====================================================== WARNING: possible circular locking dependency detected syzkaller #0 Not tainted ------------------------------------------------------ kswapd0/77 is trying to acquire lock: ffff888047ecb480 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: inode_lock include/linux/fs.h:1028 [inline] ffff888047ecb480 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_remove_inode fs/ocfs2/inode.c:733 [inline] ffff888047ecb480 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_wipe_inode fs/ocfs2/inode.c:896 [inline] ffff888047ecb480 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_delete_inode fs/ocfs2/inode.c:1157 [inline] ffff888047ecb480 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_evict_inode+0x1539/0x44e0 fs/ocfs2/inode.c:1299 but task is already holding lock: ffff888047ecd100 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}, at: inode_lock include/linux/fs.h:1028 [inline] ffff888047ecd100 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_wipe_inode fs/ocfs2/inode.c:854 [inline] ffff888047ecd100 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_delete_inode fs/ocfs2/inode.c:1157 [inline] ffff888047ecd100 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_evict_inode+0xe97/0x44e0 fs/ocfs2/inode.c:1299 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #3 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}: down_write+0x96/0x200 kernel/locking/rwsem.c:1590 inode_lock include/linux/fs.h:1028 [inline] ocfs2_wipe_inode fs/ocfs2/inode.c:854 [inline] ocfs2_delete_inode fs/ocfs2/inode.c:1157 [inline] ocfs2_evict_inode+0xe97/0x44e0 fs/ocfs2/inode.c:1299 evict+0x61e/0xb10 fs/inode.c:846 ocfs2_dentry_iput+0x24d/0x390 fs/ocfs2/dcache.c:407 __dentry_kill+0x1a2/0x5e0 fs/dcache.c:670 shrink_kill+0xa9/0x2c0 fs/dcache.c:1147 shrink_dentry_list+0x2e0/0x5e0 fs/dcache.c:1174 prune_dcache_sb+0x119/0x180 fs/dcache.c:1256 super_cache_scan+0x369/0x4b0 fs/super.c:223 do_shrink_slab+0x6df/0x1170 mm/shrinker.c:437 shrink_slab_memcg mm/shrinker.c:550 [inline] shrink_slab+0x830/0x1150 mm/shrinker.c:628 shrink_one+0x2d9/0x710 mm/vmscan.c:4918 shrink_many mm/vmscan.c:4979 [inline] lru_gen_shrink_node mm/vmscan.c:5057 [inline] shrink_node+0x30e2/0x39d0 mm/vmscan.c:6037 kswapd_shrink_node mm/vmscan.c:6884 [inline] balance_pgdat mm/vmscan.c:7060 [inline] kswapd+0x13ef/0x2a40 mm/vmscan.c:7333 kthread+0x388/0x470 kernel/kthread.c:467 ret_from_fork+0x51e/0xb90 arch/x86/kernel/process.c:158 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 -> #2 (&osb->nfs_sync_rwlock){.+.+}-{4:4}: down_read+0x47/0x2e0 kernel/locking/rwsem.c:1537 ocfs2_nfs_sync_lock+0x106/0x270 fs/ocfs2/dlmglue.c:2875 ocfs2_delete_inode fs/ocfs2/inode.c:1108 [inline] ocfs2_evict_inode+0x3ad/0x44e0 fs/ocfs2/inode.c:1299 evict+0x61e/0xb10 fs/inode.c:846 ocfs2_dentry_iput+0x24d/0x390 fs/ocfs2/dcache.c:407 __dentry_kill+0x1a2/0x5e0 fs/dcache.c:670 shrink_kill+0xa9/0x2c0 fs/dcache.c:1147 shrink_dentry_list+0x2e0/0x5e0 fs/dcache.c:1174 prune_dcache_sb+0x119/0x180 fs/dcache.c:1256 super_cache_scan+0x369/0x4b0 fs/super.c:223 