[15594] 0 15594 5695 486 16 4 0 -1000 udevd [15602] 0 15602 5695 486 16 4 0 -1000 udevd [15605] 0 15605 5695 486 16 4 0 -1000 udevd [15612] 0 15612 5695 487 16 4 0 -1000 udevd [15614] 0 15614 5695 487 16 4 0 -1000 udevd INFO: task syz-executor3:1857 blocked for more than 140 seconds. [15620] 0 15620 5695 487 16 4 0 -1000 udevd Not tainted 4.14.91+ #1 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [15621] 0 15621 5695 487 16 4 0 -1000 udevd syz-executor3 D25160 1857 1841 0x00000000 Call Trace: [15627] 0 15627 13058 11006 32 3 0 -1000 blkid [15631] 0 15631 12632 10544 31 3 0 -1000 blkid [15633] 0 15633 5695 487 16 4 0 -1000 udevd schedule+0x92/0x1c0 kernel/sched/core.c:3490 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3548 [15634] 0 15634 5695 487 16 4 0 -1000 udevd [15635] 0 15635 5695 487 16 4 0 -1000 udevd __mutex_lock_common kernel/locking/mutex.c:833 [inline] __mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893 [15636] 0 15636 12920 10873 32 3 0 -1000 blkid [15637] 0 15637 13752 11665 33 3 0 -1000 blkid xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 get_info+0x10d/0x570 net/ipv6/netfilter/ip6_tables.c:983 [15640] 0 15640 12346 10293 31 3 0 -1000 blkid [15641] 0 15641 5695 487 16 4 0 -1000 udevd [15642] 0 15642 5695 487 16 4 0 -1000 udevd [15644] 0 15644 11698 9621 30 4 0 -1000 blkid [15648] 0 15648 5695 487 16 4 0 -1000 udevd [15657] 0 15657 12320 10282 31 3 0 -1000 blkid [15663] 0 15663 12278 10214 31 3 0 -1000 blkid [15664] 0 15664 5695 487 16 4 0 -1000 udevd [15665] 0 15665 5695 487 16 4 0 -1000 udevd [15666] 0 15666 5695 488 16 4 0 -1000 udevd [15667] 0 15667 5695 488 16 4 0 -1000 udevd [15668] 0 15668 11938 9885 30 3 0 -1000 blkid [15669] 0 15669 12174 10082 31 3 0 -1000 blkid [15670] 0 15670 12682 10611 32 3 0 -1000 blkid [15671] 0 15671 5695 488 16 4 0 -1000 udevd [15672] 0 15672 11574 9488 30 3 0 -1000 blkid [15674] 0 15674 5695 488 16 4 0 -1000 udevd [15675] 0 15675 11320 9223 29 3 0 -1000 blkid [15678] 0 15678 11618 9555 31 3 0 -1000 blkid [15681] 0 15681 11464 9422 28 3 0 -1000 blkid [15682] 0 15682 5695 488 16 4 0 -1000 udevd [15683] 0 15683 5695 488 16 4 0 -1000 udevd [15684] 0 15684 5695 488 16 4 0 -1000 udevd [15685] 0 15685 11580 9489 29 3 0 -1000 blkid [15686] 0 15686 11850 9753 30 3 0 -1000 blkid [15687] 0 15687 11524 9424 29 3 0 -1000 blkid [15691] 0 15691 5695 488 16 4 0 -1000 udevd [15693] 0 15693 5695 488 16 4 0 -1000 udevd [15695] 0 15695 5695 488 16 4 0 -1000 udevd [15701] 0 15701 10458 8366 28 3 0 -1000 blkid [15702] 0 15702 10902 8828 28 3 0 -1000 blkid [15706] 0 15706 11096 9026 28 3 0 -1000 blkid [15707] 0 15707 10890 8828 28 3 0 -1000 blkid INFO: task syz-executor5:13538 blocked for more than 140 seconds. [15708] 0 15708 11006 8961 28 3 0 -1000 blkid [15709] 0 15709 5695 488 16 4 0 -1000 udevd Not tainted 4.14.91+ #1 [15710] 0 15710 5695 489 16 4 0 -1000 udevd [15711] 0 15711 5695 489 16 4 0 -1000 udevd [15714] 0 15714 5695 489 16 4 0 -1000 udevd "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [15715] 0 15715 5695 489 16 4 0 -1000 udevd [15716] 0 15716 5695 489 16 4 0 -1000 udevd [15717] 0 15717 5695 489 16 4 0 -1000 udevd [15718] 0 15718 5695 489 16 4 0 -1000 udevd [15719] 0 15719 5695 489 16 4 0 -1000 udevd [15720] 0 15720 10254 8169 27 3 0 -1000 blkid [15723] 0 15723 10528 8433 27 3 0 -1000 blkid [15725] 0 15725 10322 8234 27 3 0 -1000 blkid syz-executor5 D25376 13538 13537 0x00000000 Call Trace: [15734] 0 15734 10470 8432 28 3 0 -1000 blkid schedule+0x92/0x1c0 kernel/sched/core.c:3490 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3548 __mutex_lock_common kernel/locking/mutex.c:833 [inline] __mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893 xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 get_info+0x10d/0x570 net/ipv6/netfilter/ip6_tables.c:983 [15735] 0 15735 10152 8102 27 3 0 -1000 blkid [15736] 0 15736 9700 7650 25 3 0 -1000 blkid [15738] 0 15738 5695 489 16 4 0 -1000 udevd [15739] 0 15739 5695 489 16 4 0 -1000 udevd [15740] 0 15740 9874 7868 26 3 0 -1000 blkid [15741] 0 15741 9354 7314 24 3 0 -1000 blkid [15743] 0 15743 9952 7908 26 3 0 -1000 blkid [15744] 0 15744 5695 489 16 4 0 -1000 udevd [15745] 0 15745 5695 489 16 4 0 -1000 udevd [15746] 0 15746 5695 490 16 4 0 -1000 udevd [15747] 0 15747 5695 490 16 4 0 -1000 udevd [15748] 0 15748 5695 490 16 4 0 -1000 udevd [15749] 0 15749 5695 490 16 4 0 -1000 udevd [15752] 0 15752 8834 6786 25 3 0 -1000 blkid Showing all locks held in the system: 1 lock held by khungtaskd/23: #0: (tasklist_lock){.+.+}, at: [] debug_show_all_locks+0x7c/0x21a kernel/locking/lockdep.c:4541 2 locks held by udevd/190: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 3 locks held by rs:main Q:Reg/1623: #0: (&f->f_pos_lock){+.+.}, at: [] __fdget_pos+0xa6/0xc0 fs/file.c:768 #1: (sb_writers#4){.+.+}, at: [] file_start_write include/linux/fs.h:2726 [inline] #1: (sb_writers#4){.+.+}, at: [] vfs_write+0x3d8/0x4d0 fs/read_write.c:545 #2: (&sb->s_type->i_mutex_key#9){++++}, at: [] inode_trylock include/linux/fs.h:735 [inline] #2: (&sb->s_type->i_mutex_key#9){++++}, at: [] ext4_file_write_iter+0x1bb/0xe10 fs/ext4/file.c:230 2 locks held by getty/1753: #0: (&tty->ldisc_sem){++++}, at: [] tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:275 #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1f7/0x1700 drivers/tty/n_tty.c:2156 2 locks held by syz-fuzzer/1781: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by syz-fuzzer/1835: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by syz-executor4/1853: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 1 lock held by syz-executor3/1857: #0: (&xt[i].mutex){+.+.}, at: [] xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 1 lock held by syz-executor5/13538: #0: (&xt[i].mutex){+.+.}, at: [] xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 2 locks held by udevd/15440: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15441: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15442: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15447: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15448: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15449: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15451: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15452: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 1 lock held by blkid/15457: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 1 lock held by blkid/15464: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 1 lock held by blkid/15465: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 2 locks held by udevd/15469: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15472: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15482: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15484: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15487: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15502: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15505: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 1 lock held by blkid/15507: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 1 lock held by blkid/15508: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 1 lock held by blkid/15510: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 1 