[v6.1] WARNING in nilfs_rmdir

3 views

Skip to first unread message

syzbot

unread,

Nov 28, 2024, 3:36:25 PM11/28/24

to syzkaller...@googlegroups.com

Hello,

syzbot found the following issue on:

HEAD commit: e4d90d63d385 Linux 6.1.119
git tree: linux-6.1.y
console output: https://syzkaller.appspot.com/x/log.txt?x=16c48d30580000
kernel config: https://syzkaller.appspot.com/x/.config?x=393f8074c5fb7ad6
dashboard link: https://syzkaller.appspot.com/bug?extid=5d76aa902ab6cb0f57b1
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
userspace arch: arm64

Unfortunately, I don't have any reproducer for this issue yet.

Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/3986cbf4f35a/disk-e4d90d63.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/d2963d16cebb/vmlinux-e4d90d63.xz
kernel image: https://storage.googleapis.com/syzbot-assets/a877a1a23701/Image-e4d90d63.gz.xz

IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+5d76aa...@syzkaller.appspotmail.com

NILFS (loop4): nilfs_palloc_commit_free_entry (ino=6): entry number 17 already freed
NILFS (loop4): deleting nonexistent file (ino=11), 0
NILFS (loop4): deleting nonexistent file (ino=12), 0
------------[ cut here ]------------
WARNING: CPU: 1 PID: 4304 at fs/inode.c:332 drop_nlink+0xe4/0x138 fs/inode.c:332
Modules linked in:
CPU: 1 PID: 4304 Comm: syz-executor Not tainted 6.1.119-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : drop_nlink+0xe4/0x138 fs/inode.c:332
lr : drop_nlink+0xe4/0x138 fs/inode.c:332
sp : ffff800021297aa0
x29: ffff800021297aa0 x28: ffff700004252f88 x27: 1fffe0001c4cf9cb
x26: 1fffe0001c4cf9cc x25: dfff800000000000 x24: ffff700004252f5c
x23: 1fffe0001c5a09d0 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e2d04e80 x19: ffff0000e2d04e38 x18: 0000000000000010
x17: ffff800015a7d000 x16: ffff800012272b80 x15: ffff0001b3d02bbc
x14: 1ffff00002b500b2 x13: 00000000127a3980 x12: 0000000000000001
x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4
x8 : ffff0000ef499bc0 x7 : 00000000127a3980 x6 : 000000000000007c
x5 : ffff0000e2d04ec0 x4 : ffff0000e267cec0 x3 : ffff800008aab078
x2 : 0000000000000001 x1 : 0000000000000000 x0 : 0000000000000000
Call trace:
drop_nlink+0xe4/0x138 fs/inode.c:332
nilfs_rmdir+0x18c/0x218 fs/nilfs2/namei.c:341
vfs_rmdir+0x308/0x43c fs/namei.c:4191
do_rmdir+0x2e0/0x720 fs/namei.c:4252
__do_sys_unlinkat fs/namei.c:4432 [inline]
__se_sys_unlinkat fs/namei.c:4426 [inline]
__arm64_sys_unlinkat+0xe0/0xfc fs/namei.c:4426
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2bc arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:140
do_el0_svc+0x58/0x13c arch/arm64/kernel/syscall.c:204
el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585
irq event stamp: 1038970
hardirqs last enabled at (1038969): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (1038969): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (1038970): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (1038818): [<ffff800008030310>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (1038816): [<ffff8000080302dc>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19
---[ end trace 0000000000000000 ]---

---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.

syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.

