syzbot

 sign-in | mailing list | source | docs
🐞 Open [987] Subsystems 🐞 Fixed [5236] 🐞 Invalid [12505] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

INFO: task hung in do_unlinkat (3)

Status: closed as invalid on 2022/02/07 19:19
Subsystems: fs
[Documentation on labels]
First crash: 934d, last: 891d
Similar bugs (6)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.19 INFO: task hung in do_unlinkat (2) 1 515d 515d 0/1 auto-obsoleted due to no activity on 2023/03/27 07:50
android-49 INFO: task hung in do_unlinkat 5 2067d 2178d 0/3 auto-closed as invalid on 2019/02/24 11:49
upstream INFO: task hung in do_unlinkat (2) fs 4 1172d 1173d 0/26 auto-closed as invalid on 2021/05/17 08:41
upstream INFO: task hung in do_unlinkat exfat 34 1927d 2163d 0/26 closed as dup on 2018/10/27 13:26
linux-4.19 INFO: task hung in do_unlinkat 1 645d 645d 0/1 auto-obsoleted due to no activity on 2022/11/17 10:56
upstream INFO: task hung in do_unlinkat (4) exfat 4 483d 589d 0/26 auto-obsoleted due to no activity on 2023/04/08 02:53

Sample crash report:
INFO: task syz-executor.1:32346 blocked for more than 143 seconds.
      Not tainted 5.16.0-rc1-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.1  state:D stack:29592 pid:32346 ppid:  9797 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:4972 [inline]
 __schedule+0xa9a/0x4940 kernel/sched/core.c:6253
 schedule+0xd2/0x260 kernel/sched/core.c:6326
 rwsem_down_write_slowpath+0x761/0x1130 kernel/locking/rwsem.c:1117
 __down_write_common kernel/locking/rwsem.c:1272 [inline]
 __down_write_common kernel/locking/rwsem.c:1269 [inline]
 __down_write kernel/locking/rwsem.c:1281 [inline]
 down_write_nested+0x139/0x150 kernel/locking/rwsem.c:1638
 inode_lock_nested include/linux/fs.h:818 [inline]
 do_unlinkat+0x269/0x650 fs/namei.c:4150
 __do_sys_unlink fs/namei.c:4215 [inline]
 __se_sys_unlink fs/namei.c:4213 [inline]
 __x64_sys_unlink+0xc6/0x110 fs/namei.c:4213
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7ffb56b53ae9
RSP: 002b:00007ffb540a8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
RAX: ffffffffffffffda RBX: 00007ffb56c67020 RCX: 00007ffb56b53ae9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
RBP: 00007ffb56badf6d R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffd4d23dadf R14: 00007ffb540a8300 R15: 0000000000022000
 </TASK>
INFO: task syz-executor.1:32352 blocked for more than 144 seconds.
      Not tainted 5.16.0-rc1-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.1  state:D stack:29568 pid:32352 ppid:  9797 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:4972 [inline]
 __schedule+0xa9a/0x4940 kernel/sched/core.c:6253
 schedule+0xd2/0x260 kernel/sched/core.c:6326
 rwsem_down_read_slowpath+0x4c5/0x990 kernel/locking/rwsem.c:996
 __down_read_common kernel/locking/rwsem.c:1224 [inline]
 __down_read kernel/locking/rwsem.c:1233 [inline]
 down_read+0xe2/0x440 kernel/locking/rwsem.c:1476
 inode_lock_shared include/linux/fs.h:793 [inline]
 lookup_slow fs/namei.c:1673 [inline]
 walk_component+0x400/0x6a0 fs/namei.c:1970
 lookup_last fs/namei.c:2425 [inline]
 path_lookupat+0x1bb/0x860 fs/namei.c:2449
 filename_lookup+0x1c6/0x590 fs/namei.c:2478
 user_path_at_empty+0x42/0x60 fs/namei.c:2801
 user_path_at include/linux/namei.h:57 [inline]
 do_mount fs/namespace.c:3328 [inline]
 __do_sys_mount fs/namespace.c:3539 [inline]
 __se_sys_mount fs/namespace.c:3516 [inline]
 __x64_sys_mount+0x1ea/0x300 fs/namespace.c:3516
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7ffb56b53ae9
RSP: 002b:00007ffb54087188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007ffb56c670e0 RCX: 00007ffb56b53ae9
RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000020000000
RBP: 00007ffb56badf6d R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffd4d23dadf R14: 00007ffb54087300 R15: 0000000000022000
 </TASK>
INFO: task syz-executor.1:32385 blocked for more than 146 seconds.
      Not tainted 5.16.0-rc1-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.1  state:D stack:27448 pid:32385 ppid:  9797 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:4972 [inline]
 __schedule+0xa9a/0x4940 kernel/sched/core.c:6253
 schedule+0xd2/0x260 kernel/sched/core.c:6326
 rwsem_down_read_slowpath+0x4c5/0x990 kernel/locking/rwsem.c:996
 __down_read_common kernel/locking/rwsem.c:1224 [inline]
 __down_read kernel/locking/rwsem.c:1233 [inline]
 down_read+0xe2/0x440 kernel/locking/rwsem.c:1476
 inode_lock_shared include/linux/fs.h:793 [inline]
 lookup_slow fs/namei.c:1673 [inline]
 walk_component+0x400/0x6a0 fs/namei.c:1970
 lookup_last fs/namei.c:2425 [inline]
 path_lookupat+0x1bb/0x860 fs/namei.c:2449
 filename_lookup+0x1c6/0x590 fs/namei.c:2478
 user_path_at_empty+0x42/0x60 fs/namei.c:2801
