program: sendmmsg$inet(0xffffffffffffffff, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000140)="f1a0fa9090d465b080d9209c8845fdcaef275aaa15abcd5cd1153a72ef30f13819e7e8929f54ba0f61cab747ec572e7721478ce702eaa7b41015c3215e1643c7ec", 0x41}], 0x1}}], 0x1, 0x4000) syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000080)={[{@part={'part', 0x3d, 0x500f}}, {@nodecompose}, {}, {@part={'part', 0x3d, 0xc}}, {@uid}, {@barrier}, {@nls={'nls', 0x3d, 'cp949'}}, {@gid={'gid', 0x3d, 0xee00}}]}, 0x3, 0x5f4, &(0x7f0000000640)="$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") syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x1, 0x6d0, &(0x7f0000001340)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15) link(&(0x7f0000000940)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./bus\x00', 0x0) setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB='osx.'], 0x0, 0x0, 0x0) listxattr(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) [ 73.853724][ T5301] Bluetooth: hci0: command tx timeout [ 73.947891][ T5322] loop0: detected capacity change from 0 to 1024 [ 74.033764][ T5322] [ 74.034925][ T5322] ============================================ [ 74.037549][ T5322] WARNING: possible recursive locking detected [ 74.040380][ T5322] syzkaller #0 Not tainted [ 74.042358][ T5322] -------------------------------------------- [ 74.045367][ T5322] syz.0.0/5322 is trying to acquire lock: [ 74.048046][ T5322] ffff888012a99548 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1670 [ 74.053278][ T5322] [ 74.053278][ T5322] but task is already holding lock: [ 74.056540][ T5322] ffff888012a987c8 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 74.061709][ T5322] [ 74.061709][ T5322] other info that might help us debug this: [ 74.065221][ T5322] Possible unsafe locking scenario: [ 74.065221][ T5322] [ 74.068548][ T5322] CPU0 [ 74.070049][ T5322] ---- [ 74.071569][ T5322] lock(&HFSPLUS_I(inode)->extents_lock); [ 74.074208][ T5322] lock(&HFSPLUS_I(inode)->extents_lock); [ 74.076771][ T5322] [ 74.076771][ T5322] *** DEADLOCK *** [ 74.076771][ T5322] [ 74.080424][ T5322] May be due to missing lock nesting notation [ 74.080424][ T5322] [ 74.084030][ T5322] 6 locks held by syz.0.0/5322: [ 74.086212][ T5322] #0: ffff888037208420 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 74.090234][ T5322] #1: ffff888012a99df8 (&type->i_mutex_dir_key#8/1){+.+.}-{4:4}, at: __start_renaming+0x148/0x410 [ 74.094600][ T5322] #2: ffff888012a9ab78 (&sb->s_type->i_mutex_key#24/4){+.+.}-{4:4}, at: vfs_rename+0x810/0x1160 [ 74.099224][ T5322] #3: ffff88803643c0b0 (&tree->tree_lock){+.+.}-{4:4}, at: hfsplus_find_init+0x168/0x2d0 [ 74.103600][ T5322] #4: ffff888012a987c8 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70 [ 74.108552][ T5322] #5: ffff888012a7b0f8 (&sbi->alloc_mutex){+.+.}-{4:4}, at: hfsplus_block_allocate+0xa7/0xce0 [ 74.112930][ T5322] [ 74.112930][ T5322] stack backtrace: [ 74.115664][ T5322] CPU: 0 UID: 0 PID: 5322 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 74.115681][ T5322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 74.115689][ T5322] Call Trace: [ 74.115696][ T5322] [ 74.115717][ T5322] dump_stack_lvl+0xe8/0x150 [ 74.115755][ T5322] print_deadlock_bug+0x279/0x290 [ 74.115795][ T5322] __lock_acquire+0x253f/0x2cf0 [ 74.115814][ T5322] ? lock_release+0x4b/0x3a0 [ 74.115846][ T5322] ? is_bpf_text_address+0x292/0x2b0 [ 74.115859][ T5322] ? is_bpf_text_address+0x26/0x2b0 [ 74.115872][ T5322] ? kernel_text_address+0xa5/0xe0 [ 74.115887][ T5322] ? hfsplus_get_block+0x39e/0x1670 [ 74.115903][ T5322] lock_acquire+0x106/0x330 [ 74.115916][ T5322] ? hfsplus_get_block+0x39e/0x1670 [ 74.115935][ T5322] __mutex_lock+0x19f/0x1300 [ 74.116011][ T5322] ? hfsplus_get_block+0x39e/0x1670 [ 74.116029][ T5322] ? check_path+0x21/0x40 [ 74.116041][ T5322] ? hfsplus_get_block+0x39e/0x1670 [ 74.116056][ T5322] ? add_lock_to_list+0xc7/0x100 [ 74.116084][ T5322] ? __pfx___mutex_lock+0x10/0x10 [ 74.116101][ T5322] hfsplus_get_block+0x39e/0x1670 [ 74.116121][ T5322] ? __pfx_hfsplus_get_block+0x10/0x10 [ 74.116141][ T5322] ? block_read_full_folio+0x672/0x830 [ 74.116156][ T5322] block_read_full_folio+0x29f/0x830 [ 74.116172][ T5322] ? __pfx_hfsplus_get_block+0x10/0x10 [ 74.116189][ T5322] filemap_read_folio+0x137/0x3b0 [ 74.116200][ T5322] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 74.116216][ T5322] ? __pfx_filemap_read_folio+0x10/0x10 [ 74.116227][ T5322] ? filemap_add_folio+0x356/0x530 [ 74.116243][ T5322] do_read_cache_folio+0x358/0x590 [ 74.116256][ T5322] ? __pfx_hfsplus_read_folio+0x10/0x10 [ 74.116273][ T5322] read_cache_page+0x5d/0x170 [ 74.116284][ T5322] hfsplus_block_allocate+0xf3/0xce0 [ 74.116301][ T5322] hfsplus_file_extend+0xb2d/0x1d70 [ 74.116321][ T5322] ? __pfx_hfsplus_file_extend+0x10/0x10 [ 74.116340][ T5322] ? hfsplus_find_init+0x168/0x2d0 [ 74.116354][ T5322] ? __pfx___mutex_lock+0x10/0x10 [ 74.116365][ T5322] hfsplus_bmap_reserve+0x125/0x510 [ 74.116375][ T5322] hfsplus_rename_cat+0x22a/0x1000 [ 74.116385][ T5322] ? is_bpf_text_address+0x292/0x2b0 [ 74.116398][ T5322] ? kernel_text_address+0xa5/0xe0 [ 74.116413][ T5322] ? __kernel_text_address+0xd/0x30 [ 74.116426][ T5322] ? __pfx_hfsplus_rename_cat+0x10/0x10 [ 74.116438][ T5322] ? stack_trace_save+0xa9/0x100 [ 74.116453][ T5322] ? __pfx_stack_trace_save+0x10/0x10 [ 74.116476][ T5322] ? down_write_nested+0x174/0x210 [ 74.116496][ T5322] ? __pfx_down_write_nested+0x10/0x10 [ 74.116510][ T5322] hfsplus_rename+0x135/0x1f0 [ 74.116522][ T5322] ? __pfx_hfsplus_rename+0x10/0x10 [ 74.116533][ T5322] vfs_rename+0xdb5/0x1160 [ 74.116553][ T5322] ? __pfx_vfs_rename+0x10/0x10 [ 74.116569][ T5322] ? bpf_lsm_path_rename+0x9/0x20 [ 74.116585][ T5322] ? security_path_rename+0x17d/0x460 [ 74.116649][ T5322] do_renameat2+0x548/0x900 [ 74.116668][ T5322] ? __pfx_do_renameat2+0x10/0x10 [ 74.116687][ T5322] ? getname_flags+0x1e4/0x540 [ 74.116698][ T5322] __x64_sys_renameat2+0xce/0xe0 [ 74.116714][ T5322] do_syscall_64+0xe2/0xf80 [ 74.116727][ T5322] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.116737][ T5322] ? trace_irq_disable+0x37/0x100 [ 74.116749][ T5322] ? clear_bhb_loop+0x60/0xb0 [ 74.116761][ T5322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.116772][ T5322] RIP: 0033:0x7f1b30d9aeb9 [ 74.116807][ T5322] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 74.116817][ T5322] RSP: 002b:00007f1b31bb7028 EFLAGS: 00000246 ORIG_RAX: 000000000000013c [ 74.116845][ T5322] RAX: ffffffffffffffda RBX: 00007f1b31015fa0 RCX: 00007f1b30d9aeb9 [ 74.116854][ T5322] RDX: ffffffffffffff9c RSI: 0000200000000580 RDI: ffffffffffffff9c [ 74.116863][ T5322] RBP: 00007f1b30e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 74.116870][ T5322] R10: 00002000000005c0 R11: 0000000000000246 R12: 0000000000000000 [ 74.116879][ T5322] R13: 00007f1b31016038 R14: 00007f1b31015fa0 R15: 00007ffc299df178 [ 74.116891][ T5322]