program: r0 = socket$nl_route(0x10, 0x3, 0x0) socket$phonet(0x23, 0x2, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x400, &(0x7f0000000140)=ANY=[], 0x1, 0x694, &(0x7f0000001100)="$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") r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) io_submit(r3, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x70000}]) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x1000, 0x0) syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@nouid32}]}, 0x1, 0x3e2, &(0x7f0000000c80)="$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") r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0xeb) unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r5, 0x6611) r6 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x200100, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r6, r4, 0x25, 0x0, @void}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="600000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="05a00b00000000003800128009000100766c616e00000000280002801c0003800c00010008000000000000000c0001000800000075f3ffff060001000100000008000500", @ANYRES32=r4, @ANYBLOB], 0x60}, 0x1, 0xba01, 0x0, 0x4000810}, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) r8 = perf_event_open$cgroup(&(0x7f00000002c0)={0xa, 0x80, 0x4, 0x7, 0x10, 0x80, 0x0, 0x4, 0x200a, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0x52, 0x2}, 0x4000, 0x4, 0x6, 0x1, 0x8, 0x7, 0x101, 0x0, 0x8, 0x0, 0x10001}, r5, 0xc, r5, 0x8) signalfd(r8, &(0x7f0000000240)={[0x7]}, 0x8) sendmsg$IPSET_CMD_FLUSH(r7, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="245b277b2606010200400000000000000ad8fcc69f2b4100000705000100070000000500"], 0x24}, 0x1, 0x0, 0x0, 0x8010}, 0x10) [ 68.630074][ T5300] Bluetooth: hci0: command tx timeout [ 68.701220][ T5315] loop0: detected capacity change from 0 to 1024 [ 68.783468][ T5315] [ 68.784632][ T5315] ====================================================== [ 68.787753][ T5315] WARNING: possible circular locking dependency detected [ 68.790837][ T5315] 6.15.0-rc7-syzkaller-00007-g4a95bc121ccd #0 Not tainted [ 68.794024][ T5315] ------------------------------------------------------ [ 68.797030][ T5315] syz.0.0/5315 is trying to acquire lock: [ 68.799533][ T5315] ffff88804517e0b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfsplus_find_init+0x15a/0x1d0 [ 68.804190][ T5315] [ 68.804190][ T5315] but task is already holding lock: [ 68.808002][ T5315] ffff888052cfb048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1530 [ 68.812620][ T5315] [ 68.812620][ T5315] which lock already depends on the new lock. [ 68.812620][ T5315] [ 68.816868][ T5315] [ 68.816868][ T5315] the existing dependency chain (in reverse order) is: [ 68.820515][ T5315] [ 68.820515][ T5315] -> #1 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}: [ 68.824214][ T5315] lock_acquire+0x120/0x360 [ 68.826319][ T5315] __mutex_lock+0x182/0xe80 [ 68.828475][ T5315] hfsplus_file_extend+0x1fc/0x1990 [ 