INFO: task hung in kernfs_iop_permission
8 views
Skip to first unread message
syzbot
Jun 27, 2019, 6:50:07 AM6/27/19
to syzkaller-a...@googlegroups.com
Hello,
syzbot found the following crash on:
HEAD commit: 93c338c2 Merge 4.14.129 into android-4.14
git tree: android-4.14
console output: https://syzkaller.appspot.com/x/log.txt?x=152aa023a00000
kernel config: https://syzkaller.appspot.com/x/.config?x=654d6d7c478db79
dashboard link: https://syzkaller.appspot.com/bug?extid=cd42f9369fadc51e4330
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+cd42f9...@syzkaller.appspotmail.com
[30390] 0 30390 18178 8973 26 4 0
0 syz-executor.2
[30434] 0 30434 18178 8973 26 4 0
0 syz-executor.2
[30586] 0 30586 18178 8973 26 4 0
0 syz-executor.2
INFO: task udevd:18474 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
[30809] 0 30809 18178 8972 25 4 0
0 syz-executor.2
[30835] 0 30835 18178 8972 25 4 0
0 syz-executor.2
[31038] 0 31038 18178 8966 25 4 0
0 syz-executor.2
[31534] 0 31534 18145 8745 25 3 0
0 syz-executor.1
[31536] 0 31536 18178 8973 26 4 0
0 syz-executor.2
[31555] 0 31555 18211 8748 27 3 0
0 syz-executor.1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[31700] 0 31700 18178 8972 25 4 0
0 syz-executor.2
[31754] 0 31754 5629 474 15 3 0
-1000 udevd
udevd D28848 18474 190 0x00000000
Call Trace:
[31814] 0 31814 18178 8972 25 4 0
0 syz-executor.2
[31834] 0 31834 18211 8975 26 4 0
0 syz-executor.2
[31868] 0 31868 18145 8972 26 4 0
0 syz-executor.0
schedule+0x92/0x1c0 kernel/sched/core.c:3498
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
[31949] 0 31949 18178 8972 25 4 0
0 syz-executor.2
[31999] 0 31999 18211 8975 26 4 0
0 syz-executor.0
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[32001] 0 32001 18145 8993 26 4 0
0 syz-executor.1
[32009] 0 32009 18178 8971 25 4 0
0 syz-executor.2
[32132] 0 32132 18145 8987 26 4 0
0 syz-executor.1
[32167] 0 32167 18178 8975 26 4 0
0 syz-executor.0
[32307] 0 32307 18178 8973 26 4 0
0 syz-executor.2
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[32324] 0 32324 18211 8751 25 3 0
0 syz-executor.0
[32332] 0 32332 18178 8973 26 4 0
0 syz-executor.2
path_openat+0x178/0x2b70 fs/namei.c:3596
[32343] 0 32343 18211 8751 25 3 0
0 syz-executor.0
[32388] 0 32388 18178 8972 25 4 0
0 syz-executor.2
do_filp_open+0x1a1/0x280 fs/namei.c:3631
[32709] 0 32709 18211 8975 26 4 0
0 syz-executor.2
[32719] 0 32719 18145 8736 24 3 0
0 syz-executor.1
[32740] 0 32740 18178 8746 24 3 0
0 syz-executor.1
[ 433] 0 433 18178 8975 26 4 0
0 syz-executor.0
do_sys_open+0x2ca/0x590 fs/open.c:1077
[ 467] 0 467 18178 8973 26 4 0
0 syz-executor.2
[ 474] 0 474 18178 8976 27 4 0
0 syz-executor.0
[ 555] 0 555 18211 8997 27 4 0
0 syz-executor.1
[ 701] 0 701 18178 8973 26 4 0
0 syz-executor.2
[ 715] 0 715 18277 8995 27 4 0
0 syz-executor.1
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
INFO: task udevd:18477 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
udevd D27008 18477 190 0x00000000
Call Trace:
[ 734] 0 734 18277 8995 27 4 0
0 syz-executor.1
[ 743] 0 743 18178 8973 26 4 0
0 syz-executor.2
[ 849] 0 849 18178 8973 26 4 0
0 syz-executor.2
schedule+0x92/0x1c0 kernel/sched/core.c:3498
[ 935] 0 935 18211 8997 27 4 0
0 syz-executor.1
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 956] 0 956 18178 8972 25 4 0
0 syz-executor.2
[ 976] 0 976 18178 8973 26 4 0
0 syz-executor.2
[ 1004] 0 1004 18178 8972 25 4 0
0 syz-executor.2
[ 1083] 0 1083 18178 8971 26 4 0
0 syz-executor.2
[ 1084] 0 1084 18178 8992 26 4 0
0 syz-executor.1
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
[ 1179] 0 1179 18178 8990 27 4 0
0 syz-executor.1
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 1279] 0 1279 18201 8999 28 4 0
0 syz-executor.1
path_lookupat.isra.0+0xde/0x7e0 fs/namei.c:2356
[ 1348] 0 1348 18178 8973 26 4 0
0 syz-executor.2
[ 1400] 0 1400 18145 8971 26 4 0
0 syz-executor.0
filename_lookup+0x1a1/0x3b0 fs/namei.c:2391
[ 1456] 0 1456 18178 8973 26 4 0
0 syz-executor.2
[ 1554] 0 1554 18178 8973 26 4 0
0 syz-executor.2
[ 1783] 0 1783 18277 9005 34 4 0
0 syz-executor.1
SYSC_readlinkat fs/stat.c:394 [inline]
SyS_readlinkat+0xbe/0x2b0 fs/stat.c:382
[ 1891] 0 1891 18178 8973 26 4 0
0 syz-executor.2
[ 1972] 0 1972 18178 8973 26 4 0
0 syz-executor.2
[ 2180] 0 2180 18178 8973 26 4 0
0 syz-executor.2
[ 2214] 0 2214 18178 8973 26 4 0
0 syz-executor.2
[ 2224] 0 2224 18178 8972 25 4 0
0 syz-executor.2
[ 2236] 0 2236 18178 8973 26 4 0
0 syz-executor.2
[ 2284] 0 2284 18211 8975 26 4 0
0 syz-executor.2
[ 2297] 0 2297 18244 8999 27 4 0
0 syz-executor.1
[ 2469] 0 2469 18178 8973 26 4 0
0 syz-executor.2
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
INFO: task udevd:18478 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2586] 0 2586 18145 8972 26 4 0
0 syz-executor.0
udevd D27392 18478 190 0x00000000
Call Trace:
[ 2592] 0 2592 18178 8973 26 4 0
0 syz-executor.2
[ 2597] 0 2597 18145 8972 26 4 0
0 syz-executor.0
[ 2609] 0 2609 18145 8972 26 4 0
0 syz-executor.0
[ 2643] 0 2643 18178 8972 25 4 0
0 syz-executor.2
schedule+0x92/0x1c0 kernel/sched/core.c:3498
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
[ 2657] 0 2657 18178 8970 26 4 0
0 syz-executor.2
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 2768] 0 2768 18178 8992 27 4 0
0 syz-executor.5
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