do_shrink_slab+0x6df/0x1170 mm/shrinker.c:437 shrink_slab_memcg mm/shrinker.c:550 [inline] shrink_slab+0x830/0x1150 mm/shrinker.c:628 shrink_one+0x2d9/0x710 mm/vmscan.c:4918 shrink_many mm/vmscan.c:4979 [inline] lru_gen_shrink_node mm/vmscan.c:5057 [inline] shrink_node+0x30e2/0x39d0 mm/vmscan.c:6037 kswapd_shrink_node mm/vmscan.c:6884 [inline] balance_pgdat mm/vmscan.c:7060 [inline] kswapd+0x13ef/0x2a40 mm/vmscan.c:7333 kthread+0x388/0x470 kernel/kthread.c:467 ret_from_fork+0x51e/0xb90 arch/x86/kernel/process.c:158 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 -> #1 (fs_reclaim){+.+.}-{0:0}: __fs_reclaim_acquire mm/page_alloc.c:4347 [inline] fs_reclaim_acquire+0x71/0x100 mm/page_alloc.c:4361 might_alloc include/linux/sched/mm.h:317 [inline] slab_pre_alloc_hook mm/slub.c:4452 [inline] slab_alloc_node mm/slub.c:4807 [inline] __kmalloc_cache_noprof+0x40/0x660 mm/slub.c:5334 kmalloc_noprof include/linux/slab.h:962 [inline] kzalloc_noprof include/linux/slab.h:1204 [inline] ocfs2_reserve_new_metadata_blocks+0x10c/0x9a0 fs/ocfs2/suballoc.c:1037 ocfs2_mknod+0x10f3/0x2290 fs/ocfs2/namei.c:351 ocfs2_mkdir+0x181/0x490 fs/ocfs2/namei.c:660 vfs_mkdir+0x413/0x630 fs/namei.c:5233 filename_mkdirat+0x285/0x510 fs/namei.c:5266 __do_sys_mkdirat fs/namei.c:5287 [inline] __se_sys_mkdirat+0x35/0x150 fs/namei.c:5284 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0x14d/0xf80 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f -> #0 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}: check_prev_add kernel/locking/lockdep.c:3165 [inline] check_prevs_add kernel/locking/lockdep.c:3284 [inline] validate_chain kernel/locking/lockdep.c:3908 [inline] __lock_acquire+0x15a5/0x2cf0 kernel/locking/lockdep.c:5237 lock_acquire+0xf0/0x2e0 kernel/locking/lockdep.c:5868 down_write+0x96/0x200 kernel/locking/rwsem.c:1590 inode_lock include/linux/fs.h:1028 [inline] ocfs2_remove_inode fs/ocfs2/inode.c:733 [inline] ocfs2_wipe_inode fs/ocfs2/inode.c:896 [inline] ocfs2_delete_inode fs/ocfs2/inode.c:1157 [inline] ocfs2_evict_inode+0x1539/0x44e0 fs/ocfs2/inode.c:1299 evict+0x61e/0xb10 fs/inode.c:846 ocfs2_dentry_iput+0x24d/0x390 fs/ocfs2/dcache.c:407 __dentry_kill+0x1a2/0x5e0 fs/dcache.c:670 shrink_kill+0xa9/0x2c0 fs/dcache.c:1147 shrink_dentry_list+0x2e0/0x5e0 fs/dcache.c:1174 prune_dcache_sb+0x119/0x180 fs/dcache.c:1256 super_cache_scan+0x369/0x4b0 fs/super.c:223 do_shrink_slab+0x6df/0x1170 mm/shrinker.c:437 shrink_slab_memcg mm/shrinker.c:550 [inline] shrink_slab+0x830/0x1150 mm/shrinker.c:628 shrink_one+0x2d9/0x710 mm/vmscan.c:4918 shrink_many mm/vmscan.c:4979 [inline] lru_gen_shrink_node mm/vmscan.c:5057 [inline] shrink_node+0x30e2/0x39d0 mm/vmscan.c:6037 kswapd_shrink_node mm/vmscan.c:6884 [inline] balance_pgdat mm/vmscan.c:7060 [inline] kswapd+0x13ef/0x2a40 mm/vmscan.c:7333 kthread+0x388/0x470 kernel/kthread.c:467 ret_from_fork+0x51e/0xb90 arch/x86/kernel/process.c:158 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 other info that might help us debug this: Chain exists of: &ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE] --> &osb->nfs_sync_rwlock --> &ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE] Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]); lock(&osb->nfs_sync_rwlock); lock(&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]); lock(&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]); *** DEADLOCK *** 4 locks held by kswapd0/77: #0: ffffffff8e886800 (fs_reclaim){+.