Extracting prog: 38.678154403s
Minimizing prog: 3m34.270488165s
Simplifying prog options: 5m59.839790016s
Extracting C: 1m17.287127664s
Simplifying C: 0s


extracting reproducer from 69 programs
first checking the prog from the crash report
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$iso9660-syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000001480)='./file0\x00', 0x1008001, &(0x7f0000000100)=ANY=[@ANYBLOB="686964652c6d61703d6f66662c7362736563746f723d3078303030303030303030303030303030303030303030303030382c00000000000000000000000200000000"], 0x1, 0x1430, &(0x7f00000014c0)="$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")
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")

program crashed: possible deadlock in ext4_writepages
single: successfully extracted reproducer
found reproducer with 2 syscalls
minimizing guilty program
testing program (duration=45.220678968s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$iso9660
detailed listing:
executing program 0:
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000001480)='./file0\x00', 0x1008001, &(0x7f0000000100)=ANY=[@ANYBLOB="686964652c6d61703d6f66662c7362736563746f723d3078303030303030303030303030303030303030303030303030382c00000000000000000000000200000000"], 0x1, 0x1430, &(0x7f00000014c0)="$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")

program did not crash
testing program (duration=45.220678968s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")

program crashed: possible deadlock in ext4_writepages
extracting C reproducer
testing compiled C program (duration=45.220678968s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program did not crash
simplifying guilty program options
testing program (duration=45.220678968s, {Threaded:false Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")

program crashed: possible deadlock in ext4_writepages
extracting C reproducer
testing compiled C program (duration=45.220678968s, {Threaded:false Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program did not crash
testing program (duration=45.220678968s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$eJzs281rHOUfAPDvTF7a/vqS/Gp9aa0aLUJQTJq0ag9eFAWRioIe6jEm2xK6baSJYmuxqYgnQQp6Fo+if4E3EUQ9CV49eZJC0V7aeorM7Ey72WYTYzadmP18YHafZ+bZnee7z7w8+zy7AXStoewhidgREb9GxEAju7jAUOPp+tXzkzeunp9MYmHhtT+SvNy1q+cny6Ll67YXmeE0Iv0wKXay2OzZcycn6vXamSI/OnfqrdHZs+eeeOfUxInaidrp8SNHDh8ae/qp8Sc7EmcW17V978/s3/viG5denjx26c0fv87qu6PY3hxHpwxlgf+5kGvd9mind1axnU3ppLfCirAqPRGRNVdffv4PRE/caryBeOGDSisHrKvs3rSl/eb5BWATS6LqGgDVKG/02fffcrlDXY8N4cqzjS9AWdzXi6WxpTfSokxfy/fbThqKiGPzf32eLbFO4xAAAM0+nvzsaH9EvHfjq5eyvsdARJTjQffkj7/lj7uKOZTBiPh/ROyOiLsiYk9E3F2UvTci7ltjfW7v/6SX1/iWy8r6f88Uc1uL+39l7y8Ge4rczjz+vuT4dL12sPhMhqNvS5YfW2Yf3z7/yyfttjX3/7Il23/ZFyzqcbm3ZYBuamJuIu+UdsCVixH7epeKP7k5E5BExN6I2Le6t95VJqYf+3J/u0Irx7+MDswzLXyRhTefxT8fLfGXkub5yenb5idHt0a9dnC0PCpu99PPH73abv9rir8DrtQaz03t31pkMGmer53t7P7/5fGf9iev5/PM/cW6dyfm5s6MRfQnR/P8ovXjt15b5svy2fE/fGDp83938Zos/vsjIjuIH4iIByPioaLuD0fEIxFxYJkYf3hu5fgjraj9L0ZMLXn9u3n8t7T/6hM9J7//pt3+/1n7H85Tw8Wa/Pq3gqWqk10uWiu4ls8OAAAA/ivS/DfwSTpyM52mIyON3/Dvif+l9ZnZucePz7x9eqrxW/nB6EvLka6BYjy0Pl2vjSXzxTs2xkfHi7Hicrz0UDFu/GnPtjw/MjlTn6o4duh229uc/5nfe6quHbDOti25drz/jlcEqEDrPHq6OHvhlXAxgM3K/7Whe61w/jf/DwbYZNz/oXstdf5faMmbC4DNyf0fupfzH7pU+l3VNQAq5P4PXWkt/+tfx8TWjVGNahIbtVHyRESZSDdEfSTWKVH1lQkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKAz/g4AAP//K2Lmiw==")

