program: syz_mount_image$hfsplus(&(0x7f0000000140), &(0x7f0000000340)='./file1\x00', 0x1804810, &(0x7f0000000180)=ANY=[], 0x1, 0x683, &(0x7f0000000e40)="$eJzs3U9sHFcdB/DvbDbrbFqCmyZtQJVqNRIgIhI7VgrmQkAI5VChqhw4W4nTWNmkxXGRWyHq8PfaQw+cUDnkgjghcY9UOHCBW04gHyshcekFc1o0s7P2+i/rNPFu2s8nmn3vzZt57ze/2Zn9Y0Ub4DPryrk076fIlXOvrJTttXuznbV7s7f69SQTSVaTZpJGkuI/3W73w+RyUmwMU2wrd3h/ce61Bx+vfdRrNeul2r6x337b1NutJr9tDKxerZdMJTlSl5/AlvGufuLxio3ILyc5W5cwckeTdLf40V+f3ugZ0N5t72OHEiPweBXV6+a1f2xfP5kcry/08n1A71Wx95o9Jla3tCYeai8AAAB48gzzGfjz61nPSnHiEMIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAT4XVjd//L4tqafTrUyn6v//fqtelro+XFw+2+f3HFQcAAAAAAAAAHKIX17OelZzot7tF9Tf/l6rGqerxqbyVO1nIUs5nJfNZznKWMpNkcmCg1sr88vLSzBB7Xtx1z4v/J9CJumw/muMGAAAAAAAAgE+Zn+XK5t//AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgHBTJkV6R4u7A6sk0mkmOJWmVK1aTv/frT7L7ow4AAAAADsFEsp6VnOi3u0VOJXmu+g7gWN7K7SxnMcvpZCHXqu8Fep/6G2v3Zjtr92ZvlcvOcb/97wOFUY2Y3ncPu898ptqinetZrNacz9W8kU6upVHtWTpTx9MfdSCuY0nuljEV36oNGdm1uiyP/L263OHdAx3sXg74ZcpklZGjGxmZrmMrs/FM/8zsfoYOeHa2zzSTxmCwW2ZqbT2Yh8r58bosj+dXe+V8JLZn4uLAs++5/XOefPlPf/jhdF0fn0MazpG67FaP7Z2ZmB3IxPPDZOJG5/bNG9fvnHvSMrHDdJWJ0xvtK/lefpBzmcqrWcpifpz5LGchU/luVZuvT34xcMnvkanLW1qv7hXBb+rbd6t+hvZOVhnTg6Fjeqna90QW8/28kWtZyMvVv4uZyddzKZcyN3CGT+9/hqurvrHHVd/93I4DKAM/+5W60U7y67ocD2V4zwzkdfCeO1n1Da7ZzNLJIbJ0wHtj84t1pZzj53U5HrZnYmYgE8/un4nfVbeVO53bN5duzL853HQn36sr5XX0y2RqtDeS1rb6yfJkVa2tz46y79ld+2aqvlMbfY0dfac3+npX6uqeV2qrfg+3c6SLVd/zu/bNVn1nBvp2e78FwNg7/tXjrfa/2n9rf9D+RftG+5Vj35n4xsQLrRz989FvNqePfKnxQvHHfJCfbn7+BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHt6dt9+5Od/pLCz1Kq0kVaXb7b67teuglWY9w0BXsfukj7qSqX8+VU6zS1f/58we4+zbK194Ojmsuca38t9ut1uvKfbY5vd/GZtEdWtjkboRVUZzPwIOz4XlW29euPP2O19bvDX/+sLrC7fnLl2am5679PLsheuLnYXp3uOoowQeh80X/VFHAgAAAAAAAAAAAAzrMP47waiPEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHiyXTmX5v0UmZk+P1221+7NdsqlX9/cspmkkaT4SVJ8mFxOb8nkwHDFXvO8vzj32oOP1z7aHKvZ376x337DWa2XTCU50ivvPqrxrtblvor9DqHYOMIyYWf7iYNR+18AAAD///fgA7k=") open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0) syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000440)=ANY=[], 0x1, 0x1268, &(0x7f0000002500)="$eJzs3U9rI2UcB/Bf2vTv2qbquroL4oNeFCFue/DkpcguiAWl2gUVhFmbamialCYUIuLWkyfBlyHq0ZsgvoFevHgWBJFePO5BHGmT1aZJu7ptU5HP5zIPzzzfeWYyzMCE+TF7L32+sb7WLK9lrRgpFKK4ORbFuylSjMRodOzEc7d+/OnJN956+9XFpaUbyyndXHxz/sWU0uxT373z0ddPf9+6dOub2W8nYnfu3b3fFn7evbJ7de+Pr6LaTNVmqjdaKUu3G41WdrtWSavV5no5pddrlaxZSdV6s7LVs36t1tjcbKesvjozvblVaTZTVm+n9Uo7tQqptdVO2ftZtZ7K5XKamQ5OY+XLu3meR+T5WIxHnuf5VEzHpXgoZmI2SjEXD8cj8WhcjsfiSjweT8TVg1EXvd8AAAAAAAAAAAAAAAAAAADw/3Kf+v+C+n8AAAAAAAAAAAAAAAAAAAA4f0fr/4sRvv8PAAAAAAAAAAAAAAAAAAAAQ3af7/8fqf9/Xv0/AAAAAAAAAAAAAAAAAAAAnIfJzmI5pcmIjU+3V7ZXOstO/+JaVKMWlbgepfg9Dqr/Ozrtm68s3bieDszFCxt3uvk72yujvfn5sVLMFQbm5zv51JufiOnD+YUoxeXB8y8MzE/Gs8/s5z/p5MtRih/ei0bUYjWi0D36g/zH8ym9/NrSVG/+2v64Y42e82kBAACAs1ROf+l/ft/pDhq4vrOq+3yeuiMLJ/w/cOT5vBjXihd11NzTbH+4ntVqla0HbIwfv53x0225r1GIiCwO98xO/7K8P/mZTfGgjdGhTjp28phTnNMo/gd+zDNo/PrFoZ7JGO7sI91LIqvt3z//WSp28vxcd2zgxThxUur4e0ZhCPclhuPvk37RewIAAAAAAAAAAMC/MfDtv6mI6Hsf8IO+nnuvh/fG+7d8/OyfDeEIAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/mQHjgUAAAAAhPlbp9GxAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFcBAAD///ME0UM=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0) chdir(&(0x7f0000000540)='./file0\x00') creat(&(0x7f0000000e00)='./file0\x00', 