INFO: task hung in crda_timeout

Kernel	Title	Repro	Cause bisect	Count	Last	Reported	Patched	Status
upstream	INFO: task hung in crda_timeout_work net			1	2256d	2256d	0/28	auto-closed as invalid on 2019/03/16 12:56
linux-6.1	INFO: task hung in crda_timeout_work (2)			1	30d	30d	0/3	upstream: reported on 2024/10/22 06:51
upstream	INFO: task hung in crda_timeout_work (8) wireless	C	done	373	13h08m	54d	0/28	upstream: reported C repro on 2024/09/27 16:53
upstream	INFO: task hung in crda_timeout_work (2) net			1	2070d	2070d	0/28	auto-closed as invalid on 2019/09/19 06:28
upstream	INFO: task hung in crda_timeout_work (7) wireless			1084	136d	180d	26/28	fixed on 2024/07/09 19:14
upstream	INFO: task hung in crda_timeout_work (6) wireless			1	876d	876d	0/28	auto-closed as invalid on 2022/09/27 01:38
android-44	INFO: task hung in crda_timeout_work			1	2421d	2421d	0/2	auto-closed as invalid on 2019/02/22 14:39
upstream	INFO: task hung in crda_timeout_work (3) wireless			8	1505d	1597d	0/28	auto-closed as invalid on 2021/01/06 02:49
upstream	INFO: task hung in crda_timeout_work (5) wireless			1	1169d	1169d	0/28	auto-closed as invalid on 2021/12/07 21:47
linux-6.1	INFO: task hung in crda_timeout_work			49	101d	184d	0/3	auto-obsoleted due to no activity on 2024/10/20 15:08
upstream	INFO: task hung in crda_timeout_work (4) wireless			1	1385d	1385d	0/28	auto-closed as invalid on 2021/05/17 11:47

INFO: task kworker/1:4:4169 blocked for more than 154 seconds. Not tainted 5.15.171-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:4 state:D stack:23328 pid: 4169 ppid: 2 flags:0x00004000 Workqueue: events_power_efficient crda_timeout_work Call Trace: <TASK> context_switch kernel/sched/core.c:5027 [inline] __schedule+0x12c4/0x45b0 kernel/sched/core.c:6373 schedule+0x11b/0x1f0 kernel/sched/core.c:6456 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:6515 __mutex_lock_common+0xe34/0x25a0 kernel/locking/mutex.c:669 __mutex_lock kernel/locking/mutex.c:729 [inline] mutex_lock_nested+0x17/0x20 kernel/locking/mutex.c:743 crda_timeout_work+0x11/0x50 net/wireless/reg.c:537 process_one_work+0x8a1/0x10c0 kernel/workqueue.c:2310 worker_thread+0xaca/0x1280 kernel/workqueue.c:2457 kthread+0x3f6/0x4f0 kernel/kthread.c:334 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287 </TASK> INFO: task syz-executor:4363 blocked for more than 155 seconds. Not tainted 5.15.171-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor state:D stack:27168 pid: 4363 ppid: 1 flags:0x00004004 Call Trace: <TASK> context_switch kernel/sched/core.c:5027 [inline] __schedule+0x12c4/0x45b0 kernel/sched/core.c:6373 schedule+0x11b/0x1f0 kernel/sched/core.c:6456 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:6515 __mutex_lock_common+0xe34/0x25a0 kernel/locking/mutex.c:669 __mutex_lock kernel/locking/mutex.c:729 [inline] mutex_lock_nested+0x17/0x20 kernel/locking/mutex.c:743 rtnl_lock net/core/rtnetlink.c:72 [inline] rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 netlink_rcv_skb+0x1cf/0x410 net/netlink/af_netlink.c:2504 netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline] netlink_unicast+0x7b6/0x980 net/netlink/af_netlink.c:1352 netlink_sendmsg+0xa30/0xd60 net/netlink/af_netlink.c:1920 sock_sendmsg_nosec net/socket.c:704 [inline] __sock_sendmsg net/socket.c:716 [inline] __sys_sendto+0x564/0x720 net/socket.c:2063 __do_sys_sendto net/socket.c:2075 [inline] __se_sys_sendto net/socket.c:2071 [inline] __x64_sys_sendto+0xda/0xf0 net/socket.c:2071 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x66/0xd0 RIP: 0033:0x7efc31be15ac RSP: 002b:00007ffe2cd7cef0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c RAX: ffffffffffffffda RBX: 00007efc328c5620 RCX: 00007efc31be15ac RDX: 0000000000000028 RSI: 00007efc328c5670 RDI: 0000000000000003 RBP: 0000000000000000 R08: 00007ffe2cd7cf44 R09: 000000000000000c R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 R13: 0000000000000000 R14: 00007efc328c5670 R15: 0000000000000000 </TASK> Showing all locks held in the system: 3 locks held by kworker/0:1/13: #0: ffff888017070938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90000d27d20 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff88807d49d240 (&data->fib_lock){+.+.}-{3:3}, at: nsim_fib_event_work+0x2cd/0x4120 drivers/net/netdevsim/fib.c:1480 2 locks held by kworker/1:1/23: #0: ffff888017072138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90000ddfd20 ((work_completion)(&rew.rew_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 1 lock held by khungtaskd/27: #0: ffffffff8c91fc60 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30 3 locks held by kworker/u4:1/144: #0: ffff888017079138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc9000156fd20 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xa/0x50 net/core/link_watch.c:251 4 locks held by kworker/u5:0/146: #0: ffff888076237938 ((wq_completion)hci16#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc9000158fd20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff8880797a4078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0xb3/0xb50 