Warning: Permanently added '[localhost]:25842' (ED25519) to the list of known hosts.
2025/04/09 19:08:05 ignoring optional flag "sandboxArg"="0"
2025/04/09 19:08:07 parsed 1 programs
[ 126.430884][ T5571] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 130.368560][ T3051] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.371791][ T3051] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.403687][ T3051] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.408467][ T3051] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 131.983332][ T5614] chnl_net:caif_netlink_parms(): no params data found
[ 132.045789][ T5614] bridge0: port 1(bridge_slave_0) entered blocking state
[ 132.049443][ T5614] bridge0: port 1(bridge_slave_0) entered disabled state
[ 132.052850][ T5614] bridge_slave_0: entered allmulticast mode
[ 132.058418][ T5614] bridge_slave_0: entered promiscuous mode
[ 132.069122][ T5614] bridge0: port 2(bridge_slave_1) entered blocking state
[ 132.072052][ T5614] bridge0: port 2(bridge_slave_1) entered disabled state
[ 132.076458][ T5614] bridge_slave_1: entered allmulticast mode
[ 132.080105][ T5614] bridge_slave_1: entered promiscuous mode
[ 132.108878][ T5614] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 132.116796][ T5614] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 132.141625][ T5614] team0: Port device team_slave_0 added
[ 132.152446][ T5614] team0: Port device team_slave_1 added
[ 132.173276][ T5614] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 132.177237][ T5614] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 132.189854][ T5614] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 132.196886][ T5614] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 132.199916][ T5614] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 132.211791][ T5614] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 132.247231][ T5614] hsr_slave_0: entered promiscuous mode
[ 132.251629][ T5614] hsr_slave_1: entered promiscuous mode
[ 132.254490][ T5614] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 132.260875][ T5614] Cannot create hsr debugfs directory
[ 132.368805][ T5614] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 132.407518][ T5614] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 132.438861][ T5614] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 132.480396][ T5614] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 132.574513][ T5614] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 132.584006][ T5614] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 132.590420][ T5614] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 132.599804][ T5614] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 132.622534][ T5614] bridge0: port 2(bridge_slave_1) entered blocking state
[ 132.625621][ T5614] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 132.628866][ T5614] bridge0: port 1(bridge_slave_0) entered blocking state
[ 132.631847][ T5614] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 132.688694][ T5614] 8021q: adding VLAN 0 to HW filter on device bond0
[ 132.702064][ T1090] bridge0: port 1(bridge_slave_0) entered disabled state
[ 132.706155][ T1090] bridge0: port 2(bridge_slave_1) entered disabled state
[ 132.719712][ T5614] 8021q: adding VLAN 0 to HW filter on device team0
[ 132.731915][ T3051] bridge0: port 1(bridge_slave_0) entered blocking state
[ 132.735688][ T3051] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 132.750120][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state
[ 132.753125][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 132.927971][ T5614] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 132.964249][ T5614] veth0_vlan: entered promiscuous mode
[ 132.974201][ T5614] veth1_vlan: entered promiscuous mode
[ 133.007136][ T5614] veth0_macvtap: entered promiscuous mode
[ 133.012852][ T5614] veth1_macvtap: entered promiscuous mode
[ 133.030824][ T5614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 133.037127][ T5614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 133.042001][ T5614] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 133.051876][ T5614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 133.058041][ T5614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 133.063104][ T5614] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 133.072193][ T5614] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 133.079510][ T5614] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 133.083193][ T5614] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 133.087543][ T5614] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 133.458394][ T5414] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 133.462508][ T5414] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 133.466720][ T5414] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 133.470076][ T5414] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 133.473156][ T5414] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/04/09 19:08:21 executed programs: 0
[ 135.738872][ T4669] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 135.743066][ T4669] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 135.749502][ T4669] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 135.752994][ T4669] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 135.756774][ T4669] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 135.919243][ T5675] chnl_net:caif_netlink_parms(): no params data found
[ 135.983744][ T5675] bridge0: port 1(bridge_slave_0) entered blocking state
