BUG: sleeping function called from invalid context at block/blk-sysfs.c:766 in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4912, name: syz-executor.3 preempt_count: 100, expected: 0 RCU nest depth: 0, expected: 0 INFO: lockdep is turned off. Preemption disabled at: [] softirq_handle_begin kernel/softirq.c:396 [inline] [] __do_softirq+0xe1/0x9c2 kernel/softirq.c:534 CPU: 0 PID: 4912 Comm: syz-executor.3 Tainted: G W 5.17.0-syzkaller-13564-gb423e54ba965 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106 __might_resched.cold+0x222/0x26b kernel/sched/core.c:9733 blk_release_queue+0x1f/0x320 block/blk-sysfs.c:766 kobject_cleanup lib/kobject.c:705 [inline] kobject_release lib/kobject.c:736 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x1c8/0x540 lib/kobject.c:753 blkg_free.part.0+0x112/0x1f0 block/blk-cgroup.c:86 blkg_free block/blk-cgroup.c:78 [inline] __blkg_release+0x105/0x160 block/blk-cgroup.c:102 rcu_do_batch kernel/rcu/tree.c:2535 [inline] rcu_core+0x7b1/0x1880 kernel/rcu/tree.c:2786 __do_softirq+0x29b/0x9c2 kernel/softirq.c:558 invoke_softirq kernel/softirq.c:432 [inline] __irq_exit_rcu+0x123/0x180 kernel/softirq.c:637 irq_exit_rcu+0x5/0x20 kernel/softirq.c:649 sysvec_apic_timer_interrupt+0x93/0xc0 arch/x86/kernel/apic/apic.c:1097 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:645 RIP: 0010:instrument_atomic_read include/linux/instrumented.h:71 [inline] RIP: 0010:test_bit include/asm-generic/bitops/instrumented-non-atomic.h:134 [inline] RIP: 0010:cpumask_test_cpu include/linux/cpumask.h:379 [inline] RIP: 0010:cpu_online include/linux/cpumask.h:921 [inline] RIP: 0010:trace_lock_release include/trace/events/lock.h:58 [inline] RIP: 0010:lock_release+0x9c/0x720 kernel/locking/lockdep.c:5652 Code: 1f 44 00 00 65 8b 1d 73 72 a4 7e 83 fb 07 0f 87 f6 04 00 00 89 db be 08 00 00 00 48 89 d8 48 c1 f8 06 48 8d 3c c5 50 bc b6 8d af 2b 67 00 48 0f a3 1d c7 14 59 0c 0f 82 60 04 00 00 48 c7 c3 RSP: 0018:ffffc90004dd7848 EFLAGS: 00000246 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 RDX: ffff888049e8ba00 RSI: 0000000000000008 RDI: ffffffff8db6bc50 RBP: 1ffff920009baf0b R08: 0000000000000000 R09: 0000000000000001 R10: ffffffff814e26e0 R11: 0000000000000000 R12: ffffffff8bd820a0 R13: fffffffffffffff3 R14: ffffffff8acf58a0 R15: ffffc90004dd7c98 rcu_lock_release include/linux/rcupdate.h:273 [inline] rcu_read_unlock include/linux/rcupdate.h:727 [inline] get_pid_task+0x10a/0x210 kernel/pid.c:455 get_proc_task fs/proc/internal.h:125 [inline] proc_ns_get_link+0xc5/0x210 fs/proc/namespaces.c:54 pick_link fs/namei.c:1819 [inline] step_into+0x17be/0x1d80 fs/namei.c:1876 open_last_lookups fs/namei.c:3423 [inline] path_openat+0x49e/0x2910 fs/namei.c:3606 do_filp_open+0x1aa/0x400 fs/namei.c:3636 do_sys_openat2+0x16d/0x4c0 fs/open.c:1213 do_sys_open fs/open.c:1229 [inline] __do_sys_openat fs/open.c:1245 [inline] __se_sys_openat fs/open.c:1240 [inline] __x64_sys_openat+0x13f/0x1f0 fs/open.c:1240 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7ff0fa63bf64 Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 RSP: 002b:00007ff0fb7ee090 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 RAX: ffffffffffffffda RBX: 00007ff0fa79c030 RCX: 00007ff0fa63bf64 RDX: 0000000000000000 RSI: 00007ff0fa6e2067 RDI: 00000000ffffff9c RBP: 00007ff0fa6e2067 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 R13: 00007fff50ef55ef R14: 00007ff0fb7ee300 R15: 0000000000022000 ---------------- Code disassembly (best guess), 1 bytes skipped: 0: 44 00 00 add %r8b,(%rax) 3: 65 8b 1d 73 72 a4 7e mov %gs:0x7ea47273(%rip),%ebx # 0x7ea4727d a: 83 fb 07 cmp $0x7,%ebx d: 0f 87 f6 04 00 00 ja 0x509 13: 89 db mov %ebx,%ebx 15: be 08 00 00 00 mov $0x8,%esi 1a: 48 89 d8 mov %rbx,%rax 1d: 48 c1 f8 06 sar $0x6,%rax 21: 48 8d 3c c5 50 bc b6 lea -0x724943b0(,%rax,8),%rdi 28: 8d * 29: e8 af 2b 67 00 callq 0x672bdd <-- trapping instruction 2e: 48 0f a3 1d c7 14 59 bt %rbx,0xc5914c7(%rip) # 0xc5914fd 35: 0c 36: 0f 82 60 04 00 00 jb 0x49c 3c: 48 rex.W 3d: c7 .byte 0xc7 3e: c3 retq