INFO: task syz-executor0:27231 blocked for more than 140 seconds.
Not tainted 4.20.0+ #9
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor0 D26168 27231 8431 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2831 [inline]
__schedule+0x897/0x1e90 kernel/sched/core.c:3472
schedule+0xfe/0x350 kernel/sched/core.c:3516
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3574
__mutex_lock_common kernel/locking/mutex.c:1002 [inline]
__mutex_lock+0xa3b/0x1670 kernel/locking/mutex.c:1072
mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
blkdev_put+0x34/0x560 fs/block_dev.c:1839
blkdev_close+0x8b/0xb0 fs/block_dev.c:1888
__fput+0x3c5/0xb10 fs/file_table.c:278
____fput+0x16/0x20 fs/file_table.c:309
task_work_run+0x1f4/0x2b0 kernel/task_work.c:113
tracehook_notify_resume include/linux/tracehook.h:188 [inline]
exit_to_usermode_loop+0x32a/0x3b0 arch/x86/entry/common.c:166
prepare_exit_to_usermode arch/x86/entry/common.c:197 [inline]
syscall_return_slowpath arch/x86/entry/common.c:268 [inline]
do_syscall_64+0x696/0x800 arch/x86/entry/common.c:293
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x411c91
Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 94 19 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
RSP: 002b:00007ffce0f6fef0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000411c91
RDX: 0000000000000000 RSI: ffffffff87f056ba RDI: 0000000000000004
RBP: 0000000000000000 R08: ffffffff8139ca9a R09: 0000000020f99777
R10: 00007ffce0f6fe20 R11: 0000000000000293 R12: 0000000000000000
R13: 0000000000000001 R14: 0000000000000249 R15: 0000000000000000
INFO: task syz-executor4:27243 blocked for more than 140 seconds.
Not tainted 4.20.0+ #9
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor4 D25704 27243 24323 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2831 [inline]
__schedule+0x897/0x1e90 kernel/sched/core.c:3472
schedule+0xfe/0x350 kernel/sched/core.c:3516
__rwsem_down_read_failed_common kernel/locking/rwsem-xadd.c:280 [inline]
rwsem_down_read_failed+0x360/0x6d0 kernel/locking/rwsem-xadd.c:297
call_rwsem_down_read_failed+0x18/0x30 arch/x86/lib/rwsem.S:94
__down_read arch/x86/include/asm/rwsem.h:83 [inline]
down_read+0x9b/0x120 kernel/locking/rwsem.c:26
__get_super.part.0+0x203/0x2e0 fs/super.c:698
__get_super include/linux/spinlock.h:329 [inline]
get_super+0x2e/0x50 fs/super.c:727
fsync_bdev+0x19/0xd0 fs/block_dev.c:492
invalidate_partition+0x36/0x60 block/genhd.c:1579
drop_partitions.isra.0+0xf7/0x220 block/partition-generic.c:443
rescan_partitions+0x72/0x970 block/partition-generic.c:516
__blkdev_reread_part+0x1a2/0x230 block/ioctl.c:173
blkdev_reread_part+0x27/0x40 block/ioctl.c:193
loop_reread_partitions+0x1c/0x40 drivers/block/loop.c:633
loop_set_status+0xcf7/0x1100 drivers/block/loop.c:1268
loop_set_status64+0xc2/0x120 drivers/block/loop.c:1388
lo_ioctl+0x518/0x2190 drivers/block/loop.c:1514
__blkdev_driver_ioctl block/ioctl.c:303 [inline]
blkdev_ioctl+0x10e0/0x2120 block/ioctl.c:605
block_ioctl+0xee/0x130 fs/block_dev.c:1906
vfs_ioctl fs/ioctl.c:46 [inline]
file_ioctl fs/ioctl.c:509 [inline]
do_vfs_ioctl+0x107b/0x17d0 fs/ioctl.c:696
ksys_ioctl+0xab/0xd0 fs/ioctl.c:713
__do_sys_ioctl fs/ioctl.c:720 [inline]
__se_sys_ioctl fs/ioctl.c:718 [inline]
__x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:718
do_syscall_64+0x1a3/0x800 arch/x86/entry/common.c:290
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x457ec9
Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007f25d2b80c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9
RDX: 00000000200000c0 RSI: 0000000000004c04 RDI: 0000000000000003
RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f25d2b816d4
R13: 00000000004c1290 R14: 00000000004d2c80 R15: 00000000ffffffff
INFO: task syz-executor4:27245 blocked for more than 140 seconds.
