syzbot


INFO: task hung in start_this_handle

Status: auto-closed as invalid on 2019/04/07 23:35
Subsystems: ext4
[Documentation on labels]
Reported-by: syzbot+fac5fee9390ddc6e8be5@syzkaller.appspotmail.com
First crash: 2007d, last: 1997d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream INFO: task hung in start_this_handle (2) ext4 1 794d 794d 0/26 closed as invalid on 2022/02/07 19:09

Sample crash report:
INFO: task rs:main Q:Reg:5711 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
rs:main Q:Reg   D21368  5711      1 0x00000000
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 start_this_handle+0x83e/0x1250 fs/jbd2/transaction.c:334
 jbd2__journal_start+0x3c9/0xa90 fs/jbd2/transaction.c:439
 __ext4_journal_start_sb+0x1a5/0x5f0 fs/ext4/ext4_jbd2.c:81
 __ext4_journal_start fs/ext4/ext4_jbd2.h:311 [inline]
 ext4_da_write_begin+0x5d6/0x12c0 fs/ext4/inode.c:3059
 generic_perform_write+0x3aa/0x6a0 mm/filemap.c:3139
 __generic_file_write_iter+0x26e/0x630 mm/filemap.c:3264
 ext4_file_write_iter+0x390/0x1420 fs/ext4/file.c:266
 call_write_iter include/linux/fs.h:1808 [inline]
 new_sync_write fs/read_write.c:474 [inline]
 __vfs_write+0x6b8/0x9f0 fs/read_write.c:487
 vfs_write+0x1fc/0x560 fs/read_write.c:549
 ksys_write+0x101/0x260 fs/read_write.c:598
 __do_sys_write fs/read_write.c:610 [inline]
 __se_sys_write fs/read_write.c:607 [inline]
 __x64_sys_write+0x73/0xb0 fs/read_write.c:607
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7fb00b5c719d
Code: d1 20 00 00 75 10 b8 01 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be fa ff ff 48 89 04 24 b8 01 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 07 fb ff ff 48 89 d0 48 83 c4 08 48 3d 01
RSP: 002b:00007fb009b68000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 00000000000000f5 RCX: 00007fb00b5c719d
RDX: 00000000000000f5 RSI: 00000000017f1a90 RDI: 0000000000000005
RBP: 00000000017f1a90 R08: 00000000017f1af9 R09: 00007fb00af44347
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
R13: 00007fb009b68480 R14: 0000000000000002 R15: 00000000017f1890
INFO: task syz-executor5:5990 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor5   D14424  5990      1 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 start_this_handle+0x83e/0x1250 fs/jbd2/transaction.c:334
 jbd2__journal_start+0x3c9/0xa90 fs/jbd2/transaction.c:439
 __ext4_journal_start_sb+0x1a5/0x5f0 fs/ext4/ext4_jbd2.c:81
 __ext4_journal_start fs/ext4/ext4_jbd2.h:311 [inline]
 ext4_unlink+0x491/0x1220 fs/ext4/namei.c:3016
 vfs_unlink+0x2db/0x510 fs/namei.c:4000
 do_unlinkat+0x6cc/0xa30 fs/namei.c:4063
 __do_sys_unlink fs/namei.c:4110 [inline]
 __se_sys_unlink fs/namei.c:4108 [inline]
 __x64_sys_unlink+0x42/0x50 fs/namei.c:4108
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x4572c7
Code: Bad RIP value.
RSP: 002b:00007ffff3e17978 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004572c7
RDX: 00007ffff3e17990 RSI: 00007ffff3e17990 RDI: 00007ffff3e17a20
RBP: 00000000000004ad R08: 0000000000000000 R09: 0000000000000010
R10: 000000000000000a R11: 0000000000000246 R12: 00007ffff3e18ab0
R13: 0000000001b2f940 R14: 0000000000000000 R15: 0000000000000005
INFO: task syz-executor2:15631 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor2   D23896 15631   5876 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 __rwsem_down_write_failed_common+0xbb9/0x1670 kernel/locking/rwsem-xadd.c:566
 rwsem_down_write_failed+0xe/0x10 kernel/locking/rwsem-xadd.c:595
 call_rwsem_down_write_failed+0x17/0x30 arch/x86/lib/rwsem.S:117
 __down_write arch/x86/include/asm/rwsem.h:142 [inline]
 down_write+0xa5/0x130 kernel/locking/rwsem.c:72
 inode_lock include/linux/fs.h:738 [inline]
 process_measurement+0x190f/0x1bf0 security/integrity/ima/ima_main.c:205
 ima_file_check+0xe5/0x130 security/integrity/ima/ima_main.c:391
 do_last fs/namei.c:3422 [inline]
 path_openat+0x134d/0x5160 fs/namei.c:3534
 do_filp_open+0x255/0x380 fs/namei.c:3564
 do_sys_open+0x568/0x700 fs/open.c:1063
 __do_sys_openat fs/open.c:1090 [inline]
 __se_sys_openat fs/open.c:1084 [inline]
 __x64_sys_openat+0x9d/0x100 fs/open.c:1084
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x457579
Code: Bad RIP value.
