INFO: task hung in __blkdev

INFO: task hung in __blkdev_get
Status: upstream: reported C repro on 2019/04/11 13:17
Reported-by: syzbot+0d4351f3b3165ccaee9e@syzkaller.appspotmail.com
First crash: 966d, last: 3d08h

similar bugs (9):
Kernel	Title	Repro	Count	Last	Reported	Patched	Status
android-49	INFO: task hung in __blkdev_get	C	1504	733d	966d	0/3	public: reported C repro on 2019/04/12 00:00
android-44	INFO: task hung in __blkdev_get	syz	521	735d	964d	0/2	public: reported syz repro on 2019/04/14 00:02
android-414	INFO: task hung in __blkdev_get		1859	733d	965d	0/1	auto-closed as invalid on 2020/02/28 16:13
upstream	INFO: task hung in __blkdev_get (3)		1	959d	959d	0/22	closed as invalid on 2019/05/08 13:05
upstream	INFO: task hung in __blkdev_get (2)		11	1057d	1181d	0/22	closed as dup on 2018/09/08 15:48
upstream	INFO: task hung in __blkdev_get	C	662	1328d	1454d	6/22	fixed on 2018/05/08 18:30
linux-4.19	INFO: task hung in __blkdev_get	C	71	6d01h	843d	0/1	upstream: reported C repro on 2019/08/13 00:10
upstream	INFO: task hung in __blkdev_get (4)		1	778d	778d	0/22	auto-closed as invalid on 2020/01/15 05:33
upstream	INFO: task hung in __blkdev_get (5)		8	356d	571d	0/22	auto-closed as invalid on 2021/03/11 14:46

Sample crash report:

hfsplus: unable to find HFS+ superblock
print_req_error: I/O error, dev loop4, sector 2
hfsplus: unable to find HFS+ superblock
print_req_error: I/O error, dev loop4, sector 2
hfsplus: unable to find HFS+ superblock
INFO: task systemd-udevd:6381 blocked for more than 140 seconds.
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
systemd-udevd   D28264  6381   3656 0x00000104
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3486
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
 __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
 blkdev_get+0x88/0x890 fs/block_dev.c:1611
print_req_error: I/O error, dev loop4, sector 2
hfsplus: unable to find HFS+ superblock
 blkdev_open+0x1cc/0x250 fs/block_dev.c:1772
 do_dentry_open+0x44b/0xec0 fs/open.c:777
 vfs_open+0x105/0x220 fs/open.c:888
 do_last fs/namei.c:3428 [inline]
 path_openat+0x628/0x2970 fs/namei.c:3569
 do_filp_open+0x179/0x3c0 fs/namei.c:3603
 do_sys_open+0x296/0x410 fs/open.c:1081
print_req_error: I/O error, dev loop4, sector 2
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
hfsplus: unable to find HFS+ superblock
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f09d36bd840
RSP: 002b:00007fff34a12f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 000055f23c2b0e20 RCX: 00007f09d36bd840
RDX: 000055f23a1e8fe3 RSI: 00000000000a0800 RDI: 000055f23c2b2a60
RBP: 00007fff34a130a0 R08: 000055f23a1e8670 R09: 0000000000000010
R10: 000055f23a1e8d0c R11: 0000000000000246 R12: 00007fff34a12ff0
R13: 000055f23c2acef0 R14: 0000000000000003 R15: 000000000000000e
INFO: task systemd-udevd:6399 blocked for more than 140 seconds.
