Warning: Permanently added '10.128.1.51' (ED25519) to the list of known hosts. executing program [ 54.440273][ T3540] loop0: detected capacity change from 0 to 40427 [ 54.454815][ T3540] F2FS-fs (loop0): Found nat_bits in checkpoint [ 54.481083][ T3540] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 54.498940][ T3540] [ 54.501302][ T3540] ====================================================== [ 54.508317][ T3540] WARNING: possible circular locking dependency detected [ 54.515327][ T3540] 6.1.42-syzkaller #0 Not tainted [ 54.520351][ T3540] ------------------------------------------------------ [ 54.527362][ T3540] syz-executor166/3540 is trying to acquire lock: [ 54.533776][ T3540] ffff8880719116f8 (&fi->i_sem){+.+.}-{3:3}, at: f2fs_add_inline_entry+0x3a4/0x760 [ 54.543167][ T3540] [ 54.543167][ T3540] but task is already holding lock: [ 54.550507][ T3540] ffff8880719107c0 (&fi->i_xattr_sem){.+.+}-{3:3}, at: f2fs_add_dentry+0x9b/0x1e0 [ 54.559720][ T3540] [ 54.559720][ T3540] which lock already depends on the new lock. [ 54.559720][ T3540] [ 54.570098][ T3540] [ 54.570098][ T3540] the existing dependency chain (in reverse order) is: [ 54.579088][ T3540] [ 54.579088][ T3540] -> #1 (&fi->i_xattr_sem){.+.+}-{3:3}: [ 54.586800][ T3540] lock_acquire+0x1f8/0x5a0 [ 54.591805][ T3540] down_read+0x43/0x2e0 [ 54.596472][ T3540] f2fs_getxattr+0xb4/0x1460 [ 54.601565][ T3540] __f2fs_get_acl+0x52/0x8a0 [ 54.606667][ T3540] f2fs_init_acl+0xd3/0x960 [ 54.611683][ T3540] f2fs_init_inode_metadata+0xaa0/0x11d0 [ 54.617847][ T3540] f2fs_add_regular_entry+0x866/0xe00 [ 54.623898][ T3540] f2fs_add_dentry+0xf3/0x1e0 [ 54.629078][ T3540] f2fs_do_add_link+0x21a/0x340 [ 54.634434][ T3540] f2fs_mkdir+0x2f1/0x520 [ 54.639262][ T3540] vfs_mkdir+0x3b6/0x590 [ 54.644009][ T3540] do_mkdirat+0x260/0x520 [ 54.648838][ T3540] __x64_sys_mkdir+0x6a/0x80 [ 54.653929][ T3540] do_syscall_64+0x3d/0xb0 [ 54.658850][ T3540] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.665244][ T3540] [ 54.665244][ T3540] -> #0 (&fi->i_sem){+.+.}-{3:3}: [ 54.672430][ T3540] validate_chain+0x1667/0x58e0 [ 54.677793][ T3540] __lock_acquire+0x125b/0x1f80 [ 54.683143][ T3540] lock_acquire+0x1f8/0x5a0 [ 54.688170][ T3540] down_write+0x36/0x60 [ 54.692839][ T3540] f2fs_add_inline_entry+0x3a4/0x760 [ 54.698643][ T3540] f2fs_add_dentry+0xb6/0x1e0 [ 54.703833][ T3540] f2fs_do_add_link+0x21a/0x340 [ 54.709207][ T3540] f2fs_mkdir+0x2f1/0x520 [ 54.714041][ T3540] vfs_mkdir+0x3b6/0x590 [ 54.718801][ T3540] ovl_mkdir_real+0xcf/0x2c0 [ 54.723908][ T3540] ovl_workdir_create+0x449/0x9d0 [ 54.729441][ T3540] ovl_get_workdir+0x3b7/0x17b0 [ 54.734800][ T3540] ovl_fill_super+0x1b85/0x2a20 [ 54.740160][ T3540] mount_nodev+0x52/0xe0 [ 54.744914][ T3540] legacy_get_tree+0xeb/0x180 [ 54.750117][ T3540] vfs_get_tree+0x88/0x270 [ 54.755084][ T3540] do_new_mount+0x28b/0xae0 [ 54.760100][ T3540] __se_sys_mount+0x2d5/0x3c0 [ 54.765319][ T3540] do_syscall_64+0x3d/0xb0 [ 54.770278][ T3540] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.776682][ T3540] [ 54.776682][ T3540] other info that might help us debug this: [ 54.776682][ T3540] [ 54.786892][ T3540] Possible unsafe locking scenario: [ 54.786892][ T3540] [ 54.794425][ T3540] CPU0 CPU1 [ 54.799767][ T3540] ---- ---- [ 54.805135][ T3540] lock(&fi->i_xattr_sem); [ 54.809637][ T3540] lock(&fi->i_sem); [ 54.816118][ T3540] lock(&fi->i_xattr_sem); [ 54.823121][ T3540] lock(&fi->i_sem); [ 54.827082][ T3540] [ 54.827082][ T3540] *** DEADLOCK *** [ 54.827082][ T3540] [ 54.835203][ T3540] 5 locks held by syz-executor166/3540: [ 54.840723][ T3540] #0: ffff88807b4460e0 (&type->s_umount_key#42/1){+.+.}-{3:3}, at: alloc_super+0x217/0x930 [ 54.850799][ T3540] #1: ffff88807acd8460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 54.859913][ T3540] #2: ffff888071910150 (&type->i_mutex_dir_key#6/1){+.+.}-{3:3}, at: ovl_workdir_create+0x159/0x9d0 [ 54.870766][ T3540] #3: ffff8880761ec3b0 (&sbi->cp_rwsem){.+.+}-{3:3}, at: f2fs_mkdir+0x221/0x520 [ 54.879879][ T3540] #4: ffff8880719107c0 (&fi->i_xattr_sem){.+.+}-{3:3}, at: f2fs_add_dentry+0x9b/0x1e0 [ 54.889543][ T3540] [ 54.889543][ T3540] stack backtrace: [ 54.895434][ T3540] CPU: 1 PID: 3540 Comm: syz-executor166 Not tainted 6.1.42-syzkaller #0 [ 54.903931][ T3540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 54.913985][ T3540] Call Trace: [ 54.917252][ T3540] [ 54.920252][ T3540] dump_stack_lvl+0x1e3/0x2cb [ 54.924925][ T3540] ? nf_tcp_handle_invalid+0x642/0x642 [ 54.930413][ T3540] ? print_circular_bug+0x12b/0x1a0 [ 54.935602][ T3540] check_noncircular+0x2fa/0x3b0 [ 54.940517][ T3540] ? __kernel_text_address+0x9/0x40 [ 54.945698][ T3540] ? add_chain_block+0x850/0x850 [ 54.950630][ T3540] ? lockdep_lock+0x11f/0x2a0 [ 54.955381][ T3540] ? stack_trace_save+0x113/0x1c0 [ 54.960391][ T3540] ? _find_first_zero_bit+0xd0/0x100 [ 54.965664][ T3540] validate_chain+0x1667/0x58e0 [ 54.970516][ T3540] ? __lock_acquire+0x125b/0x1f80 [ 54.975532][ T3540] ? reacquire_held_locks+0x660/0x660 [ 54.980889][ T3540] ? look_up_lock_class+0x77/0x140 [ 54.985990][ T3540] ? register_lock_class+0x100/0x990 [ 54.991263][ T3540] ? __might_sleep+0xb0/0xb0 [ 54.995840][ T3540] ? is_dynamic_key+0x1f0/0x1f0 [ 55.000668][ T3540] ? mark_lock+0x9a/0x340 [ 55.004977][ T3540] __lock_acquire+0x125b/0x1f80 [ 55.009995][ T3540] lock_acquire+0x1f8/0x5a0 [ 55.014491][ T3540] ? f2fs_add_inline_entry+0x3a4/0x760 [ 55.019978][ T3540] ? read_lock_is_recursive+0x10/0x10 [ 55.025514][ T3540] ? PageHeadHuge+0x8e/0x1c0 [ 55.030091][ T3540] ? __might_sleep+0xb0/0xb0 [ 55.034662][ T3540] ? pagecache_get_page+0x120/0x250 [ 55.039843][ T3540] ? f2fs_grab_cache_page+0x38/0x3c0 [ 55.045126][ T3540] ? _find_next_zero_bit+0x88/0x140 [ 55.050318][ T3540] ? _find_next_bit+0xe9/0x120 [ 55.055077][ T3540] down_write+0x36/0x60 [ 55.059221][ T3540] ? f2fs_add_inline_entry+0x3a4/0x760 [ 55.064673][ T3540] f2fs_add_inline_entry+0x3a4/0x760 [ 55.070050][ T3540] ? do_convert_inline_dir+0x1c90/0x1c90 [ 55.075677][ T3540] ? down_read+0x1b1/0x2e0 [ 55.080079][ T3540] f2fs_add_dentry+0xb6/0x1e0 [ 55.084775][ T3540] f2fs_do_add_link+0x21a/0x340 [ 55.089614][ T3540] ? __might_sleep+0xb0/0xb0 [ 55.094307][ T3540] ? f2fs_add_dentry+0x1e0/0x1e0 [ 55.099345][ T3540] ? f2fs_get_link+0x110/0x110 [ 55.104444][ T3540] ? down_read+0x1b1/0x2e0 [ 55.108841][ T3540] f2fs_mkdir+0x2f1/0x520 [ 55.113157][ T3540] ? inode_permission+0xf7/0x450 [ 55.118097][ T3540] vfs_mkdir+0x3b6/0x590 [ 55.122325][ T3540] ovl_mkdir_real+0xcf/0x2c0 [ 55.126984][ T3540] ovl_workdir_create+0x449/0x9d0 [ 55.132073][ T3540] ? ovl_mount_dir_noesc+0x190/0x190 [ 55.137334][ T3540] ? rcu_read_lock_any_held+0xb3/0x160 [ 55.142777][ T3540] ? __mnt_want_write+0x221/0x2a0 [ 55.147780][ T3540] ovl_get_workdir+0x3b7/0x17b0 [ 55.152881][ T3540] ? ovl_get_upper+0x5f0/0x5f0 [ 55.157716][ T3540] ? ovl_inuse_trylock+0xb8/0xd0 [ 55.162632][ T3540] ? ovl_get_upper+0x402/0x5f0 [ 55.167376][ T3540] ? ovl_fill_super+0x2a20/0x2a20 [ 55.172396][ T3540] ? ovl_fill_super+0x13c3/0x2a20 [ 55.177497][ T3540] ? rcu_is_watching+0x11/0xb0 [ 55.182240][ T3540] ? __kmalloc+0xe2/0x230 [ 55.186659][ T3540] ovl_fill_super+0x1b85/0x2a20 [ 55.191495][ T3540] ? ovl_mount+0x30/0x30 [ 55.195720][ T3540] ? sget+0x4b8/0x4d0 [ 55.199680][ T3540] ? free_anon_bdev+0x20/0x20 [ 55.204338][ T3540] ? ovl_mount+0x30/0x30 [ 55.208576][ T3540] mount_nodev+0x52/0xe0 [ 55.212801][ T3540] legacy_get_tree+0xeb/0x180 [ 55.217550][ T3540] ? virtio_fs_zero_page_range+0x180/0x180 [ 55.223338][ T3540] vfs_get_tree+0x88/0x270 [ 55.227738][ T3540] do_new_mount+0x28b/0xae0 [ 55.232221][ T3540] ? do_move_mount_old+0x160/0x160 [ 55.237316][ T3540] ? user_path_at_empty+0x12b/0x180 [ 55.242765][ T3540] __se_sys_mount+0x2d5/0x3c0 [ 55.247435][ T3540] ? __x64_sys_mount+0xc0/0xc0 [ 55.252178][ T3540] ? syscall_enter_from_user_mode+0x2e/0x220 [ 55.258139][ T3540] ? lockdep_hardirqs_on+0x94/0x130 [ 55.263317][ T3540] ? __x64_sys_mount+0x1c/0xc0 [ 55.268086][ T3540] do_syscall_64+0x3d/0xb0 [ 55.272493][ T3540] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 55.278386][ T3540] RIP: 0033:0x7f6912cc27b9 [ 55.282785][ T3540] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 55.302367][ T3540] RSP: 002b:00007ffc2c9753c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 55.310760][ T3540] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f6912cc27b9 [ 55.318711][ T3540] RDX: 00000000200001c0 RSI: 0000000020000180 RDI: 0000000000000000 [ 55.326674][ T3540] RBP: 00007f6912d3a610 R08: 0000000020000300 R09: 0000000000000000 [