program: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000240)="f1a0fa9090d465b080d9209c8845fdcaef275aaa15abcd5cd1153a72ef30f13819e7e8929f54ba0f61cab747ec572e7721478ce702eaa7b41015c3215e1643c7ec4b1fbbaea9b77baa9bf67036b52c297953ad5349", 0x55}], 0x1}}], 0x1, 0x4000) r0 = syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000080)={[{@part={'part', 0x3d, 0x500f}}, {@nodecompose}, {}, {@part={'part', 0x3d, 0xc}}, {@uid}, {@barrier}, {@nls={'nls', 0x3d, 'cp949'}}, {@gid={'gid', 0x3d, 0xee00}}]}, 0x3, 0x5f4, &(0x7f0000000640)="$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") setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB='osx.'], 0x0, 0x0, 0x0) syz_mount_image$nilfs2(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x8000, &(0x7f0000000140)=ANY=[@ANYRES16=0x0], 0x11, 0xb0d, &(0x7f0000000d80)="$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") truncate(&(0x7f0000000200)='./file2\x00', 0x2) listxattr(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) faccessat2(r0, &(0x7f00000001c0)='./file2\x00', 0x28, 0x3000) [ 68.068579][ T5353] loop0: detected capacity change from 0 to 1024 [ 68.115509][ T5333] Bluetooth: hci0: command tx timeout [ 68.228694][ T5353] [ 68.229880][ T5353] ============================================ [ 68.232581][ T5353] WARNING: possible recursive locking detected [ 68.235341][ T5353] syzkaller #0 Not tainted [ 68.237528][ T5353] -------------------------------------------- [ 68.240162][ T5353] syz.0.0/5353 is trying to acquire lock: [ 68.242588][ T5353] ffff888052cb5548 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1530 [ 68.247438][ T5353] [ 68.247438][ T5353] but task is already holding lock: [ 68.250557][ T5353] ffff888052cb7048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_truncate+0x294/0xb40 [ 68.255293][ T5353] [ 68.255293][ T5353] other info that might help us debug this: [ 68.258620][ T5353] Possible unsafe locking scenario: [ 68.258620][ T5353] [ 68.261835][ T5353] CPU0 [ 68.263629][ T5353] ---- [ 68.265288][ T5353] lock(&HFSPLUS_I(inode)->extents_lock); [ 68.267657][ T5353] lock(&HFSPLUS_I(inode)->extents_lock); [ 68.270153][ T5353] [ 68.270153][ T5353] *** DEADLOCK *** [ 68.270153][ T5353] [ 68.273506][ T5353] May be due to missing lock nesting notation [ 68.273506][ T5353] [ 68.276957][ T5353] 4 locks held by syz.0.0/5353: [ 68.279146][ T5353] #0: ffff888035caa428 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 68.282931][ T5353] #1: ffff888052cb7238 (&sb->s_type->i_mutex_key#20){+.+.}-{4:4}, at: do_truncate+0x171/0x220 [ 68.287290][ T5353] #2: ffff888052cb7048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_truncate+0x294/0xb40 [ 68.292264][ T5353] #3: ffff888052ca90f8 (&sbi->alloc_mutex){+.+.}-{4:4}, at: hfsplus_block_free+0xbe/0x550 [ 68.296472][ T5353] [ 68.296472][ T5353] stack backtrace: [ 68.298985][ T5353] CPU: 0 UID: 0 PID: 5353 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 68.298995][ T5353] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 68.299002][ T5353] Call Trace: [ 68.299010][ T5353] [ 68.299016][ T5353] dump_stack_lvl+0x189/0x250 [ 68.299035][ T5353] ? __pfx_dump_stack_lvl+0x10/0x10 [ 68.299047][ T5353] ? __pfx__printk+0x10/0x10 [ 68.299060][ T5353] ? print_lock_name+0xde/0x100 [ 68.299073][ T5353] print_deadlock_bug+0x28b/0x2a0 [ 68.299086][ T5353] validate_chain+0x1a3f/0x2140 [ 68.299096][ T5353] ? lock_release+0x4b/0x3e0 [ 68.299111][ T5353] ? look_up_lock_class+0x74/0x170 [ 68.299168][ T5353] ? register_lock_class+0x51/0x320 [ 68.299185][ T5353] __lock_acquire+0xab9/0xd20 [ 