[v5.15] WARNING in kernfs_remove_by_name_ns
8 views
Skip to first unread message
syzbot
Aug 11, 2023, 5:03:55 AM8/11/23
to syzkaller...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: c275eaaaa342 Linux 5.15.125
git tree: linux-5.15.y
console output: https://syzkaller.appspot.com/x/log.txt?x=13eea3aba80000
kernel config: https://syzkaller.appspot.com/x/.config?x=d5effadda2808dce
dashboard link: https://syzkaller.appspot.com/bug?extid=f8b033741300b198ef31
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
userspace arch: arm64
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/4ec3cb6c37d5/disk-c275eaaa.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/1d758e21b247/vmlinux-c275eaaa.xz
kernel image: https://storage.googleapis.com/syzbot-assets/d2177731a824/Image-c275eaaa.gz.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+f8b033...@syzkaller.appspotmail.com
------------[ cut here ]------------
kernfs: can not remove 'nr_tags', no directory
WARNING: CPU: 1 PID: 5612 at fs/kernfs/dir.c:1545 kernfs_remove_by_name_ns+0xd0/0x158
Modules linked in:
CPU: 1 PID: 5612 Comm: syz-executor.5 Not tainted 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
sp : ffff800026787760
x29: ffff800026787760 x28: ffff0000cbe0f000 x27: ffff0000cbeb4f00
x26: 0000000000000000 x25: ffff800015087588 x24: 1ffff000023e958c
x23: dfff800000000000 x22: ffff8000150875c0 x21: 0000000000000000
x20: 0000000000000000 x19: 00000000fffffffe x18: 0000000000000001
x17: ff8080000ab5a77c x16: ffff80001195fe04 x15: ffff80000ab5a77c
x14: 1ffff0000292006a x13: ffffffffffffffff x12: 0000000000040000
x11: 000000000003088b x10: ffff80001ff5a000 x9 : 807d9fd1cdfa3900
x8 : 807d9fd1cdfa3900 x7 : 0000000000000000 x6 : 0000000000000000
x5 : 0000000000000080 x4 : 0000000000000000 x3 : ffff80000854c6bc
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 000000000000002e
Call trace:
kernfs_remove_by_name_ns+0xd0/0x158
kernfs_remove_by_name include/linux/kernfs.h:598 [inline]
remove_files fs/sysfs/group.c:28 [inline]
sysfs_remove_group+0xf8/0x288 fs/sysfs/group.c:289
sysfs_remove_groups+0x5c/0xb4 fs/sysfs/group.c:313
__kobject_del+0x90/0x2d4 lib/kobject.c:619
kobject_del+0x48/0x68 lib/kobject.c:651
blk_mq_unregister_hctx block/blk-mq-sysfs.c:183 [inline]
blk_mq_sysfs_unregister+0x1a0/0x274 block/blk-mq-sysfs.c:309
__blk_mq_update_nr_hw_queues block/blk-mq.c:3764 [inline]
blk_mq_update_nr_hw_queues+0x504/0xc58 block/blk-mq.c:3804
nbd_start_device+0x158/0xb34 drivers/block/nbd.c:1301
nbd_start_device_ioctl drivers/block/nbd.c:1351 [inline]
__nbd_ioctl drivers/block/nbd.c:1427 [inline]
nbd_ioctl+0x420/0xc2c drivers/block/nbd.c:1467
blkdev_ioctl+0x3d8/0xbd0 block/ioctl.c:601
block_ioctl+0xa8/0x114 block/fops.c:493
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:874 [inline]
__se_sys_ioctl fs/ioctl.c:860 [inline]
__arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:860
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:596
el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:614
el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
irq event stamp: 964
hardirqs last enabled at (963): [<ffff80000832992c>] console_unlock+0xc7c/0x1394 kernel/printk/printk.c:2738
hardirqs last disabled at (964): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (8): [<ffff8000080300b4>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:31
softirqs last disabled at (6): [<ffff800008030080>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:18
---[ end trace 31393fbc119808d5 ]---
------------[ cut here ]------------
kernfs: can not remove 'nr_reserved_tags', no directory
WARNING: CPU: 1 PID: 5612 at fs/kernfs/dir.c:1545 kernfs_remove_by_name_ns+0xd0/0x158
Modules linked in:
CPU: 1 PID: 5612 Comm: syz-executor.5 Tainted: G W 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
sp : ffff800026787760
x29: ffff800026787760 x28: ffff0000cbe0f000
x27: ffff0000cbeb4f00
x26: 0000000000000000
x25: ffff800015087590
x24: 1ffff000023e958c
x23: dfff800000000000
x22: ffff800015087620