0x0) renameat2(r0, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000000c0)='./bus/file0\x00', 0x2) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r1 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x0) ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000080)=0x3f) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b) [ 74.655208][ T5294] Bluetooth: hci0: command tx timeout [ 74.760060][ T5314] loop0: detected capacity change from 0 to 1024 [ 74.842677][ T24] audit: type=1800 audit(1771295367.939:2): pid=5314 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 75.008114][ T5314] [ 75.009267][ T5314] ====================================================== [ 75.012236][ T5314] WARNING: possible circular locking dependency detected [ 75.015123][ T5314] syzkaller #0 Not tainted [ 75.017070][ T5314] ------------------------------------------------------ [ 75.019954][ T5314] syz.0.0/5314 is trying to acquire lock: [ 75.022417][ T5314] ffff888011b0ce88 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 75.027299][ T5314] [ 75.027299][ T5314] but task is already holding lock: [ 75.030579][ T5314] ffff888034f500b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfsplus_find_init+0x168/0x2d0 [ 75.034715][ T5314] [ 75.034715][ T5314] which lock already depends on the new lock. [ 75.034715][ T5314] [ 75.039053][ T5314] [ 75.039053][ T5314] the existing dependency chain (in reverse order) is: [ 75.042861][ T5314] [ 75.042861][ T5314] -> #1 (&tree->tree_lock/1){+.+.}-{4:4}: [ 75.046176][ T5314] __mutex_lock+0x19f/0x1300 [ 75.048653][ T5314] hfsplus_find_init+0x168/0x2d0 [ 75.051101][ T5314] hfsplus_file_truncate+0x39b/0xc30 [ 75.053578][ T5314] hfsplus_setattr+0x1c4/0x270 [ 75.055935][ T5314] notify_change+0xc1a/0xf40 [ 75.058173][ T5314] do_truncate+0x1c2/0x250 [ 75.060309][ T5314] path_openat+0x2f89/0x3860 [ 75.062561][ T5314] do_file_open+0x23e/0x4a0 [ 75.064915][ T5314] do_sys_openat2+0x113/0x200 [ 75.067127][ T5314] __x64_sys_creat+0x8f/0xc0 [ 75.069413][ T5314] do_syscall_64+0x14d/0xf80 [ 75.071630][ T5314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.074446][ T5314] [ 75.074446][ T5314] -> #0 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}: [ 75.078288][ T5314] __lock_acquire+0x15a5/0x2cf0 [ 75.080589][ T5314] lock_acquire+0xf0/0x2e0 [ 75.082782][ T5314] __mutex_lock+0x19f/0x1300 [ 75.085057][ T5314] hfsplus_file_extend+0x215/0x1d70 [ 75.087563][ T5314] hfsplus_bmap_reserve+0x125/0x510 [ 75.090017][ T5314] __hfsplus_ext_write_extent+0x28d/0x5b0 [ 75.092680][ T5314] __hfsplus_ext_cache_extent+0x89/0xe30 [ 75.095464][ T5314] hfsplus_file_extend+0x4af/0x1d70 [ 75.097944][ T5314] hfsplus_get_block+0x42c/0x1670 [ 75.100299][ T5314] __block_write_begin_int+0x6c6/0x1910 [ 75.102877][ T5314] cont_write_begin+0x737/0xae0 [ 75.105269][ T5314] hfsplus_write_begin+0x66/0xb0 [ 75.107616][ T5314] generic_perform_write+0x2e2/0x8f0 [ 75.110019][ T5314] generic_file_write_iter+0x14a/0x680 [ 75.112576][ T5314] vfs_write+0x61d/0xb90 [ 75.114642][ T5314] ksys_write+0x150/0x270 [ 75.116862][ T5314] do_syscall_64+0x14d/0xf80 [ 75.119136][ T5314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.121862][ T5314] [ 75.121862][ T5314] other info that might help us debug this: [ 75.121862][ T5314] [ 75.126110][ T5314] Possible unsafe locking scenario: [ 75.126110][ T5314] [ 75.129240][ T5314] CPU0 CPU1 [ 75.131510][ T5314] ---- ---- [ 75.133843][ T5314] lock(&tree->tree_lock/1); [ 75.135903][ T5314] lock(&HFSPLUS_I(inode)->extents_lock); [ 75.139549][ T5314] lock(&tree->tree_lock/1); [ 75.142680][ T5314] lock(&HFSPLUS_I(inode)->extents_lock); [ 75.145200][ T5314] [ 75.145200][ T5314] *** DEADLOCK *** [ 75.145200][ T5314] [ 75.148753][ T5314] 5 locks held by syz.0.0/5314: [ 75.150871][ T5314] #0: ffff88803ad1fb78 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x246/0x320 [ 75.154763][ T5314] #1: ffff888035612420 (sb_writers#12){.+.+}-{0:0}, at: vfs_write+0x227/0xb90 [ 75.158629][ T5314] #2: ffff888011ab9738 (&sb->s_type->i_mutex_key#25){+.+.}-{4:4}, at: generic_file_write_iter+0x11e/0x680 [ 75.163483][ T5314] #3: ffff888011ab9548 (&hip->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 75.167943][ T5314] #4: ffff888034f500b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfsplus_find_init+0x168/0x2d0 [ 75.171988][ T5314] [ 75.171988][ T5314] stack backtrace: [ 75.174348][ T5314] CPU: 0 UID: 0 PID: 5314 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 75.174365][ T5314] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 75.174374][ T5314] Call Trace: [ 75.174387][ T5314] [ 75.174393][ T5314] dump_stack_lvl+0xe8/0x150 [ 75.174415][ T5314] print_circular_bug+0x2e1/0x300 [ 75.174436][ T5314] check_noncircular+0x12e/0x150 [ 75.174454][ T5314] __lock_acquire+0x15a5/0x2cf0 [ 75.174469][ T5314] ? rcu_is_watching+0x15/0xb0 [ 75.174484][ T5314] ? lock_release+0x4b/0x3d0 [ 75.174496][ T5314] ? lock_release+0x4b/0x3d0 [ 75.174511][ T5314] lock_acquire+0xf0/0x2e0 [ 75.174523][ T5314] ? hfsplus_file_extend+0x215/0x1d70 [ 75.174534][ T5314] __mutex_lock+0x19f/0x1300 [ 75.174543][ T5314] ? hfsplus_file_extend+0x215/0x1d70 [ 75.174552][ T5314] ? stack_trace_save+0xa9/0x100 [ 75.174559][ T5314] ? __pfx_stack_trace_save+0x10/0x10 [ 75.174565][ T5314] ? hfsplus_file_extend+0x215/0x1d70 [ 75.174574][ T5314] ? __pfx___mutex_lock+0x10/0x10 [ 75.174583][ T5314] ? lockdep_unlock+0x5d/0xd0 [ 75.174590][ T5314] ? __lock_acquire+0x146e/0x2cf0 [ 75.174598][ T5314] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 75.174606][ T5314] hfsplus_file_extend+0x215/0x1d70 [ 75.174622][ T5314] ? __pfx_hfsplus_file_extend+0x10/0x10 [ 75.174635][ T5314] ? __pfx___mutex_trylock_common+0x10/0x10 [ 75.174651][ T5314] ? rcu_is_watching+0x15/0xb0 [ 75.174664][ T5314] ? trace_contention_end+0x3d/0x150 [ 75.174681][ T5314] ? __asan_memset+0x22/0x50 [ 75.174693][ T5314] ? hfsplus_brec_find+0x19d/0x520 [ 75.174705][ T5314] hfsplus_bmap_reserve+0x125/0x510 [ 75.174726][ T5314] __hfsplus_ext_write_extent+0x28d/0x5b0 [ 75.174742][ T5314] __hfsplus_ext_cache_extent+0x89/0xe30 [ 75.174757][ T5314] hfsplus_file_extend+0x4af/0x1d70 [ 75.174773][ T5314] ? __pfx_hfsplus_file_extend+0x10/0x10 [ 75.174787][ T5314] ? percpu_ref_get_many+0x19/0x140 [ 75.174802][ T5314] ? percpu_ref_get_many+0x19/0x140 [ 75.174820][ T5314] ? rcu_is_watching+0x15/0xb0 [ 75.174833][ T5314] ? trace_kmem_cache_alloc+0x29/0xf0 [ 75.174848][ T5314] hfsplus_get_block+0x42c/0x1670 [ 75.174865][ T5314] ? __pfx_hfsplus_get_block+0x10/0x10 [ 75.174879][ T5314] ? do_raw_spin_unlock+0x4d/0x210 [ 75.174890][ T5314] ? _raw_spin_unlock+0x28/0x50 [ 75.174901][ T5314] __block_write_begin_int+0x6c6/0x1910 [ 75.174920][ T5314] ? __pfx_hfsplus_get_block+0x10/0x10 [ 75.174934][ T5314] ? __pfx___block_write_begin_int+0x10/0x10 [ 75.174953][ T5314] cont_write_begin+0x737/0xae0 [ 75.174969][ T5314] ? irqentry_exit+0x59e/0x620 [ 75.174985][ T5314] ? __pfx_cont_write_begin+0x10/0x10 [ 75.175002][ T5314] hfsplus_write_begin+0x66/0xb0 [ 75.175014][ T5314] ? __pfx_hfsplus_get_block+0x10/0x10 [ 75.175028][ T5314] generic_perform_write+0x2e2/0x8f0 [ 75.175047][ T5314] ? __pfx_generic_perform_write+0x10/0x10 [ 75.175064][ T5314] ? file_update_time_flags+0x400/0x4a0 [ 75.175077][ T5314] ? __generic_file_write_iter+0xf9/0x230 [ 75.175086][ T5314] ? generic_file_write_iter+0x136/0x680 [ 75.175096][ T5314] generic_file_write_iter+0x14a/0x680 [ 75.175107][ T5314] ? __pfx_generic_file_write_iter+0x10/0x10 [ 75.175117][ T5314] ? add_lock_to_list+0xc7/0x100 [ 75.175133][ T5314] ? lockdep_unlock+0x5d/0xd0 [ 75.175144][ T5314] ? __lock_acquire+0x146e/0x2cf0 [ 75.175159][ T5314] ? __pfx___mutex_trylock_common+0x10/0x10 [ 75.175180][ T5314] vfs_write+0x61d/0xb90 [ 75.175196][ T5314] ? __pfx_vfs_write+0x10/0x10 [ 75.175211][ T5314] ? __fget_files+0x2a/0x420 [ 75.175225][ T5314] ksys_write+0x150/0x270 [ 75.175240][ T5314] ? __pfx_ksys_write+0x10/0x10 [ 75.175257][ T5314] do_syscall_64+0x14d/0xf80 [ 75.175269][ T5314] ? trace_irq_disable+0x3b/0x150 [ 75.175285][ T5314] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.175299][ T5314] ? clear_bhb_loop+0x40/0x90 [ 75.175310][ T5314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.175322][ T5314] RIP: 0033:0x7fa4ddf9bf79 [ 75.175334][ T5314] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 75.175344][ T5314] RSP: 002b:00007fa4dee81028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 75.175358][ T5314] RAX: ffffffffffffffda RBX: 00007fa4de215fa0 RCX: 00007fa4ddf9bf79 [ 75.175366][ T5314] RDX: 000000000208e24b RSI: 0000200000000040 RDI: 0000000000000007 [ 75.175374][ T5314] RBP: 00007fa4de0327e0 R08: 0000000000000000 R09: 0000000000000000 [ 75.175391][ T5314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 75.175398][ T5314] R13: 00007fa4de216038 R14: 00007fa4de215fa0 R15: 00007ffc21c1fa58 [ 75.175412][ T5314]