Warning: Permanently added '10.128.1.168' (ED25519) to the list of known hosts. executing program [ 37.743564][ T4288] loop0: detected capacity change from 0 to 32768 [ 37.748894][ T4288] (syz-executor210,4288,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 37.752878][ T4288] (syz-executor210,4288,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 37.761903][ T4288] JBD2: Ignoring recovery information on journal [ 37.776760][ T4288] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 37.795081][ T4288] [ 37.795562][ T4288] ====================================================== [ 37.797095][ T4288] WARNING: possible circular locking dependency detected [ 37.798564][ T4288] 6.1.119-syzkaller #0 Not tainted [ 37.799666][ T4288] ------------------------------------------------------ [ 37.801271][ T4288] syz-executor210/4288 is trying to acquire lock: [ 37.802649][ T4288] ffff0000e1f806f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_init_acl+0x2c8/0x764 [ 37.804689][ T4288] [ 37.804689][ T4288] but task is already holding lock: [ 37.806285][ T4288] ffff0000da160990 (jbd2_handle){.+.+}-{0:0}, at: start_this_handle+0x1118/0x13ac [ 37.808252][ T4288] [ 37.808252][ T4288] which lock already depends on the new lock. [ 37.808252][ T4288] [ 37.810444][ T4288] [ 37.810444][ T4288] the existing dependency chain (in reverse order) is: [ 37.812321][ T4288] [ 37.812321][ T4288] -> #4 (jbd2_handle){.+.+}-{0:0}: [ 37.813979][ T4288] start_this_handle+0x1140/0x13ac [ 37.815230][ T4288] jbd2__journal_start+0x298/0x544 [ 37.816407][ T4288] jbd2_journal_start+0x3c/0x4c [ 37.817535][ T4288] ocfs2_start_trans+0x3e8/0x73c [ 37.818664][ T4288] ocfs2_modify_bh+0xe4/0x484 [ 37.819784][ T4288] ocfs2_local_read_info+0x1220/0x15bc [ 37.821052][ T4288] dquot_load_quota_sb+0x6f0/0xb1c [ 37.822352][ T4288] dquot_load_quota_inode+0x280/0x4f4 [ 37.823625][ T4288] ocfs2_enable_quotas+0x17c/0x3cc [ 37.824843][ T4288] ocfs2_fill_super+0x3aa4/0x48c4 [ 37.826168][ T4288] mount_bdev+0x274/0x370 [ 37.827196][ T4288] ocfs2_mount+0x44/0x58 [ 37.828213][ T4288] legacy_get_tree+0xd4/0x16c [ 37.829395][ T4288] vfs_get_tree+0x90/0x274 [ 37.830470][ T4288] do_new_mount+0x278/0x8fc [ 37.831591][ T4288] path_mount+0x590/0xe5c [ 37.832557][ T4288] __arm64_sys_mount+0x45c/0x594 [ 37.833762][ T4288] invoke_syscall+0x98/0x2bc [ 37.834956][ T4288] el0_svc_common+0x138/0x258 [ 37.836030][ T4288] do_el0_svc+0x58/0x13c [ 37.837099][ T4288] el0_svc+0x58/0x168 [ 37.838160][ T4288] el0t_64_sync_handler+0x84/0xf0 [ 37.839444][ T4288] el0t_64_sync+0x18c/0x190 [ 37.840566][ T4288] [ 37.840566][ T4288] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 37.842403][ T4288] down_read+0x64/0x308 [ 37.843393][ T4288] ocfs2_start_trans+0x3dc/0x73c [ 37.844631][ T4288] ocfs2_modify_bh+0xe4/0x484 [ 37.845805][ T4288] ocfs2_local_read_info+0x1220/0x15bc [ 37.847037][ T4288] dquot_load_quota_sb+0x6f0/0xb1c [ 37.848335][ T4288] dquot_load_quota_inode+0x280/0x4f4 [ 37.849696][ T4288] ocfs2_enable_quotas+0x17c/0x3cc [ 37.850921][ T4288] ocfs2_fill_super+0x3aa4/0x48c4 [ 37.852209][ T4288] mount_bdev+0x274/0x370 [ 37.853225][ T4288] ocfs2_mount+0x44/0x58 [ 37.854194][ T4288] legacy_get_tree+0xd4/0x16c [ 37.855300][ T4288] vfs_get_tree+0x90/0x274 [ 37.856397][ T4288] do_new_mount+0x278/0x8fc [ 37.857482][ T4288] path_mount+0x590/0xe5c [ 37.858473][ T4288] __arm64_sys_mount+0x45c/0x594 [ 37.859566][ T4288] invoke_syscall+0x98/0x2bc [ 37.860755][ T4288] el0_svc_common+0x138/0x258 [ 37.861912][ T4288] do_el0_svc+0x58/0x13c [ 37.862941][ T4288] el0_svc+0x58/0x168 [ 37.863915][ T4288] el0t_64_sync_handler+0x84/0xf0 [ 37.865167][ T4288] el0t_64_sync+0x18c/0x190 [ 37.866242][ T4288] [ 37.866242][ T4288] -> #2 (sb_internal#2){.+.+}-{0:0}: [ 37.867896][ T4288] ocfs2_start_trans+0x260/0x73c [ 37.869077][ T4288] ocfs2_xattr_set+0xdcc/0x1478 [ 37.870262][ T4288] ocfs2_set_acl+0x410/0x4b4 [ 37.871423][ T4288] ocfs2_iop_set_acl+0x214/0x358 [ 37.872651][ T4288] posix_acl_xattr_set+0x2f8/0x398 [ 37.874000][ T4288] __vfs_setxattr+0x388/0x3a4 [ 37.875086][ T4288] __vfs_setxattr_noperm+0x110/0x528 [ 37.876409][ T4288] __vfs_setxattr_locked+0x1ec/0x218 [ 37.877688][ T4288] vfs_setxattr+0x1a8/0x344 [ 37.878794][ T4288] setxattr+0x230/0x294 [ 37.879851][ T4288] path_setxattr+0x17c/0x258 [ 37.880947][ T4288] __arm64_sys_setxattr+0xbc/0xd8 [ 37.882122][ T4288] invoke_syscall+0x98/0x2bc [ 37.883312][ T4288] el0_svc_common+0x138/0x258 [ 37.884472][ T4288] do_el0_svc+0x58/0x13c [ 37.885588][ T4288] el0_svc+0x58/0x168 [ 37.886600][ T4288] el0t_64_sync_handler+0x84/0xf0 [ 37.887955][ T4288] el0t_64_sync+0x18c/0x190 [ 37.889072][ T4288] [ 37.889072][ T4288] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}: [ 37.891311][ T4288] down_write+0x5c/0x88 [ 37.892311][ T4288] ocfs2_reserve_suballoc_bits+0x164/0x4428 [ 37.893738][ T4288] ocfs2_reserve_new_metadata_blocks+0x384/0x848 [ 37.895274][ T4288] ocfs2_init_xattr_set_ctxt+0x3b0/0x9f8 [ 37.896623][ T4288] ocfs2_xattr_set+0xc08/0x1478 [ 37.897829][ T4288] ocfs2_set_acl+0x410/0x4b4 [ 37.898946][ T4288] ocfs2_iop_set_acl+0x214/0x358 [ 37.900092][ T4288] posix_acl_xattr_set+0x2f8/0x398 [ 37.901279][ T4288] __vfs_setxattr+0x388/0x3a4 [ 37.902423][ T4288] __vfs_setxattr_noperm+0x110/0x528 [ 37.903734][ T4288] __vfs_setxattr_locked+0x1ec/0x218 [ 37.904942][ T4288] vfs_setxattr+0x1a8/0x344 [ 37.906054][ T4288] setxattr+0x230/0x294 [ 37.906945][ T4288] path_setxattr+0x17c/0x258 [ 37.908128][ T4288] __arm64_sys_setxattr+0xbc/0xd8 [ 37.909303][ T4288] invoke_syscall+0x98/0x2bc [ 37.910416][ T4288] el0_svc_common+0x138/0x258 [ 37.911578][ T4288] do_el0_svc+0x58/0x13c [ 37.912660][ T4288] el0_svc+0x58/0x168 [ 37.913584][ T4288] el0t_64_sync_handler+0x84/0xf0 [ 37.914760][ T4288] el0t_64_sync+0x18c/0x190 [ 37.915874][ T4288] [ 37.915874][ T4288] -> #0 (&oi->ip_xattr_sem){++++}-{3:3}: [ 37.917660][ T4288] __lock_acquire+0x3338/0x7680 [ 37.918911][ T4288] lock_acquire+0x26c/0x7cc [ 37.920044][ T4288] down_read+0x64/0x308 [ 37.921040][ T4288] ocfs2_init_acl+0x2c8/0x764 [ 37.922190][ T4288] ocfs2_mknod+0x1574/0x2560 [ 37.923354][ T4288] vfs_mknod+0x3c8/0x448 [ 37.924392][ T4288] do_mknodat+0x3f8/0x610 [ 37.925442][ T4288] __arm64_sys_mknodat+0xb0/0xcc [ 37.926659][ T4288] invoke_syscall+0x98/0x2bc [ 37.927800][ T4288] el0_svc_common+0x138/0x258 [ 37.928983][ T4288] do_el0_svc+0x58/0x13c [ 37.930055][ T4288] el0_svc+0x58/0x168 [ 37.931062][ T4288] el0t_64_sync_handler+0x84/0xf0 [ 37.932221][ T4288] el0t_64_sync+0x18c/0x190 [ 37.933333][ T4288] [ 37.933333][ T4288] other info that might help us debug this: [ 37.933333][ T4288] [ 37.935376][ T4288] Chain exists of: [ 37.935376][ T4288] &oi->ip_xattr_sem --> &journal->j_trans_barrier --> jbd2_handle [ 37.935376][ T4288] [ 37.938340][ T4288] Possible unsafe locking scenario: [ 37.938340][ T4288] [ 37.939962][ T4288] CPU0 CPU1 [ 37.941010][ T4288] ---- ---- [ 37.942102][ T4288] lock(jbd2_handle); [ 37.942955][ T4288] lock(&journal->j_trans_barrier); [ 37.944629][ T4288] lock(jbd2_handle); [ 37.945985][ T4288] lock(&oi->ip_xattr_sem); [ 37.946974][ T4288] [ 37.946974][ T4288] *** DEADLOCK *** [ 37.946974][ T4288] [ 37.948755][ T4288] 8 locks held by syz-executor210/4288: [ 37.949898][ T4288] #0: ffff0000d9d9e460 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 37.951905][ T4288] #1: ffff0000e1f809c8 (&type->i_mutex_dir_key#6/1){+.+.}-{3:3}, at: filename_create+0x204/0x468 [ 37.954235][ T4288] #2: ffff0000e1f8a648 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x164/0x4428 [ 37.957323][ T4288] #3: ffff0000e1f89808 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x164/0x4428 [ 37.960262][ T4288] #4: ffff0000e1f8c2c8 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#8){+.+.}-{3:3}, at: ocfs2_reserve_local_alloc_bits+0xfc/0x25dc [ 37.963279][ T4288] #5: ffff0000d9d9e650 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_mknod+0xe64/0x2560 [ 37.965313][ T4288] #6: ffff0000da3660e8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x3dc/0x73c [ 37.967781][ T4288] #7: ffff0000da160990 (jbd2_handle){.+.+}-{0:0}, at: start_this_handle+0x1118/0x13ac [ 37.969971][ T4288] [ 37.969971][ T4288] stack backtrace: [ 37.971190][ T4288] CPU: 0 PID: 4288 Comm: syz-executor210 Not tainted 6.1.119-syzkaller #0 [ 37.972856][ T4288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 37.974929][ T4288] Call trace: [ 37.975636][ T4288] dump_backtrace+0x1c8/0x1f4 [ 37.976628][ T4288] show_stack+0x2c/0x3c [ 37.977543][ T4288] dump_stack_lvl+0x108/0x170 [ 37.978580][ T4288] dump_stack+0x1c/0x58 [ 37.979450][ T4288] print_circular_bug+0x150/0x1b8 [ 37.980545][ T4288] check_noncircular+0x2cc/0x378 [ 37.981491][ T4288] __lock_acquire+0x3338/0x7680 [ 37.982484][ T4288] lock_acquire+0x26c/0x7cc [ 37.983433][ T4288] down_read+0x64/0x308 [ 37.984375][ T4288] ocfs2_init_acl+0x2c8/0x764 [ 37.985370][ T4288] ocfs2_mknod+0x1574/0x2560 [ 37.986353][ T4288] vfs_mknod+0x3c8/0x448 [ 37.987280][ T4288] do_mknodat+0x3f8/0x610 [ 37.988172][ T4288] __arm64_sys_mknodat+0xb0/0xcc [ 37.989179][ T4288] invoke_syscall+0x98/0x2bc [ 37.990155][ T4288] el0_svc_common+0x138/0x258 [ 37.991098][ T4288] do_el0_svc+0x58/0x13c [ 37.992033][ T4288] el0_svc+0x58/0x168 [ 37.992896][ T4288] el0t_64_sync_handler+0x84/0xf0 [ 37.994001][ T4288] el0t_64_sync+0x18c/0x190