program:
syz_mount_image$nilfs2(&(0x7f0000000a40), &(0x7f0000000200)='./bus\x00', 0x10, &(0x7f0000000480)=ANY=[], 0x5, 0xa5a, &(0x7f0000001b40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r6, 0x40106e8c, &(0x7f0000000080)={@id={0x20000000, 0x0, @auto="001e0000000000001baeff79da3b89f5"}})
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000280))
r7 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r7, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
bind$tipc(r7, &(0x7f0000000100)=@name={0x1e, 0x2, 0x3, {{0x42}}}, 0x10)
bind$tipc(r0, &(0x7f00000002c0)=@nameseq={0x1e, 0x1, 0x3, {0x2, 0x2, 0x1}}, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r8=>0x0})
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000b00)={[{@user_xattr}, {@nodioread_nolock}, {@nodelalloc}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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")
r9 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1ff)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xbc, 0x2, 0x0, 0x0, 0x0, 0x5, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0x80, 0x1ff}, 0x84, 0x2, 0x0, 0x4, 0x0, 0xfffbfffd, 0x6, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x17, 0x11, r9, 0x0)
getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f00000000c0), &(0x7f0000000140)=0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b04, 0x0)
sendmsg$NL80211_CMD_REGISTER_FRAME(r10, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="d9c4f57a", @ANYRES16=r5, @ANYBLOB="010003000000000000003a00000008000300", @ANYRES32=r8, @ANYBLOB="04005b000600650040000000"], 0x28}}, 0x0)
r11 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r11, &(0x7f0000000600)={0x0, 0x4, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
clock_adjtime(0x0, &(0x7f0000000b40)={0x7fffffff, 0x1, 0xf1, 0x9, 0xa00, 0x1, 0x100000001, 0x95c, 0x0, 0x7ffffffd, 0x6, 0x100000000, 0x3, 0x6, 0xd0d4, 0x5, 0x1, 0x1, 0xa3f8, 0x3ff, 0x7fff, 0x3, 0x6, 0x101, 0x2, 0x8})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x100, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_DQ_RATE_ESTIMATOR={0x8, 0xc, 0x1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4006001}, 0x0)
ftruncate(r0, 0xc17a)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"])

[   69.358186][ T4658] Bluetooth: hci0: command tx timeout
[   69.435462][ T5316] loop0: detected capacity change from 0 to 2048
[   69.452679][ T5298] udevd[5298]: incorrect nilfs2 checksum on /dev/loop0
[   69.462457][ T5316] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[   69.479149][ T5318] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   69.511708][   T26] audit: type=1800 audit(1746364511.542:2): pid=5316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=15 res=0 errno=0
[   69.527339][   T26] audit: type=1800 audit(1746364511.552:3): pid=5316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=15 res=0 errno=0
[   69.537650][ T5316] netlink: 'syz.0.0': attribute type 10 has an invalid length.
[   69.556620][ T5316] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   69.572884][ T5318] 
[   69.574057][ T5318] ======================================================
[   69.577098][ T5318] WARNING: possible circular locking dependency detected
[   69.580066][ T5318] 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 Not tainted
[   69.583205][ T5318] ------------------------------------------------------
[   69.586329][ T5318] segctord/5318 is trying to acquire lock:
[   69.588818][ T5318] ffff888042e50090 (&nilfs->ns_sem){++++}-{4:4}, at: nilfs_segctor_construct+0x2b1/0x690
[   69.593289][ T5318] 
[   69.593289][ T5318] but task is already holding lock:
[   69.596405][ T5318] ffff888042e502a0 (&nilfs->ns_segctor_sem){++++}-{4:4}, at: nilfs_transaction_lock+0x253/0x4c0
[   69.600707][ T5318] 
[   69.600707][ T5318] which lock already depends on the new lock.
