program: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0500000004000000ff0f0000b87e"], 0x50) prctl$PR_SET_IO_FLUSHER(0x39, 0x1) unshare(0x6a060080) prctl$PR_SET_IO_FLUSHER(0x39, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10) write(r0, &(0x7f0000000040)="0b528489ec627c509622eccec611ecd52a3c13a42c4fb032072a3dc1a6e5dfd7a02179fe8420df8557187ef8d9e3", 0x2e) sendto$inet(r1, 0x0, 0x0, 0x20020084, &(0x7f00000018c0)={0x2, 0x4e20}, 0x10) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800"/15], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x4c, 0x2, 0x6, 0x5, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x4008) r3 = socket$kcm(0x10, 0x2, 0x10) syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000102505a1a44000010203010902"], 0x0) writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f08000000480100100000000019002b000a000100050000000000007208", 0x31}], 0x1) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100feff000037153e370248018080351700d1bd", 0x33fe0}], 0x1}, 0x0) r4 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r4, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r2, r5, 0x0, 0x0, @void}, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r5) sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, 0x0, 0x0) [ 75.839163][ T4663] Bluetooth: hci0: command tx timeout [ 76.090489][ T5319] percpu: allocation failed, size=304 align=8 atomic=1, atomic alloc failed, no space left [ 76.324658][ T1308] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.326909][ T1308] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.352314][ T52] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 76.502849][ T52] usb 5-1: Using ep0 maxpacket: 16 [ 76.507704][ T52] usb 5-1: config 0 has no interfaces? [ 76.515633][ T52] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 76.519632][ T52] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 76.533221][ T52] usb 5-1: Product: syz [ 76.534975][ T52] usb 5-1: Manufacturer: syz [ 76.543373][ T52] usb 5-1: SerialNumber: syz [ 76.553176][ T52] usb 5-1: config 0 descriptor?? [ 76.795537][ T5319] netlink: 'syz.0.0': attribute type 1 has an invalid length. [ 76.798614][ T5319] netlink: 134644 bytes leftover after parsing attributes in process `syz.0.0'. [ 77.842358][ T4663] Bluetooth: hci0: command tx timeout [ 78.673499][ T80] [ 78.674506][ T80] ====================================================== [ 78.676959][ T80] WARNING: possible circular locking dependency detected [ 78.679652][ T80] 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0 Not tainted [ 78.682372][ T80] ------------------------------------------------------ [ 78.685045][ T80] kswapd1/80 is trying to acquire lock: [ 78.687142][ T80] ffffe8ffffc37f50 (&per_cpu_ptr(pool->acomp_ctx, cpu)->mutex){+.+.}-{4:4}, at: zswap_store+0xa3b/0x1c30 [ 78.691376][ T80] [ 78.691376][ T80] but task is already holding lock: [ 78.693989][ T80] ffffffff8ea36f00 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0xbf1/0x36f0 [ 78.697049][ T80] [ 78.697049][ T80] which lock already depends on the new lock. [ 78.697049][ T80] [ 78.701016][ T80] [ 78.701016][ T80] the existing dependency chain (in reverse order) is: [ 78.704403][ T80] [ 78.704403][ T80] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 78.707309][ T80] lock_acquire+0x1ed/0x550 [ 78.709225][ T80] fs_reclaim_acquire+0x88/0x130 [ 78.711308][ T80] __kmalloc_cache_node_noprof+0x40/0x3a0 [ 