Warning: Permanently added '10.128.10.12' (ED25519) to the list of known hosts.
executing program
[   45.430150][ T4025] loop0: detected capacity change from 0 to 32768
[   45.507036][ T4025] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz-executor203 (4025)
[   45.561688][ T4025] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm
[   45.564027][ T4025] BTRFS info (device loop0): setting nodatacow, compression disabled
[   45.566294][ T4025] BTRFS info (device loop0): max_inline at 0
[   45.568037][ T4025] BTRFS info (device loop0): enabling disk space caching
[   45.569877][ T4025] BTRFS info (device loop0): enabling ssd optimizations
[   45.571693][ T4025] BTRFS info (device loop0): using spread ssd allocation scheme
[   45.573766][ T4025] BTRFS info (device loop0): enabling auto defrag
[   45.575762][ T4025] BTRFS info (device loop0): doing ref verification
[   45.577550][ T4025] BTRFS info (device loop0): force clearing of disk cache
[   45.579310][ T4025] BTRFS info (device loop0): turning off barriers
[   45.580982][ T4025] BTRFS info (device loop0): using default commit interval 30s
[   45.582935][ T4025] BTRFS info (device loop0): disk space caching is enabled
[   45.584767][ T4025] BTRFS info (device loop0): has skinny extents
[   45.608065][ T4025] BTRFS info (device loop0): clearing free space tree
[   45.610066][ T4025] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   45.612745][ T4025] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   45.627671][ T4025] 
[   45.628316][ T4025] ======================================================
[   45.630185][ T4025] WARNING: possible circular locking dependency detected
[   45.632026][ T4025] 5.15.178-syzkaller #0 Not tainted
[   45.633338][ T4025] ------------------------------------------------------
[   45.635159][ T4025] syz-executor203/4025 is trying to acquire lock:
[   45.636798][ T4025] ffff0000cbeea650 (sb_internal#2){.+.+}-{0:0}, at: btrfs_start_transaction+0x34/0x44
[   45.639411][ T4025] 
[   45.639411][ T4025] but task is already holding lock:
[   45.641300][ T4025] ffff0000de7b0610 (&type->i_mutex_dir_key#6){++++}-{3:3}, at: vfs_fileattr_set+0x110/0xad4
[   45.643949][ T4025] 
[   45.643949][ T4025] which lock already depends on the new lock.
[   45.643949][ T4025] 
[   45.646826][ T4025] 
[   45.646826][ T4025] the existing dependency chain (in reverse order) is:
[   45.649218][ T4025] 
[   45.649218][ T4025] -> #3 (&type->i_mutex_dir_key#6){++++}-{3:3}:
[   45.651499][ T4025]        down_read+0xc0/0x398
[   45.652676][ T4025]        lookup_slow+0x50/0x84
[   45.653905][ T4025]        walk_component+0x394/0x4cc
[   45.655220][ T4025]        path_lookupat+0x13c/0x3d0
[   45.656471][ T4025]        filename_lookup+0x1c4/0x4c8
[   45.657782][ T4025]        kern_path+0x4c/0x194
[   45.658989][ T4025]        lookup_bdev+0xc0/0x25c
[   45.660297][ T4025]        btrfs_free_stale_devices+0x658/0x9ec
[   45.661898][ T4025]        btrfs_forget_devices+0x5c/0x98
[   45.663327][ T4025]        btrfs_control_ioctl+0x12c/0x248
[   45.664813][ T4025]        __arm64_sys_ioctl+0x14c/0x1c8
[   45.666212][ T4025]        invoke_syscall+0x98/0x2b8
[   45.667584][ T4025]        el0_svc_common+0x138/0x258
[   45.668975][ T4025]        do_el0_svc+0x58/0x14c
