INFO: task kworker/1:0:24 blocked for more than 143 seconds.
Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/1:0 state:D stack:21528 pid:24 tgid:24 ppid:2 task_flags:0x4208060 flags:0x00004000
Workqueue: events reg_todo
Call Trace:
<TASK>
context_switch kernel/sched/core.c:5382 [inline]
__schedule+0x1b33/0x51f0 kernel/sched/core.c:6767
__schedule_loop kernel/sched/core.c:6845 [inline]
schedule+0x163/0x360 kernel/sched/core.c:6860
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6917
__mutex_lock_common kernel/locking/mutex.c:678 [inline]
__mutex_lock+0x805/0x10c0 kernel/locking/mutex.c:746
reg_todo+0x1c/0x8d0 net/wireless/reg.c:3219
process_one_work kernel/workqueue.c:3238 [inline]
process_scheduled_works+0xac3/0x18e0 kernel/workqueue.c:3319
worker_thread+0x870/0xd50 kernel/workqueue.c:3400
kthread+0x7b7/0x940 kernel/kthread.c:464
ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:153
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
</TASK>
INFO: task kworker/1:8:5928 blocked for more than 143 seconds.
Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/1:8 state:D stack:24872 pid:5928 tgid:5928 ppid:2 task_flags:0x4208060 flags:0x00004000
Workqueue: events_power_efficient reg_check_chans_work
Call Trace:
<TASK>
context_switch kernel/sched/core.c:5382 [inline]
__schedule+0x1b33/0x51f0 kernel/sched/core.c:6767
__schedule_loop kernel/sched/core.c:6845 [inline]
schedule+0x163/0x360 kernel/sched/core.c:6860
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6917
__mutex_lock_common kernel/locking/mutex.c:678 [inline]
__mutex_lock+0x805/0x10c0 kernel/locking/mutex.c:746
class_wiphy_constructor include/net/cfg80211.h:6092 [inline]
reg_leave_invalid_chans net/wireless/reg.c:2471 [inline]
reg_check_chans_work+0x166/0xfc0 net/wireless/reg.c:2486
process_one_work kernel/workqueue.c:3238 [inline]
process_scheduled_works+0xac3/0x18e0 kernel/workqueue.c:3319
worker_thread+0x870/0xd50 kernel/workqueue.c:3400
kthread+0x7b7/0x940 kernel/kthread.c:464
ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:153
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
</TASK>
Showing all locks held in the system:
1 lock held by kthreadd/2:
1 lock held by kworker/R-kvfre/6:
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_attach_to_pool+0x31/0x390 kernel/workqueue.c:2678
5 locks held by kworker/0:0/9:
2 locks held by kworker/0:1/10:
3 locks held by kworker/u8:0/12:
3 locks held by kworker/u8:1/13:
3 locks held by kworker/1:0/24:
#0: ffff88801b080d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3213 [inline]
#0: ffff88801b080d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0 kernel/workqueue.c:3319
#1: ffffc900001e7c60 (reg_work){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3214 [inline]
#1: ffffc900001e7c60 (reg_work){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0 kernel/workqueue.c:3319
#2: ffffffff900eb308 (rtnl_mutex){+.+.}-{4:4}, at: reg_todo+0x1c/0x8d0 net/wireless/reg.c:3219
1 lock held by khungtaskd/31:
#0: ffffffff8ed3df20 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire include/linux/rcupdate.h:331 [inline]
#0: ffffffff8ed3df20 (rcu_read_lock){....}-{1:3}, at: rcu_read_lock include/linux/rcupdate.h:841 [inline]
#0: ffffffff8ed3df20 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x30/0x180 kernel/locking/lockdep.c:6764
3 locks held by kworker/u8:2/36:
3 locks held by kworker/u8:3/53:
3 locks held by kworker/u8:4/68:
3 locks held by kworker/u8:5/1031:
3 locks held by kworker/0:2/1213:
3 locks held by kworker/u8:6/1329:
2 locks held by kworker/R-bat_e/3402:
3 locks held by kworker/u8:7/4219:
2 locks held by syslogd/5182:
2 locks held by udevd/5200:
2 locks held by dhcpcd/5493:
1 lock held by dhcpcd/5494:
2 locks held by getty/5582:
#0: ffff8880367920a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 drivers/tty/tty_ldisc.c:243
#1: ffffc900036be2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x5bb/0x1700 drivers/tty/n_tty.c:2222
1 lock held by syz-executor/5814:
3 locks held by syz-executor/5825:
5 locks held by syz-executor/5828:
7 locks held by kworker/u9:2/5830:
1 lock held by syz-executor/5839:
2 locks held by syz-executor/5843:
1 lock held by kworker/R-wg-cr/5858:
1 lock held by kworker/R-wg-cr/5859:
