loop0: rw=1, sector=131324, nr_sectors = 4 limit=32768
gfs2: fsid=syz:syz.0: Error 10 writing to journal, jid=0
gfs2: fsid=syz:syz.0: fatal: I/O error(s)
gfs2: fsid=syz:syz.0: about to withdraw this file system
BUG: sleeping function called from invalid context at fs/gfs2/glock.c:1336
in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6328, name: syz-executor.0
preempt_count: 1, expected: 0
RCU nest depth: 0, expected: 0
4 locks held by syz-executor.0/6328:
 #0: ffff0000d2b420e0 (&type->s_umount_key#49){+.+.}-{3:3}, at: deactivate_super+0xd8/0x100 fs/super.c:361
 #1: ffff0000c7c1cb78 (&sdp->sd_quota_sync_mutex){+.+.}-{3:3}, at: gfs2_quota_sync+0x9c/0x534 fs/gfs2/quota.c:1302
 #2: ffff0000c7c1d060 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb8/0x21ac fs/gfs2/log.c:1043
 #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: spin_lock include/linux/spinlock.h:350 [inline]
 #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_log_lock fs/gfs2/log.h:32 [inline]
 #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x50/0x94 fs/gfs2/log.c:814
Preemption disabled at:
[<ffff80000a3c57a0>] spin_lock include/linux/spinlock.h:350 [inline]
[<ffff80000a3c57a0>] gfs2_log_lock fs/gfs2/log.h:32 [inline]
[<ffff80000a3c57a0>] gfs2_flush_revokes+0x50/0x94 fs/gfs2/log.c:814
CPU: 0 PID: 6328 Comm: syz-executor.0 Not tainted 6.4.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
Call trace:
 dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:233
 show_stack+0x2c/0x44 arch/arm64/kernel/stacktrace.c:240
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106
 dump_stack+0x1c/0x28 lib/dump_stack.c:113
 __might_resched+0x374/0x4d0 kernel/sched/core.c:10153
 __might_sleep+0x90/0xe4 kernel/sched/core.c:10082
 gfs2_glock_wait+0x60/0x298 fs/gfs2/glock.c:1336
 gfs2_glock_nq+0x94c/0x137c fs/gfs2/glock.c:1587
 gfs2_glock_nq_init fs/gfs2/glock.h:261 [inline]
 gfs2_freeze_lock+0x78/0xf0 fs/gfs2/util.c:107
 signal_our_withdraw fs/gfs2/util.c:160 [inline]
 gfs2_withdraw+0x49c/0x134c fs/gfs2/util.c:351
 gfs2_ail1_empty+0x734/0x7c4 fs/gfs2/log.c:377
 gfs2_flush_revokes+0x5c/0x94 fs/gfs2/log.c:815
 revoke_lo_before_commit+0x3c/0x640 fs/gfs2/lops.c:869
 lops_before_commit fs/gfs2/lops.h:40 [inline]
 gfs2_log_flush+0x950/0x21ac fs/gfs2/log.c:1102
 do_sync+0x8e0/0xaf4 fs/gfs2/quota.c:975
 gfs2_quota_sync+0x2e4/0x534 fs/gfs2/quota.c:1318
 gfs2_sync_fs+0x4c/0xc4 fs/gfs2/super.c:665
 sync_filesystem+0xe8/0x218 fs/sync.c:56
 generic_shutdown_super+0x70/0x328 fs/super.c:473
 kill_block_super+0x70/0xdc fs/super.c:1407
 gfs2_kill_sb+0x2cc/0x330
 deactivate_locked_super+0xac/0x124 fs/super.c:331
 deactivate_super+0xe0/0x100 fs/super.c:362
 cleanup_mnt+0x34c/0x3dc fs/namespace.c:1177
 __cleanup_mnt+0x20/0x30 fs/namespace.c:1184
 task_work_run+0x230/0x2e0 kernel/task_work.c:179
 resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]
 do_notify_resume+0x2180/0x3c90 arch/arm64/kernel/signal.c:1304
 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline]