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
systemd-udevd   D27848  6399   3656 0x00000104
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
print_req_error: I/O error, dev loop4, sector 2
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
hfsplus: unable to find HFS+ superblock
 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3486
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
 __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
 blkdev_get+0x88/0x890 fs/block_dev.c:1611
 blkdev_open+0x1cc/0x250 fs/block_dev.c:1772
 do_dentry_open+0x44b/0xec0 fs/open.c:777
 vfs_open+0x105/0x220 fs/open.c:888
 do_last fs/namei.c:3428 [inline]
 path_openat+0x628/0x2970 fs/namei.c:3569
 do_filp_open+0x179/0x3c0 fs/namei.c:3603
print_req_error: I/O error, dev loop4, sector 2
hfsplus: unable to find HFS+ superblock
 do_sys_open+0x296/0x410 fs/open.c:1081
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f09d36bd840
RSP: 002b:00007fff34a12f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 000055f23c2b2e20 RCX: 00007f09d36bd840
RDX: 000055f23a1e8fe3 RSI: 00000000000a0800 RDI: 000055f23c2b30e0
RBP: 00007fff34a130a0 R08: 000055f23a1e8670 R09: 0000000000000010
R10: 000055f23a1e8d0c R11: 0000000000000246 R12: 00007fff34a12ff0
R13: 000055f23c2acef0 R14: 0000000000000003 R15: 000000000000000e
INFO: task systemd-udevd:6401 blocked for more than 140 seconds.
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
systemd-udevd   D28088  6401   3656 0x00000104
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
hfsplus: unable to find HFS+ superblock
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3486
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
 __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
 blkdev_get+0x88/0x890 fs/block_dev.c:1611
 blkdev_open+0x1cc/0x250 fs/block_dev.c:1772
 do_dentry_open+0x44b/0xec0 fs/open.c:777
hfsplus: unable to find HFS+ superblock
 vfs_open+0x105/0x220 fs/open.c:888
 do_last fs/namei.c:3428 [inline]
 path_openat+0x628/0x2970 fs/namei.c:3569
 do_filp_open+0x179/0x3c0 fs/namei.c:3603
 do_sys_open+0x296/0x410 fs/open.c:1081
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f09d36bd840
RSP: 002b:00007fff34a0e0f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 000055f23c2b16b0 RCX: 00007f09d36bd840
RDX: 000055f23a1e8fe3 RSI: 0000000000080000 RDI: 000055f23c2ace90
RBP: 0000000000000001 R08: 000055f23a1e8670 R09: 0000000000000110
hfsplus: unable to find HFS+ superblock
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 000055f23c2acef0 R15: 00000000ffffffff
INFO: task systemd-udevd:6440 blocked for more than 140 seconds.
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
systemd-udevd   D28264  6440   3656 0x00000104
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3486
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
 __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
 blkdev_get+0x88/0x890 fs/block_dev.c:1611
hfsplus: unable to find HFS+ superblock
 blkdev_open+0x1cc/0x250 fs/block_dev.c:1772
 do_dentry_open+0x44b/0xec0 fs/open.c:777
 vfs_open+0x105/0x220 fs/open.c:888
 do_last fs/namei.c:3428 [inline]
 path_openat+0x628/0x2970 fs/namei.c:3569
 do_filp_open+0x179/0x3c0 fs/namei.c:3603
 do_sys_open+0x296/0x410 fs/open.c:1081
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f09d36bd840
RSP: 002b:00007fff34a0e0f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 000055f23c2b3030 RCX: 00007f09d36bd840
RDX: 000055f23a1e8fe3 RSI: 0000000000080000 RDI: 000055f23c2b2ab0
RBP: 0000000000000001 R08: 000055f23a1e8670 R09: 0000000000000110
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 000055f23c2accf0 R15: 00000000ffffffff
INFO: task systemd-udevd:6487 blocked for more than 140 seconds.