lock held by blkid/15511: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 1 lock held by blkid/15512: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 2 locks held by udevd/15513: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 [15755] 0 15755 9336 7248 25 3 0 -1000 blkid 2 locks held by udevd/15514: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 1 lock held by blkid/15515: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 1 lock held by blkid/15520: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 1 lock held by blkid/15521: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 2 locks held by udevd/15534: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by udevd/15716: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 ============================================= [15757] 0 15757 9338 7250 25 3 0 -1000 blkid NMI backtrace for cpu 1 CPU: 1 PID: 23 Comm: khungtaskd Not tainted 4.14.91+ #1 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0xb9/0x10e lib/dump_stack.c:53 nmi_cpu_backtrace.cold+0x47/0x86 lib/nmi_backtrace.c:101 [15765] 0 15765 8878 6785 24 3 0 -1000 blkid Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 15719 Comm: udevd Not tainted 4.14.91+ #1 task: ffff8881c63b0000 task.stack: ffff8881a4968000 RIP: 0010:__sanitizer_cov_trace_pc+0x9/0x60 kernel/kcov.c:65 RSP: 0000:ffff8881a496f1f8 EFLAGS: 00000046 RAX: ffff8881c63b0000 RBX: ffffea00070fc5c0 RCX: 1ffffffff3e19284 RDX: 1ffffd4000e1f8bc RSI: ffffffff9ed4fe00 RDI: ffffea00070fc5e0 RBP: ffffea0006fefda0 R08: 0000000000000000 R09: 00000000000a0025 R10: ffff8881c63b08a8 R11: 0000000000000001 R12: dead000000000100 R13: ffffea00070fc5c0 R14: 0000000000000002 R15: dffffc0000000000 FS: 00007f74406807a0(0000) GS:ffff8881db800000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f7440481890 CR3: 00000001cc77c004 CR4: 00000000001606b0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 Call Trace: constant_test_bit arch/x86/include/asm/bitops.h:325 [inline] PageMlocked include/linux/page-flags.h:347 [inline] page_evictable+0xd4/0x1f0 mm/vmscan.c:3970 putback_inactive_pages+0x259/0xd50 mm/vmscan.c:1703 shrink_inactive_list+0x4ae/0x1170 mm/vmscan.c:1833 shrink_list mm/vmscan.c:2175 [inline] shrink_node_memcg+0x5f9/0x1320 mm/vmscan.c:2440 shrink_node+0x2fa/0xbf0 mm/vmscan.c:2632 shrink_zones mm/vmscan.c:2814 [inline] do_try_to_free_pages+0x350/0xd80 mm/vmscan.c:2876 try_to_free_pages+0x20a/0x6c0 mm/vmscan.c:3082 __perform_reclaim mm/page_alloc.c:3593 [inline] __alloc_pages_direct_reclaim mm/page_alloc.c:3614 [inline] __alloc_pages_slowpath mm/page_alloc.c:4001 [inline] __alloc_pages_nodemask+0xac8/0x22e0 mm/page_alloc.c:4210 __alloc_pages include/linux/gfp.h:461 [inline] __alloc_pages_node include/linux/gfp.h:474 [inline] alloc_pages_node include/linux/gfp.h:488 [inline] __page_cache_alloc include/linux/pagemap.h:226 [inline] page_cache_read mm/filemap.c:2286 [inline] filemap_fault+0x900/0x14a0 mm/filemap.c:2470 ext4_filemap_fault+0x84/0xb0 fs/ext4/inode.c:6179 __do_fault+0x80/0x210 mm/memory.c:3194 do_read_fault mm/memory.c:3604 [inline] do_fault mm/memory.c:3730 [inline] handle_pte_fault mm/memory.c:3960 [inline] __handle_mm_fault+0x9a0/0x2640 mm/memory.c:4084 handle_mm_fault+0x2e0/0x6c9 mm/memory.c:4121 __do_page_fault+0x466/0xb80 arch/x86/mm/fault.c:1425 page_fault+0x42/0x50 arch/x86/entry/entry_64.S:1104 RIP: d9a5ded7:0x5 RSP: 2056030:0000000000625500 EFLAGS: 02060a10 Code: 89 3d fc 1a 71 03 41 bd f4 ff ff ff e8 0c 50 f1 ff 48 c7 05 e6 1a 71 03 00 00 00 00 e9 90 ed ff ff 90 65 48 8b 04 25 c0 de 01 00 <48> 85 c0 74 1a 65 8b 15 bb 51 f1 62 81 e2 00 01 1f 00 75 0b 8b