program: syz_init_net_socket$ax25(0x3, 0x5, 0x8) set_mempolicy(0x2, &(0x7f0000000000)=0x1, 0x4) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = fsmount(0xffffffffffffffff, 0x1, 0xe) r1 = io_uring_setup(0x407d, &(0x7f00000001c0)={0x0, 0xc648, 0x400, 0x3, 0x232, 0x0, r0}) io_uring_setup(0xc2a, &(0x7f0000000140)={0x0, 0xde63, 0x2000, 0x2, 0x21e, 0x0, r1}) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) io_setup(0x4, &(0x7f0000000100)) [ 71.958940][ T48] Bluetooth: hci0: command tx timeout [ 72.185960][ T5321] [ 72.186990][ T5321] ====================================================== [ 72.189760][ T5321] WARNING: possible circular locking dependency detected [ 72.192308][ T5321] 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0 Not tainted [ 72.194909][ T5321] ------------------------------------------------------ [ 72.197354][ T5321] syz.0.0/5321 is trying to acquire lock: [ 72.199408][ T5321] ffffe8ffffc37f50 (&per_cpu_ptr(pool->acomp_ctx, cpu)->mutex){+.+.}-{4:4}, at: zswap_store+0xa3b/0x1c30 [ 72.203711][ T5321] [ 72.203711][ T5321] but task is already holding lock: [ 72.206435][ T5321] ffffffff8ea36f00 (fs_reclaim){+.+.}-{0:0}, at: __alloc_pages_direct_reclaim+0xd4/0x3c0 [ 72.210154][ T5321] [ 72.210154][ T5321] which lock already depends on the new lock. [ 72.210154][ T5321] [ 72.213912][ T5321] [ 72.213912][ T5321] the existing dependency chain (in reverse order) is: [ 72.217362][ T5321] [ 72.217362][ T5321] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 72.219993][ T5321] lock_acquire+0x1ed/0x550 [ 72.221878][ T5321] fs_reclaim_acquire+0x88/0x130 [ 72.223883][ T5321] __kmalloc_cache_node_noprof+0x40/0x3a0 [ 72.226459][ T5321] zswap_cpu_comp_prepare+0xdc/0x400 [ 72.228506][ T5321] cpuhp_invoke_callback+0x415/0x830 [ 72.230526][ T5321] cpuhp_issue_call+0x46f/0x7e0 [ 72.232415][ T5321] __cpuhp_state_add_instance_cpuslocked+0x1ed/0x500 [ 72.234945][ T5321] __cpuhp_state_add_instance+0x27/0x40 [ 72.237121][ T5321] zswap_pool_create+0x38c/0x680 [ 72.239125][ T5321] zswap_setup+0x32a/0x4b0 [ 72.241029][ T5321] do_one_initcall+0x248/0x870 [ 72.243092][ T5321] do_initcall_level+0x157/0x210 [ 72.245172][ T5321] do_initcalls+0x3f/0x80 [ 72.246998][ T5321] kernel_init_freeable+0x435/0x5d0 [ 72.249028][ T5321] kernel_init+0x1d/0x2b0 [ 72.250956][ T5321] ret_from_fork+0x4b/0x80 [ 72.252866][ T5321] ret_from_fork_asm+0x1a/0x30 [ 72.254976][ T5321] [ 72.254976][ T5321] -> #0 (&per_cpu_ptr(pool->acomp_ctx, cpu)->mutex){+.+.