====================================================== WARNING: possible circular locking dependency detected 4.19.211-syzkaller #0 Not tainted ------------------------------------------------------ kworker/u4:4/2888 is trying to acquire lock: 00000000f26fda12 (&rl->lock){++++}, at: ntfs_read_block fs/ntfs/aops.c:265 [inline] 00000000f26fda12 (&rl->lock){++++}, at: ntfs_readpage+0x1909/0x21b0 fs/ntfs/aops.c:452 but task is already holding lock: 000000006441c642 (&ni->mrec_lock){+.+.}, at: map_mft_record+0x3c/0xc70 fs/ntfs/mft.c:168 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #1 (&ni->mrec_lock){+.+.}: map_mft_record+0x3c/0xc70 fs/ntfs/mft.c:168 ntfs_truncate+0x202/0x2820 fs/ntfs/inode.c:2395 ntfs_truncate_vfs fs/ntfs/inode.c:2875 [inline] ntfs_setattr+0x1b6/0x620 fs/ntfs/inode.c:2925 notify_change+0x70b/0xfc0 fs/attr.c:334 do_truncate+0x134/0x1f0 fs/open.c:63 handle_truncate fs/namei.c:3009 [inline] do_last fs/namei.c:3427 [inline] path_openat+0x2308/0x2df0 fs/namei.c:3537 do_filp_open+0x18c/0x3f0 fs/namei.c:3567 do_sys_open+0x3b3/0x520 fs/open.c:1085 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe -> #0 (&rl->lock){++++}: down_read+0x36/0x80 kernel/locking/rwsem.c:24 ntfs_read_block fs/ntfs/aops.c:265 [inline] ntfs_readpage+0x1909/0x21b0 fs/ntfs/aops.c:452 do_read_cache_page+0x533/0x1170 mm/filemap.c:2828 read_mapping_page include/linux/pagemap.h:402 [inline] ntfs_map_page fs/ntfs/aops.h:89 [inline] ntfs_sync_mft_mirror+0x24f/0x1d00 fs/ntfs/mft.c:494 write_mft_record_nolock+0x13d2/0x16c0 fs/ntfs/mft.c:801 write_mft_record fs/ntfs/mft.h:109 [inline] __ntfs_write_inode+0x609/0xe10 fs/ntfs/inode.c:3064 write_inode fs/fs-writeback.c:1244 [inline] __writeback_single_inode+0x733/0x11d0 fs/fs-writeback.c:1442 writeback_sb_inodes+0x537/0xef0 fs/fs-writeback.c:1647 wb_writeback+0x28d/0xcc0 fs/fs-writeback.c:1820 wb_do_writeback fs/fs-writeback.c:1965 [inline] wb_workfn+0x29b/0x1250 fs/fs-writeback.c:2006 process_one_work+0x864/0x1570 kernel/workqueue.c:2153 worker_thread+0x64c/0x1130 kernel/workqueue.c:2296 kthread+0x33f/0x460 kernel/kthread.c:259 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415 other info that might help us debug this: Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(&ni->mrec_lock); lock(&rl->lock); lock(&ni->mrec_lock); lock(&rl->lock); *** DEADLOCK *** 3 locks held by kworker/u4:4/2888: #0: 00000000d2d4725d ((wq_completion)"writeback"){+.+.}, at: process_one_work+0x767/0x1570 kernel/workqueue.c:2124 #1: 0000000010d42702 ((work_completion)(&(&wb->dwork)->work)){+.+.}, at: process_one_work+0x79c/0x1570 kernel/workqueue.c:2128 #2: 000000006441c642 (&ni->mrec_lock){+.+.}, at: map_mft_record+0x3c/0xc70 fs/ntfs/mft.c:168 stack backtrace: CPU: 0 PID: 2888 Comm: kworker/u4:4 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Workqueue: writeback wb_workfn (flush-7:2) Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 print_circular_bug.constprop.0.cold+0x2d7/0x41e kernel/locking/lockdep.c:1222 check_prev_add kernel/locking/lockdep.c:1866 [inline] check_prevs_add kernel/locking/lockdep.c:1979 [inline] validate_chain kernel/locking/lockdep.c:2420 [inline] __lock_acquire+0x30c9/0x3ff0 kernel/locking/lockdep.c:3416 lock_acquire+0x170/0x3c0 kernel/locking/lockdep.c:3908 down_read+0x36/0x80 kernel/locking/rwsem.c:24 ntfs_read_block fs/ntfs/aops.c:265 [inline] ntfs_readpage+0x1909/0x21b0 fs/ntfs/aops.c:452 do_read_cache_page+0x533/0x1170 mm/filemap.c:2828 read_mapping_page include/linux/pagemap.h:402 [inline] ntfs_map_page fs/ntfs/aops.h:89 [inline] ntfs_sync_mft_mirror+0x24f/0x1d00 fs/ntfs/mft.c:494 write_mft_record_nolock+0x13d2/0x16c0 fs/ntfs/mft.c:801 write_mft_record fs/ntfs/mft.h:109 [inline] __ntfs_write_inode+0x609/0xe10 fs/ntfs/inode.c:3064 write_inode fs/fs-writeback.c:1244 [inline] __writeback_single_inode+0x733/0x11d0 fs/fs-writeback.c:1442 writeback_sb_inodes+0x537/0xef0 