bond0 (unregistering): Releasing backup interface bond_slave_0 bond0 (unregistering): Released all slaves Bluetooth: hci4: command 0x0406 tx timeout ieee802154 phy0 wpan0: encryption failed: -22 ieee802154 phy1 wpan1: encryption failed: -22 INFO: task syz-executor.1:10536 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.1 D25552 10536 8145 0x80000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 wb_wait_for_completion+0x175/0x1f0 fs/fs-writeback.c:222 __writeback_inodes_sb_nr+0x1df/0x270 fs/fs-writeback.c:2373 try_to_writeback_inodes_sb+0xda/0x110 fs/fs-writeback.c:2421 ext4_nonda_switch+0x1aa/0x1f0 fs/ext4/inode.c:3007 ext4_da_write_begin+0x155/0x10e0 fs/ext4/inode.c:3048 generic_perform_write+0x1f8/0x4d0 mm/filemap.c:3170 __generic_file_write_iter+0x24b/0x610 mm/filemap.c:3295 ext4_file_write_iter+0x2fe/0xf20 fs/ext4/file.c:272 call_write_iter include/linux/fs.h:1821 [inline] new_sync_write fs/read_write.c:474 [inline] __vfs_write+0x51b/0x770 fs/read_write.c:487 __kernel_write+0x109/0x370 fs/read_write.c:506 dump_emit+0x183/0x300 fs/coredump.c:801 elf_core_dump+0x33c0/0x4c10 fs/binfmt_elf.c:2392 do_coredump+0x1d4e/0x2d60 fs/coredump.c:765 get_signal+0xed9/0x1f70 kernel/signal.c:2583 do_signal+0x8f/0x1670 arch/x86/kernel/signal.c:799 exit_to_usermode_loop+0x204/0x2a0 arch/x86/entry/common.c:163 prepare_exit_to_usermode+0x277/0x2d0 arch/x86/entry/common.c:198 retint_user+0x8/0x18 RIP: 0033: (null) Code: Bad RIP value. RSP: 002b:0000000020000308 EFLAGS: 00010217 RAX: 0000000000000000 RBX: 00007f862dd28f80 RCX: 00007f862dc090f9 RDX: 0000000020000340 RSI: 0000000020000300 RDI: 0000000015102000 RBP: 00007f862dc64ae9 R08: 00000000200003c0 R09: 00000000200003c0 R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffe0de3d9cf R14: 00007f862c17b300 R15: 0000000000022000 Showing all locks held in the system: 1 lock held by khungtaskd/1570: #0: 0000000082f38d41 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 kernel/locking/lockdep.c:4441 1 lock held by in:imklog/7811: #0: 00000000b80da43f (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x26f/0x310 fs/file.c:767 3 locks held by kworker/u4:12/28970: #0: 00000000db936377 ((wq_completion)"writeback"){+.+.}, at: process_one_work+0x767/0x1570 kernel/workqueue.c:2124 #1: 00000000491a6e86 ((work_completion)(&(&wb->dwork)->work)){+.+.}, at: process_one_work+0x79c/0x1570 kernel/workqueue.c:2128 #2: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/10053: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10055: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/10072: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/10077: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10080: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/10085: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10090: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/10095: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10096: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10107: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10114: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10115: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/10116: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/10121: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10126: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10137: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10142: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/10144: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10145: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/10149: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10154: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10156: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/10157: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10160: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10165: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10169: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/10170: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10179: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10185: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10187: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10190: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10193: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10197: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10208: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/10209: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10219: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10225: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10233: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10241: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/10251: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/10253: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/10254: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/10257: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10263: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10264: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/10269: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/10291: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/10293: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10300: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/10302: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 3 locks held by syz-executor.1/10536: #0: 000000001fd8c78b (sb_writers#3){.+.+}, at: file_start_write include/linux/fs.h:2779 [inline] #0: 000000001fd8c78b (sb_writers#3){.+.+}, at: do_coredump+0x2083/0x2d60 fs/coredump.c:764 #1: 000000006446b853 (&sb->s_type->i_mutex_key#10){+.+.}, at: inode_trylock include/linux/fs.h:768 [inline] #1: 000000006446b853 (&sb->s_type->i_mutex_key#10){+.+.}, at: ext4_file_write_iter+0x21f/0xf20 fs/ext4/file.c:238 #2: 00000000aa0a8c0e (&type->s_umount_key#36){++++}, at: try_to_writeback_inodes_sb+0x1d/0x110 fs/fs-writeback.c:2418 1 lock held by syz-executor.5/11132: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/11165: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11175: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/11179: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11199: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/11211: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11218: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11223: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/11228: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11247: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/11254: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11270: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/11279: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11321: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/11329: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11338: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11345: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11363: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11368: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11385: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11390: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11406: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11414: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11426: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/11445: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11448: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/11458: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11459: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/11462: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11473: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/11500: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/11806: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12068: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12086: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12088: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12090: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/12091: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12105: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12109: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12120: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12127: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12138: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12155: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12160: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12176: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12180: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/12190: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12197: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12199: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12202: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12207: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12219: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12223: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12228: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/12235: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12237: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/12239: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/12242: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12245: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12249: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12264: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12270: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/12272: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12275: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12278: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12297: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12302: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12317: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12320: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12348: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12351: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12378: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12380: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/12392: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12404: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12406: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12411: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12413: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/12424: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12428: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12435: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12441: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/12449: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12458: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12478: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12480: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12489: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12505: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12510: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12513: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/12517: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12535: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12541: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12542: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12549: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/12556: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12560: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12567: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12580: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12587: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/12588: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/12589: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12590: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/12595: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12596: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/12597: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12612: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/12616: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12619: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12620: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/12623: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12624: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/12631: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/12637: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.5/12641: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/12745: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.0/12798: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.3/12805: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/12827: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/12938: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.4/12957: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.2/12976: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 1 lock held by syz-executor.1/12977: #0: 00000000b19ea0fd (&sbi->s_writepages_rwsem){.+.+}, at: do_writepages+0xe5/0x290 mm/page-writeback.c:2344 ============================================= NMI backtrace for cpu 0 CPU: 0 PID: 1570 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 nmi_cpu_backtrace.cold+0x63/0xa2 lib/nmi_backtrace.c:101 nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:203 [inline] watchdog+0x991/0xe60 kernel/hung_task.c:287 kthread+0x33f/0x460 kernel/kthread.c:259 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 9705 Comm: kworker/u4:8 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 Workqueue: phy5 ieee80211_iface_work RIP: 0010:atomic_read include/asm-generic/atomic-instrumented.h:21 [inline] RIP: 0010:rcu_dynticks_curr_cpu_in_eqs kernel/rcu/tree.c:350 [inline] RIP: 0010:rcu_is_watching+0x42/0xc0 kernel/rcu/tree.c:1025 Code: 00 48 ba 00 00 00 00 00 fc ff df 89 c0 48 8d 3c c5 00 af cf 89 48 89 f9 48 c1 e9 03 80 3c 11 00 75 6d 48 03 1c c5 00 af cf 89 04 00 00 00 48 8d 6b 10 48 89 ef e8 5d c2 46 00 48 89 ea 48 b8 RSP: 0018:ffff88809f8f7b60 EFLAGS: 00000286 RAX: 0000000000000001 RBX: ffff8880ba122ac0 RCX: 1ffffffff139f5e1 RDX: dffffc0000000000 RSI: ffffffff83771e31 RDI: ffffffff89cfaf08 RBP: 0000000000000000 R08: 00000000ff6a6dd2 R09: 0000000000000000 R10: 0000000000000005 R11: 0000000000000000 R12: ffff88809cc06740 R13: dffffc0000000000 R14: ffff88809cc06740 R15: 1ffffffff13c1b30 FS: 0000000000000000(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f7708881000 CR3: 00000000919a3000 CR4: 00000000003406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: rcu_read_lock include/linux/rcupdate.h:628 [inline] ieee80211_sta_active_ibss+0x26e/0x350 net/mac80211/ibss.c:670 ieee80211_sta_merge_ibss net/mac80211/ibss.c:1303 [inline] ieee80211_ibss_work+0xae3/0xe10 net/mac80211/ibss.c:1703 ieee80211_iface_work+0x7ba/0x8a0 net/mac80211/iface.c:1362 process_one_work+0x864/0x1570 kernel/workqueue.c:2153 worker_thread+0x64c/0x1130 kernel/workqueue.c:2296 kthread+0x33f/0x460 kernel/kthread.c:259 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415