Warning: Permanently added '10.128.0.140' (ED25519) to the list of known hosts.
executing program
[   60.046530][ T3546] 
[   60.048883][ T3546] ======================================================
[   60.055903][ T3546] WARNING: possible circular locking dependency detected
[   60.062909][ T3546] 6.1.87-syzkaller #0 Not tainted
[   60.067918][ T3546] ------------------------------------------------------
[   60.074921][ T3546] syz-executor146/3546 is trying to acquire lock:
[   60.081324][ T3546] ffff888148c50400 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_bmap+0x4b/0x410
[   60.091019][ T3546] 
[   60.091019][ T3546] but task is already holding lock:
[   60.098390][ T3546] ffff88807efe03f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x323/0xc40
[   60.109032][ T3546] 
[   60.109032][ T3546] which lock already depends on the new lock.
[   60.109032][ T3546] 
[   60.119441][ T3546] 
[   60.119441][ T3546] the existing dependency chain (in reverse order) is:
[   60.129232][ T3546] 
[   60.129232][ T3546] -> #4 (&journal->j_checkpoint_mutex){+.+.}-{3:3}:
[   60.138029][ T3546]        lock_acquire+0x1f8/0x5a0
[   60.143083][ T3546]        mutex_lock_io_nested+0x134/0xab0
[   60.148827][ T3546]        jbd2_journal_flush+0x29b/0xc40
[   60.154385][ T3546]        ext4_ioctl+0x3986/0x5f60
[   60.159415][ T3546]        __se_sys_ioctl+0xf1/0x160
[   60.164538][ T3546]        do_syscall_64+0x3b/0xb0
[   60.169485][ T3546]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   60.175915][ T3546] 
[   60.175915][ T3546] -> #3 (&journal->j_barrier){+.+.}-{3:3}:
[   60.183910][ T3546]        lock_acquire+0x1f8/0x5a0
[   60.188943][ T3546]        __mutex_lock+0x132/0xd80
[   60.193963][ T3546]        jbd2_journal_lock_updates+0x2b0/0x380
[   60.200132][ T3546]        ext4_change_inode_journal_flag+0x1a8/0x6e0
[   60.206738][ T3546]        ext4_fileattr_set+0xe04/0x1770
[   60.212306][ T3546]        vfs_fileattr_set+0x8f3/0xd30
[   60.217697][ T3546]        do_vfs_ioctl+0x1cd1/0x2a90
[   60.222894][ T3546]        __se_sys_ioctl+0x81/0x160
[   60.228019][ T3546]        do_syscall_64+0x3b/0xb0
[   60.232979][ T3546]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   60.239408][ T3546] 
[   60.239408][ T3546] -> #2 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[   60.247846][ T3546]        lock_acquire+0x1f8/0x5a0
[   60.252906][ T3546]        percpu_down_write+0x50/0x2f0
[   60.258279][ T3546]        ext4_change_inode_journal_flag+0x1a0/0x6e0
[   60.264873][ T3546]        ext4_fileattr_set+0xe04/0x1770
[   60.270425][ T3546]        vfs_fileattr_set+0x8f3/0xd30
[   60.275807][ T3546]        do_vfs_ioctl+0x1cd1/0x2a90
[   60.281013][ T3546]        __se_sys_ioctl+0x81/0x160
[   60.286133][ T3546]        do_syscall_64+0x3b/0xb0
[   60.291113][ T3546]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   60.297533][ T3546] 
[   60.297533][ T3546] -> #1 (mapping.invalidate_lock){++++}-{3:3}:
[   60.305885][ T3546]        lock_acquire+0x1f8/0x5a0
[   60.310928][ T3546]        down_write+0x36/0x60
[   60.315606][ T3546]        ext4_setattr+0xec7/0x1a00
[   60.320723][ T3546]        notify_change+0xce3/0xfc0
[   60.325861][ T3546]        do_truncate+0x21c/0x300
[   60.330819][ T3546]        do_sys_ftruncate+0x2e2/0x380
