program: syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x400, &(0x7f0000000140)=ANY=[], 0x1, 0x694, &(0x7f0000001100)="$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") r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file0\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x2, 0x222, &(0x7f0000000800)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f0000000080)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) io_setup(0x202, &(0x7f0000000200)=0x0) io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}]) r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x8169, 0x6, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r2, 0xc00464b4, &(0x7f0000000400)={r4}) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) r6 = dup(r5) sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000800)={0x50, 0x2, 0x6, 0x5, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x0}]}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x50}}, 0x44) r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x1) getdents64(r7, &(0x7f0000000240)=""/217, 0xd9) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="8400"], 0x1, 0x1ae, &(0x7f0000000400)="$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") setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000380)=0x20101, 0x4) [ 85.713942][ T4682] Bluetooth: hci0: command tx timeout [ 85.801929][ T5344] loop0: detected capacity change from 0 to 1024 [ 85.902349][ T5344] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size. [ 85.913469][ T5344] [ 85.914593][ T5344] ====================================================== [ 85.917433][ T5344] WARNING: possible circular locking dependency detected [ 85.920232][ T5344] syzkaller #0 Not tainted [ 85.922150][ T5344] ------------------------------------------------------ [ 85.924992][ T5344] syz.0.0/5344 is trying to acquire lock: [ 85.927373][ T5344] ffff88803acc80b0 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfsplus_find_init+0x168/0x2d0 [ 85.931517][ T5344] [ 85.931517][ T5344] but task is already holding lock: [ 85.934593][ T5344] ffff88804225b048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x398/0x1600 [ 85.938993][ T5344] [ 85.938993][ T5344] which lock already depends on the new lock. [ 85.938993][ T5344] [ 85.943124][ T5344] [ 85.943124][ T5344] the existing dependency chain (in reverse order) is: [ 85.946859][ T5344] [ 85.946859][ T5344] -> #1 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}: [ 85.950665][ T5344] __mutex_lock+0x187/0x1350 [ 85.953286][ T5344] hfsplus_file_extend+0x1f8/0x1c30 [ 85.955686][ T5344] hfsplus_bmap_reserve+0x125/0x510 [ 85.958297][ T5344] __hfsplus_ext_write_extent+0x28d/0x5b0 [ 85.961645][ T5344] __hfsplus_ext_cache_extent+0x89/0xe30 [ 85.964974][ T5344] hfsplus_file_extend+0x437/0x1c30 [ 85.968027][ T5344] hfsplus_get_block+0x40a/0x1600 [ 85.970910][ T5344] __block_write_begin_int+0x6b5/0x1900 [ 85.974249][ T5344] cont_write_begin+0x78c/0xb50 [ 85.977178][ T5344] hfsplus_write_begin+0x66/0xb0 [ 85.981230][ T5344] generic_perform_write+0x2c5/0x900 [ 85.984376][ T5344] generic_file_write_iter+0x117/0x550 [ 85.987200][ T5344] aio_write+0x535/0x7a0 [ 85.989287][ T5344] io_submit_one+0x775/0x1430 [ 85.991511][ T5344] __se_sys_io_submit+0x185/0x320 [ 85.993746][ T5344] do_syscall_64+0xec/0xf80 [ 85.995859][ T5344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.998347][ T5344] [ 85.998347][ T5344] -> #0 (&tree->tree_lock/1){+.+.