./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2756282355 <...> Warning: Permanently added '10.128.0.225' (ED25519) to the list of known hosts. execve("./syz-executor2756282355", ["./syz-executor2756282355"], 0x7fffec3e4140 /* 10 vars */) = 0 brk(NULL) = 0x5555555e7000 brk(0x5555555e7d00) = 0x5555555e7d00 arch_prctl(ARCH_SET_FS, 0x5555555e7380) = 0 set_tid_address(0x5555555e7650) = 5056 set_robust_list(0x5555555e7660, 24) = 0 rseq(0x5555555e7ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2756282355", 4096) = 28 getrandom("\x03\x9c\xe8\x0a\xc0\x22\xda\xb3", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555555e7d00 brk(0x555555608d00) = 0x555555608d00 brk(0x555555609000) = 0x555555609000 mprotect(0x7f9cb2a29000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f9caa579000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 32768) = 32768 munmap(0x7f9caa579000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file2", 0777) = 0 mount("/dev/loop0", "./file2", "hfs", 0, "") = 0 openat(AT_FDCWD, "./file2", O_RDONLY|O_DIRECTORY) = 3 chdir("./file2") = 0 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 openat(AT_FDCWD, "./file2", O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_NOATIME|FASYNC, 000) = 4 [ 69.771944][ T5056] loop0: detected capacity change from 0 to 64 [ 69.833477][ T5056] [ 69.835865][ T5056] ============================================ [ 69.842040][ T5056] WARNING: possible recursive locking detected [ 69.848287][ T5056] 6.7.0-rc4-syzkaller-00009-gbee0e7762ad2 #0 Not tainted [ 69.855305][ T5056] -------------------------------------------- [ 69.861443][ T5056] syz-executor275/5056 is trying to acquire lock: [ 69.868016][ T5056] ffff88807b0020b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfs_find_init+0x16e/0x1f0 [ 69.877359][ T5056] [ 69.877359][ T5056] but task is already holding lock: [ 69.884716][ T5056] ffff88807b0020b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfs_find_init+0x16e/0x1f0 [ 69.894129][ T5056] [ 69.894129][ T5056] other info that might help us debug this: [ 69.902194][ T5056] Possible unsafe locking scenario: [ 69.902194][ T5056] [ 69.909633][ T5056] CPU0 [ 69.912908][ T5056] ---- [ 69.916175][ T5056] lock(&tree->tree_lock/1); [ 69.920874][ T5056] lock(&tree->tree_lock/1); [ 69.925547][ T5056] [ 69.925547][ T5056] *** DEADLOCK *** [ 69.925547][ T5056] [ 69.933677][ T5056] May be due to missing lock nesting notation [ 69.933677][ T5056] [ 69.941984][ T5056] 5 locks held by syz-executor275/5056: [ 69.947514][ T5056] #0: ffff88807b000418 (sb_writers#9){.+.+}-{0:0}, at: vfs_write+0x223/0xb20 [ 69.956413][ T5056] #1: ffff888019f11628 (&sb->s_type->i_mutex_key#14){+.+.}-{3:3}, at: generic_file_write_iter+0x83/0x310 [ 69.967757][ T5056] #2: ffff888019f11478 (&HFS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfs_extend_file+0xff/0x1440 [ 69.978474][ T5056] #3: ffff88807b0020b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfs_find_init+0x16e/0x1f0 [ 69.988250][ T5056] #4: ffff888019f100f8 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}, at: hfs_extend_file+0xff/0x1440 [ 69.999493][ T5056] [ 69.999493][ T5056] stack backtrace: [ 70.005377][ T5056] CPU: 0 PID: 5056 Comm: syz-executor275 Not tainted 6.7.0-rc4-syzkaller-00009-gbee0e7762ad2 #0 [ 70.015779][ T5056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 70.025844][ T5056] Call Trace: [ 70.029120][ T5056] [ 70.032049][ T5056] dump_stack_lvl+0x1e7/0x2d0 [ 70.036745][ T5056] ? nf_tcp_handle_invalid+0x650/0x650 [ 70.042208][ T5056] ? print_deadlock_bug+0x46f/0x610 [ 70.047405][ T5056] ? _find_first_zero_bit+0xd4/0x100 [ 70.052770][ T5056] validate_chain+0x15dd/0x5ab0 [ 70.057651][ T5056] ? __lock_acquire+0x1345/0x1fd0 [ 70.062686][ T5056] ? reacquire_held_locks+0x690/0x690 [ 70.068075][ T5056] ? mark_lock+0x9a/0x350 [ 70.072422][ T5056] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 70.078413][ T5056] ? print_irqtrace_events+0x220/0x220 [ 70.083873][ T5056] ? mark_lock+0x9a/0x350 [ 70.088203][ T5056] __lock_acquire+0x1345/0x1fd0 [ 70.093084][ T5056] lock_acquire+0x1e3/0x530 [ 70.097603][ T5056] ? hfs_find_init+0x16e/0x1f0 [ 70.102389][ T5056] ? read_lock_is_recursive+0x20/0x20 [ 70.107774][ T5056] ? block_write_begin+0x9b/0x1e0 [ 70.112804][ T5056] ? cont_write_begin+0x643/0x880 [ 70.117834][ T5056] ? __might_sleep+0xe0/0xe0 [ 70.122428][ T5056] ? ksys_write+0x1a0/0x2c0 [ 70.126930][ T5056] ? do_syscall_64+0x45/0x110 [ 70.131609][ T5056] ? entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 70.137704][ T5056] __mutex_lock+0x136/0xd60 [ 70.142231][ T5056] ? hfs_find_init+0x16e/0x1f0 [ 70.147016][ T5056] ? hfs_find_init+0x16e/0x1f0 [ 70.151824][ T5056] ? mutex_lock_nested+0x20/0x20 [ 70.156781][ T5056] ? hfs_find_init+0x90/0x1f0 [ 70.161471][ T5056] ? rcu_is_watching+0x15/0xb0 [ 70.166243][ T5056] ? hfs_find_init+0x90/0x1f0 [ 70.170928][ T5056] ? trace_kmalloc+0x1f/0xa0 [ 70.175510][ T5056] ? __kmalloc+0xd0/0x1a0 [ 70.179835][ T5056] hfs_find_init+0x16e/0x1f0 [ 70.184436][ T5056] hfs_extend_file+0x31b/0x1440 [ 70.189291][ T5056] ? hfs_get_block+0xb60/0xb60 [ 70.194054][ T5056] ? __mutex_trylock_common+0x182/0x2e0 [ 70.199602][ T5056] ? trace_raw_output_contention_end+0xd0/0xd0 [ 70.205757][ T5056] ? rcu_is_watching+0x15/0xb0 [ 70.210546][ T5056] ? hfs_brec_find+0x197/0x570 [ 70.215317][ T5056] hfs_bmap_reserve+0xd9/0x3f0 [ 70.220085][ T5056] __hfs_ext_write_extent+0x22e/0x4f0 [ 70.225456][ T5056] __hfs_ext_cache_extent+0x6a/0x990 [ 70.230739][ T5056] ? hfs_find_init+0x16e/0x1f0 [ 70.235505][ T5056] hfs_extend_file+0x344/0x1440 [ 70.240350][ T5056] ? filemap_get_folios_tag+0x1a9/0x900 [ 70.245915][ T5056] ? hfs_get_block+0xb60/0xb60 [ 70.250682][ T5056] ? filemap_get_folios_tag+0x1a9/0x900 [ 70.256234][ T5056] ? filemap_get_folios+0x40/0x40 [ 70.261274][ T5056] ? clean_bdev_aliases+0x66a/0x770 [ 70.266473][ T5056] hfs_get_block+0x3e4/0xb60 [ 70.271072][ T5056] ? hfs_free_extents+0x420/0x420 [ 70.276100][ T5056] ? create_empty_buffers+0x53e/0x740 [ 70.281490][ T5056] __block_write_begin_int+0x54d/0x1ad0 [ 70.287043][ T5056] ? folio_add_lru+0x27b/0x9d0 [ 70.291828][ T5056] ? hfs_free_extents+0x420/0x420 [ 70.296893][ T5056] ? folio_zero_new_buffers+0x540/0x540 [ 70.302446][ T5056] ? hfs_free_extents+0x420/0x420 [ 70.307481][ T5056] block_write_begin+0x9b/0x1e0 [ 70.312338][ T5056] cont_write_begin+0x643/0x880 [ 70.317195][ T5056] ? fault_in_readable+0x165/0x2b0 [ 70.322315][ T5056] ? generic_cont_expand_simple+0x2a0/0x2a0 [ 70.328209][ T5056] ? fault_in_readable+0x1a6/0x2b0 [ 70.333328][ T5056] ? fault_in_safe_writeable+0x260/0x260 [ 70.338987][ T5056] hfs_write_begin+0x8a/0xd0 [ 70.343584][ T5056] ? hfs_free_extents+0x420/0x420 [ 70.348606][ T5056] generic_perform_write+0x31b/0x630 [ 70.353899][ T5056] ? do_raw_spin_unlock+0x13b/0x8b0 [ 70.359104][ T5056] ? generic_file_direct_write+0x3f0/0x3f0 [ 70.364915][ T5056] ? __generic_file_write_iter+0x101/0x230 [ 70.370733][ T5056] generic_file_write_iter+0xaf/0x310 [ 70.376123][ T5056] vfs_write+0x792/0xb20 [ 70.380368][ T5056] ? file_end_write+0x250/0x250 [ 70.385222][ T5056] ? _raw_spin_unlock_irq+0x2e/0x50 [ 70.390419][ T5056] ? __fdget_pos+0x2c7/0x340 [ 70.395028][ T5056] ksys_write+0x1a0/0x2c0 [ 70.399361][ T5056] ? print_irqtrace_events+0x220/0x220 [ 70.404818][ T5056] ? __ia32_sys_read+0x90/0x90 [ 70.409582][ T5056] ? syscall_enter_from_user_mode+0xa4/0x2d0 [ 70.415568][ T5056] ? syscall_enter_from_user_mode+0xf5/0x2d0 [ 70.421548][ T5056] do_syscall_64+0x45/0x110 [ 70.426054][ T5056] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 70.431952][ T5056] RIP: 0033:0x7f9cb29b65f9 [ 70.436362][ T5056] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 70.455995][ T5056] RSP: 002b:00007ffc0ea2d9a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 70.464434][ T5056] RAX: ffffffffffffffda RBX: 0032656c69662f2e RCX: 00007f9cb29b65f9 [ 70.472413][ T5056] RDX: 00000000000ffe00 RSI: 0000000020004200 RDI: 0000000000000004 [ 70.480384][ T5056] RBP: 00007f9cb2a29610 R08: 0000000000000000 R09: 00007ffc0ea2db78 [ 70.488374][ T5056] R10: 00000000000002a0 R11: 0000000000000246 R12: 0000000000000001 [ 70.496351][ T5056] R13: 00007ffc0ea2db68 R14: 0000000000000001 R15: 0000000000000001 [ 70.504339][ T5056]