syzbot

============================================
WARNING: possible recursive locking detected
syzkaller #0 Not tainted
--------------------------------------------
syz.2.1411/9012 is trying to acquire lock:
ffff88804269f440 (&ni->ni_lock#2/5){+.+.}-{4:4}, at: ni_lock fs/ntfs3/ntfs_fs.h:1127 [inline]
ffff88804269f440 (&ni->ni_lock#2/5){+.+.}-{4:4}, at: mi_read+0x2d4/0x5a0 fs/ntfs3/record.c:148

but task is already holding lock:
ffff8880592eaf10 (&ni->ni_lock#2/5){+.+.}-{4:4}, at: ni_lock fs/ntfs3/ntfs_fs.h:1127 [inline]
ffff8880592eaf10 (&ni->ni_lock#2/5){+.+.}-{4:4}, at: ntfs_link+0xf6/0x280 fs/ntfs3/namei.c:141

other info that might help us debug this:
 Possible unsafe locking scenario:

       CPU0
       ----
  lock(&ni->ni_lock#2/5);
  lock(&ni->ni_lock#2/5);

 *** DEADLOCK ***

 May be due to missing lock nesting notation

6 locks held by syz.2.1411/9012:
 #0: ffff888027f36480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 fs/namespace.c:499
 #1: ffff8880592e83a8 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: inode_lock_nested include/linux/fs.h:1072 [inline]
 #1: ffff8880592e83a8 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: __start_dirop fs/namei.c:2864 [inline]
 #1: ffff8880592e83a8 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: start_dirop fs/namei.c:2875 [inline]
 #1: ffff8880592e83a8 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: filename_create+0x1fb/0x360 fs/namei.c:4879
 #2: ffff8880592eb1c8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: inode_lock include/linux/fs.h:1027 [inline]
 #2: ffff8880592eb1c8 (&sb->s_type->i_mutex_key#23){+.+.}-{4:4}, at: vfs_link+0x3b4/0x6e0 fs/namei.c:5635
 #3: ffff8880592e80f0 (&ni->ni_lock/6){+.+.}-{4:4}, at: ni_lock_dir fs/ntfs3/ntfs_fs.h:1132 [inline]
 #3: ffff8880592e80f0 (&ni->ni_lock/6){+.+.}-{4:4}, at: ntfs_link+0xdb/0x280 fs/ntfs3/namei.c:139
 #4: ffff8880592eaf10 (&ni->ni_lock#2/5){+.+.}-{4:4}, at: ni_lock fs/ntfs3/ntfs_fs.h:1127 [inline]
 #4: ffff8880592eaf10 (&ni->ni_lock#2/5){+.+.}-{4:4}, at: ntfs_link+0xf6/0x280 fs/ntfs3/namei.c:141
 #5: ffff888027f32120 (&wnd->rw_lock/1){+.+.}-{4:4}, at: ntfs_look_free_mft+0x163/0xd50 fs/ntfs3/fsntfs.c:571

stack backtrace:
CPU: 0 UID: 0 PID: 9012 Comm: syz.2.1411 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Call Trace:
 <TASK>
 dump_stack_lvl+0xe8/0x150 lib/dump_stack.c:120
 print_deadlock_bug+0x279/0x290 kernel/locking/lockdep.c:3041
 check_deadlock kernel/locking/lockdep.c:3093 [inline]
 validate_chain kernel/locking/lockdep.c:3895 [inline]
 __lock_acquire+0x2540/0x2cf0 kernel/locking/lockdep.c:5237
 lock_acquire+0x107/0x340 kernel/locking/lockdep.c:5868
 __mutex_lock_common kernel/locking/rtmutex_api.c:533 [inline]
 mutex_lock_nested+0x5a/0x1d0 kernel/locking/rtmutex_api.c:552
 ni_lock fs/ntfs3/ntfs_fs.h:1127 [inline]
 mi_read+0x2d4/0x5a0 fs/ntfs3/record.c:148
 mi_format_new+0x1a3/0x610 fs/ntfs3/record.c:434
 ni_add_subrecord+0xd1/0x460 fs/ntfs3/frecord.c:321
 ntfs_look_free_mft+0x6aa/0xd50 fs/ntfs3/fsntfs.c:715
 ni_create_attr_list+0x8ff/0x13d0 fs/ntfs3/frecord.c:828
 ni_ins_attr_ext+0x43f/0xba0 fs/ntfs3/frecord.c:926
 ni_insert_attr fs/ntfs3/frecord.c:1093 [inline]
 ni_insert_resident fs/ntfs3/frecord.c:1477 [inline]
 ni_add_name+0x6df/0xc90 fs/ntfs3/frecord.c:2923
 ntfs_link_inode+0x132/0x180 fs/ntfs3/inode.c:1738
 ntfs_link+0x118/0x280 fs/ntfs3/namei.c:146
 vfs_link+0x518/0x6e0 fs/namei.c:5646
 do_linkat+0x283/0x5a0 fs/namei.c:5716
 __do_sys_linkat fs/namei.c:5744 [inline]
 __se_sys_linkat fs/namei.c:5741 [inline]
 __x64_sys_linkat+0xd4/0xf0 fs/namei.c:5741
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xec/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fb5c000f749
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fb5bf65d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000109
RAX: ffffffffffffffda RBX: 00007fb5c0266090 RCX: 00007fb5c000f749
RDX: 0000000000000005 RSI: 0000200000000300 RDI: 0000000000000005
RBP: 00007fb5c0093f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000200000000400 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fb5c0266128 R14: 00007fb5c0266090 R15: 00007fff22f769f8
 </TASK>