------------[ cut here ]------------ kernfs: can not remove 'nr_tags', no directory WARNING: CPU: 0 PID: 6217 at fs/kernfs/dir.c:1628 kernfs_remove_by_name_ns+0x10c/0x188 Modules linked in: CPU: 0 PID: 6217 Comm: syz-executor.1 Not tainted 6.1.43-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : kernfs_remove_by_name_ns+0x10c/0x188 lr : kernfs_remove_by_name_ns+0x108/0x188 fs/kernfs/dir.c:1627 sp : ffff800022007750 x29: ffff800022007750 x28: 0000000000000008 x27: 1fffe00019dc1f31 x26: 0000000000000002 x25: ffff800016088f28 x24: 1ffff000024e5110 x23: dfff800000000000 x22: 0000000000000000 x21: 0000000000000000 x20: 00000000fffffffe x19: ffff800012728880 x18: 1fffe000368aa376 x17: ffff80001589d000 x16: ffff800008305550 x15: ffff0001b4551bbc x14: 1ffff00002b140b0 x13: dfff800000000000 x12: 0000000000000003 x11: ff8080000aacc2e8 x10: 0000000000000003 x9 : bd4b6f7bdfa62c00 x8 : bd4b6f7bdfa62c00 x7 : ffff80000827ce34 x6 : 0000000000000000 x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000 x2 : 0000000000000006 x1 : ffff80001226c340 x0 : ffff80019ed60000 Call trace: kernfs_remove_by_name_ns+0x10c/0x188 kernfs_remove_by_name include/linux/kernfs.h:618 [inline] remove_files fs/sysfs/group.c:28 [inline] sysfs_remove_group+0xf8/0x288 fs/sysfs/group.c:288 sysfs_remove_groups+0x5c/0xb4 fs/sysfs/group.c:312 __kobject_del+0x90/0x2d4 lib/kobject.c:587 kobject_del+0x48/0x68 lib/kobject.c:619 blk_mq_unregister_hctx block/blk-mq-sysfs.c:181 [inline] blk_mq_sysfs_unregister_hctxs+0x1c8/0x284 block/blk-mq-sysfs.c:309 __blk_mq_update_nr_hw_queues block/blk-mq.c:4707 [inline] blk_mq_update_nr_hw_queues+0x524/0xf4c block/blk-mq.c:4753 nbd_start_device+0x15c/0xa80 drivers/block/nbd.c:1361 nbd_start_device_ioctl drivers/block/nbd.c:1411 [inline] __nbd_ioctl drivers/block/nbd.c:1487 [inline] nbd_ioctl+0x430/0xc40 drivers/block/nbd.c:1527 blkdev_ioctl+0x408/0xb40 block/ioctl.c:615 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:870 [inline] __se_sys_ioctl fs/ioctl.c:856 [inline] __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:856 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x98/0x2c0 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142 do_el0_svc+0x64/0x218 arch/arm64/kernel/syscall.c:206 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581 irq event stamp: 2116 hardirqs last enabled at (2115): [] raw_spin_rq_unlock_irq kernel/sched/sched.h:1367 [inline] hardirqs last enabled at (2115): [] finish_lock_switch+0xbc/0x1e8 kernel/sched/core.c:5000 hardirqs last disabled at (2116): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405 softirqs last enabled at (642): [] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32 softirqs last disabled at (640): [] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ kernfs: can not remove 'nr_reserved_tags', no directory WARNING: CPU: 1 PID: 6217 at fs/kernfs/dir.c:1628 kernfs_remove_by_name_ns+0x10c/0x188 Modules linked in: CPU: 1 PID: 6217 Comm: syz-executor.1 Tainted: G W 6.1.43-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : kernfs_remove_by_name_ns+0x10c/0x188 lr : kernfs_remove_by_name_ns+0x108/0x188 fs/kernfs/dir.c:1627 sp : ffff800022007750 x29: ffff800022007750 x28: 0000000000000008 x27: 1fffe00019dc1f31 x26: 0000000000000002 x25: ffff800016088f30 x24: 1ffff000024e5110 x23: dfff800000000000 x22: 0000000000000000 x21: 0000000000000000 x20: 00000000fffffffe x19: ffff800012728880 x18: 1fffe000368ae376 x17: ffff80001589d000 x16: ffff800008305550 x15: ffff0001b4571bbc x14: 1ffff00002b140b0 