program:
syz_mount_image$nilfs2(&(0x7f0000000a40), &(0x7f0000000200)='./bus\x00', 0x10, &(0x7f0000000480)=ANY=[], 0x5, 0xa5a, &(0x7f0000001b40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r6, 0x40106e8c, &(0x7f0000000080)={@id={0x20000000, 0x0, @auto="001e0000000000001baeff79da3b89f5"}})
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000280))
r7 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r7, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
bind$tipc(r7, &(0x7f0000000100)=@name={0x1e, 0x2, 0x3, {{0x42}}}, 0x10)
bind$tipc(r0, &(0x7f00000002c0)=@nameseq={0x1e, 0x1, 0x3, {0x2, 0x2, 0x1}}, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r8=>0x0})
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000b00)={[{@user_xattr}, {@nodioread_nolock}, {@nodelalloc}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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")
r9 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1ff)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xbc, 0x2, 0x0, 0x0, 0x0, 0x5, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0x80, 0x1ff}, 0x84, 0x2, 0x0, 0x4, 0x0, 0xfffbfffd, 0x6, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x17, 0x11, r9, 0x0)
getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f00000000c0), &(0x7f0000000140)=0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b04, 0x0)
sendmsg$NL80211_CMD_REGISTER_FRAME(r10, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="d9c4f57a", @ANYRES16=r5, @ANYBLOB="010003000000000000003a00000008000300", @ANYRES32=r8, @ANYBLOB="04005b000600650040000000"], 0x28}}, 0x0)
r11 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r11, &(0x7f0000000600)={0x0, 0x4, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
clock_adjtime(0x0, &(0x7f0000000b40)={0x7fffffff, 0x1, 0xf1, 0x9, 0xa00, 0x1, 0x100000001, 0x95c, 0x0, 0x7ffffffd, 0x6, 0x100000000, 0x3, 0x6, 0xd0d4, 0x5, 0x1, 0x1, 0xa3f8, 0x3ff, 0x7fff, 0x3, 0x6, 0x101, 0x2, 0x8})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x100, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_DQ_RATE_ESTIMATOR={0x8, 0xc, 0x1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4006001}, 0x0)
ftruncate(r0, 0xc17a)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f00000003c0)=ANY=[@ANYBLOB="0300010000000000050000000000000004000000000000000000feff000000007325d0e3ec174eb2f3db870feec0017e7068c59b90223b41f45e25700c5c994b1a2c6faa5b33f999959a14b2b3f6f38552afa577d7f1756a2de38ba5fbfb4647eaab081ba147ec410f2bcc43ccbf08c2ac578d14efce205e090fc1168054544ba35240471afd73790d8335fac197f2f22890ae29c3f81614d13ac4abf910f5c50add87990269753785edaa6fe9866bfad0620d39dda7cb462148edd1c872c5c65e8175f2130a3736954868f6bc9b89a78f4e8836fc872b7eae606c5860e27a151a33bb8688fc6e46c2d6e5c848fd1dfcfff7fb69872a80ea5ad5acf661a311ddfdbf3eef2bf70b62b1c662bf0e6b"])

[   68.951735][ T5296] Bluetooth: hci0: command tx timeout
[   69.041581][ T5310] loop0: detected capacity change from 0 to 2048
[   69.082978][ T5310] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[   69.089657][ T5291] udevd[5291]: incorrect nilfs2 checksum on /dev/loop0
[   69.106602][ T5291] udevd[5291]: incorrect nilfs2 checksum on /dev/loop0
[   69.120056][ T5312] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   69.157047][   T25] audit: type=1800 audit(1746364511.777:2): pid=5310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=15 res=0 errno=0
[   69.173477][   T25] audit: type=1800 audit(1746364511.797:3): pid=5310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="file1" dev="loop0" ino=15 res=0 errno=0
[   69.189131][ T5310] netlink: 'syz.0.0': attribute type 10 has an invalid length.
[   69.207613][ T5310] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   69.231344][ T5312] 
[   69.232469][ T5312] ======================================================
[   69.235471][ T5312] WARNING: possible circular locking dependency detected
[   69.238498][ T5312] 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 Not tainted
[   69.241632][ T5312] ------------------------------------------------------
[   69.244754][ T5312] segctord/5312 is trying to acquire lock:
[   69.247372][ T5312] ffff8880522cc090 (&nilfs->ns_sem){++++}-{4:4}, at: nilfs_segctor_construct+0x2b1/0x690
[   69.251726][ T5312] 
[   69.251726][ T5312] but task is already holding lock:
[   69.254840][ T5312] ffff8880522cc2a0 (&nilfs->ns_segctor_sem){++++}-{4:4}, at: nilfs_transaction_lock+0x253/0x4c0
[   69.259041][ T5312] 
[   69.259041][ T5312] which lock already depends on the new lock.
