DUID 00:04:06:88:74:a7:04:75:62:cb:55:93:34:09:94:90:e1:fe forked to background, child pid 3182 [ 42.644067][ T3183] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.658568][ T3183] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.10.7' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 57.410592][ T3602] [ 57.412930][ T3602] ====================================================== [ 57.419923][ T3602] WARNING: possible circular locking dependency detected [ 57.426912][ T3602] 5.16.0-rc4-next-20211210-syzkaller #0 Not tainted [ 57.433488][ T3602] ------------------------------------------------------ [ 57.440475][ T3602] syz-executor832/3602 is trying to acquire lock: [ 57.446859][ T3602] ffffffff8bca9b40 (fs_reclaim){+.+.}-{0:0}, at: kmem_cache_alloc+0x3e/0x3a0 [ 57.455627][ T3602] [ 57.455627][ T3602] but task is already holding lock: [ 57.462965][ T3602] ffff888011b43cc8 (&mapping->i_mmap_rwsem){++++}-{3:3}, at: split_huge_page_to_list+0x533/0x5440 [ 57.473587][ T3602] [ 57.473587][ T3602] which lock already depends on the new lock. [ 57.473587][ T3602] [ 57.483960][ T3602] [ 57.483960][ T3602] the existing dependency chain (in reverse order) is: [ 57.492946][ T3602] [ 57.492946][ T3602] -> #1 (&mapping->i_mmap_rwsem){++++}-{3:3}: [ 57.501171][ T3602] down_write+0x90/0x150 [ 57.505923][ T3602] dma_resv_lockdep+0x362/0x55a [ 57.511279][ T3602] do_one_initcall+0x103/0x650 [ 57.516547][ T3602] kernel_init_freeable+0x6b1/0x73a [ 57.522249][ T3602] kernel_init+0x1a/0x1d0 [ 57.527082][ T3602] ret_from_fork+0x1f/0x30 [ 57.532004][ T3602] [ 57.532004][ T3602] -> #0 (fs_reclaim){+.+.}-{0:0}: [ 57.539183][ T3602] __lock_acquire+0x2a07/0x54a0 [ 57.544537][ T3602] lock_acquire+0x1ab/0x510 [ 57.549542][ T3602] fs_reclaim_acquire+0x115/0x160 [ 57.555152][ T3602] kmem_cache_alloc+0x3e/0x3a0 [ 57.560424][ T3602] xas_split_alloc+0x142/0x480 [ 57.565692][ T3602] split_huge_page_to_list+0xd35/0x5440 [ 57.571744][ T3602] truncate_inode_partial_folio+0xaed/0xe00 [ 57.578148][ T3602] shmem_undo_range+0xc43/0x19b0 [ 57.583587][ T3602] shmem_fallocate+0xb11/0xe80 [ 57.588854][ T3602] vfs_fallocate+0x48d/0xe10 [ 57.593941][ T3602] __x64_sys_fallocate+0xcf/0x140 [ 57.599464][ T3602] do_syscall_64+0x35/0xb0 [ 57.604382][ T3602] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 57.610780][ T3602] [ 57.610780][ T3602] other info that might help us debug this: [ 57.610780][ T3602] [ 57.621004][ T3602] Possible unsafe locking scenario: [ 57.621004][ T3602] [ 57.628427][ T3602] CPU0 CPU1 [ 57.633765][ T3602] ---- ---- [ 57.639104][ T3602] lock(&mapping->i_mmap_rwsem); [ 57.644108][ T3602] lock(fs_reclaim); [ 57.650591][ T3602] lock(&mapping->i_mmap_rwsem); [ 57.658120][ T3602] lock(fs_reclaim); [ 57.662087][ T3602] [ 57.662087][ T3602] *** DEADLOCK *** [ 57.662087][ T3602] [ 57.670214][ T3602] 3 locks held by syz-executor832/3602: [ 57.675740][ T3602] #0: ffff888073d6a460 (sb_writers#3){.+.+}-{0:0}, at: __x64_sys_fallocate+0xcf/0x140 [ 57.685397][ T3602] #1: ffff888011b43a70 (&sb->s_type->i_mutex_key#8){+.+.