[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.228' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 79.531880][ T8459] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 79.533983][ T8458] [ 79.549185][ T8458] ====================================================== [ 79.556698][ T8458] WARNING: possible circular locking dependency detected [ 79.564012][ T8458] 5.13.0-rc2-next-20210518-syzkaller #0 Not tainted [ 79.570897][ T8458] ------------------------------------------------------ [ 79.577920][ T8458] syz-executor230/8458 is trying to acquire lock: [ 79.584340][ T8458] ffff88801cb5fe00 (&iint->mutex){+.+.}-{3:3}, at: process_measurement+0x3a8/0x17e0 [ 79.593783][ T8458] [ 79.593783][ T8458] but task is already holding lock: [ 79.601982][ T8458] ffff888147efa460 (sb_writers#5){.+.+}-{0:0}, at: path_openat+0x1ad4/0x27d0 [ 79.611128][ T8458] [ 79.611128][ T8458] which lock already depends on the new lock. [ 79.611128][ T8458] [ 79.621799][ T8458] [ 79.621799][ T8458] the existing dependency chain (in reverse order) is: [ 79.631463][ T8458] [ 79.631463][ T8458] -> #1 (sb_writers#5){.+.+}-{0:0}: [ 79.638854][ T8458] mnt_want_write+0x6e/0x3e0 [ 79.643986][ T8458] ovl_maybe_copy_up+0x11f/0x190 [ 79.649547][ T8458] ovl_open+0xba/0x270 [ 79.654135][ T8458] do_dentry_open+0x4b9/0x11c0 [ 79.659717][ T8458] dentry_open+0x132/0x1d0 [ 79.665076][ T8458] ima_calc_file_hash+0x2d2/0x4b0 [ 79.671077][ T8458] ima_collect_measurement+0x4ca/0x570 [ 79.677472][ T8458] process_measurement+0xd1c/0x17e0 [ 79.683202][ T8458] ima_file_check+0xb1/0x100 [ 79.688484][ T8458] path_openat+0x15b0/0x27d0 [ 79.693789][ T8458] do_filp_open+0x190/0x3d0 [ 79.699027][ T8458] do_sys_openat2+0x16d/0x420 [ 79.704679][ T8458] __x64_sys_open+0x119/0x1c0 [ 79.709869][ T8458] do_syscall_64+0x31/0xb0 [ 79.714977][ T8458] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 79.721738][ T8458] [ 79.721738][ T8458] -> #0 (&iint->mutex){+.+.}-{3:3}: [ 79.729253][ T8458] __lock_acquire+0x2a17/0x5230 [ 79.734737][ T8458] lock_acquire+0x1ab/0x740 [ 79.739867][ T8458] __mutex_lock+0x139/0x1120 [ 79.745180][ T8458] process_measurement+0x3a8/0x17e0 [ 79.750997][ T8458] ima_file_check+0xb1/0x100 [ 79.756208][ T8458] path_openat+0x15b0/0x27d0 [ 79.761442][ T8458] do_filp_open+0x190/0x3d0 [ 79.766464][ T8458] do_sys_openat2+0x16d/0x420 [ 79.771675][ T8458] __x64_sys_openat+0x13f/0x1f0 [ 79.777215][ T8458] do_syscall_64+0x31/0xb0 [ 79.782498][ T8458] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 79.789007][ T8458] [ 79.789007][ T8458] other info that might help us debug this: [ 79.789007][ T8458] [ 79.799703][ T8458] Possible unsafe locking scenario: [ 79.799703][ T8458] [ 79.807149][ T8458] CPU0 CPU1 [ 79.812517][ T8458] ---- ---- [ 79.817886][ T8458] lock(sb_writers#5); [ 79.822224][ T8458] lock(&iint->mutex); [ 79.828995][ T8458] lock(sb_writers#5); [ 79.837477][ T8458] lock(&iint->mutex); [ 79.841845][ T8458] [ 79.841845][ T8458] *** DEADLOCK *** [ 79.841845][ T8458] [ 79.849988][ T8458] 1 lock held by syz-executor230/8458: [ 79.855532][ T8458] #0: ffff888147efa460 (sb_writers#5){.+.