78.713725][ T80] zswap_cpu_comp_prepare+0xdc/0x400 [ 78.715970][ T80] cpuhp_invoke_callback+0x415/0x830 [ 78.717944][ T80] cpuhp_issue_call+0x46f/0x7e0 [ 78.719695][ T80] __cpuhp_state_add_instance_cpuslocked+0x1ed/0x500 [ 78.722176][ T80] __cpuhp_state_add_instance+0x27/0x40 [ 78.724239][ T80] zswap_pool_create+0x38c/0x680 [ 78.726097][ T80] zswap_setup+0x32a/0x4b0 [ 78.727817][ T80] do_one_initcall+0x248/0x870 [ 78.729633][ T80] do_initcall_level+0x157/0x210 [ 78.731592][ T80] do_initcalls+0x3f/0x80 [ 78.733482][ T80] kernel_init_freeable+0x435/0x5d0 [ 78.735730][ T80] kernel_init+0x1d/0x2b0 [ 78.737684][ T80] ret_from_fork+0x4b/0x80 [ 78.739617][ T80] ret_from_fork_asm+0x1a/0x30 [ 78.741679][ T80] [ 78.741679][ T80] -> #0 (&per_cpu_ptr(pool->acomp_ctx, cpu)->mutex){+.+.}-{4:4}: [ 78.745360][ T80] validate_chain+0x18ef/0x5920 [ 78.747365][ T80] __lock_acquire+0x1397/0x2100 [ 78.749434][ T80] lock_acquire+0x1ed/0x550 [ 78.751417][ T80] __mutex_lock+0x1ac/0xee0 [ 78.753367][ T80] zswap_store+0xa3b/0x1c30 [ 78.755293][ T80] swap_writepage+0x647/0xce0 [ 78.757108][ T80] shmem_writepage+0x1248/0x1610 [ 78.759076][ T80] shrink_folio_list+0x3b68/0x5ca0 [ 78.761091][ T80] evict_folios+0x3c92/0x58c0 [ 78.762895][ T80] try_to_shrink_lruvec+0x9a6/0xc70 [ 78.765061][ T80] shrink_one+0x3b9/0x850 [ 78.766884][ T80] shrink_node+0x37c5/0x3e50 [ 78.768848][ T80] kswapd+0x1ca9/0x36f0 [ 78.770638][ T80] kthread+0x2f0/0x390 [ 78.772448][ T80] ret_from_fork+0x4b/0x80 [ 78.774350][ T80] ret_from_fork_asm+0x1a/0x30 [ 78.776337][ T80] [ 78.776337][ T80] other info that might help us debug this: [ 78.776337][ T80] [ 78.780123][ T80] Possible unsafe locking scenario: [ 78.780123][ T80] [ 78.782920][ T80] CPU0 CPU1 [ 78.784887][ T80] ---- ---- [ 78.786947][ T80] lock(fs_reclaim); [ 78.788463][ T80] lock(&per_cpu_ptr(pool->acomp_ctx, cpu)->mutex); [ 78.791586][ T80] lock(fs_reclaim); [ 78.793755][ T80] lock(&per_cpu_ptr(pool->acomp_ctx, cpu)->mutex); [ 78.796080][ T80] [ 78.796080][ T80] *** DEADLOCK *** [ 78.796080][ T80] [ 78.798805][ T80] 1 lock held by kswapd1/80: [ 78.800378][ T80] #0: ffffffff8ea36f00 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0xbf1/0x36f0 [ 78.803283][ T80] [ 78.803283][ T80] stack backtrace: [ 78.805466][ T80] CPU: 0 UID: 0 PID: 80 Comm: kswapd1 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0 [ 78.809004][ T80] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 78.812924][ T80] Call Trace: [ 78.814092][ T80] [ 78.815201][ T80] dump_stack_lvl+0x241/0x360 [ 78.817070][ T80] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.819044][ T80] ? __pfx__printk+0x10/0x10 [ 78.820833][ T80] print_circular_bug+0x13a/0x1b0 [ 78.822715][ T80] check_noncircular+0x36a/0x4a0 [ 78.824550][ T80] ? __pfx_validate_chain+0x10/0x10 [ 78.826534][ T80] ? __pfx_check_noncircular+0x10/0x10 [ 78.828634][ T80] ? lockdep_lock+0x123/0x2b0 [ 78.830331][ T80] ? lockdep_unlock+0x16a/0x300 [ 78.832110][ T80] ? __pfx_lockdep_unlock+0x10/0x10 [ 78.833823][ T80] validate_chain+0x18ef/0x5920 [ 78.835645][ T80] ? __lock_acquire+0x1397/0x2100 [ 78.837405][ T80] ? __pfx_validate_chain+0x10/0x10 [ 78.839332][ T80] ? mark_lock+0x9a/0x360 [ 78.840985][ T80] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 78.843245][ T80] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.845704][ T80] ? mark_lock+0x9a/0x360 [ 78.847270][ T80] __lock_acquire+0x1397/0x2100 [ 78.849016][ T80] lock_acquire+0x1ed/0x550 [ 78.850588][ T80] ? zswap_store+0xa3b/0x1c30 [ 78.852232][ T80] ? __pfx_lock_acquire+0x10/0x10 [ 78.853934][ T80] ? shmem_writepage+0x1248/0x1610 [ 78.855840][ T80] ? shrink_folio_list+0x3b68/0x5ca0 [ 78.857813][ T80] ? __pfx___might_resched+0x10/0x10 [ 78.859796][ T80] ? kswapd+0x1ca9/0x36f0 [ 78.861310][ T80] ? kthread+0x2f0/0x390 [ 78.862792][ T80] ? ret_from_fork+0x4b/0x80 [ 78.864352][ T80] ? ret_from_fork_asm+0x1a/0x30 [ 78.866045][ T80] __mutex_lock+0x1ac/0xee0 [ 78.867618][ T80] ? zswap_store+0xa3b/0x1c30 [ 78.869205][ T80] ? zswap_store+0xa3b/0x1c30 [ 78.870795][ T80] ? __pfx___mutex_lock+0x10/0x10 [ 78.872523][ T80] ? rcu_is_watching+0x15/0xb0 [ 78.874243][ T80] ? trace_kmem_cache_alloc+0x1f/0xc0 [ 78.876093][ T80] zswap_store+0xa3b/0x1c30 [ 78.877693][ T80] ? zswap_store+0x577/0x1c30 [ 78.879356][ T80] ? __pfx_zswap_store+0x10/0x10 [ 78.881112][ T80] ? do_raw_spin_lock+0x14f/0x370 [ 78.882657][ T80] ? do_raw_spin_unlock+0x58/0x8b0 [ 78.884354][ T80] ? _raw_spin_unlock+0x28/0x50 [ 78.886062][ T80] ? folio_free_swap+0x2e1/0x480 [ 78.887738][ T80] swap_writepage+0x647/0xce0 [ 78.889363][ T80] shmem_writepage+0x1248/0x1610 [ 78.891042][ T80] ? __pfx_shmem_writepage+0x10/0x10 [ 78.892842][ T80] shrink_folio_list+0x3b68/0x5ca0 [ 78.894624][ T80] ? __pfx_shrink_folio_list+0x10/0x10 [ 78.896463][ T80] ? rcu_is_watching+0x15/0xb0 [ 78.898377][ T80] ? __mod_memcg_lruvec_state+0x2f7/0x4d0 [ 78.900539][ T80] ? __pfx_validate_chain+0x10/0x10 [ 78.902921][ T80] ? __pfx___mod_memcg_lruvec_state+0x10/0x10 [ 78.905350][ T80] ? __mod_node_page_state+0xf2/0x170 [ 78.907301][ T80] ? rcu_is_watching+0x15/0xb0 [ 78.908878][ T80] ? __mod_memcg_lruvec_state+0x2f7/0x4d0 [ 78.911073][ T80] ? mark_lock+0x9a/0x360 [ 78.912775][ T80] ? _raw_spin_unlock_irq+0x23/0x50 [ 78.914601][ T80] ? lockdep_hardirqs_on+0x99/0x150 [ 78.916462][ T80] evict_folios+0x3c92/0x58c0 [ 78.918073][ T80] ? __pfx_evict_folios+0x10/0x10 [ 78.920388][ T80] ? zone_watermark_ok+0x31/0x80 [ 78.922830][ T80] ? should_abort_scan+0x40c/0x4d0 [ 78.925249][ T80] try_to_shrink_lruvec+0x9a6/0xc70 [ 78.927310][ T80] ? __pfx_try_to_shrink_lruvec+0x10/0x10 [ 78.929421][ T80] ? shrink_node+0x3573/0x3e50 [ 78.931056][ T80] ? __pfx_lock_release+0x10/0x10 [ 78.933000][ T80] shrink_one+0x3b9/0x850 [ 78.934679][ T80] ? shrink_node+0x3573/0x3e50 [ 78.936597][ T80] shrink_node+0x37c5/0x3e50 [ 78.938336][ T80] ? shrink_node+0x3573/0x3e50 [ 78.940173][ T80] ? __pfx_lock_acquire+0x10/0x10 [ 78.942174][ T80] ? percpu_ref_put+0x19/0x180 [ 78.944023][ T80] ? __pfx_lock_release+0x10/0x10 [ 78.945957][ T80] ? __pfx_shrink_node+0x10/0x10 [ 78.948147][ T80] ? mem_cgroup_iter+0x3d/0x420 [ 78.950161][ T80] kswapd+0x1ca9/0x36f0 [ 78.951773][ T80] ? kswapd+0xbf1/0x36f0 [ 78.953450][ T80] ? __pfx_kswapd+0x10/0x10 [ 78.955225][ T80] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 78.957635][ T80] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.960090][ T80] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 78.962475][ T80] ? __pfx_autoremove_wake_function+0x10/0x10 [ 78.964785][ T80] ? __kthread_parkme+0x169/0x1d0 [ 78.966695][ T80] ? __pfx_kswapd+0x10/0x10 [ 78.968383][ T80] kthread+0x2f0/0x390 [ 78.969956][ T80] ? __pfx_kswapd+0x10/0x10 [ 78.971873][ T80] ? __pfx_kthread+0x10/0x10 [ 78.973673][ T80] ret_from_fork+0x4b/0x80 [ 78.975387][ T80] ? __pfx_kthread+0x10/0x10 [ 78.977162][ T80] ret_from_fork_asm+0x1a/0x30 [ 78.978949][ T80]