[ 135.990146][ T5675] bridge0: port 1(bridge_slave_0) entered disabled state
[ 135.993112][ T5675] bridge_slave_0: entered allmulticast mode
[ 135.997499][ T5675] bridge_slave_0: entered promiscuous mode
[ 136.002186][ T5675] bridge0: port 2(bridge_slave_1) entered blocking state
[ 136.005095][ T5675] bridge0: port 2(bridge_slave_1) entered disabled state
[ 136.010959][ T5675] bridge_slave_1: entered allmulticast mode
[ 136.014540][ T5675] bridge_slave_1: entered promiscuous mode
[ 136.038975][ T5675] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 136.047600][ T5675] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 136.073597][ T5675] team0: Port device team_slave_0 added
[ 136.081153][ T5675] team0: Port device team_slave_1 added
[ 136.103340][ T5675] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 136.108213][ T5675] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 136.118398][ T5675] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 136.123623][ T5675] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 136.127855][ T5675] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 136.138342][ T5675] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 136.173413][ T5675] hsr_slave_0: entered promiscuous mode
[ 136.179466][ T5675] hsr_slave_1: entered promiscuous mode
[ 136.182737][ T5675] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 136.188111][ T5675] Cannot create hsr debugfs directory
[ 136.294679][ T5675] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 136.348237][ T5675] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 136.397671][ T5675] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 136.450147][ T5675] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 136.552245][ T5675] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 136.560364][ T5675] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 136.567823][ T5675] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 136.573474][ T5675] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 136.658847][ T5675] 8021q: adding VLAN 0 to HW filter on device bond0
[ 136.680587][ T5675] 8021q: adding VLAN 0 to HW filter on device team0
[ 136.696388][ T3051] bridge0: port 1(bridge_slave_0) entered blocking state
[ 136.699258][ T3051] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 136.711555][ T3051] bridge0: port 2(bridge_slave_1) entered blocking state
[ 136.714600][ T3051] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 136.893092][ T5675] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 136.933799][ T5675] veth0_vlan: entered promiscuous mode
[ 136.942625][ T5675] veth1_vlan: entered promiscuous mode
[ 136.973833][ T5675] veth0_macvtap: entered promiscuous mode
[ 136.980715][ T5675] veth1_macvtap: entered promiscuous mode
[ 136.994806][ T5675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 137.002900][ T5675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 137.010579][ T5675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 137.014698][ T5675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 137.020708][ T5675] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 137.033096][ T5675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 137.038038][ T5675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 137.041892][ T5675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 137.049823][ T5675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 137.054870][ T5675] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 137.067384][ T5675] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 137.070979][ T5675] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 137.074411][ T5675] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 137.079213][ T5675] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 137.157313][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 137.160451][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 137.200543][ T3051] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 137.207809][ T3051] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 137.493532][ T5689] loop0: detected capacity change from 0 to 32768
[ 137.507211][ T5689] =======================================================
[ 137.507211][ T5689] WARNING: The mand mount option has been deprecated and
[ 137.507211][ T5689] and is ignored by this kernel. Remove the mand
[ 137.507211][ T5689] option from the mount to silence this warning.
[ 137.507211][ T5689] =======================================================
[ 137.589690][ T5689] JBD2: Ignoring recovery information on journal
[ 137.632068][ T5689] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 137.692895][ T5689] (syz.0.16,5689,0):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options
[ 137.718561][ T5689] loop0: detected capacity change from 32768 to 32763
[ 137.721881][ T5689]
[ 137.722840][ T5689] ======================================================
[ 137.725575][ T5689] WARNING: possible circular locking dependency detected
[ 137.728232][ T5689] 6.15.0-rc1-syzkaller-00060-ga24588245776 #0 Not tainted
[ 137.731983][ T5689] ------------------------------------------------------
[ 137.734785][ T5689] syz.0.16/5689 is trying to acquire lock:
[ 137.737049][ T5689] ffffffff90467508 (uevent_sock_mutex){+.+.}-{4:4}, at: kobject_uevent_net_broadcast+0x280/0x580
[ 137.741274][ T5689]
[ 137.741274][ T5689] but task is already holding lock:
[ 137.744162][ T5689] ffff888000e11de8 (&q->q_usage_counter(io)#17){++++}-{0:0}, at: loop_set_status+0x223/0xb20
[ 137.748268][ T5689]
[ 137.748268][ T5689] which lock already depends on the new lock.