fs/fs-writeback.c:1647 wb_writeback+0x28d/0xcc0 fs/fs-writeback.c:1820 wb_do_writeback fs/fs-writeback.c:1965 [inline] wb_workfn+0x29b/0x1250 fs/fs-writeback.c:2006 process_one_work+0x864/0x1570 kernel/workqueue.c:2153 worker_thread+0x64c/0x1130 kernel/workqueue.c:2296 kthread+0x33f/0x460 kernel/kthread.c:259 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415 new mount options do not match the existing superblock, will be ignored ntfs: volume version 3.1. syz-executor.4 (16848): drop_caches: 1 XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount XFS (loop0): Quotacheck needed: Please wait. XFS (loop0): Quotacheck: Done. attempt to access beyond end of device loop0: rw=399361, want=65600, limit=65536 XFS (loop0): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop0): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop0): Log I/O Error Detected. Shutting down filesystem XFS (loop0): Please umount the filesystem and rectify the problem(s) XFS (loop0): Unmounting Filesystem syz-executor.4 (16848): drop_caches: 1 vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) vhci_hcd vhci_hcd.0: Device attached audit: type=1800 audit(1673077540.993:752): pid=16928 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=14148 res=0 audit: type=1800 audit(1673077541.053:753): pid=16934 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=14148 res=0 audit: type=1800 audit(1673077541.193:754): pid=16928 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=14154 res=0 usb 18-1: SetAddress Request (2) to port 0 usb 18-1: new SuperSpeed Gen 1 USB device number 2 using vhci_hcd XFS (loop2): Mounting V4 Filesystem XFS (loop2): totally zeroed log XFS (loop2): Ending clean mount XFS (loop2): Quotacheck needed: Please wait. XFS (loop2): Quotacheck: Done. attempt to access beyond end of device loop2: rw=399361, want=65600, limit=65536 XFS (loop2): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop2): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop2): Log I/O Error Detected. Shutting down filesystem XFS (loop2): Please umount the filesystem and rectify the problem(s) XFS (loop2): Unmounting Filesystem XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. XFS (loop0): Quotacheck needed: Please wait. audit: type=1804 audit(1673077541.733:755): pid=16929 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir1377042044/syzkaller.Z9RTIO/94/bus" dev="sda1" ino=14124 res=1 XFS (loop0): Quotacheck: Done. netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. vhci_hcd: connection reset by peer vhci_hcd: stop threads vhci_hcd: release socket vhci_hcd: disconnect device attempt to access beyond end of device loop0: rw=399361, want=65600, limit=65536 XFS (loop0): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop0): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop0): Log I/O Error Detected. Shutting down filesystem XFS (loop0): Please umount the filesystem and rectify the problem(s) XFS (loop0): Unmounting Filesystem netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. audit: type=1800 audit(1673077542.373:756): pid=17045 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=14123 res=0 vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) vhci_hcd vhci_hcd.0: Device attached audit: type=1800 audit(1673077542.413:757): pid=17051 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=14123 res=0 audit: type=1800 audit(1673077542.413:758): pid=17051 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=14123 res=0 audit: type=1800 audit(1673077542.413:759): pid=17051 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=14123 res=0 wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 kauditd_printk_skb: 32 callbacks suppressed audit: type=1804 audit(1673077543.033:792): pid=17068 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2557948332/syzkaller.9XK8CP/113/bus" dev="sda1" ino=14131 