program: syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a}) mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a}) chdir(&(0x7f00000002c0)='mnt/encrypted_dir\x00') openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x10c) link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00') ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r1, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}}) [ 100.263979][ T5308] Bluetooth: hci0: command tx timeout [ 100.474965][ T5328] loop0: detected capacity change from 0 to 128 [ 100.515086][ T5328] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 100.534234][ T5328] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 100.550087][ T5328] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni" [ 100.554864][ T5328] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx" [ 100.569519][ T5328] fscrypt: loop0: 2 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 13 [ 100.620797][ T79] [ 100.621960][ T79] ====================================================== [ 100.624835][ T79] WARNING: possible circular locking dependency detected [ 100.627796][ T79] syzkaller #0 Not tainted [ 100.629506][ T79] ------------------------------------------------------ [ 100.632487][ T79] kswapd0/79 is trying to acquire lock: [ 100.634921][ T79] ffff888011e32098 (&type->lock_class){+.+.}-{4:4}, at: keyring_clear+0xaf/0x250 [ 100.639116][ T79] [ 100.639116][ T79] but task is already holding lock: [ 100.642232][ T79] ffffffff8e67e4a0 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0x90d/0x2800 [ 100.645690][ T79] [ 100.645690][ T79] which lock already depends on the new lock. [ 100.645690][ T79] [ 100.649891][ T79] [ 100.649891][ T79] the existing dependency chain (in reverse order) is: [ 100.653903][ T79] [ 100.653903][ T79] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 100.658961][ T79] fs_reclaim_acquire+0x71/0x100 [ 100.661421][ T79] __kmalloc_cache_noprof+0x40/0x6e0 [ 100.664074][ T79] assoc_array_insert+0x92/0x2f60 [ 100.666637][ T79] __key_link_begin+0xd6/0x1f0 [ 100.668879][ T79] __key_create_or_update+0x449/0xa80 [ 100.671540][ T79] key_create_or_update+0x42/0x60 [ 100.673964][ T79] x509_load_certificate_list+0x145/0x280 [ 100.676591][ T79] do_one_initcall+0x250/0x840 [ 100.678875][ T79] do_initcall_level+0x104/0x190 [ 100.683013][ T79] do_initcalls+0x59/0xa0 [ 100.685142][ T79] kernel_init_freeable+0x2a6/0x3d0 [ 100.687735][ T79] kernel_init+0x1d/0x1d0 [ 100.690074][ T79] ret_from_fork+0x51b/0xa40 [ 100.692254][ T79] ret_from_fork_asm+0x1a/0x30 [ 100.694581][ T79] [ 100.694581][ T79] -> #0 (&type->lock_class){+.+.}-{4:4}: [ 100.698038][ T79] __lock_acquire+0x15a5/0x2cf0 [ 100.700316][ T79] lock_acquire+0x106/0x330 [ 100.702733][ T79] down_write+0x96/0x200 [ 100.704796][ T79] keyring_clear+0xaf/0x250 [ 100.706978][ T79] fscrypt_put_master_key+0xca/0x190 [ 100.709394][ T79] put_crypt_info+0x26d/0x310 [ 100.711892][ T79] fscrypt_put_encryption_info+0xf6/0x140 [ 100.714249][ T79] ext4_clear_inode+0x170/0x2f0 [ 100.716475][ T79] ext4_evict_inode+0x9fb/0xe60 [ 100.718676][ T79] evict+0x61e/0xb10 [ 100.720644][ T79] __dentry_kill+0x1a2/0x5e0 [ 100.722919][ T79] shrink_kill+0xa9/0x2c0 [ 100.725089][ T79] shrink_dentry_list+0x2e0/0x5e0 [ 100.727335][ T79] prune_dcache_sb+0x119/0x180 [ 100.729387][ T79] super_cache_scan+0x369/0x4b0 [ 100.731608][ T79] do_shrink_slab+0x6df/0x10d0 [ 100.733930][ T79] shrink_slab+0x830/0x1150 [ 100.736076][ T79] shrink_one+0x2d9/0x710 [ 100.738028][ T79] shrink_node+0x2f8b/0x35f0 [ 100.740266][ T79] kswapd+0x144c/0x2800 [ 100.742283][ T79] kthread+0x726/0x8b0 [ 100.744320][ T79] ret_from_fork+0x51b/0xa40 [ 100.746607][ T79] ret_from_fork_asm+0x1a/0x30 [ 100.748645][ T79] [ 100.748645][ T79] other info that might help us debug this: [ 100.748645][ T79] [ 100.752946][ T79] Possible unsafe locking scenario: [ 100.752946][ T79] [ 100.756127][ T79] CPU0 CPU1 [ 100.758515][ T79] ---- ---- [ 100.760841][ T79] lock(fs_reclaim); [ 100.762768][ T79] lock(&type->lock_class); [ 100.766058][ T79] lock(fs_reclaim); [ 100.769084][ T79] lock(&type->lock_class); [ 100.771273][ T79] [ 