program crashed: possible deadlock in ext4_writepages
extracting C reproducer
testing compiled C program (duration=45.220678968s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program did not crash
testing program (duration=45.220678968s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")

program crashed: possible deadlock in ext4_writepages
validation run: crashed=true
testing program (duration=45.220678968s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")

program crashed: possible deadlock in ext4_writepages
validation run: crashed=true
testing program (duration=45.220678968s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$eJzs281rHOUfAPDvTF7a/vqS/Gp9aa0aLUJQTJq0ag9eFAWRioIe6jEm2xK6baSJYmuxqYgnQQp6Fo+if4E3EUQ9CV49eZJC0V7aeorM7Ey72WYTYzadmP18YHafZ+bZnee7z7w8+zy7AXStoewhidgREb9GxEAju7jAUOPp+tXzkzeunp9MYmHhtT+SvNy1q+cny6Ll67YXmeE0Iv0wKXay2OzZcycn6vXamSI/OnfqrdHZs+eeeOfUxInaidrp8SNHDh8ae/qp8Sc7EmcW17V978/s3/viG5denjx26c0fv87qu6PY3hxHpwxlgf+5kGvd9mind1axnU3ppLfCirAqPRGRNVdffv4PRE/caryBeOGDSisHrKvs3rSl/eb5BWATS6LqGgDVKG/02fffcrlDXY8N4cqzjS9AWdzXi6WxpTfSokxfy/fbThqKiGPzf32eLbFO4xAAAM0+nvzsaH9EvHfjq5eyvsdARJTjQffkj7/lj7uKOZTBiPh/ROyOiLsiYk9E3F2UvTci7ltjfW7v/6SX1/iWy8r6f88Uc1uL+39l7y8Ge4rczjz+vuT4dL12sPhMhqNvS5YfW2Yf3z7/yyfttjX3/7Il23/ZFyzqcbm3ZYBuamJuIu+UdsCVixH7epeKP7k5E5BExN6I2Le6t95VJqYf+3J/u0Irx7+MDswzLXyRhTefxT8fLfGXkub5yenb5idHt0a9dnC0PCpu99PPH73abv9rir8DrtQaz03t31pkMGmer53t7P7/5fGf9iev5/PM/cW6dyfm5s6MRfQnR/P8ovXjt15b5svy2fE/fGDp83938Zos/vsjIjuIH4iIByPioaLuD0fEIxFxYJkYf3hu5fgjraj9L0ZMLXn9u3n8t7T/6hM9J7//pt3+/1n7H85Tw8Wa/Pq3gqWqk10uWiu4ls8OAAAA/ivS/DfwSTpyM52mIyON3/Dvif+l9ZnZucePz7x9eqrxW/nB6EvLka6BYjy0Pl2vjSXzxTs2xkfHi7Hicrz0UDFu/GnPtjw/MjlTn6o4duh229uc/5nfe6quHbDOti25drz/jlcEqEDrPHq6OHvhlXAxgM3K/7Whe61w/jf/DwbYZNz/oXstdf5faMmbC4DNyf0fupfzH7pU+l3VNQAq5P4PXWkt/+tfx8TWjVGNahIbtVHyRESZSDdEfSTWKVH1lQkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKAz/g4AAP//K2Lmiw==")

program crashed: possible deadlock in ext4_writepages
validation run: crashed=true
reproducing took 15m45.487424842s
repro crashed as (corrupted=false):
syz.0.17[5926]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
loop0: detected capacity change from 0 to 512
======================================================
WARNING: possible circular locking dependency detected
syzkaller #0 Not tainted
------------------------------------------------------
syz.0.17/5926 is trying to acquire lock:
ffff88807b2c8bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages_down_read fs/ext4/ext4.h:1767 [inline]
ffff88807b2c8bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0 fs/ext4/inode.c:2806

but task is already holding lock:
ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_write_trylock_xattr fs/ext4/xattr.h:162 [inline]
ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_try_to_expand_extra_isize fs/ext4/inode.c:6007 [inline]
ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 fs/ext4/inode.c:6088

which lock already depends on the new lock.


the existing dependency chain (in reverse order) is:

-> #2 (&ei->xattr_sem){++++}-{3:3}:
       down_read+0x46/0x2e0 kernel/locking/rwsem.c:1520
       ext4_setattr+0x86b/0x1c90 fs/ext4/inode.c:5490
       notify_change+0xb0d/0xe10 fs/attr.c:499
       chown_common+0x3f9/0x5a0 fs/open.c:783
       do_fchownat+0x168/0x270 fs/open.c:814
       __do_sys_chown fs/open.c:834 [inline]
       __se_sys_chown fs/open.c:832 [inline]
       __x64_sys_chown+0x82/0x90 fs/open.c:832
       do_syscall_x64 arch/x86/entry/common.c:51 [inline]
       do_syscall_64+0x55/0xb0 arch/x86/entry/common.c:81
       entry_SYSCALL_64_after_hwframe+0x68/0xd2

-> #1 (jbd2_handle){++++}-{0:0}:
       start_this_handle+0x1e9d/0x20c0 fs/jbd2/transaction.c:448
       jbd2__journal_start+0x2bb/0x5b0 fs/jbd2/transaction.c:505
       __ext4_journal_start_sb+0x203/0x570 fs/ext4/ext4_jbd2.c:112
       __ext4_journal_start fs/ext4/ext4_jbd2.h:326 [inline]
       ext4_do_writepages+0xf92/0x38d0 fs/ext4/inode.c:2701
       ext4_writepages+0x1a8/0x2f0 fs/ext4/inode.c:2807
       do_writepages+0x3a2/0x600 mm/page-writeback.c:2575
       __writeback_single_inode+0x153/0xee0 fs/fs-writeback.c:1635
       writeback_sb_inodes+0x77c/0xef0 fs/fs-writeback.c:1926
       __writeback_inodes_wb+0x111/0x240 fs/fs-writeback.c:1997
       wb_writeback+0x464/0xba0 fs/fs-writeback.c:2107
       wb_check_old_data_flush fs/fs-writeback.c:2211 [inline]
       wb_do_writeback fs/fs-writeback.c:2264 [inline]
       wb_workfn+0xabc/0xe20 fs/fs-writeback.c:2292
       process_one_work kernel/workqueue.c:2634 [inline]
       process_scheduled_works+0xa45/0x15b0 kernel/workqueue.c:2711
       worker_thread+0xa55/0xfc0 kernel/workqueue.c:2792
       kthread+0x2fa/0x390 kernel/kthread.c:388
       ret_from_fork+0x48/0x80 arch/x86/kernel/process.c:152
       ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:293

-> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
       check_prev_add kernel/locking/lockdep.c:3134 [inline]
       check_prevs_add kernel/locking/lockdep.c:3253 [inline]
       validate_chain kernel/locking/lockdep.c:3869 [inline]
       __lock_acquire+0x2ddb/0x7c80 kernel/locking/lockdep.c:5137
       lock_acquire+0x197/0x410 kernel/locking/lockdep.c:5754
       percpu_down_read+0x44/0x1a0 include/linux/percpu-rwsem.h:51
       ext4_writepages_down_read fs/ext4/ext4.h:1767 [inline]
       ext4_writepages+0x170/0x2f0 fs/ext4/inode.c:2806
       do_writepages+0x3a2/0x600 mm/page-writeback.c:2575
       __writeback_single_inode+0x153/0xee0 fs/fs-writeback.c:1635
       writeback_single_inode+0x211/0x720 fs/fs-writeback.c:1756
       write_inode_now+0x161/0x1e0 fs/fs-writeback.c:2802
       iput_final fs/inode.c:1807 [inline]
       iput+0x5b2/0x920 fs/inode.c:1846
       ext4_xattr_block_set+0x273a/0x32a0 fs/ext4/xattr.c:2211
       ext4_xattr_move_to_block fs/ext4/xattr.c:2679 [inline]
       ext4_xattr_make_inode_space fs/ext4/xattr.c:2754 [inline]
       ext4_expand_extra_isize_ea+0x10ea/0x19e0 fs/ext4/xattr.c:2846
       __ext4_expand_extra_isize+0x306/0x400 fs/ext4/inode.c:5967
       ext4_try_to_expand_extra_isize fs/ext4/inode.c:6010 [inline]
       __ext4_mark_inode_dirty+0x45d/0x6e0 fs/ext4/inode.c:6088
       ext4_evict_inode+0x7ed/0xea0 fs/ext4/inode.c:252
       evict+0x486/0x870 fs/inode.c:705
       ext4_orphan_cleanup+0xbd4/0x1400 fs/ext4/orphan.c:470
       __ext4_fill_super fs/ext4/super.c:5601 [inline]
       ext4_fill_super+0x5de4/0x66c0 fs/ext4/super.c:5724
       get_tree_bdev+0x3e4/0x510 fs/super.c:1591
       vfs_get_tree+0x8c/0x280 fs/super.c:1764
       do_new_mount+0x24b/0xa40 fs/namespace.c:3386
       do_mount fs/namespace.c:3726 [inline]
       __do_sys_mount fs/namespace.c:3935 [inline]
       __se_sys_mount+0x2da/0x3c0 fs/namespace.c:3912
       do_syscall_x64 arch/x86/entry/common.c:51 [inline]
       do_syscall_64+0x55/0xb0 arch/x86/entry/common.c:81
       entry_SYSCALL_64_after_hwframe+0x68/0xd2