[   60.336208][ T3546]        do_syscall_64+0x3b/0xb0
[   60.341182][ T3546]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   60.347607][ T3546] 
[   60.347607][ T3546] -> #0 (&sb->s_type->i_mutex_key#8){++++}-{3:3}:
[   60.356219][ T3546]        validate_chain+0x1661/0x5950
[   60.361603][ T3546]        __lock_acquire+0x125b/0x1f80
[   60.366985][ T3546]        lock_acquire+0x1f8/0x5a0
[   60.372015][ T3546]        down_read+0xad/0xa30
[   60.376697][ T3546]        ext4_bmap+0x4b/0x410
[   60.381380][ T3546]        bmap+0xa1/0xd0
[   60.385568][ T3546]        jbd2_journal_flush+0x5b5/0xc40
[   60.391139][ T3546]        ext4_ioctl+0x3986/0x5f60
[   60.396168][ T3546]        __se_sys_ioctl+0xf1/0x160
[   60.401305][ T3546]        do_syscall_64+0x3b/0xb0
[   60.406265][ T3546]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   60.412698][ T3546] 
[   60.412698][ T3546] other info that might help us debug this:
[   60.412698][ T3546] 
[   60.422925][ T3546] Chain exists of:
[   60.422925][ T3546]   &sb->s_type->i_mutex_key#8 --> &journal->j_barrier --> &journal->j_checkpoint_mutex
[   60.422925][ T3546] 
[   60.438407][ T3546]  Possible unsafe locking scenario:
[   60.438407][ T3546] 
[   60.445852][ T3546]        CPU0                    CPU1
[   60.451237][ T3546]        ----                    ----
[   60.456597][ T3546]   lock(&journal->j_checkpoint_mutex);
[   60.462144][ T3546]                                lock(&journal->j_barrier);
[   60.469430][ T3546]                                lock(&journal->j_checkpoint_mutex);
[   60.477520][ T3546]   lock(&sb->s_type->i_mutex_key#8);
[   60.482898][ T3546] 
[   60.482898][ T3546]  *** DEADLOCK ***
[   60.482898][ T3546] 
[   60.491037][ T3546] 2 locks held by syz-executor146/3546:
[   60.496592][ T3546]  #0: ffff88807efe0170 (&journal->j_barrier){+.+.}-{3:3}, at: jbd2_journal_lock_updates+0x2b0/0x380
[   60.507596][ T3546]  #1: ffff88807efe03f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x323/0xc40
[   60.518678][ T3546] 
[   60.518678][ T3546] stack backtrace:
[   60.524576][ T3546] CPU: 1 PID: 3546 Comm: syz-executor146 Not tainted 6.1.87-syzkaller #0
[   60.532989][ T3546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   60.543051][ T3546] Call Trace:
[   60.546333][ T3546]  <TASK>
[   60.549267][ T3546]  dump_stack_lvl+0x1e3/0x2cb
[   60.553981][ T3546]  ? nf_tcp_handle_invalid+0x642/0x642
[   60.559458][ T3546]  ? print_circular_bug+0x12b/0x1a0
[   60.564663][ T3546]  check_noncircular+0x2fa/0x3b0
[   60.569604][ T3546]  ? add_chain_block+0x850/0x850
[   60.574542][ T3546]  ? lockdep_lock+0x11f/0x2a0
[   60.579232][ T3546]  ? _find_first_zero_bit+0xd0/0x100
[   60.584541][ T3546]  validate_chain+0x1661/0x5950
[   60.589413][ T3546]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   60.595408][ T3546]  ? reacquire_held_locks+0x660/0x660
[   60.600795][ T3546]  ? do_raw_spin_unlock+0x137/0x8a0
[   60.605998][ T3546]  ? validate_chain+0x112/0x5950
[   60.610951][ T3546]  ? finish_task_switch+0x299/0x810
[   60.616162][ T3546]  ? mark_lock+0x9a/0x340
[   60.620505][ T3546]  __lock_acquire+0x125b/0x1f80
[   60.625376][ T3546]  lock_acquire+0x1f8/0x5a0
[   60.629886][ T3546]  ? ext4_bmap+0x4b/0x410
[   60.634225][ T3546]  ? read_lock_is_recursive+0x10/0x10
