Warning: Permanently added '10.128.1.167' (ED25519) to the list of known hosts. 2024/03/26 21:40:25 ignoring optional flag "sandboxArg"="0" 2024/03/26 21:40:25 parsed 1 programs 2024/03/26 21:40:25 executed programs: 0 2024/03/26 21:40:30 executed programs: 5 2024/03/26 21:40:35 executed programs: 11 2024/03/26 21:40:40 executed programs: 17 2024/03/26 21:40:45 executed programs: 23 2024/03/26 21:40:50 executed programs: 30 2024/03/26 21:40:55 executed programs: 36 2024/03/26 21:41:00 executed programs: 43 2024/03/26 21:41:05 executed programs: 49 2024/03/26 21:41:11 executed programs: 55 2024/03/26 21:41:16 executed programs: 61 2024/03/26 21:41:21 executed programs: 67 2024/03/26 21:41:26 executed programs: 73 2024/03/26 21:41:31 executed programs: 79 2024/03/26 21:41:36 executed programs: 85 2024/03/26 21:41:41 executed programs: 92 2024/03/26 21:41:46 executed programs: 99 2024/03/26 21:41:51 executed programs: 106 2024/03/26 21:41:56 executed programs: 113 2024/03/26 21:42:01 executed programs: 123 [ 151.362976][ T2617] [ 151.365424][ T2617] ====================================================== [ 151.372437][ T2617] WARNING: possible circular locking dependency detected [ 151.379860][ T2617] 5.15.152-syzkaller #0 Not tainted [ 151.385224][ T2617] ------------------------------------------------------ [ 151.392508][ T2617] syz-executor.0/2617 is trying to acquire lock: [ 151.398909][ T2617] ffff88810bafc018 (&rs->rs_recv_lock){....}-{2:2}, at: rds_wake_sk_sleep+0x16/0x60 [ 151.408540][ T2617] [ 151.408540][ T2617] but task is already holding lock: [ 151.415968][ T2617] ffff888106cc4900 (&rm->m_rs_lock){....}-{2:2}, at: rds_send_remove_from_sock+0xd8/0x330 [ 151.425952][ T2617] [ 151.425952][ T2617] which lock already depends on the new lock. [ 151.425952][ T2617] [ 151.436687][ T2617] [ 151.436687][ T2617] the existing dependency chain (in reverse order) is: [ 151.445867][ T2617] [ 151.445867][ T2617] -> #1 (&rm->m_rs_lock){....}-{2:2}: [ 151.453411][ T2617] _raw_spin_lock_irqsave+0x36/0x50 [ 151.459192][ T2617] rds_message_put+0x82/0x3c0 [ 151.464448][ T2617] rds_clear_recv_queue+0x9b/0xd0 [ 151.469956][ T2617] rds_release+0x56/0x140 [ 151.474770][ T2617] __sock_release+0x32/0xa0 [ 151.479762][ T2617] sock_close+0xf/0x20 [ 151.484319][ T2617] __fput+0x8d/0x250 [ 151.488719][ T2617] task_work_run+0x54/0x80 [ 151.493802][ T2617] exit_to_user_mode_prepare+0x1bc/0x1c0 [ 151.499925][ T2617] syscall_exit_to_user_mode+0x19/0x60 [ 151.505882][ T2617] do_syscall_64+0x42/0x80 [ 151.510918][ T2617] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 151.517750][ T2617] [ 151.517750][ T2617] -> #0 (&rs->rs_recv_lock){....}-{2:2}: [ 151.525695][ T2617] __lock_acquire+0x10b6/0x1a40 [ 151.531033][ T2617] lock_acquire+0xbb/0x2a0 [ 151.536154][ T2617] _raw_read_lock_irqsave+0x42/0x90 [ 151.541974][ T2617] rds_wake_sk_sleep+0x16/0x60 [ 151.547232][ T2617] rds_send_remove_from_sock+0x103/0x330 [ 151.553359][ T2617] rds_send_path_drop_acked+0x121/0x150 [ 151.559401][ T2617] rds_tcp_write_space+0x9a/0x220 [ 151.565031][ T2617] tcp_check_space+0x31/0x110 [ 151.570451][ T2617] tcp_rcv_established+0x27e/0x730 [ 151.576160][ T2617] tcp_v4_do_rcv+0x17c/0x2f0 [ 151.581596][ T2617] __release_sock+0x54/0xd0 [ 151.586861][ T2617] release_sock+0x26/0xa0 [ 151.591846][ T2617] rds_send_xmit+0x5cc/0xa00 [ 151.596944][ T2617] rds_sendmsg+0xea1/0x1100 [ 151.602120][ T2617] __sock_sendmsg+0x2e/0x40 [ 151.607140][ T2617] ____sys_sendmsg+0x234/0x250 [ 151.612406][ T2617] ___sys_sendmsg+0x6e/0xb0 [ 151.617504][ T2617] __sys_sendmsg+0x54/0xa0 [ 151.622477][ T2617] do_syscall_64+0x35/0x80 [ 151.627629][ T2617] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 151.634840][ T2617] [ 151.634840][ T2617] other info that might help us debug this: [ 151.634840][ T2617] [ 151.645473][ T2617] Possible unsafe locking scenario: [ 151.645473][ T2617] [ 151.653095][ T2617] CPU0 CPU1 [ 151.658664][ T2617] ---- ---- [ 151.664092][ T2617] lock(&rm->m_rs_lock); [ 151.668387][ T2617] lock(&rs->rs_recv_lock); [ 151.675723][ T2617] lock(&rm->m_rs_lock); [ 151.682719][ T2617] lock(&rs->rs_recv_lock); [ 151.687462][ T2617] [ 151.687462][ T2617] *** DEADLOCK *** [ 151.687462][ T2617] [ 151.695755][ T2617] 3 locks held by syz-executor.0/2617: [ 151.701507][ T2617] #0: ffff888109b9d1a0 (k-sk_lock-AF_INET){+.