[   69.259041][ T5312] 
[   69.263401][ T5312] 
[   69.263401][ T5312] the existing dependency chain (in reverse order) is:
[   69.267251][ T5312] 
[   69.267251][ T5312] -> #5 (&nilfs->ns_segctor_sem){++++}-{4:4}:
[   69.270882][ T5312]        lock_acquire+0x120/0x360
[   69.273078][ T5312]        down_read+0x46/0x2e0
[   69.275137][ T5312]        nilfs_transaction_begin+0x365/0x710
[   69.277698][ T5312]        nilfs_create+0xc9/0x2f0
[   69.279934][ T5312]        path_openat+0x14f1/0x3830
[   69.282179][ T5312]        do_filp_open+0x1fa/0x410
[   69.284358][ T5312]        do_sys_openat2+0x121/0x1c0
[   69.286611][ T5312]        __x64_sys_openat+0x138/0x170
[   69.288900][ T5312]        do_syscall_64+0xf6/0x210
[   69.292150][ T5312]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.295017][ T5312] 
[   69.295017][ T5312] -> #4 (sb_internal#2){.+.+}-{0:0}:
[   69.298243][ T5312]        lock_acquire+0x120/0x360
[   69.300492][ T5312]        nilfs_transaction_begin+0x268/0x710
[   69.303194][ T5312]        nilfs_page_mkwrite+0x8b0/0xc20
[   69.305648][ T5312]        do_page_mkwrite+0x14a/0x310
[   69.308047][ T5312]        __handle_mm_fault+0x18d2/0x5380
[   69.310575][ T5312]        handle_mm_fault+0x3f6/0x8c0
[   69.312880][ T5312]        do_user_addr_fault+0x764/0x1390
[   69.315364][ T5312]        exc_page_fault+0x68/0x110
[   69.317630][ T5312]        asm_exc_page_fault+0x26/0x30
[   69.320088][ T5312] 
[   69.320088][ T5312] -> #3 (sb_pagefaults){.+.+}-{0:0}:
[   69.323319][ T5312]        lock_acquire+0x120/0x360
[   69.325576][ T5312]        nilfs_page_mkwrite+0x21e/0xc20
[   69.328038][ T5312]        do_page_mkwrite+0x14a/0x310
[   69.330365][ T5312]        __handle_mm_fault+0x18d2/0x5380
[   69.332873][ T5312]        handle_mm_fault+0x3f6/0x8c0
[   69.335110][ T5312]        do_user_addr_fault+0x764/0x1390
[   69.337391][ T5312]        exc_page_fault+0x68/0x110
[   69.339657][ T5312]        asm_exc_page_fault+0x26/0x30
[   69.342033][ T5312] 
[   69.342033][ T5312] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[   69.345350][ T5312]        lock_acquire+0x120/0x360
[   69.347591][ T5312]        __might_fault+0xcc/0x130
[   69.349769][ T5312]        _copy_to_iter+0xf3/0x15a0
[   69.352010][ T5312]        copy_page_to_iter+0xa7/0x150
[   69.354315][ T5312]        filemap_read+0x78d/0x11d0
[   69.356514][ T5312]        blkdev_read_iter+0x30a/0x440
[   69.358818][ T5312]        vfs_read+0x4cd/0x980
[   69.360881][ T5312]        ksys_read+0x145/0x250
[   69.362950][ T5312]        do_syscall_64+0xf6/0x210
[   69.365088][ T5312]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.367818][ T5312] 
[   69.367818][ T5312] -> #1 (&sb->s_type->i_mutex_key#8){++++}-{4:4}:
[   69.371399][ T5312]        lock_acquire+0x120/0x360
[   69.373620][ T5312]        down_write+0x96/0x1f0
[   69.375746][ T5312]        set_blocksize+0x23b/0x500
[   69.377945][ T5312]        sb_min_blocksize+0x119/0x210
[   69.380235][ T5312]        init_nilfs+0x43/0x690
[   69.382268][ T5312]        nilfs_fill_super+0x8f/0x650
[   69.384504][ T5312]        nilfs_get_tree+0x4f4/0x870
[   69.386701][ T5312]        vfs_get_tree+0x8f/0x2b0
[   69.388900][ T5312]        do_new_mount+0x24a/0xa40
[   69.391053][ T5312]        __se_sys_mount+0x317/0x410
[   69.393182][ T5312]        do_syscall_64+0xf6/0x210
[   69.395354][ T5312]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.398000][ T5312] 
[   69.398000][ T5312] -> #0 (&nilfs->ns_sem){++++}-{4:4}:
[   69.401178][ T5312]        validate_chain+0xb9b/0x2140
[   69.403344][ T5312]        __lock_acquire+0xaac/0xd20
[   69.405572][ T5312]        lock_acquire+0x120/0x360
[   69.407731][ T5312]        down_write+0x96/0x1f0