[ 137.748268][ T5689]
[ 137.752384][ T5689]
[ 137.752384][ T5689] the existing dependency chain (in reverse order) is:
[ 137.755978][ T5689]
[ 137.755978][ T5689] -> #2 (&q->q_usage_counter(io)#17){++++}-{0:0}:
[ 137.759325][ T5689] lock_acquire+0x116/0x2f0
[ 137.761274][ T5689] blk_alloc_queue+0x542/0x620
[ 137.763365][ T5689] __blk_mq_alloc_disk+0x162/0x380
[ 137.765672][ T5689] loop_add+0x445/0xaf0
[ 137.767611][ T5689] loop_init+0x168/0x220
[ 137.769576][ T5689] do_one_initcall+0x24a/0x940
[ 137.771569][ T5689] do_initcall_level+0x157/0x210
[ 137.773766][ T5689] do_initcalls+0x71/0xd0
[ 137.775786][ T5689] kernel_init_freeable+0x432/0x5d0
[ 137.778101][ T5689] kernel_init+0x1d/0x2b0
[ 137.780458][ T5689] ret_from_fork+0x4b/0x80
[ 137.782480][ T5689] ret_from_fork_asm+0x1a/0x30
[ 137.784530][ T5689]
[ 137.784530][ T5689] -> #1 (fs_reclaim){+.+.}-{0:0}:
[ 137.787475][ T5689] lock_acquire+0x116/0x2f0
[ 137.789477][ T5689] fs_reclaim_acquire+0x88/0x130
[ 137.791620][ T5689] kmem_cache_alloc_node_noprof+0x4e/0x3b0
[ 137.794052][ T5689] __alloc_skb+0x1c2/0x480
[ 137.795993][ T5689] alloc_uevent_skb+0x74/0x230
[ 137.798181][ T5689] kobject_uevent_net_broadcast+0x2fd/0x580
[ 137.800791][ T5689] kobject_uevent_env+0x57d/0x8e0
[ 137.803003][ T5689] kobject_synth_uevent+0x4f4/0xaf0
[ 137.805336][ T5689] bus_uevent_store+0x116/0x170
[ 137.807416][ T5689] kernfs_fop_write_iter+0x398/0x510
[ 137.809688][ T5689] vfs_write+0x70f/0xd10
[ 137.811674][ T5689] ksys_write+0x19d/0x2d0
[ 137.813636][ T5689] do_syscall_64+0xf3/0x230
[ 137.815587][ T5689] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 137.818328][ T5689]
[ 137.818328][ T5689] -> #0 (uevent_sock_mutex){+.+.}-{4:4}:
[ 137.821370][ T5689] validate_chain+0xa69/0x24e0
[ 137.823477][ T5689] __lock_acquire+0xad5/0xd80
[ 137.825538][ T5689] lock_acquire+0x116/0x2f0
[ 137.827542][ T5689] __mutex_lock+0x1a5/0x10c0
[ 137.829552][ T5689] kobject_uevent_net_broadcast+0x280/0x580
[ 137.831968][ T5689] kobject_uevent_env+0x57d/0x8e0
[ 137.834097][ T5689] set_capacity_and_notify+0x269/0x2d0
[ 137.836580][ T5689] loop_set_status+0x4a4/0xb20
[ 137.839228][ T5689] lo_ioctl+0xce1/0x2850
[ 137.841694][ T5689] blkdev_ioctl+0x5df/0x710
[ 137.843813][ T5689] __se_sys_ioctl+0xf1/0x160
[ 137.845872][ T5689] do_syscall_64+0xf3/0x230
[ 137.847983][ T5689] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 137.850539][ T5689]
[ 137.850539][ T5689] other info that might help us debug this:
[ 137.850539][ T5689]
[ 137.854582][ T5689] Chain exists of:
[ 137.854582][ T5689] uevent_sock_mutex --> fs_reclaim --> &q->q_usage_counter(io)#17
[ 137.854582][ T5689]
[ 137.860009][ T5689] Possible unsafe locking scenario:
[ 137.860009][ T5689]
[ 137.862942][ T5689] CPU0 CPU1
[ 137.865046][ T5689] ---- ----
[ 137.867293][ T5689] lock(&q->q_usage_counter(io)#17);
[ 137.869469][ T5689] lock(fs_reclaim);
[ 137.872066][ T5689] lock(&q->q_usage_counter(io)#17);
[ 137.875304][ T5689] lock(uevent_sock_mutex);
