loop3: rw=1, sector=8192, nr_sectors = 4 limit=2
gfs2: fsid=syz:syz.0: Error 10 writing to journal, jid=0
gfs2: fsid=syz:syz.0: fatal: I/O error(s)
gfs2: fsid=syz:syz.0: about to withdraw this file system
BUG: sleeping function called from invalid context at kernel/sched/completion.c:101
in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4441, name: syz.3.4
preempt_count: 1, expected: 0
RCU nest depth: 0, expected: 0
5 locks held by syz.3.4/4441:
 #0: ffff0000fa212460 (sb_writers#16){.+.+}-{0:0}, at: vfs_writev fs/read_write.c:933 [inline]
 #0: ffff0000fa212460 (sb_writers#16){.+.+}-{0:0}, at: do_pwritev+0x1b4/0x2fc fs/read_write.c:1031
 #1: ffff0000e0758ec0 (&sb->s_type->i_mutex_key#23){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:758 [inline]
 #1: ffff0000e0758ec0 (&sb->s_type->i_mutex_key#23){+.+.}-{3:3}, at: gfs2_file_write_iter+0x2f8/0xc58 fs/gfs2/file.c:1115
 #2: ffff0000de35d058 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb0/0x1aa0 fs/gfs2/log.c:1043
 #3: ffff0000de35ce80 (&sdp->sd_log_lock){+.+.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]
 #3: ffff0000de35ce80 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_log_lock fs/gfs2/log.h:32 [inline]
 #3: ffff0000de35ce80 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x48/0x88 fs/gfs2/log.c:814
 #4: ffff0000de35d248 (&sdp->sd_freeze_mutex){+.+.}-{3:3}, at: signal_our_withdraw fs/gfs2/util.c:155 [inline]
 #4: ffff0000de35d248 (&sdp->sd_freeze_mutex){+.+.}-{3:3}, at: gfs2_withdraw+0x424/0x13a8 fs/gfs2/util.c:354
Preemption disabled at:
[<ffff80000a1aa388>] spin_lock include/linux/spinlock.h:351 [inline]
[<ffff80000a1aa388>] gfs2_log_lock fs/gfs2/log.h:32 [inline]
[<ffff80000a1aa388>] gfs2_flush_revokes+0x48/0x88 fs/gfs2/log.c:814
CPU: 0 PID: 4441 Comm: syz.3.4 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
Call trace:
 dump_backtrace+0x1c8/0x1f4 arch/arm64/kernel/stacktrace.c:158
 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:165
 __dump_stack+0x30/0x40 lib/dump_stack.c:88
 dump_stack_lvl+0xf8/0x160 lib/dump_stack.c:106
 dump_stack+0x1c/0x5c lib/dump_stack.c:113
 __might_resched+0x350/0x4cc kernel/sched/core.c:9966
 __might_sleep+0x94/0x110 kernel/sched/core.c:9895
 __wait_for_common kernel/sched/completion.c:101 [inline]
 wait_for_common kernel/sched/completion.c:117 [inline]
 wait_for_completion+0x24/0x5c kernel/sched/completion.c:138
 kthread_stop+0x1d0/0x810 kernel/kthread.c:711
 signal_our_withdraw fs/gfs2/util.c:159 [inline]
 gfs2_withdraw+0x48c/0x13a8 fs/gfs2/util.c:354
 gfs2_ail1_empty+0x740/0x7d0 fs/gfs2/log.c:377
 gfs2_flush_revokes+0x54/0x88 fs/gfs2/log.c:815
 revoke_lo_before_commit+0x3c/0x608 fs/gfs2/lops.c:869
 lops_before_commit fs/gfs2/lops.h:40 [inline]
 gfs2_log_flush+0x828/0x1aa0 fs/gfs2/log.c:1102
 gfs2_write_inode+0x184/0x34c fs/gfs2/super.c:453
 write_inode fs/fs-writeback.c:1470 [inline]
 __writeback_single_inode+0x5e0/0x157c fs/fs-writeback.c:1687
 writeback_single_inode+0x1c0/0x720 fs/fs-writeback.c:1743
 sync_inode_metadata+0xbc/0x10c fs/fs-writeback.c:2800
 gfs2_fsync+0x170/0x2e0 fs/gfs2/file.c:758
 vfs_fsync_range+0x168/0x188 fs/sync.c:188
 generic_write_sync include/linux/fs.h:2962 [inline]
