Warning: Permanently added '10.128.0.82' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 52.292256][ T8406] [ 52.293588][ T8408] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 52.294602][ T8406] ====================================================== [ 52.294609][ T8406] WARNING: possible circular locking dependency detected [ 52.322820][ T8406] 5.14.0-syzkaller #0 Not tainted [ 52.327853][ T8406] ------------------------------------------------------ [ 52.334931][ T8406] syz-executor453/8406 is trying to acquire lock: [ 52.341316][ T8406] ffff888071eb6e00 (&iint->mutex){+.+.}-{3:3}, at: process_measurement+0x7bf/0x1dd0 [ 52.344424][ T36] audit: type=1804 audit(1631071411.971:2): pid=8407 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor453" name="/root/bus/file1" dev="overlay" ino=13869 res=1 errno=0 [ 52.350704][ T8406] [ 52.350704][ T8406] but task is already holding lock: [ 52.350710][ T8406] ffff888029288460 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 52.350755][ T8406] [ 52.350755][ T8406] which lock already depends on the new lock. [ 52.350755][ T8406] [ 52.350760][ T8406] [ 52.350760][ T8406] the existing dependency chain (in reverse order) is: [ 52.350764][ T8406] [ 52.350764][ T8406] -> #1 (sb_writers#5){.+.+}-{0:0}: [ 52.414564][ T8406] lock_acquire+0x19f/0x4d0 [ 52.419590][ T8406] sb_start_write+0x4f/0x1a0 [ 52.424698][ T8406] mnt_want_write+0x3b/0x80 [ 52.429700][ T8406] ovl_maybe_copy_up+0x117/0x180 [ 52.435253][ T8406] ovl_open+0xa2/0x200 [ 52.439829][ T8406] do_dentry_open+0x7cb/0x1020 [ 52.445112][ T8406] dentry_open+0xc6/0x120 [ 52.449949][ T8406] ima_calc_file_hash+0x156/0x1b90 [ 52.455558][ T8406] ima_collect_measurement+0x27d/0x510 [ 52.461532][ T8406] process_measurement+0x101d/0x1dd0 [ 52.467329][ T8406] ima_file_check+0xed/0x170 [ 52.472415][ T8406] path_openat+0x2917/0x3670 [ 52.477503][ T8406] do_filp_open+0x277/0x4f0 [ 52.482523][ T8406] do_sys_openat2+0x13b/0x500 [ 52.487706][ T8406] __x64_sys_open+0x221/0x270 [ 52.492883][ T8406] do_syscall_64+0x44/0xd0 [ 52.497850][ T8406] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 52.504262][ T8406] [ 52.504262][ T8406] -> #0 (&iint->mutex){+.+.}-{3:3}: [ 52.511639][ T8406] validate_chain+0x1dfb/0x8240 [ 52.516995][ T8406] __lock_acquire+0x1382/0x2b00 [ 52.522433][ T8406] lock_acquire+0x19f/0x4d0 [ 52.527433][ T8406] __mutex_lock_common+0x1df/0x2550 [ 52.533129][ T8406] mutex_lock_nested+0x1a/0x20 [ 52.538477][ T8406] process_measurement+0x7bf/0x1dd0 [ 52.544257][ T8406] ima_file_check+0xed/0x170 [ 52.549343][ T8406] path_openat+0x2917/0x3670 [ 52.554430][ T8406] do_filp_open+0x277/0x4f0 [ 52.559426][ T8406] do_sys_openat2+0x13b/0x500 [ 52.564600][ T8406] __x64_sys_openat+0x243/0x290 [ 52.569950][ T8406] do_syscall_64+0x44/0xd0 [ 52.574864][ T8406] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 52.581256][ T8406] [ 52.581256][ T8406] other info that might help us debug this: [ 52.581256][ T8406] [ 52.591552][ T8406] Possible unsafe locking scenario: [ 52.591552][ T8406] [ 52.599010][ T8406] CPU0 CPU1 [ 52.604348][ T8406] ---- ---- [ 52.609688][ T8406] lock(sb_writers#5); [ 52.613823][ T8406] lock(&iint->mutex); [ 52.620471][ T8406] lock(sb_writers#5); [ 52.627125][ T8406] lock(&iint->mutex); [ 52.631255][ T8406] [ 52.631255][ T8406] *** DEADLOCK *** [ 52.631255][ T8406] [ 52.639376][ T8406] 1 lock held by syz-executor453/8406: [ 52.644807][ T8406] #0: ffff888029288460 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 52.653944][ T8406] [ 52.653944][ T8406] stack backtrace: [ 52.659834][ T8406] CPU: 1 PID: 8406 Comm: syz-executor453 Not tainted 5.14.0-syzkaller #0 [ 52.668223][ T8406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 