INFO: task udevd:2965 blocked for more than 143 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:udevd state:D stack:25976 pid: 2965 ppid: 1 flags:0x00000000
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
do_inode_permission fs/namei.c:457 [inline]
inode_permission.part.0+0x3d6/0x670 fs/namei.c:524
inode_permission fs/namei.c:505 [inline]
may_lookup fs/namei.c:1737 [inline]
link_path_walk.part.0+0x92f/0xf70 fs/namei.c:2289
link_path_walk fs/namei.c:2271 [inline]
path_lookupat+0xc8/0x860 fs/namei.c:2498
filename_lookup+0x1c6/0x590 fs/namei.c:2528
user_path_at_empty+0x42/0x60 fs/namei.c:2851
do_readlinkat+0xcd/0x2f0 fs/stat.c:456
__do_sys_readlink fs/stat.c:489 [inline]
__se_sys_readlink fs/stat.c:486 [inline]
__x64_sys_readlink+0x74/0xb0 fs/stat.c:486
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f5bcf727277
RSP: 002b:00007fffe76a6098 EFLAGS: 00000246 ORIG_RAX: 0000000000000059
RAX: ffffffffffffffda RBX: 00007fffe76a60a8 RCX: 00007f5bcf727277
RDX: 0000000000000400 RSI: 00007fffe76a60a8 RDI: 00007fffe76a6588
RBP: 0000000000000400 R08: 0000000000007fff R09: 00007fffe76a6c60
R10: 0000000000000005 R11: 0000000000000246 R12: 00007fffe76a6588
R13: 00007fffe76a64f8 R14: 0000560fc52af2c0 R15: 0000000000000000
INFO: task syz-executor.2:3631 blocked for more than 143 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2 state:D stack:23704 pid: 3631 ppid: 1 flags:0x00000004
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
do_inode_permission fs/namei.c:457 [inline]
inode_permission.part.0+0x3d6/0x670 fs/namei.c:524
inode_permission fs/namei.c:505 [inline]
may_lookup fs/namei.c:1737 [inline]
link_path_walk.part.0+0x92f/0xf70 fs/namei.c:2289
link_path_walk fs/namei.c:2272 [inline]
path_openat+0x260/0x2910 fs/namei.c:3605
do_filp_open+0x1aa/0x400 fs/namei.c:3636
do_sys_openat2+0x16d/0x4c0 fs/open.c:1213
do_sys_open fs/open.c:1229 [inline]
__do_sys_openat fs/open.c:1245 [inline]
__se_sys_openat fs/open.c:1240 [inline]
__x64_sys_openat+0x13f/0x1f0 fs/open.c:1240
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f3ceb688c28
RSP: 002b:00007fff27877fb0 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000a91 RCX: 00007f3ceb688c28
RDX: 0000000000090800 RSI: 00007f3ceb6e229c RDI: 00000000ffffff9c
RBP: 00007fff2787807c R08: 0000000000090800 R09: 00007f3ceb6e229c
R10: 0000000000000000 R11: 0000000000000287 R12: 0000000000000000
R13: 00000000000af143 R14: 000000000000000d R15: 00007fff278780e0
INFO: task syz-executor.0:3632 blocked for more than 144 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.0 state:D stack:24240 pid: 3632 ppid: 1 flags:0x00000004
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
do_inode_permission fs/namei.c:457 [inline]
inode_permission.part.0+0x3d6/0x670 fs/namei.c:524
inode_permission fs/namei.c:505 [inline]
may_lookup fs/namei.c:1737 [inline]
link_path_walk.part.0+0x92f/0xf70 fs/namei.c:2289
link_path_walk fs/namei.c:2272 [inline]
path_openat+0x260/0x2910 fs/namei.c:3605
do_filp_open+0x1aa/0x400 fs/namei.c:3636
do_sys_openat2+0x16d/0x4c0 fs/open.c:1213
do_sys_open fs/open.c:1229 [inline]
__do_sys_openat fs/open.c:1245 [inline]
__se_sys_openat fs/open.c:1240 [inline]
__x64_sys_openat+0x13f/0x1f0 fs/open.c:1240
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f9a4b888c28
RSP: 002b:00007ffd64531390 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000780 RCX: 00007f9a4b888c28
RDX: 0000000000090800 RSI: 00007f9a4b8e229c RDI: 00000000ffffff9c
RBP: 00007ffd6453145c R08: 0000000000090800 R09: 00007f9a4b8e229c
R10: 0000000000000000 R11: 0000000000000287 R12: 0000000000000000
R13: 00000000000af105 R14: 0000000000000005 R15: 00007ffd645314c0
INFO: task syz-executor.1:3633 blocked for more than 145 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.1 state:D stack:22784 pid: 3633 ppid: 1 flags:0x00000004
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
do_inode_permission fs/namei.c:457 [inline]
inode_permission.part.0+0x3d6/0x670 fs/namei.c:524
inode_permission fs/namei.c:505 [inline]
may_lookup fs/namei.c:1737 [inline]
link_path_walk.part.0+0x92f/0xf70 fs/namei.c:2289
link_path_walk fs/namei.c:2272 [inline]
path_openat+0x260/0x2910 fs/namei.c:3605
do_filp_open+0x1aa/0x400 fs/namei.c:3636
do_sys_openat2+0x16d/0x4c0 fs/open.c:1213
do_sys_open fs/open.c:1229 [inline]
__do_sys_openat fs/open.c:1245 [inline]
__se_sys_openat fs/open.c:1240 [inline]
__x64_sys_openat+0x13f/0x1f0 fs/open.c:1240
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f7451a88c28
RSP: 002b:00007ffc2b8271e0 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000b9d RCX: 00007f7451a88c28
RDX: 0000000000090800 RSI: 00007f7451ae229c RDI: 00000000ffffff9c
RBP: 00007ffc2b8272ac R08: 0000000000090800 R09: 00007f7451ae229c
R10: 0000000000000000 R11: 0000000000000287 R12: 0000000000000000
R13: 00000000000af15b R14: 0000000000000003 R15: 00007ffc2b827310
INFO: task syz-executor.3:3634 blocked for more than 145 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.3 state:D stack:23368 pid: 3634 ppid: 1 flags:0x00000004
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
do_inode_permission fs/namei.c:457 [inline]
inode_permission.part.0+0x3d6/0x670 fs/namei.c:524
inode_permission fs/namei.c:505 [inline]
may_lookup fs/namei.c:1737 [inline]
link_path_walk.part.0+0x92f/0xf70 fs/namei.c:2289
link_path_walk fs/namei.c:2272 [inline]
path_openat+0x260/0x2910 fs/namei.c:3605
do_filp_open+0x1aa/0x400 fs/namei.c:3636
do_sys_openat2+0x16d/0x4c0 fs/open.c:1213
do_sys_open fs/open.c:1229 [inline]
__do_sys_openat fs/open.c:1245 [inline]
__se_sys_openat fs/open.c:1240 [inline]
__x64_sys_openat+0x13f/0x1f0 fs/open.c:1240
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f0677a88c28
RSP: 002b:00007ffc561c0960 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000be5 RCX: 00007f0677a88c28
RDX: 0000000000090800 RSI: 00007f0677ae229c RDI: 00000000ffffff9c
RBP: 00007ffc561c0a2c R08: 0000000000090800 R09: 00007f0677ae229c
R10: 0000000000000000 R11: 0000000000000287 R12: 0000000000000000
R13: 00000000000aef97 R14: 0000000000000005 R15: 00007ffc561c0a90
INFO: task syz-executor.5:3635 blocked for more than 146 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.5 state:D stack:24192 pid: 3635 ppid: 1 flags:0x00000004
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
do_inode_permission fs/namei.c:457 [inline]
inode_permission.part.0+0x3d6/0x670 fs/namei.c:524
inode_permission fs/namei.c:505 [inline]
may_lookup fs/namei.c:1737 [inline]
link_path_walk.part.0+0x92f/0xf70 fs/namei.c:2289
link_path_walk fs/namei.c:2272 [inline]
path_openat+0x260/0x2910 fs/namei.c:3605
do_filp_open+0x1aa/0x400 fs/namei.c:3636
do_sys_openat2+0x16d/0x4c0 fs/open.c:1213
do_sys_open fs/open.c:1229 [inline]
__do_sys_openat fs/open.c:1245 [inline]
__se_sys_openat fs/open.c:1240 [inline]
__x64_sys_openat+0x13f/0x1f0 fs/open.c:1240
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f9a29c88c28
RSP: 002b:00007ffe747b8b60 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000cc6 RCX: 00007f9a29c88c28
RDX: 0000000000090800 RSI: 00007f9a29ce229c RDI: 00000000ffffff9c
