Warning: Permanently added '10.128.0.66' (ECDSA) to the list of known hosts. executing program [ 40.732499][ T3584] [ 40.734836][ T3584] ====================================================== [ 40.741828][ T3584] WARNING: possible circular locking dependency detected [ 40.748891][ T3584] 5.15.98-syzkaller #0 Not tainted [ 40.753987][ T3584] ------------------------------------------------------ [ 40.760991][ T3584] syz-executor110/3584 is trying to acquire lock: [ 40.767399][ T3584] ffff88801fc483f0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: ext4_bmap+0x4b/0x410 [ 40.776983][ T3584] [ 40.776983][ T3584] but task is already holding lock: [ 40.784321][ T3584] ffff88814bc363f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x31c/0xc90 [ 40.794905][ T3584] [ 40.794905][ T3584] which lock already depends on the new lock. [ 40.794905][ T3584] [ 40.805286][ T3584] [ 40.805286][ T3584] the existing dependency chain (in reverse order) is: [ 40.814287][ T3584] [ 40.814287][ T3584] -> #3 (&journal->j_checkpoint_mutex){+.+.}-{3:3}: [ 40.823035][ T3584] lock_acquire+0x1f6/0x560 [ 40.828039][ T3584] __mutex_lock_common+0x1da/0x25a0 [ 40.833737][ T3584] mutex_lock_io_nested+0x45/0x60 [ 40.839261][ T3584] jbd2_journal_flush+0x290/0xc90 [ 40.844807][ T3584] ext4_ioctl+0x335b/0x5db0 [ 40.849810][ T3584] __se_sys_ioctl+0xf1/0x160 [ 40.854895][ T3584] do_syscall_64+0x3d/0xb0 [ 40.859809][ T3584] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 40.866199][ T3584] [ 40.866199][ T3584] -> #2 (&journal->j_barrier){+.+.}-{3:3}: [ 40.874162][ T3584] lock_acquire+0x1f6/0x560 [ 40.879163][ T3584] __mutex_lock_common+0x1da/0x25a0 [ 40.884858][ T3584] mutex_lock_nested+0x17/0x20 [ 40.890119][ T3584] jbd2_journal_lock_updates+0x4a9/0x580 [ 40.896268][ T3584] ext4_change_inode_journal_flag+0x1a8/0x6e0 [ 40.902830][ T3584] ext4_fileattr_set+0xe6e/0x17d0 [ 40.908354][ T3584] vfs_fileattr_set+0x8ee/0xd30 [ 40.913701][ T3584] do_vfs_ioctl+0x1d85/0x2b70 [ 40.918877][ T3584] __se_sys_ioctl+0x81/0x160 [ 40.923965][ T3584] do_syscall_64+0x3d/0xb0 [ 40.928880][ T3584] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 40.935267][ T3584] [ 40.935267][ T3584] -> #1 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 40.943675][ T3584] lock_acquire+0x1f6/0x560 [ 40.948676][ T3584] percpu_down_write+0x52/0x2d0 [ 40.954020][ T3584] ext4_ind_migrate+0x254/0x760 [ 40.959384][ T3584] ext4_fileattr_set+0xf13/0x17d0 [ 40.964906][ T3584] vfs_fileattr_set+0x8ee/0xd30 [ 40.970272][ T3584] do_vfs_ioctl+0x1d85/0x2b70 [ 40.975442][ T3584] __se_sys_ioctl+0x81/0x160 [ 40.980526][ T3584] do_syscall_64+0x3d/0xb0 [ 40.985437][ T3584] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 40.991825][ T3584] [ 40.991825][ T3584] -> #0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}: [ 41.000396][ T3584] validate_chain+0x1646/0x58b0 [ 41.005739][ T3584] __lock_acquire+0x1295/0x1ff0 [ 41.011087][ T3584] lock_acquire+0x1f6/0x560 [ 41.016084][ T3584] down_read+0x3b/0x50 [ 41.020651][ T3584] ext4_bmap+0x4b/0x410 [ 41.025305][ T3584] bmap+0xa1/0xd0 [ 41.029439][ T3584] jbd2_journal_flush+0x7a2/0xc90 [ 41.034960][ T3584] ext4_ioctl+0x335b/0x5db0 [ 41.039964][ T3584] __se_sys_ioctl+0xf1/0x160 [ 41.045051][ T3584] do_syscall_64+0x3d/0xb0 [ 41.049960][ T3584] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 41.056350][ T3584] [ 41.056350][ T3584] other info that might help us debug this: [ 41.056350][ T3584] [ 41.066569][ T3584] Chain exists of: [ 41.066569][ T3584] &sb->s_type->i_mutex_key#9 --> &journal->j_barrier --> &journal->j_checkpoint_mutex [ 41.066569][ T3584] [ 41.082002][ T3584] Possible unsafe locking scenario: [ 41.082002][ T3584] [ 41.089424][ T3584] CPU0 CPU1 [ 41.094763][ T3584] ---- ---- [ 41.100104][ T3584] lock(&journal->j_checkpoint_mutex); [ 41.105639][ T3584] lock(&journal->j_barrier); [ 41.112894][ T3584] lock(&journal->j_checkpoint_mutex); [ 41.120931][ T3584] lock(&sb->s_type->i_mutex_key#9); [ 41.126280][ T3584] [ 41.126280][ T3584] *** DEADLOCK *** [ 41.126280][ T3584] [ 41.134395][ T3584] 2 locks held by syz-executor110/3584: [ 41.139909][ T3584] #0: ffff88814bc36170 (&journal->j_barrier){+.