+}-{0:0}, at: path_openat+0x1ad4/0x27d0 [ 79.865460][ T8458] [ 79.865460][ T8458] stack backtrace: [ 79.871606][ T8458] CPU: 1 PID: 8458 Comm: syz-executor230 Not tainted 5.13.0-rc2-next-20210518-syzkaller #0 [ 79.881808][ T8458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 79.891968][ T8458] Call Trace: [ 79.895246][ T8458] dump_stack_lvl+0x13e/0x1d6 [ 79.899933][ T8458] check_noncircular+0x25f/0x2e0 [ 79.906008][ T8458] ? print_circular_bug+0x1e0/0x1e0 [ 79.911306][ T8458] ? check_path.constprop.0+0x50/0x50 [ 79.916997][ T8458] ? lockdep_lock+0xc6/0x200 [ 79.921806][ T8458] ? call_rcu_zapped+0xb0/0xb0 [ 79.926666][ T8458] __lock_acquire+0x2a17/0x5230 [ 79.931869][ T8458] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 79.938296][ T8458] lock_acquire+0x1ab/0x740 [ 79.943208][ T8458] ? process_measurement+0x3a8/0x17e0 [ 79.949042][ T8458] ? lock_release+0x720/0x720 [ 79.954037][ T8458] __mutex_lock+0x139/0x1120 [ 79.958750][ T8458] ? process_measurement+0x3a8/0x17e0 [ 79.964900][ T8458] ? process_measurement+0x814/0x17e0 [ 79.970579][ T8458] ? lock_downgrade+0x6e0/0x6e0 [ 79.975609][ T8458] ? process_measurement+0x3a8/0x17e0 [ 79.980990][ T8458] ? mutex_lock_io_nested+0xf70/0xf70 [ 79.986397][ T8458] ? up_write+0x191/0x560 [ 79.990807][ T8458] ? downgrade_write+0x3a0/0x3a0 [ 79.995868][ T8458] ? do_raw_read_unlock+0x3b/0x70 [ 80.001282][ T8458] ? _raw_read_unlock+0x24/0x40 [ 80.006858][ T8458] ? integrity_iint_find+0x123/0x150 [ 80.012748][ T8458] process_measurement+0x3a8/0x17e0 [ 80.018737][ T8458] ? mmap_violation_check+0x1e0/0x1e0 [ 80.025305][ T8458] ? rwlock_bug.part.0+0x90/0x90 [ 80.030634][ T8458] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 80.036797][ T8458] ? find_held_lock+0x2d/0x110 [ 80.041877][ T8458] ? aa_get_task_label+0x20f/0x540 [ 80.047232][ T8458] ? lock_downgrade+0x6e0/0x6e0 [ 80.052681][ T8458] ? apparmor_file_open+0x1a5/0xab0 [ 80.058238][ T8458] ? aa_get_task_label+0x231/0x540 [ 80.063720][ T8458] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 80.070645][ T8458] ? apparmor_task_getsecid+0xc2/0x110 [ 80.076225][ T8458] ima_file_check+0xb1/0x100 [ 80.081298][ T8458] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 80.088024][ T8458] ? process_measurement+0x17e0/0x17e0 [ 80.093738][ T8458] ? may_open+0x1f6/0x420 [ 80.098576][ T8458] path_openat+0x15b0/0x27d0 [ 80.103236][ T8458] ? path_lookupat+0x850/0x850 [ 80.108032][ T8458] ? mark_lock+0xef/0x17b0 [ 80.112619][ T8458] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 80.118611][ T8458] do_filp_open+0x190/0x3d0 [ 80.123286][ T8458] ? may_open_dev+0xf0/0xf0 [ 80.127877][ T8458] ? alloc_fd+0x2f0/0x670 [ 80.132299][ T8458] ? rwlock_bug.part.0+0x90/0x90 [ 80.137393][ T8458] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 80.143933][ T8458] ? _find_next_bit+0x1e3/0x260 [ 80.149292][ T8458] ? _raw_spin_unlock+0x24/0x40 [ 80.154371][ T8458] ? alloc_fd+0x2f0/0x670 [ 80.158721][ T8458] do_sys_openat2+0x16d/0x420 [ 80.163959][ T8458] ? build_open_flags+0x6f0/0x6f0 [ 80.169879][ T8458] ? __context_tracking_exit+0xb8/0xe0 [ 80.176637][ T8458] ? lock_downgrade+0x6e0/0x6e0 [ 80.181723][ T8458] __x64_sys_openat+0x13f/0x1f0 [ 80.186760][ T8458] ? __ia32_sys_open+0x1c0/0x1c0 [ 80.192266][ T8458] ? syscall_enter_from_user_mode+0x21/0x70 [ 80.198280][ T8458] do_syscall_64+0x31/0xb0 [ 80.203241][ T8458] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 80.209747][ T8458] RIP: 0033:0x444cf9 [ 80.214231][ T8458] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 80.235261][ T8458] RSP: 002b:00007fe8fa14f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 80.244252][ T8458] RAX: ffffffffffffffda RBX: 00000000004ca400 RCX: 0000000000444cf9 [ 80.252255][ T8458] RDX: 000000000000275a RSI: 0000000020000080 RDI: 00000000ffffff9c [ 80.260431][ T8458] RBP: 000000000049a004 R08: 0000000000000000 R09: 0000000000000000 [ 80.268668][ T8458] R10: 0000000000000000 R11: 0000000000000246 R12: 69662f7375622f2e [ 80.277021][ T8458] R13: 3d72696472657070 R14: 0079616c7265766f R15: 00000000004ca408