Warning: Permanently added '10.128.0.112' (ED25519) to the list of known hosts.
2024/05/08 14:57:37 ignoring optional flag "sandboxArg"="0"
2024/05/08 14:57:37 parsed 1 programs
2024/05/08 14:57:37 executed programs: 0
[   44.480592][ T2204] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   47.094993][ T2623] 
[   47.097442][ T2623] ======================================================
[   47.105659][ T2623] WARNING: possible circular locking dependency detected
[   47.112926][ T2623] 6.4.0-rc2-syzkaller #0 Not tainted
[   47.118535][ T2623] ------------------------------------------------------
[   47.125615][ T2623] syz-executor.0/2623 is trying to acquire lock:
[   47.131920][ T2623] ffff888102f3f440 (&p->lock){+.+.}-{3:3}, at: seq_read_iter+0x3c/0x420
[   47.140637][ T2623] 
[   47.140637][ T2623] but task is already holding lock:
[   47.148071][ T2623] ffff888103664068 (&pipe->mutex/1){+.+.}-{3:3}, at: splice_file_to_pipe+0x25/0x140
[   47.157430][ T2623] 
[   47.157430][ T2623] which lock already depends on the new lock.
[   47.157430][ T2623] 
[   47.170368][ T2623] 
[   47.170368][ T2623] the existing dependency chain (in reverse order) is:
[   47.179625][ T2623] 
[   47.179625][ T2623] -> #4 (&pipe->mutex/1){+.+.}-{3:3}:
[   47.187147][ T2623]        __mutex_lock+0x99/0x9a0
[   47.192234][ T2623]        iter_file_splice_write+0xb9/0x430
[   47.198198][ T2623]        ovl_splice_write+0x148/0x220
[   47.203634][ T2623]        do_splice+0x52d/0x8e0
[   47.208638][ T2623]        __se_sys_splice+0x18f/0x240
[   47.214005][ T2623]        do_syscall_64+0x46/0xa0
[   47.218942][ T2623]        entry_SYSCALL_64_after_hwframe+0x73/0xdd
[   47.225426][ T2623] 
[   47.225426][ T2623] -> #3 (sb_writers#4){.+.+}-{0:0}:
[   47.232784][ T2623]        sb_start_write+0x34/0xd0
[   47.237842][ T2623]        mnt_want_write+0x12/0x40
[   47.244592][ T2623]        ovl_create_object+0x3e/0x100
[   47.250115][ T2623]        path_openat+0x520/0xd50
[   47.255177][ T2623]        do_filp_open+0xac/0x150
[   47.260183][ T2623]        do_sys_openat2+0x89/0x160
[   47.265263][ T2623]        __x64_sys_open+0x7a/0xa0
[   47.270264][ T2623]        do_syscall_64+0x46/0xa0
[   47.275270][ T2623]        entry_SYSCALL_64_after_hwframe+0x73/0xdd
[   47.282879][ T2623] 
[   47.282879][ T2623] -> #2 (&ovl_i_mutex_dir_key[depth]){++++}-{3:3}:
[   47.291873][ T2623]        down_read+0x4a/0x440
[   47.296528][ T2623]        lookup_slow+0x20/0x50
[   47.301295][ T2623]        walk_component+0xda/0xf0
[   47.306462][ T2623]        path_lookupat+0x45/0x100
[   47.311456][ T2623]        filename_lookup+0xd9/0x1f0
[   47.316873][ T2623]        kern_path+0x2a/0x80
[   47.321549][ T2623]        lookup_bdev+0x4a/0xc0
[   47.326766][ T2623]        resume_store+0xb2/0x240
[   47.331980][ T2623]        kernfs_fop_write_iter+0x12a/0x1b0
[   47.338307][ T2623]        vfs_write+0x255/0x2c0
[   47.344531][ T2623]        ksys_write+0x70/0xe0
[   47.350156][ T2623]        do_syscall_64+0x46/0xa0
[   47.356318][ T2623]        entry_SYSCALL_64_after_hwframe+0x73/0xdd
[   47.363060][ T2623] 
[   47.363060][ T2623] -> #1 (&of->mutex){+.+.}-{3:3}:
[   47.371540][ T2623]        __mutex_lock+0x99/0x9a0
[   47.376634][ T2623]        kernfs_seq_start+0x21/0xf0
[   47.382344][ T2623]        seq_read_iter+0x11a/0x420
[   47.388225][ T2623]        vfs_read+0x250/0x2b0
[   47.393587][ T2623]        ksys_read+0x70/0xe0
[   47.399055][ T2623]        do_syscall_64+0x46/0xa0
[   47.404064][ T2623]        entry_SYSCALL_64_after_hwframe+0x73/0xdd
[   47.410736][ T2623] 
[   47.410736][ T2623] -> #0 (&p->lock){+.+.}-{3:3}:
