program: r0 = syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x400, &(0x7f0000000140)=ANY=[], 0x1, 0x694, &(0x7f0000001100)="$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") r1 = creat(&(0x7f0000000000)='./bus\x00', 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) io_submit(r2, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x70000}]) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) r4 = fanotify_init(0x8, 0x0) r5 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r4, 0x1, 0x40001019, r5, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) fanotify_mark(r1, 0x38, 0x800081b, r0, &(0x7f0000000180)='./file1\x00') ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0) sendmsg$IPCTNL_MSG_CT_GET(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x9c, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x44, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4041}, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000009880)={0x98, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x98}, 0x1, 0x0, 0x0, 0x400c080}, 0x0) r8 = open(&(0x7f00000003c0)='./file1\x00', 0x14127e, 0x2) fallocate(r8, 0x1, 0x7fff, 0x8) sendmsg$nl_xfrm(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000002c0)=@updsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in=@local}, {@in6=@private1, 0x0, 0x3c}, @in=@multicast2, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0) syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x400, &(0x7f0000000140)=ANY=[], 0x1, 0x694, &(0x7f0000001100)="$eJzs3U1sHGf9B/DvbnbX3vz/Sp02SQOqRNRIBRGROLGSYi4NCKFIVKgqB8TRSpzGyiatHBc5EYLwfuDCoXeKRG5cQOIeVM7AqVcfKyFx6SmAxKKZnbXXr9l1Yq8tPp9odp5nnpd5nt/M7OzOKnKA/1nXzqXxOLVcO/fmcpFfeTTTWXk0c6efTjKRpJ40eqvU7ia1j5Kr6S35TLGx6q623X4+WJh9++NPVz7p5RrVUtav79Rukyv1LTY+rJacSXKkWj+Ddf1d39Bfa+TuaqszLAJ2th84GLdmku463z21VvJUw1+3wIFVK++bm6/5qeRoksnqc0Dvrti7Zx9qD8c9AAAAANgHL/yy/Ap/bNzjAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgMOk9/f/i1W51PvpM6n1//5/q9qWKn2oPR73AAAAAAAAAABgdN/8/w0bPvckT7KcY/18t1b+5v9qmTlRvv5f3s+9zGcx57OcuSxlKYu5mGSqLG+Wr63luaWlxYtDtLy02jIDLS8NOYP27icPAAAAAAAAAIdFY/QmP861td//AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgIKglR3qrcjnRT0+l3kgymaRV1HuY/LWfPpB+/afBXPff3dKmao/3c0wAAAAwJi88yZMs51g/362V3/lPld/7J/N+7mYpC1lKJ/O5UT4L6H3rr688mumsPJq5Uyyb+/3qP0YaRtljes8ett7z6bJGOzezUG45n+t5N53cSL1sWTjdH8/W4/pRMabaG5UhR3ajWhcz/1WaI81qN2pD15wqI1KMqBeR6aptEY3jO0dixKPT31M/9hdTX33yc+J5xny5t3r9t711MZ+fjxSTvbYxEpcGzr5TK6ntEInk83/83Xdude7enrh579zBmdIIJgaeoG2MxMxAJF7e+ZxIM1Ukbh3WSAyaLiNxcjV/Ld/It3MuZ/JWFrOQ72UuS5nPmXw9czmSuep8Ll6ndo7U1XW5t542klZ5XJrVu+jwY1rKXF4t2x7LQr6Vd3Mj87lS/ruUi3m96jGrR/jkEFd9fbR32rNfGHiY/Isk7eHa7YNiYMdX706DZ/10eR0cX7dl7Tp48fnfjxqfrRLFPn4ycETGb2MkLg5E4qWdI/Gb8m3lXufu7cVbc+8Nub/XqnVxHf3sQN0livPlxeJglbn1Z0dR9tLGsslevFrVLy69svV33KLs5GrZ9lfq5VzObFn71JY9XSrLXt6ybKYsOz1Qtu7z1tXe5y0ADryjXzzaav+9/Zf2h+2ftm+135z82sSXJ15ppfnn5lca00deq79S+0M+zA/Wvv8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC7d+/+g9tznc784oZEt9v94TZFe5hoJ+lvSZ7Wqpmn19mbRCtJmWj0E6P1MzFU5dba0Xnj988y5uaorZLnEqhGdZLdf3D7n91ud98P0xaJ5g7n/FqiW9lU1B2q+dgS/+o+vw7H/MYE7LkLS3feu3Dv/oMvLdyZe2f+nfm7s5cvz07PXr7ytws3Fzrz073XcY8S2AtrN/1xjwQAAAAAAAAAAAAY1n78t4Rtdv2ffZ4qAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcEhdOzdRpc5PF68rj2Y6xdJPr1Ysq9WT1L6f1D5Krqa3ZGqgu9p2+/lgYfbtjz9d+aSXa1RLWb++rl1zN7N4WC05k+RItR40+Qz9Xa/WuxpZqbY6wyJgZ/uBg3H7bwAAAP//2wMQAg==") (async) creat(&(0x7f0000000000)='./bus\x00', 