 gfs2_file_write_iter+0x9b0/0xc58 fs/gfs2/file.c:1160
 do_iter_readv_writev fs/read_write.c:-1 [inline]
 do_iter_write+0x530/0x91c fs/read_write.c:861
 vfs_writev fs/read_write.c:934 [inline]
 do_pwritev+0x1c8/0x2fc fs/read_write.c:1031
 __do_sys_pwritev2 fs/read_write.c:1090 [inline]
 __se_sys_pwritev2 fs/read_write.c:1081 [inline]
 __arm64_sys_pwritev2+0xd4/0x108 fs/read_write.c:1081
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2bc arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:140
 do_el0_svc+0x58/0x13c arch/arm64/kernel/syscall.c:204
 el0_svc+0x58/0x138 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585
BUG: scheduling while atomic: syz.3.4/4441/0x00000002
5 locks held by syz.3.4/4441:
 #0: ffff0000fa212460 (sb_writers#16){.+.+}-{0:0}, at: vfs_writev fs/read_write.c:933 [inline]
 #0: ffff0000fa212460 (sb_writers#16){.+.+}-{0:0}, at: do_pwritev+0x1b4/0x2fc fs/read_write.c:1031
 #1: ffff0000e0758ec0 (&sb->s_type->i_mutex_key#23){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:758 [inline]
 #1: ffff0000e0758ec0 (&sb->s_type->i_mutex_key#23){+.+.}-{3:3}, at: gfs2_file_write_iter+0x2f8/0xc58 fs/gfs2/file.c:1115
 #2: ffff0000de35d058 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb0/0x1aa0 fs/gfs2/log.c:1043
 #3: ffff0000de35ce80 (&sdp->sd_log_lock){+.+.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]
 #3: ffff0000de35ce80 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_log_lock fs/gfs2/log.h:32 [inline]
 #3: ffff0000de35ce80 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x48/0x88 fs/gfs2/log.c:814
 #4: ffff0000de35d248 (&sdp->sd_freeze_mutex){+.+.}-{3:3}, at: signal_our_withdraw fs/gfs2/util.c:155 [inline]
 #4: ffff0000de35d248 (&sdp->sd_freeze_mutex){+.+.}-{3:3}, at: gfs2_withdraw+0x424/0x13a8 fs/gfs2/util.c:354
Modules linked in:
Preemption disabled at:
[<ffff80000a1aa388>] spin_lock include/linux/spinlock.h:351 [inline]
[<ffff80000a1aa388>] gfs2_log_lock fs/gfs2/log.h:32 [inline]
[<ffff80000a1aa388>] gfs2_flush_revokes+0x48/0x88 fs/gfs2/log.c:814
CPU: 0 PID: 4441 Comm: syz.3.4 Tainted: G        W          syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
Call trace:
 dump_backtrace+0x1c8/0x1f4 arch/arm64/kernel/stacktrace.c:158
 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:165
 __dump_stack+0x30/0x40 lib/dump_stack.c:88
 dump_stack_lvl+0xf8/0x160 lib/dump_stack.c:106
 dump_stack+0x1c/0x5c lib/dump_stack.c:113
 __schedule_bug+0x124/0x1c8 kernel/sched/core.c:5792
 schedule_debug kernel/sched/core.c:5819 [inline]
 __schedule+0xe68/0x1b18 kernel/sched/core.c:6454
 schedule+0xc4/0x170 kernel/sched/core.c:6637
 schedule_timeout+0xb4/0x2cc kernel/time/timer.c:2144
 do_wait_for_common+0x284/0x3e4 kernel/sched/completion.c:85
 __wait_for_common kernel/sched/completion.c:106 [inline]
 wait_for_common kernel/sched/completion.c:117 [inline]
 wait_for_completion+0x44/0x5c kernel/sched/completion.c:138
 kthread_stop+0x1d0/0x810 kernel/kthread.c:711
 signal_our_withdraw fs/gfs2/util.c:159 [inline]
 gfs2_withdraw+0x48c/0x13a8 fs/gfs2/util.c:354
 gfs2_ail1_empty+0x740/0x7d0 fs/gfs2/log.c:377
 gfs2_flush_revokes+0x54/0x88 fs/gfs2/log.c:815
 revoke_lo_before_commit+0x3c/0x608 fs/gfs2/lops.c:869
 lops_before_commit fs/gfs2/lops.h:40 [inline]