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_attach_to_pool+0x31/0x390 kernel/workqueue.c:2678
1 lock held by kworker/R-wg-cr/5860:
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_attach_to_pool+0x31/0x390 kernel/workqueue.c:2678
1 lock held by kworker/R-wg-cr/5863:
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_attach_to_pool+0x31/0x390 kernel/workqueue.c:2678
1 lock held by kworker/R-wg-cr/5864:
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_attach_to_pool+0x31/0x390 kernel/workqueue.c:2678
1 lock held by kworker/R-wg-cr/5867:
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_attach_to_pool+0x31/0x390 kernel/workqueue.c:2678
1 lock held by kworker/R-wg-cr/5874:
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_attach_to_pool+0x31/0x390 kernel/workqueue.c:2678
1 lock held by kworker/R-wg-cr/5875:
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_attach_to_pool+0x31/0x390 kernel/workqueue.c:2678
1 lock held by kworker/R-wg-cr/5876:
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_detach_from_pool kernel/workqueue.c:2736 [inline]
#0: ffffffff8ebe5388 (wq_pool_attach_mutex){+.+.}-{4:4}, at: rescuer_thread+0xa44/0x1020 kernel/workqueue.c:3529
2 locks held by kworker/0:3/5879:
5 locks held by kworker/0:4/5880:
3 locks held by kworker/1:5/5883:
2 locks held by kworker/1:6/5884:
2 locks held by kworker/0:6/5913:
4 locks held by kworker/1:8/5928:
#0: ffff88801b081d48 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3213 [inline]
#0: ffff88801b081d48 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0 kernel/workqueue.c:3319
#1: ffffc90004c87c60 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3214 [inline]
#1: ffffc90004c87c60 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0 kernel/workqueue.c:3319
#2: ffffffff900eb308 (rtnl_mutex){+.+.}-{4:4}, at: reg_check_chans_work+0x9b/0xfc0 net/wireless/reg.c:2483
#3: ffff888053e00768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: class_wiphy_constructor include/net/cfg80211.h:6092 [inline]
#3: ffff888053e00768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: reg_leave_invalid_chans net/wireless/reg.c:2471 [inline]
#3: ffff888053e00768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: reg_check_chans_work+0x166/0xfc0 net/wireless/reg.c:2486
3 locks held by kworker/u8:8/6004:
3 locks held by kworker/1:9/6007:
4 locks held by syz.2.27/6010:
3 locks held by kworker/u8:9/6009:
4 locks held by kworker/u8:10/6015:
4 locks held by kworker/u8:11/6016:
#0: ffff88814dd28148 ((wq_completion)wg-kex-wg0#3){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3213 [inline]
#0: ffff88814dd28148 ((wq_completion)wg-kex-wg0#3){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0 kernel/workqueue.c:3319
#1: ffffc90003617c60 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3214 [inline]
#1: ffffc90003617c60 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0 kernel/workqueue.c:3319
#2: ffff888060d1d308 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x112/0xcb0 drivers/net/wireguard/noise.c:529
#3: ffff888056346648 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x121/0xcb0 drivers/net/wireguard/noise.c:530
7 locks held by kworker/u8:12/6018:
3 locks held by kworker/u8:13/6019:
#0: ffff88814bae9148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3213 [inline]
#0: ffff88814bae9148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0 kernel/workqueue.c:3319
#1: ffffc90003b2fc60 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3214 [inline]
#1: ffffc90003b2fc60 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0 kernel/workqueue.c:3319
#2: ffffffff900eb308 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_lock include/linux/rtnetlink.h:130 [inline]
#2: ffffffff900eb308 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30 net/ipv6/addrconf.c:4735
2 locks held by dhcpcd/6021:
4 locks held by kworker/0:8/6023:
=============================================
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full)
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Call Trace:
<TASK>
__dump_stack lib/dump_stack.c:94 [inline]
dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120
nmi_cpu_backtrace+0x4ab/0x4e0 lib/nmi_backtrace.c:113
nmi_trigger_cpumask_backtrace+0x198/0x320 lib/nmi_backtrace.c:62
