INFO: task jfsCommit:113 blocked for more than 145 seconds.
Tainted: G L syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:jfsCommit state:D stack:28520 pid:113 tgid:113 ppid:2 task_flags:0x200040 flags:0x00080000
Call Trace:
context_switch kernel/sched/core.c:5258 [inline]
__schedule+0x150e/0x5070 kernel/sched/core.c:6866
__schedule_loop kernel/sched/core.c:6948 [inline]
schedule+0x165/0x360 kernel/sched/core.c:6963
io_schedule+0x80/0xd0 kernel/sched/core.c:7792
folio_wait_bit_common+0x6b0/0xb80 mm/filemap.c:1323
txUnlock+0x243/0xdf0 fs/jfs/jfs_txnmgr.c:930
txLazyCommit fs/jfs/jfs_txnmgr.c:2683 [inline]
jfs_lazycommit+0x584/0xa90 fs/jfs/jfs_txnmgr.c:2734
kthread+0x711/0x8a0 kernel/kthread.c:463
ret_from_fork+0x599/0xb30 arch/x86/kernel/process.c:158
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246
INFO: task syz.7.488:7941 blocked for more than 146 seconds.
Tainted: G L syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.7.488 state:D stack:25128 pid:7941 tgid:7940 ppid:7660 task_flags:0x400140 flags:0x00080002
Call Trace:
context_switch kernel/sched/core.c:5258 [inline]
__schedule+0x150e/0x5070 kernel/sched/core.c:6866
__schedule_loop kernel/sched/core.c:6948 [inline]
schedule+0x165/0x360 kernel/sched/core.c:6963
io_schedule+0x80/0xd0 kernel/sched/core.c:7792
folio_wait_bit_common+0x6b0/0xb80 mm/filemap.c:1323
folio_lock include/linux/pagemap.h:1159 [inline]
release_metapage+0x103/0xac0 fs/jfs/jfs_metapage.c:870
discard_metapage fs/jfs/jfs_metapage.h:88 [inline]
__get_metapage+0x9a3/0xde0 fs/jfs/jfs_metapage.c:753
dtSearch+0x591/0x21b0 fs/jfs/jfs_dtree.c:624
jfs_lookup+0x155/0x380 fs/jfs/namei.c:1463
__lookup_slow+0x297/0x3d0 fs/namei.c:1858
lookup_slow+0x53/0x70 fs/namei.c:1875
walk_component fs/namei.c:2221 [inline]
link_path_walk+0xd1e/0x18d0 fs/namei.c:2589
path_parentat fs/namei.c:2793 [inline]
__filename_parentat+0x246/0x670 fs/namei.c:2817
filename_parentat fs/namei.c:2835 [inline]
do_renameat2+0x1d0/0x950 fs/namei.c:6054
__do_sys_rename fs/namei.c:6156 [inline]
__se_sys_rename fs/namei.c:6154 [inline]
__x64_sys_rename+0x82/0x90 fs/namei.c:6154
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0xfa/0xf80 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7faf54f8f749
RSP: 002b:00007faf531ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
RAX: ffffffffffffffda RBX: 00007faf551e5fa0 RCX: 00007faf54f8f749
RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000200000000080
RBP: 00007faf55013f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007faf551e6038 R14: 00007faf551e5fa0 R15: 00007ffe35d53388
INFO: task syz.7.488:7957 blocked for more than 146 seconds.
Tainted: G L syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.7.488 state:D stack:28544 pid:7957 tgid:7940 ppid:7660 task_flags:0x400040 flags:0x00080002
Call Trace:
context_switch kernel/sched/core.c:5258 [inline]
__schedule+0x150e/0x5070 kernel/sched/core.c:6866
__schedule_loop kernel/sched/core.c:6948 [inline]
schedule+0x165/0x360 kernel/sched/core.c:6963
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:7020
rwsem_down_write_slowpath+0x872/0xfe0 kernel/locking/rwsem.c:1185
__down_write_common kernel/locking/rwsem.c:1317 [inline]
__down_write kernel/locking/rwsem.c:1326 [inline]
down_write+0x1ab/0x1f0 kernel/locking/rwsem.c:1591
inode_lock include/linux/fs.h:1028 [inline]
open_last_lookups fs/namei.c:4536 [inline]
path_openat+0xb4c/0x3840 fs/namei.c:4783
do_filp_open+0x1fa/0x410 fs/namei.c:4813
do_sys_openat2+0x121/0x200 fs/open.c:1391
do_sys_open fs/open.c:1397 [inline]
__do_sys_openat fs/open.c:1413 [inline]
__se_sys_openat fs/open.c:1408 [inline]
__x64_sys_openat+0x138/0x170 fs/open.c:1408
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0xfa/0xf80 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7faf54f8f749
RSP: 002b:00007faf531cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 00007faf551e6090 RCX: 00007faf54f8f749
RDX: 0000000000107842 RSI: 0000200000000040 RDI: ffffffffffffff9c
RBP: 00007faf55013f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007faf551e6128 R14: 00007faf551e6090 R15: 00007ffe35d53388
INFO: task syz.7.488:7958 blocked for more than 146 seconds.
