Warning: Permanently added '10.128.0.207' (ED25519) to the list of known hosts. executing program [ 36.710327][ T4291] loop0: detected capacity change from 0 to 32768 [ 36.730007][ T4291] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 36.733483][ T1649] (kworker/u4:5,1649,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=16, inode=66, rec_len=491, name_len=2 [ 36.738399][ T4291] [ 36.739095][ T4291] ====================================================== [ 36.741080][ T4291] WARNING: possible circular locking dependency detected [ 36.742922][ T4291] 6.1.134-syzkaller #0 Not tainted [ 36.744252][ T4291] ------------------------------------------------------ [ 36.746062][ T4291] syz-executor418/4291 is trying to acquire lock: [ 36.747759][ T4291] ffff0000e1f3ed88 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x164/0x4428 [ 36.751320][ T4291] [ 36.751320][ T4291] but task is already holding lock: [ 36.753292][ T4291] ffff0000e1f386f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x4e4/0x1478 [ 36.755905][ T4291] [ 36.755905][ T4291] which lock already depends on the new lock. [ 36.755905][ T4291] [ 36.758874][ T4291] [ 36.758874][ T4291] the existing dependency chain (in reverse order) is: [ 36.761233][ T4291] [ 36.761233][ T4291] -> #5 (&oi->ip_xattr_sem){++++}-{3:3}: [ 36.763310][ T4291] down_read+0x64/0x308 [ 36.764534][ T4291] ocfs2_init_acl+0x2c8/0x764 [ 36.765894][ T4291] ocfs2_mknod+0x1574/0x2560 [ 36.767190][ T4291] ocfs2_create+0x1a8/0x560 [ 36.768533][ T4291] path_openat+0xeac/0x2548 [ 36.769861][ T4291] do_filp_open+0x1bc/0x3cc [ 36.771206][ T4291] do_sys_openat2+0x128/0x3e0 [ 36.772584][ T4291] __arm64_sys_openat+0x1f0/0x240 [ 36.774077][ T4291] invoke_syscall+0x98/0x2bc [ 36.775424][ T4291] el0_svc_common+0x138/0x258 [ 36.776772][ T4291] do_el0_svc+0x58/0x13c [ 36.778094][ T4291] el0_svc+0x58/0x168 [ 36.779286][ T4291] el0t_64_sync_handler+0x84/0xf0 [ 36.780715][ T4291] el0t_64_sync+0x18c/0x190 [ 36.782000][ T4291] [ 36.782000][ T4291] -> #4 (jbd2_handle){.+.+}-{0:0}: [ 36.783962][ T4291] start_this_handle+0x1140/0x13ac [ 36.785466][ T4291] jbd2__journal_start+0x298/0x544 [ 36.787025][ T4291] jbd2_journal_start+0x3c/0x4c [ 36.788422][ T4291] ocfs2_start_trans+0x3e8/0x73c [ 36.789855][ T4291] ocfs2_mknod+0xe64/0x2560 [ 36.791185][ T4291] ocfs2_create+0x1a8/0x560 [ 36.792481][ T4291] path_openat+0xeac/0x2548 [ 36.793807][ T4291] do_filp_open+0x1bc/0x3cc [ 36.795116][ T4291] do_sys_openat2+0x128/0x3e0 [ 36.796473][ T4291] __arm64_sys_openat+0x1f0/0x240 [ 36.797948][ T4291] invoke_syscall+0x98/0x2bc [ 36.799269][ T4291] el0_svc_common+0x138/0x258 [ 36.800666][ T4291] do_el0_svc+0x58/0x13c [ 36.801976][ T4291] el0_svc+0x58/0x168 [ 36.803145][ T4291] el0t_64_sync_handler+0x84/0xf0 [ 36.804585][ T4291] el0t_64_sync+0x18c/0x190 [ 36.805893][ T4291] [ 36.805893][ T4291] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 36.808190][ T4291] down_read+0x64/0x308 [ 36.809383][ T4291] ocfs2_start_trans+0x3dc/0x73c [ 36.810808][ T4291] ocfs2_mknod+0xe64/0x2560 [ 36.812112][ T4291] ocfs2_create+0x1a8/0x560 [ 36.813398][ T4291] path_openat+0xeac/0x2548 [ 36.814717][ T4291] do_filp_open+0x1bc/0x3cc [ 36.816027][ T4291] do_sys_openat2+0x128/0x3e0 [ 36.817385][ T4291] __arm64_sys_openat+0x1f0/0x240 [ 36.818806][ T4291] invoke_syscall+0x98/0x2bc [ 36.820183][ T4291] el0_svc_common+0x138/0x258 [ 36.821513][ T4291] do_el0_svc+0x58/0x13c [ 36.822778][ T4291] el0_svc+0x58/0x168 [ 36.823939][ T4291] el0t_64_sync_handler+0x84/0xf0 [ 36.825359][ T4291] el0t_64_sync+0x18c/0x190 [ 36.826668][ T4291] [ 36.826668][ T4291] -> #2 (sb_internal#2){.+.+}-{0:0}: [ 36.828601][ T4291] ocfs2_start_trans+0x260/0x73c [ 36.830041][ T4291] ocfs2_mknod+0xe64/0x2560 [ 36.831327][ T4291] ocfs2_create+0x1a8/0x560 [ 36.832641][ T4291] path_openat+0xeac/0x2548 [ 36.833965][ T4291] do_filp_open+0x1bc/0x3cc [ 36.835256][ T4291] do_sys_openat2+0x128/0x3e0 [ 36.836600][ T4291] __arm64_sys_openat+0x1f0/0x240 [ 36.838064][ T4291] invoke_syscall+0x98/0x2bc [ 36.839358][ T4291] el0_svc_common+0x138/0x258 [ 36.840707][ T4291] do_el0_svc+0x58/0x13c [ 36.841972][ T4291] el0_svc+0x58/0x168 [ 36.843227][ T4291] el0t_64_sync_handler+0x84/0xf0 [ 36.844694][ T4291] el0t_64_sync+0x18c/0x190 [ 36.845997][ T4291] [ 36.845997][ T4291] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}: [ 36.848764][ T4291] down_write+0x5c/0x88 [ 36.850014][ T4291] ocfs2_reserve_local_alloc_bits+0xfc/0x2610 [ 36.851767][ T4291] ocfs2_reserve_clusters_with_limit+0x194/0xabc [ 36.853571][ T4291] ocfs2_reserve_clusters+0x3c/0x50 [ 36.855136][ T4291] ocfs2_mknod+0xe04/0x2560 [ 36.856488][ T4291] ocfs2_create+0x1a8/0x560 [ 36.857818][ T4291] path_openat+0xeac/0x2548 [ 36.859166][ T4291] do_filp_open+0x1bc/0x3cc [ 36.860440][ T4291] do_sys_openat2+0x128/0x3e0 [ 36.861886][ T4291] __arm64_sys_openat+0x1f0/0x240 [ 36.863396][ T4291] invoke_syscall+0x98/0x2bc [ 36.864812][ T4291] el0_svc_common+0x138/0x258 [ 36.866246][ T4291] do_el0_svc+0x58/0x13c [ 36.867509][ T4291] el0_svc+0x58/0x168 [ 36.868743][ T4291] el0t_64_sync_handler+0x84/0xf0 [ 36.870198][ T4291] el0t_64_sync+0x18c/0x190 [ 36.871521][ T4291] [ 36.871521][ T4291] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}: [ 36.874280][ T4291] __lock_acquire+0x3338/0x7680 [ 36.875669][ T4291] lock_acquire+0x26c/0x7cc [ 36.877059][ T4291] down_write+0x5c/0x88 [ 36.878321][ T4291] ocfs2_reserve_suballoc_bits+0x164/0x4428 [ 36.880060][ T4291] ocfs2_reserve_new_metadata_blocks+0x384/0x848 [ 36.881905][ T4291] ocfs2_init_xattr_set_ctxt+0x3b0/0x9f8 [ 36.883491][ T4291] ocfs2_xattr_set+0xc08/0x1478 [ 36.884941][ T4291] ocfs2_set_acl+0x410/0x4b4 [ 36.886338][ T4291] ocfs2_iop_set_acl+0x214/0x358 [ 36.887765][ T4291] posix_acl_xattr_set+0x2f8/0x398 [ 36.889346][ T4291] __vfs_setxattr+0x388/0x3a4 [ 36.890763][ T4291] __vfs_setxattr_noperm+0x110/0x528 [ 36.892369][ T4291] __vfs_setxattr_locked+0x1ec/0x218 [ 36.893973][ T4291] vfs_setxattr+0x1a8/0x344 [ 36.895324][ T4291] setxattr+0x230/0x294 [ 36.896558][ T4291] path_setxattr+0x17c/0x258 [ 36.897968][ T4291] __arm64_sys_lsetxattr+0xbc/0xd8 [ 36.899486][ T4291] invoke_syscall+0x98/0x2bc [ 36.900827][ T4291] el0_svc_common+0x138/0x258 [ 36.902239][ T4291] do_el0_svc+0x58/0x13c [ 36.903499][ T4291] el0_svc+0x58/0x168 [ 36.904722][ T4291] el0t_64_sync_handler+0x84/0xf0 [ 36.906224][ T4291] el0t_64_sync+0x18c/0x190 [ 36.907631][ T4291] [ 36.907631][ T4291] other info that might help us debug this: [ 36.907631][ T4291] [ 36.910396][ T4291] Chain exists of: [ 36.910396][ T4291] &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3 --> jbd2_handle --> &oi->ip_xattr_sem [ 36.910396][ T4291] [ 36.914577][ T4291] Possible unsafe locking scenario: [ 36.914577][ T4291] [ 36.916537][ T4291] CPU0 CPU1 [ 36.918049][ T4291] ---- ---- [ 36.919462][ T4291] lock(&oi->ip_xattr_sem); [ 36.920720][ T4291] lock(jbd2_handle); [ 36.922471][ T4291] lock(&oi->ip_xattr_sem); [ 36.924363][ T4291] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3); [ 36.926263][ T4291] [ 36.926263][ T4291] *** DEADLOCK *** [ 36.926263][ T4291] [ 36.928502][ T4291] 3 locks held by syz-executor418/4291: [ 36.929973][ T4291] #0: ffff0000d9624460 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 36.932383][ T4291] #1: ffff0000e1f389c8 (&type->i_mutex_dir_key#6){+.+.}-{3:3}, at: vfs_setxattr+0x17c/0x344 [ 36.935123][ T4291] #2: ffff0000e1f386f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x4e4/0x1478 [ 36.937765][ T4291] [ 36.937765][ T4291] stack backtrace: [ 36.939338][ T4291] CPU: 1 PID: 4291 Comm: syz-executor418 Not tainted 6.1.134-syzkaller #0 [ 36.941610][ T4291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 36.944352][ T4291] Call trace: [ 36.945220][ T4291] dump_backtrace+0x1c8/0x1f4 [ 36.946522][ T4291] show_stack+0x2c/0x3c [ 36.947665][ T4291] dump_stack_lvl+0x108/0x170 [ 36.948968][ T4291] dump_stack+0x1c/0x5c [ 36.950089][ T4291] print_circular_bug+0x150/0x1b8 [ 36.951411][ T4291] check_noncircular+0x2cc/0x378 [ 36.952746][ T4291] __lock_acquire+0x3338/0x7680 [ 36.954033][ T4291] lock_acquire+0x26c/0x7cc [ 36.955310][ T4291] down_write+0x5c/0x88 [ 36.956457][ T4291] ocfs2_reserve_suballoc_bits+0x164/0x4428 [ 36.958059][ T4291] ocfs2_reserve_new_metadata_blocks+0x384/0x848 [ 36.959706][ T4291] ocfs2_init_xattr_set_ctxt+0x3b0/0x9f8 [ 36.961259][ T4291] ocfs2_xattr_set+0xc08/0x1478 [ 36.962511][ T4291] ocfs2_set_acl+0x410/0x4b4 [ 36.963782][ T4291] ocfs2_iop_set_acl+0x214/0x358 [ 36.965169][ T4291] posix_acl_xattr_set+0x2f8/0x398 [ 36.966552][ T4291] __vfs_setxattr+0x388/0x3a4 [ 36.967803][ T4291] __vfs_setxattr_noperm+0x110/0x528 [ 36.969252][ T4291] __vfs_setxattr_locked+0x1ec/0x218 [ 36.970605][ T4291] vfs_setxattr+0x1a8/0x344 [ 36.971818][ T4291] setxattr+0x230/0x294 [ 36.972900][ T4291] path_setxattr+0x17c/0x258 [ 36.974168][ T4291] __arm64_sys_lsetxattr+0xbc/0xd8 [ 36.975523][ T4291] invoke_syscall+0x98/0x2bc [ 36.976735][ T4291] el0_svc_common+0x138/0x258 [ 36.977962][ T4291] do_el0_svc+0x58/0x13c [ 36.979133][ T4291] el0_svc+0x58/0x168 [ 36.980219][ T4291] el0t_64_sync_handler+0x84/0xf0 [ 36.981586][ T4291] el0t_64_sync+0x18c/0x190