Bluetooth: hci7 command 0x040f tx timeout
Bluetooth: hci6 command 0x0419 tx timeout
Bluetooth: hci7 command 0x0419 tx timeout
Bluetooth: hci7 command 0x0406 tx timeout
Bluetooth: hci6 command 0x0406 tx timeout
INFO: task syz-executor.0:18897 blocked for more than 140 seconds.
Not tainted 4.14.290-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.0 D28480 18897 7989 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2811 [inline]
__schedule+0x88b/0x1de0 kernel/sched/core.c:3387
schedule+0x8d/0x1b0 kernel/sched/core.c:3431
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3489
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
blkdev_reread_part+0x1b/0x40 block/ioctl.c:192
loop_reread_partitions drivers/block/loop.c:624 [inline]
loop_set_status+0xeeb/0x12b0 drivers/block/loop.c:1193
loop_set_status64+0x92/0xe0 drivers/block/loop.c:1311
lo_ioctl+0x587/0x1cd0 drivers/block/loop.c:1441
__blkdev_driver_ioctl block/ioctl.c:297 [inline]
blkdev_ioctl+0x540/0x1830 block/ioctl.c:594
block_ioctl+0xd9/0x120 fs/block_dev.c:1893
vfs_ioctl fs/ioctl.c:46 [inline]
file_ioctl fs/ioctl.c:500 [inline]
do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684
SYSC_ioctl fs/ioctl.c:701 [inline]
SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f95c71cd037
RSP: 002b:00007f95c5b41ed8 EFLAGS: 00000202 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f95c5b41f20 RCX: 00007f95c71cd037
RDX: 00007f95c5b42030 RSI: 0000000000004c04 RDI: 0000000000000004
RBP: 00007f95c7227189 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000202 R12: 00007f95c5b42030
R13: 00007ffd65e936ff R14: 00007f95c5b42300 R15: 0000000000022000
INFO: task syz-executor.1:18922 blocked for more than 140 seconds.
Not tainted 4.14.290-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.1 D30016 18922 7994 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2811 [inline]
__schedule+0x88b/0x1de0 kernel/sched/core.c:3387
schedule+0x8d/0x1b0 kernel/sched/core.c:3431
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3489
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
loop_control_ioctl+0x181/0x3f0 drivers/block/loop.c:2007
vfs_ioctl fs/ioctl.c:46 [inline]
file_ioctl fs/ioctl.c:500 [inline]
do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684
SYSC_ioctl fs/ioctl.c:701 [inline]
SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f2245598279
RSP: 002b:00007f2243f0d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f22456aaf80 RCX: 00007f2245598279
RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003
RBP: 00007f22455f2189 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffe0f98d7df R14: 00007f2243f0d300 R15: 0000000000022000
INFO: task systemd-udevd:18924 blocked for more than 140 seconds.
Not tainted 4.14.290-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
systemd-udevd D28912 18924 4627 0x00000304
Call Trace:
context_switch kernel/sched/core.c:2811 [inline]
__schedule+0x88b/0x1de0 kernel/sched/core.c:3387
schedule+0x8d/0x1b0 kernel/sched/core.c:3431
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3489
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
lo_open+0x19/0xb0 drivers/block/loop.c:1634
__blkdev_get+0xa8c/0x1090 fs/block_dev.c:1537
blkdev_get+0x88/0x890 fs/block_dev.c:1611
blkdev_open+0x1cc/0x250 fs/block_dev.c:1772
do_dentry_open+0x44b/0xec0 fs/open.c:777
vfs_open+0x105/0x220 fs/open.c:888
do_last fs/namei.c:3428 [inline]
path_openat+0x628/0x2970 fs/namei.c:3569
do_filp_open+0x179/0x3c0 fs/namei.c:3603
do_sys_open+0x296/0x410 fs/open.c:1081
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f1a0f781840
RSP: 002b:00007ffd562adc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 0000560ec1a3a880 RCX: 00007f1a0f781840
RDX: 0000560ec0ff4fe3 RSI: 00000000000a0800 RDI: 0000560ec1a3c1f0
RBP: 00007ffd562addf0 R08: 0000560ec0ff4670 R09: 0000000000000010
R10: 0000560ec0ff4d0c R11: 0000000000000246 R12: 00007ffd562add40
R13: 0000560ec1a3d070 R14: 0000000000000003 R15: 000000000000000e
INFO: task syz-executor.2:18946 blocked for more than 140 seconds.