net/bluetooth/hci_event.c:3319 #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline] #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352 3 locks held by kworker/1:3/2283: #0: ffff888017071938 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90005ed7d20 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x7f/0xb70 net/wireless/reg.c:2436 2 locks held by getty/3928: #0: ffff88802c402098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 drivers/tty/tty_ldisc.c:252 #1: ffffc90002cbe2e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6af/0x1db0 drivers/tty/n_tty.c:2158 1 lock held by syz-executor/4165: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: tun_detach drivers/net/tun.c:699 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3a/0x1b0 drivers/net/tun.c:3440 1 lock held by syz-executor/4168: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: netdev_run_todo+0xa4f/0xc40 net/core/dev.c:10664 3 locks held by kworker/1:4/4169: #0: ffff888017071938 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90002e17d20 ((crda_timeout).work){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: crda_timeout_work+0x11/0x50 net/wireless/reg.c:537 4 locks held by kworker/u5:1/4170: #0: ffff88801f519938 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90002e27d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff88801f6c0078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0xb3/0xb50 net/bluetooth/hci_event.c:3319 #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline] #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352 4 locks held by kworker/u5:2/4174: #0: ffff888078d62138 ((wq_completion)hci4#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90002e67d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff88801f6c4078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0xb3/0xb50 net/bluetooth/hci_event.c:3319 #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline] #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352 4 locks held by kworker/u5:3/4176: #0: ffff888079b90138 ((wq_completion)hci14#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90002e87d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff88807bd4c078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0xb3/0xb50 net/bluetooth/hci_event.c:3319 #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline] #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352 4 locks held by kworker/u5:5/4178: #0: ffff88807adea138 ((wq_completion)hci13#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90002eb7d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff88807bd48078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0xb3/0xb50 net/bluetooth/hci_event.c:3319 #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline] #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352 1 lock held by syz-executor/4179: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: tun_detach drivers/net/tun.c:699 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3a/0x1b0 drivers/net/tun.c:3440 4 locks held by kworker/u5:6/4181: #0: ffff88801a993138 ((wq_completion)hci15#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90002ee7d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff8880797a0078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0xb3/0xb50 net/bluetooth/hci_event.c:3319 #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline] #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352 4 locks held by kworker/u5:8/4183: #0: ffff888076e1c938 ((wq_completion)hci18#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90002f07d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff888060e2c078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0xb3/0xb50 net/bluetooth/hci_event.c:3319 #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline] #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352 3 locks held by kworker/0:3/4209: #0: ffff888017070938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90003057d20 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff8880747e8240 (&data->fib_lock){+.+.}-{3:3}, at: nsim_fib_event_work+0x2cd/0x4120 drivers/net/netdevsim/fib.c:1480 3 locks held by kworker/0:4/4210: #0: ffff888017070938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90003067d20 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xa/0x20 net/switchdev/switchdev.c:74 2 locks held by kworker/1:5/4211: #0: ffff888017070938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90003077d20 (free_ipc_work){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 3 locks held by kworker/0:6/4213: 1 lock held by syz.0.20/4303: 1 lock held by syz-executor/4306: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: tun_detach drivers/net/tun.c:699 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3a/0x1b0 drivers/net/tun.c:3440 3 locks held by syz-executor/4310: #0: ffff888064684ff0 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0x63/0x1070 