Warning: Permanently added '10.128.0.46' (ED25519) to the list of known hosts. executing program [ 84.104928][ T5768] syz-executor368[5768]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 84.314485][ T5768] loop0: detected capacity change from 0 to 32768 [ 84.330309][ T5768] (syz-executor368,5768,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 84.347426][ T5768] (syz-executor368,5768,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 84.373587][ T5768] JBD2: Ignoring recovery information on journal [ 84.407642][ T5768] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 84.450204][ T5768] [ 84.452604][ T5768] ====================================================== [ 84.459635][ T5768] WARNING: possible circular locking dependency detected [ 84.466667][ T5768] 6.6.94-syzkaller #0 Not tainted [ 84.471699][ T5768] ------------------------------------------------------ [ 84.478717][ T5768] syz-executor368/5768 is trying to acquire lock: [ 84.485223][ T5768] ffff8880740d6d98 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 84.498573][ T5768] [ 84.498573][ T5768] but task is already holding lock: [ 84.505941][ T5768] ffff8880740d9538 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x410/0x11f0 [ 84.515438][ T5768] [ 84.515438][ T5768] which lock already depends on the new lock. [ 84.515438][ T5768] [ 84.525846][ T5768] [ 84.525846][ T5768] the existing dependency chain (in reverse order) is: [ 84.535068][ T5768] [ 84.535068][ T5768] -> #5 (&oi->ip_xattr_sem){++++}-{3:3}: [ 84.542910][ T5768] down_read+0x46/0x2e0 [ 84.547620][ T5768] ocfs2_init_acl+0x2fa/0x720 [ 84.552832][ T5768] ocfs2_mknod+0x12e5/0x20f0 [ 84.557959][ T5768] ocfs2_create+0x196/0x410 [ 84.563091][ T5768] path_openat+0x1277/0x3190 [ 84.568212][ T5768] do_filp_open+0x1c5/0x3d0 [ 84.573243][ T5768] do_sys_openat2+0x12c/0x1c0 [ 84.578465][ T5768] __x64_sys_openat+0x139/0x160 [ 84.583864][ T5768] do_syscall_64+0x55/0xb0 [ 84.588817][ T5768] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.595258][ T5768] [ 84.595258][ T5768] -> #4 (jbd2_handle){.+.+}-{0:0}: [ 84.602574][ T5768] start_this_handle+0x1e9d/0x20c0 [ 84.608218][ T5768] jbd2__journal_start+0x2bb/0x5b0 [ 84.613865][ T5768] jbd2_journal_start+0x2a/0x40 [ 84.619253][ T5768] ocfs2_start_trans+0x376/0x6c0 [ 84.624722][ T5768] ocfs2_modify_bh+0xe9/0x470 [ 84.629934][ T5768] ocfs2_local_read_info+0x13fd/0x1770 [ 84.635927][ T5768] dquot_load_quota_sb+0x757/0xb80 [ 84.641566][ T5768] dquot_load_quota_inode+0x2dc/0x5d0 [ 84.647468][ T5768] ocfs2_enable_quotas+0x1c7/0x440 [ 84.653107][ T5768] ocfs2_fill_super+0x3f6d/0x4d90 [ 84.658665][ T5768] mount_bdev+0x22b/0x2d0 [ 84.663530][ T5768] legacy_get_tree+0xea/0x180 [ 84.668752][ T5768] vfs_get_tree+0x8c/0x280 [ 84.673699][ T5768] do_new_mount+0x24b/0xa40 [ 84.678741][ T5768] __se_sys_mount+0x2da/0x3c0 [ 84.683950][ T5768] do_syscall_64+0x55/0xb0 [ 84.688900][ T5768] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.695331][ T5768] [ 84.695331][ T5768] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 84.703851][ T5768] down_read+0x46/0x2e0 [ 84.708537][ T5768] ocfs2_start_trans+0x36a/0x6c0 [ 84.714036][ T5768] ocfs2_modify_bh+0xe9/0x470 [ 84.719280][ T5768] ocfs2_local_read_info+0x13fd/0x1770 [ 84.725275][ T5768] dquot_load_quota_sb+0x757/0xb80 [ 84.730914][ T5768] dquot_load_quota_inode+0x2dc/0x5d0 [ 84.736812][ T5768] ocfs2_enable_quotas+0x1c7/0x440 [ 84.742451][ T5768] ocfs2_fill_super+0x3f6d/0x4d90 [ 84.748024][ T5768] mount_bdev+0x22b/0x2d0 [ 84.752902][ T5768] legacy_get_tree+0xea/0x180 [ 84.758123][ T5768] vfs_get_tree+0x8c/0x280 [ 84.763072][ T5768] do_new_mount+0x24b/0xa40 [ 84.768112][ T5768] __se_sys_mount+0x2da/0x3c0 [ 84.773321][ T5768] do_syscall_64+0x55/0xb0 [ 84.778278][ T5768] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.784712][ T5768] [ 84.784712][ T5768] -> #2 (sb_internal#2){.+.+}-{0:0}: [ 84.792283][ T5768] ocfs2_start_trans+0x26b/0x6c0 [ 84.797751][ T5768] ocfs2_mknod+0xe47/0x20f0 [ 84.802799][ T5768] ocfs2_create+0x196/0x410 [ 84.807835][ T5768] path_openat+0x1277/0x3190 [ 84.812959][ T5768] do_filp_open+0x1c5/0x3d0 [ 84.817992][ T5768] do_sys_openat2+0x12c/0x1c0 [ 84.823221][ T5768] __x64_sys_openat+0x139/0x160 [ 84.828606][ T5768] do_syscall_64+0x55/0xb0 [ 84.833564][ T5768] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.840033][ T5768] [ 84.840033][ T5768] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}: [ 84.850599][ T5768] down_write+0x97/0x1f0 [ 84.855433][ T5768] ocfs2_reserve_local_alloc_bits+0x126/0x24b0 [ 84.862135][ T5768] ocfs2_reserve_clusters_with_limit+0x1bf/0xba0 [ 84.869009][ T5768] ocfs2_mknod+0xdee/0x20f0 [ 84.874062][ T5768] ocfs2_create+0x196/0x410 [ 84.879100][ T5768] path_openat+0x1277/0x3190 [ 84.884223][ T5768] do_filp_open+0x1c5/0x3d0 [ 84.889258][ T5768] do_sys_openat2+0x12c/0x1c0 [ 84.894470][ T5768] __x64_sys_openat+0x139/0x160 [ 84.899873][ T5768] do_syscall_64+0x55/0xb0 [ 84.904848][ T5768] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.911287][ T5768] [ 84.911287][ T5768] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}: [ 84.921814][ T5768] __lock_acquire+0x2ddb/0x7c80 [ 84.927226][ T5768] lock_acquire+0x197/0x410 [ 84.932298][ T5768] down_write+0x97/0x1f0 [ 84.937081][ T5768] ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 84.943503][ T5768] ocfs2_reserve_new_metadata_blocks+0x404/0x940 [ 84.950363][ T5768] ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0 [ 84.956547][ T5768] ocfs2_xattr_set+0xb6d/0x11f0 [ 84.961950][ T5768] __vfs_setxattr+0x431/0x470 [ 84.967167][ T5768] __vfs_setxattr_noperm+0x12d/0x5e0 [ 84.972995][ T5768] vfs_setxattr+0x16c/0x2f0 [ 84.978070][ T5768] path_setxattr+0x362/0x550 [ 84.983195][ T5768] __x64_sys_setxattr+0xbb/0xd0 [ 84.988584][ T5768] do_syscall_64+0x55/0xb0 [ 84.993541][ T5768] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.999971][ T5768] [ 84.999971][ T5768] other info that might help us debug this: [ 84.999971][ T5768] [ 85.010242][ T5768] Chain exists of: [ 85.010242][ T5768] &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5 --> jbd2_handle --> &oi->ip_xattr_sem [ 85.010242][ T5768] [ 85.026005][ T5768] Possible unsafe locking scenario: [ 85.026005][ T5768] [ 85.033464][ T5768] CPU0 CPU1 [ 85.038842][ T5768] ---- ---- [ 85.044251][ T5768] lock(&oi->ip_xattr_sem); [ 85.048882][ T5768] lock(jbd2_handle); [ 85.055477][ T5768] lock(&oi->ip_xattr_sem); [ 85.062592][ T5768] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5); [ 85.069887][ T5768] [ 85.069887][ T5768] *** DEADLOCK *** [ 85.069887][ T5768] [ 85.078036][ T5768] 3 locks held by syz-executor368/5768: [ 85.083611][ T5768] #0: ffff88802f3a0418 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 85.092812][ T5768] #1: ffff8880740d9818 (&sb->s_type->i_mutex_key#15){+.+.}-{3:3}, at: vfs_setxattr+0x145/0x2f0 [ 85.103280][ T5768] #2: ffff8880740d9538 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x410/0x11f0 [ 85.113249][ T5768] [ 85.113249][ T5768] stack backtrace: [ 85.119167][ T5768] CPU: 0 PID: 5768 Comm: syz-executor368 Not tainted 6.6.94-syzkaller #0 [ 85.127586][ T5768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 85.137682][ T5768] Call Trace: [ 85.140985][ T5768] [ 85.143942][ T5768] dump_stack_lvl+0x16c/0x230 [ 85.148642][ T5768] ? load_image+0x3b0/0x3b0 [ 85.153154][ T5768] ? show_regs_print_info+0x20/0x20 [ 85.158395][ T5768] ? print_circular_bug+0x12b/0x1a0 [ 85.163616][ T5768] check_noncircular+0x2bd/0x3c0 [ 85.168586][ T5768] ? print_deadlock_bug+0x5d0/0x5d0 [ 85.173804][ T5768] ? lockdep_lock+0xe0/0x220 [ 85.178409][ T5768] ? _find_first_zero_bit+0xd3/0x100 [ 85.183706][ T5768] __lock_acquire+0x2ddb/0x7c80 [ 85.188671][ T5768] ? ocfs2_get_system_file_inode+0x1e3/0x7b0 [ 85.194674][ T5768] ? __lock_acquire+0x7c80/0x7c80 [ 85.199735][ T5768] ? verify_lock_unused+0x140/0x140 [ 85.204946][ T5768] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 85.210592][ T5768] ? do_raw_spin_lock+0x121/0x2c0 [ 85.215630][ T5768] ? mutex_unlock+0x10/0x10 [ 85.220158][ T5768] lock_acquire+0x197/0x410 [ 85.224675][ T5768] ? ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 85.230752][ T5768] ? ocfs2_get_system_file_inode+0x1f1/0x7b0 [ 85.236746][ T5768] ? __might_sleep+0xe0/0xe0 [ 85.241366][ T5768] ? read_lock_is_recursive+0x20/0x20 [ 85.246752][ T5768] ? ocfs2_fast_symlink_read_folio+0x530/0x530 [ 85.252939][ T5768] ? verify_lock_unused+0x140/0x140 [ 85.258149][ T5768] ? check_noncircular+0x175/0x3c0 [ 85.263273][ T5768] down_write+0x97/0x1f0 [ 85.267536][ T5768] ? ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 85.273614][ T5768] ? down_read_killable+0x340/0x340 [ 85.278857][ T5768] ocfs2_reserve_suballoc_bits+0x165/0x4360 [ 85.284766][ T5768] ? mark_lock+0x94/0x320 [ 85.289110][ T5768] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 85.295105][ T5768] ? lock_chain_count+0x20/0x20 [ 85.299968][ T5768] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 85.305882][ T5768] ? ocfs2_block_group_search+0x470/0x470 [ 85.311612][ T5768] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 85.317523][ T5768] ? _raw_spin_unlock+0x40/0x40 [ 85.322389][ T5768] ? stack_trace_save+0x9c/0xe0 [ 85.327283][ T5768] ? stack_trace_snprint+0xf0/0xf0 [ 85.332410][ T5768] ? __stack_depot_save+0x560/0x630 [ 85.337626][ T5768] ? kasan_set_track+0x5f/0x70 [ 85.342402][ T5768] ? kasan_set_track+0x4e/0x70 [ 85.347182][ T5768] ? __kasan_kmalloc+0x8f/0xa0 [ 85.351962][ T5768] ? ocfs2_reserve_new_metadata_blocks+0x114/0x940 [ 85.358492][ T5768] ? ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0 [ 85.364315][ T5768] ? ocfs2_xattr_set+0xb6d/0x11f0 [ 85.369352][ T5768] ? __vfs_setxattr+0x431/0x470 [ 85.374237][ T5768] ? __vfs_setxattr_noperm+0x12d/0x5e0 [ 85.379714][ T5768] ? vfs_setxattr+0x16c/0x2f0 [ 85.384412][ T5768] ? path_setxattr+0x362/0x550 [ 85.389185][ T5768] ? __x64_sys_setxattr+0xbb/0xd0 [ 85.394238][ T5768] ? do_syscall_64+0x55/0xb0 [ 85.398843][ T5768] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.404952][ T5768] ocfs2_reserve_new_metadata_blocks+0x404/0x940 [ 85.411297][ T5768] ? ocfs2_init_steal_slots+0x160/0x160 [ 85.416860][ T5768] ? ocfs2_xattr_block_set+0x2b40/0x2b40 [ 85.422517][ T5768] ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0 [ 85.428168][ T5768] ? ocfs2_xattr_set+0xb33/0x11f0 [ 85.433225][ T5768] ? ocfs2_prepare_refcount_xattr+0xf20/0xf20 [ 85.439313][ T5768] ? ocfs2_truncate_log_needs_flush+0x135/0x2e0 [ 85.445575][ T5768] ? ocfs2_remove_btree_range+0x1480/0x1480 [ 85.451486][ T5768] ? down_write+0x162/0x1f0 [ 85.456009][ T5768] ? down_read_killable+0x340/0x340 [ 85.461227][ T5768] ? up_write+0x1c3/0x410 [ 85.465568][ T5768] ocfs2_xattr_set+0xb6d/0x11f0 [ 85.470445][ T5768] ? __ocfs2_xattr_set_handle+0xf10/0xf10 [ 85.476181][ T5768] ? __lock_acquire+0x1334/0x7c80 [ 85.481224][ T5768] ? verify_lock_unused+0x140/0x140 [ 85.486442][ T5768] ? aa_get_newest_label+0xf8/0x5c0 [ 85.491661][ T5768] ? end_current_label_crit_section+0x170/0x170 [ 85.497940][ T5768] ? posix_xattr_acl+0x93/0xb0 [ 85.502717][ T5768] ? evm_protect_xattr+0x36d/0x7a0 [ 85.507848][ T5768] ? ocfs2_xattr_trusted_get+0x40/0x40 [ 85.513327][ T5768] __vfs_setxattr+0x431/0x470 [ 85.518062][ T5768] __vfs_setxattr_noperm+0x12d/0x5e0 [ 85.523369][ T5768] vfs_setxattr+0x16c/0x2f0 [ 85.527892][ T5768] ? xattr_permission+0x470/0x470 [ 85.532934][ T5768] ? __mnt_want_write+0x223/0x2a0 [ 85.537967][ T5768] ? path_setxattr+0x314/0x550 [ 85.542738][ T5768] path_setxattr+0x362/0x550 [ 85.547942][ T5768] ? __might_fault+0xaa/0x120 [ 85.552634][ T5768] ? simple_xattrs_free+0x150/0x150 [ 85.557851][ T5768] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 85.563842][ T5768] ? lock_chain_count+0x20/0x20 [ 85.568705][ T5768] __x64_sys_setxattr+0xbb/0xd0 [ 85.573575][ T5768] do_syscall_64+0x55/0xb0 [ 85.578009][ T5768] ? clear_bhb_loop+0x40/0x90 [ 85.582709][ T5768] ? clear_bhb_loop+0x40/0x90 [ 85.587425][ T5768] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.593343][ T5768] RIP: 0033:0x7f02d33d46b9 [ 85.597793][ T5768] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 85.617936][ T5768] RSP: 002b:00007ffe51c0b848 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 85.626363][ T5768] RAX: ffffffffffffffda RBX: 0000200000000340 RCX: 00007f02d33d46b9 [ 85.634343][ T5768] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000200000000040 [ 85.642319][ T5768] RBP: 0030656c69662f2e R08: 0000000000000000 R09: 0000000000000000 [ 85.650296][ T5768] R10: 0000000000000000 R11: 0000000000000