If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title

If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)

If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report

If you want to undo deduplication, reply with:
#syz undup

syzbot

unread,

Nov 28, 2024, 4:41:26 PM11/28/24

to syzkaller...@googlegroups.com

syzbot has found a reproducer for the following issue on:

HEAD commit: e4d90d63d385 Linux 6.1.119
git tree: linux-6.1.y

console output: https://syzkaller.appspot.com/x/log.txt?x=16328d30580000

kernel config: https://syzkaller.appspot.com/x/.config?x=393f8074c5fb7ad6
dashboard link: https://syzkaller.appspot.com/bug?extid=5d76aa902ab6cb0f57b1
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
userspace arch: arm64

syz repro: https://syzkaller.appspot.com/x/repro.syz?x=14cc33c0580000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=168ccf78580000

Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/3986cbf4f35a/disk-e4d90d63.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/d2963d16cebb/vmlinux-e4d90d63.xz
kernel image: https://storage.googleapis.com/syzbot-assets/a877a1a23701/Image-e4d90d63.gz.xz

mounted in repro: https://storage.googleapis.com/syzbot-assets/79e120cfba7e/mount_0.gz

IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+5d76aa...@syzkaller.appspotmail.com

NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 16 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 17 already freed
NILFS (loop0): deleting nonexistent file (ino=11), 0
------------[ cut here ]------------
WARNING: CPU: 1 PID: 4291 at fs/inode.c:332 drop_nlink+0xe4/0x138 fs/inode.c:332
Modules linked in:
CPU: 1 PID: 4291 Comm: syz-executor166 Not tainted 6.1.119-syzkaller #0

Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : drop_nlink+0xe4/0x138 fs/inode.c:332
lr : drop_nlink+0xe4/0x138 fs/inode.c:332

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001be5f5ca
x26: 1fffe0001be5f5cb x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001be5f69c x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000df2fb4e0 x19: ffff0000df2fb498 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000018701a80 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000018701a80 x6 : 0000000000000023
x5 : ffff0000df2fb520 x4 : ffff0000df2faeb8 x3 : ffff800008aab078

x2 : 0000000000000001 x1 : 0000000000000000 x0 : 0000000000000000
Call trace:
drop_nlink+0xe4/0x138 fs/inode.c:332
nilfs_rmdir+0x18c/0x218 fs/nilfs2/namei.c:341
vfs_rmdir+0x308/0x43c fs/namei.c:4191
do_rmdir+0x2e0/0x720 fs/namei.c:4252
__do_sys_unlinkat fs/namei.c:4432 [inline]
__se_sys_unlinkat fs/namei.c:4426 [inline]
__arm64_sys_unlinkat+0xe0/0xfc fs/namei.c:4426
__invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
invoke_syscall+0x98/0x2bc arch/arm64/kernel/syscall.c:52
el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:140
do_el0_svc+0x58/0x13c arch/arm64/kernel/syscall.c:204
el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585

irq event stamp: 18912
hardirqs last enabled at (18911): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (18911): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (18912): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (18662): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (18662): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (18651): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 13 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 14 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 16 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 17 already freed
NILFS (loop0): deleting nonexistent file (ino=11), 0
------------[ cut here ]------------
WARNING: CPU: 1 PID: 4291 at fs/inode.c:332 drop_nlink+0xe4/0x138 fs/inode.c:332
Modules linked in:
CPU: 1 PID: 4291 Comm: syz-executor166 Tainted: G W 6.1.119-syzkaller #0

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c9059cb
x26: 1fffe0001c9059cc x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c905a9d x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e482d4e8 x19: ffff0000e482d4a0 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 000000002160ec00 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000002160ec00 x6 : 0000000000000023
x5 : ffff0000e482d528 x4 : ffff0000e482cec0 x3 : ffff800008aab078

irq event stamp: 27040
hardirqs last enabled at (27039): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (27039): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (27040): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (27032): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (27032): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (26939): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c3fb697
x26: 1fffe0001c3fb698 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c3fb769 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e1fdbb48 x19: ffff0000e1fdbb00 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 000000002887fa00 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000002887fa00 x6 : 0000000000000023
x5 : ffff0000e1fdbb88 x4 : ffff0000e1fdb520 x3 : ffff800008aab078

irq event stamp: 34132
hardirqs last enabled at (34131): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (34131): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (34132): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (33606): [<ffff800008030310>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (33604): [<ffff8000080302dc>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19

---[ end trace 0000000000000000 ]---

NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 13 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 14 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 16 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 17 already freed
NILFS (loop0): deleting nonexistent file (ino=11), 0
------------[ cut here ]------------
WARNING: CPU: 0 PID: 4291 at fs/inode.c:332 drop_nlink+0xe4/0x138 fs/inode.c:332
Modules linked in:
CPU: 0 PID: 4291 Comm: syz-executor166 Tainted: G W 6.1.119-syzkaller #0

