======================================================
WARNING: possible circular locking dependency detected
6.10.0-rc1-next-20240603-syzkaller #0 Tainted: G        W         
------------------------------------------------------
kswapd0/89 is trying to acquire lock:
ffff88802fbc8610 (sb_internal){.+.+}-{0:0}, at: __sb_start_write include/linux/fs.h:1671 [inline]
ffff88802fbc8610 (sb_internal){.+.+}-{0:0}, at: sb_start_intwrite include/linux/fs.h:1854 [inline]
ffff88802fbc8610 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2f4/0xf50 fs/ext4/inode.c:212

but task is already holding lock:
ffffffff8e42c540 (fs_reclaim){+.+.}-{0:0}, at: balance_pgdat mm/vmscan.c:6852 [inline]
ffffffff8e42c540 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0xbe8/0x3710 mm/vmscan.c:7234

which lock already depends on the new lock.


the existing dependency chain (in reverse order) is:

-> #2 (fs_reclaim){+.+.}-{0:0}:
       lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5817
       __fs_reclaim_acquire mm/page_alloc.c:3838 [inline]
       fs_reclaim_acquire+0x88/0x140 mm/page_alloc.c:3852
       might_alloc include/linux/sched/mm.h:334 [inline]
       slab_pre_alloc_hook mm/slub.c:3891 [inline]
       slab_alloc_node mm/slub.c:3981 [inline]
       __do_kmalloc_node mm/slub.c:4121 [inline]
       __kmalloc_node_noprof+0xb0/0x440 mm/slub.c:4129
       kmalloc_node_noprof include/linux/slab.h:681 [inline]
       kvmalloc_node_noprof+0x72/0x190 mm/util.c:634
       ext4_xattr_inode_cache_find fs/ext4/xattr.c:1535 [inline]
       ext4_xattr_inode_lookup_create+0x488/0x1ee0 fs/ext4/xattr.c:1581
       ext4_xattr_block_set+0x274/0x3980 fs/ext4/xattr.c:1910
       ext4_xattr_move_to_block fs/ext4/xattr.c:2663 [inline]
       ext4_xattr_make_inode_space fs/ext4/xattr.c:2738 [inline]
       ext4_expand_extra_isize_ea+0x12d7/0x1cf0 fs/ext4/xattr.c:2830
       __ext4_expand_extra_isize+0x2fb/0x3e0 fs/ext4/inode.c:5782
       ext4_try_to_expand_extra_isize fs/ext4/inode.c:5825 [inline]
       __ext4_mark_inode_dirty+0x524/0x880 fs/ext4/inode.c:5903
       ext4_setattr+0x1552/0x1bc0 fs/ext4/inode.c:5413
       notify_change+0xb9d/0xe70 fs/attr.c:497
       do_truncate+0x220/0x310 fs/open.c:65
       handle_truncate fs/namei.c:3312 [inline]
       do_open fs/namei.c:3658 [inline]
       path_openat+0x2a3d/0x3280 fs/namei.c:3811
       do_filp_open+0x235/0x490 fs/namei.c:3838
       do_sys_openat2+0x13e/0x1d0 fs/open.c:1409
       do_sys_open fs/open.c:1424 [inline]
       __do_sys_creat fs/open.c:1500 [inline]
       __se_sys_creat fs/open.c:1494 [inline]
       __x64_sys_creat+0x123/0x170 fs/open.c:1494
       do_syscall_x64 arch/x86/entry/common.c:52 [inline]
       do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
       entry_SYSCALL_64_after_hwframe+0x77/0x7f

-> #1 (&ei->i_data_sem){++++}-{3:3}:
       lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5817
       down_write+0x3a/0x50 kernel/locking/rwsem.c:1579
       ext4_truncate+0x991/0x11a0 fs/ext4/inode.c:4134
       ext4_evict_inode+0x90f/0xf50 fs/ext4/inode.c:258
       evict+0x2a8/0x630 fs/inode.c:667
       d_delete_notify include/linux/fsnotify.h:326 [inline]
       vfs_rmdir+0x3d7/0x510 fs/namei.c:4231
       do_rmdir+0x3b5/0x580 fs/namei.c:4277
       __do_sys_unlinkat fs/namei.c:4453 [inline]
       __se_sys_unlinkat fs/namei.c:4447 [inline]
       __x64_sys_unlinkat+0xe0/0xf0 fs/namei.c:4447
       do_syscall_x64 arch/x86/entry/common.c:52 [inline]
       do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
       entry_SYSCALL_64_after_hwframe+0x77/0x7f