 el0_svc+0x90/0x15c arch/arm64/kernel/entry-common.c:638
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:591
BUG: scheduling while atomic: syz-executor.0/6328/0x00000002
4 locks held by syz-executor.0/6328:
 #0: ffff0000d2b420e0 (&type->s_umount_key#49){+.+.}-{3:3}, at: deactivate_super+0xd8/0x100 fs/super.c:361
 #1: ffff0000c7c1cb78 (&sdp->sd_quota_sync_mutex){+.+.}-{3:3}, at: gfs2_quota_sync+0x9c/0x534 fs/gfs2/quota.c:1302
 #2: ffff0000c7c1d060 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb8/0x21ac fs/gfs2/log.c:1043
 #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: spin_lock include/linux/spinlock.h:350 [inline]
 #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_log_lock fs/gfs2/log.h:32 [inline]
 #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x50/0x94 fs/gfs2/log.c:814
Modules linked in:
Preemption disabled at:
[<ffff80000a3c57a0>] spin_lock include/linux/spinlock.h:350 [inline]
[<ffff80000a3c57a0>] gfs2_log_lock fs/gfs2/log.h:32 [inline]
[<ffff80000a3c57a0>] gfs2_flush_revokes+0x50/0x94 fs/gfs2/log.c:814
CPU: 0 PID: 6328 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
Call trace:
 dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:233
 show_stack+0x2c/0x44 arch/arm64/kernel/stacktrace.c:240
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106
 dump_stack+0x1c/0x28 lib/dump_stack.c:113
 __schedule_bug+0x128/0x1dc kernel/sched/core.c:5894
 schedule_debug kernel/sched/core.c:5921 [inline]
 __schedule+0x140c/0x23b8 kernel/sched/core.c:6563
 schedule+0xc4/0x170 kernel/sched/core.c:6745
 schedule_timeout+0xb8/0x348 kernel/time/timer.c:2143
 do_wait_for_common+0x30c/0x468 kernel/sched/completion.c:85
 __wait_for_common kernel/sched/completion.c:106 [inline]
 wait_for_common kernel/sched/completion.c:117 [inline]
 wait_for_completion+0x48/0x60 kernel/sched/completion.c:138
 kthread_stop+0x1b4/0x790 kernel/kthread.c:700
 gfs2_make_fs_ro+0x154/0x5d4 fs/gfs2/super.c:542
 signal_our_withdraw fs/gfs2/util.c:166 [inline]
 gfs2_withdraw+0x4dc/0x134c fs/gfs2/util.c:351
 gfs2_ail1_empty+0x734/0x7c4 fs/gfs2/log.c:377
 gfs2_flush_revokes+0x5c/0x94 fs/gfs2/log.c:815
 revoke_lo_before_commit+0x3c/0x640 fs/gfs2/lops.c:869
 lops_before_commit fs/gfs2/lops.h:40 [inline]
 gfs2_log_flush+0x950/0x21ac fs/gfs2/log.c:1102
 do_sync+0x8e0/0xaf4 fs/gfs2/quota.c:975
 gfs2_quota_sync+0x2e4/0x534 fs/gfs2/quota.c:1318
 gfs2_sync_fs+0x4c/0xc4 fs/gfs2/super.c:665
 sync_filesystem+0xe8/0x218 fs/sync.c:56
 generic_shutdown_super+0x70/0x328 fs/super.c:473
 kill_block_super+0x70/0xdc fs/super.c:1407
 gfs2_kill_sb+0x2cc/0x330
 deactivate_locked_super+0xac/0x124 fs/super.c:331
 deactivate_super+0xe0/0x100 fs/super.c:362
 cleanup_mnt+0x34c/0x3dc fs/namespace.c:1177
 __cleanup_mnt+0x20/0x30 fs/namespace.c:1184
 task_work_run+0x230/0x2e0 kernel/task_work.c:179
 resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]
 do_notify_resume+0x2180/0x3c90 arch/arm64/kernel/signal.c:1304
 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline]
