F2FS-fs (loop5): inconsistent node block, nid:6, node_footer[nid:0,ino:0,ofs:0,cpver:0,blkaddr:0]
F2FS-fs (loop5): inconsistent node block, nid:6, node_footer[nid:0,ino:0,ofs:0,cpver:0,blkaddr:0]
F2FS-fs (loop5): inconsistent node block, nid:6, node_footer[nid:0,ino:0,ofs:0,cpver:0,blkaddr:0]
watchdog: BUG: soft lockup - CPU#0 stuck for 22s! [syz-executor.0:22153]
Modules linked in:
irq event stamp: 2993735
hardirqs last  enabled at (2993734): [<ffffffff81003ce4>] trace_hardirqs_on_thunk+0x1a/0x1c
hardirqs last disabled at (2993735): [<ffffffff81003d00>] trace_hardirqs_off_thunk+0x1a/0x1c
softirqs last  enabled at (2982118): [<ffffffff88400678>] __do_softirq+0x678/0x980 kernel/softirq.c:318
softirqs last disabled at (2982121): [<ffffffff813927d5>] invoke_softirq kernel/softirq.c:372 [inline]
softirqs last disabled at (2982121): [<ffffffff813927d5>] irq_exit+0x215/0x260 kernel/softirq.c:412
CPU: 0 PID: 22153 Comm: syz-executor.0 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
RIP: 0010:unwind_next_frame+0x421/0x1400 arch/x86/kernel/unwind_orc.c:427
Code: 00 00 4c 89 f9 4c 89 c7 e8 3c f2 ff ff 48 85 c0 49 89 c7 74 6a 4d 8d 47 04 48 b8 00 00 00 00 00 fc ff df 4c 89 c2 48 c1 ea 03 <0f> b6 04 02 4c 89 c2 83 e2 07 38 d0 7f 08 84 c0 0f 85 23 0c 00 00
RSP: 0018:ffff8880ba007750 EFLAGS: 00000a02 ORIG_RAX: ffffffffffffff13
RAX: dffffc0000000000 RBX: 1ffff11017400ef3 RCX: ffffffff8364abc7
RDX: 1ffffffff1770e2f RSI: ffffffff8bb87176 RDI: ffffffff8b4d6358
RBP: 0000000000000001 R08: ffffffff8bb8717a R09: ffffffff8bb87176
R10: ffff8880ba0078df R11: 0000000000074071 R12: ffff8880ba0078c8
R13: ffff8880ba0078b5 R14: ffff8880ba007880 R15: ffffffff8bb87176
FS:  00007f2ec3635700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f2ec3614718 CR3: 0000000050f36000 CR4: 00000000003406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 __save_stack_trace+0x9f/0x190 arch/x86/kernel/stacktrace.c:44
 save_stack mm/kasan/kasan.c:448 [inline]
 set_track mm/kasan/kasan.c:460 [inline]
 kasan_kmalloc+0xeb/0x160 mm/kasan/kasan.c:553
 __do_kmalloc_node mm/slab.c:3689 [inline]
 __kmalloc_node_track_caller+0x4c/0x70 mm/slab.c:3703
 __kmalloc_reserve net/core/skbuff.c:137 [inline]
 __alloc_skb+0xae/0x560 net/core/skbuff.c:205
 __netdev_alloc_skb+0x76/0x460 net/core/skbuff.c:407
 netdev_alloc_skb include/linux/skbuff.h:2680 [inline]
 dev_alloc_skb include/linux/skbuff.h:2693 [inline]
 __ieee80211_beacon_get+0xc7d/0x1a30 net/mac80211/tx.c:4352
 ieee80211_beacon_get_tim+0x88/0x890 net/mac80211/tx.c:4463
 ieee80211_beacon_get include/net/mac80211.h:4484 [inline]
 mac80211_hwsim_beacon_tx+0xff/0x680 drivers/net/wireless/mac80211_hwsim.c:1577
 __iterate_interfaces+0x2e1/0x4a0 net/mac80211/util.c:614
 ieee80211_iterate_active_interfaces_atomic+0x8d/0x170 net/mac80211/util.c:650
 mac80211_hwsim_beacon+0xc9/0x190 drivers/net/wireless/mac80211_hwsim.c:1615
 __tasklet_hrtimer_trampoline+0x29/0xa0 kernel/softirq.c:601
 tasklet_action_common.constprop.0+0x265/0x360 kernel/softirq.c:522
 __do_softirq+0x265/0x980 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x215/0x260 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0x136/0x550 arch/x86/kernel/apic/apic.c:1098
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:894
 </IRQ>
RIP: 0010:unwind_next_frame+0xf21/0x1400 arch/x86/kernel/unwind_orc.c:555