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001be5fdcc
x26: 1fffe0001be5fdcd x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001be5fe9e x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000df2ff4f0 x19: ffff0000df2ff4a8 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 000000003178cb80 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000003178cb80 x6 : 0000000000000023
x5 : ffff0000df2ff530 x4 : ffff0000df2feec8 x3 : ffff800008aab078

irq event stamp: 41398
hardirqs last enabled at (41397): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (41397): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (41398): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (41196): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (41196): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (41185): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c919a98
x26: 1fffe0001c919a99 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c3fbd04 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e1fde820 x19: ffff0000e1fde7d8 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000039d10680 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000039d10680 x6 : 0000000000000023
x5 : ffff0000e1fde860 x4 : ffff0000e48cd528 x3 : ffff800008aab078

irq event stamp: 49580
hardirqs last enabled at (49579): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (49579): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (49580): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (48594): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (48594): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (48489): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c91a1c9
x26: 1fffe0001c91a1ca x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c91a29b x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e48d14d8 x19: ffff0000e48d1490 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000005f5e100 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000005f5e100 x6 : 0000000000000024
x5 : ffff0000e48d1518 x4 : ffff0000e48d0eb0 x3 : ffff800008aab078

irq event stamp: 57620
hardirqs last enabled at (57619): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (57619): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (57620): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (56430): [<ffff800008030310>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (56428): [<ffff8000080302dc>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c901cff
x26: 1fffe0001c901d00 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c901dd1 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e480ee88 x19: ffff0000e480ee40 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 000000000e4e1c00 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000000e4e1c00 x6 : 0000000000000024
x5 : ffff0000e480eec8 x4 : ffff0000e480e860 x3 : ffff800008aab078

irq event stamp: 66710
hardirqs last enabled at (66709): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (66709): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (66710): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (66500): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (66500): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (66377): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 13 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 14 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 16 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 17 already freed
NILFS (loop0): deleting nonexistent file (ino=11), 0
------------[ cut here ]------------
WARNING: CPU: 0 PID: 4291 at fs/inode.c:332 drop_nlink+0xe4/0x138 fs/inode.c:332
Modules linked in:
CPU: 0 PID: 4291 Comm: syz-executor166 Tainted: G W 6.1.119-syzkaller #0

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c91a9cb
x26: 1fffe0001c91a9cc x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c91aa9d x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e48d54e8 x19: ffff0000e48d54a0 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000016a65700 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000016a65700 x6 : 0000000000000024
x5 : ffff0000e48d5528 x4 : ffff0000e48d4ec0 x3 : ffff800008aab078

irq event stamp: 74366
hardirqs last enabled at (74365): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (74365): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (74366): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (74040): [<ffff800008030310>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (74038): [<ffff8000080302dc>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c9029cb
x26: 1fffe0001c9029cc x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c902a9d x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e48154e8 x19: ffff0000e48154a0 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 00000000202fbf00 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 00000000202fbf00 x6 : 0000000000000024
x5 : ffff0000e4815528 x4 : ffff0000e4814ec0 x3 : ffff800008aab078

irq event stamp: 81308
hardirqs last enabled at (81307): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (81307): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (81308): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (81300): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (81300): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (81289): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 13 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 14 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 16 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 17 already freed
NILFS (loop0): deleting nonexistent file (ino=11), 0
------------[ cut here ]------------
WARNING: CPU: 0 PID: 4291 at fs/inode.c:332 drop_nlink+0xe4/0x138 fs/inode.c:332
Modules linked in:
CPU: 0 PID: 4291 Comm: syz-executor166 Tainted: G W 6.1.119-syzkaller #0