 el0_svc+0x90/0x15c arch/arm64/kernel/entry-common.c:638
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:591
gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_slot_count" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1475
CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
Call trace:
 dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:233
 show_stack+0x2c/0x44 arch/arm64/kernel/stacktrace.c:240
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106
 dump_stack+0x1c/0x28 lib/dump_stack.c:113
 gfs2_assert_warn_i+0x16c/0x278 fs/gfs2/util.c:425
 gfs2_quota_cleanup+0x488/0x664 fs/gfs2/quota.c:1475
 gfs2_make_fs_ro+0x4dc/0x5d4 fs/gfs2/super.c:575
 signal_our_withdraw fs/gfs2/util.c:166 [inline]
 gfs2_withdraw+0x4dc/0x134c fs/gfs2/util.c:351
 gfs2_ail1_empty+0x734/0x7c4 fs/gfs2/log.c:377
 gfs2_flush_revokes+0x5c/0x94 fs/gfs2/log.c:815
 revoke_lo_before_commit+0x3c/0x640 fs/gfs2/lops.c:869
 lops_before_commit fs/gfs2/lops.h:40 [inline]
 gfs2_log_flush+0x950/0x21ac fs/gfs2/log.c:1102
 do_sync+0x8e0/0xaf4 fs/gfs2/quota.c:975
 gfs2_quota_sync+0x2e4/0x534 fs/gfs2/quota.c:1318
 gfs2_sync_fs+0x4c/0xc4 fs/gfs2/super.c:665
 sync_filesystem+0xe8/0x218 fs/sync.c:56
 generic_shutdown_super+0x70/0x328 fs/super.c:473
 kill_block_super+0x70/0xdc fs/super.c:1407
 gfs2_kill_sb+0x2cc/0x330
 deactivate_locked_super+0xac/0x124 fs/super.c:331
 deactivate_super+0xe0/0x100 fs/super.c:362
 cleanup_mnt+0x34c/0x3dc fs/namespace.c:1177
 __cleanup_mnt+0x20/0x30 fs/namespace.c:1184
 task_work_run+0x230/0x2e0 kernel/task_work.c:179
 resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]
 do_notify_resume+0x2180/0x3c90 arch/arm64/kernel/signal.c:1304
 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline]
 el0_svc+0x90/0x15c arch/arm64/kernel/entry-common.c:638
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:591
gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0

=============================
[ BUG: Invalid wait context ]
6.4.0-rc2-syzkaller #0 Tainted: G        W         
-----------------------------
syz-executor.0/6328 is trying to lock:
ffff800018ac6668 (uevent_sock_mutex){+.+.}-{3:3}, at: kobject_uevent_env+0x4d0/0x874 lib/kobject_uevent.c:586
other info that might help us debug this:
context-{4:4}
4 locks held by syz-executor.0/6328:
 #0: ffff0000d2b420e0 (&type->s_umount_key#49){+.+.}-{3:3}, at: deactivate_super+0xd8/0x100 fs/super.c:361
 #1: ffff0000c7c1cb78 (&sdp->sd_quota_sync_mutex){+.+.}-{3:3}, at: gfs2_quota_sync+0x9c/0x534 fs/gfs2/quota.c:1302
 #2: ffff0000c7c1d060 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb8/0x21ac fs/gfs2/log.c:1043
 #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: spin_lock include/linux/spinlock.h:350 [inline]
 #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_log_lock fs/gfs2/log.h:32 [inline]
 #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x50/0x94 fs/gfs2/log.c:814
stack backtrace:
CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
Call trace:
 dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:233
 show_stack+0x2c/0x44 arch/arm64/kernel/stacktrace.c:240
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106
 dump_stack+0x1c/0x28 lib/dump_stack.c:113
 print_lock_invalid_wait_context kernel/locking/lockdep.c:4724 [inline]
 check_wait_context kernel/locking/lockdep.c:4785 [inline]
 __lock_acquire+0x1ba4/0x75f0 kernel/locking/lockdep.c:5024
 lock_acquire+0x23c/0x71c kernel/locking/lockdep.c:5691
 __mutex_lock_common+0x190/0x21a0 kernel/locking/mutex.c:603
 __mutex_lock kernel/locking/mutex.c:747 [inline]
 mutex_lock_nested+0x2c/0x38 kernel/locking/mutex.c:799
 kobject_uevent_env+0x4d0/0x874 lib/kobject_uevent.c:586
 kobject_uevent+0x2c/0x3c lib/kobject_uevent.c:642
 gfs2_withdraw+0xe1c/0x134c fs/gfs2/util.c:353
 gfs2_ail1_empty+0x734/0x7c4 fs/gfs2/log.c:377
 gfs2_flush_revokes+0x5c/0x94 fs/gfs2/log.c:815
 revoke_lo_before_commit+0x3c/0x640 fs/gfs2/lops.c:869
 lops_before_commit fs/gfs2/lops.h:40 [inline]
 gfs2_log_flush+0x950/0x21ac fs/gfs2/log.c:1102
 do_sync+0x8e0/0xaf4 fs/gfs2/quota.c:975
 gfs2_quota_sync+0x2e4/0x534 fs/gfs2/quota.c:1318
 gfs2_sync_fs+0x4c/0xc4 fs/gfs2/super.c:665
 sync_filesystem+0xe8/0x218 fs/sync.c:56
 generic_shutdown_super+0x70/0x328 fs/super.c:473
 kill_block_super+0x70/0xdc fs/super.c:1407
 gfs2_kill_sb+0x2cc/0x330
 deactivate_locked_super+0xac/0x124 fs/super.c:331
 deactivate_super+0xe0/0x100 fs/super.c:362
 cleanup_mnt+0x34c/0x3dc fs/namespace.c:1177
 __cleanup_mnt+0x20/0x30 fs/namespace.c:1184
 task_work_run+0x230/0x2e0 kernel/task_work.c:179
 resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]
 do_notify_resume+0x2180/0x3c90 arch/arm64/kernel/signal.c:1304
 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline]
 el0_svc+0x90/0x15c arch/arm64/kernel/entry-common.c:638
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:591
gfs2: fsid=syz:syz.0: File system withdrawn
CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
Call trace:
 dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:233
 show_stack+0x2c/0x44 arch/arm64/kernel/stacktrace.c:240
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106
 dump_stack+0x1c/0x28 lib/dump_stack.c:113
 gfs2_withdraw+0xf08/0x134c fs/gfs2/util.c:364
 gfs2_ail1_empty+0x734/0x7c4 fs/gfs2/log.c:377
 gfs2_flush_revokes+0x5c/0x94 fs/gfs2/log.c:815
 revoke_lo_before_commit+0x3c/0x640 fs/gfs2/lops.c:869
 lops_before_commit fs/gfs2/lops.h:40 [inline]
 gfs2_log_flush+0x950/0x21ac fs/gfs2/log.c:1102
 do_sync+0x8e0/0xaf4 fs/gfs2/quota.c:975
 gfs2_quota_sync+0x2e4/0x534 fs/gfs2/quota.c:1318
 gfs2_sync_fs+0x4c/0xc4 fs/gfs2/super.c:665
 sync_filesystem+0xe8/0x218 fs/sync.c:56
 generic_shutdown_super+0x70/0x328 fs/super.c:473
 kill_block_super+0x70/0xdc fs/super.c:1407
 gfs2_kill_sb+0x2cc/0x330
 deactivate_locked_super+0xac/0x124 fs/super.c:331
 deactivate_super+0xe0/0x100 fs/super.c:362
 cleanup_mnt+0x34c/0x3dc fs/namespace.c:1177
 __cleanup_mnt+0x20/0x30 fs/namespace.c:1184
 task_work_run+0x230/0x2e0 kernel/task_work.c:179
 resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]
 do_notify_resume+0x2180/0x3c90 arch/arm64/kernel/signal.c:1304
 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline]
 el0_svc+0x90/0x15c arch/arm64/kernel/entry-common.c:638
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:591
==================================================================
BUG: KASAN: user-memory-access in instrument_atomic_read_write include/linux/instrumented.h:96 [inline]
BUG: KASAN: user-memory-access in test_and_clear_bit include/asm-generic/bitops/instrumented-atomic.h:85 [inline]
BUG: KASAN: user-memory-access in slot_put+0xdc/0x1f4 fs/gfs2/quota.c:359
Write of size 8 at addr 0000000000001998 by task syz-executor.0/6328

CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
Call trace:
 dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:233
 show_stack+0x2c/0x44 arch/arm64/kernel/stacktrace.c:240
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106
 print_report+0xe4/0x514 mm/kasan/report.c:465
 kasan_report+0xd4/0x130 mm/kasan/report.c:572
 kasan_check_range+0x264/0x2a4 mm/kasan/generic.c:187
 __kasan_check_write+0x20/0x30 mm/kasan/shadow.c:37
 instrument_atomic_read_write include/linux/instrumented.h:96 [inline]
 test_and_clear_bit include/asm-generic/bitops/instrumented-atomic.h:85 [inline]
 slot_put+0xdc/0x1f4 fs/gfs2/quota.c:359
 qd_unlock+0x160/0x2b8 fs/gfs2/quota.c:494
 gfs2_quota_sync+0x3c0/0x534 fs/gfs2/quota.c:1325
 gfs2_sync_fs+0x4c/0xc4 fs/gfs2/super.c:665
 sync_filesystem+0xe8/0x218 fs/sync.c:56
 generic_shutdown_super+0x70/0x328 fs/super.c:473
 kill_block_super+0x70/0xdc fs/super.c:1407
 gfs2_kill_sb+0x2cc/0x330
 deactivate_locked_super+0xac/0x124 fs/super.c:331
 deactivate_super+0xe0/0x100 fs/super.c:362
 cleanup_mnt+0x34c/0x3dc fs/namespace.c:1177
 __cleanup_mnt+0x20/0x30 fs/namespace.c:1184
 task_work_run+0x230/0x2e0 kernel/task_work.c:179
 resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]
 do_notify_resume+0x2180/0x3c90 arch/arm64/kernel/signal.c:1304
 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline]
 el0_svc+0x90/0x15c arch/arm64/kernel/entry-common.c:638
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:591
==================================================================
Unable to handle kernel paging request at virtual address 0000000000001998
Mem abort info:
  ESR = 0x0000000096000005
  EC = 0x25: DABT (current EL), IL = 32 bits
  SET = 0, FnV = 0
  EA = 0, S1PTW = 0
  FSC = 0x05: level 1 translation fault
Data abort info:
  ISV = 0, ISS = 0x00000005
  CM = 0, WnR = 0
user pgtable: 4k pages, 48-bit VAs, pgdp=000000011eb29000
[0000000000001998] pgd=0800000108238003, p4d=0800000108238003, pud=0000000000000000
Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP
Modules linked in:
CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G    B   W          6.4.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __lse_atomic64_fetch_andnot arch/arm64/include/asm/atomic_lse.h:166 [inline]
