Warning: Permanently added '10.128.0.208' (ED25519) to the list of known hosts.
executing program
[   66.896824][ T3543] 
[   66.899202][ T3543] ======================================================
[   66.906454][ T3543] WARNING: possible circular locking dependency detected
[   66.913540][ T3543] 6.1.87-syzkaller #0 Not tainted
[   66.918576][ T3543] ------------------------------------------------------
[   66.925979][ T3543] syz-executor383/3543 is trying to acquire lock:
[   66.932666][ T3543] ffff888148d38400 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_bmap+0x4b/0x410
[   66.944076][ T3543] 
[   66.944076][ T3543] but task is already holding lock:
[   66.951568][ T3543] ffff88807eb4e3f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x323/0xc40
[   66.962215][ T3543] 
[   66.962215][ T3543] which lock already depends on the new lock.
[   66.962215][ T3543] 
[   66.972844][ T3543] 
[   66.972844][ T3543] the existing dependency chain (in reverse order) is:
[   66.982163][ T3543] 
[   66.982163][ T3543] -> #3 (&journal->j_checkpoint_mutex){+.+.}-{3:3}:
[   66.991966][ T3543]        lock_acquire+0x1f8/0x5a0
[   66.997735][ T3543]        mutex_lock_io_nested+0x134/0xab0
[   67.003779][ T3543]        jbd2_journal_flush+0x29b/0xc40
[   67.009460][ T3543]        ext4_ioctl+0x3986/0x5f60
[   67.015086][ T3543]        __se_sys_ioctl+0xf1/0x160
[   67.020411][ T3543]        do_syscall_64+0x3b/0xb0
[   67.025506][ T3543]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   67.032049][ T3543] 
[   67.032049][ T3543] -> #2 (&journal->j_barrier){+.+.}-{3:3}:
[   67.040167][ T3543]        lock_acquire+0x1f8/0x5a0
[   67.045535][ T3543]        __mutex_lock+0x132/0xd80
[   67.051319][ T3543]        jbd2_journal_lock_updates+0x2b0/0x380
[   67.058160][ T3543]        ext4_change_inode_journal_flag+0x1a8/0x6e0
[   67.064973][ T3543]        ext4_fileattr_set+0xe04/0x1770
[   67.070678][ T3543]        vfs_fileattr_set+0x8f3/0xd30
[   67.076073][ T3543]        do_vfs_ioctl+0x1cd1/0x2a90
[   67.081481][ T3543]        __se_sys_ioctl+0x81/0x160
[   67.086814][ T3543]        do_syscall_64+0x3b/0xb0
[   67.091775][ T3543]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   67.098655][ T3543] 
[   67.098655][ T3543] -> #1 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[   67.107201][ T3543]        lock_acquire+0x1f8/0x5a0
[   67.112376][ T3543]        percpu_down_write+0x50/0x2f0
[   67.117878][ T3543]        ext4_ind_migrate+0x254/0x760
[   67.123376][ T3543]        ext4_fileattr_set+0xe9b/0x1770
[   67.129324][ T3543]        vfs_fileattr_set+0x8f3/0xd30
[   67.135085][ T3543]        do_vfs_ioctl+0x1cd1/0x2a90
[   67.140749][ T3543]        __se_sys_ioctl+0x81/0x160
[   67.146050][ T3543]        do_syscall_64+0x3b/0xb0
[   67.151455][ T3543]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   67.158210][ T3543] 
[   67.158210][ T3543] -> #0 (&sb->s_type->i_mutex_key#8){++++}-{3:3}:
