[28380] 0 28380 18213 9597 26 3 0 0 syz-executor.3 [28420] 0 28420 18213 9469 26 3 0 0 syz-executor.3 [28466] 0 28466 18213 9421 26 3 0 0 syz-executor.3 [28497] 0 28497 18213 9775 27 3 0 0 syz-executor.3 INFO: task syz-executor.0:8393 blocked for more than 140 seconds. Not tainted 4.14.151+ #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [28523] 0 28523 18213 9533 26 3 0 0 syz-executor.3 syz-executor.0 D25152 8393 8392 0x00000000 Call Trace: [28545] 0 28545 18213 9757 27 3 0 0 syz-executor.3 [28581] 0 28581 18213 9469 26 3 0 0 syz-executor.3 [28631] 0 28631 18213 9629 26 3 0 0 syz-executor.3 [28665] 0 28665 18213 9486 26 3 0 0 syz-executor.3 schedule+0x92/0x1c0 kernel/sched/core.c:3498 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556 [28697] 0 28697 18213 9656 26 3 0 0 syz-executor.3 __mutex_lock_common kernel/locking/mutex.c:833 [inline] __mutex_lock+0x595/0x13e0 kernel/locking/mutex.c:893 [28727] 0 28727 18213 9565 26 3 0 0 syz-executor.3 [28784] 0 28784 18213 9710 26 3 0 0 syz-executor.3 [28822] 0 28822 18213 9933 27 3 0 0 syz-executor.3 [28854] 0 28854 18213 9547 26 3 0 0 syz-executor.3 xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 [28877] 0 28877 18213 8752 27 4 0 0 syz-executor.0 [28891] 0 28891 18213 9933 27 3 0 0 syz-executor.3 get_info+0x10d/0x570 net/ipv6/netfilter/ip6_tables.c:983 [28928] 0 28928 18213 9564 26 3 0 0 syz-executor.3 [28962] 0 28962 18213 9773 27 3 0 0 syz-executor.3 do_ipt_get_ctl+0x136/0x790 net/ipv4/netfilter/ip_tables.c:1698 [29010] 0 29010 18213 9405 26 3 0 0 syz-executor.3 [29047] 0 29047 18213 9845 27 3 0 0 syz-executor.3 [29085] 0 29085 18213 9453 26 3 0 0 syz-executor.3 nf_sockopt net/netfilter/nf_sockopt.c:104 [inline] nf_getsockopt+0x68/0xc0 net/netfilter/nf_sockopt.c:122 [29129] 0 29129 18213 9821 27 3 0 0 syz-executor.3 ip_getsockopt net/ipv4/ip_sockglue.c:1566 [inline] ip_getsockopt+0x118/0x160 net/ipv4/ip_sockglue.c:1551 [29164] 0 29164 18213 9357 26 3 0 0 syz-executor.3 tcp_getsockopt net/ipv4/tcp.c:3249 [inline] tcp_getsockopt+0x81/0xc0 net/ipv4/tcp.c:3243 SYSC_getsockopt net/socket.c:1896 [inline] SyS_getsockopt+0x11d/0x1f0 net/socket.c:1878 [29183] 0 29183 18246 8753 26 4 0 0 syz-executor.0 [29220] 0 29220 18213 9645 26 3 0 0 syz-executor.3 [29260] 0 29260 18213 9501 26 3 0 0 syz-executor.3 do_syscall_64+0x19b/0x520 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x42/0xb7 RIP: 0033:0x45cd2a [29297] 0 29297 18213 9693 26 3 0 0 syz-executor.3 RSP: 002b:00007ffda7ecc608 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 RAX: ffffffffffffffda RBX: 00007ffda7ecc630 RCX: 000000000045cd2a [29326] 0 29326 18213 9149 25 3 0 0 syz-executor.3 [29363] 0 29363 18213 9677 26 3 0 0 syz-executor.3 RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003 [29387] 0 29387 18213 9901 27 3 0 0 syz-executor.3 RBP: 0000000000716e80 R08: 00007ffda7ecc62c R09: 0000000000004000 R10: 00007ffda7ecc630 R11: 0000000000000246 R12: 0000000000000003 [29568] 0 29568 18213 9709 26 3 0 0 syz-executor.3 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000714cc0 [29605] 0 