-> #0 (sb_internal){.+.+}-{0:0}:
       check_prev_add kernel/locking/lockdep.c:3159 [inline]
       check_prevs_add kernel/locking/lockdep.c:3278 [inline]
       validate_chain+0x18ef/0x5920 kernel/locking/lockdep.c:3902
       __lock_acquire+0x1359/0x2000 kernel/locking/lockdep.c:5194
       lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5817
       percpu_down_read+0x44/0x1b0 include/linux/percpu-rwsem.h:51
       __sb_start_write include/linux/fs.h:1671 [inline]
       sb_start_intwrite include/linux/fs.h:1854 [inline]
       ext4_evict_inode+0x2f4/0xf50 fs/ext4/inode.c:212
       evict+0x2a8/0x630 fs/inode.c:667
       __dentry_kill+0x20d/0x630 fs/dcache.c:603
       shrink_kill+0xa9/0x2c0 fs/dcache.c:1048
       shrink_dentry_list+0x2c0/0x5b0 fs/dcache.c:1075
       prune_dcache_sb+0x10f/0x180 fs/dcache.c:1156
       super_cache_scan+0x34f/0x4b0 fs/super.c:221
       do_shrink_slab+0x701/0x1160 mm/shrinker.c:435
       shrink_slab_memcg mm/shrinker.c:548 [inline]
       shrink_slab+0x878/0x14c0 mm/shrinker.c:626
       shrink_one+0x450/0x880 mm/vmscan.c:4806
       shrink_many mm/vmscan.c:4867 [inline]
       lru_gen_shrink_node mm/vmscan.c:4967 [inline]
       shrink_node+0x3975/0x4160 mm/vmscan.c:5947
       kswapd_shrink_node mm/vmscan.c:6774 [inline]
       balance_pgdat mm/vmscan.c:6965 [inline]
       kswapd+0x1882/0x3710 mm/vmscan.c:7234
       kthread+0x2f0/0x390 kernel/kthread.c:389
       ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147
       ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244

other info that might help us debug this:

Chain exists of:
  sb_internal --> &ei->i_data_sem --> fs_reclaim

 Possible unsafe locking scenario:

       CPU0                    CPU1
       ----                    ----
  lock(fs_reclaim);
                               lock(&ei->i_data_sem);
                               lock(fs_reclaim);
  rlock(sb_internal);

 *** DEADLOCK ***

2 locks held by kswapd0/89:
 #0: ffffffff8e42c540 (fs_reclaim){+.+.}-{0:0}, at: balance_pgdat mm/vmscan.c:6852 [inline]
 #0: ffffffff8e42c540 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0xbe8/0x3710 mm/vmscan.c:7234
 #1: ffff88802fbc80e0 (&type->s_umount_key#32){++++}-{3:3}, at: super_trylock_shared fs/super.c:562 [inline]
 #1: ffff88802fbc80e0 (&type->s_umount_key#32){++++}-{3:3}, at: super_cache_scan+0x94/0x4b0 fs/super.c:196

stack backtrace:
CPU: 1 PID: 89 Comm: kswapd0 Tainted: G        W          6.10.0-rc1-next-20240603-syzkaller #0
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:91 [inline]
 dump_stack_lvl+0x241/0x360 lib/dump_stack.c:117
 print_circular_bug+0x13a/0x1b0 kernel/locking/lockdep.c:2075
 check_noncircular+0x36a/0x4a0 kernel/locking/lockdep.c:2204
 check_prev_add kernel/locking/lockdep.c:3159 [inline]
 check_prevs_add kernel/locking/lockdep.c:3278 [inline]
 validate_chain+0x18ef/0x5920 kernel/locking/lockdep.c:3902
 __lock_acquire+0x1359/0x2000 kernel/locking/lockdep.c:5194
 lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5817
 percpu_down_read+0x44/0x1b0 include/linux/percpu-rwsem.h:51
 __sb_start_write include/linux/fs.h:1671 [inline]
 sb_start_intwrite include/linux/fs.h:1854 [inline]
 ext4_evict_inode+0x2f4/0xf50 fs/ext4/inode.c:212
 evict+0x2a8/0x630 fs/inode.c:667
 __dentry_kill+0x20d/0x630 fs/dcache.c:603
 shrink_kill+0xa9/0x2c0 fs/dcache.c:1048
 shrink_dentry_list+0x2c0/0x5b0 fs/dcache.c:1075
 prune_dcache_sb+0x10f/0x180 fs/dcache.c:1156
 super_cache_scan+0x34f/0x4b0 fs/super.c:221
 do_shrink_slab+0x701/0x1160 mm/shrinker.c:435
 shrink_slab_memcg mm/shrinker.c:548 [inline]
 shrink_slab+0x878/0x14c0 mm/shrinker.c:626
 shrink_one+0x450/0x880 mm/vmscan.c:4806
 shrink_many mm/vmscan.c:4867 [inline]
 lru_gen_shrink_node mm/vmscan.c:4967 [inline]
 shrink_node+0x3975/0x4160 mm/vmscan.c:5947
 kswapd_shrink_node mm/vmscan.c:6774 [inline]
 balance_pgdat mm/vmscan.c:6965 [inline]
 kswapd+0x1882/0x3710 mm/vmscan.c:7234
 kthread+0x2f0/0x390 kernel/kthread.c:389
 ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>