[   67.167050][ T3543]        validate_chain+0x1661/0x5950
[   67.172625][ T3543]        __lock_acquire+0x125b/0x1f80
[   67.178664][ T3543]        lock_acquire+0x1f8/0x5a0
[   67.184000][ T3543]        down_read+0xad/0xa30
[   67.190711][ T3543]        ext4_bmap+0x4b/0x410
[   67.195618][ T3543]        bmap+0xa1/0xd0
[   67.200068][ T3543]        jbd2_journal_flush+0x5b5/0xc40
[   67.205732][ T3543]        ext4_ioctl+0x3986/0x5f60
[   67.211160][ T3543]        __se_sys_ioctl+0xf1/0x160
[   67.216514][ T3543]        do_syscall_64+0x3b/0xb0
[   67.221942][ T3543]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   67.229505][ T3543] 
[   67.229505][ T3543] other info that might help us debug this:
[   67.229505][ T3543] 
[   67.240940][ T3543] Chain exists of:
[   67.240940][ T3543]   &sb->s_type->i_mutex_key#8 --> &journal->j_barrier --> &journal->j_checkpoint_mutex
[   67.240940][ T3543] 
[   67.258502][ T3543]  Possible unsafe locking scenario:
[   67.258502][ T3543] 
[   67.266579][ T3543]        CPU0                    CPU1
[   67.273099][ T3543]        ----                    ----
[   67.278508][ T3543]   lock(&journal->j_checkpoint_mutex);
[   67.284270][ T3543]                                lock(&journal->j_barrier);
[   67.292494][ T3543]                                lock(&journal->j_checkpoint_mutex);
[   67.301203][ T3543]   lock(&sb->s_type->i_mutex_key#8);
[   67.309805][ T3543] 
[   67.309805][ T3543]  *** DEADLOCK ***
[   67.309805][ T3543] 
[   67.319150][ T3543] 2 locks held by syz-executor383/3543:
[   67.326209][ T3543]  #0: ffff88807eb4e170 (&journal->j_barrier){+.+.}-{3:3}, at: jbd2_journal_lock_updates+0x2b0/0x380
[   67.337746][ T3543]  #1: ffff88807eb4e3f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x323/0xc40
[   67.349094][ T3543] 
[   67.349094][ T3543] stack backtrace:
[   67.355010][ T3543] CPU: 1 PID: 3543 Comm: syz-executor383 Not tainted 6.1.87-syzkaller #0
[   67.363443][ T3543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   67.373882][ T3543] Call Trace:
[   67.377281][ T3543]  <TASK>
[   67.380228][ T3543]  dump_stack_lvl+0x1e3/0x2cb
[   67.384960][ T3543]  ? nf_tcp_handle_invalid+0x642/0x642
[   67.390469][ T3543]  ? print_circular_bug+0x12b/0x1a0
[   67.395927][ T3543]  check_noncircular+0x2fa/0x3b0
[   67.401335][ T3543]  ? add_chain_block+0x850/0x850
[   67.406310][ T3543]  ? lockdep_lock+0x11f/0x2a0
[   67.411144][ T3543]  ? _find_first_zero_bit+0xd0/0x100
[   67.416617][ T3543]  validate_chain+0x1661/0x5950
[   67.421596][ T3543]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   67.427588][ T3543]  ? reacquire_held_locks+0x660/0x660
[   67.432970][ T3543]  ? do_raw_spin_unlock+0x137/0x8a0
[   67.438196][ T3543]  ? validate_chain+0x112/0x5950
[   67.443331][ T3543]  ? finish_task_switch+0x299/0x810
[   67.448623][ T3543]  ? mark_lock+0x9a/0x340
[   67.452981][ T3543]  __lock_acquire+0x125b/0x1f80
[   67.457864][ T3543]  lock_acquire+0x1f8/0x5a0
