Extracting prog: 57.127253395s Minimizing prog: 4m7.723337663s Simplifying prog options: 0s Extracting C: 33.564963893s Simplifying C: 6m15.685471526s extracting reproducer from 1 programs testing a last program of every proc single: executing 1 programs separately with timeout 45s testing program (duration=45s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir detailed listing: executing program 0: mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00') fchdir(r0) program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: single: successfully extracted reproducer found reproducer with 3 syscalls minimizing guilty program testing program (duration=1m1.877786127s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs detailed listing: executing program 0: mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00') program did not crash testing program (duration=1m1.877786127s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-fchdir detailed listing: executing program 0: mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) fchdir(0xffffffffffffffff) program did not crash testing program (duration=1m1.877786127s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_open_procfs-fchdir detailed listing: executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00') fchdir(r0) program did not crash testing program (duration=1m1.877786127s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir detailed listing: executing program 0: mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = syz_open_procfs(0xffffffffffffffff, 0x0) fchdir(r0) program did not crash extracting C reproducer testing compiled C program (duration=1m1.877786127s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: simplifying C reproducer testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program did not crash testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program did not crash testing compiled C program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: testing program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir detailed listing: executing program 0: mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00') fchdir(r0) program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: validation run: crashed=true testing program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir detailed listing: executing program 0: mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00') fchdir(r0) program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: validation run: crashed=true testing program (duration=1m1.877786127s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mprotect-syz_open_procfs-fchdir detailed listing: executing program 0: mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00') fchdir(r0) program crashed: panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: validation run: crashed=true reproducing took 13m59.609334349s repro crashed as (corrupted=false): panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: goroutine 632 [running]: gvisor.dev/gvisor/pkg/sync/locking.(*ancestorsAtomicPtrMap).RangeRepeatable(0xc0002c4fe0, 0xc000ec38d8) bazel-out/k8-fastbuild/bin/pkg/sync/locking/atomicptrmap_ancestors_unsafe.go:440 +0x314 gvisor.dev/gvisor/pkg/sync/locking.checkLock(0xc00017ec60, 0xc0002c4fc0, {0x0, 0x0, 0x0}) pkg/sync/locking/lockdep.go:112 +0x4eb gvisor.dev/gvisor/pkg/sync/locking.AddGLock(0xc00017ec60, 0xffffffffffffffff) pkg/sync/locking/lockdep.go:144 +0x37b gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*filesystemRWMutex).Lock(0xc001b0e1d0) bazel-out/k8-fastbuild/bin/pkg/sentry/fsimpl/kernfs/filesystem_mutex.go:31 +0x4d gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Dentry).DecRef(0xc000729ef0, {0x21b8b30, 0xc0012c7908}) pkg/sentry/fsimpl/kernfs/kernfs.go:303 +0x116 gvisor.dev/gvisor/pkg/sentry/vfs.