Not tainted 4.20.0+ #9
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor4 D26536 27245 24323 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2831 [inline]
__schedule+0x897/0x1e90 kernel/sched/core.c:3472
schedule+0xfe/0x350 kernel/sched/core.c:3516
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3574
__mutex_lock_common kernel/locking/mutex.c:1002 [inline]
__mutex_lock+0xa3b/0x1670 kernel/locking/mutex.c:1072
mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
__blkdev_get+0x19b/0x1400 fs/block_dev.c:1489
blkdev_get+0xc1/0xae0 fs/block_dev.c:1640
blkdev_open+0x205/0x290 fs/block_dev.c:1798
do_dentry_open+0x48a/0x1210 fs/open.c:771
vfs_open+0xa0/0xd0 fs/open.c:880
do_last fs/namei.c:3418 [inline]
path_openat+0x144f/0x5650 fs/namei.c:3534
do_filp_open+0x26f/0x370 fs/namei.c:3564
do_sys_open+0x59a/0x7c0 fs/open.c:1063
__do_sys_open fs/open.c:1081 [inline]
__se_sys_open fs/open.c:1076 [inline]
__x64_sys_open+0x7e/0xc0 fs/open.c:1076
do_syscall_64+0x1a3/0x800 arch/x86/entry/common.c:290
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x411e71
Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 2a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 73 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01
RSP: 002b:00007f25d2b5f7a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 6666666666666667 RCX: 0000000000411e71
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f25d2b5f850
RBP: 000000000073bfa0 R08: 000000000000000f R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000293 R12: 00007f25d2b606d4
R13: 00000000004c668b R14: 00000000004db650 R15: 00000000ffffffff
INFO: task blkid:27242 blocked for more than 140 seconds.
Not tainted 4.20.0+ #9
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
blkid D23112 27242 25897 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2831 [inline]
__schedule+0x897/0x1e90 kernel/sched/core.c:3472
schedule+0xfe/0x350 kernel/sched/core.c:3516
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3574
__mutex_lock_common kernel/locking/mutex.c:1002 [inline]
__mutex_lock+0xa3b/0x1670 kernel/locking/mutex.c:1072
mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
blkdev_put+0x34/0x560 fs/block_dev.c:1839
blkdev_close+0x8b/0xb0 fs/block_dev.c:1888
__fput+0x3c5/0xb10 fs/file_table.c:278
____fput+0x16/0x20 fs/file_table.c:309
task_work_run+0x1f4/0x2b0 kernel/task_work.c:113
tracehook_notify_resume include/linux/tracehook.h:188 [inline]
exit_to_usermode_loop+0x32a/0x3b0 arch/x86/entry/common.c:166
prepare_exit_to_usermode arch/x86/entry/common.c:197 [inline]
syscall_return_slowpath arch/x86/entry/common.c:268 [inline]
do_syscall_64+0x696/0x800 arch/x86/entry/common.c:293
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f0c15f0f2b0
Code: Bad RIP value.
RSP: 002b:00007ffdfd806af8 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f0c15f0f2b0
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000000000028 R09: 0000000001680000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000020f4030
R13: 0000000000000000 R14: 0000000000000003 R15: 0000000000000005
Showing all locks held in the system:
1 lock held by khungtaskd/1038:
#0: 000000008512333e (rcu_read_lock){....}, at: debug_show_all_locks+0xc6/0x41d kernel/locking/lockdep.c:4389
1 lock held by rsyslogd/8034:
#0: 0000000055f750be (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x1b3/0x1f0 fs/file.c:795
2 locks held by getty/8125:
#0: 00000000fabfb730 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:341
#1: 000000004103fbe3 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 drivers/tty/n_tty.c:2154
2 locks held by getty/8126:
#0: 00000000811349d6 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:341
#1: 00000000574392cf (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 drivers/tty/n_tty.c:2154
2 locks held by getty/8127:
#0: 000000004fe9f0d9 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:341
#1: 0000000073edef78 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 drivers/tty/n_tty.c:2154
2 locks held by getty/8128:
#0: 000000001602cd8f (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:341
#1: 00000000b01995be (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 drivers/tty/n_tty.c:2154
2 locks held by getty/8129:
#0: 00000000c6517de1 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:341
#1: 0000000059923143 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 drivers/tty/n_tty.c:2154
2 locks held by getty/8130:
