INFO: task kworker/1:11:9159 blocked for more than 143 seconds.
Not tainted 6.13.0-rc7-syzkaller-g70cd0576aa39 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/1:11 state:D stack:21616 pid:9159 tgid:9159 ppid:2 flags:0x00004000
Workqueue: events console_callback
Call Trace:
context_switch kernel/sched/core.c:5369 [inline]
__schedule+0x102c/0x34b0 kernel/sched/core.c:6756
__schedule_loop kernel/sched/core.c:6833 [inline]
schedule+0xe7/0x350 kernel/sched/core.c:6848
schedule_timeout+0x244/0x280 kernel/time/sleep_timeout.c:75
___down_common+0x2d7/0x460 kernel/locking/semaphore.c:225
__down_common kernel/locking/semaphore.c:246 [inline]
__down+0x20/0x30 kernel/locking/semaphore.c:254
down+0x74/0xa0 kernel/locking/semaphore.c:63
console_lock+0x5b/0xa0 kernel/printk/printk.c:2833
console_callback+0x63/0x4c0 drivers/tty/vt/vt.c:3120
process_one_work+0x9c5/0x1ba0 kernel/workqueue.c:3236
process_scheduled_works kernel/workqueue.c:3317 [inline]
worker_thread+0x6c8/0xf00 kernel/workqueue.c:3398
kthread+0x2c1/0x3a0 kernel/kthread.c:389
ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
Showing all locks held in the system:
3 locks held by kworker/1:0/24:
1 lock held by khungtaskd/30:
#0: ffffffff88ebc880 (rcu_read_lock){....}-{1:3}
, at: rcu_lock_acquire include/linux/rcupdate.h:337 [inline]
, at: rcu_read_lock include/linux/rcupdate.h:849 [inline]
, at: debug_show_all_locks+0x7f/0x390 kernel/locking/lockdep.c:6744
6 locks held by kworker/0:2/1119:
#0: ffff8881062cf548
((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 kernel/workqueue.c:3211
#1: ffffc90001fbfd80
((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 kernel/workqueue.c:3212
#2: ffff88810b300190 (
&dev->mutex){....}-{4:4}, at: device_lock include/linux/device.h:1014 [inline]
&dev->mutex){....}-{4:4}, at: hub_event+0x1be/0x4f40 drivers/usb/core/hub.c:5851
#3:
ffff88810ebe7190
(&dev->mutex){....}-{4:4}
, at: device_lock include/linux/device.h:1014 [inline]
, at: __device_attach+0x7f/0x4b0 drivers/base/dd.c:1005
#4: ffff88811e25b160 (&dev->mutex
){....}-{4:4}, at: device_lock include/linux/device.h:1014 [inline]
){....}-{4:4}, at: __device_attach+0x7f/0x4b0 drivers/base/dd.c:1005
#5:
ffff8881147ec638
(&dev->mutex){....}-{4:4}, at: device_lock include/linux/device.h:1014 [inline]
(&dev->mutex){....}-{4:4}, at: __device_attach+0x7f/0x4b0 drivers/base/dd.c:1005
2 locks held by getty/2904:
#0: ffff8881121f50a0 (&tty->ldisc_sem){++++}-{0:0}
, at: tty_ldisc_ref_wait+0x24/0x80 drivers/tty/tty_ldisc.c:243
#1: ffffc900000432f0
(
&ldata->atomic_read_lock){+.+.}-{4:4}
, at: n_tty_read+0xfba/0x1480 drivers/tty/n_tty.c:2211
3 locks held by syz-executor/2954:
3 locks held by syz-executor/2955:
4 locks held by udevd/5200:
#0: ffff88810f3cf0a0 (&p->lock
){+.+.}-{4:4}, at: seq_read_iter+0xd8/0x12b0 fs/seq_file.c:182
#1: ffff88810ff5c488 (&of->mutex#2
){+.+.}-{4:4}, at: kernfs_seq_start+0x4d/0x240 fs/kernfs/file.c:154
#2: ffff88811dfdd1e8 (kn->active#5){++++}-{0:0}
, at: kernfs_seq_start+0x71/0x240 fs/kernfs/file.c:155
#3:
ffff88810ebe7190 (&dev->mutex){....}-{4:4}
, at: device_lock include/linux/device.h:1014 [inline]
