./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor318233651

<...>
Warning: Permanently added '10.128.0.209' (ED25519) to the list of known hosts.
execve("./syz-executor318233651", ["./syz-executor318233651"], 0x7ffc92c36b00 /* 10 vars */) = 0
brk(NULL)                               = 0x55557d52f000
brk(0x55557d52fd00)                     = 0x55557d52fd00
arch_prctl(ARCH_SET_FS, 0x55557d52f380) = 0
set_tid_address(0x55557d52f650)         = 5825
set_robust_list(0x55557d52f660, 24)     = 0
rseq(0x55557d52fca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor318233651", 4096) = 27
getrandom("\x5e\x32\xf0\x21\x06\x9f\xaa\x41", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55557d52fd00
brk(0x55557d550d00)                     = 0x55557d550d00
brk(0x55557d551000)                     = 0x55557d551000
mprotect(0x7f53ebaff000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5826 attached
 <unfinished ...>
[pid  5826] set_robust_list(0x55557d52f660, 24 <unfinished ...>
[pid  5825] <... clone resumed>, child_tidptr=0x55557d52f650) = 5826
[pid  5826] <... set_robust_list resumed>) = 0
[pid  5826] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5826] getppid()                   = 0
[pid  5826] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5826] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5826] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5826] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5826] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5826] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5826] unshare(CLONE_NEWNS)        = 0
[pid  5826] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5826] unshare(CLONE_NEWIPC)       = 0
[pid  5826] unshare(CLONE_NEWCGROUP)    = 0
[pid  5826] unshare(CLONE_NEWUTS)       = 0
[pid  5826] unshare(CLONE_SYSVSEM)      = 0
[pid  5826] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5826] write(3, "16777216", 8)     = 8
[pid  5826] close(3)                    = 0
[pid  5826] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5826] write(3, "536870912", 9)    = 9
[pid  5826] close(3)                    = 0
[pid  5826] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5826] write(3, "1024", 4)         = 4
[pid  5826] close(3)                    = 0
[pid  5826] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5826] write(3, "8192", 4)         = 4
[pid  5826] close(3)                    = 0
[pid  5826] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5826] write(3, "1024", 4)         = 4
[pid  5826] close(3)                    = 0
[pid  5826] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5826] write(3, "1024", 4)         = 4
[pid  5826] close(3)                    = 0
[pid  5826] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5826] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5826] close(3)                    = 0
[pid  5826] getpid()                    = 1
[pid  5826] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5826] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5826] unshare(CLONE_NEWNET)       = 0
[pid  5826] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5826] write(3, "0 65535", 7)      = 7
[pid  5826] close(3)                    = 0
[pid  5826] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3
[pid  5826] write(3, "100000", 6)       = 6
[pid  5826] close(3)                    = 0
[pid  5826] mkdir("./syz-tmp", 0777)    = 0
[pid  5826] mount("", "./syz-tmp", "tmpfs", 0, NULL) = 0
[pid  5826] mkdir("./syz-tmp/newroot", 0777) = 0
[pid  5826] mkdir("./syz-tmp/newroot/dev", 0700) = 0
[pid  5826] mount("/dev", "./syz-tmp/newroot/dev", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5826] mkdir("./syz-tmp/newroot/proc", 0700) = 0
[pid  5826] mount("syz-proc", "./syz-tmp/newroot/proc", "proc", 0, NULL) = 0