100.771273][ T79] *** DEADLOCK *** [ 100.771273][ T79] [ 100.774846][ T79] 2 locks held by kswapd0/79: [ 100.776931][ T79] #0: ffffffff8e67e4a0 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0x90d/0x2800 [ 100.780203][ T79] #1: ffff888011e820e0 (&type->s_umount_key#32){++++}-{4:4}, at: super_cache_scan+0x91/0x4b0 [ 100.784763][ T79] [ 100.784763][ T79] stack backtrace: [ 100.787451][ T79] CPU: 0 UID: 0 PID: 79 Comm: kswapd0 Not tainted syzkaller #0 PREEMPT(full) [ 100.787514][ T79] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 100.787528][ T79] Call Trace: [ 100.787678][ T79] [ 100.787702][ T79] dump_stack_lvl+0xe8/0x150 [ 100.787752][ T79] print_circular_bug+0x2e1/0x300 [ 100.787765][ T79] check_noncircular+0x12e/0x150 [ 100.787778][ T79] __lock_acquire+0x15a5/0x2cf0 [ 100.787793][ T79] ? stack_trace_save+0xa9/0x100 [ 100.787839][ T79] ? keyring_clear+0xaf/0x250 [ 100.787853][ T79] lock_acquire+0x106/0x330 [ 100.787867][ T79] ? keyring_clear+0xaf/0x250 [ 100.787882][ T79] down_write+0x96/0x200 [ 100.787924][ T79] ? keyring_clear+0xaf/0x250 [ 100.787938][ T79] ? __pfx_down_write+0x10/0x10 [ 100.787952][ T79] keyring_clear+0xaf/0x250 [ 100.788017][ T79] ? __pfx_keyring_clear+0x10/0x10 [ 100.788034][ T79] fscrypt_put_master_key+0xca/0x190 [ 100.788049][ T79] put_crypt_info+0x26d/0x310 [ 100.788064][ T79] fscrypt_put_encryption_info+0xf6/0x140 [ 100.788079][ T79] ext4_clear_inode+0x170/0x2f0 [ 100.788093][ T79] ext4_evict_inode+0x9fb/0xe60 [ 100.788108][ T79] ? inode_wait_for_writeback+0x16d/0x3b0 [ 100.788121][ T79] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 100.788133][ T79] ? do_raw_spin_lock+0x12b/0x2f0 [ 100.788145][ T79] ? __pfx_ext4_evict_inode+0x10/0x10 [ 100.788159][ T79] ? do_raw_spin_unlock+0x4d/0x210 [ 100.788170][ T79] ? __pfx_ext4_evict_inode+0x10/0x10 [ 100.788184][ T79] evict+0x61e/0xb10 [ 100.788199][ T79] ? __pfx_evict+0x10/0x10 [ 100.788211][ T79] ? _raw_spin_unlock+0x28/0x50 [ 100.788224][ T79] ? iput+0xcc2/0x1020 [ 100.788235][ T79] __dentry_kill+0x1a2/0x5e0 [ 100.788249][ T79] ? shrink_kill+0x8d/0x2c0 [ 100.788265][ T79] shrink_kill+0xa9/0x2c0 [ 100.788275][ T79] shrink_dentry_list+0x2e0/0x5e0 [ 100.788287][ T79] prune_dcache_sb+0x119/0x180 [ 100.788298][ T79] ? __pfx_prune_dcache_sb+0x10/0x10 [ 100.788308][ T79] ? list_lru_count_one+0x27/0x2c0 [ 100.788319][ T79] ? list_lru_count_one+0x264/0x2c0 [ 100.788329][ T79] super_cache_scan+0x369/0x4b0 [ 100.788346][ T79] do_shrink_slab+0x6df/0x10d0 [ 100.788360][ T79] shrink_slab+0x830/0x1150 [ 100.788372][ T79] ? shrink_slab+0x1ef/0x1150 [ 100.788383][ T79] ? __pfx_shrink_slab+0x10/0x10 [ 100.788397][ T79] shrink_one+0x2d9/0x710 [ 100.788409][ T79] ? shrink_node+0x2d4d/0x35f0 [ 100.788419][ T79] shrink_node+0x2f8b/0x35f0 [ 100.788431][ T79] ? shrink_node+0x2d4d/0x35f0 [ 100.788441][ T79] ? __lock_acquire+0x6b5/0x2cf0 [ 100.788456][ T79] ? percpu_ref_put+0x19/0x180 [ 100.788471][ T79] ? percpu_ref_put+0x19/0x180 [ 100.788486][ T79] ? __pfx_shrink_node+0x10/0x10 [ 100.788496][ T79] ? percpu_ref_put+0x19/0x180 [ 100.788512][ T79] ? mem_cgroup_iter+0x420/0x450 [ 100.788522][ T79] ? mem_cgroup_iter+0x3b/0x450 [ 100.788533][ T79] kswapd+0x144c/0x2800 [ 100.788549][ T79] ? kswapd+0x90d/0x2800 [ 100.788563][ T79] ? __pfx_kswapd+0x10/0x10 [ 100.788574][ T79] ? __lock_acquire+0x6b5/0x2cf0 [ 100.788589][ T79] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 100.788605][ T79] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 100.788622][ T79] ? __pfx_autoremove_wake_function+0x10/0x10 [ 100.788635][ T79] ? __kthread_parkme+0x7a/0x1f0 [ 100.788645][ T79] ? __kthread_parkme+0x19c/0x1f0 [ 100.788656][ T79] kthread+0x726/0x8b0 [ 100.788667][ T79] ? __pfx_kswapd+0x10/0x10 [ 100.788679][ T79] ? __pfx_kthread+0x10/0x10 [ 100.788690][ T79] ? _raw_spin_unlock_irq+0x23/0x50 [ 100.788706][ T79] ? __pfx_kthread+0x10/0x10 [ 100.788717][ T79] ret_from_fork+0x51b/0xa40 [ 100.788727][ T79] ? __pfx_ret_from_fork+0x10/0x10 [ 100.788743][ T79] ? __switch_to+0xc82/0x1410 [ 100.788757][ T79] ? __pfx_kthread+0x10/0x10 [ 100.788769][ T79] ret_from_fork_asm+0x1a/0x30 [ 100.788786][ T79]