68.299203][ T5353] ? hfsplus_get_block+0x39e/0x1530 [ 68.299213][ T5353] lock_acquire+0x120/0x360 [ 68.299228][ T5353] ? hfsplus_get_block+0x39e/0x1530 [ 68.299238][ T5353] ? stack_trace_save+0x9c/0xe0 [ 68.299250][ T5353] ? __pfx_hlock_conflict+0x10/0x10 [ 68.299261][ T5353] __mutex_lock+0x187/0x1350 [ 68.299272][ T5353] ? hfsplus_get_block+0x39e/0x1530 [ 68.299283][ T5353] ? lockdep_unlock+0x89/0x120 [ 68.299298][ T5353] ? validate_chain+0x897/0x2140 [ 68.299308][ T5353] ? hfsplus_get_block+0x39e/0x1530 [ 68.299319][ T5353] ? __pfx___mutex_lock+0x10/0x10 [ 68.299340][ T5353] hfsplus_get_block+0x39e/0x1530 [ 68.299353][ T5353] ? __pfx_hfsplus_get_block+0x10/0x10 [ 68.299365][ T5353] ? do_raw_spin_unlock+0x4d/0x240 [ 68.299378][ T5353] ? _raw_spin_unlock+0x28/0x50 [ 68.299395][ T5353] block_read_full_folio+0x29c/0x830 [ 68.299407][ T5353] ? __pfx_hfsplus_get_block+0x10/0x10 [ 68.299417][ T5353] filemap_read_folio+0x117/0x380 [ 68.299432][ T5353] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 68.299443][ T5353] ? __pfx_filemap_read_folio+0x10/0x10 [ 68.299459][ T5353] ? filemap_add_folio+0x1af/0x270 [ 68.299472][ T5353] do_read_cache_folio+0x350/0x590 [ 68.299481][ T5353] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 68.299492][ T5353] read_cache_page+0x5d/0x170 [ 68.299501][ T5353] hfsplus_block_free+0x121/0x550 [ 68.299517][ T5353] hfsplus_free_extents+0x441/0xa60 [ 68.299529][ T5353] ? hfsplus_find_init+0x15a/0x1d0 [ 68.299542][ T5353] hfsplus_file_truncate+0x736/0xb40 [ 68.299555][ T5353] ? __pfx_hfsplus_file_truncate+0x10/0x10 [ 68.299567][ T5353] ? unmap_mapping_range+0xde/0x170 [ 68.299577][ T5353] ? __pfx_unmap_mapping_range+0x10/0x10 [ 68.299586][ T5353] ? truncate_setsize+0xcf/0xf0 [ 68.299597][ T5353] hfsplus_setattr+0x1c4/0x270 [ 68.299606][ T5353] ? __pfx_hfsplus_setattr+0x10/0x10 [ 68.299617][ T5353] notify_change+0xb33/0xe40 [ 68.299629][ T5353] do_truncate+0x1a4/0x220 [ 68.299641][ T5353] ? __pfx_do_truncate+0x10/0x10 [ 68.299652][ T5353] ? apparmor_path_truncate+0x238/0x2d0 [ 68.299664][ T5353] ? mnt_get_write_access+0x223/0x2a0 [ 68.299675][ T5353] vfs_truncate+0x493/0x520 [ 68.299686][ T5353] ? lockdep_hardirqs_on+0x9c/0x150 [ 68.299697][ T5353] ? __pfx_vfs_truncate+0x10/0x10 [ 68.299707][ T5353] ? user_path_at+0x44/0x60 [ 68.299717][ T5353] do_sys_truncate+0xdb/0x190 [ 68.299728][ T5353] ? __pfx_do_sys_truncate+0x10/0x10 [ 68.299740][ T5353] ? rcu_is_watching+0x15/0xb0 [ 68.299751][ T5353] __x64_sys_truncate+0x5b/0x70 [ 68.299763][ T5353] do_syscall_64+0xfa/0x3b0 [ 68.299773][ T5353] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.299783][ T5353] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 68.299792][ T5353] ? clear_bhb_loop+0x60/0xb0 [ 68.299803][ T5353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.299813][ T5353] RIP: 0033:0x7ff4ce58eec9 [ 68.299825][ T5353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 68.299834][ T5353] RSP: 002b:00007ff4cf406038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 68.299847][ T5353] RAX: ffffffffffffffda RBX: 00007ff4ce7e5fa0 RCX: 00007ff4ce58eec9 [ 68.299855][ T5353] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000200000000200 [ 68.299862][ T5353] RBP: 00007ff4ce611f91 R08: 0000000000000000 R09: 0000000000000000 [ 68.299869][ T5353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 68.299875][ T5353] R13: 00007ff4ce7e6038 R14: 00007ff4ce7e5fa0 R15: 00007fff5f21f558 [ 68.299886][ T5353] [ 68.488453][ T5353] hfsplus: unable to mark blocks free: error -5 [ 68.491129][ T5353] hfsplus: can't free extent