[ 76.194681][ T13] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.80' (ED25519) to the list of known hosts. executing program [ 77.950467][ T3510] [ 77.952816][ T3510] ====================================================== [ 77.959818][ T3510] WARNING: possible circular locking dependency detected [ 77.966820][ T3510] 5.15.133-syzkaller #0 Not tainted [ 77.972013][ T3510] ------------------------------------------------------ [ 77.979023][ T3510] syz-executor155/3510 is trying to acquire lock: [ 77.985420][ T3510] ffff88814b738170 (&journal->j_barrier){+.+.}-{3:3}, at: jbd2_journal_lock_updates+0x2aa/0x370 [ 77.995905][ T3510] [ 77.995905][ T3510] but task is already holding lock: [ 78.003260][ T3510] ffff888024beebd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_change_inode_journal_flag+0x1a0/0x6e0 [ 78.014565][ T3510] [ 78.014565][ T3510] which lock already depends on the new lock. [ 78.014565][ T3510] [ 78.025062][ T3510] [ 78.025062][ T3510] the existing dependency chain (in reverse order) is: [ 78.034061][ T3510] [ 78.034061][ T3510] -> #4 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 78.042473][ T3510] lock_acquire+0x1db/0x4f0 [ 78.047500][ T3510] percpu_down_write+0x52/0x2d0 [ 78.052867][ T3510] ext4_change_inode_journal_flag+0x1a0/0x6e0 [ 78.059441][ T3510] ext4_fileattr_set+0xdf4/0x1750 [ 78.064972][ T3510] vfs_fileattr_set+0x8f3/0xd30 [ 78.070336][ T3510] do_vfs_ioctl+0x1d85/0x2b70 [ 78.075520][ T3510] __se_sys_ioctl+0x81/0x160 [ 78.080717][ T3510] do_syscall_64+0x3d/0xb0 [ 78.085643][ T3510] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 78.092051][ T3510] [ 78.092051][ T3510] -> #3 (mapping.invalidate_lock){++++}-{3:3}: [ 78.100371][ T3510] lock_acquire+0x1db/0x4f0 [ 78.105390][ T3510] down_write+0x97/0x170 [ 78.110139][ T3510] ext4_setattr+0xd6c/0x1990 [ 78.115334][ T3510] notify_change+0xc6d/0xf50 [ 78.120433][ T3510] do_truncate+0x21c/0x300 [ 78.125367][ T3510] do_sys_ftruncate+0x2eb/0x390 [ 78.130727][ T3510] do_syscall_64+0x3d/0xb0 [ 78.135659][ T3510] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 78.142071][ T3510] [ 78.142071][ T3510] -> #2 (&sb->s_type->i_mutex_key#9){++++}-{3:3}: [ 78.150833][ T3510] lock_acquire+0x1db/0x4f0 [ 78.155937][ T3510] down_read+0x45/0x2e0 [ 78.160684][ T3510] ext4_bmap+0x4b/0x410 [ 78.165346][ T3510] bmap+0xa1/0xd0 [ 78.169670][ T3510] jbd2_journal_flush+0x7a2/0xc90 [ 78.175199][ T3510] ext4_ioctl+0x3249/0x5b80 [ 78.180218][ T3510] __se_sys_ioctl+0xf1/0x160 [ 78.185315][ T3510] do_syscall_64+0x3d/0xb0 [ 78.190242][ T3510] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 78.196664][ T3510] [ 78.196664][ T3510] -> #1 (&journal->j_checkpoint_mutex){+.+.}-{3:3}: [ 78.205419][ T3510] lock_acquire+0x1db/0x4f0 [ 78.210435][ T3510] __mutex_lock_common+0x1da/0x25a0 [ 78.216140][ T3510] mutex_lock_io_nested+0x45/0x60 [ 78.221672][ T3510] jbd2_journal_flush+0x290/0xc90 [ 78.227201][ T3510] ext4_ioctl+0x3249/0x5b80 [ 78.232230][ T3510] __se_sys_ioctl+0xf1/0x160 [ 78.237329][ T3510] do_syscall_64+0x3d/0xb0 [ 78.242266][ T3510] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 78.248666][ T3510] [ 78.248666][ T3510] -> #0 (&journal->j_barrier){+.