68.830868][ T5315] hfsplus_bmap_reserve+0x122/0x500 [ 68.833416][ T5315] __hfsplus_ext_write_extent+0x28d/0x5b0 [ 68.836072][ T5315] __hfsplus_ext_cache_extent+0x89/0xe30 [ 68.838649][ T5315] hfsplus_file_extend+0x444/0x1990 [ 68.841061][ T5315] hfsplus_get_block+0x411/0x1530 [ 68.843389][ T5315] __block_write_begin_int+0x6b5/0x1900 [ 68.845756][ T5315] cont_write_begin+0x789/0xb50 [ 68.847850][ T5315] hfsplus_write_begin+0x66/0xb0 [ 68.850015][ T5315] generic_perform_write+0x2c7/0x910 [ 68.852281][ T5315] generic_file_write_iter+0x10f/0x540 [ 68.854637][ T5315] aio_write+0x535/0x790 [ 68.856558][ T5315] io_submit_one+0x70a/0x1240 [ 68.858798][ T5315] __se_sys_io_submit+0x185/0x2f0 [ 68.861097][ T5315] do_syscall_64+0xf6/0x210 [ 68.863157][ T5315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.865945][ T5315] [ 68.865945][ T5315] -> #0 (&tree->tree_lock/1){+.+.}-{4:4}: [ 68.869223][ T5315] validate_chain+0xb9b/0x2140 [ 68.871514][ T5315] __lock_acquire+0xaac/0xd20 [ 68.873750][ T5315] lock_acquire+0x120/0x360 [ 68.875900][ T5315] __mutex_lock+0x182/0xe80 [ 68.877938][ T5315] hfsplus_find_init+0x15a/0x1d0 [ 68.880154][ T5315] hfsplus_get_block+0x8dd/0x1530 [ 68.882385][ T5315] block_read_full_folio+0x29f/0x830 [ 68.884754][ T5315] read_pages+0x36b/0x590 [ 68.886809][ T5315] page_cache_ra_unbounded+0x6b0/0x7b0 [ 68.889317][ T5315] filemap_get_pages+0x43c/0x1eb0 [ 68.891642][ T5315] filemap_read+0x3fa/0x11d0 [ 68.893785][ T5315] __kernel_read+0x46c/0x8c0 [ 68.895947][ T5315] integrity_kernel_read+0x89/0xd0 [ 68.898266][ T5315] ima_calc_file_hash+0x152c/0x18d0 [ 68.900659][ T5315] ima_collect_measurement+0x42e/0x8e0 [ 68.903217][ T5315] process_measurement+0x1121/0x1a40 [ 68.905736][ T5315] ima_file_check+0xd7/0x120 [ 68.907927][ T5315] security_file_post_open+0xbb/0x290 [ 68.910344][ T5315] path_openat+0x2f26/0x3830 [ 68.912429][ T5315] do_filp_open+0x1fa/0x410 [ 68.914520][ T5315] do_sys_openat2+0x121/0x1c0 [ 68.916593][ T5315] __x64_sys_openat+0x138/0x170 [ 68.918835][ T5315] do_syscall_64+0xf6/0x210 [ 68.920952][ T5315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.923650][ T5315] [ 68.923650][ T5315] other info that might help us debug this: [ 68.923650][ T5315] [ 68.927785][ T5315] Possible unsafe locking scenario: [ 68.927785][ T5315] [ 68.930817][ T5315] CPU0 CPU1 [ 68.933051][ T5315] ---- ---- [ 68.935279][ T5315] lock(&HFSPLUS_I(inode)->extents_lock); [ 68.937767][ T5315] lock(&tree->tree_lock/1); [ 68.940606][ T5315] lock(&HFSPLUS_I(inode)->extents_lock); [ 68.943935][ T5315] lock(&tree->tree_lock/1); [ 68.945784][ T5315] [ 68.945784][ T5315] *** DEADLOCK *** [ 68.945784][ T5315] [ 68.949109][ T5315] 3 locks held by syz.0.0/5315: [ 68.951157][ T5315] #0: ffff8880436e65b8 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}, at: process_measurement+0x74b/0x1a40 [ 68.955912][ T5315] #1: ffff888052cfb3d8 (mapping.invalidate_lock#3){.+.