trigger_all_cpu_backtrace include/linux/nmi.h:158 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:274 [inline]
watchdog+0x1058/0x10a0 kernel/hung_task.c:437
kthread+0x7b7/0x940 kernel/kthread.c:464
ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:153
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
</TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full)
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: wg-kex-wg1 wg_packet_handshake_receive_worker
RIP: 0010:unwind_get_return_address+0x8/0x90 arch/x86/kernel/unwind_orc.c:365
Code: 40 8b 74 24 14 e9 da fe ff ff e8 93 16 ba 0a 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 41 57 41 56 <53> 48 89 fb 49 be 00 00 00 00 00 fc ff df 48 89 f8 48 c1 e8 03 42
RSP: 0018:ffffc90000006588 EFLAGS: 00000202
RAX: 0000000000000001 RBX: ffffc900000065a0 RCX: 0000000000000004
RDX: dffffc0000000000 RSI: ffffffff8e4c80af RDI: ffffc900000065a0
RBP: ffffc90000006630 R08: ffffc90000006e88 R09: 0000000000000000
R10: ffffc900000065f0 R11: fffff52000000cc0 R12: ffff88801c2f8000
R13: ffffffff81ae6180 R14: ffffc90000006680 R15: 0000000000000000
FS: 0000000000000000(0000) GS:ffff888124fcf000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fccd8380ef8 CR3: 00000000644fa000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<IRQ>
arch_stack_walk+0xff/0x150 arch/x86/kernel/stacktrace.c:26
stack_trace_save+0x11a/0x1d0 kernel/stacktrace.c:122
save_stack+0xfc/0x1f0 mm/page_owner.c:156
__set_page_owner+0x93/0x530 mm/page_owner.c:329
set_page_owner include/linux/page_owner.h:32 [inline]
post_alloc_hook+0x1f4/0x240 mm/page_alloc.c:1718
prep_new_page mm/page_alloc.c:1726 [inline]
get_page_from_freelist+0x360d/0x37b0 mm/page_alloc.c:3688
__alloc_frozen_pages_noprof+0x211/0x5b0 mm/page_alloc.c:4970
alloc_pages_mpol+0x339/0x690 mm/mempolicy.c:2301
alloc_slab_page mm/slub.c:2468 [inline]
allocate_slab+0x8f/0x3b0 mm/slub.c:2632
new_slab mm/slub.c:2686 [inline]
___slab_alloc+0xc3b/0x1500 mm/slub.c:3872
__slab_alloc+0x58/0xa0 mm/slub.c:3962
__slab_alloc_node mm/slub.c:4037 [inline]
slab_alloc_node mm/slub.c:4198 [inline]
kmem_cache_alloc_noprof+0x270/0x390 mm/slub.c:4217
skb_clone+0x20c/0x390 net/core/skbuff.c:2056
deliver_clone net/bridge/br_forward.c:125 [inline]
br_flood+0x3df/0x680 net/bridge/br_forward.c:249
br_handle_frame_finish+0x185b/0x1f60 net/bridge/br_input.c:220
br_nf_hook_thresh+0x482/0x5a0 net/bridge/br_netfilter_hooks.c:1170
br_nf_pre_routing_finish_ipv6+0xaa3/0xdd0 net/bridge/br_netfilter_ipv6.c:-1
NF_HOOK include/linux/netfilter.h:314 [inline]
br_nf_pre_routing_ipv6+0x397/0x790 net/bridge/br_netfilter_ipv6.c:184
nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]
nf_hook_bridge_pre net/bridge/br_input.c:282 [inline]
br_handle_frame+0x9fa/0x1530 net/bridge/br_input.c:433
__netif_receive_skb_core+0x155a/0x4bb0 net/core/dev.c:5773
__netif_receive_skb_one_core net/core/dev.c:5885 [inline]
__netif_receive_skb+0x130/0x670 net/core/dev.c:6000
process_backlog+0x664/0x15c0 net/core/dev.c:6352
__napi_poll+0xcb/0x480 net/core/dev.c:7324
napi_poll net/core/dev.c:7388 [inline]
net_rx_action+0x89d/0x1240 net/core/dev.c:7510
handle_softirqs+0x2d6/0x9b0 kernel/softirq.c:579
do_softirq+0x11f/0x1e0 kernel/softirq.c:480
</IRQ>
<TASK>
__local_bh_enable_ip+0x1be/0x200 kernel/softirq.c:407
local_bh_enable include/linux/bottom_half.h:33 [inline]
fpregs_unlock arch/x86/include/asm/fpu/api.h:77 [inline]
kernel_fpu_end+0x103/0x150 arch/x86/kernel/fpu/core.c:460
blake2s_compress+0x5f/0xd0 arch/x86/crypto/blake2s-glue.c:49
blake2s_final+0x114/0x260 lib/crypto/blake2s.c:54
hmac+0x674/0x9d0 drivers/net/wireguard/noise.c:333
kdf+0x129/0x3a0 drivers/net/wireguard/noise.c:367
mix_precomputed_dh drivers/net/wireguard/noise.c:426 [inline]
wg_noise_handshake_consume_initiation+0x50b/0xd60 drivers/net/wireguard/noise.c:623
wg_receive_handshake_packet drivers/net/wireguard/receive.c:144 [inline]
wg_packet_handshake_receive_worker+0x5bd/0xf60 drivers/net/wireguard/receive.c:213
process_one_work kernel/workqueue.c:3238 [inline]
process_scheduled_works+0xac3/0x18e0 kernel/workqueue.c:3319
worker_thread+0x870/0xd50 kernel/workqueue.c:3400
kthread+0x7b7/0x940 kernel/kthread.c:464
ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:153
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
</TASK>