INFO: task syz-executor.3:30886 blocked for more than 143 seconds. Not tainted 5.8.0-rc6-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D14880 30886 25057 0x00000000 Call Trace: context_switch kernel/sched/core.c:3458 [inline] __schedule+0x3fc/0x870 kernel/sched/core.c:4219 schedule+0x37/0xe0 kernel/sched/core.c:4294 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4353 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x46a/0x9d0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:87 [inline] pipe_write+0x47/0x600 fs/pipe.c:435 call_write_iter include/linux/fs.h:1908 [inline] new_sync_write+0x18a/0x1a0 fs/read_write.c:503 vfs_write+0x1eb/0x220 fs/read_write.c:578 ksys_write+0xb9/0xd0 fs/read_write.c:631 do_syscall_64+0x60/0xe0 arch/x86/entry/common.c:384 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45cae9 Code: Bad RIP value. RSP: 002b:00007f52a23c9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000050ca00 RCX: 000000000045cae9 RDX: 000000000208e24b RSI: 0000000020000040 RDI: 0000000000000000 RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000000000000cec R14: 00000000004cf454 R15: 00007f52a23ca6d4 INFO: task syz-executor.3:30920 blocked for more than 143 seconds. Not tainted 5.8.0-rc6-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D14880 30920 25057 0x00000000 Call Trace: context_switch kernel/sched/core.c:3458 [inline] __schedule+0x3fc/0x870 kernel/sched/core.c:4219 schedule+0x37/0xe0 kernel/sched/core.c:4294 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4353 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x46a/0x9d0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:87 [inline] pipe_write+0x47/0x600 fs/pipe.c:435 call_write_iter include/linux/fs.h:1908 [inline] new_sync_write+0x18a/0x1a0 fs/read_write.c:503 vfs_write+0x1eb/0x220 fs/read_write.c:578 ksys_write+0xb9/0xd0 fs/read_write.c:631 do_syscall_64+0x60/0xe0 arch/x86/entry/common.c:384 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45cae9 Code: Bad RIP value. RSP: 002b:00007f52a23c9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000050ca00 RCX: 000000000045cae9 RDX: 000000000208e24b RSI: 0000000020000040 RDI: 0000000000000000 RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000000000000cec R14: 00000000004cf454 R15: 00007f52a23ca6d4 INFO: task syz-executor.3:31005 blocked for more than 143 seconds. Not tainted 5.8.0-rc6-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D14880 31005 25057 0x00000000 Call Trace: context_switch kernel/sched/core.c:3458 [inline] __schedule+0x3fc/0x870 kernel/sched/core.c:4219 schedule+0x37/0xe0 kernel/sched/core.c:4294 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4353 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x46a/0x9d0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:87 [inline] pipe_write+0x47/0x600 fs/pipe.c:435 call_write_iter include/linux/fs.h:1908 [inline] new_sync_write+0x18a/0x1a0 fs/read_write.c:503 vfs_write+0x1eb/0x220 fs/read_write.c:578 ksys_write+0xb9/0xd0 fs/read_write.c:631 do_syscall_64+0x60/0xe0 arch/x86/entry/common.c:384 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45cae9 Code: Bad RIP value. RSP: 002b:00007f52a23a8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000050ca00 RCX: 000000000045cae9 RDX: 000000000208e24b RSI: 0000000020000040 RDI: 0000000000000000 RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000000000000cec R14: 00000000004cf454 R15: 00007f52a23a96d4 INFO: task syz-executor.3:31063 blocked for more than 143 seconds. Not tainted 5.8.0-rc6-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D14880 31063 25057 0x00000000 Call Trace: context_switch kernel/sched/core.c:3458 [inline] __schedule+0x3fc/0x870 kernel/sched/core.c:4219 schedule+0x37/0xe0 kernel/sched/core.c:4294 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4353 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x46a/0x9d0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:87 [inline] pipe_write+0x47/0x600 fs/pipe.c:435 call_write_iter include/linux/fs.h:1908 [inline] new_sync_write+0x18a/0x1a0 fs/read_write.c:503 vfs_write+0x1eb/0x220 fs/read_write.c:578 ksys_write+0xb9/0xd0 fs/read_write.c:631 do_syscall_64+0x60/0xe0 arch/x86/entry/common.c:384 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45cae9 Code: Bad RIP value. RSP: 002b:00007f52a23c9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000050ca00 RCX: 000000000045cae9 RDX: 000000000208e24b RSI: 0000000020000040 RDI: 0000000000000000 RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000000000000cec R14: 00000000004cf454 R15: 00007f52a23ca6d4 INFO: task syz-executor.3:31222 blocked for more than 144 seconds. Not tainted 5.8.0-rc6-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D14816 31222 25057 0x00000000 Call Trace: context_switch kernel/sched/core.c:3458 [inline] __schedule+0x3fc/0x870 kernel/sched/core.c:4219 schedule+0x37/0xe0 kernel/sched/core.c:4294 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4353 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x46a/0x9d0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:87 [inline] pipe_write+0x47/0x600 fs/pipe.c:435 call_write_iter include/linux/fs.h:1908 [inline] new_sync_write+0x18a/0x1a0 fs/read_write.c:503 vfs_write+0x1eb/0x220 fs/read_write.c:578 ksys_write+0xb9/0xd0 fs/read_write.c:631 do_syscall_64+0x60/0xe0 arch/x86/entry/common.c:384 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45cae9 Code: Bad RIP value. RSP: 002b:00007f52a23c9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000050ca00 RCX: 000000000045cae9 RDX: 000000000208e24b RSI: 0000000020000040 RDI: 0000000000000000 RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000000000000cec R14: 00000000004cf454 R15: 00007f52a23ca6d4 INFO: task syz-executor.3:31253 blocked for more than 144 seconds. Not tainted 5.8.0-rc6-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D14816 31253 25057 0x00000000 Call Trace: context_switch kernel/sched/core.c:3458 [inline] __schedule+0x3fc/0x870 kernel/sched/core.c:4219 schedule+0x37/0xe0 kernel/sched/core.c:4294 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4353 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x46a/0x9d0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:87 [inline] pipe_write+0x47/0x600 fs/pipe.c:435 call_write_iter include/linux/fs.h:1908 [inline] new_sync_write+0x18a/0x1a0 fs/read_write.c:503 vfs_write+0x1eb/0x220 fs/read_write.c:578 ksys_write+0xb9/0xd0 fs/read_write.c:631 do_syscall_64+0x60/0xe0 arch/x86/entry/common.c:384 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45cae9 Code: Bad RIP value. RSP: 002b:00007f52a23c9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000050ca00 RCX: 000000000045cae9 RDX: 000000000208e24b RSI: 0000000020000040 RDI: 0000000000000000 RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000000000000cec R14: 00000000004cf454 R15: 00007f52a23ca6d4 INFO: task syz-executor.3:31283 blocked for more than 144 seconds. Not tainted 5.8.0-rc6-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D14816 31283 25057 0x00000000 Call Trace: context_switch kernel/sched/core.c:3458 [inline] __schedule+0x3fc/0x870 kernel/sched/core.c:4219 schedule+0x37/0xe0 kernel/sched/core.c:4294 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4353 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x46a/0x9d0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:87 [inline] pipe_write+0x47/0x600 fs/pipe.c:435 call_write_iter include/linux/fs.h:1908 [inline] new_sync_write+0x18a/0x1a0 fs/read_write.c:503 vfs_write+0x1eb/0x220 fs/read_write.c:578 ksys_write+0xb9/0xd0 fs/read_write.c:631 do_syscall_64+0x60/0xe0 arch/x86/entry/common.c:384 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45cae9 Code: Bad RIP value. RSP: 002b:00007f52a23c9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000050ca00 RCX: 000000000045cae9 RDX: 000000000208e24b RSI: 0000000020000040 RDI: 0000000000000000 RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000000000000cec R14: 00000000004cf454 R15: 00007f52a23ca6d4 INFO: task syz-executor.3:31354 blocked for more than 144 seconds. Not tainted 5.8.0-rc6-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D14880 31354 25057 0x00000000 Call Trace: context_switch kernel/sched/core.c:3458 [inline] __schedule+0x3fc/0x870 kernel/sched/core.c:4219 schedule+0x37/0xe0 kernel/sched/core.c:4294 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4353 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x46a/0x9d0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:87 [inline] pipe_write+0x47/0x600 fs/pipe.c:435 call_write_iter include/linux/fs.h:1908 [inline] new_sync_write+0x18a/0x1a0 fs/read_write.c:503 vfs_write+0x1eb/0x220 fs/read_write.c:578 ksys_write+0xb9/0xd0 fs/read_write.c:631 do_syscall_64+0x60/0xe0 arch/x86/entry/common.c:384 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45cae9 Code: Bad RIP value. RSP: 002b:00007f52a23c9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000050ca00 RCX: 000000000045cae9 RDX: 000000000208e24b RSI: 0000000020000040 RDI: 0000000000000000 RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000000000000cec R14: 00000000004cf454 R15: 00007f52a23ca6d4 INFO: task syz-executor.3:31373 blocked for more than 144 seconds. Not tainted 5.8.0-rc6-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D14880 31373 25057 0x00000000 Call Trace: context_switch kernel/sched/core.c:3458 [inline] __schedule+0x3fc/0x870 kernel/sched/core.c:4219 schedule+0x37/0xe0 kernel/sched/core.c:4294 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4353 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x46a/0x9d0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:87 [inline] pipe_write+0x47/0x600 fs/pipe.c:435 call_write_iter include/linux/fs.h:1908 [inline] new_sync_write+0x18a/0x1a0 fs/read_write.c:503 vfs_write+0x1eb/0x220 fs/read_write.c:578 ksys_write+0xb9/0xd0 fs/read_write.c:631 do_syscall_64+0x60/0xe0 arch/x86/entry/common.c:384 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45cae9 Code: Bad RIP value. RSP: 002b:00007f52a23c9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 000000000050ca00 RCX: 000000000045cae9 RDX: 000000000208e24b RSI: 0000000020000040 RDI: 0000000000000000 RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000000000000cec R14: 00000000004cf454 R15: 00007f52a23ca6d4 Showing all locks held in the system: 1 lock held by khungtaskd/729: #0: ffffffff842e0540 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x15/0x17a kernel/locking/lockdep.c:5780 4 locks held by kworker/1:122/2755: #0: ffff88812c12dbd8 (&rq->lock){-.-.}-{2:2}, at: rq_lock kernel/sched/sched.h:1261 [inline] #0: ffff88812c12dbd8 (&rq->lock){-.-.}-{2:2}, at: __schedule+0xfa/0x870 kernel/sched/core.c:4137 #1: ffff88812c118f08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x134/0x160 kernel/sched/psi.c:817 #2: ffffffff85f63c50 (&obj_hash[i].lock){-.-.}-{2:2}, at: __debug_check_no_obj_freed lib/debugobjects.c:955 [inline] #2: ffffffff85f63c50 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_check_no_obj_freed+0x89/0x1dd lib/debugobjects.c:998 #3: ffff88812c11d5d8 (&base->lock){-.-.}-{2:2}, at: __mod_timer kernel/time/timer.c:1043 [inline] #3: ffff88812c11d5d8 (&base->lock){-.-.