net/bluetooth/hci_core.c:1737 #1: ffff888064684078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_do_close+0x431/0x1070 net/bluetooth/hci_core.c:1782 #2: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_disconn_cfm include/net/bluetooth/hci_core.h:1517 [inline] #2: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xb8/0x220 net/bluetooth/hci_conn.c:1622 3 locks held by syz-executor/4312: #0: ffff888064680ff0 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0x63/0x1070 net/bluetooth/hci_core.c:1737 #1: ffff888064680078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_do_close+0x431/0x1070 net/bluetooth/hci_core.c:1782 #2: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_disconn_cfm include/net/bluetooth/hci_core.h:1517 [inline] #2: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xb8/0x220 net/bluetooth/hci_conn.c:1622 4 locks held by syz-executor/4321: #0: ffff888077a6cff0 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0x63/0x1070 net/bluetooth/hci_core.c:1737 #1: ffff888077a6c078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_do_close+0x431/0x1070 net/bluetooth/hci_core.c:1782 #2: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_disconn_cfm include/net/bluetooth/hci_core.h:1517 [inline] #2: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xb8/0x220 net/bluetooth/hci_conn.c:1622 #3: ffffffff8c924228 (rcu_state.exp_mutex){+.+.}-{3:3}, at: exp_funnel_lock kernel/rcu/tree_exp.h:322 [inline] #3: ffffffff8c924228 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x350/0x740 kernel/rcu/tree_exp.h:845 2 locks held by syz-executor/4322: #0: ffffffff8da26650 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x378/0x5d0 net/core/net_namespace.c:472 #1: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: ip6_tnl_exit_batch_net+0xc0/0x5e0 net/ipv6/ip6_tunnel.c:2321 3 locks held by syz-executor/4335: #0: ffff888078060ff0 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0x63/0x1070 net/bluetooth/hci_core.c:1737 #1: ffff888078060078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_do_close+0x431/0x1070 net/bluetooth/hci_core.c:1782 #2: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_disconn_cfm include/net/bluetooth/hci_core.h:1517 [inline] #2: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xb8/0x220 net/bluetooth/hci_conn.c:1622 1 lock held by syz-executor/4350: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x460/0x2270 drivers/net/tun.c:3052 1 lock held by syz-executor/4353: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x460/0x2270 drivers/net/tun.c:3052 2 locks held by syz-executor/4354: #0: ffffffff8da26650 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x378/0x5d0 net/core/net_namespace.c:472 #1: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: wg_netns_pre_exit+0x1b/0x1d0 drivers/net/wireguard/device.c:404 2 locks held by syz-executor/4358: #0: ffffffff8da26650 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x378/0x5d0 net/core/net_namespace.c:472 #1: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x80/0x270 net/ipv4/nexthop.c:3607 1 lock held by syz-executor/4363: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 1 lock held by syz-executor/4367: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 1 lock held by syz-executor/4374: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 1 lock held by syz-executor/4376: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 1 lock held by syz-executor/4379: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 1 lock held by dhcpcd/4385: #0: ffff888070553e10 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:789 [inline] #0: ffff888070553e10 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: __sock_release net/socket.c:648 [inline] #0: ffff888070553e10 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x98/0x230 net/socket.c:1336 1 lock held by dhcpcd/4386: #0: ffff888070553810 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:789 [inline] #0: ffff888070553810 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: __sock_release net/socket.c:648 [inline] #0: ffff888070553810 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x98/0x230 net/socket.c:1336 1 lock held by dhcpcd/4387: #0: ffff888070551a10 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:789 [inline] #0: ffff888070551a10 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: __sock_release net/socket.c:648 [inline] #0: ffff888070551a10 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x98/0x230 net/socket.c:1336 1 lock held by dhcpcd/4388: #0: ffff888070551410 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:789 [inline] #0: ffff888070551410 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: __sock_release net/socket.c:648 [inline] #0: ffff888070551410 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x98/0x230 net/socket.c:1336 3 locks held by kworker/1:10/4392: #0: ffff88802b07e938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc900032f7d20 ((addr_chk_work).work){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0xa/0x20 