program: r0 = syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000140)='./file1\x00', 0x1008400, &(0x7f0000000080)=ANY=[], 0x85, 0x6ab, &(0x7f0000000d00)="$eJzs3c1vHGcdB/DvrDcbbyiJmyY0QZUSNRIgoiZ2rBTMpQEhlEOFqnLgbCVOYmWTRo6L3ApBeClce8gfUA65cUBI3DhElDPcKiEh+VgJwaWXmtOimZ1dr9/t1M3G5fOJZueZeV7mmd8+87YbawP837p6Ps3HKXL1/OtL5fLyo+nO8qPpO/10ksNJGkmzN0vxabfb/TC5kt6U0+XKurlibev3jpWvZc2H8zNvfvTJ8sdVE9WaZr98Y2O9vXpQTzmbZKye71d713Zqb3yn5orBHpYBO9cPHIzaoSTdyr8flsv/SPLcIGdIe7PaO4584AAoetfNDSaSI/WBXt4H9K6KvWv2gfZg1B0AAACA/Vesf949tpKVLOXoiPoDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB1L9+/9FPTX66bMp+r//36rXpU4/W87srfjjz6sfAAAAAAAAAPAUnVnJSpZytL/cLarv/F+uFk5Ur1/K27mfuSzkQpYym8UsZiFTSSaGGmotzS4uLkwNavb/Z8DGmpc2rXlph44eruft/dhrAAAAAAAAADhoPu12u9sW+GWurn7/DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz4IiGevNqulEPz2RRjPJeJJWWe5B8vd++qA6/UryeNSdAAAAgM+gu8tyx1aykqUcHdQrqmf+r1TP/eN5O3ezmPksppO5XK8+C+g99TeWH013lh9N3ymnje1+9z976m7VYnqfPWy+5VNViXZuZL5acyHX8laK4noaVc3SqX5/Nu/XL8o+Fa/1HNplz67X83LP36/n6zX3tK9b2uOHKRNVRA4NIjJZ962MxvPbR2KP7876LU2lMejsiXVbWrcTa2L+2i63d6Sel/vzmy1iPhrrI3GpP/r+WY/BrWOefP1Pv//xrc7d27du3D//7OzS7ozV8955pb0xEtNDx+GL24++gx2JDSarSJwcLF/ND/KjnM/ZvJGFzOcnmc1i5nI2369Ss/V4LoYO+aFINYaavrJmQ2/s1JNWPUJ7b9baPmWHPr1c1T2a+fwwb+V65vJq9e9SpvKtXM7lzAy9wyd3caZtbHHUd7+8aefPfaNOtJP8tp5Xbu7T+fWJlXF9fiiuw+fciSpveM1qlI7v4XrUj9Iftu9K86t1otzGr7J2uIzW+khMDUXihe0j8bvqtHK/c/f2wq3Ze7vb3PH360R5HL33TF0lyvFyfHBfsHZ0lHkv9PKqe5DheLXqb1x69Rob8k4O8npH6oMtj9RWfQ+3saVLVd6Lm+ZNV3mnhvLW3291BvdDB/3LH4AvrPdayZFvHmm1/9X+W/uD9q/bt9qvj3/v8LcPv9TKob8e+k5zcuxrjZeKP+aD/Gz1+R8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhy99959/ZspzO3sC7R7XZ/vnnWWDYUPjiJ/s+ZPcWNnn4uI4tYK0mnM/fn0Uf+v91ut15TPBMjYdtEt3Q43Ses/pck25QZW13TTLJZmTP7vV/ja9acSrJTrW1OGn4ACr4QLi7euXfx/jvvvjJ/Z/bm3M25uzOXL89Mzlx+dfrijfnO3GTvddS9BD4Pqxf9UfcEAAAAAAAAAAAA2K2n8TcVW299/GnuKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHBAXT2f5uMUmZq8MFkuLz+a7pRTP71aspmkkaT4aVJ8mFxJb8rEUHPFVtt5OD/z5kefLH+82lazX76xXb3deVBPOZtkrJ7vV3vXPnN7xWAPy4Cd6wcORu1/AQAA//+RfQbo") r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101c42, 0x11) ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f0000000c00)={0x4, {0x5, 0x5, 0x1ff, 0x0, 0x1ff}}) pwritev2(r1, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0xffffffbc}], 0x1, 0xfff, 0xc, 0x4) r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000b80)={0x53, 0xfffffffffffffffd, 0xf8, 0x1, @buffer={0x0, 