Warning: Permanently added '10.128.1.34' (ED25519) to the list of known hosts. executing program [ 54.179709][ T3545] [ 54.182059][ T3545] ====================================================== [ 54.189063][ T3545] WARNING: possible circular locking dependency detected [ 54.196075][ T3545] 6.1.71-syzkaller #0 Not tainted [ 54.201090][ T3545] ------------------------------------------------------ [ 54.208097][ T3545] syz-executor312/3545 is trying to acquire lock: [ 54.214503][ T3545] ffff888012958400 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_bmap+0x4b/0x410 [ 54.224095][ T3545] [ 54.224095][ T3545] but task is already holding lock: [ 54.231488][ T3545] ffff88814c0b43f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x323/0xc40 [ 54.242118][ T3545] [ 54.242118][ T3545] which lock already depends on the new lock. [ 54.242118][ T3545] [ 54.252608][ T3545] [ 54.252608][ T3545] the existing dependency chain (in reverse order) is: [ 54.261619][ T3545] [ 54.261619][ T3545] -> #3 (&journal->j_checkpoint_mutex){+.+.}-{3:3}: [ 54.270399][ T3545] lock_acquire+0x1f8/0x5a0 [ 54.275433][ T3545] mutex_lock_io_nested+0x134/0xab0 [ 54.281162][ T3545] jbd2_journal_flush+0x29b/0xc40 [ 54.286732][ T3545] ext4_ioctl+0x3986/0x5f60 [ 54.291772][ T3545] __se_sys_ioctl+0xf1/0x160 [ 54.296904][ T3545] do_syscall_64+0x3d/0xb0 [ 54.301854][ T3545] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.308278][ T3545] [ 54.308278][ T3545] -> #2 (&journal->j_barrier){+.+.}-{3:3}: [ 54.316288][ T3545] lock_acquire+0x1f8/0x5a0 [ 54.321334][ T3545] __mutex_lock+0x132/0xd80 [ 54.326368][ T3545] jbd2_journal_lock_updates+0x2b0/0x380 [ 54.332525][ T3545] ext4_change_inode_journal_flag+0x1a8/0x6e0 [ 54.339120][ T3545] ext4_fileattr_set+0xe04/0x1770 [ 54.344680][ T3545] vfs_fileattr_set+0x8f3/0xd30 [ 54.350063][ T3545] do_vfs_ioctl+0x1cd1/0x2a90 [ 54.355275][ T3545] __se_sys_ioctl+0x81/0x160 [ 54.360399][ T3545] do_syscall_64+0x3d/0xb0 [ 54.365342][ T3545] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.371780][ T3545] [ 54.371780][ T3545] -> #1 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 54.380208][ T3545] lock_acquire+0x1f8/0x5a0 [ 54.385242][ T3545] percpu_down_write+0x50/0x2f0 [ 54.390610][ T3545] ext4_ind_migrate+0x254/0x760 [ 54.395977][ T3545] ext4_fileattr_set+0xe9b/0x1770 [ 54.401525][ T3545] vfs_fileattr_set+0x8f3/0xd30 [ 54.406918][ T3545] do_vfs_ioctl+0x1cd1/0x2a90 [ 54.412120][ T3545] __se_sys_ioctl+0x81/0x160 [ 54.417253][ T3545] do_syscall_64+0x3d/0xb0 [ 54.422229][ T3545] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.428650][ T3545] [ 54.428650][ T3545] -> #0 (&sb->s_type->i_mutex_key#8){++++}-{3:3}: [ 54.437264][ T3545] validate_chain+0x1661/0x5950 [ 54.442657][ T3545] __lock_acquire+0x125b/0x1f80 [ 54.448043][ T3545] lock_acquire+0x1f8/0x5a0 [ 54.453068][ T3545] down_read+0xad/0xa30 [ 54.457737][ T3545] ext4_bmap+0x4b/0x410 [ 54.462409][ T3545] bmap+0xa1/0xd0 [ 54.466565][ T3545] jbd2_journal_flush+0x5b5/0xc40 [ 54.472124][ T3545] ext4_ioctl+0x3986/0x5f60 [ 54.477171][ T3545] __se_sys_ioctl+0xf1/0x160 [ 54.482293][ T3545] do_syscall_64+0x3d/0xb0 [ 54.487242][ T3545] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.493663][ T3545] [ 54.493663][ T3545] other info that might help us debug this: [ 54.493663][ T3545] [ 54.503886][ T3545] Chain exists of: [ 54.503886][ T3545] &sb->s_type->i_mutex_key#8 --> &journal->j_barrier --> &journal->j_checkpoint_mutex [ 54.503886][ T3545] [ 54.519364][ T3545] Possible unsafe locking scenario: [ 54.519364][ T3545] [ 54.526807][ T3545] CPU0 CPU1 [ 54.532163][ T3545] ---- ---- [ 54.537520][ T3545] lock(&journal->j_checkpoint_mutex); [ 54.543075][ T3545] lock(&journal->j_barrier); [ 54.550369][ T3545] lock(&journal->j_checkpoint_mutex); [ 54.558439][ T3545] lock(&sb->s_type->i_mutex_key#8); [ 54.563829][ T3545] [ 54.563829][ T3545] *** DEADLOCK *** [ 54.563829][ T3545] [ 54.571982][ T3545] 2 locks held by syz-executor312/3545: [ 54.577528][ T3545] #0: ffff88814c0b4170 (&journal->j_barrier){+.