program: sendto$packet(0xffffffffffffffff, &(0x7f00000000c0)="3f03fe7f0300140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e", 0x45, 0x0, 0x0, 0x0) syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x400, &(0x7f0000000140)=ANY=[], 0x1, 0x694, &(0x7f0000001100)="$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") r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}]) syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e1301"], 0x16) r2 = open(&(0x7f0000000000)='./file1\x00', 0x0, 0x0) r3 = socket$inet(0x2, 0x3, 0x4) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10}}}]}, 0x44}}, 0x8001) r7 = socket(0x2a, 0x2, 0x0) syz_mount_image$nilfs2(&(0x7f0000000080), &(0x7f0000000300)='./file0\x00', 0x1, &(0x7f00000002c0)=ANY=[], 0x1, 0xad8, &(0x7f0000001900)="$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") r8 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r8, 0x40786e88, 0x0) getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) setsockopt$sock_int(r5, 0x1, 0x4, &(0x7f0000000280)=0x7, 0x4) sendmsg$nl_route_sched(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=@gettclass={0x24, 0x2a, 0x20, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0x7ff8, 0xe}, {0xd, 0xb}, {0xb, 0x10}}}, 0x24}, 0x1, 0x0, 0x0, 0x810}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd2d, 0x2, {0x0, 0x0, 0x0, r9, {0xe, 0x5}, {}, {0x8, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x4000) r10 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0) sendto$inet(r3, 0x0, 0x0, 0x4000, &(0x7f0000000640)={0x2, 0x4e22, @remote}, 0x10) ioctl$IOC_WATCH_QUEUE_SET_FILTER(r2, 0xc0185879, 0x0) recvfrom$phonet(r2, &(0x7f0000000000)=""/134, 0x86, 0x20, &(0x7f0000000140)={0x23, 0xeb, 0x0, 0x3}, 0x10) [ 151.680498][ T5325] Bluetooth: hci0: command tx timeout [ 151.787515][ T5346] loop0: detected capacity change from 0 to 1024 [ 151.893925][ T5346] [ 151.895066][ T5346] ====================================================== [ 151.898453][ T5346] WARNING: possible circular locking dependency detected [ 151.902058][ T5346] 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 Not tainted [ 151.905243][ T5346] ------------------------------------------------------ [ 151.908297][ T5346] syz.0.0/5346 is trying to acquire lock: [ 151.910868][ T5346] ffff88804070a0b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfsplus_find_init+0x15a/0x1d0 [ 151.915555][ T5346] [ 151.915555][ T5346] but task is already holding lock: [ 151.919336][ T5346] ffff888052e1f048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1530 [ 151.924033][ T5346] [ 151.924033][ T5346] which lock already depends on the new lock. [ 151.924033][ T5346] [ 151.928584][ T5346] [ 151.928584][ T5346] the existing dependency chain (in reverse order) is: [ 151.932997][ T5346] [ 151.932997][ T5346] -> #1 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}: [ 151.937691][ T5346] lock_acquire+0x120/0x360 [ 151.939914][ T5346] __mutex_lock+0x182/0xe80 [ 151.942112][ T5346] hfsplus_file_extend+0x1fc/0x1990 [ 151.944601][ T5346] hfsplus_bmap_reserve+0x122/0x500 [ 151.947078][ T5346] __hfsplus_ext_write_extent+0x28d/0x5b0 [ 151.950176][ T5346] __hfsplus_ext_cache_extent+0x89/0xe30 [ 151.953403][ T5346] hfsplus_file_extend+0x444/0x1990 [ 151.955980][ T5346] hfsplus_get_block+0x411/0x1530 [ 151.958380][ T5346] __block_write_begin_int+0x6b5/0x1900 [ 151.960927][ T5346] cont_write_begin+0x789/0xb50 [ 151.963382][ T5346] hfsplus_write_begin+0x66/0xb0 [ 151.965898][ T5346] generic_perform_write+0x2c4/0x910 [ 151.969431][ T5346] generic_file_write_iter+0x10f/0x540 [ 151.972364][ T5346] aio_write+0x535/0x7a0 [ 151.974632][ T5346] io_submit_one+0x78b/0x1310 [ 151.976860][ T5346] __se_sys_io_submit+0x185/0x2f0 [ 151.979208][ T5346] do_syscall_64+0xfa/0x3b0 [ 151.981442][ T5346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.984310][ T5346] [ 151.984310][ T5346] -> #0 (&tree->tree_lock/1){+.+.}-{4:4}: [ 151.988304][ T5346] validate_chain+0xb9b/0x2140 [ 151.990873][ T5346] __lock_acquire+0xab9/0xd20 [ 151.993139][ T5346] lock_acquire+0x120/0x360 [ 151.995377][ T5346] __mutex_lock+0x182/0xe80 [ 151.997684][ T5346] hfsplus_find_init+0x15a/0x1d0 [ 152.000264][ T5346] hfsplus_get_block+0x8dd/0x1530 [ 152.003182][ T5346] block_read_full_folio+0x29c/0x830 [ 152.005943][ T5346] read_pages+0x35a/0x580 [ 152.008100][ T5346] page_cache_ra_unbounded+0x6b0/0x7b0 [ 152.010916][ T5346] filemap_get_pages+0x43c/0x1ea0 [ 152.013260][ T5346] filemap_read+0x3f6/0x11a0 [ 152.015293][ T5346] __kernel_read+0x469/0x8c0 [ 152.017532][ T5346] integrity_kernel_read+0x89/0xd0 [ 152.020139][ T5346] ima_calc_file_hash+0x85e/0x16f0 [ 152.022601][ T5346] ima_collect_measurement+0x428/0x8d0 [ 152.025294][ T5346] process_measurement+0x1121/0x1a40 [ 152.028000][ T5346] ima_file_check+0xd7/0x120 [ 152.030494][ T5346] security_file_post_open+0xbb/0x290 [ 152.032941][ T5346] path_openat+0x2f26/0x3830 [ 152.034886][ T5346] do_filp_open+0x1fa/0x410 [ 152.037235][ T5346] do_sys_openat2+0x121/0x1c0 [ 152.039576][ T5346] __x64_sys_open+0x11e/0x150 [ 152.041879][ T5346] do_syscall_64+0xfa/0x3b0 [ 152.044002][ T5346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.046913][ T5346] [ 152.046913][ T5346] other info that might help us debug this: [ 152.046913][ T5346] [ 152.051899][ T5346] Possible unsafe locking scenario: [ 152.051899][ T5346] [ 152.055253][ T5346] CPU0 CPU1 [ 152.057545][ T5346] ---- ---- [ 152.059935][ T5346] lock(&HFSPLUS_I(inode)->extents_lock); [ 152.062869][ T5346] lock(&tree->tree_lock/1); [ 152.066840][ T5346] lock(&HFSPLUS_I(inode)->extents_lock); [ 152.070633][ T5346] lock(&tree->tree_lock/1); [ 152.072659][ T5346] [ 152.072659][ T5346] *** DEADLOCK *** [ 152.072659][ T5346] [ 152.076210][ T5346] 3 locks held by syz.0.0/5346: [ 152.078318][ T5346] #0: ffff8880445915b8 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}, at: process_measurement+0x74b/0x1a40 [ 152.083437][ T5346] #1: ffff888052e1f3d8 (mapping.invalidate_lock#3){.+.