Warning: Permanently added '10.128.0.89' (ED25519) to the list of known hosts. executing program [ 44.728163][ T3500] loop0: detected capacity change from 0 to 8192 [ 44.738731][ T3500] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 44.748710][ T3500] REISERFS (device loop0): using ordered data mode [ 44.755477][ T3500] reiserfs: using flush barriers [ 44.761831][ T3500] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 44.778537][ T3500] REISERFS (device loop0): checking transaction log (loop0) [ 44.787817][ T3500] REISERFS (device loop0): Using tea hash to sort names [ 44.795758][ T3500] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 44.805986][ T3500] [ 44.808414][ T3500] ====================================================== [ 44.815460][ T3500] WARNING: possible circular locking dependency detected [ 44.822473][ T3500] 5.15.135-syzkaller #0 Not tainted [ 44.827665][ T3500] ------------------------------------------------------ [ 44.834671][ T3500] syz-executor320/3500 is trying to acquire lock: [ 44.841066][ T3500] ffffc900023610f0 (&journal->j_mutex){+.+.}-{3:3}, at: do_journal_begin_r+0x34e/0x1000 [ 44.850802][ T3500] [ 44.850802][ T3500] but task is already holding lock: [ 44.858147][ T3500] ffff888078d70460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0 [ 44.867441][ T3500] [ 44.867441][ T3500] which lock already depends on the new lock. [ 44.867441][ T3500] [ 44.877820][ T3500] [ 44.877820][ T3500] the existing dependency chain (in reverse order) is: [ 44.886810][ T3500] [ 44.886810][ T3500] -> #2 (sb_writers#9){.+.+}-{0:0}: [ 44.894174][ T3500] lock_acquire+0x1db/0x4f0 [ 44.899287][ T3500] sb_start_write+0x4f/0x1c0 [ 44.904465][ T3500] mnt_want_write_file+0x5a/0x1f0 [ 44.910007][ T3500] reiserfs_ioctl+0x170/0x340 [ 44.915189][ T3500] __se_sys_ioctl+0xf1/0x160 [ 44.920383][ T3500] do_syscall_64+0x3d/0xb0 [ 44.925306][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 44.931720][ T3500] [ 44.931720][ T3500] -> #1 (&sbi->lock){+.+.}-{3:3}: [ 44.938923][ T3500] lock_acquire+0x1db/0x4f0 [ 44.943947][ T3500] __mutex_lock_common+0x1da/0x25a0 [ 44.949656][ T3500] mutex_lock_nested+0x17/0x20 [ 44.954920][ T3500] reiserfs_write_lock_nested+0x5b/0xd0 [ 44.960968][ T3500] do_journal_begin_r+0x359/0x1000 [ 44.966581][ T3500] journal_begin+0x148/0x350 [ 44.971671][ T3500] reiserfs_fill_super+0x1812/0x2690 [ 44.977459][ T3500] mount_bdev+0x2c9/0x3f0 [ 44.982297][ T3500] legacy_get_tree+0xeb/0x180 [ 44.987472][ T3500] vfs_get_tree+0x88/0x270 [ 44.992387][ T3500] do_new_mount+0x28b/0xae0 [ 44.997411][ T3500] __se_sys_mount+0x2d5/0x3c0 [ 45.002592][ T3500] do_syscall_64+0x3d/0xb0 [ 45.007515][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 45.013912][ T3500] [ 45.013912][ T3500] -> #0 (&journal->j_mutex){+.+.}-{3:3}: [ 45.021707][ T3500] validate_chain+0x1646/0x58b0 [ 45.027059][ T3500] __lock_acquire+0x1295/0x1ff0 [ 45.032415][ T3500] lock_acquire+0x1db/0x4f0 [ 45.037418][ T3500] __mutex_lock_common+0x1da/0x25a0 [ 45.043132][ T3500] mutex_lock_nested+0x17/0x20 [ 45.048397][ T3500] do_journal_begin_r+0x34e/0x1000 [ 45.054031][ T3500] journal_begin+0x148/0x350 [ 45.059133][ T3500] reiserfs_dirty_inode+0x11c/0x240 [ 45.064837][ T3500] __mark_inode_dirty+0x2fd/0xd60 [ 45.070375][ T3500] reiserfs_ioctl+0x29e/0x340 [ 45.075563][ T3500] __se_sys_ioctl+0xf1/0x160 [ 45.080652][ T3500] do_syscall_64+0x3d/0xb0 [ 45.085571][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 45.091967][ T3500] [ 45.091967][ T3500] other info that might help us debug this: [ 45.091967][ T3500] [ 45.102168][ T3500] Chain exists of: [ 45.102168][ T3500] &journal->j_mutex --> &sbi->lock --> sb_writers#9 [ 45.102168][ T3500] [ 45.114657][ T3500] Possible unsafe locking scenario: [ 45.114657][ T3500] [ 45.122083][ T3500] CPU0 CPU1 [ 45.127425][ T3500] ---- ---- [ 45.132763][ T3500] lock(sb_writers#9); [ 45.136903][ T3500] lock(&sbi->lock); [ 45.143379][ T3500] lock(sb_writers#9); [ 45.150035][ T3500] lock(&journal->j_mutex); [ 45.154608][ T3500] [ 45.154608][ T3500] *** DEADLOCK *** [ 45.154608][ T3500] [ 45.162726][ T3500] 1 lock held by syz-executor320/3500: [ 45.168161][ T3500] #0: ffff888078d70460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0 [ 45.177800][ T3500] [ 45.177800][ T3500] stack backtrace: [ 45.183662][ T3500] CPU: 1 PID: 3500 Comm: syz-executor320 Not tainted 5.15.135-syzkaller #0 [ 45.192224][ T3500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 45.202259][ T3500] Call Trace: [ 45.205532][ T3500] [ 45.208444][ T3500] dump_stack_lvl+0x1e3/0x2cb [ 45.213107][ T3500] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 45.218725][ T3500] ? print_circular_bug+0x12b/0x1a0 [ 45.223908][ T3500] check_noncircular+0x2f8/0x3b0 [ 45.228830][ T3500] ? add_chain_block+0x850/0x850 [ 45.233750][ T3500] ? lockdep_lock+0x11f/0x2a0 [ 45.238417][ T3500] validate_chain+0x1646/0x58b0 [ 45.243248][ T3500] ? unwind_next_frame+0x1437/0x1fa0 [ 45.248522][ T3500] ? __kernel_text_address+0x94/0x100 [ 45.253879][ T3500] ? unwind_get_return_address+0x49/0x80 [ 45.259493][ T3500] ? reacquire_held_locks+0x660/0x660 [ 45.264845][ T3500] ? arch_stack_walk+0xf3/0x140 [ 45.269680][ T3500] ? mark_lock+0x98/0x340 [ 45.273994][ T3500] ? __lock_acquire+0x1295/0x1ff0 [ 45.279003][ T3500] ? mark_lock+0x98/0x340 [ 45.283322][ T3500] __lock_acquire+0x1295/0x1ff0 [ 45.288160][ T3500] lock_acquire+0x1db/0x4f0 [ 45.292648][ T3500] ? do_journal_begin_r+0x34e/0x1000 [ 45.297916][ T3500] ? read_lock_is_recursive+0x10/0x10 [ 45.303267][ T3500] ? __might_sleep+0xc0/0xc0 [ 45.307836][ T3500] ? reiserfs_write_unlock_nested+0xd1/0x120 [ 45.313797][ T3500] ? __lock_acquire+0x1ff0/0x1ff0 [ 45.318802][ T3500] __mutex_lock_common+0x1da/0x25a0 [ 45.323978][ T3500] ? do_journal_begin_r+0x34e/0x1000 [ 45.329241][ T3500] ? do_journal_begin_r+0x34e/0x1000 [ 45.334504][ T3500] ? mutex_unlock+0x10/0x10 [ 45.338988][ T3500] ? mutex_lock_io_nested+0x60/0x60 [ 45.344179][ T3500] ? __lock_acquire+0x1295/0x1ff0 [ 45.349187][ T3500] mutex_lock_nested+0x17/0x20 [ 45.353929][ T3500] do_journal_begin_r+0x34e/0x1000 [ 45.359028][ T3500] ? journal_join_abort+0xe0/0xe0 [ 45.364035][ T3500] ? ktime_get_coarse_real_ts64+0x36/0x120 [ 45.369824][ T3500] ? lockdep_hardirqs_on+0x94/0x130 [ 45.375005][ T3500] journal_begin+0x148/0x350 [ 45.379574][ T3500] reiserfs_dirty_inode+0x11c/0x240 [ 45.384755][ T3500] ? reiserfs_free_inode+0x20/0x20 [ 45.389850][ T3500] ? current_time+0x1d1/0x2f0 [ 45.394519][ T3500] ? reiserfs_free_inode+0x20/0x20 [ 45.399610][ T3500] __mark_inode_dirty+0x2fd/0xd60 [ 45.404611][ T3500] ? __might_fault+0xb4/0x110 [ 45.409268][ T3500] reiserfs_ioctl+0x29e/0x340 [ 45.413929][ T3500] ? reiserfs_unpack+0x5a0/0x5a0 [ 45.418867][ T3500] __se_sys_ioctl+0xf1/0x160 [ 45.423439][ T3500] do_syscall_64+0x3d/0xb0 [ 45.427841][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 45.433718][ T3500] RIP: 0033:0x7fda287a75c9 [ 45.438114][ T3500] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 45.457704][ T3500] RSP: 002b:00007ffe7330b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 45.466123][ T3500] RAX: ffffffffffffffda RBX: 00007ffe7330b218 RCX: 00007fda287a75c9 [ 45.474080][ T3500] RDX: 0000000020000000 RSI: 0000000040087602 RDI: 0000000000000003