Warning: Permanently added '10.128.0.205' (ED25519) to the list of known hosts. executing program [ 39.447654][ T4021] loop0: detected capacity change from 0 to 8192 [ 39.558139][ T4021] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 39.560776][ T4021] REISERFS (device loop0): using ordered data mode [ 39.562452][ T4021] reiserfs: using flush barriers [ 39.564711][ T4021] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 39.569321][ T4021] REISERFS (device loop0): checking transaction log (loop0) [ 39.573482][ T4021] REISERFS (device loop0): Using r5 hash to sort names [ 39.575543][ T4021] REISERFS (device loop0): using 3.5.x disk format [ 39.578048][ T4021] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 39.582837][ T4021] [ 39.583450][ T4021] ====================================================== [ 39.585236][ T4021] WARNING: possible circular locking dependency detected [ 39.587115][ T4021] 5.15.164-syzkaller #0 Not tainted [ 39.588587][ T4021] ------------------------------------------------------ [ 39.590388][ T4021] syz-executor332/4021 is trying to acquire lock: [ 39.592123][ T4021] ffff0000ca102460 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write_file+0x64/0x1e8 [ 39.594582][ T4021] [ 39.594582][ T4021] but task is already holding lock: [ 39.596545][ T4021] ffff0000c12cb090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock+0x7c/0xe8 [ 39.599012][ T4021] [ 39.599012][ T4021] which lock already depends on the new lock. [ 39.599012][ T4021] [ 39.601807][ T4021] [ 39.601807][ T4021] the existing dependency chain (in reverse order) is: [ 39.604176][ T4021] [ 39.604176][ T4021] -> #2 (&sbi->lock){+.+.}-{3:3}: [ 39.606113][ T4021] __mutex_lock_common+0x194/0x2154 [ 39.607812][ T4021] mutex_lock_nested+0xa4/0xf8 [ 39.609260][ T4021] reiserfs_write_lock+0x7c/0xe8 [ 39.610771][ T4021] reiserfs_lookup+0x130/0x3c4 [ 39.612230][ T4021] __lookup_slow+0x250/0x388 [ 39.613629][ T4021] lookup_one_len+0x178/0x28c [ 39.615091][ T4021] reiserfs_lookup_privroot+0x8c/0x204 [ 39.616695][ T4021] reiserfs_fill_super+0x1aec/0x1e8c [ 39.618317][ T4021] mount_bdev+0x274/0x370 [ 39.619644][ T4021] get_super_block+0x44/0x58 [ 39.621072][ T4021] legacy_get_tree+0xd4/0x16c [ 39.622515][ T4021] vfs_get_tree+0x90/0x274 [ 39.623915][ T4021] do_new_mount+0x278/0x8fc [ 39.625299][ T4021] path_mount+0x594/0x101c [ 39.626640][ T4021] __arm64_sys_mount+0x510/0x5e0 [ 39.628127][ T4021] invoke_syscall+0x98/0x2b8 [ 39.629531][ T4021] el0_svc_common+0x138/0x258 [ 39.630923][ T4021] do_el0_svc+0x58/0x14c [ 39.632246][ T4021] el0_svc+0x7c/0x1f0 [ 39.633539][ T4021] el0t_64_sync_handler+0x84/0xe4 [ 39.635079][ T4021] el0t_64_sync+0x1a0/0x1a4 [ 39.636539][ T4021] [ 39.636539][ T4021] -> #1 (&type->i_mutex_dir_key#6){+.+.