Warning: Permanently added '10.128.10.19' (ED25519) to the list of known hosts. executing program [ 52.013296][ T4166] loop0: detected capacity change from 0 to 8192 [ 52.092214][ T4166] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 52.104541][ T4166] REISERFS (device loop0): using ordered data mode [ 52.111070][ T4166] reiserfs: using flush barriers [ 52.118411][ T4166] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 52.135224][ T4166] REISERFS (device loop0): checking transaction log (loop0) [ 52.156980][ T4166] REISERFS (device loop0): Using tea hash to sort names [ 52.165592][ T4166] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 52.176275][ T4166] [ 52.178634][ T4166] ====================================================== [ 52.185644][ T4166] WARNING: possible circular locking dependency detected [ 52.192667][ T4166] 5.15.185-syzkaller #0 Not tainted [ 52.197865][ T4166] ------------------------------------------------------ [ 52.204875][ T4166] syz-executor428/4166 is trying to acquire lock: [ 52.211265][ T4166] ffffc90002e910f0 (&journal->j_mutex){+.+.}-{3:3}, at: do_journal_begin_r+0x37a/0x1010 [ 52.220994][ T4166] [ 52.220994][ T4166] but task is already holding lock: [ 52.228332][ T4166] ffff88801abd0460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write_file+0x5c/0x200 [ 52.237525][ T4166] [ 52.237525][ T4166] which lock already depends on the new lock. [ 52.237525][ T4166] [ 52.248081][ T4166] [ 52.248081][ T4166] the existing dependency chain (in reverse order) is: [ 52.257088][ T4166] [ 52.257088][ T4166] -> #2 (sb_writers#9){.+.+}-{0:0}: [ 52.264481][ T4166] sb_start_write+0x4f/0x1c0 [ 52.269593][ T4166] mnt_want_write_file+0x5c/0x200 [ 52.275115][ T4166] reiserfs_ioctl+0x10a/0x330 [ 52.280289][ T4166] __se_sys_ioctl+0xfa/0x170 [ 52.285374][ T4166] do_syscall_64+0x4c/0xa0 [ 52.290296][ T4166] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 52.296707][ T4166] [ 52.296707][ T4166] -> #1 (&sbi->lock){+.+.}-{3:3}: [ 52.303901][ T4166] __mutex_lock_common+0x1eb/0x2390 [ 52.309598][ T4166] mutex_lock_nested+0x17/0x20 [ 52.314859][ T4166] reiserfs_write_lock_nested+0x5c/0xd0 [ 52.320925][ T4166] do_journal_begin_r+0x385/0x1010 [ 52.326536][ T4166] journal_begin+0x148/0x350 [ 52.331622][ T4166] reiserfs_fill_super+0x1654/0x23e0 [ 52.337400][ T4166] mount_bdev+0x287/0x3c0 [ 52.342236][ T4166] legacy_get_tree+0xe6/0x180 [ 52.347435][ T4166] vfs_get_tree+0x88/0x270 [ 52.352360][ T4166] do_new_mount+0x24a/0xa40 [ 52.357360][ T4166] __se_sys_mount+0x2d6/0x3c0 [ 52.362533][ T4166] do_syscall_64+0x4c/0xa0 [ 52.367440][ T4166] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 52.373850][ T4166] [ 52.373850][ T4166] -> #0 (&journal->j_mutex){+.+.}-{3:3}: [ 52.381761][ T4166] __lock_acquire+0x2c33/0x7c60 [ 52.387113][ T4166] lock_acquire+0x197/0x3f0 [ 52.392111][ T4166] __mutex_lock_common+0x1eb/0x2390 [ 52.397802][ T4166] mutex_lock_nested+0x17/0x20 [ 52.403061][ T4166] do_journal_begin_r+0x37a/0x1010 [ 52.408666][ T4166] journal_begin+0x148/0x350 [ 52.413749][ T4166] reiserfs_dirty_inode+0x119/0x240 [ 52.419460][ T4166] __mark_inode_dirty+0x2b0/0xc60 [ 52.424995][ T4166] reiserfs_ioctl+0x286/0x330 [ 52.430170][ T4166] __se_sys_ioctl+0xfa/0x170 [ 52.435260][ T4166] do_syscall_64+0x4c/0xa0 [ 52.440288][ T4166] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 52.446679][ T4166] [ 52.446679][ T4166] other info that might help us debug this: [ 52.446679][ T4166] [ 52.456883][ T4166] Chain exists of: [ 52.456883][ T4166] &journal->j_mutex --> &sbi->lock --> sb_writers#9 [ 52.456883][ T4166] [ 52.469364][ T4166] Possible unsafe locking scenario: [ 52.469364][ T4166] [ 52.476789][ T4166] CPU0 CPU1 [ 