Code: b8 01 00 00 00 0f 85 90 f1 ff ff e8 23 ad d6 ff e9 86 f1 ff ff 49 8d 7f 02 48 be 00 00 00 00 00 fc ff df 49 8d 56 40 48 89 f8 <48> c1 e8 03 44 0f b6 04 30 49 8d 47 03 49 89 c1 49 c1 e9 03 41 0f
RSP: 0018:ffff88801f2be130 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
RAX: ffffffff8bb87ac0 RBX: 1ffff11003e57c2f RCX: ffffffff8bb87ac3
RDX: ffff88801f2be2a0 RSI: dffffc0000000000 RDI: ffffffff8bb87ac0
RBP: 0000000000000001 R08: ffffffff8bb87ac2 R09: ffffffff8bb87abe
R10: ffff88801f2be2bf R11: 0000000000074071 R12: ffff88801f2be878
R13: ffff88801f2be295 R14: ffff88801f2be260 R15: ffffffff8bb87abe
 __save_stack_trace+0x9f/0x190 arch/x86/kernel/stacktrace.c:44
 save_stack mm/kasan/kasan.c:448 [inline]
 set_track mm/kasan/kasan.c:460 [inline]
 kasan_kmalloc+0xeb/0x160 mm/kasan/kasan.c:553
 slab_post_alloc_hook mm/slab.h:445 [inline]
 slab_alloc mm/slab.c:3397 [inline]
 kmem_cache_alloc+0x110/0x370 mm/slab.c:3557
 kmem_cache_zalloc include/linux/slab.h:699 [inline]
 fill_pool lib/debugobjects.c:134 [inline]
 __debug_object_init+0x6d9/0x9b0 lib/debugobjects.c:379
 debug_timer_init kernel/time/timer.c:713 [inline]
 debug_init kernel/time/timer.c:766 [inline]
 init_timer_key+0x33/0x350 kernel/time/timer.c:815
 scsi_init_command+0x3b2/0x670 drivers/scsi/scsi_lib.c:1322
 scsi_mq_prep_fn drivers/scsi/scsi_lib.c:2032 [inline]
 scsi_queue_rq+0xcca/0x1aa0 drivers/scsi/scsi_lib.c:2124
 blk_mq_dispatch_rq_list+0xca7/0x1980 block/blk-mq.c:1203
 blk_mq_do_dispatch_sched+0x187/0x400 block/blk-mq-sched.c:117
 blk_mq_sched_dispatch_requests+0x38c/0x5b0 block/blk-mq-sched.c:213
 __blk_mq_run_hw_queue+0x185/0x290 block/blk-mq.c:1324
 __blk_mq_delay_run_hw_queue+0x4d8/0x5a0 block/blk-mq.c:1392
 blk_mq_run_hw_queue+0x16b/0x2f0 block/blk-mq.c:1429
 blk_mq_sched_insert_requests+0x203/0x2d0 block/blk-mq-sched.c:432
 blk_mq_flush_plug_list+0x6a6/0xb00 block/blk-mq.c:1679
 blk_flush_plug_list+0x2fb/0x8e0 block/blk-core.c:3705
 blk_finish_plug block/blk-core.c:3762 [inline]
 blk_finish_plug+0x50/0xa0 block/blk-core.c:3758
 ext4_writepages+0x16f3/0x37f0 fs/ext4/inode.c:2942
 do_writepages+0xe5/0x290 mm/page-writeback.c:2344
 __filemap_fdatawrite_range+0x27d/0x350 mm/filemap.c:446
 file_write_and_wait_range+0x93/0x100 mm/filemap.c:776
 __generic_file_fsync+0x74/0x1f0 fs/libfs.c:985
 ext4_sync_file+0xa35/0x1420 fs/ext4/fsync.c:118
 vfs_fsync_range+0x13a/0x220 fs/sync.c:197
 generic_write_sync include/linux/fs.h:2750 [inline]
 ext4_file_write_iter+0x726/0xf20 fs/ext4/file.c:283
 call_write_iter include/linux/fs.h:1821 [inline]
 do_iter_readv_writev+0x668/0x790 fs/read_write.c:681
 do_iter_write+0x182/0x5d0 fs/read_write.c:960
 vfs_iter_write+0x70/0xa0 fs/read_write.c:973
 ovl_write_iter+0x5ce/0xb40 fs/overlayfs/file.c:283
 call_write_iter include/linux/fs.h:1821 [inline]
 new_sync_write fs/read_write.c:474 [inline]
 __vfs_write+0x51b/0x770 fs/read_write.c:487
 __kernel_write+0x109/0x370 fs/read_write.c:506
 write_pipe_buf+0x153/0x1f0 fs/splice.c:798
 splice_from_pipe_feed fs/splice.c:503 [inline]
 __splice_from_pipe+0x389/0x800 fs/splice.c:627
 splice_from_pipe fs/splice.c:662 [inline]
 default_file_splice_write+0xd8/0x180 fs/splice.c:810
 do_splice_from fs/splice.c:852 [inline]
 direct_splice_actor+0x115/0x160 fs/splice.c:1025
 splice_direct_to_actor+0x33f/0x8d0 fs/splice.c:980
