INFO: task syz-executor.5:16965 blocked for more than 143 seconds. Not tainted 5.3.0-rc2+ #25 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.5 D29576 16965 1746 0x00000004 Call Trace: schedule+0x9a/0x250 kernel/sched/core.c:3944 schedule_preempt_disabled+0xc/0x20 kernel/sched/core.c:4003 __mutex_lock_common kernel/locking/mutex.c:1007 [inline] __mutex_lock+0x881/0x1360 kernel/locking/mutex.c:1077 sisusb_open+0xae/0x430 drivers/usb/misc/sisusbvga/sisusb.c:2396 usb_open+0x1df/0x270 drivers/usb/core/file.c:48 chrdev_open+0x219/0x5c0 fs/char_dev.c:414 do_dentry_open+0x494/0x1120 fs/open.c:797 do_last fs/namei.c:3416 [inline] path_openat+0x1430/0x3f50 fs/namei.c:3533 do_filp_open+0x1a1/0x280 fs/namei.c:3563 do_sys_open+0x3c0/0x580 fs/open.c:1089 do_syscall_64+0xb7/0x580 arch/x86/entry/common.c:296 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x413711 Code: 48 8b 54 24 30 48 39 ca 0f 83 80 00 00 00 c6 04 02 a1 48 85 c9 76 70 48 89 44 24 38 48 89 44 24 10 48 8b 4c 24 50 48 89 0c 24 <48> c7 44 24 08 00 00 00 00 48 c7 44 24 18 01 00 00 00 e8 68 00 00 RSP: 002b:00007f949ab727a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000413711 RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00007f949ab727d0 RBP: 000000000075c070 R08: 0000000000000000 R09: 000000000000000f R10: 0000000000000064 R11: 0000000000000293 R12: 00007f949ab736d4 R13: 00000000004c8b6f R14: 00000000004dfa78 R15: 00000000ffffffff Showing all locks held in the system: 1 lock held by khungtaskd/23: #0: 000000001c0ca5c0 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x269 kernel/locking/lockdep.c:5254 1 lock held by rsyslogd/1603: 2 locks held by getty/1694: #0: 00000000a739fdd1 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272 #1: 0000000082017002 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0 drivers/tty/n_tty.c:2156 2 locks held by getty/1695: #0: 000000004c3cecfb (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272 #1: 0000000003edc092 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0 drivers/tty/n_tty.c:2156 2 locks held by getty/1696: #0: 0000000011188c79 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272 #1: 0000000013970468 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0 drivers/tty/n_tty.c:2156 2 locks held by getty/1697: #0: 000000001101e675 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272 #1: 000000007d670903 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0 drivers/tty/n_tty.c:2156 2 locks held by getty/1698: #0: 000000008416355a (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272 #1: 00000000d9ae6523 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0 drivers/tty/n_tty.c:2156 2 locks held by getty/1699: #0: 000000005f1a2d44 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272 #1: 00000000d552ab4a (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0 drivers/tty/n_tty.c:2156 2 locks held by getty/1700: #0: 00000000d2f51a5f (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272 #1: 00000000f9c83b6e (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x223/0x1ae0 drivers/tty/n_tty.c:2156 6 locks held by kworker/0:3/2752: #0: 00000000e14eee3c ((wq_completion)usb_hub_wq){+.+.}, at: __write_once_size include/linux/compiler.h:226 [inline] #0: 00000000e14eee3c ((wq_completion)usb_hub_wq){+.+.}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline] #0: 00000000e14eee3c ((wq_completion)usb_hub_wq){+.+.}, at: atomic64_set include/asm-generic/atomic-instrumented.h:855 [inline] #0: 00000000e14eee3c ((wq_completion)usb_hub_wq){+.+.}, at: atomic_long_set include/asm-generic/atomic-long.h:40 [inline] #0: 00000000e14eee3c ((wq_completion)usb_hub_wq){+.+.}, at: set_work_data kernel/workqueue.c:620 [inline] #0: 00000000e14eee3c ((wq_completion)usb_hub_wq){+.+.}, at: set_work_pool_and_clear_pending kernel/workqueue.c:647 [inline] #0: 00000000e14eee3c ((wq_completion)usb_hub_wq){+.+.}, at: process_one_work+0x827/0x1530 kernel/workqueue.c:2240 #1: 00000000f4c180d6 ((work_completion)(&hub->events)){+.