RBP: 00007ffe747b8c2c R08: 0000000000090800 R09: 00007f9a29ce229c
R10: 0000000000000000 R11: 0000000000000287 R12: 0000000000000000
R13: 00000000000af150 R14: 000000000000000a R15: 00007ffe747b8c90
INFO: task syz-executor.4:3636 blocked for more than 146 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.4 state:D stack:22464 pid: 3636 ppid: 1 flags:0x00000004
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
do_inode_permission fs/namei.c:457 [inline]
inode_permission.part.0+0x3d6/0x670 fs/namei.c:524
inode_permission fs/namei.c:505 [inline]
may_lookup fs/namei.c:1737 [inline]
link_path_walk.part.0+0x92f/0xf70 fs/namei.c:2289
link_path_walk fs/namei.c:2272 [inline]
path_openat+0x260/0x2910 fs/namei.c:3605
do_filp_open+0x1aa/0x400 fs/namei.c:3636
do_sys_openat2+0x16d/0x4c0 fs/open.c:1213
do_sys_open fs/open.c:1229 [inline]
__do_sys_openat fs/open.c:1245 [inline]
__se_sys_openat fs/open.c:1240 [inline]
__x64_sys_openat+0x13f/0x1f0 fs/open.c:1240
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f8f9bc88c28
RSP: 002b:00007ffe32b99380 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000c88 RCX: 00007f8f9bc88c28
RDX: 0000000000090800 RSI: 00007f8f9bce229c RDI: 00000000ffffff9c
RBP: 00007ffe32b9944c R08: 0000000000090800 R09: 00007f8f9bce229c
R10: 0000000000000000 R11: 0000000000000287 R12: 0000000000000000
R13: 00000000000af185 R14: 0000000000000003 R15: 00007ffe32b994b0
INFO: task udevd:3768 blocked for more than 147 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:udevd state:D stack:25976 pid: 3768 ppid: 2965 flags:0x00004000
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
do_inode_permission fs/namei.c:457 [inline]
inode_permission.part.0+0x3d6/0x670 fs/namei.c:524
inode_permission fs/namei.c:505 [inline]
may_lookup fs/namei.c:1737 [inline]
link_path_walk.part.0+0x92f/0xf70 fs/namei.c:2289
link_path_walk fs/namei.c:2271 [inline]
path_lookupat+0xc8/0x860 fs/namei.c:2498
filename_lookup+0x1c6/0x590 fs/namei.c:2528
vfs_statx+0x148/0x390 fs/stat.c:228
vfs_fstatat+0x8c/0xb0 fs/stat.c:255
__do_sys_newfstatat+0x91/0x110 fs/stat.c:425
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f5bcf7251da
RSP: 002b:00007fffe76a1808 EFLAGS: 00000206 ORIG_RAX: 0000000000000106
RAX: ffffffffffffffda RBX: 0000560fc52e48a0 RCX: 00007f5bcf7251da
RDX: 00007fffe76a1818 RSI: 00007fffe76a18a8 RDI: 00000000ffffff9c
RBP: 0000560fc52eff0f R08: 0000560fc52eff0f R09: 0000000000000000
R10: 0000000000000100 R11: 0000000000000206 R12: 0000000000000000
R13: 0000560fc52e4990 R14: 00007fffe76a18a8 R15: 0000560fc3fcd160
INFO: task udevd:3769 blocked for more than 147 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:udevd state:D stack:26392 pid: 3769 ppid: 2965 flags:0x00000000
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_getattr+0xe8/0x160 fs/kernfs/inode.c:192
vfs_getattr_nosec+0x2b4/0x370 fs/stat.c:123
vfs_getattr fs/stat.c:160 [inline]
vfs_statx+0x193/0x390 fs/stat.c:232
vfs_fstatat+0x8c/0xb0 fs/stat.c:255
__do_sys_newfstatat+0x91/0x110 fs/stat.c:425
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f5bcf7251da
RSP: 002b:00007fffe769efc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000106
RAX: ffffffffffffffda RBX: 00007f5bcf7f2380 RCX: 00007f5bcf7251da
RDX: 00007fffe769efd0 RSI: 00007f5bcf7bb75a RDI: 0000000000000009
RBP: 0000560fc52e6060 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000001000 R11: 0000000000000206 R12: 0000560fc52e6060
R13: 0000000000000000 R14: 00007fffe769f5a8 R15: 0000000000003fff
INFO: task udevd:4101 blocked for more than 148 seconds.
Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:udevd state:D stack:26424 pid: 4101 ppid: 2965 flags:0x00004000
Call Trace:
context_switch kernel/sched/core.c:5073 [inline]
__schedule+0xa9a/0x4cc0 kernel/sched/core.c:6388
schedule+0xd2/0x1f0 kernel/sched/core.c:6460
rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1032
__down_read_common kernel/locking/rwsem.c:1214 [inline]
__down_read kernel/locking/rwsem.c:1223 [inline]
down_read+0xe2/0x440 kernel/locking/rwsem.c:1463
kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
do_inode_permission fs/namei.c:457 [inline]
inode_permission.part.0+0x3d6/0x670 fs/namei.c:524
inode_permission fs/namei.c:505 [inline]
may_lookup fs/namei.c:1737 [inline]
link_path_walk.part.0+0x92f/0xf70 fs/namei.c:2289
link_path_walk fs/namei.c:2272 [inline]
path_openat+0x260/0x2910 fs/namei.c:3605
do_filp_open+0x1aa/0x400 fs/namei.c:3636
do_sys_openat2+0x16d/0x4c0 fs/open.c:1213
do_sys_open fs/open.c:1229 [inline]
__do_sys_openat fs/open.c:1245 [inline]
__se_sys_openat fs/open.c:1240 [inline]
__x64_sys_openat+0x13f/0x1f0 fs/open.c:1240
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f5bcf725697
RSP: 002b:00007fffe769f070 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000560fc52e6060 RCX: 00007f5bcf725697
RDX: 0000000000080000 RSI: 00007fffe769f1a8 RDI: 00000000ffffff9c
RBP: 00007fffe769f1a8 R08: 0000000000000008 R09: 0000000000000001
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000080000
R13: 0000560fc52e6060 R14: 0000000000000001 R15: 0000560fc3fcd160
Showing all locks held in the system:
1 lock held by khungtaskd/28:
#0: ffffffff8bd7f5e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 kernel/locking/lockdep.c:6467
1 lock held by udevd/2965:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
2 locks held by getty/3274:
#0: ffff88814c2da098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:244
#1: ffffc90001bf92e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xcea/0x1230 drivers/tty/n_tty.c:2075
3 locks held by kworker/0:3/3602:
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: arch_atomic_long_set include/linux/atomic/atomic-long.h:41 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: atomic_long_set include/linux/atomic/atomic-instrumented.h:1280 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:636 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:663 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x87a/0x1610 kernel/workqueue.c:2260
#1: ffffc9000306fda8 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610 kernel/workqueue.c:2264
#2: ffffffff8d56f1e8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0xe/0x20 net/ipv6/addrconf.c:4603
1 lock held by syz-executor.2/3631:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
1 lock held by syz-executor.0/3632:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
1 lock held by syz-executor.1/3633:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
1 lock held by syz-executor.3/3634:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
1 lock held by syz-executor.5/3635:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
1 lock held by syz-executor.4/3636:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
3 locks held by kworker/1:8/3739:
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: arch_atomic_long_set include/linux/atomic/atomic-long.h:41 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: atomic_long_set include/linux/atomic/atomic-instrumented.h:1280 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:636 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:663 [inline]
