------------[ cut here ]------------ do not call blocking ops when !TASK_RUNNING; state=402 set at [<0000000028600920>] worker_set_flags kernel/workqueue.c:983 [inline] do not call blocking ops when !TASK_RUNNING; state=402 set at [<0000000028600920>] worker_thread+0x498/0xc40 kernel/workqueue.c:2445 WARNING: CPU: 0 PID: 11102 at kernel/sched/core.c:9656 __might_sleep+0x10c/0x144 kernel/sched/core.c:9656 Modules linked in: CPU: 0 PID: 11102 Comm: kworker/0:0 Not tainted 5.17.0-syzkaller-10734-gcb7cbaae7fd9 #0 Hardware name: linux,dummy-virt (DT) Workqueue: 0x0 (events) pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : __might_sleep+0x10c/0x144 kernel/sched/core.c:9656 lr : __might_sleep+0x10c/0x144 kernel/sched/core.c:9656 sp : ffff800011147760 x29: ffff800011147760 x28: dfff800000000000 x27: 1fffe00002014bd0 x26: 1ffff00001c41d28 x25: 0000000000000000 x24: ffff80000ca29fa0 x23: ffff00000abf5040 x22: ffff00000abf5040 x21: 0000000000000402 x20: 00000000000002fe x19: ffff80000ca29b60 x18: fffffbffeff9c77c x17: 3c5b207461207465 x16: 73203230343d6574 x15: 617473203b474e49 x14: 1ffff00002228e2a x13: 0000000000000001 x12: ffff60000d54479d x11: 1fffe0000d54479c x10: ffff60000d54479c x9 : dfff800000000000 x8 : ffff00006aa23ce3 x7 : 0000000000000001 x6 : 00009ffff2abb864 x5 : ffff00006aa23ce0 x4 : 1fffe0000157ea09 x3 : dfff800000000000 x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff00000abf5040 Call trace: __might_sleep+0x10c/0x144 kernel/sched/core.c:9656 blk_release_queue+0x30/0x25c block/blk-sysfs.c:766 kobject_cleanup lib/kobject.c:705 [inline] kobject_release lib/kobject.c:736 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x170/0x460 lib/kobject.c:753 blk_put_queue+0x14/0x20 block/blk-core.c:270 blkg_free.part.0+0xdc/0x1a0 block/blk-cgroup.c:86 blkg_free block/blk-cgroup.c:78 [inline] __blkg_release+0xbc/0x110 block/blk-cgroup.c:102 rcu_do_batch kernel/rcu/tree.c:2535 [inline] rcu_core+0xc60/0x1a00 kernel/rcu/tree.c:2786 rcu_core_si+0x10/0x20 kernel/rcu/tree.c:2803 _stext+0x3f4/0xff8 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] invoke_softirq kernel/softirq.c:439 [inline] __irq_exit_rcu+0x208/0x4f0 kernel/softirq.c:637 irq_exit_rcu+0x14/0x80 kernel/softirq.c:649 __el1_irq arch/arm64/kernel/entry-common.c:459 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:473 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:478 el1h_64_irq+0x64/0x68 arch/arm64/kernel/entry.S:577 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:159 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:202 worker_thread+0x4f8/0xc40 kernel/workqueue.c:2456 kthread+0x234/0x2a0 kernel/kthread.c:376 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:867 irq event stamp: 200419 hardirqs last enabled at (200418): [] __up_console_sem+0x78/0x84 kernel/printk/printk.c:264 hardirqs last disabled at (200419): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:395 softirqs last enabled at (200254): [] spin_unlock_bh include/linux/spinlock.h:394 [inline] softirqs last enabled at (200254): [] nsim_dev_trap_report drivers/net/netdevsim/dev.c:814 [inline] softirqs last enabled at (200254): [] nsim_dev_trap_report_work+0x690/0x9ac drivers/net/netdevsim/dev.c:840 softirqs last disabled at (200269): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (200269): [] invoke_softirq kernel/softirq.c:439 [inline] softirqs last disabled at (200269): [] __irq_exit_rcu+0x208/0x4f0 kernel/softirq.c:637 ---[ end trace 0000000000000000 ]--- BUG: sleeping function called from invalid context at block/blk-sysfs.c:766 in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 11102, name: kworker/0:0 preempt_count: 101, expected: 0 RCU nest depth: 0, expected: 0 1 lock held by kworker/0:0/11102: #0: ffff80000de84a20 (rcu_callback){....