[   60.639607][ T3546]  ? __might_sleep+0xb0/0xb0
[   60.644197][ T3546]  ? __lock_acquire+0x125b/0x1f80
[   60.649237][ T3546]  down_read+0xad/0xa30
[   60.653395][ T3546]  ? ext4_bmap+0x4b/0x410
[   60.657735][ T3546]  ? bit_waitqueue+0x30/0x30
[   60.662336][ T3546]  ? __down_common+0x8b0/0x8b0
[   60.667106][ T3546]  ? jbd2_journal_flush+0x374/0xc40
[   60.672319][ T3546]  ? __lock_acquire+0x1f80/0x1f80
[   60.677351][ T3546]  ? jbd2_cleanup_journal_tail+0x1a7/0x2c0
[   60.683169][ T3546]  ? ext4_journalled_write_end+0xec0/0xec0
[   60.689005][ T3546]  ext4_bmap+0x4b/0x410
[   60.693184][ T3546]  ? ext4_journalled_write_end+0xec0/0xec0
[   60.698998][ T3546]  bmap+0xa1/0xd0
[   60.702647][ T3546]  jbd2_journal_flush+0x5b5/0xc40
[   60.707697][ T3546]  ? jbd2_journal_lock_updates+0x2b0/0x380
[   60.713507][ T3546]  ? stack_trace_save+0x113/0x1c0
[   60.718805][ T3546]  ? __bpf_trace_jbd2_shrink_checkpoint_list+0x50/0x50
[   60.725668][ T3546]  ? bpf_lsm_capable+0x5/0x10
[   60.730358][ T3546]  ? security_capable+0x86/0xb0
[   60.735219][ T3546]  ext4_ioctl+0x3986/0x5f60
[   60.739731][ T3546]  ? kasan_set_track+0x4b/0x70
[   60.744522][ T3546]  ? security_file_ioctl+0x6d/0xa0
[   60.749652][ T3546]  ? __se_sys_ioctl+0x47/0x160
[   60.754430][ T3546]  ? do_syscall_64+0x3b/0xb0
[   60.759043][ T3546]  ? ext4_fileattr_set+0x1770/0x1770
[   60.764345][ T3546]  ? do_vfs_ioctl+0x1ab2/0x2a90
[   60.769197][ T3546]  ? __x64_compat_sys_ioctl+0x80/0x80
[   60.774581][ T3546]  ? __lock_acquire+0x1f80/0x1f80
[   60.779615][ T3546]  ? lockdep_hardirqs_on+0x94/0x130
[   60.784825][ T3546]  ? __kmem_cache_free+0x25c/0x3c0
[   60.789947][ T3546]  ? tomoyo_path_number_perm+0x61b/0x7f0
[   60.795607][ T3546]  ? tomoyo_path_number_perm+0x68a/0x7f0
[   60.801334][ T3546]  ? tomoyo_path_number_perm+0x1f2/0x7f0
[   60.806969][ T3546]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[   60.812441][ T3546]  ? lockdep_hardirqs_on+0x94/0x130
[   60.817646][ T3546]  ? kmem_cache_free+0x292/0x510
[   60.822619][ T3546]  ? do_sys_openat2+0x42b/0x500
[   60.827492][ T3546]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   60.833489][ T3546]  ? print_irqtrace_events+0x210/0x210
[   60.838959][ T3546]  ? print_irqtrace_events+0x210/0x210
[   60.844435][ T3546]  ? bpf_lsm_file_ioctl+0x5/0x10
[   60.849398][ T3546]  ? security_file_ioctl+0x7d/0xa0
[   60.854516][ T3546]  ? ext4_fileattr_set+0x1770/0x1770
[   60.859836][ T3546]  __se_sys_ioctl+0xf1/0x160
[   60.864446][ T3546]  do_syscall_64+0x3b/0xb0
[   60.868875][ T3546]  ? clear_bhb_loop+0x45/0xa0
[   60.873563][ T3546]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   60.879462][ T3546] RIP: 0033:0x7f5bfd276369
[   60.883877][ T3546] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   60.903490][ T3546] RSP: 002b:00007ffd2c83f9e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   60.911910][ T3546] RAX: ffffffffffffffda RBX: 0073746e6576652e RCX: 00007f5bfd276369
[   60.919886][ T3546] RDX: 0000000020000000 RSI: 000000004004662b RDI: 0000000000000005
[   60.927863][ T3546] RBP: 652e79726f6d656d R08: 00000000000ac5f8 R09: 00000000000ac5f8
[   60.935833][ T3546] R10: 00000000000ac5f8 R11: 0000000000000246 R12: 0000000000000001
[   60.943815][ T3546] R13: 00007ffd2c83fbb8 R14: 0000000000000001 R15: 0000000