}-{3:3}, at: shmem_fallocate+0x154/0xe80 [ 57.696085][ T3602] #2: ffff888011b43cc8 (&mapping->i_mmap_rwsem){++++}-{3:3}, at: split_huge_page_to_list+0x533/0x5440 [ 57.707120][ T3602] [ 57.707120][ T3602] stack backtrace: [ 57.712984][ T3602] CPU: 0 PID: 3602 Comm: syz-executor832 Not tainted 5.16.0-rc4-next-20211210-syzkaller #0 [ 57.722940][ T3602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.732976][ T3602] Call Trace: [ 57.736238][ T3602] [ 57.739160][ T3602] dump_stack_lvl+0xcd/0x134 [ 57.743747][ T3602] check_noncircular+0x25f/0x2e0 [ 57.748682][ T3602] ? print_circular_bug+0x1e0/0x1e0 [ 57.753882][ T3602] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 57.759591][ T3602] ? page_vma_mapped_walk+0xa2e/0x29f0 [ 57.765039][ T3602] ? lockdep_lock+0xc6/0x200 [ 57.769622][ T3602] ? call_rcu_zapped+0xb0/0xb0 [ 57.774374][ T3602] __lock_acquire+0x2a07/0x54a0 [ 57.779221][ T3602] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 57.785192][ T3602] lock_acquire+0x1ab/0x510 [ 57.789682][ T3602] ? kmem_cache_alloc+0x3e/0x3a0 [ 57.795054][ T3602] ? lock_release+0x720/0x720 [ 57.799724][ T3602] ? anon_vma_ctor+0xe0/0xe0 [ 57.804299][ T3602] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 57.810526][ T3602] ? rmap_walk_file+0x41b/0xa70 [ 57.815362][ T3602] ? __filemap_get_folio+0x25b/0xe50 [ 57.820641][ T3602] ? xas_split_alloc+0x142/0x480 [ 57.825574][ T3602] fs_reclaim_acquire+0x115/0x160 [ 57.830579][ T3602] ? kmem_cache_alloc+0x3e/0x3a0 [ 57.835505][ T3602] kmem_cache_alloc+0x3e/0x3a0 [ 57.840254][ T3602] xas_split_alloc+0x142/0x480 [ 57.845018][ T3602] split_huge_page_to_list+0xd35/0x5440 [ 57.850555][ T3602] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 57.856780][ T3602] ? pagecache_get_page+0x6b/0x280 [ 57.861871][ T3602] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 57.868099][ T3602] ? folio_flags.constprop.0+0x58/0x150 [ 57.873626][ T3602] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 57.879852][ T3602] ? shmem_getpage_gfp+0x413/0x23a0 [ 57.885030][ T3602] ? can_split_huge_page+0x5b0/0x5b0 [ 57.890308][ T3602] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 57.896535][ T3602] ? folio_flags.constprop.0+0x58/0x150 [ 57.902061][ T3602] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 57.908291][ T3602] truncate_inode_partial_folio+0xaed/0xe00 [ 57.914169][ T3602] shmem_undo_range+0xc43/0x19b0 [ 57.919715][ T3602] ? shmem_symlink+0x560/0x560 [ 57.924464][ T3602] ? lock_downgrade+0x6e0/0x6e0 [ 57.929302][ T3602] ? down_write+0xde/0x150 [ 57.933703][ T3602] ? up_write+0x148/0x470 [ 57.938014][ T3602] ? unmap_mapping_pages+0x112/0x290 [ 57.943286][ T3602] ? do_raw_spin_lock+0x120/0x2b0 [ 57.948317][ T3602] ? zap_vma_ptes+0x100/0x100 [ 57.952978][ T3602] ? rwlock_bug.part.0+0x90/0x90 [ 57.957906][ T3602] shmem_fallocate+0xb11/0xe80 [ 57.962668][ T3602] ? __lock_acquire+0x162f/0x54a0 [ 57.967676][ T3602] ? shmem_evict_inode+0xbd0/0xbd0 [ 57.972771][ T3602] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 57.978741][ T3602] ? vfs_fallocate+0x9cf/0xe10 [ 57.983495][ T3602] ? shmem_evict_inode+0xbd0/0xbd0 [ 57.988604][ T3602] vfs_fallocate+0x48d/0xe10 [ 57.993188][ T3602] __x64_sys_fallocate+0xcf/0x140 [ 57.998205][ T3602] do_syscall_64+0x35/0xb0 [ 58.002604][ T3602] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 58.008486][ T3602] RIP: 0033:0x7f6a5c9e8819 [ 58.012885][ T3602] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 58.032515][ T3602] RSP: 002b:00007ffcf59ddff8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 58.040910][ T3602] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6a5c9e8819 [ 58.048870][ T3602] RDX: 0000000000000004 RSI: 0000000000000003 RDI: 0000000000000004 [ 58.056831][ T3602] RBP: 00007f6a5c9a8390 R08: 0000000000000000 R09: 000000000