Warning: Permanently added '[localhost]:47602' (ED25519) to the list of known hosts. executing program syzkaller login: [ 79.946506][ T5310] loop0: detected capacity change from 0 to 32768 [ 79.957208][ T5310] ======================================================= [ 79.957208][ T5310] WARNING: The mand mount option has been deprecated and [ 79.957208][ T5310] and is ignored by this kernel. Remove the mand [ 79.957208][ T5310] option from the mount to silence this warning. [ 79.957208][ T5310] ======================================================= [ 80.025987][ T5310] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 80.042837][ T25] audit: type=1800 audit(1747965639.403:2): pid=5310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="loop0" ino=17058 res=0 errno=0 [ 80.165795][ T5315] [ 80.166918][ T5315] ====================================================== [ 80.169922][ T5315] WARNING: possible circular locking dependency detected [ 80.172936][ T5315] 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 Not tainted [ 80.176711][ T5315] ------------------------------------------------------ [ 80.179810][ T5315] syz-executor144/5315 is trying to acquire lock: [ 80.182466][ T5315] ffff888043fd3f60 (&oi->ip_alloc_sem){++++}-{4:4}, at: ocfs2_page_mkwrite+0x2ff/0xc40 [ 80.186612][ T5315] [ 80.186612][ T5315] but task is already holding lock: [ 80.189666][ T5315] ffff888033dfa518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x14a/0x310 [ 80.193470][ T5315] [ 80.193470][ T5315] which lock already depends on the new lock. [ 80.193470][ T5315] [ 80.197763][ T5315] [ 80.197763][ T5315] the existing dependency chain (in reverse order) is: [ 80.201539][ T5315] [ 80.201539][ T5315] -> #2 (sb_pagefaults){.+.+}-{0:0}: [ 80.204627][ T5315] lock_acquire+0x120/0x360 [ 80.206693][ T5315] ocfs2_page_mkwrite+0x1da/0xc40 [ 80.208977][ T5315] do_page_mkwrite+0x14a/0x310 [ 80.211249][ T5315] do_wp_page+0x2626/0x5790 [ 80.213476][ T5315] __handle_mm_fault+0x1028/0x5380 [ 80.215705][ T5315] handle_mm_fault+0x3f6/0x8c0 [ 80.217814][ T5315] do_user_addr_fault+0x764/0x1390 [ 80.220153][ T5315] exc_page_fault+0x68/0x110 [ 80.222428][ T5315] asm_exc_page_fault+0x26/0x30 [ 80.224729][ T5315] [ 80.224729][ T5315] -> #1 (&mm->mmap_lock){++++}-{4:4}: [ 80.227966][ T5315] lock_acquire+0x120/0x360 [ 80.230152][ T5315] __might_fault+0xcc/0x130 [ 80.232325][ T5315] _copy_to_user+0x2c/0xb0 [ 80.234520][ T5315] fiemap_fill_next_extent+0x1c0/0x390 [ 80.237159][ T5315] ocfs2_fiemap+0x888/0xc90 [ 80.239350][ T5315] do_vfs_ioctl+0x163b/0x1eb0 [ 80.241729][ T5315] __se_sys_ioctl+0x82/0x170 [ 80.243957][ T5315] do_syscall_64+0xf6/0x210 [ 80.246041][ T5315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.248843][ T5315] [ 80.248843][ T5315] -> #0 (&oi->ip_alloc_sem){++++}-{4:4}: [ 80.251918][ T5315] validate_chain+0xb9b/0x2140 [ 80.254060][ T5315] __lock_acquire+0xaac/0xd20 [ 80.256323][ T5315] lock_acquire+0x120/0x360 [ 80.258492][ T5315] down_write+0x96/0x1f0 [ 80.260474][ T5315] ocfs2_page_mkwrite+0x2ff/0xc40 [ 80.262780][ T5315] do_page_mkwrite+0x14a/0x310 [ 80.264979][ T5315] do_wp_page+0x2626/0x5790 [ 80.266873][ T5315] __handle_mm_fault+0x1028/0x5380 [ 80.269259][ T5315] handle_mm_fault+0x3f6/0x8c0 [ 80.271388][ T5315] do_user_addr_fault+0x764/0x1390 [ 80.273779][ T5315] exc_page_fault+0x68/0x110 [ 80.275901][ T5315] asm_exc_page_fault+0x26/0x30 [ 80.278058][ T5315] [ 80.278058][ T5315] other info that might help us debug this: [ 80.278058][ T5315] [ 80.282409][ T5315] Chain exists of: [ 80.282409][ T5315] &oi->ip_alloc_sem --> &mm->mmap_lock --> sb_pagefaults [ 80.282409][ T5315] [ 80.287953][ T5315] Possible unsafe locking scenario: [ 80.287953][ T5315] [ 80.291289][ T5315] CPU0 CPU1 [ 80.293803][ T5315] ---- ---- [ 80.296111][ T5315] rlock(sb_pagefaults); [ 80.297897][ T5315] lock(&mm->mmap_lock); [ 