bisecting cause commit starting from 1d94330a437a573cfdf848f6743b1ed169242c8a building syzkaller on 65a7a8540d29e72622fca06522587f7e66539fd3 testing commit 1d94330a437a573cfdf848f6743b1ed169242c8a with gcc (GCC) 8.1.0 kernel signature: 5d3227446428692a489d5d83715387326dbc9d1d64d39ed4e14c581ccbe3297f run #0: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #1: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #2: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #3: crashed: WARNING in io_uring_flush run #4: crashed: WARNING in io_uring_flush run #5: crashed: WARNING in io_uring_flush run #6: crashed: WARNING in io_uring_flush run #7: crashed: WARNING in io_uring_flush run #8: crashed: WARNING in io_uring_flush run #9: crashed: WARNING in io_uring_flush testing release v5.10 testing commit 2c85ebc57b3e1817b6ce1a6b703928e113a90442 with gcc (GCC) 8.1.0 kernel signature: 395a614079c9030036488f72c030c4708fae86b9aba956ca15d15003efd3a593 all runs: OK # git bisect start 1d94330a437a573cfdf848f6743b1ed169242c8a 2c85ebc57b3e1817b6ce1a6b703928e113a90442 Bisecting: 7078 revisions left to test after this (roughly 13 steps) [2dda5700ef6af806e0358f63d81eb436a0d280fa] Merge tag 'regulator-v5.11' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/regulator testing commit 2dda5700ef6af806e0358f63d81eb436a0d280fa with gcc (GCC) 8.1.0 kernel signature: 2ad2cb6351afcbbcbe43894a499fb33667fc73f5699d9aff1d08754829b0b575 all runs: OK # git bisect good 2dda5700ef6af806e0358f63d81eb436a0d280fa Bisecting: 3626 revisions left to test after this (roughly 12 steps) [9805529ec544ea7a82d891d5239a8ebd3dbb2a3e] Merge tag 'arm-soc-dt-5.11' of git://git.kernel.org/pub/scm/linux/kernel/git/soc/soc testing commit 9805529ec544ea7a82d891d5239a8ebd3dbb2a3e with gcc (GCC) 8.1.0 kernel signature: ebc2bf19b9b97d2d465977b4a1a0d8b35c66496a5a60baa86cb7f96369491ecb all runs: OK # git bisect good 9805529ec544ea7a82d891d5239a8ebd3dbb2a3e Bisecting: 1792 revisions left to test after this (roughly 11 steps) [6a447b0e3151893f6d4a889956553c06d2e775c6] Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm testing commit 6a447b0e3151893f6d4a889956553c06d2e775c6 with gcc (GCC) 8.1.0 kernel signature: 055967fa238febeebf1ce9870175362f49466286efa7a3f7074402c902effccb run #0: crashed: INFO: task hung in io_sq_thread_stop run #1: crashed: INFO: task hung in io_sq_thread_stop run #2: crashed: INFO: task hung in io_sq_thread_stop run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK reproducer seems to be flaky # git bisect bad 6a447b0e3151893f6d4a889956553c06d2e775c6 Bisecting: 841 revisions left to test after this (roughly 10 steps) [8a5be36b9303ae167468d4f5e1b3c090b9981396] Merge tag 'powerpc-5.11-1' of git://git.kernel.org/pub/scm/linux/kernel/git/powerpc/linux testing commit 8a5be36b9303ae167468d4f5e1b3c090b9981396 with gcc (GCC) 8.1.0 kernel signature: fc35215c13769363f699016c3897814fc7c9aac3b62b2a21b1d7b64d6bb6dc52 all runs: OK # git bisect good 8a5be36b9303ae167468d4f5e1b3c090b9981396 Bisecting: 426 revisions left to test after this (roughly 9 steps) [4862c741bd440813cabc5e93351f0950c1cb19d9] Merge tag 'ktest-v5.11' of git://git.kernel.org/pub/scm/linux/kernel/git/rostedt/linux-ktest testing commit 4862c741bd440813cabc5e93351f0950c1cb19d9 with gcc (GCC) 8.1.0 kernel signature: 61d695ccd484905860cf214cb7ca33113f14e657a44b0e6c698709762e58ea06 run #0: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #1: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #2: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #3: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #4: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #5: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #6: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #7: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #8: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #9: crashed: INFO: task hung in io_sq_thread_stop # git bisect bad 4862c741bd440813cabc5e93351f0950c1cb19d9 Bisecting: 165 revisions