[ 137.877222][ T5689]
[ 137.877222][ T5689] *** DEADLOCK ***
[ 137.877222][ T5689]
[ 137.880451][ T5689] 3 locks held by syz.0.16/5689:
[ 137.882481][ T5689] #0: ffff888033962368 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2b/0xb20
[ 137.886240][ T5689] #1: ffff888000e11de8 (&q->q_usage_counter(io)#17){++++}-{0:0}, at: loop_set_status+0x223/0xb20
[ 137.890418][ T5689] #2: ffff888000e11e20 (&q->q_usage_counter(queue)#20){+.+.}-{0:0}, at: loop_set_status+0x223/0xb20
[ 137.894968][ T5689]
[ 137.894968][ T5689] stack backtrace:
[ 137.897472][ T5689] CPU: 0 UID: 0 PID: 5689 Comm: syz.0.16 Not tainted 6.15.0-rc1-syzkaller-00060-ga24588245776 #0 PREEMPT(full)
[ 137.897487][ T5689] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 137.897495][ T5689] Call Trace:
[ 137.897503][ T5689]
[ 137.897509][ T5689] dump_stack_lvl+0x241/0x360
[ 137.897530][ T5689] ? __pfx_dump_stack_lvl+0x10/0x10
[ 137.897542][ T5689] ? __pfx__printk+0x10/0x10
[ 137.897555][ T5689] ? print_lock+0x171/0x1a0
[ 137.897569][ T5689] print_circular_bug+0x2e1/0x300
[ 137.897582][ T5689] check_noncircular+0x142/0x160
[ 137.897598][ T5689] validate_chain+0xa69/0x24e0
[ 137.897611][ T5689] ? __pfx_number+0x10/0x10
[ 137.897632][ T5689] __lock_acquire+0xad5/0xd80
[ 137.897644][ T5689] lock_acquire+0x116/0x2f0
[ 137.897654][ T5689] ? kobject_uevent_net_broadcast+0x280/0x580
[ 137.897670][ T5689] ? vsnprintf+0x1156/0x1230
[ 137.897685][ T5689] __mutex_lock+0x1a5/0x10c0
[ 137.897725][ T5689] ? kobject_uevent_net_broadcast+0x280/0x580
[ 137.897741][ T5689] ? __pfx_vsnprintf+0x10/0x10
[ 137.897757][ T5689] ? kobject_uevent_net_broadcast+0x280/0x580
[ 137.897771][ T5689] ? __pfx___mutex_lock+0x10/0x10
[ 137.897783][ T5689] ? add_uevent_var+0x291/0x490
[ 137.897797][ T5689] ? kobject_uevent_env+0x503/0x8e0
[ 137.897811][ T5689] ? __pfx_add_uevent_var+0x10/0x10
[ 137.897825][ T5689] kobject_uevent_net_broadcast+0x280/0x580
[ 137.897841][ T5689] kobject_uevent_env+0x57d/0x8e0
[ 137.897857][ T5689] set_capacity_and_notify+0x269/0x2d0
[ 137.897872][ T5689] ? __pfx_set_capacity_and_notify+0x10/0x10
[ 137.897885][ T5689] ? __asan_memcpy+0x40/0x70
[ 137.897898][ T5689] ? loop_set_status_from_info+0x184/0x240
[ 137.897913][ T5689] loop_set_status+0x4a4/0xb20
[ 137.897929][ T5689] lo_ioctl+0xce1/0x2850
[ 137.897943][ T5689] ? kasan_save_track+0x51/0x80
[ 137.897975][ T5689] ? kasan_save_track+0x3f/0x80
[ 137.897987][ T5689] ? kasan_save_free_info+0x40/0x50
[ 137.897996][ T5689] ? __kasan_slab_free+0x59/0x70
[ 137.898007][ T5689] ? kfree+0x198/0x430
[ 137.898021][ T5689] ? __pfx_lo_ioctl+0x10/0x10
[ 137.898032][ T5689] ? __lock_acquire+0xad5/0xd80
[ 137.898043][ T5689] ? do_raw_spin_lock+0x151/0x370
[ 137.898058][ T5689] ? xfd_validate_state+0x6e/0x150
[ 137.898069][ T5689] ? __lock_acquire+0xad5/0xd80
[ 137.898080][ T5689] ? __lock_acquire+0xad5/0xd80
[ 137.898091][ T5689] ? __lock_acquire+0xad5/0xd80
[ 137.898101][ T5689] ? __lock_acquire+0xad5/0xd80
[ 137.898112][ T5689] ? __lock_acquire+0xad5/0xd80