 user_path_at include/linux/namei.h:57 [inline]
 __do_sys_chdir fs/open.c:489 [inline]
 __se_sys_chdir fs/open.c:483 [inline]
 __x64_sys_chdir+0xb7/0x260 fs/open.c:483
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7ffb56b53ae9
RSP: 002b:00007ffb54066188 EFLAGS: 00000246 ORIG_RAX: 0000000000000050
RAX: ffffffffffffffda RBX: 00007ffb56c671a0 RCX: 00007ffb56b53ae9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040
RBP: 00007ffb56badf6d R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffd4d23dadf R14: 00007ffb54066300 R15: 0000000000022000
 </TASK>
INFO: task syz-executor.1:32386 blocked for more than 148 seconds.
      Not tainted 5.16.0-rc1-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.1  state:D stack:28272 pid:32386 ppid:  9797 flags:0x00004004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:4972 [inline]
 __schedule+0xa9a/0x4940 kernel/sched/core.c:6253
 schedule+0xd2/0x260 kernel/sched/core.c:6326
 rwsem_down_write_slowpath+0x761/0x1130 kernel/locking/rwsem.c:1117
 __down_write_common kernel/locking/rwsem.c:1272 [inline]
 __down_write_common kernel/locking/rwsem.c:1269 [inline]
 __down_write kernel/locking/rwsem.c:1281 [inline]
 down_write+0x135/0x150 kernel/locking/rwsem.c:1528
 inode_lock include/linux/fs.h:783 [inline]
 open_last_lookups fs/namei.c:3347 [inline]
 path_openat+0x952/0x2750 fs/namei.c:3556
 do_filp_open+0x1aa/0x400 fs/namei.c:3586
 do_sys_openat2+0x16d/0x4d0 fs/open.c:1212
 do_sys_open fs/open.c:1228 [inline]
 __do_sys_open fs/open.c:1236 [inline]
 __se_sys_open fs/open.c:1232 [inline]
 __x64_sys_open+0x119/0x1c0 fs/open.c:1232
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7ffb56b53ae9
RSP: 002b:00007ffb54045188 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 00007ffb56c67260 RCX: 00007ffb56b53ae9
RDX: 0000000000000000 RSI: 0000000000141042 RDI: 0000000020000240
RBP: 00007ffb56badf6d R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffd4d23dadf R14: 00007ffb54045300 R15: 0000000000022000
 </TASK>
INFO: task syz-executor.1:32393 blocked for more than 150 seconds.
      Not tainted 5.16.0-rc1-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.1  state:D stack:29592 pid:32393 ppid:  9797 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:4972 [inline]
 __schedule+0xa9a/0x4940 kernel/sched/core.c:6253
 schedule+0xd2/0x260 kernel/sched/core.c:6326
 rwsem_down_write_slowpath+0x761/0x1130 kernel/locking/rwsem.c:1117
 __down_write_common kernel/locking/rwsem.c:1272 [inline]
 __down_write_common kernel/locking/rwsem.c:1269 [inline]
 __down_write kernel/locking/rwsem.c:1281 [inline]
 down_write_nested+0x139/0x150 kernel/locking/rwsem.c:1638
 inode_lock_nested include/linux/fs.h:818 [inline]
 do_unlinkat+0x269/0x650 fs/namei.c:4150
 __do_sys_unlink fs/namei.c:4215 [inline]
 __se_sys_unlink fs/namei.c:4213 [inline]
 __x64_sys_unlink+0xc6/0x110 fs/namei.c:4213
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7ffb56b53ae9
RSP: 002b:00007ffb54024188 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
RAX: ffffffffffffffda RBX: 00007ffb56c67320 RCX: 00007ffb56b53ae9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
RBP: 00007ffb56badf6d R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffd4d23dadf R14: 00007ffb54024300 R15: 0000000000022000
 </TASK>
INFO: task syz-executor.1:32394 blocked for more than 151 seconds.
      Not tainted 5.16.0-rc1-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.1  state:D stack:29568 pid:32394 ppid:  9797 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:4972 [inline]
 __schedule+0xa9a/0x4940 kernel/sched/core.c:6253
 schedule+0xd2/0x260 kernel/sched/core.c:6326
 rwsem_down_read_slowpath+0x4c5/0x990 kernel/locking/rwsem.c:996
 __down_read_common kernel/locking/rwsem.c:1224 [inline]
 __down_read kernel/locking/rwsem.c:1233 [inline]
 down_read+0xe2/0x440 kernel/locking/rwsem.c:1476
 inode_lock_shared include/linux/fs.h:793 [inline]
 lookup_slow fs/namei.c:1673 [inline]
 walk_component+0x400/0x6a0 fs/namei.c:1970
 lookup_last fs/namei.c:2425 [inline]
 path_lookupat+0x1bb/0x860 fs/namei.c:2449
 filename_lookup+0x1c6/0x590 fs/namei.c:2478
 user_path_at_empty+0x42/0x60 fs/namei.c:2801
 user_path_at include/linux/namei.h:57 [inline]
 do_mount fs/namespace.c:3328 [inline]
 __do_sys_mount fs/namespace.c:3539 [inline]
 __se_sys_mount fs/namespace.c:3516 [inline]
 __x64_sys_mount+0x1ea/0x300 fs/namespace.c:3516

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/11/15 23:23 upstream 8ab774587903 83f5c9b5 .config console log report info ci-upstream-kasan-gce-root INFO: task hung in do_unlinkat
2021/10/03 20:21 upstream 7b66f4393ad4 db0f5787 .config console log report info ci-upstream-kasan-gce-root INFO: task hung in do_unlinkat
* Struck through repros no longer work on HEAD.