+}-{4:4}, at: page_cache_ra_unbounded+0x129/0x7b0 [ 152.088873][ T5346] #2: ffff888052e1f048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1530 [ 152.093676][ T5346] [ 152.093676][ T5346] stack backtrace: [ 152.096313][ T5346] CPU: 0 UID: 0 PID: 5346 Comm: syz.0.0 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) [ 152.096332][ T5346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 152.096340][ T5346] Call Trace: [ 152.096349][ T5346] [ 152.096355][ T5346] dump_stack_lvl+0x189/0x250 [ 152.096381][ T5346] ? __pfx_dump_stack_lvl+0x10/0x10 [ 152.096400][ T5346] ? __pfx__printk+0x10/0x10 [ 152.096413][ T5346] ? print_lock_name+0xde/0x100 [ 152.096424][ T5346] print_circular_bug+0x2ee/0x310 [ 152.096438][ T5346] check_noncircular+0x134/0x160 [ 152.096451][ T5346] validate_chain+0xb9b/0x2140 [ 152.096461][ T5346] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 152.096479][ T5346] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 152.096497][ T5346] __lock_acquire+0xab9/0xd20 [ 152.096515][ T5346] ? hfsplus_find_init+0x15a/0x1d0 [ 152.096526][ T5346] lock_acquire+0x120/0x360 [ 152.096538][ T5346] ? hfsplus_find_init+0x15a/0x1d0 [ 152.096548][ T5346] ? path_openat+0x2f26/0x3830 [ 152.096565][ T5346] ? do_sys_openat2+0x121/0x1c0 [ 152.096580][ T5346] ? do_syscall_64+0xfa/0x3b0 [ 152.096593][ T5346] __mutex_lock+0x182/0xe80 [ 152.096604][ T5346] ? hfsplus_find_init+0x15a/0x1d0 [ 152.096616][ T5346] ? hfsplus_find_init+0x15a/0x1d0 [ 152.096626][ T5346] ? __pfx___mutex_lock+0x10/0x10 [ 152.096638][ T5346] ? rcu_is_watching+0x15/0xb0 [ 152.096657][ T5346] ? __kmalloc_noprof+0x29b/0x4f0 [ 152.096670][ T5346] ? hfsplus_find_init+0x8c/0x1d0 [ 152.096683][ T5346] hfsplus_find_init+0x15a/0x1d0 [ 152.096694][ T5346] hfsplus_get_block+0x8dd/0x1530 [ 152.096713][ T5346] ? __pfx_hfsplus_get_block+0x10/0x10 [ 152.096729][ T5346] ? _raw_spin_unlock+0x28/0x50 [ 152.096753][ T5346] block_read_full_folio+0x29c/0x830 [ 152.096772][ T5346] ? __pfx_hfsplus_get_block+0x10/0x10 [ 152.096787][ T5346] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 152.096799][ T5346] read_pages+0x35a/0x580 [ 152.096811][ T5346] ? __pfx_read_pages+0x10/0x10 [ 152.096825][ T5346] ? filemap_add_folio+0x1af/0x270 [ 152.096837][ T5346] page_cache_ra_unbounded+0x6b0/0x7b0 [ 152.096850][ T5346] filemap_get_pages+0x43c/0x1ea0 [ 152.096863][ T5346] ? is_bpf_text_address+0x292/0x2b0 [ 152.096878][ T5346] ? is_bpf_text_address+0x26/0x2b0 [ 152.096899][ T5346] ? __pfx_filemap_get_pages+0x10/0x10 [ 152.096912][ T5346] ? __lock_acquire+0xab9/0xd20 [ 152.096930][ T5346] ? __pfx___might_resched+0x10/0x10 [ 152.096952][ T5346] filemap_read+0x3f6/0x11a0 [ 152.096964][ T5346] ? do_raw_spin_lock+0x121/0x290 [ 152.096980][ T5346] ? __pfx_filemap_read+0x10/0x10 [ 152.097000][ T5346] ? kasan_save_track+0x3e/0x80 [ 152.097018][ T5346] ? generic_file_read_iter+0x8f/0x510 [ 152.097032][ T5346] ? __asan_memset+0x22/0x50 [ 152.097047][ T5346] ? iov_iter_kvec+0xb8/0x180 [ 152.097067][ T5346] __kernel_read+0x469/0x8c0 [ 152.097088][ T5346] ? __pfx___kernel_read+0x10/0x10 [ 152.097112][ T5346] integrity_kernel_read+0x89/0xd0 [ 152.097129][ T5346] ? __pfx_integrity_kernel_read+0x10/0x10 [ 152.097144][ T5346] ? __kasan_kmalloc+0x93/0xb0 [ 152.097156][ T5346] ? ima_calc_file_hash+0x820/0x16f0 [ 