program: syz_mount_image$hfsplus(&(0x7f0000000140), &(0x7f0000000340)='./file1\x00', 0x1804810, &(0x7f0000000180)=ANY=[], 0x1, 0x683, &(0x7f00000003c0)="$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") unshare(0x62040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x3, &(0x7f0000000540)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffeff, 0x0, 0x0, 0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94) r1 = socket(0x1, 0x803, 0x0) r2 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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") r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VIDIOC_CROPCAP(r3, 0xc02c563a, &(0x7f0000000000)={0xa, {0xbe8, 0x8, 0xd, 0x9}, {0x8, 0x8838, 0x4, 0x8}, {0x0, 0x101}}) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r2, 0x8010661b, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="340000001400b59527bd7000000000000a400000", @ANYRES32=r4, @ANYBLOB="140002"], 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x94, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$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") r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='nilfs2_transaction_transition\x00', r9, 0x0, 0xc0b}, 0x18) unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0) rename(&(0x7f0000003440)='./file3\x00', &(0x7f0000003480)='./file1\x00') sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)={0x5c, r7, 0x1, 0x0, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_FRAME={0x40, 0x33, @action={{{}, {}, @device_b}, @sp_mp_confirm={0xf, 0x2, {0x20a8, @random=0x7, {}, @void, @val={0x2d, 0x1a, {0x8, 0x3, 0x7, 0x0, {0x2, 0x6, 0x0, 0x6, 0x0, 0x0, 0x1, 0x2}, 0x6, 0x6, 0x1}}}}}}]}, 0x5c}}, 0x4000084) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r5, &(0x7f0000000a80)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2c, r7, 0x20, 0x70bd29, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x6, 0x1a}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x1b}]}, 0x2c}}, 0x40044) write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b) [ 85.768514][ T5295] Bluetooth: hci0: command tx timeout [ 85.846568][ T5321] loop0: detected capacity change from 0 to 1024 [ 86.222442][ T5321] netlink: 8 bytes leftover after parsing attributes in process `syz.0.0'. [ 86.364314][ T5321] [ 86.365337][ T5321] ====================================================== [ 86.367906][ T5321] WARNING: possible circular locking dependency detected [ 86.370742][ T5321] syzkaller #0 Not tainted [ 86.372398][ T5321] ------------------------------------------------------ [ 86.374700][ T5321] syz.0.0/5321 is trying to acquire lock: [ 86.376960][ T5321] ffff88801f6780b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfsplus_find_init+0x168/0x2d0 [ 86.381819][ T5321] [ 86.381819][ T5321] but task is already holding lock: [ 86.384987][ T5321] ffff888037573708 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 86.389803][ T5321] [ 86.389803][ T5321] which lock already depends on the new lock. [ 86.389803][ T5321] [ 86.394046][ T5321] [ 86.394046][ T5321] the existing dependency chain (in reverse order) is: [ 86.397437][ T5321] [ 86.397437][ T5321] -> #1 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}: [ 86.401109][ T5321] __mutex_lock+0x19f/0x1300 [ 86.403425][ T5321] hfsplus_file_extend+0x215/0x1d70 [ 86.405988][ T5321] hfsplus_bmap_reserve+0x125/0x510 [ 86.408442][ T5321] __hfsplus_ext_write_extent+0x28d/0x5b0 [ 86.411155][ T5321] __hfsplus_ext_cache_extent+0x89/0xe30 [ 86.413836][ T5321] hfsplus_file_extend+0x4af/0x1d70 [ 86.416280][ T5321] hfsplus_get_block+0x42c/0x1670 [ 86.418630][ T5321] __block_write_begin_int+0x6c6/0x1910 [ 86.421254][ T5321] cont_write_begin+0x737/0xae0 [ 86.423539][ T5321] hfsplus_write_begin+0x66/0xb0 [ 86.425922][ T5321] generic_perform_write+0x2e2/0x8f0 [ 86.428549][ T5321] generic_file_write_iter+0x14a/0x680 [ 86.431235][ T5321] vfs_write+0x61d/0xb90 [ 86.433320][ T5321] ksys_write+0x150/0x270 [ 86.435566][ T5321] do_syscall_64+0x14d/0xf80 [ 86.437865][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.440583][ T5321] [ 86.440583][ T5321] -> #0 (&tree->tree_lock/1){+.+.}-{4:4}: [ 86.443754][ T5321] __lock_acquire+0x15a5/0x2cf0 [ 86.445995][ T5321] lock_acquire+0xf0/0x2e0 [ 86.448262][ T5321] __mutex_lock+0x19f/0x1300 [ 86.450493][ T5321] hfsplus_find_init+0x168/0x2d0 [ 86.452967][ T5321] hfsplus_file_extend+0x46d/0x1d70 [ 86.455667][ T5321] hfsplus_get_block+0x42c/0x1670 [ 86.458325][ T5321] __block_write_full_folio+0x30b/0xe10 [ 86.461102][ T5321] mpage_writepages+0xc2e/0x1c90 [ 86.463515][ T5321] do_writepages+0x32e/0x550 [ 86.465755][ T5321] filemap_write_and_wait_range+0x335/0x3f0 [ 86.468588][ T5321] hfsplus_file_fsync+0x437/0x670 [ 86.470874][ T5321] generic_file_write_iter+0x37e/0x680 [ 86.473366][ T5321] vfs_write+0x61d/0xb90 [ 86.475249][ T5321] ksys_write+0x150/0x270 [ 86.477242][ T5321] do_syscall_64+0x14d/0xf80 [ 86.479574][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.482376][ T5321] [ 86.482376][ T5321] other info that might help us debug this: [ 86.482376][ T5321] [ 86.486711][ T5321] Possible unsafe locking scenario: [ 86.486711][ T5321] [ 86.490080][ T5321] CPU0 CPU1 [ 86.492408][ T5321] ---- ---- [ 86.494784][ T5321] lock(&HFSPLUS_I(inode)->extents_lock); [ 86.497291][ T5321] lock(&tree->tree_lock/1); [ 86.500329][ T5321] lock(&HFSPLUS_I(inode)->extents_lock); [ 86.503840][ T5321] lock(&tree->tree_lock/1); [ 86.506018][ T5321] [ 86.506018][ T5321] *** DEADLOCK *** [ 86.506018][ T5321] [ 86.509491][ T5321] 4 locks held by syz.0.0/5321: [ 86.511592][ T5321] #0: ffff8880123e57f8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x246/0x320 [ 86.515268][ T5321] #1: ffff88803db70420 (sb_writers#12){.+.+}-{0:0}, at: vfs_write+0x227/0xb90 [ 86.519058][ T5321] #2: ffff888037572b78 (&sb->s_type->i_mutex_key#25){+.+.}-{4:4}, at: hfsplus_file_fsync+0x12d/0x670 [ 86.523825][ T5321] #3: ffff888037573708 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 86.528743][ T5321] [ 86.528743][ T5321] stack backtrace: [ 86.531185][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 86.531197][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 86.531203][ T5321] Call Trace: [ 86.531208][ T5321] [ 86.531213][ T5321] dump_stack_lvl+0xe8/0x150 [ 86.531226][ T5321] print_circular_bug+0x2e1/0x300 [ 86.531244][ T5321] check_noncircular+0x12e/0x150 [ 86.531257][ T5321] __lock_acquire+0x15a5/0x2cf0 [ 86.531271][ T5321] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 86.531288][ T5321] ? kasan_save_track+0x4f/0x80 [ 86.531304][ T5321] ? kasan_save_track+0x3e/0x80 [ 86.531318][ T5321] ? __kasan_kmalloc+0x93/0xb0 [ 86.531332][ T5321] ? __kmalloc_noprof+0x35c/0x760 [ 86.531346][ T5321] ? hfsplus_find_init+0x8c/0x2d0 [ 86.531358][ T5321] ? hfsplus_file_extend+0x46d/0x1d70 [ 86.531371][ T5321] ? hfsplus_get_block+0x42c/0x1670 [ 86.531385][ T5321] lock_acquire+0xf0/0x2e0 [ 86.531398][ T5321] ? hfsplus_find_init+0x168/0x2d0 [ 86.531411][ T5321] __mutex_lock+0x19f/0x1300 [ 86.531427][ T5321] ? hfsplus_find_init+0x168/0x2d0 [ 86.531440][ T5321] ? hfsplus_find_init+0x168/0x2d0 [ 86.531452][ T5321] ? __pfx___mutex_lock+0x10/0x10 [ 86.531468][ T5321] ? rcu_is_watching+0x15/0xb0 [ 86.531484][ T5321] ? __kmalloc_noprof+0x37d/0x760 [ 86.531498][ T5321] ? hfsplus_find_init+0x8c/0x2d0 [ 86.531509][ T5321] ? __kmalloc_noprof+0x1b8/0x760 [ 86.531525][ T5321] hfsplus_find_init+0x168/0x2d0 [ 86.531538][ T5321] hfsplus_file_extend+0x46d/0x1d70 [ 86.531552][ T5321] ? check_path+0x21/0x40 [ 86.531567][ T5321] ? check_noncircular+0xda/0x150 [ 86.531584][ T5321] ? __pfx_hfsplus_file_extend+0x10/0x10 [ 86.531603][ T5321] ? do_raw_spin_lock+0x12b/0x2f0 [ 86.531614][ T5321] hfsplus_get_block+0x42c/0x1670 [ 86.531630][ T5321] ? __pfx_hfsplus_get_block+0x10/0x10 [ 86.531645][ T5321] ? folio_clear_dirty_for_io+0x1d4/0x710 [ 86.531663][ T5321] __block_write_full_folio+0x30b/0xe10 [ 86.531681][ T5321] ? __pfx_hfsplus_get_block+0x10/0x10 [ 86.531696][ T5321] mpage_writepages+0xc2e/0x1c90 [ 86.531712][ T5321] ? __pfx_hfsplus_get_block+0x10/0x10 [ 86.531726][ T5321] ? __pfx_mpage_writepages+0x10/0x10 [ 86.531741][ T5321] ? __lock_acquire+0x6b5/0x2cf0 [ 86.531759][ T5321] ? __pfx_hfsplus_writepages+0x10/0x10 [ 86.531773][ T5321] do_writepages+0x32e/0x550 [ 86.531787][ T5321] ? do_raw_spin_unlock+0x4d/0x210 [ 86.531798][ T5321] filemap_write_and_wait_range+0x335/0x3f0 [ 86.531810][ T5321] ? __pfx_filemap_write_and_wait_range+0x10/0x10 [ 86.531829][ T5321] ? down_write+0x16d/0x200 [ 86.531839][ T5321] ? __pfx_down_write+0x10/0x10 [ 86.531850][ T5321] ? generic_file_write_iter+0x155/0x680 [ 86.531862][ T5321] hfsplus_file_fsync+0x437/0x670 [ 86.531878][ T5321] generic_file_write_iter+0x37e/0x680 [ 86.531890][ T5321] ? __pfx_generic_file_write_iter+0x10/0x10 [ 86.531900][ T5321] ? add_lock_to_list+0xc7/0x100 [ 86.531916][ T5321] ? lockdep_unlock+0x5d/0xd0 [ 86.531927][ T5321] ? __lock_acquire+0x146e/0x2cf0 [ 86.531948][ T5321] vfs_write+0x61d/0xb90 [ 86.531966][ T5321] ? __pfx_vfs_write+0x10/0x10 [ 86.531982][ T5321] ? __fget_files+0x2a/0x420 [ 86.531997][ T5321] ksys_write+0x150/0x270 [ 86.532012][ T5321] ? __pfx_ksys_write+0x10/0x10 [ 86.532029][ T5321] do_syscall_64+0x14d/0xf80 [ 86.532044][ T5321] ? trace_irq_disable+0x3b/0x150 [ 86.532060][ T5321] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.532071][ T5321] ? clear_bhb_loop+0x40/0x90 [ 86.532083][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.532094][ T5321] RIP: 0033:0x7f675db9c629 [ 86.532106][ T5321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 86.532147][ T5321] RSP: 002b:00007f675ea29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 86.532162][ T5321] RAX: ffffffffffffffda RBX: 00007f675de15fa0 RCX: 00007f675db9c629 [ 86.532171][ T5321] RDX: 000000000208e24b RSI: 0000200000000040 RDI: 0000000000000007 [ 86.532180][ T5321] RBP: 00007f675dc32b39 R08: 0000000000000000 R09: 0000000000000000 [ 86.532187][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 86.532194][ T5321] R13: 00007f675de16038 R14: 00007f675de15fa0 R15: 00007ffded4ad918 [ 86.532205][ T5321]