program: syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x400, &(0x7f0000000140)=ANY=[], 0x1, 0x694, &(0x7f0000001100)="$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") r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}]) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc0", 0x42}], 0x1, 0x0, 0xd42a4567abef795e}, 0x0) socketpair(0x1, 0x1, 0x9, &(0x7f0000000000)={0xffffffffffffffff}) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1200000008000000040000000200000000000000", @ANYRES32, @ANYBLOB="0400000900"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00') r5 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0) sendfile(r5, r4, 0x0, 0x80000004) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r5, 0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000480)=r5}, 0x1c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000004c0)={r6, &(0x7f00000002c0), &(0x7f0000000300)=@tcp6=r2, 0x1}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r3, &(0x7f0000000500)="2c03ce41", &(0x7f0000000080)=""/12}, 0x20) r7 = syz_mount_image$udf(&(0x7f0000000180), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfc, 0xc24, &(0x7f0000002280)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1c00, &(0x7f0000000800)=ANY=[@ANYRESDEC=r7], 0x1, 0x1ab, &(0x7f0000000240)="$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") r8 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0) landlock_restrict_self(r8, 0x0) landlock_restrict_self(r8, 0x0) landlock_restrict_self(r8, 0x0) landlock_restrict_self(r8, 0x0) landlock_restrict_self(r8, 0x0) landlock_restrict_self(r8, 0x0) landlock_restrict_self(r8, 0x0) landlock_restrict_self(r8, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r11 = gettid() ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f00000000c0)=r11) sendto$unix(r9, &(0x7f00000001c0)="fa", 0x2, 0x1, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) [ 71.349123][ T5305] Bluetooth: hci0: command tx timeout [ 71.410024][ T5321] loop0: detected capacity change from 0 to 1024 [ 71.487860][ T5321] [ 71.488983][ T5321] ====================================================== [ 71.491679][ T5321] WARNING: possible circular locking dependency detected [ 71.494435][ T5321] 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0 Not tainted [ 71.497315][ T5321] ------------------------------------------------------ [ 71.500004][ T5321] syz.0.0/5321 is trying to acquire lock: [ 71.502343][ T5321] ffff88804427a0b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfsplus_find_init+0x14a/0x1c0 [ 71.506301][ T5321] [ 71.506301][ T5321] but task is already holding lock: [ 71.509207][ T5321] ffff888011feb048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x383/0x14f0 [ 71.513528][ T5321] [ 71.513528][ T5321] which lock already depends on the new lock. [ 71.513528][ T5321] [ 71.517529][ T5321] [ 71.517529][ T5321] the existing dependency chain (in reverse order) is: [ 71.520889][ T5321] [ 71.520889][ T5321] -> #1 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}: [ 71.524382][ T5321] lock_acquire+0x1ed/0x550 [ 71.526479][ T5321] __mutex_lock+0x19c/0x1010 [ 71.528583][ T5321] hfsplus_file_extend+0x21b/0x1b70 [ 71.530772][ T5321] hfsplus_bmap_reserve+0x105/0x4e0 [ 71.532913][ T5321] __hfsplus_ext_write_extent+0x2a4/0x5c0 [ 71.535397][ T5321] __hfsplus_ext_cache_extent+0x84/0xe10 [ 71.537856][ T5321] hfsplus_file_extend+0x48c/0x1b70 [ 71.540144][ T5321] hfsplus_get_block+0x406/0x14f0 [ 71.542347][ T5321] __block_write_begin_int+0x692/0x19a0 [ 71.544630][ T5321] cont_write_begin+0x77f/0xb40 [ 71.546849][ T5321] hfsplus_write_begin+0x68/0xb0 [ 71.548866][ T5321] generic_perform_write+0x346/0x990 [ 71.551268][ T5321] generic_file_write_iter+0x10c/0x5e0 [ 71.553543][ T5321] aio_write+0x56b/0x7c0 [ 71.555428][ T5321] io_submit_one+0x8a7/0x18a0 [ 71.557536][ T5321] __se_sys_io_submit+0x171/0x2e0 [ 71.559632][ T5321] do_syscall_64+0xf3/0x230 [ 71.561658][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.564207][ T5321] [ 71.564207][ T5321] -> #0 (&tree->tree_lock/1){+.+.}-{4:4}: [ 71.567335][ T5321] validate_chain+0x18ef/0x5920 [ 71.569513][ T5321] __lock_acquire+0x1397/0x2100 [ 71.571682][ T5321] lock_acquire+0x1ed/0x550 [ 71.573689][ T5321] __mutex_lock+0x19c/0x1010 [ 71.575834][ T5321] hfsplus_find_init+0x14a/0x1c0 [ 71.578011][ T5321] hfsplus_get_block+0x5c4/0x14f0 [ 71.580221][ T5321] block_read_full_folio+0x3ee/0xae0 [ 71.582658][ T5321] read_pages+0x35c/0x570 [ 71.584619][ T5321] page_cache_ra_unbounded+0x708/0x820 [ 71.587045][ T5321] filemap_get_pages+0x59a/0x1fb0 [ 71.589163][ T5321] filemap_read+0x464/0x1260 [ 71.591193][ T5321] __kernel_read+0x52e/0xa00 [ 71.593287][ T5321] integrity_kernel_read+0xb0/0x100 [ 71.595514][ T5321] ima_calc_file_hash+0xae6/0x1b30 [ 71.597801][ T5321] ima_collect_measurement+0x529/0xb20 [ 71.600169][ T5321] process_measurement+0x1351/0x1fb0 [ 71.602514][ T5321] ima_file_check+0xd9/0x120 [ 71.604579][ T5321] security_file_post_open+0xb9/0x280 [ 71.606972][ T5321] path_openat+0x2cca/0x3590 [ 71.608992][ T5321] do_filp_open+0x27f/0x4e0 [ 71.611064][ T5321] do_sys_openat2+0x13e/0x1d0 [ 71.613216][ T5321] __x64_sys_open+0x225/0x270 [ 71.615369][ T5321] do_syscall_64+0xf3/0x230 [ 71.617442][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.619964][ T5321] [ 71.619964][ T5321] other info that might help us debug this: [ 71.619964][ T5321] [ 71.624000][ T5321] Possible unsafe locking scenario: [ 71.624000][ T5321] [ 71.626798][ T5321] CPU0 CPU1 [ 71.628888][ T5321] ---- ---- [ 71.631140][ T5321] lock(&HFSPLUS_I(inode)->extents_lock); [ 71.633474][ T5321] lock(&tree->tree_lock/1); [ 71.636393][ T5321] lock(&HFSPLUS_I(inode)->extents_lock); [ 71.639633][ T5321] lock(&tree->tree_lock/1); [ 71.641620][ T5321] [ 71.641620][ T5321] *** DEADLOCK *** [ 71.641620][ T5321] [ 71.644762][ T5321] 3 locks held by syz.0.0/5321: [ 71.646738][ T5321] #0: ffff8880368266c8 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}, at: process_measurement+0x7a6/0x1fb0 [ 71.650870][ T5321] #1: ffff888011feb3d8 (mapping.invalidate_lock#3){.+.+}-{4:4}, at: page_cache_ra_unbounded+0x156/0x820 [ 71.655218][ T5321] #2: ffff888011feb048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x383/0x14f0 [ 71.659549][ T5321] [ 71.659549][ T5321] stack backtrace: [ 71.661905][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted 6.14.0-rc5-syzkaller-00268-g1110ce6a1e34 #0 [ 71.661921][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.661930][ T5321] Call Trace: [ 71.661937][ T5321] [ 71.661943][ T5321] dump_stack_lvl+0x241/0x360 [ 71.661961][ T5321] ? __pfx_dump_stack_lvl+0x10/0x10 [ 71.661972][ T5321] ? __pfx__printk+0x10/0x10 [ 71.661987][ T5321] print_circular_bug+0x13a/0x1b0 [ 71.662001][ T5321] check_noncircular+0x36a/0x4a0 [ 71.662014][ T5321] ? __pfx_check_noncircular+0x10/0x10 [ 71.662024][ T5321] ? lockdep_lock+0x123/0x2b0 [ 71.662043][ T5321] validate_chain+0x18ef/0x5920 [ 71.662057][ T5321] ? __pfx_validate_chain+0x10/0x10 [ 71.662073][ T5321] ? mark_lock+0x9a/0x360 [ 71.662083][ T5321] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 71.662098][ T5321] ? mark_lock+0x9a/0x360 [ 71.662110][ T5321] __lock_acquire+0x1397/0x2100 [ 71.662127][ T5321] lock_acquire+0x1ed/0x550 [ 71.662142][ T5321] ? hfsplus_find_init+0x14a/0x1c0 [ 71.662160][ T5321] ? __pfx_lock_acquire+0x10/0x10 [ 71.662174][ T5321] ? hfsplus_find_init+0x85/0x1c0 [ 71.662186][ T5321] ? hfsplus_get_block+0x5c4/0x14f0 [ 71.662198][ T5321] ? __pfx___might_resched+0x10/0x10 [ 71.662210][ T5321] ? filemap_read+0x464/0x1260 [ 71.662224][ T5321] ? __kernel_read+0x52e/0xa00 [ 71.662234][ T5321] ? integrity_kernel_read+0xb0/0x100 [ 71.662247][ T5321] ? ima_calc_file_hash+0xae6/0x1b30 [ 71.662256][ T5321] ? ima_collect_measurement+0x529/0xb20 [ 71.662265][ T5321] ? process_measurement+0x1351/0x1fb0 [ 71.662273][ T5321] ? ima_file_check+0xd9/0x120 [ 71.662285][ T5321] ? security_file_post_open+0xb9/0x280 [ 71.662298][ T5321] ? path_openat+0x2cca/0x3590 [ 71.662308][ T5321] ? do_sys_openat2+0x13e/0x1d0 [ 71.662321][ T5321] ? __x64_sys_open+0x225/0x270 [ 71.662334][ T5321] ? do_syscall_64+0xf3/0x230 [ 71.662350][ T5321] __mutex_lock+0x19c/0x1010 [ 71.662365][ T5321] ? hfsplus_find_init+0x14a/0x1c0 [ 71.662381][ T5321] ? hfsplus_find_init+0x14a/0x1c0 [ 71.662396][ T5321] ? __pfx___mutex_lock+0x10/0x10 [ 71.662411][ T5321] ? rcu_is_watching+0x15/0xb0 [ 71.662422][ T5321] ? __kmalloc_noprof+0x2a5/0x4c0 [ 71.662435][ T5321] ? hfsplus_find_init+0x85/0x1c0 [ 71.662450][ T5321] hfsplus_find_init+0x14a/0x1c0 [ 71.662465][ T5321] hfsplus_get_block+0x5c4/0x14f0 [ 71.662480][ T5321] ? __pfx_hfsplus_get_block+0x10/0x10 [ 71.662493][ T5321] ? _raw_spin_unlock+0x28/0x50 [ 71.662504][ T5321] ? create_empty_buffers+0x471/0x530 [ 71.662519][ T5321] block_read_full_folio+0x3ee/0xae0 [ 71.662536][ T5321] ? __pfx_hfsplus_get_block+0x10/0x10 [ 71.662547][ T5321] ? __pfx_block_read_full_folio+0x10/0x10 [ 71.662561][ T5321] ? __folio_batch_add_and_move+0x83c/0xd70 [ 71.662577][ T5321] ? readahead_folio+0x2ed/0x440 [ 71.662599][ T5321] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 71.662610][ T5321] read_pages+0x35c/0x570 [ 71.662627][ T5321] ? __pfx_read_pages+0x10/0x10 [ 71.662644][ T5321] page_cache_ra_unbounded+0x708/0x820 [ 71.662661][ T5321] filemap_get_pages+0x59a/0x1fb0 [ 71.662675][ T5321] ? page_ext_put+0x97/0xc0 [ 71.662687][ T5321] ? mark_lock+0x9a/0x360 [ 71.662702][ T5321] ? __pfx_filemap_get_pages+0x10/0x10 [ 71.662717][ T5321] ? __lock_acquire+0x1397/0x2100 [ 71.662730][ T5321] ? __pfx___might_resched+0x10/0x10 [ 71.662745][ T5321] filemap_read+0x464/0x1260 [ 71.662761][ T5321] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 71.662777][ T5321] ? __pfx_filemap_read+0x10/0x10 [ 71.662795][ T5321] ? generic_file_read_iter+0x98/0x550 [ 71.662810][ T5321] ? kasan_save_track+0x51/0x80 [ 71.662822][ T5321] __kernel_read+0x52e/0xa00 [ 71.662830][ T5321] ? do_sys_openat2+0x13e/0x1d0 [ 71.662844][ T5321] ? __pfx___kernel_read+0x10/0x10 [ 71.662858][ T5321] integrity_kernel_read+0xb0/0x100 [ 71.662872][ T5321] ? __pfx_integrity_kernel_read+0x10/0x10 [ 71.662886][ T5321] ? __kmalloc_cache_noprof+0x243/0x390 [ 71.662899][ T5321] ? ima_calc_file_hash+0xaae/0x1b30 [ 71.662909][ T5321] ima_calc_file_hash+0xae6/0x1b30 [ 71.662922][ T5321] ? __pfx_ima_calc_file_hash+0x10/0x10 [ 71.662940][ T5321] ? stack_depot_save_flags+0x7b4/0x940 [ 71.662956][ T5321] ? kasan_save_track+0x51/0x80 [ 71.662966][ T5321] ? kasan_save_track+0x3f/0x80 [ 71.662975][ T5321] ? kasan_save_free_info+0x40/0x50 [ 71.662987][ T5321] ? __kasan_slab_free+0x59/0x70 [ 71.662998][ T5321] ? kfree+0x196/0x430 [ 71.663009][ T5321] ? hfsplus_getxattr+0x121/0x180 [ 71.663019][ T5321] ? vfs_getxattr_alloc+0x472/0x5c0 [ 71.663032][ T5321] ? ima_read_xattr+0x38/0x60 [ 71.663045][ T5321] ? process_measurement+0x117a/0x1fb0 [ 71.663053][ T5321] ? make_vfsgid+0x51/0xa0 [ 71.663063][ T5321] ? generic_fillattr+0x58f/0x830 [ 71.663078][ T5321] ima_collect_measurement+0x529/0xb20 [ 71.663091][ T5321] ? __pfx_ima_collect_measurement+0x10/0x10 [ 71.663104][ T5321] ? lockdep_hardirqs_on+0x99/0x150 [ 71.663118][ T5321] ? kfree+0x196/0x430 [ 71.663128][ T5321] ? hfsplus_getxattr+0x100/0x180 [ 71.663138][ T5321] ? hfsplus_getxattr+0x121/0x180 [ 71.663151][ T5321] ? ima_get_hash_algo+0x156/0x4d0 [ 71.663165][ T5321] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 71.663180][ T5321] process_measurement+0x1351/0x1fb0 [ 71.663192][ T5321] ? __pfx_process_measurement+0x10/0x10 [ 71.663202][ T5321] ? tomoyo_check_open_permission+0x207/0x4f0 [ 71.663216][ T5321] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 71.663236][ T5321] ? __pfx_apparmor_file_open+0x10/0x10 [ 71.663249][ T5321] ? mnt_get_write_access+0x68/0x2b0 [ 71.663260][ T5321] ? inode_to_bdi+0x69/0xf0 [ 71.663274][ T5321] ? apparmor_current_getlsmprop_subj+0xde/0x160 [ 71.663289][ T5321] ima_file_check+0xd9/0x120 [ 71.663305][ T5321] ? __pfx_ima_file_check+0x10/0x10 [ 71.663321][ T5321] security_file_post_open+0xb9/0x280 [ 71.663335][ T5321] path_openat+0x2cca/0x3590 [ 71.663351][ T5321] ? __pfx_path_openat+0x10/0x10 [ 71.663365][ T5321] do_filp_open+0x27f/0x4e0 [ 71.663376][ T5321] ? __pfx_do_filp_open+0x10/0x10 [ 71.663385][ T5321] ? do_raw_spin_lock+0x14f/0x370 [ 71.663404][ T5321] do_sys_openat2+0x13e/0x1d0 [ 71.663417][ T5321] ? __might_fault+0xaa/0x120 [ 71.663427][ T5321] ? __pfx_do_sys_openat2+0x10/0x10 [ 71.663440][ T5321] ? rcu_is_watching+0x15/0xb0 [ 71.663451][ T5321] ? __rseq_handle_notify_resume+0x34d/0x14e0 [ 71.663468][ T5321] __x64_sys_open+0x225/0x270 [ 71.663481][ T5321] ? __pfx___x64_sys_open+0x10/0x10 [ 71.663495][ T5321] ? do_syscall_64+0x100/0x230 [ 71.663509][ T5321] ? do_syscall_64+0xb6/0x230 [ 71.663523][ T5321] do_syscall_64+0xf3/0x230 [ 71.663537][ T5321] ? clear_bhb_loop+0x35/0x90 [ 71.663551][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.663565][ T5321] RIP: 0033:0x7f74bf38d169 [ 71.663576][ T5321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 71.663585][ T5321] RSP: 002b:00007f74c0140038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 71.663605][ T5321] RAX: ffffffffffffffda RBX: 00007f74bf5a5fa0 RCX: 00007f74bf38d169 [ 71.663612][ T5321] RDX: 0000000000000000 RSI: 000000000010b942 RDI: 0000400000000080 [ 71.663619][ T5321] RBP: 00007f74bf40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 71.663626][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 71.663632][ T5321] R13: 0000000000000000 R14: 00007f74bf5a5fa0 R15: 00007ffd423d6a18 [ 71.663644][ T5321] [ 71.979565][ T25] audit: type=1800 audit(1741527814.394:2): pid=5321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.0" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 71.993037][ T5321] syz.0.0 (5321) used greatest stack depth: 18064 bytes left