}-{3:3}: [ 39.639006][ T4021] down_write+0xbc/0x12c [ 39.640159][ T4021] path_openat+0x640/0x26cc [ 39.641589][ T4021] do_filp_open+0x1a8/0x3b4 [ 39.643014][ T4021] do_sys_openat2+0x128/0x3e0 [ 39.644488][ T4021] __arm64_sys_openat+0x1f0/0x240 [ 39.646028][ T4021] invoke_syscall+0x98/0x2b8 [ 39.647387][ T4021] el0_svc_common+0x138/0x258 [ 39.648770][ T4021] do_el0_svc+0x58/0x14c [ 39.650069][ T4021] el0_svc+0x7c/0x1f0 [ 39.651325][ T4021] el0t_64_sync_handler+0x84/0xe4 [ 39.652902][ T4021] el0t_64_sync+0x1a0/0x1a4 [ 39.654307][ T4021] [ 39.654307][ T4021] -> #0 (sb_writers#8){.+.+}-{0:0}: [ 39.656331][ T4021] __lock_acquire+0x32d4/0x7638 [ 39.657846][ T4021] lock_acquire+0x240/0x77c [ 39.659220][ T4021] sb_start_write+0xf0/0x3ac [ 39.660614][ T4021] mnt_want_write_file+0x64/0x1e8 [ 39.662146][ T4021] reiserfs_ioctl+0x188/0x4b8 [ 39.663555][ T4021] __arm64_sys_ioctl+0x14c/0x1c8 [ 39.665038][ T4021] invoke_syscall+0x98/0x2b8 [ 39.666448][ T4021] el0_svc_common+0x138/0x258 [ 39.667907][ T4021] do_el0_svc+0x58/0x14c [ 39.669228][ T4021] el0_svc+0x7c/0x1f0 [ 39.670485][ T4021] el0t_64_sync_handler+0x84/0xe4 [ 39.671991][ T4021] el0t_64_sync+0x1a0/0x1a4 [ 39.673449][ T4021] [ 39.673449][ T4021] other info that might help us debug this: [ 39.673449][ T4021] [ 39.676279][ T4021] Chain exists of: [ 39.676279][ T4021] sb_writers#8 --> &type->i_mutex_dir_key#6 --> &sbi->lock [ 39.676279][ T4021] [ 39.679922][ T4021] Possible unsafe locking scenario: [ 39.679922][ T4021] [ 39.681978][ T4021] CPU0 CPU1 [ 39.683450][ T4021] ---- ---- [ 39.685001][ T4021] lock(&sbi->lock); [ 39.686122][ T4021] lock(&type->i_mutex_dir_key#6); [ 39.688275][ T4021] lock(&sbi->lock); [ 39.690115][ T4021] lock(sb_writers#8); [ 39.691216][ T4021] [ 39.691216][ T4021] *** DEADLOCK *** [ 39.691216][ T4021] [ 39.693477][ T4021] 1 lock held by syz-executor332/4021: [ 39.694961][ T4021] #0: ffff0000c12cb090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock+0x7c/0xe8 [ 39.697562][ T4021] [ 39.697562][ T4021] stack backtrace: [ 39.699198][ T4021] CPU: 0 PID: 4021 Comm: syz-executor332 Not tainted 5.15.164-syzkaller #0 [ 39.701599][ T4021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 39.704367][ T4021] Call trace: [ 39.705287][ T4021] dump_backtrace+0x0/0x530 [ 39.706520][ T4021] show_stack+0x2c/0x3c [ 39.707611][ T4021] dump_stack_lvl+0x108/0x170 [ 39.708836][ T4021] dump_stack+0x1c/0x58 [ 39.709988][ T4021] print_circular_bug+0x150/0x1b8 [ 39.711437][ T4021] check_noncircular+0x2cc/0x378 [ 39.712824][ T4021] __lock_acquire+0x32d4/0x7638 [ 39.714134][ T4021] lock_acquire+0x240/0x77c [ 39.715373][ T4021] sb_start_write+0xf0/0x3ac [ 39.716626][ T4021] mnt_want_write_file+0x64/0x1e8 [ 39.718007][ T4021] reiserfs_ioctl+0x188/0x4b8 [ 39.719241][ T4021] __arm64_sys_ioctl+0x14c/0x1c8 [ 39.720640][ T4021] invoke_syscall+0x98/0x2b8 [ 39.721854][ T4021] el0_svc_common+0x138/0x258 [ 39.723127][ T4021] do_el0_svc+0x58/0x14c [ 39.724344][ T4021] el0_svc+0x7c/0x1f0 [ 39.725453][ T4021] el0t_64_sync_handler+0x84/0xe4 [ 39.726785][ T4021] el0t_64_sync+0x1a0/0x1a4