Warning: Permanently added '10.128.0.161' (ECDSA) to the list of known hosts. 2019/01/25 08:24:39 parsed 1 programs 2019/01/25 08:24:42 executed programs: 0 2019/01/25 08:24:47 executed programs: 194 2019/01/25 08:24:52 executed programs: 415 2019/01/25 08:24:57 executed programs: 634 2019/01/25 08:25:02 executed programs: 851 2019/01/25 08:25:07 executed programs: 1065 [ 70.365417] [ 70.367083] ====================================================== [ 70.373370] [ INFO: possible circular locking dependency detected ] [ 70.379759] 4.4.171+ #12 Not tainted [ 70.383439] ------------------------------------------------------- [ 70.389811] syz-executor0/8350 is trying to acquire lock: [ 70.395317] (sel_mutex){+.+.+.}, at: [] sel_commit_bools_write+0x89/0x260 [ 70.404345] [ 70.404345] but task is already holding lock: [ 70.410294] (&pipe->mutex/1){+.+.+.}, at: [] pipe_lock+0x63/0x80 [ 70.418690] [ 70.418690] which lock already depends on the new lock. [ 70.418690] [ 70.426974] [ 70.426974] the existing dependency chain (in reverse order) is: [ 70.434581] -> #5 (&pipe->mutex/1){+.+.+.}: [ 70.439665] [] lock_acquire+0x15e/0x450 [ 70.445906] [] mutex_lock_nested+0xc1/0xb80 [ 70.452509] [] pipe_lock+0x63/0x80 [ 70.458448] [] iter_file_splice_write+0x179/0xb30 [ 70.465554] [] SyS_splice+0xd71/0x13a0 [ 70.471737] [] do_fast_syscall_32+0x32d/0xa90 [ 70.478524] [] sysenter_flags_fixed+0xd/0x1a [ 70.485195] -> #4 (sb_writers#4){.+.+.+}: [ 70.490090] [] lock_acquire+0x15e/0x450 [ 70.496347] [] __sb_start_write+0x1af/0x310 [ 70.502933] [] ext4_lazyinit_thread+0x1e4/0x7b0 [ 70.509867] [] kthread+0x273/0x310 [ 70.515672] [] ret_from_fork+0x55/0x80 [ 70.521818] -> #3 (&eli->li_list_mtx){+.+...}: [ 70.527035] [] lock_acquire+0x15e/0x450 [ 70.533280] [] mutex_lock_nested+0xc1/0xb80 [ 70.539869] [] ext4_register_li_request+0x2fd/0x7d0 [ 70.547144] [] ext4_remount+0x1366/0x1b90 [ 70.553555] [] do_remount_sb2+0x41b/0x7a0 [ 70.559969] [] do_mount+0xfdb/0x2a40 [ 70.565949] [] SyS_mount+0x130/0x1d0 [ 70.571919] [] entry_SYSCALL_64_fastpath+0x1e/0x9a [ 70.579123] -> #2 (&ext4_li_mtx){+.+.+.}: [ 70.583895] [] lock_acquire+0x15e/0x450 [ 70.590140] [] mutex_lock_nested+0xc1/0xb80 [ 70.596720] [] ext4_register_li_request+0x89/0x7d0 [ 70.603922] [] ext4_remount+0x1366/0x1b90 [ 70.610332] [] do_remount_sb2+0x41b/0x7a0 [ 70.616752] [] do_mount+0xfdb/0x2a40 [ 70.622776] [] SyS_mount+0x130/0x1d0 [ 70.628784] [] entry_SYSCALL_64_fastpath+0x1e/0x9a [ 70.635992] -> #1 (&type->s_umount_key#34){++++++}: [ 70.641732] [] lock_acquire+0x15e/0x450 [ 70.647965] [] down_read+0x42/0x60 [ 70.653762] [] iterate_supers+0xe1/0x250 [ 70.660100] [] selinux_complete_init+0x2f/0x31 [ 70.666956] [] security_load_policy+0x69d/0x9c0 [ 70.673899] [] sel_write_load+0x175/0xf90 [ 70.680308] [] __vfs_write+0x116/0x3d0 [ 70.686461] [] vfs_write+0x182/0x4e0 [ 70.692438] [] SyS_write+0xdc/0x1c0 [ 70.698327] [] entry_SYSCALL_64_fastpath+0x1e/0x9a [ 70.705548] -> #0 (sel_mutex){+.+.+.