program: syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a}) mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a}) chdir(&(0x7f00000002c0)='mnt/encrypted_dir\x00') bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x13, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@ldst={0x1, 0x2, 0x4, 0x0, 0x1, 0x5c}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x90) symlink(&(0x7f0000000080)='mnt\x00', &(0x7f00000000c0)='./file0\x00') ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r1, 0xc0406619, &(0x7f0000000140)={@id={0x2, 0x0, @a}}) ioctl$HIDIOCSFLAG(r0, 0x4004480f, &(0x7f0000000040)=0x3) lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)) [ 85.336485][ T5322] Bluetooth: hci0: command tx timeout [ 85.413274][ T5347] loop0: detected capacity change from 0 to 128 [ 85.510010][ T5347] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 85.552054][ T5347] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 85.647122][ T5347] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni" [ 85.669939][ T5347] fscrypt: loop0: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 85.716007][ T77] [ 85.717174][ T77] ====================================================== [ 85.720235][ T77] WARNING: possible circular locking dependency detected [ 85.723313][ T77] syzkaller #0 Not tainted [ 85.725379][ T77] ------------------------------------------------------ [ 85.728406][ T77] kswapd0/77 is trying to acquire lock: [ 85.730877][ T77] ffff888039ff7098 (&type->lock_class){+.+.}-{4:4}, at: keyring_clear+0xaf/0x240 [ 85.734999][ T77] [ 85.734999][ T77] but task is already holding lock: [ 85.738084][ T77] ffffffff8e051900 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0x92a/0x2820 [ 85.741579][ T77] [ 85.741579][ T77] which lock already depends on the new lock. [ 85.741579][ T77] [ 85.746129][ T77] [ 85.746129][ T77] the existing dependency chain (in reverse order) is: [ 85.749858][ T77] [ 85.749858][ T77] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 85.753027][ T77] fs_reclaim_acquire+0x72/0x100 [ 85.755432][ T77] __kmalloc_cache_noprof+0x40/0x700 [ 85.758095][ T77] assoc_array_insert+0x92/0x2f90 [ 85.760364][ T77] __key_link_begin+0xd6/0x1f0 [ 85.762456][ T77] __key_create_or_update+0x41a/0xa30 [ 85.764946][ T77] key_create_or_update+0x42/0x60 [ 85.767221][ T77] x509_load_certificate_list+0x145/0x280 [ 85.769693][ T77] do_one_initcall+0x1f1/0x800 [ 85.771801][ T77] do_initcall_level+0x104/0x190 [ 85.774147][ T77] do_initcalls+0x59/0xa0 [ 85.776278][ T77] kernel_init_freeable+0x2a7/0x3d0 [ 85.779369][ T77] kernel_init+0x1d/0x1d0 [ 85.781888][ T77] ret_from_fork+0x510/0xa50 [ 85.784329][ T77] ret_from_fork_asm+0x1a/0x30 [ 85.786960][ T77] [ 85.786960][ T77] -> #0 (&type->lock_class){+.+.