left to test after this (roughly 8 steps) [a409ed156a90093a03fe6a93721ddf4c591eac87] Merge tag 'gpio-v5.11-1' of git://git.kernel.org/pub/scm/linux/kernel/git/linusw/linux-gpio testing commit a409ed156a90093a03fe6a93721ddf4c591eac87 with gcc (GCC) 8.1.0 kernel signature: 41a77be0c793954d3b1bbd980015b69e8e611ee8f2baccb2642fcea34fd8d9e3 run #0: crashed: INFO: task hung in __io_uring_files_cancel run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad a409ed156a90093a03fe6a93721ddf4c591eac87 Bisecting: 125 revisions left to test after this (roughly 7 steps) [787fec8ac15cc693b9a7bc1b4a338b92483d993c] Merge tag 'for-linus-5.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/rw/ubifs testing commit 787fec8ac15cc693b9a7bc1b4a338b92483d993c with gcc (GCC) 8.1.0 kernel signature: e767afd32a6f73f6d5817ade96cc43cdb4e639c9263169b8575728b0bd556c24 run #0: crashed: INFO: task hung in io_sq_thread_stop run #1: crashed: INFO: task hung in io_sq_thread_stop run #2: OK run #3: OK run #4: crashed: INFO: task hung in io_sq_thread_stop run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad 787fec8ac15cc693b9a7bc1b4a338b92483d993c Bisecting: 67 revisions left to test after this (roughly 6 steps) [afee4410bc6c50e1422c5a45d633ad0e478ea960] cifs: update internal module version number testing commit afee4410bc6c50e1422c5a45d633ad0e478ea960 with gcc (GCC) 8.1.0 kernel signature: 2cd96dc5c9b39c705ec73cd99dda673fad0fdfd9aa04a407230c0592d8d10c00 all runs: OK # git bisect good afee4410bc6c50e1422c5a45d633ad0e478ea960 Bisecting: 33 revisions left to test after this (roughly 5 steps) [d8a4ea350f1fff71c9988ea3da3c913ec30bbfbe] octeontx2-af: Fix undetected unmap PF error check testing commit d8a4ea350f1fff71c9988ea3da3c913ec30bbfbe with gcc (GCC) 8.1.0 kernel signature: 33e46e5f858f7a347de58df07ecefb811d37080cd79f4d6cdb222d98e5f447ce all runs: OK # git bisect good d8a4ea350f1fff71c9988ea3da3c913ec30bbfbe Bisecting: 16 revisions left to test after this (roughly 4 steps) [c8be097530a82e004f98378c3afc5cd35efc4f57] Revert "ubifs: Fix out-of-bounds memory access caused by abnormal value of node_len" testing commit c8be097530a82e004f98378c3afc5cd35efc4f57 with gcc (GCC) 8.1.0 fs/ubifs/journal.c:1562:5: error: too few arguments to function 'ubifs_dump_node' fs/ubifs/file.c:95:2: error: too few arguments to function 'ubifs_dump_node' # git bisect skip c8be097530a82e004f98378c3afc5cd35efc4f57 Bisecting: 16 revisions left to test after this (roughly 4 steps) [5b33afee93a1e7665a5ffae027fc66f9376f4ea7] nfp: move indirect block cleanup to flower app stop callback testing commit 5b33afee93a1e7665a5ffae027fc66f9376f4ea7 with gcc (GCC) 8.1.0 kernel signature: 33e46e5f858f7a347de58df07ecefb811d37080cd79f4d6cdb222d98e5f447ce all runs: OK # git bisect good 5b33afee93a1e7665a5ffae027fc66f9376f4ea7 Bisecting: 16 revisions left to test after this (roughly 4 steps) [c4c0d19d39d26c5f58633f8fcca75f03b2854fc0] ubifs: Limit dumping length by size of memory which is allocated for the node testing commit c4c0d19d39d26c5f58633f8fcca75f03b2854fc0 with gcc (GCC) 8.1.0 fs/ubifs/journal.c:1562:5: error: too few arguments to function 'ubifs_dump_node' # git bisect skip c4c0d19d39d26c5f58633f8fcca75f03b2854fc0 Bisecting: 16 revisions left to test after this (roughly 4 steps) [8fdaaf4cf3cea64aed8265a62c4ea7158ac0aa09] jffs2: Fix if/else empty body warnings testing commit 8fdaaf4cf3cea64aed8265a62c4ea7158ac0aa09 with gcc (GCC) 8.1.0 kernel signature: ecaa93d8a828c1a66536993f24447ff72457e65fd03ca662d1b18e8d5a98bdf7 run #0: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #1: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #2: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #3: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 8fdaaf4cf3cea64aed8265a62c4ea7158ac0aa09 Bisecting: 14 revisions left to test after this (roughly 4 steps) [a33e30a0e023e9d1866866ca895c7789f48445e7] ubifs: Pass node length in all node dumping callers testing commit a33e30a0e023e9d1866866ca895c7789f48445e7 with gcc (GCC) 8.1.0 fs/ubifs/debug.c:843:3: error: too few arguments to function 'ubifs_dump_node' # git bisect skip a33e30a0e023e9d1866866ca895c7789f48445e7 Bisecting: 14 revisions left to test after this (roughly 4 steps) [d64c6f96ba86bd8b97ed8d6762a8c8cc1770d214] Merge tag 'net-5.