}-{2:2}, at: mod_timer+0x10b/0x350 kernel/time/timer.c:1111 1 lock held by systemd-journal/4108: 1 lock held by in:imklog/6533: #0: ffff88812171d6f0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x45/0x50 fs/file.c:826 1 lock held by syz-execprog/7129: #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_read+0x50/0x470 fs/pipe.c:247 1 lock held by syz-executor.3/30856: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x2ac/0x600 fs/pipe.c:580 1 lock held by syz-executor.3/30886: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/30920: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31005: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31063: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31222: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31253: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31283: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31354: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31373: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31505: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31530: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31598: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31754: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31786: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31805: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31862: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31903: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/31962: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/32034: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/32121: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/32175: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x2ac/0x600 fs/pipe.c:580 1 lock held by syz-executor.0/32223: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/834: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x2ac/0x600 fs/pipe.c:580 1 lock held by syz-executor.2/869: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/902: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/961: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/995: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/996: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/1037: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/1051: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/1169: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/1539: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/1562: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/1579: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/1734: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/1784: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/1877: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2003: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2024: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2040: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2078: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2141: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/2153: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2176: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2217: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/2219: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2220: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2249: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2288: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2311: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2356: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2383: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/2384: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2404: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2431: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/2445: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/2463: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2464: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2465: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2523: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2543: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/2601: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/2628: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2636: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.0/2655: #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f4dea68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.4/2663: #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x2ac/0x600 fs/pipe.c:580 1 lock held by syz-executor.3/2665: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.4/2692: #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2694: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.3/2723: #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888121411868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.2/2711: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.4/2727: #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.4/2782: #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88810f680a68 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 1 lock held by syz-executor.5/2783: #0: ffff888110c6d868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff888110c6d868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x2ac/0x600 fs/pipe.c:580 1 lock held by syz-executor.2/2786: #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:87 [inline] #0: ffff88811f797068 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_write+0x47/0x600 fs/pipe.c:435 ============================================= NMI backtrace for cpu 0 CPU: 0 PID: 729 Comm: khungtaskd Not tainted 5.8.0-rc6-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0xb3/0xec lib/dump_stack.c:118 nmi_cpu_backtrace.cold.8+0x3e/0x58 lib/nmi_backtrace.c:101 nmi_trigger_cpumask_backtrace+0xd5/0xec lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:209 [inline] watchdog+0x58e/0x680 kernel/hung_task.c:295 kthread+0x148/0x170 kernel/kthread.c:291 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:293 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 skipped: idling at native_safe_halt+0xe/0x10 arch/x86/include/asm/irqflags.h:60