DUID 00:04:cd:7d:74:7d:04:96:3f:c0:f2:1a:da:5a:49:b1:9f:fb
forked to background, child pid 4697
[   35.727247][ T4698] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.738740][ T4698] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.70' (ED25519) to the list of known hosts.
Setting up swapspace version 1, size = 127995904 bytes
syzkaller login: [   65.856602][ T5022] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   66.152757][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.170937][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.178623][ T5044] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.187946][ T5044] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.201767][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.210166][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.225667][ T4622] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.233595][ T4622] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.258969][ T5045] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.266889][ T5045] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.294664][ T5045] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.306136][ T5045] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.327309][   T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.335486][   T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.348267][ T5045] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.361914][ T5045] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
executing program
[   66.405840][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.418973][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[   66.450738][ T5044] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.469334][ T5044] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[   66.550157][ T5044] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.579182][ T5044] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.613022][   T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.633074][   T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   68.628919][ T5089] 
[   68.631292][ T5089] ======================================================
[   68.638312][ T5089] WARNING: possible circular locking dependency detected
[   68.645326][ T5089] 6.5.0-rc1-next-20230714-syzkaller #0 Not tainted
[   68.651824][ T5089] ------------------------------------------------------
[   68.658841][ T5089] syz-executor340/5089 is trying to acquire lock:
[   68.665249][ T5089] ffff888075decae0 (&sb->s_type->i_lock_key){+.+.}-{2:2}, at: inode_add_bytes+0x24/0xf0
[   68.675033][ T5089] 
[   68.675033][ T5089] but task is already holding lock:
[   68.682389][ T5089] ffff888075decca0 (&xa->xa_lock#7){..-.}-{2:2}, at: collapse_file+0x1ccc/0x5530
[   68.691551][ T5089] 
[   68.691551][ T5089] which lock already depends on the new lock.
[   68.691551][ T5089] 
[   68.701948][ T5089] 
[   68.701948][ T5089] the existing dependency chain (in reverse order) is:
[   68.710956][ T5089] 
[   68.710956][ T5089] -> #1 (&xa->xa_lock#7){..-.}-{2:2}:
[   68.718528][ T5089]        _raw_spin_lock_irq+0x36/0x50
[   68.723917][ T5089]        filemap_remove_folio+0xbf/0x250
[   68.729554][ T5089]        truncate_inode_folio+0x49/0x70
[   68.735102][ T5089]        shmem_undo_range+0x363/0x1190
[   68.740571][ T5089]        shmem_evict_inode+0x334/0xb10
[   68.746039][ T5089]        evict+0x2ed/0x6b0
[   68.750463][ T5089]        iput.part.0+0x55e/0x7a0
[   68.755407][ T5089]        iput+0x5c/0x80
[   68.759578][ T5089]        dentry_unlink_inode+0x292/0x430
[   68.765248][ T5089]        __dentry_kill+0x3b8/0x640
[   68.770453][ T5089]        dput+0x703/0xfd0
[   68.775138][ T5089]        do_renameat2+0xc4c/0xdc0
[   68.780169][ T5089]        __x64_sys_rename+0x81/0xa0
[   68.785378][ T5089]        do_syscall_64+0x38/0xb0
[   68.790330][ T5089]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.796752][ T5089] 
[   68.796752][ T5089] -> #0 (&sb->s_type->i_lock_key){+.+.}-{2:2}:
[   68.805103][ T5089]        __lock_acquire+0x2e3d/0x5de0
[   68.810533][ T5089]        lock_acquire+0x1ae/0x510
[   68.815569][ T5089]        _raw_spin_lock+0x2e/0x40
[   68.820595][ T5089]        inode_add_bytes+0x24/0xf0
[   68.825717][ T5089]        __dquot_alloc_space+0x730/0xb60
[   68.831361][ T5089]        shmem_charge+0x152/0x500
[   68.836426][ T5089]        collapse_file+0x20ad/0x5530
[   68.841713][ T5089]        hpage_collapse_scan_file+0xc8e/0x1650
[   68.847877][ T5089]        madvise_collapse+0x52c/0xb50
[   68.853251][ T5089]        madvise_vma_behavior+0x200/0x1e60
[   68.859064][ T5089]        madvise_walk_vmas+0x1cf/0x2c0
[   68.864525][ T5089]        do_madvise+0x333/0x660
[   68.869379][ T5089]        __x64_sys_madvise+0xaa/0x110
[   68.874756][ T5089]        do_syscall_64+0x38/0xb0
[   68.879701][ T5089]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.886130][ T5089] 
[   68.886130][ T5089] other info that might help us debug this:
[   68.886130][ T5089] 
[   68.896351][ T5089]  Possible unsafe locking scenario:
[   68.896351][ T5089] 
[   68.904487][ T5089]        CPU0                    CPU1
[   68.909854][ T5089]        ----                    ----
[   68.915210][ T5089]   lock(&xa->xa_lock#7);
[   68.919547][ T5089]                                lock(&sb->s_type->i_lock_key);
[   68.927178][ T5089]                                lock(&xa->xa_lock#7);
[   68.934035][ T5089]   lock(&sb->s_type->i_lock_key);
[   68.939147][ T5089] 
[   68.939147][ T5089]  *** DEADLOCK ***
[   68.939147][ T5089] 
[   68.947282][ T5089] 1 lock held by syz-executor340/5089:
[   68.952744][ T5089]  #0: ffff888075decca0 (&xa->xa_lock#7){..-.}-{2:2}, at: collapse_file+0x1ccc/0x5530
[   68.962345][ T5089] 
[   68.962345][ T5089] stack backtrace:
[   68.968224][ T5089] CPU: 1 PID: 5089 Comm: syz-executor340 Not tainted 6.5.0-rc1-next-20230714-syzkaller #0
[   68.978118][ T5089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023
[   68.988173][ T5089] Call Trace:
[   68.991446][ T5089]  <TASK>
[   68.994376][ T5089]  dump_stack_lvl+0xd9/0x1b0
[   68.998984][ T5089]  check_noncircular+0x311/0x3f0
[   69.003934][ T5089]  ? print_circular_bug+0x750/0x750
[   69.009145][ T5089]  ? reacquire_held_locks+0x4b0/0x4b0
[   69.014535][ T5089]  ? lock_acquire+0x1ae/0x510
[   69.019227][ T5089]  __lock_acquire+0x2e3d/0x5de0
[   69.024096][ T5089]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[   69.030090][ T5089]  ? check_pte+0x410/0x410
[   69.034519][ T5089]  ? __lock_acquire+0xc8f/0x5de0
[   69.039468][ T5089]  lock_acquire+0x1ae/0x510
[   69.043981][ T5089]  ? inode_add_bytes+0x24/0xf0
[   69.048758][ T5089]  ? lock_sync+0x190/0x190
[   69.053272][ T5089]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[   69.059265][ T5089]  ? __lock_acquire+0x182f/0x5de0
[   69.064308][ T5089]  _raw_spin_lock+0x2e/0x40
[   69.068826][ T5089]  ? inode_add_bytes+0x24/0xf0
[   69.073603][ T5089]  inode_add_bytes+0x24/0xf0
[   69.078212][ T5089]  __dquot_alloc_space+0x730/0xb60
[   69.083345][ T5089]  ? reacquire_held_locks+0x4b0/0x4b0
[   69.088752][ T5089]  ? dquot_add_space+0xdf0/0xdf0
[   69.093724][ T5089]  shmem_charge+0x152/0x500
[   69.098334][ T5089]  collapse_file+0x20ad/0x5530
[   69.103118][ T5089]  ? hpage_collapse_scan_pmd+0x2190/0x2190
[   69.108935][ T5089]  ? find_held_lock+0x2d/0x110
[   69.113714][ T5089]  ? hpage_collapse_scan_file+0x293/0x1650
[   69.119614][ T5089]  ? xas_next_entry+0x26f/0x3c0
[   69.124474][ T5089]  hpage_collapse_scan_file+0xc8e/0x1650
[   69.130115][ T5089]  ? collapse_file+0x5530/0x5530
[   69.135059][ T5089]  ? __lru_add_drain_all+0xe7/0x740
[   69.140263][ T5089]  madvise_collapse+0x52c/0xb50
[   69.145124][ T5089]  ? current_is_khugepaged+0x30/0x30
[   69.150415][ T5089]  ? mas_prev_slot+0x3e8/0x1940
[   69.155275][ T5089]  madvise_vma_behavior+0x200/0x1e60
[   69.160567][ T5089]  ? madvise_vma_anon_name+0xf0/0xf0
[   69.165855][ T5089]  ? mas_prev+0xc6/0x460
[   69.170103][ T5089]  ? madvise_vma_anon_name+0xf0/0xf0
[   69.175401][ T5089]  ? find_vma_prev+0xe8/0x160
[   69.180096][ T5089]  ? vm_unmapped_area+0x9d0/0x9d0
[   69.185135][ T5089]  ? lock_sync+0x190/0x190
[   69.189579][ T5089]  ? preempt_count_sub+0x150/0x150
[   69.194714][ T5089]  ? madvise_vma_anon_name+0xf0/0xf0
[   69.200015][ T5089]  madvise_walk_vmas+0x1cf/0x2c0
[   69.204961][ T5089]  ? __remove_memory+0x40/0x40
[   69.209726][ T5089]  ? lockdep_hardirqs_on+0x7d/0x100
[   69.215033][ T5089]  do_madvise+0x333/0x660
[   69.219455][ T5089]  ? madvise_set_anon_name+0x110/0x110
[   69.225005][ T5089]  ? set_compat_user_sigmask+0x2a0/0x2a0
[   69.230657][ T5089]  ? folio_memcg_unlock+0x2d0/0x2d0
[   69.235879][ T5089]  __x64_sys_madvise+0xaa/0x110
[   69.240747][ T5089]  ? syscall_enter_from_user_mode+0x26/0x80
[   69.246678][ T5089]  do_syscall_64+0x38/0xb0
[   69.251112][ T5089]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   69.257024][ T5089] RIP: 0033:0x7fa09783a5f9
[   69.261445][ T5089] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 1f 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   69.281061][ T5089] RSP: 002b:00007fa0977ad178 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   69.289741][ T5089] RAX: ffffffffffffffda RBX: 00007fa0978c31c8 RCX: 00007fa09783a5f9
[   69.297721][ T5089] RDX: 0000000000000019 RSI: 0000000000400000 RDI: 0000000020000000
[   69.305692][ T5089] RBP: 00007fa0978c31c0 R08: 00007ffc2e84b837 R09: 00007fa0977ad6c0
[   69.313670][ T5089] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa0978c31cc
[   69.321656][ T5089] R13: 000000000000006e R14: 00007ffc2e84b750 R15: 00007ffc2e84b838
[   69.329646][ T5089]  </TASK>
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   71.507459][ T1233] ieee802154 phy0 wpan0: encryption failed: -22
[   71.513822][ T1233] ieee802154 phy1 wpan1: encryption failed: -22
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program