52.678256][ T8406] Call Trace: [ 52.681516][ T8406] dump_stack_lvl+0x1dc/0x2d8 [ 52.686171][ T8406] ? show_regs_print_info+0x12/0x12 [ 52.691372][ T8406] ? save_trace+0x5a/0x9f0 [ 52.695766][ T8406] ? print_circular_bug+0x48e/0x5d0 [ 52.700941][ T8406] check_noncircular+0x2f9/0x3b0 [ 52.705852][ T8406] ? hlock_conflict+0x54/0x1f0 [ 52.710594][ T8406] ? add_chain_block+0x850/0x850 [ 52.715515][ T8406] ? lockdep_lock+0x11d/0x2e0 [ 52.720541][ T8406] ? __lock_acquire+0x1382/0x2b00 [ 52.725546][ T8406] validate_chain+0x1dfb/0x8240 [ 52.730383][ T8406] ? lockdep_lock+0x2e0/0x2e0 [ 52.735036][ T8406] ? reacquire_held_locks+0x620/0x620 [ 52.740379][ T8406] ? mark_lock+0x191/0x1e00 [ 52.744867][ T8406] ? __print_lock_name+0x1d0/0x1d0 [ 52.749994][ T8406] ? reacquire_held_locks+0x620/0x620 [ 52.755356][ T8406] ? mark_lock+0x191/0x1e00 [ 52.759933][ T8406] ? __print_lock_name+0x1d0/0x1d0 [ 52.765031][ T8406] ? __print_lock_name+0x1d0/0x1d0 [ 52.770115][ T8406] ? rcu_read_lock_sched_held+0x89/0x130 [ 52.775818][ T8406] __lock_acquire+0x1382/0x2b00 [ 52.780650][ T8406] ? trace_lock_acquire+0x190/0x190 [ 52.785822][ T8406] ? __lock_acquire+0x1382/0x2b00 [ 52.790822][ T8406] lock_acquire+0x19f/0x4d0 [ 52.795301][ T8406] ? process_measurement+0x7bf/0x1dd0 [ 52.800650][ T8406] ? read_lock_is_recursive+0x10/0x10 [ 52.806011][ T8406] ? __might_sleep+0x110/0x110 [ 52.810756][ T8406] __mutex_lock_common+0x1df/0x2550 [ 52.816033][ T8406] ? process_measurement+0x7bf/0x1dd0 [ 52.821467][ T8406] ? integrity_inode_get+0x296/0x300 [ 52.826725][ T8406] ? __lock_acquire+0x2b00/0x2b00 [ 52.831723][ T8406] ? process_measurement+0x7bf/0x1dd0 [ 52.837167][ T8406] ? mutex_lock_io_nested+0x60/0x60 [ 52.842340][ T8406] ? up_write+0x12c/0x4d0 [ 52.846651][ T8406] ? __up_read+0x790/0x790 [ 52.851092][ T8406] ? integrity_inode_get+0x296/0x300 [ 52.856464][ T8406] mutex_lock_nested+0x1a/0x20 [ 52.861216][ T8406] process_measurement+0x7bf/0x1dd0 [ 52.866403][ T8406] ? ima_file_mmap+0x1c0/0x1c0 [ 52.871150][ T8406] ? smack_task_getsecid_subj+0x22/0x80 [ 52.876673][ T8406] ima_file_check+0xed/0x170 [ 52.881238][ T8406] ? ima_bprm_check+0x2a0/0x2a0 [ 52.886075][ T8406] path_openat+0x2917/0x3670 [ 52.890650][ T8406] ? do_filp_open+0x4f0/0x4f0 [ 52.895306][ T8406] ? rcu_read_lock_sched_held+0x89/0x130 [ 52.900914][ T8406] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 52.906869][ T8406] do_filp_open+0x277/0x4f0 [ 52.911351][ T8406] ? vfs_tmpfile+0x230/0x230 [ 52.916001][ T8406] ? alloc_fd+0x5e1/0x680 [ 52.920472][ T8406] ? _raw_spin_unlock+0x24/0x40 [ 52.925354][ T8406] ? alloc_fd+0x5e1/0x680 [ 52.929764][ T8406] do_sys_openat2+0x13b/0x500 [ 52.934429][ T8406] ? do_sys_open+0x220/0x220 [ 52.938999][ T8406] __x64_sys_openat+0x243/0x290 [ 52.943827][ T8406] ? __ia32_sys_open+0x270/0x270 [ 52.948762][ T8406] ? syscall_enter_from_user_mode+0x2e/0x1b0 [ 52.954720][ T8406] ? lockdep_hardirqs_on+0x95/0x140 [ 52.959892][ T8406] ? syscall_enter_from_user_mode+0x2e/0x1b0 [ 52.965856][ T8406] do_syscall_64+0x44/0xd0 [ 52.970260][ T8406] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 52.976134][ T8406] RIP: 0033:0x444cc9 [ 52.980006][ T8406] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 52.999672][ T8406] RSP: 002b:00007f64a670b2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 53.008063][ T8406] RAX: ffffffffffffffda RBX: 00000000004ca400 RCX: 0000000000444cc9 [ 53.016012][ T8406] RDX: 000000000000275a RSI: 00000000200001c0 RDI: 00000000ffffff9c [ 53.023971][ T8406] RBP: 000000000049a004 R08: 0000000000000000 R09: 0000000000000000 [ 53.031918][ T8406] R10: 0000000000000000 R11: 0000000000000246 R12: 69662f7375622f2e [ 53.039865][ T8406] R13: 79706f636174656d R14: 0079616c7265766f