Warning: Permanently added '10.128.0.91' (ED25519) to the list of known hosts. executing program [ 62.923182][ T4245] loop0: detected capacity change from 0 to 32768 [ 62.934877][ T4245] (syz-executor375,4245,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 62.950537][ T4245] (syz-executor375,4245,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 62.972735][ T4245] JBD2: Ignoring recovery information on journal [ 62.997553][ T4245] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 63.011612][ T34] ocfs2: Finishing quota recovery on device (7,0) for slot 0 [ 63.048710][ T4245] [ 63.051069][ T4245] ====================================================== [ 63.058065][ T4245] WARNING: possible circular locking dependency detected [ 63.065113][ T4245] 6.1.127-syzkaller #0 Not tainted [ 63.070223][ T4245] ------------------------------------------------------ [ 63.077212][ T4245] syz-executor375/4245 is trying to acquire lock: [ 63.083594][ T4245] ffff888079c85138 ((wq_completion)ocfs2_wq){+.+.}-{0:0}, at: __flush_workqueue+0x157/0x1610 [ 63.093794][ T4245] [ 63.093794][ T4245] but task is already holding lock: [ 63.101154][ T4245] ffff88807888a0e0 (&type->s_umount_key#45){++++}-{3:3}, at: deactivate_super+0xa9/0xe0 [ 63.110907][ T4245] [ 63.110907][ T4245] which lock already depends on the new lock. [ 63.110907][ T4245] [ 63.121304][ T4245] [ 63.121304][ T4245] the existing dependency chain (in reverse order) is: [ 63.130295][ T4245] [ 63.130295][ T4245] -> #2 (&type->s_umount_key#45){++++}-{3:3}: [ 63.138529][ T4245] lock_acquire+0x1f8/0x5a0 [ 63.143553][ T4245] down_read+0xad/0xa30 [ 63.148240][ T4245] ocfs2_finish_quota_recovery+0x158/0x2300 [ 63.154648][ T4245] ocfs2_complete_recovery+0x18e2/0x2840 [ 63.160797][ T4245] process_one_work+0x8a9/0x11d0 [ 63.166853][ T4245] worker_thread+0xa47/0x1200 [ 63.172123][ T4245] kthread+0x28d/0x320 [ 63.176697][ T4245] ret_from_fork+0x1f/0x30 [ 63.181622][ T4245] [ 63.181622][ T4245] -> #1 ((work_completion)(&journal->j_recovery_work)){+.+.}-{0:0}: [ 63.191771][ T4245] lock_acquire+0x1f8/0x5a0 [ 63.196878][ T4245] process_one_work+0x7dc/0x11d0 [ 63.202345][ T4245] worker_thread+0xa47/0x1200 [ 63.207538][ T4245] kthread+0x28d/0x320 [ 63.212119][ T4245] ret_from_fork+0x1f/0x30 [ 63.217144][ T4245] [ 63.217144][ T4245] -> #0 ((wq_completion)ocfs2_wq){+.+.}-{0:0}: [ 63.225469][ T4245] validate_chain+0x1661/0x5950 [ 63.230832][ T4245] __lock_acquire+0x125b/0x1f80 [ 63.236209][ T4245] lock_acquire+0x1f8/0x5a0 [ 63.241224][ T4245] __flush_workqueue+0x170/0x1610 [ 63.246755][ T4245] ocfs2_shutdown_local_alloc+0x105/0xa90 [ 63.252994][ T4245] ocfs2_dismount_volume+0x1fb/0x960 [ 63.258808][ T4245] generic_shutdown_super+0x130/0x340 [ 63.265052][ T4245] kill_block_super+0x7a/0xe0 [ 63.270257][ T4245] deactivate_locked_super+0xa0/0x110 [ 63.276158][ T4245] cleanup_mnt+0x490/0x520 [ 63.281122][ T4245] task_work_run+0x246/0x300 [ 63.286235][ T4245] do_exit+0xa6e/0x26a0 [ 63.290919][ T4245] do_group_exit+0x202/0x2b0 [ 63.296040][ T4245] __x64_sys_exit_group+0x3b/0x40 [ 63.301579][ T4245] do_syscall_64+0x3b/0xb0 [ 63.306517][ T4245] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 63.312929][ T4245] [ 63.312929][ T4245] other info that might help us debug this: [ 63.312929][ T4245] [ 63.323138][ T4245] Chain exists of: [ 63.323138][ T4245] (wq_completion)ocfs2_wq --> (work_completion)(&journal->j_recovery_work) --> &type->s_umount_key#45 [ 63.323138][ T4245] [ 63.339994][ T4245] Possible unsafe locking scenario: [ 63.339994][ T4245] [ 63.347430][ T4245] CPU0 CPU1 [ 63.352777][ T4245] ---- ---- [ 63.358130][ T4245] lock(&type->s_umount_key#45); [ 63.363161][ T4245] lock((work_completion)(&journal->j_recovery_work)); [ 63.372597][ T4245] lock(&type->s_umount_key#45); [ 63.380213][ T4245] lock((wq_completion)ocfs2_wq); [ 63.385393][ T4245] [ 63.385393][ T4245] *** DEADLOCK *** [ 63.385393][ T4245] [ 63.393518][ T4245] 1 lock held by syz-executor375/4245: [ 63.398958][ T4245] #0: ffff88807888a0e0 (&type->s_umount_key#45){++++}-{3:3}, at: deactivate_super+0xa9/0xe0 [ 63.409136][ T4245] [ 63.409136][ T4245] stack backtrace: [ 63.415019][ T4245] CPU: 0 PID: 4245 Comm: syz-executor375 Not tainted 6.1.127-syzkaller #0 [ 63.423502][ T4245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 63.433543][ T4245] Call Trace: [ 63.437073][ T4245] [ 63.439991][ T4245] dump_stack_lvl+0x1e3/0x2cb [ 63.444761][ T4245] ? nf_tcp_handle_invalid+0x642/0x642 [ 63.450211][ T4245] ? print_circular_bug+0x12b/0x1a0 [ 63.455393][ T4245] check_noncircular+0x2fa/0x3b0 [ 63.460313][ T4245] ? add_chain_block+0x850/0x850 [ 63.465236][ T4245] ? queued_spin_lock_slowpath+0x42/0x50 [ 63.470855][ T4245] ? lockdep_lock+0x1a7/0x2a0 [ 63.475519][ T4245] ? _find_first_zero_bit+0xd0/0x100 [ 63.480799][ T4245] validate_chain+0x1661/0x5950 [ 63.485642][ T4245] ? reacquire_held_locks+0x660/0x660 [ 63.491004][ T4245] ? debug_object_assert_init+0x2c4/0x420 [ 63.496736][ T4245] ? __lock_acquire+0x1f80/0x1f80 [ 63.501774][ T4245] ? do_raw_spin_unlock+0x137/0x8a0 [ 63.506989][ T4245] ? mark_lock+0x9a/0x340 [ 63.511390][ T4245] __lock_acquire+0x125b/0x1f80 [ 63.516248][ T4245] lock_acquire+0x1f8/0x5a0 [ 63.520747][ T4245] ? __flush_workqueue+0x157/0x1610 [ 63.525938][ T4245] ? read_lock_is_recursive+0x10/0x10 [ 63.531300][ T4245] ? lockdep_softirqs_off+0x420/0x420 [ 63.536660][ T4245] ? timer_delete+0x172/0x2f0 [ 63.541354][ T4245] ? __lock_acquire+0x1f80/0x1f80 [ 63.546388][ T4245] ? __init_swait_queue_head+0xaa/0x140 [ 63.551935][ T4245] ? __flush_workqueue+0x157/0x1610 [ 63.557122][ T4245] __flush_workqueue+0x170/0x1610 [ 63.562747][ T4245] ? __flush_workqueue+0x157/0x1610 [ 63.567933][ T4245] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 63.573904][ T4245] ? flush_work+0x20/0x20 [ 63.578219][ T4245] ? rcu_work_rcufn+0x140/0x140 [ 63.583057][ T4245] ? print_irqtrace_events+0x210/0x210 [ 63.588507][ T4245] ocfs2_shutdown_local_alloc+0x105/0xa90 [ 63.594246][ T4245] ? __cancel_work_timer+0x5e8/0x6a0 [ 63.599519][ T4245] ? ocfs2_local_alloc_count_bits+0x2b0/0x2b0 [ 63.605575][ T4245] ? cancel_work_sync+0x20/0x20 [ 63.610408][ T4245] ? do_raw_spin_unlock+0x137/0x8a0 [ 63.615593][ T4245] ? _atomic_dec_and_lock+0x96/0x130 [ 63.620872][ T4245] ? iput+0x401/0x980 [ 63.624846][ T4245] ? ocfs2_disable_quotas+0x1b8/0x210 [ 63.630204][ T4245] ocfs2_dismount_volume+0x1fb/0x960 [ 63.635482][ T4245] ? ocfs2_enable_quotas+0x440/0x440 [ 63.640787][ T4245] ? clear_inode+0x150/0x150 [ 63.645367][ T4245] ? ocfs2_free_inode+0x20/0x20 [ 63.650204][ T4245] generic_shutdown_super+0x130/0x340 [ 63.655589][ T4245] kill_block_super+0x7a/0xe0 [ 63.660256][ T4245] deactivate_locked_super+0xa0/0x110 [ 63.665969][ T4245] cleanup_mnt+0x490/0x520 [ 63.670375][ T4245] ? lockdep_hardirqs_on+0x94/0x130 [ 63.675562][ T4245] task_work_run+0x246/0x300 [ 63.680144][ T4245] ? kasan_quarantine_put+0xd4/0x220 [ 63.685423][ T4245] ? task_work_cancel+0x2e0/0x2e0 [ 63.690436][ T4245] ? kmem_cache_free+0x292/0x510 [ 63.695972][ T4245] ? do_exit+0xa69/0x26a0 [ 63.700291][ T4245] do_exit+0xa6e/0x26a0 [ 63.704445][ T4245] ? put_task_struct+0x80/0x80 [ 63.709198][ T4245] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 63.715167][ T4245] ? print_irqtrace_events+0x210/0x210 [ 63.720619][ T4245] ? _raw_spin_unlock_irq+0x1f/0x40 [ 63.725807][ T4245] ? lockdep_hardirqs_on+0x94/0x130 [ 63.731001][ T4245] do_group_exit+0x202/0x2b0 [ 63.735595][ T4245] __x64_sys_exit_group+0x3b/0x40 [ 63.740624][ T4245] do_syscall_64+0x3b/0xb0 [ 63.745031][ T4245] ? clear_bhb_loop+0x45/0xa0 [ 63.749707][ T4245] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 63.755589][ T4245] RIP: 0033:0x7f91676b4b89 [ 63.759996][ T4245] Code: Unable to access opcode bytes at 0x7f91676b4b5f. [ 63.766998][ T4245] RSP: 002b:00007ffd85745a68 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 63.775405][ T4245] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f91676b4b89 [ 63.783360][ T4245] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 63.791316][ T4245] RBP: 00007f91677352b0 R08: ffffffffffffffb8 R09: 0000000000004701 [ 63.799361][ T4245] R10: 000