program: syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a}) mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a}) chdir(&(0x7f00000002c0)='mnt/encrypted_dir\x00') syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}}) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r1, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14008051}}, {{&(0x7f00000000c0)=@file={0x1, './file0/file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x40080}}], 0x2, 0x0) syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000040)={[{}]}, 0x1, 0x199, &(0x7f0000000440)="$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") [ 74.974458][ T5310] Bluetooth: hci0: command tx timeout [ 75.022989][ T5333] loop0: detected capacity change from 0 to 128 [ 75.076610][ T5333] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 75.093770][ T5333] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 75.124275][ T5333] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni" [ 75.145659][ T5333] EXT4-fs (loop0): shut down requested (1) [ 75.150128][ T5333] fscrypt: loop0: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 75.173953][ T5333] fscrypt (loop0, inode 13): Error -5 getting encryption context [ 75.177830][ T5333] EXT4-fs warning (device loop0): ext4_lookup:1797: Inconsistent encryption contexts: 12/13 [ 75.239970][ T79] [ 75.241375][ T79] ====================================================== [ 75.244734][ T79] WARNING: possible circular locking dependency detected [ 75.247599][ T79] syzkaller #0 Not tainted [ 75.249481][ T79] ------------------------------------------------------ [ 75.252735][ T79] kswapd0/79 is trying to acquire lock: [ 75.255383][ T79] ffff888019ed9098 (&type->lock_class){+.+.}-{4:4}, at: keyring_clear+0xaf/0x240 [ 75.259541][ T79] [ 75.259541][ T79] but task is already holding lock: [ 75.262702][ T79] ffffffff8e0511c0 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0x92a/0x2820 [ 75.265940][ T79] [ 75.265940][ T79] which lock already depends on the new lock. [ 75.265940][ T79] [ 75.270474][ T79] [ 75.270474][ T79] the existing dependency chain (in reverse order) is: [ 75.274607][ T79] [ 75.274607][ T79] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 75.277763][ T79] fs_reclaim_acquire+0x72/0x100 [ 75.280180][ T79] __kmalloc_cache_noprof+0x40/0x700 [ 75.282561][ T79] assoc_array_insert+0x92/0x2f90 [ 75.284930][ T79] __key_link_begin+0xd6/0x1f0 [ 75.287509][ T79] __key_create_or_update+0x41a/0xa30 [ 75.290227][ T79] key_create_or_update+0x42/0x60 [ 75.292604][ T79] x509_load_certificate_list+0x145/0x280 [ 75.295308][ T79] do_one_initcall+0x1fb/0x7f0 [ 75.297537][ T79] do_initcall_level+0x104/0x190 [ 75.300291][ T79] do_initcalls+0x59/0xa0 [ 75.302611][ T79] kernel_init_freeable+0x334/0x4b0 [ 75.305353][ T79] kernel_init+0x1d/0x1d0 [ 75.308232][ T79] ret_from_fork+0x599/0xb30 [ 75.311043][ T79] ret_from_fork_asm+0x1a/0x30 [ 75.313923][ T79] [ 75.313923][ T79] -> #0 (&type->lock_class){+.