T6020] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 174.744762][ T25] audit: type=1800 audit(1749655060.334:17): pid=6020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.31" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 174.832744][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 175.035219][ T6025] loop0: detected capacity change from 0 to 32768 [ 175.052837][ T6025] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 175.069582][ T25] audit: type=1800 audit(1749655060.654:18): pid=6025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.32" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 175.159656][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 175.367143][ T6030] loop0: detected capacity change from 0 to 32768 [ 175.401366][ T6030] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 175.422394][ T25] audit: type=1800 audit(1749655061.014:19): pid=6030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.33" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 175.507329][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 175.715413][ T6035] loop0: detected capacity change from 0 to 32768 [ 175.739627][ T6035] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 175.763746][ T25] audit: type=1800 audit(1749655061.354:20): pid=6035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.34" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 175.852531][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 176.068106][ T6040] loop0: detected capacity change from 0 to 32768 [ 176.090993][ T6040] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 176.107261][ T25] audit: type=1800 audit(1749655061.694:21): pid=6040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.35" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 176.201896][ T5898] ocfs2: Unmounting device (7,0) on (node local) 2025/06/11 15:17:41 executed programs: 22 [ 176.405698][ T6045] loop0: detected capacity change from 0 to 32768 [ 176.427221][ T6045] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 176.442444][ T25] audit: type=1800 audit(1749655062.034:22): pid=6045 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.36" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 176.534428][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 176.734142][ T6050] loop0: detected capacity change from 0 to 32768 [ 176.754003][ T6050] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 176.765736][ T25] audit: type=1800 audit(1749655062.354:23): pid=6050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.37" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 176.857989][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 177.062603][ T6055] loop0: detected capacity change from 0 to 32768 [ 177.078046][ T6055] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 177.092593][ T25] audit: type=1800 audit(1749655062.684:24): pid=6055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.38" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 177.178717][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 177.377293][ T6060] loop0: detected capacity change from 0 to 32768 [ 177.393717][ T6060] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 177.479718][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 177.694119][ T6065] loop0: detected capacity change from 0 to 32768 [ 177.720308][ T6065] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 177.822269][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 178.032846][ T6070] loop0: detected capacity change from 0 to 32768 [ 178.063991][ T6070] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 178.158002][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 178.354597][ T6075] loop0: detected capacity change from 0 to 32768 [ 178.372524][ T6075] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 178.481628][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 178.679542][ T6080] loop0: detected capacity change from 0 to 32768 [ 178.697699][ T6080] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 178.800986][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 178.992992][ T6085] loop0: detected capacity change from 0 to 32768 [ 179.010610][ T6085] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 179.105875][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 179.313209][ T6090] loop0: detected capacity change from 0 to 32768 [ 179.341820][ T6090] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 179.361961][ T25] kauditd_printk_skb: 6 callbacks suppressed [ 179.361978][ T25] audit: type=1800 audit(1749655064.954:31): pid=6090 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.45" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 179.452340][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 179.650917][ T6095] loop0: detected capacity change from 0 to 32768 [ 179.669086][ T6095] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 179.682396][ T25] audit: type=1800 audit(1749655065.274:32): pid=6095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.46" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 179.783311][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 179.986823][ T6100] loop0: detected capacity change from 0 to 32768 [ 180.006288][ T6100] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 180.023118][ T25] audit: type=1800 audit(1749655065.614:33): pid=6100 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.47" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 180.119130][ T5898] ocfs2: Unmounting device (7,0) on (node local) [ 180.335847][ T6105] loop0: detected capacity change from 0 to 32768 [ 180.362901][ T6105] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 180.384545][ T25] audit: type=1800 audit(1749655065.974:34): pid=6105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.48" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 180.471986][ T5898] ocfs2: Unmounting device (7,0) on (node local)