program: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$can_j1939(0x1d, 0x2, 0x7) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000e00)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000005c0)={&(0x7f0000000d80)={0x5c, 0x2, 0x3, 0x5, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x30}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x12}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x5}, @NFQA_CFG_PARAMS={0x9, 0x2, {0xd, 0x9c5136696623e178}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0xfffffff9}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x14}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x5, 0x1}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x7d}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4040000}, 0x4040081) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', 0x0}) setsockopt$SO_J1939_ERRQUEUE(r1, 0x6b, 0x4, &(0x7f0000000300)=0x1, 0x4) bind$can_j1939(r1, &(0x7f0000000380)={0x1d, r2, 0x0, {0x2, 0xf0, 0x4}, 0xfe}, 0x18) setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4) syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000080)={[{@part={'part', 0x3d, 0x500f}}, {@nodecompose}, {}, {@part={'part', 0x3d, 0xc}}, {@uid}, {@barrier}, {@nls={'nls', 0x3d, 'cp949'}}, {@gid={'gid', 0x3d, 0xee00}}]}, 0x3, 0x5f4, &(0x7f0000000640)="$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") r3 = creat(&(0x7f0000000400)='./file1\x00', 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@user_xattr}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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") r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000003"], 0x48) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff0000/0x7000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0x0, r6}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r7 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x970, 0x1f480, 0x0, 0x396}) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4b, &(0x7f0000000100)=0x401, 0x4) write$FUSE_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x10, 0xffffffffffffffda}, 0xd) io_uring_enter(r7, 0x3ab, 0x6933, 0x17, 0x0, 0x0) sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40a0}, 0x4000) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r5, &(0x7f0000000f00)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x2c, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x800) io_submit(r4, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f0000000000), 0x4000, 0xa00}]) sendmsg$inet(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="81b641f1f3843704b6", 0x9}], 0x1}, 0x4048001) r8 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) ftruncate(r8, 0x4000) sendmsg$nl_route(r8, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=@ipv6_newaddrlabel={0x30, 0x48, 0x100, 0x70bd2d, 0x25dfdbfe, {0xa, 0x0, 0x18, 0x0, r2, 0x4}, [@IFAL_ADDRESS={0x14, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x20040005) r9 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x6, 0x0, 0x8100, 0x0, {0x2, 0x10}, {0xd, 0x4}, {0xe, 0x9}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000808}, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000c40)={{r8, 0xffffffffffffffff}, &(0x7f0000000480), &(0x7f0000000500)=r8}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x1c, &(0x7f0000000c80)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}}, @cb_func={0x18, 0x2, 0x4, 0x0, 0x8}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r10}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @call={0x85, 0x0, 0x0, 0x8a}]}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) [ 84.888738][ T5296] Bluetooth: hci0: command tx timeout [ 85.036540][ T5317] loop0: detected capacity change from 0 to 1024 [ 85.124864][ T5317] [ 85.126004][ T5317] ============================================ [ 85.128813][ T5317] WARNING: possible recursive locking detected [ 85.131655][ T5317] syzkaller #0 Not tainted [ 85.133635][ T5317] -------------------------------------------- [ 85.136609][ T5317] syz.0.0/5317 is trying to acquire lock: [ 85.139289][ T5317] ffff8880427bf708 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1670 [ 85.144301][ T5317] [ 85.144301][ T5317] but task is already holding lock: [ 85.147535][ T5317] ffff8880427be2c8 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_truncate+0x2b3/0xc30 [ 85.152369][ T5317] [ 85.152369][ T5317] other info that might help us debug this: [ 85.156110][ T5317] Possible unsafe locking scenario: [ 85.156110][ T5317] [ 85.159840][ T5317] CPU0 [ 85.161554][ T5317] ---- [ 85.163245][ T5317] lock(&HFSPLUS_I(inode)->extents_lock); [ 85.166084][ T5317] lock(&HFSPLUS_I(inode)->extents_lock); [ 85.168695][ T5317] [ 85.168695][ T5317] *** DEADLOCK *** [ 85.168695][ T5317] [ 85.172087][ T5317] May be due to missing lock nesting notation [ 85.172087][ T5317] [ 85.175763][ T5317] 4 locks held by syz.0.0/5317: [ 85.177901][ T5317] #0: ffff88801f208420 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 85.182017][ T5317] #1: ffff8880427be4b8 (&sb->s_type->i_mutex_key#25){+.+.}-{4:4}, at: do_truncate+0x18f/0x250 [ 85.186565][ T5317] #2: ffff8880427be2c8 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_truncate+0x2b3/0xc30 [ 85.191483][ T5317] #3: ffff8880428f28f8 (&sbi->alloc_mutex){+.