net/ipv6/addrconf.c:4657 1 lock held by dhcpcd/4393: #0: ffff888070550210 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:789 [inline] #0: ffff888070550210 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: __sock_release net/socket.c:648 [inline] #0: ffff888070550210 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x98/0x230 net/socket.c:1336 1 lock held by dhcpcd/4394: #0: ffff888074f69410 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:789 [inline] #0: ffff888074f69410 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: __sock_release net/socket.c:648 [inline] #0: ffff888074f69410 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x98/0x230 net/socket.c:1336 1 lock held by syz-executor/4395: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 1 lock held by syz-executor/4402: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 1 lock held by syz-executor/4403: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 1 lock held by syz-executor/4404: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 1 lock held by syz-executor/4405: #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline] #0: ffffffff8da32248 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0 net/core/rtnetlink.c:5644 4 locks held by kworker/u5:9/4410: #0: ffff888078d63938 ((wq_completion)hci17#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc900033b7d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff888060e28078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0xb3/0xb50 net/bluetooth/hci_event.c:3319 #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline] #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352 4 locks held by kworker/u5:10/4412: #0: ffff888076e18138 ((wq_completion)hci19#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283 #1: ffffc90003387d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285 #2: ffff888060e20078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0xb3/0xb50 net/bluetooth/hci_event.c:3319 #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline] #3: ffffffff8db7b5e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352 ============================================= NMI backtrace for cpu 1 CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.15.171-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 Call Trace: <TASK> __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x1e3/0x2d0 lib/dump_stack.c:106 nmi_cpu_backtrace+0x46a/0x4a0 lib/nmi_backtrace.c:111 nmi_trigger_cpumask_backtrace+0x181/0x2a0 lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:148 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:210 [inline] watchdog+0xe72/0xeb0 kernel/hung_task.c:295 kthread+0x3f6/0x4f0 kernel/kthread.c:334 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287 </TASK> Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 4213 Comm: kworker/0:6 Not tainted 5.15.171-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 Workqueue: events_power_efficient gc_worker RIP: 0010:lookup_chain_cache kernel/locking/lockdep.c:3682 [inline] RIP: 0010:lookup_chain_cache_add kernel/locking/lockdep.c:3701 [inline] RIP: 0010:validate_chain+0x1a3/0x5930 kernel/locking/lockdep.c:3756 Code: 24 20 48 8b 1b 48 85 db 74 48 48 83 c3 f8 74 42 4c 8d 7b 18 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 6d d1 66 00 <49> 8b 07 4c 39 f0 0f 84 d4 03 00 00 48 83 c3 08 48 89 d8 48 c1 e8 RSP: 0018:ffffc900000077c0 EFLAGS: 00000046 RAX: 1ffffffff20ec987 RBX: ffffffff90764c20 RCX: ffffffff81637942 RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff90763108 RBP: ffffc90000007a70 R08: dffffc0000000000 R09: fffffbfff20ec622 R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 R13: ffff88802a788b60 R14: c518f9dbca9d8bd1 R15: ffffffff90764c38 FS: 0000000000000000(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f07d4be2866 CR3: 000000000c68e000 CR4: 00000000003506f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: <NMI> </NMI> <IRQ> __lock_acquire+0x1295/0x1ff0 kernel/locking/lockdep.c:5012 lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623 __raw_spin_lock_irq include/linux/spinlock_api_smp.h:128 [inline] _raw_spin_lock_irq+0xcf/0x110 kernel/locking/spinlock.c:170 __run_hrtimer kernel/time/hrtimer.c:1692 [inline] __hrtimer_run_queues+0x662/0xcf0 kernel/time/hrtimer.c:1752 hrtimer_interrupt+0x392/0x980 kernel/time/hrtimer.c:1814 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1097 [inline] __sysvec_apic_timer_interrupt+0x13b/0x4b0 arch/x86/kernel/apic/apic.c:1114 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1108 [inline] sysvec_apic_timer_interrupt+0x9b/0xc0 arch/x86/kernel/apic/apic.c:1108 </IRQ> <TASK> asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:676 RIP: 0010:lock_is_held_type+0x137/0x180 Code: 75 40 48 c7 04 24 00 00 00 00 9c 8f 04 24 f7 04 24 00 02 00 00 75 46 41 f7 c4 00 02 00 00 74 01 fb 65 48 8b 04 25 28 00 00 00 <48> 3b 44 24 08 75 3c 89 e8 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f RSP: 0018:ffffc90003087998 EFLAGS: 00000206 RAX: 4921b0189d362900 RBX: 0000000000000002 RCX: ffff88802a788000 RDX: 0000000000000000 RSI: ffffffff8a8b3d20 RDI: ffffffff8ad90500 RBP: 0000000000000000 R08: dffffc0000000000 R09: fffffbfff1bd2cd6 R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000246 R13: ffff88802a788000 R14: 00000000ffffffff R15: ffffffff8c91fbe0 lock_is_held include/linux/lockdep.h:287 [inline] ___might_sleep+0xf1/0x6a0 kernel/sched/core.c:9602 gc_worker+0xd7d/0x14b0 net/netfilter/nf_conntrack_core.c:1544 process_one_work+0x8a1/0x10c0 kernel/workqueue.c:2310 worker_thread+0xaca/0x1280 kernel/workqueue.c:2457 kthread+0x3f6/0x4f0 kernel/kthread.c:334 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287 </TASK>