[pid  5826] mkdir("./syz-tmp/newroot/selinux", 0700) = 0
[pid  5826] mount("/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5826] mount("/sys/fs/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5826] mkdir("./syz-tmp/newroot/sys", 0700) = 0
[pid  5826] mount("/sys", "./syz-tmp/newroot/sys", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5826] mount("/sys/kernel/debug", "./syz-tmp/newroot/sys/kernel/debug", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5826] mount("/sys/fs/smackfs", "./syz-tmp/newroot/sys/fs/smackfs", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5826] mount("/proc/sys/fs/binfmt_misc", "./syz-tmp/newroot/proc/sys/fs/binfmt_misc", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5826] mkdir("./syz-tmp/newroot/syz-inputs", 0700) = 0
[pid  5826] mount("/syz-inputs", "./syz-tmp/newroot/syz-inputs", NULL, MS_RDONLY|MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5826] mkdir("./syz-tmp/pivot", 0777) = 0
[pid  5826] pivot_root("./syz-tmp", "./syz-tmp/pivot") = 0
[pid  5826] chdir("/")                  = 0
[pid  5826] umount2("./pivot", MNT_DETACH) = 0
[pid  5826] chroot("./newroot")         = 0
[pid  5826] chdir("/")                  = 0
[pid  5826] mkdir("/dev/gadgetfs", 0777) = 0
[pid  5826] mount("gadgetfs", "/dev/gadgetfs", "gadgetfs", 0, NULL) = 0
[pid  5826] mkdir("/dev/binderfs", 0777) = 0
[pid  5826] mount("binder", "/dev/binderfs", "binder", 0, NULL) = -1 ENODEV (No such device)
[pid  5826] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5826] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
executing program
[pid  5826] write(1, "executing program\n", 18) = 18
[pid  5826] memfd_create("syzkaller", 0) = 3
[pid  5826] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f53e3600000
[pid  5826] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  5826] munmap(0x7f53e3600000, 138412032) = 0
[pid  5826] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5826] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5826] close(3)                    = 0
[pid  5826] close(4)                    = 0
[pid  5826] mkdir("./bus", 0777)        = 0
[pid  5826] mount("/dev/loop0", "./bus", "nilfs2", MS_NOSUID, "") = 0
[pid  5826] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[   83.645984][ T5826] loop0: detected capacity change from 0 to 2048
[pid  5826] chdir("./bus")              = 0
[pid  5826] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5826] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 4
[pid  5826] mmap(0x200000000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSUP|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_NONBLOCK|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 4, 0) = 0x200000000000
[   83.692279][ T5830] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[pid  5826] ppoll(NULL, 0, {tv_sec=0, tv_nsec=60000000}, NULL, 0) = 0 (Timeout)
[pid  5826] exit_group(1)               = ?
[   83.865950][ T5830] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[   83.876860][ T5830] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4)
[   83.886422][ T5830] 
[   83.888751][ T5830] ======================================================
[   83.895762][ T5830] WARNING: possible circular locking dependency detected
[   83.902772][ T5830] 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 Not tainted
[   83.909871][ T5830] ------------------------------------------------------
[   83.916876][ T5830] segctord/5830 is trying to acquire lock:
[   83.922666][ T5830] ffff888032cc8090 (&nilfs->ns_sem){++++}-{4:4}, at: __nilfs_error+0x1ca/0x4b0
[   83.931651][ T5830] 
[   83.931651][ T5830] but task is already holding lock:
[   83.938995][ T5830] ffff888032cc82a0 (&nilfs->ns_segctor_sem){++++}-{4:4}, at: nilfs_transaction_lock+0x253/0x4c0
[   83.949455][ T5830] 
