------------[ cut here ]------------ WARNING: CPU: 1 PID: 6791 at fs/kernfs/dir.c:36 kernfs_active+0xe8/0x120 fs/kernfs/dir.c:38 Modules linked in: CPU: 1 PID: 6791 Comm: syz-executor.0 Not tainted 6.1.0-rc4-syzkaller-00015-gf141df371335 #0 Hardware name: linux,dummy-virt (DT) pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : kernfs_active+0xe8/0x120 fs/kernfs/dir.c:36 lr : lock_is_held include/linux/lockdep.h:283 [inline] lr : kernfs_active+0x94/0x120 fs/kernfs/dir.c:36 sp : ffff800018267a00 x29: ffff800018267a00 x28: 0000000000000002 x27: 0000000000000001 x26: ffff00001566f9a8 x25: 1fffe00002acdf35 x24: 0000000000000000 x23: ffff80000ca90e60 x22: ffff800008a05f30 x21: 0000000000000001 x20: ffff00000911a1d0 x19: ffff00000911a1d0 x18: 0000000000000000 x17: ffff80000804417c x16: ffff800008a06e80 x15: 00000000200003c8 x14: 1ffff0000304cf0e x13: 1fffe00001789b79 x12: ffff70000304cf39 x11: 1ffff0000304cf38 x10: ffff70000304cf38 x9 : dfff800000000000 x8 : ffff80000f2b6560 x7 : ffff0000091a4058 x6 : ffff80000f2b62a0 x5 : ffff000009402ee8 x4 : 1ffff00001bcbf6e x3 : 1fffe00001789a39 x2 : 0000000000000003 x1 : 00000000000000c0 x0 : 0000000000000000 Call trace: kernfs_active+0xe8/0x120 fs/kernfs/dir.c:38 kernfs_find_and_get_node_by_id+0x6c/0x140 fs/kernfs/dir.c:708 __kernfs_fh_to_dentry fs/kernfs/mount.c:102 [inline] kernfs_fh_to_dentry+0x88/0x1fc fs/kernfs/mount.c:128 exportfs_decode_fh_raw+0x104/0x560 fs/exportfs/expfs.c:435 exportfs_decode_fh+0x10/0x5c fs/exportfs/expfs.c:575 do_handle_to_path fs/fhandle.c:152 [inline] handle_to_path fs/fhandle.c:207 [inline] do_handle_open+0x2a4/0x7b0 fs/fhandle.c:223 __do_compat_sys_open_by_handle_at fs/fhandle.c:277 [inline] __se_compat_sys_open_by_handle_at fs/fhandle.c:274 [inline] __arm64_compat_sys_open_by_handle_at+0x6c/0x9c fs/fhandle.c:274 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x254 arch/arm64/kernel/syscall.c:142 do_el0_svc_compat+0x40/0x70 arch/arm64/kernel/syscall.c:212 el0_svc_compat+0x54/0x140 arch/arm64/kernel/entry-common.c:773 el0t_32_sync_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:783 el0t_32_sync+0x190/0x194 arch/arm64/kernel/entry.S:586 irq event stamp: 166 hardirqs last enabled at (165): [] __exit_to_kernel_mode arch/arm64/kernel/entry-common.c:84 [inline] hardirqs last enabled at (165): [] exit_to_kernel_mode+0x38/0x120 arch/arm64/kernel/entry-common.c:94 hardirqs last disabled at (166): [] el1_dbg+0x24/0xa0 arch/arm64/kernel/entry-common.c:405 softirqs last enabled at (136): [] fpsimd_restore_current_state+0x3c/0x110 arch/arm64/kernel/fpsimd.c:1710 softirqs last disabled at (134): [] generic_test_bit include/asm-generic/bitops/generic-non-atomic.h:128 [inline] softirqs last disabled at (134): [] cpus_have_cap arch/arm64/include/asm/cpufeature.h:452 [inline] softirqs last disabled at (134): [] cpus_have_const_cap arch/arm64/include/asm/cpufeature.h:504 [inline] softirqs last disabled at (134): [] system_supports_fpsimd arch/arm64/include/asm/cpufeature.h:745 [inline] softirqs last disabled at (134): [] get_cpu_fpsimd_context+0x0/0xa0 arch/arm64/kernel/fpsimd.c:1854 ---[ end trace 0000000000000000 ]---