x21: 0000000000000000
x20: 0000000000000000
x19: 00000000fffffffe
x18: 0000000000000001
x17: ff80800008334ef0
x16: ffff80001195fe04
x15: ffff800008334ef0
x14: 00000000ffffffff
x13: ffffffffffffffff
x12: 0000000000040000
x11: 000000000003ffff
x10: ffff80001ff5a000
x9 : 807d9fd1cdfa3900
x8 : 807d9fd1cdfa3900 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff800026786ed8 x4 : ffff8000149dfca0 x3 : ffff80000854c6bc
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000037
Call trace:
kernfs_remove_by_name_ns+0xd0/0x158
kernfs_remove_by_name include/linux/kernfs.h:598 [inline]
remove_files fs/sysfs/group.c:28 [inline]
sysfs_remove_group+0xf8/0x288 fs/sysfs/group.c:289
sysfs_remove_groups+0x5c/0xb4 fs/sysfs/group.c:313
__kobject_del+0x90/0x2d4 lib/kobject.c:619
kobject_del+0x48/0x68 lib/kobject.c:651
blk_mq_unregister_hctx block/blk-mq-sysfs.c:183 [inline]
blk_mq_sysfs_unregister+0x1a0/0x274 block/blk-mq-sysfs.c:309
__blk_mq_update_nr_hw_queues block/blk-mq.c:3764 [inline]
blk_mq_update_nr_hw_queues+0x504/0xc58 block/blk-mq.c:3804
nbd_start_device+0x158/0xb34 drivers/block/nbd.c:1301
nbd_start_device_ioctl drivers/block/nbd.c:1351 [inline]
__nbd_ioctl drivers/block/nbd.c:1427 [inline]
nbd_ioctl+0x420/0xc2c drivers/block/nbd.c:1467
blkdev_ioctl+0x3d8/0xbd0 block/ioctl.c:601
block_ioctl+0xa8/0x114 block/fops.c:493
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:874 [inline]
__se_sys_ioctl fs/ioctl.c:860 [inline]
__arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:860
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:596
el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:614
el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
irq event stamp: 1034
hardirqs last enabled at (1033): [<ffff80000832ab30>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (1034): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (8): [<ffff8000080300b4>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:31
softirqs last disabled at (6): [<ffff800008030080>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:18
---[ end trace 31393fbc119808d6 ]---
------------[ cut here ]------------
kernfs: can not remove 'cpu_list', no directory
WARNING: CPU: 1 PID: 5612 at fs/kernfs/dir.c:1545 kernfs_remove_by_name_ns+0xd0/0x158
Modules linked in:
CPU: 1 PID: 5612 Comm: syz-executor.5 Tainted: G W 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
sp : ffff800026787760
x29: ffff800026787760 x28: ffff0000cbe0f000 x27: ffff0000cbeb4f00
x26: 0000000000000000 x25: ffff800015087598 x24: 1ffff000023e958c
x23: dfff800000000000 x22: ffff800015087680 x21: 0000000000000000
x20: 0000000000000000 x19: 00000000fffffffe x18: 1fffe00036902f8e
x17: 1fffe00036902f8e x16: ffff80001195fe04 x15: ffff80001499f100
x14: 1ffff0000292006a x13: ffffffffffffffff x12: 0000000000040000
x11: 000000000003ffff x10: ffff80001ff5a000 x9 : 807d9fd1cdfa3900
x8 : 807d9fd1cdfa3900 x7 : 0000000000000000 x6 : 0000000000000000
x5 : 0000000000000080 x4 : 0000000000000000 x3 : ffff80000a956340
x2 : ffff0001b4817d10 x1 : 0000000100000000 x0 : 000000000000002f
Call trace:
kernfs_remove_by_name_ns+0xd0/0x158
kernfs_remove_by_name include/linux/kernfs.h:598 [inline]
remove_files fs/sysfs/group.c:28 [inline]
sysfs_remove_group+0xf8/0x288 fs/sysfs/group.c:289
sysfs_remove_groups+0x5c/0xb4 fs/sysfs/group.c:313
__kobject_del+0x90/0x2d4 lib/kobject.c:619
kobject_del+0x48/0x68 lib/kobject.c:651
blk_mq_unregister_hctx block/blk-mq-sysfs.c:183 [inline]
blk_mq_sysfs_unregister+0x1a0/0x274 block/blk-mq-sysfs.c:309
__blk_mq_update_nr_hw_queues block/blk-mq.c:3764 [inline]
blk_mq_update_nr_hw_queues+0x504/0xc58 block/blk-mq.c:3804
nbd_start_device+0x158/0xb34 drivers/block/nbd.c:1301
nbd_start_device_ioctl drivers/block/nbd.c:1351 [inline]
__nbd_ioctl drivers/block/nbd.c:1427 [inline]
nbd_ioctl+0x420/0xc2c drivers/block/nbd.c:1467
blkdev_ioctl+0x3d8/0xbd0 block/ioctl.c:601
block_ioctl+0xa8/0x114 block/fops.c:493
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:874 [inline]