[ 2802] 0 2802 18178 8749 26 3 0
0 syz-executor.5
[ 2849] 0 2849 18178 8973 26 4 0
0 syz-executor.2
[ 3025] 0 3025 18211 9788 28 3 0
0 syz-executor.1
inode_permission2+0x2d/0x100 fs/namei.c:485
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 3040] 0 3040 18277 12848 33 3 0
0 syz-executor.1
[ 3050] 0 3050 18145 8736 24 3 0
0 syz-executor.1
[ 3120] 0 3120 18211 8978 26 4 0
0 syz-executor.0
path_lookupat.isra.0+0xde/0x7e0 fs/namei.c:2356
[ 3131] 0 3131 18178 8972 25 4 0
0 syz-executor.2
[ 3147] 0 3147 18244 8999 27 4 0
0 syz-executor.1
[ 3211] 0 3211 18244 8999 27 4 0
0 syz-executor.1
[ 3242] 0 3242 18178 8997 26 4 0
0 syz-executor.1
filename_lookup+0x1a1/0x3b0 fs/namei.c:2391
SYSC_readlinkat fs/stat.c:394 [inline]
SyS_readlinkat+0xbe/0x2b0 fs/stat.c:382
[ 3351] 0 3351 18178 8973 26 4 0
0 syz-executor.2
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
[ 3441] 0 3441 18145 8971 26 4 0
0 syz-executor.0
[ 3454] 0 3454 18168 8996 27 4 0
0 syz-executor.1
INFO: task udevd:18482 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
udevd D27008 18482 190 0x00000000
[ 3596] 0 3596 18178 8973 26 4 0
0 syz-executor.2
[ 3612] 0 3612 18145 8985 25 4 0
0 syz-executor.1
[ 3670] 0 3670 18145 8988 26 4 0
0 syz-executor.1
Call Trace:
[ 3707] 0 3707 18178 8973 26 4 0
0 syz-executor.2
[ 3753] 0 3753 18178 8992 26 4 0
0 syz-executor.1
schedule+0x92/0x1c0 kernel/sched/core.c:3498
[ 3809] 0 3809 18178 8972 25 4 0
0 syz-executor.2
[ 3969] 0 3969 18145 8986 26 4 0
0 syz-executor.1
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
[ 3979] 0 3979 18178 8973 26 4 0
0 syz-executor.2
[ 3996] 0 3996 18244 8977 26 4 0
0 syz-executor.2
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 4026] 0 4026 18113 225 23 3 0
0 syz-executor.4
[ 4027] 0 4027 18112 8955 24 4 0
0 syz-executor.4
[ 4146] 0 4146 18178 8973 26 4 0
0 syz-executor.0
[ 4345] 0 4345 18178 8973 26 4 0
0 syz-executor.2
[ 4352] 0 4352 18178 8972 25 4 0
0 syz-executor.2
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
path_lookupat.isra.0+0xde/0x7e0 fs/namei.c:2356
filename_lookup+0x1a1/0x3b0 fs/namei.c:2391
SYSC_readlinkat fs/stat.c:394 [inline]
SyS_readlinkat+0xbe/0x2b0 fs/stat.c:382
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
INFO: task blkid:18486 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
blkid D
[ 4359] 0 4359 18176 13261 32 3 0
0 syz-executor.1
26496 18486 18464 0x00000000
Call Trace:
schedule+0x92/0x1c0 kernel/sched/core.c:3498
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 4369] 0 4369 18209 13293 33 3 0
0 syz-executor.1
[ 4392] 0 4392 18178 8994 26 4 0
0 syz-executor.1
[ 4409] 0 4409 18178 8973 26 4 0
0 syz-executor.2
[ 4448] 0 4448 18178 8972 25 4 0
0 syz-executor.2
[ 4473] 0 4473 18178 8973 26 4 0
0 syz-executor.2
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
[ 4475] 0 4475 18211 8977 27 4 0
0 syz-executor.0
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 4576] 0 4576 18178 8973 26 4 0
0 syz-executor.2
path_openat+0x178/0x2b70 fs/namei.c:3596
[ 4706] 0 4706 18178 8973 26 4 0
0 syz-executor.2
[ 4784] 0 4784 18142 8746 25 3 0
0 syz-executor.1
[ 4787] 0 4787 18142 8746 25 3 0
0 syz-executor.1
do_filp_open+0x1a1/0x280 fs/namei.c:3631
[ 4788] 0 4788 18145 8971 26 4 0
0 syz-executor.0
[ 4790] 0 4790 18175 8748 25 3 0
0 syz-executor.1
[ 4829] 0 4829 18178 8972 25 4 0
0 syz-executor.2
do_sys_open+0x2ca/0x590 fs/open.c:1077
[ 4831] 0 4831 18211 9007 27 4 0
0 syz-executor.5
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
[ 4851] 0 4851 18178 8973 26 4 0
0 syz-executor.2
[ 5146] 0 5146 18277 8979 26 4 0
0 syz-executor.2
INFO: task blkid:18487 blocked for more than 140 seconds.
[ 5247] 0 5247 18277 8979 26 4 0
0 syz-executor.2
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 5297] 0 5297 18178 8992 26 4 0
0 syz-executor.1
blkid D27408 18487 18465 0x00000000
[ 5321] 0 5321 18211 8993 27 4 0
0 syz-executor.1
Call Trace:
[ 5325] 0 5325 18244 8977 26 4 0
0 syz-executor.2
[ 5430] 0 5430 18244 8976 25 4 0
0 syz-executor.2
[ 5497] 0 5497 18178 8972 25 4 0
0 syz-executor.2
schedule+0x92/0x1c0 kernel/sched/core.c:3498
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 5544] 0 5544 18145 8973 26 4 0
0 syz-executor.0
[ 5567] 0 5567 18211 9003 27 4 0
0 syz-executor.5
[ 5575] 0 5575 18277 8979 26 4 0
0 syz-executor.2
[ 5907] 0 5907 18310 8985 26 4 0
0 syz-executor.2
[ 5931] 0 5931 18178 8973 26 4 0
0 syz-executor.0
[ 6166] 0 6166 18145 8746 24 3 0
0 syz-executor.0
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
[ 6172] 0 6172 18178 9269 26 3 0
0 syz-executor.0
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 6381] 0 6381 18277 8979 26 4 0
0 syz-executor.2
path_openat+0x178/0x2b70 fs/namei.c:3596
[ 6395] 0 6395 18277 8979 26 4 0
0 syz-executor.2
[ 6463] 0 6463 18145 8973 26 4 0
0 syz-executor.0
[ 6507] 0 6507 18277 8979 26 4 0
0 syz-executor.2
do_filp_open+0x1a1/0x280 fs/namei.c:3631
[ 6556] 0 6556 18211 8975 26 4 0
0 syz-executor.0
[ 6577] 0 6577 18277 8979 26 4 0
0 syz-executor.2
[ 6589] 0 6589 18145 8744 24 3 0
0 syz-executor.1
do_sys_open+0x2ca/0x590 fs/open.c:1077
[ 6593] 0 6593 18211 8975 26 4 0
0 syz-executor.0
[ 6602] 0 6602 18178 8746 25 3 0
0 syz-executor.1
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
[ 6667] 0 6667 18178 8973 26 4 0
0 syz-executor.2
INFO: task blkid:18489 blocked for more than 140 seconds.
[ 6956] 0 6956 18145 8745 25 3 0
0 syz-executor.1
[ 6977] 0 6977 18178 8748 32 3 0
0 syz-executor.1
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
blkid D26824 18489 18466 0x00000000
Call Trace:
[ 7138] 0 7138 18178 8972 25 4 0
0 syz-executor.2
[ 7235] 0 7235 18277 8979 26 4 0
0 syz-executor.2
[ 7341] 0 7341 18178 8993 26 4 0
0 syz-executor.1
schedule+0x92/0x1c0 kernel/sched/core.c:3498
[ 7358] 0 7358 18211 8991 27 4 0
0 syz-executor.1
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 7398] 0 7398 18211 8991 27 4 0
0 syz-executor.1
[ 7540] 0 7540 18310 8981 26 4 0
0 syz-executor.2
[ 7616] 0 7616 18277 8979 26 4 0
0 syz-executor.2
[ 7702] 0 7702 18178 8973 26 4 0
0 syz-executor.0
[ 7825] 0 7825 18178 8972 25 4 0
0 syz-executor.2
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 7849] 0 7849 18145 8989 26 4 0
0 syz-executor.1
[ 7893] 0 7893 18145 8745 25 3 0
0 syz-executor.1
path_openat+0x178/0x2b70 fs/namei.c:3596
[ 7912] 0 7912 18211 8996 27 4 0
0 syz-executor.1
[ 7926] 0 7926 18178 8748 24 3 0
0 syz-executor.2
[ 7928] 0 7928 18211 8996 27 4 0
0 syz-executor.5
[ 7934] 0 7934 18295 8756 24 3 0
0 syz-executor.2
do_filp_open+0x1a1/0x280 fs/namei.c:3631
[ 7956] 0 7956 18244 8977 26 4 0
0 syz-executor.2
[ 7973] 0 7973 18178 8747 25 3 0
0 syz-executor.1
do_sys_open+0x2ca/0x590 fs/open.c:1077
[ 8015] 0 8015 18277 8753 26 3 0
0 syz-executor.1
[ 8155] 0 8155 18277 8979 26 4 0
0 syz-executor.2
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
[ 8201] 0 8201 18277 8979 26 4 0
0 syz-executor.2
Showing all locks held in the system:
[ 8260] 0 8260 18277 8979 26 4 0
0 syz-executor.2
1 lock held by init/1:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by khungtaskd/23:
#0: (tasklist_lock){.+.?}, at: [<00000000f314b441>]
debug_show_all_locks+0x7c/0x21a kernel/locking/lockdep.c:4541
3 locks held by udevd/190:
#0: (&dup_mmap_sem){.+.+}, at: [<0000000075d05bbf>] dup_mmap
kernel/fork.c:609 [inline]
#0: (&dup_mmap_sem){.+.+}, at: [<0000000075d05bbf>] dup_mm
kernel/fork.c:1211 [inline]
#0: (&dup_mmap_sem){.+.+}, at: [<0000000075d05bbf>] copy_mm
kernel/fork.c:1266 [inline]
#0: (&dup_mmap_sem){.+.+}, at: [<0000000075d05bbf>]
copy_process.part.0+0x39db/0x65d0 kernel/fork.c:1789
#1: (&mm->mmap_sem){++++}, at: [<00000000dc450578>] dup_mmap
kernel/fork.c:610 [inline]
#1: (&mm->mmap_sem){++++}, at: [<00000000dc450578>] dup_mm
kernel/fork.c:1211 [inline]
#1: (&mm->mmap_sem){++++}, at: [<00000000dc450578>] copy_mm
kernel/fork.c:1266 [inline]
#1: (&mm->mmap_sem){++++}, at: [<00000000dc450578>]
copy_process.part.0+0x39f7/0x65d0 kernel/fork.c:1789
#2: (&mm->mmap_sem/1){+.+.}, at: [<00000000946e63ba>] dup_mmap
kernel/fork.c:619 [inline]
#2: (&mm->mmap_sem/1){+.+.}, at: [<00000000946e63ba>] dup_mm
kernel/fork.c:1211 [inline]
#2: (&mm->mmap_sem/1){+.+.}, at: [<00000000946e63ba>] copy_mm
kernel/fork.c:1266 [inline]
#2: (&mm->mmap_sem/1){+.+.}, at: [<00000000946e63ba>]
copy_process.part.0+0x3a3f/0x65d0 kernel/fork.c:1789
1 lock held by rsyslogd/1621:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by cron/1671:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
2 locks held by getty/1750:
#0: (&tty->ldisc_sem){++++}, at: [<00000000d3ca5f81>]
tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:284
#1: (&ldata->atomic_read_lock){+.+.}, at: [<00000000910f2852>]
n_tty_read+0x1f7/0x1700 drivers/tty/n_tty.c:2156
1 lock held by syz-fuzzer/1769:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
5 locks held by kworker/u4:19/22688:
#0: ("%s""netns"){+.+.}, at: [<00000000d40c4f93>]
process_one_work+0x6e5/0x1510 kernel/workqueue.c:2105
#1: (net_cleanup_work){+.+.}, at: [<000000009d9e7949>]
process_one_work+0x71b/0x1510 kernel/workqueue.c:2109
#2: (net_mutex){+.+.}, at: [<0000000030ccf326>] cleanup_net+0x136/0x860
net/core/net_namespace.c:450
#3: (rtnl_mutex){+.+.}, at: [<000000001fb60d34>]
ip6_tnl_exit_net+0x71/0x550 net/ipv6/ip6_tunnel.c:2265
#4: (kernfs_mutex){+.+.}, at: [<00000000b2cfee49>]
kernfs_remove+0x17/0x30 fs/kernfs/dir.c:1328
3 locks held by kworker/1:1/31893:
#0: ("%s"("ipv6_addrconf")){+.+.}, at: [<00000000d40c4f93>]
process_one_work+0x6e5/0x1510 kernel/workqueue.c:2105
#1: ((addr_chk_work).work){+.+.}, at: [<000000009d9e7949>]
process_one_work+0x71b/0x1510 kernel/workqueue.c:2109
#2: (rtnl_mutex){+.+.}, at: [<0000000000fc72fe>]
addrconf_verify_work+0xa/0x20 net/ipv6/addrconf.c:4431
1 lock held by udevd/18110:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18114:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18123:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18128:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18130:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18131:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18132:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18133:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18135:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18137:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18144:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18146:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18147:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18150:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18151:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18156:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18157:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18158:