res=1 vhci_hcd: connection closed vhci_hcd: stop threads vhci_hcd: release socket vhci_hcd: disconnect device XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount XFS (loop0): Quotacheck needed: Please wait. XFS (loop0): Quotacheck: Done. attempt to access beyond end of device loop0: rw=399361, want=65600, limit=65536 XFS (loop0): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop0): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop0): Log I/O Error Detected. Shutting down filesystem XFS (loop0): Please umount the filesystem and rectify the problem(s) XFS (loop0): Unmounting Filesystem Bluetooth: hci1: command 0x0406 tx timeout Bluetooth: hci2: command 0x0406 tx timeout audit: type=1800 audit(1673077543.753:793): pid=17134 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=14170 res=0 Bluetooth: hci0: command 0x0406 tx timeout vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4) vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) Bluetooth: hci3: command 0x0406 tx timeout vhci_hcd vhci_hcd.0: Device attached audit: type=1800 audit(1673077543.843:794): pid=17134 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=14170 res=0 Bluetooth: hci4: command 0x0406 tx timeout audit: type=1804 audit(1673077544.103:795): pid=17126 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir1377042044/syzkaller.Z9RTIO/96/bus" dev="sda1" ino=14132 res=1 XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount XFS (loop0): Quotacheck needed: Please wait. XFS (loop0): Quotacheck: Done. attempt to access beyond end of device loop0: rw=399361, want=65600, limit=65536 XFS (loop0): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop0): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop0): Log I/O Error Detected. Shutting down filesystem XFS (loop0): Please umount the filesystem and rectify the problem(s) XFS (loop0): Unmounting Filesystem vhci_hcd: connection closed vhci_hcd: stop threads vhci_hcd: release socket vhci_hcd: disconnect device XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount XFS (loop0): Quotacheck needed: Please wait. XFS (loop0): Quotacheck: Done. attempt to access beyond end of device loop0: rw=399361, want=65600, limit=65536 XFS (loop0): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop0): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop0): Log I/O Error Detected. Shutting down filesystem XFS (loop0): Please umount the filesystem and rectify the problem(s) XFS (loop0): Unmounting Filesystem bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode device team_slave_1 entered promiscuous mode bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered forwarding state XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount XFS (loop0): Quotacheck needed: Please wait. XFS (loop0): Quotacheck: Done. attempt to access beyond end of device loop0: rw=399361, want=65600, limit=65536 XFS (loop0): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop0): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop0): Log I/O Error Detected. Shutting down filesystem XFS (loop0): Please umount the filesystem and rectify the problem(s) XFS (loop0): Unmounting Filesystem XFS (loop4): Mounting V4 Filesystem XFS (loop4): totally zeroed log XFS (loop4): Ending clean mount XFS (loop4): Quotacheck needed: Please wait. XFS (loop4): Quotacheck: Done. attempt to access beyond end of device loop4: rw=399361, want=65600, limit=65536 XFS (loop4): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop4): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop4): Log I/O Error Detected. Shutting down filesystem XFS (loop4): Please umount the filesystem and rectify the problem(s) XFS (loop4): Unmounting Filesystem usb 18-1: device descriptor read/8, error -110 usb 18-1: new SuperSpeed Gen 1 USB device number 2 using vhci_hcd usb 18-1: enqueue for inactive port 0 usb 18-1: enqueue for