+.}-{0:0}, at: tcp_sock_set_cork+0xe/0x40 [ 151.711385][ T2617] #1: ffff888109b9d458 (k-clock-AF_INET){++.-}-{2:2}, at: rds_tcp_write_space+0x1a/0x220 [ 151.721256][ T2617] #2: ffff888106cc4900 (&rm->m_rs_lock){....}-{2:2}, at: rds_send_remove_from_sock+0xd8/0x330 [ 151.731762][ T2617] [ 151.731762][ T2617] stack backtrace: [ 151.737802][ T2617] CPU: 1 PID: 2617 Comm: syz-executor.0 Not tainted 5.15.152-syzkaller #0 [ 151.746292][ T2617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 151.756595][ T2617] Call Trace: [ 151.760033][ T2617] [ 151.762943][ T2617] dump_stack_lvl+0x57/0x7d [ 151.767527][ T2617] check_noncircular+0xcc/0xe0 [ 151.772348][ T2617] ? register_lock_class+0x41/0x630 [ 151.777518][ T2617] __lock_acquire+0x10b6/0x1a40 [ 151.782352][ T2617] lock_acquire+0xbb/0x2a0 [ 151.786909][ T2617] ? rds_wake_sk_sleep+0x16/0x60 [ 151.792223][ T2617] ? rds_send_remove_from_sock+0xd8/0x330 [ 151.798003][ T2617] _raw_read_lock_irqsave+0x42/0x90 [ 151.803437][ T2617] ? rds_wake_sk_sleep+0x16/0x60 [ 151.808375][ T2617] rds_wake_sk_sleep+0x16/0x60 [ 151.813257][ T2617] rds_send_remove_from_sock+0x103/0x330 [ 151.818985][ T2617] ? lockdep_hardirqs_on_prepare+0x9d/0xf0 [ 151.824994][ T2617] ? _raw_spin_unlock_irqrestore+0x44/0x60 [ 151.830884][ T2617] ? rds_tcp_recv_exit+0x10/0x10 [ 151.835883][ T2617] rds_send_path_drop_acked+0x121/0x150 [ 151.841406][ T2617] ? sk_stream_wait_memory+0x370/0x370 [ 151.847197][ T2617] rds_tcp_write_space+0x9a/0x220 [ 151.852449][ T2617] tcp_check_space+0x31/0x110 [ 151.857444][ T2617] tcp_rcv_established+0x27e/0x730 [ 151.862636][ T2617] tcp_v4_do_rcv+0x17c/0x2f0 [ 151.867278][ T2617] __release_sock+0x54/0xd0 [ 151.871810][ T2617] release_sock+0x26/0xa0 [ 151.876386][ T2617] rds_send_xmit+0x5cc/0xa00 [ 151.881059][ T2617] rds_sendmsg+0xea1/0x1100 [ 151.885544][ T2617] ? aa_sk_perm+0x5e/0x310 [ 151.890044][ T2617] __sock_sendmsg+0x2e/0x40 [ 151.894598][ T2617] ____sys_sendmsg+0x234/0x250 [ 151.899325][ T2617] ? import_iovec+0x17/0x20 [ 151.903967][ T2617] ? sendmsg_copy_msghdr+0x77/0xa0 [ 151.909132][ T2617] ___sys_sendmsg+0x6e/0xb0 [ 151.913689][ T2617] ? lock_acquire+0xbb/0x2a0 [ 151.918255][ T2617] ? ksys_dup3+0x160/0x160 [ 151.922634][ T2617] ? find_held_lock+0x2b/0x80 [ 151.927377][ T2617] ? __fget_files+0xb9/0x190 [ 151.932024][ T2617] ? __fget_files+0xd1/0x190 [ 151.937051][ T2617] __sys_sendmsg+0x54/0xa0 [ 151.941495][ T2617] ? lockdep_hardirqs_on_prepare+0xcd/0xf0 [ 151.947442][ T2617] do_syscall_64+0x35/0x80 [ 151.952090][ T2617] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 151.957955][ T2617] RIP: 0033:0x7f16d3bf1959 [ 151.962399][ T2617] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 151.982725][ T2617] RSP: 002b:00007f16d37320c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 151.991138][ T2617] RAX: ffffffffffffffda RBX: 00007f16d3d11120 RCX: 00007f16d3bf1959 [ 151.999207][ T2617] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 152.007240][ T2617] RBP: 00007f16d3c4dc88 R08: 0000000000000000 R09: 0000000000000000 [ 152.015184][ T2617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.023215][ T2617] R13: 000000000000006e R14: 00007f16d3d11120 R15: 00007ffe44e1f718 [ 152.031277][ T2617] 2024/03/26 21:42:07 executed programs: 130 2024/03/26 21:42:12 executed programs: 136