binder: 30530:30530 transaction failed 29189/-22, size 65535-0 line 3013 binder: 30531:30531 transaction failed 29189/-22, size 65535-0 line 3013 binder: 30532:30532 transaction failed 29189/-22, size 65535-0 line 3013 binder: 30533:30533 transaction failed 29189/-22, size 65535-0 line 3013 binder: 30534:30534 transaction failed 29189/-22, size 65535-0 line 3013 INFO: task init:25158 blocked for more than 140 seconds. Not tainted 4.9.141+ #23 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. init D29336 25158 1 0x00000000 ffff880178460000 ffff8801b565ee00 ffff880199a84780 ffff880178465f00 ffff8801db721018 ffff88017846f738 ffffffff828075c2 0000000000000000 ffff8801784608b0 ffffed002f08c115 00ff880178460000 ffff8801db7218f0 Call Trace: [] schedule+0x7f/0x1b0 kernel/sched/core.c:3553 [] schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3586 [] __mutex_lock_common kernel/locking/mutex.c:582 [inline] [] mutex_lock_nested+0x38d/0x900 kernel/locking/mutex.c:621 [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 [] chrdev_open+0x22d/0x5c0 fs/char_dev.c:392 [] do_dentry_open+0x3ef/0xc90 fs/open.c:766 [] vfs_open+0x11c/0x210 fs/open.c:879 [] do_last fs/namei.c:3410 [inline] [] path_openat+0x542/0x2790 fs/namei.c:3534 [] do_filp_open+0x197/0x270 fs/namei.c:3568 [] do_sys_open+0x30d/0x5c0 fs/open.c:1072 [] SYSC_open fs/open.c:1090 [inline] [] SyS_open+0x2d/0x40 fs/open.c:1085 [] do_syscall_64+0x19f/0x550 arch/x86/entry/common.c:285 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Showing all locks held in the system: 2 locks held by khungtaskd/24: #0: (rcu_read_lock){......}, at: [] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline] #0: (rcu_read_lock){......}, at: [] watchdog+0x11c/0xa20 kernel/hung_task.c:239 #1: (tasklist_lock){.+.+..}, at: [] debug_show_all_locks+0x79/0x218 kernel/locking/lockdep.c:4336 1 lock held by rsyslogd/1908: #0: (&f->f_pos_lock){+.+.+.}, at: [] __fdget_pos+0xac/0xd0 fs/file.c:781 2 locks held by getty/2035: #0: (&tty->ldisc_sem){++++++}, at: [] ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:367 #1: (&ldata->atomic_read_lock){+.+...}, at: [] n_tty_read+0x202/0x16e0 drivers/tty/n_tty.c:2142 1 lock held by init/25158: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/25159: binder: 30535:30535 transaction failed 29189/-22, size 65535-0 line 3013 #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/25160: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/25161: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/25162: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/25163: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 ============================================= NMI backtrace for cpu 1 CPU: 1 PID: 24 Comm: khungtaskd Not tainted 4.9.141+ #23 ffff8801d9907d08 ffffffff81b42e79 0000000000000000 0000000000000001 0000000000000001 0000000000000001 ffffffff810983b0 ffff8801d9907d40 ffffffff81b4df89 0000000000000001 0000000000000000 0000000000000003 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] nmi_cpu_backtrace.cold.0+0x48/0x87 lib/nmi_backtrace.c:99 [] nmi_trigger_cpumask_backtrace+0x12c/0x151 lib/nmi_backtrace.c:60 [] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37 [] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline] [] check_hung_task kernel/hung_task.c:125 [inline] [] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline] [] watchdog+0x6ad/0xa20 kernel/hung_task.c:239 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 30535 Comm: syz-executor175 Not tainted 4.9.141+ #23 task: ffff880137e60000 task.stack: ffff880137e88000 RIP: 0010:[] c [] __debug_check_no_obj_freed lib/debugobjects.c:712 [inline] RIP: 0010:[] c [] debug_check_no_obj_freed+0x1ab/0x890 lib/debugobjects.c:749 RSP: 0018:ffff880137e8f878 EFLAGS: 00000046 RAX: 0000000000000286 RBX: ffff880182992338 RCX: ffffffff84245180 RDX: 1ffff1003172fa70 RSI: 0000000000000017 RDI: ffff8801828bd0f8 RBP: ffff880137e8f960 R08: ffff880137e8f8f8 R09: dead000000000200 R10: ffff880137e60000 R11: 0000000000000001 R12: ffff88018b97d380 R13: ffffffff84336f08 R14: ffff88018b97d380 R15: dffffc0000000000 FS: 0000000000000000(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000 CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 CR2: 00000000080dac00 CR3: 000000000301e000 CR4: 00000000001606b0 Stack: ffffffffffffffffc 0000000000000000c ffffffff84336f00c ffff8801d0306000c ffff8801d0306000c ffff880137e608a8c ffff880137e608a8c 00000000000f1d80c fffffbfff0866de0c 1ffff10026fd1f1bc ffff8801d0305000c ffff8801d0305000c Call Trace: [] free_pages_prepare mm/page_alloc.c:1073 [inline] [] free_pcp_prepare mm/page_alloc.c:1087 [inline] [] free_hot_cold_page+0x1d1/0x9d0 mm/page_alloc.c:2473 [] free_hot_cold_page_list+0x99/0x340 mm/page_alloc.c:2521 [] release_pages+0x6bb/0xaa0 mm/swap.c:794 [] free_pages_and_swap_cache+0x117/0x160 mm/swap_state.c:273 [] tlb_flush_mmu_free+0xb4/0x150 mm/memory.c:259 [] tlb_flush_mmu mm/memory.c:268 [inline] [] tlb_finish_mmu+0x29/0xd0 mm/memory.c:279 [] exit_mmap+0x1ec/0x3a0 mm/mmap.c:3024 [] __mmput kernel/fork.c:884 [inline] [] mmput+0xcd/0x360 kernel/fork.c:906 [] exit_mm kernel/exit.c:514 [inline] [] do_exit+0x6c9/0x2a50 kernel/exit.c:820 [] do_group_exit+0x111/0x300 kernel/exit.c:937 [] SYSC_exit_group kernel/exit.c:948 [inline] [] SyS_exit_group+0x1d/0x20 kernel/exit.c:946 [] do_syscall_32_irqs_on arch/x86/entry/common.c:328 [inline] [] do_fast_syscall_32+0x2f1/0xa10 arch/x86/entry/common.c:390 [] entry_SYSENTER_compat+0x90/0xa2 arch/x86/entry/entry_64_compat.S:137 Code: c24 c84 c4c c8b c34 c31 c4d c85 cf6 c0f c84 c9d c03 c00 c00 c49 cb9 c00 c02 c00 c00 c00 c00 cad cde c31 cf6 c4c c8d c45 c98 c4c c89 cf2 c48 cc1 cea c03 c42 c80 c3c c3a c00 c<0f> c85 c83 c03 c00 c00 c49 c8d c7e c18 c83 cc6 c01 c4d c8b c26 c48 c89 cfa c48 cc1 c