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18160:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18163:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18164:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18165:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18166:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18167:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18168:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18169:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18171:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18172:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18173:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18174:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18175:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18176:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18178:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18179:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18180:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18181:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18182:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18183:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18184:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18187:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18193:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18194:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18200:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18474:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by udevd/18477:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by udevd/18478:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by blkid/18479:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18481:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18482:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by udevd/18483:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18484:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18485:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18486:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by blkid/18487:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by blkid/18488:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18489:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
=============================================
[ 8504] 0 8504 18310 8980 25 4 0
0 syz-executor.2
[ 8552] 0 8552 18244 9002 27 4 0
0 syz-executor.1
[ 8572] 0 8572 18343 8984 26 4 0
0 syz-executor.2
[ 8591] 0 8591 18211 8997 28 4 0
0 syz-executor.5
[ 8863] 0 8863 18277 8978 26 4 0
0 syz-executor.2
[ 8915] 0 8915 18211 8972 27 4 0
1000 syz-executor.4
[ 8940] 0 8940 18145 8738 25 3 0
0 syz-executor.5
[ 8994] 0 8994 18178 8749 25 3 0
0 syz-executor.0
[ 9000] 0 9000 18178 8975 26 4 0
0 syz-executor.0
[ 9037] 0 9037 18277 8982 28 4 0
0 syz-executor.0
[ 9063] 0 9063 18277 8978 25 4 0
0 syz-executor.2
[ 9075] 0 9075 18277 8997 27 4 0
0 syz-executor.5
[ 9118] 0 9118 18277 8997 27 4 0
0 syz-executor.5
[ 9195] 0 9195 18178 8973 26 4 0
0 syz-executor.2
[ 9199] 0 9199 18178 8973 26 4 0
0 syz-executor.2
[ 9225] 0 9225 18178 8974 25 4 0
0 syz-executor.2
[ 9249] 0 9249 18310 8981 26 4 0
0 syz-executor.2
[ 9252] 0 9252 18211 8972 27 4 0
1000 syz-executor.4
[ 9282] 0 9282 18277 8979 26 4 0
0 syz-executor.2
[ 9320] 0 9320 18277 8979 26 4 0
0 syz-executor.2
[ 9333] 0 9333 18178 8973 26 4 0
0 syz-executor.2
[ 9341] 0 9341 18244 8977 26 4 0
0 syz-executor.2
[ 9433] 0 9433 18211 8997 27 4 0
0 syz-executor.1
[ 9466] 0 9466 18277 8979 26 4 0
0 syz-executor.2
[ 9474] 0 9474 18142 8745 25 3 0
1000 syz-executor.4
[ 9579] 0 9579 18178 8972 25 4 0
0 syz-executor.2
[ 9611] 0 9611 18179 8992 27 4 0
0 syz-executor.5
[ 9642] 0 9642 18244 8977 26 4 0
0 syz-executor.2
[ 9694] 0 9694 18178 8973 26 4 0
0 syz-executor.0
[ 9782] 0 9782 18178 8973 26 4 0
0 syz-executor.2
[ 9783] 0 9783 18211 10510 31 4 0
0 syz-executor.0
[ 9902] 0 9902 18277 8979 26 4 0
0 syz-executor.2
[ 9917] 0 9917 18178 8972 25 4 0
0 syz-executor.2
[ 9919] 0 9919 18145 8747 25 3 0
0 syz-executor.0
[ 9931] 0 9931 18211 8752 25 3 0
0 syz-executor.0
[10002] 0 10002 18178 8973 26 4 0
0 syz-executor.2
[10012] 0 10012 18277 8979 26 4 0
0 syz-executor.2
[10238] 0 10238 5398 248 15 3 0
-1000 udevd
[10512] 0 10512 18277 8979 26 4 0
0 syz-executor.2
[10565] 0 10565 18277 8979 26 4 0
0 syz-executor.2
[10643] 0 10643 18211 8991 27 4 0
0 syz-executor.1
[10696] 0 10696 18211 8991 27 4 0
0 syz-executor.1
[10897] 0 10897 18145 8748 25 3 0
0 syz-executor.0
[10900] 0 10900 18178 8748 24 3 0
0 syz-executor.2
[10946] 0 10946 18277 8758 25 3 0
0 syz-executor.2
[10969] 0 10969 18211 8753 25 3 0
0 syz-executor.0
[10976] 0 10976 18277 8757 25 3 0
0 syz-executor.0
[11047] 0 11047 18277 8979 26 4 0
0 syz-executor.2
[11300] 0 11300 18144 8748 27 3 0
0 syz-executor.5
[11302] 0 11302 18177 8750 27 3 0
0 syz-executor.5
[11316] 0 11316 18211 8972 25 4 0
0 syz-executor.2
[11323] 0 11323 18234 9005 28 4 0
0 syz-executor.5
[11401] 0 11401 18178 8993 27 4 0
0 syz-executor.5
[11535] 0 11535 18178 8990 26 4 0
0 syz-executor.1
[11610] 0 11610 18178 8970 27 4 0
1000 syz-executor.4
[11673] 0 11673 18178 8995 28 4 0
0 syz-executor.5
[11686] 0 11686 18145 8746 26 3 0
1000 syz-executor.4
[11701] 0 11701 18211 8974 28 4 0
1000 syz-executor.4
[11702] 0 11702 18211 8750 27 3 0
1000 syz-executor.4
