INFO: task syz-executor.4:14224 can't die for more than 143 seconds. task:syz-executor.4 state:D stack:26616 pid:14224 ppid: 8457 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4373 [inline] __schedule+0x90c/0x21a0 kernel/sched/core.c:5124 schedule+0xcf/0x270 kernel/sched/core.c:5203 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:5262 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x81a/0x1110 kernel/locking/mutex.c:1103 blkdev_get_by_dev fs/block_dev.c:1436 [inline] blkdev_get_by_dev+0x255/0x5e0 fs/block_dev.c:1405 blkdev_open+0x154/0x2b0 fs/block_dev.c:1534 do_dentry_open+0x4b9/0x11b0 fs/open.c:817 do_open fs/namei.c:3254 [inline] path_openat+0x1b8e/0x2720 fs/namei.c:3369 do_filp_open+0x17e/0x3c0 fs/namei.c:3396 do_sys_openat2+0x16d/0x420 fs/open.c:1178 do_sys_open fs/open.c:1194 [inline] __do_sys_open fs/open.c:1202 [inline] __se_sys_open fs/open.c:1198 [inline] __x64_sys_open+0x119/0x1c0 fs/open.c:1198 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x417d11 RSP: 002b:00007f673f2c5810 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 RAX: ffffffffffffffda RBX: 6666666666666667 RCX: 0000000000417d11 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f673f2c5840 RBP: 000000000119bfc0 R08: 000000000000000f R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000293 R12: 000000000119bf8c R13: 00007fff88d10f1f R14: 00007f673f2c69c0 R15: 000000000119bf8c INFO: task syz-executor.4:14224 blocked for more than 143 seconds. Not tainted 5.11.0-rc4-next-20210121-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.4 state:D stack:26616 pid:14224 ppid: 8457 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4373 [inline] __schedule+0x90c/0x21a0 kernel/sched/core.c:5124 schedule+0xcf/0x270 kernel/sched/core.c:5203 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:5262 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x81a/0x1110 kernel/locking/mutex.c:1103 blkdev_get_by_dev fs/block_dev.c:1436 [inline] blkdev_get_by_dev+0x255/0x5e0 fs/block_dev.c:1405 blkdev_open+0x154/0x2b0 fs/block_dev.c:1534 do_dentry_open+0x4b9/0x11b0 fs/open.c:817 do_open fs/namei.c:3254 [inline] path_openat+0x1b8e/0x2720 fs/namei.c:3369 do_filp_open+0x17e/0x3c0 fs/namei.c:3396 do_sys_openat2+0x16d/0x420 fs/open.c:1178 do_sys_open fs/open.c:1194 [inline] __do_sys_open fs/open.c:1202 [inline] __se_sys_open fs/open.c:1198 [inline] __x64_sys_open+0x119/0x1c0 fs/open.c:1198 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x417d11 RSP: 002b:00007f673f2c5810 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 RAX: ffffffffffffffda RBX: 6666666666666667 RCX: 0000000000417d11 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f673f2c5840 RBP: 000000000119bfc0 R08: 000000000000000f R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000293 R12: 000000000119bf8c R13: 00007fff88d10f1f R14: 00007f673f2c69c0 R15: 000000000119bf8c INFO: task syz-executor.4:14228 can't die for more than 143 seconds. task:syz-executor.4 state:D stack:28456 pid:14228 ppid: 8457 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4373 [inline] __schedule+0x90c/0x21a0 kernel/sched/core.c:5124 schedule+0xcf/0x270 kernel/sched/core.c:5203 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:5262 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x81a/0x1110 kernel/locking/mutex.c:1103 blkdev_put+0x59/0x570 fs/block_dev.c:1583 blkdev_close+0x8c/0xb0 fs/block_dev.c:1632 __fput+0x283/0x920 fs/file_table.c:280 task_work_run+0xdd/0x190 kernel/task_work.c:140 tracehook_notify_resume include/linux/tracehook.h:189 [inline] exit_to_user_mode_loop kernel/entry/common.c:177 [inline] exit_to_user_mode_prepare+0x249/0x250 kernel/entry/common.c:210 __syscall_exit_to_user_mode_work kernel/entry/common.c:301 [inline] syscall_exit_to_user_mode+0x19/0x50 kernel/entry/common.c:312 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45e219 RSP: 002b:00007f673f2a4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: 0000000000000000 RBX: 0000000000000002 RCX: 000000000045e219 RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000004 RBP: 000000000119c060 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 R13: 00007fff88d10f1f R14: 00007f673f2a59c0 R15: 000000000119c034 INFO: task syz-executor.4:14228 blocked for more than 144 seconds. Not tainted 5.11.0-rc4-next-20210121-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.4 state:D stack:28456 pid:14228 ppid: 8457 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4373 [inline] __schedule+0x90c/0x21a0 kernel/sched/core.c:5124 schedule+0xcf/0x270 kernel/sched/core.c:5203 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:5262 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x81a/0x1110 kernel/locking/mutex.c:1103 blkdev_put+0x59/0x570 fs/block_dev.c:1583 blkdev_close+0x8c/0xb0 fs/block_dev.c:1632 __fput+0x283/0x920 fs/file_table.c:280 task_work_run+0xdd/0x190 kernel/task_work.c:140 tracehook_notify_resume include/linux/tracehook.h:189 [inline] exit_to_user_mode_loop kernel/entry/common.c:177 [inline] exit_to_user_mode_prepare+0x249/0x250 kernel/entry/common.c:210 __syscall_exit_to_user_mode_work kernel/entry/common.c:301 [inline] syscall_exit_to_user_mode+0x19/0x50 kernel/entry/common.c:312 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45e219 RSP: 002b:00007f673f2a4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: 0000000000000000 RBX: 0000000000000002 RCX: 000000000045e219 RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000004 RBP: 000000000119c060 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 R13: 00007fff88d10f1f R14: 00007f673f2a59c0 R15: 000000000119c034 INFO: task systemd-udevd:14288 blocked for more than 144 seconds. Not tainted 5.11.0-rc4-next-20210121-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:systemd-udevd state:D stack:26432 pid:14288 ppid: 4870 flags:0x00004000 Call Trace: context_switch kernel/sched/core.c:4373 [inline] __schedule+0x90c/0x21a0 kernel/sched/core.c:5124 schedule+0xcf/0x270 kernel/sched/core.c:5203 io_schedule+0xba/0x130 kernel/sched/core.c:7012 wait_on_page_bit_common+0x424/0xeb0 mm/filemap.c:1269 wait_on_page_bit mm/filemap.c:1330 [inline] wait_on_page_locked include/linux/pagemap.h:674 [inline] wait_on_page_read mm/filemap.c:3179 [inline] do_read_cache_page+0x957/0x1390 mm/filemap.c:3222 read_mapping_page include/linux/pagemap.h:500 [inline] read_part_sector+0x140/0x610 block/partitions/core.c:693 adfspart_check_ICS+0x9d/0xc90 block/partitions/acorn.c:360 check_partition block/partitions/core.c:148 [inline] blk_add_partitions+0x57c/0xf10 block/partitions/core.c:621 bdev_disk_changed+0x1fd/0x410 fs/block_dev.c:1251 __blkdev_get+0xa21/0xc10 fs/block_dev.c:1333 blkdev_get_by_dev fs/block_dev.c:1437 [inline] blkdev_get_by_dev+0x260/0x5e0 fs/block_dev.c:1405 blkdev_open+0x154/0x2b0 fs/block_dev.c:1534 do_dentry_open+0x4b9/0x11b0 fs/open.c:817 do_open fs/namei.c:3254 [inline] path_openat+0x1b8e/0x2720 fs/namei.c:3369 do_filp_open+0x17e/0x3c0 fs/namei.c:3396 do_sys_openat2+0x16d/0x420 fs/open.c:1178 do_sys_open fs/open.c:1194 [inline] __do_sys_open fs/open.c:1202 [inline] __se_sys_open fs/open.c:1198 [inline] __x64_sys_open+0x119/0x1c0 fs/open.c:1198 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x7f3e88b62840 RSP: 002b:00007ffcb349d648 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 RAX: ffffffffffffffda RBX: 0000556e29045ad0 RCX: 00007f3e88b62840 RDX: 0000556e28858fe3 RSI: 00000000000a0800 RDI: 0000556e2903e330 RBP: 00007ffcb349d7c0 R08: 0000556e28858670 R09: 0000000000000010 R10: 0000556e28858d0c R11: 0000000000000246 R12: 00007ffcb349d710 R13: 0000556e29034af0 R14: 0000000000000003 R15: 000000000000000e Showing all locks held in the system: 1 lock held by khungtaskd/1664: #0: ffffffff8b370ea0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 kernel/locking/lockdep.c:6326 1 lock held by in:imklog/8139: #0: ffff88801384ad70 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 fs/file.c:947 1 lock held by syz-executor.4/14224: #0: ffff8881444497a0 (&bdev->bd_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev fs/block_dev.c:1436 [inline] #0: ffff8881444497a0 (&bdev->bd_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x255/0x5e0 fs/block_dev.c:1405 1 lock held by syz-executor.4/14228: #0: ffff8881444497a0 (&bdev->bd_mutex){+.+.}-{3:3}, at: blkdev_put+0x59/0x570 fs/block_dev.c:1583 1 lock held by systemd-udevd/14288: #0: ffff8881444497a0 (&bdev->bd_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev fs/block_dev.c:1436 [inline] #0: ffff8881444497a0 (&bdev->bd_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x255/0x5e0 fs/block_dev.c:1405 ============================================= NMI backtrace for cpu 0 CPU: 0 PID: 1664 Comm: khungtaskd Not tainted 5.11.0-rc4-next-20210121-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x107/0x163 lib/dump_stack.c:120 nmi_cpu_backtrace.cold+0x44/0xd7 lib/nmi_backtrace.c:105 nmi_trigger_cpumask_backtrace+0x1b3/0x230 lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:147 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:253 [inline] watchdog+0xd89/0xf30 kernel/hung_task.c:338 kthread+0x3b1/0x4a0 kernel/kthread.c:292 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 4869 Comm: systemd-journal Not tainted 5.11.0-rc4-next-20210121-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:in_lock_functions+0x17/0x20 kernel/locking/spinlock.c:398 Code: 00 00 00 c3 cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 31 c0 48 81 ff 48 16 ff 88 72 0c 31 c0 48 81 ff 3c 20 ff 88 0f 92 c0 cc cc cc cc cc cc cc cc 41 57 41 56 41 55 49 c7 c5 40 5d 03 00 RSP: 0018:ffffc90000f3f5f0 EFLAGS: 00000283 RAX: 0000000000000000 RBX: ffffffff8131ea3f RCX: 1ffffffff1e1bee4 RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8131ea3f RBP: 0000000000000001 R08: ffffffff8d86d130 R09: 0000000000000001 R10: 0000000000082083 R11: 0000000000000001 R12: ffffc90000f3f730 R13: 0000000000000000 R14: ffff888011d88000 R15: ffffc90000f3f6e8 FS: 00007f806198b8c0(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f805edde000 CR3: 00000000113d0000 CR4: 00000000001506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: get_lock_parent_ip include/linux/ftrace.h:843 [inline] preempt_latency_start kernel/sched/core.c:4760 [inline] preempt_latency_start kernel/sched/core.c:4757 [inline] preempt_count_add+0x74/0x140 kernel/sched/core.c:4785 unwind_next_frame+0x11f/0x1f90 arch/x86/kernel/unwind_orc.c:428 arch_stack_walk+0x7d/0xe0 arch/x86/kernel/stacktrace.c:25 stack_trace_save+0x8c/0xc0 kernel/stacktrace.c:121 kasan_save_stack+0x1b/0x40 mm/kasan/common.c:38 kasan_set_track mm/kasan/common.c:46 [inline] set_alloc_info mm/kasan/common.c:403 [inline] ____kasan_kmalloc mm/kasan/common.c:434 [inline] ____kasan_kmalloc.constprop.0+0xa0/0xd0 mm/kasan/common.c:406 kasan_slab_alloc include/linux/kasan.h:208 [inline] slab_post_alloc_hook mm/slab.h:518 [inline] slab_alloc_node mm/slub.c:2910 [inline] slab_alloc mm/slub.c:2918 [inline] kmem_cache_alloc+0x155/0x370 mm/slub.c:2923 kmem_cache_zalloc include/linux/slab.h:676 [inline] __alloc_file+0x21/0x280 fs/file_table.c:101 alloc_empty_file+0x6d/0x170 fs/file_table.c:150 path_openat+0xe3/0x2720 fs/namei.c:3355 do_filp_open+0x17e/0x3c0 fs/namei.c:3396 do_sys_openat2+0x16d/0x420 fs/open.c:1178 do_sys_open fs/open.c:1194 [inline] __do_sys_open fs/open.c:1202 [inline] __se_sys_open fs/open.c:1198 [inline] __x64_sys_open+0x119/0x1c0 fs/open.c:1198 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x7f8060f1b840 Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24 RSP: 002b:00007fffb18e1278 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 RAX: ffffffffffffffda RBX: 00007fffb18e1580 RCX: 00007f8060f1b840 RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000557425e0f390 RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff R13: 0000557425e02040 R14: 00007fffb18e1540 R15: 0000557425e0f1b0