Tainted: G L syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.7.488 state:D stack:25688 pid:7958 tgid:7940 ppid:7660 task_flags:0x400040 flags:0x00080002
Call Trace:
context_switch kernel/sched/core.c:5258 [inline]
__schedule+0x150e/0x5070 kernel/sched/core.c:6866
__schedule_loop kernel/sched/core.c:6948 [inline]
schedule+0x165/0x360 kernel/sched/core.c:6963
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:7020
rwsem_down_write_slowpath+0x872/0xfe0 kernel/locking/rwsem.c:1185
__down_write_common kernel/locking/rwsem.c:1317 [inline]
__down_write kernel/locking/rwsem.c:1326 [inline]
down_write+0x1ab/0x1f0 kernel/locking/rwsem.c:1591
inode_lock include/linux/fs.h:1028 [inline]
open_last_lookups fs/namei.c:4536 [inline]
path_openat+0xb4c/0x3840 fs/namei.c:4783
do_filp_open+0x1fa/0x410 fs/namei.c:4813
do_sys_openat2+0x121/0x200 fs/open.c:1391
do_sys_open fs/open.c:1397 [inline]
__do_sys_openat fs/open.c:1413 [inline]
__se_sys_openat fs/open.c:1408 [inline]
__x64_sys_openat+0x138/0x170 fs/open.c:1408
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0xfa/0xf80 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7faf54f8f749
RSP: 002b:00007faf531ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 00007faf551e6180 RCX: 00007faf54f8f749
RDX: 0000000000101042 RSI: 0000200000000440 RDI: ffffffffffffff9c
RBP: 00007faf55013f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007faf551e6218 R14: 00007faf551e6180 R15: 00007ffe35d53388
INFO: task syz.0.509:8031 blocked for more than 147 seconds.
Tainted: G L syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.0.509 state:D stack:26200 pid:8031 tgid:8030 ppid:5823 task_flags:0x400040 flags:0x00080002
Call Trace:
context_switch kernel/sched/core.c:5258 [inline]
__schedule+0x150e/0x5070 kernel/sched/core.c:6866
__schedule_loop kernel/sched/core.c:6948 [inline]
schedule+0x165/0x360 kernel/sched/core.c:6963
io_schedule+0x80/0xd0 kernel/sched/core.c:7792
folio_wait_bit_common+0x6b0/0xb80 mm/filemap.c:1323
folio_lock include/linux/pagemap.h:1159 [inline]
writeback_get_folio mm/page-writeback.c:2462 [inline]
writeback_iter+0x8d8/0x1280 mm/page-writeback.c:2556
metapage_writepages+0xe2/0x160 fs/jfs/jfs_metapage.c:557
do_writepages+0x32e/0x550 mm/page-writeback.c:2598
filemap_writeback mm/filemap.c:387 [inline]
filemap_flush_range mm/filemap.c:436 [inline]
filemap_flush+0x191/0x230 mm/filemap.c:451
write_special_inodes fs/jfs/jfs_logmgr.c:209 [inline]
lmLogSync+0x281/0x9d0 fs/jfs/jfs_logmgr.c:937
jfs_syncpt+0x7b/0x90 fs/jfs/jfs_logmgr.c:1041
jfs_sync_fs+0x87/0xa0 fs/jfs/super.c:650
dquot_quota_sync+0xda/0x4d0 fs/quota/dquot.c:758
__iterate_supers+0x13d/0x290 fs/super.c:924
quota_sync_all fs/quota/quota.c:69 [inline]
__do_sys_quotactl fs/quota/quota.c:938 [inline]
__se_sys_quotactl+0x353/0x950 fs/quota/quota.c:917
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0xfa/0xf80 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f8a4938f749
RSP: 002b:00007f8a4a1f3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
RAX: ffffffffffffffda RBX: 00007f8a495e5fa0 RCX: 00007f8a4938f749
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff80000101
RBP: 00007f8a49413f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f8a495e6038 R14: 00007f8a495e5fa0 R15: 00007ffd00fd2748
Showing all locks held in the system:
1 lock held by khungtaskd/31:
#0: ffffffff8e13f2e0 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire include/linux/rcupdate.h:331 [inline]
#0: ffffffff8e13f2e0 (rcu_read_lock){....}-{1:3}, at: rcu_read_lock include/linux/rcupdate.h:867 [inline]
#0: ffffffff8e13f2e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 kernel/locking/lockdep.c:6775
