./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2811902453
<...>
Warning: Permanently added '10.128.0.103' (ED25519) to the list of known hosts.
execve("./syz-executor2811902453", ["./syz-executor2811902453"], 0x7fff0e2f08e0 /* 10 vars */) = 0
brk(NULL) = 0x555575358000
brk(0x555575358d00) = 0x555575358d00
arch_prctl(ARCH_SET_FS, 0x555575358380) = 0
set_tid_address(0x555575358650) = 5844
set_robust_list(0x555575358660, 24) = 0
rseq(0x555575358ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2811902453", 4096) = 28
getrandom("\x20\xd4\xd6\xfc\xac\x5a\x29\x90", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555575358d00
brk(0x555575379d00) = 0x555575379d00
brk(0x55557537a000) = 0x55557537a000
mprotect(0x7f91a2d34000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5846 attached
, child_tidptr=0x555575358650) = 5846
[pid 5846] set_robust_list(0x555575358660, 24) = 0
[pid 5846] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5846] setpgid(0, 0) = 0
[pid 5846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5846] write(3, "1000", 4) = 4
[pid 5846] close(3) = 0
[pid 5846] write(1, "executing program\n", 18executing program
) = 18
[pid 5846] socket(AF_INET6, SOCK_DCCP|SOCK_CLOEXEC|SOCK_NONBLOCK, IPPROTO_IP) = 3
[pid 5846] socket(AF_BLUETOOTH, SOCK_SEQPACKET, BTPROTO_SCO) = 4
[pid 5846] socket(AF_BLUETOOTH, SOCK_SEQPACKET, BTPROTO_SCO) = 5
[pid 5846] socket(AF_INET, SOCK_SEQPACKET, IPPROTO_SCTP) = 6
[pid 5846] getsockopt(6, SOL_SCTP, SCTP_AUTOCLOSE, [0], [4]) = 0
[pid 5846] listen(3, 536870917) = 0
[pid 5846] seccomp(SECCOMP_SET_MODE_FILTER, 0, NULL) = -1 EFAULT (Bad address)
[pid 5846] memfd_create("syzkaller", 0) = 7
[pid 5846] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f919a800000
[pid 5846] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 32768) = 32768
[pid 5846] munmap(0x7f919a800000, 138412032) = 0
[pid 5846] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 8
[pid 5846] ioctl(8, LOOP_SET_FD, 7) = 0
[pid 5846] close(7) = 0
[pid 5846] close(8) = 0
[pid 5846] mkdir("./file0", 0777) = 0
[pid 5846] mount("/dev/loop0", "./file0", "hfs", MS_DIRSYNC|MS_STRICTATIME|MS_LAZYTIME, "quiet,codepage=iso8859-15,part=0x0000000") = 0
[pid 5846] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 7
[pid 5846] chdir("./file0") = 0
[pid 5846] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5846] write(-1, NULL, 0) = -1 EBADF (Bad file descriptor)
[pid 5846] creat("./bus", 000) = 8
[ 61.611480][ T5846] loop0: detected capacity change from 0 to 64
[ 62.006946][ T5846]
[ 62.009314][ T5846] ============================================
[ 62.015447][ T5846] WARNING: possible recursive locking detected
[ 62.021609][ T5846] 6.12.0-rc5-next-20241101-syzkaller #0 Not tainted
[ 62.028450][ T5846] --------------------------------------------
[ 62.034584][ T5846] syz-executor281/5846 is trying to acquire lock:
[ 62.040981][ T5846] ffff8880349820b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x16e/0x1f0
[ 62.050322][ T5846]
[ 62.050322][ T5846] but task is already holding lock:
[ 62.057676][ T5846] ffff8880349820b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x16e/0x1f0
[ 62.066988][ T5846]
[ 62.066988][ T5846] other info that might help us debug this:
[ 62.075032][ T5846] Possible unsafe locking scenario:
[ 62.075032][ T5846]
[ 62.082468][ T5846] CPU0
[ 62.085734][ T5846] ----
[ 62.089093][ T5846] lock(&tree->tree_lock/1);
[ 62.093768][ T5846] lock(&tree->tree_lock/1);
[ 62.098441][ T5846]
[ 62.098441][ T5846] *** DEADLOCK ***
[ 62.098441][ T5846]
[ 62.106574][ T5846] May be due to missing lock nesting notation
[ 62.106574][ T5846]
[ 62.114898][ T5846] 5 locks held by syz-executor281/5846:
[ 62.120443][ T5846] #0: ffff888034f70420 (sb_writers#9){.+.+}-{0:0}, at: do_ftruncate+0x28b/0x580
[ 62.129607][ T5846] #1: ffff888034ce1620 (&sb->s_type->i_mutex_key#15){+.+.}-{4:4}, at: do_ftruncate+0x44e/0x580
[ 62.140053][ T5846] #2: ffff888034ce1478 (&HFS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xff/0x1450
[ 62.150747][ T5846] #3: ffff8880349820b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x16e/0x1f0
[ 62.160501][ T5846] #4: ffff888034ce00f8 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xff/0x1450
[ 62.171718][ T5846]
[ 62.171718][ T5846] stack backtrace:
[ 62.177611][ T5846] CPU: 0 UID: 0 PID: 5846 Comm: syz-executor281 Not tainted 6.12.0-rc5-next-20241101-syzkaller #0
[ 62.188182][ T5846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 62.198233][ T5846] Call Trace:
[ 62.201513][ T5846]
[ 62.204437][ T5846] dump_stack_lvl+0x241/0x360
[ 62.209119][ T5846] ? __pfx_dump_stack_lvl+0x10/0x10
[ 62.214307][ T5846] ? __pfx__printk+0x10/0x10
[ 62.218892][ T5846] ? lockdep_unlock+0x16a/0x300
[ 62.223739][ T5846] print_deadlock_bug+0x483/0x620
[ 62.228755][ T5846] validate_chain+0x15e2/0x5920
[ 62.233613][ T5846] ? mark_lock+0x9a/0x360
[ 62.237935][ T5846] ? __lock_acquire+0x1397/0x2100
[ 62.243007][ T5846] ? __pfx_validate_chain+0x10/0x10
[ 62.248231][ T5846] ? mark_lock+0x9a/0x360
[ 62.252573][ T5846] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 62.258650][ T5846] ? mark_lock+0x9a/0x360
[ 62.262976][ T5846] __lock_acquire+0x1397/0x2100
[ 62.267845][ T5846] lock_acquire+0x1ed/0x550
[ 62.272340][ T5846] ? hfs_find_init+0x16e/0x1f0
[ 62.277109][ T5846] ? __pfx_lock_acquire+0x10/0x10
[ 62.282129][ T5846] ? hfs_bmap_reserve+0xd9/0x400
[ 62.287054][ T5846] ? __hfs_ext_write_extent+0x22e/0x4f0
[ 62.292592][ T5846] ? __pfx___might_resched+0x10/0x10
[ 62.297870][ T5846] ? cont_write_begin+0x6e2/0x9d0
[ 62.302881][ T5846] ? hfs_write_begin+0x68/0xb0
[ 62.307641][ T5846] ? cont_write_begin+0x338/0x9d0
[ 62.312754][ T5846] ? hfs_write_begin+0x68/0xb0
[ 62.317516][ T5846] ? hfs_file_truncate+0x1ed/0xa20
[ 62.322619][ T5846] ? hfs_inode_setattr+0x458/0x620
[ 62.327723][ T5846] ? notify_change+0xbca/0xe90
[ 62.332478][ T5846] ? do_ftruncate+0x462/0x580
[ 62.337153][ T5846] ? __x64_sys_ftruncate+0x95/0xf0
[ 62.342258][ T5846] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 62.348325][ T5846] __mutex_lock+0x1ac/0xee0
[ 62.352819][ T5846] ? hfs_find_init+0x16e/0x1f0
[ 62.357581][ T5846] ? hfs_find_init+0x16e/0x1f0
[ 62.362339][ T5846] ? __pfx___mutex_lock+0x10/0x10
[ 62.367355][ T5846] ? rcu_is_watching+0x15/0xb0
[ 62.372119][ T5846] ? trace_kmalloc+0x1f/0xd0
[ 62.376703][ T5846] ? hfs_find_init+0x90/0x1f0
[ 62.381376][ T5846] hfs_find_init+0x16e/0x1f0
[ 62.385962][ T5846] hfs_extend_file+0x31b/0x1450
[ 62.390812][ T5846] ? __pfx_hfs_ext_keycmp+0x10/0x10
[ 62.396005][ T5846] ? __pfx_hfs_extend_file+0x10/0x10
[ 62.401282][ T5846] ? __pfx___hfs_brec_find+0x10/0x10
[ 62.406560][ T5846] ? do_raw_spin_unlock+0x13c/0x8b0
[ 62.411753][ T5846] ? hfs_brec_find+0x40f/0x580
[ 62.416599][ T5846] hfs_bmap_reserve+0xd9/0x400
[ 62.421364][ T5846] __hfs_ext_write_extent+0x22e/0x4f0
[ 62.426732][ T5846] __hfs_ext_cache_extent+0x6a/0x990
[ 62.432011][ T5846] ? hfs_find_init+0x16e/0x1f0
[ 62.436774][ T5846] hfs_extend_file+0x344/0x1450
[ 62.441621][ T5846] ? __pfx_hfs_extend_file+0x10/0x10
[ 62.446900][ T5846] ? clean_bdev_aliases+0x654/0x7e0
[ 62.452097][ T5846] ? __pfx_clean_bdev_aliases+0x10/0x10
[ 62.457636][ T5846] hfs_get_block+0x3e4/0xb60
[ 62.463181][ T5846] ? __pfx_hfs_get_block+0x10/0x10
[ 62.468287][ T5846] ? create_empty_buffers+0x53e/0x740
[ 62.473657][ T5846] __block_write_begin_int+0x50c/0x1a70
[ 62.479202][ T5846] ? __pfx_hfs_get_block+0x10/0x10
[ 62.484305][ T5846] ? __pfx___block_write_begin_int+0x10/0x10
[ 62.490281][ T5846] cont_write_begin+0x6e2/0x9d0
[ 62.495130][ T5846] ? __pfx_cont_write_begin+0x10/0x10
[ 62.500501][ T5846] hfs_write_begin+0x68/0xb0
[ 62.505083][ T5846] ? __pfx_hfs_get_block+0x10/0x10
[ 62.510190][ T5846] cont_write_begin+0x338/0x9d0
[ 62.515100][ T5846] ? __pfx_cont_write_begin+0x10/0x10
[ 62.520466][ T5846] hfs_write_begin+0x68/0xb0
[ 62.525052][ T5846] ? __pfx_hfs_get_block+0x10/0x10
[ 62.530156][ T5846] hfs_file_truncate+0x1ed/0xa20
[ 62.535086][ T5846] ? __pfx___up_read+0x10/0x10
[ 62.539846][ T5846] ? __pfx_hfs_file_truncate+0x10/0x10
[ 62.545296][ T5846] ? unmap_mapping_range+0xf8/0x290
[ 62.550492][ T5846] ? __pfx_unmap_mapping_range+0x10/0x10
[ 62.556119][ T5846] ? pagecache_isize_extended+0x14c/0x2a0
[ 62.561827][ T5846] ? truncate_setsize+0xcf/0xf0
[ 62.566686][ T5846] hfs_inode_setattr+0x458/0x620
[ 62.571623][ T5846] ? security_inode_setattr+0xdb/0x350
[ 62.577072][ T5846] ? __pfx_hfs_inode_setattr+0x10/0x10
[ 62.582528][ T5846] notify_change+0xbca/0xe90
[ 62.587110][ T5846] do_ftruncate+0x462/0x580
[ 62.591613][ T5846] ? lockdep_hardirqs_on+0x99/0x150
[ 62.596811][ T5846] ? __pfx_do_ftruncate+0x10/0x10
[ 62.601831][ T5846] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 62.608159][ T5846] __x64_sys_ftruncate+0x95/0xf0
[ 62.613098][ T5846] do_syscall_64+0xf3/0x230
[ 62.617591][ T5846] ? clear_bhb_loop+0x35/0x90
[ 62.622264][ T5846] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 62.628158][ T5846] RIP: 0033:0x7f91a2cc0b99
[ 62.632573][ T5846] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 62.652182][ T5846] RSP: 002b:00007ffdb409ed68 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[ 62.660601][ T5846] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f91a2cc0b99