+.}-{4:4}: [ 75.318234][ T79] __lock_acquire+0x15a6/0x2cf0 [ 75.321562][ T79] lock_acquire+0x117/0x340 [ 75.324104][ T79] down_write+0x96/0x1f0 [ 75.326375][ T79] keyring_clear+0xaf/0x240 [ 75.328708][ T79] fscrypt_put_master_key+0xca/0x190 [ 75.331515][ T79] put_crypt_info+0x26d/0x310 [ 75.334011][ T79] fscrypt_put_encryption_info+0xf6/0x140 [ 75.336989][ T79] ext4_clear_inode+0x170/0x2f0 [ 75.339489][ T79] ext4_evict_inode+0x9f6/0xe60 [ 75.341864][ T79] evict+0x5f4/0xae0 [ 75.343785][ T79] __dentry_kill+0x209/0x660 [ 75.346025][ T79] shrink_kill+0xa9/0x2c0 [ 75.348141][ T79] shrink_dentry_list+0x2e0/0x5e0 [ 75.350621][ T79] prune_dcache_sb+0x10e/0x180 [ 75.353060][ T79] super_cache_scan+0x369/0x4b0 [ 75.355418][ T79] do_shrink_slab+0x6df/0x10d0 [ 75.357658][ T79] shrink_slab+0x7ef/0x10d0 [ 75.359885][ T79] shrink_one+0x2d9/0x720 [ 75.362099][ T79] shrink_node+0x2f7d/0x35b0 [ 75.364570][ T79] kswapd+0x145a/0x2820 [ 75.366757][ T79] kthread+0x711/0x8a0 [ 75.368999][ T79] ret_from_fork+0x599/0xb30 [ 75.371571][ T79] ret_from_fork_asm+0x1a/0x30 [ 75.373987][ T79] [ 75.373987][ T79] other info that might help us debug this: [ 75.373987][ T79] [ 75.378645][ T79] Possible unsafe locking scenario: [ 75.378645][ T79] [ 75.382110][ T79] CPU0 CPU1 [ 75.384475][ T79] ---- ---- [ 75.386872][ T79] lock(fs_reclaim); [ 75.388830][ T79] lock(&type->lock_class); [ 75.392028][ T79] lock(fs_reclaim); [ 75.394923][ T79] lock(&type->lock_class); [ 75.397329][ T79] [ 75.397329][ T79] *** DEADLOCK *** [ 75.397329][ T79] [ 75.401407][ T79] 2 locks held by kswapd0/79: [ 75.403840][ T79] #0: ffffffff8e0511c0 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0x92a/0x2820 [ 75.408475][ T79] #1: ffff8880418260e0 (&type->s_umount_key#32){++++}-{4:4}, at: super_cache_scan+0x91/0x4b0 [ 75.413248][ T79] [ 75.413248][ T79] stack backtrace: [ 75.415842][ T79] CPU: 0 UID: 0 PID: 79 Comm: kswapd0 Not tainted syzkaller #0 PREEMPT(full) [ 75.415857][ T79] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.415864][ T79] Call Trace: [ 75.415873][ T79] [ 75.415879][ T79] dump_stack_lvl+0x189/0x250 [ 75.415899][ T79] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.415912][ T79] ? __pfx__printk+0x10/0x10 [ 75.415927][ T79] ? print_lock_name+0xde/0x100 [ 75.415942][ T79] print_circular_bug+0x2e2/0x300 [ 75.415958][ T79] check_noncircular+0x12e/0x150 [ 75.415973][ T79] __lock_acquire+0x15a6/0x2cf0 [ 75.415989][ T79] ? keyring_clear+0xaf/0x240 [ 75.416003][ T79] lock_acquire+0x117/0x340 [ 75.416014][ T79] ? keyring_clear+0xaf/0x240 [ 75.416030][ T79] down_write+0x96/0x1f0 [ 75.416053][ T79] ? keyring_clear+0xaf/0x240 [ 75.416068][ T79] ? __pfx_down_write+0x10/0x10 [ 75.416084][ T79] keyring_clear+0xaf/0x240 [ 75.416099][ T79] ? __pfx_keyring_clear+0x10/0x10 [ 75.416115][ T79] fscrypt_put_master_key+0xca/0x190 [ 75.416132][ T79] put_crypt_info+0x26d/0x310 [ 75.416143][ T79] fscrypt_put_encryption_info+0xf6/0x140 [ 75.416158][ T79] ext4_clear_inode+0x170/0x2f0 [ 75.416177][ T79] ext4_evict_inode+0x9f6/0xe60 [ 75.416188][ T79] ? inode_wait_for_writeback+0x14d/0x370 [ 75.416203][ T79] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 75.416218][ T79] ? __pfx_ext4_evict_inode+0x10/0x10 [ 75.416228][ T79] ? do_raw_spin_unlock+0x4d/0x240 [ 75.416242][ T79] ? __pfx_ext4_evict_inode+0x10/0x10 [ 75.416252][ T79] evict+0x5f4/0xae0 [ 75.416269][ T79] ? __pfx_evict+0x10/0x10 [ 75.416282][ T79] ? _raw_spin_unlock+0x28/0x50 [ 75.416292][ T79] ? iput+0xcc6/0x1030 [ 75.416303][ T79] __dentry_kill+0x209/0x660 [ 75.416319][ T79] ? shrink_kill+0x8d/0x2c0 [ 75.416330][ T79] shrink_kill+0xa9/0x2c0 [ 75.416342][ T79] shrink_dentry_list+0x2e0/0x5e0 [ 75.416355][ T79] prune_dcache_sb+0x10e/0x180 [ 75.416366][ T79] ? __pfx_prune_dcache_sb+0x10/0x10 [ 75.416378][ T79] ? list_lru_count_one+0x27/0x2c0 [ 75.416395][ T79] ? list_lru_count_one+0x264/0x2c0 [ 75.416410][ T79] super_cache_scan+0x369/0x4b0 [ 75.416427][ T79] do_shrink_slab+0x6df/0x10d0 [ 75.416441][ T79] shrink_slab+0x7ef/0x10d0 [ 75.416451][ T79] ? shrink_slab+0x1e8/0x10d0 [ 75.416461][ T79] ? __pfx_shrink_slab+0x10/0x10 [ 75.416474][ T79] shrink_one+0x2d9/0x720 [ 75.416493][ T79] ? shrink_node+0x2d3f/0x35b0 [ 75.416508][ T79] shrink_node+0x2f7d/0x35b0 [ 75.416525][ T79] ? shrink_node+0x2d3f/0x35b0 [ 75.416540][ T79] ? __lock_acquire+0x6b6/0x2cf0 [ 75.416552][ T79] ? percpu_ref_put+0x19/0x180 [ 75.416562][ T79] ? __pfx_shrink_node+0x10/0x10 [ 75.416577][ T79] ? percpu_ref_put+0x19/0x180 [ 75.416588][ T79] ? mem_cgroup_iter+0x420/0x460 [ 75.416602][ T79] ? mem_cgroup_iter+0x3b/0x460 [ 75.416614][ T79] kswapd+0x145a/0x2820 [ 75.416628][ T79] ? kswapd+0x92a/0x2820 [ 75.416642][ T79] ? __pfx_kswapd+0x10/0x10 [ 75.416654][ T79] ? do_raw_spin_lock+0x121/0x290 [ 75.416666][ T79] ? raw_spin_rq_lock_nested+0x2a/0x140 [ 75.416678][ T79] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 75.416696][ T79] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 75.416708][ T79] ? _raw_spin_unlock+0x40/0x50 [ 75.416719][ T79] ? __pfx_autoremove_wake_function+0x10/0x10 [ 75.416734][ T79] ? __pfx_set_cpus_allowed_ptr+0x10/0x10 [ 75.416747][ T79] ? __kthread_parkme+0x7b/0x200 [ 75.416759][ T79] ? __kthread_parkme+0x1a1/0x200 [ 75.416772][ T79] kthread+0x711/0x8a0 [ 75.416786][ T79] ? __pfx_kswapd+0x10/0x10 [ 75.416796][ T79] ? __pfx_kthread+0x10/0x10 [ 75.416809][ T79] ? _raw_spin_unlock_irq+0x23/0x50 [ 75.416820][ T79] ? lockdep_hardirqs_on+0x98/0x140 [ 75.416832][ T79] ? __pfx_kthread+0x10/0x10 [ 75.416845][ T79] ret_from_fork+0x599/0xb30 [ 75.416856][ T79] ? __pfx_ret_from_fork+0x10/0x10 [ 75.416868][ T79] ? __pfx_kthread+0x10/0x10 [ 75.416881][ T79] ret_from_fork_asm+0x1a/0x30 [ 75.416900][ T79]