inactive port 0 usb 18-1: enqueue for inactive port 0 XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount XFS (loop0): Quotacheck needed: Please wait. XFS (loop0): Quotacheck: Done. XFS (loop4): Mounting V4 Filesystem XFS (loop0): Unmounting Filesystem attempt to access beyond end of device XFS (loop4): totally zeroed log loop0: rw=399361, want=65600, limit=65536 XFS (loop0): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop0): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop4): Ending clean mount XFS (loop0): Log I/O Error Detected. Shutting down filesystem XFS (loop4): Quotacheck needed: Please wait. XFS (loop0): Please umount the filesystem and rectify the problem(s) XFS (loop4): Quotacheck: Done. attempt to access beyond end of device loop4: rw=399361, want=65600, limit=65536 XFS (loop4): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop4): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop4): Log I/O Error Detected. Shutting down filesystem XFS (loop4): Please umount the filesystem and rectify the problem(s) XFS (loop4): Unmounting Filesystem XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount XFS (loop0): Quotacheck needed: Please wait. XFS (loop0): Quotacheck: Done. XFS (loop0): Unmounting Filesystem attempt to access beyond end of device loop0: rw=399361, want=65600, limit=65536 XFS (loop0): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop0): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop0): Log I/O Error Detected. Shutting down filesystem XFS (loop0): Please umount the filesystem and rectify the problem(s) usb usb18-port1: Cannot enable. Maybe the USB cable is bad? usb usb18-port1: attempt power cycle XFS (loop4): Mounting V4 Filesystem XFS (loop4): totally zeroed log XFS (loop4): Ending clean mount XFS (loop4): Quotacheck needed: Please wait. XFS (loop4): Quotacheck: Done. attempt to access beyond end of device loop4: rw=399361, want=65600, limit=65536 XFS (loop4): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop4): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop4): Log I/O Error Detected. Shutting down filesystem XFS (loop4): Please umount the filesystem and rectify the problem(s) XFS (loop4): Unmounting Filesystem XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount XFS (loop0): Quotacheck needed: Please wait. XFS (loop0): Quotacheck: Done. XFS (loop0): Unmounting Filesystem attempt to access beyond end of device loop0: rw=399361, want=65600, limit=65536 XFS (loop0): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop0): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop0): Log I/O Error Detected. Shutting down filesystem XFS (loop0): Please umount the filesystem and rectify the problem(s) XFS (loop4): Mounting V4 Filesystem XFS (loop4): totally zeroed log XFS (loop4): Ending clean mount XFS (loop4): Quotacheck needed: Please wait. XFS (loop4): Quotacheck: Done. XFS (loop4): Unmounting Filesystem usb usb18-port1: Cannot enable. Maybe the USB cable is bad? attempt to access beyond end of device loop4: rw=399361, want=65600, limit=65536 XFS (loop4): metadata I/O error in "xlog_iodone" at daddr 0x10000 len 64 error 5 XFS (loop4): xfs_do_force_shutdown(0x2) called from line 1271 of file fs/xfs/xfs_log.c. Return address = 00000000ce2971d4 XFS (loop4): Log I/O Error Detected. Shutting down filesystem XFS (loop4): Please umount the filesystem and rectify the problem(s) XFS (loop0): Mounting V4 Filesystem XFS (loop0): totally zeroed log XFS (loop0): Ending clean mount XFS (loop0): Quotacheck needed: Please wait. XFS (loop0): Quotacheck: Done. XFS (loop4): Mounting V4 Filesystem XFS (loop0): Unmounting Filesystem XFS (loop4): totally zeroed log attempt to access beyond end of device XFS (loop4): Ending clean mount XFS (loop4): Quotacheck needed: Please wait. loop0: rw=399361, want=65600, limit=65536 XFS (loop4): Quotacheck: Done.