[ 137.898121][ T5689] ? __lock_acquire+0xad5/0xd80
[ 137.898135][ T5689] ? is_bpf_text_address+0x26/0x2a0
[ 137.898148][ T5689] ? is_bpf_text_address+0x288/0x2a0
[ 137.898158][ T5689] ? is_bpf_text_address+0x26/0x2a0
[ 137.898169][ T5689] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 137.898183][ T5689] ? kernel_text_address+0xa7/0xe0
[ 137.898193][ T5689] ? __kernel_text_address+0xd/0x40
[ 137.898202][ T5689] ? unwind_get_return_address+0x4d/0x90
[ 137.898215][ T5689] ? arch_stack_walk+0xff/0x150
[ 137.898230][ T5689] ? stack_trace_save+0x11a/0x1d0
[ 137.898244][ T5689] ? __pfx_stack_trace_save+0x10/0x10
[ 137.898257][ T5689] ? stack_depot_save_flags+0x44/0x940
[ 137.898271][ T5689] ? do_syscall_64+0xf3/0x230
[ 137.898282][ T5689] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 137.898293][ T5689] ? do_vfs_ioctl+0xef8/0x2750
[ 137.898311][ T5689] ? kasan_quarantine_put+0xdc/0x230
[ 137.898321][ T5689] ? lockdep_hardirqs_on+0x9d/0x150
[ 137.898334][ T5689] ? tomoyo_path_number_perm+0x215/0x790
[ 137.898347][ T5689] ? blkdev_common_ioctl+0x1060/0x25a0
[ 137.898360][ T5689] ? __pfx_blkdev_common_ioctl+0x10/0x10
[ 137.898372][ T5689] ? tomoyo_path_number_perm+0x215/0x790
[ 137.898384][ T5689] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 137.898404][ T5689] ? do_sys_openat2+0x165/0x1d0
[ 137.898419][ T5689] ? __lock_acquire+0xad5/0xd80
[ 137.898431][ T5689] ? file_to_blk_mode+0xcb/0x140
[ 137.898445][ T5689] ? __pfx_lo_ioctl+0x10/0x10
[ 137.898456][ T5689] blkdev_ioctl+0x5df/0x710
[ 137.898470][ T5689] ? __pfx_blkdev_ioctl+0x10/0x10
[ 137.898482][ T5689] ? __pfx_blkdev_ioctl+0x10/0x10
[ 137.898494][ T5689] __se_sys_ioctl+0xf1/0x160
[ 137.898506][ T5689] do_syscall_64+0xf3/0x230
[ 137.898518][ T5689] ? clear_bhb_loop+0x45/0xa0
[ 137.898529][ T5689] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 137.898540][ T5689] RIP: 0033:0x7f8551d8d169
[ 137.898550][ T5689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 137.898558][ T5689] RSP: 002b:00007f8550ffe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 137.898571][ T5689] RAX: ffffffffffffffda RBX: 00007f8551fa5fa0 RCX: 00007f8551d8d169
[ 137.898579][ T5689] RDX: 00004000000000c0 RSI: 0000000000004c02 RDI: 0000000000000009
[ 137.898585][ T5689] RBP: 00007f8551e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 137.898591][ T5689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 137.898597][ T5689] R13: 0000000000000000 R14: 00007f8551fa5fa0 R15: 00007ffdf9e60938
[ 137.898607][ T5689]
[ 138.102395][ T5414] Bluetooth: hci0: command tx timeout
[ 138.113980][ T1311] ieee802154 phy0 wpan0: encryption failed: -22
[ 138.116882][ T1311] ieee802154 phy1 wpan1: encryption failed: -22
[ 138.131030][ T5692] OCFS2: ERROR (device loop0): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 0 has bad signature
[ 138.141447][ T5692] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 138.153307][ T5692] OCFS2: File system is now read-only.
