00000000db8e0153: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ XFS (loop1): metadata I/O error in "xfs_trans_read_buf_map" at daddr 0x4 len 1 error 117 XFS (loop1): page discard on page 00000000c5128d1a, inode 0x2a, offset 5767168. XFS (loop1): Metadata corruption detected at xfs_allocbt_verify+0x327/0x4a0 fs/xfs/libxfs/xfs_alloc_btree.c:329, xfs_allocbt block 0x4 XFS (loop1): Unmount and run xfs_repair INFO: task syz-executor.1:8251 blocked for more than 140 seconds. XFS (loop1): First 128 bytes of corrupted metadata buffer: Not tainted 4.19.211-syzkaller #0 0000000037dcab6c: 07 42 54 42 00 00 00 01 ff ff ff ff ff ff ff ff .BTB............ "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. 00000000a77927bf: 00 00 00 42 00 00 7f be 00 00 00 42 00 00 7f be ...B.......B.... syz-executor.1 D24120 8251 1 0x00000004 00000000cfc85ed5: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00000000fcddbd9f: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ Call Trace: 000000007e897ad2: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 00000000f7e44d73: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00000000b0e39d8d: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 000000006862aca1: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ schedule+0x8d/0x1b0 kernel/sched/core.c:3561 XFS (loop1): metadata I/O error in "xfs_trans_read_buf_map" at daddr 0x4 len 1 error 117 wb_wait_for_completion+0x175/0x1f0 fs/fs-writeback.c:222 XFS (loop1): page discard on page 0000000039b074d2, inode 0x2a, offset 5771264. XFS (loop1): Metadata corruption detected at xfs_allocbt_verify+0x327/0x4a0 fs/xfs/libxfs/xfs_alloc_btree.c:329, xfs_allocbt block 0x4 XFS (loop1): Unmount and run xfs_repair sync_inodes_sb+0x19d/0x9a0 fs/fs-writeback.c:2459 XFS (loop1): First 128 bytes of corrupted metadata buffer: 000000009d455697: 07 42 54 42 00 00 00 01 ff ff ff ff ff ff ff ff .BTB............ 0000000079560d89: 00 00 00 42 00 00 7f be 00 00 00 42 00 00 7f be ...B.......B.... 00000000506083b8: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00000000c3574e12: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ __sync_filesystem fs/sync.c:34 [inline] sync_filesystem+0x15c/0x250 fs/sync.c:67 00000000c611c5a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ generic_shutdown_super+0x70/0x370 fs/super.c:442 00000000adc57a27: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ kill_block_super+0x97/0xf0 fs/super.c:1185 00000000fbdc1bfd: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ deactivate_locked_super+0x94/0x160 fs/super.c:329 0000000074271fbc: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ deactivate_super+0x174/0x1a0 fs/super.c:360 XFS (loop1): metadata I/O error in "xfs_trans_read_buf_map" at daddr 0x4 len 1 error 117 XFS (loop1): page discard on page 00000000859aca31, inode 0x2a, offset 5775360. XFS (loop1): Metadata corruption detected at xfs_allocbt_verify+0x327/0x4a0 fs/xfs/libxfs/xfs_alloc_btree.c:329, xfs_allocbt block 0x4 cleanup_mnt+0x1a8/0x290 fs/namespace.c:1098 XFS (loop1): Unmount and run xfs_repair XFS (loop1): First 128 bytes of corrupted metadata buffer: task_work_run+0x148/0x1c0 kernel/task_work.c:113 0000000024eb9487: 07 42 54 42 00 00 00 01 ff ff ff ff ff ff ff ff .BTB............ tracehook_notify_resume include/linux/tracehook.h:193 [inline] exit_to_usermode_loop+0x251/0x2a0 arch/x86/entry/common.c:167 0000000089a883d1: 00 00 00 42 00 00 7f be 00 00 00 42 00 00 7f be ...B.......B.... prepare_exit_to_usermode arch/x86/entry/common.c:198 [inline] syscall_return_slowpath arch/x86/entry/common.c:271 [inline] do_syscall_64+0x538/0x620 arch/x86/entry/common.c:296 000000009157e2d1: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ entry_SYSCALL_64_after_hwframe+0x49/0xbe 00000000be4dcc1c: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ RIP: 0033:0x7f3231645547 000000007b12949d: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ Code: Bad RIP value. 