Warning: Permanently added '10.128.10.7' (ED25519) to the list of known hosts.
2024/09/25 14:02:01 ignoring optional flag "sandboxArg"="0"
2024/09/25 14:02:01 ignoring optional flag "type"="gce"
2024/09/25 14:02:01 parsed 1 programs
[   80.540620][ T2540] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2024/09/25 14:02:05 executed programs: 0
[   85.898384][ T3422] mmap: syz.0.15 (3422) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   87.161880][ T3458] 
[   87.164818][ T3458] ======================================================
[   87.173261][ T3458] WARNING: possible circular locking dependency detected
[   87.183405][ T3458] 6.11.0-rc1-syzkaller #0 Not tainted
[   87.189579][ T3458] ------------------------------------------------------
[   87.200168][ T3458] syz.0.33/3458 is trying to acquire lock:
[   87.206856][ T3458] ffff888102bf5918 (&mm->mmap_lock){++++}-{3:3}, at: mmap_read_lock_killable+0x13/0x50
[   87.217981][ T3458] 
[   87.217981][ T3458] but task is already holding lock:
[   87.226041][ T3458] ffff88810934c400 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: shmem_file_write_iter+0x2f/0x90
[   87.238100][ T3458] 
[   87.238100][ T3458] which lock already depends on the new lock.
[   87.238100][ T3458] 
[   87.250062][ T3458] 
[   87.250062][ T3458] the existing dependency chain (in reverse order) is:
[   87.260931][ T3458] 
[   87.260931][ T3458] -> #1 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}:
[   87.272277][ T3458]        down_write+0x29/0xb0
[   87.277550][ T3458]        process_measurement+0x154/0x900
[   87.283874][ T3458]        ima_file_mmap+0x74/0xe0
[   87.289448][ T3458]        security_mmap_file+0x3a7/0x480
[   87.295422][ T3458]        __se_sys_remap_file_pages+0x278/0x370
[   87.303820][ T3458]        do_syscall_64+0xa0/0x180
[   87.310077][ T3458]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.318993][ T3458] 
[   87.318993][ T3458] -> #0 (&mm->mmap_lock){++++}-{3:3}:
[   87.326758][ T3458]        __lock_acquire+0x122b/0x2530
[   87.332829][ T3458]        lock_acquire+0xeb/0x270
[   87.338099][ T3458]        down_read_killable+0x50/0x610
[   87.343742][ T3458]        mmap_read_lock_killable+0x13/0x50
[   87.349683][ T3458]        lock_mm_and_find_vma+0x11a/0x130
[   87.355713][ T3458]        exc_page_fault+0x1d3/0x6a0
[   87.362794][ T3458]        asm_exc_page_fault+0x26/0x30
[   87.368580][ T3458]        fault_in_readable+0x78/0xd0
[   87.373918][ T3458]        fault_in_iov_iter_readable+0x3c/0xd0
[   87.380032][ T3458]        generic_perform_write+0xaa/0x3d0
[   87.385985][ T3458]        shmem_file_write_iter+0x67/0x90
[   87.392205][ T3458]        vfs_write+0x342/0x3d0
[   87.397520][ T3458]        ksys_write+0x70/0xe0
[   87.402619][ T3458]        do_syscall_64+0xa0/0x180
[   87.407965][ T3458]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.414788][ T3458] 
[   87.414788][ T3458] other info that might help us debug this:
[   87.414788][ T3458] 
[   87.425261][ T3458]  Possible unsafe locking scenario:
[   87.425261][ T3458] 
[   87.433390][ T3458]        CPU0                    CPU1
[   87.439172][ T3458]        ----                    ----
[   87.444730][ T3458]   lock(&sb->s_type->i_mutex_key#12);
[   87.450597][ T3458]                                lock(&mm->mmap_lock);
[   87.457405][ T3458]                                lock(&sb->s_type->i_mutex_key#12);
[   87.466353][ T3458]   rlock(&mm->mmap_lock);
[   87.471621][ T3458] 
[   87.471621][ T3458]  *** DEADLOCK ***
[   87.471621][ T3458] 
[   87.480870][ T3458] 3 locks held by syz.0.33/3458:
[   87.486613][ T3458]  #0: ffff888103375ec8 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x71/0xa0
