Warning: Permanently added '10.128.0.135' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 52.022080][ T3627] loop0: detected capacity change from 0 to 1024 [ 52.075531][ T3627] loop0: detected capacity change from 0 to 1024 [ 52.079875][ T3629] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 52.102980][ T3627] loop0: detected capacity change from 0 to 1024 [ 52.108773][ T3629] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 52.130668][ T3627] loop0: detected capacity change from 0 to 1024 [ 52.134206][ T3629] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 52.157889][ T3627] loop0: detected capacity change from 0 to 1024 [ 52.161387][ T3629] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 executing program [ 52.185698][ T3627] loop0: detected capacity change from 0 to 1024 [ 52.190131][ T3629] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 52.224589][ T3631] loop0: detected capacity change from 0 to 1024 [ 52.231538][ T3629] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 52.245136][ T3631] hfsplus: failed to load root directory [ 52.265075][ T3631] loop0: detected capacity change from 0 to 1024 [ 52.276969][ T3631] hfsplus: failed to load root directory executing program [ 52.301551][ T3631] loop0: detected capacity change from 0 to 1024 [ 52.310379][ T3631] hfsplus: failed to load root directory [ 52.324945][ T3631] loop0: detected capacity change from 0 to 1024 [ 52.330899][ T3629] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 52.343805][ T3631] hfsplus: failed to load root directory [ 52.390873][ T3635] loop0: detected capacity change from 0 to 1024 [ 52.413644][ T3635] [ 52.415999][ T3635] ====================================================== [ 52.423032][ T3635] WARNING: possible circular locking dependency detected [ 52.430038][ T3635] 6.1.0-rc7-syzkaller-00211-g0ba09b173387 #0 Not tainted [ 52.437044][ T3635] ------------------------------------------------------ [ 52.444043][ T3635] syz-executor955/3635 is trying to acquire lock: [ 52.450440][ T3635] ffff8880279780b0 (&tree->tree_lock){+.+.}-{3:3}, at: hfsplus_file_truncate+0x871/0xbb0 [ 52.460274][ T3635] [ 52.460274][ T3635] but task is already holding lock: [ 52.467648][ T3635] ffff8880189a3708 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfsplus_file_truncate+0x280/0xbb0 [ 52.478771][ T3635] [ 52.478771][ T3635] which lock already depends on the new lock. [ 52.478771][ T3635] [ 52.489243][ T3635] [ 52.489243][ T3635] the existing dependency chain (in reverse order) is: [ 52.498247][ T3635] [ 52.498247][ T3635] -> #1 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}: [ 52.507269][ T3635] lock_acquire+0x182/0x3c0 [ 52.512286][ T3635] __mutex_lock_common+0x1bd/0x26e0 [ 52.518008][ T3635] mutex_lock_nested+0x17/0x20 [ 52.523294][ T3635] hfsplus_get_block+0x3a3/0x1560 [ 52.528831][ T3635] block_read_full_folio+0x3b3/0xfa0 [ 52.534719][ T3635] filemap_read_folio+0x187/0x7d0 [ 52.540255][ T3635] do_read_cache_folio+0x2d3/0x790 [ 52.545882][ T3635] read_cache_page+0x56/0x270 [ 52.551072][ T3635] __hfs_bnode_create+0x4d5/0x7f0 [ 52.556610][ T3635] hfsplus_bnode_find+0x23d/0xd80 [ 52.562148][ T3635] hfsplus_brec_find+0x145/0x520 [ 52.567596][ T3635] hfsplus_brec_read+0x27/0x100 [ 52.572964][ T3635] hfsplus_find_cat+0x168/0x6d0 [ 52.578331][ T3635] hfsplus_iget+0x402/0x630 [ 52.583345][ T3635] hfsplus_fill_super+0xc6a/0x1b50 [ 52.588968][ T3635] mount_bdev+0x26c/0x3a0 [ 52.593809][ T3635] legacy_get_tree+0xea/0x180 [ 52.598999][ T3635] vfs_get_tree+0x88/0x270 [ 52.603925][ T3635] do_new_mount+0x289/0xad0 [ 52.608945][ T3635] __se_sys_mount+0x2d3/0x3c0 [ 52.614129][ T3635] do_syscall_64+0x3d/0xb0 [ 52.619056][ T3635] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 52.625462][ T3635] [ 52.625462][ T3635] -> #0 (&tree->tree_lock){+.+.}-{3:3}: [ 52.633185][ T3635] validate_chain+0x1898/0x6ae0 [ 52.638547][ T3635] __lock_acquire+0x1292/0x1f60 [ 52.643911][ T3635] lock_acquire+0x182/0x3c0 [ 52.648928][ T3635] __mutex_lock_common+0x1bd/0x26e0 [ 52.654645][ T3635] mutex_lock_nested+0x17/0x20 [ 52.659924][ T3635] hfsplus_file_truncate+0x871/0xbb0 [ 52.665730][ T3635] hfsplus_delete_inode+0x16d/0x210 [ 52.671442][ T3635] hfsplus_unlink+0x4e2/0x7d0 [ 52.676630][ T3635] hfsplus_rename+0xc3/0x1b0 [ 52.681728][ T3635] vfs_rename+0xd53/0x1130 [ 52.686652][ T3635] do_renameat2+0xb53/0x1370 [ 52.691752][ T3635] __x64_sys_rename+0x82/0x90 [ 52.696943][ T3635] do_syscall_64+0x3d/0xb0 [ 52.701867][ T3635] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 52.708276][ T3635] [ 52.708276][ T3635] other info that might help us debug this: [ 52.708276][ T3635] [ 52.718492][ T3635] Possible unsafe locking scenario: [ 52.718492][ T3635] [ 52.725938][ T3635] CPU0 CPU1 [ 52.731286][ T3635] ---- ---- [ 52.736725][ T3635] lock(&HFSPLUS_I(inode)->extents_lock); [ 52.742521][ T3635] lock(&tree->tree_lock); [ 52.749533][ T3635] lock(&HFSPLUS_I(inode)->extents_lock); [ 52.757860][ T3635] lock(&tree->tree_lock); [ 52.762380][ T3635] [ 52.762380][ T3635] *** DEADLOCK *** [ 52.762380][ T3635] [ 52.770520][ T3635] 6 locks held by syz-executor955/3635: [ 52.776059][ T3635] #0: ffff888075a6c460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 52.785215][ T3635] #1: ffff8880189a2b80 (&type->i_mutex_dir_key#6/1){+.+.}-{3:3}, at: lock_rename+0x182/0x1a0 [ 52.795503][ T3635] #2: ffff8880189a3240 (&sb->s_type->i_mutex_key#15){+.+.}-{3:3}, at: lock_two_nondirectories+0xdd/0x130 [ 52.806822][ T3635] #3: ffff8880189a3900 (&sb->s_type->i_mutex_key#15/4){+.+.}-{3:3}, at: vfs_rename+0x80a/0x1130 [ 52.817352][ T3635] #4: ffff888027abb198 (&sbi->vh_mutex){+.+.}-{3:3}, at: hfsplus_unlink+0x135/0x7d0 [ 52.826824][ T3635] #5: ffff8880189a3708 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfsplus_file_truncate+0x280/0xbb0 [ 52.838475][ T3635] [ 52.838475][ T3635] stack backtrace: [ 52.844348][ T3635] CPU: 1 PID: 3635 Comm: syz-executor955 Not tainted 6.1.0-rc7-syzkaller-00211-g0ba09b173387 #0 [ 52.854749][ T3635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 52.864793][ T3635] Call Trace: [ 52.868067][ T3635] [ 52.870990][ T3635] dump_stack_lvl+0x1b1/0x28e [ 52.875748][ T3635] ? nf_tcp_handle_invalid+0x62e/0x62e [ 52.881198][ T3635] ? print_circular_bug+0x13e/0x1c0 [ 52.886483][ T3635] check_noncircular+0x2cc/0x390 [ 52.891416][ T3635] ? add_chain_block+0x850/0x850 [ 52.896346][ T3635] ? lockdep_lock+0x102/0x290 [ 52.901100][ T3635] ? check_noncircular+0x1aa/0x390 [ 52.906204][ T3635] ? add_chain_block+0x850/0x850 [ 52.911135][ T3635] ? _find_first_zero_bit+0xe8/0x110 [ 52.916417][ T3635] validate_chain+0x1898/0x6ae0 [ 52.921265][ T3635] ? reacquire_held_locks+0x650/0x650 [ 52.926633][ T3635] ? reacquire_held_locks+0x650/0x650 [ 52.932006][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 52.937632][ T3635] ? stack_trace_save+0x1e0/0x1e0 [ 52.942648][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 52.948271][ T3635] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 52.954268][ T3635] ? mark_lock+0x9a/0x350 [ 52.958616][ T3635] ? update_cfs_rq_load_avg+0x483/0x570 [ 52.964171][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 52.969884][ T3635] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 52.975854][ T3635] ? resched_curr+0x23a/0x2f0 [ 52.980532][ T3635] ? ttwu_queue+0x1c8/0x310 [ 52.985032][ T3635] ? trace_lock_release+0x95/0x220 [ 52.990137][ T3635] ? try_to_wake_up+0x4f5/0xac0 [ 52.994979][ T3635] ? trace_lock_release+0x95/0x220 [ 53.000083][ T3635] ? __lock_acquire+0x1f60/0x1f60 [ 53.005107][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.010733][ T3635] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 53.016717][ T3635] ? do_raw_spin_unlock+0x134/0x8a0 [ 53.021928][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.027572][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.033200][ T3635] ? mark_lock+0x9a/0x350 [ 53.037527][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.043149][ T3635] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 53.049121][ T3635] ? rcu_lock_acquire+0x30/0x30 [ 53.053964][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.059587][ T3635] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 53.065565][ T3635] ? stack_trace_save+0x1e0/0x1e0 [ 53.070671][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.076315][ T3635] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 53.082378][ T3635] ? finish_lock_switch+0x89/0x100 [ 53.087570][ T3635] ? trace_lock_release+0x95/0x220 [ 53.092680][ T3635] ? rcu_lock_release+0x5/0x20 [ 53.097522][ T3635] ? trace_lock_release+0x95/0x220 [ 53.102627][ T3635] ? rcu_lock_release+0x5/0x20 [ 53.107382][ T3635] ? lock_release+0x81/0x820 [ 53.111984][ T3635] ? read_lock_is_recursive+0x10/0x10 [ 53.117345][ T3635] ? deref_stack_reg+0x17a/0x210 [ 53.122273][ T3635] ? __lock_acquire+0x1f60/0x1f60 [ 53.127291][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.132917][ T3635] ? rcu_read_lock_sched_held+0x87/0x110 [ 53.138539][ T3635] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 53.144510][ T3635] ? __mod_timer+0x96d/0xd00 [ 53.149092][ T3635] ? trace_lock_release+0x95/0x220 [ 53.154198][ T3635] ? register_lock_class+0xc2/0x930 [ 53.159384][ T3635] ? __lock_acquire+0x1f60/0x1f60 [ 53.164397][ T3635] ? is_dynamic_key+0x1f0/0x1f0 [ 53.169240][ T3635] ? mark_lock+0x9a/0x350 [ 53.173562][ T3635] __lock_acquire+0x1292/0x1f60 [ 53.178408][ T3635] lock_acquire+0x182/0x3c0 [ 53.182902][ T3635] ? hfsplus_file_truncate+0x871/0xbb0 [ 53.188352][ T3635] ? read_lock_is_recursive+0x10/0x10 [ 53.193716][ T3635] ? __might_sleep+0xc0/0xc0 [ 53.198295][ T3635] ? hfsplus_block_free+0x3de/0x4e0 [ 53.203491][ T3635] ? trace_lock_release+0x95/0x220 [ 53.208610][ T3635] ? __mutex_unlock_slowpath+0x222/0x770 [ 53.214256][ T3635] __mutex_lock_common+0x1bd/0x26e0 [ 53.219460][ T3635] ? hfsplus_file_truncate+0x871/0xbb0 [ 53.224917][ T3635] ? __mark_inode_dirty+0x593/0x600 [ 53.230117][ T3635] ? hfsplus_file_truncate+0x871/0xbb0 [ 53.235566][ T3635] ? mutex_lock_io_nested+0x60/0x60 [ 53.240758][ T3635] ? hfsplus_block_free+0x3e8/0x4e0 [ 53.246037][ T3635] ? hfsplus_free_extents+0x483/0xad0 [ 53.251409][ T3635] mutex_lock_nested+0x17/0x20 [ 53.256164][ T3635] hfsplus_file_truncate+0x871/0xbb0 [ 53.261449][ T3635] ? hfsplus_add_extent+0x860/0x860 [ 53.266666][ T3635] ? mutex_lock_io_nested+0x60/0x60 [ 53.271863][ T3635] hfsplus_delete_inode+0x16d/0x210 [ 53.277071][ T3635] hfsplus_unlink+0x4e2/0x7d0 [ 53.281764][ T3635] ? hfsplus_link+0x820/0x820 [ 53.286442][ T3635] ? down_write_nested+0x1ab/0x280 [ 53.291562][ T3635] ? down_read_non_owner+0xa0/0xa0 [ 53.296680][ T3635] ? do_raw_spin_unlock+0x134/0x8a0 [ 53.301883][ T3635] hfsplus_rename+0xc3/0x1b0 [ 53.306478][ T3635] vfs_rename+0xd53/0x1130 [ 53.310907][ T3635] ? __ia32_sys_link+0x90/0x90 [ 53.315679][ T3635] ? _raw_spin_unlock+0x24/0x40 [ 53.320558][ T3635] ? security_path_rename+0x1ab/0x230 [ 53.325945][ T3635] do_renameat2+0xb53/0x1370 [ 53.330539][ T3635] ? fsnotify_move+0x4e0/0x4e0 [ 53.335299][ T3635] ? check_heap_object+0x244/0x810 [ 53.340407][ T3635] ? __phys_addr_symbol+0x2b/0x70 [ 53.345424][ T3635] ? strncpy_from_user+0x1d6/0x330 [ 53.350528][ T3635] ? getname_flags+0x1ea/0x4e0 [ 53.355284][ T3635] ? lockdep_hardirqs_on+0x8d/0x130 [ 53.360474][ T3635] __x64_sys_rename+0x82/0x90 [ 53.365143][ T3635] do_syscall_64+0x3d/0xb0 [ 53.369549][ T3635] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 53.375430][ T3635] RIP: 0033:0x7f462a64f3f9 [ 53.379832][ T3635] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 53.399439][ T3635] RSP: 002b:00007f462a5da2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 53.407857][ T3635] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f462a64f3f9 [ 53.415831][ T3635] RDX: 0000000000000031 RSI: 00000000200001c0 RDI: 0000000020000180 [ 53.423794][ T3635] RBP: 00007f462a6d4798 R08: 0000000000000000 R09: 0000000000000000 [ 53.431767][ T3635] R10: 00000000000005fb R11: 0000000000000246 R12: 00007f462a6d4790 [ 53.439731][ T3635] R13: 736f706d6f636564 R14: 0030656c69662f2e R15: 0073756c70736668 [ 53.447700][ T3635] executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 57.415734][ T11] hfsplus: b-tree write err: -5, ino 4 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program