syzbot

EXT4-fs (loop1): orphan cleanup on readonly fs
EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.10442: bad orphan inode 13
==================================================================
BUG: KCSAN: data-race in _prb_read_valid / prb_reserve

write to 0xffffffff868a1a30 of 88 bytes by task 27017 on cpu 0:
 prb_reserve+0x696/0xaf0 kernel/printk/printk_ringbuffer.c:1635
 vprintk_store+0x56d/0x860 kernel/printk/printk.c:2326
 vprintk_emit+0x178/0x650 kernel/printk/printk.c:2426
 dev_vprintk_emit+0x242/0x2a0 drivers/base/core.c:4914
 dev_printk_emit+0x84/0xb0 drivers/base/core.c:4925
 __dev_printk+0xf3/0x110 drivers/base/core.c:4937
 _dev_info+0x9b/0xd0 drivers/base/core.c:4983
 hub_port_init+0x3e9/0x1680 drivers/usb/core/hub.c:4995
 hub_port_connect drivers/usb/core/hub.c:5495 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5706 [inline]
 port_event drivers/usb/core/hub.c:5870 [inline]
 hub_event+0x19f3/0x29c0 drivers/usb/core/hub.c:5952
 process_one_work kernel/workqueue.c:3236 [inline]
 process_scheduled_works+0x4ce/0x9d0 kernel/workqueue.c:3319
 worker_thread+0x582/0x770 kernel/workqueue.c:3400
 kthread+0x486/0x510 kernel/kthread.c:463
 ret_from_fork+0xda/0x150 arch/x86/kernel/process.c:148
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

read to 0xffffffff868a1a30 of 8 bytes by task 32326 on cpu 1:
 desc_read kernel/printk/printk_ringbuffer.c:486 [inline]
 prb_first_seq kernel/printk/printk_ringbuffer.c:1957 [inline]
 _prb_read_valid+0x383/0x920 kernel/printk/printk_ringbuffer.c:2114
 prb_read_valid+0x3c/0x60 kernel/printk/printk_ringbuffer.c:2185
 __console_flush_and_unlock kernel/printk/printk.c:3304 [inline]
 console_unlock+0x164/0x330 kernel/printk/printk.c:3325
 vprintk_emit+0x388/0x650 kernel/printk/printk.c:2450
 vprintk_default+0x26/0x30 kernel/printk/printk.c:2465
 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82
 _printk+0x79/0xa0 kernel/printk/printk.c:2475
 __ext4_error+0x248/0x320 fs/ext4/super.c:813
 ext4_orphan_get+0x1d3/0x430 fs/ext4/ialloc.c:1418
 ext4_orphan_cleanup+0x5fa/0xa00 fs/ext4/orphan.c:467
 __ext4_fill_super fs/ext4/super.c:5609 [inline]
 ext4_fill_super+0x3260/0x35d0 fs/ext4/super.c:5728
 get_tree_bdev_flags+0x291/0x300 fs/super.c:1692
 get_tree_bdev+0x1f/0x30 fs/super.c:1715
 ext4_get_tree+0x1c/0x30 fs/ext4/super.c:5760
 vfs_get_tree+0x54/0x1d0 fs/super.c:1815
 do_new_mount+0x207/0x5e0 fs/namespace.c:3808
 path_mount+0x4a4/0xb20 fs/namespace.c:4123
 do_mount fs/namespace.c:4136 [inline]
 __do_sys_mount fs/namespace.c:4347 [inline]
 __se_sys_mount+0x28f/0x2e0 fs/namespace.c:4324
 __x64_sys_mount+0x67/0x80 fs/namespace.c:4324
 x64_sys_call+0x2b4d/0x2ff0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd2/0x200 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x00000000000021c8 -> 0x00000000000041c8

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 32326 Comm: syz.1.10442 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
==================================================================
ext4_test_bit(bit=12, block=18) = 1
is_bad_inode(inode)=0
NEXT_ORPHAN(inode)=2130706432
max_ino=32
i_nlink=1
EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.