VMExit: intr_info=00000000 errcode=00000000 ilen=00000007
reason=80000021 qualification=0000000000000000
IDTVectoring: info=00000000 errcode=00000000
TSC Offset = 0xffffff62336537cc
EPT pointer = 0x00000001cd95701e
INFO: task syz-executor5:9682 blocked for more than 140 seconds.
Not tainted 4.20.0-rc1-next-20181109+ #110
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor5 D22936 9682 6116 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2831 [inline]
__schedule+0x8cf/0x21d0 kernel/sched/core.c:3472
schedule+0xef/0x370 kernel/sched/core.c:3516
schedule_timeout+0x1cc/0x260 kernel/time/timer.c:1780
do_wait_for_common kernel/sched/completion.c:83 [inline]
__wait_for_common kernel/sched/completion.c:104 [inline]
wait_for_common kernel/sched/completion.c:115 [inline]
wait_for_completion+0x427/0x8a0 kernel/sched/completion.c:136
__synchronize_srcu+0x20a/0x2d0 kernel/rcu/srcutree.c:946
synchronize_srcu_expedited+0x18/0x20 kernel/rcu/srcutree.c:971
install_new_memslots+0x20a/0x4b0 arch/x86/kvm/../../../virt/kvm/kvm_main.c:887
__kvm_set_memory_region+0x1c73/0x2d50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:1062
kvm_set_memory_region+0x2e/0x50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:1085
kvm_vm_ioctl_set_memory_region arch/x86/kvm/../../../virt/kvm/kvm_main.c:1097 [inline]
kvm_vm_ioctl+0x652/0x1d60 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2995
vfs_ioctl fs/ioctl.c:46 [inline]
file_ioctl fs/ioctl.c:509 [inline]
do_vfs_ioctl+0x1de/0x1790 fs/ioctl.c:696
ksys_ioctl+0xa9/0xd0 fs/ioctl.c:713
__do_sys_ioctl fs/ioctl.c:720 [inline]
__se_sys_ioctl fs/ioctl.c:718 [inline]
__x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:718
do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x4573d7
Code: Bad RIP value.
RSP: 002b:00007fbc576ca098 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00000000004573d7
RDX: 00007fbc576ca510 RSI: 000000004020ae46 RDI: 0000000000000004
RBP: 0000000020ff7000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000005 R11: 0000000000000246 R12: 00000000fec00000
R13: 0000000000000004 R14: 00000000004d83b8 R15: 00000000ffffffff
INFO: task syz-executor5:9703 blocked for more than 140 seconds.
Not tainted 4.20.0-rc1-next-20181109+ #110
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor5 D24680 9703 6116 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2831 [inline]
__schedule+0x8cf/0x21d0 kernel/sched/core.c:3472
schedule+0xef/0x370 kernel/sched/core.c:3516
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3574
__mutex_lock_common kernel/locking/mutex.c:1002 [inline]
__mutex_lock+0xaff/0x16f0 kernel/locking/mutex.c:1072
mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
kvm_set_memory_region+0x23/0x50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:1084
kvm_vm_ioctl_set_memory_region arch/x86/kvm/../../../virt/kvm/kvm_main.c:1097 [inline]
kvm_vm_ioctl+0x652/0x1d60 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2995
vfs_ioctl fs/ioctl.c:46 [inline]
file_ioctl fs/ioctl.c:509 [inline]
do_vfs_ioctl+0x1de/0x1790 fs/ioctl.c:696
ksys_ioctl+0xa9/0xd0 fs/ioctl.c:713
__do_sys_ioctl fs/ioctl.c:720 [inline]
__se_sys_ioctl fs/ioctl.c:718 [inline]
__x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:718
do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x4573d7
Code: Bad RIP value.
RSP: 002b:00007fbc57688098 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000004573d7
RDX: 00007fbc57688510 RSI: 000000004020ae46 RDI: 0000000000000004
RBP: 0000000020fe8000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000fec00000
R13: 0000000000000004 R14: 00000000004d83b8 R15: 00000000ffffffff
INFO: task syz-executor1:9716 blocked for more than 140 seconds.
Not tainted 4.20.0-rc1-next-20181109+ #110
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor1 D23400 9716 5969 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2831 [inline]
__schedule+0x8cf/0x21d0 kernel/sched/core.c:3472
schedule+0xef/0x370 kernel/sched/core.c:3516
schedule_timeout+0x1cc/0x260 kernel/time/timer.c:1780
do_wait_for_common kernel/sched/completion.c:83 [inline]
__wait_for_common kernel/sched/completion.c:104 [inline]
wait_for_common kernel/sched/completion.c:115 [inline]
wait_for_completion+0x427/0x8a0 kernel/sched/completion.c:136
__synchronize_srcu+0x20a/0x2d0 kernel/rcu/srcutree.c:946
synchronize_srcu_expedited kernel/rcu/srcutree.c:971 [inline]
synchronize_srcu+0x1d6/0x5b0 kernel/rcu/srcutree.c:1022
tracepoint_synchronize_unregister include/linux/tracepoint.h:84 [inline]
perf_trace_event_unreg.isra.3+0xcb/0x220 kernel/trace/trace_event_perf.c:163
perf_trace_destroy+0xc1/0x100 kernel/trace/trace_event_perf.c:238
tp_perf_event_destroy+0x15/0x20 kernel/events/core.c:8336
_free_event+0x414/0x1660 kernel/events/core.c:4446
put_event+0x48/0x60 kernel/events/core.c:4532
perf_event_release_kernel+0x8d0/0x10e0 kernel/events/core.c:4638
perf_release+0x37/0x50 kernel/events/core.c:4648
__fput+0x3bc/0xa70 fs/file_table.c:279
____fput+0x15/0x20 fs/file_table.c:312
task_work_run+0x1e8/0x2a0 kernel/task_work.c:113
tracehook_notify_resume include/linux/tracehook.h:188 [inline]
exit_to_usermode_loop+0x318/0x380 arch/x86/entry/common.c:166
prepare_exit_to_usermode arch/x86/entry/common.c:197 [inline]
syscall_return_slowpath arch/x86/entry/common.c:268 [inline]
do_syscall_64+0x6be/0x820 arch/x86/entry/common.c:293
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x411021
Code: 4c 89 f6 48 89 c7 48 89 ca 48 89 4c 24 10 4c 89 54 24 08 e8 b1 a3 ff ff 48 8b 4c 24 10 41 c6 04 0f 00 4c 8b 7c 24 28 4c 8b 54 <24> 08 45 0f b6 37 e9 db fc ff ff 0f 1f 40 00 41 80 f8 29 74 7f ba
RSP: 002b:00007ffe652c2180 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000411021
RDX: 0000000000000000 RSI: 0000000000730c98 RDI: 0000000000000005
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 00007ffe652c20b0 R11: 0000000000000293 R12: 0000000000000000
R13: 0000000000000001 R14: 000000000000003f R15: 0000000000000001
Showing all locks held in the system:
1 lock held by khungtaskd/1010:
#0: 00000000961429dd (rcu_read_lock){....}, at: debug_show_all_locks+0xd0/0x424 kernel/locking/lockdep.c:4379
1 lock held by rsyslogd/5829:
#0: 00000000aa52c0ff (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x1bb/0x200 fs/file.c:766
2 locks held by getty/5919:
#0: 00000000c4f5059b (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:353
#1: 00000000618d2aaf (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 drivers/tty/n_tty.c:2154
2 locks held by getty/5920:
#0: 0000000086256b40 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:353
#1: 000000008e22e013 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 drivers/tty/n_tty.c:2154
2 locks held by getty/5921:
#0: 00000000c0678fee (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:353
#1: 00000000781c2766 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 drivers/tty/n_tty.c:2154
2 locks held by getty/5922:
#0: 0000000090eedf44 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:353
#1: 00000000d95d6d05 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 drivers/tty/n_tty.c:2154
2 locks held by getty/5923:
#0: 000000000090dd4f (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:353
#1: 0000000019046798 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 drivers/tty/n_tty.c:2154
2 locks held by getty/5924:
#0: 00000000a67d9f71 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:353
#1: 00000000d24617d9 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 drivers/tty/n_tty.c:2154
2 locks held by getty/5925:
#0: 000000004c0eee1c (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:353
#1: 0000000089f8a765 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80 drivers/tty/n_tty.c:2154
3 locks held by kworker/0:4/8444:
1 lock held by syz-executor5/9682:
#0: 00000000c3a6684a (&kvm->slots_lock){+.+.}, at: kvm_set_memory_region+0x23/0x50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:1084
1 lock held by syz-executor5/9703:
#0: 00000000c3a6684a (&kvm->slots_lock){+.+.}, at: kvm_set_memory_region+0x23/0x50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:1084
1 lock held by syz-executor1/9716:
#0: 00000000e5ba874c (event_mutex){+.+.}, at: perf_trace_destroy+0x28/0x100 kernel/trace/trace_event_perf.c:236
=============================================
NMI backtrace for cpu 1
CPU: 1 PID: 1010 Comm: khungtaskd Not tainted 4.20.0-rc1-next-20181109+ #110
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:77 [inline]
dump_stack+0x244/0x39d lib/dump_stack.c:113
nmi_cpu_backtrace.cold.2+0x5c/0xa1 lib/nmi_backtrace.c:101
nmi_trigger_cpumask_backtrace+0x1e8/0x22a lib/nmi_backtrace.c:62
arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
trigger_all_cpu_backtrace include/linux/nmi.h:144 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:205 [inline]
watchdog+0xb4c/0x1060 kernel/hung_task.c:289
kthread+0x35a/0x440 kernel/kthread.c:246
ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:352
Sending NMI from CPU 1 to CPUs 0:
INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.000 msecs
NMI backtrace for cpu 0
CPU: 0 PID: 8444 Comm: kworker/0:4 Not tainted 4.20.0-rc1-next-20181109+ #110
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: events rtc_timer_do_work
RIP: 0010:__lock_release kernel/locking/lockdep.c:3630 [inline]
RIP: 0010:lock_release+0x3a5/0xa10 kernel/locking/lockdep.c:3863
Code: c6 41 89 96 78 08 00 00 48 b9 00 00 00 00 00 fc ff df 48 c1 ee 03 80 3c 0e 00 0f 85 9d 05 00 00 49 8d be 70 08 00 00 4c 8b 28 <48> b8 00 00 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 80 3c 01 00 0f
RSP: 0000:ffff8801c878f0c8 EFLAGS: 00000046
RAX: ffff8801c312aeb8 RBX: 1ffff100390f1e1e RCX: dffffc0000000000
RDX: 0000000000000003 RSI: 1ffff100386255d7 RDI: ffff8801c312ae30
RBP: ffff8801c878f1f8 R08: 0000000000000000 R09: ffff8801c878f268
R10: 0000000000000004 R11: 0000000000000003 R12: ffffffff8b0e27a0
R13: c4d9cfc4cda39e3d R14: ffff8801c312a5c0 R15: ffff8801c878f110
FS: 0000000000000000(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000707158 CR3: 00000001c3057000 CR4: 00000000001426f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
__raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:158 [inline]
_raw_spin_unlock_irqrestore+0x1f/0xd0 kernel/locking/spinlock.c:184
spin_unlock_irqrestore include/linux/spinlock.h:384 [inline]
__wake_up_common_lock+0x1d0/0x330 kernel/sched/wait.c:122
__wake_up+0xe/0x10 kernel/sched/wait.c:145
rtc_handle_legacy_irq+0x8f/0xd0 drivers/rtc/interface.c:609
rtc_uie_update_irq+0x1f/0x30 drivers/rtc/interface.c:636
rtc_timer_do_work+0x287/0x11a0 drivers/rtc/interface.c:915
process_one_work+0xc8b/0x1c40 kernel/workqueue.c:2153
worker_thread+0x17f/0x1390 kernel/workqueue.c:2296
kthread+0x35a/0x440 kernel/kthread.c:246
ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:352