RSP: 002b:00007f4f2471ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457579
RDX: 000000000000275a RSI: 0000000020000080 RDI: ffffffffffffff9c
RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f2471f6d4
R13: 00000000004c2b26 R14: 00000000004d4140 R15: 00000000ffffffff
INFO: task syz-executor2:15632 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor2   D23912 15632   5876 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 __rwsem_down_write_failed_common+0xbb9/0x1670 kernel/locking/rwsem-xadd.c:566
 rwsem_down_write_failed+0xe/0x10 kernel/locking/rwsem-xadd.c:595
 call_rwsem_down_write_failed+0x17/0x30 arch/x86/lib/rwsem.S:117
 __down_write arch/x86/include/asm/rwsem.h:142 [inline]
 down_write+0xa5/0x130 kernel/locking/rwsem.c:72
 inode_lock include/linux/fs.h:738 [inline]
 process_measurement+0xc3e/0x1bf0 security/integrity/ima/ima_main.c:205
 ima_file_check+0xe5/0x130 security/integrity/ima/ima_main.c:391
 do_last fs/namei.c:3422 [inline]
 path_openat+0x134d/0x5160 fs/namei.c:3534
 do_filp_open+0x255/0x380 fs/namei.c:3564
 do_sys_open+0x568/0x700 fs/open.c:1063
 ksys_open include/linux/syscalls.h:1276 [inline]
 __do_sys_creat fs/open.c:1121 [inline]
 __se_sys_creat fs/open.c:1119 [inline]
 __x64_sys_creat+0x61/0x80 fs/open.c:1119
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x457579
Code: Bad RIP value.
RSP: 002b:00007f4f246fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000457579
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
RBP: 000000000072c040 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f246fe6d4
R13: 00000000004bdb43 R14: 00000000004cc688 R15: 00000000ffffffff
INFO: task syz-executor2:15633 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor2   D25632 15633   5876 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 __rwsem_down_write_failed_common+0xbb9/0x1670 kernel/locking/rwsem-xadd.c:566
 rwsem_down_write_failed+0xe/0x10 kernel/locking/rwsem-xadd.c:595
 call_rwsem_down_write_failed+0x17/0x30 arch/x86/lib/rwsem.S:117
 __down_write arch/x86/include/asm/rwsem.h:142 [inline]
 down_write+0xa5/0x130 kernel/locking/rwsem.c:72
 inode_lock include/linux/fs.h:738 [inline]
 ext4_fallocate+0x921/0x2300 fs/ext4/extents.c:4957
 vfs_fallocate+0x4b4/0x940 fs/open.c:308
 ksys_fallocate+0x56/0x90 fs/open.c:331
 __do_sys_fallocate fs/open.c:339 [inline]
 __se_sys_fallocate fs/open.c:337 [inline]
 __x64_sys_fallocate+0x97/0xf0 fs/open.c:337
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x457579
Code: Bad RIP value.
RSP: 002b:00007f4f246dcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457579
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
RBP: 000000000072c0e0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000010000 R11: 0000000000000246 R12: 00007f4f246dd6d4
R13: 00000000004bdc1c R14: 00000000004cc868 R15: 00000000ffffffff
INFO: task syz-executor2:15634 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor2   D25656 15634   5876 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 __rwsem_down_write_failed_common+0xbb9/0x1670 kernel/locking/rwsem-xadd.c:566
 rwsem_down_write_failed+0xe/0x10 kernel/locking/rwsem-xadd.c:595
 call_rwsem_down_write_failed+0x17/0x30 arch/x86/lib/rwsem.S:117
 __down_write arch/x86/include/asm/rwsem.h:142 [inline]
 down_write+0xa5/0x130 kernel/locking/rwsem.c:72
 inode_lock include/linux/fs.h:738 [inline]
 ext4_fallocate+0x921/0x2300 fs/ext4/extents.c:4957
 vfs_fallocate+0x4b4/0x940 fs/open.c:308
 ksys_fallocate+0x56/0x90 fs/open.c:331
 __do_sys_fallocate fs/open.c:339 [inline]
 __se_sys_fallocate fs/open.c:337 [inline]
 __x64_sys_fallocate+0x97/0xf0 fs/open.c:337
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x457579
Code: Bad RIP value.
RSP: 002b:00007f4f246bbc78 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457579
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: 000000000072c180 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000010001 R11: 0000000000000246 R12: 00007f4f246bc6d4
R13: 00000000004bdc1c R14: 00000000004cc868 R15: 00000000ffffffff
INFO: task syz-executor0:15619 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor0   D23824 15619   5839 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 jbd2_journal_lock_updates+0x388/0x7f0 fs/jbd2/transaction.c:744
 ext4_ioctl+0x254a/0x4210 fs/ext4/ioctl.c:748
 vfs_ioctl fs/ioctl.c:46 [inline]
 file_ioctl fs/ioctl.c:501 [inline]
 do_vfs_ioctl+0x1de/0x1720 fs/ioctl.c:685
 ksys_ioctl+0xa9/0xd0 fs/ioctl.c:702
 __do_sys_ioctl fs/ioctl.c:709 [inline]
 __se_sys_ioctl fs/ioctl.c:707 [inline]
 __x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:707
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x457579
Code: Bad RIP value.
RSP: 002b:00007f5499127c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579
RDX: 00000000200002c0 RSI: 0000000040086607 RDI: 0000000000000005
RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f54991286d4
R13: 00000000004bf60e R14: 00000000004cf4a8 R15: 00000000ffffffff
INFO: task syz-executor4:15628 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor4   D24640 15628   5945 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 start_this_handle+0x83e/0x1250 fs/jbd2/transaction.c:334
 jbd2__journal_start+0x3c9/0xa90 fs/jbd2/transaction.c:439
 __ext4_journal_start_sb+0x1a5/0x5f0 fs/ext4/ext4_jbd2.c:81
 __ext4_new_inode+0x3898/0x65b0 fs/ext4/ialloc.c:928
 ext4_symlink+0x4b7/0x1130 fs/ext4/namei.c:3093
 vfs_symlink+0x37a/0x5d0 fs/namei.c:4127
 do_symlinkat+0x242/0x2d0 fs/namei.c:4154
 __do_sys_symlink fs/namei.c:4173 [inline]
 __se_sys_symlink fs/namei.c:4171 [inline]
 __x64_sys_symlink+0x59/0x80 fs/namei.c:4171
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x4572a7
Code: Bad RIP value.
RSP: 002b:00007fff9d6d7c28 EFLAGS: 00000206 ORIG_RAX: 0000000000000058
RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000004572a7
RDX: 00007fff9d6d7ca7 RSI: 00000000004bcfd0 RDI: 00007fff9d6d7c90
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000017
R10: 0000000000000075 R11: 0000000000000206 R12: 0000000000000000
R13: 0000000000000001 R14: 0000000000000125 R15: 0000000000000004
INFO: task syz-executor3:15629 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor3   D24640 15629   5917 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 start_this_handle+0x83e/0x1250 fs/jbd2/transaction.c:334
 jbd2__journal_start+0x3c9/0xa90 fs/jbd2/transaction.c:439
 __ext4_journal_start_sb+0x1a5/0x5f0 fs/ext4/ext4_jbd2.c:81
 __ext4_new_inode+0x3898/0x65b0 fs/ext4/ialloc.c:928
 ext4_symlink+0x4b7/0x1130 fs/ext4/namei.c:3093
 vfs_symlink+0x37a/0x5d0 fs/namei.c:4127
 do_symlinkat+0x242/0x2d0 fs/namei.c:4154
 __do_sys_symlink fs/namei.c:4173 [inline]
 __se_sys_symlink fs/namei.c:4171 [inline]
 __x64_sys_symlink+0x59/0x80 fs/namei.c:4171
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x4572a7
Code: Bad RIP value.
RSP: 002b:00007ffe319d5e68 EFLAGS: 00000202 ORIG_RAX: 0000000000000058
RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000004572a7
RDX: 00007ffe319d5ee7 RSI: 00000000004bcfd0 RDI: 00007ffe319d5ed0
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000017
R10: 0000000000000075 R11: 0000000000000202 R12: 0000000000000000
R13: 0000000000000001 R14: 000000000000010f R15: 0000000000000003
INFO: task syz-executor1:15630 blocked for more than 140 seconds.
      Not tainted 4.19.0-rc7+ #275
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor1   D25664 15630   5852 0x00000004
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x86c/0x1ed0 kernel/sched/core.c:3473
 schedule+0xfe/0x460 kernel/sched/core.c:3517
 start_this_handle+0x83e/0x1250 fs/jbd2/transaction.c:334
 jbd2__journal_start+0x3c9/0xa90 fs/jbd2/transaction.c:439
 __ext4_journal_start_sb+0x1a5/0x5f0 fs/ext4/ext4_jbd2.c:81
 __ext4_new_inode+0x3898/0x65b0 fs/ext4/ialloc.c:928
 ext4_symlink+0x4b7/0x1130 fs/ext4/namei.c:3093
 vfs_symlink+0x37a/0x5d0 fs/namei.c:4127
 do_symlinkat+0x242/0x2d0 fs/namei.c:4154
 __do_sys_symlink fs/namei.c:4173 [inline]
 __se_sys_symlink fs/namei.c:4171 [inline]
 __x64_sys_symlink+0x59/0x80 fs/namei.c:4171
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x4572a7
Code: Bad RIP value.
