[17527] 0 17527 17585 8230 25 4 0 1000 syz-executor2 [17540] 0 17540 17585 8233 25 4 0 1000 syz-executor1 [17546] 0 17546 17585 8230 25 4 0 1000 syz-executor2 [17550] 0 17550 17585 8233 25 4 0 1000 syz-executor1 [17552] 0 17552 17585 8230 25 4 0 1000 syz-executor2 INFO: task syz-executor4:7593 blocked for more than 140 seconds. [17557] 0 17557 17585 8230 25 4 0 1000 syz-executor2 Not tainted 4.14.89+ #28 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [17572] 0 17572 17585 8230 25 4 0 1000 syz-executor2 syz-executor4 D29920 7593 1845 0x00000004 Call Trace: [17583] 0 17583 17585 8233 25 4 0 1000 syz-executor1 schedule+0x7f/0x1b0 kernel/sched/core.c:3490 __lock_sock+0x11d/0x210 net/core/sock.c:2237 lock_sock_nested+0xe3/0x100 net/core/sock.c:2758 lock_sock include/net/sock.h:1452 [inline] packet_setsockopt+0x5e8/0x2680 net/packet/af_packet.c:3780 [17584] 0 17584 17618 8234 25 4 0 0 syz-executor3 SYSC_setsockopt net/socket.c:1864 [inline] SyS_setsockopt+0x132/0x220 net/socket.c:1843 [17585] 0 17585 17585 8230 25 4 0 1000 syz-executor2 [17592] 0 17592 17618 8231 25 4 0 1000 syz-executor4 do_syscall_64+0x19b/0x4b0 arch/x86/entry/common.c:289 entry_SYSCALL_64_after_hwframe+0x42/0xb7 RIP: 0033:0x457669 RSP: 002b:00007fdbb5100c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457669 RDX: 0000000000000008 RSI: 0000000000000107 RDI: 0000000000000003 RBP: 000000000072bfa0 R08: 0000000000000004 R09: 0000000000000000 [17595] 0 17595 17585 8230 25 4 0 1000 syz-executor2 R10: 0000000020000080 R11: 0000000000000246 R12: 00007fdbb51016d4 R13: 00000000004c4ea4 R14: 00000000004d8f58 R15: 00000000ffffffff INFO: task syz-executor4:7596 blocked for more than 140 seconds. Not tainted 4.14.89+ #28 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor4 D28840 7596 1845 0x00000004 Call Trace: [17601] 0 17601 17585 8230 25 4 0 1000 syz-executor2 [17605] 0 17605 17585 8233 25 4 0 1000 syz-executor1 schedule+0x7f/0x1b0 kernel/sched/core.c:3490 [17607] 0 17607 17585 8230 25 4 0 1000 syz-executor2 __lock_sock+0x11d/0x210 net/core/sock.c:2237 [17612] 0 17612 17585 8230 25 4 0 1000 syz-executor2 [17624] 0 17624 17585 8230 25 4 0 1000 syz-executor2 [17632] 0 17632 17585 8233 25 4 0 1000 syz-executor1 [17635] 0 17635 17618 8234 25 4 0 0 syz-executor3 [17640] 0 17640 17585 8230 25 4 0 1000 syz-executor2 [17641] 0 17641 17618 8231 25 4 0 1000 syz-executor4 [17653] 0 17653 17585 8230 25 4 0 1000 syz-executor2 [17654] 0 17654 17585 8234 25 4 0 1000 syz-executor1 [17660] 0 17660 17585 8230 25 4 0 1000 syz-executor2 lock_sock_nested+0xe3/0x100 net/core/sock.c:2758 [17682] 0 17682 17585 8234 25 4 0 1000 syz-executor1 [17684] 0 17684 17585 8230 25 4 0 1000 syz-executor2 lock_sock include/net/sock.h:1452 [inline] packet_setsockopt+0x4d8/0x2680 net/packet/af_packet.c:3671 [17690] 0 17690 17618 8234 25 4 0 0 syz-executor3 [17692] 0 17692 17618 8231 25 4 0 1000 syz-executor4 [17702] 0 17702 17585 8230 25 4 0 1000 syz-executor2 [17705] 0 17705 17585 8234 25 4 0 1000 syz-executor1 [17711] 0 17711 17585 8230 25 4 0 1000 syz-executor2 [17719] 0 17719 17585 8230 25 4 0 1000 syz-executor2 SYSC_setsockopt net/socket.c:1864 [inline] SyS_setsockopt+0x132/0x220 net/socket.c:1843 [17721] 0 