(*Dentry).DecRef(0xc000729ef0, {0x21b8b30, 0xc0012c7908}) pkg/sentry/vfs/dentry.go:156 +0x68 gvisor.dev/gvisor/pkg/sentry/vfs.VirtualDentry.DecRef({0xc00092c370?, 0xc000729ef0?}, {0x21b8b30, 0xc0012c7908}) pkg/sentry/vfs/vfs.go:1114 +0x5b gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContext).destroy(0xc000c401c0, {0x21b8b30, 0xc0012c7908}) pkg/sentry/kernel/fs_context.go:73 +0x16d gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContext).DecRef.func1() pkg/sentry/kernel/fs_context.go:87 +0x59 gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContextRefs).DecRef(0xc000c401c0, 0xc000ec3d10) bazel-out/k8-fastbuild/bin/pkg/sentry/kernel/fs_context_refs.go:133 +0xb4 gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContext).DecRef(0xc000c401c0, {0x21b8b30, 0xc0012c7908}) pkg/sentry/kernel/fs_context.go:86 +0xa5 gvisor.dev/gvisor/pkg/sentry/kernel.(*runExitMain).execute(0xc0012c7908?, 0xc0012c7908) pkg/sentry/kernel/task_exit.go:301 +0x7d3 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run(0xc0012c7908, 0x4d) pkg/sentry/kernel/task_run.go:97 +0x402 created by gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start in goroutine 709 pkg/sentry/kernel/task_start.go:416 +0x17e known lock chain: kernfs.filesystemRWMutex -> kernel.taskSetRWMutex -> kernel.fsContextMutex ====== kernfs.filesystemRWMutex -> kernel.taskSetRWMutex ===== goroutine 230 [running]: gvisor.dev/gvisor/pkg/sentry/kernel.(*taskSetRWMutex).RLock(0xc0005d4000) bazel-out/k8-fastbuild/bin/pkg/sentry/kernel/taskset_mutex.go:59 +0x4d gvisor.dev/gvisor/pkg/sentry/kernel.(*PIDNamespace).IDOfThreadGroup(0xc0002b3ab0, 0xc00044ac08) pkg/sentry/kernel/threads.go:328 +0x54 gvisor.dev/gvisor/pkg/sentry/fsimpl/proc.(*selfSymlink).Readlink(0xc000ba60e0, {0x21b8b30, 0xc000766008}, 0x48866c?) pkg/sentry/fsimpl/proc/tasks_files.go:62 +0xb8 gvisor.dev/gvisor/pkg/sentry/fsimpl/proc.(*selfSymlink).Getlink(0xc000ba60e0, {0x21b8b30, 0xc000766008}, 0xc00092cbb0) pkg/sentry/fsimpl/proc/tasks_files.go:70 +0x5e gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Filesystem).stepExistingLocked(0xc0003c0780, {0x21b8b30, 0xc000766008}, 0xc000baa008, 0xc0006f9b00) pkg/sentry/fsimpl/kernfs/filesystem.go:83 +0x5e7 gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Filesystem).walkExistingLocked(0xc0003c0780, {0x21b8b30, 0xc000766008}, 0xc000baa008) pkg/sentry/fsimpl/kernfs/filesystem.go:197 +0x106 gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Filesystem).ReadlinkAt(0xc0003c0780, {0x21b8b30, 0xc000766008}, 0xc000baa008) pkg/sentry/fsimpl/kernfs/filesystem.go:696 +0x14a gvisor.dev/gvisor/pkg/sentry/vfs.(*VirtualFilesystem).ReadlinkAt(0xc0000045e0, {0x21b8b30, 0xc000766008}, 0xc0002001e0, 0xc000049598) pkg/sentry/vfs/vfs.go:512 +0x109 gvisor.dev/gvisor/pkg/sentry/syscalls/linux.readlinkat(0xc000766008, 0xffffff9c, 0xc000102070, 0xc000114d00, 0x80) pkg/sentry/syscalls/linux/sys_file.go:1096 +0x305 gvisor.dev/gvisor/pkg/sentry/syscalls/linux.Readlinkat(0xc000766008, 0x457b27?, {{0xffffffffffffff9c}, {0xc000102070}, {0xc000114d00}, {0x80}, {0x0}, {0x0}}) pkg/sentry/syscalls/linux/sys_file.go:1067 +0xc6 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).executeSyscall(0xc000766008, 0x10b, {{0xffffffffffffff9c}, {0xc000102070}, {0xc000114d00}, {0x80}, {0x0}, {0x0}}) pkg/sentry/kernel/task_syscall.go:143 +0xb90 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke(0xc000766008, 0x10b, {{0xffffffffffffff9c}, {0xc000102070}, {0xc000114d00}, {0x80}, {0x0}, {0x0}}) pkg/sentry/kernel/task_syscall.go:323 +0x85 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter(0xc000766008, 0x10b, {{0xffffffffffffff9c}, {0xc000102070}, {0xc000114d00}, {0x80}, {0x0}, {0x0}}) pkg/sentry/kernel/task_syscall.go:283 +0xc7 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscall(0xc000766008) pkg/sentry/kernel/task_syscall.go:258 +0x53e gvisor.dev/gvisor/pkg/sentry/kernel.