attempt to access beyond end of device loop0: rw=0, want=8073606, limit=128 Buffer I/O error on dev loop0, logical block 8073605, async page read BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Not tainted 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 VFS: Found a Xenix FS (block size = 512) on device loop5 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 XFS (loop2): DAX enabled. Warning: EXPERIMENTAL, use at your own risk do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 XFS (loop2): DAX unsupported by block device. Turning off DAX. R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 audit: type=1800 audit(1672251650.576:21): pid=10051 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.1" name="file0" dev="sda1" ino=13921 res=0 audit: type=1804 audit(1672251650.576:22): pid=10052 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir3087259055/syzkaller.kBu4Gt/12/file0" dev="sda1" ino=13921 res=1 XFS (loop2): Mounting V4 Filesystem XFS (loop2): Ending clean mount XFS (loop2): Quotacheck needed: Please wait. XFS (loop2): Quotacheck: Done. XFS (loop3): DAX enabled. Warning: EXPERIMENTAL, use at your own risk XFS (loop3): DAX unsupported by block device. Turning off DAX. netlink: 18359 bytes leftover after parsing attributes in process `syz-executor.2'. XFS (loop3): Mounting V4 Filesystem attempt to access beyond end of device audit: type=1804 audit(1672251650.886:23): pid=10078 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="/root/syzkaller-testdir2516471525/syzkaller.91MkS3/6/file0/bus" dev="loop2" ino=43 res=1 XFS (loop3): Ending clean mount loop0: rw=0, want=3245519, limit=128 Buffer I/O error on dev loop0, logical block 3245518, async page read XFS (loop3): Quotacheck needed: Please wait. attempt to access beyond end of device loop0: rw=0, want=8769404, limit=128 Buffer I/O error on dev loop0, logical block 8769403, async page read XFS (loop3): Quotacheck: Done. XFS (loop2): Unmounting Filesystem netlink: 18359 bytes leftover after parsing attributes in process `syz-executor.3'. audit: type=1804 audit(1672251651.096:24): pid=10087 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir217797603/syzkaller.ilt9Gx/10/file0/bus" dev="loop3" ino=43 res=1 XFS (loop3): Unmounting Filesystem BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 unregister_netdevice: waiting for ip6gre0 to become free. Usage count = -1 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 BUG: sleeping function called from invalid context at include/linux/pagemap.h:478 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 lock_page include/linux/pagemap.h:478 [inline] pagecache_get_page+0x427/0xab0 mm/filemap.c:1478 find_or_create_page include/linux/pagemap.h:326 [inline] grow_dev_page fs/buffer.c:1004 [inline] grow_buffers fs/buffer.c:1077 [inline] __getblk_slow+0x1dd/0x7a0 fs/buffer.c:1104 __getblk_gfp fs/buffer.c:1383 [inline] __bread_gfp+0x206/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9977 Comm: syz-executor.0 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_read_full_page+0x25e/0x8d0 fs/buffer.c:2316 do_read_cache_page+0x38e/0xc10 mm/filemap.c:2713 read_mapping_page include/linux/pagemap.h:398 [inline] dir_get_page fs/sysv/dir.c:58 [inline] sysv_find_entry+0x20d/0x610 fs/sysv/dir.c:146 sysv_inode_by_name+0x5b/0x330 fs/sysv/dir.c:360 sysv_lookup fs/sysv/namei.c:53 [inline] sysv_lookup+0x64/0xe0 fs/sysv/namei.c:46 lookup_real fs/namei.c:1555 [inline] __lookup_hash fs/namei.c:1575 [inline] __lookup_hash+0x1bb/0x270 fs/namei.c:1563 filename_create+0x156/0x3f0 fs/namei.c:3677 user_path_create fs/namei.c:3734 [inline] SYSC_mkdirat fs/namei.c:3866 [inline] SyS_mkdirat+0x95/0x270 fs/namei.c:3858 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f60afb760a9 RSP: 002b:00007f60a5cb6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007f60afc96120 RCX: 00007f60afb760a9 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000200001c0 RBP: 00007f60afbd1ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd939d9c2f R14: 00007f60a5cb6300 R15: 0000000000022000 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9977, name: syz-executor.0 2 locks held by syz-executor.0/9977: #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] inode_lock_nested include/linux/fs.h:754 [inline] #0: (&type->i_mutex_dir_key#9/1){+.+.}, at: [] filename_create+0x12a/0x3f0 fs/namei.c:3676 #1: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null)