Crashes (41):
Time	Kernel	Commit	Syzkaller	Config	Log	Report	VM info	Assets (help?)	Manager	Title
2024/11/13 17:10	linux-5.15.y	3c17fc483905	bb3f8425	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/10/16 01:29	linux-5.15.y	3a5928702e71	bde2d81c	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/09/26 19:51	linux-5.15.y	3a5928702e71	9314348a	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/08/05 13:19	linux-5.15.y	7e89efd3ae1c	e35c337f	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/07/23 21:24	linux-5.15.y	7c6d66f0266f	e50e8da5	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/07/03 06:34	linux-5.15.y	4878aadf2d15	1ecfa2d8	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/23 07:20	linux-5.15.y	4878aadf2d15	edc5149a	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/22 01:29	linux-5.15.y	4878aadf2d15	edc5149a	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/18 07:35	linux-5.15.y	4878aadf2d15	ce6011bc	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/16 01:51	linux-5.15.y	c61bd26ae81a	f429ab00	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/14 15:31	linux-5.15.y	c61bd26ae81a	8d849073	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/13 17:54	linux-5.15.y	c61bd26ae81a	a9616ff5	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/12 14:29	linux-5.15.y	c61bd26ae81a	f815599d	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/12 14:21	linux-5.15.y	c61bd26ae81a	f815599d	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/12 14:02	linux-5.15.y	c61bd26ae81a	f815599d	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/11 09:44	linux-5.15.y	c61bd26ae81a	b7d9eb04	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/11 09:43	linux-5.15.y	c61bd26ae81a	b7d9eb04	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/11 08:36	linux-5.15.y	c61bd26ae81a	b7d9eb04	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/11 08:34	linux-5.15.y	c61bd26ae81a	b7d9eb04	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/11 07:34	linux-5.15.y	c61bd26ae81a	b7d9eb04	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/10 18:30	linux-5.15.y	c61bd26ae81a	048c640a	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/10 18:27	linux-5.15.y	c61bd26ae81a	048c640a	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/10 02:45	linux-5.15.y	c61bd26ae81a	82c05ab8	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/08 16:13	linux-5.15.y	c61bd26ae81a	82c05ab8	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/08 00:16	linux-5.15.y	c61bd26ae81a	82c05ab8	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/06 08:03	linux-5.15.y	c61bd26ae81a	121701b6	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/04 19:15	linux-5.15.y	c61bd26ae81a	11f2afa5	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/03 22:16	linux-5.15.y	c61bd26ae81a	a1feae05	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/03 16:31	linux-5.15.y	c61bd26ae81a	0aba2352	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/06/01 03:02	linux-5.15.y	c61bd26ae81a	3113787f	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/31 14:09	linux-5.15.y	c61bd26ae81a	0c378259	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/28 20:19	linux-5.15.y	c61bd26ae81a	34889ee3	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/28 12:52	linux-5.15.y	c61bd26ae81a	f550015e	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/27 07:43	linux-5.15.y	c61bd26ae81a	a10a183e	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/24 19:41	linux-5.15.y	83655231580b	a10a183e	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/24 13:51	linux-5.15.y	83655231580b	8f98448e	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/24 03:34	linux-5.15.y	83655231580b	8f98448e	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/24 01:54	linux-5.15.y	83655231580b	8f98448e	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/22 05:29	linux-5.15.y	83655231580b	1014eca7	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/21 09:52	linux-5.15.y	83655231580b	4c0d3ee3	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work
2024/05/21 09:52	linux-5.15.y	83655231580b	4c0d3ee3	.config	console log	report	info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan	INFO: task hung in crda_timeout_work

Crashes (41):

Assets (help?)

2024/11/13 17:10

linux-5.15.y