(*runApp).execute(0xc000766008?, 0xc000766008) pkg/sentry/kernel/task_run.go:269 +0x220c gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run(0xc000766008, 0x1) pkg/sentry/kernel/task_run.go:97 +0x402 created by gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start in goroutine 1 pkg/sentry/kernel/task_start.go:416 +0x17e ====== kernel.taskSetRWMutex -> kernel.fsContextMutex ===== goroutine 294 [running]: gvisor.dev/gvisor/pkg/sentry/kernel.(*fsContextMutex).Lock(0xc000c64548) bazel-out/k8-fastbuild/bin/pkg/sentry/kernel/fs_context_mutex.go:33 +0x4d gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContext).checkAndPreventSharingOutsideTG(0xc000c64540, 0xc0002c0408) pkg/sentry/kernel/fs_context.go:207 +0x145 gvisor.dev/gvisor/pkg/sentry/kernel.(*runExecveAfterExecveCredsLock).execute(0xc000b92300, 0xc0007c2c88) pkg/sentry/kernel/task_exec.go:156 +0x3e8 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run(0xc0007c2c88, 0x14) pkg/sentry/kernel/task_run.go:97 +0x402 created by gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start in goroutine 239 pkg/sentry/kernel/task_start.go:416 +0x17e final repro crashed as (corrupted=false): panic: WARNING: circular locking detected: kernel.fsContextMutex -> kernfs.filesystemRWMutex: goroutine 632 [running]: gvisor.dev/gvisor/pkg/sync/locking.(*ancestorsAtomicPtrMap).RangeRepeatable(0xc0002c4fe0, 0xc000ec38d8) bazel-out/k8-fastbuild/bin/pkg/sync/locking/atomicptrmap_ancestors_unsafe.go:440 +0x314 gvisor.dev/gvisor/pkg/sync/locking.checkLock(0xc00017ec60, 0xc0002c4fc0, {0x0, 0x0, 0x0}) pkg/sync/locking/lockdep.go:112 +0x4eb gvisor.dev/gvisor/pkg/sync/locking.AddGLock(0xc00017ec60, 0xffffffffffffffff) pkg/sync/locking/lockdep.go:144 +0x37b gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*filesystemRWMutex).Lock(0xc001b0e1d0) bazel-out/k8-fastbuild/bin/pkg/sentry/fsimpl/kernfs/filesystem_mutex.go:31 +0x4d gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Dentry).DecRef(0xc000729ef0, {0x21b8b30, 0xc0012c7908}) pkg/sentry/fsimpl/kernfs/kernfs.go:303 +0x116 gvisor.dev/gvisor/pkg/sentry/vfs.(*Dentry).DecRef(0xc000729ef0, {0x21b8b30, 0xc0012c7908}) pkg/sentry/vfs/dentry.go:156 +0x68 gvisor.dev/gvisor/pkg/sentry/vfs.VirtualDentry.DecRef({0xc00092c370?, 0xc000729ef0?}, {0x21b8b30, 0xc0012c7908}) pkg/sentry/vfs/vfs.go:1114 +0x5b gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContext).destroy(0xc000c401c0, {0x21b8b30, 0xc0012c7908}) pkg/sentry/kernel/fs_context.go:73 +0x16d gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContext).DecRef.func1() pkg/sentry/kernel/fs_context.go:87 +0x59 gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContextRefs).DecRef(0xc000c401c0, 0xc000ec3d10) bazel-out/k8-fastbuild/bin/pkg/sentry/kernel/fs_context_refs.go:133 +0xb4 gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContext).DecRef(0xc000c401c0, {0x21b8b30, 0xc0012c7908}) pkg/sentry/kernel/fs_context.go:86 +0xa5 gvisor.dev/gvisor/pkg/sentry/kernel.(*runExitMain).execute(0xc0012c7908?, 0xc0012c7908) pkg/sentry/kernel/task_exit.go:301 +0x7d3 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run(0xc0012c7908, 0x4d) pkg/sentry/kernel/task_run.go:97 +0x402 created by gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start in goroutine 709 pkg/sentry/kernel/task_start.go:416 +0x17e known lock chain: kernfs.filesystemRWMutex -> kernel.taskSetRWMutex -> kernel.fsContextMutex ====== kernfs.filesystemRWMutex -> kernel.taskSetRWMutex ===== goroutine 230 [running]: gvisor.dev/gvisor/pkg/sentry/kernel.