[   83.949455][ T5830] which lock already depends on the new lock.
[   83.949455][ T5830] 
[   83.959842][ T5830] 
[   83.959842][ T5830] the existing dependency chain (in reverse order) is:
[   83.968856][ T5830] 
[   83.968856][ T5830] -> #6 (&nilfs->ns_segctor_sem){++++}-{4:4}:
[   83.977131][ T5830]        lock_acquire+0x120/0x360
[   83.982160][ T5830]        down_read+0x46/0x2e0
[   83.986838][ T5830]        nilfs_transaction_begin+0x365/0x710
[   83.992818][ T5830]        nilfs_page_mkwrite+0x8b0/0xc20
[   83.998358][ T5830]        do_page_mkwrite+0x14d/0x310
[   84.003657][ T5830]        do_wp_page+0x2626/0x5760
[   84.008675][ T5830]        __handle_mm_fault+0x1028/0x5380
[   84.014309][ T5830]        handle_mm_fault+0x3f6/0x8c0
[   84.019594][ T5830]        do_user_addr_fault+0xa81/0x1390
[   84.025217][ T5830]        exc_page_fault+0x68/0x110
[   84.030317][ T5830]        asm_exc_page_fault+0x26/0x30
[   84.035685][ T5830] 
[   84.035685][ T5830] -> #5 (sb_internal#2){.+.+}-{0:0}:
[   84.043181][ T5830]        lock_acquire+0x120/0x360
[   84.048209][ T5830]        nilfs_transaction_begin+0x268/0x710
[   84.054188][ T5830]        nilfs_page_mkwrite+0x8b0/0xc20
[   84.059728][ T5830]        do_page_mkwrite+0x14d/0x310
[   84.065012][ T5830]        do_wp_page+0x2626/0x5760
[   84.070034][ T5830]        __handle_mm_fault+0x1028/0x5380
[   84.075662][ T5830]        handle_mm_fault+0x3f6/0x8c0
[   84.080941][ T5830]        do_user_addr_fault+0xa81/0x1390
[   84.086565][ T5830]        exc_page_fault+0x68/0x110
[   84.091685][ T5830]        asm_exc_page_fault+0x26/0x30
[   84.097048][ T5830] 
[   84.097048][ T5830] -> #4 (sb_pagefaults){.+.+}-{0:0}:
[   84.104527][ T5830]        lock_acquire+0x120/0x360
[   84.109553][ T5830]        nilfs_page_mkwrite+0x21e/0xc20
[   84.115092][ T5830]        do_page_mkwrite+0x14d/0x310
[   84.120377][ T5830]        do_wp_page+0x2626/0x5760
[   84.125392][ T5830]        __handle_mm_fault+0x1028/0x5380
[   84.131019][ T5830]        handle_mm_fault+0x3f6/0x8c0
[   84.136305][ T5830]        do_user_addr_fault+0xa81/0x1390
[   84.141959][ T5830]        exc_page_fault+0x68/0x110
[   84.147059][ T5830]        asm_exc_page_fault+0x26/0x30
[   84.152422][ T5830] 
[   84.152422][ T5830] -> #3 (vm_lock){++++}-{0:0}:
[   84.159378][ T5830]        lock_acquire+0x120/0x360
[   84.164403][ T5830]        __vma_enter_locked+0x182/0x380
[   84.169945][ T5830]        __vma_start_write+0x1e/0x120
[   84.175316][ T5830]        mprotect_fixup+0x571/0x9b0
[   84.180521][ T5830]        setup_arg_pages+0x53a/0xaa0
[   84.185796][ T5830]        load_elf_binary+0xb7a/0x27b0
[   84.191165][ T5830]        bprm_execve+0x99c/0x1440
[   84.196190][ T5830]        kernel_execve+0x8f0/0x9f0
[   84.201293][ T5830]        try_to_run_init_process+0x13/0x60
[   84.207096][ T5830]        kernel_init+0xad/0x1d0
[   84.211945][ T5830]        ret_from_fork+0x4e/0x80
[   84.216879][ T5830]        ret_from_fork_asm+0x1a/0x30
[   84.222153][ T5830] 
[   84.222153][ T5830] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[   84.229719][ T5830]        lock_acquire+0x120/0x360
[   84.234744][ T5830]        __might_fault+0xcc/0x130
[   84.239769][ T5830]        _copy_to_iter+0xf3/0x15a0
[   84.244888][ T5830]        copy_page_to_iter+0xa7/0x150
[   84.250260][ T5830]        filemap_read+0x78d/0x11d0
[   84.255362][ T5830]        blkdev_read_iter+0x30a/0x440
[   84.260733][ T5830]        vfs_read+0x4d0/0x980
[   84.265401][ T5830]        ksys_read+0x145/0x250
[   84.270155][ T5830]        do_syscall_64+0xf6/0x210
[   84.275170][ T5830]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.281576][ T5830] 
[   84.281576][ T5830] -> #1 (&sb->s_type->i_mutex_key#8){++++}-{4:4}:
[   84.290191][ T5830]        lock_acquire+0x120/0x360