[   45.670275][ T4025]        el0_svc+0x7c/0x1f0
[   45.671519][ T4025]        el0t_64_sync_handler+0x84/0xe4
[   45.673035][ T4025]        el0t_64_sync+0x1a0/0x1a4
[   45.674364][ T4025] 
[   45.674364][ T4025] -> #2 (&fs_devs->device_list_mutex){+.+.}-{3:3}:
[   45.676744][ T4025]        __mutex_lock_common+0x194/0x2154
[   45.678301][ T4025]        mutex_lock_nested+0xa4/0xf8
[   45.679657][ T4025]        btrfs_run_dev_stats+0xe4/0xe24
[   45.681123][ T4025]        commit_cowonly_roots+0x17c/0x808
[   45.682637][ T4025]        btrfs_commit_transaction+0xef4/0x30f0
[   45.684230][ T4025]        btrfs_clear_free_space_tree+0x5d0/0x9bc
[   45.685844][ T4025]        btrfs_start_pre_rw_mount+0x24c/0x578
[   45.687385][ T4025]        open_ctree+0x2290/0x28f4
[   45.688774][ T4025]        btrfs_fill_super+0x1b4/0x2c8
[   45.690188][ T4025]        btrfs_mount_root+0x6f8/0x7f8
[   45.691556][ T4025]        legacy_get_tree+0xd4/0x16c
[   45.692716][ T4025]        vfs_get_tree+0x90/0x274
[   45.693954][ T4025]        vfs_kern_mount+0xdc/0x178
[   45.695264][ T4025]        btrfs_mount+0x328/0x9b8
[   45.696524][ T4025]        legacy_get_tree+0xd4/0x16c
[   45.697863][ T4025]        vfs_get_tree+0x90/0x274
[   45.699156][ T4025]        do_new_mount+0x278/0x8fc
[   45.700424][ T4025]        path_mount+0x594/0x101c
[   45.701715][ T4025]        __arm64_sys_mount+0x510/0x5e0
[   45.703139][ T4025]        invoke_syscall+0x98/0x2b8
[   45.704411][ T4025]        el0_svc_common+0x138/0x258
[   45.705789][ T4025]        do_el0_svc+0x58/0x14c
[   45.707032][ T4025]        el0_svc+0x7c/0x1f0
[   45.708107][ T4025]        el0t_64_sync_handler+0x84/0xe4
[   45.709519][ T4025]        el0t_64_sync+0x1a0/0x1a4
[   45.710931][ T4025] 
[   45.710931][ T4025] -> #1 (&fs_info->tree_log_mutex){+.+.}-{3:3}:
[   45.713131][ T4025]        lock_release+0x340/0xa1c
[   45.714475][ T4025]        __mutex_unlock_slowpath+0xe0/0x6d4
[   45.716035][ T4025]        mutex_unlock+0x8c/0xe0
[   45.717186][ T4025]        btrfs_commit_transaction+0x1650/0x30f0
[   45.718799][ T4025]        btrfs_clear_free_space_tree+0x5d0/0x9bc
[   45.720468][ T4025]        btrfs_start_pre_rw_mount+0x24c/0x578
[   45.722083][ T4025]        open_ctree+0x2290/0x28f4
[   45.723433][ T4025]        btrfs_fill_super+0x1b4/0x2c8
[   45.724883][ T4025]        btrfs_mount_root+0x6f8/0x7f8
[   45.726268][ T4025]        legacy_get_tree+0xd4/0x16c
[   45.727589][ T4025]        vfs_get_tree+0x90/0x274
[   45.728920][ T4025]        vfs_kern_mount+0xdc/0x178
[   45.730283][ T4025]        btrfs_mount+0x328/0x9b8
[   45.731541][ T4025]        legacy_get_tree+0xd4/0x16c
[   45.732895][ T4025]        vfs_get_tree+0x90/0x274
[   45.734225][ T4025]        do_new_mount+0x278/0x8fc
[   45.735618][ T4025]        path_mount+0x594/0x101c
[   45.736929][ T4025]        __arm64_sys_mount+0x510/0x5e0
[   45.738341][ T4025]        invoke_syscall+0x98/0x2b8
[   45.739559][ T4025]        el0_svc_common+0x138/0x258
[   45.740918][ T4025]        do_el0_svc+0x58/0x14c
[   45.742176][ T4025]        el0_svc+0x7c/0x1f0
[   45.743369][ T4025]        el0t_64_sync_handler+0x84/0xe4
[   45.744874][ T4025]        el0t_64_sync+0x1a0/0x1a4
[   45.746105][ T4025] 
[   45.746105][ T4025] -> #0 (sb_internal#2){.+.+}-{0:0}:
[   45.748131][ T4025]        __lock_acquire+0x32d4/0x7638
[   45.749519][ T4025]        lock_acquire+0x240/0x77c
[   45.750819][ T4025]        start_transaction+0x644/0x1480
[   45.752325][ T4025]        btrfs_start_transaction+0x34/0x44
[   45.753854][ T4025]        btrfs_fileattr_set+0x4dc/0x9b8
[   45.755325][ T4025]        vfs_fileattr_set+0x70c/0xad4
[   45.756859][ T4025]        do_vfs_ioctl+0x1634/0x2a38
[   45.758233][ T4025]        __arm64_sys_ioctl+0xe4/0x1c8
[   45.759645][ T4025]        invoke_syscall+0x98/0x2b8
[   45.761042][ T4025]        el0_svc_common+0x138/0x258
[   45.762341][ T4025]        do_el0_svc+0x58/0x14c
[   45.763595][ T4025]        el0_svc+0x7c/0x1f0
[   45.764795][ T4025]        el0t_64_sync_handler+0x84/0xe4
[   45.766163][ T4025]        el0t_64_sync+0x1a0/0x1a4
[   45.767496][ T4025] 
[   45.767496][ T4025] other info that might help us debug this:
[   45.767496][ T4025] 
[   45.770185][ T4025] Chain exists of:
[   45.770185][ T4025]   sb_internal#2 --> &fs_devs->device_list_mutex --> &type->i_mutex_dir_key#6
[   45.770185][ T4025] 
[   45.773960][ T4025]  Possible unsafe locking scenario:
[   45.773960][ T4025] 
[   45.775953][ T4025]        CPU0                    CPU1
[   45.777387][ T4025]        ----                    ----
[   45.778751][ T4025]   lock(&type->i_mutex_dir_key#6);
[   45.780182][ T4025]                                lock(&fs_devs->device_list_mutex);
[   45.782240][ T4025]                                lock(&type->i_mutex_dir_key#6);
[   45.784296][ T4025]   lock(sb_internal#2);
[   45.785440][ T4025] 
[   45.785440][ T4025]  *** DEADLOCK ***
[   45.785440][ T4025] 
[   45.787575][ T4025] 2 locks held by syz-executor203/4025:
[   45.788966][ T4025]  #0: ffff0000cbeea460 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write_file+0x64/0x1e8
[   45.791444][ T4025]  #1: ffff0000de7b0610 (&type->i_mutex_dir_key#6){++++}-{3:3}, at: vfs_fileattr_set+0x110/0xad4
[   45.794208][ T4025] 
[   45.794208][ T4025] stack backtrace:
[   45.795707][ T4025] CPU: 0 PID: 4025 Comm: syz-executor203 Not tainted 5.15.178-syzkaller #0
[   45.797971][ T4025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   45.800664][ T4025] Call trace:
[   45.801485][ T4025]  dump_backtrace+0x0/0x530
[   45.802694][ T4025]  show_stack+0x2c/0x3c
[   45.803804][ T4025]  dump_stack_lvl+0x108/0x170
[   45.805019][ T4025]  dump_stack+0x1c/0x58
[   45.806065][ T4025]  print_circular_bug+0x150/0x1b8
[   45.807380][ T4025]  check_noncircular+0x2cc/0x378
[   45.808677][ T4025]  __lock_acquire+0x32d4/0x7638
[   45.810024][ T4025]  lock_acquire+0x240/0x77c
[   45.811282][ T4025]  start_transaction+0x644/0x1480
[   45.812636][ T4025]  btrfs_start_transaction+0x34/0x44
[   45.814024][ T4025]  btrfs_fileattr_set+0x4dc/0x9b8
[   45.815322][ T4025]  vfs_fileattr_set+0x70c/0xad4
[   45.816633][ T4025]  do_vfs_ioctl+0x1634/0x2a38
[   45.817880][ T4025]  __arm64_sys_ioctl+0xe4/0x1c8
[   45.819163][ T4025]  invoke_syscall+0x98/0x2b8
[   45.820368][ T4025]  el0_svc_common+0x138/0x258
[   45.821666][ T4025]  do_el0_svc+0x58/0x14c
[   45.822733][ T4025]  el0_svc+0x7c/0x1f0
[   45.823731][ T4025]  el0t_64_sync_handler+0x84/0xe4
[   45.825027][ T4025]  el0t_64_sync+0x1a0/0x1a4