ci starts bisection 2023-12-29 05:41:49.571156668 +0000 UTC m=+558537.167922106
bisecting cause commit starting from f5837722ffecbbedf1b1dbab072a063565f0dad1
building syzkaller on fb427a0782000106c62de76d251e5a02de5406a9
ensuring issue is reproducible on original commit f5837722ffecbbedf1b1dbab072a063565f0dad1

testing commit f5837722ffecbbedf1b1dbab072a063565f0dad1 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: bb1d183ae4bd1b910dc9ee64c3adc16d3c99b21ef2f603d452e0cabbce59f59c
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
check whether we can drop unnecessary instrumentation
disabling configs for [ATOMIC_SLEEP LEAK UBSAN BUG KASAN LOCKDEP], they are not needed
testing commit f5837722ffecbbedf1b1dbab072a063565f0dad1 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 2e1e57268cc34a36935763980d02ba02eb89b48ef8921f3f274bbe8568d3d5c5
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
the bug reproduces without the instrumentation
disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP], they are not needed
kconfig minimization: base=3915 full=7652 leaves diff=2007
split chunks (needed=false): <2007>
split chunk #0 of len 2007 into 5 parts
testing without sub-chunk 1/5
disabling configs for [BUG KASAN LOCKDEP ATOMIC_SLEEP LEAK UBSAN], they are not needed
testing commit f5837722ffecbbedf1b1dbab072a063565f0dad1 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: f228d6d5e7cb9dc23e1aa5fd4be33321ad77429d7cdd46996d3fdaf3c1de2916
run #0: crashed: INFO: task hung in corrupted
run #1: crashed: INFO: task hung in ext4_quota_write
run #2: crashed: INFO: task hung in ext4_quota_write
run #3: crashed: INFO: task hung in ext4_quota_write
run #4: crashed: INFO: task hung in ext4_quota_write
run #5: crashed: INFO: task hung in ext4_quota_write
run #6: crashed: INFO: task hung in ext4_quota_write
run #7: crashed: INFO: task hung in ext4_quota_write
run #8: crashed: INFO: task hung in ext4_quota_write
run #9: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in corrupted, types: [HANG]
the chunk can be dropped
testing without sub-chunk 2/5
disabling configs for [ATOMIC_SLEEP LEAK UBSAN BUG KASAN LOCKDEP], they are not needed
testing commit f5837722ffecbbedf1b1dbab072a063565f0dad1 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: c19b7eeb6742c9b0961860da114a8fd1aa7047435bd77ef6fa00e42f4dd12a33
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
the chunk can be dropped
testing without sub-chunk 3/5
disabling configs for [UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP LEAK], they are not needed
testing commit f5837722ffecbbedf1b1dbab072a063565f0dad1 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 14199486b6872b1982562d281826245927ff7392e91f2d27076e60b5501ce81a
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
the chunk can be dropped
testing without sub-chunk 4/5
disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP], they are not needed
testing commit f5837722ffecbbedf1b1dbab072a063565f0dad1 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 43b0de69d333d76ecadd210545ce33768d87b8493427b2345078da940aff7a81
run #0: crashed: INFO: task hung in ext4_quota_write
run #1: crashed: INFO: task hung in corrupted
run #2: crashed: INFO: task hung in ext4_quota_write
run #3: crashed: INFO: task hung in ext4_quota_write
run #4: crashed: INFO: task hung in ext4_quota_write
run #5: crashed: INFO: task hung in ext4_quota_write
run #6: crashed: INFO: task hung in corrupted
run #7: crashed: INFO: task hung in ext4_quota_write
run #8: crashed: INFO: task hung in ext4_quota_write
run #9: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
the chunk can be dropped
testing without sub-chunk 5/5
disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP], they are not needed
testing commit f5837722ffecbbedf1b1dbab072a063565f0dad1 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 3edfa0de5f2702667fdf2ef3c9778696d15216134f97c254e53cb51c44f02cf4
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
the chunk can be dropped
disabling configs for [LOCKDEP ATOMIC_SLEEP LEAK UBSAN BUG KASAN], they are not needed
picked [v6.6 v6.5 v6.4 v6.2 v6.0 v5.18 v5.16 v5.14 v5.11 v5.8 v5.5 v5.2 v4.20 v4.19] out of 29 release tags
testing release v6.6
testing commit ffc253263a1375a65fa6c9f62a893e9767fbebfa gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 9d373a7e8d95697cf4a9991dfa171de4fb7c629a42bd6cd2ebf24d147865d672
run #0: crashed: INFO: task hung in corrupted
run #1: crashed: INFO: task hung in ext4_quota_write
run #2: crashed: INFO: task hung in ext4_quota_write
run #3: crashed: INFO: task hung in corrupted
run #4: crashed: INFO: task hung in ext4_quota_write
run #5: crashed: INFO: task hung in ext4_quota_write
run #6: crashed: INFO: task hung in ext4_quota_write
run #7: crashed: INFO: task hung in ext4_quota_write