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c903697
x26: 1fffe0001c903698 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c903769 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e481bb48 x19: ffff0000e481bb00 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 000000002887fa00 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000002887fa00 x6 : 0000000000000024
x5 : ffff0000e481bb88 x4 : ffff0000e481b520 x3 : ffff800008aab078

irq event stamp: 89124
hardirqs last enabled at (89123): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (89123): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (89124): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (89116): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (89116): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (88529): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c903e99
x26: 1fffe0001c903e9a x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c928034 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e49401a0 x19: ffff0000e4940158 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000030479e80 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000030479e80 x6 : 0000000000000024
x5 : ffff0000e49401e0 x4 : ffff0000e481f530 x3 : ffff800008aab078

irq event stamp: 96522
hardirqs last enabled at (96521): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (96521): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (96522): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (95412): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (95412): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (95395): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c91ba98
x26: 1fffe0001c91ba99 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c91bb6a x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e48ddb50 x19: ffff0000e48ddb08 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000038074300 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000038074300 x6 : 0000000000000024
x5 : ffff0000e48ddb90 x4 : ffff0000e48dd528 x3 : ffff800008aab078

irq event stamp: 103406
hardirqs last enabled at (103405): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (103405): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (103406): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (102856): [<ffff800008030310>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (102854): [<ffff8000080302dc>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c92902f
x26: 1fffe0001c929030 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c929101 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e4948808 x19: ffff0000e49487c0 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000004c4b400 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000004c4b400 x6 : 0000000000000025
x5 : ffff0000e4948848 x4 : ffff0000e49481e0 x3 : ffff800008aab078

irq event stamp: 110804
hardirqs last enabled at (110803): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (110803): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (110804): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (110226): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (110226): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (110209): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c929c32
x26: 1fffe0001c929c33 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c929d04 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e494e820 x19: ffff0000e494e7d8 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 000000000c845880 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000000c845880 x6 : 0000000000000025
x5 : ffff0000e494e860 x4 : ffff0000e494e1f8 x3 : ffff800008aab078

irq event stamp: 118714
hardirqs last enabled at (118713): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (118713): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (118714): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (118168): [<ffff800008030310>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (118166): [<ffff8000080302dc>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c92a697
x26: 1fffe0001c92a698 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c92a769 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e4953b48 x19: ffff0000e4953b00 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000014dc9380 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000014dc9380 x6 : 0000000000000025
x5 : ffff0000e4953b88 x4 : ffff0000e4953520 x3 : ffff800008aab078

irq event stamp: 125752
hardirqs last enabled at (125751): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (125751): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (125752): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (125196): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (125196): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (125183): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 13 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 14 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 16 already freed
NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 17 already freed
NILFS (loop0): deleting nonexistent file (ino=11), 0
------------[ cut here ]------------
WARNING: CPU: 0 PID: 4291 at fs/inode.c:332 drop_nlink+0xe4/0x138 fs/inode.c:332
Modules linked in:
CPU: 0 PID: 4291 Comm: syz-executor166 Tainted: G W 6.1.119-syzkaller #0

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c91d5ca
x26: 1fffe0001c91d5cb x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c91d69c x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e48eb4e0 x19: ffff0000e48eb498 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 000000001d34ce80 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000001d34ce80 x6 : 0000000000000025
x5 : ffff0000e48eb520 x4 : ffff0000e48eaeb8 x3 : ffff800008aab078

irq event stamp: 132778
hardirqs last enabled at (132777): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (132777): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (132778): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (132268): [<ffff800008030310>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (132266): [<ffff8000080302dc>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c92c363
x26: 1fffe0001c92c364 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c92c435 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e49621a8 x19: ffff0000e4962160 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 000000002625a000 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000002625a000 x6 : 0000000000000025
x5 : ffff0000e49621e8 x4 : ffff0000e4961b80 x3 : ffff800008aab078

irq event stamp: 140776
hardirqs last enabled at (140775): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (140775): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (140776): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (140560): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (140560): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (140361): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c91e296
x26: 1fffe0001c91e297 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c91e368 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e48f1b40 x19: ffff0000e48f1af8 x18: 0000000000000010

x17: ffff800015a7d000 x16: ffff800012272b80 x15: ffff0001b3d02bbc

x14: 1ffff00002b500b2 x13: 000000002de54480 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000002de54480 x6 : 0000000000000025
x5 : ffff0000e48f1b80 x4 : ffff0000e48f1518 x3 : ffff800008aab078

