Warning: Permanently added '10.128.0.22' (ECDSA) to the list of known hosts. executing program [ 50.832112][ T3500] loop0: detected capacity change from 0 to 512 [ 50.842471][ T3500] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 50.861800][ T3500] EXT4-fs (loop0): 1 truncate cleaned up [ 50.867851][ T3500] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000000000,nogrpid,debug_want_extra_isize=0x0000000000000066,dioread_nolock,max_batch_time=0x0000000000000008,resgid=0x0000000000000000,,errors=continue. Quota mode: writeback. [ 50.907181][ T3500] [ 50.909633][ T3500] ====================================================== [ 50.916660][ T3500] WARNING: possible circular locking dependency detected [ 50.923683][ T3500] 5.15.114-syzkaller #0 Not tainted [ 50.928870][ T3500] ------------------------------------------------------ [ 50.935874][ T3500] syz-executor324/3500 is trying to acquire lock: [ 50.942270][ T3500] ffff888074e8a1d8 (&ea_inode->i_rwsem#9/1){+.+.}-{3:3}, at: ext4_xattr_inode_iget+0x4a3/0x5e0 [ 50.952698][ T3500] [ 50.952698][ T3500] but task is already holding lock: [ 50.960045][ T3500] ffff888074e89668 (&ei->i_data_sem){++++}-{3:3}, at: ext4_setattr+0x12e8/0x1990 [ 50.969172][ T3500] [ 50.969172][ T3500] which lock already depends on the new lock. [ 50.969172][ T3500] [ 50.979567][ T3500] [ 50.979567][ T3500] the existing dependency chain (in reverse order) is: [ 50.988649][ T3500] [ 50.988649][ T3500] -> #1 (&ei->i_data_sem){++++}-{3:3}: [ 50.996281][ T3500] lock_acquire+0x1db/0x4f0 [ 51.001307][ T3500] down_write+0x97/0x170 [ 51.006059][ T3500] ext4_xattr_set_entry+0x3187/0x3c00 [ 51.011937][ T3500] ext4_xattr_ibody_set+0x11d/0x330 [ 51.017642][ T3500] ext4_xattr_set_handle+0xc72/0x1560 [ 51.023533][ T3500] ext4_xattr_set+0x231/0x3d0 [ 51.028719][ T3500] __vfs_setxattr+0x3e7/0x420 [ 51.034429][ T3500] __vfs_setxattr_noperm+0x12a/0x5e0 [ 51.040492][ T3500] vfs_setxattr+0x21d/0x420 [ 51.045688][ T3500] setxattr+0x27e/0x2e0 [ 51.050347][ T3500] path_setxattr+0x1bc/0x2a0 [ 51.055459][ T3500] __x64_sys_setxattr+0xb7/0xd0 [ 51.060818][ T3500] do_syscall_64+0x3d/0xb0 [ 51.065749][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 51.072151][ T3500] [ 51.072151][ T3500] -> #0 (&ea_inode->i_rwsem#9/1){+.+.}-{3:3}: [ 51.080397][ T3500] validate_chain+0x1646/0x58b0 [ 51.085759][ T3500] __lock_acquire+0x1295/0x1ff0 [ 51.091121][ T3500] lock_acquire+0x1db/0x4f0 [ 51.096131][ T3500] down_write+0x97/0x170 [ 51.100887][ T3500] ext4_xattr_inode_iget+0x4a3/0x5e0 [ 51.106682][ T3500] ext4_xattr_inode_get+0x17d/0x9a0 [ 51.112411][ T3500] ext4_expand_extra_isize_ea+0xe70/0x1bb0 [ 51.118729][ T3500] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 51.124872][ T3500] __ext4_mark_inode_dirty+0x539/0x860 [ 51.130839][ T3500] ext4_setattr+0x1374/0x1990 [ 51.136112][ T3500] notify_change+0xd4d/0x1000 [ 51.141301][ T3500] do_truncate+0x21c/0x300 [ 51.146236][ T3500] path_openat+0x28a0/0x2f20 [ 51.151333][ T3500] do_filp_open+0x21c/0x460 [ 51.156346][ T3500] do_sys_openat2+0x13b/0x500 [ 51.161640][ T3500] __x64_sys_creat+0x11f/0x160 [ 51.166925][ T3500] do_syscall_64+0x3d/0xb0 [ 51.171864][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 51.178277][ T3500] [ 51.178277][ T3500] other info that might help us debug this: [ 51.178277][ T3500] [ 51.188598][ T3500] Possible unsafe locking scenario: [ 51.188598][ T3500] [ 51.196030][ T3500] CPU0 CPU1 [ 51.201386][ T3500] ---- ---- [ 51.206822][ T3500] lock(&ei->i_data_sem); [ 51.211229][ T3500] lock(&ea_inode->i_rwsem#9/1); [ 51.218768][ T3500] lock(&ei->i_data_sem); [ 51.225699][ T3500] lock(&ea_inode->i_rwsem#9/1); [ 51.230715][ T3500] [ 51.230715][ T3500] *** DEADLOCK *** [ 51.230715][ T3500] [ 51.238838][ T3500] 5 locks held by syz-executor324/3500: [ 51.244366][ T3500] #0: ffff888076020460 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 51.253510][ T3500] #1: ffff888074e897e0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: do_truncate+0x208/0x300 [ 51.263768][ T3500] #2: ffff888074e89980 (mapping.invalidate_lock){++++}-{3:3}, at: ext4_setattr+0xd6c/0x1990 [ 51.273947][ T3500] #3: ffff888074e89668 (&ei->i_data_sem){++++}-{3:3}, at: ext4_setattr+0x12e8/0x1990 [ 51.283502][ T3500] #4: ffff888074e894b8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x4a0/0x860 [ 51.293841][ T3500] [ 51.293841][ T3500] stack backtrace: [ 51.299713][ T3500] CPU: 0 PID: 3500 Comm: syz-executor324 Not tainted 5.15.114-syzkaller #0 [ 51.308284][ T3500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 51.318323][ T3500] Call Trace: [ 51.321587][ T3500] [ 51.324508][ T3500] dump_stack_lvl+0x1e3/0x2cb [ 51.329177][ T3500] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 51.335245][ T3500] ? print_circular_bug+0x12b/0x1a0 [ 51.340438][ T3500] check_noncircular+0x2f8/0x3b0 [ 51.345364][ T3500] ? add_chain_block+0x850/0x850 [ 51.350286][ T3500] ? lockdep_lock+0x11f/0x2a0 [ 51.354953][ T3500] ? __lock_acquire+0x1295/0x1ff0 [ 51.359971][ T3500] validate_chain+0x1646/0x58b0 [ 51.364824][ T3500] ? find_inode_fast+0x421/0x450 [ 51.369751][ T3500] ? reacquire_held_locks+0x660/0x660 [ 51.375199][ T3500] ? do_raw_spin_lock+0x14a/0x370 [ 51.380218][ T3500] ? mark_lock+0x98/0x340 [ 51.384533][ T3500] __lock_acquire+0x1295/0x1ff0 [ 51.389377][ T3500] lock_acquire+0x1db/0x4f0 [ 51.393868][ T3500] ? ext4_xattr_inode_iget+0x4a3/0x5e0 [ 51.399319][ T3500] ? read_lock_is_recursive+0x10/0x10 [ 51.404684][ T3500] ? __might_sleep+0xc0/0xc0 [ 51.409261][ T3500] ? stack_depot_save+0x3db/0x440 [ 51.414276][ T3500] down_write+0x97/0x170 [ 51.418512][ T3500] ? ext4_xattr_inode_iget+0x4a3/0x5e0 [ 51.423960][ T3500] ? down_read_killable+0x350/0x350 [ 51.429154][ T3500] ext4_xattr_inode_iget+0x4a3/0x5e0 [ 51.434441][ T3500] ext4_xattr_inode_get+0x17d/0x9a0 [ 51.439635][ T3500] ? __xattr_check_inode+0x3f0/0x3f0 [ 51.444910][ T3500] ? __kmalloc_node+0x199/0x390 [ 51.449750][ T3500] ? ext4_expand_extra_isize_ea+0xd11/0x1bb0 [ 51.455724][ T3500] ext4_expand_extra_isize_ea+0xe70/0x1bb0 [ 51.461533][ T3500] ? ext4_xattr_set+0x3d0/0x3d0 [ 51.466374][ T3500] ? down_write_trylock+0x173/0x2d0 [ 51.471561][ T3500] ? __ext4_mark_inode_dirty+0x4a0/0x860 [ 51.477181][ T3500] ? dquot_initialize_needed+0x128/0x320 [ 51.482806][ T3500] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 51.488428][ T3500] __ext4_mark_inode_dirty+0x539/0x860 [ 51.493877][ T3500] ? ext4_blocks_for_truncate+0x270/0x270 [ 51.499600][ T3500] ? down_read_killable+0x350/0x350 [ 51.504797][ T3500] ? ext4_journal_check_start+0x17b/0x240 [ 51.510509][ T3500] ? ext4_setattr+0xf05/0x1990 [ 51.515262][ T3500] ? __ext4_journal_start_sb+0x1cb/0x370 [ 51.520885][ T3500] ext4_setattr+0x1374/0x1990 [ 51.525554][ T3500] ? bpf_lsm_inode_setattr+0x5/0x10 [ 51.530748][ T3500] ? ext4_write_inode+0x730/0x730 [ 51.535766][ T3500] notify_change+0xd4d/0x1000 [ 51.540439][ T3500] do_truncate+0x21c/0x300 [ 51.544848][ T3500] ? put_page_bootmem+0x280/0x280 [ 51.549865][ T3500] ? ima_bprm_check+0x2b0/0x2b0 [ 51.554795][ T3500] ? bpf_lsm_path_truncate+0x5/0x10 [ 51.559983][ T3500] path_openat+0x28a0/0x2f20 [ 51.564570][ T3500] ? do_filp_open+0x460/0x460 [ 51.569249][ T3500] do_filp_open+0x21c/0x460 [ 51.573740][ T3500] ? vfs_tmpfile+0x2e0/0x2e0 [ 51.578327][ T3500] ? _raw_spin_unlock+0x24/0x40 [ 51.583163][ T3500] ? alloc_fd+0x594/0x630 [ 51.587481][ T3500] do_sys_openat2+0x13b/0x500 [ 51.592147][ T3500] ? read_lock_is_recursive+0x10/0x10 [ 51.597509][ T3500] ? __context_tracking_exit+0x4c/0x80 [ 51.602968][ T3500] ? do_sys_open+0x220/0x220 [ 51.607546][ T3500] ? rcu_is_watching+0x11/0xa0 [ 51.612397][ T3500] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 51.618366][ T3500] __x64_sys_creat+0x11f/0x160 [ 51.623131][ T3500] ? __x64_compat_sys_openat+0x290/0x290 [ 51.628839][ T3500] ? syscall_enter_from_user_mode+0x2e/0x230 [ 51.634848][ T3500] ? lockdep_hardirqs_on+0x94/0x130 [ 51.640040][ T3500] ? syscall_enter_from_user_mode+0x2e/0x230 [ 51.646013][ T3500] do_syscall_64+0x3d/0xb0 [ 51.650527][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 51.656410][ T3500] RIP: 0033:0x7fc475313c29 [ 51.660822][ T3500] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 51.681122][ T3500] RSP: 002b:00007fffb5bd1378 EFLAGS: