program:
syz_mount_image$bfs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x0, &(0x7f0000002500)=ANY=[@ANYBLOB="9fcef773371e4e035a4ff190bea4efd68642046c23be8a9aae70a0043860f98931e9a9d2a4cb9b6cbfab8d88542eafc9851179a8bc28dad0fbfc05804b2b"], 0x1, 0x8a, &(0x7f0000000180)="$eJzszqENAkEUBNDhDKhrAEEH1wOlECQ4FISEimiFEugAgcUcYsGsxCy5vJf8n0zGzO11XaZPxksyVg7H026zLz9MUpdknmSRZNWX/FiXbvbp78/z9nut9wIAAL/rMtR5aDYGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4A+9AwAA///rYCNS")
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = openat$binfmt_register(0xffffff9c, &(0x7f0000001240), 0x1, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0)
rename(&(0x7f00000001c0)='./bus\x00', &(0x7f0000000240)='./file0\x00')
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4243c, &(0x7f0000000a00)=ANY=[@ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES8, @ANYRESOCT=0x0, @ANYBLOB="defdd6f24cb9acb7fe0b0dc92a093135912ebef426731ffe88138f2b03791edb32e2ba3924188f2c07da77a1d75290af3db49e3aeedbaabdfc897ff5feb67e05cb1f923278506034c99285994c8d2a07e7732f9e4666bedc57efbc75eda531e10945eab9810dce4df5cb4468fee9df15bad908ce6d2cf900c4541ebe94681428ac2202f0132ddfd00bb4d24ace8c513914431814c2", @ANYRES32, @ANYRESOCT, @ANYRES16, @ANYRESOCT], 0x0, 0x0, &(0x7f0000000000))
write$binfmt_register(r0, &(0x7f0000000200)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0xf0, 0x3a, 'Jat\xd6\xd0\xa7\xea\xf9\xd8j\xf1\xd7cow', 0x3a, '\\-%#!\\\\\'', 0x3a, './file0', 0x3a, [0x46]}, 0x3f)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000cc0)='.\x00', 0x821, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000cc0)) (fail_nth: 15)

[   71.043412][   T48] Bluetooth: hci0: command tx timeout
[   72.014605][ T5108] loop0: detected capacity change from 0 to 64
[   72.113557][ T5108] 
[   72.114587][ T5108] ======================================================
[   72.117350][ T5108] WARNING: possible circular locking dependency detected
[   72.120813][ T5108] 6.12.0-rc3-syzkaller-00087-gc964ced77262 #0 Not tainted
[   72.124206][ T5108] ------------------------------------------------------
[   72.126939][ T5108] syz.0.0/5108 is trying to acquire lock:
[   72.129221][ T5108] ffffffff8ea37160 (fs_reclaim){+.+.}-{0:0}, at: kmem_cache_alloc_lru_noprof+0x42/0x2b0
[   72.133461][ T5108] 
[   72.133461][ T5108] but task is already holding lock:
[   72.137130][ T5108] ffff88803d4476d8 (&info->bfs_lock){+.+.}-{3:3}, at: bfs_lookup+0x139/0x270
[   72.142844][ T5108] 
[   72.142844][ T5108] which lock already depends on the new lock.
