Warning: Permanently added '10.128.1.187' (ED25519) to the list of known hosts. executing program [ 36.963524][ T4294] loop0: detected capacity change from 0 to 32768 [ 36.978097][ T4294] (syz-executor424,4294,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 36.982583][ T4294] (syz-executor424,4294,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 36.992883][ T4294] JBD2: Ignoring recovery information on journal [ 37.012165][ T4294] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 37.028706][ T4294] [ 37.029356][ T4294] ====================================================== [ 37.031269][ T4294] WARNING: possible circular locking dependency detected [ 37.033178][ T4294] 6.1.141-syzkaller #0 Not tainted [ 37.034576][ T4294] ------------------------------------------------------ [ 37.036423][ T4294] syz-executor424/4294 is trying to acquire lock: [ 37.038112][ T4294] ffff0000e2b906f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_init_acl+0x258/0x5f0 [ 37.040595][ T4294] [ 37.040595][ T4294] but task is already holding lock: [ 37.042584][ T4294] ffff0000d5f6e990 (jbd2_handle){.+.+}-{0:0}, at: start_this_handle+0xfb8/0x122c [ 37.045015][ T4294] [ 37.045015][ T4294] which lock already depends on the new lock. [ 37.045015][ T4294] [ 37.047801][ T4294] [ 37.047801][ T4294] the existing dependency chain (in reverse order) is: [ 37.050212][ T4294] [ 37.050212][ T4294] -> #4 (jbd2_handle){.+.+}-{0:0}: [ 37.052191][ T4294] start_this_handle+0xfe0/0x122c [ 37.053643][ T4294] jbd2__journal_start+0x288/0x51c [ 37.055212][ T4294] jbd2_journal_start+0x3c/0x4c [ 37.056655][ T4294] ocfs2_start_trans+0x380/0x6c4 [ 37.058122][ T4294] ocfs2_modify_bh+0xe4/0x43c [ 37.059519][ T4294] ocfs2_local_read_info+0x102c/0x131c [ 37.061115][ T4294] dquot_load_quota_sb+0x6c4/0xa24 [ 37.062576][ T4294] dquot_load_quota_inode+0x274/0x4e4 [ 37.064166][ T4294] ocfs2_enable_quotas+0x17c/0x3b4 [ 37.065650][ T4294] ocfs2_fill_super+0x3060/0x3e98 [ 37.067134][ T4294] mount_bdev+0x264/0x358 [ 37.068403][ T4294] ocfs2_mount+0x44/0x58 [ 37.069715][ T4294] legacy_get_tree+0xd4/0x16c [ 37.071142][ T4294] vfs_get_tree+0x90/0x274 [ 37.072436][ T4294] do_new_mount+0x228/0x810 [ 37.073801][ T4294] path_mount+0x5b4/0xe78 [ 37.075128][ T4294] __arm64_sys_mount+0x49c/0x584 [ 37.076592][ T4294] invoke_syscall+0x98/0x2bc [ 37.077940][ T4294] el0_svc_common+0x138/0x258 [ 37.079320][ T4294] do_el0_svc+0x58/0x13c [ 37.080613][ T4294] el0_svc+0x58/0x138 [ 37.081957][ T4294] el0t_64_sync_handler+0x84/0xf0 [ 37.083514][ T4294] el0t_64_sync+0x18c/0x190 [ 37.084861][ T4294] [ 37.084861][ T4294] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 37.087168][ T4294] down_read+0x64/0x304 [ 37.088441][ T4294] ocfs2_start_trans+0x374/0x6c4 [ 37.089900][ T4294] ocfs2_modify_bh+0xe4/0x43c [ 37.091248][ T4294] ocfs2_local_read_info+0x102c/0x131c [ 37.092830][ T4294] dquot_load_quota_sb+0x6c4/0xa24 [ 37.094324][ T4294] dquot_load_quota_inode+0x274/0x4e4 [ 37.095921][ T4294] ocfs2_enable_quotas+0x17c/0x3b4 [ 37.097412][ T4294] ocfs2_fill_super+0x3060/0x3e98 [ 37.098889][ T4294] mount_bdev+0x264/0x358 [ 37.100245][ T4294] ocfs2_mount+0x44/0x58 [ 37.101490][ T4294] legacy_get_tree+0xd4/0x16c [ 37.103002][ T4294] vfs_get_tree+0x90/0x274 [ 37.104286][ T4294] do_new_mount+0x228/0x810 [ 37.105648][ T4294] path_mount+0x5b4/0xe78 [ 37.106918][ T4294] __arm64_sys_mount+0x49c/0x584 [ 37.108327][ T4294] invoke_syscall+0x98/0x2bc [ 37.109636][ T4294] el0_svc_common+0x138/0x258 [ 37.110983][ T4294] do_el0_svc+0x58/0x13c [ 37.112254][ T4294] el0_svc+0x58/0x138 [ 37.113535][ T4294] el0t_64_sync_handler+0x84/0xf0 [ 37.114988][ T4294] el0t_64_sync+0x18c/0x190 [ 37.116319][ T4294] [ 37.116319][ T4294] -> #2 (sb_internal#2){.+.+}-{0:0}: [ 37.118312][ T4294] ocfs2_start_trans+0x20c/0x6c4 [ 37.119762][ T4294] ocfs2_xattr_set+0xac0/0xe98 [ 37.121191][ T4294] ocfs2_set_acl+0x3ec/0x4a0 [ 37.122532][ T4294] ocfs2_iop_set_acl+0x174/0x240 [ 37.124019][ T4294] posix_acl_xattr_set+0x2f8/0x398 [ 37.125488][ T4294] __vfs_setxattr+0x388/0x3a4 [ 37.126890][ T4294] __vfs_setxattr_noperm+0x120/0x564 [ 37.128451][ T4294] __vfs_setxattr_locked+0x1ec/0x218 [ 37.130045][ T4294] vfs_setxattr+0x158/0x2ac [ 37.131409][ T4294] setxattr+0x228/0x28c [ 37.132702][ T4294] __arm64_sys_fsetxattr+0x1a8/0x224 [ 37.134263][ T4294] invoke_syscall+0x98/0x2bc [ 37.135707][ T4294] el0_svc_common+0x138/0x258 [ 37.137159][ T4294] do_el0_svc+0x58/0x13c [ 37.138410][ T4294] el0_svc+0x58/0x138 [ 37.139612][ T4294] el0t_64_sync_handler+0x84/0xf0 [ 37.141053][ T4294] el0t_64_sync+0x18c/0x190 [ 37.142397][ T4294] [ 37.142397][ T4294] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}: [ 37.145233][ T4294] down_write+0x5c/0x88 [ 37.146449][ T4294] ocfs2_reserve_suballoc_bits+0x12c/0x3cd4 [ 37.148141][ T4294] ocfs2_reserve_new_metadata_blocks+0x368/0x810 [ 37.149968][ T4294] ocfs2_init_xattr_set_ctxt+0x300/0x7bc [ 37.151554][ T4294] ocfs2_xattr_set+0x91c/0xe98 [ 37.152983][ T4294] ocfs2_set_acl+0x3ec/0x4a0 [ 37.154323][ T4294] ocfs2_iop_set_acl+0x174/0x240 [ 37.155741][ T4294] posix_acl_xattr_set+0x2f8/0x398 [ 37.157268][ T4294] __vfs_setxattr+0x388/0x3a4 [ 37.158639][ T4294] __vfs_setxattr_noperm+0x120/0x564 [ 37.160190][ T4294] __vfs_setxattr_locked+0x1ec/0x218 [ 37.161681][ T4294] vfs_setxattr+0x158/0x2ac [ 37.163014][ T4294] setxattr+0x228/0x28c [ 37.164251][ T4294] __arm64_sys_fsetxattr+0x1a8/0x224 [ 37.165780][ T4294] invoke_syscall+0x98/0x2bc [ 37.167185][ T4294] el0_svc_common+0x138/0x258 [ 37.168577][ T4294] do_el0_svc+0x58/0x13c [ 37.169903][ T4294] el0_svc+0x58/0x138 [ 37.171114][ T4294] el0t_64_sync_handler+0x84/0xf0 [ 37.172640][ T4294] el0t_64_sync+0x18c/0x190 [ 37.174055][ T4294] [ 37.174055][ T4294] -> #0 (&oi->ip_xattr_sem){++++}-{3:3}: [ 37.176104][ T4294] __lock_acquire+0x293c/0x6544 [ 37.177553][ T4294] lock_acquire+0x20c/0x644 [ 37.178911][ T4294] down_read+0x64/0x304 [ 37.180129][ T4294] ocfs2_init_acl+0x258/0x5f0 [ 37.181530][ T4294] ocfs2_mknod+0x1168/0x1f18 [ 37.182936][ T4294] vfs_mknod+0x3c4/0x44c [ 37.184231][ T4294] do_mknodat+0x320/0x54c [ 37.185480][ T4294] __arm64_sys_mknodat+0xb0/0xcc [ 37.187114][ T4294] invoke_syscall+0x98/0x2bc [ 37.188467][ T4294] el0_svc_common+0x138/0x258 [ 37.189869][ T4294] do_el0_svc+0x58/0x13c [ 37.191157][ T4294] el0_svc+0x58/0x138 [ 37.192382][ T4294] el0t_64_sync_handler+0x84/0xf0 [ 37.193867][ T4294] el0t_64_sync+0x18c/0x190 [ 37.195192][ T4294] [ 37.195192][ T4294] other info that might help us debug this: [ 37.195192][ T4294] [ 37.197965][ T4294] Chain exists of: [ 37.197965][ T4294] &oi->ip_xattr_sem --> &journal->j_trans_barrier --> jbd2_handle [ 37.197965][ T4294] [ 37.201638][ T4294] Possible unsafe locking scenario: [ 37.201638][ T4294] [ 37.203628][ T4294] CPU0 CPU1 [ 37.205024][ T4294] ---- ---- [ 37.206426][ T4294] lock(jbd2_handle); [ 37.207536][ T4294] lock(&journal->j_trans_barrier); [ 37.209623][ T4294] lock(jbd2_handle); [ 37.211375][ T4294] lock(&oi->ip_xattr_sem); [ 37.212618][ T4294] [ 37.212618][ T4294] *** DEADLOCK *** [ 37.212618][ T4294] [ 37.214816][ T4294] 8 locks held by syz-executor424/4294: [ 37.216254][ T4294] #0: ffff0000d4ec2460 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 37.218709][ T4294] #1: ffff0000e2b909c8 (&type->i_mutex_dir_key#6/1){+.+.}-{3:3}, at: filename_create+0x1ac/0x39c [ 37.221547][ T4294] #2: ffff0000e2b9a648 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x12c/0x3cd4 [ 37.225286][ T4294] #3: ffff0000e2b99808 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x12c/0x3cd4 [ 37.228939][ T4294] #4: ffff0000e2b9c2c8 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#8){+.+.}-{3:3}, at: ocfs2_reserve_local_alloc_bits+0xf8/0x278c [ 37.232628][ T4294] #5: ffff0000d4ec2650 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_mknod+0xc7c/0x1f18 [ 37.235102][ T4294] #6: ffff0000cdcc24e8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x374/0x6c4 [ 37.237977][ T4294] #7: ffff0000d5f6e990 (jbd2_handle){.+.+}-{0:0}, at: start_this_handle+0xfb8/0x122c [ 37.240566][ T4294] [ 37.240566][ T4294] stack backtrace: [ 37.242144][ T4294] CPU: 0 PID: 4294 Comm: syz-executor424 Not tainted 6.1.141-syzkaller #0 [ 37.244440][ T4294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 37.247136][ T4294] Call trace: [ 37.247998][ T4294] dump_backtrace+0x1c8/0x1f4 [ 37.249308][ T4294] show_stack+0x2c/0x3c [ 37.250392][ T4294] __dump_stack+0x30/0x40 [ 37.251548][ T4294] dump_stack_lvl+0xf8/0x160 [ 37.252785][ T4294] dump_stack+0x1c/0x5c [ 37.253854][ T4294] print_circular_bug+0x148/0x1b0 [ 37.255208][ T4294] check_noncircular+0x240/0x2d4 [ 37.256525][ T4294] __lock_acquire+0x293c/0x6544 [ 37.257865][ T4294] lock_acquire+0x20c/0x644 [ 37.259022][ T4294] down_read+0x64/0x304 [ 37.260185][ T4294] ocfs2_init_acl+0x258/0x5f0 [ 37.261381][ T4294] ocfs2_mknod+0x1168/0x1f18 [ 37.262602][ T4294] vfs_mknod+0x3c4/0x44c [ 37.263738][ T4294] do_mknodat+0x320/0x54c [ 37.264876][ T4294] __arm64_sys_mknodat+0xb0/0xcc [ 37.266192][ T4294] invoke_syscall+0x98/0x2bc [ 37.267427][ T4294] el0_svc_common+0x138/0x258 [ 37.268645][ T4294] do_el0_svc+0x58/0x13c [ 37.269752][ T4294] el0_svc+0x58/0x138 [ 37.270791][ T4294] el0t_64_sync_handler+0x84/0xf0 [ 37.272172][ T4294] el0t_64_sync+0x18c/0x190