[   69.409736][ T5312]        nilfs_segctor_construct+0x2b1/0x690
[   69.412224][ T5312]        nilfs_segctor_thread+0x6f7/0xe00
[   69.414533][ T5312]        kthread+0x70e/0x8a0
[   69.416474][ T5312]        ret_from_fork+0x4b/0x80
[   69.418616][ T5312]        ret_from_fork_asm+0x1a/0x30
[   69.420835][ T5312] 
[   69.420835][ T5312] other info that might help us debug this:
[   69.420835][ T5312] 
[   69.425205][ T5312] Chain exists of:
[   69.425205][ T5312]   &nilfs->ns_sem --> sb_internal#2 --> &nilfs->ns_segctor_sem
[   69.425205][ T5312] 
[   69.430718][ T5312]  Possible unsafe locking scenario:
[   69.430718][ T5312] 
[   69.433745][ T5312]        CPU0                    CPU1
[   69.435932][ T5312]        ----                    ----
[   69.438198][ T5312]   lock(&nilfs->ns_segctor_sem);
[   69.440337][ T5312]                                lock(sb_internal#2);
[   69.443196][ T5312]                                lock(&nilfs->ns_segctor_sem);
[   69.446488][ T5312]   lock(&nilfs->ns_sem);
[   69.448366][ T5312] 
[   69.448366][ T5312]  *** DEADLOCK ***
[   69.448366][ T5312] 
[   69.451850][ T5312] 1 lock held by segctord/5312:
[   69.453864][ T5312]  #0: ffff8880522cc2a0 (&nilfs->ns_segctor_sem){++++}-{4:4}, at: nilfs_transaction_lock+0x253/0x4c0
[   69.458394][ T5312] 
[   69.458394][ T5312] stack backtrace:
[   69.460941][ T5312] CPU: 0 UID: 0 PID: 5312 Comm: segctord Not tainted 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 PREEMPT(full) 
[   69.460962][ T5312] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.460974][ T5312] Call Trace:
[   69.461001][ T5312]  <TASK>
[   69.461007][ T5312]  dump_stack_lvl+0x189/0x250
[   69.461026][ T5312]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.461039][ T5312]  ? __pfx__printk+0x10/0x10
[   69.461049][ T5312]  ? print_lock_name+0xde/0x100
[   69.461064][ T5312]  print_circular_bug+0x2ee/0x310
[   69.461076][ T5312]  check_noncircular+0x134/0x160
[   69.461087][ T5312]  validate_chain+0xb9b/0x2140
[   69.461102][ T5312]  __lock_acquire+0xaac/0xd20
[   69.461115][ T5312]  ? nilfs_segctor_construct+0x2b1/0x690
[   69.461128][ T5312]  lock_acquire+0x120/0x360
[   69.461140][ T5312]  ? nilfs_segctor_construct+0x2b1/0x690
[   69.461152][ T5312]  ? do_raw_spin_lock+0x121/0x290
[   69.461164][ T5312]  down_write+0x96/0x1f0
[   69.461232][ T5312]  ? nilfs_segctor_construct+0x2b1/0x690
[   69.461246][ T5312]  ? __pfx_down_write+0x10/0x10
[   69.461258][ T5312]  ? do_raw_spin_unlock+0x4d/0x240
[   69.461270][ T5312]  ? _raw_spin_unlock+0x28/0x50
[   69.461280][ T5312]  ? nilfs_segctor_confirm+0x24e/0x2d0
[   69.461295][ T5312]  nilfs_segctor_construct+0x2b1/0x690
[   69.461329][ T5312]  nilfs_segctor_thread+0x6f7/0xe00
[   69.461348][ T5312]  ? __pfx_nilfs_segctor_thread+0x10/0x10
[   69.461360][ T5312]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   69.461372][ T5312]  ? __pfx_autoremove_wake_function+0x10/0x10
[   69.461384][ T5312]  ? __kthread_parkme+0x7b/0x200
[   69.461395][ T5312]  ? __kthread_parkme+0x1a1/0x200
[   69.461406][ T5312]  kthread+0x70e/0x8a0
[   69.461418][ T5312]  ? __pfx_nilfs_segctor_thread+0x10/0x10
[   69.461430][ T5312]  ? __pfx_kthread+0x10/0x10
[   69.461441][ T5312]  ? __pfx_kthread+0x10/0x10
[   69.461452][ T5312]  ? _raw_spin_unlock_irq+0x23/0x50
[   69.461462][ T5312]  ? lockdep_hardirqs_on+0x9c/0x150
[   69.461474][ T5312]  ? __pfx_kthread+0x10/0x10
[   69.461485][ T5312]  ret_from_fork+0x4b/0x80
[   69.461495][ T5312]  ? __pfx_kthread+0x10/0x10
[   69.461506][ T5312]  ret_from_fork_asm+0x1a/0x30
[   69.461520][ T5312]  </TASK>
[   69.566132][ T5310] syz.0.0 (5310) used greatest stack depth: 20232 bytes left