other info that might help us debug this:

Chain exists of:
  &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem

 Possible unsafe locking scenario:

       CPU0                    CPU1
       ----                    ----
  lock(&ei->xattr_sem);
                               lock(jbd2_handle);
                               lock(&ei->xattr_sem);
  rlock(&sbi->s_writepages_rwsem);

 *** DEADLOCK ***

3 locks held by syz.0.17/5926:
 #0: ffff88802cab80e0 (&type->s_umount_key#31){++++}-{3:3}, at: __super_lock fs/super.c:56 [inline]
 #0: ffff88802cab80e0 (&type->s_umount_key#31){++++}-{3:3}, at: __super_lock_excl fs/super.c:71 [inline]
 #0: ffff88802cab80e0 (&type->s_umount_key#31){++++}-{3:3}, at: get_tree_bdev+0x344/0x510 fs/super.c:1589
 #1: ffff88802cab8608 (sb_internal){.+.+}-{0:0}, at: __sb_start_write include/linux/fs.h:1633 [inline]
 #1: ffff88802cab8608 (sb_internal){.+.+}-{0:0}, at: sb_start_intwrite include/linux/fs.h:1755 [inline]
 #1: ffff88802cab8608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 fs/ext4/inode.c:213
 #2: ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_write_trylock_xattr fs/ext4/xattr.h:162 [inline]
 #2: ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_try_to_expand_extra_isize fs/ext4/inode.c:6007 [inline]
 #2: ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 fs/ext4/inode.c:6088

stack backtrace:
CPU: 0 PID: 5926 Comm: syz.0.17 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Call Trace:
 <TASK>
 dump_stack_lvl+0x16c/0x230 lib/dump_stack.c:106
 check_noncircular+0x2bd/0x3c0 kernel/locking/lockdep.c:2187
 check_prev_add kernel/locking/lockdep.c:3134 [inline]
 check_prevs_add kernel/locking/lockdep.c:3253 [inline]
 validate_chain kernel/locking/lockdep.c:3869 [inline]
 __lock_acquire+0x2ddb/0x7c80 kernel/locking/lockdep.c:5137
 lock_acquire+0x197/0x410 kernel/locking/lockdep.c:5754
 percpu_down_read+0x44/0x1a0 include/linux/percpu-rwsem.h:51
 ext4_writepages_down_read fs/ext4/ext4.h:1767 [inline]
 ext4_writepages+0x170/0x2f0 fs/ext4/inode.c:2806
 do_writepages+0x3a2/0x600 mm/page-writeback.c:2575
 __writeback_single_inode+0x153/0xee0 fs/fs-writeback.c:1635
 writeback_single_inode+0x211/0x720 fs/fs-writeback.c:1756
 write_inode_now+0x161/0x1e0 fs/fs-writeback.c:2802
 iput_final fs/inode.c:1807 [inline]
 iput+0x5b2/0x920 fs/inode.c:1846
 ext4_xattr_block_set+0x273a/0x32a0 fs/ext4/xattr.c:2211
 ext4_xattr_move_to_block fs/ext4/xattr.c:2679 [inline]
 ext4_xattr_make_inode_space fs/ext4/xattr.c:2754 [inline]
 ext4_expand_extra_isize_ea+0x10ea/0x19e0 fs/ext4/xattr.c:2846
 __ext4_expand_extra_isize+0x306/0x400 fs/ext4/inode.c:5967
 ext4_try_to_expand_extra_isize fs/ext4/inode.c:6010 [inline]
 __ext4_mark_inode_dirty+0x45d/0x6e0 fs/ext4/inode.c:6088
 ext4_evict_inode+0x7ed/0xea0 fs/ext4/inode.c:252
 evict+0x486/0x870 fs/inode.c:705
 ext4_orphan_cleanup+0xbd4/0x1400 fs/ext4/orphan.c:470
 __ext4_fill_super fs/ext4/super.c:5601 [inline]
 ext4_fill_super+0x5de4/0x66c0 fs/ext4/super.c:5724
 get_tree_bdev+0x3e4/0x510 fs/super.c:1591
 vfs_get_tree+0x8c/0x280 fs/super.c:1764
 do_new_mount+0x24b/0xa40 fs/namespace.c:3386
 do_mount fs/namespace.c:3726 [inline]
 __do_sys_mount fs/namespace.c:3935 [inline]
 __se_sys_mount+0x2da/0x3c0 fs/namespace.c:3912
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x55/0xb0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f9498b90eea
Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffd11f50328 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007ffd11f503b0 RCX: 00007f9498b90eea
RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffd11f50370
RBP: 0000200000000180 R08: 00007ffd11f503b0 R09: 0000000000800700
R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
R13: 00007ffd11f50370 R14: 000000000000046f R15: 000000000000002c
 </TASK>
EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
EXT4-fs (loop0): Remounting filesystem read-only
EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck.
EXT4-fs warning (device loop0): ext4_evict_inode:255: couldn't mark inode dirty (err -5)
EXT4-fs (loop0): 1 orphan inode deleted
EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.