29605 18213 9741 27 3 0 0 syz-executor.3 INFO: task blkid:738 blocked for more than 140 seconds. [29632] 0 29632 18213 9677 26 3 0 0 syz-executor.3 Not tainted 4.14.151+ #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [29653] 0 29653 18213 9798 27 3 0 0 syz-executor.3 blkid D25936 738 732 0x00000000 [29845] 0 29845 18213 9661 26 3 0 0 syz-executor.3 Call Trace: [29882] 0 29882 18213 9485 26 3 0 0 syz-executor.3 [29923] 0 29923 18213 9645 26 3 0 0 syz-executor.3 schedule+0x92/0x1c0 kernel/sched/core.c:3498 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556 [29956] 0 29956 18213 9949 27 3 0 0 syz-executor.3 __mutex_lock_common kernel/locking/mutex.c:833 [inline] __mutex_lock+0x595/0x13e0 kernel/locking/mutex.c:893 [30033] 0 30033 18213 9629 26 3 0 0 syz-executor.3 [30083] 0 30083 18213 9549 26 3 0 0 syz-executor.3 [30110] 0 30110 18213 9337 26 3 0 0 syz-executor.3 [30126] 0 30126 18213 9768 27 3 0 0 syz-executor.3 kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301 do_inode_permission fs/namei.c:389 [inline] __inode_permission2+0x22c/0x2c0 fs/namei.c:431 [30154] 0 30154 18213 9933 27 3 0 0 syz-executor.3 inode_permission2+0x2d/0x100 fs/namei.c:488 may_lookup fs/namei.c:1815 [inline] link_path_walk+0x8a6/0x1110 fs/namei.c:2195 [30354] 0 30354 18213 9730 27 3 0 0 syz-executor.3 [30387] 0 30387 18213 9421 26 3 0 0 syz-executor.3 path_openat+0x178/0x2be0 fs/namei.c:3680 [30430] 0 30430 18213 9869 27 3 0 0 syz-executor.3 [30455] 0 30455 18213 9981 27 3 0 0 syz-executor.3 [30484] 0 30484 18213 9629 26 3 0 0 syz-executor.3 do_filp_open+0x1a1/0x280 fs/namei.c:3715 [30522] 0 30522 18213 9517 26 3 0 0 syz-executor.3 [30565] 0 30565 18213 9629 26 3 0 0 syz-executor.3 do_sys_open+0x2ca/0x590 fs/open.c:1096 [30600] 0 30600 18213 9874 27 3 0 0 syz-executor.3 [30622] 0 30622 18213 9901 27 3 0 0 syz-executor.3 [30647] 0 30647 18213 9991 27 3 0 0 syz-executor.3 [30680] 0 30680 18213 9773 27 3 0 0 syz-executor.3 do_syscall_64+0x19b/0x520 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x42/0xb7 RIP: 0033:0x7f4b4fca1120 [30715] 0 30715 18213 9581 26 3 0 0 syz-executor.3 RSP: 002b:00007fff84540ae8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [30752] 0 30752 18213 9677 26 3 0 0 syz-executor.3 RAX: ffffffffffffffda RBX: 00007fff84541b30 RCX: 00007f4b4fca1120 RDX: 00007fff84540b02 RSI: 0000000000000000 RDI: 00007fff84540af0 [30789] 0 30789 18213 9773 27 3 0 0 syz-executor.3 [30864] 0 30864 18213 9165 25 3 0 0 syz-executor.3 [30914] 0 30914 18213 9723 26 3 0 0 syz-executor.3 [30940] 0 30940 18213 9917 27 3 0 0 syz-executor.3 RBP: 0000000000000704 R08: 0000000000000000 R09: 0000000000000001 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000001000 R13: 0000000000000000 R14: 00007f4b50182820 R15: 00007f4b4ff782a2 [30961] 0 30961 18213 10094 27 3 0 0 syz-executor.3 [30972] 0 30972 18213 10008 27 3 0 0 syz-executor.3 [30992] 0 30992 18213 9789 27 3 0 0 syz-executor.3 [31019] 0 31019 18213 9789 27 3 0 0 syz-executor.3 INFO: task udevd:766 blocked for more than 140 seconds. [31048] 0 31048 18213 9613 26 3 0 0 