============================================ WARNING: possible recursive locking detected 4.19.211-syzkaller #0 Not tainted -------------------------------------------- PM: Basic memory bitmaps created syz-executor.2/10068 is trying to acquire lock: 00000000836328cd (&type->i_mutex_dir_key#8){++++}, at: inode_lock include/linux/fs.h:748 [inline] 00000000836328cd (&type->i_mutex_dir_key#8){++++}, at: fuse_reverse_inval_entry+0x2e1/0x660 fs/fuse/dir.c:1006 but task is already holding lock: 00000000621862f7 (&type->i_mutex_dir_key#8){++++}, at: inode_lock include/linux/fs.h:748 [inline] 00000000621862f7 (&type->i_mutex_dir_key#8){++++}, at: fuse_reverse_inval_entry+0xaa/0x660 fs/fuse/dir.c:987 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(&type->i_mutex_dir_key#8); lock(&type->i_mutex_dir_key#8); *** DEADLOCK *** May be due to missing lock nesting notation 2 locks held by syz-executor.2/10068: #0: 000000004c286b0c (&fc->killsb){.+.+}, at: fuse_notify_delete fs/fuse/dev.c:1582 [inline] #0: 000000004c286b0c (&fc->killsb){.+.+}, at: fuse_notify fs/fuse/dev.c:1819 [inline] #0: 000000004c286b0c (&fc->killsb){.+.+}, at: fuse_dev_do_write+0x2343/0x2bc0 fs/fuse/dev.c:1894 #1: 00000000621862f7 (&type->i_mutex_dir_key#8){++++}, at: inode_lock include/linux/fs.h:748 [inline] #1: 00000000621862f7 (&type->i_mutex_dir_key#8){++++}, at: fuse_reverse_inval_entry+0xaa/0x660 fs/fuse/dir.c:987 stack backtrace: CPU: 1 PID: 10068 Comm: syz-executor.2 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 print_deadlock_bug kernel/locking/lockdep.c:1764 [inline] check_deadlock kernel/locking/lockdep.c:1808 [inline] validate_chain kernel/locking/lockdep.c:2404 [inline] __lock_acquire.cold+0x121/0x57e kernel/locking/lockdep.c:3416 PM: Basic memory bitmaps freed lock_acquire+0x170/0x3c0 kernel/locking/lockdep.c:3908 down_write+0x34/0x90 kernel/locking/rwsem.c:70 inode_lock include/linux/fs.h:748 [inline] fuse_reverse_inval_entry+0x2e1/0x660 fs/fuse/dir.c:1006 fuse_notify_delete fs/fuse/dev.c:1585 [inline] fuse_notify fs/fuse/dev.c:1819 [inline] fuse_dev_do_write+0x239e/0x2bc0 fs/fuse/dev.c:1894 fuse_dev_write+0x153/0x1e0 fs/fuse/dev.c:1978 call_write_iter include/linux/fs.h:1821 [inline] new_sync_write fs/read_write.c:474 [inline] __vfs_write+0x51b/0x770 fs/read_write.c:487 PM: Marking nosave pages: [mem 0x00000000-0x00000fff] vfs_write+0x1f3/0x540 fs/read_write.c:549 PM: Marking nosave pages: [mem 0x0009f000-0x000fffff] ksys_write+0x12b/0x2a0 fs/read_write.c:599 PM: Marking nosave pages: [mem 0xbfffd000-0xffffffff] do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fdd9ffd4639 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fdd9e526168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 00007fdda00f5050 RCX: 00007fdd9ffd4639 RDX: 000000000000002a RSI: 0000000020000080 RDI: 0000000000000003 RBP: 00007fdda002fae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff23d0e5bf R14: 00007fdd9e526300 R15: 0000000000022000 PM: Basic memory bitmaps created PM: Basic memory bitmaps freed EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop0): re-mounted. Opts: (null) EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop0): re-mounted. Opts: (null) EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop3): re-mounted. Opts: (null) EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop1): re-mounted. Opts: (null) EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop5): re-mounted. Opts: (null) EXT4-fs (loop2): re-mounted. Opts: (null) EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop0): re-mounted. Opts: (null) EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop1): re-mounted. Opts: (null) EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop5): re-mounted. Opts: (null) EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop1): re-mounted. Opts: (null) EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue EXT4-fs (loop4): re-mounted. Opts: (null) audit: type=1800 audit(1668467616.958:2): pid=10351 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=13937 res=0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on %z5 audit: type=1804 audit(1668467616.998:3): pid=10358 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1130359612/syzkaller.PEH43f/29/file0" dev="sda1" ino=13937 res=1 audit: type=1800 audit(1668467616.998:4): pid=10358 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=13937 res=0 EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue audit: type=1800 audit(1668467617.228:5): pid=10398 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="file0" dev="sda1" ino=13969 res=0 kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 audit: type=1804 audit(1668467617.258:6): pid=10398 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir3554175769/syzkaller.BLlRgV/44/file0" dev="sda1" ino=13969 res=1 hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on %z5 audit: type=1800 audit(1668467617.258:7): pid=10398 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="file0" dev="sda1" ino=13969 res=0 audit: type=1800 audit(1668467617.288:8): pid=10402 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=13930 res=0 audit: type=1804 audit(1668467617.288:9): pid=10402 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1130359612/syzkaller.PEH43f/30/file0" dev="sda1" ino=13930 