Warning: Permanently added '10.128.0.55' (ED25519) to the list of known hosts. executing program [ 35.868270][ T3961] loop0: detected capacity change from 0 to 1024 [ 35.885741][ T3961] [ 35.886364][ T3961] ====================================================== [ 35.888077][ T3961] WARNING: possible circular locking dependency detected [ 35.889823][ T3961] 5.15.123-syzkaller #0 Not tainted [ 35.891220][ T3961] ------------------------------------------------------ [ 35.893006][ T3961] syz-executor399/3961 is trying to acquire lock: [ 35.894645][ T3961] ffff0000c8fb07c8 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfsplus_file_extend+0x198/0x14e0 [ 35.897602][ T3961] [ 35.897602][ T3961] but task is already holding lock: [ 35.899482][ T3961] ffff0000d6eda0b0 (&tree->tree_lock){+.+.}-{3:3}, at: hfsplus_find_init+0x144/0x1bc [ 35.902004][ T3961] [ 35.902004][ T3961] which lock already depends on the new lock. [ 35.902004][ T3961] [ 35.904761][ T3961] [ 35.904761][ T3961] the existing dependency chain (in reverse order) is: [ 35.907039][ T3961] [ 35.907039][ T3961] -> #1 (&tree->tree_lock){+.+.}-{3:3}: [ 35.909064][ T3961] __mutex_lock_common+0x194/0x2154 [ 35.910537][ T3961] mutex_lock_nested+0xa4/0xf8 [ 35.911875][ T3961] hfsplus_file_truncate+0x6d4/0x9cc [ 35.913383][ T3961] hfsplus_setattr+0x18c/0x25c [ 35.914765][ T3961] notify_change+0xac4/0xd60 [ 35.916099][ T3961] do_truncate+0x1c0/0x28c [ 35.917367][ T3961] path_openat+0x20e8/0x26f0 [ 35.918669][ T3961] do_filp_open+0x1a8/0x3b4 [ 35.919978][ T3961] do_sys_openat2+0x128/0x3d8 [ 35.921295][ T3961] __arm64_sys_openat2+0x2e8/0x370 [ 35.922731][ T3961] invoke_syscall+0x98/0x2b8 [ 35.924013][ T3961] el0_svc_common+0x138/0x258 [ 35.925412][ T3961] do_el0_svc+0x58/0x14c [ 35.926625][ T3961] el0_svc+0x7c/0x1f0 [ 35.927771][ T3961] el0t_64_sync_handler+0x84/0xe4 [ 35.929194][ T3961] el0t_64_sync+0x1a0/0x1a4 [ 35.930488][ T3961] [ 35.930488][ T3961] -> #0 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}: [ 35.932840][ T3961] __lock_acquire+0x32cc/0x7620 [ 35.934272][ T3961] lock_acquire+0x240/0x77c [ 35.935555][ T3961] __mutex_lock_common+0x194/0x2154 [ 35.937019][ T3961] mutex_lock_nested+0xa4/0xf8 [ 35.938388][ T3961] hfsplus_file_extend+0x198/0x14e0 [ 35.939884][ T3961] hfsplus_bmap_reserve+0xec/0x474 [ 35.941318][ T3961] hfsplus_rename_cat+0x1ac/0xf30 [ 35.942766][ T3961] hfsplus_rename+0x120/0x1b0 [ 35.944086][ T3961] vfs_rename+0x8b8/0xd04 [ 35.945312][ T3961] do_renameat2+0x980/0x1040 [ 35.946633][ T3961] __arm64_sys_renameat2+0xe0/0xfc [ 35.948083][ T3961] invoke_syscall+0x98/0x2b8 [ 35.949432][ T3961] el0_svc_common+0x138/0x258 [ 35.950785][ T3961] do_el0_svc+0x58/0x14c [ 35.952021][ T3961] el0_svc+0x7c/0x1f0 [ 35.953165][ T3961] el0t_64_sync_handler+0x84/0xe4 [ 35.954580][ T3961] el0t_64_sync+0x1a0/0x1a4 [ 35.955894][ T3961] [ 35.955894][ T3961] other info that might help us debug this: [ 35.955894][ T3961] [ 35.958524][ T3961] Possible unsafe locking scenario: [ 35.958524][ T3961] [ 35.960470][ T3961] CPU0 CPU1 [ 35.961881][ T3961] ---- ---- [ 35.963373][ T3961] lock(&tree->tree_lock); [ 35.964597][ T3961] lock(&HFSPLUS_I(inode)->extents_lock); [ 35.966787][ T3961] lock(&tree->tree_lock); [ 35.968588][ T3961] lock(&HFSPLUS_I(inode)->extents_lock); [ 35.970103][ T3961] [ 35.970103][ T3961] *** DEADLOCK *** [ 35.970103][ T3961] [ 35.972286][ T3961] 4 locks held by syz-executor399/3961: [ 35.973762][ T3961] #0: ffff0000c8dfe460 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 35.976178][ T3961] #1: ffff0000c8fb1e00 (&type->i_mutex_dir_key#6/1){+.+.}-{3:3}, at: lock_rename+0xdc/0x198 [ 35.978884][ T3961] #2: ffff0000c8fb24c0 (&type->i_mutex_dir_key#6){++++}-{3:3}, at: lock_two_inodes+0xdc/0x158 [ 35.981625][ T3961] #3: ffff0000d6eda0b0 (&tree->tree_lock){+.+.}-{3:3}, at: hfsplus_find_init+0x144/0x1bc [ 35.984224][ T3961] [ 35.984224][ T3961] stack backtrace: [ 35.985741][ T3961] CPU: 1 PID: 3961 Comm: syz-executor399 Not tainted 5.15.123-syzkaller #0 [ 35.987986][ T3961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 35.990528][ T3961] Call trace: [ 35.991358][ T3961] dump_backtrace+0x0/0x530 [ 35.992502][ T3961] show_stack+0x2c/0x3c [ 35.993595][ T3961] dump_stack_lvl+0x108/0x170 [ 35.994828][ T3961] dump_stack+0x1c/0x58 [ 35.995884][ T3961] print_circular_bug+0x150/0x1b8 [ 35.997228][ T3961] check_noncircular+0x2cc/0x378 [ 35.998554][ T3961] __lock_acquire+0x32cc/0x7620 [ 35.999798][ T3961] lock_acquire+0x240/0x77c [ 36.000984][ T3961] __mutex_lock_common+0x194/0x2154 [ 36.002295][ T3961] mutex_lock_nested+0xa4/0xf8 [ 36.003527][ T3961] hfsplus_file_extend+0x198/0x14e0 [ 36.004870][ T3961] hfsplus_bmap_reserve+0xec/0x474 [ 36.006211][ T3961] hfsplus_rename_cat+0x1ac/0xf30 [ 36.007508][ T3961] hfsplus_rename+0x120/0x1b0 [ 36.008776][ T3961] vfs_rename+0x8b8/0xd04 [ 36.009896][ T3961] do_renameat2+0x980/0x1040 [ 36.011071][ T3961] __arm64_sys_renameat2+0xe0/0xfc [ 36.012361][ T3961] invoke_syscall+0x98/0x2b8 [ 36.013563][ T3961] el0_svc_common+0x138/0x258 [ 36.014789][ T3961] do_el0_svc+0x58/0x14c [ 36.015880][ T3961] el0_svc+0x7c/0x1f0 [ 36.016932][ T3961] el0t_64_sync_handler+0x84/0xe4 [ 36.018242][ T3961] el0t_64_sync+0x1a0/0x1a4