[11703] 0 11703 18211 8750 27 3 0
1000 syz-executor.4
[11811] 0 11811 18145 8746 24 3 0
0 syz-executor.2
[11822] 0 11822 18178 8748 24 3 0
0 syz-executor.2
[12143] 0 12143 18211 18145 42 4 0
0 syz-executor.5
[12333] 0 12333 18178 8971 26 4 0
0 syz-executor.2
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following crash on:
HEAD commit: 93c338c2 Merge 4.14.129 into android-4.14
git tree: android-4.14
console output: https://syzkaller.appspot.com/x/log.txt?x=152aa023a00000
kernel config: https://syzkaller.appspot.com/x/.config?x=654d6d7c478db79
dashboard link: https://syzkaller.appspot.com/bug?extid=cd42f9369fadc51e4330
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+cd42f9...@syzkaller.appspotmail.com
[30390] 0 30390 18178 8973 26 4 0
0 syz-executor.2
[30434] 0 30434 18178 8973 26 4 0
0 syz-executor.2
[30586] 0 30586 18178 8973 26 4 0
0 syz-executor.2
INFO: task udevd:18474 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
[30809] 0 30809 18178 8972 25 4 0
0 syz-executor.2
[30835] 0 30835 18178 8972 25 4 0
0 syz-executor.2
[31038] 0 31038 18178 8966 25 4 0
0 syz-executor.2
[31534] 0 31534 18145 8745 25 3 0
0 syz-executor.1
[31536] 0 31536 18178 8973 26 4 0
0 syz-executor.2
[31555] 0 31555 18211 8748 27 3 0
0 syz-executor.1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[31700] 0 31700 18178 8972 25 4 0
0 syz-executor.2
[31754] 0 31754 5629 474 15 3 0
-1000 udevd
udevd D28848 18474 190 0x00000000
Call Trace:
[31814] 0 31814 18178 8972 25 4 0
0 syz-executor.2
[31834] 0 31834 18211 8975 26 4 0
0 syz-executor.2
[31868] 0 31868 18145 8972 26 4 0
0 syz-executor.0
schedule+0x92/0x1c0 kernel/sched/core.c:3498
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
[31949] 0 31949 18178 8972 25 4 0
0 syz-executor.2
[31999] 0 31999 18211 8975 26 4 0
0 syz-executor.0
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[32001] 0 32001 18145 8993 26 4 0
0 syz-executor.1
[32009] 0 32009 18178 8971 25 4 0
0 syz-executor.2
[32132] 0 32132 18145 8987 26 4 0
0 syz-executor.1
[32167] 0 32167 18178 8975 26 4 0
0 syz-executor.0
[32307] 0 32307 18178 8973 26 4 0
0 syz-executor.2
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[32324] 0 32324 18211 8751 25 3 0
0 syz-executor.0
[32332] 0 32332 18178 8973 26 4 0
0 syz-executor.2
path_openat+0x178/0x2b70 fs/namei.c:3596
[32343] 0 32343 18211 8751 25 3 0
0 syz-executor.0
[32388] 0 32388 18178 8972 25 4 0
0 syz-executor.2
do_filp_open+0x1a1/0x280 fs/namei.c:3631
[32709] 0 32709 18211 8975 26 4 0
0 syz-executor.2
[32719] 0 32719 18145 8736 24 3 0
0 syz-executor.1
[32740] 0 32740 18178 8746 24 3 0
0 syz-executor.1
[ 433] 0 433 18178 8975 26 4 0
0 syz-executor.0
do_sys_open+0x2ca/0x590 fs/open.c:1077
[ 467] 0 467 18178 8973 26 4 0
0 syz-executor.2
[ 474] 0 474 18178 8976 27 4 0
0 syz-executor.0
[ 555] 0 555 18211 8997 27 4 0
0 syz-executor.1
[ 701] 0 701 18178 8973 26 4 0
0 syz-executor.2
[ 715] 0 715 18277 8995 27 4 0
0 syz-executor.1
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
INFO: task udevd:18477 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
udevd D27008 18477 190 0x00000000
Call Trace:
[ 734] 0 734 18277 8995 27 4 0
0 syz-executor.1
[ 743] 0 743 18178 8973 26 4 0
0 syz-executor.2
[ 849] 0 849 18178 8973 26 4 0
0 syz-executor.2
schedule+0x92/0x1c0 kernel/sched/core.c:3498
[ 935] 0 935 18211 8997 27 4 0
0 syz-executor.1
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 956] 0 956 18178 8972 25 4 0
0 syz-executor.2
[ 976] 0 976 18178 8973 26 4 0
0 syz-executor.2
[ 1004] 0 1004 18178 8972 25 4 0
0 syz-executor.2
[ 1083] 0 1083 18178 8971 26 4 0
0 syz-executor.2
[ 1084] 0 1084 18178 8992 26 4 0
0 syz-executor.1
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
[ 1179] 0 1179 18178 8990 27 4 0
0 syz-executor.1
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 1279] 0 1279 18201 8999 28 4 0
0 syz-executor.1
path_lookupat.isra.0+0xde/0x7e0 fs/namei.c:2356
[ 1348] 0 1348 18178 8973 26 4 0
0 syz-executor.2
[ 1400] 0 1400 18145 8971 26 4 0
0 syz-executor.0
filename_lookup+0x1a1/0x3b0 fs/namei.c:2391
[ 1456] 0 1456 18178 8973 26 4 0
0 syz-executor.2
[ 1554] 0 1554 18178 8973 26 4 0
0 syz-executor.2
[ 1783] 0 1783 18277 9005 34 4 0
0 syz-executor.1
SYSC_readlinkat fs/stat.c:394 [inline]
SyS_readlinkat+0xbe/0x2b0 fs/stat.c:382
[ 1891] 0 1891 18178 8973 26 4 0
0 syz-executor.2
[ 1972] 0 1972 18178 8973 26 4 0
0 syz-executor.2
[ 2180] 0 2180 18178 8973 26 4 0
0 syz-executor.2
[ 2214] 0 2214 18178 8973 26 4 0
0 syz-executor.2
[ 2224] 0 2224 18178 8972 25 4 0
0 syz-executor.2
[ 2236] 0 2236 18178 8973 26 4 0
0 syz-executor.2
[ 2284] 0 2284 18211 8975 26 4 0
0 syz-executor.2
[ 2297] 0 2297 18244 8999 27 4 0
0 syz-executor.1
[ 2469] 0 2469 18178 8973 26 4 0
0 syz-executor.2
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
INFO: task udevd:18478 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2586] 0 2586 18145 8972 26 4 0
0 syz-executor.0
udevd D27392 18478 190 0x00000000
Call Trace:
[ 2592] 0 2592 18178 8973 26 4 0
0 syz-executor.2
[ 2597] 0 2597 18145 8972 26 4 0
0 syz-executor.0
[ 2609] 0 2609 18145 8972 26 4 0
0 syz-executor.0
[ 2643] 0 2643 18178 8972 25 4 0
0 syz-executor.2
schedule+0x92/0x1c0 kernel/sched/core.c:3498
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
[ 2657] 0 2657 18178 8970 26 4 0
0 syz-executor.2
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 2768] 0 2768 18178 8992 27 4 0
0 syz-executor.5
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
[ 2802] 0 2802 18178 8749 26 3 0
0 syz-executor.5
[ 2849] 0 2849 18178 8973 26 4 0
0 syz-executor.2
[ 3025] 0 3025 18211 9788 28 3 0
0 syz-executor.1
inode_permission2+0x2d/0x100 fs/namei.c:485
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 3040] 0 3040 18277 12848 33 3 0
0 syz-executor.1
[ 3050] 0 3050 18145 8736 24 3 0
0 syz-executor.1
[ 3120] 0 3120 18211 8978 26 4 0
0 syz-executor.0
path_lookupat.isra.0+0xde/0x7e0 fs/namei.c:2356
[ 3131] 0 3131 18178 8972 25 4 0
0 syz-executor.2
[ 3147] 0 3147 18244 8999 27 4 0
0 syz-executor.1
[ 3211] 0 3211 18244 8999 27 4 0
0 syz-executor.1
[ 3242] 0 3242 18178 8997 26 4 0
0 syz-executor.1
filename_lookup+0x1a1/0x3b0 fs/namei.c:2391
SYSC_readlinkat fs/stat.c:394 [inline]
SyS_readlinkat+0xbe/0x2b0 fs/stat.c:382
[ 3351] 0 3351 18178 8973 26 4 0
0 syz-executor.2
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
[ 3441] 0 3441 18145 8971 26 4 0
0 syz-executor.0
[ 3454] 0 3454 18168 8996 27 4 0
0 syz-executor.1
INFO: task udevd:18482 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
udevd D27008 18482 190 0x00000000
[ 3596] 0 3596 18178 8973 26 4 0
0 syz-executor.2
[ 3612] 0 3612 18145 8985 25 4 0
0 syz-executor.1
[ 3670] 0 3670 18145 8988 26 4 0
0 syz-executor.1
Call Trace:
[ 3707] 0 3707 18178 8973 26 4 0
0 syz-executor.2
[ 3753] 0 3753 18178 8992 26 4 0
0 syz-executor.1
schedule+0x92/0x1c0 kernel/sched/core.c:3498
[ 3809] 0 3809 18178 8972 25 4 0
0 syz-executor.2
[ 3969] 0 3969 18145 8986 26 4 0
0 syz-executor.1
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
[ 3979] 0 3979 18178 8973 26 4 0
0 syz-executor.2
[ 3996] 0 3996 18244 8977 26 4 0
0 syz-executor.2
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 4026] 0 4026 18113 225 23 3 0
0 syz-executor.4
[ 4027] 0 4027 18112 8955 24 4 0
0 syz-executor.4
[ 4146] 0 4146 18178 8973 26 4 0
0 syz-executor.0
[ 4345] 0 4345 18178 8973 26 4 0
0 syz-executor.2
[ 4352] 0 4352 18178 8972 25 4 0
0 syz-executor.2
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
path_lookupat.isra.0+0xde/0x7e0 fs/namei.c:2356
filename_lookup+0x1a1/0x3b0 fs/namei.c:2391
SYSC_readlinkat fs/stat.c:394 [inline]
SyS_readlinkat+0xbe/0x2b0 fs/stat.c:382
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
INFO: task blkid:18486 blocked for more than 140 seconds.
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
blkid D
[ 4359] 0 4359 18176 13261 32 3 0
0 syz-executor.1
26496 18486 18464 0x00000000
Call Trace:
schedule+0x92/0x1c0 kernel/sched/core.c:3498
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 4369] 0 4369 18209 13293 33 3 0
0 syz-executor.1
[ 4392] 0 4392 18178 8994 26 4 0
0 syz-executor.1
[ 4409] 0 4409 18178 8973 26 4 0
0 syz-executor.2
[ 4448] 0 4448 18178 8972 25 4 0
0 syz-executor.2
[ 4473] 0 4473 18178 8973 26 4 0
0 syz-executor.2
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
[ 4475] 0 4475 18211 8977 27 4 0
0 syz-executor.0
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 4576] 0 4576 18178 8973 26 4 0
0 syz-executor.2
path_openat+0x178/0x2b70 fs/namei.c:3596
[ 4706] 0 4706 18178 8973 26 4 0
0 syz-executor.2
[ 4784] 0 4784 18142 8746 25 3 0
0 syz-executor.1
[ 4787] 0 4787 18142 8746 25 3 0
0 syz-executor.1
do_filp_open+0x1a1/0x280 fs/namei.c:3631
[ 4788] 0 4788 18145 8971 26 4 0
0 syz-executor.0
[ 4790] 0 4790 18175 8748 25 3 0
0 syz-executor.1
[ 4829] 0 4829 18178 8972 25 4 0
0 syz-executor.2
do_sys_open+0x2ca/0x590 fs/open.c:1077
[ 4831] 0 4831 18211 9007 27 4 0
0 syz-executor.5
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
[ 4851] 0 4851 18178 8973 26 4 0
0 syz-executor.2
[ 5146] 0 5146 18277 8979 26 4 0
0 syz-executor.2
INFO: task blkid:18487 blocked for more than 140 seconds.
[ 5247] 0 5247 18277 8979 26 4 0
0 syz-executor.2
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 5297] 0 5297 18178 8992 26 4 0
0 syz-executor.1
blkid D27408 18487 18465 0x00000000
[ 5321] 0 5321 18211 8993 27 4 0
0 syz-executor.1
Call Trace:
[ 5325] 0 5325 18244 8977 26 4 0
0 syz-executor.2
[ 5430] 0 5430 18244 8976 25 4 0
0 syz-executor.2
[ 5497] 0 5497 18178 8972 25 4 0
0 syz-executor.2
schedule+0x92/0x1c0 kernel/sched/core.c:3498
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 5544] 0 5544 18145 8973 26 4 0
0 syz-executor.0
[ 5567] 0 5567 18211 9003 27 4 0
0 syz-executor.5
[ 5575] 0 5575 18277 8979 26 4 0
0 syz-executor.2
[ 5907] 0 5907 18310 8985 26 4 0
0 syz-executor.2
[ 5931] 0 5931 18178 8973 26 4 0
0 syz-executor.0
[ 6166] 0 6166 18145 8746 24 3 0
0 syz-executor.0
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
[ 6172] 0 6172 18178 9269 26 3 0
0 syz-executor.0
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 6381] 0 6381 18277 8979 26 4 0
0 syz-executor.2
path_openat+0x178/0x2b70 fs/namei.c:3596
[ 6395] 0 6395 18277 8979 26 4 0
0 syz-executor.2
[ 6463] 0 6463 18145 8973 26 4 0
0 syz-executor.0
[ 6507] 0 6507 18277 8979 26 4 0
0 syz-executor.2
do_filp_open+0x1a1/0x280 fs/namei.c:3631
[ 6556] 0 6556 18211 8975 26 4 0
0 syz-executor.0
[ 6577] 0 6577 18277 8979 26 4 0
0 syz-executor.2
[ 6589] 0 6589 18145 8744 24 3 0
0 syz-executor.1
do_sys_open+0x2ca/0x590 fs/open.c:1077
[ 6593] 0 6593 18211 8975 26 4 0
0 syz-executor.0
[ 6602] 0 6602 18178 8746 25 3 0
0 syz-executor.1
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
[ 6667] 0 6667 18178 8973 26 4 0
0 syz-executor.2
INFO: task blkid:18489 blocked for more than 140 seconds.