[   72.142844][ T5108] 
[   72.147506][ T5108] 
[   72.147506][ T5108] the existing dependency chain (in reverse order) is:
[   72.152259][ T5108] 
[   72.152259][ T5108] -> #1 (&info->bfs_lock){+.+.}-{3:3}:
[   72.155861][ T5108]        lock_acquire+0x1ed/0x550
[   72.158144][ T5108]        __mutex_lock+0x136/0xd70
[   72.160385][ T5108]        bfs_evict_inode+0x272/0x510
[   72.162457][ T5108]        evict+0x4e8/0x9b0
[   72.164873][ T5108]        __dentry_kill+0x20d/0x630
[   72.168090][ T5108]        shrink_kill+0xa9/0x2c0
[   72.170656][ T5108]        shrink_dentry_list+0x2c0/0x5b0
[   72.172891][ T5108]        prune_dcache_sb+0x10f/0x180
[   72.174961][ T5108]        super_cache_scan+0x34f/0x4b0
[   72.177126][ T5108]        do_shrink_slab+0x701/0x1160
[   72.179089][ T5108]        shrink_slab+0x1093/0x14d0
[   72.180815][ T5108]        shrink_one+0x43b/0x850
[   72.182536][ T5108]        shrink_node+0x3799/0x3de0
[   72.184615][ T5108]        kswapd+0x1ca3/0x3700
[   72.186440][ T5108]        kthread+0x2f0/0x390
[   72.188249][ T5108]        ret_from_fork+0x4b/0x80
[   72.190219][ T5108]        ret_from_fork_asm+0x1a/0x30
[   72.192470][ T5108] 
[   72.192470][ T5108] -> #0 (fs_reclaim){+.+.}-{0:0}:
[   72.196442][ T5108]        validate_chain+0x18ef/0x5920
[   72.199542][ T5108]        __lock_acquire+0x1384/0x2050
[   72.201812][ T5108]        lock_acquire+0x1ed/0x550
[   72.203832][ T5108]        fs_reclaim_acquire+0x88/0x130
[   72.206035][ T5108]        kmem_cache_alloc_lru_noprof+0x42/0x2b0
[   72.208511][ T5108]        bfs_alloc_inode+0x28/0x40
[   72.210614][ T5108]        alloc_inode+0x65/0x1a0
[   72.212888][ T5108]        iget_locked+0xf1/0x5a0
[   72.215193][ T5108]        bfs_iget+0x28/0xac0
[   72.217300][ T5108]        bfs_lookup+0x1ca/0x270
[   72.219502][ T5108]        path_openat+0x11a7/0x3590
[   72.221705][ T5108]        do_filp_open+0x235/0x490
[   72.223672][ T5108]        open_exec+0xc0/0x2b0
[   72.225574][ T5108]        bm_register_write+0xc1c/0x15e0
[   72.227480][ T5108]        vfs_write+0x29c/0xc90
[   72.229018][ T5108]        ksys_write+0x183/0x2b0
[   72.231444][ T5108]        do_syscall_64+0xf3/0x230
[   72.234433][ T5108]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.237409][ T5108] 
[   72.237409][ T5108] other info that might help us debug this:
[   72.237409][ T5108] 
[   72.241196][ T5108]  Possible unsafe locking scenario:
[   72.241196][ T5108] 
[   72.243854][ T5108]        CPU0                    CPU1
[   72.245705][ T5108]        ----                    ----
[   72.247667][ T5108]   lock(&info->bfs_lock);
[   72.249374][ T5108]                                lock(fs_reclaim);
[   72.251949][ T5108]                                lock(&info->bfs_lock);
[   72.255100][ T5108]   lock(fs_reclaim);
[   72.256815][ T5108] 
[   72.256815][ T5108]  *** DEADLOCK ***
[   72.256815][ T5108] 
[   72.260196][ T5108] 4 locks held by syz.0.0/5108:
[   72.262034][ T5108]  #0: ffff88801cf42ef8 (&f->f_pos_lock){+.+.}-{3:3}, at: fdget_pos+0x24e/0x320
[   72.265358][ T5108]  #1: ffff888012758420 (sb_writers#10){.+.+}-{0:0}, at: vfs_write+0x224/0xc90
[   72.269968][ T5108]  #2: ffff888012eb4160 (&type->i_mutex_dir_key#7){++++}-{3:3}, at: path_openat+0x88b/0x3590
[   72.274149][ T5108]  #3: ffff88803d4476d8 (&info->bfs_lock){+.+.}-{3:3}, at: bfs_lookup+0x139/0x270
[   72.277835][ T5108] 
[   72.277835][ T5108] stack backtrace:
[   72.280190][ T5108] CPU: 0 UID: 0 PID: 5108 Comm: syz.0.0 Not tainted 6.12.0-rc3-syzkaller-00087-gc964ced77262 #0
[   72.284232][ T5108] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.288780][ T5108] Call Trace:
[   72.290512][ T5108]  <TASK>
[   72.291885][ T5108]  dump_stack_lvl+0x241/0x360
[   72.293887][ T5108]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.295911][ T5108]  ? __pfx__printk+0x10/0x10
[   72.297448][ T5108]  print_circular_bug+0x13a/0x1b0
[   72.299311][ T5108]  check_noncircular+0x36a/0x4a0
[   72.301215][ T5108]  ? __pfx_check_noncircular+0x10/0x10
