Warning: Permanently added '10.128.1.128' (ED25519) to the list of known hosts. executing program [ 45.675553][ T4017] loop0: detected capacity change from 0 to 8192 [ 45.777374][ T4017] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 45.779631][ T4017] REISERFS (device loop0): using ordered data mode [ 45.781011][ T4017] reiserfs: using flush barriers [ 45.783081][ T4017] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 45.787309][ T4017] REISERFS (device loop0): checking transaction log (loop0) [ 45.832772][ T4017] REISERFS (device loop0): Using tea hash to sort names [ 45.835064][ T4017] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 45.840577][ T4017] [ 45.841071][ T4017] ====================================================== [ 45.842417][ T4017] WARNING: possible circular locking dependency detected [ 45.843893][ T4017] 5.15.173-syzkaller #0 Not tainted [ 45.844906][ T4017] ------------------------------------------------------ [ 45.846408][ T4017] syz-executor133/4017 is trying to acquire lock: [ 45.847862][ T4017] ffff0000cc320460 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write_file+0x64/0x1e8 [ 45.849912][ T4017] [ 45.849912][ T4017] but task is already holding lock: [ 45.851510][ T4017] ffff0000d486c090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock+0x7c/0xe8 [ 45.853328][ T4017] [ 45.853328][ T4017] which lock already depends on the new lock. [ 45.853328][ T4017] [ 45.855623][ T4017] [ 45.855623][ T4017] the existing dependency chain (in reverse order) is: [ 45.857589][ T4017] [ 45.857589][ T4017] -> #2 (&sbi->lock){+.+.}-{3:3}: [ 45.859210][ T4017] __mutex_lock_common+0x194/0x2154 [ 45.860474][ T4017] mutex_lock_nested+0xa4/0xf8 [ 45.861619][ T4017] reiserfs_write_lock+0x7c/0xe8 [ 45.862972][ T4017] reiserfs_lookup+0x130/0x3c4 [ 45.864091][ T4017] __lookup_slow+0x250/0x388 [ 45.865170][ T4017] lookup_one_len+0x178/0x28c [ 45.866318][ T4017] reiserfs_lookup_privroot+0x8c/0x204 [ 45.867577][ T4017] reiserfs_fill_super+0x1aec/0x1e8c [ 45.868806][ T4017] mount_bdev+0x274/0x370 [ 45.869806][ T4017] get_super_block+0x44/0x58 [ 45.870956][ T4017] legacy_get_tree+0xd4/0x16c [ 45.872026][ T4017] vfs_get_tree+0x90/0x274 [ 45.873141][ T4017] do_new_mount+0x278/0x8fc [ 45.874215][ T4017] path_mount+0x594/0x101c [ 45.875253][ T4017] __arm64_sys_mount+0x510/0x5e0 [ 45.876361][ T4017] invoke_syscall+0x98/0x2b8 [ 45.877447][ T4017] el0_svc_common+0x138/0x258 [ 45.878716][ T4017] do_el0_svc+0x58/0x14c [ 45.879723][ T4017] el0_svc+0x7c/0x1f0 [ 45.880742][ T4017] el0t_64_sync_handler+0x84/0xe4 [ 45.881960][ T4017] el0t_64_sync+0x1a0/0x1a4 [ 45.883007][ T4017] [ 45.883007][ T4017] -> #1 (&type->i_mutex_dir_key#6){+.+.