[   87.497442][ T3458]  #1: ffff888104733410 (sb_writers#5){.+.+}-{0:0}, at: vfs_write+0x111/0x3d0
[   87.507065][ T3458]  #2: ffff88810934c400 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: shmem_file_write_iter+0x2f/0x90
[   87.519197][ T3458] 
[   87.519197][ T3458] stack backtrace:
[   87.525249][ T3458] CPU: 1 UID: 0 PID: 3458 Comm: syz.0.33 Not tainted 6.11.0-rc1-syzkaller #0
[   87.534860][ T3458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   87.546845][ T3458] Call Trace:
[   87.550533][ T3458]  <TASK>
[   87.554673][ T3458]  dump_stack_lvl+0xa3/0x100
[   87.559715][ T3458]  check_noncircular+0x119/0x140
[   87.565857][ T3458]  __lock_acquire+0x122b/0x2530
[   87.571045][ T3458]  ? __lock_acquire+0x4ff/0x2530
[   87.576560][ T3458]  ? mmap_read_lock_killable+0x13/0x50
[   87.583056][ T3458]  lock_acquire+0xeb/0x270
[   87.588927][ T3458]  ? mmap_read_lock_killable+0x13/0x50
[   87.595061][ T3458]  ? __dquot_alloc_space+0x17d/0x5f0
[   87.601025][ T3458]  ? mmap_read_lock_killable+0x13/0x50
[   87.606894][ T3458]  down_read_killable+0x50/0x610
[   87.612004][ T3458]  ? mmap_read_lock_killable+0x13/0x50
[   87.617965][ T3458]  ? folio_add_lru+0xf4/0x370
[   87.624719][ T3458]  ? bsearch+0x3b/0x80
[   87.629453][ T3458]  ? fault_in_readable+0x78/0xd0
[   87.634964][ T3458]  mmap_read_lock_killable+0x13/0x50
[   87.641536][ T3458]  lock_mm_and_find_vma+0x11a/0x130
[   87.647065][ T3458]  exc_page_fault+0x1d3/0x6a0
[   87.653854][ T3458]  ? shmem_alloc_and_add_folio+0x5f1/0x730
[   87.660357][ T3458]  asm_exc_page_fault+0x26/0x30
[   87.665538][ T3458] RIP: 0010:fault_in_readable+0x78/0xd0
[   87.671683][ T3458] Code: 00 f0 ff ff eb 0a 4c 8d 87 ff 0f 00 00 48 89 f9 49 01 f0 49 81 e0 00 f0 ff ff 49 39 f8 72 4d 4c 39 c1 74 1a 48 89 ca 48 89 d1 <8a> 02 4c 89 c1 88 04 24 48 81 c2 00 10 00 00 4c 39 c2 75 e9 f3 0f
[   87.693112][ T3458] RSP: 0018:ffffc90002183d5f EFLAGS: 00050287
[   87.700018][ T3458] RAX: 0400000000000000 RBX: 0000000000034000 RCX: 0000000021000000
[   87.709186][ T3458] RDX: 0000000021000000 RSI: 0000000000034000 RDI: 0000000020fcc040
[   87.718905][ T3458] RBP: 00000000008d7c85 R08: 0000000021001000 R09: ffffea0005c64a40
[   87.727985][ T3458] R10: 0000000000000008 R11: ffffffff81256410 R12: 0000000000fcc000
[   87.738462][ T3458] R13: ffff88810934c4d8 R14: 0000000000034000 R15: 0000000000fcc000
[   87.747815][ T3458]  ? __pfx_noop_dirty_folio+0x10/0x10
[   87.753867][ T3458]  fault_in_iov_iter_readable+0x3c/0xd0
[   87.760542][ T3458]  generic_perform_write+0xaa/0x3d0
[   87.766945][ T3458]  shmem_file_write_iter+0x67/0x90
[   87.772991][ T3458]  vfs_write+0x342/0x3d0
[   87.777635][ T3458]  ksys_write+0x70/0xe0
[   87.781783][ T3458]  do_syscall_64+0xa0/0x180
[   87.787513][ T3458]  ? clear_bhb_loop+0x55/0xb0
[   87.794167][ T3458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.800748][ T3458] RIP: 0033:0x7fa88cf7def9
[   87.805610][ T3458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.826407][ T3458] RSP: 002b:00007fa88ddc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   87.835555][ T3458] RAX: ffffffffffffffda RBX: 00007fa88d135f80 RCX: 00007fa88cf7def9
[   87.844441][ T3458] RDX: 00000000018a3c85 RSI: 0000000020000040 RDI: 0000000000000003
[   87.854896][ T3458] RBP: 00007fa88cff0b76 R08: 0000000000000000 R09: 0000000000000000
[   87.863652][ T3458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.873518][ T3458] R13: 0000000000000000 R14: 00007fa88d135f80 R15: 00007fffc8674d78
[   87.882335][ T3458]  </TASK>
2024/09/25 14:02:10 executed programs: 41
2024/09/25 14:02:15 executed programs: 181