[   72.303490][ T5108]  ? lockdep_lock+0x123/0x2b0
[   72.305750][ T5108]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   72.308838][ T5108]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   72.311827][ T5108]  validate_chain+0x18ef/0x5920
[   72.313657][ T5108]  ? finish_task_switch+0x1e5/0x870
[   72.315400][ T5108]  ? __pfx_validate_chain+0x10/0x10
[   72.317181][ T5108]  ? __pfx_validate_chain+0x10/0x10
[   72.319144][ T5108]  ? __pfx___schedule+0x10/0x10
[   72.321254][ T5108]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   72.323862][ T5108]  ? mark_lock+0x9a/0x360
[   72.325937][ T5108]  ? mark_lock+0x9a/0x360
[   72.327729][ T5108]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   72.330171][ T5108]  __lock_acquire+0x1384/0x2050
[   72.332028][ T5108]  lock_acquire+0x1ed/0x550
[   72.334043][ T5108]  ? kmem_cache_alloc_lru_noprof+0x42/0x2b0
[   72.336448][ T5108]  ? __pfx_lock_acquire+0x10/0x10
[   72.338600][ T5108]  ? fs_reclaim_acquire+0x93/0x130
[   72.340709][ T5108]  ? find_inode_fast+0xce/0x480
[   72.342602][ T5108]  ? __pfx_lock_release+0x10/0x10
[   72.344506][ T5108]  ? bfs_alloc_inode+0x28/0x40
[   72.346337][ T5108]  fs_reclaim_acquire+0x88/0x130
[   72.348086][ T5108]  ? kmem_cache_alloc_lru_noprof+0x42/0x2b0
[   72.350712][ T5108]  kmem_cache_alloc_lru_noprof+0x42/0x2b0
[   72.353380][ T5108]  bfs_alloc_inode+0x28/0x40
[   72.355516][ T5108]  ? __pfx_bfs_alloc_inode+0x10/0x10
[   72.357847][ T5108]  alloc_inode+0x65/0x1a0
[   72.359608][ T5108]  iget_locked+0xf1/0x5a0
[   72.361273][ T5108]  ? bfs_find_entry+0x297/0x3f0
[   72.363142][ T5108]  bfs_iget+0x28/0xac0
[   72.364807][ T5108]  bfs_lookup+0x1ca/0x270
[   72.366769][ T5108]  ? __d_lookup+0x706/0x7b0
[   72.369205][ T5108]  ? __pfx_bfs_lookup+0x10/0x10
[   72.371572][ T5108]  ? __pfx_bfs_lookup+0x10/0x10
[   72.373484][ T5108]  path_openat+0x11a7/0x3590
[   72.375060][ T5108]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[   72.376881][ T5108]  ? __pfx_path_openat+0x10/0x10
[   72.378570][ T5108]  ? getname_kernel+0x59/0x2f0
[   72.380426][ T5108]  do_filp_open+0x235/0x490
[   72.382266][ T5108]  ? __pfx_do_filp_open+0x10/0x10
[   72.385114][ T5108]  ? getname_kernel+0x59/0x2f0
[   72.388119][ T5108]  ? rcu_is_watching+0x15/0xb0
[   72.390218][ T5108]  ? getname_kernel+0x59/0x2f0
[   72.392230][ T5108]  ? getname_kernel+0x140/0x2f0
[   72.394092][ T5108]  ? open_exec+0xb0/0x2b0
[   72.395690][ T5108]  open_exec+0xc0/0x2b0
[   72.397157][ T5108]  ? __pfx_open_exec+0x10/0x10
[   72.399057][ T5108]  ? __might_fault+0xc6/0x120
[   72.400825][ T5108]  bm_register_write+0xc1c/0x15e0
[   72.402593][ T5108]  ? __pfx_bm_register_write+0x10/0x10
[   72.404520][ T5108]  vfs_write+0x29c/0xc90
[   72.406135][ T5108]  ? kmem_cache_free+0x1a2/0x420
[   72.408512][ T5108]  ? __pfx_vfs_write+0x10/0x10
[   72.410740][ T5108]  ? __fget_files+0x3f3/0x470
[   72.412861][ T5108]  ? fdget_pos+0x24e/0x320
[   72.414625][ T5108]  ksys_write+0x183/0x2b0
[   72.416395][ T5108]  ? __pfx_ksys_write+0x10/0x10
[   72.418186][ T5108]  ? do_syscall_64+0x100/0x230
[   72.419942][ T5108]  ? do_syscall_64+0xb6/0x230
[   72.421887][ T5108]  do_syscall_64+0xf3/0x230
[   72.423688][ T5108]  ? clear_bhb_loop+0x35/0x90
[   72.426025][ T5108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.428825][ T5108] RIP: 0033:0x7fc7d8f7dff9
[   72.430697][ T5108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.437850][ T5108] RSP: 002b:00007fc7d9d56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   72.441042][ T5108] RAX: ffffffffffffffda RBX: 00007fc7d9135f80 RCX: 00007fc7d8f7dff9
[   72.445201][ T5108] RDX: 000000000000003f RSI: 0000000020000200 RDI: 0000000000000004
[   72.448654][ T5108] RBP: 00007fc7d8ff0296 R08: 0000000000000000 R09: 0000000000000000
[   72.451727][ T5108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   72.454772][ T5108] R13: 0000000000000000 R14: 00007fc7d9135f80 R15: 00007ffe5d748038
[   72.458162][ T5108]  </TASK>
[   72.712083][ T5109] FAULT_INJECTION: forcing a failure.