__se_sys_ioctl fs/ioctl.c:860 [inline]
__arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:860
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:596
el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:614
el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
irq event stamp: 1318
hardirqs last enabled at (1317): [<ffff800008268c70>] raw_spin_rq_unlock_irq kernel/sched/sched.h:1338 [inline]
hardirqs last enabled at (1317): [<ffff800008268c70>] finish_lock_switch+0xbc/0x1e8 kernel/sched/core.c:4780
hardirqs last disabled at (1318): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (1302): [<ffff800008020ccc>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last enabled at (1302): [<ffff800008020ccc>] __do_softirq+0xb5c/0xe20 kernel/softirq.c:587
softirqs last disabled at (1287): [<ffff8000081b569c>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (1287): [<ffff8000081b569c>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (1287): [<ffff8000081b569c>] __irq_exit_rcu+0x28c/0x534 kernel/softirq.c:636
---[ end trace 31393fbc119808d7 ]---
FAULT_INJECTION: forcing a failure.
name failslab, interval 1, probability 0, space 0, times 0
CPU: 1 PID: 5612 Comm: syz-executor.5 Tainted: G W 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
Call trace:
dump_backtrace+0x0/0x530 arch/arm64/kernel/stacktrace.c:152
show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:216
__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0x108/0x170 lib/dump_stack.c:106
dump_stack+0x1c/0x58 lib/dump_stack.c:113
fail_dump lib/fault-inject.c:52 [inline]
should_fail+0x400/0x5cc lib/fault-inject.c:146
__should_failslab+0xbc/0x110 mm/failslab.c:33
should_failslab+0x10/0x28 mm/slab_common.c:1337
slab_pre_alloc_hook+0x64/0xe8 mm/slab.h:494
slab_alloc_node mm/slub.c:3134 [inline]
__kmalloc_node+0xbc/0x5b8 mm/slub.c:4451
kmalloc_array_node include/linux/slab.h:684 [inline]
kcalloc_node include/linux/slab.h:689 [inline]
blk_mq_realloc_hw_ctxs+0xc4/0x12ec block/blk-mq.c:3208
__blk_mq_update_nr_hw_queues block/blk-mq.c:3776 [inline]
blk_mq_update_nr_hw_queues+0x68c/0xc58 block/blk-mq.c:3804
nbd_start_device+0x158/0xb34 drivers/block/nbd.c:1301
nbd_start_device_ioctl drivers/block/nbd.c:1351 [inline]
__nbd_ioctl drivers/block/nbd.c:1427 [inline]
nbd_ioctl+0x420/0xc2c drivers/block/nbd.c:1467
blkdev_ioctl+0x3d8/0xbd0 block/ioctl.c:601
block_ioctl+0xa8/0x114 block/fops.c:493
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:874 [inline]
__se_sys_ioctl fs/ioctl.c:860 [inline]
__arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:860
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:596
el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:614
el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
Increasing nr_hw_queues to 2 fails, fallback to 1
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the bug is already fixed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to change bug's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the bug is a duplicate of another bug, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: c275eaaaa342 Linux 5.15.125
git tree: linux-5.15.y
console output: https://syzkaller.appspot.com/x/log.txt?x=13eea3aba80000
kernel config: https://syzkaller.appspot.com/x/.config?x=d5effadda2808dce
dashboard link: https://syzkaller.appspot.com/bug?extid=f8b033741300b198ef31
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
userspace arch: arm64
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/4ec3cb6c37d5/disk-c275eaaa.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/1d758e21b247/vmlinux-c275eaaa.xz
kernel image: https://storage.googleapis.com/syzbot-assets/d2177731a824/Image-c275eaaa.gz.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+f8b033...@syzkaller.appspotmail.com
------------[ cut here ]------------
kernfs: can not remove 'nr_tags', no directory
WARNING: CPU: 1 PID: 5612 at fs/kernfs/dir.c:1545 kernfs_remove_by_name_ns+0xd0/0x158
Modules linked in:
CPU: 1 PID: 5612 Comm: syz-executor.5 Not tainted 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
sp : ffff800026787760
x29: ffff800026787760 x28: ffff0000cbe0f000 x27: ffff0000cbeb4f00
x26: 0000000000000000 x25: ffff800015087588 x24: 1ffff000023e958c
x23: dfff800000000000 x22: ffff8000150875c0 x21: 0000000000000000
x20: 0000000000000000 x19: 00000000fffffffe x18: 0000000000000001
x17: ff8080000ab5a77c x16: ffff80001195fe04 x15: ffff80000ab5a77c
x14: 1ffff0000292006a x13: ffffffffffffffff x12: 0000000000040000
x11: 000000000003088b x10: ffff80001ff5a000 x9 : 807d9fd1cdfa3900
x8 : 807d9fd1cdfa3900 x7 : 0000000000000000 x6 : 0000000000000000
x5 : 0000000000000080 x4 : 0000000000000000 x3 : ffff80000854c6bc
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 000000000000002e
Call trace:
kernfs_remove_by_name_ns+0xd0/0x158
kernfs_remove_by_name include/linux/kernfs.h:598 [inline]
remove_files fs/sysfs/group.c:28 [inline]
sysfs_remove_group+0xf8/0x288 fs/sysfs/group.c:289
sysfs_remove_groups+0x5c/0xb4 fs/sysfs/group.c:313
__kobject_del+0x90/0x2d4 lib/kobject.c:619
kobject_del+0x48/0x68 lib/kobject.c:651
blk_mq_unregister_hctx block/blk-mq-sysfs.c:183 [inline]
blk_mq_sysfs_unregister+0x1a0/0x274 block/blk-mq-sysfs.c:309
__blk_mq_update_nr_hw_queues block/blk-mq.c:3764 [inline]
blk_mq_update_nr_hw_queues+0x504/0xc58 block/blk-mq.c:3804
nbd_start_device+0x158/0xb34 drivers/block/nbd.c:1301
nbd_start_device_ioctl drivers/block/nbd.c:1351 [inline]
__nbd_ioctl drivers/block/nbd.c:1427 [inline]
nbd_ioctl+0x420/0xc2c drivers/block/nbd.c:1467
blkdev_ioctl+0x3d8/0xbd0 block/ioctl.c:601
block_ioctl+0xa8/0x114 block/fops.c:493
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:874 [inline]
__se_sys_ioctl fs/ioctl.c:860 [inline]
__arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:860
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:596
el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:614
el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
irq event stamp: 964
hardirqs last enabled at (963): [<ffff80000832992c>] console_unlock+0xc7c/0x1394 kernel/printk/printk.c:2738
hardirqs last disabled at (964): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (8): [<ffff8000080300b4>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:31
softirqs last disabled at (6): [<ffff800008030080>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:18
---[ end trace 31393fbc119808d5 ]---
------------[ cut here ]------------
kernfs: can not remove 'nr_reserved_tags', no directory
WARNING: CPU: 1 PID: 5612 at fs/kernfs/dir.c:1545 kernfs_remove_by_name_ns+0xd0/0x158
Modules linked in:
CPU: 1 PID: 5612 Comm: syz-executor.5 Tainted: G W 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
sp : ffff800026787760
x29: ffff800026787760 x28: ffff0000cbe0f000
x27: ffff0000cbeb4f00
x26: 0000000000000000
x25: ffff800015087590
x24: 1ffff000023e958c
x23: dfff800000000000
x22: ffff800015087620
x21: 0000000000000000
x20: 0000000000000000
x19: 00000000fffffffe
x18: 0000000000000001
x17: ff80800008334ef0
x16: ffff80001195fe04
x15: ffff800008334ef0
x14: 00000000ffffffff
x13: ffffffffffffffff
x12: 0000000000040000
x11: 000000000003ffff
x10: ffff80001ff5a000
x9 : 807d9fd1cdfa3900
x8 : 807d9fd1cdfa3900 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff800026786ed8 x4 : ffff8000149dfca0 x3 : ffff80000854c6bc
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000037
Call trace:
kernfs_remove_by_name_ns+0xd0/0x158
kernfs_remove_by_name include/linux/kernfs.h:598 [inline]
remove_files fs/sysfs/group.c:28 [inline]
sysfs_remove_group+0xf8/0x288 fs/sysfs/group.c:289
sysfs_remove_groups+0x5c/0xb4 fs/sysfs/group.c:313
__kobject_del+0x90/0x2d4 lib/kobject.c:619
kobject_del+0x48/0x68 lib/kobject.c:651
blk_mq_unregister_hctx block/blk-mq-sysfs.c:183 [inline]
blk_mq_sysfs_unregister+0x1a0/0x274 block/blk-mq-sysfs.c:309
__blk_mq_update_nr_hw_queues block/blk-mq.c:3764 [inline]
blk_mq_update_nr_hw_queues+0x504/0xc58 block/blk-mq.c:3804
nbd_start_device+0x158/0xb34 drivers/block/nbd.c:1301