[   69.600707][ T5318] 
[   69.604859][ T5318] 
[   69.604859][ T5318] the existing dependency chain (in reverse order) is:
[   69.608608][ T5318] 
[   69.608608][ T5318] -> #5 (&nilfs->ns_segctor_sem){++++}-{4:4}:
[   69.611919][ T5318]        lock_acquire+0x120/0x360
[   69.614006][ T5318]        down_read+0x46/0x2e0
[   69.617313][ T5318]        nilfs_transaction_begin+0x365/0x710
[   69.620080][ T5318]        nilfs_create+0xc9/0x2f0
[   69.622231][ T5318]        path_openat+0x14f1/0x3830
[   69.624428][ T5318]        do_filp_open+0x1fa/0x410
[   69.626586][ T5318]        do_sys_openat2+0x121/0x1c0
[   69.628710][ T5318]        __x64_sys_openat+0x138/0x170
[   69.630891][ T5318]        do_syscall_64+0xf6/0x210
[   69.632985][ T5318]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.635671][ T5318] 
[   69.635671][ T5318] -> #4 (sb_internal#2){.+.+}-{0:0}:
[   69.638920][ T5318]        lock_acquire+0x120/0x360
[   69.640952][ T5318]        nilfs_transaction_begin+0x268/0x710
[   69.643497][ T5318]        nilfs_page_mkwrite+0x8b0/0xc20
[   69.645832][ T5318]        do_page_mkwrite+0x14a/0x310
[   69.648102][ T5318]        __handle_mm_fault+0x18d2/0x5380
[   69.650584][ T5318]        handle_mm_fault+0x3f6/0x8c0
[   69.652820][ T5318]        do_user_addr_fault+0x764/0x1390
[   69.655194][ T5318]        exc_page_fault+0x68/0x110
[   69.657544][ T5318]        asm_exc_page_fault+0x26/0x30
[   69.659876][ T5318] 
[   69.659876][ T5318] -> #3 (sb_pagefaults){.+.+}-{0:0}:
[   69.663085][ T5318]        lock_acquire+0x120/0x360
[   69.665288][ T5318]        nilfs_page_mkwrite+0x21e/0xc20
[   69.667700][ T5318]        do_page_mkwrite+0x14a/0x310
[   69.670002][ T5318]        __handle_mm_fault+0x18d2/0x5380
[   69.672339][ T5318]        handle_mm_fault+0x3f6/0x8c0
[   69.674583][ T5318]        do_user_addr_fault+0x764/0x1390
[   69.676968][ T5318]        exc_page_fault+0x68/0x110
[   69.679126][ T5318]        asm_exc_page_fault+0x26/0x30
[   69.681377][ T5318] 
[   69.681377][ T5318] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[   69.684497][ T5318]        lock_acquire+0x120/0x360
[   69.686617][ T5318]        __might_fault+0xcc/0x130
[   69.689029][ T5318]        _copy_to_iter+0xf3/0x15a0
[   69.691142][ T5318]        copy_page_to_iter+0xa7/0x150
[   69.693375][ T5318]        filemap_read+0x78d/0x11d0
[   69.695602][ T5318]        blkdev_read_iter+0x30a/0x440
[   69.697851][ T5318]        vfs_read+0x4cd/0x980
[   69.699744][ T5318]        ksys_read+0x145/0x250
[   69.701754][ T5318]        do_syscall_64+0xf6/0x210
[   69.703920][ T5318]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.706595][ T5318] 
[   69.706595][ T5318] -> #1 (&sb->s_type->i_mutex_key#8){++++}-{4:4}:
[   69.710266][ T5318]        lock_acquire+0x120/0x360
[   69.712428][ T5318]        down_write+0x96/0x1f0
[   69.714473][ T5318]        set_blocksize+0x23b/0x500
[   69.716618][ T5318]        sb_min_blocksize+0x119/0x210
[   69.718988][ T5318]        init_nilfs+0x43/0x690
[   69.721019][ T5318]        nilfs_fill_super+0x8f/0x650
[   69.723319][ T5318]        nilfs_get_tree+0x4f4/0x870
[   69.725510][ T5318]        vfs_get_tree+0x8f/0x2b0
[   69.727619][ T5318]        do_new_mount+0x24a/0xa40
[   69.729795][ T5318]        __se_sys_mount+0x317/0x410
[   69.732004][ T5318]        do_syscall_64+0xf6/0x210
[   69.734081][ T5318]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.736743][ T5318] 
[   69.736743][ T5318] -> #0 (&nilfs->ns_sem){++++}-{4:4}:
[   69.739850][ T5318]        validate_chain+0xb9b/0x2140
[   69.742110][ T5318]        __lock_acquire+0xaac/0xd20
[   69.744295][ T5318]        lock_acquire+0x120/0x360
[   69.746468][ T5318]        down_write+0x96/0x1f0