run #8: crashed: INFO: task hung in ext4_quota_write
run #9: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in corrupted, types: [HANG]
testing release v6.5
testing commit 2dde18cd1d8fac735875f2e4987f11817cc0bc2c gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 843a4eb72f8a4d59e35dc61080954cde7e0fbf44813a47d220f161abf7ec9598
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
testing release v6.4
testing commit 6995e2de6891c724bfeb2db33d7b87775f913ad1 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: e4edebc83e97b6d2ae8ee9491f3f1c41ccd8aac2df446d1f5ca5888cda40773c
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
testing release v6.2
testing commit c9c3395d5e3dcc6daee66c6908354d47bf98cb0c gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 3177d6a3a19f96f2b55f989b276686f253c9ff1a45e0f7daafc3c7d3f14754c0
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
testing release v6.0
testing commit 4fe89d07dcc2804c8b562f6c7896a45643d34b2f gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: efd62a15248cb23624a4e526fdab9551383fba24552634ea2b97ccb1d2bffa28
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
testing release v5.18
testing commit 4b0986a3613c92f4ec1bdc7f60ec66fea135991f gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 586bcf092961969c304f40ddd96302b1cc21a94e221bdb00b9ee7d243d240e19
run #0: crashed: INFO: task hung in corrupted
run #1: crashed: INFO: task hung in ext4_quota_write
run #2: crashed: INFO: task hung in ext4_quota_write
run #3: crashed: INFO: task hung in ext4_quota_write
run #4: crashed: INFO: task hung in ext4_quota_write
run #5: crashed: INFO: task hung in ext4_quota_write
run #6: crashed: INFO: task hung in ext4_quota_write
run #7: crashed: INFO: task hung in ext4_quota_write
run #8: crashed: INFO: task hung in ext4_quota_write
run #9: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in corrupted, types: [HANG]
testing release v5.16
testing commit df0cc57e057f18e44dac8e6c18aba47ab53202f9 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 6cc3128ef2f7acf8cd751020e5866057b928bab76b673d7261395f2d1860954e
all runs: boot failed: invalid opcode in public_key_verify_signature
unable to determine the verdict: 0 good runs (wanted 5), for bad wanted 5 in total, got 0
testing release v5.14
testing commit 7d2a07b769330c34b4deabeed939325c77a7ec2f gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 9b9128668924bfe9e08316f96295585e64b6fea71b3d0b7760ad417e776eb743
all runs: boot failed: invalid opcode in public_key_verify_signature
unable to determine the verdict: 0 good runs (wanted 5), for bad wanted 5 in total, got 0
testing release v5.11
testing commit f40ddce88593482919761f74910f42f4b84c004b gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 2306029287796c447e3d7b8c85d8d100078637fa66c2d78c9435e5b8126eea40
all runs: boot failed: invalid opcode in public_key_verify_signature
unable to determine the verdict: 0 good runs (wanted 5), for bad wanted 5 in total, got 0
testing release v5.8
testing commit bcf876870b95592b52519ed4aafcf9d95999bc9c gcc
compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: e148ac9c901552aff4eda8d19e2d897cd0767b57a7c9fe1ceafa54fa8dadab8c
all runs: boot failed: invalid opcode in public_key_verify_signature
unable to determine the verdict: 0 good runs (wanted 5), for bad wanted 5 in total, got 0
testing release v5.5
testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 gcc
compiler: gcc version 8.4.1 20210217 (GCC)
kernel signature: c9c5737901d15421d9f33c49a1353d78fb41c9b29c75f502f594199534924a94
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
testing release v5.2
testing commit 0ecfebd2b52404ae0c54a878c872bb93363ada36 gcc
compiler: gcc version 8.4.1 20210217 (GCC)
kernel signature: 33d231a54d2cf094056f2d5638f6e46a5d93b7a740fa2b3434c0e224a7e8503a
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
testing release v4.20
testing commit 8fe28cb58bcb235034b64cbbb7550a8a43fd88be gcc
compiler: gcc version 8.4.1 20210217 (GCC)
kernel signature: 756b2ccc9c3eab9d8d5815d6b550baf7112665d4f8a707e5c0623f095d51f345
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
testing release v4.19
testing commit 84df9525b0c27f3ebc2ebb1864fa62a97fdedb7d gcc
compiler: gcc version 8.4.1 20210217 (GCC)
kernel signature: 3d9770d1d679466890c96d3d495f034e91218dd4ccc098ff78c467fb4bdb4141
all runs: crashed: INFO: task hung in ext4_quota_write
representative crash: INFO: task hung in ext4_quota_write, types: [HANG]
crash still not fixed/happens on the oldest tested release
revisions tested: 21, total time: 4h59m45.128435649s (build: 2h2m17.661061793s, test: 2h42m24.472713984s)
oldest tested release already had the bug or it had kernel test errors
commit msg: Linux 4.19
crash: INFO: task hung in ext4_quota_write
INFO: task syz-executor.0:2093 blocked for more than 140 seconds.
