binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29201 INFO: task syz-executor2:5635 blocked for more than 120 seconds. Not tainted 4.9.92-g13b40d3 #72 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor2 D29008 5635 3826 0x00000004 ffff88019bbd8000 ffff8801d6f55f80 ffff8801d74f5a40 ffff8801d75be000 ffff8801db221b98 ffff8801d7007b48 ffffffff838a76cb 0000000000000001 0000000000000007 00ff88019bbd8000 ffff8801db222468 ffff8801db222490 Call Trace: [] schedule+0x7f/0x1b0 kernel/sched/core.c:3551 [] schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3584 [] __mutex_lock_common kernel/locking/mutex.c:582 [inline] [] mutex_lock_nested+0x312/0x870 kernel/locking/mutex.c:621 [] loop_control_ioctl+0x176/0x300 drivers/block/loop.c:1913 [] vfs_ioctl fs/ioctl.c:43 [inline] [] do_vfs_ioctl+0x1aa/0x1140 fs/ioctl.c:679 [] SYSC_ioctl fs/ioctl.c:694 [inline] [] SyS_ioctl+0x8f/0xc0 fs/ioctl.c:685 [] do_syscall_64+0x1a4/0x490 arch/x86/entry/common.c:282 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Showing all locks held in the system: 2 locks held by khungtaskd/515: #0: (rcu_read_lock){......}, at: [] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline] #0: (rcu_read_lock){......}, at: [] watchdog+0x125/0xa70 kernel/hung_task.c:239 #1: (tasklist_lock){.+.+..}, at: [] debug_show_all_locks+0x70/0x280 kernel/locking/lockdep.c:4336 1 lock held by rsyslogd/3619: #0: (&f->f_pos_lock){+.+.+.}, at: [] __fdget_pos+0x9f/0xc0 fs/file.c:781 2 locks held by getty/3724: #0: (&tty->ldisc_sem){++++++}, at: [] ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:367 #1: (&ldata->atomic_read_lock){+.+...}, at: [] n_tty_read+0x1f4/0x16c0 drivers/tty/n_tty.c:2133 2 locks held by syz-executor2/5635: #0: (loop_index_mutex){+.+.+.}, at: [] loop_control_ioctl+0x7a/0x300 drivers/block/loop.c:1899 #1: (&lo->lo_ctl_mutex#2){+.+.+.}, at: [] loop_control_ioctl+0x176/0x300 drivers/block/loop.c:1913 1 lock held by syz-executor2/5669: #0: (loop_index_mutex){+.+.+.}, at: [] loop_control_ioctl+0x7a/0x300 drivers/block/loop.c:1899 1 lock held by syz-executor2/5670: #0: (loop_index_mutex){+.+.+.}, at: [] loop_control_ioctl+0x7a/0x300 drivers/block/loop.c:1899 1 lock held by syz-executor2/5672: #0: (loop_index_mutex){+.+.+.}, at: [] loop_control_ioctl+0x7a/0x300 drivers/block/loop.c:1899 1 lock held by syz-executor2/5674: #0: (loop_index_mutex){+.+.+.}, at: [] loop_control_ioctl+0x7a/0x300 drivers/block/loop.c:1899 1 lock held by syz-executor2/5675: #0: (loop_index_mutex){+.+.+.}, at: [] loop_control_ioctl+0x7a/0x300 drivers/block/loop.c:1899 1 lock held by syz-executor1/5643: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd50 fs/block_dev.c:1268 2 locks held by syz-executor6/5650: #0: (&lo->lo_ctl_mutex/1){+.+.+.}, at: [] lo_ioctl+0x8f/0x1990 drivers/block/loop.c:1337 #1: (&bdev->bd_mutex){+.+.+.}, at: [] blkdev_reread_part+0x1e/0x40 block/ioctl.c:189 1 lock held by syz-executor6/5676: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd50 fs/block_dev.c:1268 1 lock held by syz-executor6/5680: #0: (&lo->lo_ctl_mutex/1){+.+.+.}, at: [] lo_ioctl+0x8f/0x1990 drivers/block/loop.c:1337 1 lock held by syz-executor6/5681: #0: (&lo->lo_ctl_mutex/1){+.+.+.}, at: [] lo_ioctl+0x8f/0x1990 drivers/block/loop.c:1337 2 locks held by blkid/5661: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_put+0xbc/0x7e0 fs/block_dev.c:1579 #1: (loop_index_mutex){+.+.+.}, at: [] lo_release+0x1f/0x160 drivers/block/loop.c:1590 2 locks held by blkid/5664: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd50 fs/block_dev.c:1268 #1: (loop_index_mutex){+.+.