binder: undelivered TRANSACTION_ERROR: 29189
======================================================
WARNING: possible circular locking dependency detected
4.14.94+ #12 Not tainted
------------------------------------------------------
syz-executor4/15388 is trying to acquire lock:
 (&sig->cred_guard_mutex){+.+.}, at: [<ffffffffa42a062f>] lock_trace+0x3f/0xc0 fs/proc/base.c:408

but task is already holding lock:
 (&p->lock){+.+.}, at: [<ffffffffa41cc9cd>] seq_read+0xcd/0x1180 fs/seq_file.c:165

which lock already depends on the new lock.


the existing dependency chain (in reverse order) is:

-> #2 (&p->lock){+.+.}:

-> #1 (&pipe->mutex/1){+.+.}:

-> #0 (&sig->cred_guard_mutex){+.+.}:

other info that might help us debug this:

Chain exists of:
  &sig->cred_guard_mutex --> &pipe->mutex/1 --> &p->lock

 Possible unsafe locking scenario:

       CPU0                    CPU1
binder: BINDER_SET_CONTEXT_MGR already set
       ----                    ----
  lock(&p->lock);
                               lock(&pipe->mutex/1);
                               lock(&p->lock);
  lock(&sig->cred_guard_mutex);

 *** DEADLOCK ***

1 lock held by syz-executor4/15388:
 #0:  (&p->lock){+.+.}, at: [<ffffffffa41cc9cd>] seq_read+0xcd/0x1180 fs/seq_file.c:165

