INFO: task kworker/u4:4:2340 blocked for more than 140 seconds. Not tainted 4.9.135+ #61 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. kworker/u4:4 D25880 2340 2 0x80000000 Workqueue: writeback wb_workfn (flush-8:0) ffff8801d9f597c0 ffff88019e840b00 ffff8801d0b67900 ffff8801ca9017c0 ffff8801db621018 ffff8801ce45f190 ffffffff827fa982 ffff8801ce45f168 ffffffff81206ab7 0000000000000000 00ff8801d9f5a068 ffff8801db6218f0 Call Trace: [] schedule+0x7f/0x1b0 kernel/sched/core.c:3553 [] __rwsem_down_write_failed_common kernel/locking/rwsem-xadd.c:526 [inline] [] rwsem_down_write_failed+0x39a/0x730 kernel/locking/rwsem-xadd.c:555 [] call_rwsem_down_write_failed+0x17/0x30 arch/x86/lib/rwsem.S:105 [] __down_write arch/x86/include/asm/rwsem.h:125 [inline] [] down_write+0x5c/0xa0 kernel/locking/rwsem.c:54 [] ext4_map_blocks+0x6d3/0x16d0 fs/ext4/inode.c:605 [] mpage_map_one_extent fs/ext4/inode.c:2387 [inline] [] mpage_map_and_submit_extent fs/ext4/inode.c:2443 [inline] [] ext4_writepages+0x1551/0x2e00 fs/ext4/inode.c:2783 [] do_writepages+0xef/0x1d0 mm/page-writeback.c:2331 [] __writeback_single_inode+0xd9/0x1020 fs/fs-writeback.c:1320 [] writeback_sb_inodes+0x4ac/0xe70 fs/fs-writeback.c:1584 [] wb_writeback+0x2cf/0xbd0 fs/fs-writeback.c:1760 [] wb_do_writeback fs/fs-writeback.c:1894 [inline] [] wb_workfn+0x20e/0xe90 fs/fs-writeback.c:1930 [] process_one_work+0x831/0x1530 kernel/workqueue.c:2092 [] worker_thread+0xd6/0x1140 kernel/workqueue.c:2226 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Showing all locks held in the system: 2 locks held by khungtaskd/24: #0: (rcu_read_lock){......}, at: [] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline] #0: (rcu_read_lock){......}, at: [] watchdog+0x11c/0xa20 kernel/hung_task.c:239 #1: (tasklist_lock){.+.?..}, at: [] debug_show_all_locks+0x79/0x218 kernel/locking/lockdep.c:4336 2 locks held by getty/2024: #0: (&tty->ldisc_sem){++++++}, at: [] ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:367 #1: (&ldata->atomic_read_lock){+.+...}, at: [] n_tty_read+0x202/0x16e0 drivers/tty/n_tty.c:2142 4 locks held by kworker/u4:4/2340: #0: ("writeback"){++++.+}, at: [] process_one_work+0x73c/0x1530 kernel/workqueue.c:2085 #1: ((&(&wb->dwork)->work)){+.+.+.}, at: [] process_one_work+0x774/0x1530 kernel/workqueue.c:2089 #2: (&sbi->s_journal_flag_rwsem){.+.+.+}, at: [] do_writepages+0xef/0x1d0 mm/page-writeback.c:2331 #3: (&ei->i_data_sem){++++..}, at: [] ext4_map_blocks+0x6d3/0x16d0 fs/ext4/inode.c:605 4 locks held by syz-executor5/8451: #0: (&mm->mmap_sem){++++++}, at: [] __do_page_fault+0x272/0xa60 arch/x86/mm/fault.c:1335 #1: (sb_pagefaults){.+.+..}, at: [] sb_start_pagefault include/linux/fs.h:1602 [inline] #1: (sb_pagefaults){.+.+..}, at: [] ext4_page_mkwrite+0x154/0xfe0 fs/ext4/inode.c:5764 #2: (&ei->i_mmap_sem){++++.+}, at: [] ext4_page_mkwrite+0x18e/0xfe0 fs/ext4/inode.c:5767 #3: (&type->s_umount_key#32){++++++}, at: [] try_to_writeback_inodes_sb_nr+0x29/0x70 fs/fs-writeback.c:2358 2 locks held by syz-executor1/8496: #0: (sb_writers#4){.