[ 138.156542][ T5692] (syz.0.16,5692,0):ocfs2_find_entry_dx:1029 ERROR: status = -30
[ 138.159747][ T5692] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI
[ 138.164495][ T5692] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 138.167924][ T5692] CPU: 0 UID: 0 PID: 5692 Comm: syz.0.16 Not tainted 6.15.0-rc1-syzkaller-00060-ga24588245776 #0 PREEMPT(full)
[ 138.172596][ T5692] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 138.176884][ T5692] RIP: 0010:ocfs2_dx_dir_lookup_rec+0x32b/0x830
[ 138.179463][ T5692] Code: 24 28 49 83 c6 40 4c 89 f0 48 c1 e8 03 80 3c 18 00 74 08 4c 89 f7 e8 b4 47 6a fe 49 8b 06 48 89 44 24 40 4c 89 e0 48 c1 e8 03 <0f> b6 04 18 84 c0 0f 85 e1 03 00 00 45 8b 34 24 4c 8b 7c 24 18 4c
[ 138.187122][ T5692] RSP: 0018:ffffc9000cc76b40 EFLAGS: 00010246
[ 138.189606][ T5692] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffff8880007e8000
[ 138.192825][ T5692] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888042e088a0
[ 138.196008][ T5692] RBP: ffffc9000cc76c50 R08: ffffffff83c3443f R09: ffffc9000cc76ce0
[ 138.199236][ T5692] R10: 23ec6d672c196c9a R11: 608b7c562adf3b03 R12: 0000000000000000
[ 138.202390][ T5692] R13: ffffffff9368a020 R14: ffff888042e088b8 R15: ffffc9000cc76bc0
[ 138.205570][ T5692] FS: 00007f8550fdd6c0(0000) GS:ffff88808c596000(0000) knlGS:0000000000000000
[ 138.209193][ T5692] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 138.211800][ T5692] CR2: 00007f8550fdcfd8 CR3: 0000000057574000 CR4: 0000000000352ef0
[ 138.214999][ T5692] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 138.218179][ T5692] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 138.221379][ T5692] Call Trace:
[ 138.222765][ T5692]
[ 138.224000][ T5692] ? __pfx_ocfs2_dx_dir_lookup_rec+0x10/0x10
[ 138.226491][ T5692] ? rcu_is_watching+0x15/0xb0
[ 138.228407][ T5692] ? ocfs2_dx_dir_name_hash+0x1bd/0xd40
[ 138.230622][ T5692] ? __asan_memcpy+0x40/0x70
[ 138.232492][ T5692] ocfs2_dx_dir_lookup+0x165/0x930
[ 138.234548][ T5692] ? __pfx_ocfs2_dx_dir_lookup+0x10/0x10
[ 138.236847][ T5692] ? ocfs2_read_inode_block+0x14e/0x1e0
[ 138.239080][ T5692] ? __pfx_ocfs2_read_inode_block+0x10/0x10
[ 138.241491][ T5692] ? __mutex_unlock_slowpath+0x229/0x800
[ 138.243742][ T5692] ? __pfx_ocfs2_set_buffer_uptodate+0x10/0x10
[ 138.246207][ T5692] ocfs2_find_entry+0x130d/0x2570
[ 138.248287][ T5692] ? rcu_is_watching+0x15/0xb0
[ 138.250252][ T5692] ? __pfx_ocfs2_find_entry+0x10/0x10
[ 138.252391][ T5692] ? ocfs2_read_blocks+0x1248/0x1600
[ 138.254523][ T5692] ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[ 138.256879][ T5692] ? __pfx_ocfs2_read_blocks+0x10/0x10
