====================================================== WARNING: possible circular locking dependency detected 4.14.91+ #3 Not tainted ------------------------------------------------------ syz-executor4/14829 is trying to acquire lock: (&sig->cred_guard_mutex){+.+.}, at: [] lock_trace+0x3f/0xc0 fs/proc/base.c:408 but task is already holding lock: (&p->lock){+.+.}, at: [] seq_read+0xcd/0x1180 fs/seq_file.c:165 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #2 (&p->lock){+.+.}: -> #1 (&pipe->mutex/1){+.+.}: -> #0 (&sig->cred_guard_mutex){+.+.}: other info that might help us debug this: Chain exists of: &sig->cred_guard_mutex --> &pipe->mutex/1 --> &p->lock Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(&p->lock); lock(&pipe->mutex/1); lock(&p->lock); lock(&sig->cred_guard_mutex); *** DEADLOCK *** 1 lock held by syz-executor4/14829: #0: (&p->lock){+.+.}, at: [] seq_read+0xcd/0x1180 fs/seq_file.c:165 stack backtrace: CPU: 1 PID: 14829 Comm: syz-executor4 Not tainted 4.14.91+ #3 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0xb9/0x10e lib/dump_stack.c:53 print_circular_bug.isra.0.cold+0x2dc/0x425 kernel/locking/lockdep.c:1258 FAT-fs (loop5): bogus number of reserved sectors FAT-fs (loop5): Can't find a valid FAT filesystem FAT-fs (loop5): bogus number of reserved sectors FAT-fs (loop5): Can't find a valid FAT filesystem syz-executor4: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) CPU: 0 PID: 14885 Comm: syz-executor4 Not tainted 4.14.91+ #3 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0xb9/0x10e lib/dump_stack.c:53 warn_alloc.cold+0x91/0x1ab mm/page_alloc.c:3260 Mem-Info: active_anon:138901 inactive_anon:51613 isolated_anon:0 active_file:32069 inactive_file:31858 isolated_file:0 unevictable:10 dirty:172 writeback:0 unstable:0 slab_reclaimable:6770 slab_unreclaimable:62673 mapped:56600 shmem:34178 pagetables:4530 bounce:0 free:1248515 free_pcp:473 free_cma:0 kauditd_printk_skb: 272 callbacks suppressed audit: type=1400 audit(2000000075.810:10827): avc: denied { map } for pid=14908 comm="blkid" path="/sbin/blkid" dev="sda1" ino=16128 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 audit: type=1400 audit(2000000075.810:10828): avc: denied { map } for pid=14908 comm="blkid" path="/sbin/blkid" dev="sda1" ino=16128 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Node 0 active_anon:555604kB inactive_anon:206352kB active_file:128276kB inactive_file:127432kB unevictable:40kB isolated(anon):0kB isolated(file):0kB mapped:226500kB dirty:688kB writeback:0kB shmem:136712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no audit: type=1400 audit(2000000075.810:10829): avc: denied { map } for pid=14908 comm="blkid" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 DMA32 free:3011148kB min:4684kB low:7692kB high:10700kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:3011888kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:740kB local_pcp:740kB free_cma:0kB audit: type=1400 audit(2000000075.810:10830): avc: denied { map } for pid=14908 comm="blkid" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 lowmem_reserve[]: 0 3505 3505 Normal free:1964980kB min:5584kB low:9172kB high:12760kB active_anon:555940kB inactive_anon:206256kB active_file:116772kB inactive_file:127408kB unevictable:29500kB writepending:652kB present:4718592kB managed:3589204kB mlocked:29500kB kernel_stack:9056kB pagetables:18224kB bounce:0kB free_pcp:444kB local_pcp:152kB free_cma:0kB audit: type=1400 audit(2000000075.770:10824): avc: denied { map } for pid=14907 comm="blkid" path="/sbin/blkid" dev="sda1" ino=16128 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 audit: type=1400 audit(2000000075.820:10831): avc: denied { map } for pid=14907 comm="blkid" path="/sbin/blkid" dev="sda1" ino=16128 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 lowmem_reserve[]: 0 0 0 DMA32: 5*4kB (UM) 3*8kB (M) 2*16kB (M) 2*32kB (UM) 5*64kB (UM) 3*128kB (UM) 3*256kB (UM) 2*512kB (M) 2*1024kB (UM) 4*2048kB (UM) 732*4096kB (M) = 3011148kB audit: type=1400 audit(2000000075.820:10832): avc: denied { map } for pid=14907 comm="blkid" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Normal: 497*4kB (UME) 874*8kB (UME) 342*16kB (UME) 308*32kB (UME) 218*64kB (UME) 41*128kB (UME) 17*256kB (UM) 17*512kB (UM) 14*1024kB (UM) 7*2048kB (UME) 459*4096kB (M) = 1965300kB 98105 total pagecache pages 0 pages in swap cache audit: type=1400 audit(2000000075.820:10833): avc: denied { map } for pid=14907 comm="blkid" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB audit: audit_backlog=65 > audit_backlog_limit=64 audit: audit_backlog=65 > audit_backlog_limit=64 1965979 pages RAM 0 pages HighMem/MovableOnly 315706 pages reserved device Y4`Ҙ left promiscuous mode ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! netlink: 17 bytes leftover after parsing attributes in process `syz-executor2'. ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! netlink: 17 bytes leftover after parsing attributes in process `syz-executor2'. ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! netlink: 8 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 8 bytes leftover after parsing attributes in process `syz-executor2'. ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! kauditd_printk_skb: 321 callbacks suppressed audit: type=1400 audit(2000000080.820:11139): avc: denied { map } for pid=15061 comm="blkid" path="/lib/x86_64-linux-gnu/libblkid.so.1.1.0" dev="sda1" ino=2825 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 audit: type=1400 audit(2000000080.820:11140): avc: denied { shutdown } for pid=15048 comm="syz-executor0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000080.820:11141): avc: denied { ioctl } for pid=15048 comm="syz-executor0" path="socket:[39270]" dev="sockfs" ino=39270 ioctlcmd=0x5414 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000080.850:11143): avc: denied { wake_alarm } for pid=15048 comm="syz-executor0" capability=35 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=capability2 permissive=1 audit: type=1400 audit(2000000080.870:11144): avc: denied { ioctl } for pid=15048 comm="syz-executor0" path="socket:[39270]" dev="sockfs" ino=39270 ioctlcmd=0x5411 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000080.880:11145): avc: denied { map } for pid=15061 comm="blkid" path="/lib/x86_64-linux-gnu/libc-2.13.so" dev="sda1" ino=2784 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! audit: type=1400 audit(2000000080.880:11146): avc: denied { map } for pid=15061 comm="blkid" path="/lib/x86_64-linux-gnu/libc-2.13.so" dev="sda1" ino=2784 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 audit: type=1400 audit(2000000080.850:11142): avc: denied { ioctl } for pid=15048 comm="syz-executor0" path="socket:[39270]" dev="sockfs" ino=39270 ioctlcmd=0x5411 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000080.910:11147): avc: denied { map } for pid=15061 comm="blkid" path="/lib/x86_64-linux-gnu/libuuid.so.1.3.0" dev="sda1" ino=2819 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 audit: type=1400 audit(2000000080.910:11148): avc: denied { map } for pid=15061 comm="blkid" path="/lib/x86_64-linux-gnu/libuuid.so.1.3.0" dev="sda1" ino=2819 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1