mmap: syz-executor2 (6065) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.txt. INFO: task syz-executor0:2094 blocked for more than 140 seconds. Not tainted 4.9.125+ #89 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor0 D26920 2094 1 0x00000004 ffff8801d1f217c0 ffff8801a82bb180 ffff8801cc63a100 ffff8801d74817c0 ffff8801db621018 ffff8801b3a0fb28 ffffffff8277d092 0000000000000001 ffff8801d1f22070 ffffed003a3e440d 00ff8801d1f217c0 ffff8801db6218f0 Call Trace: [] schedule+0x7f/0x1b0 kernel/sched/core.c:3553 [] schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3586 [] __mutex_lock_common kernel/locking/mutex.c:582 [inline] [] mutex_lock_nested+0x326/0x870 kernel/locking/mutex.c:621 [] lo_release+0x1f/0x1a0 drivers/block/loop.c:1606 [] __blkdev_put+0x636/0x840 fs/block_dev.c:1598 [] blkdev_put+0x85/0x560 fs/block_dev.c:1663 [] blkdev_close+0x8b/0xb0 fs/block_dev.c:1670 [] __fput+0x263/0x700 fs/file_table.c:208 [] ____fput+0x15/0x20 fs/file_table.c:244 [] task_work_run+0x10c/0x180 kernel/task_work.c:116 [] tracehook_notify_resume include/linux/tracehook.h:191 [inline] [] exit_to_usermode_loop+0x129/0x150 arch/x86/entry/common.c:161 [] prepare_exit_to_usermode arch/x86/entry/common.c:191 [inline] [] syscall_return_slowpath arch/x86/entry/common.c:260 [inline] [] do_syscall_64+0x35d/0x480 arch/x86/entry/common.c:287 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Showing all locks held in the system: 2 locks held by khungtaskd/24: #0: (rcu_read_lock){......}, at: [] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline] #0: (rcu_read_lock){......}, at: [] watchdog+0x11c/0xa20 kernel/hung_task.c:239 #1: (tasklist_lock){.+.+..}, at: [] debug_show_all_locks+0x79/0x218 kernel/locking/lockdep.c:4336 1 lock held by rsyslogd/1898: #0: (&f->f_pos_lock){+.+.+.}, at: [] __fdget_pos+0xac/0xd0 fs/file.c:781 2 locks held by getty/2025: #0: (&tty->ldisc_sem){++++++}, at: [] ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:367 #1: (&ldata->atomic_read_lock){+.+...}, at: [] n_tty_read+0x202/0x16e0 drivers/tty/n_tty.c:2142 2 locks held by syz-executor0/2094: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_put+0xbb/0x840 fs/block_dev.c:1579 #1: (loop_index_mutex){+.+.+.}, at: [] lo_release+0x1f/0x1a0 drivers/block/loop.c:1606 2 locks held by syz-executor3/2097: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd60 fs/block_dev.c:1268 #1: (loop_index_mutex){+.+.+.}, at: [] lo_open+0x1b/0xa0 drivers/block/loop.c:1564 1 lock held by syz-executor4/2099: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd60 fs/block_dev.c:1268 2 locks held by syz-executor6/2103: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd60 fs/block_dev.c:1268 #1: (loop_index_mutex){+.+.+.}, at: [] lo_open+0x1b/0xa0 drivers/block/loop.c:1564 2 locks held by syz-executor5/2107: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd60 fs/block_dev.c:1268 #1: (loop_index_mutex){+.+.+.}, at: [] lo_open+0x1b/0xa0 drivers/block/loop.c:1564 2 locks held by syz-executor1/6037: #0: (&lo->lo_ctl_mutex/1){+.+.+.}, at: [] lo_ioctl+0x8c/0x1670 drivers/block/loop.c:1353 #1: (&bdev->bd_mutex){+.+.+.}, at: [] blkdev_reread_part+0x1e/0x40 block/ioctl.c:189 1 lock held by syz-executor7/6024: #0: (loop_index_mutex){+.+.+.}, at: [] loop_control_ioctl+0x7a/0x300 drivers/block/loop.c:1915 2 locks held by syz-executor7/6040: #0: (loop_index_mutex){+.+.+.}, at: [] loop_control_ioctl+0x7a/0x300 drivers/block/loop.c:1915 #1: (&lo->lo_ctl_mutex#2){+.+.+.}, at: [] loop_control_ioctl+0x186/0x300 drivers/block/loop.c:1929 1 lock held by blkid/6023: #0: (&bdev->bd_mutex){+.+.+.}, at: [] blkdev_put+0x2a/0x560 fs/block_dev.c:1621 2 locks held by blkid/6038: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_put+0xbb/0x840 fs/block_dev.c:1579 #1: (loop_index_mutex){+.+.+.}, at: [] lo_release+0x1f/0x1a0 drivers/block/loop.c:1606 1 lock held by syz-executor2/6065: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd60 fs/block_dev.c:1268 1 lock held by syz-executor2/6066: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd60 fs/block_dev.c:1268 ============================================= NMI backtrace for cpu 1 CPU: 1 PID: 24 Comm: khungtaskd Not tainted 4.9.125+ #89 ffff8801d9907d08 ffffffff81af0ae9 0000000000000000 0000000000000001 0000000000000001 0000000000000001 ffffffff810967d0 ffff8801d9907d40 ffffffff81afb849 0000000000000001 0000000000000000 0000000000000003 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] nmi_cpu_backtrace.cold.0+0x48/0x87 lib/nmi_backtrace.c:99 [] nmi_trigger_cpumask_backtrace+0x12c/0x151 lib/nmi_backtrace.c:60 [] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37 [] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline] [] check_hung_task kernel/hung_task.c:125 [inline] [] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline] [] watchdog+0x6ad/0xa20 kernel/hung_task.c:239 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 6074 Comm: kworker/0:4 Not tainted 4.9.125+ #89 Workqueue: events_power_efficient gc_workerc task: ffff8801c587c740 task.stack: ffff8801d5dd0000 RIP: 0010:[] c [] __lock_acquire+0x347/0x4a10 kernel/locking/lockdep.c:3289 RSP: 0018:ffff8801d5dd79a0 EFLAGS: 00000046 RAX: dffffc0000000000 RBX: ffff8801c587d040 RCX: 0000000000000002 RDX: 1ffff10038b0fa0b RSI: 000000000000001e RDI: ffff8801c587d050 RBP: ffff8801d5dd7b48 R08: 0000000000000000 R09: 0000000000000000 R10: ffff8801c587c740 R11: 1ffff10038b0fa07 R12: 000000000000001e R13: 0000000000000002 R14: ffffffff82ecc3a0 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000c422700010 CR3: 00000001d41c6000 CR4: 00000000001606b0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Stack: ffff8801c587cfe8c ffff8801c587cff0c 1ffff1003abbaf38c ffffffff83a52258c 0000000041b58ab3c ffffffff82c30a48c ffffffff811fef90c ffff8801c587d030c ffff880100000000c ffff8801c587d018c ffffffff83aa80e0c 0000000000000001c Call Trace: [] lock_acquire+0x130/0x3e0 kernel/locking/lockdep.c:3756 [] rcu_lock_acquire include/linux/rcupdate.h:493 [inline] [] rcu_read_lock include/linux/rcupdate.h:875 [inline] [] gc_worker+0xcc/0x610 net/netfilter/nf_conntrack_core.c:966 [] process_one_work+0x791/0x1470 kernel/workqueue.c:2092 [] worker_thread+0xd6/0x10a0 kernel/workqueue.c:2226 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Code: c3c c02 c00 c0f c85 c8e c2e c00 c00 c48 c8d c43 c18 c4c c89 c73 c10 c48 c89 cc2 c48 c89 c44 c24 c68 c48 cb8 c00 c00 c00 c00 c00 cfc cff cdf c48 cc1 cea c03 c80 c3c c02 c00 c<0f> c85 ccb c2e c00 c00 c48 c8b c84 c24 c98 c00 c00 c00 c49 c8d cba c7c c08 c00 c00 c