#0: ffff88814be9e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x87a/0x1610 kernel/workqueue.c:2260
#1: ffffc90003d77da8 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610 kernel/workqueue.c:2264
#2: ffffffff8d56f1e8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0xe/0x20 net/ipv6/addrconf.c:4603
2 locks held by udevd/3767:
#0: ffff88801bf83118 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev.part.0+0x9b/0xc80 block/bdev.c:807
#1: ffff88801bf73b60 (&lo->lo_mutex){+.+.}-{3:3}, at: lo_open+0x75/0x120 drivers/block/loop.c:1728
1 lock held by udevd/3768:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
1 lock held by udevd/3769:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_getattr+0xe8/0x160 fs/kernfs/inode.c:192
1 lock held by udevd/4101:
#0: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_iop_permission+0xc1/0x130 fs/kernfs/inode.c:290
3 locks held by kworker/1:9/5739:
2 locks held by syz-executor.3/23587:
#0: ffffffff8d56f1e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
#0: ffffffff8d56f1e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x3be/0xb80 net/core/rtnetlink.c:5990
#1: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_drain fs/kernfs/dir.c:486 [inline]
#1: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: __kernfs_remove+0x5fc/0xb20 fs/kernfs/dir.c:1376
1 lock held by syz-executor.0/23599:
#0: ffffffff8d56f1e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
#0: ffffffff8d56f1e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x3be/0xb80 net/core/rtnetlink.c:5990
2 locks held by syz-executor.2/23604:
3 locks held by syz-executor.5/23603:
#0: ffff8880400d60e0 (&type->s_umount_key#27/1){+.+.}-{3:3}, at: alloc_super+0x1dd/0xa80 fs/super.c:228
#1: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_activate+0x87/0x240 fs/kernfs/dir.c:1318
#2: ffff888011e11d08 (&sem->wait_lock){....}-{2:2}, at: rwsem_down_write_slowpath+0x68b/0x1110 kernel/locking/rwsem.c:1146
2 locks held by syz-executor.1/23605:
#0: ffff88801c1d9360 (&lo->lo_mutex){+.+.}-{3:3}, at: loop_global_lock_killable drivers/block/loop.c:116 [inline]
#0: ffff88801c1d9360 (&lo->lo_mutex){+.+.}-{3:3}, at: loop_configure+0x1d2/0x1960 drivers/block/loop.c:980
#1: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_add_one+0xa4/0x550 fs/kernfs/dir.c:726
2 locks held by syz-executor.4/23608:
#0: ffff88801c248360 (&lo->lo_mutex){+.+.}-{3:3}, at: loop_global_lock_killable drivers/block/loop.c:116 [inline]
#0: ffff88801c248360 (&lo->lo_mutex){+.+.}-{3:3}, at: loop_configure+0x1d2/0x1960 drivers/block/loop.c:980
#1: ffff888011e11d48 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_add_one+0xa4/0x550 fs/kernfs/dir.c:726
=============================================
NMI backtrace for cpu 0
CPU: 0 PID: 28 Comm: khungtaskd Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106
nmi_cpu_backtrace.cold+0x47/0x144 lib/nmi_backtrace.c:111
nmi_trigger_cpumask_backtrace+0x1e6/0x230 lib/nmi_backtrace.c:62
trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:212 [inline]
watchdog+0xc1d/0xf50 kernel/hung_task.c:369
kthread+0x2e9/0x3a0 kernel/kthread.c:376
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:298
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 23603 Comm: syz-executor.5 Not tainted 5.18.0-rc6-syzkaller-00085-gf3f19f939c11 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:__lock_acquire+0x275/0x56c0 kernel/locking/lockdep.c:4964