(*taskSetRWMutex).RLock(0xc0005d4000) bazel-out/k8-fastbuild/bin/pkg/sentry/kernel/taskset_mutex.go:59 +0x4d gvisor.dev/gvisor/pkg/sentry/kernel.(*PIDNamespace).IDOfThreadGroup(0xc0002b3ab0, 0xc00044ac08) pkg/sentry/kernel/threads.go:328 +0x54 gvisor.dev/gvisor/pkg/sentry/fsimpl/proc.(*selfSymlink).Readlink(0xc000ba60e0, {0x21b8b30, 0xc000766008}, 0x48866c?) pkg/sentry/fsimpl/proc/tasks_files.go:62 +0xb8 gvisor.dev/gvisor/pkg/sentry/fsimpl/proc.(*selfSymlink).Getlink(0xc000ba60e0, {0x21b8b30, 0xc000766008}, 0xc00092cbb0) pkg/sentry/fsimpl/proc/tasks_files.go:70 +0x5e gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Filesystem).stepExistingLocked(0xc0003c0780, {0x21b8b30, 0xc000766008}, 0xc000baa008, 0xc0006f9b00) pkg/sentry/fsimpl/kernfs/filesystem.go:83 +0x5e7 gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Filesystem).walkExistingLocked(0xc0003c0780, {0x21b8b30, 0xc000766008}, 0xc000baa008) pkg/sentry/fsimpl/kernfs/filesystem.go:197 +0x106 gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Filesystem).ReadlinkAt(0xc0003c0780, {0x21b8b30, 0xc000766008}, 0xc000baa008) pkg/sentry/fsimpl/kernfs/filesystem.go:696 +0x14a gvisor.dev/gvisor/pkg/sentry/vfs.(*VirtualFilesystem).ReadlinkAt(0xc0000045e0, {0x21b8b30, 0xc000766008}, 0xc0002001e0, 0xc000049598) pkg/sentry/vfs/vfs.go:512 +0x109 gvisor.dev/gvisor/pkg/sentry/syscalls/linux.readlinkat(0xc000766008, 0xffffff9c, 0xc000102070, 0xc000114d00, 0x80) pkg/sentry/syscalls/linux/sys_file.go:1096 +0x305 gvisor.dev/gvisor/pkg/sentry/syscalls/linux.Readlinkat(0xc000766008, 0x457b27?, {{0xffffffffffffff9c}, {0xc000102070}, {0xc000114d00}, {0x80}, {0x0}, {0x0}}) pkg/sentry/syscalls/linux/sys_file.go:1067 +0xc6 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).executeSyscall(0xc000766008, 0x10b, {{0xffffffffffffff9c}, {0xc000102070}, {0xc000114d00}, {0x80}, {0x0}, {0x0}}) pkg/sentry/kernel/task_syscall.go:143 +0xb90 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke(0xc000766008, 0x10b, {{0xffffffffffffff9c}, {0xc000102070}, {0xc000114d00}, {0x80}, {0x0}, {0x0}}) pkg/sentry/kernel/task_syscall.go:323 +0x85 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter(0xc000766008, 0x10b, {{0xffffffffffffff9c}, {0xc000102070}, {0xc000114d00}, {0x80}, {0x0}, {0x0}}) pkg/sentry/kernel/task_syscall.go:283 +0xc7 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscall(0xc000766008) pkg/sentry/kernel/task_syscall.go:258 +0x53e gvisor.dev/gvisor/pkg/sentry/kernel.(*runApp).execute(0xc000766008?, 0xc000766008) pkg/sentry/kernel/task_run.go:269 +0x220c gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run(0xc000766008, 0x1) pkg/sentry/kernel/task_run.go:97 +0x402 created by gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start in goroutine 1 pkg/sentry/kernel/task_start.go:416 +0x17e ====== kernel.taskSetRWMutex -> kernel.fsContextMutex ===== goroutine 294 [running]: gvisor.dev/gvisor/pkg/sentry/kernel.(*fsContextMutex).Lock(0xc000c64548) bazel-out/k8-fastbuild/bin/pkg/sentry/kernel/fs_context_mutex.go:33 +0x4d gvisor.dev/gvisor/pkg/sentry/kernel.(*FSContext).checkAndPreventSharingOutsideTG(0xc000c64540, 0xc0002c0408) pkg/sentry/kernel/fs_context.go:207 +0x145 gvisor.dev/gvisor/pkg/sentry/kernel.(*runExecveAfterExecveCredsLock).execute(0xc000b92300, 0xc0007c2c88) pkg/sentry/kernel/task_exec.go:156 +0x3e8 gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run(0xc0007c2c88, 0x14) pkg/sentry/kernel/task_run.go:97 +0x402 created by gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start in goroutine 239 pkg/sentry/kernel/task_start.go:416 +0x17e