+.}-{3:3}: [ 78.256640][ T3510] validate_chain+0x1646/0x58b0 [ 78.262028][ T3510] __lock_acquire+0x1295/0x1ff0 [ 78.267382][ T3510] lock_acquire+0x1db/0x4f0 [ 78.272398][ T3510] __mutex_lock_common+0x1da/0x25a0 [ 78.278102][ T3510] mutex_lock_nested+0x17/0x20 [ 78.283459][ T3510] jbd2_journal_lock_updates+0x2aa/0x370 [ 78.289686][ T3510] ext4_change_inode_journal_flag+0x1a8/0x6e0 [ 78.296259][ T3510] ext4_fileattr_set+0xdf4/0x1750 [ 78.301802][ T3510] vfs_fileattr_set+0x8f3/0xd30 [ 78.307160][ T3510] do_vfs_ioctl+0x1d85/0x2b70 [ 78.312432][ T3510] __se_sys_ioctl+0x81/0x160 [ 78.317556][ T3510] do_syscall_64+0x3d/0xb0 [ 78.322478][ T3510] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 78.328895][ T3510] [ 78.328895][ T3510] other info that might help us debug this: [ 78.328895][ T3510] [ 78.339191][ T3510] Chain exists of: [ 78.339191][ T3510] &journal->j_barrier --> mapping.invalidate_lock --> &sbi->s_writepages_rwsem [ 78.339191][ T3510] [ 78.354636][ T3510] Possible unsafe locking scenario: [ 78.354636][ T3510] [ 78.362069][ T3510] CPU0 CPU1 [ 78.367414][ T3510] ---- ---- [ 78.372760][ T3510] lock(&sbi->s_writepages_rwsem); [ 78.377948][ T3510] lock(mapping.invalidate_lock); [ 78.385561][ T3510] lock(&sbi->s_writepages_rwsem); [ 78.393270][ T3510] lock(&journal->j_barrier); [ 78.398018][ T3510] [ 78.398018][ T3510] *** DEADLOCK *** [ 78.398018][ T3510] [ 78.406230][ T3510] 4 locks held by syz-executor155/3510: [ 78.411843][ T3510] #0: ffff888024bec460 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0 [ 78.421577][ T3510] #1: ffff888073cbd3b0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: vfs_fileattr_set+0x135/0xd30 [ 78.432270][ T3510] #2: ffff888073cbd550 (mapping.invalidate_lock){++++}-{3:3}, at: ext4_change_inode_journal_flag+0x115/0x6e0 [ 78.443911][ T3510] #3: ffff888024beebd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_change_inode_journal_flag+0x1a0/0x6e0 [ 78.455651][ T3510] [ 78.455651][ T3510] stack backtrace: [ 78.461522][ T3510] CPU: 1 PID: 3510 Comm: syz-executor155 Not tainted 5.15.133-syzkaller #0 [ 78.471316][ T3510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 78.481532][ T3510] Call Trace: [ 78.484798][ T3510] [ 78.487721][ T3510] dump_stack_lvl+0x1e3/0x2cb [ 78.492479][ T3510] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 78.498111][ T3510] ? print_circular_bug+0x12b/0x1a0 [ 78.503296][ T3510] check_noncircular+0x2f8/0x3b0 [ 78.508224][ T3510] ? add_chain_block+0x850/0x850 [ 78.513148][ T3510] ? lockdep_lock+0x11f/0x2a0 [ 78.517818][ T3510] ? validate_chain+0x112/0x58b0 [ 78.522743][ T3510] validate_chain+0x1646/0x58b0 [ 78.527584][ T3510] ? reacquire_held_locks+0x660/0x660 [ 78.533059][ T3510] ? lockdep_unlock+0x166/0x300 [ 78.537900][ T3510] ? lockdep_lock+0x2a0/0x2a0 [ 78.542827][ T3510] ? lockdep_unlock+0x166/0x300 [ 78.547667][ T3510] ? reacquire_held_locks+0x660/0x660 [ 78.553073][ T3510] ? validate_chain+0x13b7/0x58b0 [ 78.558087][ T3510] ? mark_lock+0x98/0x340 [ 78.562404][ T3510] ? mark_lock+0x98/0x340 [ 78.567079][ T3510] __lock_acquire+0x1295/0x1ff0 [ 78.571922][ T3510] lock_acquire+0x1db/0x4f0 [ 78.576412][ T3510] ? jbd2_journal_lock_updates+0x2aa/0x370 [ 78.582213][ T3510] ? read_lock_is_recursive+0x10/0x10 [ 78.587574][ T3510] ? __might_sleep+0xc0/0xc0 [ 78.592148][ T3510] ? print_irqtrace_events+0x210/0x210 [ 78.597594][ T3510] ? lockdep_hardirqs_off+0x70/0x100 [ 78.602870][ T3510] ? do_raw_spin_unlock+0x137/0x8b0 [ 78.608055][ T3510] __mutex_lock_common+0x1da/0x25a0 [ 78.613243][ T3510] ? jbd2_journal_lock_updates+0x2aa/0x370 [ 78.619039][ T3510] ? jbd2_journal_lock_updates+0x2aa/0x370 [ 78.624835][ T3510] ? jbd2_journal_lock_updates+0x299/0x370 [ 78.630635][ T3510] ? jbd2_journal_wait_updates+0x268/0x2d0 [ 78.636431][ T3510] ? mutex_lock_io_nested+0x60/0x60 [ 78.641624][ T3510] ? do_raw_read_unlock+0x70/0x70 [ 78.646635][ T3510] ? rcu_sync_func+0xaa/0x210 [ 78.651300][ T3510] mutex_lock_nested+0x17/0x20 [ 78.656055][ T3510] jbd2_journal_lock_updates+0x2aa/0x370 [ 78.661680][ T3510] ? jbd2_journal_wait_updates+0x2d0/0x2d0 [ 78.667476][ T3510] ? down_write+0x10e/0x170 [ 78.671983][ T3510] ? cpumask_next+0xc3/0xf0 [ 78.676490][ T3510] ? percpu_down_write+0x1ea/0x2d0 [ 78.681608][ T3510] ext4_change_inode_journal_flag+0x1a8/0x6e0 [ 78.687689][ T3510] ext4_fileattr_set+0xdf4/0x1750 [ 78.692718][ T3510] ? ext4_fileattr_get+0x200/0x200 [ 78.697821][ T3510] ? memset+0x1f/0x40 [ 78.701899][ T3510] ? fileattr_fill_flags+0x1d0/0x300 [ 78.707171][ T3510] ? fscrypt_prepare_setflags+0x5d/0x220 [ 78.712793][ T3510] vfs_fileattr_set+0x8f3/0xd30 [ 78.717655][ T3510] ? copy_fsxattr_to_user+0x3a0/0x3a0 [ 78.723106][ T3510] do_vfs_ioctl+0x1d85/0x2b70 [ 78.727772][ T3510] ? __x64_compat_sys_ioctl+0x80/0x80 [ 78.733311][ T3510] ? __lock_acquire+0x1ff0/0x1ff0 [ 78.738321][ T3510] ? slab_free_freelist_hook+0xdd/0x160 [ 78.744087][ T3510] ? tomoyo_path_number_perm+0x648/0x810 [ 78.749724][ T3510] ? kfree+0xf1/0x270 [ 78.753704][ T3510] ? tomoyo_path_number_perm+0x6ab/0x810 [ 78.759329][ T3510] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 78.764907][ T3510] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 78.770966][ T3510] ? print_irqtrace_events+0x210/0x210 [ 78.776501][ T3510] ? vtime_user_exit+0x2d1/0x400 [ 78.781626][ T3510] ? bpf_lsm_file_ioctl+0x5/0x10 [ 78.786561][ T3510] ? security_file_ioctl+0x7d/0xa0 [ 78.791685][ T3510] __se_sys_ioctl+0x81/0x160 [ 78.796274][ T3510] do_syscall_64+0x3d/0xb0 [ 78.800811][ T3510] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 78.807450][ T3510] RIP: 0033:0x7fe86a55b329 [ 78.811861][ T3510] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 78.831464][ T3510] RSP: 002b:00007ffc74c1be68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 78.839883][ T3510] RAX: ffffffffffffffda RBX: 00007ffc74c1c038 RCX: 00007fe86a55b329 [ 78.847867][ T3510] RDX: 0000000020000180 RSI: 0000000040086602 RDI: 0000