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
systemd-udevd   D28216  6487   3656 0x00000104
hfsplus: unable to find HFS+ superblock
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3486
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
 blkdev_put+0x27/0x4c0 fs/block_dev.c:1816
 blkdev_close+0x86/0xb0 fs/block_dev.c:1865
 __fput+0x25f/0x7a0 fs/file_table.c:210
 task_work_run+0x11f/0x190 kernel/task_work.c:113
 tracehook_notify_resume include/linux/tracehook.h:191 [inline]
 exit_to_usermode_loop+0x1ad/0x200 arch/x86/entry/common.c:164
 prepare_exit_to_usermode arch/x86/entry/common.c:199 [inline]
 syscall_return_slowpath arch/x86/entry/common.c:270 [inline]
 do_syscall_64+0x4a3/0x640 arch/x86/entry/common.c:297
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f09d36bd270
RSP: 002b:00007fff34a12f08 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000007 RCX: 00007f09d36bd270
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
RBP: 00007f09d4576710 R08: 000055f23c2a1380 R09: 000055f23c2a1100
R10: 00007f09d45768c0 R11: 0000000000000246 R12: 0000000000000000
R13: 000055f23c29e9c0 R14: 0000000000000003 R15: 000000000000000e
INFO: task syz-executor443:8684 blocked for more than 140 seconds.
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor443 D28808  8684   6364 0x80000004
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
hfsplus: unable to find HFS+ superblock
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3486
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
 lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
 __blkdev_driver_ioctl block/ioctl.c:297 [inline]
 blkdev_ioctl+0x540/0x1830 block/ioctl.c:594
 ioctl_by_bdev+0xa0/0x110 fs/block_dev.c:2068
 hfsplus_get_last_session fs/hfsplus/wrapper.c:151 [inline]
 hfsplus_read_wrapper+0x1a7/0xd68 fs/hfsplus/wrapper.c:173
 hfsplus_fill_super+0x331/0x1850 fs/hfsplus/super.c:413
hfsplus: unable to find HFS+ superblock
 mount_bdev+0x2b3/0x360 fs/super.c:1134
 mount_fs+0x92/0x2a0 fs/super.c:1237
 vfs_kern_mount.part.0+0x5b/0x470 fs/namespace.c:1046
 vfs_kern_mount fs/namespace.c:1036 [inline]
 do_new_mount fs/namespace.c:2549 [inline]
 do_mount+0xe53/0x2a00 fs/namespace.c:2879
hfsplus: unable to find HFS+ superblock
 SYSC_mount fs/namespace.c:3095 [inline]
 SyS_mount+0xa8/0x120 fs/namespace.c:3072
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x446bd9
RSP: 002b:00007f1228cebdb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446bd9
RDX: 0000000020000180 RSI: 00000000200001c0 RDI: 0000000020000240
RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c
hfsplus: unable to find HFS+ superblock
R13: 00007ffd339de28f R14: 00007f1228cec9c0 R15: 000000000000002d
INFO: task syz-executor443:8692 blocked for more than 140 seconds.
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor443 D29264  8692   6364 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
 __rwsem_down_read_failed_common kernel/locking/rwsem-xadd.c:292 [inline]
 rwsem_down_read_failed+0x1e6/0x350 kernel/locking/rwsem-xadd.c:309
 call_rwsem_down_read_failed+0x14/0x30 arch/x86/lib/rwsem.S:94
 __down_read arch/x86/include/asm/rwsem.h:66 [inline]
 down_read+0x44/0x80 kernel/locking/rwsem.c:26
 __get_super.part.0+0x271/0x390 fs/super.c:678
 __get_super include/linux/spinlock.h:317 [inline]
 get_super+0x2b/0x50 fs/super.c:707
 fsync_bdev+0x14/0xc0 fs/block_dev.c:495
 invalidate_partition+0x74/0xb0 block/genhd.c:1506
 drop_partitions.isra.0+0x83/0x150 block/partition-generic.c:442
 rescan_partitions+0xa9/0x800 block/partition-generic.c:515
 __blkdev_reread_part+0x140/0x1d0 block/ioctl.c:173
hfsplus: unable to find HFS+ superblock
 blkdev_reread_part+0x23/0x40 block/ioctl.c:193
 loop_reread_partitions drivers/block/loop.c:624 [inline]
 loop_set_status+0xeeb/0x12b0 drivers/block/loop.c:1193
 loop_set_status64+0x92/0xe0 drivers/block/loop.c:1311
 lo_ioctl+0x587/0x1cd0 drivers/block/loop.c:1441
 __blkdev_driver_ioctl block/ioctl.c:297 [inline]
 blkdev_ioctl+0x540/0x1830 block/ioctl.c:594
 block_ioctl+0xd9/0x120 fs/block_dev.c:1883
 vfs_ioctl fs/ioctl.c:46 [inline]
 file_ioctl fs/ioctl.c:500 [inline]
 do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684
 SYSC_ioctl fs/ioctl.c:701 [inline]
 SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x446ae7
RSP: 002b:00007f1228ccab68 EFLAGS: 00000202 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000446ae7
hfsplus: unable to find HFS+ superblock
RDX: 00007f1228ccac00 RSI: 0000000000004c04 RDI: 0000000000000004
RBP: 0000000000000003 R08: 000000000000000a R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000202 R12: 00000000006dbc3c
R13: 00007f1228ccb6d0 R14: 00007f1228ccb9c0 R15: 000000000000002d
INFO: task syz-executor443:9485 blocked for more than 140 seconds.
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor443 D28808  9485   6367 0x80000004
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3486
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
hfsplus: unable to find HFS+ superblock
 lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
 __blkdev_driver_ioctl block/ioctl.c:297 [inline]
 blkdev_ioctl+0x540/0x1830 block/ioctl.c:594
 ioctl_by_bdev+0xa0/0x110 fs/block_dev.c:2068
 hfsplus_get_last_session fs/hfsplus/wrapper.c:151 [inline]
 hfsplus_read_wrapper+0x1a7/0xd68 fs/hfsplus/wrapper.c:173
hfsplus: unable to find HFS+ superblock
 hfsplus_fill_super+0x331/0x1850 fs/hfsplus/super.c:413
hfsplus: unable to find HFS+ superblock
 mount_bdev+0x2b3/0x360 fs/super.c:1134
 mount_fs+0x92/0x2a0 fs/super.c:1237
 vfs_kern_mount.part.0+0x5b/0x470 fs/namespace.c:1046
 vfs_kern_mount fs/namespace.c:1036 [inline]
 do_new_mount fs/namespace.c:2549 [inline]
 do_mount+0xe53/0x2a00 fs/namespace.c:2879
 SYSC_mount fs/namespace.c:3095 [inline]
 SyS_mount+0xa8/0x120 fs/namespace.c:3072
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x446bd9
RSP: 002b:00007f1228cebdb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446bd9
RDX: 0000000020000180 RSI: 00000000200001c0 RDI: 0000000020000240
RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c
R13: 00007ffd339de28f R14: 00007f1228cec9c0 R15: 000000000000002d
INFO: task syz-executor443:9490 blocked for more than 140 seconds.
hfsplus: unable to find HFS+ superblock
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor443 D29264  9490   6367 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
 __rwsem_down_read_failed_common kernel/locking/rwsem-xadd.c:292 [inline]
 rwsem_down_read_failed+0x1e6/0x350 kernel/locking/rwsem-xadd.c:309
 call_rwsem_down_read_failed+0x14/0x30 arch/x86/lib/rwsem.S:94
 __down_read arch/x86/include/asm/rwsem.h:66 [inline]
 down_read+0x44/0x80 kernel/locking/rwsem.c:26
 __get_super.part.0+0x271/0x390 fs/super.c:678
 __get_super include/linux/spinlock.h:317 [inline]
 get_super+0x2b/0x50 fs/super.c:707
 fsync_bdev+0x14/0xc0 fs/block_dev.c:495
 invalidate_partition+0x74/0xb0 block/genhd.c:1506
 drop_partitions.isra.0+0x83/0x150 block/partition-generic.c:442
 rescan_partitions+0xa9/0x800 block/partition-generic.c:515
 __blkdev_reread_part+0x140/0x1d0 block/ioctl.c:173
 blkdev_reread_part+0x23/0x40 block/ioctl.c:193
 loop_reread_partitions drivers/block/loop.c:624 [inline]
 loop_set_status+0xeeb/0x12b0 drivers/block/loop.c:1193
 loop_set_status64+0x92/0xe0 drivers/block/loop.c:1311
 lo_ioctl+0x587/0x1cd0 drivers/block/loop.c:1441
 __blkdev_driver_ioctl block/ioctl.c:297 [inline]
 blkdev_ioctl+0x540/0x1830 block/ioctl.c:594
hfsplus: unable to find HFS+ superblock
 block_ioctl+0xd9/0x120 fs/block_dev.c:1883
 vfs_ioctl fs/ioctl.c:46 [inline]
 file_ioctl fs/ioctl.c:500 [inline]
 do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684
 SYSC_ioctl fs/ioctl.c:701 [inline]
 SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x446ae7
RSP: 002b:00007f1228ccab68 EFLAGS: 00000202 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000446ae7
RDX: 00007f1228ccac00 RSI: 0000000000004c04 RDI: 0000000000000004
RBP: 0000000000000003 R08: 000000000000000a R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000202 R12: 00000000006dbc3c
R13: 00007f1228ccb6d0 R14: 00007f1228ccb9c0 R15: 000000000000002d
INFO: task syz-executor443:9593 blocked for more than 140 seconds.
      Not tainted 4.14.195-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor443 D27896  9593   6365 0x80000004
Call Trace:
 context_switch kernel/sched/core.c:2808 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3384
 schedule+0x8d/0x1b0 kernel/sched/core.c:3428
 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3486
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
 lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
 __blkdev_driver_ioctl block/ioctl.c:297 [inline]
 blkdev_ioctl+0x540/0x1830 block/ioctl.c:594
 ioctl_by_bdev+0xa0/0x110 fs/block_dev.c:2068
hfsplus: unable to find HFS+ superblock
 hfsplus_get_last_session fs/hfsplus/wrapper.c:151 [inline]
 hfsplus_read_wrapper+0x1a7/0xd68 fs/hfsplus/wrapper.c:173
 hfsplus_fill_super+0x331/0x1850 fs/hfsplus/super.c:413
 mount_bdev+0x2b3/0x360 fs/super.c:1134
 mount_fs+0x92/0x2a0 fs/super.c:1237
 vfs_kern_mount.part.0+0x5b/0x470 fs/namespace.c:1046
 vfs_kern_mount fs/namespace.c:1036 [inline]
 do_new_mount fs/namespace.c:2549 [inline]
 do_mount+0xe53/0x2a00 fs/namespace.c:2879
 SYSC_mount fs/namespace.c:3095 [inline]
 SyS_mount+0xa8/0x120 fs/namespace.c:3072
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x446bd9
RSP: 002b:00007f1228cebdb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446bd9
RDX: 0000000020000180 RSI: 00000000200001c0 RDI: 0000000020000240
RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c
R13: 00007ffd339de28f R14: 00007f1228cec9c0 R15: 000000000000002d
hfsplus: unable to find HFS+ superblock

Showing all locks held in the system:
1 lock held by khungtaskd/1069:
 #0:  (tasklist_lock){.+.+}, at: [<ffffffff814777f4>] debug_show_all_locks+0x7c/0x21a kernel/locking/lockdep.c:4548
1 lock held by systemd-udevd/6381:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a59f1>] __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
1 lock held by systemd-udevd/6399:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a59f1>] __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
1 lock held by systemd-udevd/6401:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a59f1>] __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
1 lock held by systemd-udevd/6440:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a59f1>] __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
1 lock held by systemd-udevd/6487:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a44b7>] blkdev_put+0x27/0x4c0 fs/block_dev.c:1816
2 locks held by syz-executor443/8684:
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] alloc_super fs/super.c:251 [inline]
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] sget_userns+0x556/0xc10 fs/super.c:516
 #1:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
3 locks held by syz-executor443/8692:
 #0:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
 #1:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff82f734cb>] blkdev_reread_part+0x1b/0x40 block/ioctl.c:192
 #2:  (&type->s_umount_key#57){.+.+}, at: [<ffffffff818dcf41>] __get_super.part.0+0x271/0x390 fs/super.c:678
2 locks held by syz-executor443/9485:
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] alloc_super fs/super.c:251 [inline]
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] sget_userns+0x556/0xc10 fs/super.c:516
 #1:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
3 locks held by syz-executor443/9490:
 #0:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
 #1:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff82f734cb>] blkdev_reread_part+0x1b/0x40 block/ioctl.c:192
 #2:  (&type->s_umount_key#57){.+.+}, at: [<ffffffff818dcf41>] __get_super.part.0+0x271/0x390 fs/super.c:678
2 locks held by syz-executor443/9593:
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] alloc_super fs/super.c:251 [inline]
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] sget_userns+0x556/0xc10 fs/super.c:516
 #1:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
3 locks held by syz-executor443/9601:
 #0:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
 #1:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff82f734cb>] blkdev_reread_part+0x1b/0x40 block/ioctl.c:192
 #2:  (&type->s_umount_key#57){.+.+}, at: [<ffffffff818dcf41>] __get_super.part.0+0x271/0x390 fs/super.c:678
2 locks held by syz-executor443/9765:
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] alloc_super fs/super.c:251 [inline]
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] sget_userns+0x556/0xc10 fs/super.c:516
 #1:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
3 locks held by syz-executor443/9768:
 #0:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
 #1:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff82f734cb>] blkdev_reread_part+0x1b/0x40 block/ioctl.c:192
 #2:  (&type->s_umount_key#57){.+.+}, at: [<ffffffff818dcf41>] __get_super.part.0+0x271/0x390 fs/super.c:678
2 locks held by syz-executor443/10049:
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] alloc_super fs/super.c:251 [inline]
 #0:  (&type->s_umount_key#56/1){+.+.}, at: [<ffffffff818db6a6>] sget_userns+0x556/0xc10 fs/super.c:516
 #1:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
3 locks held by syz-executor443/10051:
 #0:  (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff83a832a7>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
 #1:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff82f734cb>] blkdev_reread_part+0x1b/0x40 block/ioctl.c:192
 #2:  (&type->s_umount_key#57){.+.+}, at: [<ffffffff818dcf41>] __get_super.part.0+0x271/0x390 fs/super.c:678

=============================================

NMI backtrace for cpu 0
CPU: 0 PID: 1069 Comm: khungtaskd Not tainted 4.14.195-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x1b2/0x283 lib/dump_stack.c:58
 nmi_cpu_backtrace.cold+0x57/0x93 lib/nmi_backtrace.c:101
 nmi_trigger_cpumask_backtrace+0x13a/0x17f lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:140 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:195 [inline]
 watchdog+0x5b9/0xb40 kernel/hung_task.c:274
 kthread+0x30d/0x420 kernel/kthread.c:232
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1 skipped: idling at pc 0xffffffff86547e8e

Fix bisection attempts:
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro
ci2-linux-4-14	2021/11/29 23:09	linux-4.14.y	66722c42ec91	d5a3ae1f	.config	log	report	syz	C
ci2-linux-4-14	2021/10/30 22:18	linux-4.14.y	cd5296934610	d5a3ae1f	.config	log	report	syz	C
ci2-linux-4-14	2021/08/01 13:29	linux-4.14.y	ce4d1565392b	d5a3ae1f	.config	log	report	syz	C
ci2-linux-4-14	2021/06/16 23:07	linux-4.14.y	cfb41ef9deb1	d5a3ae1f	.config	log	report	syz	C

Crashes (672):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	VM info	Title
ci2-linux-4-14	2020/08/31 01:03	linux-4.14.y	d7e78d08fa77	d5a3ae1f	.config	log	report	syz	C
ci2-linux-4-14	2020/07/04 11:02	linux-4.14.y	b850307b279c	51095195	.config	log	report	syz	C
ci2-linux-4-14	2019/04/29 03:51	linux-4.14.y	fa5941f45d7e	b617407b	.config	log	report	syz
ci2-linux-4-14	2021/09/30 12:36	linux-4.14.y	f11944f1aa1c	be530f6c	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/09/02 03:37	linux-4.14.y	35c4ba160ab6	7eb7e152	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/08/29 09:30	linux-4.14.y	35c4ba160ab6	be2c130d	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/07/02 13:01	linux-4.14.y	313e82bbefb3	658ebc66	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/05/17 22:41	linux-4.14.y	7d7d1c0ab3eb	a343ba6b	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/05/17 07:32	linux-4.14.y	7d7d1c0ab3eb	f54a5c09	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/05/13 23:07	linux-4.14.y	7d7d1c0ab3eb	ecb594cb	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/05/08 02:27	linux-4.14.y	7d7d1c0ab3eb	bc5434be	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/05/06 17:51	linux-4.14.y	7d7d1c0ab3eb	06585184	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/05/05 13:11	linux-4.14.y	7d7d1c0ab3eb	06c27ff5	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/05/04 00:29	linux-4.14.y	7d7d1c0ab3eb	ad61f371	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/05/02 10:34	linux-4.14.y	7d7d1c0ab3eb	77e2b668	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/29 23:37	linux-4.14.y	7d7d1c0ab3eb	77e2b668	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/25 10:10	linux-4.14.y	cf256fbcbe34	36c88236	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/24 02:01	linux-4.14.y	cf256fbcbe34	17f0b706	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/23 11:30	linux-4.14.y	cf256fbcbe34	590921a5	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/22 14:06	linux-4.14.y	cf256fbcbe34	33c28d03	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/22 09:27	linux-4.14.y	cf256fbcbe34	2bc8999a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/20 21:15	linux-4.14.y	cf256fbcbe34	c0ced557	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/20 12:25	linux-4.14.y	cf256fbcbe34	c0ced557	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/18 18:54	linux-4.14.y	cf256fbcbe34	7e2b734b	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/18 14:01	linux-4.14.y	cf256fbcbe34	7e2b734b	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/14 15:58	linux-4.14.y	958e517f4e16	3134b37f	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/13 17:19	linux-4.14.y	958e517f4e16	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/13 13:08	linux-4.14.y	958e517f4e16	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/13 09:57	linux-4.14.y	958e517f4e16	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/11 08:05	linux-4.14.y	958e517f4e16	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/10 21:07	linux-4.14.y	958e517f4e16	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/10 14:04	linux-4.14.y	958e517f4e16	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/10 06:19	linux-4.14.y	0cc244011f40	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/09 22:24	linux-4.14.y	0cc244011f40	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/08 22:29	linux-4.14.y	0cc244011f40	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/08 21:15	linux-4.14.y	0cc244011f40	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/08 14:34	linux-4.14.y	0cc244011f40	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/08 03:29	linux-4.14.y	0cc244011f40	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/07 13:50	linux-4.14.y	0cc244011f40	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/07 03:55	linux-4.14.y	bd634aa64163	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/06 11:12	linux-4.14.y	bd634aa64163	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/05 18:23	linux-4.14.y	bd634aa64163	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/04 06:06	linux-4.14.y	bd634aa64163	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/03 14:53	linux-4.14.y	bd634aa64163	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/03 11:21	linux-4.14.y	bd634aa64163	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/04/02 05:59	linux-4.14.y	bd634aa64163	6a81331a	.config	log	report			info	INFO: task hung in __blkdev_get
ci2-linux-4-14	2021/01/17 11:46	linux-4.14.y	f79dc86058bc	813be542	.config	log	report			info
ci2-linux-4-14	2019/04/11 12:16	linux-4.14.y	1ec8f1f0bffe	e955ac50	.config	log	report