final repro crashed as (corrupted=false):
syz.0.17[5926]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
loop0: detected capacity change from 0 to 512
======================================================
WARNING: possible circular locking dependency detected
syzkaller #0 Not tainted
------------------------------------------------------
syz.0.17/5926 is trying to acquire lock:
ffff88807b2c8bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages_down_read fs/ext4/ext4.h:1767 [inline]
ffff88807b2c8bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0 fs/ext4/inode.c:2806

but task is already holding lock:
ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_write_trylock_xattr fs/ext4/xattr.h:162 [inline]
ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_try_to_expand_extra_isize fs/ext4/inode.c:6007 [inline]
ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 fs/ext4/inode.c:6088

which lock already depends on the new lock.


the existing dependency chain (in reverse order) is:

-> #2 (&ei->xattr_sem){++++}-{3:3}:
       down_read+0x46/0x2e0 kernel/locking/rwsem.c:1520
       ext4_setattr+0x86b/0x1c90 fs/ext4/inode.c:5490
       notify_change+0xb0d/0xe10 fs/attr.c:499
       chown_common+0x3f9/0x5a0 fs/open.c:783
       do_fchownat+0x168/0x270 fs/open.c:814
       __do_sys_chown fs/open.c:834 [inline]
       __se_sys_chown fs/open.c:832 [inline]
       __x64_sys_chown+0x82/0x90 fs/open.c:832
       do_syscall_x64 arch/x86/entry/common.c:51 [inline]
       do_syscall_64+0x55/0xb0 arch/x86/entry/common.c:81
       entry_SYSCALL_64_after_hwframe+0x68/0xd2

-> #1 (jbd2_handle){++++}-{0:0}:
       start_this_handle+0x1e9d/0x20c0 fs/jbd2/transaction.c:448
       jbd2__journal_start+0x2bb/0x5b0 fs/jbd2/transaction.c:505
       __ext4_journal_start_sb+0x203/0x570 fs/ext4/ext4_jbd2.c:112
       __ext4_journal_start fs/ext4/ext4_jbd2.h:326 [inline]
       ext4_do_writepages+0xf92/0x38d0 fs/ext4/inode.c:2701
       ext4_writepages+0x1a8/0x2f0 fs/ext4/inode.c:2807
       do_writepages+0x3a2/0x600 mm/page-writeback.c:2575
       __writeback_single_inode+0x153/0xee0 fs/fs-writeback.c:1635
       writeback_sb_inodes+0x77c/0xef0 fs/fs-writeback.c:1926
       __writeback_inodes_wb+0x111/0x240 fs/fs-writeback.c:1997
       wb_writeback+0x464/0xba0 fs/fs-writeback.c:2107
       wb_check_old_data_flush fs/fs-writeback.c:2211 [inline]
       wb_do_writeback fs/fs-writeback.c:2264 [inline]
       wb_workfn+0xabc/0xe20 fs/fs-writeback.c:2292
       process_one_work kernel/workqueue.c:2634 [inline]
       process_scheduled_works+0xa45/0x15b0 kernel/workqueue.c:2711
       worker_thread+0xa55/0xfc0 kernel/workqueue.c:2792
       kthread+0x2fa/0x390 kernel/kthread.c:388
       ret_from_fork+0x48/0x80 arch/x86/kernel/process.c:152
       ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:293

-> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
       check_prev_add kernel/locking/lockdep.c:3134 [inline]
       check_prevs_add kernel/locking/lockdep.c:3253 [inline]
       validate_chain kernel/locking/lockdep.c:3869 [inline]
       __lock_acquire+0x2ddb/0x7c80 kernel/locking/lockdep.c:5137
       lock_acquire+0x197/0x410 kernel/locking/lockdep.c:5754
       percpu_down_read+0x44/0x1a0 include/linux/percpu-rwsem.h:51
       ext4_writepages_down_read fs/ext4/ext4.h:1767 [inline]
       ext4_writepages+0x170/0x2f0 fs/ext4/inode.c:2806
       do_writepages+0x3a2/0x600 mm/page-writeback.c:2575
       __writeback_single_inode+0x153/0xee0 fs/fs-writeback.c:1635
       writeback_single_inode+0x211/0x720 fs/fs-writeback.c:1756
       write_inode_now+0x161/0x1e0 fs/fs-writeback.c:2802
       iput_final fs/inode.c:1807 [inline]
       iput+0x5b2/0x920 fs/inode.c:1846
       ext4_xattr_block_set+0x273a/0x32a0 fs/ext4/xattr.c:2211
       ext4_xattr_move_to_block fs/ext4/xattr.c:2679 [inline]
       ext4_xattr_make_inode_space fs/ext4/xattr.c:2754 [inline]
       ext4_expand_extra_isize_ea+0x10ea/0x19e0 fs/ext4/xattr.c:2846
       __ext4_expand_extra_isize+0x306/0x400 fs/ext4/inode.c:5967
       ext4_try_to_expand_extra_isize fs/ext4/inode.c:6010 [inline]
       __ext4_mark_inode_dirty+0x45d/0x6e0 fs/ext4/inode.c:6088
       ext4_evict_inode+0x7ed/0xea0 fs/ext4/inode.c:252
       evict+0x486/0x870 fs/inode.c:705
       ext4_orphan_cleanup+0xbd4/0x1400 fs/ext4/orphan.c:470
       __ext4_fill_super fs/ext4/super.c:5601 [inline]
       ext4_fill_super+0x5de4/0x66c0 fs/ext4/super.c:5724
       get_tree_bdev+0x3e4/0x510 fs/super.c:1591
       vfs_get_tree+0x8c/0x280 fs/super.c:1764
       do_new_mount+0x24b/0xa40 fs/namespace.c:3386
       do_mount fs/namespace.c:3726 [inline]
       __do_sys_mount fs/namespace.c:3935 [inline]
       __se_sys_mount+0x2da/0x3c0 fs/namespace.c:3912
       do_syscall_x64 arch/x86/entry/common.c:51 [inline]
       do_syscall_64+0x55/0xb0 arch/x86/entry/common.c:81
       entry_SYSCALL_64_after_hwframe+0x68/0xd2

other info that might help us debug this:

Chain exists of:
  &sbi->s_writepages_rwsem --> jbd2_handle --> &ei->xattr_sem

 Possible unsafe locking scenario:

       CPU0                    CPU1
       ----                    ----
  lock(&ei->xattr_sem);
                               lock(jbd2_handle);
                               lock(&ei->xattr_sem);
  rlock(&sbi->s_writepages_rwsem);

 *** DEADLOCK ***

3 locks held by syz.0.17/5926:
 #0: ffff88802cab80e0 (&type->s_umount_key#31){++++}-{3:3}, at: __super_lock fs/super.c:56 [inline]
 #0: ffff88802cab80e0 (&type->s_umount_key#31){++++}-{3:3}, at: __super_lock_excl fs/super.c:71 [inline]
 #0: ffff88802cab80e0 (&type->s_umount_key#31){++++}-{3:3}, at: get_tree_bdev+0x344/0x510 fs/super.c:1589
 #1: ffff88802cab8608 (sb_internal){.+.+}-{0:0}, at: __sb_start_write include/linux/fs.h:1633 [inline]
 #1: ffff88802cab8608 (sb_internal){.+.+}-{0:0}, at: sb_start_intwrite include/linux/fs.h:1755 [inline]
 #1: ffff88802cab8608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 fs/ext4/inode.c:213
 #2: ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_write_trylock_xattr fs/ext4/xattr.h:162 [inline]
 #2: ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_try_to_expand_extra_isize fs/ext4/inode.c:6007 [inline]
 #2: ffff888073a65ac8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 fs/ext4/inode.c:6088

stack backtrace:
CPU: 0 PID: 5926 Comm: syz.0.17 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Call Trace:
 <TASK>
 dump_stack_lvl+0x16c/0x230 lib/dump_stack.c:106
 check_noncircular+0x2bd/0x3c0 kernel/locking/lockdep.c:2187
 check_prev_add kernel/locking/lockdep.c:3134 [inline]
 check_prevs_add kernel/locking/lockdep.c:3253 [inline]
 validate_chain kernel/locking/lockdep.c:3869 [inline]
 __lock_acquire+0x2ddb/0x7c80 kernel/locking/lockdep.c:5137
 lock_acquire+0x197/0x410 kernel/locking/lockdep.c:5754
 percpu_down_read+0x44/0x1a0 include/linux/percpu-rwsem.h:51
 ext4_writepages_down_read fs/ext4/ext4.h:1767 [inline]
 ext4_writepages+0x170/0x2f0 fs/ext4/inode.c:2806
 do_writepages+0x3a2/0x600 mm/page-writeback.c:2575
 __writeback_single_inode+0x153/0xee0 fs/fs-writeback.c:1635
 writeback_single_inode+0x211/0x720 fs/fs-writeback.c:1756
 write_inode_now+0x161/0x1e0 fs/fs-writeback.c:2802
 iput_final fs/inode.c:1807 [inline]
 iput+0x5b2/0x920 fs/inode.c:1846
 ext4_xattr_block_set+0x273a/0x32a0 fs/ext4/xattr.c:2211
 ext4_xattr_move_to_block fs/ext4/xattr.c:2679 [inline]
 ext4_xattr_make_inode_space fs/ext4/xattr.c:2754 [inline]
 ext4_expand_extra_isize_ea+0x10ea/0x19e0 fs/ext4/xattr.c:2846
 __ext4_expand_extra_isize+0x306/0x400 fs/ext4/inode.c:5967
 ext4_try_to_expand_extra_isize fs/ext4/inode.c:6010 [inline]
 __ext4_mark_inode_dirty+0x45d/0x6e0 fs/ext4/inode.c:6088
 ext4_evict_inode+0x7ed/0xea0 fs/ext4/inode.c:252
 evict+0x486/0x870 fs/inode.c:705
 ext4_orphan_cleanup+0xbd4/0x1400 fs/ext4/orphan.c:470
 __ext4_fill_super fs/ext4/super.c:5601 [inline]
 ext4_fill_super+0x5de4/0x66c0 fs/ext4/super.c:5724
 get_tree_bdev+0x3e4/0x510 fs/super.c:1591
 vfs_get_tree+0x8c/0x280 fs/super.c:1764
 do_new_mount+0x24b/0xa40 fs/namespace.c:3386
 do_mount fs/namespace.c:3726 [inline]
 __do_sys_mount fs/namespace.c:3935 [inline]
 __se_sys_mount+0x2da/0x3c0 fs/namespace.c:3912
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x55/0xb0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f9498b90eea
Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffd11f50328 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007ffd11f503b0 RCX: 00007f9498b90eea
RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ffd11f50370
RBP: 0000200000000180 R08: 00007ffd11f503b0 R09: 0000000000800700
R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
R13: 00007ffd11f50370 R14: 000000000000046f R15: 000000000000002c
 </TASK>
EXT4-fs error (device loop0): ext4_xattr_inode_iget:444: inode #11: comm syz.0.17: iget: bad extra_isize 90 (inode size 256)
EXT4-fs (loop0): Remounting filesystem read-only
EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck.
EXT4-fs warning (device loop0): ext4_evict_inode:255: couldn't mark inode dirty (err -5)
EXT4-fs (loop0): 1 orphan inode deleted
EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.