------------[ cut here ]------------
DEBUG_LOCKS_WARN_ON(1)
WARNING: CPU: 0 PID: 8800 at kernel/locking/lockdep.c:231 hlock_class kernel/locking/lockdep.c:231 [inline]
WARNING: CPU: 0 PID: 8800 at kernel/locking/lockdep.c:231 check_wait_context kernel/locking/lockdep.c:4772 [inline]
WARNING: CPU: 0 PID: 8800 at kernel/locking/lockdep.c:231 __lock_acquire+0x58c/0x2040 kernel/locking/lockdep.c:5092
Modules linked in:
CPU: 0 UID: 0 PID: 8800 Comm: syz.4.599 Not tainted 6.11.0-rc3-syzkaller-00221-g670c12ce09a8 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
RIP: 0010:hlock_class kernel/locking/lockdep.c:231 [inline]
RIP: 0010:check_wait_context kernel/locking/lockdep.c:4772 [inline]
RIP: 0010:__lock_acquire+0x58c/0x2040 kernel/locking/lockdep.c:5092
Code: 00 00 83 3d 75 2d a8 0e 00 75 23 90 48 c7 c7 00 d4 0a 8c 48 c7 c6 a0 d6 0a 8c e8 4f d8 e5 ff 48 ba 00 00 00 00 00 fc ff df 90 <0f> 0b 90 90 90 31 db 48 81 c3 c4 00 00 00 48 89 d8 48 c1 e8 03 0f
RSP: 0018:ffffc900098b72d0 EFLAGS: 00010046
RAX: f810ad803b15fb00 RBX: 0000000000000f98 RCX: 0000000000040000
RDX: dffffc0000000000 RSI: 00000000000028ab RDI: 00000000000028ac
RBP: 0000000000000000 R08: ffffffff8155b4d2 R09: fffffbfff1cfa0e0
R10: dffffc0000000000 R11: fffffbfff1cfa0e0 R12: ffff888024401e00
R13: 0000000000000f98 R14: 1ffff11004880520 R15: ffff888024402900
FS:  00007f954e3736c0(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2e20fff8 CR3: 0000000053a56000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5759
 _raw_spin_lock_nested+0x31/0x40 kernel/locking/spinlock.c:378
 raw_spin_rq_lock_nested+0xb0/0x140 kernel/sched/core.c:568
 raw_spin_rq_lock kernel/sched/sched.h:1415 [inline]
 rq_lock kernel/sched/sched.h:1714 [inline]
 __schedule+0x357/0x4a60 kernel/sched/core.c:6436
 preempt_schedule_irq+0xfb/0x1c0 kernel/sched/core.c:6851
 irqentry_exit+0x5e/0x90 kernel/entry/common.c:354
 asm_sysvec_reschedule_ipi+0x1a/0x20 arch/x86/include/asm/idtentry.h:707
RIP: 0010:instrument_atomic_read_write include/linux/instrumented.h:96 [inline]
RIP: 0010:atomic_long_add_return include/linux/atomic/atomic-instrumented.h:3279 [inline]
RIP: 0010:page_counter_try_charge+0x41/0x200 mm/page_counter.c:119
Code: 34 24 49 89 fd e8 8f 35 91 ff 4d 85 ed 0f 84 fb 00 00 00 48 89 5c 24 10 49 be 00 00 00 00 00 fc ff df 4c 89 6c 24 08 4c 89 ef <be> 08 00 00 00 e8 a5 7e f8 ff 48 8b 04 24 48 89 c3 f0 49 0f c1 5d
RSP: 0018:ffffc900098b78f0 EFLAGS: 00000283
RAX: ffffffff82025660 RBX: 0000000000000299 RCX: 0000000000040000
RDX: ffffc900194d0000 RSI: 000000000000025a RDI: ffff888016eac200
RBP: 1ffff1100bbd884e R08: ffffffff82025607 R09: 1ffff1100bbd884c
R10: dffffc0000000000 R11: ffffed100bbd884d R12: dffffc0000000000
R13: ffff888016eac200 R14: dffffc0000000000 R15: ffff88805dec4270
 try_charge_memcg+0x70b/0x1010 mm/memcontrol.c:2175
 obj_cgroup_charge_pages+0x91/0x200 mm/memcontrol.c:2660
 obj_cgroup_charge+0x380/0x5d0 mm/memcontrol.c:2951
 __memcg_slab_post_alloc_hook+0x1b1/0x7e0 mm/memcontrol.c:3012
 memcg_slab_post_alloc_hook mm/slub.c:2160 [inline]
 slab_post_alloc_hook mm/slub.c:3998 [inline]
 slab_alloc_node mm/slub.c:4037 [inline]
 kmem_cache_alloc_lru_noprof+0x1e6/0x2b0 mm/slub.c:4056
 shmem_alloc_inode+0x28/0x40 mm/shmem.c:4622
 alloc_inode fs/inode.c:263 [inline]
 new_inode_pseudo fs/inode.c:1073 [inline]
 new_inode+0x70/0x310 fs/inode.c:1092
 __shmem_get_inode mm/shmem.c:2658 [inline]
 shmem_get_inode+0x34a/0xd50 mm/shmem.c:2729
 __shmem_file_setup+0x171/0x2c0 mm/shmem.c:5091
 __do_sys_memfd_create mm/memfd.c:391 [inline]
 __se_sys_memfd_create+0x36b/0x850 mm/memfd.c:328
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f954d579e79
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f954e372e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
RAX: ffffffffffffffda RBX: 00000000000002aa RCX: 00007f954d579e79
RDX: 00007f954e372ef0 RSI: 0000000000000000 RDI: 00007f954d5e8109
RBP: 00000000200002c0 R08: 00007f954e372bb7 R09: 0000000000000000
R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000280
R13: 00007f954e372ef0 R14: 00007f954e372eb0 R15: 0000000020000000
 </TASK>
----------------
Code disassembly (best guess):
   0:	34 24                	xor    $0x24,%al
   2:	49 89 fd             	mov    %rdi,%r13
   5:	e8 8f 35 91 ff       	call   0xff913599
   a:	4d 85 ed             	test   %r13,%r13
   d:	0f 84 fb 00 00 00    	je     0x10e
  13:	48 89 5c 24 10       	mov    %rbx,0x10(%rsp)
  18:	49 be 00 00 00 00 00 	movabs $0xdffffc0000000000,%r14
  1f:	fc ff df
  22:	4c 89 6c 24 08       	mov    %r13,0x8(%rsp)
  27:	4c 89 ef             	mov    %r13,%rdi
* 2a:	be 08 00 00 00       	mov    $0x8,%esi <-- trapping instruction
  2f:	e8 a5 7e f8 ff       	call   0xfff87ed9
  34:	48 8b 04 24          	mov    (%rsp),%rax
  38:	48 89 c3             	mov    %rax,%rbx
  3b:	f0                   	lock
  3c:	49                   	rex.WB
  3d:	0f                   	.byte 0xf
  3e:	c1                   	.byte 0xc1
  3f:	5d                   	pop    %rbp