3 locks held by kworker/u8:9/1334:
#0: ffff88801f6ee948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x841/0x15a0 kernel/workqueue.c:3254
#1: ffffc900047dfb80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x868/0x15a0 kernel/workqueue.c:3255
#2: ffff8880359100e0 (&type->s_umount_key#97){++++}-{4:4}, at: super_trylock_shared+0x20/0xf0 fs/super.c:563
3 locks held by kworker/u8:12/3023:
#0: ffff888030fee148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x841/0x15a0 kernel/workqueue.c:3254
#1: ffffc9000b98fb80 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x868/0x15a0 kernel/workqueue.c:3255
#2: ffffffff8f512448 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_lock include/linux/rtnetlink.h:130 [inline]
#2: ffffffff8f512448 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_dad_work+0x112/0x14b0 net/ipv6/addrconf.c:4194
3 locks held by kworker/u8:14/5091:
#0: ffff88813fe29948 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x841/0x15a0 kernel/workqueue.c:3254
#1: ffffc9000ed4fb80 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x868/0x15a0 kernel/workqueue.c:3255
#2: ffffffff8f512448 (rtnl_mutex){+.+.}-{4:4}
, at: class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:557 [inline]
, at: try_to_wake_up+0x67/0x12b0 kernel/sched/core.c:4108
2 locks held by getty/5580:
#0: ffff888035eb50a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 drivers/tty/tty_ldisc.c:243
#1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x449/0x1460 drivers/tty/n_tty.c:2211
1 lock held by syz.7.488/7941:
#0: ffff888059520578 (&type->i_mutex_dir_key#14){++++}-{4:4}, at: inode_lock_shared include/linux/fs.h:1043 [inline]
#0: ffff888059520578 (&type->i_mutex_dir_key#14){++++}-{4:4}, at: lookup_slow+0x46/0x70 fs/namei.c:1874
1 lock held by syz.7.488/7957:
#0: ffff888059520578 (&type->i_mutex_dir_key#14){++++}-{4:4}, at: inode_lock include/linux/fs.h:1028 [inline]
#0: ffff888059520578 (&type->i_mutex_dir_key#14){++++}-{4:4}, at: open_last_lookups fs/namei.c:4536 [inline]
#0: ffff888059520578 (&type->i_mutex_dir_key#14){++++}-{4:4}, at: path_openat+0xb4c/0x3840 fs/namei.c:4783
1 lock held by syz.7.488/7958:
#0: ffff888059520578 (&type->i_mutex_dir_key#14){++++}-{4:4}, at: inode_lock include/linux/fs.h:1028 [inline]
#0: ffff888059520578 (&type->i_mutex_dir_key#14){++++}-{4:4}, at: open_last_lookups fs/namei.c:4536 [inline]
#0: ffff888059520578 (&type->i_mutex_dir_key#14){++++}-{4:4}, at: path_openat+0xb4c/0x3840 fs/namei.c:4783
2 locks held by syz.0.509/8031:
#0: ffff8880359100e0 (&type->s_umount_key#97){++++}-{4:4}, at: __super_lock fs/super.c:59 [inline]
#0: ffff8880359100e0 (&type->s_umount_key#97){++++}-{4:4}, at: super_lock+0x2a9/0x3b0 fs/super.c:121
#1: ffff888031cb4120 (&(log)->loglock){+.+.}-{4:4}, at: jfs_syncpt+0x25/0x90 fs/jfs/jfs_logmgr.c:1039
3 locks held by kworker/u8:34/9144:
#0: ffff888030fee148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x841/0x15a0 kernel/workqueue.c:3254
#1: ffffc90003047b80 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x868/0x15a0 kernel/workqueue.c:3255
#2: ffffffff8f512448 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_lock include/linux/rtnetlink.h:130 [inline]
#2: ffffffff8f512448 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_dad_work+0x112/0x14b0 net/ipv6/addrconf.c:4194
1 lock held by syz-executor/9183:
#0: ffffffff8e144e38 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock kernel/rcu/tree_exp.h:311 [inline]
#0: ffffffff8e144e38 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x2f6/0x730 kernel/rcu/tree_exp.h:956
3 locks held by syz-executor/9185:
#0: ffffffff8f512448 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_lock net/core/rtnetlink.c:80 [inline]
#0: ffffffff8f512448 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_nets_lock net/core/rtnetlink.c:341 [inline]
#0: ffffffff8f512448 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8ec/0x1c90 net/core/rtnetlink.c:4071
#1: ffff888079e4d528 (&wg->device_update_lock){+.+.}-{4:4}, at: wg_open+0x227/0x420 drivers/net/wireguard/device.c:50
#2: ffffffff8e144e38 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock kernel/rcu/tree_exp.h:343 [inline]
#2: ffffffff8e144e38 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b9/0x730 kernel/rcu/tree_exp.h:956
=============================================
NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full)
Tainted: [L]=SOFTLOCKUP
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Call Trace:
dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120
nmi_cpu_backtrace+0x39e/0x3d0 lib/nmi_backtrace.c:113
nmi_trigger_cpumask_backtrace+0x17a/0x300 lib/nmi_backtrace.c:62
trigger_all_cpu_backtrace include/linux/nmi.h:160 [inline]
__sys_info lib/sys_info.c:157 [inline]
sys_info+0x135/0x170 lib/sys_info.c:165
check_hung_uninterruptible_tasks kernel/hung_task.c:363 [inline]
watchdog+0xe40/0xe90 kernel/hung_task.c:557
kthread+0x711/0x8a0 kernel/kthread.c:463
ret_from_fork+0x599/0xb30 arch/x86/kernel/process.c:158
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 3023 Comm: kworker/u8:12 Tainted: G L syzkaller #0 PREEMPT(full)
Tainted: [L]=SOFTLOCKUP
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Workqueue: udp_tunnel_nic udp_tunnel_nic_device_sync_work
RIP: 0010:serial8250_console_write+0x60a/0x1ba0 drivers/tty/serial/8250/8250_port.c:3310
Code: 40 4c 89 ff be 01 00 00 00 44 89 f2 2e e8 8e 95 e4 1a 49 8d 9f c0 02 00 00 48 89 d8 48 c1 e8 03 48 89 44 24 68 42 0f b6 04 28 <84> c0 0f 85 61 11 00 00 44 0f b6 33 31 ff 44 89 f6 e8 60 9b a5 fc
RSP: 0018:ffffc9000b98ef60 EFLAGS: 00000806
RAX: 0000000000000000 RBX: ffffffff99e05600 RCX: 0000000000000000
RDX: 00000000000003f9 RSI: 0000000000000000 RDI: 0000000000000020
RBP: ffffc9000b98f110 R08: 0000000000000003 R09: 0000000000000004
R10: dffffc0000000000 R11: ffffffff851c5830 R12: 0000000000000000
R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff99e05340
FS: 0000000000000000(0000) GS:ffff888125d25000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f56e0265da0 CR3: 0000000030d0e000 CR4: 00000000003526f0
Call Trace:
console_emit_next_record kernel/printk/printk.c:3129 [inline]
console_flush_one_record kernel/printk/printk.c:3215 [inline]
console_flush_all+0x745/0xb60 kernel/printk/printk.c:3289
__console_flush_and_unlock kernel/printk/printk.c:3319 [inline]
console_unlock+0xbb/0x190 kernel/printk/printk.c:3359
vprintk_emit+0x4f8/0x5f0 kernel/printk/printk.c:2426
dev_vprintk_emit+0x337/0x3f0 drivers/base/core.c:4914
dev_printk_emit+0xe0/0x130 drivers/base/core.c:4925
__netdev_printk+0x3e1/0x480 net/core/dev.c:12920
netdev_info+0x10a/0x160 net/core/dev.c:12975
nsim_udp_tunnel_set_port+0x268/0x3e0 drivers/net/netdevsim/udp_tunnels.c:31
udp_tunnel_nic_device_sync_one net/ipv4/udp_tunnel_nic.c:-1 [inline]
udp_tunnel_nic_device_sync_by_port net/ipv4/udp_tunnel_nic.c:249 [inline]
__udp_tunnel_nic_device_sync+0xb0f/0x14d0 net/ipv4/udp_tunnel_nic.c:292
udp_tunnel_nic_device_sync_work+0x97/0xa10 net/ipv4/udp_tunnel_nic.c:740
process_one_work+0x93a/0x15a0 kernel/workqueue.c:3279
process_scheduled_works kernel/workqueue.c:3362 [inline]
worker_thread+0x9b0/0xee0 kernel/workqueue.c:3443
kthread+0x711/0x8a0 kernel/kthread.c:463
ret_from_fork+0x599/0xb30 arch/x86/kernel/process.c:158
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246