INFO: task syz-executor.1:31155 blocked for more than 430 seconds. Not tainted 5.12.0-rc2-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.1 state:D stack: 0 pid:31155 ppid: 4392 flags:0x00000001 Backtrace: [<82134aa0>] (__schedule) from [<821357c4>] (schedule+0x5c/0x108 kernel/sched/core.c:5154) r10:88ed3458 r9:88ed3400 r8:82136608 r7:8860ab14 r6:8860ab10 r5:84534000 r4:88ba6180 [<82135768>] (schedule) from [<8213b394>] (schedule_timeout+0xe0/0x12c kernel/time/timer.c:1868) r5:84534000 r4:7fffffff [<8213b2b4>] (schedule_timeout) from [<82136638>] (do_wait_for_common kernel/sched/completion.c:85 [inline]) [<8213b2b4>] (schedule_timeout) from [<82136638>] (__wait_for_common kernel/sched/completion.c:106 [inline]) [<8213b2b4>] (schedule_timeout) from [<82136638>] (wait_for_common kernel/sched/completion.c:117 [inline]) [<8213b2b4>] (schedule_timeout) from [<82136638>] (wait_for_completion+0xb4/0x124 kernel/sched/completion.c:138) r6:8860ab10 r5:84534000 r4:7fffffff [<82136584>] (wait_for_completion) from [<8055957c>] (io_sq_thread_finish+0x38/0x234 fs/io_uring.c:7127) r8:8860aac4 r7:84ffc100 r6:20000000 r5:8860a800 r4:88ed3400 [<80559544>] (io_sq_thread_finish) from [<80560b24>] (io_sq_offload_create fs/io_uring.c:7928 [inline]) [<80559544>] (io_sq_thread_finish) from [<80560b24>] (io_uring_create fs/io_uring.c:9401 [inline]) [<80559544>] (io_sq_thread_finish) from [<80560b24>] (io_uring_setup+0xba4/0xf4c fs/io_uring.c:9484) r9:88ed3400 r8:8860aac4 r7:84ffc100 r6:20000000 r5:fffffffc r4:8860a800 [<8055ff80>] (io_uring_setup) from [<80567ba8>] (__do_sys_io_uring_setup fs/io_uring.c:9490 [inline]) [<8055ff80>] (io_uring_setup) from [<80567ba8>] (sys_io_uring_setup+0x10/0x14 fs/io_uring.c:9487) r10:000001a9 r9:84534000 r8:80200224 r7:000001a9 r6:20ffb000 r5:20ffc000 r4:76f17070 [<80567b98>] (sys_io_uring_setup) from [<80200060>] (ret_fast_syscall+0x0/0x2c arch/arm/mm/proc-v7.S:64) Exception stack(0x84535fa8 to 0x84535ff0) 5fa0: 76f17070 20ffc000 00001c35 20000000 20ffc000 00000003 5fc0: 76f17070 20ffc000 20ffb000 000001a9 20000080 20ffb000 7ec67914 76f1720c 5fe0: 76f17010 76f17000 000120b8 0004b440 Showing all locks held in the system: 3 locks held by kworker/u4:4/115: 1 lock held by khungtaskd/1526: #0: 8390e91c (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x34/0x1dc kernel/locking/lockdep.c:6329 2 locks held by getty/4306: #0: 86ed9854 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x38/0x3c drivers/tty/tty_ldsem.c:340 #1: e45f7290 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x4a4/0x56c drivers/tty/n_tty.c:2178 2 locks held by kworker/u4:3/28784: ============================================= NMI backtrace for cpu 1 CPU: 1 PID: 1526 Comm: khungtaskd Not tainted 5.12.0-rc2-syzkaller #0 Hardware name: ARM-Versatile Express Backtrace: [<82107738>] (dump_backtrace) from [<821079ac>] (show_stack+0x18/0x1c arch/arm/kernel/traps.c:252) r7:00000000 r6:600c0013 r5:00000000 r4:83966184 [<82107994>] (show_stack) from [<82110980>] (__dump_stack lib/dump_stack.c:79 [inline]) [<82107994>] (show_stack) from [<82110980>] (dump_stack+0xb8/0xe8 