program: syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000080)={[{@part={'part', 0x3d, 0x500f}}, {@nodecompose}, {}, {@part={'part', 0x3d, 0xc}}, {@uid}, {@barrier}, {@nls={'nls', 0x3d, 'cp949'}}, {@gid={'gid', 0x3d, 0xee00}}]}, 0x3, 0x5f4, &(0x7f0000000640)="$eJzs3c9rHOcZB/DvrNay5YKzSewkLS0V9qElprZWmzg6FOqWUnQIJdBLLjkIex0Lr5UgbYoSSpH789r/IClFPvfUQ+nBkJ577VHQQw6F3nVzmdlZaW0rshQr2lXy+cC77zv7zrzzzOOZVzuzmA3wtbX4dk49SJHFy2+ul8tbm53e1mbn7rCd5HSSRtIcVClWkuLT5HoGJd8s36yHKz5vP+98/MbCZ+3795KiORirOVy/sd92B7NRl8wmmarroxrvxjOPV+wcYZmwS8PEwbg9fMLGYTZ/xusWmGSt5GySM/XngNSzQ2PMYT2zQ81yAAAAcEI9t53trOfcuOMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAk6RIpgZVVRrD9myK4e//T9fvpW6faA/GHQAAAAAAAAAAHIHvbmc76zk3XH5YVN/5X6wWzlev38gHWUs3q7mS9Syln35W007SGhloen2p319tP3XLItl4NITBlvPHcLAAAAAAAAAA8NX1myzufv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACToEimBlVVzg/brTSaSc4kmS7X20j+MWyfZA/GHQAAAAAcg+e2s531nBsuPyyqe/6Xqvv+M/kgK+lnOf300s3N6lnA4K6/sbXZ6W1tdu6W5clxf/y/Q4VRjZjBs4e99zxXrXFhZ4vF/Cy/yOXM5q2sZjm/zFL66WY2P61aSynSqp9etIZx7h3v9UeW3nparK9UkczkVpar2K7kRt5LLzfTqI6hWmf/Pd4rs1P8qHbAHN2s6/KI/lTXk6FVZeTUTkbm6tyX2Xh+/0wc8jx5fE/tNHaeQZ3/99Hn/Gxdl7n+w0TnfH7k7Htp/5wnF//znb/d7q3cuX1r7fLkHNIX9HgmOiOZePlrlYnpOhuDWfRws+XFattzWc7P815uppvXs5DXM5/X8lrmspBrI3m9cID5rXG4a+3S9+vGTJI/1vVkKPP6/EheR2e6VtU3+s4gS+XJ9MLR/xVofqtulPv4bV1Phscz0R45X17cPxN/fli+rvVW7qzeXnr/gPv7Xl2Xmf79RM3N5fnyQvmPVS09enaUfS/u2deu+s7v9DWe6Luw0/e0K3W6/gz35EjzVd/Le/Z1qr5XRvr2+pQDwITa/U777Ktnp2f+O/OvmU9mfjdze+bNMz85vXD629M59c/m36f+2rjf+GHxaj7Jr3fv/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgC9u7cOP7iz1hj8D0Ot1VwfvfMUaf8lEhKFx0hrN+sqYlHiOrzHGSQk4Flf7d9+/uvbhRz9Yvrv0bvfd7kqn0742v3BtYf7a1VvLve7c4HXcYQJfgt0/+uOOBAAAAAAAAAAAADio4/jvBOM+RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBkW3w7px6kSHvuyly5vLXZ6ZVl2N5ds5mkkaT4VVJ8mlzPoKQ1Mlzxeft55+M3Fj5r37+3O1ZzuH5jv+0OZqMumU0yVddHNd6NZx6v2DnCMmGXhomDcft/AAAA//9Shwfb") r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000300)={[{@grpquota}, {@min_batch_time={'min_batch_time', 0x3d, 0xf00}}, {@quota}, {@stripe={'stripe', 0x3d, 0x2}}, {@jqfmt_vfsold}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") r1 = open(&(0x7f0000000000)='./file2\x00', 0x109042, 0x0) pwritev(r1, &(0x7f0000000540)=[{&(0x7f0000000280)='=', 0xfdef}], 0x1, 0x0, 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) io_submit(r2, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x4000, 0xa00}]) [ 84.170703][ T5319] loop0: detected capacity change from 0 to 1024 [ 84.184614][ T5299] Bluetooth: hci0: command tx timeout qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0xc0000) [ 84.340829][ T5319] [ 84.342128][ T5319] ============================================ [ 84.344974][ T5319] WARNING: possible recursive locking detected [ 84.347667][ T5319] syzkaller #0 Not tainted [ 84.349969][ T5319] -------------------------------------------- [ 84.352822][ T5319] syz.0.0/5319 is trying to acquire lock: [ 84.355389][ T5319] ffff888012f8f708 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1670 [ 84.360093][ T5319] [ 84.360093][ T5319] but task is already holding lock: [ 84.363225][ T5319] ffff888012f8dc08 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 84.368227][ T5319] [ 84.368227][ T5319] other info that might help us debug this: [ 84.371705][ T5319] Possible unsafe locking scenario: [ 84.371705][ T5319] [ 84.375154][ T5319] CPU0 [ 84.376643][ T5319] ---- [ 84.378317][ T5319] lock(&HFSPLUS_I(inode)->extents_lock); [ 84.380875][ T5319] lock(&HFSPLUS_I(inode)->extents_lock); [ 84.383439][ T5319] [ 84.383439][ T5319] *** DEADLOCK *** [ 84.383439][ T5319] [ 84.386960][ T5319] May be due to missing lock nesting notation [ 84.386960][ T5319] [ 84.390339][ T5319] 4 locks held by syz.0.0/5319: [ 84.392961][ T5319] #0: ffff88804314c420 (sb_writers#12){.+.+}-{0:0}, at: vfs_writev+0x2aa/0x990 [ 84.397493][ T5319] #1: ffff888012f8ddf8 (&sb->s_type->i_mutex_key#25){+.+.}-{4:4}, at: generic_file_write_iter+0x11e/0x680 [ 84.402146][ T5319] #2: ffff888012f8dc08 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 84.407402][ T5319] #3: ffff888012e7e8f8 (&sbi->alloc_mutex){+.+.}-{4:4}, at: hfsplus_block_allocate+0xa7/0xce0 [ 84.412950][ T5319] [ 84.412950][ T5319] stack backtrace: [ 84.415400][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 84.415415][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 84.415422][ T5319] Call Trace: [ 84.415430][ T5319] [ 84.415435][ T5319] dump_stack_lvl+0xe8/0x150 [ 84.415457][ T5319] print_deadlock_bug+0x279/0x290 [ 84.415475][ T5319] __lock_acquire+0x253f/0x2cf0 [ 84.415488][ T5319] ? lock_release+0x4b/0x3d0 [ 84.415501][ T5319] ? lock_release+0x4b/0x3d0 [ 84.415514][ T5319] ? is_bpf_text_address+0x292/0x2b0 [ 84.415526][ T5319] ? is_bpf_text_address+0x26/0x2b0 [ 84.415540][ T5319] lock_acquire+0xf0/0x2e0 [ 84.415553][ T5319] ? hfsplus_get_block+0x39e/0x1670 [ 84.415565][ T5319] __mutex_lock+0x19f/0x1300 [ 84.416566][ T5319] ? hfsplus_get_block+0x39e/0x1670 [ 84.416577][ T5319] ? stack_trace_save+0xa9/0x100 [ 84.416595][ T5319] ? __pfx_stack_trace_save+0x10/0x10 [ 84.416610][ T5319] ? check_path+0x21/0x40 [ 84.416630][ T5319] ? check_noncircular+0xda/0x150 [ 84.416651][ T5319] ? hfsplus_get_block+0x39e/0x1670 [ 84.416667][ T5319] ? __pfx___mutex_lock+0x10/0x10 [ 84.416684][ T5319] ? __lock_acquire+0x146e/0x2cf0 [ 84.416699][ T5319] hfsplus_get_block+0x39e/0x1670 [ 84.416711][ T5319] ? __pfx_hfsplus_get_block+0x10/0x10 [ 84.416727][ T5319] ? block_read_full_folio+0x672/0x830 [ 84.416742][ T5319] block_read_full_folio+0x29f/0x830 [ 84.416755][ T5319] ? __pfx_hfsplus_get_block+0x10/0x10 [ 84.416765][ T5319] filemap_read_folio+0x137/0x3b0 [ 84.416779][ T5319] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 84.416794][ T5319] ? __pfx_filemap_read_folio+0x10/0x10 [ 84.416807][ T5319] ? filemap_add_folio+0x356/0x530 [ 84.416824][ T5319] do_read_cache_folio+0x358/0x590 [ 84.416837][ T5319] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 84.416850][ T5319] read_cache_page+0x5d/0x170 [ 84.416863][ T5319] hfsplus_block_allocate+0xf3/0xce0 [ 84.416879][ T5319] hfsplus_file_extend+0xb2d/0x1d70 [ 84.416892][ T5319] ? __pfx_hfsplus_file_extend+0x10/0x10 [ 84.416902][ T5319] ? __pfx_css_rstat_updated+0x10/0x10 [ 84.416915][ T5319] ? do_pte_missing+0x1b57/0x3490 [ 84.416928][ T5319] ? __lock_acquire+0x6b5/0x2cf0 [ 84.416941][ T5319] hfsplus_get_block+0x42c/0x1670 [ 84.416954][ T5319] ? __pfx_hfsplus_get_block+0x10/0x10 [ 84.416964][ T5319] ? folio_try_get+0x1c/0x340 [ 84.416974][ T5319] ? filemap_get_entry+0xca/0x320 [ 84.416987][ T5319] __block_write_begin_int+0x6c6/0x1910 [ 84.417004][ T5319] ? __pfx_hfsplus_get_block+0x10/0x10 [ 84.417014][ T5319] ? __pfx___block_write_begin_int+0x10/0x10 [ 84.417028][ T5319] cont_write_begin+0x737/0xae0 [ 84.417040][ T5319] ? irqentry_exit+0x59e/0x620 [ 84.417058][ T5319] ? __pfx_cont_write_begin+0x10/0x10 [ 84.417073][ T5319] hfsplus_write_begin+0x66/0xb0 [ 84.417089][ T5319] ? __pfx_hfsplus_get_block+0x10/0x10 [ 84.417100][ T5319] generic_perform_write+0x2e2/0x8f0 [ 84.417116][ T5319] ? __pfx_generic_perform_write+0x10/0x10 [ 84.417127][ T5319] ? file_update_time_flags+0x400/0x4a0 [ 84.417138][ T5319] ? __generic_file_write_iter+0xf9/0x230 [ 84.417149][ T5319] ? generic_file_write_iter+0x136/0x680 [ 84.417161][ T5319] generic_file_write_iter+0x14a/0x680 [ 84.417173][ T5319] ? __pfx_generic_file_write_iter+0x10/0x10 [ 84.417195][ T5319] ? aa_file_perm+0x192/0x15e0 [ 84.417259][ T5319] ? aa_file_perm+0x50e/0x15e0 [ 84.417277][ T5319] ? aa_file_perm+0x192/0x15e0 [ 84.417298][ T5319] ? __lock_acquire+0x6b5/0x2cf0 [ 84.417313][ T5319] ? preempt_schedule_thunk+0x16/0x30 [ 84.417327][ T5319] do_iter_readv_writev+0x619/0x8c0 [ 84.417341][ T5319] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 84.417354][ T5319] vfs_writev+0x33c/0x990 [ 84.417366][ T5319] ? __pfx_vfs_writev+0x10/0x10 [ 84.417382][ T5319] ? __fget_files+0x2a/0x420 [ 84.417395][ T5319] ? __fget_files+0x3a0/0x420 [ 84.417406][ T5319] ? __fget_files+0x2a/0x420 [ 84.417449][ T5319] __x64_sys_pwritev+0x19f/0x2a0 [ 84.417463][ T5319] ? __pfx___x64_sys_pwritev+0x10/0x10 [ 84.417476][ T5319] do_syscall_64+0x14d/0xf80 [ 84.417492][ T5319] ? trace_irq_disable+0x3b/0x150 [ 84.417500][ T5319] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.417509][ T5319] ? clear_bhb_loop+0x40/0x90 [ 84.417521][ T5319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.417534][ T5319] RIP: 0033:0x7f98d839c819 [ 84.417547][ T5319] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 84.417557][ T5319] RSP: 002b:00007f98d92d1fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 84.417573][ T5319] RAX: ffffffffffffffda RBX: 00007f98d8615fa0 RCX: 00007f98d839c819 [ 84.417584][ T5319] RDX: 0000000000000001 RSI: 0000200000000540 RDI: 0000000000000005 [ 84.417592][ T5319] RBP: 00007f98d8432c91 R08: 0000000000000000 R09: 0000000000000000 [ 84.417601][ T5319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 84.417608][ T5319] R13: 00007f98d8616038 R14: 00007f98d8615fa0 R15: 00007ffd305def28 [ 84.417622][ T5319]