Warning: Permanently added '10.128.0.194' (ED25519) to the list of known hosts. executing program [ 77.243946][ T4247] mmap: syz-executor350 (4247) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 77.257495][ T4247] [ 77.259905][ T4247] ====================================================== [ 77.267032][ T4247] WARNING: possible circular locking dependency detected [ 77.274063][ T4247] 6.1.120-syzkaller-00773-g52f863f820fd #0 Tainted: G W [ 77.282378][ T4247] ------------------------------------------------------ [ 77.289394][ T4247] syz-executor350/4247 is trying to acquire lock: [ 77.295803][ T4247] ffff88807cc1b510 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: process_measurement+0x446/0x21b0 [ 77.306546][ T4247] [ 77.306546][ T4247] but task is already holding lock: [ 77.313904][ T4247] ffff888030c67958 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x207/0x8b0 [ 77.323937][ T4247] [ 77.323937][ T4247] which lock already depends on the new lock. [ 77.323937][ T4247] [ 77.334448][ T4247] [ 77.334448][ T4247] the existing dependency chain (in reverse order) is: [ 77.343454][ T4247] [ 77.343454][ T4247] -> #1 (&mm->mmap_lock){++++}-{3:3}: [ 77.351081][ T4247] lock_acquire+0x1f8/0x5a0 [ 77.356129][ T4247] down_read_killable+0xc6/0xd10 [ 77.361709][ T4247] mmap_read_lock_killable+0x1d/0x60 [ 77.367518][ T4247] lock_mm_and_find_vma+0x2a7/0x2e0 [ 77.373332][ T4247] exc_page_fault+0x169/0x620 [ 77.378615][ T4247] asm_exc_page_fault+0x22/0x30 [ 77.383994][ T4247] fault_in_readable+0x1c8/0x340 [ 77.389462][ T4247] fault_in_iov_iter_readable+0xdb/0x270 [ 77.395629][ T4247] generic_perform_write+0x207/0x5e0 [ 77.401430][ T4247] __generic_file_write_iter+0x176/0x400 [ 77.407582][ T4247] generic_file_write_iter+0xab/0x310 [ 77.413473][ T4247] vfs_write+0x857/0xbc0 [ 77.418235][ T4247] ksys_write+0x19c/0x2c0 [ 77.423087][ T4247] do_syscall_64+0x3b/0xb0 [ 77.428029][ T4247] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 77.434452][ T4247] [ 77.434452][ T4247] -> #0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}: [ 77.443150][ T4247] validate_chain+0x1661/0x5950 [ 77.448525][ T4247] __lock_acquire+0x125b/0x1f80 [ 77.453911][ T4247] lock_acquire+0x1f8/0x5a0 [ 77.458945][ T4247] down_write+0x36/0x60 [ 77.463646][ T4247] process_measurement+0x446/0x21b0 [ 77.469372][ T4247] ima_file_mmap+0x121/0x1c0 [ 77.474481][ T4247] __se_sys_remap_file_pages+0x67a/0x8b0 [ 77.480680][ T4247] do_syscall_64+0x3b/0xb0 [ 77.485637][ T4247] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 77.492076][ T4247] [ 77.492076][ T4247] other info that might help us debug this: [ 77.492076][ T4247] [ 77.502304][ T4247] Possible unsafe locking scenario: [ 77.502304][ T4247] [ 77.509752][ T4247] CPU0 CPU1 [ 77.515111][ T4247] ---- ---- [ 77.520468][ T4247] lock(&mm->mmap_lock); [ 77.524804][ T4247] lock(&sb->s_type->i_mutex_key#12); [ 77.532785][ T4247] lock(&mm->mmap_lock); [ 77.539636][ T4247] lock(&sb->s_type->i_mutex_key#12); [ 77.545153][ T4247] [ 77.545153][ T4247] *** DEADLOCK *** [ 77.545153][ T4247] [ 77.553288][ T4247] 1 lock held by syz-executor350/4247: [ 77.558738][ T4247] #0: ffff888030c67958 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x207/0x8b0 [ 77.569194][ T4247] [ 77.569194][ T4247] stack backtrace: [ 