INFO: task kworker/0:21:7077 blocked for more than 143 seconds. Not tainted 5.15.179-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:21 state:D stack: 0 pid: 7077 ppid: 2 flags:0x00000008 Workqueue: usb_hub_wq hub_event Call trace: __switch_to+0x308/0x588 arch/arm64/kernel/process.c:518 context_switch kernel/sched/core.c:5029 [inline] __schedule+0xf10/0x1e48 kernel/sched/core.c:6375 schedule+0x11c/0x1c8 kernel/sched/core.c:6458 usb_kill_urb+0x1c0/0x358 drivers/usb/core/urb.c:726 usb_start_wait_urb+0x16c/0x414 drivers/usb/core/message.c:64 usb_internal_control_msg drivers/usb/core/message.c:102 [inline] usb_control_msg+0x228/0x3f8 drivers/usb/core/message.c:153 get_bMaxPacketSize0 drivers/usb/core/hub.c:4750 [inline] hub_port_init+0x96c/0x21cc drivers/usb/core/hub.c:4947 hub_port_connect drivers/usb/core/hub.c:5396 [inline] hub_port_connect_change drivers/usb/core/hub.c:5607 [inline] port_event drivers/usb/core/hub.c:5753 [inline] hub_event+0x203c/0x46b8 drivers/usb/core/hub.c:5835 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310 worker_thread+0x910/0x1034 kernel/workqueue.c:2457 kthread+0x37c/0x45c kernel/kthread.c:334 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870 Showing all locks held in the system: 1 lock held by khungtaskd/27: #0: ffff800014d41b60 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0xc/0x44 include/linux/rcupdate.h:311 2 locks held by kworker/u4:1/136: #0: ffff0000c0029138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283 #1: ffff80001d2e7c00 ((reaper_work).work){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285 2 locks held by kworker/u4:4/1598: 2 locks held by kworker/u4:6/1858: #0: ffff0000c0029138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283 #1: ffff0001b4173c48 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x438/0x66c kernel/sched/psi.c:891 1 lock held by udevd/3643: #0: ffff0000c8d06d18 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x12c/0x89c block/bdev.c:820 2 locks held by getty/3784: #0: ffff0000d24c7098 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x40/0x50 drivers/tty/tty_ldsem.c:340 #1: ffff80001d6ce2e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x414/0x1204 drivers/tty/n_tty.c:2158 1 lock held by udevd/4046: #0: ffff0000c8d06d18 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x12c/0x89c block/bdev.c:820 2 locks held by kworker/0:13/4499: #0: ffff0000c0020938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283 #1: ffff8000208b7c00 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285 5 locks held by kworker/0:21/7077: #0: ffff0000c2882938 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283 #1: ffff800021577c00 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285 #2: ffff0000cf2f5220 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:760 [inline] #2: ffff0000cf2f5220 (&dev->mutex){....}-{3:3}, at: hub_event+0x1b8/0x46b8 drivers/usb/core/hub.c:5781 #3: ffff0000cf3515d8 (&port_dev->status_lock){+.+.}-{3:3}, at: usb_lock_port drivers/usb/core/hub.c:3138 [inline] #3: ffff0000cf3515d8 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect drivers/usb/core/hub.c:5363 [inline] #3: ffff0000cf3515d8 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_port_connect_change drivers/usb/core/hub.c:5607 [inline] #3: ffff0000cf3515d8 (&port_dev->status_lock){+.+.}-{3:3}, at: port_event drivers/usb/core/hub.c:5753 [inline] #3: ffff0000cf3515d8 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x1ad0/0x46b8 drivers/usb/core/hub.c:5835 #4: ffff0000cf045268 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_port_connect drivers/usb/core/hub.c:5364 [inline] #4: ffff0000cf045268 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_port_connect_change drivers/usb/core/hub.c:5607 [inline] #4: ffff0000cf045268 (hcd->address0_mutex){+.+.}-{3:3}, at: port_event drivers/usb/core/hub.c:5753 [inline] #4: ffff0000cf045268 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_event+0x1af4/0x46b8 drivers/usb/core/hub.c:5835 1 lock held by syz.1.1414/9824: 1 lock held by syz.3.1426/9839: 1 lock held by syz.5.1425/9838: 1 lock held by syz.0.1427/9837: #0: ffff0000d9e51dd8 (&mm->mmap_lock){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #0: ffff0000d9e51dd8 (&mm->mmap_lock){++++}-{3:3}, at: vm_mmap_pgoff+0x15c/0x2b4 mm/util.c:549 2 locks held by syz.0.1427/9840: 2 locks held by syz.4.1428/9846: #0: ffff0000c8d06d18 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_put+0xe0/0x6b0 block/bdev.c:915 #1: ffff0000cbf8f468 (&lo->lo_mutex){+.+.}-{3:3}, at: lo_release+0x58/0x210 drivers/block/loop.c:2070 =============================================