Warning: Permanently added '10.128.0.93' (ED25519) to the list of known hosts. executing program [ 72.924057][ T4248] loop0: detected capacity change from 0 to 2048 [ 72.941288][ T4248] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 72.952593][ T4248] ======================================================= [ 72.952593][ T4248] WARNING: The mand mount option has been deprecated and [ 72.952593][ T4248] and is ignored by this kernel. Remove the mand [ 72.952593][ T4248] option from the mount to silence this warning. [ 72.952593][ T4248] ======================================================= [ 72.992228][ T26] audit: type=1800 audit(1733311780.396:2): pid=4248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor756" name="file1" dev="loop0" ino=1346 res=0 errno=0 [ 73.167364][ T4248] [ 73.169718][ T4248] ============================================ [ 73.175859][ T4248] WARNING: possible recursive locking detected [ 73.181995][ T4248] 6.1.119-syzkaller #0 Not tainted [ 73.187092][ T4248] -------------------------------------------- [ 73.193229][ T4248] syz-executor756/4248 is trying to acquire lock: [ 73.199635][ T4248] ffff888030c42128 (&sbi->s_alloc_mutex){+.+.}-{3:3}, at: udf_free_blocks+0x9ad/0x21e0 [ 73.209311][ T4248] [ 73.209311][ T4248] but task is already holding lock: [ 73.216669][ T4248] ffff888030c42128 (&sbi->s_alloc_mutex){+.+.}-{3:3}, at: udf_new_block+0xf84/0x2130 [ 73.226152][ T4248] [ 73.226152][ T4248] other info that might help us debug this: [ 73.234458][ T4248] Possible unsafe locking scenario: [ 73.234458][ T4248] [ 73.241896][ T4248] CPU0 [ 73.245166][ T4248] ---- [ 73.248435][ T4248] lock(&sbi->s_alloc_mutex); [ 73.253192][ T4248] lock(&sbi->s_alloc_mutex); [ 73.257965][ T4248] [ 73.257965][ T4248] *** DEADLOCK *** [ 73.257965][ T4248] [ 73.266102][ T4248] May be due to missing lock nesting notation [ 73.266102][ T4248] [ 73.274439][ T4248] 4 locks held by syz-executor756/4248: [ 73.279990][ T4248] #0: ffff8880771aa460 (sb_writers#9){.+.+}-{0:0}, at: do_sendfile+0x5f4/0xff0 [ 73.289074][ T4248] #1: ffff8880746d0f78 (&sb->s_type->i_mutex_key#15){+.+.}-{3:3}, at: udf_file_write_iter+0x75/0x670 [ 73.300270][ T4248] #2: ffff8880746d0da0 (&ei->i_data_sem#2){++++}-{3:3}, at: udf_get_block+0x153/0x5360 [ 73.310044][ T4248] #3: ffff888030c42128 (&sbi->s_alloc_mutex){+.+.}-{3:3}, at: udf_new_block+0xf84/0x2130 [ 73.319973][ T4248] [ 73.319973][ T4248] stack backtrace: [ 73.325880][ T4248] CPU: 0 PID: 4248 Comm: syz-executor756 Not tainted 6.1.119-syzkaller #0 [ 73.334381][ T4248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 73.344439][ T4248] Call Trace: [ 73.347732][ T4248] [ 73.350666][ T4248] dump_stack_lvl+0x1e3/0x2cb [ 73.355395][ T4248] ? nf_tcp_handle_invalid+0x642/0x642 [ 73.360869][ T4248] ? panic+0x764/0x764 [ 73.364947][ T4248] validate_chain+0x4711/0x5950 [ 73.369812][ T4248] ? reacquire_held_locks+0x660/0x660 [ 73.375188][ T4248] ? validate_chain+0x112/0x5950 [ 73.380141][ T4248] ? reacquire_held_locks+0x660/0x660 [ 73.385523][ T4248] ? __lock_acquire+0x1f80/0x1f80 [ 73.390565][ T4248] ? validate_chain+0x112/0x5950 [ 73.395509][ T4248] ? mark_lock+0x9a/0x340 [ 73.399856][ T4248] __lock_acquire+0x125b/0x1f80 [ 73.404738][ T4248] lock_acquire+0x1f8/0x5a0 [ 73.409260][ T4248] ? udf_free_blocks+0x9ad/0x21e0 [ 73.414298][ T4248] ? read_lock_is_recursive+0x10/0x10 [ 73.419721][ T4248] ? __might_sleep+0xb0/0xb0 [ 73.424335][ T4248] ? folio_mark_accessed+0x366/0x1c90 [ 73.429750][ T4248] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 73.435777][ T4248] ? folio_activate_fn+0x2910/0x2910 [ 73.441068][ T4248] __mutex_lock+0x132/0xd80 [ 73.445577][ T4248] ? udf_free_blocks+0x9ad/0x21e0 [ 73.450609][ T4248] ? udf_free_blocks+0x9ad/0x21e0 [ 73.455640][ T4248] ? mutex_lock_nested+0x10/0x10 [ 73.460588][ T4248] ? mark_lock+0x9a/0x340 [ 73.464928][ T4248] ? folio_mark_accessed+0x366/0x1c90 [ 73.470304][ T4248] udf_free_blocks+0x9ad/0x21e0 [ 73.475165][ T4248] ? __getblk_gfp+0x50/0xa20 [ 73.479775][ T4248] ? orangefs_cancel_op_in_progress+0x490/0x490 [ 73.486021][ T4248] ? udf_next_aext+0x42f/0x540 [ 73.490881][ T4248] ? udf_add_aext+0x370/0x370 [ 73.495566][ T4248] ? udf_write_aext+0x515/0x7a0 [ 73.500431][ T4248] udf_delete_aext+0x68a/0xda0 [ 73.505207][ T4248] ? udf_next_aext+0x540/0x540 [ 73.509983][ T4248] ? udf_next_aext+0x42f/0x540 [ 73.514779][ T4248] ? udf_add_aext+0x370/0x370 [ 73.519471][ T4248] ? __might_sleep+0xb0/0xb0 [ 73.524065][ T4248] udf_new_block+0x184d/0x2130 [ 73.528850][ T4248] ? udf_prealloc_blocks+0x1310/0x1310 [ 73.534320][ T4248] ? udf_next_aext+0x42f/0x540 [ 73.539093][ T4248] ? udf_get_block+0x42b/0x5360 [ 73.543971][ T4248] ? udf_add_aext+0x370/0x370 [ 73.548670][ T4248] ? do_raw_spin_unlock+0x137/0x8a0 [ 73.553887][ T4248] ? udf_get_block+0x73f/0x5360 [ 73.558748][ T4248] udf_get_block+0x1a69/0x5360 [ 73.563534][ T4248] ? udf_bread+0x4b0/0x4b0 [ 73.567965][ T4248] ? lru_cache_disable+0x30/0x30 [ 73.572908][ T4248] ? __might_sleep+0xb0/0xb0 [ 73.577543][ T4248] ? clean_bdev_aliases+0x802/0x910 [ 73.582748][ T4248] ? attach_page_private+0x300/0x300 [ 73.588110][ T4248] ? create_page_buffers+0x24e/0x4b0 [ 73.593414][ T4248] __block_write_begin_int+0x544/0x1a30 [ 73.598972][ T4248] ? udf_bread+0x4b0/0x4b0 [ 73.603401][ T4248] ? page_zero_new_buffers+0x650/0x650 [ 73.608887][ T4248] ? udf_bread+0x4b0/0x4b0 [ 73.613310][ T4248] block_write_begin+0x98/0x1f0 [ 73.618166][ T4248] ? udf_write_begin+0x16/0x60 [ 73.622944][ T4248] udf_write_begin+0x2d/0x60 [ 73.627540][ T4248] generic_perform_write+0x2fc/0x5e0 [ 73.632836][ T4248] ? generic_file_direct_write+0x460/0x460 [ 73.638659][ T4248] __generic_file_write_iter+0x297/0x400 [ 73.644297][ T4248] udf_file_write_iter+0x291/0x670 [ 73.649419][ T4248] do_iter_write+0x6e6/0xc40 [ 73.654017][ T4248] ? vfs_iter_write+0xa0/0xa0 [ 73.658700][ T4248] ? vfs_iter_write+0x69/0xa0 [ 73.663377][ T4248] iter_file_splice_write+0x830/0xfc0 [ 73.668768][ T4248] ? splice_from_pipe+0x240/0x240 [ 73.673803][ T4248] ? splice_shrink_spd+0xb0/0xb0 [ 73.678746][ T4248] ? common_file_perm+0x17d/0x1d0 [ 73.683775][ T4248] ? splice_from_pipe+0x240/0x240 [ 73.688809][ T4248] direct_splice_actor+0xe3/0x1c0 [ 73.693846][ T4248] splice_direct_to_actor+0x4c7/0xc30 [ 73.699226][ T4248] ? direct_file_splice_eof+0xa0/0xa0 [ 73.704623][ T4248] ? pipe_to_sendpage+0x350/0x350 [ 73.709659][ T4248] ? fsnotify_perm+0x64/0x590 [ 73.714334][ T4248] ? security_file_permission+0x75/0xa0 [ 73.719882][ T4248] do_splice_direct+0x2a5/0x3e0 [ 73.724739][ T4248] ? splice_direct_to_actor+0xc30/0xc30 [ 73.730293][ T4248] ? rcu_read_lock_any_held+0xb3/0x160 [ 73.735797][ T4248] ? do_splice_direct+0x3e0/0x3e0 [ 73.740917][ T4248] do_sendfile+0x619/0xff0 [ 73.745353][ T4248] ? rcu_is_watching+0x11/0xb0 [ 73.750137][ T4248] ? do_pwritev+0x360/0x360 [ 73.754651][ T4248] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 73.760651][ T4248] __se_sys_sendfile64+0x178/0x1e0 [ 73.765853][ T4248] ? __x64_sys_sendfile64+0xa0/0xa0 [ 73.771060][ T4248] ? syscall_enter_from_user_mode+0x2e/0x230 [ 73.777130][ T4248] ? lockdep_hardirqs_on+0x94/0x130 [ 73.782330][ T4248] ? syscall_enter_from_user_mode+0x2e/0x230 [ 73.788326][ T4248] do_syscall_64+0x3b/0xb0 [ 73.792754][ T4248] ? clear_bhb_loop+0x45/0xa0 [ 73.797452][ T4248] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 73.803354][ T4248] RIP: 0033:0x7f4bf89c64d9 [ 73.807783][ T4248] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1c 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 73.827487][ T4248] RSP: 002b:00007f4bf897c218 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 73.835903][ T4248] RAX: ffffffffffffffda RBX: 00007f4bf8a476c8 RCX: 00007f4bf89c64d9 [ 73.843876][ T4248] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 73.851849][ T4248] RBP: 00007f4bf8a476c0 R08: 0000000000000000 R09: 0000000000000000 [ 73.859821][ T4248] R10: 0000000800000009 R11: 0000000000000246 R12: 00007f4bf8a13cb0 [ 73.867791][ T4248] R13: 00007f4bf8a13047 R14: 0030656c69662f2e R15: 0031656c69662f2e [ 73.875777][ T4248]