[ 6956] 0 6956 18145 8745 25 3 0
0 syz-executor.1
[ 6977] 0 6977 18178 8748 32 3 0
0 syz-executor.1
Not tainted 4.14.129+ #11
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
blkid D26824 18489 18466 0x00000000
Call Trace:
[ 7138] 0 7138 18178 8972 25 4 0
0 syz-executor.2
[ 7235] 0 7235 18277 8979 26 4 0
0 syz-executor.2
[ 7341] 0 7341 18178 8993 26 4 0
0 syz-executor.1
schedule+0x92/0x1c0 kernel/sched/core.c:3498
[ 7358] 0 7358 18211 8991 27 4 0
0 syz-executor.1
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3556
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x559/0x1430 kernel/locking/mutex.c:893
[ 7398] 0 7398 18211 8991 27 4 0
0 syz-executor.1
[ 7540] 0 7540 18310 8981 26 4 0
0 syz-executor.2
[ 7616] 0 7616 18277 8979 26 4 0
0 syz-executor.2
[ 7702] 0 7702 18178 8973 26 4 0
0 syz-executor.0
[ 7825] 0 7825 18178 8972 25 4 0
0 syz-executor.2
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
do_inode_permission fs/namei.c:386 [inline]
__inode_permission2+0x22c/0x2c0 fs/namei.c:428
inode_permission2+0x2d/0x100 fs/namei.c:485
may_lookup fs/namei.c:1731 [inline]
link_path_walk+0x894/0x1110 fs/namei.c:2111
[ 7849] 0 7849 18145 8989 26 4 0
0 syz-executor.1
[ 7893] 0 7893 18145 8745 25 3 0
0 syz-executor.1
path_openat+0x178/0x2b70 fs/namei.c:3596
[ 7912] 0 7912 18211 8996 27 4 0
0 syz-executor.1
[ 7926] 0 7926 18178 8748 24 3 0
0 syz-executor.2
[ 7928] 0 7928 18211 8996 27 4 0
0 syz-executor.5
[ 7934] 0 7934 18295 8756 24 3 0
0 syz-executor.2
do_filp_open+0x1a1/0x280 fs/namei.c:3631
[ 7956] 0 7956 18244 8977 26 4 0
0 syz-executor.2
[ 7973] 0 7973 18178 8747 25 3 0
0 syz-executor.1
do_sys_open+0x2ca/0x590 fs/open.c:1077
[ 8015] 0 8015 18277 8753 26 3 0
0 syz-executor.1
[ 8155] 0 8155 18277 8979 26 4 0
0 syz-executor.2
do_syscall_64+0x19b/0x510 arch/x86/entry/common.c:292
[ 8201] 0 8201 18277 8979 26 4 0
0 syz-executor.2
Showing all locks held in the system:
[ 8260] 0 8260 18277 8979 26 4 0
0 syz-executor.2
1 lock held by init/1:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by khungtaskd/23:
#0: (tasklist_lock){.+.?}, at: [<00000000f314b441>]
debug_show_all_locks+0x7c/0x21a kernel/locking/lockdep.c:4541
3 locks held by udevd/190:
#0: (&dup_mmap_sem){.+.+}, at: [<0000000075d05bbf>] dup_mmap
kernel/fork.c:609 [inline]
#0: (&dup_mmap_sem){.+.+}, at: [<0000000075d05bbf>] dup_mm
kernel/fork.c:1211 [inline]
#0: (&dup_mmap_sem){.+.+}, at: [<0000000075d05bbf>] copy_mm
kernel/fork.c:1266 [inline]
#0: (&dup_mmap_sem){.+.+}, at: [<0000000075d05bbf>]
copy_process.part.0+0x39db/0x65d0 kernel/fork.c:1789
#1: (&mm->mmap_sem){++++}, at: [<00000000dc450578>] dup_mmap
kernel/fork.c:610 [inline]
#1: (&mm->mmap_sem){++++}, at: [<00000000dc450578>] dup_mm
kernel/fork.c:1211 [inline]
#1: (&mm->mmap_sem){++++}, at: [<00000000dc450578>] copy_mm
kernel/fork.c:1266 [inline]
#1: (&mm->mmap_sem){++++}, at: [<00000000dc450578>]
copy_process.part.0+0x39f7/0x65d0 kernel/fork.c:1789
#2: (&mm->mmap_sem/1){+.+.}, at: [<00000000946e63ba>] dup_mmap
kernel/fork.c:619 [inline]
#2: (&mm->mmap_sem/1){+.+.}, at: [<00000000946e63ba>] dup_mm
kernel/fork.c:1211 [inline]
#2: (&mm->mmap_sem/1){+.+.}, at: [<00000000946e63ba>] copy_mm
kernel/fork.c:1266 [inline]
#2: (&mm->mmap_sem/1){+.+.}, at: [<00000000946e63ba>]
copy_process.part.0+0x3a3f/0x65d0 kernel/fork.c:1789
1 lock held by rsyslogd/1621:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by cron/1671:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
2 locks held by getty/1750:
#0: (&tty->ldisc_sem){++++}, at: [<00000000d3ca5f81>]
tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:284
#1: (&ldata->atomic_read_lock){+.+.}, at: [<00000000910f2852>]
n_tty_read+0x1f7/0x1700 drivers/tty/n_tty.c:2156
1 lock held by syz-fuzzer/1769:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
5 locks held by kworker/u4:19/22688:
#0: ("%s""netns"){+.+.}, at: [<00000000d40c4f93>]
process_one_work+0x6e5/0x1510 kernel/workqueue.c:2105
#1: (net_cleanup_work){+.+.}, at: [<000000009d9e7949>]
process_one_work+0x71b/0x1510 kernel/workqueue.c:2109
#2: (net_mutex){+.+.}, at: [<0000000030ccf326>] cleanup_net+0x136/0x860
net/core/net_namespace.c:450
#3: (rtnl_mutex){+.+.}, at: [<000000001fb60d34>]
ip6_tnl_exit_net+0x71/0x550 net/ipv6/ip6_tunnel.c:2265
#4: (kernfs_mutex){+.+.}, at: [<00000000b2cfee49>]
kernfs_remove+0x17/0x30 fs/kernfs/dir.c:1328
3 locks held by kworker/1:1/31893:
#0: ("%s"("ipv6_addrconf")){+.+.}, at: [<00000000d40c4f93>]
process_one_work+0x6e5/0x1510 kernel/workqueue.c:2105
#1: ((addr_chk_work).work){+.+.}, at: [<000000009d9e7949>]
process_one_work+0x71b/0x1510 kernel/workqueue.c:2109
#2: (rtnl_mutex){+.+.}, at: [<0000000000fc72fe>]
addrconf_verify_work+0xa/0x20 net/ipv6/addrconf.c:4431
1 lock held by udevd/18110:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18114:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18123:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18128:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18130:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18131:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18132:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18133:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18135:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18137:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18144:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18146:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18147:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18150:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18151:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18156:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18157:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18158:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18160:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18163:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18164:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18165:