77.575183][ T4247] CPU: 1 PID: 4247 Comm: syz-executor350 Tainted: G W 6.1.120-syzkaller-00773-g52f863f820fd #0 [ 77.586911][ T4247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 77.596980][ T4247] Call Trace: [ 77.600261][ T4247] [ 77.603281][ T4247] dump_stack_lvl+0x1e3/0x2cb [ 77.607977][ T4247] ? nf_tcp_handle_invalid+0x642/0x642 [ 77.613447][ T4247] ? print_circular_bug+0x12b/0x1a0 [ 77.618675][ T4247] check_noncircular+0x2fa/0x3b0 [ 77.623615][ T4247] ? add_chain_block+0x850/0x850 [ 77.628550][ T4247] ? lockdep_lock+0x11f/0x2a0 [ 77.633252][ T4247] ? _find_first_zero_bit+0xd0/0x100 [ 77.638547][ T4247] validate_chain+0x1661/0x5950 [ 77.643409][ T4247] ? reacquire_held_locks+0x660/0x660 [ 77.648817][ T4247] ? look_up_lock_class+0x77/0x140 [ 77.653947][ T4247] ? register_lock_class+0x100/0x990 [ 77.659326][ T4247] ? ima_match_policy+0x104/0x2330 [ 77.664531][ T4247] ? __lock_acquire+0x1f80/0x1f80 [ 77.669566][ T4247] ? is_dynamic_key+0x260/0x260 [ 77.674435][ T4247] ? mark_lock+0x9a/0x340 [ 77.678778][ T4247] __lock_acquire+0x125b/0x1f80 [ 77.683642][ T4247] lock_acquire+0x1f8/0x5a0 [ 77.688151][ T4247] ? process_measurement+0x446/0x21b0 [ 77.693527][ T4247] ? read_lock_is_recursive+0x10/0x10 [ 77.698905][ T4247] ? ima_lsm_policy_change+0x620/0x620 [ 77.704372][ T4247] ? __might_sleep+0xb0/0xb0 [ 77.709054][ T4247] ? ima_get_action+0x71/0xa0 [ 77.713741][ T4247] down_write+0x36/0x60 [ 77.717904][ T4247] ? process_measurement+0x446/0x21b0 [ 77.723284][ T4247] process_measurement+0x446/0x21b0 [ 77.728510][ T4247] ? ima_file_mmap+0x1c0/0x1c0 [ 77.733279][ T4247] ? __lock_acquire+0x1f80/0x1f80 [ 77.738322][ T4247] ? aa_path_link+0xea0/0xea0 [ 77.743000][ T4247] ? mtree_load+0xc45/0xdf0 [ 77.747515][ T4247] ? aa_get_current_label+0x111/0x1d0 [ 77.752893][ T4247] ? apparmor_current_getsecid_subj+0xac/0x110 [ 77.759051][ T4247] ima_file_mmap+0x121/0x1c0 [ 77.763642][ T4247] ? ima_file_free+0x3c0/0x3c0 [ 77.768412][ T4247] ? bpf_lsm_mmap_file+0x5/0x10 [ 77.773266][ T4247] ? security_mmap_file+0x11a/0x170 [ 77.778462][ T4247] __se_sys_remap_file_pages+0x67a/0x8b0 [ 77.784108][ T4247] ? __x64_sys_remap_file_pages+0xc0/0xc0 [ 77.789834][ T4247] ? print_irqtrace_events+0x210/0x210 [ 77.795303][ T4247] ? print_irqtrace_events+0x210/0x210 [ 77.800856][ T4247] ? syscall_enter_from_user_mode+0x2e/0x230 [ 77.806839][ T4247] ? lockdep_hardirqs_on+0x94/0x130 [ 77.812039][ T4247] ? __x64_sys_remap_file_pages+0x1c/0xc0 [ 77.817756][ T4247] do_syscall_64+0x3b/0xb0 [ 77.822182][ T4247] ? clear_bhb_loop+0x45/0xa0 [ 77.826947][ T4247] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 77.832846][ T4247] RIP: 0033:0x7ff04a0a92c9 [ 77.837360][ T4247] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 77.856972][ T4247] RSP: 002b:00007ff04a028228 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 77.865386][ T4247] RAX: ffffffffffffffda RBX: 00007ff04a133328 RCX: 00007ff04a0a92c9 [ 77.873359][ T4247] RDX: 0000000000000000 RSI: 0000000000200000 RDI: 00000000202ec000 [ 77.881331][ T4247] RBP: 00007ff04a133320 R08: 0000000000000000 R09: 00007ff04a0286c0 [ 77.889388][ T4247] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff04a13332c [ 77.897362][ T4247] R13: 00000000fffffd9d R14: 00656d69745f7974 R15: 00007ffe9d6d59c8 [ 77.905344][ T4247]