[   72.712083][ T5109] name failslab, interval 1, probability 0, space 0, times 1
[   72.716864][ T5109] CPU: 0 UID: 0 PID: 5109 Comm: syz.0.0 Not tainted 6.12.0-rc3-syzkaller-00087-gc964ced77262 #0
[   72.720998][ T5109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.726260][ T5109] Call Trace:
[   72.727593][ T5109]  <TASK>
[   72.728673][ T5109]  dump_stack_lvl+0x241/0x360
[   72.730375][ T5109]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.732360][ T5109]  ? __pfx__printk+0x10/0x10
[   72.734142][ T5109]  ? __pfx___might_resched+0x10/0x10
[   72.736253][ T5109]  ? rcu_is_watching+0x15/0xb0
[   72.738926][ T5109]  should_fail_ex+0x3b0/0x4e0
[   72.741373][ T5109]  ? getname_flags+0xb7/0x540
[   72.743332][ T5109]  should_failslab+0xac/0x100
[   72.745164][ T5109]  ? getname_flags+0xb7/0x540
[   72.746990][ T5109]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   72.748754][ T5109]  getname_flags+0xb7/0x540
[   72.750511][ T5109]  do_sys_openat2+0xd2/0x1d0
[   72.752768][ T5109]  ? __might_fault+0xaa/0x120
[   72.755318][ T5109]  ? __pfx_do_sys_openat2+0x10/0x10
[   72.757425][ T5109]  ? rcu_is_watching+0x15/0xb0
[   72.759300][ T5109]  ? __rseq_handle_notify_resume+0x353/0x14e0
[   72.761347][ T5109]  __x64_sys_openat+0x247/0x2a0
[   72.763154][ T5109]  ? __pfx___x64_sys_openat+0x10/0x10
[   72.765211][ T5109]  ? rcu_is_watching+0x15/0xb0
[   72.767868][ T5109]  ? rcu_is_watching+0x15/0xb0
[   72.770574][ T5109]  ? rcu_is_watching+0x15/0xb0
[   72.772649][ T5109]  do_syscall_64+0xf3/0x230
[   72.774442][ T5109]  ? clear_bhb_loop+0x35/0x90
[   72.776278][ T5109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.778705][ T5109] RIP: 0033:0x7fc7d8f7c990
[   72.780562][ T5109] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[   72.788712][ T5109] RSP: 002b:00007fc7d9d34df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   72.792183][ T5109] RAX: ffffffffffffffda RBX: 0000000000010000 RCX: 00007fc7d8f7c990
[   72.795409][ T5109] RDX: 0000000000010000 RSI: 0000000020000cc0 RDI: 00000000ffffff9c
[   72.798915][ T5109] RBP: 0000000020000cc0 R08: 0000000000000000 R09: 0000000000000821
[   72.803126][ T5109] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000020000cc0
[   72.806882][ T5109] R13: 00007fc7d9d34eb0 R14: 0000000000000000 R15: 00000000200008c0
[   72.810046][ T5109]  </TASK>
[   72.961847][ T5108] binfmt_misc: register: failed to install interpreter file ./file0