x13: dfff800000000000 x12: 0000000000000003 x11: ff8080000aacc2e8 x10: 0000000000000003 x9 : bd4b6f7bdfa62c00 x8 : bd4b6f7bdfa62c00 x7 : ffff80000827ce34 x6 : 0000000000000000 x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000 x2 : 0000000000000006 x1 : ffff80001226c340 x0 : ffff80019ed80000 Call trace: kernfs_remove_by_name_ns+0x10c/0x188 kernfs_remove_by_name include/linux/kernfs.h:618 [inline] remove_files fs/sysfs/group.c:28 [inline] sysfs_remove_group+0xf8/0x288 fs/sysfs/group.c:288 sysfs_remove_groups+0x5c/0xb4 fs/sysfs/group.c:312 __kobject_del+0x90/0x2d4 lib/kobject.c:587 kobject_del+0x48/0x68 lib/kobject.c:619 blk_mq_unregister_hctx block/blk-mq-sysfs.c:181 [inline] blk_mq_sysfs_unregister_hctxs+0x1c8/0x284 block/blk-mq-sysfs.c:309 __blk_mq_update_nr_hw_queues block/blk-mq.c:4707 [inline] blk_mq_update_nr_hw_queues+0x524/0xf4c block/blk-mq.c:4753 nbd_start_device+0x15c/0xa80 drivers/block/nbd.c:1361 nbd_start_device_ioctl drivers/block/nbd.c:1411 [inline] __nbd_ioctl drivers/block/nbd.c:1487 [inline] nbd_ioctl+0x430/0xc40 drivers/block/nbd.c:1527 blkdev_ioctl+0x408/0xb40 block/ioctl.c:615 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:870 [inline] __se_sys_ioctl fs/ioctl.c:856 [inline] __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:856 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x98/0x2c0 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142 do_el0_svc+0x64/0x218 arch/arm64/kernel/syscall.c:206 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581 irq event stamp: 2346 hardirqs last enabled at (2345): [] raw_spin_rq_unlock_irq kernel/sched/sched.h:1367 [inline] hardirqs last enabled at (2345): [] finish_lock_switch+0xbc/0x1e8 kernel/sched/core.c:5000 hardirqs last disabled at (2346): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405 softirqs last enabled at (2316): [] softirq_handle_end kernel/softirq.c:414 [inline] softirqs last enabled at (2316): [] __do_softirq+0xc14/0xea0 kernel/softirq.c:600 softirqs last disabled at (2119): [] ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:79 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ kernfs: can not remove 'cpu_list', no directory WARNING: CPU: 1 PID: 6217 at fs/kernfs/dir.c:1628 kernfs_remove_by_name_ns+0x10c/0x188 Modules linked in: CPU: 1 PID: 6217 Comm: syz-executor.1 Tainted: G W 6.1.43-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : kernfs_remove_by_name_ns+0x10c/0x188 lr : kernfs_remove_by_name_ns+0x108/0x188 fs/kernfs/dir.c:1627 sp : ffff800022007750 x29: ffff800022007750 x28: 0000000000000008 x27: 1fffe00019dc1f31 x26: 0000000000000002 x25: ffff800016088f38 x24: 1ffff000024e5110 x23: dfff800000000000 x22: 0000000000000000 x21: 0000000000000000 x20: 00000000fffffffe x19: ffff800012728880 x18: 1fffe000368ae376 x17: ffff80001589d000 x16: ffff800008305550 x15: ffff0001b4571bbc x14: 1ffff00002b140b0 x13: dfff800000000000 x12: 0000000000000003 x11: ff8080000aacc2e8 x10: 0000000000000003 x9 : bd4b6f7bdfa62c00 x8 : bd4b6f7bdfa62c00 x7 : ffff80000827ce34 x6 : 0000000000000000 x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000 x2 : 0000000000000006 x1 : ffff80001226c340 x0 : ffff80019ed80000 Call trace: kernfs_remove_by_name_ns+0x10c/0x188 kernfs_remove_by_name include/linux/kernfs.h:618 [inline] remove_files fs/sysfs/group.c:28 [inline] sysfs_remove_group+0xf8/0x288 fs/sysfs/group.c:288 sysfs_remove_groups+0x5c/0xb4 fs/sysfs/group.c:312 __kobject_del+0x90/0x2d4 lib/kobject.c:587 kobject_del+0x48/0x68 lib/kobject.c:619 blk_mq_unregister_hctx