Code: d2 74 09 80 fa 03 0f 8e 3d 13 00 00 41 0f b7 44 24 20 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 66 25 00 e0 09 c8 66 41 89 44 24 20 <48> b8 00 00 00 00 00 fc ff df 80 3c 02 00 0f 85 68 3c 00 00 48 8b
RSP: 0018:ffffc9001505f270 EFLAGS: 00000002
RAX: 00000000000005a4 RBX: ffff888011e11d08 RCX: 00000000000005a4
RDX: 1ffff110084a498f RSI: 0000000000000065 RDI: ffff888042524c78
RBP: 0000000000000000 R08: 1ffff110084a498d R09: 0000000000000001
R10: 0000000000000000 R11: 0000000000000001 R12: ffff888042524c70
R13: ffff8880425241c0 R14: 0000000000000000 R15: 0000000000000001
FS: 00007f9a2ad2c700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c01027e550 CR3: 00000000797e5000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
lock_acquire kernel/locking/lockdep.c:5641 [inline]
lock_acquire+0x1ab/0x510 kernel/locking/lockdep.c:5606
__raw_spin_lock_irq include/linux/spinlock_api_smp.h:119 [inline]
_raw_spin_lock_irq+0x32/0x50 kernel/locking/spinlock.c:170
rwsem_down_write_slowpath+0x68b/0x1110 kernel/locking/rwsem.c:1146
__down_write_common kernel/locking/rwsem.c:1259 [inline]
__down_write_common kernel/locking/rwsem.c:1256 [inline]
__down_write kernel/locking/rwsem.c:1268 [inline]
down_write+0x135/0x150 kernel/locking/rwsem.c:1515
kernfs_activate+0x87/0x240 fs/kernfs/dir.c:1318
kernfs_add_one+0x3c6/0x550 fs/kernfs/dir.c:767
__kernfs_create_file+0x29c/0x350 fs/kernfs/file.c:1011
sysfs_add_file_mode_ns+0x20f/0x3f0 fs/sysfs/file.c:294
create_files fs/sysfs/group.c:64 [inline]
internal_create_group+0x322/0xb10 fs/sysfs/group.c:148
internal_create_groups.part.0+0x90/0x140 fs/sysfs/group.c:188
internal_create_groups fs/sysfs/group.c:184 [inline]
sysfs_create_groups+0x25/0x50 fs/sysfs/group.c:214
create_dir lib/kobject.c:68 [inline]
kobject_add_internal+0x31d/0x900 lib/kobject.c:223
kobject_add_varg lib/kobject.c:358 [inline]
kobject_init_and_add+0x101/0x160 lib/kobject.c:441
ext4_register_sysfs+0xb5/0x360 fs/ext4/sysfs.c:526
__ext4_fill_super fs/ext4/super.c:5443 [inline]
ext4_fill_super+0xa92e/0xe970 fs/ext4/super.c:5603
get_tree_bdev+0x440/0x760 fs/super.c:1292
vfs_get_tree+0x89/0x2f0 fs/super.c:1497
do_new_mount fs/namespace.c:3040 [inline]
path_mount+0x1320/0x1fa0 fs/namespace.c:3370
do_mount fs/namespace.c:3383 [inline]
__do_sys_mount fs/namespace.c:3591 [inline]
__se_sys_mount fs/namespace.c:3568 [inline]
__x64_sys_mount+0x27f/0x300 fs/namespace.c:3568
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f9a29c8a61a
Code: 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f9a2ad2bf88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f9a29c8a61a
RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f9a2ad2bfe0
RBP: 00007f9a2ad2c020 R08: 00007f9a2ad2c020 R09: 0000000020000000
R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
R13: 0000000020000100 R14: 00007f9a2ad2bfe0 R15: 0000000020000380
----------------
Code disassembly (best guess):
0: d2 74 09 80 shlb %cl,-0x80(%rcx,%rcx,1)
4: fa cli
5: 03 0f add (%rdi),%ecx
7: 8e 3d 13 00 00 41 mov 0x41000013(%rip),%? # 0x41000020
d: 0f b7 44 24 20 movzwl 0x20(%rsp),%eax
12: 49 8d 7c 24 08 lea 0x8(%r12),%rdi
17: 48 89 fa mov %rdi,%rdx
1a: 48 c1 ea 03 shr $0x3,%rdx
1e: 66 25 00 e0 and $0xe000,%ax
22: 09 c8 or %ecx,%eax
24: 66 41 89 44 24 20 mov %ax,0x20(%r12)
* 2a: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax <-- trapping instruction
31: fc ff df
34: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1)
38: 0f 85 68 3c 00 00 jne 0x3ca6
3e: 48 rex.W
3f: 8b .byte 0x8b