nbd_start_device_ioctl drivers/block/nbd.c:1351 [inline]
__nbd_ioctl drivers/block/nbd.c:1427 [inline]
nbd_ioctl+0x420/0xc2c drivers/block/nbd.c:1467
blkdev_ioctl+0x3d8/0xbd0 block/ioctl.c:601
block_ioctl+0xa8/0x114 block/fops.c:493
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:874 [inline]
__se_sys_ioctl fs/ioctl.c:860 [inline]
__arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:860
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:596
el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:614
el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
irq event stamp: 1034
hardirqs last enabled at (1033): [<ffff80000832ab30>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (1034): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (8): [<ffff8000080300b4>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:31
softirqs last disabled at (6): [<ffff800008030080>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:18
---[ end trace 31393fbc119808d6 ]---
------------[ cut here ]------------
kernfs: can not remove 'cpu_list', no directory
WARNING: CPU: 1 PID: 5612 at fs/kernfs/dir.c:1545 kernfs_remove_by_name_ns+0xd0/0x158
Modules linked in:
CPU: 1 PID: 5612 Comm: syz-executor.5 Tainted: G W 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
sp : ffff800026787760
x29: ffff800026787760 x28: ffff0000cbe0f000 x27: ffff0000cbeb4f00
x26: 0000000000000000 x25: ffff800015087598 x24: 1ffff000023e958c
x23: dfff800000000000 x22: ffff800015087680 x21: 0000000000000000
x20: 0000000000000000 x19: 00000000fffffffe x18: 1fffe00036902f8e
x17: 1fffe00036902f8e x16: ffff80001195fe04 x15: ffff80001499f100
x14: 1ffff0000292006a x13: ffffffffffffffff x12: 0000000000040000
x11: 000000000003ffff x10: ffff80001ff5a000 x9 : 807d9fd1cdfa3900
x8 : 807d9fd1cdfa3900 x7 : 0000000000000000 x6 : 0000000000000000
x5 : 0000000000000080 x4 : 0000000000000000 x3 : ffff80000a956340
x2 : ffff0001b4817d10 x1 : 0000000100000000 x0 : 000000000000002f
Call trace:
kernfs_remove_by_name_ns+0xd0/0x158
kernfs_remove_by_name include/linux/kernfs.h:598 [inline]
remove_files fs/sysfs/group.c:28 [inline]
sysfs_remove_group+0xf8/0x288 fs/sysfs/group.c:289
sysfs_remove_groups+0x5c/0xb4 fs/sysfs/group.c:313
__kobject_del+0x90/0x2d4 lib/kobject.c:619
kobject_del+0x48/0x68 lib/kobject.c:651
blk_mq_unregister_hctx block/blk-mq-sysfs.c:183 [inline]
blk_mq_sysfs_unregister+0x1a0/0x274 block/blk-mq-sysfs.c:309
__blk_mq_update_nr_hw_queues block/blk-mq.c:3764 [inline]
blk_mq_update_nr_hw_queues+0x504/0xc58 block/blk-mq.c:3804
nbd_start_device+0x158/0xb34 drivers/block/nbd.c:1301
nbd_start_device_ioctl drivers/block/nbd.c:1351 [inline]
__nbd_ioctl drivers/block/nbd.c:1427 [inline]
nbd_ioctl+0x420/0xc2c drivers/block/nbd.c:1467
blkdev_ioctl+0x3d8/0xbd0 block/ioctl.c:601
block_ioctl+0xa8/0x114 block/fops.c:493
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:874 [inline]
__se_sys_ioctl fs/ioctl.c:860 [inline]
__arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:860
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:596
el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:614
el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
irq event stamp: 1318
hardirqs last enabled at (1317): [<ffff800008268c70>] raw_spin_rq_unlock_irq kernel/sched/sched.h:1338 [inline]
hardirqs last enabled at (1317): [<ffff800008268c70>] finish_lock_switch+0xbc/0x1e8 kernel/sched/core.c:4780
hardirqs last disabled at (1318): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (1302): [<ffff800008020ccc>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last enabled at (1302): [<ffff800008020ccc>] __do_softirq+0xb5c/0xe20 kernel/softirq.c:587
softirqs last disabled at (1287): [<ffff8000081b569c>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (1287): [<ffff8000081b569c>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (1287): [<ffff8000081b569c>] __irq_exit_rcu+0x28c/0x534 kernel/softirq.c:636
---[ end trace 31393fbc119808d7 ]---
FAULT_INJECTION: forcing a failure.
