[ 29.358965][ T3178] 8021q: adding VLAN 0 to HW filter on device bond0 [ 29.369001][ T3178] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 39.893680][ T26] kauditd_printk_skb: 37 callbacks suppressed [ 39.893696][ T26] audit: type=1400 audit(1647484871.051:73): avc: denied { transition } for pid=3385 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 39.922342][ T26] audit: type=1400 audit(1647484871.061:74): avc: denied { write } for pid=3385 comm="sh" path="pipe:[27178]" dev="pipefs" ino=27178 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 Warning: Permanently added '10.128.0.216' (ECDSA) to the list of known hosts. executing program [ 49.973144][ T26] audit: type=1400 audit(1647484881.131:75): avc: denied { execmem } for pid=3592 comm="syz-executor342" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 50.025579][ T3593] [ 50.027932][ T3593] ============================================ [ 50.034056][ T3593] WARNING: possible recursive locking detected [ 50.040178][ T3593] 5.17.0-rc8-syzkaller-00003-g56e337f2cf13 #0 Not tainted [ 50.047261][ T3593] -------------------------------------------- [ 50.053388][ T3593] syz-executor342/3593 is trying to acquire lock: [ 50.059783][ T3593] ffff88807ef26068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x132/0x1c00 [ 50.068557][ T3593] [ 50.068557][ T3593] but task is already holding lock: [ 50.076343][ T3593] ffff88807ef24c68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_wait_readable+0x39b/0x420 [ 50.085716][ T3593] [ 50.085716][ T3593] other info that might help us debug this: [ 50.093749][ T3593] Possible unsafe locking scenario: [ 50.093749][ T3593] [ 50.101179][ T3593] CPU0 [ 50.104445][ T3593] ---- [ 50.108830][ T3593] lock(&pipe->mutex/1); [ 50.113138][ T3593] lock(&pipe->mutex/1); [ 50.117447][ T3593] [ 50.117447][ T3593] *** DEADLOCK *** [ 50.117447][ T3593] [ 50.125581][ T3593] May be due to missing lock nesting notation [ 50.125581][ T3593] [ 50.133876][ T3593] 1 lock held by syz-executor342/3593: [ 50.139309][ T3593] #0: ffff88807ef24c68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_wait_readable+0x39b/0x420 [ 50.149137][ T3593] [ 50.149137][ T3593] stack backtrace: [ 50.154998][ T3593] CPU: 0 PID: 3593 Comm: syz-executor342 Not tainted 5.17.0-rc8-syzkaller-00003-g56e337f2cf13 #0 [ 50.165471][ T3593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 50.175503][ T3593] Call Trace: [ 50.178761][ T3593] [ 50.181670][ T3593] dump_stack_lvl+0xcd/0x134 [ 50.186258][ T3593] __lock_acquire.cold+0x213/0x3a9 [ 50.191363][ T3593] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 50.197325][ T3593] ? __lock_acquire+0xbc4/0x56c0 [ 50.202241][ T3593] lock_acquire+0x1ab/0x510 [ 50.206722][ T3593] ? pipe_write+0x132/0x1c00 [ 50.211290][ T3593] ? lock_release+0x720/0x720 [ 50.215945][ T3593] ? __lock_acquire+0x1666/0x56c0 [ 50.220949][ T3593] __mutex_lock+0x12f/0x12f0 [ 50.225519][ T3593] ? pipe_write+0x132/0x1c00 [ 50.230175][ T3593] ? avc_has_perm+0x1a7/0x410 [ 50.234832][ T3593] ? lock_downgrade+0x6e0/0x6e0 [ 50.239670][ T3593] ? pipe_write+0x132/0x1c00 [ 50.244367][ T3593] ? mutex_lock_io_nested+0x1150/0x1150 [ 50.249905][ T3593] ? __sanitizer_cov_trace_cmp2+0x22/0x80 [ 50.255612][ T3593] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 50.261841][ T3593] ? avc_has_perm+0x222/0x410 [ 50.266502][ T3593] ? avc_has_perm_noaudit+0x390/0x390 [ 50.271862][ T3593] pipe_write+0x132/0x1c00 [ 50.276268][ T3593] ? __mutex_lock+0x21a/0x12f0 [ 50.281022][ T3593] ? generic_pipe_buf_release+0x240/0x240 [ 50.286718][ T3593] ? inode_has_perm+0x1a2/0x220 [ 50.291548][ T3593] ? file_has_perm+0x25a/0x340 [ 50.296289][ T3593] ? selinux_bprm_committing_creds+0x6f0/0x6f0 [ 50.302422][ T3593] do_iter_readv_writev+0x47a/0x750 [ 50.307599][ T3593] ? new_sync_write+0x660/0x660 [ 50.312427][ T3593] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 50.318651][ T3593] ? security_file_permission+0xab/0xd0 [ 50.324173][ T3593] do_iter_write+0x188/0x710 [ 50.328740][ T3593] ? rcu_read_lock_sched_held+0x3a/0x70 [ 50.334269][ T3593] vfs_iter_write+0x70/0xa0 [ 50.338750][ T3593] iter_file_splice_write+0x6fa/0xc10 [ 50.344102][ T3593] ? splice_from_pipe_next.part.0+0x520/0x520 [ 50.350145][ T3593] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 50.356368][ T3593] ? security_file_permission+0xab/0xd0 [ 50.361890][ T3593] ? splice_from_pipe_next.part.0+0x520/0x520 [ 50.367931][ T3593] do_splice+0xb7e/0x1960 [ 50.372237][ T3593] ? find_held_lock+0x2d/0x110 [ 50.376979][ T3593] ? __fget_files+0x26a/0x470 [ 50.381633][ T3593] ? splice_file_to_pipe+0x120/0x120 [ 50.386893][ T3593] ? find_held_lock+0x2d/0x110 [ 50.391634][ T3593] __do_splice+0x134/0x250 [ 50.396029][ T3593] ? do_splice+0x1960/0x1960 [ 50.400597][ T3593] __x64_sys_splice+0x198/0x250 [ 50.405425][ T3593] do_syscall_64+0x35/0xb0 [ 50.409821][ T3593] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 50.415698][ T3593] RIP: 0033:0x7f8fe4c9dca9 [ 50.420090][ T3593] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 50.439676][ T3593] RSP: 002b:00007f8fe4c50308 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 50.448066][ T3593] RAX: ffffffffffffffda RBX: 00007f8fe4d26408 RCX: 00007f8fe4c9dca9 [ 50.456014][ T3593] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003 [ 50.463960][ T3593] RBP: 00007f8fe4d26400 R08: 00000000000001ff R09: 0000000000000000 [ 50.471907][ T3593] R10: 0000000000000000 R11: 0000000000000246 R