program: syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000040), 0x0, 0x258, &(0x7f0000000780)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a}) mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a}) chdir(&(0x7f00000002c0)='mnt/encrypted_dir\x00') symlink(&(0x7f00000000c0)='mnt/encrypted_dir\x00', &(0x7f0000000100)='./file0\x00') ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r1, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000002d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x820}}, {{&(0x7f0000001580)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x40042}}], 0x2, 0x20000000) [ 73.166076][ T5291] Bluetooth: hci0: command tx timeout [ 73.300200][ T5312] loop0: detected capacity change from 0 to 128 [ 73.343598][ T5312] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 73.366647][ T5312] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 73.388407][ T5312] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni" [ 73.457924][ T5312] fscrypt: loop0: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 73.528292][ T76] [ 73.529449][ T76] ====================================================== [ 73.532557][ T76] WARNING: possible circular locking dependency detected [ 73.535640][ T76] syzkaller #0 Not tainted [ 73.537480][ T76] ------------------------------------------------------ [ 73.540507][ T76] kswapd0/76 is trying to acquire lock: [ 73.543143][ T76] ffff888000ae7098 (&type->lock_class){+.+.}-{4:4}, at: keyring_clear+0xaf/0x250 [ 73.547686][ T76] [ 73.547686][ T76] but task is already holding lock: [ 73.550830][ T76] ffffffff8e882b80 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0x90d/0x2800 [ 73.554371][ T76] [ 73.554371][ T76] which lock already depends on the new lock. [ 73.554371][ T76] [ 73.558691][ T76] [ 73.558691][ T76] the existing dependency chain (in reverse order) is: [ 73.562481][ T76] [ 73.562481][ T76] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 73.565660][ T76] fs_reclaim_acquire+0x71/0x100 [ 73.568052][ T76] __kmalloc_cache_noprof+0x40/0x660 [ 73.570421][ T76] assoc_array_insert+0x92/0x2f60 [ 73.572815][ T76] __key_link_begin+0xd6/0x1f0 [ 73.574943][ T76] __key_create_or_update+0x449/0xa80 [ 73.577576][ T76] key_create_or_update+0x42/0x60 [ 73.579859][ T76] x509_load_certificate_list+0x145/0x280 [ 73.582535][ T76] do_one_initcall+0x250/0x840 [ 73.584717][ T76] do_initcall_level+0x104/0x190 [ 73.587085][ T76] do_initcalls+0x59/0xa0 [ 73.589303][ T76] kernel_init_freeable+0x2a6/0x3d0 [ 73.591877][ T76] kernel_init+0x1d/0x1d0 [ 73.594085][ T76] ret_from_fork+0x51e/0xb90 [ 73.596394][ T76] ret_from_fork_asm+0x1a/0x30 [ 73.598756][ T76] [ 73.598756][ T76] -> #0 (&type->lock_class){+.+.}-{4:4}: [ 73.602091][ T76] __lock_acquire+0x15a5/0x2cf0 [ 73.604445][ T76] lock_acquire+0x106/0x330 [ 73.606687][ T76] down_write+0x96/0x200 [ 73.608836][ T76] keyring_clear+0xaf/0x250 [ 73.611098][ T76] fscrypt_put_master_key+0xca/0x190 [ 73.614059][ T76] put_crypt_info+0x26d/0x310 [ 73.616313][ T76] fscrypt_put_encryption_info+0xf6/0x140 [ 73.619220][ T76] ext4_clear_inode+0x170/0x2f0 [ 73.621448][ T76] ext4_evict_inode+0x9fb/0xe60 [ 73.623890][ T76] evict+0x61e/0xb10 [ 73.625758][ T76] __dentry_kill+0x1a2/0x5e0 [ 73.627925][ T76] shrink_kill+0xa9/0x2c0 [ 73.629971][ T76] shrink_dentry_list+0x2e0/0x5e0 [ 73.632607][ T76] prune_dcache_sb+0x119/0x180 [ 73.635178][ T76] super_cache_scan+0x369/0x4b0 [ 73.637573][ T76] do_shrink_slab+0x6df/0x10d0 [ 73.639870][ T76] shrink_slab+0x830/0x1150 [ 73.642040][ T76] shrink_one+0x2d9/0x710 [ 73.644133][ T76] shrink_node+0x2f8b/0x35f0 [ 73.646395][ T76] kswapd+0x144c/0x2800 [ 73.648515][ T76] kthread+0x388/0x470 [ 73.650594][ T76] ret_from_fork+0x51e/0xb90 [ 73.652795][ T76] ret_from_fork_asm+0x1a/0x30 [ 73.655094][ T76] [ 73.655094][ T76] other info that might help us debug this: [ 73.655094][ T76] [ 73.659586][ T76] Possible unsafe locking scenario: [ 73.659586][ T76] [ 73.662797][ T76] CPU0 CPU1 [ 73.665141][ T76] ---- ---- [ 73.667472][ T76] lock(fs_reclaim); [ 73.669143][ T76] lock(&type->lock_class); [ 73.672183][ T76] lock(fs_reclaim); [ 73.675035][ T76] lock(&type->lock_class); [ 73.677153][ T76] [ 73.677153][ T76] *** DEADLOCK *** [ 73.677153][ T76] [ 73.680482][ T76] 2 locks held by kswapd0/76: [ 73.682501][ T76] #0: ffffffff8e882b80 (fs_reclaim){+.