IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready batman_adv: batadv0: Interface activated: batadv_slave_1 IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready ============================================ WARNING: possible recursive locking detected 4.14.307-syzkaller #0 Not tainted -------------------------------------------- syz-executor.3/9532 is trying to acquire lock: (&HFSPLUS_I(inode)->extents_lock){+.+.}, at: [] hfsplus_get_block+0x1f9/0x820 fs/hfsplus/extents.c:260 but task is already holding lock: (&HFSPLUS_I(inode)->extents_lock){+.+.}, at: [] hfsplus_file_extend+0x188/0xef0 fs/hfsplus/extents.c:452 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(&HFSPLUS_I(inode)->extents_lock); lock(&HFSPLUS_I(inode)->extents_lock); *** DEADLOCK *** May be due to missing lock nesting notation 5 locks held by syz-executor.3/9532: #0: (&type->s_umount_key#48/1){+.+.}, at: [] alloc_super fs/super.c:251 [inline] #0: (&type->s_umount_key#48/1){+.+.}, at: [] sget_userns+0x556/0xc10 fs/super.c:516 #1: (&sbi->vh_mutex){+.+.}, at: [] hfsplus_fill_super+0x1314/0x1850 fs/hfsplus/super.c:553 #2: (&tree->tree_lock){+.+.}, at: [] hfsplus_find_init+0x1a8/0x220 fs/hfsplus/bfind.c:30 #3: (&HFSPLUS_I(inode)->extents_lock){+.+.}, at: [] hfsplus_file_extend+0x188/0xef0 fs/hfsplus/extents.c:452 #4: (&sbi->alloc_mutex){+.+.}, at: [] hfsplus_block_allocate+0xd2/0x910 fs/hfsplus/bitmap.c:35 stack backtrace: CPU: 0 PID: 9532 Comm: syz-executor.3 Not tainted 4.14.307-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 print_deadlock_bug kernel/locking/lockdep.c:1800 [inline] check_deadlock kernel/locking/lockdep.c:1847 [inline] validate_chain kernel/locking/lockdep.c:2448 [inline] __lock_acquire.cold+0x180/0x97c kernel/locking/lockdep.c:3491 lock_acquire+0x170/0x3f0 kernel/locking/lockdep.c:3998 __mutex_lock_common kernel/locking/mutex.c:756 [inline] __mutex_lock+0xc4/0x1310 kernel/locking/mutex.c:893 hfsplus_get_block+0x1f9/0x820 fs/hfsplus/extents.c:260 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] hfsplus_block_allocate+0x189/0x910 fs/hfsplus/bitmap.c:37 hfsplus_file_extend+0x421/0xef0 fs/hfsplus/extents.c:463 hfsplus_bmap_reserve+0x26e/0x410 fs/hfsplus/btree.c:357 hfsplus_create_cat+0x1af/0x10d0 fs/hfsplus/catalog.c:272 hfsplus_fill_super+0x1386/0x1850 fs/hfsplus/super.c:560 mount_bdev+0x2b3/0x360 fs/super.c:1134 mount_fs+0x92/0x2a0 fs/super.c:1237 vfs_kern_mount.part.0+0x5b/0x470 fs/namespace.c:1046 vfs_kern_mount fs/namespace.c:1036 [inline] do_new_mount fs/namespace.c:2572 [inline] do_mount+0xe65/0x2a30 fs/namespace.c:2905 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7fe408d5762a RSP: 002b:00007fe4072c7f88 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 000000000000061b RCX: 00007fe408d5762a RDX: 0000000020000600 RSI: 00000000200001c0 RDI: 00007fe4072c7fe0 RBP: 00007fe4072c8020 R08: 00007fe4072c8020 R09: 0000000001a00010 R10: 0000000001a00010 R11: 0000000000000202 R12: 0000000020000600 R13: 00000000200001c0 R14: 00007fe4072c7fe0 R15: 0000000020000140 libceph: connect [d::]:6789 error -101 libceph: mon0 [d::]:6789 connect error syz-executor.2 (9548) used greatest stack depth: 24496 bytes left BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 BTRFS info (device loop3): enabling inode map caching BTRFS warning (device loop3): excessive commit interval 622039222 BTRFS info (device loop3): force zlib compression BTRFS info (device loop3): using free space tree BTRFS info (device loop3): has skinny extents libceph: connect [d::]:6789 error -101 libceph: mon0 [d::]:6789 connect error ceph: No mds server is up or the cluster is laggy L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. libceph: connect [d::]:6789 error -101 libceph: mon0 [d::]:6789 connect error ceph: No mds server is up or the cluster is laggy ceph: No mds server is up or the cluster is laggy ====================================================== WARNING: the mand mount option is being deprecated and will be removed in v5.15! ====================================================== BTRFS info (device loop3): enabling inode map caching BTRFS warning (device loop3): excessive commit interval 622039222 BTRFS info (device loop3): force zlib compression BTRFS info (device loop3): using free space tree BTRFS info (device loop3): has skinny extents BTRFS info (device loop3): enabling inode map caching BTRFS warning (device loop3): excessive commit interval 622039222 BTRFS info (device loop3): force zlib compression BTRFS info (device loop3): using free space tree BTRFS info (device loop3): has skinny extents FAT-fs (loop4): Directory bread(block 64) failed FAT-fs (loop4): Directory bread(block 65) failed ceph: No mds server is up or the cluster is laggy FAT-fs (loop4): Directory bread(block 66) failed FAT-fs (loop4): Directory bread(block 67) failed FAT-fs (loop4): Directory bread(block 68) failed FAT-fs (loop4): Directory bread(block 69) failed FAT-fs (loop4): Directory bread(block 70) failed FAT-fs (loop4): Directory bread(block 71) failed FAT-fs (loop4): Directory bread(block 72) failed FAT-fs (loop4): Directory bread(block 73) failed BTRFS info (device loop3): enabling inode map caching BTRFS warning (device loop3): excessive commit interval 622039222 BTRFS info (device loop3): force zlib compression BTRFS info (device loop3): using free space tree BTRFS info (device loop3): has skinny extents netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. audit: type=1804 audit(1677681494.594:2): pid=9957 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir2895305264/syzkaller.DMg0qL/8/file0/bus" dev="loop3" ino=7 res=1 netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. arp_tables: arptables: counters copy to user failed while replacing table arp_tables: arptables: counters copy to user failed while replacing table arp_tables: arptables: counters copy to user failed while replacing table audit: type=1804 audit(1677681495.305:3): pid=10005 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir2895305264/syzkaller.DMg0qL/9/file0/bus" dev="loop3" ino=7 res=1 netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. arp_tables: arptables: counters copy to user failed while replacing table arp_tables: arptables: counters copy to user failed while replacing table arp_tables: arptables: counters copy to user failed while replacing table audit: type=1800 audit(1677681496.425:4): pid=10086 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.1" name="file1" dev="sda1" ino=13934 res=0 netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. audit: type=1804 audit(1677681496.905:5): pid=10056 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir2895305264/syzkaller.DMg0qL/10/file0/bus" dev="loop3" ino=7 res=1 Bluetooth: hci5 command 0x0407 tx timeout audit: type=1804 audit(1677681498.535:6): pid=10150 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir2895305264/syzkaller.DMg0qL/11/file0/bus" dev="loop3" ino=7 res=1