, at: uevent_show+0x188/0x3b0 drivers/base/core.c:2729
5 locks held by kworker/1:3/5212:
#0: ffff8881062cf548 ((wq_completion)usb_hub_wq
){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 kernel/workqueue.c:3211
#1: ffffc9000209fd80 ((work_completion)(&hub->events)
){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 kernel/workqueue.c:3212
#2:
ffff88810afd1190 (&dev->mutex){....}-{4:4}, at: device_lock include/linux/device.h:1014 [inline]
ffff88810afd1190 (&dev->mutex){....}-{4:4}, at: hub_event+0x1be/0x4f40 drivers/usb/core/hub.c:5851
#3: ffff88810bb4b190 (&dev->mutex
){....}-{4:4}, at: device_lock include/linux/device.h:1014 [inline]
){....}-{4:4}, at: __device_attach+0x7f/0x4b0 drivers/base/dd.c:1005
#4: ffff888118f7e160 (&dev->mutex){....}-{4:4}, at: device_lock include/linux/device.h:1014 [inline]
#4: ffff888118f7e160 (&dev->mutex){....}-{4:4}, at: __device_attach+0x7f/0x4b0 drivers/base/dd.c:1005
4 locks held by udevd/5242:
#0: ffff88811b0ef668 (&p->lock
){+.+.}-{4:4}, at: seq_read_iter+0xd8/0x12b0 fs/seq_file.c:182
#1: ffff88811b584c88
(&of->mutex#2){+.+.}-{4:4}
, at: kernfs_seq_start+0x4d/0x240 fs/kernfs/file.c:154
#2: ffff888107312c38 (kn->active#5){++++}-{0:0}, at: kernfs_seq_start+0x71/0x240 fs/kernfs/file.c:155
#3:
ffff88811e0c4190 (&dev->mutex){....}-{4:4}, at: device_lock include/linux/device.h:1014 [inline]
ffff88811e0c4190 (&dev->mutex){....}-{4:4}, at: uevent_show+0x188/0x3b0 drivers/base/core.c:2729
4 locks held by udevd/5449:
#0: ffff88811b0ef540 (
&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xd8/0x12b0 fs/seq_file.c:182
#1: ffff888113364088
(&of->mutex#2){+.+.}-{4:4}
, at: kernfs_seq_start+0x4d/0x240 fs/kernfs/file.c:154
#2: ffff888117337a58 (kn->active
#5){++++}-{0:0}, at: kernfs_seq_start+0x71/0x240 fs/kernfs/file.c:155
#3: ffff88810bb4b190 (&dev->mutex
){....}-{4:4}, at: device_lock include/linux/device.h:1014 [inline]
){....}-{4:4}, at: uevent_show+0x188/0x3b0 drivers/base/core.c:2729
2 locks held by kworker/1:11/9159:
#0: ffff888100080948 ((wq_completion)events
){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 kernel/workqueue.c:3211
#1: ffffc900050bfd80
(
console_work){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 kernel/workqueue.c:3212
2 locks held by kworker/u8:1/10195:
#0: ffff888100089148 ((wq_completion)events_unbound){+.+.}-{0:0}
, at: process_one_work+0x1293/0x1ba0 kernel/workqueue.c:3211
#1: ffffc900157efd80 ((reaper_work).work
){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 kernel/workqueue.c:3212
5 locks held by kworker/0:14/11630:
6 locks held by kworker/1:13/12289:
2 locks held by kworker/u8:0/12452:
#0:
ffff888100089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 kernel/workqueue.c:3211
#1: ffffc90012c47d80 (connector_reaper_work){+.+.}-{0:0}
, at: process_one_work+0x921/0x1ba0 kernel/workqueue.c:3212
1 lock held by syz.4.2283/12785:
#0: ffffffff88ec81b8
(
rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x282/0x3b0 kernel/rcu/tree_exp.h:297
1 lock held by syz.3.2281/12787:
=============================================
NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc7-syzkaller-g70cd0576aa39 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
Call Trace:
__dump_stack lib/dump_stack.c:94 [inline]
dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120
nmi_cpu_backtrace+0x27b/0x390 lib/nmi_backtrace.c:113
nmi_trigger_cpumask_backtrace+0x29c/0x300 lib/nmi_backtrace.c:62
trigger_all_cpu_backtrace include/linux/nmi.h:162 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:234 [inline]
watchdog+0xf14/0x1240 kernel/hung_task.c:397
kthread+0x2c1/0x3a0 kernel/kthread.c:389
ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 12790 Comm: syz.1.2284 Not tainted 6.13.0-rc7-syzkaller-g70cd0576aa39 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
RIP: 0010:__sanitizer_cov_trace_pc+0x56/0x70 kernel/kcov.c:222
Code: 00 f0 00 75 35 8b 82 54 15 00 00 85 c0 74 2b 8b 82 30 15 00 00 83 f8 02 75 20 48 8b 8a 38 15 00 00 8b 92 34 15 00 00 48 8b 01 <48> 83 c0 01 48 39 d0 73 07 48 89 01 48 89 34 c1 c3 cc cc cc cc 0f
RSP: 0018:ffffc9000143f418 EFLAGS: 00000046
RAX: 000000000000ffe9 RBX: 0000000000000008 RCX: ffffc900032f2000
RDX: 0000000000080000 RSI: ffffffff86eecb0d RDI: 0000000000000007
RBP: ffffc9000143f6e6 R08: 0000000000000007 R09: 0000000000000000
R10: 000000007fffffff R11: 0000000031313154 R12: ffffffff8728d5c5
R13: 0000000000000000 R14: 000000007fffffff R15: 000000007ffffff8
FS: 00007f672a1976c0(0000) GS:ffff8881f5900000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055558ac374a8 CR3: 000000011a752000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
vsnprintf+0x3cd/0x1880 lib/vsprintf.c:2919
sprintf+0xcd/0x110 lib/vsprintf.c:3052
print_caller kernel/printk/printk.c:1392 [inline]
info_print_prefix+0x147/0x350 kernel/printk/printk.c:1409
record_print_text+0x141/0x400 kernel/printk/printk.c:1456
printk_get_next_message+0x2be/0x690 kernel/printk/printk.c:3008
console_emit_next_record kernel/printk/printk.c:3076 [inline]
console_flush_all+0x6ec/0xc60 kernel/printk/printk.c:3210
__console_flush_and_unlock kernel/printk/printk.c:3269 [inline]
console_unlock+0xd9/0x210 kernel/printk/printk.c:3309
vprintk_emit+0x424/0x6f0 kernel/printk/printk.c:2432
dev_vprintk_emit drivers/base/core.c:4935 [inline]
dev_printk_emit+0xfb/0x140 drivers/base/core.c:4946
__dev_printk+0xf5/0x270 drivers/base/core.c:4958
_dev_err+0xe5/0x120 drivers/base/core.c:5001
raw_ioctl_run drivers/usb/gadget/legacy/raw_gadget.c:599 [inline]
raw_ioctl+0x1dd7/0x2b90 drivers/usb/gadget/legacy/raw_gadget.c:1306
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:906 [inline]
__se_sys_ioctl fs/ioctl.c:892 [inline]
__x64_sys_ioctl+0x190/0x200 fs/ioctl.c:892
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f672bb2c92b
Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
RSP: 002b:00007f672a194f10 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007f672bb2c92b
RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000007
RBP: 00007f672a195fe0 R08: 0000000000000000 R09: 00312e6364755f79
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f672a194fb0 R14: 0000000020000140 R15: 00007f672be724c0