INFO: task syz-executor.0:11375 blocked for more than 143 seconds.
Not tainted 6.9.0-rc5-syzkaller-00053-ge33c4963bf53 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.0 state:D stack:29424 pid:11375 tgid:11360 ppid:8462 flags:0x00000006
Call Trace:
context_switch kernel/sched/core.c:5409 [inline]
__schedule+0x17e8/0x4a50 kernel/sched/core.c:6746
__schedule_loop kernel/sched/core.c:6823 [inline]
schedule+0x14b/0x320 kernel/sched/core.c:6838
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6895
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x6a4/0xd70 kernel/locking/mutex.c:752
__fdget_pos+0x259/0x320 fs/file.c:1191
fdget_pos include/linux/file.h:76 [inline]
__do_sys_getdents fs/readdir.c:322 [inline]
__se_sys_getdents+0x1c3/0x4d0 fs/readdir.c:311
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fad0c87dea9
RSP: 002b:00007fad0c3bd0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
RAX: ffffffffffffffda RBX: 00007fad0c9ac120 RCX: 00007fad0c87dea9
RDX: 0000000000000058 RSI: ffffffff81000000 RDI: 0000000000000005
RBP: 00007fad0c8ca4a4 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000006e R14: 00007fad0c9ac120 R15: 00007ffc77c4ea88
Showing all locks held in the system:
2 locks held by kworker/u8:0/10:
3 locks held by kworker/u8:1/11:
#0: ffff88802a199948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3229 [inline]
#0: ffff88802a199948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x8e0/0x17c0 kernel/workqueue.c:3335
#1: ffffc90000107d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3230 [inline]
#1: ffffc90000107d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x91b/0x17c0 kernel/workqueue.c:3335
#2: ffffffff8f5a6e48 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 net/ipv6/addrconf.c:4192
1 lock held by khungtaskd/29:
#0: ffffffff8e334d20 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire include/linux/rcupdate.h:329 [inline]
#0: ffffffff8e334d20 (rcu_read_lock){....}-{1:2}, at: rcu_read_lock include/linux/rcupdate.h:781 [inline]
#0: ffffffff8e334d20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 kernel/locking/lockdep.c:6614
2 locks held by getty/4836:
#0: ffff88802abd60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 drivers/tty/tty_ldisc.c:243
#1: ffffc9000312b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 drivers/tty/n_tty.c:2201
3 locks held by kworker/0:7/5164:
#0: ffff888015078948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3229 [inline]
#0: ffff888015078948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x8e0/0x17c0 kernel/workqueue.c:3335
#1: ffffc90004dd7d00 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3230 [inline]
#1: ffffc90004dd7d00 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_scheduled_works+0x91b/0x17c0 kernel/workqueue.c:3335
#2: ffff88807c252240 (&data->fib_lock){+.+.}-{3:3}, at: nsim_fib_event_work+0x2d1/0x4130 drivers/net/netdevsim/fib.c:1489
2 locks held by syz-executor.0/11366:
2 locks held by syz-executor.0/11368:
1 lock held by syz-executor.0/11375:
#0: ffff88802b75c348 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x259/0x320 fs/file.c:1191
4 locks held by syz-executor.0/11526:
2 locks held by syz-executor.4/11586:
4 locks held by syz-executor.3/13500:
4 locks held by syz-executor.4/13721:
1 lock held by syz-executor.5/13729:
1 lock held by syz-executor.2/13730:
#0: ffff88806391c420 (&mm->mmap_lock){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:124 [inline]
#0: ffff88806391c420 (&mm->mmap_lock){++++}-{3:3}, at: vm_mmap_pgoff+0x182/0x420 mm/util.c:571
2 locks held by syz-executor.2/13731:
=============================================
NMI backtrace for cpu 0
CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.9.0-rc5-syzkaller-00053-ge33c4963bf53 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
Call Trace:
__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114
nmi_cpu_backtrace+0x49c/0x4d0 lib/nmi_backtrace.c:113
nmi_trigger_cpumask_backtrace+0x198/0x320 lib/nmi_backtrace.c:62
trigger_all_cpu_backtrace include/linux/nmi.h:160 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:223 [inline]
watchdog+0xfde/0x1020 kernel/hung_task.c:380
kthread+0x2f2/0x390 kernel/kthread.c:388
ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 13500 Comm: syz-executor.3 Not tainted 6.9.0-rc5-syzkaller-00053-ge33c4963bf53 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
RIP: 0010:__hrtimer_next_event_base+0x160/0x280 kernel/time/hrtimer.c:528