}-{4:4}: [ 86.001192][ T5344] __lock_acquire+0x15a6/0x2cf0 [ 86.003337][ T5344] lock_acquire+0x107/0x340 [ 86.005485][ T5344] __mutex_lock+0x187/0x1350 [ 86.007733][ T5344] hfsplus_find_init+0x168/0x2d0 [ 86.009876][ T5344] hfsplus_get_block+0x8dc/0x1600 [ 86.012214][ T5344] block_read_full_folio+0x29f/0x830 [ 86.014790][ T5344] read_pages+0x35d/0x580 [ 86.016889][ T5344] page_cache_ra_unbounded+0x750/0x990 [ 86.019530][ T5344] filemap_get_pages+0x468/0x1dc0 [ 86.021520][ T5344] filemap_read+0x3f6/0x11a0 [ 86.023489][ T5344] __kernel_read+0x4cf/0x960 [ 86.025744][ T5344] integrity_kernel_read+0x89/0xd0 [ 86.028179][ T5344] ima_calc_file_hash+0x85e/0x16f0 [ 86.030829][ T5344] ima_collect_measurement+0x428/0x8f0 [ 86.033403][ T5344] process_measurement+0x111e/0x1a70 [ 86.035913][ T5344] ima_file_check+0xd9/0x130 [ 86.038154][ T5344] security_file_post_open+0xbb/0x290 [ 86.040912][ T5344] path_openat+0x3456/0x3dd0 [ 86.043200][ T5344] do_filp_open+0x1fa/0x410 [ 86.045480][ T5344] do_sys_openat2+0x121/0x200 [ 86.047910][ T5344] __x64_sys_openat+0x138/0x170 [ 86.050214][ T5344] do_syscall_64+0xec/0xf80 [ 86.052382][ T5344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.054882][ T5344] [ 86.054882][ T5344] other info that might help us debug this: [ 86.054882][ T5344] [ 86.058473][ T5344] Possible unsafe locking scenario: [ 86.058473][ T5344] [ 86.061580][ T5344] CPU0 CPU1 [ 86.063957][ T5344] ---- ---- [ 86.066288][ T5344] lock(&HFSPLUS_I(inode)->extents_lock); [ 86.068620][ T5344] lock(&tree->tree_lock/1); [ 86.071191][ T5344] lock(&HFSPLUS_I(inode)->extents_lock); [ 86.073965][ T5344] lock(&tree->tree_lock/1); [ 86.075673][ T5344] [ 86.075673][ T5344] *** DEADLOCK *** [ 86.075673][ T5344] [ 86.078998][ T5344] 3 locks held by syz.0.0/5344: [ 86.081115][ T5344] #0: ffff88803e03c5b8 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}, at: process_measurement+0x74e/0x1a70 [ 86.085124][ T5344] #1: ffff88804225b3d8 (mapping.invalidate_lock#3){.+.+}-{4:4}, at: page_cache_ra_unbounded+0x1cf/0x990 [ 86.089582][ T5344] #2: ffff88804225b048 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x398/0x1600 [ 86.094216][ T5344] [ 86.094216][ T5344] stack backtrace: [ 86.096905][ T5344] CPU: 0 UID: 0 PID: 5344 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 86.096921][ T5344] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 86.096928][ T5344] Call Trace: [ 86.096936][ T5344] [ 86.096942][ T5344] dump_stack_lvl+0xe8/0x150 [ 86.096959][ T5344] print_circular_bug+0x2e2/0x300 [ 86.096974][ T5344] check_noncircular+0x12e/0x150 [ 86.096989][ T5344] __lock_acquire+0x15a6/0x2cf0 [ 86.097001][ T5344] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 86.097015][ T5344] ? lockdep_hardirqs_on+0x7b/0x110 [ 86.097025][ T5344] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 86.097040][ T5344] ? stack_depot_save_flags+0x3f3/0x810 [ 86.097056][ T5344] ? hfsplus_find_init+0x168/0x2d0 [ 86.097070][ T5344] lock_acquire+0x107/0x340 [ 86.097079][ T5344] ? hfsplus_find_init+0x168/0x2d0 [ 86.097096][ T5344] __mutex_lock+0x187/0x1350 [ 86.097106][ T5344] ? hfsplus_find_init+0x168/0x2d0 [ 86.097122][ T5344] ? hfsplus_find_init+0x168/0x2d0 [ 86.097137][ T5344] ? __pfx___mutex_lock+0x10/0x10 [ 86.097147][ T5344] ? rcu_is_watching+0x15/0xb0 [ 86.097159][ T5344] ? trace_kmalloc+0x1f/0xb0 [ 86.097171][ T5344] ? __kmalloc_noprof+0x43e/0x800 [ 86.097184][ T5344] ? hfsplus_find_init+0x8c/0x2d0 [ 86.097196][ T5344] hfsplus_find_init+0x168/0x2d0 [ 86.097210][ T5344] hfsplus_get_block+0x8dc/0x1600 [ 86.097224][ T5344] ? __pfx_hfsplus_get_block+0x10/0x10 [ 86.097237][ T5344] ? block_read_full_folio+0x672/0x830 [ 86.097251][ T5344] block_read_full_folio+0x29f/0x830 [ 86.097266][ T5344] ? __pfx_hfsplus_get_block+0x10/0x10 [ 86.097277][ T5344] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 86.097287][ T5344] read_pages+0x35d/0x580 [ 86.097301][ T5344] ? __pfx_read_pages+0x10/0x10 [ 86.097315][ T5344] ? filemap_add_folio+0x35f/0x540 [ 86.097329][ T5344] page_cache_ra_unbounded+0x750/0x990 [ 86.097345][ T5344] filemap_get_pages+0x468/0x1dc0 [ 86.097359][ T5344] ? __lock_acquire+0x6b6/0x2cf0 [ 86.097372][ T5344] ? __pfx_filemap_get_pages+0x10/0x10 [ 86.097386][ T5344] ? unwind_next_frame+0xa5/0x23d0 [ 86.097412][ T5344] filemap_read+0x3f6/0x11a0 [ 86.097428][ T5344] ? kernel_text_address+0xa5/0xe0 [ 86.097451][ T5344] ? __kernel_text_address+0xd/0x40 [ 86.097467][ T5344] ? __pfx_filemap_read+0x10/0x10 [ 86.097487][ T5344] ? generic_file_read_iter+0x8f/0x510 [ 86.097502][ T5344] ? __asan_memset+0x22/0x50 [ 86.097515][ T5344] ? iov_iter_kvec+0xb8/0x180 [ 86.097524][ T5344] __kernel_read+0x4cf/0x960 [ 86.097540][ T5344] ? __pfx___kernel_read+0x10/0x10 [ 86.097557][ T5344] integrity_kernel_read+0x89/0xd0 [ 86.097569][ T5344] ? __pfx_integrity_kernel_read+0x10/0x10 [ 86.097580][ T5344] ? __kmalloc_cache_noprof+0x3e2/0x700 [ 86.097593][ T5344] ? ima_calc_file_hash+0x820/0x16f0 [ 86.097605][ T5344] ? __asan_memcpy+0x40/0x70 [ 86.097618][ T5344] ima_calc_file_hash+0x85e/0x16f0 [ 86.097630][ T5344] ? unwind_next_frame+0xa5/0x23d0 [ 86.097643][ T5344] ? __lock_acquire+0x6b6/0x2cf0 [ 86.097652][ T5344] ? __pfx_ima_calc_file_hash+0x10/0x10 [ 86.097671][ T5344] ? lockdep_hardirqs_on+0x7b/0x110 [ 86.097680][ T5344] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 86.097694][ T5344] ? stack_depot_save_flags+0x3f3/0x810 [ 86.097709][ T5344] ? kasan_save_track+0x4f/0x80 [ 86.097722][ T5344] ? kasan_save_track+0x3e/0x80 [ 86.097734][ T5344] ? make_vfsgid+0x49/0xa0 [ 86.097748][ T5344] ? generic_fillattr+0x63d/0x9a0 [ 86.097758][ T5344] ? hfsplus_getattr+0x235/0x2f0 [ 86.097772][ T5344] ima_collect_measurement+0x428/0x8f0 [ 86.097788][ T5344] ? __pfx_ima_collect_measurement+0x10/0x10 [ 86.097804][ T5344] ? kasan_quarantine_put+0xbb/0x1f0 [ 86.097819][ T5344] ? hfsplus_getxattr+0x118/0x180 [ 86.097827][ T5344] ? kfree+0x1c0/0x660 [ 86.097842][ T5344] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 86.097855][ T5344] process_measurement+0x111e/0x1a70 [ 86.097872][ T5344] ? __pfx_process_measurement+0x10/0x10 [ 86.097885][ T5344] ? tomoyo_check_open_permission+0x325/0x3b0 [ 86.097900][ T5344] ? tomoyo_check_open_permission+0x16a/0x3b0 [ 86.097924][ T5344] ? mnt_get_write_access+0x66/0x280 [ 86.097938][ T5344] ima_file_check+0xd9/0x130 [ 86.097951][ T5344] ? __pfx_ima_file_check+0x10/0x10 [ 86.097965][ T5344] security_file_post_open+0xbb/0x290 [ 86.097980][ T5344] path_openat+0x3456/0x3dd0 [ 86.098000][ T5344] ? __pfx_path_openat+0x10/0x10 [ 86.098016][ T5344] do_filp_open+0x1fa/0x410 [ 86.098029][ T5344] ? __pfx_do_filp_open+0x10/0x10 [ 86.098047][ T5344] ? _raw_spin_unlock+0x28/0x50 [ 86.098059][ T5344] ? alloc_fd+0x64c/0x6c0 [ 86.098071][ T5344] do_sys_openat2+0x121/0x200 [ 86.098082][ T5344] ? __se_sys_futex+0x36f/0x400 [ 86.098092][ T5344] ? __pfx_do_sys_openat2+0x10/0x10 [ 86.098104][ T5344] ? rcu_is_watching+0x15/0xb0 [ 86.098119][ T5344] __x64_sys_openat+0x138/0x170 [ 86.098133][ T5344] do_syscall_64+0xec/0xf80 [ 86.098144][ T5344] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.098153][ T5344] ? trace_irq_disable+0x37/0x100 [ 86.098167][ T5344] ? clear_bhb_loop+0x60/0xb0 [ 86.098179][ T5344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.098189][ T5344] RIP: 0033:0x7fc4b678f7c9 [ 86.098201][ T5344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 86.098210][ T5344] RSP: 002b:00007fc4b7576038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 86.098222][ T5344] RAX: ffffffffffffffda RBX: 00007fc4b69e5fa0 RCX: 00007fc4b678f7c9 [ 86.098229][ T5344] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 86.098253][ T5344] RBP: 00007fc4b6813f91 R08: 0000000000000000 R09: 0000000000000000 [ 86.098261][ T5344] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 86.098267][ T5344] R13: 00007fc4b69e6038 R14: 00007fc4b69e5fa0 R15: 00007ffd46a8cbe8 [ 86.098279][ T5344] [ 86.408678][ T3360] hfsplus: b-tree write err: -5, ino 3 [ 86.439587][ T25] audit: type=1800 audit(1767544178.925:2): pid=5344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.0" name="file1" dev="loop0" ino=20 res=0 errno=0