+.}-{0:0}, at: balance_pgdat mm/vmscan.c:6958 [inline] #0: ffffffff8e886800 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0x91a/0x2a40 mm/vmscan.c:7333 #1: ffff88803f5e60e0 (&type->s_umount_key#52){.+.+}-{4:4}, at: super_trylock_shared fs/super.c:565 [inline] #1: ffff88803f5e60e0 (&type->s_umount_key#52){.+.+}-{4:4}, at: super_cache_scan+0x91/0x4b0 fs/super.c:198 #2: ffff8880421ecbd0 (&osb->nfs_sync_rwlock){.+.+}-{4:4}, at: ocfs2_nfs_sync_lock+0x106/0x270 fs/ocfs2/dlmglue.c:2875 #3: ffff888047ecd100 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}, at: inode_lock include/linux/fs.h:1028 [inline] #3: ffff888047ecd100 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_wipe_inode fs/ocfs2/inode.c:854 [inline] #3: ffff888047ecd100 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_delete_inode fs/ocfs2/inode.c:1157 [inline] #3: ffff888047ecd100 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_evict_inode+0xe97/0x44e0 fs/ocfs2/inode.c:1299 stack backtrace: CPU: 0 UID: 0 PID: 77 Comm: kswapd0 Not tainted syzkaller #0 PREEMPT(full) Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 Call Trace: dump_stack_lvl+0xe8/0x150 lib/dump_stack.c:120 print_circular_bug+0x2e1/0x300 kernel/locking/lockdep.c:2043 check_noncircular+0x12e/0x150 kernel/locking/lockdep.c:2175 check_prev_add kernel/locking/lockdep.c:3165 [inline] check_prevs_add kernel/locking/lockdep.c:3284 [inline] validate_chain kernel/locking/lockdep.c:3908 [inline] __lock_acquire+0x15a5/0x2cf0 kernel/locking/lockdep.c:5237 lock_acquire+0xf0/0x2e0 kernel/locking/lockdep.c:5868 down_write+0x96/0x200 kernel/locking/rwsem.c:1590 inode_lock include/linux/fs.h:1028 [inline] ocfs2_remove_inode fs/ocfs2/inode.c:733 [inline] ocfs2_wipe_inode fs/ocfs2/inode.c:896 [inline] ocfs2_delete_inode fs/ocfs2/inode.c:1157 [inline] ocfs2_evict_inode+0x1539/0x44e0 fs/ocfs2/inode.c:1299 evict+0x61e/0xb10 fs/inode.c:846 ocfs2_dentry_iput+0x24d/0x390 fs/ocfs2/dcache.c:407 __dentry_kill+0x1a2/0x5e0 fs/dcache.c:670 shrink_kill+0xa9/0x2c0 fs/dcache.c:1147 shrink_dentry_list+0x2e0/0x5e0 fs/dcache.c:1174 prune_dcache_sb+0x119/0x180 fs/dcache.c:1256 super_cache_scan+0x369/0x4b0 fs/super.c:223 do_shrink_slab+0x6df/0x1170 mm/shrinker.c:437 shrink_slab_memcg mm/shrinker.c:550 [inline] shrink_slab+0x830/0x1150 mm/shrinker.c:628 shrink_one+0x2d9/0x710 mm/vmscan.c:4918 shrink_many mm/vmscan.c:4979 [inline] lru_gen_shrink_node mm/vmscan.c:5057 [inline] shrink_node+0x30e2/0x39d0 mm/vmscan.c:6037 kswapd_shrink_node mm/vmscan.c:6884 [inline] balance_pgdat mm/vmscan.c:7060 [inline] kswapd+0x13ef/0x2a40 mm/vmscan.c:7333 kthread+0x388/0x470 kernel/kthread.c:467 ret_from_fork+0x51e/0xb90 arch/x86/kernel/process.c:158 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245