INFO: task hung in __blkdev

INFO: task hung in __blkdev_get
Status: upstream: reported syz repro on 2019/04/11 13:17
Reported-by: syzbot+0d4351f3b3165ccaee9e@syzkaller.appspotmail.com
First crash: 422d, last: 6d17h

similar bugs (8):
Kernel	Title	Repro	Count	Last	Reported	Patched	Status
android-49	INFO: task hung in __blkdev_get	C	1504	189d	421d	0/3	public: reported C repro on 2019/04/12 00:00
android-44	INFO: task hung in __blkdev_get	syz	521	191d	419d	0/2	public: reported syz repro on 2019/04/14 00:02
android-414	INFO: task hung in __blkdev_get		1859	188d	420d	0/1	auto-closed as invalid on 2020/02/28 16:13
upstream	INFO: task hung in __blkdev_get (3)		1	414d	414d	0/17	closed as invalid on 2019/05/08 13:05
upstream	INFO: task hung in __blkdev_get (2)		11	513d	636d	0/17	closed as dup on 2018/09/08 15:48
upstream	INFO: task hung in __blkdev_get	C	662	784d	910d	6/17	fixed on 2018/05/08 18:30
linux-4.19	INFO: task hung in __blkdev_get	C	8	26d	298d	0/1	upstream: reported C repro on 2019/08/13 00:10
upstream	INFO: task hung in __blkdev_get (4)		1	233d	233d	0/17	auto-closed as invalid on 2020/01/15 05:33

Sample crash report:

IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
8021q: adding VLAN 0 to HW filter on device batadv0
INFO: task syz-executor.3:7103 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.3  D24840  7103      1 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
 blkdev_get+0xa8/0x8e0 fs/block_dev.c:1612
 blkdev_open+0x1d1/0x260 fs/block_dev.c:1770
 do_dentry_open+0x73e/0xeb0 fs/open.c:758
 vfs_open+0x105/0x230 fs/open.c:872
 do_last fs/namei.c:3425 [inline]
 path_openat+0x8bd/0x3f70 fs/namei.c:3566
 do_filp_open+0x18e/0x250 fs/namei.c:3600
 do_sys_open+0x2c5/0x430 fs/open.c:1065
 SYSC_open fs/open.c:1083 [inline]
 SyS_open+0x2d/0x40 fs/open.c:1078
 do_syscall_64+0x1eb/0x630 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x412d20
RSP: 002b:00007fff3e914528 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 00000000000f87e2 RCX: 0000000000412d20
RDX: 00007fff3e9145ba RSI: 0000000000000002 RDI: 00007fff3e9145b0
RBP: 000000000000000d R08: 0000000000000000 R09: 000000000000000a
R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fff3e914560 R14: 00000000000f87d6 R15: 00007fff3e914570
INFO: task syz-executor.2:7105 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.2  D24864  7105      1 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 lo_open+0x1d/0xb0 drivers/block/loop.c:1624
 __blkdev_get+0x2c9/0x1120 fs/block_dev.c:1472
 blkdev_get+0xa8/0x8e0 fs/block_dev.c:1612
 blkdev_open+0x1d1/0x260 fs/block_dev.c:1770
 do_dentry_open+0x73e/0xeb0 fs/open.c:758
 vfs_open+0x105/0x230 fs/open.c:872
 do_last fs/namei.c:3425 [inline]
 path_openat+0x8bd/0x3f70 fs/namei.c:3566
 do_filp_open+0x18e/0x250 fs/namei.c:3600
 do_sys_open+0x2c5/0x430 fs/open.c:1065
 SYSC_open fs/open.c:1083 [inline]
 SyS_open+0x2d/0x40 fs/open.c:1078
 do_syscall_64+0x1eb/0x630 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x412d20
RSP: 002b:00007ffd1901c2e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 00000000000f87ef RCX: 0000000000412d20
RDX: 00007ffd1901c37a RSI: 0000000000000002 RDI: 00007ffd1901c370
RBP: 0000000000000005 R08: 0000000000000000 R09: 000000000000000a
R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffd1901c320 R14: 00000000000f87ca R15: 00007ffd1901c330
INFO: task syz-executor.0:7107 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.0  D24992  7107      1 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 blkdev_reread_part+0x1f/0x40 block/ioctl.c:192
 loop_reread_partitions+0x7c/0x90 drivers/block/loop.c:615
 loop_clr_fd+0x844/0xae0 drivers/block/loop.c:1069
 lo_ioctl+0x8d0/0x1c70 drivers/block/loop.c:1415
 __blkdev_driver_ioctl block/ioctl.c:297 [inline]
 blkdev_ioctl+0x983/0x1880 block/ioctl.c:594
 block_ioctl+0xde/0x120 fs/block_dev.c:1881
 vfs_ioctl fs/ioctl.c:46 [inline]
 file_ioctl fs/ioctl.c:500 [inline]
 do_vfs_ioctl+0x7b9/0x1070 fs/ioctl.c:684
 SYSC_ioctl fs/ioctl.c:701 [inline]
 SyS_ioctl+0x8f/0xc0 fs/ioctl.c:692
 do_syscall_64+0x1eb/0x630 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x458c17
RSP: 002b:00007fff88b58378 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458c17
RDX: 0000000000000000 RSI: 0000000000004c01 RDI: 0000000000000003
RBP: 0000000000000004 R08: 0000000000000000 R09: 000000000000000a
R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fff88b583b0 R14: 00000000000f878e R15: 00007fff88b583c0
INFO: task syz-executor.1:7109 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.1  D25152  7109      1 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 lo_open+0x1d/0xb0 drivers/block/loop.c:1624
 __blkdev_get+0x2c9/0x1120 fs/block_dev.c:1472
 blkdev_get+0xa8/0x8e0 fs/block_dev.c:1612
 blkdev_open+0x1d1/0x260 fs/block_dev.c:1770
 do_dentry_open+0x73e/0xeb0 fs/open.c:758
 vfs_open+0x105/0x230 fs/open.c:872
 do_last fs/namei.c:3425 [inline]
 path_openat+0x8bd/0x3f70 fs/namei.c:3566
 do_filp_open+0x18e/0x250 fs/namei.c:3600
 do_sys_open+0x2c5/0x430 fs/open.c:1065
 SYSC_open fs/open.c:1083 [inline]
 SyS_open+0x2d/0x40 fs/open.c:1078
 do_syscall_64+0x1eb/0x630 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x412d20
RSP: 002b:00007ffefcf0da68 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 00000000000f87ed RCX: 0000000000412d20
RDX: 00007ffefcf0dafa RSI: 0000000000000002 RDI: 00007ffefcf0daf0
RBP: 0000000000000005 R08: 0000000000000000 R09: 000000000000000a
R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffefcf0daa0 R14: 00000000000f87d7 R15: 00007ffefcf0dab0
INFO: task syz-executor.5:7111 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.5  D25168  7111      1 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 lo_open+0x1d/0xb0 drivers/block/loop.c:1624
 __blkdev_get+0x2c9/0x1120 fs/block_dev.c:1472
 blkdev_get+0xa8/0x8e0 fs/block_dev.c:1612
 blkdev_open+0x1d1/0x260 fs/block_dev.c:1770
 do_dentry_open+0x73e/0xeb0 fs/open.c:758
 vfs_open+0x105/0x230 fs/open.c:872
 do_last fs/namei.c:3425 [inline]
 path_openat+0x8bd/0x3f70 fs/namei.c:3566
 do_filp_open+0x18e/0x250 fs/namei.c:3600
 do_sys_open+0x2c5/0x430 fs/open.c:1065
 SYSC_open fs/open.c:1083 [inline]
 SyS_open+0x2d/0x40 fs/open.c:1078
 do_syscall_64+0x1eb/0x630 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x412d20
RSP: 002b:00007ffd96261898 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 00000000000f87ef RCX: 0000000000412d20
RDX: 00007ffd9626192a RSI: 0000000000000002 RDI: 00007ffd96261920
RBP: 0000000000000005 R08: 0000000000000000 R09: 000000000000000a
R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffd962618d0 R14: 00000000000f87d5 R15: 00007ffd962618e0
INFO: task blkid:7257 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
blkid           D28512  7257   7216 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 __lo_release drivers/block/loop.c:1644 [inline]
 lo_release+0x84/0x1b0 drivers/block/loop.c:1668
 __blkdev_put+0x436/0x7f0 fs/block_dev.c:1791
 blkdev_put+0x88/0x510 fs/block_dev.c:1856
 blkdev_close+0x8b/0xb0 fs/block_dev.c:1863
 __fput+0x277/0x7a0 fs/file_table.c:210
 ____fput+0x16/0x20 fs/file_table.c:244
 task_work_run+0x119/0x190 kernel/task_work.c:113
 tracehook_notify_resume include/linux/tracehook.h:191 [inline]
 exit_to_usermode_loop+0x1da/0x220 arch/x86/entry/common.c:163
 prepare_exit_to_usermode arch/x86/entry/common.c:198 [inline]
 syscall_return_slowpath arch/x86/entry/common.c:267 [inline]
 do_syscall_64+0x4a9/0x630 arch/x86/entry/common.c:294
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7fc4e4d072b0
RSP: 002b:00007ffefb16a298 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fc4e4d072b0
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000001ee6030
R13: 0000000000000000 R14: 0000000000000003 R15: 0000000000000005
INFO: task syz-executor.4:7260 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.4  D28528  7260   7112 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 lo_ioctl+0x87/0x1c70 drivers/block/loop.c:1405
 __blkdev_driver_ioctl block/ioctl.c:297 [inline]
 blkdev_ioctl+0x983/0x1880 block/ioctl.c:594
 block_ioctl+0xde/0x120 fs/block_dev.c:1881
 vfs_ioctl fs/ioctl.c:46 [inline]
 file_ioctl fs/ioctl.c:500 [inline]
 do_vfs_ioctl+0x7b9/0x1070 fs/ioctl.c:684
 SYSC_ioctl fs/ioctl.c:701 [inline]
 SyS_ioctl+0x8f/0xc0 fs/ioctl.c:692
 do_syscall_64+0x1eb/0x630 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x458da9
RSP: 002b:00007ffc568ca328 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458da9
RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000003
RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000135a914
R13: 00000000004c2093 R14: 00000000004d4958 R15: 00000000ffffffff
INFO: task blkid:7264 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
blkid           D29040  7264   7219 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 lo_open+0x1d/0xb0 drivers/block/loop.c:1624
 __blkdev_get+0x2c9/0x1120 fs/block_dev.c:1472
 blkdev_get+0xa8/0x8e0 fs/block_dev.c:1612
 blkdev_open+0x1d1/0x260 fs/block_dev.c:1770
 do_dentry_open+0x73e/0xeb0 fs/open.c:758
 vfs_open+0x105/0x230 fs/open.c:872
 do_last fs/namei.c:3425 [inline]
 path_openat+0x8bd/0x3f70 fs/namei.c:3566
 do_filp_open+0x18e/0x250 fs/namei.c:3600
 do_sys_open+0x2c5/0x430 fs/open.c:1065
 SYSC_open fs/open.c:1083 [inline]
 SyS_open+0x2d/0x40 fs/open.c:1078
 do_syscall_64+0x1eb/0x630 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7f996ce2a120
RSP: 002b:00007ffcf255b308 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f996ce2a120
RDX: 00007ffcf255cf33 RSI: 0000000000000000 RDI: 00007ffcf255cf33
RBP: 0000000000000000 R08: 0000000000000078 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000162e030
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000005
INFO: task blkid:7267 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
blkid           D29040  7267   7065 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 lo_open+0x1d/0xb0 drivers/block/loop.c:1624
 __blkdev_get+0xab1/0x1120 fs/block_dev.c:1537
 blkdev_get+0xa8/0x8e0 fs/block_dev.c:1612
 blkdev_open+0x1d1/0x260 fs/block_dev.c:1770
 do_dentry_open+0x73e/0xeb0 fs/open.c:758
 vfs_open+0x105/0x230 fs/open.c:872
 do_last fs/namei.c:3425 [inline]
 path_openat+0x8bd/0x3f70 fs/namei.c:3566
 do_filp_open+0x18e/0x250 fs/namei.c:3600
 do_sys_open+0x2c5/0x430 fs/open.c:1065
 SYSC_open fs/open.c:1083 [inline]
 SyS_open+0x2d/0x40 fs/open.c:1078
 do_syscall_64+0x1eb/0x630 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7f677b6f2120
RSP: 002b:00007ffc0ac5f4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f677b6f2120
RDX: 00007ffc0ac60f40 RSI: 0000000000000000 RDI: 00007ffc0ac60f40
RBP: 0000000000000000 R08: 0000000000000078 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000007ff030
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000005
INFO: task blkid:7268 blocked for more than 140 seconds.
      Not tainted 4.14.114 #4
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
blkid           D29040  7268   7066 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2807 [inline]
 __schedule+0x7be/0x1cf0 kernel/sched/core.c:3383
 schedule+0x92/0x1c0 kernel/sched/core.c:3427
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3485
 __mutex_lock_common kernel/locking/mutex.c:833 [inline]
 __mutex_lock+0x73c/0x1470 kernel/locking/mutex.c:893
 mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
 __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
 blkdev_get+0xa8/0x8e0 fs/block_dev.c:1612
 blkdev_open+0x1d1/0x260 fs/block_dev.c:1770
 do_dentry_open+0x73e/0xeb0 fs/open.c:758
 vfs_open+0x105/0x230 fs/open.c:872
 do_last fs/namei.c:3425 [inline]
 path_openat+0x8bd/0x3f70 fs/namei.c:3566
 do_filp_open+0x18e/0x250 fs/namei.c:3600
 do_sys_open+0x2c5/0x430 fs/open.c:1065
 SYSC_open fs/open.c:1083 [inline]
 SyS_open+0x2d/0x40 fs/open.c:1078
 do_syscall_64+0x1eb/0x630 arch/x86/entry/common.c:289
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7fdaf06dc120
RSP: 002b:00007ffef0a42998 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fdaf06dc120
RDX: 00007ffef0a44f33 RSI: 0000000000000000 RDI: 00007ffef0a44f33
RBP: 0000000000000000 R08: 0000000000000078 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000bf9030
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000005

Showing all locks held in the system:
1 lock held by khungtaskd/1007:
 #0:  (tasklist_lock){.+.+}, at: [<ffffffff81487148>] debug_show_all_locks+0x7f/0x21f kernel/locking/lockdep.c:4541
1 lock held by rsyslogd/6935:
 #0:  (&f->f_pos_lock){+.+.}, at: [<ffffffff81942e9b>] __fdget_pos+0xab/0xd0 fs/file.c:769
2 locks held by getty/7058:
 #0:  (&tty->ldisc_sem){++++}, at: [<ffffffff861af743>] ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:377
 #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffff8310d3c6>] n_tty_read+0x1e6/0x17b0 drivers/tty/n_tty.c:2156
2 locks held by getty/7059:
 #0:  (&tty->ldisc_sem){++++}, at: [<ffffffff861af743>] ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:377
 #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffff8310d3c6>] n_tty_read+0x1e6/0x17b0 drivers/tty/n_tty.c:2156
2 locks held by getty/7060:
 #0:  (&tty->ldisc_sem){++++}, at: [<ffffffff861af743>] ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:377
 #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffff8310d3c6>] n_tty_read+0x1e6/0x17b0 drivers/tty/n_tty.c:2156
2 locks held by getty/7061:
 #0:  (&tty->ldisc_sem){++++}, at: [<ffffffff861af743>] ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:377
 #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffff8310d3c6>] n_tty_read+0x1e6/0x17b0 drivers/tty/n_tty.c:2156
2 locks held by getty/7062:
 #0:  (&tty->ldisc_sem){++++}, at: [<ffffffff861af743>] ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:377
 #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffff8310d3c6>] n_tty_read+0x1e6/0x17b0 drivers/tty/n_tty.c:2156
2 locks held by getty/7063:
 #0:  (&tty->ldisc_sem){++++}, at: [<ffffffff861af743>] ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:377
 #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffff8310d3c6>] n_tty_read+0x1e6/0x17b0 drivers/tty/n_tty.c:2156
2 locks held by getty/7064:
 #0:  (&tty->ldisc_sem){++++}, at: [<ffffffff861af743>] ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:377
 #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffff8310d3c6>] n_tty_read+0x1e6/0x17b0 drivers/tty/n_tty.c:2156
1 lock held by syz-executor.3/7103:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a83a5>] __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
2 locks held by syz-executor.2/7105:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a83a5>] __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
 #1:  (loop_index_mutex){+.+.}, at: [<ffffffff8373739d>] lo_open+0x1d/0xb0 drivers/block/loop.c:1624
2 locks held by syz-executor.0/7107:
 #0:  (loop_ctl_mutex/1){+.+.}, at: [<ffffffff8373dc27>] lo_ioctl+0x87/0x1c70 drivers/block/loop.c:1405
 #1:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff82cab2af>] blkdev_reread_part+0x1f/0x40 block/ioctl.c:192
2 locks held by syz-executor.1/7109:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a83a5>] __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
 #1:  (loop_index_mutex){+.+.}, at: [<ffffffff8373739d>] lo_open+0x1d/0xb0 drivers/block/loop.c:1624
2 locks held by syz-executor.5/7111:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a83a5>] __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
 #1:  (loop_index_mutex){+.+.}, at: [<ffffffff8373739d>] lo_open+0x1d/0xb0 drivers/block/loop.c:1624
3 locks held by blkid/7257:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a7b16>] __blkdev_put+0xa6/0x7f0 fs/block_dev.c:1778
 #1:  (loop_index_mutex){+.+.}, at: [<ffffffff8373bf4e>] lo_release+0x1e/0x1b0 drivers/block/loop.c:1667
 #2:  (loop_ctl_mutex#2){+.+.}, at: [<ffffffff8373bfb4>] __lo_release drivers/block/loop.c:1644 [inline]
 #2:  (loop_ctl_mutex#2){+.+.}, at: [<ffffffff8373bfb4>] lo_release+0x84/0x1b0 drivers/block/loop.c:1668
1 lock held by syz-executor.4/7260:
 #0:  (loop_ctl_mutex/1){+.+.}, at: [<ffffffff8373dc27>] lo_ioctl+0x87/0x1c70 drivers/block/loop.c:1405
2 locks held by blkid/7264:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a83a5>] __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
 #1:  (loop_index_mutex){+.+.}, at: [<ffffffff8373739d>] lo_open+0x1d/0xb0 drivers/block/loop.c:1624
2 locks held by blkid/7267:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a83a5>] __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
 #1:  (loop_index_mutex){+.+.}, at: [<ffffffff8373739d>] lo_open+0x1d/0xb0 drivers/block/loop.c:1624
1 lock held by blkid/7268:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a83a5>] __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
1 lock held by blkid/7270:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a83a5>] __blkdev_get+0x145/0x1120 fs/block_dev.c:1457
1 lock held by blkid/7271:
 #0:  (&bdev->bd_mutex){+.+.}, at: [<ffffffff819a83a5>] __blkdev_get+0x145/0x1120 fs/block_dev.c:1457

=============================================

NMI backtrace for cpu 0
CPU: 0 PID: 1007 Comm: khungtaskd Not tainted 4.14.114 #4
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x138/0x19c lib/dump_stack.c:53
 nmi_cpu_backtrace.cold+0x57/0x94 lib/nmi_backtrace.c:101
 nmi_trigger_cpumask_backtrace+0x141/0x189 lib/nmi_backtrace.c:62
 arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
 trigger_all_cpu_backtrace include/linux/nmi.h:140 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:195 [inline]
 watchdog+0x5e7/0xb90 kernel/hung_task.c:274
 kthread+0x31c/0x430 kernel/kthread.c:232
 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:402
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 7131 Comm: kworker/u4:4 Not tainted 4.14.114 #4
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: bat_events batadv_nc_worker
task: ffff8880a9790080 task.stack: ffff8880a00d8000
RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:778 [inline]
RIP: 0010:lock_release+0x44b/0x940 kernel/locking/lockdep.c:4013
RSP: 0018:ffff8880a00dfc48 EFLAGS: 00000086
RAX: 1ffffffff0ee296d RBX: 1ffff1101401bf8f RCX: 1ffff110152f211e
RDX: dffffc0000000000 RSI: 0000000000000003 RDI: 0000000000000282
RBP: ffff8880a00dfce0 R08: ffff8880a9790080 R09: 0000000000000002
R10: 0000000000000000 R11: ffff8880a9790080 R12: ffff8880a9790080
R13: ffffffff8603a30d R14: 0000000000000003 R15: ffff8880a00dfcb8
FS:  0000000000000000(0000) GS:ffff8880aef00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000007984ec CR3: 0000000096ff9000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 rcu_lock_release include/linux/rcupdate.h:249 [inline]
 rcu_read_unlock include/linux/rcupdate.h:687 [inline]
 batadv_nc_purge_orig_hash net/batman-adv/network-coding.c:420 [inline]
 batadv_nc_worker+0x1d8/0x6d0 net/batman-adv/network-coding.c:726
 process_one_work+0x868/0x1610 kernel/workqueue.c:2114
 worker_thread+0x5d9/0x1050 kernel/workqueue.c:2248
 kthread+0x31c/0x430 kernel/kthread.c:232
 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:402
Code: c7 84 24 7c 08 00 00 00 00 00 00 48 c1 e8 03 80 3c 10 00 0f 85 39 03 00 00 48 83 3d 67 05 29 06 00 0f 84 c2 01 00 00 48 8b 7d 88 <57> 9d 0f 1f 44 00 00 48 b8 00 00 00 00 00 fc ff df 48 c7 04 03

Crashes (479):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	Maintainers
ci2-linux-4-14	2019/04/29 03:51	linux-4.14.y	fa5941f4	b617407b	.config	log	report	syz	linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/30 22:32	linux-4.14.y	4f68020f	6f3e1c7c	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/28 12:32	linux-4.14.y	4f68020f	c7192a2f	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/17 12:20	linux-4.14.y	ab9dfda2	37bccd4e	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/09 15:40	linux-4.14.y	d71f695c	88cb3e92	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/08 07:42	linux-4.14.y	d71f695c	6c70a1c2	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/04 14:04	linux-4.14.y	773e2b1c	58ae5e18	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/03 13:40	linux-4.14.y	773e2b1c	58ae5e18	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/02 13:24	linux-4.14.y	050272a0	58da4c35	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/02 02:20	linux-4.14.y	050272a0	bc734e7a	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/05/01 00:52	linux-4.14.y	050272a0	3698959a	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/04/18 11:36	linux-4.14.y	c10b57a5	435c6d53	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/04/16 07:54	linux-4.14.y	c10b57a5	c743fcb3	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/04/14 17:30	linux-4.14.y	c10b57a5	3f3c5574	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/04/14 12:05	linux-4.14.y	c10b57a5	3f3c5574	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/03/19 04:57	linux-4.14.y	12cd844a	2c31c529	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/03/03 18:30	linux-4.14.y	78d697fc	350a7a26	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/02/23 22:20	linux-4.14.y	98db2bf2	d801cb02	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/02/23 08:03	linux-4.14.y	98db2bf2	2c36e7a7	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/02/22 09:47	linux-4.14.y	98db2bf2	2ffa6679	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/02/18 04:00	linux-4.14.y	98db2bf2	1ce142dc	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/02/15 20:38	linux-4.14.y	98db2bf2	5d7b90f1	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/01/27 17:26	linux-4.14.y	9a95f252	56cd6c9b	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/01/22 19:18	linux-4.14.y	c1141b3a	3334d684	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/01/19 15:19	linux-4.14.y	c1141b3a	0342f8c7	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/01/18 22:30	linux-4.14.y	c1141b3a	bc8bc756	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/01/15 00:56	linux-4.14.y	c04fc6fa	fa12bd3c	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/01/13 05:22	linux-4.14.y	6d0c334a	53faa9fe	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/01/08 10:00	linux-4.14.y	84f5ad46	ddc3e859	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2020/01/04 14:25	linux-4.14.y	84f5ad46	68256974	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/30 18:04	linux-4.14.y	e1f7d50a	6b36d338	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/27 21:09	linux-4.14.y	e1f7d50a	be5c2c81	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/26 19:46	linux-4.14.y	e1f7d50a	be5c2c81	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/26 11:21	linux-4.14.y	e1f7d50a	be5c2c81	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/24 13:41	linux-4.14.y	e1f7d50a	be5c2c81	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/20 22:57	linux-4.14.y	bfb9e5c0	34011c05	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/20 02:05	linux-4.14.y	bfb9e5c0	36650b4b	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/13 18:14	linux-4.14.y	a844dc4c	a5c1ab05	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/12 14:46	linux-4.14.y	a844dc4c	d973f528	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/12/05 02:17	linux-4.14.y	fbc5fe7a	b2088328	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/11/21 22:09	linux-4.14.y	f56f3d0e	8098ea0f	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/11/05 16:58	linux-4.14.y	ddef1e8e	af5c522d	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/10/20 04:50	linux-4.14.y	b98aebd2	8c88c9c1	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/10/07 05:41	linux-4.14.y	db189223	f3f7d9c8	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/10/04 06:57	linux-4.14.y	f6e27dbb	fc17ba49	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/09/24 08:31	linux-4.14.y	f6e27dbb	c68252d2	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/09/13 03:50	linux-4.14.y	e2cd24b6	40fa42bc	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/09/04 11:18	linux-4.14.y	01fd1694	526709ff	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/09/03 10:34	linux-4.14.y	01fd1694	14544a56	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk
ci2-linux-4-14	2019/04/11 12:16	linux-4.14.y	1ec8f1f0	e955ac50	.config	log	report		linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk