INFO: task syz-executor.3:30575 blocked for more than 143 seconds. Not tainted 5.7.0-rc5-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.3 D28384 30575 7354 0x00004004 Call Trace: context_switch kernel/sched/core.c:3367 [inline] __schedule+0x937/0x1ff0 kernel/sched/core.c:4083 __sched_text_start+0x8/0x8 mark_held_locks+0xe0/0xe0 kernel/locking/lockdep.c:3620 mark_held_locks+0xe0/0xe0 kernel/locking/lockdep.c:3620 lock_downgrade+0x840/0x840 kernel/locking/lockdep.c:4579 schedule+0xd0/0x2a0 kernel/sched/core.c:4158 schedule_timeout+0x55b/0x850 kernel/time/timer.c:1874 __wait_for_common kernel/sched/completion.c:105 [inline] wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion+0x8d/0x270 kernel/sched/completion.c:138 usleep_range+0x160/0x160 kernel/time/timer.c:2093 lock_downgrade+0x840/0x840 kernel/locking/lockdep.c:4579 atomic_try_cmpxchg include/asm-generic/atomic-instrumented.h:694 [inline] queued_spin_lock include/asm-generic/qspinlock.h:78 [inline] do_raw_spin_lock+0x129/0x2e0 kernel/locking/spinlock_debug.c:113 rwlock_bug.part.0+0x90/0x90 include/linux/sched.h:1329 rwlock_bug.part.0+0x90/0x90 include/linux/sched.h:1329 trace_hardirqs_on+0x55/0x220 kernel/trace/trace_preemptirq.c:31 do_wait_for_common kernel/sched/completion.c:85 [inline] __wait_for_common kernel/sched/completion.c:106 [inline] wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion+0x16a/0x270 kernel/sched/completion.c:138 rcu_preempt_deferred_qs_irqrestore+0x672/0xb60 kernel/rcu/tree_plugin.h:528 wait_for_completion_interruptible+0x2e0/0x2e0 kernel/sched/completion.c:89 rcu_read_unlock_special kernel/rcu/tree_plugin.h:647 [inline] __rcu_read_unlock+0x26c/0x700 kernel/rcu/tree_plugin.h:400 __flush_work+0x4fd/0xa80 kernel/workqueue.c:3045 queue_delayed_work_on+0x210/0x210 arch/x86/include/asm/paravirt.h:759 __write_once_size include/linux/compiler.h:226 [inline] INIT_LIST_HEAD include/linux/list.h:35 [inline] init_pwq+0x350/0x350 kernel/workqueue.c:3747 lock_downgrade+0x840/0x840 kernel/locking/lockdep.c:4579 trace_hardirqs_off+0x50/0x220 kernel/trace/trace_preemptirq.c:45 try_to_grab_pending+0xee/0x8e0 kernel/workqueue.c:1248 __cancel_work_timer+0x3a2/0x500 kernel/workqueue.c:3132 mod_delayed_work_on+0x1f0/0x1f0 arch/x86/include/asm/paravirt.h:759 lock_acquire+0x1f2/0x8f0 kernel/locking/lockdep.c:4934 inode_lock include/linux/fs.h:797 [inline] __sock_release+0x86/0x280 net/socket.c:604 pgd_free+0x220/0x220 include/linux/list.h:135 lock_release+0x800/0x800 kernel/locking/lockdep.c:4689 fault_around_bytes_set+0x90/0x90 mm/memory.c:3732 __sock_release+0x280/0x280 net/socket.c:605 tls_sk_proto_close+0x4a9/0xaf0 net/tls/tls_main.c:305 wait_on_pending_writer+0x3f0/0x3f0 net/tls/tls_main.c:89 ip_mc_drop_socket+0x16/0x260 net/ipv4/igmp.c:2676 __sock_release+0x280/0x280 net/socket.c:605 inet_release+0xe4/0x1f0 net/ipv4/af_inet.c:427 inet6_release+0x4c/0x70 net/ipv6/af_inet6.c:471 __sock_release+0xcd/0x280 net/socket.c:605 sock_close+0x18/0x20 net/socket.c:1283 __fput+0x33e/0x880 fs/file_table.c:280 task_work_run+0xf4/0x1b0 kernel/task_work.c:123 tracehook_notify_resume include/linux/tracehook.h:188 [inline] exit_to_usermode_loop+0x2fa/0x360 arch/x86/entry/common.c:165 