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net testing commit d64c6f96ba86bd8b97ed8d6762a8c8cc1770d214 with gcc (GCC) 8.1.0 kernel signature: a2848743298dd69b778f9cbd24ce120639d90beef859de446b7895223ab45352 run #0: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #1: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #2: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #3: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #4: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #5: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #6: boot failed: create image operation failed: &{Code:ZONE_RESOURCE_POOL_EXHAUSTED_WITH_DETAILS Location: Message:The zone 'projects/syzkaller/zones/us-central1-c' does not have enough resources available to fulfill the request. '(resource type:compute)'. ForceSendFields:[] NullFields:[]}. run #7: OK run #8: OK run #9: OK # git bisect skip d64c6f96ba86bd8b97ed8d6762a8c8cc1770d214 Bisecting: 14 revisions left to test after this (roughly 4 steps) [3399bac5efd62e031e62b042d25ed4984db8b8bf] dt-bindings: soc: document LiteX SoC Controller bindings testing commit 3399bac5efd62e031e62b042d25ed4984db8b8bf with gcc (GCC) 8.1.0 kernel signature: bd32dd2c76a43ebdc7b2f529423b5134bcfbf336b96a4a4b5deff912704c585d all runs: OK # git bisect good 3399bac5efd62e031e62b042d25ed4984db8b8bf Bisecting: 14 revisions left to test after this (roughly 4 steps) [79c5ef07d91eee6832bebd98f775a06ed7dd2151] dt-bindings: serial: document LiteUART bindings testing commit 79c5ef07d91eee6832bebd98f775a06ed7dd2151 with gcc (GCC) 8.1.0 kernel signature: 0dfde28735838f027127cb3da6fc685e5d4db7fef0e1ba528f8ed47dca2b5fa0 all runs: OK # git bisect good 79c5ef07d91eee6832bebd98f775a06ed7dd2151 Bisecting: 13 revisions left to test after this (roughly 4 steps) [32f6ccc743b89bb4c51d4a868ffdb6ebda2909cf] ubifs: Remove the redundant return in dbg_check_nondata_nodes_order testing commit 32f6ccc743b89bb4c51d4a868ffdb6ebda2909cf with gcc (GCC) 8.1.0 kernel signature: 8fafd637b3c3fe0683fc7e71a71a7398b83fb9f34186a039a6594078f401efa0 all runs: OK # git bisect good 32f6ccc743b89bb4c51d4a868ffdb6ebda2909cf Bisecting: 6 revisions left to test after this (roughly 3 steps) [e13300bdaa68f5487000e66baed1ff69bcb510bf] Merge tag '5.11-rc-smb3' of git://git.samba.org/sfrench/cifs-2.6 testing commit e13300bdaa68f5487000e66baed1ff69bcb510bf with gcc (GCC) 8.1.0 kernel signature: 0d4b0d76d5f7ecd2b6acf59a2019246001ceb9900be8ec8015d45efeee955389 all runs: OK # git bisect good e13300bdaa68f5487000e66baed1ff69bcb510bf Bisecting: 2 revisions left to test after this (roughly 2 steps) [bf6dab7a6ce79c56764623b970be10fc6edd8a68] ubifs: ubifs_dump_sleb: Remove unused function testing commit bf6dab7a6ce79c56764623b970be10fc6edd8a68 with gcc (GCC) 8.1.0 kernel signature: dae95f6bffc7fc921f1c52af705fa6cfc628ad00fe91fce03c3b66222f2160a2 all runs: OK # git bisect good bf6dab7a6ce79c56764623b970be10fc6edd8a68 Bisecting: 0 revisions left to test after this (roughly 0 steps) [b80a974b8c58164ed57b0f025a47b8f003198d9e] ubifs: ubifs_dump_node: Dump all branches of the index node testing commit b80a974b8c58164ed57b0f025a47b8f003198d9e with gcc (GCC) 8.1.0 kernel signature: dfd5a7ce99fd2b713b45fee673d01c0c46ab44d6c981bb1fe3fd7aef25f48b2e all runs: OK # git bisect good b80a974b8c58164ed57b0f025a47b8f003198d9e 787fec8ac15cc693b9a7bc1b4a338b92483d993c is the first bad commit commit 787fec8ac15cc693b9a7bc1b4a338b92483d993c Merge: e13300bdaa68 b80a974b8c58 Author: Linus Torvalds Date: Thu Dec 17 17:46:34 2020 -0800 Merge tag 'for-linus-5.