000000002bef7a29: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ RSP: 002b:00007ffc4d325978 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 000000006d566a0e: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f3231645547 000000008015f210: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ RDX: 00007ffc4d325a4b RSI: 000000000000000a RDI: 00007ffc4d325a40 XFS (loop1): metadata I/O error in "xfs_trans_read_buf_map" at daddr 0x4 len 1 error 117 RBP: 00007ffc4d325a40 R08: 00000000ffffffff R09: 00007ffc4d325810 XFS (loop1): page discard on page 00000000f903cd08, inode 0x2a, offset 5779456. R10: 0000555556ce7903 R11: 0000000000000246 R12: 00007f323169eb24 XFS (loop1): Metadata corruption detected at xfs_allocbt_verify+0x327/0x4a0 fs/xfs/libxfs/xfs_alloc_btree.c:329, xfs_allocbt block 0x4 R13: 00007ffc4d326b00 R14: 0000555556ce7810 R15: 00007ffc4d326b40 XFS (loop1): Unmount and run xfs_repair Showing all locks held in the system: XFS (loop1): First 128 bytes of corrupted metadata buffer: 4 locks held by kworker/u4:3/209: 00000000f6165531: 07 42 54 42 00 00 00 01 ff ff ff ff ff ff ff ff .BTB............ #0: 00000000c817a212 ((wq_completion)"writeback"){+.+.}, at: process_one_work+0x767/0x1570 kernel/workqueue.c:2124 00000000dc545fc5: 00 00 00 42 00 00 7f be 00 00 00 42 00 00 7f be ...B.......B.... #1: 0000000051767abf ((work_completion)(&(&wb->dwork)->work)){+.+.}, at: process_one_work+0x79c/0x1570 kernel/workqueue.c:2128 0000000044fd1abf: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ #2: 000000009c251d71 (sb_internal#4){.+.+}, at: sb_start_intwrite include/linux/fs.h:1626 [inline] #2: 000000009c251d71 (sb_internal#4){.+.+}, at: xfs_trans_alloc+0x4fc/0x700 fs/xfs/xfs_trans.c:271 00000000ca800045: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ #3: 0000000012d65366 (&xfs_nondir_ilock_class){++++}, at: mrupdate_nested fs/xfs/mrlock.h:36 [inline] #3: 0000000012d65366 (&xfs_nondir_ilock_class){++++}, at: xfs_ilock+0x2b6/0x440 fs/xfs/xfs_inode.c:199 00000000b4dda042: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 1 lock held by khungtaskd/1571: 00000000dbe8e6dd: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ #0: 0000000074aed598 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 kernel/locking/lockdep.c:4441 0000000007d9a2aa: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 5 locks held by kworker/0:3/4710: 1 lock held by in:imklog/7813: 0000000012c4dac0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ #0: 00000000ec4b15bc (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x26f/0x310 fs/file.c:767 XFS (loop1): metadata I/O error in "xfs_trans_read_buf_map" at daddr 0x4 len 1 error 117 2 locks held by agetty/7811: #0: 00000000863274c4 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272 XFS (loop1): page discard on page 00000000a860125f, inode 0x2a, offset 5783552. #1: 000000005d623bb2 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x217/0x1950 drivers/tty/n_tty.c:2154 XFS (loop1): Metadata corruption detected at xfs_allocbt_verify+0x327/0x4a0 fs/xfs/libxfs/xfs_alloc_btree.c:329, xfs_allocbt block 0x4 2 locks held by agetty/8034: #0: 0000000030255cd3 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272 XFS (loop1): Unmount and run xfs_repair #1: 00000000b5bb80b2 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x217/0x1950 drivers/tty/n_tty.c:2154 XFS (loop1): First 128 bytes of corrupted metadata buffer: 2 locks held by syz-executor.1/8251: 0000000052c251d2: 07 42 54 42 00 00 00 01 ff ff ff ff ff ff ff ff .BTB............ #0: 00000000e644d38f (&type->s_umount_key#88){+.+.}, at: deactivate_super+0x16c/0x1a0 fs/super.c:359 00000000dc660ad7: 00 00 00 42 00 00 7f be 00 00 00 42 00 00 7f be ...B.......B.... #1: 0000000069b8b3dd (&bdi->wb_switch_rwsem){+.+.}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:338 [inline] #1: 0000000069b8b3dd (&bdi->wb_switch_rwsem){+.+.}, at: sync_inodes_sb+0x180/0x9a0 fs/fs-writeback.c:2457 000000001e0f5cf8: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 000000003a175cd0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ ============================================= 00000000af861c63: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ NMI backtrace for cpu 1 CPU: 1 PID: 1571 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0 00000000a6bb47f1: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 00000000fbe6dcc3: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 nmi_cpu_backtrace.cold+0x63/0xa2 lib/nmi_backtrace.c:101 00000000f3ec5258: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 lib/nmi_backtrace.c:62 XFS (loop1): metadata I/O error in "xfs_trans_read_buf_map" at daddr 0x4 len 1 error 117 trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:203 [inline] watchdog+0x991/0xe60 kernel/hung_task.c:287 XFS (loop1): page discard on page 000000000845d71a, inode 0x2a, offset 5787648. kthread+0x33f/0x460 kernel/kthread.c:259 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415 XFS (loop1): Metadata corruption detected at xfs_allocbt_verify+0x327/0x4a0 fs/xfs/libxfs/xfs_alloc_btree.c:329, xfs_allocbt block 0x4 Sending NMI from CPU 1 to CPUs 0: XFS (loop1): Unmount and run xfs_repair NMI backtrace for cpu 0 CPU: 0 PID: 4710 Comm: kworker/0:3 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Workqueue: xfs-buf/loop1 xfs_buf_ioend_work RIP: 0010:io_serial_in+0x60/0x80 drivers/tty/serial/8250/8250_port.c:455 Code: 0f b6 8d e1 00 00 00 48 8d 7d 38 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 d3 e3 80 3c 02 00 75 13 03 5d 38 89 da ec <5b> 0f b6 c0 5d c3 e8 c5 80 d7 fd eb c9 e8 0e 83 d7 fd eb e6 66 66 RSP: 0018:ffff8880968f7788 EFLAGS: 00000002 RAX: dffffc0000000000 RBX: 00000000000003fd RCX: 0000000000000000 RDX: 00000000000003fd RSI: ffffffff83c0deec RDI: ffffffff8dc90258 RBP: ffffffff8dc90220 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000020 R13: fffffbfff1b9208c R14: fffffbfff1b9204d R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fb174c1a010 CR3: 00000000a19b5000 CR4: 00000000003406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: serial_in drivers/tty/serial/8250/8250.h:111 [inline] wait_for_xmitr+0x9a/0x230 drivers/tty/serial/8250/8250_port.c:2049 serial8250_console_putchar+0x1b/0x50 drivers/tty/serial/8250/8250_port.c:3242 uart_console_write+0x59/0x100 drivers/tty/serial/serial_core.c:1888 serial8250_console_write+0x6aa/0xb70 drivers/tty/serial/8250/8250_port.c:3308 call_console_drivers kernel/printk/printk.c:1764 [inline] console_unlock+0xbb6/0x1110 kernel/printk/printk.c:2460 vprintk_emit+0x2d1/0x740 kernel/printk/printk.c:1965 vprintk_func+0x79/0x180 kernel/printk/printk_safe.c:405 printk+0xba/0xed kernel/printk/printk.c:2040 __xfs_printk+0x66/0x8a fs/xfs/xfs_message.c:24 xfs_alert+0xe2/0x1bd fs/xfs/xfs_message.c:52 xfs_buf_verifier_error+0x191/0x310 fs/xfs/xfs_error.c:364 xfs_allocbt_read_verify+0x118/0x380 fs/xfs/libxfs/xfs_alloc_btree.c:357 xfs_buf_ioend+0x1da/0x6e0 fs/xfs/xfs_buf.c:1202 process_one_work+0x864/0x1570 kernel/workqueue.c:2153 worker_thread+0x64c/0x1130 kernel/workqueue.c:2296 kthread+0x33f/0x460 kernel/kthread.c:259 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415