0xdd, &(0x7f0000000880)=""/221}, &(0x7f0000000980)="6b0ef6ccadc56066810d85c39d2434eb9b48b7fe5d49bc44ef48da0713511f99970edddb4692a30d5f326e839ee14f658212a7c3a4327355bb4fe9e51e1c74678d81e3829b45c24becc61273a82eb5932aebe7f7d7fb40090f9560c32bc9e70b54fc13c1ec4efb806ed40ba1ffa847e8df22d40fdf0e1791a1c3307b8e1e81baf0eacf53dbbed80a1c904f2b406e415e8a6dd2399b5aea08b602e39cfa2dbb001cd5cb9afbd1c1239cfd804bc59b41de3143e7203469aca80dee153944d01e1beaa913b0e34534ef422fb402464b46337764855b019b87dbdd0b84f55d24b07ccd7795ad57e34ce38aca12a9533b885529136173ff44ed52", &(0x7f0000000a80)=""/159, 0x7, 0x22, 0x0, &(0x7f0000000b40)}) ioctl$DVD_READ_STRUCT(r2, 0x5390, &(0x7f0000000040)=@type=0x1) [ 99.836215][ T1104] cfg80211: failed to load regulatory.db [ 99.846232][ T45] Bluetooth: hci0: command tx timeout [ 100.109797][ T5318] loop0: detected capacity change from 0 to 1024 [ 100.186774][ T5318] [ 100.188233][ T5318] ============================================ [ 100.191528][ T5318] WARNING: possible recursive locking detected [ 100.194585][ T5318] syzkaller #0 Not tainted [ 100.196423][ T5318] -------------------------------------------- [ 100.199095][ T5318] syz.0.0/5318 is trying to acquire lock: [ 100.201533][ T5318] ffff888042817708 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1670 [ 100.206918][ T5318] [ 100.206918][ T5318] but task is already holding lock: [ 100.210748][ T5318] ffff888042816988 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 100.216074][ T5318] [ 100.216074][ T5318] other info that might help us debug this: [ 100.219742][ T5318] Possible unsafe locking scenario: [ 100.219742][ T5318] [ 100.223048][ T5318] CPU0 [ 100.224712][ T5318] ---- [ 100.226529][ T5318] lock(&HFSPLUS_I(inode)->extents_lock); [ 100.230002][ T5318] lock(&HFSPLUS_I(inode)->extents_lock); [ 100.232684][ T5318] [ 100.232684][ T5318] *** DEADLOCK *** [ 100.232684][ T5318] [ 100.236364][ T5318] May be due to missing lock nesting notation [ 100.236364][ T5318] [ 100.240095][ T5318] 4 locks held by syz.0.0/5318: [ 100.242324][ T5318] #0: ffff888011814420 (sb_writers#12){.+.+}-{0:0}, at: vfs_writev+0x2aa/0x990 [ 100.246563][ T5318] #1: ffff888042816b78 (&sb->s_type->i_mutex_key#25){+.+.}-{4:4}, at: generic_file_write_iter+0x11e/0x680 [ 100.252180][ T5318] #2: ffff888042816988 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 100.257154][ T5318] #3: ffff8880428118f8 (&sbi->alloc_mutex){+.+.