block/blk-mq-sysfs.c:181 [inline] blk_mq_sysfs_unregister_hctxs+0x1c8/0x284 block/blk-mq-sysfs.c:309 __blk_mq_update_nr_hw_queues block/blk-mq.c:4707 [inline] blk_mq_update_nr_hw_queues+0x524/0xf4c block/blk-mq.c:4753 nbd_start_device+0x15c/0xa80 drivers/block/nbd.c:1361 nbd_start_device_ioctl drivers/block/nbd.c:1411 [inline] __nbd_ioctl drivers/block/nbd.c:1487 [inline] nbd_ioctl+0x430/0xc40 drivers/block/nbd.c:1527 blkdev_ioctl+0x408/0xb40 block/ioctl.c:615 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:870 [inline] __se_sys_ioctl fs/ioctl.c:856 [inline] __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:856 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x98/0x2c0 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142 do_el0_svc+0x64/0x218 arch/arm64/kernel/syscall.c:206 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581 irq event stamp: 2528 hardirqs last enabled at (2527): [] raw_spin_rq_unlock_irq kernel/sched/sched.h:1367 [inline] hardirqs last enabled at (2527): [] finish_lock_switch+0xbc/0x1e8 kernel/sched/core.c:5000 hardirqs last disabled at (2528): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405 softirqs last enabled at (2498): [] softirq_handle_end kernel/softirq.c:414 [inline] softirqs last enabled at (2498): [] __do_softirq+0xc14/0xea0 kernel/softirq.c:600 softirqs last disabled at (2349): [] ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:79 ---[ end trace 0000000000000000 ]--- FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 6217 Comm: syz-executor.1 Tainted: G W 6.1.43-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 Call trace: dump_backtrace+0x1c8/0x1f4 arch/arm64/kernel/stacktrace.c:158 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:165 __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x108/0x170 lib/dump_stack.c:106 dump_stack+0x1c/0x58 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:52 [inline] should_fail_ex+0x408/0x5d4 lib/fault-inject.c:147 __should_failslab+0xc8/0x128 mm/failslab.c:44 should_failslab+0x10/0x28 mm/slab_common.c:1452 slab_pre_alloc_hook mm/slab.h:712 [inline] slab_alloc_node mm/slub.c:3318 [inline] __kmem_cache_alloc_node+0x80/0x388 mm/slub.c:3437 kmalloc_node_trace+0x44/0x90 mm/slab_common.c:1058 kmalloc_node include/linux/slab.h:575 [inline] kzalloc_node include/linux/slab.h:700 [inline] sbitmap_queue_init_node+0x198/0x474 lib/sbitmap.c:440 bt_alloc block/blk-mq-tag.c:544 [inline] blk_mq_init_bitmaps block/blk-mq-tag.c:556 [inline] blk_mq_init_tags+0x108/0x24c block/blk-mq-tag.c:587 blk_mq_alloc_rq_map block/blk-mq.c:3308 [inline] blk_mq_alloc_map_and_rqs+0xcc/0xd14 block/blk-mq.c:3760 __blk_mq_alloc_map_and_rqs block/blk-mq.c:3782 [inline] blk_mq_map_swqueue+0x4e8/0x11fc block/blk-mq.c:3838 __blk_mq_update_nr_hw_queues block/blk-mq.c:4733 [inline] blk_mq_update_nr_hw_queues+0x798/0xf4c block/blk-mq.c:4753 nbd_start_device+0x15c/0xa80 drivers/block/nbd.c:1361 nbd_start_device_ioctl drivers/block/nbd.c:1411 [inline] __nbd_ioctl drivers/block/nbd.c:1487 [inline] nbd_ioctl+0x430/0xc40 drivers/block/nbd.c:1527 blkdev_ioctl+0x408/0xb40 block/ioctl.c:615 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:870 [inline] __se_sys_ioctl fs/ioctl.c:856 [inline] __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:856 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x98/0x2c0 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142 do_el0_svc+0x64/0x218 arch/arm64/kernel/syscall.c:206 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581