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/rw/ubifs Pull jffs2, ubi and ubifs updates from Richard Weinberger: "JFFS2: - Fix for a remount regression - Fix for an abnormal GC exit - Fix for a possible NULL pointer issue while mounting UBI: - Add support ECC-ed NOR flash - Removal of dead code UBIFS: - Make node dumping debug code more reliable - Various cleanups: less ifdefs, less typos - Fix for an info leak" * tag 'for-linus-5.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/rw/ubifs: ubifs: ubifs_dump_node: Dump all branches of the index node ubifs: ubifs_dump_sleb: Remove unused function ubifs: Pass node length in all node dumping callers Revert "ubifs: Fix out-of-bounds memory access caused by abnormal value of node_len" ubifs: Limit dumping length by size of memory which is allocated for the node ubifs: Remove the redundant return in dbg_check_nondata_nodes_order jffs2: Fix NULL pointer dereference in rp_size fs option parsing ubifs: Fixed print foramt mismatch in ubifs ubi: Do not zero out EC and VID on ECC-ed NOR flashes jffs2: remove trailing semicolon in macro definition ubifs: Fix error return code in ubifs_init_authentication() ubifs: wbuf: Don't leak kernel memory to flash ubi: Remove useless code in bytes_str_to_int ubifs: Fix the printing type of c->big_lpt jffs2: Allow setting rp_size to zero during remounting jffs2: Fix ignoring mounting options problem during remounting jffs2: Fix GC exit abnormally ubifs: Code cleanup by removing ifdef macro surrounding jffs2: Fix if/else empty body warnings ubifs: Delete duplicated words + other fixes drivers/mtd/ubi/build.c | 6 +-- drivers/mtd/ubi/io.c | 9 +++- fs/jffs2/debug.h | 23 +++++----- fs/jffs2/jffs2_fs_sb.h | 1 + fs/jffs2/nodelist.h | 4 +- fs/jffs2/readinode.c | 16 +++++++ fs/jffs2/super.c | 32 ++++++++++--- fs/ubifs/auth.c | 4 +- fs/ubifs/commit.c | 4 +- fs/ubifs/debug.c | 116 ++++++++++++++++++++++++++++-------------------- fs/ubifs/debug.h | 5 +-- fs/ubifs/dir.c | 4 +- fs/ubifs/file.c | 8 +--- fs/ubifs/io.c | 52 ++++++++++------------ fs/ubifs/journal.c | 3 +- fs/ubifs/lpt.c | 4 +- fs/ubifs/master.c | 4 +- fs/ubifs/orphan.c | 6 ++- fs/ubifs/recovery.c | 6 +-- fs/ubifs/replay.c | 6 +-- fs/ubifs/sb.c | 2 +- fs/ubifs/scan.c | 4 +- fs/ubifs/super.c | 6 +-- fs/ubifs/tnc.c | 10 ++--- fs/ubifs/tnc_misc.c | 7 ++- fs/ubifs/ubifs.h | 10 +++-- 26 files changed, 203 insertions(+), 149 deletions(-) Reproducer flagged being flaky revisions tested: 20, total time: 5h17m47.687913732s (build: 1h42m39.507016711s, test: 3h32m49.814776461s) first bad commit: 787fec8ac15cc693b9a7bc1b4a338b92483d993c Merge tag 'for-linus-5.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/rw/ubifs recipients (to): ["torvalds@linux-foundation.org"] recipients (cc): [] crash: INFO: task hung in io_sq_thread_stop INFO: task kworker/u4:2:34 blocked for more than 143 seconds. Not tainted 5.10.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/u4:2 state:D stack:12368 pid: 34 ppid: 2 flags:0x00004000 Workqueue: events_unbound io_ring_exit_work Call Trace: context_switch kernel/sched/core.c:4327 [inline] __schedule+0x450/0x940 kernel/sched/core.c:5078 schedule+0x38/0xe0 kernel/sched/core.c:5157 schedule_timeout+0x275/0x360 kernel/time/timer.c:1854 do_wait_for_common kernel/sched/completion.c:85 [inline] __wait_for_common kernel/sched/completion.c:106 [inline] wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion+0xae/0x110 kernel/sched/completion.c:138 kthread_park+0x43/0x80 kernel/kthread.c:557 io_sq_thread_park fs/io_uring.c:7345 [inline] io_sq_thread_stop+0x46/0x150 fs/io_uring.c:7366 io_finish_async fs/io_uring.c:7384 [inline] io_ring_ctx_free fs/io_uring.c:8551 [inline] io_ring_exit_work+0x40/0x220 fs/io_uring.c:8643 process_one_work+0x293/0x600 kernel/workqueue.c:2275 worker_thread+0x38/0x380 kernel/workqueue.c:2421 kthread+0x144/0x170 kernel/kthread.c:292 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296 Showing all locks held in the system: 3 locks held by kworker/u4:2/34: #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:615 [inline] #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline] #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x207/0x600 kernel/workqueue.c:2246 #1: ffffc90000d73e70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:615 [inline] #1: ffffc90000d73e70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline] #1: ffffc90000d73e70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x207/0x600 kernel/workqueue.c:2246 #2: ffff88811eb64e70 (&sqd->lock){+.+.}-{3:3}, at: io_sq_thread_park.part.66+0xf/0x20 fs/io_uring.c:7347 1 lock held by khungtaskd/1613: #0: ffffffff84e17880 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x15/0x17a kernel/locking/lockdep.c:6255 1 lock held by in:imklog/8043: #0: ffff8881098860f0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x45/0x50 fs/file.c:947 2 locks held by kworker/u4:6/10216: #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:615 [inline] #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline] #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x207/0x600 kernel/workqueue.c:2246 #1: ffffc90002b1be70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:615 [inline] #1: ffffc90002b1be70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline] #1: ffffc90002b1be70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x207/0x600 kernel/workqueue.c:2246 2 locks held by kworker/u4:7/10361: #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:615 [inline] #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline] #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x207/0x600 kernel/workqueue.c:2246 #1: ffffc90002d7be70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:615 [inline] #1: ffffc90002d7be70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline] #1: ffffc90002d7be70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x207/0x600 kernel/workqueue.c:2246 2 locks held by kworker/u4:9/10599: #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:615 [inline] #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline] #0: ffff888100058938 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x207/0x600 kernel/workqueue.c:2246 #1: ffffc9000312be70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:615 [inline] #1: ffffc9000312be70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline] #1: ffffc9000312be70 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x207/0x600 kernel/workqueue.c:2246 ============================================= NMI backtrace for cpu 0 CPU: 0 PID: 1613 Comm: khungtaskd Not tainted 5.10.0-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x77/0x97 lib/dump_stack.c:120 nmi_cpu_backtrace.cold.8+0x53/0x6d lib/nmi_backtrace.c:105 nmi_trigger_cpumask_backtrace+0xd5/0xf0 lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:209 [inline] watchdog+0x57f/0x670 kernel/hung_task.c:294 kthread+0x144/0x170 kernel/kthread.c:292 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 8248 Comm: io_uring-sq Not tainted 5.10.0-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:lock_is_held_type+0xea/0x120 kernel/locking/lockdep.c:5481 Code: 83 e0 03 39 c8 41 0f 94 c5 48 c7 c7 34 99 6a 84 e8 db 09 00 00 ba ff ff ff ff 65 0f c1 15 0e 64 97 7c 83 fa 01 75 1a 41 57 9d <48> 83 c4 08 44 89 e8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 45 31 ed eb RSP: 0018:ffffc9000c5fbdf0 EFLAGS: 00000246 RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000001 RDX: 0000000000000001 RSI: ffffffff846a9934 RDI: ffffffff847b1fae RBP: ffffffff84e17840 R08: 0000000000000001 R09: 0000000000000001 R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881456e3580 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000246 FS: 0000000000000000(0000) GS:ffff88813bd00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007ffc8786c310 CR3: 000000011ce46000 CR4: 0000000000350ee0 Call Trace: lock_is_held include/linux/lockdep.h:271 [inline] ___might_sleep+0xd3/0x140 kernel/sched/core.c:7877 io_sq_thread+0x428/0x7e0 fs/io_uring.c:7031 kthread+0x144/0x170 kernel/kthread.c:292 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296