[ 62.668569][ T5846] RDX: 00007f91a2cc0b99 RSI: 0000000008208200 RDI: 0000000000000008
[ 62.676531][ T5846] RBP: 00007f91a2d345f0 R08: 00005555753594c0 R09: 00005555753594c0
[ 62.684493][ T5846] R10: 00005555753594c0 R11: 0000000000000246 R12: 00007ffdb409ed90
[ 62.692454][ T5846] R13: 00007ffdb409efb8 R14: 431bde82d7b634db R15: 00007f91a2d0903b
[ 62.700435][ T5846]
[pid 5846] ftruncate(8, 136348160
[pid 5844] kill(-5846, SIGKILL) = 0
[pid 5844] kill(5846, SIGKILL) = 0
[ 66.726389][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.726389][ T70] loop0: rw=1048577, sector=65, nr_sectors = 1 limit=64
[ 66.740097][ T70] Buffer I/O error on dev loop0, logical block 65, lost async page write
[ 66.748606][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.748606][ T70] loop0: rw=1048577, sector=66, nr_sectors = 1 limit=64
[ 66.762267][ T70] Buffer I/O error on dev loop0, logical block 66, lost async page write
[ 66.770758][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.770758][ T70] loop0: rw=1048577, sector=67, nr_sectors = 1 limit=64
[ 66.784454][ T70] Buffer I/O error on dev loop0, logical block 67, lost async page write
[ 66.792956][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.792956][ T70] loop0: rw=1048577, sector=68, nr_sectors = 1 limit=64
[ 66.806634][ T70] Buffer I/O error on dev loop0, logical block 68, lost async page write
[ 66.815094][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.815094][ T70] loop0: rw=1048577, sector=72, nr_sectors = 1 limit=64
[ 66.828762][ T70] Buffer I/O error on dev loop0, logical block 72, lost async page write
[ 66.837308][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.837308][ T70] loop0: rw=1048577, sector=73, nr_sectors = 1 limit=64
[ 66.850979][ T70] Buffer I/O error on dev loop0, logical block 73, lost async page write
[ 66.859445][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.859445][ T70] loop0: rw=1048577, sector=76, nr_sectors = 1 limit=64
[ 66.873118][ T70] Buffer I/O error on dev loop0, logical block 76, lost async page write
[ 66.881633][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.881633][ T70] loop0: rw=1048577, sector=77, nr_sectors = 1 limit=64
[ 66.895318][ T70] Buffer I/O error on dev loop0, logical block 77, lost async page write
[ 66.906012][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.906012][ T70] loop0: rw=1048577, sector=78, nr_sectors = 4088 limit=64
[ 66.920759][ T70] kworker/u8:4: attempt to access beyond end of device
[ 66.920759][ T70] loop0: rw=1048577, sector=4166, nr_sectors = 1 limit=64
[ 66.934603][ T70] Buffer I/O error on dev loop0, logical block 4166, lost async page write
[ 66.943310][ T70] Buffer I/O error on dev loop0, logical block 4167, lost async page write
[pid 5844] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid 5844] getdents64(3, 0x5555753596f0 /* 2 entries */, 32768) = 48
[pid 5844] getdents64(3, 0x5555753596f0 /* 0 entries */, 32768) = 0
[pid 5844] close(3) = 0