52.482131][ T4166] ---- ---- [ 52.487467][ T4166] lock(sb_writers#9); [ 52.491599][ T4166] lock(&sbi->lock); [ 52.498081][ T4166] lock(sb_writers#9); [ 52.504735][ T4166] lock(&journal->j_mutex); [ 52.509386][ T4166] [ 52.509386][ T4166] *** DEADLOCK *** [ 52.509386][ T4166] [ 52.517522][ T4166] 1 lock held by syz-executor428/4166: [ 52.522956][ T4166] #0: ffff88801abd0460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write_file+0x5c/0x200 [ 52.532590][ T4166] [ 52.532590][ T4166] stack backtrace: [ 52.538473][ T4166] CPU: 0 PID: 4166 Comm: syz-executor428 Not tainted 5.15.185-syzkaller #0 [ 52.547139][ T4166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 52.557184][ T4166] Call Trace: [ 52.560447][ T4166] [ 52.563355][ T4166] dump_stack_lvl+0x168/0x230 [ 52.568011][ T4166] ? load_image+0x3b0/0x3b0 [ 52.572489][ T4166] ? show_regs_print_info+0x20/0x20 [ 52.577660][ T4166] ? print_circular_bug+0x12b/0x1a0 [ 52.582831][ T4166] check_noncircular+0x274/0x310 [ 52.587743][ T4166] ? add_chain_block+0x940/0x940 [ 52.592655][ T4166] ? lockdep_lock+0xdc/0x1e0 [ 52.597223][ T4166] ? mark_lock+0x94/0x320 [ 52.601534][ T4166] __lock_acquire+0x2c33/0x7c60 [ 52.606361][ T4166] ? is_bpf_text_address+0x254/0x270 [ 52.611621][ T4166] ? verify_lock_unused+0x140/0x140 [ 52.616792][ T4166] ? __kernel_text_address+0x9a/0x100 [ 52.622143][ T4166] ? stack_trace_save+0xe0/0xe0 [ 52.626965][ T4166] ? arch_stack_walk+0xf2/0x140 [ 52.631876][ T4166] ? mnt_want_write_file+0x5c/0x200 [ 52.637047][ T4166] ? reacquire_held_locks+0x2f9/0x590 [ 52.642393][ T4166] ? mnt_want_write_file+0x5c/0x200 [ 52.647666][ T4166] lock_acquire+0x197/0x3f0 [ 52.652156][ T4166] ? do_journal_begin_r+0x37a/0x1010 [ 52.657418][ T4166] ? __might_sleep+0xf0/0xf0 [ 52.661990][ T4166] ? read_lock_is_recursive+0x10/0x10 [ 52.667341][ T4166] ? reiserfs_write_unlock_nested+0xc0/0xf0 [ 52.673233][ T4166] ? do_journal_begin_r+0x37a/0x1010 [ 52.678497][ T4166] __mutex_lock_common+0x1eb/0x2390 [ 52.683675][ T4166] ? do_journal_begin_r+0x37a/0x1010 [ 52.688958][ T4166] ? mutex_unlock+0x10/0x10 [ 52.693442][ T4166] ? mutex_lock_io_nested+0x60/0x60 [ 52.698710][ T4166] ? __lock_acquire+0x289d/0x7c60 [ 52.703727][ T4166] mutex_lock_nested+0x17/0x20 [ 52.708479][ T4166] do_journal_begin_r+0x37a/0x1010 [ 52.713578][ T4166] ? journal_join_abort+0xe0/0xe0 [ 52.718589][ T4166] ? seqcount_lockdep_reader_access+0x120/0x1c0 [ 52.724836][ T4166] ? lockdep_hardirqs_on+0x94/0x140 [ 52.730044][ T4166] ? ktime_get_coarse_real_ts64+0x36/0x120 [ 52.735850][ T4166] ? seqcount_lockdep_reader_access+0x172/0x1c0 [ 52.742086][ T4166] journal_begin+0x148/0x350 [ 52.746682][ T4166] reiserfs_dirty_inode+0x119/0x240 [ 52.751876][ T4166] ? reiserfs_free_inode+0x20/0x20 [ 52.756963][ T4166] ? current_time+0x1c2/0x2b0 [ 52.761625][ T4166] ? reiserfs_free_inode+0x20/0x20 [ 52.766712][ T4166] __mark_inode_dirty+0x2b0/0xc60 [ 52.771713][ T4166] ? __might_fault+0xb3/0x110 [ 52.776364][ T4166] reiserfs_ioctl+0x286/0x330 [ 52.781017][ T4166] ? reiserfs_unpack+0x580/0x580 [ 52.785925][ T4166] __se_sys_ioctl+0xfa/0x170 [ 52.790489][ T4166] do_syscall_64+0x4c/0xa0 [ 52.794895][ T4166] ? clear_bhb_loop+0x30/0x80 [ 52.799546][ T4166] ? clear_bhb_loop+0x30/0x80 [ 52.804195][ T4166] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 52.810059][ T4166] RIP: 0033:0x7f524e0f9649 [ 52.814452][ T4166] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 52.834032][ T4166] RSP: 002b:00007ffd83229dc8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 52.842423][ T4166] RAX: ffffffffffffffda RBX: 00007ffd83229f98 RCX: 00007f524e0f9649 [ 52.850761][ T4166] RDX: 0000200000000000 RSI: 0000000040087602 RDI: 0000000000000003 [ 52.858891