80.300587][ T5315] lock(sb_pagefaults); [ 80.303200][ T5315] lock(&oi->ip_alloc_sem); [ 80.305191][ T5315] [ 80.305191][ T5315] *** DEADLOCK *** [ 80.305191][ T5315] [ 80.308323][ T5315] 2 locks held by syz-executor144/5315: [ 80.310535][ T5315] #0: ffff8880433b01e0 (&mm->mmap_lock){++++}-{4:4}, at: lock_mm_and_find_vma+0x32/0x300 [ 80.314754][ T5315] #1: ffff888033dfa518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x14a/0x310 [ 80.318769][ T5315] [ 80.318769][ T5315] stack backtrace: [ 80.321211][ T5315] CPU: 0 UID: 0 PID: 5315 Comm: syz-executor144 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 80.321230][ T5315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 80.321237][ T5315] Call Trace: [ 80.321243][ T5315] [ 80.321248][ T5315] dump_stack_lvl+0x189/0x250 [ 80.321266][ T5315] ? __pfx_dump_stack_lvl+0x10/0x10 [ 80.321280][ T5315] ? __pfx__printk+0x10/0x10 [ 80.321291][ T5315] ? print_lock_name+0xde/0x100 [ 80.321307][ T5315] print_circular_bug+0x2ee/0x310 [ 80.321320][ T5315] check_noncircular+0x134/0x160 [ 80.321331][ T5315] validate_chain+0xb9b/0x2140 [ 80.321345][ T5315] __lock_acquire+0xaac/0xd20 [ 80.321359][ T5315] ? ocfs2_page_mkwrite+0x2ff/0xc40 [ 80.321370][ T5315] lock_acquire+0x120/0x360 [ 80.321382][ T5315] ? ocfs2_page_mkwrite+0x2ff/0xc40 [ 80.321394][ T5315] ? lockdep_hardirqs_on+0x9c/0x150 [ 80.321406][ T5315] ? sigprocmask+0x15d/0x1a0 [ 80.321416][ T5315] down_write+0x96/0x1f0 [ 80.321430][ T5315] ? ocfs2_page_mkwrite+0x2ff/0xc40 [ 80.321441][ T5315] ? __pfx_down_write+0x10/0x10 [ 80.321455][ T5315] ocfs2_page_mkwrite+0x2ff/0xc40 [ 80.321468][ T5315] ? do_page_mkwrite+0x14a/0x310 [ 80.321482][ T5315] ? __pfx_ocfs2_page_mkwrite+0x10/0x10 [ 80.321492][ T5315] ? sched_clock_cpu+0x74/0x430 [ 80.321500][ T5315] ? psi_task_change+0xe5/0x250 [ 80.321512][ T5315] ? __pfx___schedule+0x10/0x10 [ 80.321524][ T5315] do_page_mkwrite+0x14a/0x310 [ 80.321539][ T5315] do_wp_page+0x2626/0x5790 [ 80.321550][ T5315] ? __lock_acquire+0xaac/0xd20 [ 80.321564][ T5315] ? __lock_acquire+0xaac/0xd20 [ 80.321578][ T5315] ? __pfx_do_wp_page+0x10/0x10 [ 80.321589][ T5315] ? do_raw_spin_lock+0x121/0x290 [ 80.321600][ T5315] ? __handle_mm_fault+0xf74/0x5380 [ 80.321611][ T5315] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 80.321624][ T5315] __handle_mm_fault+0x1028/0x5380 [ 80.321636][ T5315] ? mt_find+0x15c/0x5f0 [ 80.321650][ T5315] ? __pfx___handle_mm_fault+0x10/0x10 [ 80.321665][ T5315] ? find_vma+0xe7/0x160 [ 80.321676][ T5315] ? __pfx_find_vma+0x10/0x10 [ 80.321688][ T5315] handle_mm_fault+0x3f6/0x8c0 [ 80.321702][ T5315] do_user_addr_fault+0x764/0x1390 [ 80.321716][ T5315] exc_page_fault+0x68/0x110 [ 80.321728][ T5315] asm_exc_page_fault+0x26/0x30 [ 80.321738][ T5315] RIP: 0033:0x7f48d654712a [ 80.321750][ T5315] Code: 04 31 c0 e8 a8 76 03 00 48 83 f8 ff 0f 84 ee fd ff ff 48 89 05 e7 ff 0b 00 e9 e2 fd ff ff 66 90 48 b8 47 01 00 00 00 20 00 00 <4d> 89 37 c7 00 6f 70 23 00 e8 a8 f8 ff ff e9 c3 fd ff ff 0f 1f 00 [ 80.321758][ T5315] RSP: 002b:00007f48d64f1220 EFLAGS: 00010213 [ 80.321768][ T5315] RAX: 0000200000000147 RBX: 00007f48d6609628 RCX: 00007f48d657e7c9 [ 80.321775][ T5315] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f48d660962c [ 80.321782][ T5315] RBP: 00007f48d6609620 R08: 0000000000000000 R09: 0000000000000000 [ 80.321789][ T5315] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f48d65d64ec [ 80.321795][ T5315] R13: 0000200000000000 R14: 6f6f6c2f7665642f R15: 0000200000000140 [ 80.321805][ T5315] [ 80.556734][ T5310] syz-executor144 (5310) used greatest stack depth: 20088 bytes left executing program [ 80.697321][ T25] audit: type=1800 audit(1747965640.053:3): pid=5317 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 81.100334][ T25] audit: type=1800 audit(1747965640.453:4): pid=5321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 81.495856][ T25] audit: type=1800 audit(1747965640.853:5): pid=5325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 81.904145][ T25] audit: type=1800 audit(1747965641.263:6): pid=5329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 82.160846][ T25] audit: type=1800 audit(1747965641.523:7): pid=5333 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 82.568011][ T25] audit: type=1800 audit(1747965641.923:8): pid=5337 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 83.016279][ T25] audit: type=1800 audit(1747965642.373:9): pid=5341 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 83.523281][ T25] audit: type=1800 audit(1747965642.883:10): pid=5345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 83.904207][ T25] audit: type=1800 audit(1747965643.263:11): pid=5349 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program executing program executing program [ 85.102759][ T25] kauditd_printk_skb: 2 callbacks suppressed [ 85.102774][ T25] audit: type=1800 audit(1747965644.463:14): pid=5361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 85.573077][ T25] audit: type=1800 audit(1747965644.933:15): pid=5365 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 85.975245][ T25] audit: type=1800 audit(1747965645.333:16): pid=5369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 86.387091][ T25] audit: type=1800 audit(1747965645.743:17): pid=5373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 86.804943][ T25] audit: type=1800 audit(1747965646.163:18): pid=5378 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 87.230721][ T25] audit: type=1800 audit(1747965646.593:19): pid=5383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 87.687488][ T25] audit: type=1800 audit(1747965647.043:20): pid=5388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 88.147030][ T25] audit: type=1800 audit(1747965647.503:21): pid=5394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 88.565697][ T25] audit: type=1800 audit(1747965647.923:22): pid=5399 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program [ 88.999707][ T25] audit: type=1800 audit(1747965648.353:23): pid=5404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 executing program executing program executing program [ 90.158693][ T25] kauditd_printk_skb: 2 callbacks suppressed [ 90.158707][ T25] audit: type=1800 audit(1747965649.513:26): pid=5416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor144" name="bus" dev="sda1" ino=2023 res=0 errno=0 VM DIAGNOSIS: 02:00:39 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000072 RBX=0000000000000072 RCX=0000000000000000 RDX=00000000000003f8 RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc9000d2c6e30 R8 =ffff8880009e0237 R9 =1ffff1100013c046 R10=dffffc0000000000 R11=ffffffff853e1790 R12=dffffc0000000000 R13=ffffffff99850c5f R14=ffffffff99b55c40 R15=0000000000000000 RIP=ffffffff853e180c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f48d64f16c0 ffffffff 00c00000 GS =0000 ffff88808d6c2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000200000000140 CR3=00000000407fd000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fffffff0 Opmask01=0000000000000001 Opmask02=00000000fff7ffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f48d65ab097 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 00007f48d660f1c0 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555851df028 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000018 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f48d66089e8 00007f48d66089e0 00007f48d66089e0 00007f48d660eec0 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 642f006a64615f65 726f63735f6d6f6f 2f666c65732f636f 72702f0030303031 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 410a004f41445f40 574a46565f484a4a 0a434940560a464a 57550a0015151514 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000