[   47.418021][ T2623]        __lock_acquire+0x1260/0x2590
[   47.423649][ T2623]        lock_acquire+0xea/0x270
[   47.428573][ T2623]        __mutex_lock+0x99/0x9a0
[   47.433490][ T2623]        seq_read_iter+0x3c/0x420
[   47.438984][ T2623]        copy_splice_read+0x1c8/0x320
[   47.444520][ T2623]        splice_file_to_pipe+0xc0/0x140
[   47.452922][ T2623]        do_sendfile+0x19f/0x410
[   47.458023][ T2623]        __se_sys_sendfile64+0xab/0xe0
[   47.463567][ T2623]        do_syscall_64+0x46/0xa0
[   47.468670][ T2623]        entry_SYSCALL_64_after_hwframe+0x73/0xdd
[   47.475499][ T2623] 
[   47.475499][ T2623] other info that might help us debug this:
[   47.475499][ T2623] 
[   47.485706][ T2623] Chain exists of:
[   47.485706][ T2623]   &p->lock --> sb_writers#4 --> &pipe->mutex/1
[   47.485706][ T2623] 
[   47.498000][ T2623]  Possible unsafe locking scenario:
[   47.498000][ T2623] 
[   47.506311][ T2623]        CPU0                    CPU1
[   47.511674][ T2623]        ----                    ----
[   47.517106][ T2623]   lock(&pipe->mutex/1);
[   47.521410][ T2623]                                lock(sb_writers#4);
[   47.528074][ T2623]                                lock(&pipe->mutex/1);
[   47.535336][ T2623]   lock(&p->lock);
[   47.539117][ T2623] 
[   47.539117][ T2623]  *** DEADLOCK ***
[   47.539117][ T2623] 
[   47.547239][ T2623] 1 lock held by syz-executor.0/2623:
[   47.552769][ T2623]  #0: ffff888103664068 (&pipe->mutex/1){+.+.}-{3:3}, at: splice_file_to_pipe+0x25/0x140
[   47.564289][ T2623] 
[   47.564289][ T2623] stack backtrace:
[   47.570145][ T2623] CPU: 0 PID: 2623 Comm: syz-executor.0 Not tainted 6.4.0-rc2-syzkaller #0
[   47.578712][ T2623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   47.588821][ T2623] Call Trace:
[   47.592421][ T2623]  <TASK>
[   47.595770][ T2623]  dump_stack_lvl+0x8d/0xe0
[   47.600377][ T2623]  check_noncircular+0x10c/0x120
[   47.605385][ T2623]  __lock_acquire+0x1260/0x2590
[   47.610208][ T2623]  ? fs_reclaim_acquire+0x66/0xf0
[   47.615303][ T2623]  ? fs_reclaim_acquire+0x66/0xf0
[   47.620492][ T2623]  ? seq_read_iter+0x3c/0x420
[   47.625214][ T2623]  lock_acquire+0xea/0x270
[   47.629626][ T2623]  ? seq_read_iter+0x3c/0x420
[   47.634279][ T2623]  ? rcu_is_watching+0x10/0x40
[   47.639102][ T2623]  ? __alloc_pages+0x175/0x280
[   47.643842][ T2623]  ? seq_read_iter+0x3c/0x420
[   47.648593][ T2623]  __mutex_lock+0x99/0x9a0
[   47.653093][ T2623]  ? seq_read_iter+0x3c/0x420
[   47.657843][ T2623]  ? __alloc_pages_bulk+0x442/0x6b0
[   47.663182][ T2623]  seq_read_iter+0x3c/0x420
[   47.668537][ T2623]  copy_splice_read+0x1c8/0x320
[   47.673753][ T2623]  splice_file_to_pipe+0xc0/0x140
[   47.678904][ T2623]  do_sendfile+0x19f/0x410
[   47.683383][ T2623]  __se_sys_sendfile64+0xab/0xe0
[   47.688648][ T2623]  do_syscall_64+0x46/0xa0
[   47.693045][ T2623]  entry_SYSCALL_64_after_hwframe+0x73/0xdd
[   47.698925][ T2623] RIP: 0033:0x7fb98e47dd69
[   47.703393][ T2623] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   47.723253][ T2623] RSP: 002b:00007fb98f1650c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   47.731731][ T2623] RAX: ffffffffffffffda RBX: 00007fb98e5ac050 RCX: 00007fb98e47dd69
[   47.740551][ T2623] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006
[   47.748772][ T2623] RBP: 00007fb98e4ca49e R08: 0000000000000000 R09: 0000000000000000
[   47.757059][ T2623] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[   47.765148][ T2623] R13: 000000000000006e R14: 00007fb98e5ac050 R15: 00007ffc86b14338
[   47.774373][ T2623]  </TASK>
2024/05/08 14:57:42 executed programs: 22
2024/05/08 14:57:47 executed programs: 95