name failslab, interval 1, probability 0, space 0, times 0
CPU: 1 PID: 5612 Comm: syz-executor.5 Tainted: G W 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
Call trace:
dump_backtrace+0x0/0x530 arch/arm64/kernel/stacktrace.c:152
show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:216
__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0x108/0x170 lib/dump_stack.c:106
dump_stack+0x1c/0x58 lib/dump_stack.c:113
fail_dump lib/fault-inject.c:52 [inline]
should_fail+0x400/0x5cc lib/fault-inject.c:146
__should_failslab+0xbc/0x110 mm/failslab.c:33
should_failslab+0x10/0x28 mm/slab_common.c:1337
slab_pre_alloc_hook+0x64/0xe8 mm/slab.h:494
slab_alloc_node mm/slub.c:3134 [inline]
__kmalloc_node+0xbc/0x5b8 mm/slub.c:4451
kmalloc_array_node include/linux/slab.h:684 [inline]
kcalloc_node include/linux/slab.h:689 [inline]
blk_mq_realloc_hw_ctxs+0xc4/0x12ec block/blk-mq.c:3208
__blk_mq_update_nr_hw_queues block/blk-mq.c:3776 [inline]
blk_mq_update_nr_hw_queues+0x68c/0xc58 block/blk-mq.c:3804
nbd_start_device+0x158/0xb34 drivers/block/nbd.c:1301
nbd_start_device_ioctl drivers/block/nbd.c:1351 [inline]
__nbd_ioctl drivers/block/nbd.c:1427 [inline]
nbd_ioctl+0x420/0xc2c drivers/block/nbd.c:1467
blkdev_ioctl+0x3d8/0xbd0 block/ioctl.c:601
block_ioctl+0xa8/0x114 block/fops.c:493
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:874 [inline]
__se_sys_ioctl fs/ioctl.c:860 [inline]
__arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:860
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:596
el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:614
el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
Increasing nr_hw_queues to 2 fails, fallback to 1
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the bug is already fixed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to change bug's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the bug is a duplicate of another bug, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot
Aug 11, 2023, 7:16:09 AM8/11/23
to syzkaller...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: c275eaaaa342 Linux 5.15.125
git tree: linux-5.15.y
console output: https://syzkaller.appspot.com/x/log.txt?x=119ede6fa80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=144fae53a80000
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/4ec3cb6c37d5/disk-c275eaaa.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/1d758e21b247/vmlinux-c275eaaa.xz
kernel image: https://storage.googleapis.com/syzbot-assets/d2177731a824/Image-c275eaaa.gz.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+f8b033...@syzkaller.appspotmail.com
------------[ cut here ]------------
kernfs: can not remove 'nr_tags', no directory
WARNING: CPU: 1 PID: 4621 at fs/kernfs/dir.c:1545 kernfs_remove_by_name_ns+0xd0/0x158
Modules linked in:
CPU: 1 PID: 4621 Comm: syz-executor352 Not tainted 5.15.125-syzkaller #0
x29: ffff80001d387760 x28: ffff0000cc151000 x27: ffff0000cba12f00
x11: ff8080000832c998 x10: 0000000000000000 x9 : b32dc3b4c26bd800
x8 : b32dc3b4c26bd800 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff80001d386ed8 x4 : ffff8000149dfca0 x3 : ffff80000854c6bc
irq event stamp: 2024
hardirqs last enabled at (2023): [<ffff80000832ab30>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (2024): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (218): [<ffff8000108602e0>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:31
softirqs last disabled at (216): [<ffff8000108602ac>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:18
---[ end trace be537ba90b9b5133 ]---
Modules linked in:
CPU: 1 PID: 4621 Comm: syz-executor352 Tainted: G W 5.15.125-syzkaller #0
x29: ffff80001d387760 x28: ffff0000cc151000 x27: ffff0000cba12f00
x14: 00000000ffffffff x13: ffffffffffffffff x12: 0000000000000000
x11: ff8080000832c998 x10: 0000000000000000 x9 : b32dc3b4c26bd800
x8 : b32dc3b4c26bd800 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff80001d386ed8 x4 : ffff8000149dfca0 x3 : ffff80000833503c
irq event stamp: 2070