[   84.295213][ T5830]        down_write+0x96/0x1f0
[   84.299970][ T5830]        set_blocksize+0x23b/0x500
[   84.305074][ T5830]        sb_min_blocksize+0x119/0x210
[   84.310439][ T5830]        init_nilfs+0x43/0x690
[   84.315203][ T5830]        nilfs_fill_super+0x8f/0x650
[   84.320486][ T5830]        nilfs_get_tree+0x4f4/0x870
[   84.325679][ T5830]        vfs_get_tree+0x92/0x2b0
[   84.330609][ T5830]        do_new_mount+0x24a/0xa40
[   84.335628][ T5830]        __se_sys_mount+0x317/0x410
[   84.340823][ T5830]        do_syscall_64+0xf6/0x210
[   84.345840][ T5830]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.352249][ T5830] 
[   84.352249][ T5830] -> #0 (&nilfs->ns_sem){++++}-{4:4}:
[   84.359816][ T5830]        validate_chain+0xb9b/0x2140
[   84.365089][ T5830]        __lock_acquire+0xaac/0xd20
[   84.370286][ T5830]        lock_acquire+0x120/0x360
[   84.375306][ T5830]        down_write+0x96/0x1f0
[   84.380065][ T5830]        __nilfs_error+0x1ca/0x4b0
[   84.385164][ T5830]        nilfs_bmap_propagate+0x108/0x130
[   84.390878][ T5830]        nilfs_collect_file_data+0x4f/0xd0
[   84.396685][ T5830]        nilfs_segctor_apply_buffers+0x164/0x330
[   84.403015][ T5830]        nilfs_segctor_scan_file+0x68e/0x8e0
[   84.408994][ T5830]        nilfs_segctor_do_construct+0x1d46/0x6970
[   84.415404][ T5830]        nilfs_segctor_construct+0x17b/0x690
[   84.421379][ T5830]        nilfs_segctor_thread+0x6f7/0xe00
[   84.427093][ T5830]        kthread+0x711/0x8a0
[   84.431681][ T5830]        ret_from_fork+0x4e/0x80
[   84.436617][ T5830]        ret_from_fork_asm+0x1a/0x30
[   84.441917][ T5830] 
[   84.441917][ T5830] other info that might help us debug this:
[   84.441917][ T5830] 
[   84.452133][ T5830] Chain exists of:
[   84.452133][ T5830]   &nilfs->ns_sem --> sb_internal#2 --> &nilfs->ns_segctor_sem
[   84.452133][ T5830] 
[   84.465588][ T5830]  Possible unsafe locking scenario:
[   84.465588][ T5830] 
[   84.473019][ T5830]        CPU0                    CPU1
[   84.478376][ T5830]        ----                    ----
[   84.483734][ T5830]   lock(&nilfs->ns_segctor_sem);
[   84.488759][ T5830]                                lock(sb_internal#2);
[   84.495564][ T5830]                                lock(&nilfs->ns_segctor_sem);
[   84.503105][ T5830]   lock(&nilfs->ns_sem);
[   84.507431][ T5830] 
[   84.507431][ T5830]  *** DEADLOCK ***
[   84.507431][ T5830] 
[   84.515561][ T5830] 1 lock held by segctord/5830:
[   84.520397][ T5830]  #0: ffff888032cc82a0 (&nilfs->ns_segctor_sem){++++}-{4:4}, at: nilfs_transaction_lock+0x253/0x4c0
[   84.531293][ T5830] 
[   84.531293][ T5830] stack backtrace:
[   84.537170][ T5830] CPU: 1 UID: 0 PID: 5830 Comm: segctord Not tainted 6.15.0-rc3-syzkaller-00283-gf1a3944c860b #0 PREEMPT(full) 
[   84.537195][ T5830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   84.537208][ T5830] Call Trace:
[   84.537218][ T5830]  <TASK>
[   84.537227][ T5830]  dump_stack_lvl+0x189/0x250
[   84.537262][ T5830]  ? __pfx_dump_stack_lvl+0x10/0x10
[   84.537292][ T5830]  ? __pfx__printk+0x10/0x10
[   84.537314][ T5830]  ? print_lock_name+0xde/0x100
[   84.537349][ T5830]  print_circular_bug+0x2ee/0x310
[   84.537373][ T5830]  check_noncircular+0x134/0x160
[   84.537396][ T5830]  validate_chain+0xb9b/0x2140
[   84.537417][ T5830]  ? __irq_work_queue_local+0x13a/0x3e0
[   84.537445][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.537469][ T5830]  ? irq_work_queue+0xbc/0x140
[   84.537497][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.537524][ T5830]  __lock_acquire+0xaac/0xd20
[   84.537556][ T5830]  ? __nilfs_error+0x1ca/0x4b0
[   84.537573][ T5830]  lock_acquire+0x120/0x360
[   84.537600][ T5830]  ? __nilfs_error+0x1ca/0x4b0
[   84.537621][ T5830]  ? _printk+0xcf/0x120
