Warning: Permanently added '[localhost]:25571' (ED25519) to the list of known hosts. executing program [ 77.741661][ T5315] loop0: detected capacity change from 0 to 32768 [ 77.761458][ T5315] (syz-executor226,5315,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 77.780679][ T5315] (syz-executor226,5315,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 77.803230][ T5315] JBD2: Ignoring recovery information on journal [ 77.832722][ T5315] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 77.844875][ T5315] syz-executor226 (5315) used greatest stack depth: 19632 bytes left [ 77.848036][ T55] ocfs2: Finishing quota recovery on device (7,0) for slot 0 [ 77.862389][ T5314] [ 77.863673][ T5314] ====================================================== [ 77.866460][ T5314] WARNING: possible circular locking dependency detected [ 77.869329][ T5314] 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0 Not tainted [ 77.872846][ T5314] ------------------------------------------------------ [ 77.875638][ T5314] syz-executor226/5314 is trying to acquire lock: [ 77.878557][ T5314] ffff888033f36148 ((wq_completion)ocfs2_wq){+.+.}-{0:0}, at: touch_wq_lockdep_map+0xb1/0x170 [ 77.883704][ T5314] [ 77.883704][ T5314] but task is already holding lock: [ 77.886495][ T5314] ffff888040fce0e0 (&type->s_umount_key#42){++++}-{4:4}, at: deactivate_super+0xb5/0xf0 [ 77.890315][ T5314] [ 77.890315][ T5314] which lock already depends on the new lock. [ 77.890315][ T5314] [ 77.894072][ T5314] [ 77.894072][ T5314] the existing dependency chain (in reverse order) is: [ 77.897256][ T5314] [ 77.897256][ T5314] -> #2 (&type->s_umount_key#42){++++}-{4:4}: [ 77.900721][ T5314] lock_acquire+0x1ed/0x550 [ 77.903030][ T5314] down_read+0xb1/0xa40 [ 77.905103][ T5314] ocfs2_finish_quota_recovery+0x15c/0x22a0 [ 77.907530][ T5314] ocfs2_complete_recovery+0x17c1/0x25c0 [ 77.909850][ T5314] process_scheduled_works+0xabe/0x18e0 [ 77.912229][ T5314] worker_thread+0x870/0xd30 [ 77.914161][ T5314] kthread+0x7a9/0x920 [ 77.915883][ T5314] ret_from_fork+0x4b/0x80 [ 77.917877][ T5314] ret_from_fork_asm+0x1a/0x30 [ 77.920306][ T5314] [ 77.920306][ T5314] -> #1 ((work_completion)(&journal->j_recovery_work)){+.+.}-{0:0}: [ 77.924288][ T5314] lock_acquire+0x1ed/0x550 [ 77.926134][ T5314] process_scheduled_works+0x9e4/0x18e0 [ 77.928739][ T5314] worker_thread+0x870/0xd30 [ 77.930851][ T5314] kthread+0x7a9/0x920 [ 77.932883][ T5314] ret_from_fork+0x4b/0x80 [ 77.935047][ T5314] ret_from_fork_asm+0x1a/0x30 [ 77.937898][ T5314] [ 77.937898][ T5314] -> #0 ((wq_completion)ocfs2_wq){+.+.}-{0:0}: [ 77.942165][ T5314] validate_chain+0x18ef/0x5920 [ 77.944369][ T5314] __lock_acquire+0x1397/0x2100 [ 77.946250][ T5314] lock_acquire+0x1ed/0x550 [ 77.947921][ T5314] touch_wq_lockdep_map+0xc7/0x170 [ 77.949719][ T5314] __flush_workqueue+0x14a/0x1280 [ 77.951475][ T5314] ocfs2_shutdown_local_alloc+0x109/0xa90 [ 77.953814][ T5314] ocfs2_dismount_volume+0x202/0x910 [ 77.956489][ T5314] generic_shutdown_super+0x139/0x2d0 [ 77.959204][ T5314] kill_block_super+0x44/0x90 [ 77.961818][ T5314] deactivate_locked_super+0xc4/0x130 [ 77.964256][ T5314] cleanup_mnt+0x41f/0x4b0 [ 77.966077][ T5314] task_work_run+0x24f/0x310 [ 77.968037][ T5314] syscall_exit_to_user_mode+0x13f/0x340 [ 77.970542][ T5314] do_syscall_64+0x100/0x230 [ 77.972570][ T5314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.975344][ T5314] [ 77.975344][ T5314] other info that might help us debug this: [ 77.975344][ T5314] [ 77.980070][ T5314] Chain exists of: [ 77.980070][ T5314] (wq_completion)ocfs2_wq --> (work_completion)(&journal->j_recovery_work) --> &type->s_umount_key#42 [ 77.980070][ T5314] [ 77.986192][ T5314] Possible unsafe locking scenario: [ 77.986192][ T5314] [ 77.989168][ T5314] CPU0 CPU1 [ 77.991234][ T5314] ---- ---- [ 77.993234][ T5314] lock(&type->s_umount_key#42); [ 77.995059][ T5314] lock((work_completion)(&journal->j_recovery_work)); [ 77.998700][ T5314] lock(&type->s_umount_key#42); [ 78.001520][ T5314] lock((wq_completion)ocfs2_wq); [ 78.003406][ T5314] [ 78.003406][ T5314] *** DEADLOCK *** [ 78.003406][ T5314] [ 78.006465][ T5314] 1 lock held by syz-executor226/5314: [ 78.008567][ T5314] #0: ffff888040fce0e0 (&type->s_umount_key#42){++++}-{4:4}, at: deactivate_super+0xb5/0xf0 [ 78.012804][ T5314] [ 78.012804][ T5314] stack backtrace: [ 78.015368][ T5314] CPU: 0 UID: 0 PID: 5314 Comm: syz-executor226 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0 [ 78.015388][ T5314] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 78.015396][ T5314] Call Trace: [ 78.015402][ T5314] [ 78.015407][ T5314] dump_stack_lvl+0x241/0x360 [ 78.015422][ T5314] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.015430][ T5314] ? __pfx__printk+0x10/0x10 [ 78.015440][ T5314] print_circular_bug+0x13a/0x1b0 [ 78.015450][ T5314] check_noncircular+0x36a/0x4a0 [ 78.015458][ T5314] ? __lock_acquire+0x1397/0x2100 [ 78.015471][ T5314] ? __pfx_check_noncircular+0x10/0x10 [ 78.015480][ T5314] ? lockdep_lock+0x123/0x2b0 [ 78.015493][ T5314] ? mark_lock+0x9a/0x360 [ 78.015501][ T5314] validate_chain+0x18ef/0x5920 [ 78.015513][ T5314] ? __pfx_validate_chain+0x10/0x10 [ 78.015525][ T5314] ? debug_object_assert_init+0x2dd/0x4b0 [ 78.015537][ T5314] ? do_raw_spin_lock+0x14f/0x370 [ 78.015546][ T5314] ? __pfx_lock_release+0x10/0x10 [ 78.015588][ T5314] ? mark_lock+0x9a/0x360 [ 78.015601][ T5314] __lock_acquire+0x1397/0x2100 [ 78.015614][ T5314] ? kfree+0x196/0x430 [ 78.015630][ T5314] ? ocfs2_dismount_volume+0x1bd/0x910 [ 78.015647][ T5314] lock_acquire+0x1ed/0x550 [ 78.015665][ T5314] ? touch_wq_lockdep_map+0xb1/0x170 [ 78.015686][ T5314] ? __pfx_lock_acquire+0x10/0x10 [ 78.015697][ T5314] ? __asan_memset+0x23/0x50 [ 78.015706][ T5314] ? lockdep_init_map_type+0xa1/0x910 [ 78.015720][ T5314] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 78.015733][ T5314] ? __lock_acquire+0x1397/0x2100 [ 78.015755][ T5314] ? touch_wq_lockdep_map+0xb1/0x170 [ 78.015768][ T5314] touch_wq_lockdep_map+0xc7/0x170 [ 78.015780][ T5314] ? touch_wq_lockdep_map+0xb1/0x170 [ 78.015788][ T5314] __flush_workqueue+0x14a/0x1280 [ 78.015796][ T5314] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 78.015806][ T5314] ? __pfx___flush_workqueue+0x10/0x10 [ 78.015816][ T5314] ? mark_lock+0x9a/0x360 [ 78.015821][ T5314] ocfs2_shutdown_local_alloc+0x109/0xa90 [ 78.015830][ T5314] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.015839][ T5314] ? __pfx_ocfs2_shutdown_local_alloc+0x10/0x10 [ 78.015845][ T5314] ? lockdep_hardirqs_on+0x99/0x150 [ 78.015854][ T5314] ? enable_work+0x2e3/0x360 [ 78.015862][ T5314] ? __pfx_enable_work+0x10/0x10 [ 78.015871][ T5314] ? _atomic_dec_and_lock+0x9a/0x130 [ 78.015880][ T5314] ? iput+0x3be/0xa50 [ 78.015889][ T5314] ocfs2_dismount_volume+0x202/0x910 [ 78.015896][ T5314] ? __pfx_ocfs2_dismount_volume+0x10/0x10 [ 78.015902][ T5314] ? __pfx_evict_inodes+0x10/0x10 [ 78.015910][ T5314] ? __pfx_ocfs2_put_super+0x10/0x10 [ 78.015917][ T5314] generic_shutdown_super+0x139/0x2d0 [ 78.015928][ T5314] kill_block_super+0x44/0x90 [ 78.015935][ T5314] deactivate_locked_super+0xc4/0x130 [ 78.015944][ T5314] cleanup_mnt+0x41f/0x4b0 [ 78.015955][ T5314] ? lockdep_hardirqs_on+0x99/0x150 [ 78.015962][ T5314] task_work_run+0x24f/0x310 [ 78.015974][ T5314] ? __pfx_task_work_run+0x10/0x10 [ 78.015982][ T5314] ? __x64_sys_umount+0x123/0x170 [ 78.015993][ T5314] ? syscall_exit_to_user_mode+0xa3/0x340 [ 78.016005][ T5314] syscall_exit_to_user_mode+0x13f/0x340 [ 78.016015][ T5314] do_syscall_64+0x100/0x230 [ 78.016028][ T5314] ? clear_bhb_loop+0x35/0x90 [ 78.016042][ T5314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.016054][ T5314] RIP: 0033:0x7fdb76bd1487 [ 78.016066][ T5314] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 [ 78.016075][ T5314] RSP: 002b:00007ffe33cd5248 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6 [ 78.016086][ T5314] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fdb76bd1487 [ 78.016090][ T5314] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe33cd5300 [ 78.016094][ T5314] RBP: 00007ffe33cd5300 R08: 0000000000000000 R09: 0000000000000000 [ 78.016099][ T5314] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffe33cd6370 [ 78.016106][ T5314] R13: 00005555665626c0 R14: 0000000000000001 R15: 431bde82d7b634db [ 78.016114][ T5314] [ 86.936793][ T9] cfg80211: failed to load regulatory.db VM DIAGNOSIS: 20:15:52 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000061 RBX=ffffffff9a9960a0 RCX=0000000000000000 RDX=00000000000003f8 RSI=0000000000000000 RDI=0000000000000020 RBP=0000000000000000 RSP=ffffc9000d21ea70 R8 =ffffffff8583d80b R9 =1ffff11003df5046 R10=dffffc0000000000 R11=ffffffff8583d7c0 R12=dffffc0000000000 R13=0000000000000061 R14=0000000000000061 R15=00000000000003f8 RIP=ffffffff8583d83e RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555566561380 ffffffff 00c00000 GS =0000 ffff88801fc00000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffe33cd4fe8 CR3=0000000043eaa000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000001 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=00000000fffeffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000001f7011641 00000001db710641 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f90e7ab200000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 826acb7ca74c9f7d ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1b5b36d1224e13b0 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 20a048dd31febea2 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a6874706564206b 6361747320747365 7461657267206465 7375202934393600 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3062747065642061 6361747320747365 7461657267206465 7375202334333600 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 202c3833302e3320 2020204b34303900 2937202c72656220 4b2d303732203120 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2026382030203120 20202026202c3300 20372026204b3420 392d30202c203120 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e7d782a413b3b3c 32382a266f6e6569 2a666f64786f612a 41333a3a3b323b22 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a266e6f7c786f79 6f782a413e3a333b 323d2a267979682a 413a3a3d38383b2a ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000