+.}-{4:4}, at: hfsplus_block_free+0xc7/0x630 [ 85.195812][ T5317] [ 85.195812][ T5317] stack backtrace: [ 85.198389][ T5317] CPU: 0 UID: 0 PID: 5317 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 85.198407][ T5317] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 85.198414][ T5317] Call Trace: [ 85.198422][ T5317] [ 85.198456][ T5317] dump_stack_lvl+0xe8/0x150 [ 85.198476][ T5317] print_deadlock_bug+0x279/0x290 [ 85.198501][ T5317] __lock_acquire+0x253f/0x2cf0 [ 85.198517][ T5317] ? lock_release+0x4b/0x3d0 [ 85.198557][ T5317] ? lock_release+0x4b/0x3d0 [ 85.198572][ T5317] ? is_bpf_text_address+0x292/0x2b0 [ 85.198585][ T5317] ? is_bpf_text_address+0x26/0x2b0 [ 85.198598][ T5317] lock_acquire+0xf0/0x2e0 [ 85.198612][ T5317] ? hfsplus_get_block+0x39e/0x1670 [ 85.198630][ T5317] __mutex_lock+0x19f/0x1300 [ 85.198728][ T5317] ? hfsplus_get_block+0x39e/0x1670 [ 85.198743][ T5317] ? stack_trace_save+0xa9/0x100 [ 85.198754][ T5317] ? __pfx_stack_trace_save+0x10/0x10 [ 85.198765][ T5317] ? check_path+0x21/0x40 [ 85.198780][ T5317] ? check_noncircular+0xda/0x150 [ 85.198794][ T5317] ? hfsplus_get_block+0x39e/0x1670 [ 85.198810][ T5317] ? __pfx___mutex_lock+0x10/0x10 [ 85.198822][ T5317] ? __lock_acquire+0x146e/0x2cf0 [ 85.198832][ T5317] hfsplus_get_block+0x39e/0x1670 [ 85.198843][ T5317] ? __pfx_hfsplus_get_block+0x10/0x10 [ 85.198854][ T5317] ? block_read_full_folio+0x672/0x830 [ 85.198862][ T5317] block_read_full_folio+0x29f/0x830 [ 85.198869][ T5317] ? __pfx_hfsplus_get_block+0x10/0x10 [ 85.198879][ T5317] filemap_read_folio+0x137/0x3b0 [ 85.198889][ T5317] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 85.198902][ T5317] ? __pfx_filemap_read_folio+0x10/0x10 [ 85.198911][ T5317] ? filemap_add_folio+0x356/0x530 [ 85.198926][ T5317] do_read_cache_folio+0x358/0x590 [ 85.198937][ T5317] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 85.198952][ T5317] read_cache_page+0x5d/0x170 [ 85.198962][ T5317] hfsplus_block_free+0x134/0x630 [ 85.198975][ T5317] ? __kmalloc_noprof+0x37d/0x760 [ 85.198985][ T5317] hfsplus_free_extents+0x121/0xa50 [ 85.198995][ T5317] hfsplus_file_truncate+0x762/0xc30 [ 85.199006][ T5317] ? __pfx___up_read+0x10/0x10 [ 85.199012][ T5317] ? __pfx_hfsplus_file_truncate+0x10/0x10 [ 85.199022][ T5317] ? unmap_mapping_range+0xe6/0x180 [ 85.199031][ T5317] ? __pfx_unmap_mapping_range+0x10/0x10 [ 85.199038][ T5317] ? setattr_prepare+0x232/0xb30 [ 85.199046][ T5317] ? truncate_setsize+0xcf/0xf0 [ 85.199059][ T5317] hfsplus_setattr+0x1c4/0x270 [ 85.199072][ T5317] ? __pfx_hfsplus_setattr+0x10/0x10 [ 85.199086][ T5317] notify_change+0xc1a/0xf40 [ 85.199097][ T5317] do_truncate+0x1c2/0x250 [ 85.199115][ T5317] ? __pfx_do_truncate+0x10/0x10 [ 85.199128][ T5317] ? apparmor_file_truncate+0x3b1/0x4a0 [ 85.199282][ T5317] path_openat+0x2f89/0x3860 [ 85.199304][ T5317] ? __pfx_path_openat+0x10/0x10 [ 85.199318][ T5317] ? __x64_sys_creat+0x8f/0xc0 [ 85.199331][ T5317] ? __lock_acquire+0x6b5/0x2cf0 [ 85.199346][ T5317] do_file_open+0x23e/0x4a0 [ 85.199362][ T5317] ? __pfx_do_file_open+0x10/0x10 [ 85.199403][ T5317] ? _raw_spin_unlock+0x28/0x50 [ 85.199419][ T5317] ? alloc_fd+0x64b/0x6c0 [ 85.199435][ T5317] do_sys_openat2+0x113/0x200 [ 85.199449][ T5317] ? __se_sys_futex+0x3a8/0x450 [ 85.199461][ T5317] ? __pfx_do_sys_openat2+0x10/0x10 [ 85.199470][ T5317] ? rcu_is_watching+0x15/0xb0 [ 85.199480][ T5317] __x64_sys_creat+0x8f/0xc0 [ 85.199488][ T5317] do_syscall_64+0x14d/0xf80 [ 85.199505][ T5317] ? trace_irq_disable+0x3b/0x150 [ 85.199519][ T5317] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.199529][ T5317] ? clear_bhb_loop+0x40/0x90 [ 85.199542][ T5317] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.199554][ T5317] RIP: 0033:0x7f9279d9c629 [ 85.199567][ T5317] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 85.199577][ T5317] RSP: 002b:00007f927ac1b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 85.199592][ T5317] RAX: ffffffffffffffda RBX: 00007f927a015fa0 RCX: 00007f9279d9c629 [ 85.199604][ T5317] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000400 [ 85.199612][ T5317] RBP: 00007f9279e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 85.199619][ T5317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 85.199626][ T5317] R13: 00007f927a016038 R14: 00007f927a015fa0 R15: 00007fffc8f8ec98 [ 85.199639][ T5317] [ 85.437654][ T5317] hfsplus: unable to mark blocks free: error -5 [ 85.440518][ T5317] hfsplus: can't free extent: start 134, count 1 [ 85.554521][ T25] audit: type=1800 audit(1771515595.018:2): pid=5318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 85.578067][ T5318] netlink: 'syz.0.0': attribute type 17 has an invalid length. [ 85.635499][ T5318] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.638629][ T5318] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.749553][ T5318] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 85.766664][ T5318] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 85.877375][ T1148] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.880931][ T1148] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.884657][ T1148] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.889858][ T1148] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0