lib/dump_stack.c:120) [<821108c8>] (dump_stack) from [<8091cd20>] (nmi_cpu_backtrace+0xfc/0x160 lib/nmi_backtrace.c:105) r7:00000000 r6:80210934 r5:00000000 r4:00000001 [<8091cc24>] (nmi_cpu_backtrace) from [<8091cec0>] (nmi_trigger_cpumask_backtrace+0x13c/0x224 lib/nmi_backtrace.c:62) r5:83823424 r4:00000001 [<8091cd84>] (nmi_trigger_cpumask_backtrace) from [<80211dec>] (arch_trigger_cpumask_backtrace+0x18/0x1c arch/arm/kernel/smp.c:857) r9:83822dd8 r8:83806d00 r7:00007f6d r6:83835150 r5:0008ca80 r4:83ac7699 [<80211dd4>] (arch_trigger_cpumask_backtrace) from [<80365d1c>] (trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline]) [<80211dd4>] (arch_trigger_cpumask_backtrace) from [<80365d1c>] (check_hung_uninterruptible_tasks kernel/hung_task.c:209 [inline]) [<80211dd4>] (arch_trigger_cpumask_backtrace) from [<80365d1c>] (watchdog+0x6d0/0x88c kernel/hung_task.c:294) [<8036564c>] (watchdog) from [<80271f40>] (kthread+0x184/0x1a4 kernel/kthread.c:292) r10:84505e2c r9:00000000 r8:8036564c r7:00000000 r6:84746000 r5:847880c0 r4:84594a80 [<80271dbc>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:158) Exception stack(0x84747fb0 to 0x84747ff8) 7fa0: 00000000 00000000 00000000 00000000 7fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 7fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r10:00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:80271dbc r4:847880c0 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 115 Comm: kworker/u4:4 Not tainted 5.12.0-rc2-syzkaller #0 Hardware name: ARM-Versatile Express Workqueue: bat_events batadv_nc_worker PC is at current_thread_info arch/arm/include/asm/thread_info.h:94 [inline] PC is at preempt_count include/asm-generic/preempt.h:11 [inline] PC is at should_resched include/asm-generic/preempt.h:77 [inline] PC is at __local_bh_enable_ip+0xf8/0x244 kernel/softirq.c:205 LR is at __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:70 pc : [<8024df00>] lr : [<82133164>] psr: 20000113 sp : 846efe08 ip : 846efdb0 fp : 846efe24 r10: 00000088 r9 : 88c2cbf4 r8 : 88b5cc00 r7 : 00000000 r6 : ffffe000 r5 : 8207c320 r4 : 00000001 r3 : 02f9b7eb r2 : 00000001 r1 : 82aed41c r0 : 00000000 Flags: nzCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment user Control: 30c5387d Table: 887a9c40 DAC: fffffffd CPU: 0 PID: 115 Comm: kworker/u4:4 Not tainted 5.12.0-rc2-syzkaller #0 Hardware name: ARM-Versatile Express Workqueue: bat_events batadv_nc_worker Backtrace: [<82107738>] (dump_backtrace) from [<821079ac>] (show_stack+0x18/0x1c arch/arm/kernel/traps.c:252) r7:00000080 r6:60000193 r5:00000000 r4:83966184 [<82107994>] (show_stack) from [<82110980>] (__dump_stack lib/dump_stack.c:79 [inline]) [<82107994>] (show_stack) from [<82110980>] (dump_stack+0xb8/0xe8 lib/dump_stack.c:120) [<821108c8>] (dump_stack) from [<802096bc>] (show_regs+0x14/0x18 arch/arm/kernel/process.c:191) r7:8440cd80 r6:00000000 r5:846efdb8 r4:00000000 [<802096a8>] (show_regs) from [<8091cd08>] (nmi_cpu_backtrace+0xe4/0x160 lib/nmi_backtrace.c:103) [<8091cc24>] (nmi_cpu_backtrace) from [<80210e34>] (do_handle_IPI+0x4c/0x440 