#0: 00000000e3b794c5 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:341
#1: 0000000002af90f6 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 drivers/tty/n_tty.c:2154
2 locks held by getty/8131:
#0: 00000000babe192e (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 drivers/tty/tty_ldsem.c:341
#1: 0000000028c74e31 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 drivers/tty/n_tty.c:2154
1 lock held by syz-executor3/15628:
1 lock held by syz-executor0/27231:
#0: 00000000bd5ab700 (&bdev->bd_mutex){+.+.}, at: blkdev_put+0x34/0x560 fs/block_dev.c:1839
1 lock held by syz-executor0/27239:
2 locks held by syz-executor4/27243:
#0: 00000000bd5ab700 (&bdev->bd_mutex){+.+.}, at: blkdev_reread_part+0x1f/0x40 block/ioctl.c:192
#1: 0000000008ee5b8b (&type->s_umount_key#53){++++}, at: __get_super.part.0+0x203/0x2e0 fs/super.c:698
1 lock held by syz-executor4/27245:
#0: 00000000bd5ab700 (&bdev->bd_mutex){+.+.}, at: __blkdev_get+0x19b/0x1400 fs/block_dev.c:1489
1 lock held by blkid/27242:
#0: 00000000bd5ab700 (&bdev->bd_mutex){+.+.}, at: blkdev_put+0x34/0x560 fs/block_dev.c:1839
=============================================
NMI backtrace for cpu 0
CPU: 0 PID: 1038 Comm: khungtaskd Not tainted 4.20.0+ #9
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:77 [inline]
dump_stack+0x1db/0x2d0 lib/dump_stack.c:113
nmi_cpu_backtrace.cold+0x63/0xa4 lib/nmi_backtrace.c:101
nmi_trigger_cpumask_backtrace+0x1be/0x236 lib/nmi_backtrace.c:62
arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:205 [inline]
watchdog+0xbd2/0x10b0 kernel/hung_task.c:289
kthread+0x357/0x430 kernel/kthread.c:246
ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:352
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 15628 Comm: syz-executor3 Not tainted 4.20.0+ #9
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:__read_once_size include/linux/compiler.h:191 [inline]
RIP: 0010:arch_atomic_read arch/x86/include/asm/atomic.h:31 [inline]
RIP: 0010:atomic_read include/asm-generic/atomic-instrumented.h:22 [inline]
RIP: 0010:queued_spin_is_locked include/asm-generic/qspinlock.h:35 [inline]
RIP: 0010:debug_spin_unlock kernel/locking/spinlock_debug.c:98 [inline]
RIP: 0010:do_raw_spin_unlock+0xb5/0x330 kernel/locking/spinlock_debug.c:134
Code: ad de 0f 85 e2 01 00 00 be 04 00 00 00 4c 89 e7 e8 60 6e 60 00 4c 89 e2 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 0f b6 14 02 <4c> 89 e0 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 12 02 00 00 49
RSP: 0018:ffff888058dd7510 EFLAGS: 00000802
RAX: dffffc0000000000 RBX: 1ffff1100b1baea3 RCX: ffffffff81654e60
RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88809a8a0608
RBP: ffff888058dd7598 R08: 1ffff110135140c1 R09: ffffed10135140c2
R10: ffffed10135140c1 R11: ffff88809a8a060b R12: ffff88809a8a0608
R13: 0000000000000000 R14: ffff888058dd7578 R15: ffff8880a427c640
FS: 00007fb8fa381700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000025dc000 CR3: 0000000096e7b000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
__raw_spin_unlock include/linux/spinlock_api_smp.h:151 [inline]
_raw_spin_unlock+0x23/0x50 kernel/locking/spinlock.c:176
spin_unlock include/linux/spinlock.h:369 [inline]
__snd_pcm_stream_unlock_mode sound/core/pcm_native.c:138 [inline]
__snd_pcm_stream_unlock_mode+0xb8/0x150 sound/core/pcm_native.c:131
snd_pcm_stream_unlock_irq+0x1d/0x30 sound/core/pcm_native.c:202
__snd_pcm_lib_xfer+0xe71/0x1f5b sound/core/pcm_lib.c:2258
snd_pcm_oss_read3+0x1ca/0x420 sound/core/oss/pcm_oss.c:1274
io_capture_transfer+0x280/0x330 sound/core/oss/io.c:73
snd_pcm_plug_read_transfer+0x1da/0x3b0 sound/core/oss/pcm_plugin.c:651
snd_pcm_oss_read2+0x22b/0x460 sound/core/oss/pcm_oss.c:1474
snd_pcm_oss_read1 sound/core/oss/pcm_oss.c:1512 [inline]
snd_pcm_oss_read+0x4bb/0x7f0 sound/core/oss/pcm_oss.c:2752
__vfs_read+0x116/0xb20 fs/read_write.c:416
vfs_read+0x194/0x3e0 fs/read_write.c:452
ksys_read+0x105/0x260 fs/read_write.c:578
__do_sys_read fs/read_write.c:588 [inline]
__se_sys_read fs/read_write.c:586 [inline]
__x64_sys_read+0x73/0xb0 fs/read_write.c:586
do_syscall_64+0x1a3/0x800 arch/x86/entry/common.c:290
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x457ec9
Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007fb8fa380c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9
RDX: 0000000000000008 RSI: 0000000020000180 RDI: 000000000000000a
RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb8fa3816d4
R13: 00000000004c4815 R14: 00000000004d7c48 R15: 00000000ffffffff