[   67.462586][ T3543]  ? ext4_bmap+0x4b/0x410
[   67.466987][ T3543]  ? read_lock_is_recursive+0x10/0x10
[   67.472400][ T3543]  ? __might_sleep+0xb0/0xb0
[   67.477005][ T3543]  ? __lock_acquire+0x125b/0x1f80
[   67.482056][ T3543]  down_read+0xad/0xa30
[   67.486218][ T3543]  ? ext4_bmap+0x4b/0x410
[   67.490577][ T3543]  ? bit_waitqueue+0x30/0x30
[   67.495383][ T3543]  ? __down_common+0x8b0/0x8b0
[   67.500157][ T3543]  ? jbd2_journal_flush+0x374/0xc40
[   67.505371][ T3543]  ? __lock_acquire+0x1f80/0x1f80
[   67.510464][ T3543]  ? jbd2_cleanup_journal_tail+0x1a7/0x2c0
[   67.516299][ T3543]  ? ext4_journalled_write_end+0xec0/0xec0
[   67.522216][ T3543]  ext4_bmap+0x4b/0x410
[   67.526566][ T3543]  ? ext4_journalled_write_end+0xec0/0xec0
[   67.532429][ T3543]  bmap+0xa1/0xd0
[   67.536076][ T3543]  jbd2_journal_flush+0x5b5/0xc40
[   67.541234][ T3543]  ? jbd2_journal_lock_updates+0x2b0/0x380
[   67.547168][ T3543]  ? stack_trace_save+0x113/0x1c0
[   67.552426][ T3543]  ? __bpf_trace_jbd2_shrink_checkpoint_list+0x50/0x50
[   67.559492][ T3543]  ? bpf_lsm_capable+0x5/0x10
[   67.564205][ T3543]  ? security_capable+0x86/0xb0
[   67.569079][ T3543]  ext4_ioctl+0x3986/0x5f60
[   67.573595][ T3543]  ? kasan_set_track+0x4b/0x70
[   67.578567][ T3543]  ? security_file_ioctl+0x6d/0xa0
[   67.583687][ T3543]  ? __se_sys_ioctl+0x47/0x160
[   67.588491][ T3543]  ? do_syscall_64+0x3b/0xb0
[   67.593232][ T3543]  ? ext4_fileattr_set+0x1770/0x1770
[   67.598948][ T3543]  ? do_vfs_ioctl+0x1ab2/0x2a90
[   67.605184][ T3543]  ? __x64_compat_sys_ioctl+0x80/0x80
[   67.611008][ T3543]  ? __lock_acquire+0x1f80/0x1f80
[   67.616492][ T3543]  ? lockdep_hardirqs_on+0x94/0x130
[   67.622383][ T3543]  ? __kmem_cache_free+0x25c/0x3c0
[   67.628249][ T3543]  ? tomoyo_path_number_perm+0x61b/0x7f0
[   67.633901][ T3543]  ? tomoyo_path_number_perm+0x68a/0x7f0
[   67.640124][ T3543]  ? tomoyo_path_number_perm+0x1f2/0x7f0
[   67.645796][ T3543]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[   67.651605][ T3543]  ? lockdep_hardirqs_on+0x94/0x130
[   67.656837][ T3543]  ? kmem_cache_free+0x292/0x510
[   67.662099][ T3543]  ? do_sys_openat2+0x42b/0x500
[   67.666999][ T3543]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   67.673437][ T3543]  ? print_irqtrace_events+0x210/0x210
[   67.679026][ T3543]  ? print_irqtrace_events+0x210/0x210
[   67.684540][ T3543]  ? bpf_lsm_file_ioctl+0x5/0x10
[   67.689493][ T3543]  ? security_file_ioctl+0x7d/0xa0
[   67.694714][ T3543]  ? ext4_fileattr_set+0x1770/0x1770
[   67.700077][ T3543]  __se_sys_ioctl+0xf1/0x160
[   67.704788][ T3543]  do_syscall_64+0x3b/0xb0
[   67.709256][ T3543]  ? clear_bhb_loop+0x45/0xa0
[   67.714224][ T3543]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   67.720801][ T3543] RIP: 0033:0x7fbc26770369
[   67.725264][ T3543] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   67.744883][ T3543] RSP: 002b:00007fffbecd0b78 EFLAGS: 00000246 ORIG