hid-generic 0000:0000:0000.5A0B: unknown main item tag 0x0 hid-generic 0000:0000:0000.5A0B: unknown main item tag 0x0 hid-generic 0000:0000:0000.5A0B: unknown main item tag 0x0 hid-generic 0000:0000:0000.5A0B: unknown main item tag 0x0 hid-generic 0000:0000:0000.5A0B: hidraw0: HID v0.00 Device [syz1] on syz1 INFO: task syz-executor623:2155 blocked for more than 140 seconds. Not tainted 4.9.135+ #19 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor623 D29064 2155 2153 0x20020004 ffff8801ca9c17c0 0000000000000000 ffff8801cc30dd80 ffff8801d6644740 ffff8801db621018 ffff8801ca9378c0 ffffffff82806912 ffffffff8364ba40 ffffffff83c966f0 0000000000000000 00000000000007c1 ffff8801db6218f0 Call Trace: [] schedule+0x7f/0x1b0 kernel/sched/core.c:3553 [] schedule_timeout+0x735/0xe20 kernel/time/timer.c:1771 [] do_wait_for_common kernel/sched/completion.c:75 [inline] [] __wait_for_common kernel/sched/completion.c:93 [inline] [] wait_for_common+0x3ef/0x5d0 kernel/sched/completion.c:101 [] wait_for_completion+0x18/0x20 kernel/sched/completion.c:122 [] flush_work+0x3a4/0x6c0 kernel/workqueue.c:2846 [] __cancel_work_timer+0x17e/0x440 kernel/workqueue.c:2912 [] cancel_work_sync+0x17/0x20 kernel/workqueue.c:2947 [] uhid_dev_destroy+0x70/0xf0 drivers/hid/uhid.c:578 [] uhid_char_release+0x51/0xb0 drivers/hid/uhid.c:655 [] __fput+0x263/0x700 fs/file_table.c:208 [] ____fput+0x15/0x20 fs/file_table.c:244 [] task_work_run+0x10c/0x180 kernel/task_work.c:116 [] tracehook_notify_resume include/linux/tracehook.h:191 [inline] [] exit_to_usermode_loop+0x129/0x150 arch/x86/entry/common.c:162 [] prepare_exit_to_usermode arch/x86/entry/common.c:194 [inline] [] syscall_return_slowpath arch/x86/entry/common.c:263 [inline] [] do_syscall_32_irqs_on arch/x86/entry/common.c:334 [inline] [] do_fast_syscall_32+0x6dc/0xa10 arch/x86/entry/common.c:390 [] entry_SYSENTER_compat+0x90/0xa2 arch/x86/entry/entry_64_compat.S:137 Showing all locks held in the system: 2 locks held by khungtaskd/24: #0: (rcu_read_lock){......}, at: [] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline] #0: (rcu_read_lock){......}, at: [] watchdog+0x11c/0xa20 kernel/hung_task.c:239 #1: (tasklist_lock){.+.+..}, at: [] debug_show_all_locks+0x79/0x218 kernel/locking/lockdep.c:4336 1 lock held by rsyslogd/1893: #0: (&f->f_pos_lock){+.+.+.}, at: [] __fdget_pos+0xac/0xd0 fs/file.c:781 2 locks held by getty/2020: #0: (&tty->ldisc_sem){++++++}, at: [] ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:367 #1: (&ldata->atomic_read_lock){+.+.+.}, at: [] n_tty_read+0x202/0x16e0 drivers/tty/n_tty.c:2142 1 lock held by init/5624: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/5625: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/5626: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/5627: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/5628: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/6006: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 ============================================= NMI backtrace for cpu 1 CPU: 1 PID: 24 Comm: khungtaskd Not tainted 4.9.135+ #19 ffff8801d9907d08 ffffffff81b42b89 0000000000000000 0000000000000001 0000000000000001 0000000000000001 ffffffff81098330 ffff8801d9907d40 ffffffff81b4dc99 0000000000000001 0000000000000000 0000000000000003 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] nmi_cpu_backtrace.cold.0+0x48/0x87 lib/nmi_backtrace.c:99 [] nmi_trigger_cpumask_backtrace+0x12c/0x151 lib/nmi_backtrace.c:60 [] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37 [] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline] [] check_hung_task kernel/hung_task.c:125 [inline] [] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline] [] watchdog+0x6ad/0xa20 kernel/hung_task.c:239 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 351 Comm: kworker/0:2 Not tainted 4.9.135+ #19 Workqueue: events uhid_device_add_workerc task: ffff8801d6644740 task.stack: ffff8801d53a8000 RIP: 0010:[] c [] delay_tsc+0x66/0xc0 arch/x86/lib/delay.c:65 RSP: 0018:ffff8801d53aef90 EFLAGS: 00000097 RAX: 0000000000000021 RBX: 00000219b98b8854 RCX: 000000000000431c RDX: 0000021900000000 RSI: ffffffff81ba7a0b RDI: 0000000000000001 RBP: ffff8801d53aefb0 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000000 R12: 00000219b98b8833 R13: 00000000000008fd R14: 0000000000000000 R15: fffffbfff096bb6d FS: 0000000000000000(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000000080d6ba0 CR3: 00000001d1a42000 CR4: 00000000001606b0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Stack: ffffffff84b5db20c 0000000000002709c 0000000000000020c fffffbfff096bbabc ffff8801d53aefc0c ffffffff81b703f0c ffff8801d53aefd0c ffffffff81b7042ac ffff8801d53af020c ffffffff81d6456fc ffffffff81b6ca78c ffffffff84b5db68c Call Trace: [] __delay+0x10/0x20 arch/x86/lib/delay.c:160 [] __const_udelay+0x2a/0x30 arch/x86/lib/delay.c:174 [] wait_for_xmitr+0x6f/0x1e0 drivers/tty/serial/8250/8250_port.c:2005 [] serial8250_console_putchar+0x1f/0x60 drivers/tty/serial/8250/8250_port.c:3103 [] uart_console_write+0x59/0xf0 drivers/tty/serial/serial_core.c:1866 [] serial8250_console_write+0x528/0x820 drivers/tty/serial/8250/8250_port.c:3169 [] univ8250_console_write+0x5f/0x70 drivers/tty/serial/8250/8250_core.c:594 [] call_console_drivers.isra.0.constprop.15+0x1ad/0x360 kernel/printk/printk.c:1589 [] console_unlock+0x47f/0xb50 kernel/printk/printk.c:2449 [] vprintk_emit+0x448/0x790 kernel/printk/printk.c:1903 [] dev_vprintk_emit+0x211/0x650 drivers/base/core.c:2207 [] dev_printk_emit+0xae/0xe0 drivers/base/core.c:2218 [] __dev_printk+0x103/0x270 drivers/base/core.c:2230 [] dev_err+0xd8/0x110 drivers/base/core.c:2273 [] hid_parser_main+0x59d/0x980 drivers/hid/hid-core.c:555 [] hid_open_report+0x38e/0x6f0 drivers/hid/hid-core.c:1010 [] hid_device_probe+0x25d/0x4e0 drivers/hid/hid-core.c:2240 [] really_probe drivers/base/dd.c:367 [inline] [] driver_probe_device+0x217/0x660 drivers/base/dd.c:507 [] __device_attach_driver+0x205/0x270 drivers/base/dd.c:602 [] bus_for_each_drv+0x162/0x1e0 drivers/base/bus.c:463 [] __device_attach+0x211/0x300 drivers/base/dd.c:659 [] device_initial_probe+0x1a/0x20 drivers/base/dd.c:706 [] bus_probe_device+0x1e9/0x290 drivers/base/bus.c:557 [] device_add+0x861/0x1520 drivers/base/core.c:1140 [] hid_add_device+0x31a/0x940 drivers/hid/hid-core.c:2716 [] uhid_device_add_worker+0x48/0x160 drivers/hid/uhid.c:66 [] process_one_work+0x831/0x1530 kernel/workqueue.c:2092 [] worker_thread+0xd6/0x1140 kernel/workqueue.c:2226 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Code: c5f cff ce8 c4e c76 c03 c00 c44 c39 cf0 c75 c36 c0f cae ce8 c0f c31 c48 cc1 ce2 c20 c48 c89 cd3 c48 c09 cc3 c48 c89 cd8 c4c c29 ce0 c4c c39 ce8 c73 c24 cbf c01 c00 c00 c00 c c55 c6b c5f cff c65 c8b c05 c6e c78 c4a c7e c85 cc0 c75 cbb ce8 c75 c1d c49 cff c