 gfs2_log_flush+0x828/0x1aa0 fs/gfs2/log.c:1102
 gfs2_write_inode+0x184/0x34c fs/gfs2/super.c:453
 write_inode fs/fs-writeback.c:1470 [inline]
 __writeback_single_inode+0x5e0/0x157c fs/fs-writeback.c:1687
 writeback_single_inode+0x1c0/0x720 fs/fs-writeback.c:1743
 sync_inode_metadata+0xbc/0x10c fs/fs-writeback.c:2800
 gfs2_fsync+0x170/0x2e0 fs/gfs2/file.c:758
 vfs_fsync_range+0x168/0x188 fs/sync.c:188
 generic_write_sync include/linux/fs.h:2962 [inline]
 gfs2_file_write_iter+0x9b0/0xc58 fs/gfs2/file.c:1160
 do_iter_readv_writev fs/read_write.c:-1 [inline]
 do_iter_write+0x530/0x91c fs/read_write.c:861
 vfs_writev fs/read_write.c:934 [inline]
 do_pwritev+0x1c8/0x2fc fs/read_write.c:1031
 __do_sys_pwritev2 fs/read_write.c:1090 [inline]
 __se_sys_pwritev2 fs/read_write.c:1081 [inline]
 __arm64_sys_pwritev2+0xd4/0x108 fs/read_write.c:1081
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2bc arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:140
 do_el0_svc+0x58/0x13c arch/arm64/kernel/syscall.c:204
 el0_svc+0x58/0x138 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585
gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0

=============================
[ BUG: Invalid wait context ]
syzkaller #0 Tainted: G        W         
-----------------------------
syz.3.4/4441 is trying to lock:
ffff8000179e8cc8 (uevent_sock_mutex){+.+.}-{3:3}, at: kobject_uevent_env+0x4cc/0x868 lib/kobject_uevent.c:601
other info that might help us debug this:
context-{4:4}
4 locks held by syz.3.4/4441:
 #0: ffff0000fa212460 (sb_writers#16){.+.+}-{0:0}, at: vfs_writev fs/read_write.c:933 [inline]
 #0: ffff0000fa212460 (sb_writers#16){.+.+}-{0:0}, at: do_pwritev+0x1b4/0x2fc fs/read_write.c:1031
 #1: ffff0000e0758ec0 (&sb->s_type->i_mutex_key#23){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:758 [inline]
 #1: ffff0000e0758ec0 (&sb->s_type->i_mutex_key#23){+.+.}-{3:3}, at: gfs2_file_write_iter+0x2f8/0xc58 fs/gfs2/file.c:1115
 #2: ffff0000de35d058 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb0/0x1aa0 fs/gfs2/log.c:1043
 #3: ffff0000de35ce80 (&sdp->sd_log_lock){+.+.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]
 #3: ffff0000de35ce80 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_log_lock fs/gfs2/log.h:32 [inline]
 #3: ffff0000de35ce80 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x48/0x88 fs/gfs2/log.c:814
stack backtrace:
CPU: 0 PID: 4441 Comm: syz.3.4 Tainted: G        W          syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
Call trace:
 dump_backtrace+0x1c8/0x1f4 arch/arm64/kernel/stacktrace.c:158
 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:165
 __dump_stack+0x30/0x40 lib/dump_stack.c:88
 dump_stack_lvl+0xf8/0x160 lib/dump_stack.c:106
 dump_stack+0x1c/0x5c lib/dump_stack.c:113
 print_lock_invalid_wait_context kernel/locking/lockdep.c:4701 [inline]
 check_wait_context kernel/locking/lockdep.c:4762 [inline]
 __lock_acquire+0x1adc/0x6544 kernel/locking/lockdep.c:4999
 lock_acquire+0x20c/0x644 kernel/locking/lockdep.c:5662
 __mutex_lock_common+0x190/0x1f38 kernel/locking/mutex.c:603
 __mutex_lock kernel/locking/mutex.c:747 [inline]
 mutex_lock_nested+0x38/0x44 kernel/locking/mutex.c:799