}-{3:3}: [ 45.884864][ T4017] down_write+0xbc/0x12c [ 45.885912][ T4017] path_openat+0x640/0x26cc [ 45.887021][ T4017] do_filp_open+0x1a8/0x3b4 [ 45.888058][ T4017] do_sys_openat2+0x128/0x3e0 [ 45.889208][ T4017] __arm64_sys_openat+0x1f0/0x240 [ 45.890453][ T4017] invoke_syscall+0x98/0x2b8 [ 45.891468][ T4017] el0_svc_common+0x138/0x258 [ 45.892600][ T4017] do_el0_svc+0x58/0x14c [ 45.893640][ T4017] el0_svc+0x7c/0x1f0 [ 45.894713][ T4017] el0t_64_sync_handler+0x84/0xe4 [ 45.895953][ T4017] el0t_64_sync+0x1a0/0x1a4 [ 45.896989][ T4017] [ 45.896989][ T4017] -> #0 (sb_writers#8){.+.+}-{0:0}: [ 45.898634][ T4017] __lock_acquire+0x32d4/0x7638 [ 45.899903][ T4017] lock_acquire+0x240/0x77c [ 45.900960][ T4017] sb_start_write+0xf0/0x3ac [ 45.902020][ T4017] mnt_want_write_file+0x64/0x1e8 [ 45.903140][ T4017] reiserfs_ioctl+0x188/0x4b8 [ 45.904278][ T4017] __arm64_sys_ioctl+0x14c/0x1c8 [ 45.905634][ T4017] invoke_syscall+0x98/0x2b8 [ 45.906799][ T4017] el0_svc_common+0x138/0x258 [ 45.907886][ T4017] do_el0_svc+0x58/0x14c [ 45.908992][ T4017] el0_svc+0x7c/0x1f0 [ 45.909957][ T4017] el0t_64_sync_handler+0x84/0xe4 [ 45.911166][ T4017] el0t_64_sync+0x1a0/0x1a4 [ 45.912292][ T4017] [ 45.912292][ T4017] other info that might help us debug this: [ 45.912292][ T4017] [ 45.914638][ T4017] Chain exists of: [ 45.914638][ T4017] sb_writers#8 --> &type->i_mutex_dir_key#6 --> &sbi->lock [ 45.914638][ T4017] [ 45.917586][ T4017] Possible unsafe locking scenario: [ 45.917586][ T4017] [ 45.919225][ T4017] CPU0 CPU1 [ 45.920434][ T4017] ---- ---- [ 45.921625][ T4017] lock(&sbi->lock); [ 45.922501][ T4017] lock(&type->i_mutex_dir_key#6); [ 45.924298][ T4017] lock(&sbi->lock); [ 45.925696][ T4017] lock(sb_writers#8); [ 45.926569][ T4017] [ 45.926569][ T4017] *** DEADLOCK *** [ 45.926569][ T4017] [ 45.928374][ T4017] 1 lock held by syz-executor133/4017: [ 45.929630][ T4017] #0: ffff0000d486c090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock+0x7c/0xe8 [ 45.931755][ T4017] [ 45.931755][ T4017] stack backtrace: [ 45.933035][ T4017] CPU: 0 PID: 4017 Comm: syz-executor133 Not tainted 5.15.173-syzkaller #0 [ 45.934958][ T4017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 45.937147][ T4017] Call trace: [ 45.937855][ T4017] dump_backtrace+0x0/0x530 [ 45.938922][ T4017] show_stack+0x2c/0x3c [ 45.939822][ T4017] dump_stack_lvl+0x108/0x170 [ 45.940838][ T4017] dump_stack+0x1c/0x58 [ 45.941689][ T4017] print_circular_bug+0x150/0x1b8 [ 45.942782][ T4017] check_noncircular+0x2cc/0x378 [ 45.943826][ T4017] __lock_acquire+0x32d4/0x7638 [ 45.944823][ T4017] lock_acquire+0x240/0x77c [ 45.945802][ T4017] sb_start_write+0xf0/0x3ac [ 45.946816][ T4017] mnt_want_write_file+0x64/0x1e8 [ 45.947905][ T4017] reiserfs_ioctl+0x188/0x4b8 [ 45.948858][ T4017] __arm64_sys_ioctl+0x14c/0x1c8 [ 45.949915][ T4017] invoke_syscall+0x98/0x2b8 [ 45.950905][ T4017] el0_svc_common+0x138/0x258 [ 45.951835][ T4017] do_el0_svc+0x58/0x14c [ 45.952738][ T4017] el0_svc+0x7c/0x1f0 [ 45.953626][ T4017] el0t_64_sync_handler+0x84/0xe4 [ 45.954646][ T4017] el0t_64_sync+0x1a0/0x1a4