Warning: Permanently added '10.128.10.62' (ED25519) to the list of known hosts.
2025/01/21 00:20:20 ignoring optional flag "sandboxArg"="0"
2025/01/21 00:20:21 parsed 1 programs
[   68.578746][ T2593] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2025/01/21 00:20:30 executed programs: 0
2025/01/21 00:20:35 executed programs: 2
[   80.263704][ T3476] 
[   80.266125][ T3476] ======================================================
[   80.273145][ T3476] WARNING: possible circular locking dependency detected
[   80.280158][ T3476] 6.12.0-rc4-syzkaller #0 Not tainted
[   80.285503][ T3476] ------------------------------------------------------
[   80.292502][ T3476] syz.3.15/3476 is trying to acquire lock:
[   80.298425][ T3476] ffff88817a092698 (&mm->mmap_lock){++++}-{3:3}, at: __might_fault+0x92/0x100
[   80.307305][ T3476] 
[   80.307305][ T3476] but task is already holding lock:
[   80.314675][ T3476] ffff888103f0af48 (&q->debugfs_mutex){+.+.}-{3:3}, at: blk_trace_setup+0xa8/0x190
[   80.323962][ T3476] 
[   80.323962][ T3476] which lock already depends on the new lock.
[   80.323962][ T3476] 
[   80.334357][ T3476] 
[   80.334357][ T3476] the existing dependency chain (in reverse order) is:
[   80.343347][ T3476] 
[   80.343347][ T3476] -> #3 (&q->debugfs_mutex){+.+.}-{3:3}:
[   80.351323][ T3476]        lock_acquire+0x1ed/0x550
[   80.356345][ T3476]        __mutex_lock+0x136/0xd70
[   80.361349][ T3476]        blk_mq_init_sched+0x39f/0x730
[   80.366797][ T3476]        elevator_init_mq+0x15f/0x240
[   80.372164][ T3476]        add_disk_fwnode+0xfe/0xd20
[   80.377385][ T3476]        sd_probe+0xa77/0x10c0
[   80.382131][ T3476]        really_probe+0x2eb/0x960
[   80.387132][ T3476]        __driver_probe_device+0x138/0x310
[   80.392998][ T3476]        driver_probe_device+0x4b/0x3a0
[   80.398537][ T3476]        __driver_attach_async_helper+0x133/0x250
[   80.405103][ T3476]        async_run_entry_fn+0x9e/0x3f0
[   80.410619][ T3476]        process_scheduled_works+0x96c/0x1540
[   80.416685][ T3476]        worker_thread+0x727/0xb10
[   80.421804][ T3476]        kthread+0x2e0/0x380
[   80.426378][ T3476]        ret_from_fork+0x32/0x60
[   80.431300][ T3476]        ret_from_fork_asm+0x1a/0x30
[   80.436845][ T3476] 
[   80.436845][ T3476] -> #2 (&q->q_usage_counter(io)){++++}-{0:0}:
[   80.445252][ T3476]        lock_acquire+0x1ed/0x550
[   80.450335][ T3476]        blk_mq_submit_bio+0x3d0/0x1a00
[   80.455852][ T3476]        __submit_bio+0x1cc/0x410
[   80.460864][ T3476]        submit_bio_noacct_nocheck+0x422/0xdf0
[   80.467011][ T3476]        ext4_bio_write_folio+0xd33/0x1540
[   80.472800][ T3476]        mpage_submit_folio+0x142/0x1a0
[   80.478417][ T3476]        ext4_do_writepages+0x19ab/0x3090
[   80.484112][ T3476]        ext4_writepages+0x201/0x380
[   80.489396][ T3476]        do_writepages+0x357/0x880
[   80.494497][ T3476]        __writeback_single_inode+0xf9/0xbe0
[   80.500469][ T3476]        writeback_sb_inodes+0x678/0x1020
[   80.506244][ T3476]        __writeback_inodes_wb+0x11c/0x1e0
[   80.512034][ T3476]        wb_writeback+0x366/0x800