[ 138.259080][ T5692] ? __mutex_unlock_slowpath+0x229/0x800
[ 138.261275][ T5692] ? ocfs2_read_inode_block+0x14e/0x1e0
[ 138.263462][ T5692] ? __pfx_ocfs2_read_inode_block+0x10/0x10
[ 138.265853][ T5692] ? do_raw_spin_unlock+0x58/0x8b0
[ 138.267925][ T5692] ? rcu_is_watching+0x15/0xb0
[ 138.269933][ T5692] ? ocfs2_inode_lock_full_nested+0xb2d/0x1be0
[ 138.272391][ T5692] ? __mlog_printk+0x285/0x2b0
[ 138.274332][ T5692] ? __pfx_ocfs2_validate_dx_root+0x10/0x10
[ 138.276733][ T5692] ? __pfx_ocfs2_inode_lock_full_nested+0x10/0x10
[ 138.279362][ T5692] ? __asan_memset+0x23/0x50
[ 138.281216][ T5692] ocfs2_check_dir_for_entry+0x17d/0x4b0
[ 138.283524][ T5692] ? __pfx_ocfs2_check_dir_for_entry+0x10/0x10
[ 138.286022][ T5692] ? ocfs2_find_entry+0xdfd/0x2570
[ 138.288085][ T5692] ? kasan_save_track+0x51/0x80
[ 138.290081][ T5692] ? kasan_save_track+0x3f/0x80
[ 138.292071][ T5692] ? kasan_save_free_info+0x40/0x50
[ 138.294178][ T5692] ? __kasan_slab_free+0x59/0x70
[ 138.296163][ T5692] ? kfree+0x198/0x430
[ 138.297841][ T5692] ocfs2_mknod+0x840/0x2b30
[ 138.299727][ T5692] ? __pfx_ocfs2_mknod+0x10/0x10
[ 138.301733][ T5692] ? _raw_spin_unlock+0x28/0x50
[ 138.303704][ T5692] ? ocfs2_inode_lock_full_nested+0xb2d/0x1be0
[ 138.306207][ T5692] ? do_raw_spin_lock+0x151/0x370
[ 138.308258][ T5692] ? do_raw_spin_unlock+0x58/0x8b0
[ 138.310526][ T5692] ? _raw_spin_unlock+0x28/0x50
[ 138.312517][ T5692] ? ocfs2_inode_lock_full_nested+0xb2d/0x1be0
[ 138.315037][ T5692] ? do_raw_spin_lock+0x151/0x370
[ 138.317119][ T5692] ? do_raw_spin_lock+0x151/0x370
[ 138.319212][ T5692] ? do_raw_spin_unlock+0x58/0x8b0
[ 138.321341][ T5692] ? rcu_is_watching+0x15/0xb0
[ 138.323285][ T5692] ? ocfs2_lookup+0x50c/0xa40
[ 138.325218][ T5692] ocfs2_create+0x1ad/0x480
[ 138.327131][ T5692] ? __pfx_ocfs2_create+0x10/0x10
[ 138.329203][ T5692] ? inode_permission+0xff/0x460
[ 138.331261][ T5692] ? __pfx_ocfs2_permission+0x10/0x10
[ 138.333460][ T5692] ? bpf_lsm_inode_create+0x9/0x10
[ 138.335552][ T5692] ? security_inode_create+0xbe/0x340
[ 138.337814][ T5692] ? __pfx_ocfs2_create+0x10/0x10
[ 138.339901][ T5692] path_openat+0x194b/0x35d0
[ 138.341825][ T5692] ? __pfx_path_openat+0x10/0x10
[ 138.343877][ T5692] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 138.346365][ T5692] do_filp_open+0x284/0x4e0
[ 138.348237][ T5692] ? __pfx_do_filp_open+0x10/0x10
[ 138.350348][ T5692] ? do_raw_spin_lock+0x151/0x370
[ 138.352435][ T5692] do_sys_openat2+0x12b/0x1d0
[ 138.354381][ T5692] ? __pfx_do_sys_openat2+0x10/0x10