      Not tainted 4.19.0-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.0  D11872  2093   1638 0x00080006
Call Trace:
 context_switch kernel/sched/core.c:2825 [inline]
 __schedule+0x2dc/0x860 kernel/sched/core.c:3473
 schedule+0x27/0x80 kernel/sched/core.c:3517
 io_schedule+0x11/0x40 kernel/sched/core.c:5140
 bit_wait_io+0xc/0x50 kernel/sched/wait_bit.c:207
 __wait_on_bit_lock+0x5e/0xc0 kernel/sched/wait_bit.c:89
 out_of_line_wait_on_bit_lock+0x8b/0xb0 kernel/sched/wait_bit.c:116
 wait_on_bit_lock_io include/linux/wait_bit.h:208 [inline]
 __lock_buffer+0x24/0x30 fs/buffer.c:65
 lock_buffer include/linux/buffer_head.h:366 [inline]
 ext4_quota_write+0x193/0x200 fs/ext4/super.c:5837
 qtree_write_dquot+0xc7/0x1a0 fs/quota/quota_tree.c:395
 v2_write_dquot+0x8a/0xa0 fs/quota/quota_v2.c:334
 dquot_commit+0x62/0xe0 fs/quota/dquot.c:475
 ext4_write_dquot+0x70/0xa0 fs/ext4/super.c:5469
 ext4_mark_dquot_dirty+0x3a/0x50 fs/ext4/super.c:5520
 mark_dquot_dirty fs/quota/dquot.c:341 [inline]
 mark_all_dquot_dirty fs/quota/dquot.c:379 [inline]
 dquot_alloc_inode+0x107/0x1d0 fs/quota/dquot.c:1746
 ext4_xattr_inode_alloc_quota fs/ext4/xattr.c:870 [inline]
 ext4_xattr_set_entry+0x1e4/0x1330 fs/ext4/xattr.c:1659
 ext4_xattr_block_set+0x121/0xdc0 fs/ext4/xattr.c:1887
 ext4_xattr_set_handle+0x47c/0x5a0 fs/ext4/xattr.c:2404
 ext4_xattr_set+0xb8/0x140 fs/ext4/xattr.c:2504
 ext4_xattr_user_set+0x2f/0x40 fs/ext4/xattr_user.c:40
 __vfs_setxattr+0x64/0x80 fs/xattr.c:149
cgroup: fork rejected by pids controller in 
 __vfs_setxattr_noperm+0x6d/0x1a0 fs/xattr.c:180
 vfs_setxattr+0x88/0xb0 fs/xattr.c:223
 setxattr+0x14f/0x1f0 fs/xattr.c:450
/syz0
 path_setxattr+0xb8/0xd0 fs/xattr.c:469
 __do_sys_setxattr fs/xattr.c:484 [inline]
 __se_sys_setxattr fs/xattr.c:480 [inline]
 __x64_sys_setxattr+0x26/0x30 fs/xattr.c:480
 do_syscall_64+0x63/0x160 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x7f14597cace9
Code: Bad RIP value.
