Warning: Permanently added '10.128.1.41' (ED25519) to the list of known hosts. executing program [ 44.086942][ T3507] loop0: detected capacity change from 0 to 512 [ 44.135722][ T3507] EXT4-fs (loop0): Ignoring removed bh option [ 44.142912][ T3507] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 44.157175][ T3507] EXT4-fs (loop0): 1 truncate cleaned up [ 44.162896][ T3507] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,resgid=0x000000000000ee00,bh,noload,data_err=ignore,usrjquota=,,errors=continue. Quota mode: none. [ 44.189702][ T3507] [ 44.192066][ T3507] ===================================== [ 44.197602][ T3507] WARNING: bad unlock balance detected! [ 44.203121][ T3507] 5.15.149-syzkaller #0 Not tainted [ 44.208292][ T3507] ------------------------------------- [ 44.213803][ T3507] syz-executor233/3507 is trying to release lock (&type->i_mutex_dir_key) at: [ 44.222625][ T3507] [] ext4_ioctl+0x285a/0x5b80 [ 44.228874][ T3507] but there are no more locks to release! [ 44.234567][ T3507] [ 44.234567][ T3507] other info that might help us debug this: [ 44.242607][ T3507] 1 lock held by syz-executor233/3507: [ 44.248042][ T3507] #0: ffff888077c4e460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0 [ 44.257676][ T3507] [ 44.257676][ T3507] stack backtrace: [ 44.263537][ T3507] CPU: 1 PID: 3507 Comm: syz-executor233 Not tainted 5.15.149-syzkaller #0 [ 44.272094][ T3507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 44.282137][ T3507] Call Trace: [ 44.285412][ T3507] [ 44.288326][ T3507] dump_stack_lvl+0x1e3/0x2cb [ 44.292985][ T3507] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 44.298594][ T3507] ? panic+0x84d/0x84d [ 44.302642][ T3507] ? ext4_ioctl+0x285a/0x5b80 [ 44.307298][ T3507] print_unlock_imbalance_bug+0x248/0x2b0 [ 44.313115][ T3507] ? list_move_tail+0x130/0x130 [ 44.318030][ T3507] lock_release+0x596/0x9a0 [ 44.322508][ T3507] ? unlock_two_nondirectories+0xcb/0x120 [ 44.328203][ T3507] ? ext4_ioctl+0x285a/0x5b80 [ 44.332863][ T3507] ? __lock_acquire+0x1ff0/0x1ff0 [ 44.337866][ T3507] ? __mark_inode_dirty+0x6fe/0xd60 [ 44.343125][ T3507] up_write+0x75/0x4d0 [ 44.347175][ T3507] ? __up_read+0x690/0x690 [ 44.351563][ T3507] ? __up_read+0x690/0x690 [ 44.355953][ T3507] ? rcu_is_watching+0x11/0xa0 [ 44.360690][ T3507] ext4_ioctl+0x285a/0x5b80 [ 44.365172][ T3507] ? ext4_fileattr_set+0x1750/0x1750 [ 44.370432][ T3507] ? __x64_compat_sys_ioctl+0x80/0x80 [ 44.375777][ T3507] ? __lock_acquire+0x1ff0/0x1ff0 [ 44.380776][ T3507] ? slab_free_freelist_hook+0xdd/0x160 [ 44.386296][ T3507] ? tomoyo_path_number_perm+0x648/0x810 [ 44.391905][ T3507] ? kfree+0xf1/0x270 [ 44.395875][ T3507] ? tomoyo_path_number_perm+0x6ab/0x810 [ 44.401490][ T3507] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 44.406928][ T3507] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 44.412887][ T3507] ? print_irqtrace_events+0x210/0x210 [ 44.418317][ T3507] ? vtime_user_exit+0x2d1/0x400 [ 44.423252][ T3507] ? bpf_lsm_file_ioctl+0x5/0x10 [ 44.428166][ T3507] ? security_file_ioctl+0x7d/0xa0 [ 44.433249][ T3507] ? ext4_fileattr_set+0x1750/0x1750 [ 44.438511][ T3507] __se_sys_ioctl+0xf1/0x160 [ 44.443086][ T3507] do_syscall_64+0x3d/0xb0 [ 44.447477][ T3507] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 44.453354][ T3507] RIP: 0033:0x7f63b44dfb39 [ 44.457750][ T3507] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 44.477331][ T3507] RSP: 002b:00007ffc49d660c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 44.485728][ T3507] RAX: ffffffffffffffda RBX: 00007ffc49d662a8 RCX: 00007f63b44dfb39 [ 44.493676][ T3507] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000004 [ 44.501621][ T3507] RBP: 00007f63b4553610 R08: 0000000000000000 R09: 0000000000000000 [ 44.509565][ T3507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 