}-{4:4}: [ 85.791241][ T77] __lock_acquire+0x15a6/0x2cf0 [ 85.794119][ T77] lock_acquire+0x107/0x340 [ 85.796380][ T77] down_write+0x96/0x1f0 [ 85.798577][ T77] keyring_clear+0xaf/0x240 [ 85.800804][ T77] fscrypt_put_master_key+0xca/0x190 [ 85.803351][ T77] put_crypt_info+0x26d/0x310 [ 85.805582][ T77] fscrypt_put_encryption_info+0xf6/0x140 [ 85.808324][ T77] ext4_clear_inode+0x170/0x2f0 [ 85.810746][ T77] ext4_evict_inode+0x9f6/0xe60 [ 85.813074][ T77] evict+0x5f4/0xae0 [ 85.815160][ T77] __dentry_kill+0x209/0x660 [ 85.817370][ T77] shrink_kill+0xa9/0x2c0 [ 85.819469][ T77] shrink_dentry_list+0x2e0/0x5e0 [ 85.821840][ T77] prune_dcache_sb+0x10e/0x180 [ 85.824196][ T77] super_cache_scan+0x369/0x4b0 [ 85.826436][ T77] do_shrink_slab+0x6df/0x10d0 [ 85.828796][ T77] shrink_slab+0x7ef/0x10d0 [ 85.830974][ T77] shrink_one+0x2d9/0x720 [ 85.833192][ T77] shrink_node+0x2f7d/0x35b0 [ 85.835717][ T77] kswapd+0x145a/0x2820 [ 85.837743][ T77] kthread+0x711/0x8a0 [ 85.839808][ T77] ret_from_fork+0x510/0xa50 [ 85.841992][ T77] ret_from_fork_asm+0x1a/0x30 [ 85.844395][ T77] [ 85.844395][ T77] other info that might help us debug this: [ 85.844395][ T77] [ 85.848755][ T77] Possible unsafe locking scenario: [ 85.848755][ T77] [ 85.852093][ T77] CPU0 CPU1 [ 85.854449][ T77] ---- ---- [ 85.856752][ T77] lock(fs_reclaim); [ 85.858559][ T77] lock(&type->lock_class); [ 85.861622][ T77] lock(fs_reclaim); [ 85.864408][ T77] lock(&type->lock_class); [ 85.866375][ T77] [ 85.866375][ T77] *** DEADLOCK *** [ 85.866375][ T77] [ 85.869838][ T77] 2 locks held by kswapd0/77: [ 85.871820][ T77] #0: ffffffff8e051900 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0x92a/0x2820 [ 85.875454][ T77] #1: ffff88801f65c0e0 (&type->s_umount_key#32){++++}-{4:4}, at: super_cache_scan+0x91/0x4b0 [ 85.879396][ T77] [ 85.879396][ T77] stack backtrace: [ 85.881747][ T77] CPU: 0 UID: 0 PID: 77 Comm: kswapd0 Not tainted syzkaller #0 PREEMPT(full) [ 85.881761][ T77] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.881767][ T77] Call Trace: [ 85.881774][ T77] [ 85.881779][ T77] dump_stack_lvl+0xe8/0x150 [ 85.881794][ T77] print_circular_bug+0x2e2/0x300 [ 85.881808][ T77] check_noncircular+0x12e/0x150 [ 85.881821][ T77] __lock_acquire+0x15a6/0x2cf0 [ 85.881831][ T77] ? stack_trace_save+0x9c/0xe0 [ 85.881849][ T77] ? keyring_clear+0xaf/0x240 [ 85.881861][ T77] lock_acquire+0x107/0x340 [ 85.881870][ T77] ? keyring_clear+0xaf/0x240 [ 85.881883][ T77] down_write+0x96/0x1f0 [ 85.881893][ T77] ? keyring_clear+0xaf/0x240 [ 85.881904][ T77] ? __pfx_down_write+0x10/0x10 [ 85.881916][ T77] keyring_clear+0xaf/0x240 [ 85.881928][ T77] ? __pfx_keyring_clear+0x10/0x10 [ 85.881941][ T77] fscrypt_put_master_key+0xca/0x190 [ 85.881956][ T77] put_crypt_info+0x26d/0x310 [ 85.881965][ T77] fscrypt_put_encryption_info+0xf6/0x140 [ 85.881975][ T77] ext4_clear_inode+0x170/0x2f0 [ 85.881991][ T77] ext4_evict_inode+0x9f6/0xe60 [ 85.882009][ T77] ? inode_wait_for_writeback+0x14d/0x370 [ 85.882022][ T77] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 85.882033][ T77] ? do_raw_spin_lock+0x121/0x290 [ 85.882046][ T77] ? __pfx_ext4_evict_inode+0x10/0x10 [ 85.882055][ T77] ? do_raw_spin_unlock+0x4d/0x240 [ 85.882067][ T77] ? __pfx_ext4_evict_inode+0x10/0x10 [ 85.882077][ T77] evict+0x5f4/0xae0 [ 85.882092][ T77] ? __pfx_evict+0x10/0x10 [ 85.882103][ T77] ? _raw_spin_unlock+0x28/0x50 [ 85.882116][ T77] ? iput+0xcc6/0x1030 [ 85.882127][ T77] __dentry_kill+0x209/0x660 [ 85.882141][ T77] ? shrink_kill+0x8d/0x2c0 [ 85.882151][ T77] shrink_kill+0xa9/0x2c0 [ 85.882161][ T77] shrink_dentry_list+0x2e0/0x5e0 [ 85.882173][ T77] prune_dcache_sb+0x10e/0x180 [ 85.882183][ T77] ? __pfx_prune_dcache_sb+0x10/0x10 [ 85.882193][ T77] ? list_lru_count_one+0x27/0x2c0 [ 85.882235][ T77] ? list_lru_count_one+0x264/0x2c0 [ 85.882249][ T77] super_cache_scan+0x369/0x4b0 [ 85.882265][ T77] do_shrink_slab+0x6df/0x10d0 [ 85.882276][ T77] shrink_slab+0x7ef/0x10d0 [ 85.882282][ T77] ? shrink_slab+0x1e8/0x10d0 [ 85.882288][ T77] ? __pfx_shrink_slab+0x10/0x10 [ 85.882299][ T77] shrink_one+0x2d9/0x720 [ 85.882314][ T77] ? shrink_node+0x2d3f/0x35b0 [ 85.882326][ T77] shrink_node+0x2f7d/0x35b0 [ 85.882342][ T77] ? shrink_node+0x2d3f/0x35b0 [ 85.882356][ T77] ? __lock_acquire+0x6b6/0x2cf0 [ 85.882367][ T77] ? percpu_ref_put+0x19/0x180 [ 85.882376][ T77] ? percpu_ref_put+0x19/0x180 [ 85.882386][ T77] ? __pfx_shrink_node+0x10/0x10 [ 85.882398][ T77] ? percpu_ref_put+0x19/0x180 [ 85.882408][ T77] ? mem_cgroup_iter+0x420/0x460 [ 85.882420][ T77] ? mem_cgroup_iter+0x3b/0x460 [ 85.882430][ T77] kswapd+0x145a/0x2820 [ 85.882445][ T77] ? kswapd+0x92a/0x2820 [ 85.882456][ T77] ? __pfx_kswapd+0x10/0x10 [ 85.882467][ T77] ? __lock_acquire+0x6b6/0x2cf0 [ 85.882476][ T77] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 85.882487][ T77] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 85.882503][ T77] ? __pfx_autoremove_wake_function+0x10/0x10 [ 85.882517][ T77] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 85.882530][ T77] ? __kthread_parkme+0x7b/0x200 [ 85.882541][ T77] ? __kthread_parkme+0x1a1/0x200 [ 85.882551][ T77] kthread+0x711/0x8a0 [ 85.882563][ T77] ? __pfx_kswapd+0x10/0x10 [ 85.882573][ T77] ? __pfx_kthread+0x10/0x10 [ 85.882585][ T77] ? _raw_spin_unlock_irq+0x23/0x50 [ 85.882597][ T77] ? __pfx_kthread+0x10/0x10 [ 85.882608][ T77] ret_from_fork+0x510/0xa50 [ 85.882617][ T77] ? __pfx_ret_from_fork+0x10/0x10 [ 85.882625][ T77] ? __switch_to+0xc9e/0x1480 [ 85.882639][ T77] ? __pfx_kthread+0x10/0x10 [ 85.882650][ T77] ret_from_fork_asm+0x1a/0x30 [ 85.882667][ T77]