 kobject_uevent_env+0x4cc/0x868 lib/kobject_uevent.c:601
 kobject_uevent+0x2c/0x3c lib/kobject_uevent.c:657
 gfs2_withdraw+0xec4/0x13a8 fs/gfs2/util.c:356
 gfs2_ail1_empty+0x740/0x7d0 fs/gfs2/log.c:377
 gfs2_flush_revokes+0x54/0x88 fs/gfs2/log.c:815
 revoke_lo_before_commit+0x3c/0x608 fs/gfs2/lops.c:869
 lops_before_commit fs/gfs2/lops.h:40 [inline]
 gfs2_log_flush+0x828/0x1aa0 fs/gfs2/log.c:1102
 gfs2_write_inode+0x184/0x34c fs/gfs2/super.c:453
 write_inode fs/fs-writeback.c:1470 [inline]
 __writeback_single_inode+0x5e0/0x157c fs/fs-writeback.c:1687
 writeback_single_inode+0x1c0/0x720 fs/fs-writeback.c:1743
 sync_inode_metadata+0xbc/0x10c fs/fs-writeback.c:2800
 gfs2_fsync+0x170/0x2e0 fs/gfs2/file.c:758
 vfs_fsync_range+0x168/0x188 fs/sync.c:188
 generic_write_sync include/linux/fs.h:2962 [inline]
 gfs2_file_write_iter+0x9b0/0xc58 fs/gfs2/file.c:1160
 do_iter_readv_writev fs/read_write.c:-1 [inline]
 do_iter_write+0x530/0x91c fs/read_write.c:861
 vfs_writev fs/read_write.c:934 [inline]
 do_pwritev+0x1c8/0x2fc fs/read_write.c:1031
 __do_sys_pwritev2 fs/read_write.c:1090 [inline]
 __se_sys_pwritev2 fs/read_write.c:1081 [inline]
 __arm64_sys_pwritev2+0xd4/0x108 fs/read_write.c:1081
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2bc arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:140
 do_el0_svc+0x58/0x13c arch/arm64/kernel/syscall.c:204
 el0_svc+0x58/0x138 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585
gfs2: fsid=syz:syz.0: File system withdrawn
CPU: 1 PID: 4441 Comm: syz.3.4 Tainted: G        W          syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
Call trace:
 dump_backtrace+0x1c8/0x1f4 arch/arm64/kernel/stacktrace.c:158
 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:165
 __dump_stack+0x30/0x40 lib/dump_stack.c:88
 dump_stack_lvl+0xf8/0x160 lib/dump_stack.c:106
 dump_stack+0x1c/0x5c lib/dump_stack.c:113
 gfs2_withdraw+0xf9c/0x13a8 fs/gfs2/util.c:366
 gfs2_ail1_empty+0x740/0x7d0 fs/gfs2/log.c:377
 gfs2_flush_revokes+0x54/0x88 fs/gfs2/log.c:815
 revoke_lo_before_commit+0x3c/0x608 fs/gfs2/lops.c:869
 lops_before_commit fs/gfs2/lops.h:40 [inline]
 gfs2_log_flush+0x828/0x1aa0 fs/gfs2/log.c:1102
 gfs2_write_inode+0x184/0x34c fs/gfs2/super.c:453
 write_inode fs/fs-writeback.c:1470 [inline]
 __writeback_single_inode+0x5e0/0x157c fs/fs-writeback.c:1687
 writeback_single_inode+0x1c0/0x720 fs/fs-writeback.c:1743
 sync_inode_metadata+0xbc/0x10c fs/fs-writeback.c:2800
 gfs2_fsync+0x170/0x2e0 fs/gfs2/file.c:758
 vfs_fsync_range+0x168/0x188 fs/sync.c:188
 generic_write_sync include/linux/fs.h:2962 [inline]
 gfs2_file_write_iter+0x9b0/0xc58 fs/gfs2/file.c:1160
 do_iter_readv_writev fs/read_write.c:-1 [inline]
 do_iter_write+0x530/0x91c fs/read_write.c:861
 vfs_writev fs/read_write.c:934 [inline]
 do_pwritev+0x1c8/0x2fc fs/read_write.c:1031
 __do_sys_pwritev2 fs/read_write.c:1090 [inline]
 __se_sys_pwritev2 fs/read_write.c:1081 [inline]
 __arm64_sys_pwritev2+0xd4/0x108 fs/read_write.c:1081
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2bc arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:140
 do_el0_svc+0x58/0x13c arch/arm64/kernel/syscall.c:204
 el0_svc+0x58/0x138 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585