[23761] 0 23761 18146 8715 25 3 0 0 syz-executor.5 [23768] 0 23768 18179 12845 33 4 0 0 syz-executor.1 [23784] 0 23784 18179 12845 33 4 0 0 syz-executor.1 [23823] 0 23823 18179 12845 33 4 0 0 syz-executor.1 INFO: task syz-executor.1:1850 blocked for more than 140 seconds. Not tainted 4.14.107+ #33 [23870] 0 23870 18179 12845 33 4 0 0 syz-executor.1 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [23902] 0 23902 18179 12845 33 4 0 0 syz-executor.1 syz-executor.1 D24752 1850 1841 0x00000000 Call Trace: [23913] 0 23913 18180 8728 26 4 0 1000 syz-executor.0 [23940] 0 23940 18180 8728 26 4 0 1000 syz-executor.0 [23956] 0 23956 18179 12845 33 4 0 0 syz-executor.1 schedule+0x92/0x1c0 kernel/sched/core.c:3492 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3550 __mutex_lock_common kernel/locking/mutex.c:833 [inline] __mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893 [23958] 0 23958 18212 8752 26 4 0 0 syz-executor.5 [24013] 0 24013 18179 12845 33 4 0 0 syz-executor.1 [24074] 0 24074 18179 12845 33 4 0 0 syz-executor.1 [24113] 0 24113 18179 12845 33 4 0 0 syz-executor.1 [24131] 0 24131 18179 12845 33 4 0 0 syz-executor.1 xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 get_info+0x11b/0x580 net/ipv4/netfilter/arp_tables.c:801 [24189] 0 24189 18179 12845 33 4 0 0 syz-executor.1 [24204] 0 24204 18179 8750 26 4 0 0 syz-executor.5 [24232] 0 24232 18179 12845 33 4 0 0 syz-executor.1 [24252] 0 24252 18081 15 23 3 0 0 syz-executor.2 [24253] 0 24253 18080 8731 24 4 0 0 syz-executor.2 [24418] 0 24418 18113 8716 26 3 0 0 syz-executor.1 [24423] 0 24423 18146 8749 27 4 0 0 syz-executor.5 [24441] 0 24441 18146 8750 28 4 0 0 syz-executor.3 [24487] 0 24487 18146 8717 25 3 0 0 syz-executor.5 [24496] 0 24496 18113 8716 26 3 0 0 syz-executor.1 [24537] 0 24537 18179 8752 26 4 0 0 syz-executor.3 [24562] 0 24562 18113 8716 26 3 0 0 syz-executor.1 [24617] 0 24617 18179 12845 33 4 0 0 syz-executor.1 INFO: task syz-executor.3:2577 blocked for more than 140 seconds. Not tainted 4.14.107+ #33 [24679] 0 24679 18179 12845 33 4 0 0 syz-executor.1 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D25640 2577 2576 0x00000000 [24707] 0 24707 18179 12845 33 4 0 0 syz-executor.1 [24732] 0 24732 18179 12845 33 4 0 0 syz-executor.1 Call Trace: [24739] 0 24739 18146 8748 27 4 0 0 syz-executor.3 [24757] 0 24757 18179 12845 33 4 0 0 syz-executor.1 [24795] 0 24795 18179 12845 33 4 0 0 syz-executor.1 schedule+0x92/0x1c0 kernel/sched/core.c:3492 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3550 __mutex_lock_common kernel/locking/mutex.c:833 [inline] __mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893 [24819] 0 24819 18146 8750 27 4 0 0 syz-executor.1 [24882] 0 24882 18113 8748 27 4 0 0 syz-executor.1 [24894] 0 24894 18146 8750 27 4 0 0 syz-executor.1 [25011] 0 25011 18179 12845 33 4 0 0 syz-executor.1 [25067] 0 25067 18179 12845 33 4 0 0 syz-executor.1 xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 get_info+0x11b/0x580 net/ipv4/netfilter/arp_tables.c:801 [25115] 0 25115 18179 12845 33 4 0 0 syz-executor.1 [25163] 0 25163 18179 12845 33 4 0 0 syz-executor.1 [25178] 0 25178 18179 12845 33 4 0 0 syz-executor.1 [25218] 0 25218 18113 8748 27 4 0 0 syz-executor.1 [25245] 0 25245 18113 8748 27 4 0 0 syz-executor.1 [25254] 0 25254 18179 12845 33 4 0 0 syz-executor.1 [25257] 0 25257 18146 8745 26 4 0 0 syz-executor.3 [25317] 0 25317 18146 8750 27 4 0 0 syz-executor.1 [25341] 0 25341 18146 8748 26 4 0 0 syz-executor.5 [25384] 0 25384 18146 8750 27 4 0 0 syz-executor.1 [25441] 0 25441 18146 8750 27 4 0 0 syz-executor.1 [25483] 0 25483 18245 8753 33 4 0 0 syz-executor.5 [25497] 0 25497 18146 8750 27 4 0 0 syz-executor.1 INFO: task syz-executor.2:24253 blocked for more than 140 seconds. Not tainted 4.14.107+ #33 [25566] 0 25566 18146 8750 27 4 0 0 syz-executor.1 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [25607] 0 25607 18113 8713 26 3 0 0 syz-executor.3 syz-executor.2 D25640 24253 24252 0x00000000 Call Trace: [25615] 0 25615 18179 8717 26 3 0 0 syz-executor.3 [25630] 0 25630 18146 8750 27 4 0 0 syz-executor.1 schedule+0x92/0x1c0 kernel/sched/core.c:3492 [25643] 0 25643 18113 8709 25 3 0 1000 syz-executor.0 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3550 __mutex_lock_common kernel/locking/mutex.c:833 [inline] __mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893 [25647] 0 25647 18146 8712 25 3 0 1000 syz-executor.0 [25648] 0 25648 18146 8712 25 3 0 1000 syz-executor.0 [25650] 0 25650 18179 8714 25 3 0 1000 syz-executor.0 [25699] 0 25699 18113 8748 27 4 0 0 syz-executor.1 [25705] 0 25705 18146 8750 27 4 0 0 syz-executor.1 xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 [25755] 0 25755 18146 8750 27 4 0 0 syz-executor.1 get_info+0x11b/0x580 net/ipv4/netfilter/arp_tables.c:801 [25780] 0 25780 18146 8750 27 4 0 0 syz-executor.1 [25806] 0 25806 18113 8711 25 3 0 0 syz-executor.3 [25813] 0 25813 18146 8714 25 3 0 0 syz-executor.3 [25815] 0 25815 18113 8708 24 3 0 1000 syz-executor.0 [25847] 0 25847 18146 8750 27 4 0 0 syz-executor.1 [25898] 0 25898 18146 8750 27 4 0 0 syz-executor.1 [25957] 0 25957 18146 8750 27 4 0 0 syz-executor.1 [25964] 0 25964 18179 8762 26 4 0 0 syz-executor.3 [26023] 0 26023 18146 8750 27 4 0 0 syz-executor.1 [26060] 0 26060 18212 8757 30 4 0 0 syz-executor.4 [26081] 0 26081 18113 8748 27 4 0 0 syz-executor.1 INFO: task syz-executor.4:4040 blocked for more than 140 seconds. [26153] 0 26153 18113 8749 27 4 0 0 syz-executor.1 [26179] 0 26179 18113 8748 27 4 0 0 syz-executor.1 Not tainted 4.14.107+ #33 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [26193] 0 26193 18179 12845 33 4 0 0 syz-executor.1 syz-executor.4 D30384 4040 1854 0x00000004 Call Trace: [26212] 0 26212 18179 12845 33 4 0 0 syz-executor.1 [26279] 0 26279 18179 8749 26 4 0 0 syz-executor.5 [26282] 0 26282 18179 8749 26 4 0 0 syz-executor.5 schedule+0x92/0x1c0 kernel/sched/core.c:3492 __lock_sock+0x12b/0x220 net/core/sock.c:2238 [26283] 0 26283 18179 12845 33 4 0 0 syz-executor.1 lock_sock_nested+0xe1/0x100 net/core/sock.c:2762 lock_sock include/net/sock.h:1456 [inline] packet_setsockopt+0x4b7/0x2830 net/packet/af_packet.c:3798 [26356] 0 26356 18179 12845 33 4 0 0 syz-executor.1 [26392] 0 26392 18179 12845 33 4 0 0 syz-executor.1 [26429] 0 26429 18113 8745 26 4 0 0 syz-executor.3 [26440] 0 26440 18179 