+.}, at: [] lo_open+0x1b/0xa0 drivers/block/loop.c:1548 2 locks held by blkid/5668: #0: (&bdev->bd_mutex){+.+.+.}, at: [] __blkdev_get+0x10c/0xd50 fs/block_dev.c:1268 #1: (loop_index_mutex){+.+.+.}, at: [] lo_open+0x1b/0xa0 drivers/block/loop.c:1548 ============================================= NMI backtrace for cpu 1 CPU: 1 PID: 515 Comm: khungtaskd Not tainted 4.9.92-g13b40d3 #72 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff8801d8bdfd00 ffffffff81d95109 0000000000000000 0000000000000001 0000000000000001 0000000000000001 ffffffff810bb8f0 ffff8801d8bdfd38 ffffffff81da025d 0000000000000001 0000000000000000 ffff8801d74c4c18 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] nmi_cpu_backtrace+0xfd/0x120 lib/nmi_backtrace.c:99 [] nmi_trigger_cpumask_backtrace+0x117/0x190 lib/nmi_backtrace.c:60 [] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37 [] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline] [] check_hung_task kernel/hung_task.c:125 [inline] [] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline] [] watchdog+0x6f0/0xa70 kernel/hung_task.c:239 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 3617 Comm: rs:main Q:Reg Not tainted 4.9.92-g13b40d3 #72 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 task: ffff8801be141800 task.stack: ffff8801c33d8000 RIP: 0010:[] c [] memcmp+0x99/0x160 lib/string.c:768 RSP: 0018:ffff8801c33df068 EFLAGS: 00000246 RAX: 0000000000000000 RBX: ffff8801c33df12a RCX: 0000000000000002 RDX: ffff8801c33df198 RSI: ffff8801c01db61a RDI: 0000000000000001 RBP: ffff8801c33df090 R08: ffffed003867be17 R09: ffff8801c33df118 R10: 0000000000000008 R11: ffffed003867be16 R12: dffffc0000000000 R13: ffff8801c01db5f0 R14: 0000000000000080 R15: 0000000000000010 FS: 00007fac3e562700(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f3fb468e000 CR3: 00000001c02e0000 CR4: 0000000000160670 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Stack: ffff8801c33df0e0c ffffffff8107c7fdc 0000000000000000c 000000006b2e8618c ffff8801c33df100c ffff8801c33df0f0c ffffffff81e47a92c ffff880102408040c 00000000000e8618c ffff8801c33df118c 0000000000000000c 95db5a96afdc6ff5c Call Trace: [] find_stack lib/stackdepot.c:176 [inline] [] depot_save_stack+0x122/0x4a0 lib/stackdepot.c:225 [] save_stack+0xa3/0xd0 mm/kasan/kasan.c:511 [] set_track mm/kasan/kasan.c:517 [inline] [] kasan_kmalloc+0xad/0xe0 mm/kasan/kasan.c:609 [] __kmalloc+0x11d/0x310 mm/slub.c:3741 [] kmalloc include/linux/slab.h:495 [inline] [] kzalloc include/linux/slab.h:636 [inline] [] ext4_ext_remove_space+0x19f3/0x3a20 fs/ext4/extents.c:2935 [] ext4_ext_truncate+0x181/0x280 fs/ext4/extents.c:4658 [] ext4_truncate+0xaae/0x12e0 fs/ext4/inode.c:4260 [] ext4_truncate_failed_write fs/ext4/truncate.h:15 [inline] [] ext4_da_write_begin+0x5a3/0x1020 fs/ext4/inode.c:3015 [] generic_perform_write+0x261/0x500 mm/filemap.c:2741 [] __generic_file_write_iter+0x348/0x570 mm/filemap.c:2866 [] ext4_file_write_iter+0x99f/0xe00 fs/ext4/file.c:165 [] new_sync_write fs/read_write.c:496 [inline] [] __vfs_write+0x4bf/0x680 fs/read_write.c:509 [] vfs_write+0x189/0x530 fs/read_write.c:557 [] SYSC_write fs/read_write.c:604 [inline] [] SyS_write+0xd9/0x1b0 fs/read_write.c:596 [] do_syscall_64+0x1a4/0x490 arch/x86/entry/common.c:282 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Code: c75 c5d c49 cbc c00 c00 c00 c00 c00 cfc cff cdf c48 c01 cda ceb c3f c48 c89 cd8 c48 c89 cd9 c48 cc1 ce8 c03 c83 ce1 c07 c42 c0f cb6 c04 c20 c38 cc8 c7f c04 c84 cc0 c75 c7d c<48> c89 cf1 c48 c89 cf7 c0f cb6 c03 c48 cc1 ce9 c03 c83 ce7 c07 c42 c0f cb6 c0c c21 c