}-{0:0}, at: rcu_do_batch kernel/rcu/tree.c:2524 [inline] #0: ffff80000de84a20 (rcu_callback){....}-{0:0}, at: rcu_core+0xbf8/0x1a00 kernel/rcu/tree.c:2786 Preemption disabled at: [] process_one_work+0x884/0x17b4 kernel/workqueue.c:2317 CPU: 0 PID: 11102 Comm: kworker/0:0 Tainted: G W 5.17.0-syzkaller-10734-gcb7cbaae7fd9 #0 Hardware name: linux,dummy-virt (DT) Workqueue: 0x0 (events) Call trace: dump_backtrace+0x1e0/0x270 arch/arm64/kernel/stacktrace.c:184 show_stack+0x18/0x70 arch/arm64/kernel/stacktrace.c:191 __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x9c/0xd8 lib/dump_stack.c:106 dump_stack+0x1c/0x38 lib/dump_stack.c:113 __might_resched+0x3c8/0x530 kernel/sched/core.c:9733 __might_sleep+0x90/0x144 kernel/sched/core.c:9662 blk_release_queue+0x30/0x25c block/blk-sysfs.c:766 kobject_cleanup lib/kobject.c:705 [inline] kobject_release lib/kobject.c:736 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x170/0x460 lib/kobject.c:753 blk_put_queue+0x14/0x20 block/blk-core.c:270 blkg_free.part.0+0xdc/0x1a0 block/blk-cgroup.c:86 blkg_free block/blk-cgroup.c:78 [inline] __blkg_release+0xbc/0x110 block/blk-cgroup.c:102 rcu_do_batch kernel/rcu/tree.c:2535 [inline] rcu_core+0xc60/0x1a00 kernel/rcu/tree.c:2786 rcu_core_si+0x10/0x20 kernel/rcu/tree.c:2803 _stext+0x3f4/0xff8 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] invoke_softirq kernel/softirq.c:439 [inline] __irq_exit_rcu+0x208/0x4f0 kernel/softirq.c:637 irq_exit_rcu+0x14/0x80 kernel/softirq.c:649 __el1_irq arch/arm64/kernel/entry-common.c:459 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:473 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:478 el1h_64_irq+0x64/0x68 arch/arm64/kernel/entry.S:577 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:159 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:202 worker_thread+0x4f8/0xc40 kernel/workqueue.c:2456 kthread+0x234/0x2a0 kernel/kthread.c:376 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:867 ================================ WARNING: inconsistent lock state 5.17.0-syzkaller-10734-gcb7cbaae7fd9 #0 Tainted: G W -------------------------------- inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-W} usage. kworker/0:0/11102 [HC0[0]:SC1[1]:HE0:SE0] takes: ffff0000100a5de0 (&xa->xa_lock#6){+.?.}-{2:2}, at: xa_destroy+0x8c/0x240 lib/xarray.c:2207 {SOFTIRQ-ON-W} state was registered at: lock_acquire kernel/locking/lockdep.c:5641 [inline] lock_acquire+0x568/0x93c kernel/locking/lockdep.c:5606 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x8c/0x120 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:349 [inline] xa_insert include/linux/xarray.h:772 [inline] blk_mq_init_hctx block/blk-mq.c:3502 [inline] blk_mq_alloc_and_init_hctx+0x384/0xd64 block/blk-mq.c:3963 blk_mq_realloc_hw_ctxs+0x258/0x350 block/blk-mq.c:3992 blk_mq_init_allocated_queue+0x3c4/0x1050 block/blk-mq.c:4054 blk_mq_init_queue_data block/blk-mq.c:3907 [inline] __blk_mq_alloc_disk+0xb4/0x15c block/blk-mq.c:3927 loop_add+0x29c/0x7ac drivers/block/loop.c:2011 loop_init+0x134/0x158 drivers/block/loop.c:2267 do_one_initcall+0x128/0x950 init/main.c:1298 do_initcall_level init/main.c:1371 [inline] do_initcalls init/main.c:1387 [inline] do_basic_setup init/main.c:1406 [inline] kernel_init_freeable+0x71c/0x7a0 