12845 33 4 0 0 syz-executor.1 [26469] 0 26469 18179 8714 25 3 0 1000 syz-executor.0 INFO: task syz-executor.4:4058 blocked for more than 140 seconds. [26522] 0 26522 18179 12845 33 4 0 0 syz-executor.1 [26558] 0 26558 18113 8748 27 4 0 0 syz-executor.1 Not tainted 4.14.107+ #33 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.4 D29744 4058 1854 0x00000004 [26565] 0 26565 18146 8745 26 4 0 1000 syz-executor.0 [26575] 0 26575 18179 12845 33 4 0 0 syz-executor.1 Call Trace: [26597] 0 26597 18146 8748 26 4 0 0 syz-executor.5 schedule+0x92/0x1c0 kernel/sched/core.c:3492 [26629] 0 26629 18179 12845 33 4 0 0 syz-executor.1 __lock_sock+0x12b/0x220 net/core/sock.c:2238 [26631] 0 26631 18245 8754 27 4 0 0 syz-executor.4 [26731] 0 26731 18146 8750 27 4 0 0 syz-executor.1 lock_sock_nested+0xe1/0x100 net/core/sock.c:2762 lock_sock include/net/sock.h:1456 [inline] packet_setsockopt+0x4b7/0x2830 net/packet/af_packet.c:3798 [26769] 0 26769 18146 8750 27 4 0 0 syz-executor.1 [26781] 0 26781 18113 8747 26 4 0 0 syz-executor.3 [26791] 0 26791 18179 8754 28 4 0 0 syz-executor.3 [26796] 0 26796 18179 8754 28 4 0 0 syz-executor.3 [26821] 0 26821 18146 8750 27 4 0 0 syz-executor.1 [26911] 0 26911 18179 12845 33 4 0 0 syz-executor.1 [26962] 0 26962 18179 12845 33 4 0 0 syz-executor.1 Showing all locks held in the system: 1 lock held by khungtaskd/23: #0: (tasklist_lock){.+.?}, at: [] debug_show_all_locks+0x7c/0x21a kernel/locking/lockdep.c:4541 [26985] 0 26985 18179 12845 33 4 0 0 syz-executor.1 2 locks held by getty/1758: #0: (&tty->ldisc_sem){++++}, at: [] tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:275 #1: (&ldata->atomic_read_lock){+.+.}, at: [] n_tty_read+0x1f7/0x1700 drivers/tty/n_tty.c:2156 1 lock held by syz-executor.1/1850: #0: (&xt[i].mutex){+.+.}, at: [] xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 2 locks held by kworker/u4:4/28337: #0: ("events_unbound"){+.+.}, at: [] process_one_work+0x6e5/0x14e0 kernel/workqueue.c:2085 #1: ((&sub_info->work)){+.+.}, at: [] process_one_work+0x71b/0x14e0 kernel/workqueue.c:2089 2 locks held by kworker/u4:10/28353: #0: ("events_unbound"){+.+.}, at: [] process_one_work+0x6e5/0x14e0 kernel/workqueue.c:2085 #1: ((&sub_info->work)){+.+.}, at: [] process_one_work+0x71b/0x14e0 kernel/workqueue.c:2089 1 lock held by syz-executor.3/2577: #0: (&xt[i].mutex){+.+.}, at: [] xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 2 locks held by kworker/u4:24/19315: #0: ("events_unbound"){+.+.}, at: [] process_one_work+0x6e5/0x14e0 kernel/workqueue.c:2085 #1: ((&sub_info->work)){+.+.}, at: [] process_one_work+0x71b/0x14e0 kernel/workqueue.c:2089 1 lock held by syz-executor.2/24253: #0: (&xt[i].mutex){+.+.}, at: [] xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 ============================================= [27019] 0 27019 18179 12845 33 4 0 0 syz-executor.1 [27042] 0 27042 18179 8749 26 4 0 0 syz-executor.3 [27066] 0 27066 18179 12845 33 4 0 0 syz-executor.1 [27068] 0 27068 18146 8747 26 4 0 0 syz-executor.5 [27122] 0 27122 18179 12845 33 4 0 0 syz-executor.1 [27152] 0 27152 18113 8747 26 4 0 0 syz-executor.5 [27163] 0 27163 18179 12845 33 4 0 0 syz-executor.1 [27183] 0 27183 18179 12845 33 4 0 0 syz-executor.1 [27221] 0 27221 18179 12845 33 4 0 0 syz-executor.1 [27293] 0 27293 18113 8748 27 4 0 0 syz-executor.1 NMI backtrace for cpu 0 CPU: 0 PID: 23 Comm: khungtaskd Not tainted 4.14.107+ #33 Call Trace: [27313] 0 27313 18179 12845 33 4 0 0 syz-executor.1 __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0xb9/0x10e lib/dump_stack.c:53 nmi_cpu_backtrace.cold+0x47/0x86 lib/nmi_backtrace.c:101 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 1863 Comm: syz-executor.5 Not tainted 4.14.107+ #33 task: ffff8881d1515e00 task.stack: ffff8881a5218000 RIP: 0010:queued_spin_lock include/asm-generic/qspinlock.h:88 [inline] RIP: 0010:do_raw_spin_lock+0xb3/0x1c0 kernel/locking/spinlock_debug.c:113 RSP: 0000:ffff8881a521f0a0 EFLAGS: 00000046 RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 RDX: 0000000000000001 RSI: ffff8881d1516680 RDI: ffff8881611adaa4 RBP: ffff8881611adaa0 R08: 0000000000005594 R09: 00000000000c018d R10: ffff8881d1516680 R11: 0000000000000001 R12: ffff8881611adab0 R13: ffff8881611adaa8 R14: ffffea00068278c0 R15: ffff8881611adaa0 FS: 000000000188b940(0000) GS:ffff8881dbb00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000000043fbe6 CR3: 00000001a5220002 CR4: 00000000001606a0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 Call Trace: __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:117 [inline] _raw_spin_lock_irqsave+0x4a/0x60 kernel/locking/spinlock.c:160 __remove_mapping+0x9e/0x560 mm/vmscan.c:680 shrink_page_list+0x1870/0x32b0 mm/vmscan.c:1311 shrink_inactive_list+0x39a/0x1170 mm/vmscan.c:1816 shrink_list mm/vmscan.c:2175 [inline] shrink_node_memcg+0x5f9/0x1320 mm/vmscan.c:2440 shrink_node+0x2fa/0xbf0 mm/vmscan.c:2632 shrink_zones mm/vmscan.c:2814 [inline] do_try_to_free_pages+0x350/0xd80 mm/vmscan.c:2876 try_to_free_pages+0x20a/0x6c0 mm/vmscan.c:3082 __perform_reclaim mm/page_alloc.c:3593 [inline] __alloc_pages_direct_reclaim mm/page_alloc.c:3614 [inline] __alloc_pages_slowpath mm/page_alloc.c:4001 [inline] __alloc_pages_nodemask+0xac8/0x22e0 mm/page_alloc.c:4210 __alloc_pages include/linux/gfp.h:461 [inline] __alloc_pages_node include/linux/gfp.h:474 [inline] alloc_pages_node include/linux/gfp.h:488 [inline] __page_cache_alloc include/linux/pagemap.h:226 [inline] page_cache_read mm/filemap.c:2286 [inline] filemap_fault+0x900/0x14a0 mm/filemap.c:2470 ext4_filemap_fault+0x84/0xb0 fs/ext4/inode.c:6185 __do_fault+0x100/0x380 mm/memory.c:3217 do_read_fault mm/memory.c:3627 [inline] do_fault mm/memory.c:3753 [inline] handle_pte_fault mm/memory.c:3983 [inline] __handle_mm_fault+0x9a0/0x2640 mm/memory.c:4107 handle_mm_fault+0x2e0/0x6c9 mm/memory.c:4144 __do_page_fault+0x466/0xb80 arch/x86/mm/fault.c:1425 page_fault+0x42/0x50 arch/x86/entry/entry_64.S:1104 RIP: 188c940: (null) RSP: 0004:0000000000008000 EFLAGS: 7ffdb6570c40 Code: c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e e6 00 00 00 65 8b 05 9e d3 40 66 39 45 08 74 6a 31 c0 ba 01 00 00 00 f0 0f b1 55 00 <85> c0 75 77 65 8b 1d 82 d3 40 66 48 b8 00 00 00 00 00 fc ff df [27329] 0 27329 18113 8713 25 3 0 0 syz-executor.3 [27410] 0 27410 18179 12845 33 4 0 0 syz-executor.1