INFO: task hung in hub_port

INFO: task hung in hub_port_init
Status: upstream: reported C repro on 2020/10/06 08:19
Reported-by: syzbot+74d6ef051d3d2eacf428@syzkaller.appspotmail.com
Fix commit: 258c81b341c8 usbip: give back URBs for unsent unlink requests during cleanup
Patched on: [ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-qemu2-riscv64 ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386 ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-kcsan-gce ci2-upstream-usb], missing on: [ci-qemu2-arm32]
First crash: 389d, last: 2h12m

Cause bisection: introduced by (bisect log) :
commit 6dcf45e514974a1ff10755015b5e06746a033e5f
Author: Niklas Söderlund <niklas.soderlund+renesas@ragnatech.se>
Date: Mon Jan 9 15:34:04 2017 +0000

sh_eth: use correct name for ECMR_MPDE bit

Crash: WARNING in nf_unregister_net_hook (log)
Repro: C syz .config

similar bugs (2):
Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
linux-4.14	INFO: task hung in hub_port_init	C			6023	10d	389d	0/1	upstream: reported C repro on 2020/10/03 08:19
linux-4.19	INFO: task hung in hub_port_init	C			3930	1h18m	389d	0/1	upstream: reported C repro on 2020/10/03 09:24

Patch testing requests:
Created	Duration	User	Patch	Repo	Result
2021/08/12 18:30	23m	mail@anirudhrb.com	patch	upstream	OK
2021/08/05 14:35	18m	mail@anirudhrb.com	patch	upstream	OK
2021/06/11 09:10	19m	mail@anirudhrb.com	patch	git://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git cbc5ad3cbf7aea0154be271694fe419ad5f0af6d	OK
2021/06/09 13:54	19m	mail@anirudhrb.com		upstream	report log

Sample crash report:

INFO: task kworker/0:0:5 blocked for more than 143 seconds.
      Not tainted 5.13.0-rc7-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/0:0     state:D
 stack:27392 pid:    5 ppid:     2 flags:0x00004000
Workqueue: usb_hub_wq hub_event

Call Trace:
 context_switch kernel/sched/core.c:4339 [inline]
 __schedule+0x916/0x23e0 kernel/sched/core.c:5147
 schedule+0xcf/0x270 kernel/sched/core.c:5226
 usb_kill_urb.part.0+0x19c/0x220 drivers/usb/core/urb.c:711
 usb_kill_urb+0x81/0xa0 drivers/usb/core/urb.c:706
 usb_start_wait_urb+0x24a/0x4c0 drivers/usb/core/message.c:64
 usb_internal_control_msg drivers/usb/core/message.c:102 [inline]
 usb_control_msg+0x31c/0x4a0 drivers/usb/core/message.c:153
 hub_port_init+0x82e/0x2db0 drivers/usb/core/hub.c:4759
 hub_port_connect drivers/usb/core/hub.c:5210 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 port_event drivers/usb/core/hub.c:5564 [inline]
 hub_event+0x2190/0x4330 drivers/usb/core/hub.c:5646
 process_one_work+0x98d/0x1600 kernel/workqueue.c:2276
 worker_thread+0x64c/0x1120 kernel/workqueue.c:2422
 kthread+0x3b1/0x4a0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294
INFO: task kworker/0:1:7 blocked for more than 144 seconds.
      Not tainted 5.13.0-rc7-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/0:1     state:D
 stack:26200 pid:    7 ppid:     2 flags:0x00004000
Workqueue: usb_hub_wq hub_event
Call Trace:
 context_switch kernel/sched/core.c:4339 [inline]
 __schedule+0x916/0x23e0 kernel/sched/core.c:5147
 schedule+0xcf/0x270 kernel/sched/core.c:5226
 usb_kill_urb.part.0+0x19c/0x220 drivers/usb/core/urb.c:711
 usb_kill_urb+0x81/0xa0 drivers/usb/core/urb.c:706
 usb_start_wait_urb+0x24a/0x4c0 drivers/usb/core/message.c:64
 usb_internal_control_msg drivers/usb/core/message.c:102 [inline]
 usb_control_msg+0x31c/0x4a0 drivers/usb/core/message.c:153
 hub_port_init+0x82e/0x2db0 drivers/usb/core/hub.c:4759
 hub_port_connect drivers/usb/core/hub.c:5210 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 port_event drivers/usb/core/hub.c:5564 [inline]
 hub_event+0x2190/0x4330 drivers/usb/core/hub.c:5646
 process_one_work+0x98d/0x1600 kernel/workqueue.c:2276
 process_scheduled_works kernel/workqueue.c:2338 [inline]
 worker_thread+0x82b/0x1120 kernel/workqueue.c:2424
 kthread+0x3b1/0x4a0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294
INFO: task kworker/1:0:20 blocked for more than 145 seconds.
      Not tainted 5.13.0-rc7-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/1:0     state:D stack:26896 pid:   20 ppid:     2 flags:0x00004000
Workqueue: usb_hub_wq hub_event
Call Trace:
 context_switch kernel/sched/core.c:4339 [inline]
 __schedule+0x916/0x23e0 kernel/sched/core.c:5147
 schedule+0xcf/0x270 kernel/sched/core.c:5226
 usb_kill_urb.part.0+0x19c/0x220 drivers/usb/core/urb.c:711
 usb_kill_urb+0x81/0xa0 drivers/usb/core/urb.c:706
 usb_start_wait_urb+0x24a/0x4c0 drivers/usb/core/message.c:64
 usb_internal_control_msg drivers/usb/core/message.c:102 [inline]
 usb_control_msg+0x31c/0x4a0 drivers/usb/core/message.c:153
 usb_get_descriptor+0xc5/0x1b0 drivers/usb/core/message.c:790
 usb_get_device_descriptor+0x81/0xf0 drivers/usb/core/message.c:1065
 hub_port_init+0x9e3/0x2db0 drivers/usb/core/hub.c:4854
 hub_port_connect drivers/usb/core/hub.c:5210 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 port_event drivers/usb/core/hub.c:5564 [inline]
 hub_event+0x2190/0x4330 drivers/usb/core/hub.c:5646
 process_one_work+0x98d/0x1600 kernel/workqueue.c:2276
 process_scheduled_works kernel/workqueue.c:2338 [inline]
 worker_thread+0x82b/0x1120 kernel/workqueue.c:2424
 kthread+0x3b1/0x4a0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294
INFO: task kworker/1:1:8442 blocked for more than 146 seconds.
      Not tainted 5.13.0-rc7-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/1:1     state:D
 stack:27696 pid: 8442 ppid:     2 flags:0x00004000
Workqueue: usb_hub_wq hub_event

Call Trace:
 context_switch kernel/sched/core.c:4339 [inline]
 __schedule+0x916/0x23e0 kernel/sched/core.c:5147
 schedule+0xcf/0x270 kernel/sched/core.c:5226
 usb_kill_urb.part.0+0x19c/0x220 drivers/usb/core/urb.c:711
 usb_kill_urb+0x81/0xa0 drivers/usb/core/urb.c:706
 usb_start_wait_urb+0x24a/0x4c0 drivers/usb/core/message.c:64
 usb_internal_control_msg drivers/usb/core/message.c:102 [inline]
 usb_control_msg+0x31c/0x4a0 drivers/usb/core/message.c:153
 hub_port_init+0x82e/0x2db0 drivers/usb/core/hub.c:4759
 hub_port_connect drivers/usb/core/hub.c:5210 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 port_event drivers/usb/core/hub.c:5564 [inline]
 hub_event+0x2190/0x4330 drivers/usb/core/hub.c:5646
 process_one_work+0x98d/0x1600 kernel/workqueue.c:2276
 worker_thread+0x64c/0x1120 kernel/workqueue.c:2422
 kthread+0x3b1/0x4a0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294
INFO: task kworker/1:3:8475 blocked for more than 147 seconds.
      Not tainted 5.13.0-rc7-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/1:3     state:D stack:27216 pid: 8475 ppid:     2 flags:0x00004000
Workqueue: usb_hub_wq hub_event

Call Trace:
 context_switch kernel/sched/core.c:4339 [inline]
 __schedule+0x916/0x23e0 kernel/sched/core.c:5147
 schedule+0xcf/0x270 kernel/sched/core.c:5226
 usb_kill_urb.part.0+0x19c/0x220 drivers/usb/core/urb.c:711
 usb_kill_urb+0x81/0xa0 drivers/usb/core/urb.c:706
 usb_start_wait_urb+0x24a/0x4c0 drivers/usb/core/message.c:64
 usb_internal_control_msg drivers/usb/core/message.c:102 [inline]
 usb_control_msg+0x31c/0x4a0 drivers/usb/core/message.c:153
 hub_port_init+0x82e/0x2db0 drivers/usb/core/hub.c:4759
 hub_port_connect drivers/usb/core/hub.c:5210 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 port_event drivers/usb/core/hub.c:5564 [inline]
 hub_event+0x2190/0x4330 drivers/usb/core/hub.c:5646
 process_one_work+0x98d/0x1600 kernel/workqueue.c:2276
 process_scheduled_works kernel/workqueue.c:2338 [inline]
 worker_thread+0x82b/0x1120 kernel/workqueue.c:2424
 kthread+0x3b1/0x4a0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294
INFO: task kworker/1:4:8495 blocked for more than 148 seconds.
      Not tainted 5.13.0-rc7-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/1:4     state:D stack:27632 pid: 8495 ppid:     2 flags:0x00004000
Workqueue: usb_hub_wq hub_event
Call Trace:
 context_switch kernel/sched/core.c:4339 [inline]
 __schedule+0x916/0x23e0 kernel/sched/core.c:5147
 schedule+0xcf/0x270 kernel/sched/core.c:5226
 usb_kill_urb.part.0+0x19c/0x220 drivers/usb/core/urb.c:711
 usb_kill_urb+0x81/0xa0 drivers/usb/core/urb.c:706
 usb_start_wait_urb+0x24a/0x4c0 drivers/usb/core/message.c:64
 usb_internal_control_msg drivers/usb/core/message.c:102 [inline]
 usb_control_msg+0x31c/0x4a0 drivers/usb/core/message.c:153
 usb_get_descriptor+0xc5/0x1b0 drivers/usb/core/message.c:790
 usb_get_device_descriptor+0x81/0xf0 drivers/usb/core/message.c:1065
 hub_port_init+0x9e3/0x2db0 drivers/usb/core/hub.c:4854
 hub_port_connect drivers/usb/core/hub.c:5210 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 port_event drivers/usb/core/hub.c:5564 [inline]
 hub_event+0x2190/0x4330 drivers/usb/core/hub.c:5646
 process_one_work+0x98d/0x1600 kernel/workqueue.c:2276
 worker_thread+0x64c/0x1120 kernel/workqueue.c:2422
 kthread+0x3b1/0x4a0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

Showing all locks held in the system:
5 locks held by kworker/0:0/5:
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:617 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:644 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x871/0x1600 kernel/workqueue.c:2247
 #1: 
ffffc90000cbfda8
 (
(work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x8a5/0x1600 kernel/workqueue.c:2251
 #2: ffff888023e0d220 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:742 [inline]
 #2: ffff888023e0d220 (&dev->mutex){....}-{3:3}, at: hub_event+0x1c1/0x4330 drivers/usb/core/hub.c:5592
 #3: 
ffff888146ed4578 (&port_dev->status_lock){+.+.}-{3:3}, at: usb_lock_port drivers/usb/core/hub.c:3081 [inline]
ffff888146ed4578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect drivers/usb/core/hub.c:5209 [inline]
ffff888146ed4578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
ffff888146ed4578 (&port_dev->status_lock){+.+.}-{3:3}, at: port_event drivers/usb/core/hub.c:5564 [inline]
ffff888146ed4578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x2178/0x4330 drivers/usb/core/hub.c:5646
 #4: 
ffff888023de9e68 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_port_init+0x1b5/0x2db0 drivers/usb/core/hub.c:4633
5 locks held by kworker/0:1/7:
 #0: 
ffff888141fd6538
 (
(wq_completion)usb_hub_wq){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
(wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
(wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
(wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:617 [inline]
(wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:644 [inline]
(wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x871/0x1600 kernel/workqueue.c:2247
 #1: 
ffffc90000cdfda8 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x8a5/0x1600 kernel/workqueue.c:2251
 #2: 
ffff888024043220 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:742 [inline]
ffff888024043220 (&dev->mutex){....}-{3:3}, at: hub_event+0x1c1/0x4330 drivers/usb/core/hub.c:5592
 #3: ffff88802405d578 (&port_dev->status_lock){+.+.}-{3:3}, at: usb_lock_port drivers/usb/core/hub.c:3081 [inline]
 #3: ffff88802405d578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect drivers/usb/core/hub.c:5209 [inline]
 #3: ffff88802405d578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 #3: ffff88802405d578 (&port_dev->status_lock){+.+.}-{3:3}, at: port_event drivers/usb/core/hub.c:5564 [inline]
 #3: ffff88802405d578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x2178/0x4330 drivers/usb/core/hub.c:5646
 #4: 
ffff888023a55068
 (
hcd->address0_mutex
){+.+.}-{3:3}
, at: hub_port_init+0x1b5/0x2db0 drivers/usb/core/hub.c:4633
5 locks held by kworker/1:0/20:
 #0: 
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:617 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:644 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x871/0x1600 kernel/workqueue.c:2247
 #1: 
ffffc90000dbfda8 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x8a5/0x1600 kernel/workqueue.c:2251
 #2: 
ffff888023ed7220
 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:742 [inline]
 (&dev->mutex){....}-{3:3}, at: hub_event+0x1c1/0x4330 drivers/usb/core/hub.c:5592
 #3: ffff888146f1b578 (&port_dev->status_lock){+.+.}-{3:3}
, at: usb_lock_port drivers/usb/core/hub.c:3081 [inline]
, at: hub_port_connect drivers/usb/core/hub.c:5209 [inline]
, at: hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
, at: port_event drivers/usb/core/hub.c:5564 [inline]
, at: hub_event+0x2178/0x4330 drivers/usb/core/hub.c:5646
 #4: 
ffff888023eb3968 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_port_init+0x1b5/0x2db0 drivers/usb/core/hub.c:4633
3 locks held by kworker/u4:5/191:
1 lock held by khungtaskd/1635:
 #0: 
ffffffff8bf76da0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 kernel/locking/lockdep.c:6335
1 lock held by in:imklog/8351:
 #0: 
ffff8880173de430 (&f->f_pos_lock
){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 fs/file.c:974
5 locks held by kworker/1:1/8442:
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:617 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:644 [inline]
 #0: ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x871/0x1600 kernel/workqueue.c:2247
 #1: ffffc90001117da8 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x8a5/0x1600 kernel/workqueue.c:2251
 #2: ffff888023b70220 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:742 [inline]
 #2: ffff888023b70220 (&dev->mutex){....}-{3:3}, at: hub_event+0x1c1/0x4330 drivers/usb/core/hub.c:5592
 #3: ffff888146f69578 (&port_dev->status_lock){+.+.}-{3:3}, at: usb_lock_port drivers/usb/core/hub.c:3081 [inline]
 #3: ffff888146f69578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect drivers/usb/core/hub.c:5209 [inline]
 #3: ffff888146f69578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 #3: ffff888146f69578 (&port_dev->status_lock){+.+.}-{3:3}, at: port_event drivers/usb/core/hub.c:5564 [inline]
 #3: ffff888146f69578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x2178/0x4330 drivers/usb/core/hub.c:5646
 #4: ffff888146f2ec68 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_port_init+0x1b5/0x2db0 drivers/usb/core/hub.c:4633
5 locks held by kworker/1:3/8475:
 #0: 
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:617 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:644 [inline]
ffff888141fd6538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x871/0x1600 kernel/workqueue.c:2247
 #1: 
ffffc9000158fda8
 (
(work_completion)(&hub->events)
){+.+.}-{0:0}, at: process_one_work+0x8a5/0x1600 kernel/workqueue.c:2251
 #2: 
ffff888146ea3220
 (
&dev->mutex
){....}-{3:3}
, at: device_lock include/linux/device.h:742 [inline]
, at: hub_event+0x1c1/0x4330 drivers/usb/core/hub.c:5592
 #3: 
ffff888023d4c578
 (&port_dev->status_lock){+.+.}-{3:3}, at: usb_lock_port drivers/usb/core/hub.c:3081 [inline]
 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect drivers/usb/core/hub.c:5209 [inline]
 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 (&port_dev->status_lock){+.+.}-{3:3}, at: port_event drivers/usb/core/hub.c:5564 [inline]
 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x2178/0x4330 drivers/usb/core/hub.c:5646
 #4: ffff888146da1868 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_port_init+0x1b5/0x2db0 drivers/usb/core/hub.c:4633
5 locks held by kworker/1:4/8495:
 #0: ffff888141fd6538
 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:617 [inline]
 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:644 [inline]
 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x871/0x1600 kernel/workqueue.c:2247
 #1: ffffc900019bfda8 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x8a5/0x1600 kernel/workqueue.c:2251
 #2: ffff888146d7b220 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:742 [inline]
 #2: ffff888146d7b220 (&dev->mutex){....}-{3:3}, at: hub_event+0x1c1/0x4330 drivers/usb/core/hub.c:5592
 #3: 
ffff888146d80578 (&port_dev->status_lock){+.+.}-{3:3}, at: usb_lock_port drivers/usb/core/hub.c:3081 [inline]
ffff888146d80578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect drivers/usb/core/hub.c:5209 [inline]
ffff888146d80578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
ffff888146d80578 (&port_dev->status_lock){+.+.}-{3:3}, at: port_event drivers/usb/core/hub.c:5564 [inline]
ffff888146d80578 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x2178/0x4330 drivers/usb/core/hub.c:5646
 #4: ffff888146e1a568 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_port_init+0x1b5/0x2db0 drivers/usb/core/hub.c:4633
1 lock held by systemd-journal/9890:
4 locks held by syz-executor555/12714:
 #0: 
ffff888022312460
 (sb_writers#6){.+.+}-{0:0}, at: ksys_write+0x12d/0x250 fs/read_write.c:658
 #1: ffff8880311c6888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x287/0x500 fs/kernfs/file.c:287
 #2: 
ffff88802236f978
 (
&sig->wait_chldexit
){....}-{2:2}, at: __wake_up_common_lock+0xb4/0x130 kernel/sched/wait.c:137
 #3: 
ffff88802301cbf0 (&p->pi_lock){-.-.}-{2:2}, at: try_to_wake_up+0x98/0x14b0 kernel/sched/core.c:3364
4 locks held by syz-executor555/12790:
4 locks held by syz-executor555/12805:
 #0: 
ffff888022312460 (sb_writers#6){.+.+}-{0:0}, at: ksys_write+0x12d/0x250 fs/read_write.c:658

Crashes (15735):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	VM info	Title
ci-upstream-kasan-gce-selinux-root	2021/06/27 07:10	upstream	625acffd7ae2	9d2ab5df	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/04/04 19:24	upstream	2023a53bdf41	6a81331a	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/02/20 09:02	upstream	f40ddce88593	f689d40a	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-smack-root	2021/02/16 20:57	upstream	f40ddce88593	98682e5e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/02/16 19:42	upstream	f40ddce88593	98682e5e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/02/15 12:56	upstream	f40ddce88593	98682e5e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/02/04 16:49	upstream	61556703b610	42b90a7c	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/02/03 09:46	upstream	3aaf0a27ffc2	624dad51	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/02/02 03:51	upstream	1048ba83fb1c	e6b95f32	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/02/02 02:37	upstream	1048ba83fb1c	e6b95f32	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/02/01 12:48	upstream	1048ba83fb1c	fc9fd31e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/02/01 09:23	upstream	1048ba83fb1c	fc9fd31e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/02/01 02:13	upstream	6642d600b541	fc9fd31e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/02/01 00:24	upstream	6642d600b541	fc9fd31e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/01/31 21:14	upstream	6642d600b541	fc9fd31e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/01/31 11:00	upstream	8c947645151c	fc9fd31e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-smack-root	2021/01/30 23:00	upstream	0e9bcda5d286	fc9fd31e	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/04/03 05:32	linux-next	454c576c3f5e	6a81331a	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/08 21:02	linux-next	4641b32307b3	09fbf400	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/05 17:18	linux-next	4641b32307b3	9d751681	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/05 15:53	linux-next	4641b32307b3	9d751681	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/04 10:36	linux-next	f5427c2460eb	d7e4e604	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/04 08:08	linux-next	f5427c2460eb	d7e4e604	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/04 02:30	linux-next	f6b975aabf15	06ed56cd	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/04 00:53	linux-next	f6b975aabf15	06ed56cd	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/03 21:43	linux-next	f6b975aabf15	06ed56cd	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/03 16:06	linux-next	f6b975aabf15	e5b64d68	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/03 13:50	linux-next	f6b975aabf15	e5b64d68	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/03 10:25	linux-next	92f791ebd25b	e5b64d68	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/03 08:12	linux-next	92f791ebd25b	e5b64d68	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/02 23:13	linux-next	92f791ebd25b	92ead296	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/02 19:13	linux-next	92f791ebd25b	92ead296	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/02 01:34	linux-next	26ada2d1f143	183afb6c	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/01 11:01	linux-next	26ada2d1f143	4c37c133	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/03/01 02:53	linux-next	d01f2f7e3557	4c37c133	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/02/28 23:22	linux-next	d01f2f7e3557	4c37c133	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/02/28 17:36	linux-next	d01f2f7e3557	4c37c133	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/02/28 12:59	linux-next	d01f2f7e3557	4c37c133	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/02/28 03:39	linux-next	d01f2f7e3557	4c37c133	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/02/28 00:40	linux-next	d01f2f7e3557	4c37c133	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/02/27 20:50	linux-next	d01f2f7e3557	4c37c133	.config	log	report	syz	C		INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2020/10/03 18:52	upstream	d3d45f8220d6	2653fa43	.config	log	report	syz	C
ci-upstream-kasan-gce-root	2021/10/27 23:43	upstream	1fc596a56b33	373bf66b	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/27 20:08	upstream	d25f27432f80	373bf66b	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/27 16:21	upstream	d25f27432f80	373bf66b	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/27 14:30	upstream	d25f27432f80	373bf66b	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-smack-root	2021/10/27 01:11	upstream	3906fe9bb7f1	d50eb50a	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/10/25 17:30	upstream	87066fdd2e30	4f0000ee	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/25 15:37	upstream	87066fdd2e30	4f0000ee	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/25 13:46	upstream	87066fdd2e30	4f0000ee	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/25 09:44	upstream	87066fdd2e30	4f0000ee	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/24 16:50	upstream	9c0c4d24ac00	282f03fb	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/24 13:37	upstream	9c0c4d24ac00	282f03fb	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-smack-root	2021/10/24 09:13	upstream	9c0c4d24ac00	282f03fb	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-smack-root	2021/10/24 06:52	upstream	9c0c4d24ac00	282f03fb	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/23 15:57	upstream	9c0c4d24ac00	282f03fb	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/23 00:52	upstream	64222515138e	282f03fb	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/22 11:34	upstream	2f111a6fd5b5	55f90bc6	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-smack-root	2021/10/21 20:09	upstream	2f111a6fd5b5	c5cb7da8	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-smack-root	2021/10/21 04:19	upstream	8e37395c3a5d	f111d03b	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-smack-root	2021/10/21 02:39	upstream	8e37395c3a5d	f111d03b	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/20 20:21	upstream	8e37395c3a5d	418a00eb	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/20 06:54	upstream	d9abdee5fd5a	466b7db1	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/20 03:34	upstream	d9abdee5fd5a	466b7db1	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/10/19 23:42	upstream	d9abdee5fd5a	466b7db1	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/19 13:39	upstream	519d81956ee2	24dc29db	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/18 21:18	upstream	cf52ad5ff16c	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/18 16:16	upstream	cf52ad5ff16c	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/18 12:57	upstream	cf52ad5ff16c	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/18 04:23	upstream	d999ade1cc86	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/17 19:27	upstream	d999ade1cc86	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/17 15:55	upstream	d999ade1cc86	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/17 13:22	upstream	d999ade1cc86	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/17 02:20	upstream	304040fb4909	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/16 18:59	upstream	8fe31e0995f0	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/10/16 16:15	upstream	8fe31e0995f0	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/16 15:08	upstream	8fe31e0995f0	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/15 22:58	upstream	ec681c53f8d2	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce	2021/10/15 20:16	upstream	ec681c53f8d2	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/15 01:46	upstream	26d657410983	7aa5fe41	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-root	2021/10/14 14:59	upstream	348949d9a444	5462d470	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/10/14 11:51	upstream	348949d9a444	5462d470	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2021/10/14 09:31	upstream	348949d9a444	5462d470	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-386	2021/10/24 15:42	upstream	9c0c4d24ac00	282f03fb	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-386	2021/10/23 05:28	upstream	64222515138e	282f03fb	.config	log	report			info	INFO: task hung in hub_port_init
ci-qemu2-arm64-compat	2021/03/14 09:30	upstream	f296bfd5cd04	4a003785	.config	log	report			info	INFO: task hung in hub_port_init
ci-qemu2-arm64	2021/03/14 02:47	upstream	f296bfd5cd04	4a003785	.config	log	report			info	INFO: task hung in hub_port_init
ci-qemu2-arm32	2021/03/13 12:52	upstream	f296bfd5cd04	4a003785	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/10/26 14:20	linux-next	2376e5fe91bc	d50eb50a	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/10/26 10:38	linux-next	9ae1fbdeabd3	c1132b49	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/10/23 08:01	linux-next	cf6c9d12750c	282f03fb	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/10/20 02:03	linux-next	60e8840126bd	466b7db1	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/10/19 02:23	linux-next	60e8840126bd	24dc29db	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/10/18 00:02	linux-next	7c832d2f9b95	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/10/17 11:50	linux-next	7c832d2f9b95	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-linux-next-kasan-gce-root	2021/10/17 07:51	linux-next	7c832d2f9b95	0c5d9412	.config	log	report			info	INFO: task hung in hub_port_init
ci-qemu2-riscv64	2021/03/11 03:13	git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes	0d7588ab9ef9	764067f3	.config	log	report			info	INFO: task hung in hub_port_init
ci-upstream-kasan-gce-selinux-root	2020/10/03 10:37	upstream	d3d45f8220d6	2653fa43	.config	log	report			info
ci-upstream-linux-next-kasan-gce-root	2021/01/17 13:34	linux-next	b3a3cbdec55b	813be542	.config	log	report			info
ci-upstream-linux-next-kasan-gce-root	2020/10/03 06:32	linux-next	2172e358cd17	2653fa43	.config	log	report			info