./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3544812785 <...> Warning: Permanently added '10.128.0.195' (ED25519) to the list of known hosts. execve("./syz-executor3544812785", ["./syz-executor3544812785"], 0x7ffdde484d60 /* 10 vars */) = 0 brk(NULL) = 0x55555691c000 brk(0x55555691cd00) = 0x55555691cd00 arch_prctl(ARCH_SET_FS, 0x55555691c380) = 0 set_tid_address(0x55555691c650) = 5071 set_robust_list(0x55555691c660, 24) = 0 rseq(0x55555691cca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3544812785", 4096) = 28 getrandom("\xa0\x15\x67\x01\x67\x04\xfa\x9b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555691cd00 brk(0x55555693dd00) = 0x55555693dd00 brk(0x55555693e000) = 0x55555693e000 mprotect(0x7fd0ca4d8000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd0c2000000 write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x01\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\xff\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00\x78\x5f\xaa\x3b\xd7\x0e\xce\x68\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152 munmap(0x7fd0c2000000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 close(4) = 0 mkdir("./file1", 0777) = 0 mount("/dev/loop0", "./file1", "ntfs3", MS_NOEXEC|MS_SYNCHRONOUS|MS_DIRSYNC|MS_REC|MS_I_VERSION, "") = 0 openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 chdir("./file1") = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) open("./file2", O_WRONLY|O_CREAT|O_NONBLOCK|O_DIRECT|O_NOFOLLOW|O_NOATIME|O_CLOEXEC, 000) = 4 [ 76.216343][ T5071] loop0: detected capacity change from 0 to 4096 [ 76.242564][ T5071] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 76.294316][ T5071] ntfs3: loop0: ino=5, "/" ntfs_iget5 [ 76.300093][ T5071] [ 76.302409][ T5071] ============================================ [ 76.308544][ T5071] WARNING: possible recursive locking detected [ 76.314684][ T5071] 6.8.0-rc4-syzkaller-00003-g716f4aaa7b48 #0 Not tainted [ 76.321695][ T5071] -------------------------------------------- [ 76.327840][ T5071] syz-executor354/5071 is trying to acquire lock: [ 76.334249][ T5071] ffff888070ee0100 (&ni->ni_lock#3){+.+.}-{3:3}, at: ntfs_set_state+0x1ff/0x6c0 [ 76.343367][ T5071] [ 76.343367][ T5071] but task is already holding lock: [ 76.350726][ T5071] ffff888070de3c00 (&ni->ni_lock#3){+.+.}-{3:3}, at: ni_write_inode+0x1bc/0x1010 [ 76.359899][ T5071] [ 76.359899][ T5071] other info that might help us debug this: [ 76.368041][ T5071] Possible unsafe locking scenario: [ 76.368041][ T5071] [ 76.375490][ T5071] CPU0 [ 76.378769][ T5071] ---- [ 76.382042][ T5071] lock(&ni->ni_lock#3); [ 76.386393][ T5071] lock(&ni->ni_lock#3); [ 76.390734][ T5071] [ 76.390734][ T5071] *** DEADLOCK *** [ 76.390734][ T5071] [ 76.398875][ T5071] May be due to missing lock nesting notation [ 76.398875][ T5071] [ 76.407191][ T5071] 3 locks held by syz-executor354/5071: [ 76.412729][ T5071] #0: ffff88802223a420 (sb_writers#9){.+.+}-{0:0}, at: do_sys_ftruncate+0x25c/0x390 [ 76.422291][ T5071] #1: ffff888070de3ea0 (&sb->s_type->i_mutex_key#15){+.+.}-{3:3}, at: do_truncate+0x20c/0x310 [ 76.432722][ T5071] #2: ffff888070de3c00 (&ni->ni_lock#3){+.+.}-{3:3}, at: ni_write_inode+0x1bc/0x1010 [ 76.442339][ T5071] [ 76.442339][ T5071] stack backtrace: [ 76.448227][ T5071] CPU: 0 PID: 5071 Comm: syz-executor354 Not tainted 6.8.0-rc4-syzkaller-00003-g716f4aaa7b48 #0 [ 76.458648][ T5071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 76.468769][ T5071] Call Trace: [ 76.472049][ T5071] [ 76.474984][ T5071] dump_stack_lvl+0x1e7/0x2e0 [ 76.479702][ T5071] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.484953][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.489828][ T5071] ? print_deadlock_bug+0x479/0x620 [ 76.495037][ T5071] ? _find_first_zero_bit+0xd4/0x100 [ 76.500330][ T5071] validate_chain+0x15c0/0x58e0 [ 76.505205][ T5071] ? __pfx_validate_chain+0x10/0x10 [ 76.510407][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.515280][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.520153][ T5071] ? validate_chain+0x11b/0x58e0 [ 76.525098][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.529965][ T5071] ? look_up_lock_class+0x77/0x160 [ 76.535092][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.539957][ T5071] ? register_lock_class+0x102/0x980 [ 76.545266][ T5071] ? __pfx_register_lock_class+0x10/0x10 [ 76.550939][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.555811][ T5071] ? mark_lock+0x9a/0x350 [ 76.560146][ T5071] ? __pfx_validate_chain+0x10/0x10 [ 76.565354][ T5071] __lock_acquire+0x1345/0x1fd0 [ 76.570234][ T5071] lock_acquire+0x1e3/0x530 [ 76.574752][ T5071] ? ntfs_set_state+0x1ff/0x6c0 [ 76.579630][ T5071] ? __pfx_lock_acquire+0x10/0x10 [ 76.584678][ T5071] ? __pfx___might_resched+0x10/0x10 [ 76.589981][ T5071] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 76.595991][ T5071] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.602350][ T5071] __mutex_lock+0x136/0xd70 [ 76.606879][ T5071] ? ntfs_set_state+0x1ff/0x6c0 [ 76.611750][ T5071] ? ntfs_set_state+0x1ff/0x6c0 [ 76.616617][ T5071] ? __pfx___mutex_lock+0x10/0x10 [ 76.621672][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.626539][ T5071] ? current_time+0x203/0x2b0 [ 76.631232][ T5071] ntfs_set_state+0x1ff/0x6c0 [ 76.635924][ T5071] ? do_raw_spin_unlock+0x13b/0x8b0 [ 76.641141][ T5071] ? __pfx_ntfs_set_state+0x10/0x10 [ 76.646353][ T5071] ? simple_inode_init_ts+0x25/0xb0 [ 76.651561][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.656433][ T5071] ? make_bad_inode+0x7c/0x110 [ 76.661210][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.666087][ T5071] ntfs_iget5+0x3f0/0x3b70 [ 76.670519][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.675388][ T5071] ? lockdep_unlock+0x169/0x300 [ 76.680252][ T5071] ? __pfx_lockdep_unlock+0x10/0x10 [ 76.685466][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.690332][ T5071] ? mi_enum_attr+0x608/0x9e0 [ 76.695019][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.699886][ T5071] ? mi_find_attr+0x29f/0x2b0 [ 76.704574][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.709445][ T5071] ? ni_find_attr+0x390/0x8d0 [ 76.714138][ T5071] ? __pfx_ntfs_iget5+0x10/0x10 [ 76.718998][ T5071] ? __pfx_ni_find_attr+0x10/0x10 [ 76.724041][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.728910][ T5071] ni_update_parent+0x943/0xdd0 [ 76.733772][ T5071] ? __pfx_lock_acquire+0x10/0x10 [ 76.738909][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.743775][ T5071] ? mi_enum_attr+0x608/0x9e0 [ 76.748461][ T5071] ? __pfx_ni_update_parent+0x10/0x10 [ 76.753835][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.758705][ T5071] ? mi_find_attr+0x29f/0x2b0 [ 76.763390][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.768261][ T5071] ni_write_inode+0xde9/0x1010 [ 76.773034][ T5071] ? __pfx_ni_write_inode+0x10/0x10 [ 76.778236][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.783107][ T5071] ntfs3_setattr+0x950/0xb40 [ 76.787713][ T5071] ? __pfx_ntfs3_setattr+0x10/0x10 [ 76.792827][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.797693][ T5071] ? evm_inode_setattr+0x1b2/0x7e0 [ 76.802837][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.807722][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.812595][ T5071] ? __pfx_ntfs3_setattr+0x10/0x10 [ 76.817718][ T5071] notify_change+0xb9f/0xe70 [ 76.822333][ T5071] do_truncate+0x220/0x310 [ 76.826765][ T5071] ? __pfx_do_truncate+0x10/0x10 [ 76.831717][ T5071] ? apparmor_file_truncate+0x297/0x350 [ 76.837283][ T5071] ? srso_return_thunk+0x5/0x5f [ 76.842155][ T5071] do_sys_ftruncate+0x2f7/0x390 [ 76.847026][ T5071] do_syscall_64+0xfb/0x240 [ 76.851565][ T5071] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 76.857481][ T5071] RIP: 0033:0x7fd0ca446639 [ 76.861898][ T5071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 76.881525][ T5071] RSP: 002b:00007fff0baab678 EFLAGS: 00000246 ORIG_RAX: 000000000000004d [ 76.889951][ T5071] RAX: ffffffffffffffda RBX: 00007fff0baab848 RCX: 00007fd0ca446639 [ 76.897926][ T5071] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 76.905899][ T5071] RBP: 00007fd0ca4d8610 R08: 0000000000000000 R09: 00007fff0baab848 [ 76.913870][ T5071] R10: 000000000001f20a R11: 0000000000000246 R12: 0000000000000001 [ 76.921844][ T5071] R13: 00007fff0baab838 R14: 0000000000000001 R15: 0000000000000001 [ 76.929826][ T5071] ftruncate(4, 0) = 0 exit_group(0) = ? +++ exited with 0 +++ [ 76.946379]