stack backtrace:
CPU: 0 PID: 15388 Comm: syz-executor4 Not tainted 4.14.94+ #12
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0xb9/0x10e lib/dump_stack.c:53
 print_circular_bug.isra.0.cold+0x2dc/0x425 kernel/locking/lockdep.c:1258
binder: 15399:15404 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15399:15404 transaction failed 29189/-3, size 0-8330814885705285632 line 3135
ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15410:15416 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15410:15416 transaction failed 29189/-3, size 0-0 line 3135
binder_alloc: binder_alloc_mmap_handler: 15399 20001000-20004000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15399:15400 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15399:15405 transaction failed 29189/-3, size 0-8330814885705285632 line 3135
ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15434:15437 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15434:15437 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15448:15450 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15448:15450 transaction failed 29189/-3, size 0-0 line 3135
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15457:15458 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15457:15458 transaction failed 29189/-3, size 0-8330814885705285632 line 3135
binder_alloc: binder_alloc_mmap_handler: 15434 20001000-20004000 already mapped failed -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15434:15461 transaction failed 29189/-3, size 0-0 line 3135
binder: 15434:15460 ioctl 40046207 0 returned -16
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15473:15477 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15473:15477 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15484:15486 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15484:15486 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15487:15489 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15487:15489 transaction failed 29189/-3, size 0-8330814885705285632 line 3135
binder_alloc: binder_alloc_mmap_handler: 15473 20001000-20004000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15473:15492 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15473:15493 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15508:15511 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15508:15511 transaction failed 29189/-3, size 0-0 line 3135
binder_alloc: binder_alloc_mmap_handler: 15508 20001000-20004000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15508:15511 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15508:15515 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15521:15523 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15521:15523 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15526:15534 ioctl 40046207 0 returned -16
audit: type=1326 audit(2000000207.222:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15525 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15529:15552 transaction failed 29189/-3, size 0-0 line 3135
binder_alloc: 14785: binder_alloc_buf, no vma
binder: undelivered TRANSACTION_ERROR: 29189
binder: 15529:15552 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
audit: type=1326 audit(2000000208.012:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15525 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15571:15582 ioctl 40046207 0 returned -16
audit: type=1326 audit(2000000208.302:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15578 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder: 15571:15582 BC_INCREFS_DONE u0000000000000000 no match
binder: 15571:15582 unknown command 0
binder: 15571:15582 ioctl c0306201 200001c0 returned -22
binder_alloc: binder_alloc_mmap_handler: 15571 20001000-20004000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15571:15605 ioctl 40046207 0 returned -16
binder: 15571:15605 BC_INCREFS_DONE u0000000000000000 no match
binder: 15571:15605 unknown command 0
binder: 15571:15605 ioctl c0306201 200001c0 returned -22
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15616:15617 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15616:15617 transaction failed 29189/-3, size 0-0 line 3135
binder_alloc: binder_alloc_mmap_handler: 15616 20001000-20004000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15616:15617 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15616:15618 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15629:15637 ioctl 40046207 0 returned -16
audit: type=1326 audit(2000000209.172:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15628 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15629:15637 transaction failed 29189/-3, size 0-0 line 3135
binder_alloc: binder_alloc_mmap_handler: 15629 20001000-20004000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15629:15667 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15629:15658 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15673:15678 ioctl 40046207 0 returned -16
binder: 15673:15678 BC_INCREFS_DONE u0000000000000000 no match
binder: 15673:15678 unknown command 0
binder: 15673:15678 ioctl c0306201 200001c0 returned -22
binder: BINDER_SET_CONTEXT_MGR already set
audit: type=1326 audit(2000000209.982:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15677 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder: 15682:15687 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15682:15696 transaction failed 29189/-3, size 0-0 line 3135
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15701:15705 ioctl 40046207 0 returned -16
binder: 15701:15705 BC_INCREFS_DONE u0000000000000000 no match
binder: 15701:15705 unknown command 0
binder: 15701:15705 ioctl c0306201 200001c0 returned -22
binder_alloc: binder_alloc_mmap_handler: 15682 20001000-20004000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15682:15696 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15682:15722 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15726:15731 ioctl 40046207 0 returned -16
binder: 15726:15731 BC_INCREFS_DONE u0000000000000000 no match
binder: 15726:15731 unknown command 0
binder: 15726:15731 ioctl c0306201 200001c0 returned -22
audit: type=1326 audit(2000000210.902:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15723 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15747:15750 ioctl 40046207 0 returned -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15752:15753 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15752:15753 transaction failed 29189/-3, size 0-0 line 3135
binder: 15752:15753 unknown command -1165335796
binder: 15752:15753 ioctl c0306201 20000140 returned -22
binder_alloc: binder_alloc_mmap_handler: 15752 20001000-20003000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15752:15755 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15752:15755 unknown command -1165335796
binder: 15752:15753 transaction failed 29189/-3, size 0-0 line 3135
binder: 15752:15755 ioctl c0306201 20000140 returned -22
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15758:15763 ioctl 40046207 0 returned -16
audit: type=1326 audit(2000000211.732:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15761 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15764:15788 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15764:15788 transaction failed 29189/-3, size 0-0 line 3135
binder: 15764:15788 unknown command -1670159604
binder: 15764:15788 ioctl c0306201 20000140 returned -22
binder_alloc: binder_alloc_mmap_handler: 15764 20001000-20004000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15764:15788 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
audit: type=1326 audit(2000000211.872:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15780 comm="syz-executor2" exe="/root/syz-executor2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder: 15764:15791 transaction failed 29189/-3, size 0-0 line 3135
binder: undelivered TRANSACTION_ERROR: 29189
binder: 15764:15788 unknown command -1670159604
binder: undelivered TRANSACTION_ERROR: 29189
binder: 15764:15788 ioctl c0306201 20000140 returned -22
audit: type=1326 audit(2000000212.542:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15802 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15797:15815 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15797:15815 transaction failed 29189/-3, size 0-0 line 3135
binder_alloc: binder_alloc_mmap_handler: 15797 20001000-20004000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15797:15815 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15797:15831 transaction failed 29189/-3, size 0-0 line 3135
audit: type=1326 audit(2000000212.682:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15824 comm="syz-executor2" exe="/root/syz-executor2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29189
audit: type=1326 audit(2000000213.402:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15843 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0
binder: BINDER_SET_CONTEXT_MGR already set
binder: 15842:15870 ioctl 40046207 0 returned -16
binder_alloc: 14785: binder_alloc_buf, no vma
binder: 15842:15870 transaction failed 29189/-3, size 0-72057594037927936 line 3135
audit: type=1326 audit(2000000213.572:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=15874 comm="syz-executor2" exe="/root/syz-executor2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45aefa code=0x0