VFS: Found a Xenix FS (block size = 512) on device loop2 BUG: sleeping function called from invalid context at fs/buffer.c:1381 in_atomic(): 1, irqs_disabled(): 0, pid: 10630, name: syz-executor.2 3 locks held by syz-executor.2/10630: #0: (sb_writers#17){.+.+}, at: [] sb_start_write include/linux/fs.h:1551 [inline] #0: (sb_writers#17){.+.+}, at: [] mnt_want_write+0x3a/0xb0 fs/namespace.c:386 #1: (&sb->s_type->i_mutex_key#23){+.+.}, at: [] inode_lock include/linux/fs.h:719 [inline] #1: (&sb->s_type->i_mutex_key#23){+.+.}, at: [] do_truncate+0xf0/0x1a0 fs/open.c:61 #2: (pointers_lock){.+.+}, at: [] get_block+0x153/0x1230 fs/sysv/itree.c:217 Preemption disabled at: [< (null)>] (null) CPU: 0 PID: 10630 Comm: syz-executor.2 Not tainted 4.14.302-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6041 __getblk_gfp fs/buffer.c:1381 [inline] __bread_gfp+0x3e/0x2e0 fs/buffer.c:1428 sb_bread include/linux/buffer_head.h:343 [inline] get_branch+0x2ac/0x600 fs/sysv/itree.c:104 get_block+0x176/0x1230 fs/sysv/itree.c:218 block_truncate_page+0x2a8/0x8f0 fs/buffer.c:2944 sysv_truncate+0x1c4/0xd70 fs/sysv/itree.c:383 sysv_setattr+0x115/0x180 fs/sysv/file.c:47 notify_change+0x56b/0xd10 fs/attr.c:315 do_truncate+0xff/0x1a0 fs/open.c:63 vfs_truncate+0x456/0x680 fs/open.c:120 do_sys_truncate.part.0+0xdc/0xf0 fs/open.c:143 do_sys_truncate fs/open.c:137 [inline] SYSC_truncate fs/open.c:155 [inline] SyS_truncate+0x23/0x40 fs/open.c:153 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x5e/0xd3 RIP: 0033:0x7f511a4160d9 RSP: 002b:00007f5118988168 EFLAGS: 00000246 ORIG_RAX: 000000000000004c RAX: ffffffffffffffda RBX: 00007f511a535f80 RCX: 00007f511a4160d9 RDX: 0000000000000000 RSI: 0000000000008001 RDI: 000000002000a340 RBP: 00007f511a471ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fffe36933af R14: 00007f5118988300 R15: 0000000000022000 ntfs: volume version 3.1. netlink: 3304 bytes leftover after parsing attributes in process `syz-executor.0'. VFS: Found a Xenix FS (block size = 512) on device loop2 netlink: 3304 bytes leftover after parsing attributes in process `syz-executor.0'. VFS: Found a Xenix FS (block size = 512) on device loop2 netlink: 3304 bytes leftover after parsing attributes in process `syz-executor.0'. netlink: 3304 bytes leftover after parsing attributes in process `syz-executor.0'. VFS: Found a Xenix FS (block size = 512) on device loop2 audit: type=1804 audit(1671568965.860:6): pid=10782 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.0" name=2F726F6F742F73797A6B616C6C65722D74657374646972323035383536333031302F73797A6B616C6C65722E306B467352622F35312F86FC0F dev="sda1" ino=14144 res=1 gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" gfs2: fsid=syz:syz: Now mounting FS... gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents gfs2: fsid=syz:syz.0: jid=0, already locked for use gfs2: fsid=syz:syz.0: jid=0: Looking at journal... gfs2: fsid=syz:syz.0: jid=0: Done gfs2: fsid=syz:syz.0: first mount done, others may mount audit: type=1800 audit(1671568966.370:7): pid=10836 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="bus" dev="loop2" ino=21 res=0 audit: type=1800 audit(1671568966.570:8): pid=10859 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="bus" dev="loop2" ino=21 res=0 gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" gfs2: fsid=syz:syz: Now mounting FS... gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents gfs2: fsid=syz:syz.0: jid=0, already locked for use gfs2: fsid=syz:syz.0: jid=0: Looking at journal... gfs2: fsid=syz:syz.0: jid=0: Done gfs2: fsid=syz:syz.0: first mount done, others may mount print_req_error: I/O error, dev loop2, sector 0 audit: type=1800 audit(1671568967.160:9): pid=10908 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="bus" dev="loop2" ino=21 res=0 audit: type=1800 audit(1671568967.300:10): pid=10928 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="bus" dev="loop2" ino=21 res=0 gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" gfs2: fsid=syz:syz: Now mounting FS... gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents gfs2: fsid=syz:syz.0: jid=0, already locked for use gfs2: fsid=syz:syz.0: jid=0: Looking at journal... gfs2: fsid=syz:syz.0: jid=0: Done gfs2: fsid=syz:syz.0: first mount done, others may mount IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal REISERFS (device loop5): using ordered data mode reiserfs: using flush barriers REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 REISERFS (device loop5): checking