F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b VFS: Found a Xenix FS (block size = 512) on device loop4 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9933, name: syz-executor.4 3 locks held by syz-executor.4/9933: #0: (sb_writers#14){.+.+}, at: [] sb_start_write include/linux/fs.h:1551 [inline] #0: (sb_writers#14){.+.+}, at: [] mnt_want_write+0x3a/0xb0 fs/namespace.c:386 #1: (&sb->s_type->i_mutex_key#22){+.+.}, at: [] inode_lock include/linux/fs.h:719 [inline] #1: (&sb->s_type->i_mutex_key#22){+.+.}, at: [] do_truncate+0xf0/0x1a0 fs/open.c:61 #2: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 0 PID: 9933 Comm: syz-executor.4 Not tainted 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_truncate_page+0x2a8/0x8f0 fs/buffer.c:2944 sysv_truncate+0x1c4/0xd70 fs/sysv/itree.c:383 sysv_setattr+0x115/0x180 fs/sysv/file.c:47 notify_change+0x56b/0xd10 fs/attr.c:315 do_truncate+0xff/0x1a0 fs/open.c:63 vfs_truncate+0x456/0x680 fs/open.c:120 do_sys_truncate.part.0+0xdc/0xf0 fs/open.c:143 do_sys_truncate fs/open.c:137 [inline] SYSC_truncate fs/open.c:155 [inline] SyS_truncate+0x23/0x40 fs/open.c:153 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f7528e640a9 RSP: 002b:00007f75273d6168 EFLAGS: 00000246 ORIG_RAX: 000000000000004c RAX: ffffffffffffffda RBX: 00007f7528f83f80 RCX: 00007f7528e640a9 RDX: 0000000000000000 RSI: 0000000000008001 RDI: 000000002000a340 RBP: 00007f7528ebfae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffefcc75c4f R14: 00007f75273d6300 R15: 0000000000022000 sd 0:0:1:0: tag#4937 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK sd 0:0:1:0: tag#4937 CDB: Read(6) 08 00 00 00 00 00 print_req_error: I/O error, dev loop4, sector 0 VFS: Found a Xenix FS (block size = 512) on device loop4 VFS: Found a Xenix FS (block size = 512) on device loop1 sd 0:0:1:0: tag#4946 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK sd 0:0:1:0: tag#4946 CDB: Read(6) 08 00 00 00 00 00 VFS: Found a Xenix FS (block size = 512) on device loop4 VFS: Found a Xenix FS (block size = 512) on device loop1 sd 0:0:1:0: tag#4956 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK sd 0:0:1:0: tag#4956 CDB: Read(6) 08 00 00 00 00 00 VFS: Found a Xenix FS (block size = 512) on device loop4 VFS: Found a Xenix FS (block size = 512) on device loop1 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 9998, name: syz-executor.1 3 locks held by syz-executor.1/9998: #0: (sb_writers#14){.+.+}, at: [] sb_start_write include/linux/fs.h:1551 [inline] #0: (sb_writers#14){.+.+}, at: [] mnt_want_write+0x3a/0xb0 fs/namespace.c:386 #1: (&sb->s_type->i_mutex_key#22){+.+.}, at: [] inode_lock include/linux/fs.h:719 [inline] #1: (&sb->s_type->i_mutex_key#22){+.+.}, at: [] do_truncate+0xf0/0x1a0 fs/open.c:61 #2: (pointers_lock){++++}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 1 PID: 9998 Comm: syz-executor.1 Tainted: G W 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_truncate_page+0x2a8/0x8f0 fs/buffer.c:2944 sysv_truncate+0x1c4/0xd70 fs/sysv/itree.c:383 sysv_setattr+0x115/0x180 fs/sysv/file.c:47 notify_change+0x56b/0xd10 fs/attr.c:315 do_truncate+0xff/0x1a0 fs/open.c:63 vfs_truncate+0x456/0x680 fs/open.c:120 do_sys_truncate.part.0+0xdc/0xf0 fs/open.c:143 do_sys_truncate fs/open.c:137 [inline] SYSC_truncate fs/open.c:155 [inline] SyS_truncate+0x23/0x40 fs/open.c:153 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f0dcce190a9 RSP: 002b:00007f0dcb38b168 EFLAGS: 00000246 ORIG_RAX: 000000000000004c RAX: ffffffffffffffda RBX: 00007f0dccf38f80 RCX: 00007f0dcce190a9 RDX: 0000000000000000 RSI: 0000000000008001 RDI: 000000002000a340 RBP: 00007f0dcce74ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc646ffdcf R14: 00007f0dcb38b300 R15: 0000000000022000 sd 0:0:1:0: tag#4965 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK sd 0:0:1:0: tag#4965 CDB: Read(6) 08 00 00 00 00 00 REISERFS warning (device loop3): sh-2011 read_super_block: can't find a reiserfs filesystem on (dev loop3, block 16, size 4096) REISERFS warning (device loop3): sh-2021 reiserfs_fill_super: can not find reiserfs on loop3 NFQUEUE: number of total queues is 0 EXT4-fs (loop1): Ignoring removed mblk_io_submit option EXT4-fs (loop1): mounted filesystem without journal. Opts: debug_want_extra_isize=0x0000000000000004,mblk_io_submit,resgid=0x0000000000000000e,,errors=continue arp_tables: arptables: counters copy to user failed while replacing table IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready arp_tables: arptables: counters copy to user failed while replacing table IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. arp_tables: arptables: counters copy to user failed while replacing table arp_tables: arptables: counters copy to user failed while replacing table arp_tables: arptables: counters copy to user failed while replacing table arp_tables: arptables: counters copy to user failed while replacing table IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. syz-executor.1 uses obsolete (PF_INET,SOCK_PACKET) arp_tables: arptables: counters copy to user failed while replacing table BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 BTRFS info (device loop2): enabling inode map caching BTRFS warning (device loop2): excessive commit interval 622039222 BTRFS info (device loop2): use zlib compression BTRFS info (device loop2): enabling ssd optimizations BTRFS info (device loop2): using spread ssd allocation scheme BTRFS info (device loop2): using free space tree BTRFS info (device loop2): has skinny extents audit: type=1804 audit(1672162669.766:2): pid=10162 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="/root/syzkaller-testdir3241137239/syzkaller.cIEAo8/36/bus/.log" dev="loop2" ino=263 res=1 IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. XFS (loop2): Mounting V4 Filesystem XFS (loop2): Ending clean mount XFS (loop2): Unmounting Filesystem IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready