kobject: 'loop1' (00000000c0d4a17c): kobject_uevent_env ================================ kobject: 'loop1' (00000000c0d4a17c): fill_kobj_path: path = '/devices/virtual/block/loop1' WARNING: inconsistent lock state 4.20.0-rc7+ #157 Not tainted -------------------------------- inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-W} usage. syz-executor3/6211 [HC0[0]:SC1[1]:HE1:SE0] takes: 00000000f8a4ec49 (fs_reclaim){+.?.}, at: fs_reclaim_acquire.part.97+0x0/0x30 mm/internal.h:79 kobject: 'loop4' (00000000494dec33): kobject_uevent_env {SOFTIRQ-ON-W} state was registered at: lock_acquire+0x1ed/0x520 kernel/locking/lockdep.c:3844 __fs_reclaim_acquire mm/page_alloc.c:3730 [inline] fs_reclaim_acquire.part.97+0x24/0x30 mm/page_alloc.c:3741 fs_reclaim_acquire+0x14/0x20 mm/page_alloc.c:3742 slab_pre_alloc_hook mm/slab.h:418 [inline] slab_alloc_node mm/slab.c:3299 [inline] kmem_cache_alloc_node_trace+0x3c/0x740 mm/slab.c:3661 kobject: 'loop4' (00000000494dec33): fill_kobj_path: path = '/devices/virtual/block/loop4' kmalloc_node include/linux/slab.h:584 [inline] kzalloc_node include/linux/slab.h:752 [inline] alloc_worker+0xc5/0x300 kernel/workqueue.c:1704 init_rescuer.part.24+0x1f/0x190 kernel/workqueue.c:4028 init_rescuer kernel/workqueue.c:4025 [inline] workqueue_init+0x491/0x744 kernel/workqueue.c:5794 kernel_init_freeable+0x3bb/0x6bf init/main.c:1139 kernel_init+0x11/0x1ae init/main.c:1071 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:352 irq event stamp: 690686 hardirqs last enabled at (690686): [] console_unlock+0xcfb/0x1190 kernel/printk/printk.c:2443 hardirqs last disabled at (690685): [] console_unlock+0x2d9/0x1190 kernel/printk/printk.c:2353 softirqs last enabled at (688772): [] __do_softirq+0x7df/0xb7e kernel/softirq.c:319 softirqs last disabled at (690631): [] invoke_softirq kernel/softirq.c:373 [inline] softirqs last disabled at (690631): [] irq_exit+0x17f/0x1c0 kernel/softirq.c:413 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(fs_reclaim); lock(fs_reclaim); *** DEADLOCK *** 1 lock held by syz-executor3/6211: #0: 00000000947be04e (rcu_callback){....}, at: __rcu_reclaim kernel/rcu/rcu.h:228 [inline] #0: 00000000947be04e (rcu_callback){....}, at: rcu_do_batch kernel/rcu/tree.c:2437 [inline] #0: 00000000947be04e (rcu_callback){....}, at: invoke_rcu_callbacks kernel/rcu/tree.c:2716 [inline] #0: 00000000947be04e (rcu_callback){....}, at: rcu_process_callbacks+0x1103/0x1ac0 kernel/rcu/tree.c:2697 stack backtrace: CPU: 0 PID: 6211 Comm: syz-executor3 Not tainted 4.20.0-rc7+ #157 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x244/0x39d lib/dump_stack.c:113 print_usage_bug.cold.59+0x320/0x41a kernel/locking/lockdep.c:2472 valid_state kernel/locking/lockdep.c:2485 [inline] mark_lock_irq kernel/locking/lockdep.c:2679 [inline] mark_lock+0x1276/0x1cd0 kernel/locking/lockdep.c:3059 mark_irqflags kernel/locking/lockdep.c:2937 [inline] __lock_acquire+0x155f/0x4c20 kernel/locking/lockdep.c:3298 lock_acquire+0x1ed/0x520 kernel/locking/lockdep.c:3844 __fs_reclaim_acquire mm/page_alloc.c:3730 [inline] fs_reclaim_acquire.part.97+0x24/0x30 