[ OK ] Found device /dev/ttyS0. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.228' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 27.449450] IPVS: ftp: loaded support on port[0] = 21 [ 27.514898] ntfs: volume version 3.1. [ 27.649467] syz-executor247 (7961): drop_caches: 1 [ 27.678975] syz-executor247 (7961): drop_caches: 1 [ 27.688234] [ 27.689861] ====================================================== [ 27.696204] WARNING: possible circular locking dependency detected [ 27.702501] 4.14.301-syzkaller #0 Not tainted [ 27.706971] ------------------------------------------------------ [ 27.713259] kworker/u4:1/22 is trying to acquire lock: [ 27.718509] (&rl->lock){++++}, at: [] ntfs_readpage+0x1396/0x1ad0 [ 27.726377] [ 27.726377] but task is already holding lock: [ 27.732320] (&ni->mrec_lock){+.+.}, at: [] map_mft_record+0x2b/0xbe0 [ 27.740443] [ 27.740443] which lock already depends on the new lock. [ 27.740443] [ 27.748737] [ 27.748737] the existing dependency chain (in reverse order) is: [ 27.756328] [ 27.756328] -> #1 (&ni->mrec_lock){+.+.}: [ 27.761942] __mutex_lock+0xc4/0x1310 [ 27.766239] map_mft_record+0x2b/0xbe0 [ 27.770623] ntfs_truncate+0x1a6/0x22d0 [ 27.775092] ntfs_setattr+0x148/0x580 [ 27.779387] notify_change+0x56b/0xd10 [ 27.783777] do_truncate+0xff/0x1a0 [ 27.787900] path_openat+0x1dcc/0x2970 [ 27.792278] do_filp_open+0x179/0x3c0 [ 27.796575] do_sys_open+0x296/0x410 [ 27.800786] do_syscall_64+0x1d5/0x640 [ 27.805175] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 27.810960] [ 27.810960] -> #0 (&rl->lock){++++}: [ 27.816135] lock_acquire+0x170/0x3f0 [ 27.820435] down_read+0x36/0x80 [ 27.824298] ntfs_readpage+0x1396/0x1ad0 [ 27.828859] do_read_cache_page+0x38e/0xc10 [ 27.833675] ntfs_sync_mft_mirror+0x1f4/0x1560 [ 27.838754] write_mft_record_nolock+0xece/0x1240 [ 27.844109] __ntfs_write_inode+0x58d/0xcc0 [ 27.849011] __writeback_single_inode+0x6a4/0x1010 [ 27.854466] writeback_sb_inodes+0x48b/0xd30 [ 27.859373] wb_writeback+0x243/0xb80 [ 27.863671] wb_workfn+0x2bd/0xf50 [ 27.867713] process_one_work+0x793/0x14a0 [ 27.872444] worker_thread+0x5cc/0xff0 [ 27.876910] kthread+0x30d/0x420 [ 27.880861] ret_from_fork+0x24/0x30 [ 27.885064] [ 27.885064] other info that might help us debug this: [ 27.885064] [ 27.893266] Possible unsafe locking scenario: [ 27.893266] [ 27.899297] CPU0 CPU1 [ 27.903933] ---- ---- [ 27.908573] lock(&ni->mrec_lock); [ 27.912193] lock(&rl->lock); [ 27.917899] lock(&ni->mrec_lock); [ 27.924188] lock(&rl->lock); [ 27.927368] [ 27.927368] *** DEADLOCK *** [ 27.927368] [ 27.933400] 3 locks held by kworker/u4:1/22: [ 27.937776] #0: ("writeback"){+.+.}, at: [] process_one_work+0x6b0/0x14a0 [ 27.946419] #1: ((&(&wb->dwork)->work)){+.+.}, at: [] process_one_work+0x6e6/0x14a0 [ 27.955942] #2: (&ni->mrec_lock){+.+.}, at: [] map_mft_record+0x2b/0xbe0 [ 27.964525] [ 27.964525] stack backtrace: [ 27.969009] CPU: 0 PID: 22 Comm: kworker/u4:1 Not tainted 4.14.301-syzkaller #0 [ 27.976437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 27.985785] Workqueue: writeback wb_workfn (flush-7:0) [ 27.991144] Call Trace: [ 27.993718] dump_stack+0x1b2/0x281 [ 27.997325] print_circular_bug.constprop.0.cold+0x2d7/0x41e [ 28.003101] __lock_acquire+0x2e0e/0x3f20 [ 28.007226] ? lock_downgrade+0x740/0x740 [ 28.011353] ? trace_hardirqs_on+0x10/0x10 [ 28.015567] ? alloc_buffer_head+0x20/0x110 [ 28.019875] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.025303] ? ntfs_readpage+0xba8/0x1ad0 [ 28.029427] lock_acquire+0x170/0x3f0 [ 28.033207] ? ntfs_readpage+0x1396/0x1ad0 [ 28.037419] down_read+0x36/0x80 [ 28.040761] ? ntfs_readpage+0x1396/0x1ad0 [ 28.044982] ntfs_readpage+0x1396/0x1ad0 [ 28.049023] ? __lru_cache_add+0x178/0x250 [ 28.053250] ? ntfs_end_buffer_async_read+0x10a0/0x10a0 [ 28.058605] ? add_to_page_cache_lru+0x136/0x2b0 [ 28.063346] ? add_to_page_cache_locked+0x40/0x40 [ 28.068174] ? alloc_pages_current+0x15d/0x260 [ 28.072740] do_read_cache_page+0x38e/0xc10 [ 28.077043] ? ntfs_end_buffer_async_read+0x10a0/0x10a0 [ 28.082385] ntfs_sync_mft_mirror+0x1f4/0x1560 [ 28.086945] ? ntfs_sync_mft_mirror+0x2b/0x1560 [ 28.091596] ? generic_make_request+0x850/0x850 [ 28.096247] ? guard_bio_eod+0x1ba/0x520 [ 28.100301] write_mft_record_nolock+0xece/0x1240 [ 28.105123] __ntfs_write_inode+0x58d/0xcc0 [ 28.109430] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.114911] __writeback_single_inode+0x6a4/0x1010 [ 28.119836] writeback_sb_inodes+0x48b/0xd30 [ 28.124227] ? wbc_detach_inode+0x780/0x780 [ 28.128620] ? queue_io+0x400/0x5a0 [ 28.132281] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.137712] wb_writeback+0x243/0xb80 [ 28.141499] ? writeback_inodes_wb.constprop.0+0x1a0/0x1a0 [ 28.147124] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.152643] wb_workfn+0x2bd/0xf50 [ 28.156164] ? process_one_work+0x6c4/0x14a0 [ 28.160554] ? inode_wait_for_writeback+0x30/0x30 [ 28.165372] ? lock_acquire+0x170/0x3f0 [ 28.169323] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 28.174751] process_one_work+0x793/0x14a0 [ 28.178967] ? work_busy+0x320/0x320 [ 28.182742] ? worker_thread+0x158/0xff0 [ 28.186779] ? _raw_spin_unlock_irq+0x24/0x80 [ 28.191252] worker_thread+0x5cc/0xff0 [ 28.195137] ? rescuer_thread+0xc80/0xc80 [ 28.199271] kthread+0x30d/0x420 [ 28.202631] ? kthread_create_on_node+0xd0/0xd0 [ 28.207282] ret_from_fork+0x24/0x30 [ 28.211605] ntfs: (device loop0): write_mft_record_nolock(): Failed to apply mst fixups! [ 28.219936] ntfs: (device loop0): __ntfs_write_inode(): Failed (error 22): Run chkdsk. [ 28.229241] ntfs: (devic