syz-executor.3 [31067] 0 31067 18246 12814 32 3 0 0 syz-executor.3 [31085] 0 31085 18213 9373 26 3 0 0 syz-executor.3 [31120] 0 31120 18213 12812 32 3 0 0 syz-executor.3 [31143] 0 31143 18213 8752 26 4 0 0 syz-executor.0 [31147] 0 31147 18213 10020 27 3 0 0 syz-executor.3 [31166] 0 31166 18246 12814 32 3 0 0 syz-executor.3 [31186] 0 31186 18213 9101 25 3 0 0 syz-executor.3 Not tainted 4.14.151+ #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [31219] 0 31219 18246 12814 32 3 0 0 syz-executor.3 udevd D29376 766 190 0x00000000 Call Trace: [31249] 0 31249 18213 9605 26 3 0 0 syz-executor.3 [31265] 0 31265 18246 12814 32 3 0 0 syz-executor.3 [31276] 0 31276 18213 9709 26 3 0 0 syz-executor.3 schedule+0x92/0x1c0 kernel/sched/core.c:3498 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556 [31294] 0 31294 18279 12816 32 3 0 0 syz-executor.3 [31307] 0 31307 18213 9805 27 3 0 0 syz-executor.3 __mutex_lock_common kernel/locking/mutex.c:833 [inline] __mutex_lock+0x595/0x13e0 kernel/locking/mutex.c:893 [31314] 0 31314 18279 12816 32 3 0 0 syz-executor.3 [31323] 0 31323 18213 9597 26 3 0 0 syz-executor.3 [31345] 0 31345 18213 12812 32 3 0 0 syz-executor.3 kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301 do_inode_permission fs/namei.c:389 [inline] __inode_permission2+0x22c/0x2c0 fs/namei.c:431 inode_permission2+0x2d/0x100 fs/namei.c:488 [31364] 0 31364 18180 8715 25 3 0 0 syz-executor.3 may_lookup fs/namei.c:1815 [inline] link_path_walk+0x8a6/0x1110 fs/namei.c:2195 [31395] 0 31395 18246 8737 26 3 0 0 syz-executor.3 path_lookupat.isra.0+0xde/0x7e0 fs/namei.c:2440 [31582] 0 31582 18213 9725 26 3 0 0 syz-executor.3 [31597] 0 31597 18246 12814 32 3 0 0 syz-executor.3 [31622] 0 31622 18213 9533 26 3 0 0 syz-executor.3 filename_lookup+0x1a1/0x3b0 fs/namei.c:2475 [31647] 0 31647 18246 12814 32 3 0 0 syz-executor.3 [31672] 0 31672 18213 9597 26 3 0 0 syz-executor.3 SYSC_readlinkat fs/stat.c:394 [inline] SyS_readlinkat+0xbe/0x2b0 fs/stat.c:382 [31691] 0 31691 18279 12816 32 3 0 0 syz-executor.3 [31711] 0 31711 18213 9181 25 3 0 0 syz-executor.3 do_syscall_64+0x19b/0x520 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x42/0xb7 [31742] 0 31742 18213 9469 26 3 0 0 syz-executor.3 RIP: 0033:0x7fba4b4e4577 RSP: 002b:00007ffd9cfde9b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000059 RAX: ffffffffffffffda RBX: 0000000001705030 RCX: 00007fba4b4e4577 [31785] 0 31785 18213 9725 26 3 0 0 syz-executor.3 [31803] 0 31803 18246 12814 32 3 0 0 syz-executor.3 [31847] 0 31847 18213 9756 27 3 0 0 syz-executor.3 RDX: 0000000000000400 RSI: 00007ffd9cfde9c0 RDI: 00007ffd9cfdeea0 RBP: 000000000178ede0 R08: 7665642f7379732f R09: 7269762f73656369 [31874] 0 31874 18279 12816 32 3 0 0 syz-executor.3 R10: 6f6c622f6c617574 R11: 0000000000000246 R12: 00007ffd9cfdeea0 [31912] 0 31912 18213 9351 26 3 0 0 syz-executor.3 R13: 0000000000000400 R14: 0000000001705030 R15: 000000000000000b Showing all locks held in the system: 1 lock held by init/1: #0: (&ei->i_mmap_sem){++++}, at: [<00000000a9443899>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6232 1 lock held by khungtaskd/23: #0: (tasklist_lock){.+.+}, at: [<000000001b122378>] debug_show_all_locks+0x7c/0x21a kernel/locking/lockdep.c:4544 3 locks held by rs:main Q:Reg/1629: #0: (&f->f_pos_lock){+.+.}, at: [<0000000037195d7c>] __fdget_pos+0xb5/0xd0 fs/file.c:769 #1: (sb_writers#4){.+.+}, at: [<000000002897eeda>] file_start_write include/linux/fs.h:2746 [inline] #1: (sb_writers#4){.+.+}, at: [<000000002897eeda>] vfs_write+0x3d8/0x4d0 fs/read_write.c:545 #2: (&sb->s_type->i_mutex_key#9){++++}, at: [<00000000b6eb3cb7>] inode_trylock include/linux/fs.h:744 [inline] #2: (&sb->s_type->i_mutex_key#9){++++}, at: [<00000000b6eb3cb7>] ext4_file_write_iter+0x1b0/0xdb0 fs/ext4/file.c:234 1 lock held by rsyslogd/1632: #0: (&ei->i_mmap_sem){++++}, at: [<00000000a9443899>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6232 2 locks held by getty/1759: #0: (&tty->ldisc_sem){++++}, at: [<00000000639bd268>] tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:284 #1: (&ldata->atomic_read_lock){+.+.}, at: [<0000000047954d33>] n_tty_read+0x1f7/0x1700 drivers/tty/n_tty.c:2156 1 lock held by syz-fuzzer/1778: #0: (&ei->i_mmap_sem){++++}, at: [<00000000a9443899>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6232 1 lock held by syz-fuzzer/1790: #0: (&ei->i_mmap_sem){++++}, at: [<00000000a9443899>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6232 1 lock held by syz-fuzzer/1791: #0: (&ei->i_mmap_sem){++++}, at: [<00000000a9443899>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6232 1 lock held by syz-executor.2/1841: #0: (&xt[i].mutex){+.+.}, at: [<0000000009e27750>] xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 1 lock held by syz-executor.3/6814: #0: (&ei->i_mmap_sem){++++}, at: [<00000000a9443899>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6232 1 lock held by syz-executor.0/8393: #0: (&xt[i].mutex){+.+.}, at: [<0000000009e27750>] xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 1 lock held by syz-executor.4/2304: #0: (&ei->i_mmap_sem){++++}, at: [<00000000a9443899>] ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6232 2 locks held by kworker/1:6/22688: #0: ("events"){+.+.}, at: [<000000000e8bb649>] process_one_work+0x6ff/0x1580 kernel/workqueue.c:2105 #1: (xfrm_state_gc_work){+.+.}, at: [<0000000070dbbfd5>] process_one_work+0x735/0x1580 kernel/workqueue.c:2109 1 lock held by syz-executor.1/32002: #0: (&xt[i].mutex){+.+.}, at: [<0000000009e27750>] xt_find_table_lock+0x35/0x3d0 net/netfilter/x_tables.c:1092 1 lock held by blkid/738: #0: (kernfs_mutex){+.+.}, at: [<000000006fb85f2f>] kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301 1 lock held by udevd/766: #0: (kernfs_mutex){+.+.