RSP: 002b:00007f145934d0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
RAX: ffffffffffffffda RBX: 00007f14598e9f80 RCX: 00007f14597cace9
RDX: 0000000020000380 RSI: 0000000020000340 RDI: 00000000200002c0
RBP: 00007f145981747a R08: 0000000000000000 R09: 0000000000000000
R10: 000000000000ffed R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000006 R14: 00007f14598e9f80 R15: 00007ffec17ca4e8

Showing all locks held in the system:
2 locks held by kworker/0:0/5:
 #0: 00000000226b06d9 ((wq_completion)"rcu_gp"){....}, at: wake_up_worker kernel/workqueue.c:838 [inline]
 #0: 00000000226b06d9 ((wq_completion)"rcu_gp"){....}, at: process_one_work+0x1b1/0x480 kernel/workqueue.c:2116
 #1: 0000000039926b46 ((work_completion)(&rew.rew_work)){....}, at: wake_up_worker kernel/workqueue.c:838 [inline]
 #1: 0000000039926b46 ((work_completion)(&rew.rew_work)){....}, at: process_one_work+0x1b1/0x480 kernel/workqueue.c:2116
1 lock held by khungtaskd/314:
 #0: 00000000752c59d1 (rcu_read_lock){....}, at: debug_show_all_locks+0x23/0x103 kernel/locking/lockdep.c:4435
2 locks held by getty/1015:
 #0: 000000003f67b987 (&tty->ldisc_sem){....}, at: ldsem_down_read+0xe/0x10 drivers/tty/tty_ldsem.c:353
 #1: 00000000ca111367 (&ldata->atomic_read_lock){....}, at: n_tty_read+0xbc/0x860 drivers/tty/n_tty.c:2140
6 locks held by syz-executor.0/2093:
 #0: 00000000117e03ec (sb_writers#3){....}, at: sb_start_write include/linux/fs.h:1566 [inline]
 #0: 00000000117e03ec (sb_writers#3){....}, at: mnt_want_write+0x1f/0x50 fs/namespace.c:360
 #1: 000000002ccbbfb2 (&type->i_mutex_dir_key#3){....}, at: inode_lock include/linux/fs.h:738 [inline]
 #1: 000000002ccbbfb2 (&type->i_mutex_dir_key#3){....}, at: vfs_setxattr+0x58/0xb0 fs/xattr.c:218
 #2: 00000000a9f34a1b (&ei->xattr_sem){....}, at: ext4_write_lock_xattr fs/ext4/xattr.h:141 [inline]
 #2: 00000000a9f34a1b (&ei->xattr_sem){....}, at: ext4_xattr_set_handle+0xb1/0x5a0 fs/ext4/xattr.c:2322
 #3: 00000000734e653d (dquot_srcu){....}, at: dquot_alloc_inode+0x50/0x1d0 fs/quota/dquot.c:1718
 #4: 000000006ddef68a (&dquot->dq_lock){....}, at: dquot_commit+0x23/0xe0 fs/quota/dquot.c:469
 #5: 00000000c3d370c5 (&s->s_dquot.dqio_sem){....}, at: v2_write_dquot+0x65/0xa0 fs/quota/quota_v2.c:332
1 lock held by syz-executor.0/2098:
 #0: 00000000ce916ec2 (rcu_sched_state.exp_mutex){....}, at: exp_funnel_lock kernel/rcu/tree_exp.h:297 [inline]
 #0: 00000000ce916ec2 (rcu_sched_state.exp_mutex){....}, at: _synchronize_rcu_expedited.constprop.56+0x29b/0x350 kernel/rcu/tree_exp.h:667

=============================================

NMI backtrace for cpu 1
CPU: 1 PID: 314 Comm: khungtaskd Not tainted 4.19.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x87/0xba lib/dump_stack.c:113
 nmi_cpu_backtrace.cold.0+0x14/0x53 lib/nmi_backtrace.c:101
 nmi_trigger_cpumask_backtrace+0x9c/0x9e lib/nmi_backtrace.c:62
 arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
 trigger_all_cpu_backtrace include/linux/nmi.h:144 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:204 [inline]
 watchdog+0x2b0/0x3c0 kernel/hung_task.c:265
 kthread+0x119/0x130 kernel/kthread.c:246
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:413
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0 skipped: idling at native_safe_halt+0x6/0x10 arch/x86/include/asm/irqflags.h:57