152.097176][ T5346] ima_calc_file_hash+0x85e/0x16f0 [ 152.097203][ T5346] ? __pfx_ima_calc_file_hash+0x10/0x10 [ 152.097232][ T5346] ? stack_depot_save_flags+0x429/0x900 [ 152.097252][ T5346] ? make_vfsgid+0x49/0xa0 [ 152.097269][ T5346] ? generic_fillattr+0x63d/0x9a0 [ 152.097285][ T5346] ? hfsplus_getattr+0x235/0x2f0 [ 152.097301][ T5346] ima_collect_measurement+0x428/0x8d0 [ 152.097324][ T5346] ? __pfx_ima_collect_measurement+0x10/0x10 [ 152.097342][ T5346] ? kasan_quarantine_put+0xdd/0x220 [ 152.097361][ T5346] ? hfsplus_getxattr+0x118/0x180 [ 152.097379][ T5346] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 152.097396][ T5346] process_measurement+0x1121/0x1a40 [ 152.097417][ T5346] ? __pfx_process_measurement+0x10/0x10 [ 152.097433][ T5346] ? tomoyo_check_open_permission+0x16a/0x3b0 [ 152.097449][ T5346] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 152.097468][ T5346] ? __pfx_apparmor_file_open+0x10/0x10 [ 152.097482][ T5346] ? tomoyo_file_open+0x165/0x220 [ 152.097499][ T5346] ? end_current_label_crit_section+0x152/0x180 [ 152.097513][ T5346] ima_file_check+0xd7/0x120 [ 152.097531][ T5346] ? __pfx_ima_file_check+0x10/0x10 [ 152.097549][ T5346] security_file_post_open+0xbb/0x290 [ 152.097566][ T5346] path_openat+0x2f26/0x3830 [ 152.097589][ T5346] ? __pfx_path_openat+0x10/0x10 [ 152.097606][ T5346] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.097623][ T5346] do_filp_open+0x1fa/0x410 [ 152.097640][ T5346] ? __lock_acquire+0xab9/0xd20 [ 152.097660][ T5346] ? __pfx_do_filp_open+0x10/0x10 [ 152.097684][ T5346] ? _raw_spin_unlock+0x28/0x50 [ 152.097701][ T5346] ? alloc_fd+0x64c/0x6c0 [ 152.097717][ T5346] do_sys_openat2+0x121/0x1c0 [ 152.097735][ T5346] ? __pfx_do_sys_openat2+0x10/0x10 [ 152.097768][ T5346] ? rcu_is_watching+0x15/0xb0 [ 152.097791][ T5346] __x64_sys_open+0x11e/0x150 [ 152.097809][ T5346] do_syscall_64+0xfa/0x3b0 [ 152.097824][ T5346] ? lockdep_hardirqs_on+0x9c/0x150 [ 152.097843][ T5346] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.097855][ T5346] ? clear_bhb_loop+0x60/0xb0 [ 152.097870][ T5346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.097883][ T5346] RIP: 0033:0x7fc42d78e929 [ 152.097899][ T5346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 152.097909][ T5346] RSP: 002b:00007fc42e682038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 152.097925][ T5346] RAX: ffffffffffffffda RBX: 00007fc42d9b5fa0 RCX: 00007fc42d78e929 [ 152.097934][ T5346] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 152.097943][ T5346] RBP: 00007fc42d810b39 R08: 0000000000000000 R09: 0000000000000000 [ 152.097951][ T5346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.097959][ T5346] R13: 0000000000000000 R14: 00007fc42d9b5fa0 R15: 00007ffe4ccee1d8 [ 152.097972][ T5346] [ 152.411557][ T26] audit: type=1800 audit(1750166290.990:2): pid=5346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.0" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 152.441868][ T5346] Zero length message leads to an empty skb [ 152.446086][ T5346] syz.0.0 (5346) used greatest stack depth: 19976 bytes left