INFO: task syz-executor.1:23493 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.1 D26136 23493 8127 0x00000004 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 xlog_grant_head_wait+0x13b/0xcd0 fs/xfs/xfs_log.c:263 xlog_grant_head_check+0x3c8/0x420 fs/xfs/xfs_log.c:325 xfs_log_reserve+0x347/0xa70 fs/xfs/xfs_log.c:454 xfs_trans_reserve+0x63a/0x9c0 fs/xfs/xfs_trans.c:197 xfs_trans_alloc+0x2f7/0x700 fs/xfs/xfs_trans.c:289 xlog_finish_defer_ops fs/xfs/xfs_log_recover.c:4841 [inline] xlog_recover_process_intents+0x274/0x430 fs/xfs/xfs_log_recover.c:4947 xlog_recover_finish+0x5f/0x230 fs/xfs/xfs_log_recover.c:5839 xfs_log_mount_finish+0x135/0x450 fs/xfs/xfs_log.c:778 xfs_mountfs+0x1032/0x1bf0 fs/xfs/xfs_mount.c:974 xfs_fs_fill_super+0xd0e/0x1540 fs/xfs/xfs_super.c:1720 mount_bdev+0x2fc/0x3b0 fs/super.c:1158 mount_fs+0xa3/0x310 fs/super.c:1261 vfs_kern_mount.part.0+0x68/0x470 fs/namespace.c:961 vfs_kern_mount fs/namespace.c:951 [inline] do_new_mount fs/namespace.c:2492 [inline] do_mount+0x115c/0x2f50 fs/namespace.c:2822 ksys_mount+0xcf/0x130 fs/namespace.c:3038 __do_sys_mount fs/namespace.c:3052 [inline] __se_sys_mount fs/namespace.c:3049 [inline] __x64_sys_mount+0xba/0x150 fs/namespace.c:3049 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fd17e6905fa Code: Bad RIP value. RSP: 002b:00007fd17cc00f88 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 XFS (loop4): SB sanity check failed XFS (loop4): Metadata corruption detected at xfs_sb_read_verify+0x3e7/0x500 fs/xfs/libxfs/xfs_sb.c:685, xfs_sb block 0xffffffffffffffff RAX: ffffffffffffffda RBX: 000000000000baed RCX: 00007fd17e6905fa XFS (loop4): Unmount and run xfs_repair RDX: 00000000200000c0 RSI: 000000002000bb40 RDI: 00007fd17cc00fe0 RBP: 00007fd17cc01020 R08: 00007fd17cc01020 R09: 0000000002000880 R10: 0000000002000880 R11: 0000000000000202 R12: 00000000200000c0 XFS (loop4): First 128 bytes of corrupted metadata buffer: 0000000025f066bc: 58 46 53 42 00 00 02 00 00 00 00 00 00 00 00 00 XFSB............ R13: 000000002000bb40 R14: 00007fd17cc00fe0 R15: 0000000020000140 00000000b30f8ae5: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00000000df890e59: 5e 62 73 b8 21 67 42 bb 91 1b 41 8a a1 4a 12 61 ^bs.!gB...A..J.a Showing all locks held in the system: 00000000f0ac2323: 00 00 00 00 00 00 80 40 00 00 00 00 00 00 00 20 .......@....... 1 lock held by khungtaskd/1543: 00000000ceee05da: 00 00 00 00 00 00 00 21 00 00 00 00 00 00 00 22 .......!......." #0: 000000007992b0b6 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 kernel/locking/lockdep.c:4441 1 lock held by in:imklog/7812: 000000009b3a98be: 00 00 00 08 00 00 80 00 00 00 00 02 00 00 00 00 ................ #0: 00000000ae2676ac (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x26f/0x310 fs/file.c:767 XFS (loop5): SB sanity check failed 2 locks held by kworker/u4:9/11075: XFS (loop5): Metadata corruption detected at xfs_sb_read_verify+0x3e7/0x500 fs/xfs/libxfs/xfs_sb.c:685, xfs_sb block 0xffffffffffffffff 2 locks held by syz-executor.1/23493: #0: 0000000034d73c0c (&type->s_umount_key#56/1){+.+.}, at: alloc_super fs/super.c:226 [inline] #0: 0000000034d73c0c (&type->s_umount_key#56/1){+.+.}, at: sget_userns+0x20b/0xcd0 fs/super.c:519 00000000cab54c83: 00 00 0b 40 b4 b4 02 00 01 00 00 02 00 00 00 00 ...@............ #1: 0000000082ff15a9 (sb_internal#2){.+.+}, at: sb_start_intwrite include/linux/fs.h:1626 [inline] #1: 0000000082ff15a9 (sb_internal#2){.+.+}, at: xfs_trans_alloc+0x4fc/0x700 fs/xfs/xfs_trans.c:271 1 lock held by syz-executor.5/29506: XFS (loop5): Unmount and run xfs_repair 1 lock held by syz-executor.4/29507: XFS (loop5): First 128 bytes of corrupted metadata buffer: ============================================= 000000006a68ab97: 00 00 00 00 00 00 00 00 09 09 08 01 0f 00 00 19 ................ 000000009293b7e2: 58 46 53 42 00 00 02 00 00 00 00 00 00 01 00 00 XFSB............ XFS (loop4): SB validate failed with error -117. NMI backtrace for cpu 1 00000000af09fcec: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ CPU: 1 PID: 1543 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0 000000009e7e03fd: 5e 62 73 b8 21 67 42 bb 91 1b 41 8a a1 4a 12 61 ^bs.!gB...A..J.a Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 nmi_cpu_backtrace.cold+0x63/0xa2 lib/nmi_backtrace.c:101 0000000059d0f4b7: 00 00 00 00 00 00 80 40 00 00 00 00 00 00 00 20 .......@....... nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:203 [inline] watchdog+0x991/0xe60 kernel/hung_task.c:287 kthread+0x33f/0x460 kernel/kthread.c:259 00000000130ff354: 00 00 00 00 00 00 00 21 00 00 00 00 00 00 00 22 .......!......." ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415 Sending NMI from CPU 1 to CPUs 0: 0000000045916ac7: 00 00 00 08 00 00 80 00 00 00 00 14 00 00 00 00 ................ NMI backtrace for cpu 0 CPU: 0 PID: 29506 Comm: syz-executor.5 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 RIP: 0010:io_serial_in+0x60/0x80 drivers/tty/serial/8250/8250_port.c:455 Code: 0f b6 8d e1 00 00 00 48 8d 7d 38 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 d3 e3 80 3c 02 00 75 13 03 5d 38 89 da ec <5b> 0f b6 c0 5d c3 e8 c5 80 d7 fd eb c9 e8 0e 83 d7 fd eb e6 66 66 RSP: 0018:ffff88804f427318 EFLAGS: 00000002 RAX: dffffc0000000000 RBX: 00000000000003fd RCX: 0000000000000000 RDX: 00000000000003fd RSI: ffffffff83c0deec RDI: ffffffff8dc90258 RBP: ffffffff8dc90220 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000020 R13: fffffbfff1b9208c R14: fffffbfff1b9204d R15: 0000000000000000 FS: 00007f401fad8700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f954292d020 CR3: 00000000a46da000 CR4: 00000000003406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: serial_in drivers/tty/serial/8250/8250.h:111 [inline] wait_for_xmitr+0x9a/0x230 drivers/tty/serial/8250/8250_port.c:2049 serial8250_console_putchar+0x1b/0x50 drivers/tty/serial/8250/8250_port.c:3242 uart_console_write+0x59/0x100 drivers/tty/serial/serial_core.c:1888 serial8250_console_write+0x6aa/0xb70 drivers/tty/serial/8250/8250_port.c:3308 call_console_drivers kernel/printk/printk.c:1764 [inline] console_unlock+0xbb6/0x1110 kernel/printk/printk.c:2460 vprintk_emit+0x2d1/0x740 kernel/printk/printk.c:1965 vprintk_func+0x79/0x180 kernel/printk/printk_safe.c:405 printk+0xba/0xed kernel/printk/printk.c:2040 print_hex_dump.cold+0x23/0x7a lib/hexdump.c:263 xfs_hex_dump+0x36/0x40 fs/xfs/xfs_message.c:110 xfs_buf_verifier_error+0x22a/0x310 fs/xfs/xfs_error.c:370 xfs_sb_read_verify+0x3fe/0x500 fs/xfs/libxfs/xfs_sb.c:722 xfs_buf_ioend+0x1da/0x6e0 fs/xfs/xfs_buf.c:1202 __xfs_buf_submit+0x389/0x930 fs/xfs/xfs_buf.c:1545 xfs_buf_submit fs/xfs/xfs_buf.h:301 [inline] xfs_buf_read_uncached+0x154/0x240 fs/xfs/xfs_buf.c:860 xfs_readsb+0x288/0x4c0 fs/xfs/xfs_mount.c:295 xfs_fs_fill_super+0x83c/0x1540 fs/xfs/xfs_super.c:1640 mount_bdev+0x2fc/0x3b0 fs/super.c:1158 mount_fs+0xa3/0x310 fs/super.c:1261 vfs_kern_mount.part.0+0x68/0x470 fs/namespace.c:961 vfs_kern_mount fs/namespace.c:951 [inline] do_new_mount fs/namespace.c:2492 [inline] do_mount+0x115c/0x2f50 fs/namespace.c:2822 ksys_mount+0xcf/0x130 fs/namespace.c:3038 __do_sys_mount fs/namespace.c:3052 [inline] __se_sys_mount fs/namespace.c:3049 [inline] __x64_sys_mount+0xba/0x150 fs/namespace.c:3049 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f40215675fa Code: 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f401fad7f88 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 000000000000baed RCX: 00007f40215675fa RDX: 000000002000bb00 RSI: 000000002000bb40 RDI: 00007f401fad7fe0 RBP: 00007f401fad8020 R08: 00007f401fad8020 R09: 0000000002000000 R10: 0000000002000000 R11: 0000000000000202 R12: 000000002000bb00 R13: 000000002000bb40 R14: 00007f401fad7fe0 R15: 0000000020000140