44.517511][ T3507] R13: 00007ffc49d66298 R14: 0000000000000001 R15: 0000000000000001 [ 44.525462][ T3507] [ 44.528610][ T3507] ------------[ cut here ]------------ [ 44.534086][ T3507] DEBUG_RWSEMS_WARN_ON((rwsem_owner(sem) != current) && !rwsem_test_oflags(sem, RWSEM_NONSPINNABLE)): count = 0x0, magic = 0xffff8880742ca168, owner = 0x0, curr 0xffff88807da93b80, list empty [ 44.552961][ T3507] WARNING: CPU: 1 PID: 3507 at kernel/locking/rwsem.c:1342 up_write+0x473/0x4d0 [ 44.561997][ T3507] Modules linked in: [ 44.565919][ T3507] CPU: 1 PID: 3507 Comm: syz-executor233 Not tainted 5.15.149-syzkaller #0 [ 44.574520][ T3507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 44.584602][ T3507] RIP: 0010:up_write+0x473/0x4d0 [ 44.589540][ T3507] Code: 48 c7 c7 80 08 8b 8a 48 c7 c6 40 0b 8b 8a 48 8b 54 24 28 48 8b 4c 24 18 4d 89 e0 4c 8b 4c 24 30 53 e8 41 11 ea ff 48 83 c4 08 <0f> 0b e9 86 fd ff ff 48 c7 c1 c8 ed e3 8d 80 e1 07 80 c1 03 38 c1 [ 44.609332][ T3507] RSP: 0018:ffffc90002ea7940 EFLAGS: 00010292 [ 44.615421][ T3507] RAX: 3bf1e3736039c800 RBX: ffffffff8a8b0960 RCX: ffff88807da93b80 [ 44.623398][ T3507] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 44.631360][ T3507] RBP: ffffc90002ea7a10 R08: ffffffff8166625c R09: fffff520005d4e69 [ 44.639354][ T3507] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000 [ 44.647338][ T3507] R13: ffff8880742ca168 R14: 1ffff920005d4f30 R15: dffffc0000000000 [ 44.655315][ T3507] FS: 0000555556d48380(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 [ 44.664264][ T3507] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 44.670841][ T3507] CR2: 0000000000000000 CR3: 0000000078f65000 CR4: 00000000003506e0 [ 44.678893][ T3507] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 44.686874][ T3507] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 44.694849][ T3507] Call Trace: [ 44.698118][ T3507] [ 44.701035][ T3507] ? __warn+0x15b/0x300 [ 44.705200][ T3507] ? up_write+0x473/0x4d0 [ 44.709524][ T3507] ? report_bug+0x1b7/0x2e0 [ 44.714032][ T3507] ? handle_bug+0x3d/0x70 [ 44.718350][ T3507] ? exc_invalid_op+0x16/0x40 [ 44.723025][ T3507] ? asm_exc_invalid_op+0x16/0x20 [ 44.728049][ T3507] ? __wake_up_klogd+0xcc/0x100 [ 44.732912][ T3507] ? up_write+0x473/0x4d0 [ 44.737236][ T3507] ? __up_read+0x690/0x690 [ 44.741637][ T3507] ? rcu_is_watching+0x11/0xa0 [ 44.746442][ T3507] ext4_ioctl+0x285a/0x5b80 [ 44.750940][ T3507] ? ext4_fileattr_set+0x1750/0x1750 [ 44.756229][ T3507] ? __x64_compat_sys_ioctl+0x80/0x80 [ 44.761595][ T3507] ? __lock_acquire+0x1ff0/0x1ff0 [ 44.766627][ T3507] ? slab_free_freelist_hook+0xdd/0x160 [ 44.772182][ T3507] ? tomoyo_path_number_perm+0x648/0x810 [ 44.777793][ T3507] ? kfree+0xf1/0x270 [ 44.781749][ T3507] ? tomoyo_path_number_perm+0x6ab/0x810 [ 44.787386][ T3507] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 44.792855][ T3507] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 44.798822][ T3507] ? print_irqtrace_events+0x210/0x210 [ 44.804278][ T3507] ? vtime_user_exit+0x2d1/0x400 [ 44.809208][ T3507] ? bpf_lsm_file_ioctl+0x5/0x10 [ 44.814151][ T3507] ? security_file_ioctl+0x7d/0xa0 [ 44.819251][ T3507] ? ext4_fileattr_set+0x1750/0x1750 [ 44.824555][ T3507] __se_sys_ioctl+0xf1/0x160 [ 44.829136][ T3507] do_syscall_64+0x3d/0xb0 [ 44.833687][ T3507] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 44.839580][ T3507] RIP: 0033:0x7f63b44dfb39 [ 44.844025][ T3507] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 44.863656][ T3507] RSP: 002b:00007ffc49d660c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 44.872051][ T3507] RAX: ffffffffffffffda RBX: 00007ffc49d662a8 RCX: 00007f63b44dfb39 [ 44.880028][ T3507] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000004 [ 44.888012][ T3507] RBP: 00007f63b4553610 R08: 0000000000000000 R09: 0000000000000000 [ 44.895991][ T3507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 44.903971][ T3507] R13: 00007ffc49d66298 R14: 0000000000000001 R15: 0000000000000001 [ 44.911927][ T3507] [ 44.915073][ T3507] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 44.922342][ T3507] CPU: 1 PID: 3507 Comm: syz-executor233 Not tainted 5.15.149-syzkaller #0 [ 44.930902][ T3507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 44.940933][ T3507] Call Trace: [ 44.944192][ T3507] [ 44.947102][ T3507] dump_stack_lvl+0x1e3/0x2cb [ 44.951759][ T3507] ? io_uring_drop_tctx_refs+0x19d/0x19d [ 44.957366][ T3507] ? panic+0x84d/0x84d [ 44.961412][ T3507] ? panic+0x84d/0x84d [ 44.965450][ T3507] ? up_write+0x380/0x4d0 [ 44.969765][ T3507] ? up_write+0x380/0x4d0 [ 44.974067][ T3507] panic+0x318/0x84d [ 44.977941][ T3507] ? __warn+0x16a/0x300 [ 44.982067][ T3507] ? fb_is_primary_device+0xcc/0xcc [ 44.987244][ T3507] ? up_write+0x473/0x4d0 [ 44.991552][ T3507] __warn+0x2b2/0x300 [ 44.995509][ T3507] ? up_write+0x473/0x4d0 [ 44.999811][ T3507] report_bug+0x1b7/0x2e0 [ 45.004118][ T3507] handle_bug+0x3d/0x70 [ 45.008246][ T3507] exc_invalid_op+0x16/0x40 [ 45.012720][ T3507] asm_exc_invalid_op+0x16/0x20 [ 45.017546][ T3507] RIP: 0010:up_write+0x473/0x4d0 [ 45.022459][ T3507] Code: 48 c7 c7 80 08 8b 8a 48 c7 c6 40 0b 8b 8a 48 8b 54 24 28 48 8b 4c 24 18 4d 89 e0 4c 8b 4c 24 30 53 e8 41 11 ea ff 48 83 c4 08 <0f> 0b e9 86 fd ff ff 48 c7 c1 c8 ed e3 8d 80 e1 07 80 c1 03 38 c1 [ 45.042039][ T3507] RSP: 0018:ffffc90002ea7940 EFLAGS: 00010292 [ 45.048082][ T3507] RAX: 3bf1e3736039c800 RBX: ffffffff8a8b0960 RCX: ffff88807da93b80 [ 45.056029][ T3507] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 45.063973][ T3507] RBP: ffffc90002ea7a10 R08: ffffffff8166625c R09: fffff520005d4e69 [ 45.071919][ T3507] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000 [ 45.079868][ T3507] R13: ffff8880742ca168 R14: 1ffff920005d4f30 R15: dffffc0000000000 [ 45.087815][ T3507] ? __wake_up_klogd+0xcc/0x100 [ 45.092649][ T3507] ? __up_read+0x690/0x690 [ 45.097041][ T3507] ? rcu_is_watching+0x11/0xa0 [ 45.101780][ T3507] ext4_ioctl+0x285a/0x5b80 [ 45.106261][ T3507] ? ext4_fileattr_set+0x1750/0x1750 [ 45.111519][ T3507] ? __x64_compat_sys_ioctl+0x80/0x80 [ 45.116868][ T3507] ? __lock_acquire+0x1ff0/0x1ff0 [ 45.121868][ T3507] ? slab_free_freelist_hook+0xdd/0x160 [ 45.127392][ T3507] ? tomoyo_path_number_perm+0x648/0x810 [ 45.132998][ T3507] ? kfree+0xf1/0x270 [ 45.136956][ T3507] ? tomoyo_path_number_perm+0x6ab/0x810 [ 45.142562][ T3507] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 45.147997][ T3507] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 45.153951][ T3507] ? print_irqtrace_events+0x210/0x210 [ 45.159382][ T3507] ? vtime_user_exit+0x2d1/0x400 [ 45.164292][ T3507] ? bpf_lsm_file_ioctl+0x5/0x10 [ 45.169207][ T3507] ? security_file_ioctl+0x7d/0xa0 [ 45.174290][ T3507] ? ext4_fileattr_set+0x1750/0x1750 [ 45.179548][ T3507] __se_sys_ioctl+0xf1/0x160 [ 45.184119][ T3507] do_syscall_64+0x3d/0xb0 [ 45.188508][ T3507] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 45.194376][ T3507] RIP: 0033:0x7f63b44dfb39 [ 45.198766][ T3507] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 45.218344][ T3507] RSP: 002b:00007ffc49d660c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 45.226729][ T3507] RAX: ffffffffffffffda RBX: 00007ffc49d662a8 RCX: 00007f63b44dfb39 [ 45.234675][ T3507] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000004 [ 45.242630][ T3507] RBP: 00007f63b4553610 R08: 0000000000000000 R09: 0000000000000000 [ 45.250571][ T3507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 45.258519][ T3507] R13: 00007ffc49d66298 R14: 0000000000000001 R15: 0000000000000001 [ 45.266475][ T3507] [ 45.269643][ T3507] Kernel Offset: disabled [ 45.273946][ T3507] Rebooting in 86400 seconds..