Warning: Permanently added '10.128.10.5' (ED25519) to the list of known hosts. executing program syzkaller login: [ 35.370944][ T6423] loop0: detected capacity change from 0 to 32768 [ 35.374217][ T6423] ======================================================= [ 35.374217][ T6423] WARNING: The mand mount option has been deprecated and [ 35.374217][ T6423] and is ignored by this kernel. Remove the mand [ 35.374217][ T6423] option from the mount to silence this warning. [ 35.374217][ T6423] ======================================================= [ 35.401834][ T6423] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 35.417005][ T6423] overlayfs: upper fs does not support tmpfile. [ 35.420856][ T6423] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 35.422611][ T6423] [ 35.423163][ T6423] ====================================================== [ 35.424677][ T6423] WARNING: possible circular locking dependency detected [ 35.426189][ T6423] 6.12.0-syzkaller-g7b1d1d4cfac0 #0 Not tainted [ 35.427465][ T6423] ------------------------------------------------------ [ 35.428897][ T6423] syz-executor147/6423 is trying to acquire lock: [ 35.430230][ T6423] ffff0000dda5a640 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: ocfs2_reserve_local_alloc_bits+0xfc/0x247c [ 35.433019][ T6423] [ 35.433019][ T6423] but task is already holding lock: [ 35.434527][ T6423] ffff0000e2812378 (&oi->ip_xattr_sem){+.+.}-{3:3}, at: ocfs2_xattr_set+0x4e0/0x1448 [ 35.436571][ T6423] [ 35.436571][ T6423] which lock already depends on the new lock. [ 35.436571][ T6423] [ 35.438893][ T6423] [ 35.438893][ T6423] the existing dependency chain (in reverse order) is: [ 35.440887][ T6423] [ 35.440887][ T6423] -> #4 (&oi->ip_xattr_sem){+.+.}-{3:3}: [ 35.442563][ T6423] down_write+0x50/0xc0 [ 35.443503][ T6423] ocfs2_xattr_set_handle+0x40c/0x824 [ 35.444806][ T6423] ocfs2_init_security_set+0xb4/0xd8 [ 35.445979][ T6423] ocfs2_mknod+0x1408/0x243c [ 35.447100][ T6423] ocfs2_mkdir+0x194/0x4e0 [ 35.448222][ T6423] vfs_mkdir+0x27c/0x410 [ 35.449283][ T6423] do_mkdirat+0x248/0x574 [ 35.450283][ T6423] __arm64_sys_mkdirat+0x8c/0xa4 [ 35.451367][ T6423] invoke_syscall+0x98/0x2b8 [ 35.452438][ T6423] el0_svc_common+0x130/0x23c [ 35.453607][ T6423] do_el0_svc+0x48/0x58 [ 35.454666][ T6423] el0_svc+0x54/0x168 [ 35.455726][ T6423] el0t_64_sync_handler+0x84/0x108 [ 35.456943][ T6423] el0t_64_sync+0x198/0x19c [ 35.458109][ T6423] [ 35.458109][ T6423] -> #3 (jbd2_handle){.+.+}-{0:0}: [ 35.459703][ T6423] start_this_handle+0xf34/0x11c4 [ 35.460852][ T6423] jbd2__journal_start+0x298/0x544 [ 35.461987][ T6423] jbd2_journal_start+0x3c/0x4c [ 35.463069][ T6423] ocfs2_start_trans+0x3d0/0x71c [ 35.464200][ T6423] ocfs2_reserve_suballoc_bits+0x840/0x4288 [ 35.465569][ T6423] ocfs2_reserve_new_metadata_blocks+0x384/0x848 [ 35.466946][ T6423] ocfs2_mknod+0xdc8/0x243c [ 35.468015][ T6423] ocfs2_mkdir+0x194/0x4e0 [ 35.469077][ T6423] vfs_mkdir+0x27c/0x410 [ 35.470105][ T6423] do_mkdirat+0x248/0x574 [ 35.471112][ T6423] __arm64_sys_mkdirat+0x8c/0xa4 [ 35.472277][ T6423] invoke_syscall+0x98/0x2b8 [ 35.473308][ T6423] el0_svc_common+0x130/0x23c [ 35.474376][ T6423] do_el0_svc+0x48/0x58 [ 35.475448][ T6423] el0_svc+0x54/0x168 [ 35.476430][ T6423] el0t_64_sync_handler+0x84/0x108 [ 35.477608][ T6423] el0t_64_sync+0x198/0x19c [ 35.478711][ T6423] [ 35.478711][ T6423] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 35.480451][ T6423] down_read+0x58/0x2fc [ 35.481431][ T6423] ocfs2_start_trans+0x3c4/0x71c [ 35.482509][ T6423] ocfs2_reserve_suballoc_bits+0x840/0x4288 [ 35.483894][ T6423] ocfs2_reserve_new_metadata_blocks+0x384/0x848 [ 35.485433][ T6423] ocfs2_mknod+0xdc8/0x243c [ 35.486513][ T6423] ocfs2_mkdir+0x194/0x4e0 [ 35.487634][ T6423] vfs_mkdir+0x27c/0x410 [ 35.488617][ T6423] do_mkdirat+0x248/0x574 [ 35.489641][ T6423] __arm64_sys_mkdirat+0x8c/0xa4 [ 35.490875][ T6423] invoke_syscall+0x98/0x2b8 [ 35.492000][ T6423] el0_svc_common+0x130/0x23c [ 35.493122][ T6423] do_el0_svc+0x48/0x58 [ 35.494189][ T6423] el0_svc+0x54/0x168 [ 35.495134][ T6423] el0t_64_sync_handler+0x84/0x108 [ 35.496306][ T6423] el0t_64_sync+0x198/0x19c [ 35.497310][ T6423] [ 35.497310][ T6423] -> #1 (sb_internal#2){.+.+}-{0:0}: [ 35.498957][ T6423] ocfs2_start_trans+0x244/0x71c [ 35.500083][ T6423] ocfs2_mknod+0xe58/0x243c [ 35.501137][ T6423] ocfs2_mkdir+0x194/0x4e0 [ 35.502173][ T6423] vfs_mkdir+0x27c/0x410 [ 35.503116][ T6423] do_mkdirat+0x248/0x574 [ 35.504106][ T6423] __arm64_sys_mkdirat+0x8c/0xa4 [ 35.505217][ T6423] invoke_syscall+0x98/0x2b8 [ 35.506244][ T6423] el0_svc_common+0x130/0x23c [ 35.507390][ T6423] do_el0_svc+0x48/0x58 [ 35.508388][ T6423] el0_svc+0x54/0x168 [ 35.509363][ T6423] el0t_64_sync_handler+0x84/0x108 [ 35.510614][ T6423] el0t_64_sync+0x198/0x19c [ 35.511778][ T6423] [ 35.511778][ T6423] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}: [ 35.513997][ T6423] __lock_acquire+0x33f8/0x77c8 [ 35.515204][ T6423] lock_acquire+0x240/0x728 [ 35.516229][ T6423] down_write+0x50/0xc0 [ 35.517244][ T6423] ocfs2_reserve_local_alloc_bits+0xfc/0x247c [ 35.518610][ T6423] ocfs2_reserve_clusters_with_limit+0x194/0xabc [ 35.520034][ T6423] ocfs2_reserve_clusters+0x3c/0x50 [ 35.521289][ T6423] ocfs2_init_xattr_set_ctxt+0x404/0x968 [ 35.522595][ T6423] ocfs2_xattr_set+0xbe0/0x1448 [ 35.523788][ T6423] ocfs2_xattr_trusted_set+0x4c/0x64 [ 35.525046][ T6423] __vfs_setxattr+0x3d8/0x400 [ 35.526234][ T6423] __vfs_setxattr_noperm+0x110/0x578 [ 35.527495][ T6423] __vfs_setxattr_locked+0x1ec/0x218 [ 35.528839][ T6423] vfs_setxattr+0x1a8/0x344 [ 35.529923][ T6423] ovl_get_workdir+0xaf8/0x142c [ 35.531112][ T6423] ovl_fill_super+0x1004/0x2e40 [ 35.532218][ T6423] get_tree_nodev+0xb4/0x144 [ 35.533291][ T6423] ovl_get_tree+0x28/0x38 [ 35.534386][ T6423] vfs_get_tree+0x90/0x28c [ 35.535371][ T6423] do_new_mount+0x278/0x900 [ 35.536445][ T6423] path_mount+0x590/0xe04 [ 35.537523][ T6423] __arm64_sys_mount+0x4d4/0x5ac [ 35.538748][ T6423] invoke_syscall+0x98/0x2b8 [ 35.539806][ T6423] el0_svc_common+0x130/0x23c [ 35.540928][ T6423] do_el0_svc+0x48/0x58 [ 35.542003][ T6423] el0_svc+0x54/0x168 [ 35.542980][ T6423] el0t_64_sync_handler+0x84/0x108 [ 35.544273][ T6423] el0t_64_sync+0x198/0x19c [ 