}: [ 70.710090] [] __lock_acquire+0x37d6/0x4f50 [ 70.716688] [] lock_acquire+0x15e/0x450 [ 70.722921] [] mutex_lock_nested+0xc1/0xb80 [ 70.729502] [] sel_commit_bools_write+0x89/0x260 [ 70.736520] [] __vfs_write+0x116/0x3d0 [ 70.742685] [] __kernel_write+0x112/0x370 [ 70.749092] [] write_pipe_buf+0x15d/0x1f0 [ 70.755531] [] __splice_from_pipe+0x37e/0x7a0 [ 70.762290] [] splice_from_pipe+0x108/0x170 [ 70.768874] [] default_file_splice_write+0x3c/0x80 [ 70.776072] [] SyS_splice+0xd71/0x13a0 [ 70.782228] [] do_fast_syscall_32+0x32d/0xa90 [ 70.788989] [] sysenter_flags_fixed+0xd/0x1a [ 70.795661] [ 70.795661] other info that might help us debug this: [ 70.795661] [ 70.803773] Chain exists of: sel_mutex --> sb_writers#4 --> &pipe->mutex/1 [ 70.812144] Possible unsafe locking scenario: [ 70.812144] [ 70.818169] CPU0 CPU1 [ 70.822808] ---- ---- [ 70.827458] lock(&pipe->mutex/1); [ 70.831413] lock(sb_writers#4); [ 70.837730] lock(&pipe->mutex/1); [ 70.844225] lock(sel_mutex); [ 70.847632] [ 70.847632] *** DEADLOCK *** [ 70.847632] [ 70.853666] 2 locks held by syz-executor0/8350: [ 70.858302] #0: (sb_writers#3){.+.+.+}, at: [] SyS_splice+0xf2d/0x13a0 [ 70.867393] #1: (&pipe->mutex/1){+.+.+.}, at: [] pipe_lock+0x63/0x80 [ 70.876363] [ 70.876363] stack backtrace: [ 70.880853] CPU: 1 PID: 8350 Comm: syz-executor0 Not tainted 4.4.171+ #12 [ 70.887766] 0000000000000000 6ddebff4e3388894 ffff8800b8ac7540 ffffffff81aacd31 [ 70.895802] ffffffff84057a80 ffff8800b8c72f80 ffffffff83ab8870 ffffffff83abd610 [ 70.903780] ffffffff83abc380 ffff8800b8ac7590 ffffffff813abad4 ffffffff83e24080 [ 70.911791] Call Trace: [ 70.914362] [] dump_stack+0xc1/0x120 [ 70.919698] [] print_circular_bug.cold+0x2f7/0x44e [ 70.926249] [] __lock_acquire+0x37d6/0x4f50 [ 70.932214] [] ? check_preemption_disabled+0x3c/0x200 [ 70.939036] [] ? trace_hardirqs_on+0x10/0x10 [ 70.945085] [] ? __bfs+0x28/0x5e0 [ 70.950177] [] lock_acquire+0x15e/0x450 [ 70.955791] [] ? sel_commit_bools_write+0x89/0x260 [ 70.962359] [] ? sel_commit_bools_write+0x89/0x260 [ 70.968912] [] mutex_lock_nested+0xc1/0xb80 [ 70.974873] [] ? sel_commit_bools_write+0x89/0x260 [ 70.981460] [] ? is_module_text_address+0x2c/0x50 [ 70.987934] [] ? __kernel_text_address+0x68/0xa0 [ 70.994321] [] ? print_context_stack+0x59/0xd0 [ 71.000525] [] ? mutex_trylock+0x500/0x500 [ 71.006382] [] ? dump_trace+0x183/0x390 [ 71.011986] [] ? __schedule+0x7af/0x1ee0 [ 71.017672] [] ? __schedule+0x7a3/0x1ee0 [ 71.023359] [] sel_commit_bools_write+0x89/0x260 [ 71.029736] [] ? sel_read_mls+0xc0/0xc0 [ 71.035334] [] ? __lock_acquire+0x2c79/0x4f50 [ 71.041455] [] __vfs_write+0x116/0x3d0 [ 71.046964] [] ? sel_read_mls+0xc0/0xc0 [ 71.052562] [] ? __vfs_read+0x3c0/0x3c0 [ 71.058162] [] ? trace_hardirqs_on+0x10/0x10 [ 71.064197] [] ? futex_wait_setup+0x350/0x350 [ 71.070315] [] __kernel_write+0x112/0x370 [ 71.076094] [] write_pipe_buf+0x15d/0x1f0 [ 71.081870] [] ? mutex_lock_nested+0x645/0xb80 [ 71.088080] [] ? do_splice_direct+0x260/0x260 [ 71.094201] [] ? splice_from_pipe_next.part.0+0x20d/0x2c0 [ 71.101359] [] __splice_from_pipe+0x37e/0x7a0 [ 71.107476] [] ? do_splice_direct+0x260/0x260 [ 71.113594] [] ? do_splice_direct+0x260/0x260 [ 71.119710] [] splice_from_pipe+0x108/0x170 [ 71.125667] [] ? splice_shrink_spd+0x60/0x60 [ 71.131698] [] default_file_splice_write+0x3c/0x80 [ 71.138249] [] ? generic_splice_sendpage+0x50/0x50 [ 71.144802] [] SyS_splice+0xd71/0x13a0 [ 71.150314] [] ? __compat_put_timespec.isra.0+0xce/0x140 [ 71.157387] [] ? compat_SyS_vmsplice+0x160/0x160 [ 71.163767] [] ? do_sys_ftruncate.constprop.0+0x387/0x470 [ 71.170931] [] ? do_fast_syscall_32+0xd6/0xa90 [ 71.177136] [] ? compat_SyS_vmsplice+0x160/0x160 [ 71.183535] [] do_fast_syscall_32+0x32d/0xa90 [ 71.189654] [] sysenter_flags_fixed+0xd/0x1a 2019/01/25 08:25:13 executed programs: 1265 2019/01/25 08:25:18 executed programs: 1540