pc : arch_atomic64_fetch_andnot arch/arm64/include/asm/atomic.h:85 [inline]
pc : arch_atomic_long_fetch_andnot include/linux/atomic/atomic-long.h:305 [inline]
pc : arch_test_and_clear_bit include/asm-generic/bitops/atomic.h:53 [inline]
pc : test_and_clear_bit include/asm-generic/bitops/instrumented-atomic.h:86 [inline]
pc : slot_put+0xf4/0x1f4 fs/gfs2/quota.c:359
lr : arch_atomic64_fetch_andnot arch/arm64/include/asm/atomic.h:85 [inline]
lr : arch_atomic_long_fetch_andnot include/linux/atomic/atomic-long.h:305 [inline]
lr : arch_test_and_clear_bit include/asm-generic/bitops/atomic.h:53 [inline]
lr : test_and_clear_bit include/asm-generic/bitops/instrumented-atomic.h:86 [inline]
lr : slot_put+0xf0/0x1f4 fs/gfs2/quota.c:359
sp : ffff80001e8d7640
x29: ffff80001e8d7640 x28: 0000000000000001 x27: ffff0000e99bd0f0
x26: 0000000000000002 x25: 0000000000000333 x24: dfff800000000000
x23: 0000000000000000 x22: 1fffe0001d337a15 x21: 0000000000000004
x20: ffff0000e99bd0a8 x19: ffff0000c7c1cc00 x18: 1fffe00036848fbe
x17: 3d3d3d3d3d3d3d3d x16: ffff80000826a1c0 x15: 0000000000000003
x14: 0000000000000000 x13: 0000000000000001 x12: 0000000000000001
x11: 0000000000000001 x10: 0000000000000000 x9 : 0000000000000000
x8 : 0000000000001998 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff80001e8d6e78 x4 : ffff800015f8e880 x3 : ffff8000081b79c8
x2 : 0000000000000001 x1 : 0000000000000000 x0 : 0000000000000000
Call trace:
 __lse_atomic64_fetch_andnot arch/arm64/include/asm/atomic_lse.h:166 [inline]
 arch_atomic64_fetch_andnot arch/arm64/include/asm/atomic.h:85 [inline]
 arch_atomic_long_fetch_andnot include/linux/atomic/atomic-long.h:305 [inline]
 arch_test_and_clear_bit include/asm-generic/bitops/atomic.h:53 [inline]
 test_and_clear_bit include/asm-generic/bitops/instrumented-atomic.h:86 [inline]
 slot_put+0xf4/0x1f4 fs/gfs2/quota.c:359
 qd_unlock+0x160/0x2b8 fs/gfs2/quota.c:494
 gfs2_quota_sync+0x3c0/0x534 fs/gfs2/quota.c:1325
 gfs2_sync_fs+0x4c/0xc4 fs/gfs2/super.c:665
 sync_filesystem+0xe8/0x218 fs/sync.c:56
 generic_shutdown_super+0x70/0x328 fs/super.c:473
 kill_block_super+0x70/0xdc fs/super.c:1407
 gfs2_kill_sb+0x2cc/0x330
 deactivate_locked_super+0xac/0x124 fs/super.c:331
 deactivate_super+0xe0/0x100 fs/super.c:362
 cleanup_mnt+0x34c/0x3dc fs/namespace.c:1177
 __cleanup_mnt+0x20/0x30 fs/namespace.c:1184
 task_work_run+0x230/0x2e0 kernel/task_work.c:179
 resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]
 do_notify_resume+0x2180/0x3c90 arch/arm64/kernel/signal.c:1304
 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline]
 el0_svc+0x90/0x15c arch/arm64/kernel/entry-common.c:638
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:591
Code: d346ff39 d503201f 978435d5 8b190ee8 (f8f51108) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	d346ff39 	lsr	x25, x25, #6
   4:	d503201f 	nop
   8:	978435d5 	bl	0xfffffffffe10d75c
   c:	8b190ee8 	add	x8, x23, x25, lsl #3
* 10:	f8f51108 	ldclral	x21, x8, [x8] <-- trapping instruction