+.}, at: process_one_work+0x85b/0x1530 kernel/workqueue.c:2244 #2: 0000000024b15723 (&dev->mutex){....}, at: device_lock include/linux/device.h:1220 [inline] #2: 0000000024b15723 (&dev->mutex){....}, at: hub_event+0x17c/0x3640 drivers/usb/core/hub.c:5387 #3: 00000000870c81e6 (&dev->mutex){....}, at: device_lock include/linux/device.h:1220 [inline] #3: 00000000870c81e6 (&dev->mutex){....}, at: usb_disconnect+0x91/0x8d0 drivers/usb/core/hub.c:2190 #4: 0000000045912f04 (&dev->mutex){....}, at: device_release_driver_internal+0x23/0x4c0 drivers/base/dd.c:1148 #5: 000000001b811b56 (minor_rwsem){++++}, at: usb_deregister_dev drivers/usb/core/file.c:238 [inline] #5: 000000001b811b56 (minor_rwsem){++++}, at: usb_deregister_dev+0x61/0x270 drivers/usb/core/file.c:230 2 locks held by syz-executor.5/16964: #0: 000000001b811b56 (minor_rwsem){++++}, at: usb_open+0x23/0x270 drivers/usb/core/file.c:39 #1: 0000000090cbd5c7 (&(sisusb->lock)){+.+.}, at: sisusb_open+0xae/0x430 drivers/usb/misc/sisusbvga/sisusb.c:2396 2 locks held by syz-executor.5/16965: #0: 000000001b811b56 (minor_rwsem){++++}, at: usb_open+0x23/0x270 drivers/usb/core/file.c:39 #1: 0000000090cbd5c7 (&(sisusb->lock)){+.+.}, at: sisusb_open+0xae/0x430 drivers/usb/misc/sisusbvga/sisusb.c:2396 1 lock held by syz-executor.0/17217: #0: 000000001b811b56 (minor_rwsem){++++}, at: usb_open+0x23/0x270 drivers/usb/core/file.c:39 ============================================= NMI backtrace for cpu 0 CPU: 0 PID: 23 Comm: khungtaskd Not tainted 5.3.0-rc2+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0xca/0x13e lib/dump_stack.c:113 nmi_cpu_backtrace.cold+0x55/0x96 lib/nmi_backtrace.c:101 nmi_trigger_cpumask_backtrace+0x1b0/0x1c7 lib/nmi_backtrace.c:62 trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline] check_hung_uninterruptible_tasks kernel/hung_task.c:205 [inline] watchdog+0x9a4/0xe50 kernel/hung_task.c:289 kthread+0x318/0x420 kernel/kthread.c:255 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:352 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.3.0-rc2+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:tick_irq_enter+0x0/0x240 kernel/time/tick-sched.c:1269 Code: e8 95 d1 31 00 e9 04 ff ff ff 4c 89 e7 e8 88 d1 31 00 eb 95 e8 61 d1 31 00 e9 aa fe ff ff 66 90 66 2e 0f 1f 84 00 00 00 00 00 <41> 56 41 55 41 54 55 53 48 c7 c3 40 64 02 00 e8 2c 21 0b 00 e8 87 RSP: 0018:ffff8881db309fa8 EFLAGS: 00000046 RAX: 0000000080000201 RBX: ffff8881da1fb000 RCX: 0000000000000001 RDX: 0000000000000000 RSI: 0000000080000001 RDI: ffff8881da1fb828 RBP: ffff8881da1fb000 R08: 0000000000000000 R09: 0000000000000001 R10: ffffed103b66677b R11: ffff8881db333bdb R12: ffff8881db300000 R13: ffffffff86b5b6c8 R14: 0000000000000001 R15: ffff8881da1fb000 FS: 0000000000000000(0000) GS:ffff8881db300000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: ffffffffff600400 CR3: 00000001d59b4000 CR4: 00000000001406e0 Call Trace: irq_enter+0xb1/0xd0 kernel/softirq.c:354 scheduler_ipi+0x24a/0x590 kernel/sched/core.c:2218 reschedule_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:852 RIP: 0010:default_idle+0x28/0x2e0 arch/x86/kernel/process.c:581 Code: 90 90 41 56 41 55 65 44 8b 2d 54 fa 93 7a 41 54 55 53 0f 1f 44 00 00 e8 76 7f d5 fb e9 07 00 00 00 0f 00 2d 6a 9f 54 00 fb f4 <65> 44 8b 2d 30 fa 93 7a 0f 1f 44 00 00 5b 5d 41 5c 41 5d 41 5e c3 RSP: 0018:ffff8881da217dc8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff02 RAX: 0000000000000007 RBX: ffff8881da1fb000 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000006 RDI: ffff8881da1fb844 RBP: ffffed103b43f600 R08: ffff8881da1fb000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001 R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000 cpuidle_idle_call kernel/sched/idle.c:154 [inline] do_idle+0x3c2/0x4f0 kernel/sched/idle.c:263 cpu_startup_entry+0x14/0x20 kernel/sched/idle.c:354 start_secondary+0x297/0x340 arch/x86/kernel/smpboot.c:264 secondary_startup_64+0xa4/0xb0 arch/x86/kernel/head_64.S:241