mm/page_alloc.c:3741 fs_reclaim_acquire+0x14/0x20 mm/page_alloc.c:3742 slab_pre_alloc_hook mm/slab.h:418 [inline] slab_alloc mm/slab.c:3378 [inline] kmem_cache_alloc_trace+0x2d/0x750 mm/slab.c:3618 kmalloc include/linux/slab.h:546 [inline] kzalloc include/linux/slab.h:741 [inline] kobject_uevent_env+0x2f3/0x101e lib/kobject_uevent.c:514 kobject_uevent+0x1f/0x24 lib/kobject_uevent.c:636 kobject_cleanup lib/kobject.c:649 [inline] kobject_release lib/kobject.c:691 [inline] kref_put include/linux/kref.h:70 [inline] kobject_put.cold.9+0x170/0x2e4 lib/kobject.c:708 put_device+0x20/0x30 drivers/base/core.c:2024 delete_partition_rcu_cb+0x147/0x1b0 block/partition-generic.c:259 __rcu_reclaim kernel/rcu/rcu.h:240 [inline] rcu_do_batch kernel/rcu/tree.c:2437 [inline] invoke_rcu_callbacks kernel/rcu/tree.c:2716 [inline] rcu_process_callbacks+0x100a/0x1ac0 kernel/rcu/tree.c:2697 __do_softirq+0x308/0xb7e kernel/softirq.c:292 invoke_softirq kernel/softirq.c:373 [inline] irq_exit+0x17f/0x1c0 kernel/softirq.c:413 exiting_irq arch/x86/include/asm/apic.h:536 [inline] smp_apic_timer_interrupt+0x1cb/0x760 arch/x86/kernel/apic/apic.c:1061 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:807 RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:761 [inline] RIP: 0010:lock_is_held_type+0x18b/0x210 kernel/locking/lockdep.c:3884 Code: ff df 41 c7 84 24 7c 08 00 00 00 00 00 00 48 89 fa 48 c1 ea 03 80 3c 02 00 75 63 48 83 3d 8c 29 f1 07 00 74 30 48 89 df 57 9d <0f> 1f 44 00 00 48 83 c4 08 44 89 e8 5b 41 5c 41 5d 5d c3 48 83 c4 RSP: 0018:ffff8881adeff810 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 RAX: dffffc0000000000 RBX: 0000000000000286 RCX: ffffffff83933b9a RDX: 1ffffffff12a401e RSI: 00000000ffffffff RDI: 0000000000000286 RBP: ffff8881adeff830 R08: ffff8881adef6080 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881adef6080 R13: 0000000000000000 R14: ffff8881dae2cc80 R15: ffff8881adef6080 lock_is_held include/linux/lockdep.h:339 [inline] schedule_debug kernel/sched/core.c:3292 [inline] __schedule+0xa0c/0x21d0 kernel/sched/core.c:3394 schedule+0xfe/0x460 kernel/sched/core.c:3516 freezable_schedule include/linux/freezer.h:172 [inline] do_nanosleep+0x21e/0x750 kernel/time/hrtimer.c:1688 hrtimer_nanosleep+0x2d4/0x620 kernel/time/hrtimer.c:1742 __do_sys_nanosleep kernel/time/hrtimer.c:1776 [inline] __se_sys_nanosleep kernel/time/hrtimer.c:1763 [inline] __x64_sys_nanosleep+0x1e7/0x280 kernel/time/hrtimer.c:1763 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x483160 Code: 00 00 48 c7 c0 d4 ff ff ff 64 c7 00 16 00 00 00 31 c0 eb be 66 0f 1f 44 00 00 83 3d 11 33 5c 00 00 75 14 b8 23 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 d4 f8 f8 ff c3 48 83 ec 08 e8 ba 70 fd ff RSP: 002b:00007ffd6caf13f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000023 RAX: ffffffffffffffda RBX: 00000000000443d8 RCX: 0000000000483160 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007ffd6caf1400 RBP: 00000000000001b1 R08: 0000000000000001 R09: 0000000000ddd940 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008 R13: 