+}-{4:4}, at: page_cache_ra_unbounded+0x129/0x7b0 [ 68.960603][ T5315] #2: ffff888052cfb048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1530 [ 68.965531][ T5315] [ 68.965531][ T5315] stack backtrace: [ 68.968201][ T5315] CPU: 0 UID: 0 PID: 5315 Comm: syz.0.0 Not tainted 6.15.0-rc7-syzkaller-00007-g4a95bc121ccd #0 PREEMPT(full) [ 68.968218][ T5315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 68.968227][ T5315] Call Trace: [ 68.968235][ T5315] [ 68.968242][ T5315] dump_stack_lvl+0x189/0x250 [ 68.968265][ T5315] ? __pfx_dump_stack_lvl+0x10/0x10 [ 68.968283][ T5315] ? __pfx__printk+0x10/0x10 [ 68.968295][ T5315] ? print_lock_name+0xde/0x100 [ 68.968313][ T5315] print_circular_bug+0x2ee/0x310 [ 68.968327][ T5315] check_noncircular+0x134/0x160 [ 68.968339][ T5315] validate_chain+0xb9b/0x2140 [ 68.968350][ T5315] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 68.968366][ T5315] __lock_acquire+0xaac/0xd20 [ 68.968391][ T5315] ? hfsplus_find_init+0x15a/0x1d0 [ 68.968401][ T5315] lock_acquire+0x120/0x360 [ 68.968412][ T5315] ? hfsplus_find_init+0x15a/0x1d0 [ 68.968425][ T5315] ? path_openat+0x2f26/0x3830 [ 68.968434][ T5315] ? do_sys_openat2+0x121/0x1c0 [ 68.968443][ T5315] ? do_syscall_64+0xf6/0x210 [ 68.968457][ T5315] __mutex_lock+0x182/0xe80 [ 68.968470][ T5315] ? hfsplus_find_init+0x15a/0x1d0 [ 68.968482][ T5315] ? hfsplus_find_init+0x15a/0x1d0 [ 68.968494][ T5315] ? __pfx___mutex_lock+0x10/0x10 [ 68.968508][ T5315] ? rcu_is_watching+0x15/0xb0 [ 68.968519][ T5315] ? __kmalloc_noprof+0x29b/0x4f0 [ 68.968532][ T5315] ? hfsplus_find_init+0x8c/0x1d0 [ 68.968543][ T5315] hfsplus_find_init+0x15a/0x1d0 [ 68.968555][ T5315] hfsplus_get_block+0x8dd/0x1530 [ 68.968572][ T5315] ? __pfx_hfsplus_get_block+0x10/0x10 [ 68.968586][ T5315] ? _raw_spin_unlock+0x28/0x50 [ 68.968599][ T5315] block_read_full_folio+0x29f/0x830 [ 68.968615][ T5315] ? __pfx_hfsplus_get_block+0x10/0x10 [ 68.968628][ T5315] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 68.968640][ T5315] read_pages+0x36b/0x590 [ 68.968656][ T5315] ? __pfx_read_pages+0x10/0x10 [ 68.968673][ T5315] ? filemap_add_folio+0x1af/0x270 [ 68.968690][ T5315] page_cache_ra_unbounded+0x6b0/0x7b0 [ 68.968709][ T5315] filemap_get_pages+0x43c/0x1eb0 [ 68.968719][ T5315] ? lock_release+0x4b/0x3e0 [ 68.968731][ T5315] ? lock_release+0x4b/0x3e0 [ 68.968748][ T5315] ? __pfx_filemap_get_pages+0x10/0x10 [ 68.968757][ T5315] ? __pfx___might_resched+0x10/0x10 [ 68.968770][ T5315] filemap_read+0x3fa/0x11d0 [ 68.968783][ T5315] ? __pfx_filemap_read+0x10/0x10 [ 68.968798][ T5315] ? kasan_save_track+0x3e/0x80 [ 68.968808][ T5315] ? generic_file_read_iter+0x8f/0x510 [ 68.968818][ T5315] ? __asan_memset+0x22/0x50 [ 68.968827][ T5315] ? iov_iter_kvec+0xb8/0x180 [ 68.968840][ T5315] __kernel_read+0x46c/0x8c0 [ 68.968852][ T5315] ? __pfx___kernel_read+0x10/0x10 [ 68.968866][ T5315] integrity_kernel_read+0x89/0xd0 [ 68.968878][ T5315] ? __pfx_integrity_kernel_read+0x10/0x10 [ 68.968888][ T5315] ? __kasan_kmalloc+0x93/0xb0 [ 68.968901][ T5315] ? ima_calc_file_hash+0x14f4/0x18d0 [ 68.968915][ T5315] ima_calc_file_hash+0x152c/0x18d0 [ 68.968931][ T5315] ? __pfx_ima_calc_file_hash+0x10/0x10 [ 68.968950][ T5315] ? stack_depot_save_flags+0x42b/0x910 [ 68.968963][ T5315] ? make_vfsgid+0x49/0xa0 [ 68.968973][ T5315] ? generic_fillattr+0x63d/0x9a0 [ 68.968986][ T5315] ? hfsplus_getattr+0x235/0x2f0 [ 68.969001][ T5315] ima_collect_measurement+0x42e/0x8e0 [ 68.969017][ T5315] ? __pfx_ima_collect_measurement+0x10/0x10 [ 68.969030][ T5315] ? kasan_quarantine_put+0xdd/0x220 [ 68.969041][ T5315] ? hfsplus_getxattr+0x118/0x180 [ 68.969056][ T5315] ? ima_get_hash_algo+0x90/0x490 [ 68.969067][ T5315] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 68.969078][ T5315] process_measurement+0x1121/0x1a40 [ 68.969095][ T5315] ? __pfx_process_measurement+0x10/0x10 [ 68.969107][ T5315] ? tomoyo_check_open_permission+0x16a/0x3b0 [ 68.969117][ T5315] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 68.969133][ T5315] ? __pfx_apparmor_file_open+0x10/0x10 [ 68.969148][ T5315] ? tomoyo_file_open+0x166/0x220 [ 68.969161][ T5315] ? end_current_label_crit_section+0x152/0x180 [ 68.969174][ T5315] ima_file_check+0xd7/0x120 [ 68.969187][ T5315] ? __pfx_ima_file_check+0x10/0x10 [ 68.969199][ T5315] security_file_post_open+0xbb/0x290 [ 68.969210][ T5315] path_openat+0x2f26/0x3830 [ 68.969219][ T5315] ? arch_stack_walk+0xfc/0x150 [ 68.969240][ T5315] ? __pfx_path_openat+0x10/0x10 [ 68.969250][ T5315] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.969266][ T5315] do_filp_open+0x1fa/0x410 [ 68.969277][ T5315] ? __pfx_do_filp_open+0x10/0x10 [ 68.969292][ T5315] ? _raw_spin_unlock+0x28/0x50 [ 68.969303][ T5315] ? alloc_fd+0x64c/0x6c0 [ 68.969319][ T5315] do_sys_openat2+0x121/0x1c0 [ 68.969330][ T5315] ? __pfx_do_sys_openat2+0x10/0x10 [ 68.969340][ T5315] ? rcu_is_watching+0x15/0xb0 [ 68.969351][ T5315] __x64_sys_openat+0x138/0x170 [ 68.969363][ T5315] do_syscall_64+0xf6/0x210 [ 68.969390][ T5315] ? clear_bhb_loop+0x60/0xb0 [ 68.969402][ T5315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.969414][ T5315] RIP: 0033:0x7fd32718e969 [ 68.969426][ T5315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 68.969436][ T5315] RSP: 002b:00007fd3280cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 68.969449][ T5315] RAX: ffffffffffffffda RBX: 00007fd3273b5fa0 RCX: 00007fd32718e969 [ 68.969457][ T5315] RDX: 0000000000000042 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 68.969465][ T5315] RBP: 00007fd327210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 68.969478][ T5315] R10: 00000000000000eb R11: 0000000000000246 R12: 0000000000000000 [ 68.969486][ T5315] R13: 0000000000000000 R14: 00007fd3273b5fa0 R15: 00007ffeac524758 [ 68.969497][ T5315] [ 69.221474][ T25] audit: type=1800 audit(1747841995.389:2): pid=5315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.0" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 69.233870][ T5315] syz.0.0 (5315) used greatest stack depth: 19976 bytes left