hardirqs last enabled at (2069): [<ffff80000832ab30>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (2070): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (2048): [<ffff800008020ccc>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last enabled at (2048): [<ffff800008020ccc>] __do_softirq+0xb5c/0xe20 kernel/softirq.c:587
softirqs last disabled at (2027): [<ffff8000081b569c>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (2027): [<ffff8000081b569c>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (2027): [<ffff8000081b569c>] __irq_exit_rcu+0x28c/0x534 kernel/softirq.c:636
---[ end trace be537ba90b9b5134 ]---
Modules linked in:
CPU: 1 PID: 4621 Comm: syz-executor352 Tainted: G W 5.15.125-syzkaller #0
x29: ffff80001d387760 x28: ffff0000cc151000 x27: ffff0000cba12f00
x17: ff80800008334ef0 x16: 0000000000000000 x15: ffff800008334ef0
x14: 00000000ffffffff x13: ffffffffffffffff x12: 0000000000000000
x11: ff8080000832c998 x10: 0000000000000000 x9 : b32dc3b4c26bd800
x8 : b32dc3b4c26bd800 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff80001d386ed8 x4 : ffff8000149dfca0 x3 : ffff80000833503c
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 000000000000002f
irq event stamp: 2126
hardirqs last enabled at (2125): [<ffff80000832ab30>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (2126): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (2104): [<ffff800008020ccc>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last enabled at (2104): [<ffff800008020ccc>] __do_softirq+0xb5c/0xe20 kernel/softirq.c:587
softirqs last disabled at (2073): [<ffff8000081b569c>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (2073): [<ffff8000081b569c>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (2073): [<ffff8000081b569c>] __irq_exit_rcu+0x28c/0x534 kernel/softirq.c:636
---[ end trace be537ba90b9b5135 ]---
block nbd0: shutting down sockets
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
HEAD commit: c275eaaaa342 Linux 5.15.125
git tree: linux-5.15.y
kernel config: https://syzkaller.appspot.com/x/.config?x=d5effadda2808dce
dashboard link: https://syzkaller.appspot.com/bug?extid=f8b033741300b198ef31
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
userspace arch: arm64
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=17088e53a80000
dashboard link: https://syzkaller.appspot.com/bug?extid=f8b033741300b198ef31
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
userspace arch: arm64
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=144fae53a80000
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/4ec3cb6c37d5/disk-c275eaaa.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/1d758e21b247/vmlinux-c275eaaa.xz
kernel image: https://storage.googleapis.com/syzbot-assets/d2177731a824/Image-c275eaaa.gz.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+f8b033...@syzkaller.appspotmail.com
------------[ cut here ]------------
kernfs: can not remove 'nr_tags', no directory
Modules linked in:
CPU: 1 PID: 4621 Comm: syz-executor352 Not tainted 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
sp : ffff80001d387760
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
x29: ffff80001d387760 x28: ffff0000cc151000 x27: ffff0000cba12f00
x26: 0000000000000000 x25: ffff800015087588 x24: 1ffff000023e958c
x23: dfff800000000000 x22: ffff8000150875c0 x21: 0000000000000000
x20: 0000000000000000 x19: 00000000fffffffe x18: 0000000000000001
x23: dfff800000000000 x22: ffff8000150875c0 x21: 0000000000000000
x20: 0000000000000000 x19: 00000000fffffffe x18: 0000000000000001
x17: ff80800008334ef0 x16: ffff80001195fe04 x15: ffff800008334ef0
x14: 00000000ffffffff x13: ffffffffffffffff x12: 0000000000000000
x11: ff8080000832c998 x10: 0000000000000000 x9 : b32dc3b4c26bd800
x8 : b32dc3b4c26bd800 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff80001d386ed8 x4 : ffff8000149dfca0 x3 : ffff80000854c6bc
hardirqs last enabled at (2023): [<ffff80000832ab30>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (2024): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (218): [<ffff8000108602e0>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:31
softirqs last disabled at (216): [<ffff8000108602ac>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:18