00000000000441ff R14: 0000000000000032 R15: 0000000000000003 BUG: sleeping function called from invalid context at mm/slab.h:421 in_atomic(): 1, irqs_disabled(): 0, pid: 6211, name: syz-executor3 INFO: lockdep is turned off. Preemption disabled at: [] schedule+0xf7/0x460 kernel/sched/core.c:3515 CPU: 0 PID: 6211 Comm: syz-executor3 Not tainted 4.20.0-rc7+ #157 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x244/0x39d lib/dump_stack.c:113 kobject: 'loop1' (00000000c0d4a17c): kobject_uevent_env kobject: 'loop1' (00000000c0d4a17c): fill_kobj_path: path = '/devices/virtual/block/loop1' ___might_sleep.cold.86+0x221/0x254 kernel/sched/core.c:6148 __might_sleep+0x95/0x190 kernel/sched/core.c:6101 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3378 [inline] kmem_cache_alloc_trace+0x2cd/0x750 mm/slab.c:3618 kmalloc include/linux/slab.h:546 [inline] kzalloc include/linux/slab.h:741 [inline] kobject_uevent_env+0x2f3/0x101e lib/kobject_uevent.c:514 kobject_uevent+0x1f/0x24 lib/kobject_uevent.c:636 kobject_cleanup lib/kobject.c:649 [inline] kobject_release lib/kobject.c:691 [inline] kref_put include/linux/kref.h:70 [inline] kobject_put.cold.9+0x170/0x2e4 lib/kobject.c:708 put_device+0x20/0x30 drivers/base/core.c:2024 delete_partition_rcu_cb+0x147/0x1b0 block/partition-generic.c:259 __rcu_reclaim kernel/rcu/rcu.h:240 [inline] rcu_do_batch kernel/rcu/tree.c:2437 [inline] invoke_rcu_callbacks kernel/rcu/tree.c:2716 [inline] rcu_process_callbacks+0x100a/0x1ac0 kernel/rcu/tree.c:2697 __do_softirq+0x308/0xb7e kernel/softirq.c:292 invoke_softirq kernel/softirq.c:373 [inline] irq_exit+0x17f/0x1c0 kernel/softirq.c:413 exiting_irq arch/x86/include/asm/apic.h:536 [inline] smp_apic_timer_interrupt+0x1cb/0x760 arch/x86/kernel/apic/apic.c:1061 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:807 RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:761 [inline] RIP: 0010:lock_is_held_type+0x18b/0x210 kernel/locking/lockdep.c:3884 Code: ff df 41 c7 84 24 7c 08 00 00 00 00 00 00 48 89 fa 48 c1 ea 03 80 3c 02 00 75 63 48 83 3d 8c 29 f1 07 00 74 30 48 89 df 57 9d <0f> 1f 44 00 00 48 83 c4 08 44 89 e8 5b 41 5c 41 5d 5d c3 48 83 c4 RSP: 0018:ffff8881adeff810 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 RAX: dffffc0000000000 RBX: 0000000000000286 RCX: ffffffff83933b9a RDX: 1ffffffff12a401e RSI: 00000000ffffffff RDI: 0000000000000286 RBP: ffff8881adeff830 R08: ffff8881adef6080 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881adef6080 R13: 0000000000000000 R14: ffff8881dae2cc80 R15: ffff8881adef6080 lock_is_held include/linux/lockdep.h:339 [inline] schedule_debug kernel/sched/core.c:3292 [inline] __schedule+0xa0c/0x21d0 kernel/sched/core.c:3394 schedule+0xfe/0x460 kernel/sched/core.c:3516 freezable_schedule include/linux/freezer.h:172 [inline] do_nanosleep+0x21e/0x750 kernel/time/hrtimer.c:1688 hrtimer_nanosleep+0x2d4/0x620 kernel/time/hrtimer.c:1742 __do_sys_nanosleep kernel/time/hrtimer.c:1776 [inline] __se_sys_nanosleep kernel/time/hrtimer.c:1763 [inline] __x64_sys_nanosleep+0x1e7/0x280 kernel/time/hrtimer.c:1763 