+.}-{0:0}, at: kswapd+0x90d/0x2800 [ 73.685904][ T76] #1: ffff88801208c0e0 (&type->s_umount_key#33){++++}-{4:4}, at: super_cache_scan+0x91/0x4b0 [ 73.690274][ T76] [ 73.690274][ T76] stack backtrace: [ 73.692914][ T76] CPU: 0 UID: 0 PID: 76 Comm: kswapd0 Not tainted syzkaller #0 PREEMPT(full) [ 73.692929][ T76] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 73.692936][ T76] Call Trace: [ 73.692943][ T76] [ 73.692948][ T76] dump_stack_lvl+0xe8/0x150 [ 73.692967][ T76] print_circular_bug+0x2e1/0x300 [ 73.692982][ T76] check_noncircular+0x12e/0x150 [ 73.692997][ T76] __lock_acquire+0x15a5/0x2cf0 [ 73.693009][ T76] ? stack_trace_save+0xa9/0x100 [ 73.693028][ T76] ? keyring_clear+0xaf/0x250 [ 73.693042][ T76] lock_acquire+0x106/0x330 [ 73.693053][ T76] ? keyring_clear+0xaf/0x250 [ 73.693070][ T76] down_write+0x96/0x200 [ 73.693084][ T76] ? keyring_clear+0xaf/0x250 [ 73.693098][ T76] ? __pfx_down_write+0x10/0x10 [ 73.693114][ T76] keyring_clear+0xaf/0x250 [ 73.693129][ T76] ? __pfx_keyring_clear+0x10/0x10 [ 73.693146][ T76] fscrypt_put_master_key+0xca/0x190 [ 73.693159][ T76] put_crypt_info+0x26d/0x310 [ 73.693172][ T76] fscrypt_put_encryption_info+0xf6/0x140 [ 73.693186][ T76] ext4_clear_inode+0x170/0x2f0 [ 73.693200][ T76] ext4_evict_inode+0x9fb/0xe60 [ 73.693214][ T76] ? inode_wait_for_writeback+0x16d/0x3b0 [ 73.693226][ T76] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 73.693237][ T76] ? do_raw_spin_lock+0x12b/0x2f0 [ 73.693252][ T76] ? __pfx_ext4_evict_inode+0x10/0x10 [ 73.693265][ T76] ? do_raw_spin_unlock+0x4d/0x210 [ 73.693279][ T76] ? __pfx_ext4_evict_inode+0x10/0x10 [ 73.693292][ T76] evict+0x61e/0xb10 [ 73.693305][ T76] ? __pfx_evict+0x10/0x10 [ 73.693321][ T76] ? _raw_spin_unlock+0x28/0x50 [ 73.693331][ T76] ? iput+0xb25/0xe80 [ 73.693348][ T76] __dentry_kill+0x1a2/0x5e0 [ 73.693360][ T76] ? shrink_kill+0x8d/0x2c0 [ 73.693375][ T76] shrink_kill+0xa9/0x2c0 [ 73.693390][ T76] shrink_dentry_list+0x2e0/0x5e0 [ 73.693407][ T76] prune_dcache_sb+0x119/0x180 [ 73.693422][ T76] ? __pfx_prune_dcache_sb+0x10/0x10 [ 73.693438][ T76] ? list_lru_count_one+0x27/0x2c0 [ 73.693452][ T76] ? list_lru_count_one+0x264/0x2c0 [ 73.693471][ T76] super_cache_scan+0x369/0x4b0 [ 73.693485][ T76] do_shrink_slab+0x6df/0x10d0 [ 73.693504][ T76] shrink_slab+0x830/0x1150 [ 73.693518][ T76] ? shrink_slab+0x1ef/0x1150 [ 73.693532][ T76] ? __pfx_shrink_slab+0x10/0x10 [ 73.693549][ T76] shrink_one+0x2d9/0x710 [ 73.693563][ T76] ? shrink_node+0x2d4d/0x35f0 [ 73.693576][ T76] shrink_node+0x2f8b/0x35f0 [ 73.693591][ T76] ? shrink_node+0x2d4d/0x35f0 [ 73.693604][ T76] ? __lock_acquire+0x6b5/0x2cf0 [ 73.693616][ T76] ? percpu_ref_put+0x19/0x180 [ 73.693629][ T76] ? percpu_ref_put+0x19/0x180 [ 73.693642][ T76] ? __pfx_shrink_node+0x10/0x10 [ 73.693655][ T76] ? percpu_ref_put+0x19/0x180 [ 73.693668][ T76] ? mem_cgroup_iter+0x420/0x450 [ 73.693682][ T76] ? mem_cgroup_iter+0x3b/0x450 [ 73.693697][ T76] kswapd+0x144c/0x2800 [ 73.693710][ T76] ? kswapd+0x90d/0x2800 [ 73.693721][ T76] ? __pfx_kswapd+0x10/0x10 [ 73.693730][ T76] ? __lock_acquire+0x6b5/0x2cf0 [ 73.693742][ T76] ? __mutex_unlock_slowpath+0x1bd/0x7d0 [ 73.693757][ T76] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 73.693774][ T76] ? __pfx_autoremove_wake_function+0x10/0x10 [ 73.693790][ T76] ? __kthread_parkme+0x7a/0x1f0 [ 73.693805][ T76] kthread+0x388/0x470 [ 73.693819][ T76] ? __pfx_kswapd+0x10/0x10 [ 73.693827][ T76] ? __pfx_kthread+0x10/0x10 [ 73.693841][ T76] ret_from_fork+0x51e/0xb90 [ 73.693854][ T76] ? __pfx_ret_from_fork+0x10/0x10 [ 73.693865][ T76] ? __switch_to+0xc7d/0x1400 [ 73.693876][ T76] ? __pfx_kthread+0x10/0x10 [ 73.693890][ T76] ret_from_fork_asm+0x1a/0x30 [ 73.693910][ T76]