35.545506][ T6423] [ 35.545506][ T6423] other info that might help us debug this: [ 35.545506][ T6423] [ 35.547730][ T6423] Chain exists of: [ 35.547730][ T6423] &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5 --> jbd2_handle --> &oi->ip_xattr_sem [ 35.547730][ T6423] [ 35.551217][ T6423] Possible unsafe locking scenario: [ 35.551217][ T6423] [ 35.552911][ T6423] CPU0 CPU1 [ 35.554052][ T6423] ---- ---- [ 35.555167][ T6423] lock(&oi->ip_xattr_sem); [ 35.556167][ T6423] lock(jbd2_handle); [ 35.557508][ T6423] lock(&oi->ip_xattr_sem); [ 35.558982][ T6423] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5); [ 35.560675][ T6423] [ 35.560675][ T6423] *** DEADLOCK *** [ 35.560675][ T6423] [ 35.562404][ T6423] 4 locks held by syz-executor147/6423: [ 35.563647][ T6423] #0: ffff0000c32520e0 (&type->s_umount_key#44/1){+.+.}-{3:3}, at: alloc_super+0x1b0/0x83c [ 35.566025][ T6423] #1: ffff0000d9380420 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 35.568108][ T6423] #2: ffff0000e2812640 (&sb->s_type->i_mutex_key#18){++++}-{3:3}, at: vfs_setxattr+0x17c/0x344 [ 35.570513][ T6423] #3: ffff0000e2812378 (&oi->ip_xattr_sem){+.+.}-{3:3}, at: ocfs2_xattr_set+0x4e0/0x1448 [ 35.572534][ T6423] [ 35.572534][ T6423] stack backtrace: [ 35.573800][ T6423] CPU: 0 UID: 0 PID: 6423 Comm: syz-executor147 Not tainted 6.12.0-syzkaller-g7b1d1d4cfac0 #0 [ 35.575886][ T6423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 35.578148][ T6423] Call trace: [ 35.578866][ T6423] show_stack+0x2c/0x3c (C) [ 35.579821][ T6423] dump_stack_lvl+0xe4/0x150 [ 35.580760][ T6423] dump_stack+0x1c/0x28 [ 35.581673][ T6423] print_circular_bug+0x154/0x1c0 [ 35.582799][ T6423] check_noncircular+0x310/0x404 [ 35.583809][ T6423] __lock_acquire+0x33f8/0x77c8 [ 35.584791][ T6423] lock_acquire+0x240/0x728 [ 35.585751][ T6423] down_write+0x50/0xc0 [ 35.586598][ T6423] ocfs2_reserve_local_alloc_bits+0xfc/0x247c [ 35.587890][ T6423] ocfs2_reserve_clusters_with_limit+0x194/0xabc [ 35.589244][ T6423] ocfs2_reserve_clusters+0x3c/0x50 [ 35.590416][ T6423] ocfs2_init_xattr_set_ctxt+0x404/0x968 [ 35.591641][ T6423] ocfs2_xattr_set+0xbe0/0x1448 [ 35.592787][ T6423] ocfs2_xattr_trusted_set+0x4c/0x64 [ 35.593924][ T6423] __vfs_setxattr+0x3d8/0x400 [ 35.594987][ T6423] __vfs_setxattr_noperm+0x110/0x578 [ 35.596119][ T6423] __vfs_setxattr_locked+0x1ec/0x218 [ 35.597217][ T6423] vfs_setxattr+0x1a8/0x344 [ 35.598169][ T6423] ovl_get_workdir+0xaf8/0x142c [ 35.599141][ T6423] ovl_fill_super+0x1004/0x2e40 [ 35.600339][ T6423] get_tree_nodev+0xb4/0x144 [ 35.601402][ T6423] ovl_get_tree+0x28/0x38 [ 35.602363][ T6423] vfs_get_tree+0x90/0x28c [ 35.603277][ T6423] do_new_mount+0x278/0x900 [ 35.604168][ T6423] path_mount+0x590/0xe04 [ 35.605114][ T6423] __arm64_sys_mount+0x4d4/0x5ac [ 35.606137][ T6423] invoke_syscall+0x98/0x2b8 [ 35.607215][ T6423] el0_svc_common+0x130/0x23c [ 35.608194][ T6423] do_el0_svc+0x48/0x58 [ 35.609167][ T6423] el0_svc+0x54/0x168 [ 35.610001][ T6423] el0t_64_sync_handler+0x84/0x108 [ 35.611115][ T6423] el0t_64_sync+0x198/0x19c [ 35.616071][ T6423] overlayfs: upper fs missing required features.