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x483160 Code: 00 00 48 c7 c0 d4 ff ff ff 64 c7 00 16 00 00 00 31 c0 eb be 66 0f 1f 44 00 00 83 3d 11 33 5c 00 00 75 14 b8 23 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 d4 f8 f8 ff c3 48 83 ec 08 e8 ba 70 fd ff RSP: 002b:00007ffd6caf13f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000023 RAX: ffffffffffffffda RBX: 00000000000443d8 RCX: 0000000000483160 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007ffd6caf1400 RBP: 00000000000001b1 R08: 0000000000000001 R09: 0000000000ddd940 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008 R13: 00000000000441ff R14: 0000000000000032 R15: 0000000000000003 kobject: 'loop0p242' (000000008d772a82): fill_kobj_path: path = '/loop0p242' kobject: 'loop0p242' (000000008d772a82): calling ktype release kobject: 'loop0p242': free name kobject: 'loop2' (0000000077e5e1e9): kobject_uevent_env kobject: 'loop2' (0000000077e5e1e9): fill_kobj_path: path = '/devices/virtual/block/loop2' kobject: 'loop5' (00000000e1abc315): kobject_uevent_env kobject: 'loop5' (00000000e1abc315): fill_kobj_path: path = '/devices/virtual/block/loop5' kobject: 'loop0' (00000000129cc729): kobject_uevent_env kobject: 'loop0' (00000000129cc729): fill_kobj_path: path = '/devices/virtual/block/loop0' kobject: 'loop4' (00000000494dec33): kobject_uevent_env kobject: 'loop4' (00000000494dec33): fill_kobj_path: path = '/devices/virtual/block/loop4' kobject: 'loop3' (000000006a2e51c7): kobject_uevent_env kobject: 'loop3' (000000006a2e51c7): fill_kobj_path: path = '/devices/virtual/block/loop3' kobject: 'holders' (000000008edbf942): kobject_cleanup, parent 0000000018a8eadb kobject: 'loop2' (0000000077e5e1e9): kobject_uevent_env kobject: 'holders' (000000008edbf942): auto cleanup kobject_del kobject: 'loop2' (0000000077e5e1e9): fill_kobj_path: path = '/devices/virtual/block/loop2' kobject: 'holders' (000000008edbf942): calling ktype release kobject: (000000008edbf942): dynamic_kobj_release kobject: 'holders': free name kobject: 'loop0p243' (0000000018a8eadb): kobject_uevent_env FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 9138 Comm: syz-executor5 Tainted: G W 4.20.0-rc7+ #157 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x244/0x39d lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x17 lib/fault-inject.c:149 __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1578 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc mm/slab.c:3378 [inline] __do_kmalloc mm/slab.c:3720 [inline] __kmalloc+0x2e0/0x760 mm/slab.c:3731 kmalloc include/linux/slab.h:551 [inline] kzalloc include/linux/slab.h:741 [inline] kobject_get_path+0xc2/0x1b0 lib/kobject.c:171 kobject_uevent_env+0x314/0x101e lib/kobject_uevent.c:519 kobject_uevent+0x1f/0x24 lib/kobject_uevent.c:636 device_del+0x6c9/0xb70 drivers/base/core.c:2091 delete_partition+0x233/0x2c0 block/partition-generic.c:288 blkpg_ioctl+0x3c5/0xc10 block/ioctl.c:93 blkdev_ioctl+0x6b7/0x21b0 block/ioctl.c:577 block_ioctl+0xee/0x130 fs/block_dev.c:1883 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:509 [inline] do_vfs_ioctl+0x1de/0x1790 fs/ioctl.c:696 ksys_ioctl+0xa9/0xd0 fs/ioctl.c:713 __do_sys_ioctl fs/ioctl.c:720 [inline] __se_sys_ioctl fs/ioctl.c:718 [inline] __x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:718 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x457669 Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 RSP: 002b:00007f601106bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f601106bc90 RCX: 0000000000457669 RDX: 00000000200006c0 RSI: 0000000000001269 RDI: 0000000000000004 RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f601106c6d4 R13: 00000000004beb9d R14: 00000000004cf838 R15: 0000000000000005 kobject: 'loop4' (00000000494dec33): kobject_uevent_env kobject: 'loop4' (00000000494dec33): fill_kobj_path: path = '/devices/virtual/block/loop4' kobject: 'loop1' (00000000c0d4a17c): kobject_uevent_env kobject: 'loop1' (00000000c0d4a17c): fill_kobj_path: path = '/devices/virtual/block/loop1' kobject: 'loop0' (00000000129cc729): kobject_uevent_env kobject: 'loop0' (00000000129cc729): fill_kobj_path: path = '/devices/virtual/block/loop0' kobject: 'loop0p243' (0000000018a8eadb): kobject_cleanup, parent (null) kobject: 'loop0p243' (0000000018a8eadb): auto cleanup 'remove' event kobject: 'loop0p243' (0000000018a8eadb): kobject_uevent_env BUG: sleeping function called from invalid context at mm/slab.h:421 in_atomic(): 1, irqs_disabled(): 0, pid: 3714, name: udevd INFO: lockdep is turned off. Preemption disabled at: [] vprintk_emit+0x36d/0x990 kernel/printk/printk.c:1915 CPU: 0 PID: 3714 Comm: udevd Tainted: G W 4.20.0-rc7+ #157 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x244/0x39d lib/dump_stack.c:113 ___might_sleep.cold.86+0x221/0x254 kernel/sched/core.c:6148 __might_sleep+0x95/0x190 kernel/sched/core.c:6101 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3378 [inline] kmem_cache_alloc_trace+0x2cd/0x750 mm/slab.c:3618 kmalloc include/linux/slab.h:546 [inline] kzalloc include/linux/slab.h:741 [inline] kobject_uevent_env+0x2f3/0x101e lib/kobject_uevent.c:514 kobject_uevent+0x1f/0x24 lib/kobject_uevent.c:636 kobject_cleanup lib/kobject.c:649 [inline] kobject_release lib/kobject.c:691 [inline] kref_put include/linux/kref.h:70 [inline] kobject_put.cold.9+0x170/0x2e4 lib/kobject.c:708 put_device+0x20/0x30 drivers/base/core.c:2024 delete_partition_rcu_cb+0x147/0x1b0 block/partition-generic.c:259 __rcu_reclaim kernel/rcu/rcu.h:240 [inline] rcu_do_batch kernel/rcu/tree.c:2437 [inline] invoke_rcu_callbacks kernel/rcu/tree.c:2716 [inline] rcu_process_callbacks+0x100a/0x1ac0 kernel/rcu/tree.c:2697 __do_softirq+0x308/0xb7e kernel/softirq.c:292 invoke_softirq kernel/softirq.c:373 [inline] irq_exit+0x17f/0x1c0 kernel/softirq.c:413 exiting_irq arch/x86/include/asm/apic.h:536 [inline] smp_apic_timer_interrupt+0x1cb/0x760 arch/x86/kernel/apic/apic.c:1061 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:807 RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:761 [inline] RIP: 0010:console_unlock+0xf41/0x1190 kernel/printk/printk.c:2422 Code: 48 89 f8 48 c1 e8 03 42 80 3c 30 00 0f 85 54 02 00 00 48 83 3d 9f 84 ec 07 00 74 72 e8 18 08 1a 00 48 8b bd b0 fe ff ff 57 9d <0f> 1f 44 00 00 e9 f3 f2 ff ff e8 00 08 1a 00 0f 0b e8 f9 07 1a 00 RSP: 0018:ffff8881c037f418 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13 RAX: ffff8881c03720c0 RBX: 0000000000000200 RCX: ffffffff8185acea RDX: 0000000000000000 RSI: ffffffff81657c58 RDI: 0000000000000293 RBP: ffff8881c037f588 R08: ffff8881c03720c0 R09: fffffbfff12b22d8 R10: fffffbfff12b22d8 R11: ffffffff895916c3 R12: 0000000000000000 R13: ffffffff849c7860 R14: dffffc0000000000 R15: ffffffff89b638d0 vprintk_emit+0x391/0x990 kernel/printk/printk.c:1922 vprintk_default+0x28/0x30 kernel/printk/printk.c:1964 vprintk_func+0x7e/0x181 kernel/printk/printk_safe.c:398 printk+0xa7/0xcf kernel/printk/printk.c:1997 fill_kobj_path lib/kobject.c:151 [inline] kobject_get_path.cold.8+0x38/0x47 lib/kobject.c:174 kobject_uevent_env+0x314/0x101e lib/kobject_uevent.c:519 kobject_synth_uevent.cold.5+0x10e/0x17b lib/kobject_uevent.c:208 uevent_store+0x26/0x70 drivers/base/core.c:1070 dev_attr_store+0x5e/0x90 drivers/base/core.c:781 sysfs_kf_write+0x118/0x170 fs/sysfs/file.c:139 kernfs_fop_write+0x2ba/0x480 fs/kernfs/file.c:316 __vfs_write+0x119/0x9f0 fs/read_write.c:485 vfs_write+0x1fc/0x560 fs/read_write.c:549 ksys_write+0x101/0x260 fs/read_write.c:598 __do_sys_write fs/read_write.c:610 [inline] __se_sys_write fs/read_write.c:607 [inline] __x64_sys_write+0x73/0xb0 fs/read_write.c:607 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f7355389370 Code: 73 01 c3 48 8b 0d c8 4a 2b 00 31 d2 48 29 c2 64 89 11 48 83 c8 ff eb ea 90 90 83 3d 85 a2 2b 00 00 75 10 b8 01 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 0e 8a 01 00 48 89 04 24 RSP: 002b:00007fffc383e508 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 00000000016a6b40 RCX: 00007f7355389370 RDX: 0000000000000006 RSI: 000000000041f4f9 RDI: 000000000000000b RBP: 00000000016d7520 R08: 000000000041f4f1 R09: 00007f73553df7d0 R10: 7269762f73656369 R11: 0000000000000246 R12: 000000000000000b R13: 0000000000000000 R14: 00000000016a6b40 R15: 000000000168d030 kobject: 'loop0p243' (0000000018a8eadb): fill_kobj_path: path = '/loop0p243' kobject: 'loop0p243' (0000000018a8eadb): calling ktype release kobject: 'loop0p243': free name kobject: 'holders' (00000000214ade69): kobject_cleanup, parent 000000004d8ace77 kobject: 'loop5' (00000000e1abc315): kobject_uevent_env kobject: 'holders' (00000000214ade69): auto cleanup kobject_del kobject: 'loop5' (00000000e1abc315): fill_kobj_path: path = '/devices/virtual/block/loop5' kobject: 'holders' (00000000214ade69): calling ktype release kobject: 'loop2' (0000000077e5e1e9): kobject_uevent_env kobject: (00000000214ade69): dynamic_kobj_release kobject: 'loop2' (0000000077e5e1e9): fill_kobj_path: path = '/devices/virtual/block/loop2' kobject: 'holders': free name kobject: 'loop4' (00000000494dec33): kobject_uevent_env kobject: 'loop0p245' (000000004d8ace77): kobject_uevent_env kobject: 'loop4' (00000000494dec33): fill_kobj_path: path = '/devices/virtual/block/loop4' kobject: 'loop0p245' (000000004d8ace77): fill_kobj_path: path = '/devices/virtual/block/loop0/loop0p245' FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 9160 Comm: syz-executor5 Tainted: G W 4.20.0-rc7+ #157 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x244/0x39d lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x17 lib/fault-inject.c:149 __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1578 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc_node mm/slab.c:3299 [inline] kmem_cache_alloc_node+0x26e/0x730 mm/slab.c:3642 __alloc_skb+0x119/0x770 net/core/skbuff.c:193 alloc_skb include/linux/skbuff.h:997 [inline] alloc_uevent_skb+0x84/0x1da lib/kobject_uevent.c:288 uevent_net_broadcast_untagged lib/kobject_uevent.c:324 [inline] kobject_uevent_net_broadcast lib/kobject_uevent.c:406 [inline] kobject_uevent_env+0xa52/0x101e lib/kobject_uevent.c:587 kobject_uevent+0x1f/0x24 lib/kobject_uevent.c:636 device_del+0x6c9/0xb70 drivers/base/core.c:2091 delete_partition+0x233/0x2c0 block/partition-generic.c:288 blkpg_ioctl+0x3c5/0xc10 block/ioctl.c:93 blkdev_ioctl+0x6b7/0x21b0 block/ioctl.c:577 block_ioctl+0xee/0x130 fs/block_dev.c:1883 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:509 [inline] do_vfs_ioctl+0x1de/0x1790 fs/ioctl.c:696 ksys_ioctl+0xa9/0xd0 fs/ioctl.c:713 __do_sys_ioctl fs/ioctl.c:720 [inline] __se_sys_ioctl fs/ioctl.c:718 [inline] __x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:718 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x457669 Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 RSP: 002b:00007f601106bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f601106bc90 RCX: 0000000000457669 RDX: 00000000200006c0 RSI: 0000000000001269 RDI: 0000000000000004 RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f601106c6d4 R13: 00000000004beb9d R14: 00000000004cf838 R15: 0000000000000005 kobject: 'loop0' (00000000129cc729): kobject_uevent_env kobject: 'loop0' (00000000129cc729): fill_kobj_path: path = '/devices/virtual/block/loop0' kobject: 'loop2' (0000000077e5e1e9): kobject_uevent_env kobject: 'loop2' (0000000077e5e1e9): fill_kobj_path: path = '/devices/virtual/block/loop2' kobject: 'loop5' (00000000e1abc315): kobject_uevent_env kobject: 'loop5' (00000000e1abc315): fill_kobj_path: path = '/devices/virtual/block/loop5' kobject: 'loop0p245' (000000004d8ace77): kobject_cleanup, parent (null) kobject: 'loop0p245' (000000004d8ace77): calling ktype release kobject: 'loop0p245': free name kobject: 'loop3' (000000006a2e51c7): kobject_uevent_env kobject: 'loop3' (000000006a2e51c7): fill_kobj_path: path = '/devices/virtual/block/loop3' kobject: 'loop2' (0000000077e5e1e9): kobject_uevent_env kobject: 'loop2' (0000000077e5e1e9): fill_kobj_path: path = '/devices/virtual/block/loop2' kobject: 'loop4' (00000000494dec33): kobject_uevent_env kobject: 'loop4' (00000000494dec33): fill_kobj_path: path = '/devices/virtual/block/loop4' kobject: 'loop1' (00000000c0d4a17c): kobject_uevent_env kobject: 'loop1' (00000000c0d4a17c): fill_kobj_path: path = '/devices/virtual/block/loop1' kobject: 'loop0' (00000000129cc729): kobject_uevent_env kobject: 'loop0' (00000000129cc729): fill_kobj_path: path = '/devices/virtual/block/loop0' kobject: 'loop5' (00000000e1abc315): kobject_uevent_env kobject: 'loop5' (00000000e1abc315): fill_kobj_path: path = '/devices/virtual/block/loop5' kobject: 'loop2' (0000000077e5e1e9): kobject_uevent_env kobject: 'loop2' (0000000077e5e1e9): fill_kobj_path: path = '/devices/virtual/block/loop2' kobject: 'loop4' (00000000494dec33): kobject_uevent_env kobject: 'loop4' (00000000494dec33): fill_kobj_path: path = '/devices/virtual/block/loop4' kobject: 'loop1' (00000000c0d4a17c): kobject_uevent_env kobject: 'loop1' (00000000c0d4a17c): fill_kobj_path: path = '/devices/virtual/block/loop1' kobject: 'loop0' (00000000129cc729): kobject_uevent_env kobject: 'loop0' (00000000129cc729): fill_kobj_path: path = '/devices/virtual/block/loop0' kobject: 'loop5' (00000000e1abc315): kobject_uevent_env kobject: 'loop5' (00000000e1abc315): fill_kobj_path: path = '/devices/virtual/block/loop5' kobject: 'loop2' (0000000077e5e1e9): kobject_uevent_env kobject: 'loop2' (0000000077e5e1e9): fill_kobj_path: path = '/devices/virtual/block/loop2' kobject: 'loop3' (000000006a2e51c7): kobject_uevent_env kobject: 'loop3' (000000006a2e51c7): fill_kobj_path: path = '/devices/virtual/block/loop3' kobject: 'loop1' (00000000c0d4a17c): kobject_uevent_env kobject: 'loop1' (00000000c0d4a17c): fill_kobj_path: path = '/devices/virtual/block/loop1' kobject: 'loop0p245' (00000000764d37f3): kobject_add_internal: parent: 'loop0', set: 'devices' kobject: 'loop0p245' (00000000764d37f3): kobject_uevent_env kobject: 'loop0p245' (00000000764d37f3): kobject_uevent_env: uevent_suppress caused the event to drop! kobject: 'holders' (00000000dd67845d): kobject_add_internal: parent: 'loop0p245', set: '' kobject: 'loop0p245' (00000000764d37f3): kobject_uevent_env kobject: 'loop0p245' (00000000764d37f3): fill_kobj_path: path = '/devices/virtual/block/loop0/loop0p245' kobject: 'loop4' (00000000494dec33): kobject_uevent_env kobject: 'loop4' (00000000494dec33): fill_kobj_path: path = '/devices/virtual/block/loop4' kobject: 'loop5' (00000000e1abc315): kobject_uevent_env kobject: 'loop5' (00000000e1abc315): fill_kobj_path: path = '/devices/virtual/block/loop5' kobject: 'loop0' (00000000129cc729): kobject_uevent_env kobject: 'loop0' (00000000129cc729): fill_kobj_path: path = '/devices/virtual/block/loop0' kobject: 'loop2' (0000000077e5e1e9): kobject_uevent_env kobject: 'loop2' (0000000077e5e1e9): fill_kobj_path: path = '/devices/virtual/block/loop2' kobject: 'loop1' (00000000c0d4a17c): kobject_uevent_env kobject: 'loop1' (00000000c0d4a17c): fill_kobj_path: path = '/devices/virtual/block/loop1' kobject: 'loop0' (00000000129cc729): kobject_uevent_env kobject: 'loop0' (00000000129cc729): fill_kobj_path: path = '/devices/virtual/block/loop0' kobject: 'loop4' (00000000494dec33): kobject_uevent_env kobject: 'loop4' (00000000494dec33): fill_kobj_path: path = '/devices/virtual/block/loop4' kobject: 'loop2' (0000000077e5e1e9): kobject_uevent_env kobject: 'loop2' (0000000077e5e1e9): fill_kobj_path: path = '/devices/virtual/block/loop2'