}-{4:4}: [ 72.258565][ T5321] validate_chain+0x18ef/0x5920 [ 72.260441][ T5321] __lock_acquire+0x1397/0x2100 [ 72.262095][ T5321] lock_acquire+0x1ed/0x550 [ 72.263791][ T5321] __mutex_lock+0x1ac/0xee0 [ 72.265672][ T5321] zswap_store+0xa3b/0x1c30 [ 72.267529][ T5321] swap_writepage+0x647/0xce0 [ 72.269485][ T5321] shmem_writepage+0x1248/0x1610 [ 72.271403][ T5321] shrink_folio_list+0x3b68/0x5ca0 [ 72.273561][ T5321] evict_folios+0x3c92/0x58c0 [ 72.275413][ T5321] try_to_shrink_lruvec+0x9a6/0xc70 [ 72.277539][ T5321] shrink_one+0x3b9/0x850 [ 72.279219][ T5321] shrink_node+0x37c5/0x3e50 [ 72.280859][ T5321] do_try_to_free_pages+0x78c/0x1cf0 [ 72.282777][ T5321] try_to_free_pages+0x47c/0x1050 [ 72.284707][ T5321] __alloc_pages_direct_reclaim+0x178/0x3c0 [ 72.287245][ T5321] __alloc_pages_slowpath+0x764/0x1020 [ 72.289652][ T5321] __alloc_pages_noprof+0x49b/0x710 [ 72.291903][ T5321] alloc_pages_mpol_noprof+0x3e1/0x780 [ 72.294176][ T5321] io_pages_map+0x31d/0x520 [ 72.296234][ T5321] io_allocate_scq_urings+0x3b8/0x650 [ 72.298430][ T5321] io_uring_create+0x5b5/0xc00 [ 72.300451][ T5321] __se_sys_io_uring_setup+0x2ba/0x330 [ 72.302395][ T5321] do_syscall_64+0xf3/0x230 [ 72.303976][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 72.306136][ T5321] [ 72.306136][ T5321] other info that might help us debug this: [ 72.306136][ T5321] [ 72.309635][ T5321] Possible unsafe locking scenario: [ 72.309635][ T5321] [ 72.312081][ T5321] CPU0 CPU1 [ 72.313949][ T5321] ---- ---- [ 72.315826][ T5321] lock(fs_reclaim); [ 72.317411][ T5321] lock(&per_cpu_ptr(pool->acomp_ctx, cpu)->mutex); [ 72.320823][ T5321] lock(fs_reclaim); [ 72.323339][ T5321] lock(&per_cpu_ptr(pool->acomp_ctx, cpu)->mutex); [ 72.325946][ T5321] [ 72.325946][ T5321] *** DEADLOCK *** [ 72.325946][ T5321] [ 72.328938][ T5321] 1 lock held by syz.0.0/5321: [ 72.330681][ T5321] #0: ffffffff8ea36f00 (fs_reclaim){+.+.}-{0:0}, at: __alloc_pages_direct_reclaim+0xd4/0x3c0 [ 72.334482][ T5321] [ 72.334482][ T5321] stack backtrace: [ 72.336741][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0 [ 72.340491][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 72.344582][ T5321] Call Trace: [ 72.345976][ T5321] [ 72.347311][ T5321] dump_stack_lvl+0x241/0x360 [ 72.349165][ T5321] ? __pfx_dump_stack_lvl+0x10/0x10 [ 72.351153][ T5321] ? __pfx__printk+0x10/0x10 [ 72.352937][ T5321] print_circular_bug+0x13a/0x1b0 [ 72.354820][ T5321] check_noncircular+0x36a/0x4a0 [ 72.356792][ T5321] ? __pfx_validate_chain+0x10/0x10 [ 72.358765][ T5321] ? __pfx_check_noncircular+0x10/0x10 [ 72.360738][ T5321] ? lockdep_lock+0x123/0x2b0 [ 72.362313][ T5321] ? __next_zones_zonelist+0xa2/0x130 [ 72.364376][ T5321] validate_chain+0x18ef/0x5920 [ 72.366199][ T5321] ? __lock_acquire+0x1397/0x2100 [ 72.367923][ T5321] ? __pfx_validate_chain+0x10/0x10 [ 72.369691][ T5321] ? mark_lock+0x9a/0x360 [ 72.371178][ T5321] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.373229][ T5321] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.375388][ T5321] ? mark_lock+0x9a/0x360 [ 72.376937][ T5321] __lock_acquire+0x1397/0x2100 [ 72.378805][ T5321] lock_acquire+0x1ed/0x550 [ 72.380568][ T5321] ? zswap_store+0xa3b/0x1c30 [ 72.382419][ T5321] ? __pfx_lock_acquire+0x10/0x10 [ 72.384336][ T5321] ? shmem_writepage+0x1248/0x1610 [ 72.386341][ T5321] ? shrink_folio_list+0x3b68/0x5ca0 [ 72.388333][ T5321] ? __pfx___might_resched+0x10/0x10 [ 72.390430][ T5321] ? do_try_to_free_pages+0x78c/0x1cf0 [ 72.392541][ T5321] ? try_to_free_pages+0x47c/0x1050 [ 72.394549][ T5321] ? __alloc_pages_direct_reclaim+0x178/0x3c0 [ 72.396935][ T5321] ? __alloc_pages_slowpath+0x764/0x1020 [ 72.399140][ T5321] ? __alloc_pages_noprof+0x49b/0x710 [ 72.401148][ T5321] ? alloc_pages_mpol_noprof+0x3e1/0x780 [ 72.403367][ T5321] ? io_pages_map+0x31d/0x520 [ 72.405277][ T5321] ? io_allocate_scq_urings+0x3b8/0x650 [ 72.407431][ T5321] ? io_uring_create+0x5b5/0xc00 [ 72.409400][ T5321] ? do_syscall_64+0xf3/0x230 [ 72.411258][ T5321] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 72.413515][ T5321] __mutex_lock+0x1ac/0xee0 [ 72.415266][ T5321] ? zswap_store+0xa3b/0x1c30 [ 72.417111][ T5321] ? zswap_store+0xa3b/0x1c30 [ 72.419172][ T5321] ? __pfx___mutex_lock+0x10/0x10 [ 72.421120][ T5321] ? rcu_is_watching+0x15/0xb0 [ 72.422993][ T5321] ? trace_kmem_cache_alloc+0x1f/0xc0 [ 72.425024][ T5321] zswap_store+0xa3b/0x1c30 [ 72.426785][ T5321] ? zswap_store+0x577/0x1c30 [ 72.428584][ T5321] ? __pfx_zswap_store+0x10/0x10 [ 72.430494][ T5321] ? do_raw_spin_lock+0x14f/0x370 [ 72.432456][ T5321] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.434463][ T5321] ? _raw_spin_unlock+0x28/0x50 [ 72.436444][ T5321] ? folio_free_swap+0x2e1/0x480 [ 72.438397][ T5321] swap_writepage+0x647/0xce0 [ 72.440254][ T5321] shmem_writepage+0x1248/0x1610 [ 72.442168][ T5321] ? __pfx_shmem_writepage+0x10/0x10 [ 72.444175][ T5321] shrink_folio_list+0x3b68/0x5ca0 [ 72.446166][ T5321] ? __pfx_shrink_folio_list+0x10/0x10 [ 72.448633][ T5321] ? mark_lock+0x9a/0x360 [ 72.450047][ T5321] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.451981][ T5321] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.454008][ T5321] ? preempt_schedule_common+0x84/0xd0 [ 72.455974][ T5321] ? preempt_schedule+0xe1/0xf0 [ 72.457777][ T5321] ? preempt_schedule_thunk+0x1a/0x30 [ 72.459845][ T5321] evict_folios+0x3c92/0x58c0 [ 72.461565][ T5321] ? __pfx_validate_chain+0x10/0x10 [ 72.463613][ T5321] ? __pfx_evict_folios+0x10/0x10 [ 72.465517][ T5321] ? mem_cgroup_get_nr_swap_pages+0x28/0x110 [ 72.467803][ T5321] ? get_swappiness+0x380/0x3e0 [ 72.469679][ T5321] try_to_shrink_lruvec+0x9a6/0xc70 [ 72.471633][ T5321] ? __pfx_try_to_shrink_lruvec+0x10/0x10 [ 72.473816][ T5321] ? shrink_node+0x3573/0x3e50 [ 72.475666][ T5321] ? __pfx_lock_release+0x10/0x10 [ 72.477601][ T5321] shrink_one+0x3b9/0x850 [ 72.479231][ T5321] ? shrink_node+0x3573/0x3e50 [ 72.481036][ T5321] shrink_node+0x37c5/0x3e50 [ 72.482821][ T5321] ? shrink_node+0x3573/0x3e50 [ 72.484936][ T5321] ? __pfx_validate_chain+0x10/0x10 [ 72.487417][ T5321] ? __pfx_validate_chain+0x10/0x10 [ 72.489637][ T5321] ? validate_chain+0x11e/0x5920 [ 72.491527][ T5321] ? validate_chain+0x11e/0x5920 [ 72.493412][ T5321] ? validate_chain+0x11e/0x5920 [ 72.495448][ T5321] ? __pfx_shrink_node+0x10/0x10 [ 72.497417][ T5321] ? __next_zones_zonelist+0xa2/0x130 [ 72.499555][ T5321] do_try_to_free_pages+0x78c/0x1cf0 [ 72.501621][ T5321] ? __pfx_do_try_to_free_pages+0x10/0x10 [ 72.503972][ T5321] try_to_free_pages+0x47c/0x1050 [ 72.505840][ T5321] ? __pfx_try_to_free_pages+0x10/0x10 [ 72.507802][ T5321] ? fs_reclaim_acquire+0x93/0x130 [ 72.509733][ T5321] __alloc_pages_direct_reclaim+0x178/0x3c0 [ 72.512226][ T5321] ? __pfx___alloc_pages_direct_reclaim+0x10/0x10 [ 72.514740][ T5321] __alloc_pages_slowpath+0x764/0x1020 [ 72.516753][ T5321] ? __pfx___alloc_pages_slowpath+0x10/0x10 [ 72.518973][ T5321] __alloc_pages_noprof+0x49b/0x710 [ 72.520823][ T5321] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 72.522938][ T5321] ? cpuset_nodemask_valid_mems_allowed+0x6a/0x80 [ 72.525623][ T5321] alloc_pages_mpol_noprof+0x3e1/0x780 [ 72.527702][ T5321] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 72.530021][ T5321] ? __kvmalloc_node_noprof+0x72/0x190 [ 72.532074][ T5321] ? alloc_pages_noprof+0x8c/0x170 [ 72.533903][ T5321] io_pages_map+0x31d/0x520 [ 72.535602][ T5321] ? apparmor_capable+0x13b/0x1b0 [ 72.537402][ T5321] io_allocate_scq_urings+0x3b8/0x650 [ 72.539317][ T5321] io_uring_create+0x5b5/0xc00 [ 72.541118][ T5321] __se_sys_io_uring_setup+0x2ba/0x330 [ 72.543303][ T5321] ? __pfx___se_sys_io_uring_setup+0x10/0x10 [ 72.545571][ T5321] ? do_syscall_64+0x100/0x230 [ 72.547365][ T5321] ? do_syscall_64+0xb6/0x230 [ 72.549194][ T5321] do_syscall_64+0xf3/0x230 [ 72.550928][ T5321] ? clear_bhb_loop+0x35/0x90 [ 72.552614][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 72.555038][ T5321] RIP: 0033:0x7fb712585d29 [ 72.556714][ T5321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 72.563678][ T5321] RSP: 002b:00007fb713336038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 72.566998][ T5321] RAX: ffffffffffffffda RBX: 00007fb712775fa0 RCX: 00007fb712585d29 [ 72.569527][ T5321] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 000000000000407d [ 72.572102][ T5321] RBP: 00007fb712601b08 R08: 0000000000000000 R09: 0000000000000000 [ 72.575122][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 72.578082][ T5321] R13: 0000000000000000 R14: 00007fb712775fa0 R15: 00007ffce17ae2a8 [ 72.581053][ T5321] [ 72.802681][ T5321] syz.0.0 (5321) used greatest stack depth: 18128 bytes left