init/main.c:1613 kernel_init+0x28/0x140 init/main.c:1502 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:867 irq event stamp: 200587 hardirqs last enabled at (200586): [] kasan_quarantine_put+0x108/0x254 mm/kasan/quarantine.c:231 hardirqs last disabled at (200587): [] __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:108 [inline] hardirqs last disabled at (200587): [] _raw_spin_lock_irqsave+0xfc/0x160 kernel/locking/spinlock.c:162 softirqs last enabled at (200254): [] spin_unlock_bh include/linux/spinlock.h:394 [inline] softirqs last enabled at (200254): [] nsim_dev_trap_report drivers/net/netdevsim/dev.c:814 [inline] softirqs last enabled at (200254): [] nsim_dev_trap_report_work+0x690/0x9ac drivers/net/netdevsim/dev.c:840 softirqs last disabled at (200269): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (200269): [] invoke_softirq kernel/softirq.c:439 [inline] softirqs last disabled at (200269): [] __irq_exit_rcu+0x208/0x4f0 kernel/softirq.c:637 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(&xa->xa_lock#6); lock(&xa->xa_lock#6); *** DEADLOCK *** 1 lock held by kworker/0:0/11102: #0: ffff80000de84a20 (rcu_callback){....}-{0:0}, at: rcu_do_batch kernel/rcu/tree.c:2524 [inline] #0: ffff80000de84a20 (rcu_callback){....}-{0:0}, at: rcu_core+0xbf8/0x1a00 kernel/rcu/tree.c:2786 stack backtrace: CPU: 0 PID: 11102 Comm: kworker/0:0 Tainted: G W 5.17.0-syzkaller-10734-gcb7cbaae7fd9 #0 Hardware name: linux,dummy-virt (DT) Workqueue: 0x0 (events) Call trace: dump_backtrace+0x1e0/0x270 arch/arm64/kernel/stacktrace.c:184 show_stack+0x18/0x70 arch/arm64/kernel/stacktrace.c:191 __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x9c/0xd8 lib/dump_stack.c:106 dump_stack+0x1c/0x38 lib/dump_stack.c:113 print_usage_bug.part.0+0x4c4/0x4e8 kernel/locking/lockdep.c:3935 print_usage_bug kernel/locking/lockdep.c:3905 [inline] valid_state kernel/locking/lockdep.c:3947 [inline] mark_lock_irq kernel/locking/lockdep.c:4156 [inline] mark_lock+0xf50/0x1360 kernel/locking/lockdep.c:4607 mark_usage kernel/locking/lockdep.c:4502 [inline] __lock_acquire+0x1030/0x49e0 kernel/locking/lockdep.c:4983 lock_acquire kernel/locking/lockdep.c:5641 [inline] lock_acquire+0x568/0x93c kernel/locking/lockdep.c:5606 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0xa8/0x160 kernel/locking/spinlock.c:162 xa_destroy+0x8c/0x240 lib/xarray.c:2207 blk_mq_release+0x208/0x2e4 block/blk-mq.c:3888 blk_release_queue+0x100/0x25c block/blk-sysfs.c:780 kobject_cleanup lib/kobject.c:705 [inline] kobject_release lib/kobject.c:736 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x170/0x460 lib/kobject.c:753 blk_put_queue+0x14/0x20 block/blk-core.c:270 blkg_free.part.0+0xdc/0x1a0 block/blk-cgroup.c:86 blkg_free block/blk-cgroup.c:78 [inline] __blkg_release+0xbc/0x110 block/blk-cgroup.c:102 rcu_do_batch kernel/rcu/tree.c:2535 [inline] rcu_core+0xc60/0x1a00 kernel/rcu/tree.c:2786 rcu_core_si+0x10/0x20 kernel/rcu/tree.c:2803 _stext+0x3f4/0xff8 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] invoke_softirq kernel/softirq.c:439 [inline] __irq_exit_rcu+0x208/0x4f0 kernel/softirq.c:637 irq_exit_rcu+0x14/0x80 kernel/softirq.c:649 __el1_irq arch/arm64/kernel/entry-common.c:459 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:473 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:478 el1h_64_irq+0x64/0x68 arch/arm64/kernel/entry.S:577 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:159 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:202 worker_thread+0x4f8/0xc40 kernel/workqueue.c:2456 kthread+0x234/0x2a0 kernel/kthread.c:376 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:867 BUG: sleeping function called from invalid context at block/blk-sysfs.c:766 in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 11898, name: syz-executor.0 preempt_count: 101, expected: 0 RCU nest depth: 0, expected: 0 INFO: lockdep is turned off. Preemption disabled at: [] preempt_schedule_irq+0x74/0x2a0 kernel/sched/core.c:6688 CPU: 0 PID: 11898 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller-10734-gcb7cbaae7fd9 #0 Hardware name: linux,dummy-virt (DT) Call trace: dump_backtrace+0x1e0/0x270 arch/arm64/kernel/stacktrace.c:184 show_stack+0x18/0x70 arch/arm64/kernel/stacktrace.c:191 __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x9c/0xd8 lib/dump_stack.c:106 dump_stack+0x1c/0x38 lib/dump_stack.c:113 __might_resched+0x3c8/0x530 kernel/sched/core.c:9733 __might_sleep+0x90/0x144 kernel/sched/core.c:9662 blk_release_queue+0x30/0x25c block/blk-sysfs.c:766 kobject_cleanup lib/kobject.c:705 [inline] kobject_release lib/kobject.c:736 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x170/0x460 lib/kobject.c:753 blk_put_queue+0x14/0x20 block/blk-core.c:270 blkg_free.part.0+0xdc/0x1a0 block/blk-cgroup.c:86 blkg_free block/blk-cgroup.c:78 [inline] __blkg_release+0xbc/0x110 block/blk-cgroup.c:102 rcu_do_batch kernel/rcu/tree.c:2535 [inline] rcu_core+0xc60/0x1a00 kernel/rcu/tree.c:2786 rcu_core_si+0x10/0x20 kernel/rcu/tree.c:2803 _stext+0x3f4/0xff8 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] invoke_softirq kernel/softirq.c:439 [inline] __irq_exit_rcu+0x208/0x4f0 kernel/softirq.c:637 irq_exit_rcu+0x14/0x80 kernel/softirq.c:649 __el1_irq arch/arm64/kernel/entry-common.c:459 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:473 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:478 el1h_64_irq+0x64/0x68 arch/arm64/kernel/entry.S:577 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] raw_spin_rq_unlock_irq kernel/sched/sched.h:1315 [inline] finish_lock_switch kernel/sched/core.c:4833 [inline] finish_task_switch.isra.0+0x1f0/0x7dc kernel/sched/core.c:4951 context_switch kernel/sched/core.c:5076 [inline] __schedule+0x838/0x1c80 kernel/sched/core.c:6382 preempt_schedule_irq+0x84/0x2a0 kernel/sched/core.c:6690 arm64_preempt_schedule_irq+0x3c/0x60 arch/arm64/kernel/entry-common.c:265 __el1_irq arch/arm64/kernel/entry-common.c:461 [inline] el1_interrupt+0x3c/0x54 arch/arm64/kernel/entry-common.c:473 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:478 el1h_64_irq+0x64/0x68 arch/arm64/kernel/entry.S:577 __mutex_unlock_slowpath+0x10c/0x530 kernel/locking/mutex.c:904 mutex_unlock+0x68/0x110 kernel/locking/mutex.c:540 bio_find_or_create_slab block/bio.c:124 [inline] bioset_init+0x254/0x650 block/bio.c:1688 blk_alloc_queue+0xd0/0x654 block/blk-core.c:459 blk_mq_init_queue_data block/blk-mq.c:3903 [inline] __blk_mq_alloc_disk+0x80/0x15c block/blk-mq.c:3927 loop_add+0x29c/0x7ac drivers/block/loop.c:2011 loop_control_ioctl+0x150/0x3cc drivers/block/loop.c:2185 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl fs/ioctl.c:910 [inline] __arm64_compat_sys_ioctl+0x1d0/0x220 fs/ioctl.c:910 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x254 arch/arm64/kernel/syscall.c:142 do_el0_svc_compat+0x40/0x80 arch/arm64/kernel/syscall.c:187 el0_svc_compat+0x70/0x294 arch/arm64/kernel/entry-common.c:749 el0t_32_sync_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:759 el0t_32_sync+0x190/0x194 arch/arm64/kernel/entry.S:586 BUG: scheduling while atomic: syz-executor.0/11898/0x00000102 INFO: lockdep is turned off. Modules linked in: Preemption disabled at: [] preempt_schedule_irq+0x74/0x2a0 kernel/sched/core.c:6688 CPU: 0 PID: 11898 Comm: syz-executor.0 Tainted: G W 5.17.0-syzkaller-10734-gcb7cbaae7fd9 #0 Hardware name: linux,dummy-virt (DT) Call trace: dump_backtrace+0x1e0/0x270 arch/arm64/kernel/stacktrace.c:184 show_stack+0x18/0x70 arch/arm64/kernel/stacktrace.c:191 __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x9c/0xd8 lib/dump_stack.c:106 dump_stack+0x1c/0x38 lib/dump_stack.c:113 __schedule_bug+0x1d8/0x1f0 kernel/sched/core.c:5617 schedule_debug kernel/sched/core.c:5644 [inline] __schedule+0x1638/0x1c80 kernel/sched/core.c:6273 schedule+0xb8/0x1c4 kernel/sched/core.c:6454 schedule_preempt_disabled+0x18/0x30 kernel/sched/core.c:6513 mutex_optimistic_spin kernel/locking/mutex.c:507 [inline] __mutex_lock_common kernel/locking/mutex.c:603 [inline] __mutex_lock+0x6d4/0x7ec kernel/locking/mutex.c:733 mutex_lock_nested+0x78/0x100 kernel/locking/mutex.c:785 bio_put_slab block/bio.c:136 [inline] bioset_exit+0x264/0x4a0 block/bio.c:1647 blk_release_queue+0x160/0x25c block/blk-sysfs.c:790 kobject_cleanup lib/kobject.c:705 [inline] kobject_release lib/kobject.c:736 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x170/0x460 lib/kobject.c:753 blk_put_queue+0x14/0x20 block/blk-core.c:270 blkg_free.part.0+0xdc/0x1a0 block/blk-cgroup.c:86 blkg_free block/blk-cgroup.c:78 [inline] __blkg_release+0xbc/0x110 block/blk-cgroup.c:102 rcu_do_batch kernel/rcu/tree.c:2535 [inline] rcu_core+0xc60/0x1a00 kernel/rcu/tree.c:2786 rcu_core_si+0x10/0x20 kernel/rcu/tree.c:2803 _stext+0x3f4/0xff8 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] invoke_softirq kernel/softirq.c:439 [inline] __irq_exit_rcu+0x208/0x4f0 kernel/softirq.c:637 irq_exit_rcu+0x14/0x80 kernel/softirq.c:649 __el1_irq arch/arm64/kernel/entry-common.c:459 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:473 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:478 el1h_64_irq+0x64/0x68 arch/arm64/kernel/entry.S:577 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] raw_spin_rq_unlock_irq kernel/sched/sched.h:1315 [inline] finish_lock_switch kernel/sched/core.c:4833 [inline] finish_task_switch.isra.0+0x1f0/0x7dc kernel/sched/core.c:4951 context_switch kernel/sched/core.c:5076 [inline] __schedule+0x838/0x1c80 kernel/sched/core.c:6382 preempt_schedule_irq+0x84/0x2a0 kernel/sched/core.c:6690 arm64_preempt_schedule_irq+0x3c/0x60 arch/arm64/kernel/entry-common.c:265 __el1_irq arch/arm64/kernel/entry-common.c:461 [inline] el1_interrupt+0x3c/0x54 arch/arm64/kernel/entry-common.c:473 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:478 el1h_64_irq+0x64/0x68 arch/arm64/kernel/entry.S:577 __mutex_unlock_slowpath+0x10c/0x530 kernel/locking/mutex.c:904 mutex_unlock+0x68/0x110 kernel/locking/mutex.c:540 bio_find_or_create_slab block/bio.c:124 [inline] bioset_init+0x254/0x650 block/bio.c:1688 blk_alloc_queue+0xd0/0x654 block/blk-core.c:459 blk_mq_init_queue_data block/blk-mq.c:3903 [inline] __blk_mq_alloc_disk+0x80/0x15c block/blk-mq.c:3927 loop_add+0x29c/0x7ac drivers/block/loop.c:2011 loop_control_ioctl+0x150/0x3cc drivers/block/loop.c:2185 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl fs/ioctl.c:910 [inline] __arm64_compat_sys_ioctl+0x1d0/0x220 fs/ioctl.c:910 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x254 arch/arm64/kernel/syscall.c:142 do_el0_svc_compat+0x40/0x80 arch/arm64/kernel/syscall.c:187 el0_svc_compat+0x70/0x294 arch/arm64/kernel/entry-common.c:749 el0t_32_sync_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:759 el0t_32_sync+0x190/0x194 arch/arm64/kernel/entry.S:586 ------------[ cut here ]------------ WARNING: CPU: 0 PID: 2194 at kernel/rcu/tree.c:2592 rcu_do_batch kernel/rcu/tree.c:2500 [inline] WARNING: CPU: 0 PID: 2194 at kernel/rcu/tree.c:2592 rcu_core+0x1508/0x1a00 kernel/rcu/tree.c:2786 Modules linked in: CPU: 0 PID: 2194 Comm: syz-executor.1 Tainted: G W 5.17.0-syzkaller-10734-gcb7cbaae7fd9 #0 Hardware name: linux,dummy-virt (DT) pstate: 000000c5 (nzcv daIF -PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : rcu_do_batch kernel/rcu/tree.c:2592 [inline] pc : rcu_core+0x1508/0x1a00 kernel/rcu/tree.c:2786 lr : rcu_do_batch kernel/rcu/tree.c:2572 [inline] lr : rcu_core+0x1124/0x1a00 kernel/rcu/tree.c:2786 sp : ffff800013437600 x29: ffff800013437600 x28: ffff800008308a34 x27: ffff8000083089dc x26: ffff800013437710 x25: 0000000000000000 x24: ffff00006aa35c20 x23: ffff000009d31ac0 x22: 0000000000000000 x21: 000000000001d80d x20: 0000000000000001 x19: 0000000000000000 x18: 0000000000000000 x17: ffff80005cde3000 x16: ffff800008008000 x15: 00004c4b40000000 x14: 0000000000000000 x13: 0000000000000000 x12: ffff700002686e99 x11: 1ffff00002686e98 x10: ffff700002686e98 x9 : dfff800000000000 x8 : ffff8000134374c7 x7 : 0000000000000001 x6 : 00008ffffd979168 x5 : ffff8000134374c0 x4 : 1ffff00002686eac x3 : 1fffe0000d546b8d x2 : 0000000000000000 x1 : 1fffe0000d546b84 x0 : 0000000000000000 Call trace: rcu_do_batch kernel/rcu/tree.c:2500 [inline] rcu_core+0x1508/0x1a00 kernel/rcu/tree.c:2786 rcu_core_si+0x10/0x20 kernel/rcu/tree.c:2803 _stext+0x3f4/0xff8 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] invoke_softirq kernel/softirq.c:439 [inline] __irq_exit_rcu+0x208/0x4f0 kernel/softirq.c:637 irq_exit_rcu+0x14/0x80 kernel/softirq.c:649 __el1_irq arch/arm64/kernel/entry-common.c:459 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:473 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:478 el1h_64_irq+0x64/0x68 arch/arm64/kernel/entry.S:577 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:194 __debug_object_init+0x398/0xec0 lib/debugobjects.c:605 debug_object_init_on_stack+0x28/0x3c lib/debugobjects.c:635 hrtimer_init_sleeper_on_stack kernel/time/hrtimer.c:445 [inline] hrtimer_nanosleep+0x12c/0x2e0 kernel/time/hrtimer.c:2095 common_nsleep+0x78/0xd0 kernel/time/posix-timers.c:1227 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1267 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1245 [inline] __arm64_sys_clock_nanosleep+0x208/0x320 kernel/time/posix-timers.c:1245 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x254 arch/arm64/kernel/syscall.c:142 do_el0_svc_compat+0x40/0x80 arch/arm64/kernel/syscall.c:187 el0_svc_compat+0x70/0x294 arch/arm64/kernel/entry-common.c:749 el0t_32_sync_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:759 el0t_32_sync+0x190/0x194 arch/arm64/kernel/entry.S:586 irq event stamp: 23292418 hardirqs last enabled at (23292417): [] preempt_schedule_irq+0x78/0x2a0 kernel/sched/core.c:6689 hardirqs last disabled at (23292418): [] __schedule+0xc1c/0x1c80 kernel/sched/core.c:6278 softirqs last enabled at (23292416): [] _stext+0x964/0xff8 softirqs last disabled at (23292389): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (23292389): [] invoke_softirq kernel/softirq.c:439 [inline] softirqs last disabled at (23292389): [] __irq_exit_rcu+0x208/0x4f0 kernel/softirq.c:637 ---[ end trace 0000000000000000 ]---