[ 138.356599][ T5692] ? lock_vma_under_rcu+0x1f0/0x9a0
[ 138.358808][ T5692] __x64_sys_openat+0x249/0x2a0
[ 138.360833][ T5692] ? __pfx___x64_sys_openat+0x10/0x10
[ 138.363049][ T5692] ? rcu_is_watching+0x15/0xb0
[ 138.365028][ T5692] ? rcu_is_watching+0x15/0xb0
[ 138.367011][ T5692] do_syscall_64+0xf3/0x230
[ 138.368874][ T5692] ? clear_bhb_loop+0x45/0xa0
[ 138.370851][ T5692] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 138.373295][ T5692] RIP: 0033:0x7f8551d8d169
[ 138.375209][ T5692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 138.382970][ T5692] RSP: 002b:00007f8550fdd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 138.386324][ T5692] RAX: ffffffffffffffda RBX: 00007f8551fa6080 RCX: 00007f8551d8d169
[ 138.389421][ T5692] RDX: 0000000000105042 RSI: 0000400000000080 RDI: ffffffffffffff9c
[ 138.392600][ T5692] RBP: 00007f8551e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 138.395946][ T5692] R10: 00000000000001ff R11: 0000000000000246 R12: 0000000000000000
[ 138.399209][ T5692] R13: 0000000000000001 R14: 00007f8551fa6080 R15: 00007ffdf9e60938
[ 138.402480][ T5692]
[ 138.403776][ T5692] Modules linked in:
[ 138.407397][ T5692] ---[ end trace 0000000000000000 ]---
[ 138.423611][ T5692] RIP: 0010:ocfs2_dx_dir_lookup_rec+0x32b/0x830
[ 138.427098][ T5692] Code: 24 28 49 83 c6 40 4c 89 f0 48 c1 e8 03 80 3c 18 00 74 08 4c 89 f7 e8 b4 47 6a fe 49 8b 06 48 89 44 24 40 4c 89 e0 48 c1 e8 03 <0f> b6 04 18 84 c0 0f 85 e1 03 00 00 45 8b 34 24 4c 8b 7c 24 18 4c
[ 138.437148][ T5692] RSP: 0018:ffffc9000cc76b40 EFLAGS: 00010246
[ 138.439735][ T5692] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffff8880007e8000
[ 138.443036][ T5692] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888042e088a0
[ 138.447108][ T5692] RBP: ffffc9000cc76c50 R08: ffffffff83c3443f R09: ffffc9000cc76ce0
[ 138.450469][ T5692] R10: 23ec6d672c196c9a R11: 608b7c562adf3b03 R12: 0000000000000000
[ 138.453745][ T5692] R13: ffffffff9368a020 R14: ffff888042e088b8 R15: ffffc9000cc76bc0
[ 138.457755][ T5692] FS: 00007f8550fdd6c0(0000) GS:ffff88808c596000(0000) knlGS:0000000000000000
[ 138.461478][ T5692] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 138.464220][ T5692] CR2: 00007f8550fdcfd8 CR3: 0000000057574000 CR4: 0000000000352ef0
[ 138.471676][ T5692] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 138.475032][ T5692] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 138.478997][ T5692] Kernel panic - not syncing: Fatal exception
[ 138.481793][ T5692] Kernel Offset: disabled
[ 138.483592][ T5692] Rebooting in 86400 seconds..