INFO: task syz-executor.1:20526 blocked for more than 143 seconds. Not tainted 5.7.0-rc5-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.1 D28120 20526 7150 0x00000004 Call Trace: context_switch kernel/sched/core.c:3366 [inline] __schedule+0x937/0x1ff0 kernel/sched/core.c:4082 __sched_text_start+0x8/0x8 schedule+0xd0/0x2a0 kernel/sched/core.c:4157 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4216 __mutex_lock_common kernel/locking/mutex.c:1033 [inline] __mutex_lock+0x7ab/0x13c0 kernel/locking/mutex.c:1103 __pipe_lock fs/pipe.c:86 [inline] pipe_release+0x49/0x260 fs/pipe.c:719 mutex_trylock+0x2c0/0x2c0 kernel/locking/mutex.c:126 __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x62/0xe0 kernel/locking/spinlock.c:191 __trace_hardirqs_on_caller kernel/locking/lockdep.c:3657 [inline] lockdep_hardirqs_on+0x463/0x620 kernel/locking/lockdep.c:3702 fsnotify+0x7df/0xb50 include/linux/srcu.h:181 fsnotify_parent+0xbf/0x2d0 fs/notify/fsnotify.c:153 spin_unlock include/linux/spinlock.h:393 [inline] locks_remove_file+0x329/0x590 fs/locks.c:2794 task_work_run+0xd3/0x1b0 kernel/task_work.c:119 fcntl_setlk+0xcc0/0xcc0 fs/locks.c:2542 put_pipe_info+0xe0/0xe0 fs/pipe.c:705 __pipe_lock fs/pipe.c:86 [inline] pipe_release+0x49/0x260 fs/pipe.c:719 __pipe_lock fs/pipe.c:86 [inline] pipe_release+0x49/0x260 fs/pipe.c:719 __fput+0x33e/0x880 fs/file_table.c:280 task_work_run+0xf4/0x1b0 kernel/task_work.c:123 tracehook_notify_resume include/linux/tracehook.h:188 [inline] exit_to_usermode_loop+0x2fa/0x360 arch/x86/entry/common.c:165 prepare_exit_to_usermode arch/x86/entry/common.c:196 [inline] syscall_return_slowpath arch/x86/entry/common.c:279 [inline] do_syscall_64+0x6b1/0x7d0 arch/x86/entry/common.c:305 entry_SYSCALL_64_after_hwframe+0x49/0xb3 INFO: task syz-executor.1:20531 blocked for more than 143 seconds. Not tainted 5.7.0-rc5-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.1 D27928 20531 7150 0x00004004 Call Trace: context_switch kernel/sched/core.c:3366 [inline] __schedule+0x937/0x1ff0 kernel/sched/core.c:4082 __sched_text_start+0x8/0x8 mark_held_locks+0xe0/0xe0 kernel/locking/lockdep.c:3620 find_held_lock+0x2d/0x110 kernel/locking/lockdep.c:4458 schedule+0xd0/0x2a0 kernel/sched/core.c:4157 schedule_timeout+0x55b/0x850 kernel/time/timer.c:1873 test_bit include/asm-generic/bitops/instrumented-non-atomic.h:110 [inline] hlock_class kernel/locking/lockdep.c:179 [inline] mark_lock+0x12b/0xf10 kernel/locking/lockdep.c:3912 find_held_lock+0x2d/0x110 kernel/locking/lockdep.c:4458 usleep_range+0x160/0x160 kernel/time/timer.c:2092 do_wait_for_common kernel/sched/completion.c:84 [inline] __wait_for_common kernel/sched/completion.c:106 [inline] wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion+0x162/0x270 kernel/sched/completion.c:138 print_usage_bug+0x240/0x240 kernel/locking/lockdep.c:101 rcu_read_unlock_bh include/linux/rcupdate.h:686 [inline] padata_do_parallel+0x6ce/0x920 kernel/padata.c:159 lock_downgrade+0x840/0x840 kernel/locking/lockdep.c:4579 mark_held_locks+0x9f/0xe0 kernel/locking/lockdep.c:3628 __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x1f/0x80 kernel/locking/spinlock.c:199 do_wait_for_common kernel/sched/completion.c:85 [inline] __wait_for_common kernel/sched/completion.c:106 [inline] wait_for_common kernel/sched/completion.c:117 [inline] wait_for_completion+0x16a/0x270 kernel/sched/completion.c:138 wait_for_completion_interruptible+0x2e0/0x2e0 kernel/sched/completion.c:89 pcrypt_aead_encrypt+0x3b5/0x4d0 crypto/pcrypt.c:116 crypto_wait_req include/linux/crypto.h:562 [inline] _aead_recvmsg crypto/algif_aead.c:309 [inline] aead_recvmsg+0x10b1/0x1600 crypto/algif_aead.c:330 aead_bind+0x170/0x170 crypto/algif_aead.c:496 security_socket_recvmsg+0x8e/0xc0 security/security.c:2070 aead_bind+0x170/0x170 crypto/algif_aead.c:496 sock_recvmsg_nosec net/socket.c:886 [inline] sock_recvmsg net/socket.c:904 [inline] sock_recvmsg+0xca/0x110 net/socket.c:900 sock_read_iter+0x2c3/0x3d0 net/socket.c:977 sock_recvmsg+0x110/0x110 include/linux/socket.h:159 aa_path_link+0x300/0x300 security/apparmor/file.c:493 call_read_iter include/linux/fs.h:1901 [inline] generic_file_splice_read+0x479/0x780 fs/splice.c:313 add_to_pipe+0x3a0/0x3a0 fs/splice.c:245 security_file_permission+0x8c/0x470 security/security.c:1426 sock_splice_read+0xe9/0x120 net/socket.c:955 rw_verify_area+0x11d/0x350 fs/read_write.c:400 kernel_sock_shutdown+0x70/0x70 net/socket.c:3839 do_splice_to+0x114/0x160 fs/splice.c:892 do_splice+0x1234/0x1520 fs/splice.c:1200 ksys_dup3+0x3c0/0x3c0 include/linux/compiler.h:199 default_file_splice_write+0x90/0x90 fs/splice.c:823 __do_sys_splice fs/splice.c:1440 [inline] __se_sys_splice fs/splice.c:1422 [inline] __x64_sys_splice+0x198/0x250 fs/splice.c:1422 do_syscall_64+0xf6/0x7d0 arch/x86/entry/common.c:295 entry_SYSCALL_64_after_hwframe+0x49/0xb3 Showing all locks held in the system: 1 lock held by khungtaskd/1135: #0: ffffffff899bea40 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 kernel/locking/lockdep.c:5754 1 lock held by in:imklog/6711: #0: ffff88809c369130 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 fs/file.c:826 1 lock held by syz-executor.1/20526: #0: ffff888096794868 (&pipe->mutex/1){+.+.}-{3:3}, at: __pipe_lock fs/pipe.c:86 [inline] #0: ffff888096794868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_release+0x49/0x260 fs/pipe.c:719 2 locks held by syz-executor.1/20531: #0: ffff888096794868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_lock_nested fs/pipe.c:65 [inline] #0: ffff888096794868 (&pipe->mutex/1){+.+.}-{3:3}, at: pipe_lock+0x5a/0x70 fs/pipe.c:73 #1: ffff8880a9735120 (sk_lock-AF_ALG){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1574 [inline] #1: ffff8880a9735120 (sk_lock-AF_ALG){+.+.}-{0:0}, at: af_alg_wait_for_data+0x21d/0x540 crypto/af_alg.c:761 ============================================= NMI backtrace for cpu 0 CPU: 0 PID: 1135 Comm: khungtaskd Not tainted 5.7.0-rc5-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x188/0x20d lib/dump_stack.c:118 nmi_cpu_backtrace.cold+0x70/0xb1 lib/nmi_backtrace.c:101 lapic_can_unplug_cpu.cold+0x3b/0x3b nmi_trigger_cpumask_backtrace+0x231/0x27e lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:205 [inline] watchdog+0xa8c/0x1010 kernel/hung_task.c:289 reset_hung_task_detector+0x30/0x30 kernel/hung_task.c:243 kthread+0x388/0x470 kernel/kthread.c:268 kthread_mod_delayed_work+0x1a0/0x1a0 kernel/kthread.c:1090 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:351 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 skipped: idling at native_safe_halt+0xe/0x10 arch/x86/include/asm/irqflags.h:60