res=1 audit: type=1800 audit(1668467617.288:10): pid=10402 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=13930 res=0 audit: type=1800 audit(1668467617.958:11): pid=10450 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="file0" dev="sda1" ino=13968 res=0 hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.0005: hidraw1: HID v0.00 Device [syz1] on %z5 kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz1] on %z5 kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns kvm: vcpu 0: requested 8 ns lapic timer period limited to 200000 ns hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.0008: hidraw1: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 hid-generic 0000:0000:0000.0009: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 kauditd_printk_skb: 23 callbacks suppressed audit: type=1800 audit(1668467621.989:35): pid=10693 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="sda1" ino=13983 res=0 hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 hid-generic 0000:0000:0000.000B: hidraw0: HID v0.00 Device [syz1] on %z5 audit: type=1800 audit(1668467621.999:36): pid=10691 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="file0" dev="sda1" ino=13984 res=0 hid-generic 0000:0000:0000.000A: hidraw1: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 audit: type=1804 audit(1668467621.999:37): pid=10691 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir3554175769/syzkaller.BLlRgV/50/file0" dev="sda1" ino=13984 res=1 hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 hid-generic 0000:0000:0000.000D: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.000C: hidraw1: HID v0.00 Device [syz1] on %z5 audit: type=1800 audit(1668467621.999:38): pid=10691 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="file0" dev="sda1" ino=13984 res=0 hid-generic 0000:0000:0000.000E: unknown main item tag 0x0 hid-generic 0000:0000:0000.000E: unknown main item tag 0x0 hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 hid-generic 0000:0000:0000.000E: unknown main item tag 0x0 audit: type=1804 audit(1668467622.029:39): pid=10689 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir1123666817/syzkaller.Gc73b6/32/file0" dev="sda1" ino=13983 res=1 hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 hid-generic 0000:0000:0000.000F: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.000E: hidraw1: HID v0.00 Device [syz1] on %z5 audit: type=1800 audit(1668467622.059:40): pid=10689 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="sda1" ino=13983 res=0 hid-generic 0000:0000:0000.0010: unknown main item tag 0x0 hid-generic 0000:0000:0000.0010: unknown main item tag 0x0 hid-generic 0000:0000:0000.0010: unknown main item tag 0x0 hid-generic 0000:0000:0000.0010: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 hid-generic 0000:0000:0000.0011: hidraw0: HID v0.00 Device [syz1] on %z5 audit: type=1800 audit(1668467622.219:41): pid=10710 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=13937 res=0 hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 hid-generic 0000:0000:0000.0012: hidraw1: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 audit: type=1804 audit(1668467622.219:42): pid=10710 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1130359612/syzkaller.PEH43f/36/file0" dev="sda1" ino=13937 res=1 hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 hid-generic 0000:0000:0000.0013: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 hid-generic 0000:0000:0000.0015: unknown main item tag 0x0 hid-generic 0000:0000:0000.0015: unknown main item tag 0x0 audit: type=1800 audit(1668467622.219:43): pid=10710 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=13937 res=0 hid-generic 0000:0000:0000.0015: unknown main item tag 0x0 hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 audit: type=1800 audit(1668467622.309:44): pid=10720 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="sda1" ino=13929 res=0 hid-generic 0000:0000:0000.0014: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.0015: hidraw1: HID v0.00 Device [syz1] on %z5 overlayfs: invalid origin (79000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000) hid-generic 0000:0000:0000.0016: unknown main item tag 0x0 hid-generic 0000:0000:0000.0016: unknown main item tag 0x0 hid-generic 0000:0000:0000.0016: unknown main item tag 0x0 hid-generic 0000:0000:0000.0017: unknown main item tag 0x0 hid-generic 0000:0000:0000.0016: hidraw0: HID v0.00 Device [syz1] on %z5 hid-generic 0000:0000:0000.0017: unknown main item tag 0x0 overlayfs: invalid origin (79000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000) hid-generic 0000:0000:0000.0017: unknown main item tag 0x0 overlayfs: invalid origin (79000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000) hid-generic 0000:0000:0000.0017: hidraw0: HID v0.00 Device [syz1] on %z5 overlayfs: invalid origin (79000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000) overlayfs: invalid origin (79000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000) overlayfs: invalid origin (79000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000) overlayfs: invalid origin (79000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000) sit: non-ECT from 0.0.0.0 with TOS=0x2