Warning: Permanently added '10.128.1.35' (ED25519) to the list of known hosts. executing program [ 50.325829][ T3498] loop0: detected capacity change from 0 to 8192 [ 50.445728][ T3498] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 50.455271][ T3498] REISERFS (device loop0): using ordered data mode [ 50.461791][ T3498] reiserfs: using flush barriers [ 50.468834][ T3498] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 50.485922][ T3498] REISERFS (device loop0): checking transaction log (loop0) [ 50.495638][ T3498] REISERFS (device loop0): Using tea hash to sort names [ 50.503997][ T3498] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 50.514635][ T3498] [ 50.516985][ T3498] ====================================================== [ 50.524010][ T3498] WARNING: possible circular locking dependency detected [ 50.531045][ T3498] 5.15.151-syzkaller #0 Not tainted [ 50.536228][ T3498] ------------------------------------------------------ [ 50.543230][ T3498] syz-executor337/3498 is trying to acquire lock: [ 50.549726][ T3498] ffffc90002c190f0 (&journal->j_mutex){+.+.}-{3:3}, at: do_journal_begin_r+0x34e/0x1000 [ 50.559466][ T3498] [ 50.559466][ T3498] but task is already holding lock: [ 50.566811][ T3498] ffff888074242460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0 [ 50.576041][ T3498] [ 50.576041][ T3498] which lock already depends on the new lock. [ 50.576041][ T3498] [ 50.586432][ T3498] [ 50.586432][ T3498] the existing dependency chain (in reverse order) is: [ 50.595517][ T3498] [ 50.595517][ T3498] -> #2 (sb_writers#9){.+.+}-{0:0}: [ 50.603094][ T3498] lock_acquire+0x1db/0x4f0 [ 50.608108][ T3498] sb_start_write+0x4f/0x1c0 [ 50.613235][ T3498] mnt_want_write_file+0x5a/0x1f0 [ 50.618770][ T3498] reiserfs_ioctl+0x170/0x340 [ 50.624073][ T3498] __se_sys_ioctl+0xf1/0x160 [ 50.629174][ T3498] do_syscall_64+0x3d/0xb0 [ 50.634104][ T3498] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 50.640510][ T3498] [ 50.640510][ T3498] -> #1 (&sbi->lock){+.+.}-{3:3}: [ 50.647704][ T3498] lock_acquire+0x1db/0x4f0 [ 50.652805][ T3498] __mutex_lock_common+0x1da/0x25a0 [ 50.658532][ T3498] mutex_lock_nested+0x17/0x20 [ 50.663804][ T3498] reiserfs_write_lock_nested+0x5b/0xd0 [ 50.669951][ T3498] do_journal_begin_r+0x359/0x1000 [ 50.675672][ T3498] journal_begin+0x148/0x350 [ 50.680778][ T3498] reiserfs_fill_super+0x1812/0x2690 [ 50.686601][ T3498] mount_bdev+0x2c9/0x3f0 [ 50.691461][ T3498] legacy_get_tree+0xeb/0x180 [ 50.696656][ T3498] vfs_get_tree+0x88/0x270 [ 50.701582][ T3498] do_new_mount+0x2ba/0xb40 [ 50.706607][ T3498] __se_sys_mount+0x2d5/0x3c0 [ 50.711966][ T3498] do_syscall_64+0x3d/0xb0 [ 50.716979][ T3498] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 50.723382][ T3498] [ 50.723382][ T3498] -> #0 (&journal->j_mutex){+.+.}-{3:3}: [ 50.731477][ T3498] validate_chain+0x1649/0x5930 [ 50.736861][ T3498] __lock_acquire+0x1295/0x1ff0 [ 50.742225][ T3498] lock_acquire+0x1db/0x4f0 [ 50.747259][ T3498] __mutex_lock_common+0x1da/0x25a0 [ 50.752966][ T3498] mutex_lock_nested+0x17/0x20 [ 50.758237][ T3498] do_journal_begin_r+0x34e/0x1000 [ 50.763900][ T3498] journal_begin+0x148/0x350 [ 50.769015][ T3498] reiserfs_dirty_inode+0x11c/0x240 [ 50.774726][ T3498] __mark_inode_dirty+0x2fd/0xd60 [ 50.780319][ T3498] reiserfs_ioctl+0x29e/0x340 [ 50.785533][ T3498] __se_sys_ioctl+0xf1/0x160 [ 50.791532][ T3498] do_syscall_64+0x3d/0xb0 [ 50.796463][ T3498] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 50.802873][ T3498] [ 50.802873][ T3498] other info that might help us debug this: [ 50.802873][ T3498] [ 50.813157][ T3498] Chain exists of: [ 50.813157][ T3498] &journal->j_mutex --> &sbi->lock --> sb_writers#9 [ 50.813157][ T3498] [ 50.826681][ T3498] Possible unsafe locking scenario: [ 50.826681][ T3498] [ 50.834222][ T3498] CPU0 CPU1 [ 50.839592][ T3498] ---- ---- [ 50.845025][ T3498] lock(sb_writers#9); [ 50.849171][ T3498] lock(&sbi->lock); [ 50.855653][ T3498] lock(sb_writers#9); [ 50.862419][ T3498] lock(&journal->j_mutex); [ 50.866998][ T3498] [ 50.866998][ T3498] *** DEADLOCK *** [ 50.866998][ T3498] [ 50.875127][ T3498] 1 lock held by syz-executor337/3498: [ 50.880572][ T3498] #0: ffff888074242460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0 [ 50.890278][ T3498] [ 50.890278][ T3498] stack backtrace: [ 50.896211][ T3498] CPU: 1 PID: 3498 Comm: syz-executor337 Not tainted 5.15.151-syzkaller #0 [ 50.904798][ T3498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 50.914851][ T3498] Call Trace: [ 50.918132][ T3498] [ 50.921086][ T3498] dump_stack_lvl+0x1e3/0x2cb [ 50.926456][ T3498] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 50.932099][ T3498] ? print_circular_bug+0x12b/0x1a0 [ 50.937438][ T3498] check_noncircular+0x2f8/0x3b0 [ 50.942475][ T3498] ? add_chain_block+0x850/0x850 [ 50.947498][ T3498] ? lockdep_lock+0x11f/0x2a0 [ 50.952202][ T3498] validate_chain+0x1649/0x5930 [ 50.957056][ T3498] ? unwind_next_frame+0x1437/0x1fa0 [ 50.962492][ T3498] ? __kernel_text_address+0x94/0x100 [ 50.967895][ T3498] ? unwind_get_return_address+0x49/0x80 [ 50.973537][ T3498] ? reacquire_held_locks+0x660/0x660 [ 50.978913][ T3498] ? arch_stack_walk+0xf3/0x140 [ 50.983894][ T3498] ? mark_lock+0x98/0x340 [ 50.988237][ T3498] ? __lock_acquire+0x1295/0x1ff0 [ 50.993516][ T3498] ? mark_lock+0x98/0x340 [ 50.997928][ T3498] __lock_acquire+0x1295/0x1ff0 [ 51.003073][ T3498] lock_acquire+0x1db/0x4f0 [ 51.008104][ T3498] ? do_journal_begin_r+0x34e/0x1000 [ 51.013403][ T3498] ? read_lock_is_recursive+0x10/0x10 [ 51.018786][ T3498] ? __might_sleep+0xc0/0xc0 [ 51.023398][ T3498] ? reiserfs_write_unlock_nested+0xd1/0x120 [ 51.029375][ T3498] ? __lock_acquire+0x1ff0/0x1ff0 [ 51.034393][ T3498] __mutex_lock_common+0x1da/0x25a0 [ 51.039582][ T3498] ? do_journal_begin_r+0x34e/0x1000 [ 51.044874][ T3498] ? do_journal_begin_r+0x34e/0x1000 [ 51.050161][ T3498] ? mutex_unlock+0x10/0x10 [ 51.054650][ T3498] ? mutex_lock_io_nested+0x60/0x60 [ 51.060092][ T3498] ? __lock_acquire+0x1295/0x1ff0 [ 51.065266][ T3498] mutex_lock_nested+0x17/0x20 [ 51.070032][ T3498] do_journal_begin_r+0x34e/0x1000 [ 51.075150][ T3498] ? journal_join_abort+0xe0/0xe0 [ 51.080474][ T3498] ? ktime_get_coarse_real_ts64+0x36/0x120 [ 51.086279][ T3498] ? lockdep_hardirqs_on+0x94/0x130 [ 51.091475][ T3498] journal_begin+0x148/0x350 [ 51.096237][ T3498] reiserfs_dirty_inode+0x11c/0x240 [ 51.101490][ T3498] ? reiserfs_free_inode+0x20/0x20 [ 51.106608][ T3498] ? current_time+0x1d1/0x2f0 [ 51.111301][ T3498] ? reiserfs_free_inode+0x20/0x20 [ 51.116614][ T3498] __mark_inode_dirty+0x2fd/0xd60 [ 51.122095][ T3498] ? __might_fault+0xb4/0x110 [ 51.126803][ T3498] reiserfs_ioctl+0x29e/0x340 [ 51.131486][ T3498] ? reiserfs_unpack+0x5a0/0x5a0 [ 51.136432][ T3498] __se_sys_ioctl+0xf1/0x160 [ 51.141116][ T3498] do_syscall_64+0x3d/0xb0 [ 51.145622][ T3498] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 51.151527][ T3498] RIP: 0033:0x7f947d131609 [ 51.155957][ T3498] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 51.175564][ T3498] RSP: 002b:00007ffea4a68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 51.183990][ T3498] RAX: ffffffffffffffda RBX: 00007ffea4a68208 RCX: 00007f947d131609 [ 51.191962][ T3498] RDX: 0000000020000140 RSI: 0000000040087602 RDI: 00000000000