---[ end trace be537ba90b9b5133 ]---
------------[ cut here ]------------
kernfs: can not remove 'nr_reserved_tags', no directory
WARNING: CPU: 1 PID: 4621 at fs/kernfs/dir.c:1545 kernfs_remove_by_name_ns+0xd0/0x158
kernfs: can not remove 'nr_reserved_tags', no directory
Modules linked in:
CPU: 1 PID: 4621 Comm: syz-executor352 Tainted: G W 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
sp : ffff80001d387760
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
x29: ffff80001d387760 x28: ffff0000cc151000 x27: ffff0000cba12f00
x26: 0000000000000000 x25: ffff800015087590 x24: 1ffff000023e958c
x23: dfff800000000000 x22: ffff800015087620 x21: 0000000000000000
x20: 0000000000000000 x19: 00000000fffffffe x18: 0000000000000001
x17: ff80800008334ef0 x16: 0000000000000000 x15: ffff800008334ef0
x23: dfff800000000000 x22: ffff800015087620 x21: 0000000000000000
x20: 0000000000000000 x19: 00000000fffffffe x18: 0000000000000001
x14: 00000000ffffffff x13: ffffffffffffffff x12: 0000000000000000
x11: ff8080000832c998 x10: 0000000000000000 x9 : b32dc3b4c26bd800
x8 : b32dc3b4c26bd800 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff80001d386ed8 x4 : ffff8000149dfca0 x3 : ffff80000833503c
hardirqs last enabled at (2069): [<ffff80000832ab30>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (2070): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (2048): [<ffff800008020ccc>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last enabled at (2048): [<ffff800008020ccc>] __do_softirq+0xb5c/0xe20 kernel/softirq.c:587
softirqs last disabled at (2027): [<ffff8000081b569c>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (2027): [<ffff8000081b569c>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (2027): [<ffff8000081b569c>] __irq_exit_rcu+0x28c/0x534 kernel/softirq.c:636
---[ end trace be537ba90b9b5134 ]---
------------[ cut here ]------------
kernfs: can not remove 'cpu_list', no directory
WARNING: CPU: 1 PID: 4621 at fs/kernfs/dir.c:1545 kernfs_remove_by_name_ns+0xd0/0x158
kernfs: can not remove 'cpu_list', no directory
Modules linked in:
CPU: 1 PID: 4621 Comm: syz-executor352 Tainted: G W 5.15.125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
sp : ffff80001d387760
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kernfs_remove_by_name_ns+0xd0/0x158
lr : kernfs_remove_by_name_ns+0xcc/0x158 fs/kernfs/dir.c:1544
x29: ffff80001d387760 x28: ffff0000cc151000 x27: ffff0000cba12f00
x26: 0000000000000000 x25: ffff800015087598 x24: 1ffff000023e958c
x23: dfff800000000000 x22: ffff800015087680 x21: 0000000000000000
x20: 0000000000000000 x19: 00000000fffffffe x18: 0000000000000001
x23: dfff800000000000 x22: ffff800015087680 x21: 0000000000000000
x17: ff80800008334ef0 x16: 0000000000000000 x15: ffff800008334ef0
x14: 00000000ffffffff x13: ffffffffffffffff x12: 0000000000000000
x11: ff8080000832c998 x10: 0000000000000000 x9 : b32dc3b4c26bd800
x8 : b32dc3b4c26bd800 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff80001d386ed8 x4 : ffff8000149dfca0 x3 : ffff80000833503c
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 000000000000002f
hardirqs last enabled at (2125): [<ffff80000832ab30>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (2126): [<ffff80001195b498>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387
softirqs last enabled at (2104): [<ffff800008020ccc>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last enabled at (2104): [<ffff800008020ccc>] __do_softirq+0xb5c/0xe20 kernel/softirq.c:587
softirqs last disabled at (2073): [<ffff8000081b569c>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (2073): [<ffff8000081b569c>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (2073): [<ffff8000081b569c>] __irq_exit_rcu+0x28c/0x534 kernel/softirq.c:636
---[ end trace be537ba90b9b5135 ]---
FAULT_INJECTION: forcing a failure.
name failslab, interval 1, probability 0, space 0, times 0
CPU: 1 PID: 4621 Comm: syz-executor352 Tainted: G W 5.15.125-syzkaller #0
name failslab, interval 1, probability 0, space 0, times 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
Reply all
Reply to author
Forward
0 new messages