BUG: MAX_LOCKDEP_CHAINS too low! turning off the locking correctness validator. CPU: 0 PID: 3138 Comm: syz-executor.0 Not tainted 5.15.0-rc1-next-20210916-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106 add_chain_cache kernel/locking/lockdep.c:3637 [inline] lookup_chain_cache_add kernel/locking/lockdep.c:3736 [inline] validate_chain kernel/locking/lockdep.c:3757 [inline] __lock_acquire.cold+0x372/0x3ab kernel/locking/lockdep.c:5015 lock_acquire kernel/locking/lockdep.c:5625 [inline] lock_acquire+0x1ab/0x510 kernel/locking/lockdep.c:5590 __raw_spin_lock include/linux/spinlock_api_smp.h:142 [inline] _raw_spin_lock+0x2a/0x40 kernel/locking/spinlock.c:154 perf_ctx_lock kernel/events/core.c:166 [inline] perf_event_context_sched_in kernel/events/core.c:3841 [inline] __perf_event_task_sched_in+0x4c3/0xae0 kernel/events/core.c:3903 perf_event_task_sched_in include/linux/perf_event.h:1206 [inline] finish_task_switch.isra.0+0x4c5/0xa20 kernel/sched/core.c:4812 context_switch kernel/sched/core.c:4958 [inline] __schedule+0x948/0x26f0 kernel/sched/core.c:6236 preempt_schedule_irq+0x4e/0x90 kernel/sched/core.c:6636 irqentry_exit+0x31/0x80 kernel/entry/common.c:427 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:638 RIP: 0010:tomoyo_check_acl+0xc1/0x450 security/tomoyo/domain.c:173 Code: 55 6e d7 fd 48 8d 7b 18 48 89 f8 48 89 fa 48 c1 e8 03 83 e2 07 0f b6 04 28 38 d0 7f 08 84 c0 0f 85 f7 02 00 00 44 0f b6 73 18 <31> ff 44 89 f6 e8 65 74 d7 fd 45 84 f6 0f 85 61 01 00 00 e8 17 6e RSP: 0018:ffffc90005d77348 EFLAGS: 00000246 RAX: 0000000000000000 RBX: ffff888071d26080 RCX: ffffc90002da1000 RDX: 0000000000000000 RSI: ffffffff839ea7cb RDI: ffff888071d26098 RBP: dffffc0000000000 R08: 0000000000000000 R09: 0000000000000000 R10: ffffffff839ea878 R11: 0000000000000000 R12: ffffc90005d77478 R13: ffff888072514f10 R14: 0000000000000000 R15: 0000000000000000 tomoyo_path_permission security/tomoyo/file.c:586 [inline] tomoyo_path_permission+0x1ff/0x3a0 security/tomoyo/file.c:573 tomoyo_path_perm+0x2f0/0x400 security/tomoyo/file.c:838 security_inode_getattr+0xcf/0x140 security/security.c:1333 vfs_getattr+0x22/0x60 fs/stat.c:157 ovl_copy_up_one+0x133/0x1de0 fs/overlayfs/copy_up.c:935 ovl_copy_up_flags+0x150/0x1d0 fs/overlayfs/copy_up.c:1017 ovl_rename+0x245/0x1bc0 fs/overlayfs/dir.c:1139 vfs_rename+0x1615/0x1ff0 fs/namei.c:4628 do_renameat2+0xb5b/0xc80 fs/namei.c:4779 __do_sys_rename fs/namei.c:4825 [inline] __se_sys_rename fs/namei.c:4823 [inline] __x64_sys_rename+0x7d/0xa0 fs/namei.c:4823 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7faa3eee5739 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007faa3c45c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 RAX: ffffffffffffffda RBX: 00007faa3efe9f80 RCX: 00007faa3eee5739 RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000020000100 RBP: 00007faa3ef3fcc4 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007faa3efe9f80 R13: 00007ffca3c6bc5f R14: 00007faa3c45c300 R15: 0000000000022000 ---------------- Code disassembly (best guess): 0: 55 push %rbp 1: 6e outsb %ds:(%rsi),(%dx) 2: d7 xlat %ds:(%rbx) 3: fd std 4: 48 8d 7b 18 lea 0x18(%rbx),%rdi 8: 48 89 f8 mov %rdi,%rax b: 48 89 fa mov %rdi,%rdx e: 48 c1 e8 03 shr $0x3,%rax 12: 83 e2 07 and $0x7,%edx 15: 0f b6 04 28 movzbl (%rax,%rbp,1),%eax 19: 38 d0 cmp %dl,%al 1b: 7f 08 jg 0x25 1d: 84 c0 test %al,%al 1f: 0f 85 f7 02 00 00 jne 0x31c 25: 44 0f b6 73 18 movzbl 0x18(%rbx),%r14d * 2a: 31 ff xor %edi,%edi <-- trapping instruction 2c: 44 89 f6 mov %r14d,%esi 2f: e8 65 74 d7 fd callq 0xfdd77499 34: 45 84 f6 test %r14b,%r14b 37: 0f 85 61 01 00 00 jne 0x19e 3d: e8 .byte 0xe8 3e: 17 (bad) 3f: 6e outsb %ds:(%rsi),(%dx)