prepare_exit_to_usermode arch/x86/entry/common.c:196 [inline] syscall_return_slowpath arch/x86/entry/common.c:279 [inline] do_syscall_64+0x6b1/0x7d0 arch/x86/entry/common.c:305 entry_SYSCALL_64_after_hwframe+0x49/0xb3 INFO: task syz-executor.4:30594 blocked for more than 143 seconds. Not tainted 5.7.0-rc5-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.4 D28384 30594 7408 0x00000004 Call Trace: context_switch kernel/sched/core.c:3367 [inline] __schedule+0x937/0x1ff0 kernel/sched/core.c:4083 paravirt_sched_clock arch/x86/include/asm/paravirt.h:22 [inline] sched_clock+0x2a/0x40 arch/x86/kernel/tsc.c:245 __sched_text_start+0x8/0x8 mark_held_locks+0xe0/0xe0 kernel/locking/lockdep.c:3620 update_cfs_rq_load_avg kernel/sched/fair.c:3680 [inline] update_load_avg+0x1bb/0x1b50 kernel/sched/fair.c:3784 __cpu_to_node+0x7b/0xa0 arch/x86/mm/numa.c:809 schedule+0xd0/0x2a0 kernel/sched/core.c:4158 schedule_timeout+0x55b/0x850 kernel/time/timer.c:1874 __wait_for_common kernel/sched/completion.c:105 [inline] wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion+0x8d/0x270 kernel/sched/completion.c:138 usleep_range+0x160/0x160 kernel/time/timer.c:2093 lock_pin_lock+0x3b0/0x3b0 arch/x86/include/asm/paravirt.h:754 lock_downgrade+0x840/0x840 kernel/locking/lockdep.c:4579 atomic_try_cmpxchg include/asm-generic/atomic-instrumented.h:694 [inline] queued_spin_lock include/asm-generic/qspinlock.h:78 [inline] do_raw_spin_lock+0x129/0x2e0 kernel/locking/spinlock_debug.c:113 rwlock_bug.part.0+0x90/0x90 include/linux/sched.h:1329 trace_hardirqs_on+0x55/0x220 kernel/trace/trace_preemptirq.c:31 do_wait_for_common kernel/sched/completion.c:85 [inline] __wait_for_common kernel/sched/completion.c:106 [inline] wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion+0x16a/0x270 kernel/sched/completion.c:138 wait_for_completion_interruptible+0x2e0/0x2e0 kernel/sched/completion.c:89 trace_hardirqs_on+0x55/0x220 kernel/trace/trace_preemptirq.c:31 __flush_work+0x4fd/0xa80 kernel/workqueue.c:3045 queue_delayed_work_on+0x210/0x210 arch/x86/include/asm/paravirt.h:759 __write_once_size include/linux/compiler.h:226 [inline] INIT_LIST_HEAD include/linux/list.h:35 [inline] init_pwq+0x350/0x350 kernel/workqueue.c:3747 lock_downgrade+0x840/0x840 kernel/locking/lockdep.c:4579 trace_hardirqs_off+0x50/0x220 kernel/trace/trace_preemptirq.c:45 try_to_grab_pending+0xee/0x8e0 kernel/workqueue.c:1248 __cancel_work_timer+0x3a2/0x500 kernel/workqueue.c:3132 mod_delayed_work_on+0x1f0/0x1f0 arch/x86/include/asm/paravirt.h:759 lock_acquire+0x1f2/0x8f0 kernel/locking/lockdep.c:4934 inode_lock include/linux/fs.h:797 [inline] __sock_release+0x86/0x280 net/socket.c:604 pgd_free+0x220/0x220 include/linux/list.h:135 lock_release+0x800/0x800 kernel/locking/lockdep.c:4689 fault_around_bytes_set+0x90/0x90 mm/memory.c:3732 __sock_release+0x280/0x280 net/socket.c:605 tls_sk_proto_close+0x4a9/0xaf0 net/tls/tls_main.c:305 wait_on_pending_writer+0x3f0/0x3f0 net/tls/tls_main.c:89 ip_mc_drop_socket+0x16/0x260 net/ipv4/igmp.c:2676 __sock_release+0x280/0x280 net/socket.c:605 inet_release+0xe4/0x1f0 net/ipv4/af_inet.c:427 inet6_release+0x4c/0x70 net/ipv6/af_inet6.c:471 __sock_release+0xcd/0x280 net/socket.c:605 