17721 17585 8234 25 4 0 1000 syz-executor1 do_syscall_64+0x19b/0x4b0 arch/x86/entry/common.c:289 entry_SYSCALL_64_after_hwframe+0x42/0xb7 RIP: 0033:0x457669 RSP: 002b:00007fdbb50dfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [17725] 0 17725 17585 8230 25 4 0 1000 syz-executor2 RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457669 [17740] 0 17740 17585 8230 25 4 0 1000 syz-executor2 RDX: 000000000000000d RSI: 0000000000000107 RDI: 0000000000000003 RBP: 000000000072c040 R08: 0000000000000010 R09: 0000000000000000 [17745] 0 17745 17585 8233 25 4 0 1000 syz-executor1 [17757] 0 17757 17618 8231 25 4 0 1000 syz-executor4 [17759] 0 17759 17618 8234 25 4 0 0 syz-executor3 [17762] 0 17762 17585 8234 25 4 0 1000 syz-executor1 R10: 0000000020000000 R11: 0000000000000246 R12: 00007fdbb50e06d4 [17763] 0 17763 17585 8230 25 4 0 1000 syz-executor2 R13: 00000000004c4ed4 R14: 00000000004d8f88 R15: 00000000ffffffff [17770] 0 17770 17585 8233 25 4 0 1000 syz-executor2 INFO: task syz-executor4:7614 blocked for more than 140 seconds. Not tainted 4.14.89+ #28 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor4 D30376 7614 1845 0x00000004 [17772] 0 17772 17585 8234 25 4 0 1000 syz-executor1 Call Trace: [17779] 0 17779 17618 8235 25 4 0 1000 syz-executor2 [17780] 0 17780 17585 8234 25 4 0 1000 syz-executor1 [17802] 0 17802 17585 8233 25 4 0 1000 syz-executor2 [17804] 0 17804 17618 8234 25 4 0 0 syz-executor3 schedule+0x7f/0x1b0 kernel/sched/core.c:3490 [17808] 0 17808 17585 8233 25 4 0 1000 syz-executor1 __lock_sock+0x11d/0x210 net/core/sock.c:2237 [17810] 0 17810 17618 8231 25 4 0 1000 syz-executor4 [17812] 0 17812 17585 8233 25 4 0 1000 syz-executor2 [17822] 0 17822 17585 8232 25 4 0 1000 syz-executor2 lock_sock_nested+0xe3/0x100 net/core/sock.c:2758 [17825] 0 17825 17585 8234 25 4 0 1000 syz-executor1 lock_sock include/net/sock.h:1452 [inline] packet_setsockopt+0x5e8/0x2680 net/packet/af_packet.c:3780 [17839] 0 17839 17585 8231 25 4 0 1000 syz-executor1 [17856] 0 17856 17585 8231 25 4 0 1000 syz-executor1 [17861] 0 17861 17618 8234 25 4 0 0 syz-executor3 [17863] 0 17863 17618 8231 25 4 0 1000 syz-executor4 [17870] 0 17870 17585 8231 25 4 0 1000 syz-executor1 SYSC_setsockopt net/socket.c:1864 [inline] SyS_setsockopt+0x132/0x220 net/socket.c:1843 [17881] 0 17881 17585 8232 25 4 0 1000 syz-executor1 [17912] 0 17912 17618 8234 25 4 0 0 syz-executor3 [17913] 0 17913 17618 8231 25 4 0 1000 syz-executor4 [17922] 0 17922 17585 8230 25 4 0 1000 syz-executor2 [17929] 0 17929 17585 8233 25 4 0 1000 syz-executor2 [17935] 0 17935 17585 8231 25 4 0 1000 syz-executor2 [17948] 0 17948 17585 8231 25 4 0 1000 syz-executor1 do_syscall_64+0x19b/0x4b0 arch/x86/entry/common.c:289 entry_SYSCALL_64_after_hwframe+0x42/0xb7 [17949] 0 17949 17585 8233 25 4 0 1000 syz-executor2 RIP: 0033:0x457669 [17955] 0 17955 17585 8231 25 4 0 1000 syz-executor1 RSP: 002b:00007fdbb509dc78 EFLAGS: 00000246 [17970] 0 17970 17618 8234 25 4 0 0 syz-executor3 ORIG_RAX: 0000000000000036 [17980] 0 17980 17585 8231 25 4 0 1000 syz-executor2 RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457669 RDX: 0000000000000008 RSI: 0000000000000107 RDI: 0000000000000004 [17982] 0 17982 17585 8232 25 4 0 1000 syz-executor1 RBP: 000000000072c180 R08: 0000000000000004 R09: 0000000000000000 [17983] 0 17983 17618 8231 25 4 0 1000 syz-executor4 R10: 0000000020000080 R11: 0000000000000246 R12: 00007fdbb509e6d4 [17999] 0 17999 17618 8232 25 4 0 1000 syz-executor2 R13: 00000000004c4ea4 R14: 00000000004d8f58 R15: 00000000ffffffff [18000] 0 18000 17585 8232 25 4 0 1000 syz-executor1 [18004] 0 18004 17585 8232 25 4 0 1000 syz-executor1 INFO: task syz-executor4:7618 blocked for more than 140 seconds. [18020] 0 18020 17585 8232 25 4 0 0 syz-executor3 Not tainted 4.14.89+ #28 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor4 D30376 7618 1845 0x00000004 [18038] 0 18038 17618 8231 25 4 0 1000 syz-executor4 Call Trace: [18042] 0 18042 17618 8234 25 4 0 0 syz-executor3 [18051] 0 18051 17585 8231 25 4 0 1000 syz-executor2 schedule+0x7f/0x1b0 kernel/sched/core.c:3490 [18057] 0 18057 17618 8233 25 4 0 1000 syz-executor1 [18059] 0 18059 17585 8231 25 4 0 1000 syz-executor2 __lock_sock+0x11d/0x210 net/core/sock.c:2237 [18063] 0 18063 17585 8231 25 4 0 1000 syz-executor2 [18068] 0 18068 17585 8231 25 4 0 1000 syz-executor2 [18072] 0 18072 17585 8231 25 4 0 1000 syz-executor2 [18090] 0 18090 17585 8233 25 4 0 1000 syz-executor2 lock_sock_nested+0xe3/0x100 net/core/sock.c:2758 [18098] 0 18098 17618 8234 25 4 0 0 syz-executor3 lock_sock include/net/sock.h:1452 [inline] packet_setsockopt+0x4d8/0x2680 net/packet/af_packet.c:3671 [18099] 0 18099 17618 8231 25 4 0 1000 syz-executor4 [18107] 0 18107 17585 8234 25 4 0 1000 syz-executor1 [18111] 0 18111 17585 8231 25 4 0 1000 syz-executor2 [18119] 0 18119 17585 8234 25 4 0 1000 syz-executor1 [18125] 0 18125 17585 8233 25 4 0 1000 syz-executor2 [18127] 0 18127 17585 8234 25 4 0 1000 syz-executor1 SYSC_setsockopt net/socket.c:1864 [inline] SyS_setsockopt+0x132/0x220 net/socket.c:1843 [18132] 0 18132 17585 8232 25 4 0 1000 syz-executor2 [18145] 0 18145 17684 8240 25 4 0 1000 syz-executor1 [18152] 0 18152 17618 8232 25 4 0 1000 syz-executor2 [18155] 0 18155 17684 8235 25 4 0 1000 syz-executor4 [18161] 0 18161 17618 8234 25 4 0 0 syz-executor3 [18169] 0 18169 17651 8238 25 4 0 1000 syz-executor1 [18176] 0 18176 17618 8232 25 4 0 1000 syz-executor2 [18179] 0 18179 17651 8238 25 4 0 1000 syz-executor1 [18189] 0 18189 17651 8238 25 4 0 1000 syz-executor1 do_syscall_64+0x19b/0x4b0 arch/x86/entry/common.c:289 [18191] 0 18191 17618 8232 25 4 0 1000 syz-executor2 entry_SYSCALL_64_after_hwframe+0x42/0xb7 [18193] 0 18193 17651 8238 25 4 0 1000 syz-executor1 RIP: 0033:0x457669 [18200] 0 18200 17651 8237 25 4 0 1000 syz-executor1 RSP: 002b:00007fdbb505bc78 EFLAGS: 00000246 [18204] 0 18204 17618 8232 25 4 0 1000 syz-executor2 ORIG_RAX: 0000000000000036 [18207] 0 18207 17651 8237 25 4 0 1000 syz-executor1 [18215] 0 18215 17684 8235 25 4 0 1000 syz-executor4 RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457669 [18227] 0 18227 17618 8232 25 4 0 1000 syz-executor2 RDX: 000000000000000d RSI: 0000000000000107 RDI: 0000000000000004 [18247] 0 18247 17684 8235 25 4 0 1000 syz-executor4 RBP: 000000000072c2c0 R08: 0000000000000010 R09: 0000000000000000 R10: 0000000020000000 R11: 0000000000000246 R12: 00007fdbb505c6d4 [18257] 0 18257 17684 8240 25 4 0 1000 syz-executor1 [18258] 0 18258 17618 8232 25 4 0 1000 syz-executor2 R13: 00000000004c4ed4 R14: 00000000004d8f88 R15: 00000000ffffffff Showing all locks held in the system: [18269] 0 18269 17651 8233 25 4 0 1000 syz-executor2 2 locks held by init/1: #0: [18273] 0 18273 17651 8238 25 4 0 1000 syz-executor1 [18282] 0 18282 17651 8234 25 4 0 1000 syz-executor2 [18289] 0 18289 17651 8237 25 4 0 1000 syz-executor1 ( [18294] 0 18294 17651 8237 25 4 0 1000 syz-executor1 &mm->mmap_sem [18313] 0 18313 17585 8234 25 4 0 0 syz-executor3 ){++++} [18315] 0 18315 17651 8234 25 4 0 1000 syz-executor2 , at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 #1: [18320] 0 18320 17684 8235 25 4 0 1000 syz-executor4 [18328] 0 18328 17651 8234 25 4 0 1000 syz-executor2 [18341] 0 18341 17585 8235 25 4 0 0 syz-executor3 [18344] 0 18344 17618 8232 25 4 0 1000 syz-executor2 ( [18354] 0 18354 17618 8232 25 4 0 1000 syz-executor2 &ei->i_mmap_sem){++++} [18362] 0 18362 17585 8235 25 4 0 0 syz-executor3 [18367] 0 18367 17684 8235 25 4 0 1000 syz-executor4 , at: [] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178 1 lock held by khungtaskd/23: [18381] 0 18381 17651 8237 25 4 0 1000 syz-executor1 #0: ( [18382] 0 18382 17651 8235 25 4 0 1000 syz-executor2 tasklist_lock){.+.+} [18387] 0 18387 17684 8235 25 4 0 1000 syz-executor4 , at: [] debug_show_all_locks+0x74/0x20f kernel/locking/lockdep.c:4541 2 locks held by rs:main Q:Reg/1627: [18394] 0 18394 17651 8237 25 4 0 1000 syz-executor1 #0: [18413] 0 18413 17651 8238 25 4 0 1000 syz-executor1 (&mm->mmap_sem [18416] 0 18416 17618 8232 25 4 0 1000 syz-executor2 ){++++}, at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 [18417] 0 18417 17585 8234 25 4 0 0 syz-executor3 #1: (&ei->i_mmap_sem){++++} [18424] 0 18424 17651 8238 25 4 0 1000 syz-executor1 , at: [] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178 2 locks held by rsyslogd/1629: [18430] 0 18430 17618 8234 25 4 0 0 syz-executor3 #0: ( [18454] 0 18454 17618 8232 25 4 0 1000 syz-executor2 [18455] 0 18455 17651 8238 25 4 0 1000 syz-executor1 &mm->mmap_sem){++++}, at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178 2 locks held by cron/1681: #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178 2 locks held by getty/1757: #0: (&tty->ldisc_sem){++++}, at: [] tty_ldisc_ref_wait+0x20/0x80 drivers/tty/tty_ldisc.c:275 #1: [18457] 0 18457 17618 8231 25 4 0 1000 syz-executor4 ( [18461] 0 18461 17618 8231 25 4 0 1000 syz-executor4 &ldata->atomic_read_lock){+.+.} [18480] 0 18480 17651 8237 25 4 0 1000 syz-executor1 , at: [] n_tty_read+0x1ff/0x1700 drivers/tty/n_tty.c:2156 2 locks held by syz-fuzzer/1782: [18488] 0 18488 17618 8232 25 4 0 1000 syz-executor2 #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem [18492] 0 18492 17651 8237 25 4 0 1000 syz-executor1 ){++++}, at: [] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178 [18504] 0 18504 17585 8232 25 4 0 0 syz-executor3 2 locks held by syz-fuzzer/1786: [18509] 0 18509 17618 8231 25 4 0 1000 syz-executor2 #0: ( [18518] 0 18518 17651 8234 25 4 0 1000 syz-executor2 &mm->mmap_sem){++++} [18531] 0 18531 17585 8235 25 4 0 0 syz-executor3 , at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 [18533] 0 18533 17618 8232 25 4 0 1000 syz-executor2 #1: [18541] 0 18541 17684 8239 25 4 0 1000 syz-executor1 (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178 2 locks held by syz-fuzzer/1787: [18550] 0 18550 17684 8239 25 4 0 1000 syz-executor1 #0: ( [18552] 0 18552 17684 8235 25 4 0 1000 syz-executor4 [18561] 0 18561 17585 8232 25 4 0 0 syz-executor3 &mm->mmap_sem){++++} [18578] 0 18578 17651 8234 25 4 0 1000 syz-executor2 , at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 #1: [18580] 0 18580 17618 8236 25 4 0 1000 syz-executor1 ( [18581] 0 18581 17585 8235 25 4 0 0 syz-executor3 &ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178 2 locks held by syz-executor2/4680: [18589] 0 18589 17585 8234 25 4 0 0 syz-executor3 #0: (&tty->ldisc_sem){++++}, at: [] tty_ldisc_ref_wait+0x20/0x80 drivers/tty/tty_ldisc.c:275 #1: [18593] 0 18593 17618 8232 25 4 0 1000 syz-executor2 (&tty->atomic_write_lock){+.+.}, at: [] tty_write_lock+0x1b/0x60 drivers/tty/tty_io.c:883 2 locks held by udevd/7052: [18606] 0 18606 17585 8232 25 4 0 0 syz-executor3 #0: [18617] 0 18617 17618 8216 25 4 0 1000 syz-executor2 ( [18655] 0 18655 17618 8232 25 4 0 1000 syz-executor2 &mm->mmap_sem [18657] 0 18657 17585 8235 25 4 0 0 syz-executor3 ){++++}, at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 #1: (&ei->i_mmap_sem){++++}, at: [] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178 [18658] 0 18658 17651 8238 25 4 0 1000 syz-executor1 1 lock held by syz-executor4/7589: [18669] 0 18669 17618 8232 25 4 0 1000 syz-executor2 #0: ( [18677] 0 18677 17684 8240 25 4 0 1000 syz-executor1 sk_lock-AF_PACKET){+.+.} [18681] 0 18681 17684 8238 25 4 0 0 syz-executor3 , at: [] lock_sock include/net/sock.h:1452 [inline] , at: [] packet_setsockopt+0x4d8/0x2680 net/packet/af_packet.c:3671 1 lock held by syz-executor4/7613: #0: [18685] 0 18685 17651 8234 25 4 0 1000 syz-executor2 ( [18713] 0 18713 17684 8240 25 4 0 1000 syz-executor1 sk_lock-AF_PACKET [18714] 0 18714 17585 8229 25 4 0 1000 syz-executor4 ){+.+.}, at: [] lock_sock include/net/sock.h:1452 [inline] ){+.+.}, at: [] packet_setsockopt+0x4d8/0x2680 net/packet/af_packet.c:3671 [18733] 0 18733 17651 8238 25 4 0 1000 syz-executor1 1 lock held by udevd/7619: [18738] 0 18738 17651 8234 25 4 0 1000 syz-executor2 #0: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 2 locks held by blkid/7633: [18763] 0 18763 17618 8232 25 4 0 1000 syz-executor2 #0: [18768] 0 18768 17651 8238 25 4 0 1000 syz-executor1 ( [18769] 0 18769 17684 8238 25 4 0 0 syz-executor3 &mm->mmap_sem){++++} [18773] 0 18773 17651 8238 25 4 0 1000 syz-executor1 , at: [] __do_page_fault+0x26d/0xb60 arch/x86/mm/fault.c:1354 [18788] 0 18788 17684 8240 25 4 0 1000 syz-executor1 #1: ( [18796] 0 18796 17651 8237 25 4 0 1000 syz-executor1 &ei->i_mmap_sem){++++} [18804] 0 18804 17651 8237 25 4 0 1000 syz-executor1 , at: [] ext4_filemap_fault+0x75/0xb0 fs/ext4/inode.c:6178 [18829] 0 18829 17651 8238 25 4 0 1000 syz-executor1 ============================================= NMI backtrace for cpu 1 [18835] 0 18835 17684 8236 25 4 0 1000 syz-executor4 CPU: 1 PID: 23 Comm: khungtaskd Not tainted 4.14.89+ #28 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0xb9/0x11b