[20668] 0 20668 18145 8988 26 4 0 0 syz-executor.2 [20679] 0 20679 18178 8995 26 4 0 0 syz-executor.2 [20704] 0 20704 18178 8995 26 4 0 0 syz-executor.2 [20736] 0 20736 18145 18137 41 4 0 0 syz-executor.3 [20762] 0 20762 18178 8991 26 4 0 0 syz-executor.1 INFO: task syz-executor.4:12722 blocked for more than 140 seconds. Not tainted 4.14.123+ #2 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [20857] 0 20857 18145 18137 41 4 0 0 syz-executor.3 syz-executor.4 D30208 12722 26995 0x00000004 Call Trace: [20899] 0 20899 18178 8992 26 4 0 0 syz-executor.2 [20918] 0 20918 18145 18137 41 4 0 0 syz-executor.3 [20930] 0 20930 18145 18137 41 4 0 0 syz-executor.3 schedule+0x92/0x1c0 kernel/sched/core.c:3498 __lock_sock+0x12b/0x220 net/core/sock.c:2238 [21054] 0 21054 18178 8990 26 4 0 0 syz-executor.2 lock_sock_nested+0xe1/0x100 net/core/sock.c:2762 [21059] 0 21059 18145 18137 41 4 0 0 syz-executor.3 lock_sock include/net/sock.h:1462 [inline] packet_setsockopt+0xe19/0x2720 net/packet/af_packet.c:3679 [21097] 0 21097 18244 9001 26 4 0 0 syz-executor.2 [21190] 0 21190 18145 18137 41 4 0 0 syz-executor.3 [21231] 0 21231 18145 18137 41 4 0 0 syz-executor.3 SYSC_setsockopt net/socket.c:1865 [inline] SyS_setsockopt+0x12b/0x210 net/socket.c:1844 [21233] 0 21233 18145 18137 41 4 0 0 syz-executor.0 [21245] 0 21245 18145 18137 41 4 0 0 syz-executor.3 do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292 Showing all locks held in the system: [21249] 0 21249 18145 18137 41 4 0 0 syz-executor.3 1 lock held by khungtaskd/23: #0: (tasklist_lock){.+.+}, at: [<000000009a6c4727>] debug_show_all_locks+0x7c/0x21a kernel/locking/lockdep.c:4541 1 lock held by rsyslogd/1631: #0: (&ei->i_mmap_sem){++++}, at: [<000000008a3a3e0e>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by getty/1759: #0: (&tty->ldisc_sem){++++}, at: [<00000000daf68199>] tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:284 #1: (&ldata->atomic_read_lock){+.+.}, at: [<000000004cfeded6>] n_tty_read+0x1f7/0x1700 drivers/tty/n_tty.c:2156 1 lock held by syz-fuzzer/1790: #0: (&ei->i_mmap_sem){++++}, at: [<000000008a3a3e0e>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 1 lock held by syz-fuzzer/1797: #0: (&ei->i_mmap_sem){++++}, at: [<000000008a3a3e0e>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 1 lock held by syz-fuzzer/1809: #0: (&ei->i_mmap_sem){++++}, at: [<000000008a3a3e0e>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 2 locks held by kworker/u4:9/32711: #0: ("events_unbound"){+.+.}, at: [<000000002a6f7b8e>] process_one_work+0x6e5/0x1510 kernel/workqueue.c:2105 #1: ((&sub_info->work)){+.+.}, at: [<00000000e4f03263>] process_one_work+0x71b/0x1510 kernel/workqueue.c:2109 2 locks held by kworker/u4:1/5167: #0: ("events_unbound"){+.+.}, at: [<000000002a6f7b8e>] process_one_work+0x6e5/0x1510 kernel/workqueue.c:2105 #1: ((&sub_info->work)){+.+.}, at: [<00000000e4f03263>] process_one_work+0x71b/0x1510 kernel/workqueue.c:2109 1 lock held by modprobe/12727: #0: (&ei->i_mmap_sem){++++}, at: [<000000008a3a3e0e>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 1 lock held by modprobe/12734: #0: (&ei->i_mmap_sem){++++}, at: [<000000008a3a3e0e>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 1 lock held by init/12738: #0: (&ei->i_mmap_sem){++++}, at: [<000000008a3a3e0e>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178 1 lock held by getty/12739: #0: (&type->i_mutex_dir_key#3){++++}, at: [<0000000069ef8df2>] inode_lock_shared include/linux/fs.h:725 [inline] #0: (&type->i_mutex_dir_key#3){++++}, at: [<0000000069ef8df2>] do_last fs/namei.c:3360 [inline] #0: (&type->i_mutex_dir_key#3){++++}, at: [<0000000069ef8df2>] path_openat+0x14aa/0x2b70 fs/namei.c:3597 1 lock held by init/12741: #0: (&mm->mmap_sem){++++}, at: [<00000000d6ca40d1>] __do_page_fault+0x871/0xb80 arch/x86/mm/fault.c:1359 ============================================= [21255] 0 21255 18145 