sock_close+0x18/0x20 net/socket.c:1283 __fput+0x33e/0x880 fs/file_table.c:280 task_work_run+0xf4/0x1b0 kernel/task_work.c:123 tracehook_notify_resume include/linux/tracehook.h:188 [inline] exit_to_usermode_loop+0x2fa/0x360 arch/x86/entry/common.c:165 prepare_exit_to_usermode arch/x86/entry/common.c:196 [inline] syscall_return_slowpath arch/x86/entry/common.c:279 [inline] do_syscall_64+0x6b1/0x7d0 arch/x86/entry/common.c:305 entry_SYSCALL_64_after_hwframe+0x49/0xb3 INFO: lockdep is turned off. NMI backtrace for cpu 1 CPU: 1 PID: 1143 Comm: khungtaskd Not tainted 5.7.0-rc5-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x188/0x20d lib/dump_stack.c:118 nmi_cpu_backtrace.cold+0x70/0xb1 lib/nmi_backtrace.c:101 lapic_can_unplug_cpu.cold+0x3b/0x3b nmi_trigger_cpumask_backtrace+0x231/0x27e lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:205 [inline] watchdog+0xa8c/0x1010 kernel/hung_task.c:289 reset_hung_task_detector+0x30/0x30 kernel/hung_task.c:243 kthread+0x388/0x470 kernel/kthread.c:268 kthread_mod_delayed_work+0x1a0/0x1a0 kernel/kthread.c:1090 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:351 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 7827 Comm: kworker/u4:2 Not tainted 5.7.0-rc5-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: krdsd rds_connect_worker RIP: 0010:inet_csk_find_open_port net/ipv4/inet_connection_sock.c:231 [inline] RIP: 0010:inet_csk_get_port+0xc96/0x2520 net/ipv4/inet_connection_sock.c:317 Code: d0 4e dc fa 49 83 ee 30 0f 84 0d 01 00 00 e8 c1 4e dc fa 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 0f 85 38 14 00 00 4d 39 26 75 ad a5 4e dc fa 49 8d 7e 08 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 RSP: 0018:ffffc90008c6f9c0 EFLAGS: 00000246 RAX: 1ffff11013f8cd40 RBX: 000000000000edbb RCX: ffffffff815a87d9 RDX: 0000000000000000 RSI: ffffffff8696e72f RDI: ffffc90005708290 RBP: ffffc90008c6fb20 R08: 0000000000000004 R09: fffff5200118df2b R10: 0000000000000003 R11: fffff5200118df2a R12: ffff888065174140 R13: dffffc0000000000 R14: ffff88809fc66a00 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00005575aeeed0a8 CR3: 00000000a01ef000 CR4: 00000000001406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: inet_csk_listen_stop+0xb20/0xb20 net/ipv4/inet_connection_sock.c:1046 lock_downgrade+0x840/0x840 kernel/locking/lockdep.c:4579 __inet6_bind+0x5d5/0x19c0 net/ipv6/af_inet6.c:404 inet6_bind+0xf3/0x15c net/ipv6/af_inet6.c:454 rds_tcp_conn_path_connect+0x39a/0x880 net/rds/tcp_connect.c:144 rds_tcp_state_change+0x270/0x270 net/rds/tcp_connect.c:70 lock_release+0x800/0x800 kernel/locking/lockdep.c:4689 rds_connect_worker+0x1a5/0x2c0 net/rds/threads.c:176 process_one_work+0x965/0x16a0 kernel/workqueue.c:2268 lock_release+0x800/0x800 kernel/locking/lockdep.c:4689 pwq_dec_nr_in_flight+0x310/0x310 kernel/workqueue.c:1198 rwlock_bug.part.0+0x90/0x90 include/linux/sched.h:1329 worker_thread+0x96/0xe20 kernel/workqueue.c:2414 process_one_work+0x16a0/0x16a0 kernel/workqueue.c:2273 kthread+0x388/0x470 kernel/kthread.c:268 kthread_mod_delayed_work+0x1a0/0x1a0 kernel/kthread.c:1090 kthread_mod_delayed_work+0x1a0/0x1a0 kernel/kthread.c:1090 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:351