lib/dump_stack.c:53 [18845] 0 18845 17651 8238 25 4 0 1000 syz-executor1 nmi_cpu_backtrace.cold.0+0x47/0x85 lib/nmi_backtrace.c:101 nmi_trigger_cpumask_backtrace+0x121/0x146 lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:140 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:196 [inline] watchdog+0x574/0xa70 kernel/hung_task.c:252 [18855] 0 18855 17684 8238 25 4 0 0 syz-executor3 kthread+0x348/0x420 kernel/kthread.c:232 [18856] 0 18856 17651 8237 25 4 0 1000 syz-executor1 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:402 Sending NMI from CPU 1 to CPUs 0: [18860] 0 18860 17618 8232 25 4 0 1000 syz-executor2 NMI backtrace for cpu 0 CPU: 0 PID: 7435 Comm: syz-executor0 Not tainted 4.14.89+ #28 task: ffff88819cb08000 task.stack: ffff8881d25f0000 RIP: 0010:format_decode+0x466/0x8f0 lib/vsprintf.c:1939 RSP: 0000:ffff8881d25f7378 EFLAGS: 00000046 RAX: 0000000000000030 RBX: ffffffffa5c5ba06 RCX: 0000000000000007 RDX: ffffffffa5643026 RSI: ffff8881d25f7488 RDI: 0000000000000007 RBP: ffff8881d25f7488 R08: fffffbfff4ef6e19 R09: fffffbfff4ef6e18 R10: fffffbfff4ef6e18 R11: ffffffffa77b70c6 R12: ffffffffa5c5ba06 R13: ffffffffa5c5ba06 R14: 1ffff1103a4bee72 R15: ffffffffa5c5ba07 FS: 00007f74d0eb8700(0000) GS:ffff8881db800000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f5302d90830 CR3: 00000001cb3dc002 CR4: 00000000001606b0 DR0: 0000000020000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 Call Trace: vsnprintf+0x139/0x13a0 lib/vsprintf.c:2133 sprintf+0xb0/0xe0 lib/vsprintf.c:2383 print_time kernel/printk/printk.c:1224 [inline] print_prefix+0x244/0x3a0 kernel/printk/printk.c:1247 msg_print_text+0xae/0x1a0 kernel/printk/printk.c:1274 console_unlock+0x218/0xc80 kernel/printk/printk.c:2368 vprintk_emit+0x125/0x320 kernel/printk/printk.c:1917 vprintk_func+0x58/0x159 kernel/printk/printk_safe.c:401 printk+0xa7/0xcf kernel/printk/printk.c:1990 dump_tasks mm/oom_kill.c:396 [inline] dump_header+0x70b/0x7a8 mm/oom_kill.c:428 oom_kill_process.cold.8+0x10/0xc88 mm/oom_kill.c:861 out_of_memory+0x669/0xa60 mm/oom_kill.c:1075 __alloc_pages_may_oom mm/page_alloc.c:3356 [inline] __alloc_pages_slowpath mm/page_alloc.c:4045 [inline] __alloc_pages_nodemask+0x182f/0x2180 mm/page_alloc.c:4210 __alloc_pages include/linux/gfp.h:461 [inline] __alloc_pages_node include/linux/gfp.h:474 [inline] alloc_pages_node include/linux/gfp.h:488 [inline] __page_cache_alloc include/linux/pagemap.h:226 [inline] page_cache_read mm/filemap.c:2286 [inline] filemap_fault+0xcdd/0x14a0 mm/filemap.c:2470 ext4_filemap_fault+0x7d/0xb0 fs/ext4/inode.c:6179 __do_fault+0x80/0x210 mm/memory.c:3194 do_read_fault mm/memory.c:3604 [inline] do_fault mm/memory.c:3730 [inline] handle_pte_fault mm/memory.c:3960 [inline] __handle_mm_fault+0x991/0x25f0 mm/memory.c:4084 handle_mm_fault+0x2f2/0x6eb mm/memory.c:4121 __do_page_fault+0x45d/0xb60 arch/x86/mm/fault.c:1425 page_fault+0x42/0x50 arch/x86/entry/entry_64.S:1104 RIP: 4c612b:0x4dad10 RSP: 0003:000000000072bf00 EFLAGS: 7f74d0eb86d4 Code: 84 dd 03 00 00 e8 5b b8 ac fe 80 fb 68 0f 85 94 fe ff ff e8 4d b8 ac fe 4d 8d 67 02 bb 48 00 00 00 4c 89 64 24 38 e9 7c fe ff ff 35 b8 ac fe 80 4d 04 10 4c 89 fb e9 67 fd ff ff e8 24 b8 ac