transaction log (loop5) IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready REISERFS (device loop5): Using r5 hash to sort names REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready gfs2: fsid=syz:syz: Now mounting FS... gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents gfs2: fsid=syz:syz.0: jid=0, already locked for use gfs2: fsid=syz:syz.0: jid=0: Looking at journal... gfs2: fsid=syz:syz.0: jid=0: Done gfs2: fsid=syz:syz.0: first mount done, others may mount IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal REISERFS (device loop5): using ordered data mode reiserfs: using flush barriers audit: type=1804 audit(1671568968.920:11): pid=11043 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir645156103/syzkaller.TAR0vW/47/cgroup.controllers" dev="sda1" ino=14152 res=1 REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 REISERFS (device loop5): checking transaction log (loop5) REISERFS (device loop5): Using r5 hash to sort names REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal REISERFS (device loop2): using ordered data mode reiserfs: using flush barriers REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal REISERFS (device loop2): checking transaction log (loop2) REISERFS (device loop5): using ordered data mode reiserfs: using flush barriers REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 REISERFS (device loop2): Using r5 hash to sort names REISERFS (device loop5): checking transaction log (loop5) REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. audit: type=1804 audit(1671568969.870:12): pid=11109 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir645156103/syzkaller.TAR0vW/49/cgroup.controllers" dev="sda1" ino=14015 res=1 REISERFS (device loop5): Using r5 hash to sort names REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal REISERFS (device loop2): using ordered data mode reiserfs: using flush barriers audit: type=1804 audit(1671568970.370:13): pid=11132 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir645156103/syzkaller.TAR0vW/50/cgroup.controllers" dev="sda1" ino=14168 res=1 REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 REISERFS (device loop2): checking transaction log (loop2) REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal REISERFS (device loop5): using ordered data mode reiserfs: using flush barriers EXT4-fs (loop1): Ignoring removed nobh option REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 REISERFS (device loop2): Using r5 hash to sort names REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. EXT4-fs error (device loop1): ext4_orphan_get:1265: comm syz-executor.1: bad orphan inode 65551 EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,block_validity,nombcache,noload,noinit_itable,usrjquota=,,errors=continue REISERFS (device loop5): checking transaction log (loop5) REISERFS (device loop5): Using r5 hash to sort names REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. audit: type=1804 audit(1671568971.110:14): pid=11195 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir645156103/syzkaller.TAR0vW/51/cgroup.controllers" dev="sda1" ino=14135 res=1 EXT4-fs (loop1): Ignoring removed nobh option REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal EXT4-fs error (device loop1): ext4_orphan_get:1265: comm syz-executor.1: bad orphan inode 65551 REISERFS (device loop2): using ordered data mode reiserfs: using flush barriers EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,block_validity,nombcache,noload,noinit_itable,usrjquota=,,errors=continue REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 REISERFS (device loop2): checking transaction log (loop2) audit: type=1804 audit(1671568971.480:15): pid=11225 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir645156103/syzkaller.TAR0vW/52/cgroup.controllers" dev="sda1" ino=14182 res=1 REISERFS (device loop2): Using r5 hash to sort names REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. EXT4-fs (loop1): Ignoring removed nobh option EXT4-fs error (device loop1): ext4_orphan_get:1265: comm syz-executor.1: bad orphan inode 65551 EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,block_validity,nombcache,noload,noinit_itable,usrjquota=,,errors=continue EXT4-fs (loop1): Ignoring removed nobh option EXT4-fs error (device loop1): ext4_orphan_get:1265: comm syz-executor.1: bad orphan inode 65551 EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,block_validity,nombcache,noload,noinit_itable,usrjquota=,,errors=continue