0x0) (async) io_setup(0x202, &(0x7f0000000200)) (async) io_submit(r2, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x70000}]) (async) socket$nl_xfrm(0x10, 0x3, 0x6) (async) fanotify_init(0x8, 0x0) (async) open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) (async) fanotify_mark(r4, 0x1, 0x40001019, r5, 0x0) (async) socket$nl_netfilter(0x10, 0x3, 0xc) (async) fanotify_mark(r1, 0x38, 0x800081b, r0, &(0x7f0000000180)='./file1\x00') (async) ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0) (async) sendmsg$IPCTNL_MSG_CT_GET(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x9c, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x44, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4041}, 0x0) (async) socket$nl_netfilter(0x10, 0x3, 0xc) (async) sendmsg$IPCTNL_MSG_CT_GET(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000009880)={0x98, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x98}, 0x1, 0x0, 0x0, 0x400c080}, 0x0) (async) open(&(0x7f00000003c0)='./file1\x00', 0x14127e, 0x2) (async) fallocate(r8, 0x1, 0x7fff, 0x8) (async) sendmsg$nl_xfrm(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000002c0)=@updsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in=@local}, {@in6=@private1, 0x0, 0x3c}, @in=@multicast2, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0) (async) [ 68.647727][ T4663] Bluetooth: hci0: command tx timeout [ 68.710281][ T5319] loop0: detected capacity change from 0 to 1024 [ 68.766021][ T5319] [ 68.767024][ T5319] ====================================================== [ 68.769606][ T5319] WARNING: possible circular locking dependency detected [ 68.772136][ T5319] 6.14.0-rc1-syzkaller-00181-g7ee983c850b4 #0 Not tainted [ 68.774712][ T5319] ------------------------------------------------------ [ 68.777296][ T5319] syz.0.0/5319 is trying to acquire lock: [ 68.779383][ T5319] ffff88801d0c20b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfsplus_find_init+0x14a/0x1c0 [ 68.783025][ T5319] [ 68.783025][ T5319] but task is already holding lock: [ 68.785705][ T5319] ffff888053267048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x383/0x14f0 [ 68.789649][ T5319] [ 68.789649][ T5319] which lock already depends on the new lock. [ 68.789649][ T5319] [ 68.793460][ T5319] [ 68.793460][ T5319] the existing dependency chain (in reverse order) is: [ 68.796655][ T5319] [ 68.796655][ T5319] -> #1 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}: [ 68.799908][ T5319] lock_acquire+0x1ed/0x550 [ 68.801746][ T5319] __mutex_lock+0x19c/0x1010 [ 68.803637][ T5319] hfsplus_file_extend+0x21b/0x1b70 [ 68.805690][ T5319] hfsplus_bmap_reserve+0x105/0x4e0 [ 68.807710][ T5319] __hfsplus_ext_write_extent+0x2a4/0x5c0 [ 68.809947][ T5319] __hfsplus_ext_cache_extent+0x84/0xe10 [ 68.812242][ T5319] hfsplus_file_extend+0x48c/0x1b70 [ 68.814300][ T5319] hfsplus_get_block+0x406/0x14f0 [ 68.816333][ T5319] __block_write_begin_int+0x692/0x19a0 [ 68.818644][ T5319] cont_write_begin+0x77f/0xb40 [ 68.820737][ T5319] hfsplus_write_begin+0x68/0xb0 [ 68.822803][ T5319] generic_perform_write+0x346/0x990 [ 68.825014][ T5319] generic_file_write_iter+0x10c/0x5b0 [ 68.827265][ T5319] aio_write+0x56b/0x7c0 [ 68.829083][ T5319] io_submit_one+0x8a7/0x18a0 [ 68.831057][ T5319] __se_sys_io_submit+0x171/0x2e0 [ 68.833176][ T5319] do_syscall_64+0xf3/0x230 [ 68.835192][ T5319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.837600][ T5319] [ 68.837600][ T5319] -> #0 (&tree->tree_lock/1){+.