Warning: Permanently added '10.128.1.170' (ECDSA) to the list of known hosts. executing program [ 53.486731][ T3499] loop0: detected capacity change from 0 to 512 [ 53.496610][ T3499] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 53.516398][ T3499] EXT4-fs (loop0): 1 truncate cleaned up [ 53.522051][ T3499] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000000000,nogrpid,debug_want_extra_isize=0x0000000000000066,dioread_nolock,max_batch_time=0x0000000000000008,resgid=0x0000000000000000,,errors=continue. Quota mode: writeback. [ 53.556529][ T3499] [ 53.558900][ T3499] ====================================================== [ 53.565926][ T3499] WARNING: possible circular locking dependency detected [ 53.572944][ T3499] 5.15.114-syzkaller #0 Not tainted [ 53.578125][ T3499] ------------------------------------------------------ [ 53.585121][ T3499] syz-executor473/3499 is trying to acquire lock: [ 53.591512][ T3499] ffff888075b83fc0 (&ea_inode->i_rwsem#9/1){+.+.}-{3:3}, at: ext4_xattr_inode_iget+0x4a3/0x5e0 [ 53.601872][ T3499] [ 53.601872][ T3499] but task is already holding lock: [ 53.609216][ T3499] ffff888075b83450 (&ei->i_data_sem){++++}-{3:3}, at: ext4_setattr+0x12e8/0x1990 [ 53.618335][ T3499] [ 53.618335][ T3499] which lock already depends on the new lock. [ 53.618335][ T3499] [ 53.628718][ T3499] [ 53.628718][ T3499] the existing dependency chain (in reverse order) is: [ 53.637710][ T3499] [ 53.637710][ T3499] -> #1 (&ei->i_data_sem){++++}-{3:3}: [ 53.645339][ T3499] lock_acquire+0x1db/0x4f0 [ 53.650364][ T3499] down_write+0x97/0x170 [ 53.655112][ T3499] ext4_xattr_set_entry+0x3187/0x3c00 [ 53.660990][ T3499] ext4_xattr_ibody_set+0x11d/0x330 [ 53.666751][ T3499] ext4_xattr_set_handle+0xc72/0x1560 [ 53.672628][ T3499] ext4_xattr_set+0x231/0x3d0 [ 53.677807][ T3499] __vfs_setxattr+0x3e7/0x420 [ 53.682987][ T3499] __vfs_setxattr_noperm+0x12a/0x5e0 [ 53.688779][ T3499] vfs_setxattr+0x21d/0x420 [ 53.693784][ T3499] setxattr+0x27e/0x2e0 [ 53.698466][ T3499] path_setxattr+0x1bc/0x2a0 [ 53.703561][ T3499] __x64_sys_setxattr+0xb7/0xd0 [ 53.708920][ T3499] do_syscall_64+0x3d/0xb0 [ 53.713842][ T3499] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.720328][ T3499] [ 53.720328][ T3499] -> #0 (&ea_inode->i_rwsem#9/1){+.+.}-{3:3}: [ 53.728573][ T3499] validate_chain+0x1646/0x58b0 [ 53.733932][ T3499] __lock_acquire+0x1295/0x1ff0 [ 53.739386][ T3499] lock_acquire+0x1db/0x4f0 [ 53.744396][ T3499] down_write+0x97/0x170 [ 53.749146][ T3499] ext4_xattr_inode_iget+0x4a3/0x5e0 [ 53.754935][ T3499] ext4_xattr_inode_get+0x17d/0x9a0 [ 53.760726][ T3499] ext4_expand_extra_isize_ea+0xe70/0x1bb0 [ 53.767042][ T3499] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 53.773189][ T3499] __ext4_mark_inode_dirty+0x539/0x860 [ 53.779160][ T3499] ext4_setattr+0x1374/0x1990 [ 53.784475][ T3499] notify_change+0xd4d/0x1000 [ 53.789665][ T3499] do_truncate+0x21c/0x300 [ 53.794597][ T3499] path_openat+0x28a0/0x2f20 [ 53.799698][ T3499] do_filp_open+0x21c/0x460 [ 53.804708][ T3499] do_sys_openat2+0x13b/0x500 [ 53.809893][ T3499] __x64_sys_creat+0x11f/0x160 [ 53.815161][ T3499] do_syscall_64+0x3d/0xb0 [ 53.820082][ T3499] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.826486][ T3499] [ 53.826486][ T3499] other info that might help us debug this: [ 53.826486][ T3499] [ 53.836696][ T3499] Possible unsafe locking scenario: [ 53.836696][ T3499] [ 53.844130][ T3499] CPU0 CPU1 [ 53.849480][ T3499] ---- ---- [ 53.854827][ T3499] lock(&ei->i_data_sem); [ 53.859261][ T3499] lock(&ea_inode->i_rwsem#9/1); [ 53.866797][ T3499] lock(&ei->i_data_sem); [ 53.873719][ T3499] lock(&ea_inode->i_rwsem#9/1); [ 53.878741][ T3499] [ 53.878741][ T3499] *** DEADLOCK *** [ 53.878741][ T3499] [ 53.887396][ T3499] 5 locks held by syz-executor473/3499: [ 53.892921][ T3499] #0: ffff888078a86460 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 53.902133][ T3499] #1: ffff888075b835c8 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: do_truncate+0x208/0x300 [ 53.912565][ T3499] #2: ffff888075b83768 (mapping.invalidate_lock){++++}-{3:3}, at: ext4_setattr+0xd6c/0x1990 [ 53.922752][ T3499] #3: ffff888075b83450 (&ei->i_data_sem){++++}-{3:3}, at: ext4_setattr+0x12e8/0x1990 [ 53.932308][ T3499] #4: ffff888075b832a0 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x4a0/0x860 [ 53.942797][ T3499] [ 53.942797][ T3499] stack backtrace: [ 53.948676][ T3499] CPU: 0 PID: 3499 Comm: syz-executor473 Not tainted 5.15.114-syzkaller #0 [ 53.957251][ T3499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 53.967384][ T3499] Call Trace: [ 53.970655][ T3499] [ 53.973593][ T3499] dump_stack_lvl+0x1e3/0x2cb [ 53.978701][ T3499] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 53.984324][ T3499] ? print_circular_bug+0x12b/0x1a0 [ 53.989512][ T3499] check_noncircular+0x2f8/0x3b0 [ 53.994436][ T3499] ? add_chain_block+0x850/0x850 [ 53.999363][ T3499] ? queued_spin_lock_slowpath+0x42/0x50 [ 54.005074][ T3499] ? lockdep_lock+0x1a7/0x2a0 [ 54.009749][ T3499] ? __lock_acquire+0x1295/0x1ff0 [ 54.014765][ T3499] validate_chain+0x1646/0x58b0 [ 54.019628][ T3499] ? find_inode_fast+0x421/0x450 [ 54.024558][ T3499] ? reacquire_held_locks+0x660/0x660 [ 54.029917][ T3499] ? do_raw_spin_lock+0x14a/0x370 [ 54.035025][ T3499] ? mark_lock+0x98/0x340 [ 54.039342][ T3499] __lock_acquire+0x1295/0x1ff0 [ 54.044187][ T3499] lock_acquire+0x1db/0x4f0 [ 54.048682][ T3499] ? ext4_xattr_inode_iget+0x4a3/0x5e0 [ 54.054136][ T3499] ? read_lock_is_recursive+0x10/0x10 [ 54.059506][ T3499] ? __lock_acquire+0x1295/0x1ff0 [ 54.064542][ T3499] ? __might_sleep+0xc0/0xc0 [ 54.069123][ T3499] ? stack_depot_save+0x3db/0x440 [ 54.074146][ T3499] down_write+0x97/0x170 [ 54.078379][ T3499] ? ext4_xattr_inode_iget+0x4a3/0x5e0 [ 54.083828][ T3499] ? down_read_killable+0x350/0x350 [ 54.089023][ T3499] ext4_xattr_inode_iget+0x4a3/0x5e0 [ 54.094394][ T3499] ext4_xattr_inode_get+0x17d/0x9a0 [ 54.099584][ T3499] ? __xattr_check_inode+0x3f0/0x3f0 [ 54.104858][ T3499] ? __kmalloc_node+0x199/0x390 [ 54.109699][ T3499] ? ext4_expand_extra_isize_ea+0xd11/0x1bb0 [ 54.115668][ T3499] ext4_expand_extra_isize_ea+0xe70/0x1bb0 [ 54.121474][ T3499] ? ext4_xattr_set+0x3d0/0x3d0 [ 54.126315][ T3499] ? down_write_trylock+0x173/0x2d0 [ 54.131504][ T3499] ? __ext4_mark_inode_dirty+0x4a0/0x860 [ 54.137127][ T3499] ? dquot_initialize_needed+0x128/0x320 [ 54.142752][ T3499] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 54.148382][ T3499] __ext4_mark_inode_dirty+0x539/0x860 [ 54.153928][ T3499] ? ext4_blocks_for_truncate+0x270/0x270 [ 54.159725][ T3499] ? down_read_killable+0x350/0x350 [ 54.164913][ T3499] ? ext4_journal_check_start+0x17b/0x240 [ 54.170621][ T3499] ? ext4_setattr+0xf05/0x1990 [ 54.175373][ T3499] ? __ext4_journal_start_sb+0x1cb/0x370 [ 54.180995][ T3499] ext4_setattr+0x1374/0x1990 [ 54.185662][ T3499] ? bpf_lsm_inode_setattr+0x5/0x10 [ 54.190852][ T3499] ? ext4_write_inode+0x730/0x730 [ 54.195864][ T3499] notify_change+0xd4d/0x1000 [ 54.200530][ T3499] do_truncate+0x21c/0x300 [ 54.204934][ T3499] ? put_page_bootmem+0x280/0x280 [ 54.209949][ T3499] ? ima_bprm_check+0x2b0/0x2b0 [ 54.214788][ T3499] ? bpf_lsm_path_truncate+0x5/0x10 [ 54.219977][ T3499] path_openat+0x28a0/0x2f20 [ 54.224572][ T3499] ? do_filp_open+0x460/0x460 [ 54.229244][ T3499] do_filp_open+0x21c/0x460 [ 54.233733][ T3499] ? vfs_tmpfile+0x2e0/0x2e0 [ 54.238316][ T3499] ? _raw_spin_unlock+0x24/0x40 [ 54.243160][ T3499] ? alloc_fd+0x594/0x630 [ 54.247480][ T3499] do_sys_openat2+0x13b/0x500 [ 54.252142][ T3499] ? read_lock_is_recursive+0x10/0x10 [ 54.257504][ T3499] ? __context_tracking_exit+0x4c/0x80 [ 54.262951][ T3499] ? do_sys_open+0x220/0x220 [ 54.267554][ T3499] ? rcu_is_watching+0x11/0xa0 [ 54.272743][ T3499] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 54.278714][ T3499] __x64_sys_creat+0x11f/0x160 [ 54.283466][ T3499] ? __x64_compat_sys_openat+0x290/0x290 [ 54.289087][ T3499] ? syscall_enter_from_user_mode+0x2e/0x230 [ 54.295059][ T3499] ? lockdep_hardirqs_on+0x94/0x130 [ 54.300252][ T3499] ? syscall_enter_from_user_mode+0x2e/0x230 [ 54.306329][ T3499] do_syscall_64+0x3d/0xb0 [ 54.310736][ T3499] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 54.316614][ T3499] RIP: 0033:0x7fbd249f4c29 [ 54.321022][ T3499] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 54.340872][ T3499] RSP: 002b:00007fff285d84a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 54.349283][ T3499] RAX: ffffffffffffffda RBX: 0031656c69662f2e RCX: 00007fbd249f4c29 [ 54.357270][ T3499] RDX: 00007fbd249f4c29 RSI: 0000000000000000 RDI: 0000000020000400 [ 54.365326][ T3499] RBP: 00007fbd249b4230 R08: 0000000000000000 R09: 0000000000000000 [ 54.373377][ T3499] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd249b42c0 [ 54.381351][ T3499] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.389314]