[   80.517258][ T3476]        wb_workfn+0xa31/0xec0
[   80.522040][ T3476]        process_scheduled_works+0x96c/0x1540
[   80.528134][ T3476]        worker_thread+0x727/0xb10
[   80.533225][ T3476]        kthread+0x2e0/0x380
[   80.537791][ T3476]        ret_from_fork+0x32/0x60
[   80.542812][ T3476]        ret_from_fork_asm+0x1a/0x30
[   80.548158][ T3476] 
[   80.548158][ T3476] -> #1 (jbd2_handle){++++}-{0:0}:
[   80.555456][ T3476]        lock_acquire+0x1ed/0x550
[   80.560540][ T3476]        start_this_handle+0x1b1b/0x1d80
[   80.566253][ T3476]        jbd2__journal_start+0x2a5/0x580
[   80.571878][ T3476]        __ext4_journal_start_sb+0x182/0x410
[   80.577841][ T3476]        ext4_dirty_inode+0x8d/0x100
[   80.583105][ T3476]        __mark_inode_dirty+0x227/0xa30
[   80.588629][ T3476]        touch_atime+0x2e3/0x4e0
[   80.593660][ T3476]        ext4_file_mmap+0x13f/0x460
[   80.598834][ T3476]        mmap_region+0x1136/0x2250
[   80.603921][ T3476]        do_mmap+0x708/0xc80
[   80.608517][ T3476]        vm_mmap_pgoff+0x202/0x350
[   80.613626][ T3476]        ksys_mmap_pgoff+0x41e/0x610
[   80.618918][ T3476]        do_syscall_64+0xf3/0x210
[   80.623949][ T3476]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.630618][ T3476] 
[   80.630618][ T3476] -> #0 (&mm->mmap_lock){++++}-{3:3}:
[   80.638150][ T3476]        validate_chain+0x18ef/0x5920
[   80.643708][ T3476]        __lock_acquire+0x1384/0x2050
[   80.649093][ T3476]        lock_acquire+0x1ed/0x550
[   80.654193][ T3476]        __might_fault+0xab/0x100
[   80.659193][ T3476]        _copy_from_user+0x25/0xa0
[   80.664366][ T3476]        blk_trace_setup+0xc7/0x190
[   80.669562][ T3476]        sg_ioctl+0xafd/0x2b40
[   80.674319][ T3476]        __se_sys_ioctl+0xa8/0xf0
[   80.679517][ T3476]        do_syscall_64+0xf3/0x210
[   80.684556][ T3476]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.691048][ T3476] 
[   80.691048][ T3476] other info that might help us debug this:
[   80.691048][ T3476] 
[   80.701390][ T3476] Chain exists of:
[   80.701390][ T3476]   &mm->mmap_lock --> &q->q_usage_counter(io) --> &q->debugfs_mutex
[   80.701390][ T3476] 
[   80.715277][ T3476]  Possible unsafe locking scenario:
[   80.715277][ T3476] 
[   80.722728][ T3476]        CPU0                    CPU1
[   80.728078][ T3476]        ----                    ----
[   80.733421][ T3476]   lock(&q->debugfs_mutex);
[   80.737984][ T3476]                                lock(&q->q_usage_counter(io));
[   80.745599][ T3476]                                lock(&q->debugfs_mutex);
[   80.752689][ T3476]   rlock(&mm->mmap_lock);
[   80.757079][ T3476] 
[   80.757079][ T3476]  *** DEADLOCK ***
[   80.757079][ T3476] 
[   80.765201][ T3476] 1 lock held by syz.3.15/3476:
[   80.770022][ T3476]  #0: ffff888103f0af48 (&q->debugfs_mutex){+.+.}-{3:3}, at: blk_trace_setup+0xa8/0x190
[   80.779735][ T3476] 
[   80.779735][ T3476] stack backtrace:
[   80.785609][ T3476] CPU: 0 UID: 0 PID: 3476 Comm: syz.3.15 Not tainted 6.12.0-rc4-syzkaller #0
[   80.794345][ T3476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   80.804473][ T3476] Call Trace:
[   80.807813][ T3476]  <TASK>
[   80.810761][ T3476]  dump_stack_lvl+0x198/0x250
[   80.815428][ T3476]  ? __pfx_dump_stack_lvl+0x10/0x10
[   80.820775][ T3476]  ? __pfx__printk+0x10/0x10
[   80.825451][ T3476]  print_circular_bug+0x13a/0x1b0
[   80.830484][ T3476]  check_noncircular+0x36a/0x4a0
[   80.835415][ T3476]  ? __pfx_check_noncircular+0x10/0x10
[   80.840863][ T3476]  ? lockdep_lock+0x123/0x2b0
[   80.845516][ T3476]  ? stack_trace_save+0x118/0x1d0
[   80.850611][ T3476]  validate_chain+0x18ef/0x5920
[   80.855435][ T3476]  ? __pfx_validate_chain+0x10/0x10
[   80.860607][ T3476]  ? __pfx_validate_chain+0x10/0x10
[   80.865778][ T3476]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   80.871940][ T3476]  ? kernel_text_address+0x8a/0xd0
[   80.877247][ T3476]  ? __kernel_text_address+0xd/0x40
[   80.882428][ T3476]  ? unwind_get_return_address+0x4d/0x90
[   80.888031][ T3476]  ? arch_stack_walk+0xfd/0x150
[   80.892853][ T3476]  ? mark_lock+0x9a/0x360
[   80.897153][ T3476]  ? __lock_acquire+0x1384/0x2050
[   80.902185][ T3476]  ? mark_lock+0x9a/0x360
[   80.906559][ T3476]  __lock_acquire+0x1384/0x2050
[   80.911502][ T3476]  lock_acquire+0x1ed/0x550
[   80.916150][ T3476]  ? __might_fault+0x92/0x100
[   80.920841][ T3476]  ? __pfx_lock_acquire+0x10/0x10
[   80.925846][ T3476]  ? __pfx___might_resched+0x10/0x10
[   80.931127][ T3476]  ? blk_trace_setup+0xa8/0x190
[   80.935963][ T3476]  ? tomoyo_path_number_perm+0x1e1/0x770
[   80.941580][ T3476]  ? __pfx___mutex_lock+0x10/0x10
[   80.946633][ T3476]  ? lockdep_hardirqs_on+0x99/0x150
[   80.951809][ T3476]  ? __might_fault+0x92/0x100
[   80.956455][ T3476]  __might_fault+0xab/0x100
[   80.960932][ T3476]  ? __might_fault+0x92/0x100
[   80.965607][ T3476]  _copy_from_user+0x25/0xa0
[   80.970178][ T3476]  blk_trace_setup+0xc7/0x190
[   80.974826][ T3476]  ? __lock_acquire+0x1384/0x2050
[   80.979857][ T3476]  ? __pfx_blk_trace_setup+0x10/0x10
[   80.985238][ T3476]  sg_ioctl+0xafd/0x2b40
[   80.989466][ T3476]  ? __pfx_sg_ioctl+0x10/0x10
[   80.994216][ T3476]  ? __fget_files+0x24/0x340
[   80.998971][ T3476]  __se_sys_ioctl+0xa8/0xf0
[   81.003451][ T3476]  do_syscall_64+0xf3/0x210
[   81.007927][ T3476]  ? clear_bhb_loop+0x55/0xb0
[   81.012581][ T3476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.018447][ T3476] RIP: 0033:0x7fc9c677e719
[   81.022856][ T3476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.042465][ T3476] RSP: 002b:00007fc9c74ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.051141][ T3476] RAX: ffffffffffffffda RBX: 00007fc9c6935f80 RCX: 00007fc9c677e719
[   81.059104][ T3476] RDX: 0000000000000000 RSI: 00000000c0481273 RDI: 0000000000000003
[   81.067139][ T3476] RBP: 00007fc9c67f139e R08: 0000000000000000 R09: 0000000000000000
[   81.075188][ T3476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   81.083141][ T3476] R13: 0000000000000000 R14: 00007fc9c6935f80 R15: 00007ffef98ae7d8
[   81.091229][ T3476]  </TASK>
2025/01/21 00:20:40 executed programs: 246
2025/01/21 00:20:45 executed programs: 544