[   84.537643][ T5830]  down_write+0x96/0x1f0
[   84.537667][ T5830]  ? __nilfs_error+0x1ca/0x4b0
[   84.537685][ T5830]  ? __pfx_down_write+0x10/0x10
[   84.537709][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.537737][ T5830]  __nilfs_error+0x1ca/0x4b0
[   84.537759][ T5830]  ? __pfx___nilfs_error+0x10/0x10
[   84.537778][ T5830]  ? nilfs_bmap_propagate+0x84/0x130
[   84.537802][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.537830][ T5830]  nilfs_bmap_propagate+0x108/0x130
[   84.537853][ T5830]  nilfs_collect_file_data+0x4f/0xd0
[   84.537889][ T5830]  nilfs_segctor_apply_buffers+0x164/0x330
[   84.537920][ T5830]  ? __pfx_nilfs_collect_file_data+0x10/0x10
[   84.537950][ T5830]  nilfs_segctor_scan_file+0x68e/0x8e0
[   84.537982][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538006][ T5830]  ? reacquire_held_locks+0x127/0x1d0
[   84.538024][ T5830]  ? __mark_inode_dirty+0x4a6/0xdf0
[   84.538056][ T5830]  ? __pfx_nilfs_segctor_scan_file+0x10/0x10
[   84.538087][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538112][ T5830]  ? nilfs_cpfile_create_checkpoint+0x5ba/0x760
[   84.538146][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538170][ T5830]  ? up_write+0x1c4/0x420
[   84.538193][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538216][ T5830]  ? nilfs_cpfile_create_checkpoint+0x5ba/0x760
[   84.538251][ T5830]  ? __pfx_nilfs_cpfile_create_checkpoint+0x10/0x10
[   84.538284][ T5830]  ? nilfs_segbuf_extend_segsum+0x2aa/0x3b0
[   84.538307][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538330][ T5830]  ? rcu_is_watching+0x15/0xb0
[   84.538364][ T5830]  nilfs_segctor_do_construct+0x1d46/0x6970
[   84.538424][ T5830]  ? __pfx_nilfs_segctor_do_construct+0x10/0x10
[   84.538453][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538477][ T5830]  ? __lock_acquire+0xaac/0xd20
[   84.538507][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538531][ T5830]  ? do_raw_spin_lock+0x121/0x290
[   84.538556][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538582][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538605][ T5830]  ? do_raw_spin_unlock+0x122/0x240
[   84.538630][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538653][ T5830]  ? _raw_spin_unlock+0x28/0x50
[   84.538683][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538706][ T5830]  ? nilfs_segctor_confirm+0x24e/0x2d0
[   84.538738][ T5830]  nilfs_segctor_construct+0x17b/0x690
[   84.538766][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538793][ T5830]  nilfs_segctor_thread+0x6f7/0xe00
[   84.538832][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538857][ T5830]  ? __pfx_nilfs_segctor_thread+0x10/0x10
[   84.538887][ T5830]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   84.538922][ T5830]  ? __pfx_autoremove_wake_function+0x10/0x10
[   84.538948][ T5830]  ? __kthread_parkme+0x7b/0x200
[   84.538968][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.538992][ T5830]  ? __kthread_parkme+0x1a1/0x200
[   84.539015][ T5830]  kthread+0x711/0x8a0
[   84.539040][ T5830]  ? __pfx_nilfs_segctor_thread+0x10/0x10
[   84.539067][ T5830]  ? __pfx_kthread+0x10/0x10
[   84.539090][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.539114][ T5830]  ? __pfx_kthread+0x10/0x10
[   84.539137][ T5830]  ? _raw_spin_unlock_irq+0x23/0x50
[   84.539167][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[   84.539191][ T5830]  ? lockdep_hardirqs_on+0x9c/0x150
[   84.539211][ T5830]  ? __pfx_kthread+0x10/0x10
[   84.539234][ T5830]  ret_from_fork+0x4e/0x80
[   84.539255][ T5830]  ? __pfx_kthread+0x10/0x10
[pid  5826] +++ exited with 1 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5826, si_uid=0, si_status=1, si_utime=0, si_stime=16 /* 0.16 s */} ---
exit_group(0)                           = ?
+++ exited with 0 +++
[   84.5