[   69.748433][ T5318]        nilfs_segctor_construct+0x2b1/0x690
[   69.751060][ T5318]        nilfs_segctor_thread+0x6f7/0xe00
[   69.753374][ T5318]        kthread+0x70e/0x8a0
[   69.755336][ T5318]        ret_from_fork+0x4b/0x80
[   69.757503][ T5318]        ret_from_fork_asm+0x1a/0x30
[   69.759959][ T5318] 
[   69.759959][ T5318] other info that might help us debug this:
[   69.759959][ T5318] 
[   69.764526][ T5318] Chain exists of:
[   69.764526][ T5318]   &nilfs->ns_sem --> sb_internal#2 --> &nilfs->ns_segctor_sem
[   69.764526][ T5318] 
[   69.770020][ T5318]  Possible unsafe locking scenario:
[   69.770020][ T5318] 
[   69.773184][ T5318]        CPU0                    CPU1
[   69.775477][ T5318]        ----                    ----
[   69.777643][ T5318]   lock(&nilfs->ns_segctor_sem);
[   69.779825][ T5318]                                lock(sb_internal#2);
[   69.782712][ T5318]                                lock(&nilfs->ns_segctor_sem);
[   69.785939][ T5318]   lock(&nilfs->ns_sem);
[   69.787807][ T5318] 
[   69.787807][ T5318]  *** DEADLOCK ***
[   69.787807][ T5318] 
[   69.791215][ T5318] 1 lock held by segctord/5318:
[   69.793339][ T5318]  #0: ffff888042e502a0 (&nilfs->ns_segctor_sem){++++}-{4:4}, at: nilfs_transaction_lock+0x253/0x4c0
[   69.798011][ T5318] 
[   69.798011][ T5318] stack backtrace:
[   69.800554][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: segctord Not tainted 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 PREEMPT(full) 
[   69.800567][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.800573][ T5318] Call Trace:
[   69.800580][ T5318]  <TASK>
[   69.800587][ T5318]  dump_stack_lvl+0x189/0x250
[   69.800610][ T5318]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.800625][ T5318]  ? __pfx__printk+0x10/0x10
[   69.800634][ T5318]  ? print_lock_name+0xde/0x100
[   69.800651][ T5318]  print_circular_bug+0x2ee/0x310
[   69.800663][ T5318]  check_noncircular+0x134/0x160
[   69.800673][ T5318]  validate_chain+0xb9b/0x2140
[   69.800688][ T5318]  __lock_acquire+0xaac/0xd20
[   69.800700][ T5318]  ? nilfs_segctor_construct+0x2b1/0x690
[   69.800714][ T5318]  lock_acquire+0x120/0x360
[   69.800726][ T5318]  ? nilfs_segctor_construct+0x2b1/0x690
[   69.800738][ T5318]  ? do_raw_spin_lock+0x121/0x290
[   69.800751][ T5318]  down_write+0x96/0x1f0
[   69.800763][ T5318]  ? nilfs_segctor_construct+0x2b1/0x690
[   69.800774][ T5318]  ? __pfx_down_write+0x10/0x10
[   69.800787][ T5318]  ? do_raw_spin_unlock+0x4d/0x240
[   69.800798][ T5318]  ? _raw_spin_unlock+0x28/0x50
[   69.800805][ T5318]  ? nilfs_segctor_confirm+0x24e/0x2d0
[   69.800822][ T5318]  nilfs_segctor_construct+0x2b1/0x690
[   69.800835][ T5318]  nilfs_segctor_thread+0x6f7/0xe00
[   69.800853][ T5318]  ? __pfx_nilfs_segctor_thread+0x10/0x10
[   69.800864][ T5318]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   69.800874][ T5318]  ? __pfx_autoremove_wake_function+0x10/0x10
[   69.800888][ T5318]  ? __kthread_parkme+0x7b/0x200
[   69.800897][ T5318]  ? __kthread_parkme+0x1a1/0x200
[   69.800907][ T5318]  kthread+0x70e/0x8a0
[   69.800919][ T5318]  ? __pfx_nilfs_segctor_thread+0x10/0x10
[   69.800930][ T5318]  ? __pfx_kthread+0x10/0x10
[   69.800940][ T5318]  ? __pfx_kthread+0x10/0x10
[   69.800951][ T5318]  ? _raw_spin_unlock_irq+0x23/0x50
[   69.800960][ T5318]  ? lockdep_hardirqs_on+0x9c/0x150
[   69.800970][ T5318]  ? __pfx_kthread+0x10/0x10
[   69.800981][ T5318]  ret_from_fork+0x4b/0x80
[   69.800991][ T5318]  ? __pfx_kthread+0x10/0x10
[   69.801000][ T5318]  ret_from_fork_asm+0x1a/0x30
[   69.801011][ T5318]  </TASK>
[   69.904922][ T5316] syz.0.0 (5316) used greatest stack depth: 20680 bytes left