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18166:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18167:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18168:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18169:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18171:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18172:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18173:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18174:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18175:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18176:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18178:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18179:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18180:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18181:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18182:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18183:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by blkid/18184:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18187:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18193:
#0: (&ei->i_mmap_sem){++++}, at: [<00000000cdfd732c>]
ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6178
1 lock held by udevd/18194:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18200:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18474:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by udevd/18477:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by udevd/18478:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by blkid/18479:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18481:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18482:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by udevd/18483:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18484:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by udevd/18485:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18486:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by blkid/18487:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
1 lock held by blkid/18488:
#0: (&mm->mmap_sem){++++}, at: [<00000000d25af9a0>]
__do_page_fault+0x271/0xb80 arch/x86/mm/fault.c:1352
1 lock held by blkid/18489:
#0: (kernfs_mutex){+.+.}, at: [<0000000037a3c64d>]
kernfs_iop_permission+0x4e/0x90 fs/kernfs/inode.c:301
=============================================
[ 8504] 0 8504 18310 8980 25 4 0
0 syz-executor.2
[ 8552] 0 8552 18244 9002 27 4 0
0 syz-executor.1
[ 8572] 0 8572 18343 8984 26 4 0
0 syz-executor.2
[ 8591] 0 8591 18211 8997 28 4 0
0 syz-executor.5
[ 8863] 0 8863 18277 8978 26 4 0
0 syz-executor.2
[ 8915] 0 8915 18211 8972 27 4 0
1000 syz-executor.4
[ 8940] 0 8940 18145 8738 25 3 0
0 syz-executor.5
[ 8994] 0 8994 18178 8749 25 3 0
0 syz-executor.0
[ 9000] 0 9000 18178 8975 26 4 0
0 syz-executor.0
[ 9037] 0 9037 18277 8982 28 4 0
0 syz-executor.0
[ 9063] 0 9063 18277 8978 25 4 0
0 syz-executor.2
[ 9075] 0 9075 18277 8997 27 4 0
0 syz-executor.5
[ 9118] 0 9118 18277 8997 27 4 0
0 syz-executor.5
[ 9195] 0 9195 18178 8973 26 4 0
0 syz-executor.2
[ 9199] 0 9199 18178 8973 26 4 0
0 syz-executor.2
[ 9225] 0 9225 18178 8974 25 4 0
0 syz-executor.2
[ 9249] 0 9249 18310 8981 26 4 0
0 syz-executor.2
[ 9252] 0 9252 18211 8972 27 4 0
1000 syz-executor.4
[ 9282] 0 9282 18277 8979 26 4 0
0 syz-executor.2
[ 9320] 0 9320 18277 8979 26 4 0
0 syz-executor.2
[ 9333] 0 9333 18178 8973 26 4 0
0 syz-executor.2
[ 9341] 0 9341 18244 8977 26 4 0
0 syz-executor.2
[ 9433] 0 9433 18211 8997 27 4 0
0 syz-executor.1
[ 9466] 0 9466 18277 8979 26 4 0
0 syz-executor.2
[ 9474] 0 9474 18142 8745 25 3 0
1000 syz-executor.4
[ 9579] 0 9579 18178 8972 25 4 0
0 syz-executor.2
[ 9611] 0 9611 18179 8992 27 4 0
0 syz-executor.5
[ 9642] 0 9642 18244 8977 26 4 0
0 syz-executor.2
[ 9694] 0 9694 18178 8973 26 4 0
0 syz-executor.0
[ 9782] 0 9782 18178 8973 26 4 0
0 syz-executor.2
[ 9783] 0 9783 18211 10510 31 4 0
0 syz-executor.0
[ 9902] 0 9902 18277 8979 26 4 0
0 syz-executor.2
[ 9917] 0 9917 18178 8972 25 4 0
0 syz-executor.2
[ 9919] 0 9919 18145 8747 25 3 0
0 syz-executor.0
[ 9931] 0 9931 18211 8752 25 3 0
0 syz-executor.0
[10002] 0 10002 18178 8973 26 4 0
0 syz-executor.2
[10012] 0 10012 18277 8979 26 4 0
0 syz-executor.2
[10238] 0 10238 5398 248 15 3 0
-1000 udevd
[10512] 0 10512 18277 8979 26 4 0
0 syz-executor.2
[10565] 0 10565 18277 8979 26 4 0
0 syz-executor.2
[10643] 0 10643 18211 8991 27 4 0
0 syz-executor.1
[10696] 0 10696 18211 8991 27 4 0
0 syz-executor.1
[10897] 0 10897 18145 8748 25 3 0
0 syz-executor.0
[10900] 0 10900 18178 8748 24 3 0
0 syz-executor.2
[10946] 0 10946 18277 8758 25 3 0
0 syz-executor.2
[10969] 0 10969 18211 8753 25 3 0
0 syz-executor.0
[10976] 0 10976 18277 8757 25 3 0
0 syz-executor.0
[11047] 0 11047 18277 8979 26 4 0
0 syz-executor.2
[11300] 0 11300 18144 8748 27 3 0
0 syz-executor.5
[11302] 0 11302 18177 8750 27 3 0
0 syz-executor.5
[11316] 0 11316 18211 8972 25 4 0
0 syz-executor.2
[11323] 0 11323 18234 9005 28 4 0
0 syz-executor.5
[11401] 0 11401 18178 8993 27 4 0
0 syz-executor.5
[11535] 0 11535 18178 8990 26 4 0
0 syz-executor.1
[11610] 0 11610 18178 8970 27 4 0
1000 syz-executor.4
[11673] 0 11673 18178 8995 28 4 0
0 syz-executor.5
[11686] 0 11686 18145 8746 26 3 0
1000 syz-executor.4
[11701] 0 11701 18211 8974 28 4 0
1000 syz-executor.4
[11702] 0 11702 18211 8750 27 3 0
1000 syz-executor.4
[11703] 0 11703 18211 8750 27 3 0
1000 syz-executor.4
[11811] 0 11811 18145 8746 24 3 0
0 syz-executor.2
[11822] 0 11822 18178 8748 24 3 0
0 syz-executor.2
[12143] 0 12143 18211 18145 42 4 0
0 syz-executor.5
[12333] 0 12333 18178 8971 26 4 0
0 syz-executor.2
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
Dec 12, 2019, 1:07:05 AM12/12/19
to syzkaller-a...@googlegroups.com
Auto-closing this bug as obsolete.
Crashes did not happen for a while, no reproducer and no activity.
Crashes did not happen for a while, no reproducer and no activity.
Reply all
Reply to author
Forward
0 new messages