18137 41 4 0 0 syz-executor.3 [21262] 0 21262 18211 8995 26 4 0 0 syz-executor.1 [21293] 0 21293 18244 8751 27 3 0 0 syz-executor.0 [21305] 0 21305 18211 8994 26 4 0 0 syz-executor.1 [21323] 0 21323 18211 8994 26 4 0 0 syz-executor.1 [21343] 0 21343 18145 18137 41 4 0 0 syz-executor.5 [21616] 0 21616 18211 8999 26 4 0 0 syz-executor.2 [21765] 0 21765 18178 9000 26 4 0 0 syz-executor.2 [21837] 0 21837 18145 8988 26 4 0 0 syz-executor.5 [21848] 0 21848 18145 18137 41 4 0 0 syz-executor.0 [21869] 0 21869 18145 10676 27 4 0 0 syz-executor.5 [21875] 0 21875 18145 10274 26 4 0 0 syz-executor.5 [21905] 0 21905 18145 18137 41 4 0 0 syz-executor.0 [21967] 0 21967 18145 9901 26 4 0 0 syz-executor.0 [21975] 0 21975 18145 9852 26 4 0 0 syz-executor.2 [21977] 0 21977 18145 10963 28 4 0 0 syz-executor.0 [21998] 0 21998 18145 8745 25 3 0 0 syz-executor.3 [22015] 0 22015 18145 10002 26 4 0 0 syz-executor.2 [22018] 0 22018 18145 8745 25 3 0 0 syz-executor.3 [22035] 0 22035 18145 8745 25 3 0 0 syz-executor.3 [22048] 0 22048 18145 9692 26 4 0 0 syz-executor.1 [22068] 0 22068 18145 10993 28 4 0 0 syz-executor.0 NMI backtrace for cpu 1 CPU: 1 PID: 23 Comm: khungtaskd Not tainted 4.14.123+ #2 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0xb9/0x10e lib/dump_stack.c:53 nmi_cpu_backtrace.cold+0x47/0x86 lib/nmi_backtrace.c:101 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 1790 Comm: syz-fuzzer Not tainted 4.14.123+ #2 task: 00000000c1ef7049 task.stack: 000000006c62f6a9 RIP: 0010:lock_release+0x51/0x730 kernel/locking/lockdep.c:4003 RSP: 0000:ffff8881cf86f130 EFLAGS: 00000802 RAX: dffffc0000000000 RBX: 1ffff11039f0de29 RCX: 1ffffffff3f94e84 RDX: ffffed1039f0de29 RSI: 0000000000000001 RDI: ffffffff9fed3c20 RBP: ffff8881d0a8af00 R08: 0000000000000000 R09: 00000000000a0025 R10: ffff8881d0a8b780 R11: 0000000000000001 R12: ffffffff9fed3c20 R13: ffffea000759ed80 R14: 0000000000000002 R15: dffffc0000000000 FS: 000000c420026068(0000) GS:ffff8881dba00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f3c4cfe3ec5 CR3: 00000001d713a005 CR4: 00000000001606b0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 Call Trace: rcu_lock_release include/linux/rcupdate.h:249 [inline] rcu_read_unlock include/linux/rcupdate.h:687 [inline] page_evictable+0x145/0x1f0 mm/vmscan.c:3979 putback_inactive_pages+0x259/0xd50 mm/vmscan.c:1713 shrink_inactive_list+0x4ae/0x1170 mm/vmscan.c:1843 shrink_list mm/vmscan.c:2179 [inline] shrink_node_memcg+0x622/0x1350 mm/vmscan.c:2444 shrink_node+0x2fa/0xbf0 mm/vmscan.c:2636 shrink_zones mm/vmscan.c:2818 [inline] do_try_to_free_pages+0x350/0xd80 mm/vmscan.c:2876 try_to_free_pages+0x20a/0x6c0 mm/vmscan.c:3082 __perform_reclaim mm/page_alloc.c:3601 [inline] __alloc_pages_direct_reclaim mm/page_alloc.c:3623 [inline] __alloc_pages_slowpath mm/page_alloc.c:4010 [inline] __alloc_pages_nodemask+0xac8/0x22e0 mm/page_alloc.c:4219 __alloc_pages include/linux/gfp.h:461 [inline] __alloc_pages_node include/linux/gfp.h:474 [inline] alloc_pages_node include/linux/gfp.h:488 [inline] __page_cache_alloc include/linux/pagemap.h:226 [inline] pagecache_get_page+0x246/0x790 mm/filemap.c:1494 filemap_fault+0xc90/0x1810 mm/filemap.c:2495 ext4_filemap_fault+0x84/0xb0 fs/ext4/inode.c:6179 __do_fault+0x100/0x380 mm/memory.c:3223 do_read_fault mm/memory.c:3633 [inline] do_fault mm/memory.c:3759 [inline] handle_pte_fault mm/memory.c:3989 [inline] __handle_mm_fault+0x9a0/0x2640 mm/memory.c:4113 handle_mm_fault+0x2e0/0x6c9 mm/memory.c:4150 __do_page_fault+0x466/0xb80 arch/x86/mm/fault.c:1423 page_fault+0x42/0x50 arch/x86/entry/entry_64.S:1120 RIP: 00f1:0x11 RSP: b4d260df:000000c420035f28 EFLAGS: 00430120 Code: c7 44 24 18 b3 8a b5 41 48 c1 eb 03 48 c7 44 24 20 dc 3a c4 9f 48 8d 14 03 65 48 8b 2c 25 c0 de 01 00 48 c7 44 24 28 b0 03 c0 9d <48> 8d bd 2c 08 00 00 c7 02 f1 f1 f1 f1 c7 42 04 04 f3 f3 f3 48 [22127] 0 22127 18145 18137 41 4 0 0 syz-executor.5