+.}-{3:3}, at: jbd2_journal_lock_updates+0x4a9/0x580 [ 41.150749][ T3584] #1: ffff88814bc363f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: jbd2_journal_flush+0x31c/0xc90 [ 41.161759][ T3584] [ 41.161759][ T3584] stack backtrace: [ 41.167618][ T3584] CPU: 1 PID: 3584 Comm: syz-executor110 Not tainted 5.15.98-syzkaller #0 [ 41.176093][ T3584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 41.186120][ T3584] Call Trace: [ 41.189376][ T3584] [ 41.192288][ T3584] dump_stack_lvl+0x1e3/0x2cb [ 41.196948][ T3584] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 41.202558][ T3584] ? print_circular_bug+0x12b/0x1a0 [ 41.207731][ T3584] check_noncircular+0x2f8/0x3b0 [ 41.212645][ T3584] ? mark_lock+0x98/0x340 [ 41.216953][ T3584] ? add_chain_block+0x850/0x850 [ 41.221879][ T3584] ? lockdep_lock+0x11f/0x2a0 [ 41.226532][ T3584] ? do_raw_spin_unlock+0x137/0x8b0 [ 41.231703][ T3584] ? finish_lock_switch+0x8f/0x100 [ 41.236790][ T3584] validate_chain+0x1646/0x58b0 [ 41.241618][ T3584] ? reacquire_held_locks+0x660/0x660 [ 41.246963][ T3584] ? reacquire_held_locks+0x660/0x660 [ 41.252317][ T3584] ? __sched_text_start+0x8/0x8 [ 41.257142][ T3584] ? do_raw_spin_unlock+0x137/0x8b0 [ 41.262315][ T3584] ? _raw_spin_unlock_irqrestore+0x8b/0x130 [ 41.268182][ T3584] ? mark_lock+0x98/0x340 [ 41.272497][ T3584] __lock_acquire+0x1295/0x1ff0 [ 41.277329][ T3584] lock_acquire+0x1f6/0x560 [ 41.282500][ T3584] ? ext4_bmap+0x4b/0x410 [ 41.286825][ T3584] ? read_lock_is_recursive+0x10/0x10 [ 41.292173][ T3584] ? __might_sleep+0xc0/0xc0 [ 41.296737][ T3584] ? jbd2_journal_flush+0x37b/0xc90 [ 41.301916][ T3584] ? __lock_acquire+0x1ff0/0x1ff0 [ 41.306931][ T3584] ? jbd2_cleanup_journal_tail+0x1a7/0x2c0 [ 41.312734][ T3584] ? ext4_journalled_write_end+0xfa0/0xfa0 [ 41.318522][ T3584] down_read+0x3b/0x50 [ 41.322568][ T3584] ? ext4_bmap+0x4b/0x410 [ 41.326891][ T3584] ext4_bmap+0x4b/0x410 [ 41.331026][ T3584] ? ext4_journalled_write_end+0xfa0/0xfa0 [ 41.336808][ T3584] bmap+0xa1/0xd0 [ 41.340419][ T3584] jbd2_journal_flush+0x7a2/0xc90 [ 41.345425][ T3584] ? mutex_lock_nested+0x17/0x20 [ 41.350343][ T3584] ? __bpf_trace_jbd2_shrink_checkpoint_list+0x50/0x50 [ 41.357167][ T3584] ? bpf_lsm_capable+0x5/0x10 [ 41.361821][ T3584] ? security_capable+0x86/0xb0 [ 41.366649][ T3584] ext4_ioctl+0x335b/0x5db0 [ 41.371130][ T3584] ? print_irqtrace_events+0x210/0x210 [ 41.376570][ T3584] ? do_vfs_ioctl+0x1b66/0x2b70 [ 41.381397][ T3584] ? ext4_fileattr_set+0x17d0/0x17d0 [ 41.386655][ T3584] ? rcu_lock_release+0x5/0x20 [ 41.391392][ T3584] ? __x64_compat_sys_ioctl+0x80/0x80 [ 41.396741][ T3584] ? __lock_acquire+0x1ff0/0x1ff0 [ 41.401742][ T3584] ? slab_free_freelist_hook+0xdd/0x160 [ 41.407280][ T3584] ? tomoyo_path_number_perm+0x648/0x810 [ 41.412893][ T3584] ? kfree+0x10c/0x2d0 [ 41.416936][ T3584] ? tomoyo_path_number_perm+0x6ab/0x810 [ 41.422556][ T3584] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 41.427997][ T3584] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 41.433954][ T3584] ? print_irqtrace_events+0x210/0x210 [ 41.439390][ T3584] ? vtime_user_exit+0x2d1/0x400 [ 41.444309][ T3584] ? bpf_lsm_file_ioctl+0x5/0x10 [ 41.449238][ T3584] ? security_file_ioctl+0x7d/0xa0 [ 41.454325][ T3584] ? ext4_fileattr_set+0x17d0/0x17d0 [ 41.459585][ T3584] __se_sys_ioctl+0xf1/0x160 [ 41.464155][ T3584] do_syscall_64+0x3d/0xb0 [ 41.468551][ T3584] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 41.474438][ T3584] RIP: 0033:0x7fde8a715059 [ 41.478831][ T3584] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 41.498413][ T3584] RSP: 002b:00007ffdeeab1ef8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 41.506803][ T3584] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fde8a715059 [ 41.514749][ T3584] RDX: 0000000020000700 RSI: 000000004004662b RDI: 0000000000000004 [ 41.522695][ T3584] RBP: 00007fde8a6d9040 R08: 0000000000000000 R09: 0000000000000000 [ 41.530640][ T3584] R10: 0000000000000000 R11: 0000000000000