Code: 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 74 08 48 89 df e8 d1 f2 76 00 4c 2b 2b 4c 89 ef 4c 89 f6 e8 d3 92 12 00 4d 39 f5 <4d> 0f 4c f5 7d 7a 48 83 7c 24 08 00 75 72 e8 5d 90 12 00 49 8d 5f
RSP: 0018:ffffc90000a08e58 EFLAGS: 00000097
RAX: 0000000000010001 RBX: ffff8880b952cb68 RCX: ffff888024e39e00
RDX: 0000000000010001 RSI: 7fffffffffffffff RDI: 000000880c1eb39e
RBP: ffff8880b952c880 R08: ffffffff818370ed R09: fffff52000141188
R10: dffffc0000000000 R11: fffff52000141188 R12: 0000000000000000
R13: 000000880c1eb39e R14: 7fffffffffffffff R15: ffff88805e446f00
FS: 0000555575e9e480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fbd43ed56c6 CR3: 0000000063df8000 CR4: 0000000000350ef0
Call Trace:
__hrtimer_get_next_event kernel/time/hrtimer.c:581 [inline]
hrtimer_update_next_event kernel/time/hrtimer.c:607 [inline]
hrtimer_interrupt+0x41d/0x990 kernel/time/hrtimer.c:1821
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1032 [inline]
__sysvec_apic_timer_interrupt+0x112/0x3f0 arch/x86/kernel/apic/apic.c:1049
instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline]
sysvec_apic_timer_interrupt+0xa1/0xc0 arch/x86/kernel/apic/apic.c:1043
asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:arch_stack_walk+0x11d/0x1b0 arch/x86/kernel/stacktrace.c:26
Code: bd 70 ff ff ff 4c 89 e6 4c 89 fa e8 1d 9d 09 00 8b 9d 70 ff ff ff 31 ff 89 de e8 7e 33 5e 00 85 db 74 4b 4c 8d bd 70 ff ff ff <4c> 89 ff e8 7b 6b 09 00 48 89 c3 31 ff 48 89 c6 e8 fe 33 5e 00 48
RSP: 0018:ffffc9000a44e560 EFLAGS: 00000293
RAX: ffffffff8137d26f RBX: ffffffff8a23a137 RCX: ffff888024e39e00
RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
RBP: ffffc9000a44e5f0 R08: ffffffff81415de5 R09: ffffffff814158df
R10: 0000000000000003 R11: ffff888024e39e00 R12: ffff888024e39e00
R13: ffffffff8181e0a0 R14: ffffc9000a44e640 R15: ffffc9000a44e560
stack_trace_save+0x118/0x1d0 kernel/stacktrace.c:122
kasan_save_stack mm/kasan/common.c:47 [inline]
kasan_save_track+0x3f/0x80 mm/kasan/common.c:68
kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579
poison_slab_object+0xa6/0xe0 mm/kasan/common.c:240
__kasan_slab_free+0x37/0x60 mm/kasan/common.c:256
kasan_slab_free include/linux/kasan.h:184 [inline]
slab_free_hook mm/slub.c:2106 [inline]
slab_free mm/slub.c:4280 [inline]
kmem_cache_free+0x10b/0x2c0 mm/slub.c:4344
netlink_broadcast_filtered+0x1168/0x1290 net/netlink/af_netlink.c:1546
nlmsg_multicast_filtered include/net/netlink.h:1111 [inline]
nlmsg_multicast include/net/netlink.h:1130 [inline]
nlmsg_notify+0xfb/0x1c0 net/netlink/af_netlink.c:2602
__addrconf_sysctl_register+0x389/0x3f0 net/ipv6/addrconf.c:7227
addrconf_sysctl_register+0x167/0x1c0 net/ipv6/addrconf.c:7264
ipv6_add_dev+0xcff/0x1220 net/ipv6/addrconf.c:455
addrconf_notify+0x6a7/0x1020 net/ipv6/addrconf.c:3651
notifier_call_chain+0x1a1/0x3e0 kernel/notifier.c:93
call_netdevice_notifiers_extack net/core/dev.c:1988 [inline]
call_netdevice_notifiers net/core/dev.c:2002 [inline]
register_netdevice+0x15b2/0x1a20 net/core/dev.c:10316
cfg80211_register_netdevice+0x149/0x2f0 net/wireless/core.c:1437
ieee80211_if_add+0xbbf/0x1770 net/mac80211/iface.c:2211
ieee80211_register_hw+0x321c/0x3d80 net/mac80211/main.c:1575
mac80211_hwsim_new_radio+0x25ac/0x4550 drivers/net/wireless/virtual/mac80211_hwsim.c:5454
hwsim_new_radio_nl+0xe4c/0x21d0 drivers/net/wireless/virtual/mac80211_hwsim.c:6135
genl_family_rcv_msg_doit net/netlink/genetlink.c:1113 [inline]
genl_family_rcv_msg net/netlink/genetlink.c:1193 [inline]
genl_rcv_msg+0xb16/0xec0 net/netlink/genetlink.c:1208
netlink_rcv_skb+0x1e5/0x430 net/netlink/af_netlink.c:2559
genl_rcv+0x28/0x40 net/netlink/genetlink.c:1217
netlink_unicast_kernel net/netlink/af_netlink.c:1335 [inline]
netlink_unicast+0x7ec/0x980 net/netlink/af_netlink.c:1361
netlink_sendmsg+0x8e1/0xcb0 net/netlink/af_netlink.c:1905
sock_sendmsg_nosec net/socket.c:730 [inline]
__sock_sendmsg+0x223/0x270 net/socket.c:745
__sys_sendto+0x3a4/0x4f0 net/socket.c:2191
__do_sys_sendto net/socket.c:2203 [inline]
__se_sys_sendto net/socket.c:2199 [inline]
__x64_sys_sendto+0xde/0x100 net/socket.c:2199
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fe986a7fb9c
Code: 1a 51 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 60 51 02 00 48 8b
RSP: 002b:00007ffd1bc42f70 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007fe9876d4620 RCX: 00007fe986a7fb9c
RDX: 0000000000000024 RSI: 00007fe9876d4670 RDI: 0000000000000003
RBP: 0000000000000000 R08: 00007ffd1bc42fc4 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
R13: 0000000000000000 R14: 00007fe9876d4670 R15: 0000000000000000