+.+.+}, at: [] sb_start_write include/linux/fs.h:1573 [inline] #0: (sb_writers#4){.+.+.+}, at: [] mnt_want_write+0x3f/0xb0 fs/namespace.c:391 #1: (&sb->s_type->i_mutex_key#9){++++++}, at: [] inode_lock include/linux/fs.h:766 [inline] #1: (&sb->s_type->i_mutex_key#9){++++++}, at: [] do_truncate2+0x128/0x1f0 fs/open.c:61 2 locks held by syz-executor1/8505: #0: (sb_writers#4){.+.+.+}, at: [] sb_start_write include/linux/fs.h:1573 [inline] #0: (sb_writers#4){.+.+.+}, at: [] mnt_want_write+0x3f/0xb0 fs/namespace.c:391 #1: (&sb->s_type->i_mutex_key#9){++++++}, at: [] inode_lock include/linux/fs.h:766 [inline] #1: (&sb->s_type->i_mutex_key#9){++++++}, at: [] do_truncate2+0x128/0x1f0 fs/open.c:61 2 locks held by syz-executor1/8529: #0: (sb_writers#4){.+.+.+}, at: [] sb_start_write include/linux/fs.h:1573 [inline] #0: (sb_writers#4){.+.+.+}, at: [] vfs_fallocate+0x2fe/0x620 fs/open.c:328 #1: (&sb->s_type->i_mutex_key#9){++++++}, at: [] inode_lock include/linux/fs.h:766 [inline] #1: (&sb->s_type->i_mutex_key#9){++++++}, at: [] ext4_fallocate+0x1eb/0x1e80 fs/ext4/extents.c:4974 3 locks held by syz-executor1/8531: #0: (&f->f_pos_lock){+.+.+.}, at: [] __fdget_pos+0xac/0xd0 fs/file.c:781 #1: (sb_writers#4){.+.+.+}, at: [] file_start_write include/linux/fs.h:2640 [inline] #1: (sb_writers#4){.+.+.+}, at: [] vfs_write+0x3eb/0x520 fs/read_write.c:556 #2: (&sb->s_type->i_mutex_key#9){++++++}, at: [] inode_lock include/linux/fs.h:766 [inline] #2: (&sb->s_type->i_mutex_key#9){++++++}, at: [] ext4_file_write_iter+0x122/0xd70 fs/ext4/file.c:100 2 locks held by syz-executor1/8532: #0: (sb_writers#4){.+.+.+}, at: [] sb_start_write include/linux/fs.h:1573 [inline] #0: (sb_writers#4){.+.+.+}, at: [] vfs_fallocate+0x2fe/0x620 fs/open.c:328 #1: (&sb->s_type->i_mutex_key#9){++++++}, at: [] inode_lock include/linux/fs.h:766 [inline] #1: (&sb->s_type->i_mutex_key#9){++++++}, at: [] ext4_fallocate+0x366/0x1e80 fs/ext4/extents.c:4974 ============================================= NMI backtrace for cpu 1 CPU: 1 PID: 24 Comm: khungtaskd Not tainted 4.9.135+ #61 ffff8801d9907d08 ffffffff81b36bf9 0000000000000000 0000000000000001 0000000000000001 0000000000000001 ffffffff81098330 ffff8801d9907d40 ffffffff81b41d09 0000000000000001 0000000000000000 0000000000000003 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] nmi_cpu_backtrace.cold.0+0x48/0x87 lib/nmi_backtrace.c:99 [] nmi_trigger_cpumask_backtrace+0x12c/0x151 lib/nmi_backtrace.c:60 [] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37 [] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline] [] check_hung_task kernel/hung_task.c:125 [inline] [] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline] [] watchdog+0x6ad/0xa20 kernel/hung_task.c:239 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 8509 Comm: syz-executor1 Not tainted 4.9.135+ #61 task: ffff8801c904df00 task.stack: ffff8801ccd70000 RIP: 0010:[] c [] __lock_acquire+0x85a/0x4a10 kernel/locking/lockdep.c:3342 RSP: 0018:ffff8801db607b70 EFLAGS: 00000046 RAX: c7ba480e8ad8512d RBX: ffff8801c904e878 RCX: 00000000ffffffd8 RDX: 000000008ad8512d RSI: ffff8801c904e878 RDI: 0000000000000000 RBP: ffff8801db607d20 R08: ffff8801c904e898 R09: c7ba480e8ad8512d R10: ffff8801c904df00 R11: 0000000000000001 R12: 00000000d2ddd2a4 R13: 0000000000000040 R14: 00000000b804b5b2 R15: 00000000d2d39b7b FS: 00007ff0e84a4700(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fd280862000 CR3: 00000001d3a81000 CR4: 00000000001606b0 DR0: 0000000020000000 DR1: 0000000020000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 Stack: 0000000000000033c 0000000000000005c 0000000000000000c ffff8801c904e89ac ffff8801db607d48c 0000000000000046c ffffffff81279583c ffff8801db607be8c ffffffff81b9ba7bc ffff8801c904e878c 0000000000000000c 0000000000000000c Call Trace: [] lock_acquire+0x130/0x3e0 kernel/locking/lockdep.c:3756 [] seqcount_lockdep_reader_access include/linux/seqlock.h:80 [inline] [] read_seqcount_begin include/linux/seqlock.h:163 [inline] [] ktime_get+0x11a/0x1e0 kernel/time/timekeeping.c:757 [] clockevents_program_event+0x1bc/0x3e0 kernel/time/clockevents.c:331 [] tick_program_event+0xfb/0x180 kernel/time/tick-oneshot.c:47 [] hrtimer_interrupt+0x1e1/0x430 kernel/time/hrtimer.c:1366 [] local_apic_timer_interrupt+0x74/0xa0 arch/x86/kernel/apic/apic.c:937 [] smp_apic_timer_interrupt+0x7c/0xa0 arch/x86/kernel/apic/apic.c:961 [] apic_timer_interrupt+0x9d/0xb0 arch/x86/entry/entry_64.S:648 d [] ? arch_local_irq_restore arch/x86/include/asm/paravirt.h:768 [inline] d [] ? lock_is_held+0xff/0x140 kernel/locking/lockdep.c:3796 [] ___might_sleep+0x1ff/0x260 kernel/sched/core.c:7954 [] __might_sleep+0x95/0x1a0 kernel/sched/core.c:7945 [] __getblk_gfp+0x52/0x700 fs/buffer.c:1384 [] sb_getblk_gfp include/linux/buffer_head.h:325 [inline] [] __read_extent_tree_block+0xad/0x770 fs/ext4/extents.c:521 [] ext4_find_extent+0x351/0x940 fs/ext4/extents.c:920 [] get_ext_path fs/ext4/move_extent.c:39 [inline] [] mext_check_coverage.constprop.2+0x256/0x400 fs/ext4/move_extent.c:106 [] move_extent_per_page fs/ext4/move_extent.c:333 [inline] [] ext4_move_extents+0x17bb/0x2a50 fs/ext4/move_extent.c:681 [] ext4_ioctl+0x27fc/0x3620 fs/ext4/ioctl.c:594 [] vfs_ioctl fs/ioctl.c:43 [inline] [] file_ioctl fs/ioctl.c:493 [inline] [] do_vfs_ioctl+0x1ac/0x11a0 fs/ioctl.c:677 [] SYSC_ioctl fs/ioctl.c:694 [inline] [] SyS_ioctl+0x8f/0xc0 fs/ioctl.c:685 [] do_syscall_64+0x19f/0x550 arch/x86/entry/common.c:285 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Code: c89 c5c c24 c60 c48 c89 c84 c24 c98 c00 c00 c00 ce8 c40 cae cff cff c4c c8b c8c c24 c98 c00 c00 c00 c85 cc0 c44 c8b c5c c24 c60 c4c c8b c54 c24 c58 c0f c84 c1b c0e c00 c00 c<48> cb8 c00 c00 c00 c00 c00 cfc cff cdf c48 c8b c54 c24 c78 c48 cc1 cea c03 c0f cb6 c