 do_splice_direct+0x1a7/0x270 fs/splice.c:1068
 do_sendfile+0x550/0xc30 fs/read_write.c:1447
 __do_sys_sendfile64 fs/read_write.c:1502 [inline]
 __se_sys_sendfile64+0xc4/0x160 fs/read_write.c:1494
 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f2ec50c2639
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f2ec3635168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
RAX: ffffffffffffffda RBX: 00007f2ec51e2f80 RCX: 00007f2ec50c2639
RDX: 0000000020000240 RSI: 0000000000000004 RDI: 0000000000000004
RBP: 00007f2ec511d7e1 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000007fff R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffc4ffb8faf R14: 00007f2ec3635300 R15: 0000000000022000
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 26380 Comm: syz-executor.5 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
RIP: 0010:__lock_release kernel/locking/lockdep.c:3686 [inline]
RIP: 0010:lock_release+0x2a1/0x8b0 kernel/locking/lockdep.c:3927
Code: 0f 85 19 05 00 00 8b 48 24 85 c9 0f 85 be 03 00 00 48 8d 78 22 48 ba 00 00 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 0c 11 <48> 89 fa 83 e2 07 83 c2 01 38 ca 7c 08 84 c9 0f 85 41 05 00 00 66
RSP: 0018:ffff888043e2eda0 EFLAGS: 00000806
RAX: ffff88804c5e8cc0 RBX: ffffffff8d243760 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: ffff88809ebed5e8 RDI: ffff88804c5e8ce2
RBP: ffff88809ebed5e8 R08: ffffffff8cd32980 R09: 0000000000000001
R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff110087c5db7
R13: ffffffff8316ccfd R14: ffff88804c5e83c0 R15: 0000000000000004
FS:  00007f5c4cd98700(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fb62ba332b8 CR3: 00000000aabcf000 CR4: 00000000003406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 up_read+0x17/0x110 kernel/locking/rwsem.c:119
 check_valid_map fs/f2fs/gc.c:457 [inline]
 gc_node_segment+0x6ad/0x1de0 fs/f2fs/gc.c:492
 do_garbage_collect fs/f2fs/gc.c:1107 [inline]
 f2fs_gc+0xc8a/0x8c90 fs/f2fs/gc.c:1196
 f2fs_balance_fs+0x71a/0xd80 fs/f2fs/segment.c:513
 f2fs_write_begin+0x1c14/0x3870 fs/f2fs/data.c:2404
 generic_perform_write+0x1f8/0x4d0 mm/filemap.c:3170
 __generic_file_write_iter+0x24b/0x610 mm/filemap.c:3295
 f2fs_file_write_iter+0x3c4/0xbe0 fs/f2fs/file.c:3031
 call_write_iter include/linux/fs.h:1821 [inline]
 do_iter_readv_writev+0x668/0x790 fs/read_write.c:681
 do_iter_write+0x182/0x5d0 fs/read_write.c:960
 vfs_iter_write+0x70/0xa0 fs/read_write.c:973
 iter_file_splice_write+0x60d/0xbb0 fs/splice.c:750
 do_splice_from fs/splice.c:852 [inline]
 direct_splice_actor+0x115/0x160 fs/splice.c:1025
 splice_direct_to_actor+0x33f/0x8d0 fs/splice.c:980
 do_splice_direct+0x1a7/0x270 fs/splice.c:1068
 do_sendfile+0x550/0xc30 fs/read_write.c:1447
 __do_sys_sendfile64 fs/read_write.c:1508 [inline]
 __se_sys_sendfile64+0x147/0x160 fs/read_write.c:1494
 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f5c4e825639
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f5c4cd98168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
RAX: ffffffffffffffda RBX: 00007f5c4e945f80 RCX: 00007f5c4e825639
RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006
RBP: 00007f5c4e8807e1 R08: 0000000000000000 R09: 0000000000000000
R10: 0001000000201005 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fff968a221f R14: 00007f5c4cd98300 R15: 0000000000022000