syzbot


INFO: task hung in jbd2_journal_commit_transaction

Status: auto-closed as invalid on 2019/03/29 12:13
First crash: 2171d, last: 2026d
Similar bugs (7)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream INFO: task hung in jbd2_journal_commit_transaction (2) ext4 1 1133d 1133d 0/26 auto-closed as invalid on 2021/06/09 10:13
android-44 INFO: task hung in jbd2_journal_commit_transaction C 6 2119d 1832d 0/2 public: reported C repro on 2019/04/13 00:00
linux-6.1 INFO: task hung in jbd2_journal_commit_transaction 1 321d 321d 0/3 auto-obsoleted due to no activity on 2023/09/09 09:50
upstream INFO: task hung in jbd2_journal_commit_transaction (4) ext4 7 265d 413d 0/26 auto-obsoleted due to no activity on 2023/10/25 18:13
upstream INFO: task hung in jbd2_journal_commit_transaction (3) ext4 C error error 24 566d 851d 0/26 auto-obsoleted due to no activity on 2023/01/27 09:20
upstream INFO: task hung in jbd2_journal_commit_transaction ext4 C 52 2013d 2032d 0/26 closed as dup on 2018/10/02 14:53
android-414 INFO: task hung in jbd2_journal_commit_transaction C 31 2018d 1834d 0/1 public: reported C repro on 2019/04/11 00:00

Sample crash report:
Free swap  = 0kB
Total swap = 0kB
1965979 pages RAM
0 pages HighMem/MovableOnly
313664 pages reserved
INFO: task jbd2/sda1-8:354 blocked for more than 140 seconds.
      Not tainted 4.9.130+ #46
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
jbd2/sda1-8     D26344   354      2 0x80000000
 ffff8801d53d17c0 0000000000000000 ffff8801d123d280 ffff8801d647c740
 ffff8801db621018 ffff8801d53f7880 ffffffff827f2d82 ffff8801d53f7b68
 0000000000000282 0000000041b58ab3 00ffffff82e29b52 ffff8801db6218f0
Call Trace:
 [<ffffffff827f42af>] schedule+0x7f/0x1b0 kernel/sched/core.c:3553
 [<ffffffff817f05f5>] jbd2_journal_commit_transaction+0x725/0x65e0 fs/jbd2/commit.c:444
 [<ffffffff8180945a>] kjournald2+0x22a/0x830 fs/jbd2/journal.c:224
 [<ffffffff8114272d>] kthread+0x26d/0x300 kernel/kthread.c:211
 [<ffffffff828031dc>] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373

Showing all locks held in the system:
2 locks held by khungtaskd/24:
 #0:  (rcu_read_lock){......}, at: [<ffffffff8131b8dc>] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline]
 #0:  (rcu_read_lock){......}, at: [<ffffffff8131b8dc>] watchdog+0x11c/0xa20 kernel/hung_task.c:239
 #1:  (tasklist_lock){.+.+..}, at: [<ffffffff813fe0a4>] debug_show_all_locks+0x79/0x218 kernel/locking/lockdep.c:4336
3 locks held by rs:main Q:Reg/1889:
 #0:  (&f->f_pos_lock){+.+.+.}, at: [<ffffffff8156cacc>] __fdget_pos+0xac/0xd0 fs/file.c:781
 #1:  (sb_writers#4){.+.+.+}, at: [<ffffffff8150ac4b>] file_start_write include/linux/fs.h:2640 [inline]
 #1:  (sb_writers#4){.+.+.+}, at: [<ffffffff8150ac4b>] vfs_write+0x3eb/0x520 fs/read_write.c:556
 #2:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff816b2ab2>] inode_lock include/linux/fs.h:766 [inline]
 #2:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff816b2ab2>] ext4_file_write_iter+0x122/0xd70 fs/ext4/file.c:100
2 locks held by getty/2019:
 #0:  (&tty->ldisc_sem){++++++}, at: [<ffffffff828010d2>] ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:367
 #1:  (&ldata->atomic_read_lock){+.+...}, at: [<ffffffff81d2af12>] n_tty_read+0x202/0x16e0 drivers/tty/n_tty.c:2142
4 locks held by kworker/u4:6/2976:
 #0:  ("writeback"){++++.+}, at: [<ffffffff81130abc>] process_one_work+0x73c/0x1530 kernel/workqueue.c:2085
 #1:  ((&(&wb->dwork)->work)){+.+.+.}, at: [<ffffffff81130af4>] process_one_work+0x774/0x1530 kernel/workqueue.c:2089
 #2:  (&type->s_umount_key#32){++++++}, at: [<ffffffff81514840>] trylock_super+0x20/0xf0 fs/super.c:393
 #3:  (&sbi->s_journal_flag_rwsem){++++.+}, at: [<ffffffff81433a1f>] do_writepages+0xef/0x1d0 mm/page-writeback.c:2331
1 lock held by syz-executor0/7472:
 #0:  (sb_internal){.+.+..}, at: [<ffffffff816e301d>] sb_start_intwrite include/linux/fs.h:1620 [inline]
 #0:  (sb_internal){.+.+..}, at: [<ffffffff816e301d>] ext4_evict_inode+0x3fd/0x1230 fs/ext4/inode.c:240
1 lock held by syz-executor0/7924:
 #0:  (sb_internal){.+.+..}, at: [<ffffffff816e301d>] sb_start_intwrite include/linux/fs.h:1620 [inline]
 #0:  (sb_internal){.+.+..}, at: [<ffffffff816e301d>] ext4_evict_inode+0x3fd/0x1230 fs/ext4/inode.c:240
1 lock held by syz-executor0/8030:
 #0:  (sb_internal){.+.+..}, at: [<ffffffff816e301d>] sb_start_intwrite include/linux/fs.h:1620 [inline]
 #0:  (sb_internal){.+.+..}, at: [<ffffffff816e301d>] ext4_evict_inode+0x3fd/0x1230 fs/ext4/inode.c:240
2 locks held by syz-executor0/8376:
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8157543f>] sb_start_write include/linux/fs.h:1573 [inline]
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8157543f>] mnt_want_write+0x3f/0xb0 fs/namespace.c:391
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff815031c8>] inode_lock include/linux/fs.h:766 [inline]
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff815031c8>] do_truncate2+0x128/0x1f0 fs/open.c:61
2 locks held by syz-executor0/8377:
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8157543f>] sb_start_write include/linux/fs.h:1573 [inline]
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8157543f>] mnt_want_write+0x3f/0xb0 fs/namespace.c:391
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff815031c8>] inode_lock include/linux/fs.h:766 [inline]
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff815031c8>] do_truncate2+0x128/0x1f0 fs/open.c:61
2 locks held by syz-executor0/8378:
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8150113e>] sb_start_write include/linux/fs.h:1573 [inline]
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8150113e>] vfs_fallocate+0x2fe/0x620 fs/open.c:328
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff8178a3e6>] inode_lock include/linux/fs.h:766 [inline]
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff8178a3e6>] ext4_fallocate+0x366/0x1e80 fs/ext4/extents.c:4974
2 locks held by syz-executor0/8379:
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8150113e>] sb_start_write include/linux/fs.h:1573 [inline]
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8150113e>] vfs_fallocate+0x2fe/0x620 fs/open.c:328
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff8178a3e6>] inode_lock include/linux/fs.h:766 [inline]
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff8178a3e6>] ext4_fallocate+0x366/0x1e80 fs/ext4/extents.c:4974
2 locks held by syz-executor0/8380:
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff815755c8>] sb_start_write include/linux/fs.h:1573 [inline]
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff815755c8>] mnt_want_write_file+0x68/0x110 fs/namespace.c:449
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff81560ae4>] inode_lock include/linux/fs.h:766 [inline]
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff81560ae4>] lock_two_nondirectories+0xd4/0xf0 fs/inode.c:981
2 locks held by init/8386:
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8150ac4b>] file_start_write include/linux/fs.h:2640 [inline]
 #0:  (sb_writers#4){.+.+.+}, at: [<ffffffff8150ac4b>] vfs_write+0x3eb/0x520 fs/read_write.c:556
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff816b2ab2>] inode_lock include/linux/fs.h:766 [inline]
 #1:  (&sb->s_type->i_mutex_key#9){++++++}, at: [<ffffffff816b2ab2>] ext4_file_write_iter+0x122/0xd70 fs/ext4/file.c:100

=============================================

NMI backtrace for cpu 1
CPU: 1 PID: 24 Comm: khungtaskd Not tainted 4.9.130+ #46
 ffff8801d9907d08 ffffffff81b36c89 0000000000000000 0000000000000001
 0000000000000001 0000000000000001 ffffffff81098180 ffff8801d9907d40
 ffffffff81b41d99 0000000000000001 0000000000000000 0000000000000003
Call Trace:
 [<ffffffff81b36c89>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81b36c89>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81b41d99>] nmi_cpu_backtrace.cold.0+0x48/0x87 lib/nmi_backtrace.c:99
 [<ffffffff81b41d2c>] nmi_trigger_cpumask_backtrace+0x12c/0x151 lib/nmi_backtrace.c:60
 [<ffffffff81098284>] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37
 [<ffffffff8131be6d>] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline]
 [<ffffffff8131be6d>] check_hung_task kernel/hung_task.c:125 [inline]
 [<ffffffff8131be6d>] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline]
 [<ffffffff8131be6d>] watchdog+0x6ad/0xa20 kernel/hung_task.c:239
 [<ffffffff8114272d>] kthread+0x26d/0x300 kernel/kthread.c:211
 [<ffffffff828031dc>] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 8332 Comm: syz-executor0 Not tainted 4.9.130+ #46
task: ffff8801a34c17c0 task.stack: ffff8801d2880000
RIP: 0010:[<ffffffff81773063>] c [<ffffffff81773063>] ext4_ext_drop_refs+0x23/0xe0 fs/ext4/extents.c:729
RSP: 0018:ffff8801d2887608  EFLAGS: 00000246
RAX: 0000000000040000 RBX: ffff8801d24c3c00 RCX: ffffc9000555d000
RDX: 0000000000040000 RSI: ffffffff81773063 RDI: ffff8801d24c3c00
RBP: ffff8801d2887630 R08: 000000000000000c R09: ffff8801d2887390
R10: ffffed003a510e65 R11: ffff8801d288732f R12: 0000000000000000
R13: ffff8801d28878f8 R14: ffff88019e8250a0 R15: ffff8801d24c3c00
FS:  00007fbc54c9f700(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f2d77f7001a CR3: 00000001d2946000 CR4: 00000000001606b0
DR0: 0000000020000000 DR1: 0000000020000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
Stack:
 0000000000000000c 0000000000000000c ffff8801d28878f8c ffff88019e8250a0c
 ffff8801d24c3c00c ffff8801d28876a0c ffffffff81773890c ffffffffffffff10c
 ffff8801d28876f8c ffff88019e825290c cc141a8a40000000c ffff8801d24c3c00c
Call Trace:
 [<ffffffff81773890>] ext4_find_extent+0xd0/0x940 fs/ext4/extents.c:892
 [<ffffffff817b9a76>] get_ext_path fs/ext4/move_extent.c:39 [inline]
 [<ffffffff817b9a76>] mext_check_coverage.constprop.2+0x256/0x400 fs/ext4/move_extent.c:106
 [<ffffffff817bb48b>] move_extent_per_page fs/ext4/move_extent.c:333 [inline]
 [<ffffffff817bb48b>] ext4_move_extents+0x17bb/0x2a50 fs/ext4/move_extent.c:681
 [<ffffffff816ed51c>] ext4_ioctl+0x27fc/0x3620 fs/ext4/ioctl.c:594
 [<ffffffff81546c3c>] vfs_ioctl fs/ioctl.c:43 [inline]
 [<ffffffff81546c3c>] file_ioctl fs/ioctl.c:493 [inline]
 [<ffffffff81546c3c>] do_vfs_ioctl+0x1ac/0x11a0 fs/ioctl.c:677
 [<ffffffff81547cbf>] SYSC_ioctl fs/ioctl.c:694 [inline]
 [<ffffffff81547cbf>] SyS_ioctl+0x8f/0xc0 fs/ioctl.c:685
 [<ffffffff810056ef>] do_syscall_64+0x19f/0x550 arch/x86/entry/common.c:285
 [<ffffffff82803013>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
Code: c0f c1f c84 c00 c00 c00 c00 c00 c55 c48 c89 ce5 c41 c57 c41 c56 c41 c55 c41 c54 c53 c48 c89 cfb ce8 c1b c82 cba cff c48 c85 cdb c0f c84 c8b c00 c00 c00 ce8 c0d c82 cba cff c<48> c8d c7b c08 c48 cb8 c00 c00 c00 c00 c00 cfc cff cdf c48 c89 cfa c48 cc1 cea c03 c

Crashes (5):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/09/30 11:54 https://android.googlesource.com/kernel/common android-4.9 1c7637ca0b04 41e4b329 .config console log report ci-android-49-kasan-gce-root
2018/09/29 11:33 https://android.googlesource.com/kernel/common android-4.9 4fc79c48d27f 41e4b329 .config console log report ci-android-49-kasan-gce-root
2018/09/21 23:11 https://android.googlesource.com/kernel/common android-4.9 1c57ba4f543b 37079712 .config console log report ci-android-49-kasan-gce-root
2018/07/16 21:07 https://android.googlesource.com/kernel/common android-4.9 9e7903954483 40cb0c9a .config console log report ci-android-49-kasan-gce-root
2018/05/08 14:38 https://android.googlesource.com/kernel/common android-4.9 a03d0bbacd41 045bbd4a .config console log report ci-android-49-kasan-gce
* Struck through repros no longer work on HEAD.