Warning: Permanently added '10.128.0.74' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 37.713824] [ 37.715485] ====================================================== [ 37.722075] WARNING: possible circular locking dependency detected [ 37.728377] 4.19.198-syzkaller #0 Not tainted [ 37.733024] ------------------------------------------------------ [ 37.739330] syz-executor485/8079 is trying to acquire lock: [ 37.745013] 00000000cf4afe73 (sb_writers#3){.+.+}, at: mnt_want_write+0x3a/0xb0 [ 37.752567] [ 37.752567] but task is already holding lock: [ 37.758531] 000000000edd8453 (&iint->mutex){+.+.}, at: process_measurement+0x316/0x1440 [ 37.766833] [ 37.766833] which lock already depends on the new lock. [ 37.766833] [ 37.775690] [ 37.775690] the existing dependency chain (in reverse order) is: [ 37.783303] [ 37.783303] -> #1 (&iint->mutex){+.+.}: [ 37.788852] process_measurement+0x316/0x1440 [ 37.793942] ima_file_check+0xb9/0x100 [ 37.798339] path_openat+0x7e4/0x2df0 [ 37.802635] do_filp_open+0x18c/0x3f0 [ 37.806943] do_sys_open+0x3b3/0x520 [ 37.811175] do_syscall_64+0xf9/0x620 [ 37.815576] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.821277] [ 37.821277] -> #0 (sb_writers#3){.+.+}: [ 37.826758] __sb_start_write+0x6e/0x2a0 [ 37.831457] mnt_want_write+0x3a/0xb0 [ 37.835773] ovl_maybe_copy_up+0x11f/0x190 [ 37.840933] ovl_open+0xb4/0x260 [ 37.844802] do_dentry_open+0x4aa/0x1160 [ 37.849546] dentry_open+0x132/0x1d0 [ 37.853787] ima_calc_file_hash+0x628/0x8a0 [ 37.858629] ima_collect_measurement+0x4c4/0x570 [ 37.863892] process_measurement+0xddd/0x1440 [ 37.868884] ima_file_check+0xb9/0x100 [ 37.873368] path_openat+0x7e4/0x2df0 [ 37.877762] do_filp_open+0x18c/0x3f0 [ 37.882125] do_sys_open+0x3b3/0x520 [ 37.886352] do_syscall_64+0xf9/0x620 [ 37.890657] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.896751] [ 37.896751] other info that might help us debug this: [ 37.896751] [ 37.904890] Possible unsafe locking scenario: [ 37.904890] [ 37.911314] CPU0 CPU1 [ 37.915978] ---- ---- [ 37.920992] lock(&iint->mutex); [ 37.924426] lock(sb_writers#3); [ 37.930667] lock(&iint->mutex); [ 37.936622] lock(sb_writers#3); [ 37.940057] [ 37.940057] *** DEADLOCK *** [ 37.940057] [ 37.946112] 1 lock held by syz-executor485/8079: [ 37.950847] #0: 000000000edd8453 (&iint->mutex){+.+.}, at: process_measurement+0x316/0x1440 [ 37.959432] [ 37.959432] stack backtrace: [ 37.963947] CPU: 1 PID: 8079 Comm: syz-executor485 Not tainted 4.19.198-syzkaller #0 [ 37.972255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.981615] Call Trace: [ 37.984191] dump_stack+0x1fc/0x2ef [ 37.987823] print_circular_bug.constprop.0.cold+0x2d7/0x41e [ 37.993605] __lock_acquire+0x30c9/0x3ff0 [ 37.997742] ? mark_held_locks+0xf0/0xf0 [ 38.001878] ? kmem_cache_alloc+0x122/0x370 [ 38.006179] ? mark_held_locks+0xf0/0xf0 [ 38.010232] ? path_openat+0x7e4/0x2df0 [ 38.014251] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.019787] ? fs_reclaim_release+0xd0/0x110 [ 38.024214] lock_acquire+0x170/0x3c0 [ 38.028005] ? mnt_want_write+0x3a/0xb0 [ 38.031980] __sb_start_write+0x6e/0x2a0 [ 38.036032] ? mnt_want_write+0x3a/0xb0 [ 38.039997] mnt_want_write+0x3a/0xb0 [ 38.043805] ovl_maybe_copy_up+0x11f/0x190 [ 38.048020] ovl_open+0xb4/0x260 [ 38.051366] do_dentry_open+0x4aa/0x1160 [ 38.055406] ? ovl_fsync+0x220/0x220 [ 38.059125] ? chown_common+0x550/0x550 [ 38.063102] ? percpu_counter_add_batch+0x126/0x180 [ 38.068098] dentry_open+0x132/0x1d0 [ 38.071810] ima_calc_file_hash+0x628/0x8a0 [ 38.076126] ? xattr_list_one+0x120/0x120 [ 38.080254] ima_collect_measurement+0x4c4/0x570 [ 38.085078] ? ima_get_action+0x90/0x90 [ 38.089051] ? ima_get_cache_status+0x1d0/0x1d0 [ 38.093731] process_measurement+0xddd/0x1440 [ 38.098296] ? ima_restore_measurement_entry+0x40/0x40 [ 38.103559] ? file_ra_state_init+0xc4/0x1e0 [ 38.107948] ? aa_get_task_label+0x1e6/0x7f0 [ 38.112340] ? lock_downgrade+0x720/0x720 [ 38.116486] ? check_preemption_disabled+0x41/0x280 [ 38.121587] ? check_preemption_disabled+0x41/0x280 [ 38.126687] ? aa_get_task_label+0x20d/0x7f0 [ 38.131286] ? revert_creds+0x326/0x450 [ 38.135271] ? aa_capable+0xb80/0xb80 [ 38.139063] ? ovl_open+0xca/0x260 [ 38.142591] ? apparmor_task_getsecid+0x88/0xc0 [ 38.147559] ima_file_check+0xb9/0x100 [ 38.151453] ? process_measurement+0x1440/0x1440 [ 38.156253] ? inode_permission+0x3d/0x140 [ 38.160472] path_openat+0x7e4/0x2df0 [ 38.164254] ? path_lookupat+0x8d0/0x8d0 [ 38.168295] ? mark_held_locks+0xf0/0xf0 [ 38.172413] ? __lock_acquire+0x6de/0x3ff0 [ 38.176649] do_filp_open+0x18c/0x3f0 [ 38.180641] ? may_open_dev+0xf0/0xf0 [ 38.184427] ? lock_downgrade+0x720/0x720 [ 38.188554] ? lock_acquire+0x170/0x3c0 [ 38.192520] ? __alloc_fd+0x34/0x570 [ 38.196306] ? do_raw_spin_unlock+0x171/0x230 [ 38.200804] ? _raw_spin_unlock+0x29/0x40 [ 38.204962] ? __alloc_fd+0x28d/0x570 [ 38.208759] do_sys_open+0x3b3/0x520 [ 38.212463] ? filp_open+0x70/0x70 [ 38.216159] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 38.221634] ? trace_hardirqs_off_caller+0x6e/0x210 [ 38.226634] ? do_syscall_64+0x21/0x620 [ 38.230610] do_syscall_64+0xf9/0x620 [ 38.234487] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.240178] RIP: 0033:0x43ef99 [ 38.243365] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 38.262264] RSP: 002b:00007ffe3d29d708 EFLAG