}, at: [<000000006fb85f2f>] kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301 1 lock held by udevd/767: #0: (&mm->mmap_sem){++++}, at: [<00000000187ac765>] __do_page_fault+0x282/0xbb0 arch/x86/mm/fault.c:1349 ============================================= [31939] 0 31939 18246 12813 32 3 0 0 syz-executor.3 [31987] 0 31987 18213 9848 27 3 0 0 syz-executor.3 NMI backtrace for cpu 0 CPU: 0 PID: 23 Comm: khungtaskd Not tainted 4.14.151+ #0 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0xca/0x134 lib/dump_stack.c:53 nmi_cpu_backtrace.cold+0x47/0x86 lib/nmi_backtrace.c:101 nmi_trigger_cpumask_backtrace+0x119/0x147 lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:140 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:195 [inline] watchdog+0x629/0xbe0 kernel/hung_task.c:274 kthread+0x31f/0x430 kernel/kthread.c:232 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:404 [31990] 0 31990 18246 12814 32 3 0 0 syz-executor.3 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 757 Comm: udevd Not tainted 4.14.151+ #0 task: 0000000080de3f43 task.stack: 000000007d27a6f6 RIP: 0010:__sanitizer_cov_trace_pc+0x23/0x60 kernel/kcov.c:68 RSP: 0000:ffff888007436f68 EFLAGS: 00000046 RAX: ffff8881a1a2af00 RBX: 0000607e2420b220 RCX: 0000000000000005 RDX: 0000000000000000 RSI: ffffffffb494a640 RDI: ffffffffb494a680 RBP: ffffffffb494a680 R08: 0000000000000000 R09: fffffbfff6a4600e R10: fffffbfff6a4600d R11: ffffffffb523006b R12: 0000000000000001 R13: ffffffffb494a640 R14: ffffffffb4ec0d60 R15: ffff888007437058 FS: 00007fba4bddb7a0(0000) GS:ffff8881dbb00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000404d65 CR3: 0000000020bfe004 CR4: 00000000001606a0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 Call Trace: check_preemption_disabled+0x35/0x1f0 lib/smp_processor_id.c:52 perf_trace_lock+0x11e/0x4e0 include/trace/events/lock.h:39 trace_lock_release include/trace/events/lock.h:58 [inline] lock_release+0x4e9/0x740 kernel/locking/lockdep.c:4012 rcu_lock_release include/linux/rcupdate.h:247 [inline] rcu_read_unlock include/linux/rcupdate.h:685 [inline] page_evictable+0x145/0x1f0 mm/vmscan.c:3982 putback_inactive_pages+0x259/0xd70 mm/vmscan.c:1713 shrink_inactive_list+0x563/0x1130 mm/vmscan.c:1843 shrink_list mm/vmscan.c:2179 [inline] shrink_node_memcg+0x5ad/0x1470 mm/vmscan.c:2444 shrink_node+0x2f3/0xc30 mm/vmscan.c:2636 shrink_zones mm/vmscan.c:2818 [inline] do_try_to_free_pages+0x350/0xd80 mm/vmscan.c:2876 try_to_free_pages+0x27c/0x710 mm/vmscan.c:3082 __perform_reclaim mm/page_alloc.c:3659 [inline] __alloc_pages_direct_reclaim mm/page_alloc.c:3681 [inline] __alloc_pages_slowpath mm/page_alloc.c:4068 [inline] __alloc_pages_nodemask+0xaee/0x2370 mm/page_alloc.c:4277 __alloc_pages include/linux/gfp.h:461 [inline] __alloc_pages_node include/linux/gfp.h:474 [inline] alloc_pages_node include/linux/gfp.h:488 [inline] wp_page_copy+0x16d/0x1610 mm/memory.c:2502 do_wp_page+0x273/0x19d0 mm/memory.c:2784 handle_pte_fault mm/memory.c:4005 [inline] __handle_mm_fault+0xdec/0x2700 mm/memory.c:4113 handle_mm_fault+0x2f1/0x6da mm/memory.c:4150 __do_page_fault+0x477/0xbb0 arch/x86/mm/fault.c:1420 page_fault+0x42/0x50 arch/x86/entry/entry_64.S:1122 RIP: 170fd70:0x7fba4bde6040 RSP: 9cfdfb40:00007ffd9cfdfba0 EFLAGS: 00000000 Code: 00 00 e9 90 ed ff ff 90 65 48 8b 04 25 c0 de 01 00 48 85 c0 74 1a 65 8b 15 eb bc 30 4d 81 e2 00 01 1f 00 75 0b 8b 90 a8 11 00 00 <83> fa 01 74 01 c3 48 c7 c2 00 00 00 81 48 81 ea 00 00 a0 b2 48