RSP: 002b:00007ffce2191e08 EFLAGS: 00000202 ORIG_RAX: 0000000000000058
RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000004572a7
RDX: 00007ffce2191e87 RSI: 00000000004bcfd0 RDI: 00007ffce2191e70
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000017
R10: 0000000000000075 R11: 0000000000000202 R12: 0000000000000000
R13: 0000000000000001 R14: 000000000000011c R15: 0000000000000001
INFO: lockdep is turned off.
NMI backtrace for cpu 1
CPU: 1 PID: 982 Comm: khungtaskd Not tainted 4.19.0-rc7+ #275
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1c4/0x2b4 lib/dump_stack.c:113
 nmi_cpu_backtrace.cold.3+0x63/0xa2 lib/nmi_backtrace.c:101
 nmi_trigger_cpumask_backtrace+0x1b3/0x1ed lib/nmi_backtrace.c:62
 arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
 trigger_all_cpu_backtrace include/linux/nmi.h:144 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:204 [inline]
 watchdog+0xb3e/0x1050 kernel/hung_task.c:265
 kthread+0x35a/0x420 kernel/kthread.c:246
 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:413
Sending NMI from CPU 1 to CPUs 0:
INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.167 msecs
NMI backtrace for cpu 0
CPU: 0 PID: 15590 Comm: syz-executor2 Not tainted 4.19.0-rc7+ #275
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:check_kcov_mode kernel/kcov.c:67 [inline]
RIP: 0010:__sanitizer_cov_trace_pc+0x20/0x50 kernel/kcov.c:101
Code: 4c d8 20 4c 89 08 5d c3 66 90 55 48 89 e5 65 48 8b 04 25 40 ee 01 00 65 8b 15 2c 18 83 7e 81 e2 00 01 1f 00 48 8b 75 08 75 2b <8b> 90 d0 12 00 00 83 fa 02 75 20 48 8b 88 d8 12 00 00 8b 80 d4 12
RSP: 0018:ffff8801cf0cf140 EFLAGS: 00000246
RAX: ffff8801be664500 RBX: ffff8801b9137570 RCX: 0000000040000000
RDX: 0000000000000000 RSI: ffffffff82112e4e RDI: ffff8801b9137570
RBP: ffff8801cf0cf140 R08: ffff8801be664500 R09: 0000000061c8ddfa
R10: 000000000a2d3648 R11: 0000000000000000 R12: 0000000000008010
R13: 00000000b1b55c5e R14: ffff8801b9137380 R15: ffff8801cf0cf3e0
FS:  00007f4f24740700(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffffffff600400 CR3: 00000001b9512000 CR4: 00000000001406f0
Call Trace:
 ext4_find_extent+0x2e/0x9b0 fs/ext4/extents.c:863
 get_ext_path fs/ext4/move_extent.c:31 [inline]
 mext_check_coverage.constprop.13+0x2b0/0x510 fs/ext4/move_extent.c:98
 move_extent_per_page fs/ext4/move_extent.c:323 [inline]
 ext4_move_extents+0x2784/0x3c20 fs/ext4/move_extent.c:669
 ext4_ioctl+0x3154/0x4210 fs/ext4/ioctl.c:799
 vfs_ioctl fs/ioctl.c:46 [inline]
 file_ioctl fs/ioctl.c:501 [inline]
 do_vfs_ioctl+0x1de/0x1720 fs/ioctl.c:685
 ksys_ioctl+0xa9/0xd0 fs/ioctl.c:702
 __do_sys_ioctl fs/ioctl.c:709 [inline]
 __se_sys_ioctl fs/ioctl.c:707 [inline]
 __x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:707
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x457579
Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007f4f2473fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579
RDX: 0000000020000040 RSI: 00000000c028660f RDI: 0000000000000003
RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f247406d4
R13: 00000000004bf5dd R14: 00000000004cf460 R15: 00000000ffffffff

Crashes (3):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/10/09 23:34 upstream 64c5e530ac2c 8b311eaf .config console log report ci-upstream-kasan-gce-root
2018/10/03 12:32 net-old 45ec318578c0 0f3e0261 .config console log report ci-upstream-net-this-kasan-gce
2018/09/29 06:50 net-next-old 5362700c942b 41e4b329 .config console log report ci-upstream-net-kasan-gce
* Struck through repros no longer work on HEAD.