Warning: Permanently added '10.128.1.221' (ED25519) to the list of known hosts. [ 52.849515][ T3497] cgroup: Unknown subsys name 'net' [ 52.967757][ T3497] cgroup: Unknown subsys name 'rlimit' executing program [ 53.192240][ T3500] [ 53.194602][ T3500] ====================================================== [ 53.201609][ T3500] WARNING: possible circular locking dependency detected [ 53.208614][ T3500] 5.15.120-syzkaller #0 Not tainted [ 53.213797][ T3500] ------------------------------------------------------ [ 53.220800][ T3500] syz-executor312/3500 is trying to acquire lock: [ 53.227205][ T3500] ffffffff8cebd170 ((crypto_chain).rwsem){++++}-{3:3}, at: blocking_notifier_call_chain+0x5e/0x1b0 [ 53.237908][ T3500] [ 53.237908][ T3500] but task is already holding lock: [ 53.245268][ T3500] ffff888141bc91b8 (&sb->s_type->i_mutex_key#19){+.+.}-{3:3}, at: vfs_setxattr+0x1dd/0x420 [ 53.255429][ T3500] [ 53.255429][ T3500] which lock already depends on the new lock. [ 53.255429][ T3500] [ 53.265864][ T3500] [ 53.265864][ T3500] the existing dependency chain (in reverse order) is: [ 53.274872][ T3500] [ 53.274872][ T3500] -> #3 (&sb->s_type->i_mutex_key#19){+.+.}-{3:3}: [ 53.283560][ T3500] lock_acquire+0x1db/0x4f0 [ 53.288586][ T3500] down_write+0x97/0x170 [ 53.293347][ T3500] hugetlbfs_file_mmap+0x2bc/0x580 [ 53.298973][ T3500] mmap_region+0x10e7/0x1670 [ 53.304088][ T3500] do_mmap+0x78d/0xe00 [ 53.308672][ T3500] vm_mmap_pgoff+0x1ca/0x2d0 [ 53.313771][ T3500] ksys_mmap_pgoff+0x5c5/0x780 [ 53.319053][ T3500] do_syscall_64+0x3d/0xb0 [ 53.323988][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.330412][ T3500] [ 53.330412][ T3500] -> #2 (&mm->mmap_lock#2){++++}-{3:3}: [ 53.338153][ T3500] lock_acquire+0x1db/0x4f0 [ 53.343192][ T3500] down_write+0x97/0x170 [ 53.347968][ T3500] mpol_rebind_mm+0x34/0x2b0 [ 53.353194][ T3500] cpuset_attach+0x393/0x540 [ 53.358295][ T3500] cgroup_migrate_execute+0x7fb/0x10e0 [ 53.364271][ T3500] cgroup_attach_task+0x58a/0x840 [ 53.369825][ T3500] __cgroup1_procs_write+0x2ec/0x460 [ 53.375630][ T3500] cgroup_file_write+0x2ac/0x670 [ 53.381081][ T3500] kernfs_fop_write_iter+0x3a2/0x4f0 [ 53.386901][ T3500] vfs_write+0xacf/0xe50 [ 53.391656][ T3500] ksys_write+0x1a2/0x2c0 [ 53.396499][ T3500] do_syscall_64+0x3d/0xb0 [ 53.401436][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.407861][ T3500] [ 53.407861][ T3500] -> #1 (&cpuset_rwsem){++++}-{0:0}: [ 53.415318][ T3500] lock_acquire+0x1db/0x4f0 [ 53.420332][ T3500] cpuset_read_lock+0x40/0x150 [ 53.425603][ T3500] __sched_setscheduler+0x626/0x1df0 [ 53.431401][ T3500] sched_setscheduler_nocheck+0x187/0x2d0 [ 53.437655][ T3500] __kthread_create_on_node+0x31b/0x3f0 [ 53.443908][ T3500] kthread_create_on_node+0xda/0x120 [ 53.449809][ T3500] cryptomgr_notify+0x125/0xc70 [ 53.455182][ T3500] blocking_notifier_call_chain+0x104/0x1b0 [ 53.461588][ T3500] crypto_probing_notify+0x21/0x70 [ 53.467211][ T3500] crypto_wait_for_test+0x3e/0xd0 [ 53.472748][ T3500] crypto_register_alg+0x25b/0x330 [ 53.478367][ T3500] do_one_initcall+0x22b/0x7a0 [ 53.483645][ T3500] do_initcall_level+0x157/0x207 [ 53.489113][ T3500] do_initcalls+0x49/0x86 [ 53.493959][ T3500] kernel_init_freeable+0x43c/0x5c5 [ 53.499671][ T3500] kernel_init+0x19/0x290 [ 53.504543][ T3500] ret_from_fork+0x1f/0x30 [ 53.509471][ T3500] [ 53.509471][ T3500] -> #0 ((crypto_chain).rwsem){++++}-{3:3}: [ 53.517547][ T3500] validate_chain+0x1646/0x58b0 [ 53.522925][ T3500] __lock_acquire+0x1295/0x1ff0 [ 53.528313][ T3500] lock_acquire+0x1db/0x4f0 [ 53.533327][ T3500] down_read+0x45/0x2e0 [ 53.537998][ T3500] blocking_notifier_call_chain+0x5e/0x1b0 [ 53.544334][ T3500] crypto_alg_mod_lookup+0x4e6/0x710 [ 53.550134][ T3500] crypto_has_alg+0x22/0x110 [ 53.555339][ T3500] ima_inode_setxattr+0x836/0xa10 [ 53.560873][ T3500] security_inode_setxattr+0x1b0/0x230 [ 53.566842][ T3500] __vfs_setxattr_locked+0xa6/0x240 [ 53.572548][ T3500] vfs_setxattr+0x21d/0x420 [ 53.577556][ T3500] setxattr+0x27e/0x2e0 [ 53.582234][ T3500] __se_sys_fsetxattr+0x194/0x210 [ 53.587783][ T3500] do_syscall_64+0x3d/0xb0 [ 53.592725][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.599129][ T3500] [ 53.599129][ T3500] other info that might help us debug this: [ 53.599129][ T3500] [ 53.609483][ T3500] Chain exists of: [ 53.609483][ T3500] (crypto_chain).rwsem --> &mm->mmap_lock#2 --> &sb->s_type->i_mutex_key#19 [ 53.609483][ T3500] [ 53.624264][ T3500] Possible unsafe locking scenario: [ 53.624264][ T3500] [ 53.631821][ T3500] CPU0 CPU1 [ 53.637184][ T3500] ---- ---- [ 53.642538][ T3500] lock(&sb->s_type->i_mutex_key#19); [ 53.647996][ T3500] lock(&mm->mmap_lock#2); [ 53.655011][ T3500] lock(&sb->s_type->i_mutex_key#19); [ 53.662982][ T3500] lock((crypto_chain).rwsem); [ 53.668002][ T3500] [ 53.668002][ T3500] *** DEADLOCK *** [ 53.668002][ T3500] [ 53.676128][ T3500] 2 locks held by syz-executor312/3500: [ 53.681676][ T3500] #0: ffff888141bc0460 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0 [ 53.691441][ T3500] #1: ffff888141bc91b8 (&sb->s_type->i_mutex_key#19){+.+.}-{3:3}, at: vfs_setxattr+0x1dd/0x420 [ 53.701964][ T3500] [ 53.701964][ T3500] stack backtrace: [ 53.707841][ T3500] CPU: 0 PID: 3500 Comm: syz-executor312 Not tainted 5.15.120-syzkaller #0 [ 53.716439][ T3500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 53.726483][ T3500] Call Trace: [ 53.729770][ T3500] [ 53.732692][ T3500] dump_stack_lvl+0x1e3/0x2cb [ 53.737362][ T3500] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 53.742991][ T3500] ? print_circular_bug+0x12b/0x1a0 [ 53.748182][ T3500] check_noncircular+0x2f8/0x3b0 [ 53.753319][ T3500] ? add_chain_block+0x850/0x850 [ 53.758267][ T3500] ? lockdep_lock+0x11f/0x2a0 [ 53.762961][ T3500] validate_chain+0x1646/0x58b0 [ 53.767814][ T3500] ? mark_lock+0x98/0x340 [ 53.772139][ T3500] ? reacquire_held_locks+0x660/0x660 [ 53.777536][ T3500] ? reacquire_held_locks+0x660/0x660 [ 53.782928][ T3500] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 53.788906][ T3500] ? print_irqtrace_events+0x210/0x210 [ 53.794372][ T3500] ? do_raw_spin_unlock+0x137/0x8b0 [ 53.799677][ T3500] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 53.805570][ T3500] ? _raw_spin_unlock+0x40/0x40 [ 53.810445][ T3500] ? stack_trace_save+0x113/0x1c0 [ 53.815477][ T3500] ? mark_lock+0x98/0x340 [ 53.819818][ T3500] __lock_acquire+0x1295/0x1ff0 [ 53.824675][ T3500] lock_acquire+0x1db/0x4f0 [ 53.829175][ T3500] ? blocking_notifier_call_chain+0x5e/0x1b0 [ 53.835165][ T3500] ? read_lock_is_recursive+0x10/0x10 [ 53.840533][ T3500] ? __might_sleep+0xc0/0xc0 [ 53.845112][ T3500] ? memset+0x1f/0x40 [ 53.849084][ T3500] ? lockdep_init_map_type+0x9d/0x8d0 [ 53.854451][ T3500] ? up_write+0x133/0x4d0 [ 53.858775][ T3500] down_read+0x45/0x2e0 [ 53.862927][ T3500] ? blocking_notifier_call_chain+0x5e/0x1b0 [ 53.868902][ T3500] ? blocking_notifier_call_chain+0x2a/0x1b0 [ 53.874873][ T3500] blocking_notifier_call_chain+0x5e/0x1b0 [ 53.880677][ T3500] crypto_alg_mod_lookup+0x4e6/0x710 [ 53.885979][ T3500] crypto_has_alg+0x22/0x110 [ 53.890584][ T3500] ima_inode_setxattr+0x836/0xa10 [ 53.895624][ T3500] ? ima_inode_post_setattr+0x380/0x380 [ 53.901169][ T3500] security_inode_setxattr+0x1b0/0x230 [ 53.906631][ T3500] __vfs_setxattr_locked+0xa6/0x240 [ 53.911825][ T3500] vfs_setxattr+0x21d/0x420 [ 53.916324][ T3500] ? xattr_permission+0x4f0/0x4f0 [ 53.921339][ T3500] ? __might_fault+0xb4/0x110 [ 53.926032][ T3500] ? _copy_from_user+0x10f/0x170 [ 53.930963][ T3500] setxattr+0x27e/0x2e0 [ 53.935108][ T3500] ? path_setxattr+0x2a0/0x2a0 [ 53.939869][ T3500] ? preempt_count_add+0x8f/0x180 [ 53.944893][ T3500] ? __mnt_want_write+0x1e6/0x260 [ 53.949912][ T3500] __se_sys_fsetxattr+0x194/0x210 [ 53.954941][ T3500] do_syscall_64+0x3d/0xb0 [ 53.959368][ T3500] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.965254][ T3500] RIP: 0033:0x7f0e59417a59 [ 53.969660][ T3500] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 53.989258][ T3500] RSP: 002b:00007ffe6db34018 EFLAGS: 00000246 ORIG_RAX: 00000000000000be [ 53.997672][ T3500] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f0e59417a59 [ 54.006020][ T3500] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000003 [ 54.013992][ T3500] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.021967][ T3500] R10: 0000000000000002 R11: 0000000000000246 R12: 00007f0e59461036 [ 54.029947][ T3500] R13: 00007ffe6db34050 R14: 00007ffe6db34090 R15: 0000000000000000 [ 54.037941][ T3500] executing program [ 54.057604][ T25] audit: type=1800 audit(1689102406.243:2): pid=3500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27937 res=0 errno=0 executing program [ 54.113106][ T25] audit: type=1800 audit(1689102406.293:3): pid=3504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27294 res=0 errno=0 executing program [ 54.154851][ T25] audit: type=1800 audit(1689102406.343:4): pid=3508 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27298 res=0 errno=0 executing program [ 54.197684][ T25] audit: type=1800 audit(1689102406.383:5): pid=3512 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27302 res=0 errno=0 executing program [ 54.240495][ T25] audit: type=1800 audit(1689102406.423:6): pid=3516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27306 res=0 errno=0 executing program [ 54.284078][ T25] audit: type=1800 audit(1689102406.463:7): pid=3520 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27310 res=0 errno=0 executing program [ 54.326903][ T25] audit: type=1800 audit(1689102406.513:8): pid=3524 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27314 res=0 errno=0 executing program [ 54.371623][ T25] audit: type=1800 audit(1689102406.553:9): pid=3528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27318 res=0 errno=0 executing program [ 54.429006][ T25] audit: type=1800 audit(1689102406.613:10): pid=3532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27322 res=0 errno=0 executing program executing program [ 54.472529][ T25] audit: type=1800 audit(1689102406.653:11): pid=3536 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27943 res=0 errno=0 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 59.098108][ T25] kauditd_printk_skb: 132 callbacks suppressed [ 59.098119][ T25] audit: type=1800 audit(1689102411.283:144): pid=4068 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=28301 res=0 errno=0 executing program [ 59.147158][ T25] audit: type=1800 audit(1689102411.333:145): pid=4072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=28305 res=0 errno=0 executing program [ 59.203338][ T25] audit: type=1800 audit(1689102411.383:146): pid=4076 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27500 res=0 errno=0 executing program [ 59.258198][ T25] audit: type=1800 audit(1689102411.443:147): pid=4080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27504 res=0 errno=0 executing program [ 59.299630][ T25] audit: type=1800 audit(1689102411.483:148): pid=4084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27508 res=0 errno=0 executing program [ 59.356410][ T25] audit: type=1800 audit(1689102411.543:149): pid=4088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27512 res=0 errno=0 executing program [ 59.411026][ T25] audit: type=1800 audit(1689102411.593:150): pid=4092 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27516 res=0 errno=0 executing program [ 59.472247][ T25] audit: type=1800 audit(1689102411.653:151): pid=4096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=27520 res=0 errno=0 executing program [ 59.509590][ T25] audit: type=1800 audit(1689102411.693:152): pid=4100 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=28309 res=0 errno=0 executing program executing program [ 59.566379][ T25] audit: type=1800 audit(1689102411.753:153): pid=4104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz-executor312" name="/" dev="hugetlbfs" ino=28313 res=0 errno=0 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program