+.}-{3:3}, at: jbd2_journal_lock_updates+0x2b0/0x380 [ 54.588420][ T3545] #1: ffff88814c0b43f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x323/0xc40 [ 54.599498][ T3545] [ 54.599498][ T3545] stack backtrace: [ 54.605380][ T3545] CPU: 1 PID: 3545 Comm: syz-executor312 Not tainted 6.1.71-syzkaller #0 [ 54.613793][ T3545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 54.623845][ T3545] Call Trace: [ 54.627123][ T3545] [ 54.630054][ T3545] dump_stack_lvl+0x1e3/0x2cb [ 54.634740][ T3545] ? nf_tcp_handle_invalid+0x642/0x642 [ 54.640210][ T3545] ? print_circular_bug+0x12b/0x1a0 [ 54.645408][ T3545] check_noncircular+0x2fa/0x3b0 [ 54.650357][ T3545] ? add_chain_block+0x850/0x850 [ 54.655301][ T3545] ? lockdep_lock+0x11f/0x2a0 [ 54.660000][ T3545] ? _find_first_zero_bit+0xd0/0x100 [ 54.665292][ T3545] validate_chain+0x1661/0x5950 [ 54.670159][ T3545] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 54.676148][ T3545] ? reacquire_held_locks+0x660/0x660 [ 54.681530][ T3545] ? finish_task_switch+0x1ca/0x810 [ 54.686737][ T3545] ? validate_chain+0x112/0x5950 [ 54.691685][ T3545] ? finish_task_switch+0x299/0x810 [ 54.696895][ T3545] ? mark_lock+0x9a/0x340 [ 54.701232][ T3545] __lock_acquire+0x125b/0x1f80 [ 54.706113][ T3545] lock_acquire+0x1f8/0x5a0 [ 54.710622][ T3545] ? ext4_bmap+0x4b/0x410 [ 54.714958][ T3545] ? read_lock_is_recursive+0x10/0x10 [ 54.720336][ T3545] ? __might_sleep+0xb0/0xb0 [ 54.724922][ T3545] ? __lock_acquire+0x125b/0x1f80 [ 54.729962][ T3545] down_read+0xad/0xa30 [ 54.734116][ T3545] ? ext4_bmap+0x4b/0x410 [ 54.738464][ T3545] ? __down_common+0x8b0/0x8b0 [ 54.743231][ T3545] ? jbd2_journal_flush+0x374/0xc40 [ 54.748444][ T3545] ? __lock_acquire+0x1f80/0x1f80 [ 54.753470][ T3545] ? jbd2_cleanup_journal_tail+0x1a7/0x2c0 [ 54.759278][ T3545] ? ext4_journalled_write_end+0xec0/0xec0 [ 54.765088][ T3545] ext4_bmap+0x4b/0x410 [ 54.769247][ T3545] ? ext4_journalled_write_end+0xec0/0xec0 [ 54.775058][ T3545] bmap+0xa1/0xd0 [ 54.778704][ T3545] jbd2_journal_flush+0x5b5/0xc40 [ 54.783746][ T3545] ? jbd2_journal_lock_updates+0x2b0/0x380 [ 54.789556][ T3545] ? stack_trace_save+0x113/0x1c0 [ 54.794597][ T3545] ? __bpf_trace_jbd2_shrink_checkpoint_list+0x50/0x50 [ 54.801452][ T3545] ? bpf_lsm_capable+0x5/0x10 [ 54.806136][ T3545] ? security_capable+0x86/0xb0 [ 54.810993][ T3545] ext4_ioctl+0x3986/0x5f60 [ 54.815498][ T3545] ? kasan_set_track+0x4b/0x70 [ 54.820272][ T3545] ? security_file_ioctl+0x6d/0xa0 [ 54.825382][ T3545] ? __se_sys_ioctl+0x47/0x160 [ 54.830156][ T3545] ? do_syscall_64+0x3d/0xb0 [ 54.834758][ T3545] ? ext4_fileattr_set+0x1770/0x1770 [ 54.840055][ T3545] ? do_vfs_ioctl+0x1ab2/0x2a90 [ 54.844916][ T3545] ? __x64_compat_sys_ioctl+0x80/0x80 [ 54.850294][ T3545] ? __lock_acquire+0x1f80/0x1f80 [ 54.855329][ T3545] ? lockdep_hardirqs_on+0x94/0x130 [ 54.860528][ T3545] ? __kmem_cache_free+0x25c/0x3c0 [ 54.865641][ T3545] ? tomoyo_path_number_perm+0x61b/0x7f0 [ 54.871381][ T3545] ? tomoyo_path_number_perm+0x68a/0x7f0 [ 54.877012][ T3545] ? tomoyo_path_number_perm+0x1f2/0x7f0 [ 54.882653][ T3545] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 54.888143][ T3545] ? lockdep_hardirqs_on+0x94/0x130 [ 54.893349][ T3545] ? kmem_cache_free+0x292/0x510 [ 54.898295][ T3545] ? do_sys_openat2+0x42b/0x500 [ 54.903161][ T3545] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 54.909149][ T3545] ? print_irqtrace_events+0x210/0x210 [ 54.914620][ T3545] ? print_irqtrace_events+0x210/0x210 [ 54.920092][ T3545] ? bpf_lsm_file_ioctl+0x5/0x10 [ 54.925029][ T3545] ? security_file_ioctl+0x7d/0xa0 [ 54.930137][ T3545] ? ext4_fileattr_set+0x1770/0x1770 [ 54.935429][ T3545] __se_sys_ioctl+0xf1/0x160 [ 54.940026][ T3545] do_syscall_64+0x3d/0xb0 [ 54.944535][ T3545] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.950432][ T3545] RIP: 0033:0x7fb5e7fd4329 [ 54.954846][ T3545] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 54.974454][ T3545] RSP: 002b:00007ffc2c999ed8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 54