}-{4:4}, at: hfsplus_block_allocate+0xa7/0xce0 [ 100.261803][ T5318] [ 100.261803][ T5318] stack backtrace: [ 100.264697][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 100.264723][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 100.264733][ T5318] Call Trace: [ 100.264772][ T5318] [ 100.264779][ T5318] dump_stack_lvl+0xe8/0x150 [ 100.264798][ T5318] print_deadlock_bug+0x279/0x290 [ 100.264815][ T5318] __lock_acquire+0x253f/0x2cf0 [ 100.264828][ T5318] ? lock_release+0x4b/0x3d0 [ 100.264839][ T5318] ? lock_release+0x4b/0x3d0 [ 100.264889][ T5318] ? is_bpf_text_address+0x292/0x2b0 [ 100.264904][ T5318] ? is_bpf_text_address+0x26/0x2b0 [ 100.264917][ T5318] lock_acquire+0xf0/0x2e0 [ 100.264932][ T5318] ? hfsplus_get_block+0x39e/0x1670 [ 100.264954][ T5318] __mutex_lock+0x19f/0x1300 [ 100.265016][ T5318] ? hfsplus_get_block+0x39e/0x1670 [ 100.265037][ T5318] ? stack_trace_save+0xa9/0x100 [ 100.265052][ T5318] ? __pfx_stack_trace_save+0x10/0x10 [ 100.265067][ T5318] ? check_path+0x21/0x40 [ 100.265079][ T5318] ? check_noncircular+0xda/0x150 [ 100.265091][ T5318] ? hfsplus_get_block+0x39e/0x1670 [ 100.265107][ T5318] ? __pfx___mutex_lock+0x10/0x10 [ 100.265115][ T5318] ? __lock_acquire+0x146e/0x2cf0 [ 100.265129][ T5318] hfsplus_get_block+0x39e/0x1670 [ 100.265144][ T5318] ? __pfx_hfsplus_get_block+0x10/0x10 [ 100.265157][ T5318] ? block_read_full_folio+0x672/0x830 [ 100.265167][ T5318] block_read_full_folio+0x29f/0x830 [ 100.265176][ T5318] ? __pfx_hfsplus_get_block+0x10/0x10 [ 100.265188][ T5318] filemap_read_folio+0x137/0x3b0 [ 100.265201][ T5318] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 100.265217][ T5318] ? __pfx_filemap_read_folio+0x10/0x10 [ 100.265228][ T5318] ? filemap_add_folio+0x356/0x530 [ 100.265247][ T5318] do_read_cache_folio+0x358/0x590 [ 100.265262][ T5318] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 100.265280][ T5318] read_cache_page+0x5d/0x170 [ 100.265293][ T5318] hfsplus_block_allocate+0xf3/0xce0 [ 100.265306][ T5318] hfsplus_file_extend+0xb2d/0x1d70 [ 100.265319][ T5318] ? __pfx_hfsplus_file_extend+0x10/0x10 [ 100.265330][ T5318] ? __kernel_text_address+0xd/0x30 [ 100.265339][ T5318] ? unwind_get_return_address+0x4d/0x90 [ 100.265353][ T5318] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 100.265364][ T5318] ? arch_stack_walk+0xe3/0x150 [ 100.265381][ T5318] ? unwind_next_frame+0xa5/0x23c0 [ 100.265397][ T5318] ? rcu_is_watching+0x15/0xb0 [ 100.265414][ T5318] ? unwind_next_frame+0xa5/0x23c0 [ 100.265431][ T5318] ? lock_release+0x4b/0x3d0 [ 100.265447][ T5318] ? __lock_acquire+0x6b5/0x2cf0 [ 100.265468][ T5318] hfsplus_get_block+0x42c/0x1670 [ 100.265479][ T5318] ? is_bpf_text_address+0x292/0x2b0 [ 100.265488][ T5318] ? __pfx_hfsplus_get_block+0x10/0x10 [ 100.265501][ T5318] ? folio_try_get+0x1c/0x340 [ 100.265514][ T5318] ? filemap_get_entry+0xca/0x320 [ 100.265530][ T5318] __block_write_begin_int+0x6c6/0x1910 [ 100.265543][ T5318] ? __pfx_hfsplus_get_block+0x10/0x10 [ 100.265561][ T5318] ? __pfx___block_write_begin_int+0x10/0x10 [ 100.265572][ T5318] cont_write_begin+0x737/0xae0 [ 100.265583][ T5318] ? ktime_get_coarse_real_ts64_mg+0x17c/0x1e0 [ 100.265598][ T5318] ? __pfx_cont_write_begin+0x10/0x10 [ 100.265612][ T5318] ? inode_set_ctime_current+0x277/0xba0 [ 100.265625][ T5318] hfsplus_write_begin+0x66/0xb0 [ 100.265641][ T5318] ? __pfx_hfsplus_get_block+0x10/0x10 [ 100.265658][ T5318] generic_perform_write+0x2e2/0x8f0 [ 100.265668][ T5318] ? __pfx_generic_perform_write+0x10/0x10 [ 100.265677][ T5318] ? file_update_time_flags+0x400/0x4a0 [ 100.265689][ T5318] ? __generic_file_write_iter+0xf9/0x230 [ 100.265697][ T5318] ? generic_file_write_iter+0x136/0x680 [ 100.265708][ T5318] generic_file_write_iter+0x14a/0x680 [ 100.265717][ T5318] ? __pfx_generic_file_write_iter+0x10/0x10 [ 100.265726][ T5318] ? aa_file_perm+0x192/0x15e0 [ 100.265787][ T5318] ? aa_file_perm+0x50e/0x15e0 [ 100.265805][ T5318] ? aa_file_perm+0x192/0x15e0 [ 100.265822][ T5318] ? __lock_acquire+0x6b5/0x2cf0 [ 100.265837][ T5318] ? preempt_schedule_thunk+0x16/0x30 [ 100.265851][ T5318] do_iter_readv_writev+0x619/0x8c0 [ 100.265861][ T5318] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 100.265874][ T5318] vfs_writev+0x33c/0x990 [ 100.265893][ T5318] ? __pfx_vfs_writev+0x10/0x10 [ 100.265909][ T5318] ? __fget_files+0x2a/0x420 [ 100.265926][ T5318] ? __fget_files+0x3a0/0x420 [ 100.265941][ T5318] ? __fget_files+0x2a/0x420 [ 100.265951][ T5318] __se_sys_pwritev2+0x184/0x2a0 [ 100.265960][ T5318] ? __pfx___se_sys_pwritev2+0x10/0x10 [ 100.265969][ T5318] ? __x64_sys_pwritev2+0x20/0xc0 [ 100.265977][ T5318] do_syscall_64+0x14d/0xf80 [ 100.265985][ T5318] ? trace_irq_disable+0x3b/0x150 [ 100.265997][ T5318] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.266005][ T5318] ? clear_bhb_loop+0x40/0x90 [ 100.266014][ T5318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.266024][ T5318] RIP: 0033:0x7f571a39c799 [ 100.266034][ T5318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 100.266043][ T5318] RSP: 002b:00007f571b1a0fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000148 [ 100.266060][ T5318] RAX: ffffffffffffffda RBX: 00007f571a615fa0 RCX: 00007f571a39c799 [ 100.266070][ T5318] RDX: 0000000000000001 RSI: 0000200000000cc0 RDI: 0000000000000004 [ 100.266080][ T5318] RBP: 00007f571a432bd9 R08: 000000000000000c R09: 0000000000000004 [ 100.266089][ T5318] R10: 0000000000000fff R11: 0000000000000246 R12: 0000000000000000 [ 100.266098][ T5318] R13: 00007f571a616038 R14: 00007f571a615fa0 R15: 00007ffef8be7d88 [ 100.266112][ T5318]