ci2 starts bisection 2025-01-18 12:23:08.383472075 +0000 UTC m=+39389.022151072
bisecting fixing commit since e7cddbb41b63252ddb5b7f8247da5d0b24adfac5
building syzkaller on 28b24332d95f2f7df44ec7e7a5e0025bcadc6277
ensuring issue is reproducible on original commit e7cddbb41b63252ddb5b7f8247da5d0b24adfac5

testing commit e7cddbb41b63252ddb5b7f8247da5d0b24adfac5 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 7ee85f2488a86e9efec75ad7101dded9c775a409df13ec5902c4b04ff1fbe09a
all runs: crashed: WARNING: bad unlock balance in ext4_ioctl
representative crash: WARNING: bad unlock balance in ext4_ioctl, types: [LOCKDEP]
check whether we can drop unnecessary instrumentation
disabling configs for [UBSAN BUG KASAN ATOMIC_SLEEP HANG LEAK], they are not needed
testing commit e7cddbb41b63252ddb5b7f8247da5d0b24adfac5 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 8862c1079601f72c6b31b1076914f0211bd01b595664b93db756642a225381ae
all runs: crashed: WARNING: bad unlock balance in ext4_ioctl
representative crash: WARNING: bad unlock balance in ext4_ioctl, types: [LOCKDEP]
the bug reproduces without the instrumentation
disabling configs for [HANG LEAK UBSAN BUG KASAN ATOMIC_SLEEP], they are not needed
kconfig minimization: base=3824 full=7526 leaves diff=1995
split chunks (needed=false): <1995>
split chunk #0 of len 1995 into 5 parts
testing without sub-chunk 1/5
disabling configs for [BUG KASAN ATOMIC_SLEEP HANG LEAK UBSAN], they are not needed
testing commit e7cddbb41b63252ddb5b7f8247da5d0b24adfac5 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: fbf42b101f025929ac7c14e2a3fd8917d1c3abccec58c0fd8b58a9387500de59
all runs: crashed: WARNING: bad unlock balance in ext4_ioctl
representative crash: WARNING: bad unlock balance in ext4_ioctl, types: [LOCKDEP]
the chunk can be dropped
testing without sub-chunk 2/5
disabling configs for [ATOMIC_SLEEP HANG LEAK UBSAN BUG KASAN], they are not needed
testing commit e7cddbb41b63252ddb5b7f8247da5d0b24adfac5 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: fc2a0554f622a8da42823da05708fe432123c87bc92dacaab7ca1e6c7465b512
all runs: crashed: WARNING: bad unlock balance in ext4_ioctl
representative crash: WARNING: bad unlock balance in ext4_ioctl, types: [LOCKDEP]
the chunk can be dropped
testing without sub-chunk 3/5
disabling configs for [HANG LEAK UBSAN BUG KASAN ATOMIC_SLEEP], they are not needed
testing commit e7cddbb41b63252ddb5b7f8247da5d0b24adfac5 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 553fc96d866c518390fa79ae0eb09ec1f39a67e4b5a8da1e48cb123fd9832491
all runs: crashed: WARNING: bad unlock balance in ext4_ioctl
representative crash: WARNING: bad unlock balance in ext4_ioctl, types: [LOCKDEP]
the chunk can be dropped
testing without sub-chunk 4/5
disabling configs for [UBSAN BUG KASAN ATOMIC_SLEEP HANG LEAK], they are not needed
testing commit e7cddbb41b63252ddb5b7f8247da5d0b24adfac5 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 868d134668acf47b882e6f3f2513423d6336147217d266022f2702bb30c33172
all runs: crashed: WARNING: bad unlock balance in ext4_ioctl
representative crash: WARNING: bad unlock balance in ext4_ioctl, types: [LOCKDEP]
the chunk can be dropped
testing without sub-chunk 5/5
disabling configs for [BUG KASAN ATOMIC_SLEEP HANG LEAK UBSAN], they are not needed
testing commit e7cddbb41b63252ddb5b7f8247da5d0b24adfac5 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: bed582bece1454707eadaf809ada6325eed3df163668ae42b04f033750fd1c2c
all runs: crashed: WARNING: bad unlock balance in ext4_ioctl
representative crash: WARNING: bad unlock balance in ext4_ioctl, types: [LOCKDEP]
the chunk can be dropped
disabling configs for [HANG LEAK UBSAN BUG KASAN ATOMIC_SLEEP], they are not needed
testing current HEAD 60ceadf9247ef7d45bb1dce8fc7b48c888ba7a54
testing commit 60ceadf9247ef7d45bb1dce8fc7b48c888ba7a54 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 838b54c0c4205cac216f2609f2902002f23a6f47f5ac4ca013b0c3fc3c2f9836
all runs: crashed: WARNING: bad unlock balance in ext4_ioctl
representative crash: WARNING: bad unlock balance in ext4_ioctl, types: [LOCKDEP]
crash still not fixed/happens on the oldest tested release
revisions tested: 8, total time: 1h10m41.189077921s (build: 34m26.87140556s, test: 28m16.960730841s)
crash still not fixed or there were kernel test errors
commit msg: Linux 6.1.125
crash: WARNING: bad unlock balance in ext4_ioctl
EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
EXT4-fs (loop0): 1 truncate cleaned up
EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
=====================================
WARNING: bad unlock balance detected!
6.1.125-syzkaller #0 Not tainted
-------------------------------------
syz-executor.0/1464 is trying to release lock (&type->i_mutex_dir_key) at:
[<ffffffff813acd47>] swap_inode_boot_loader fs/ext4/ioctl.c:513 [inline]
[<ffffffff813acd47>] __ext4_ioctl fs/ext4/ioctl.c:1424 [inline]
[<ffffffff813acd47>] ext4_ioctl+0x18e7/0x1a30 fs/ext4/ioctl.c:1614
but there are no more locks to release!

other info that might help us debug this:
1 lock held by syz-executor.0/1464:
 #0: ffff88810eac0438 (sb_writers#13){.+.+}-{0:0}, at: mnt_want_write_file+0x12/0x60 fs/namespace.c:437

stack backtrace:
CPU: 1 PID: 1464 Comm: syz-executor.0 Not tainted 6.1.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x89/0xd7 lib/dump_stack.c:106
 print_unlock_imbalance_bug+0x179/0x190 kernel/locking/lockdep.c:5102
 __lock_release kernel/locking/lockdep.c:5339 [inline]
 lock_release+0x1c5/0x2b0 kernel/locking/lockdep.c:5682
 up_write+0x2a/0x170 kernel/locking/rwsem.c:1625
 swap_inode_boot_loader fs/ext4/ioctl.c:513 [inline]
 __ext4_ioctl fs/ext4/ioctl.c:1424 [inline]
 ext4_ioctl+0x18e7/0x1a30 fs/ext4/ioctl.c:1614
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:870 [inline]
 __se_sys_ioctl+0x6a/0xb0 fs/ioctl.c:856
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x3b/0x80 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f8ff5b24ba9
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f8ff56a70c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f8ff5c43f80 RCX: 00007f8ff5b24ba9
RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000004
RBP: 00007f8ff5b7047a R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000006 R14: 00007f8ff5c43f80 R15: 00007ffe00d1bf38
 </TASK>