irq event stamp: 147534
hardirqs last enabled at (147533): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (147533): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (147534): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (147524): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (147524): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (147507): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c91ea98
x26: 1fffe0001c91ea99 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c91eb6a x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e48f5b50 x19: ffff0000e48f5b08 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000035a4e900 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000035a4e900 x6 : 0000000000000025
x5 : ffff0000e48f5b90 x4 : ffff0000e48f5528 x3 : ffff800008aab078

irq event stamp: 155322
hardirqs last enabled at (155321): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (155321): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (155322): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (154948): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (154948): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (154931): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c942831
x26: 1fffe0001c942832 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c942903 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e4a14818 x19: ffff0000e4a147d0 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 0000000002625a00 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 0000000002625a00 x6 : 0000000000000026
x5 : ffff0000e4a14858 x4 : ffff0000e4a141f0 x3 : ffff800008aab078

irq event stamp: 163834
hardirqs last enabled at (163833): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (163833): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (163834): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (163826): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (163826): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (163815): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c91f363
x26: 1fffe0001c91f364 x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c91f435 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e48fa1a8 x19: ffff0000e48fa160 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000
x14: 1ffff00002b500b2 x13: 000000000a21fe80 x12: 0000000000000001

x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 000000000a21fe80 x6 : 0000000000000026
x5 : ffff0000e48fa1e8 x4 : ffff0000e48f9b80 x3 : ffff800008aab078

irq event stamp: 170796
hardirqs last enabled at (170795): [<ffff800008403650>] seqcount_lockdep_reader_access include/linux/seqlock.h:104 [inline]
hardirqs last enabled at (170795): [<ffff800008403650>] ktime_get_coarse_real_ts64+0x114/0x244 kernel/time/timekeeping.c:2261
hardirqs last disabled at (170796): [<ffff800012320d2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last enabled at (170440): [<ffff8000081c1c58>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last enabled at (170440): [<ffff8000081c1c58>] handle_softirqs+0xb84/0xd58 kernel/softirq.c:599
softirqs last disabled at (170249): [<ffff800008020174>] __do_softirq+0x14/0x20 kernel/softirq.c:605

---[ end trace 0000000000000000 ]---

sp : ffff800021117aa0
x29: ffff800021117aa0 x28: ffff700004222f88 x27: 1fffe0001c9438fe
x26: 1fffe0001c9438ff x25: dfff800000000000 x24: ffff700004222f5c
x23: 1fffe0001c9439d0 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000e4a1ce80 x19: ffff0000e4a1ce38 x18: 0000000000000010
x17: 0000000000000000 x16: ffff800012272b80 x15: 0000000000000000

x14: 1ffff00002b500b2 x13: 00000000127a3980 x12: 0000000000000001
x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008aab0a4

x8 : ffff0000de6b0000 x7 : 00000000127a3980 x6 : 0000000000000026
x5 : ffff0000e4a1cec0 x4 : ffff0000e4a1c858 x3 : ffff800008aab078
x2 : 0000000000000001 x1 : 0000000000000000

---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.

syzbot

unread,

Jan 28, 2025, 7:18:08 AM1/28/25

to syzkaller...@googlegroups.com

syzbot suspects this issue was fixed by commit:

commit ef942d233643777f7b2a5deef620e82942983143
Author: Edward Adam Davis <ead...@qq.com>
Date: Mon Dec 9 06:56:52 2024 +0000

nilfs2: prevent use of deleted inode

bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=139b5918580000
start commit: e4d90d63d385 Linux 6.1.119
git tree: linux-6.1.y

kernel config: https://syzkaller.appspot.com/x/.config?x=393f8074c5fb7ad6
dashboard link: https://syzkaller.appspot.com/bug?extid=5d76aa902ab6cb0f57b1

userspace arch: arm64
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=103a5f5f980000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=12402f78580000

If the result looks correct, please mark the issue as fixed by replying with:

#syz fix: nilfs2: prevent use of deleted inode

For information about bisection process see: https://goo.gl/tpsmEJ#bisection

Reply all

Reply to author

Forward

0 new messages