arch/arm/kernel/smp.c:672) r5:00000017 r4:00000007 [<80210de8>] (do_handle_IPI) from [<80211248>] (ipi_handler+0x20/0x28 arch/arm/kernel/smp.c:700) r9:846efdb8 r8:846efd20 r7:8440cd80 r6:8382343c r5:00000017 r4:844a4600 [<80211228>] (ipi_handler) from [<802dfc04>] (handle_percpu_devid_irq+0xa4/0x19c kernel/irq/chip.c:930) [<802dfb60>] (handle_percpu_devid_irq) from [<802d8a30>] (generic_handle_irq_desc include/linux/irqdesc.h:158 [inline]) [<802dfb60>] (handle_percpu_devid_irq) from [<802d8a30>] (generic_handle_irq kernel/irq/irqdesc.c:652 [inline]) [<802dfb60>] (handle_percpu_devid_irq) from [<802d8a30>] (__handle_domain_irq+0xb0/0x120 kernel/irq/irqdesc.c:689) r10:846efd50 r9:846efdb8 r8:00000001 r7:00000000 r6:836c6498 r5:00000000 r4:836c6498 r3:00010000 [<802d8980>] (__handle_domain_irq) from [<80931750>] (handle_domain_irq include/linux/irqdesc.h:176 [inline]) [<802d8980>] (__handle_domain_irq) from [<80931750>] (gic_handle_irq+0x84/0xac drivers/irqchip/irq-gic.c:370) r10:00000088 r9:40000193 r8:e000200c r7:836c64bc r6:e0002000 r5:846efdb8 r4:8382343c [<809316cc>] (gic_handle_irq) from [<80200abc>] (__irq_svc+0x5c/0x94 arch/arm/kernel/entry-armv.S:205) Exception stack(0x846efdb8 to 0x846efe00) fda0: 00000000 82aed41c fdc0: 00000001 02f9b7eb 00000001 8207c320 ffffe000 00000000 88b5cc00 88c2cbf4 fde0: 00000088 846efe24 846efdb0 846efe08 82133164 8024df00 20000113 ffffffff r9:846ee000 r8:88b5cc00 r7:846efdec r6:ffffffff r5:20000113 r4:8024df00 [<8024de08>] (__local_bh_enable_ip) from [<8213c144>] (__raw_spin_unlock_bh include/linux/spinlock_api_smp.h:176 [inline]) [<8024de08>] (__local_bh_enable_ip) from [<8213c144>] (_raw_spin_unlock_bh+0x34/0x38 kernel/locking/spinlock.c:207) r7:00000000 r6:00000056 r5:88c2cbf4 r4:8207c320 [<8213c110>] (_raw_spin_unlock_bh) from [<8207c320>] (spin_unlock_bh include/linux/spinlock.h:399 [inline]) [<8213c110>] (_raw_spin_unlock_bh) from [<8207c320>] (batadv_nc_purge_paths+0x10c/0x148 net/batman-adv/network-coding.c:467) r5:88bac740 r4:8207c43c [<8207c214>] (batadv_nc_purge_paths) from [<8207ca94>] (batadv_nc_worker+0x318/0x470 net/batman-adv/network-coding.c:718) r10:00000088 r9:83822c98 r8:88bacd28 r7:86ce1a00 r6:83806d00 r5:88bae000 r4:88bac740 [<8207c77c>] (batadv_nc_worker) from [<802696a4>] (process_one_work+0x2d4/0x998 kernel/workqueue.c:2275) r10:00000088 r9:83822c98 r8:83ac7572 r7:86ce1a00 r6:84420000 r5:84687180 r4:88bacd28 [<802693d0>] (process_one_work) from [<80269dcc>] (worker_thread+0x64/0x54c kernel/workqueue.c:2421) r10:00000088 r9:846ee000 r8:83806d00 r7:84420038 r6:84687194 r5:84420000 r4:84687180 [<80269d68>] (worker_thread) from [<80271f40>] (kthread+0x184/0x1a4 kernel/kthread.c:292) r10:8464be64 r9:84687180 r8:80269d68 r7:00000000 r6:846ee000 r5:845e5dc0 r4:84687700 [<80271dbc>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:158) Exception stack(0x846effb0 to 0x846efff8) ffa0: 00000000 00000000 00000000 00000000 ffc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 ffe0: 00000000 00000000 00000000 00000000 00000013 00000000 r10:00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:80271dbc r4:845e5dc0