+.}-{4:4}: [ 68.840513][ T5319] validate_chain+0x18ef/0x5920 [ 68.842528][ T5319] __lock_acquire+0x1397/0x2100 [ 68.844594][ T5319] lock_acquire+0x1ed/0x550 [ 68.846499][ T5319] __mutex_lock+0x19c/0x1010 [ 68.848452][ T5319] hfsplus_find_init+0x14a/0x1c0 [ 68.850444][ T5319] hfsplus_get_block+0x5c4/0x14f0 [ 68.852550][ T5319] block_read_full_folio+0x3ee/0xae0 [ 68.854767][ T5319] read_pages+0x35c/0x570 [ 68.856624][ T5319] page_cache_ra_unbounded+0x708/0x820 [ 68.858842][ T5319] filemap_get_pages+0x59a/0x1fb0 [ 68.860793][ T5319] filemap_read+0x464/0x1260 [ 68.862661][ T5319] __kernel_read+0x52e/0xa00 [ 68.864521][ T5319] integrity_kernel_read+0xb0/0x100 [ 68.866696][ T5319] ima_calc_file_hash+0xae6/0x1b30 [ 68.868775][ T5319] ima_collect_measurement+0x520/0xb10 [ 68.870951][ T5319] process_measurement+0x1351/0x1fb0 [ 68.873320][ T5319] ima_file_check+0xd9/0x120 [ 68.875266][ T5319] security_file_post_open+0xb9/0x280 [ 68.877440][ T5319] path_openat+0x2cca/0x3590 [ 68.879310][ T5319] do_filp_open+0x27f/0x4e0 [ 68.881235][ T5319] do_sys_openat2+0x13e/0x1d0 [ 68.883172][ T5319] __x64_sys_open+0x225/0x270 [ 68.885168][ T5319] do_syscall_64+0xf3/0x230 [ 68.887069][ T5319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.889488][ T5319] [ 68.889488][ T5319] other info that might help us debug this: [ 68.889488][ T5319] [ 68.893180][ T5319] Possible unsafe locking scenario: [ 68.893180][ T5319] [ 68.896019][ T5319] CPU0 CPU1 [ 68.898054][ T5319] ---- ---- [ 68.900093][ T5319] lock(&HFSPLUS_I(inode)->extents_lock); [ 68.902316][ T5319] lock(&tree->tree_lock/1); [ 68.905019][ T5319] lock(&HFSPLUS_I(inode)->extents_lock); [ 68.908039][ T5319] lock(&tree->tree_lock/1); [ 68.909849][ T5319] [ 68.909849][ T5319] *** DEADLOCK *** [ 68.909849][ T5319] [ 68.912851][ T5319] 4 locks held by syz.0.0/5319: [ 68.914584][ T5319] #0: ffff888011c1c420 (sb_writers#13){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 [ 68.917755][ T5319] #1: ffff888040aa36c8 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}, at: process_measurement+0x7a6/0x1fb0 [ 68.921537][ T5319] #2: ffff8880532673d8 (mapping.invalidate_lock#3){.+.+}-{4:4}, at: page_cache_ra_unbounded+0x156/0x820 [ 68.925272][ T5319] #3: ffff888053267048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x383/0x14f0 [ 68.929072][ T5319] [ 68.929072][ T5319] stack backtrace: [ 68.931321][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted 6.14.0-rc1-syzkaller-00181-g7ee983c850b4 #0 [ 68.931335][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 68.931343][ T5319] Call Trace: [ 68.931349][ T5319] [ 68.931354][ T5319] dump_stack_lvl+0x241/0x360 [ 68.931370][ T5319] ? __pfx_dump_stack_lvl+0x10/0x10 [ 68.931380][ T5319] ? __pfx__printk+0x10/0x10 [ 68.931396][ T5319] print_circular_bug+0x13a/0x1b0 [ 68.931409][ T5319] check_noncircular+0x36a/0x4a0 [ 68.931419][ T5319] ? __pfx_check_noncircular+0x10/0x10 [ 68.931429][ T5319] ? lockdep_lock+0x123/0x2b0 [ 68.931442][ T5319] validate_chain+0x18ef/0x5920 [ 68.931456][ T5319] ? __pfx_validate_chain+0x10/0x10 [ 68.931470][ T5319] ? mark_lock+0x9a/0x360 [ 68.931484][ T5319] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 68.931498][ T5319] ? mark_lock+0x9a/0x360 [ 68.931511][ T5319] __lock_acquire+0x1397/0x2100 [ 68.931526][ T5319] lock_acquire+0x1ed/0x550 [ 68.931539][ T5319] ? hfsplus_find_init+0x14a/0x1c0 [ 68.931551][ T5319] ? __pfx_lock_acquire+0x10/0x10 [ 68.931563][ T5319] ? hfsplus_find_init+0x85/0x1c0 [ 68.931570][ T5319] ? hfsplus_get_block+0x5c4/0x14f0 [ 68.931583][ T5319] ? __pfx___might_resched+0x10/0x10 [ 68.931595][ T5319] ? filemap_read+0x464/0x1260 [ 68.931607][ T5319] ? __kernel_read+0x52e/0xa00 [ 68.931619][ T5319] ? integrity_kernel_read+0xb0/0x100 [ 68.931632][ T5319] ? ima_calc_file_hash+0xae6/0x1b30 [ 68.931646][ T5319] ? ima_collect_measurement+0x520/0xb10 [ 68.931660][ T5319] ? process_measurement+0x1351/0x1fb0 [ 68.931672][ T5319] ? ima_file_check+0xd9/0x120 [ 68.931685][ T5319] ? security_file_post_open+0xb9/0x280 [ 68.931697][ T5319] ? path_openat+0x2cca/0x3590 [ 68.931709][ T5319] ? do_sys_openat2+0x13e/0x1d0 [ 68.931719][ T5319] ? __x64_sys_open+0x225/0x270 [ 68.931729][ T5319] ? do_syscall_64+0xf3/0x230 [ 68.931745][ T5319] __mutex_lock+0x19c/0x1010 [ 68.931759][ T5319] ? hfsplus_find_init+0x14a/0x1c0 [ 68.931771][ T5319] ? hfsplus_find_init+0x14a/0x1c0 [ 68.931779][ T5319] ? __pfx___mutex_lock+0x10/0x10 [ 68.931792][ T5319] ? rcu_is_watching+0x15/0xb0 [ 68.931802][ T5319] ? __kmalloc_noprof+0x2a5/0x4c0 [ 68.931813][ T5319] ? hfsplus_find_init+0x85/0x1c0 [ 68.931823][ T5319] hfsplus_find_init+0x14a/0x1c0 [ 68.931833][ T5319] hfsplus_get_block+0x5c4/0x14f0 [ 68.931847][ T5319] ? __pfx_hfsplus_get_block+0x10/0x10 [ 68.931860][ T5319] ? _raw_spin_unlock+0x28/0x50 [ 68.931871][ T5319] ? create_empty_buffers+0x471/0x530 [ 68.931883][ T5319] block_read_full_folio+0x3ee/0xae0 [ 68.931896][ T5319] ? __pfx_hfsplus_get_block+0x10/0x10 [ 68.931908][ T5319] ? __pfx_block_read_full_folio+0x10/0x10 [ 68.931926][ T5319] ? __folio_batch_add_and_move+0x83c/0xd70 [ 68.931941][ T5319] ? readahead_folio+0x2ed/0x440 [ 68.931952][ T5319] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 68.931964][ T5319] read_pages+0x35c/0x570 [ 68.931975][ T5319] ? __pfx_read_pages+0x10/0x10 [ 68.931989][ T5319] page_cache_ra_unbounded+0x708/0x820 [ 68.932003][ T5319] filemap_get_pages+0x59a/0x1fb0 [ 68.932017][ T5319] ? mark_lock+0x9a/0x360 [ 68.932037][ T5319] ? __pfx_filemap_get_pages+0x10/0x10 [ 68.932049][ T5319] ? __lock_acquire+0x1397/0x2100 [ 68.932062][ T5319] ? __pfx___might_resched+0x10/0x10 [ 68.932078][ T5319] filemap_read+0x464/0x1260 [ 68.932093][ T5319] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 68.932108][ T5319] ? __pfx_filemap_read+0x10/0x10 [ 68.932126][ T5319] ? generic_file_read_iter+0x98/0x550 [ 68.932139][ T5319] ? kasan_save_track+0x51/0x80 [ 68.932155][ T5319] __kernel_read+0x52e/0xa00 [ 68.932168][ T5319] ? do_sys_openat2+0x13e/0x1d0 [ 68.932187][ T5319] ? __pfx___kernel_read+0x10/0x10 [ 68.932210][ T5319] integrity_kernel_read+0xb0/0x100 [ 68.932224][ T5319] ? __pfx_integrity_kernel_read+0x10/0x10 [ 68.932237][ T5319] ? __kmalloc_cache_noprof+0x243/0x390 [ 68.932248][ T5319] ? ima_calc_file_hash+0xaae/0x1b30 [ 68.932264][ T5319] ima_calc_file_hash+0xae6/0x1b30 [ 68.932283][ T5319] ? __pfx_ima_calc_file_hash+0x10/0x10 [ 68.932307][ T5319] ? stack_depot_save_flags+0x7c6/0x940 [ 68.932322][ T5319] ? kasan_save_track+0x51/0x80 [ 68.932335][ T5319] ? kasan_save_track+0x3f/0x80 [ 68.932348][ T5319] ? kasan_save_free_info+0x40/0x50 [ 68.932359][ T5319] ? __kasan_slab_free+0x59/0x70 [ 68.932373][ T5319] ? kfree+0x196/0x430 [ 68.932382][ T5319] ? make_vfsgid+0x51/0xa0 [ 68.932395][ T5319] ? generic_fillattr+0x58f/0x830 [ 68.932409][ T5319] ima_collect_measurement+0x520/0xb10 [ 68.932427][ T5319] ? __pfx_ima_collect_measurement+0x10/0x10 [ 68.932445][ T5319] ? kasan_quarantine_put+0xdc/0x230 [ 68.932458][ T5319] ? lockdep_hardirqs_on+0x99/0x150 [ 68.932474][ T5319] ? kfree+0x196/0x430 [ 68.932487][ T5319] ? ima_get_hash_algo+0x156/0x4d0 [ 68.932500][ T5319] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 68.932515][ T5319] process_measurement+0x1351/0x1fb0 [ 68.932534][ T5319] ? __pfx_process_measurement+0x10/0x10 [ 68.932549][ T5319] ? tomoyo_check_open_permission+0x207/0x4f0 [ 68.932564][ T5319] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 68.932585][ T5319] ? __asan_memset+0x23/0x50 [ 68.932597][ T5319] ? __fsnotify_parent+0x24f/0x540 [ 68.932612][ T5319] ? inode_to_bdi+0x69/0xf0 [ 68.932625][ T5319] ? apparmor_current_getlsmprop_subj+0xde/0x160 [ 68.932640][ T5319] ima_file_check+0xd9/0x120 [ 68.932654][ T5319] ? __pfx_ima_file_check+0x10/0x10 [ 68.932669][ T5319] security_file_post_open+0xb9/0x280 [ 68.932683][ T5319] path_openat+0x2cca/0x3590 [ 68.932703][ T5319] ? __pfx_path_openat+0x10/0x10 [ 68.932720][ T5319] do_filp_open+0x27f/0x4e0 [ 68.932734][ T5319] ? __pfx_do_filp_open+0x10/0x10 [ 68.932747][ T5319] ? do_raw_spin_lock+0x14f/0x370 [ 68.932766][ T5319] do_sys_openat2+0x13e/0x1d0 [ 68.932777][ T5319] ? __might_fault+0xaa/0x120 [ 68.932791][ T5319] ? __pfx_do_sys_openat2+0x10/0x10 [ 68.932801][ T5319] ? rcu_is_watching+0x15/0xb0 [ 68.932811][ T5319] ? __rseq_handle_notify_resume+0x34d/0x14e0 [ 68.932827][ T5319] __x64_sys_open+0x225/0x270 [ 68.932838][ T5319] ? __pfx___x64_sys_open+0x10/0x10 [ 68.932850][ T5319] ? do_syscall_64+0x100/0x230 [ 68.932865][ T5319] ? do_syscall_64+0xb6/0x230 [ 68.932878][ T5319] do_syscall_64+0xf3/0x230 [ 68.932890][ T5319] ? clear_bhb_loop+0x35/0x90 [ 68.932905][ T5319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.932924][ T5319] RIP: 0033:0x7fdb33b8cde9 [ 68.932935][ T5319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 68.932944][ T5319] RSP: 002b:00007fdb34985038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 68.932957][ T5319] RAX: ffffffffffffffda RBX: 00007fdb33da5fa0 RCX: 00007fdb33b8cde9 [ 68.932965][ T5319] RDX: 0000000000000002 RSI: 000000000014127e RDI: 00004000000003c0 [ 68.932971][ T5319] RBP: 00007fdb33c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 68.932978][ T5319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 68.932984][ T5319] R13: 0000000000000000 R14: 00007fdb33da5fa0 R15: 00007fffdd3a11f8 [ 68.932994][ T5319] [ 69.211248][ T24] audit: type=1800 audit(1738969744.200:2): pid=5319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.0" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 69.279464][ T5319] syz.0.0 (5319) used greatest stack depth: 18064 bytes left