Not tainted 4.14.290-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.2 D30016 18946 7997 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2811 [inline]
__schedule+0x88b/0x1de0 kernel/sched/core.c:3387
schedule+0x8d/0x1b0 kernel/sched/core.c:3431
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3489
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
loop_control_ioctl+0x67/0x3f0 drivers/block/loop.c:1993
vfs_ioctl fs/ioctl.c:46 [inline]
file_ioctl fs/ioctl.c:500 [inline]
do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684
SYSC_ioctl fs/ioctl.c:701 [inline]
SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f5f49fa5279
RSP: 002b:00007f5f4891a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f5f4a0b7f80 RCX: 00007f5f49fa5279
RDX: 0000000000000000 RSI: 0000000000004c82 RDI: 0000000000000003
RBP: 00007f5f49fff189 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffd03fb4c9f R14: 00007f5f4891a300 R15: 0000000000022000
INFO: task syz-executor.2:18949 blocked for more than 140 seconds.
Not tainted 4.14.290-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.2 D30528 18949 7997 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2811 [inline]
__schedule+0x88b/0x1de0 kernel/sched/core.c:3387
schedule+0x8d/0x1b0 kernel/sched/core.c:3431
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3489
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
loop_control_ioctl+0x67/0x3f0 drivers/block/loop.c:1993
vfs_ioctl fs/ioctl.c:46 [inline]
file_ioctl fs/ioctl.c:500 [inline]
do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684
SYSC_ioctl fs/ioctl.c:701 [inline]
SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f5f49fa5279
RSP: 002b:00007f5f488f9168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f5f4a0b8050 RCX: 00007f5f49fa5279
RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003
RBP: 00007f5f49fff189 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffd03fb4c9f R14: 00007f5f488f9300 R15: 0000000000022000
INFO: task syz-executor.0:18966 blocked for more than 140 seconds.
Not tainted 4.14.290-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.0 D25840 18966 1 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2811 [inline]
__schedule+0x88b/0x1de0 kernel/sched/core.c:3387
schedule+0x8d/0x1b0 kernel/sched/core.c:3431
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3489
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
__blkdev_get+0x191/0x1090 fs/block_dev.c:1455
blkdev_get+0x88/0x890 fs/block_dev.c:1611
blkdev_open+0x1cc/0x250 fs/block_dev.c:1772
do_dentry_open+0x44b/0xec0 fs/open.c:777
vfs_open+0x105/0x220 fs/open.c:888
do_last fs/namei.c:3428 [inline]
path_openat+0x628/0x2970 fs/namei.c:3569
do_filp_open+0x179/0x3c0 fs/namei.c:3603
do_sys_open+0x296/0x410 fs/open.c:1081
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7ffad7bc0194
RSP: 002b:00007ffc1801f4f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 00007ffc1801f5f0 RCX: 00007ffad7bc0194
RDX: 0000000000000002 RSI: 00007ffc1801f630 RDI: 00000000ffffff9c
RBP: 00007ffc1801f630 R08: 0000000000000000 R09: 00007ffc1801f400
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
R13: 00007ffad7cee140 R14: 00007ffad7ceee48 R15: 00007ffc1801f630
INFO: task syz-executor.1:19443 blocked for more than 140 seconds.
Not tainted 4.14.290-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.1 D30016 19443 18968 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2811 [inline]
__schedule+0x88b/0x1de0 kernel/sched/core.c:3387
schedule+0x8d/0x1b0 kernel/sched/core.c:3431
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3489
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
loop_control_ioctl+0x67/0x3f0 drivers/block/loop.c:1993
vfs_ioctl fs/ioctl.c:46 [inline]
file_ioctl fs/ioctl.c:500 [inline]
do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684
SYSC_ioctl fs/ioctl.c:701 [inline]
SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f568d22f279
RSP: 002b:00007f568bba4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f568d341f80 RCX: 00007f568d22f279
RDX: 0000000000000000 RSI: 0000000000004c82 RDI: 0000000000000003
RBP: 00007f568d289189 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffe510dfddf R14: 00007f568bba4300 R15: 0000000000022000
INFO: task syz-executor.1:19444 blocked for more than 140 seconds.
Not tainted 4.14.290-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
syz-executor.1 D30528 19444 18968 0x00000004
Call Trace:
context_switch kernel/sched/core.c:2811 [inline]
__schedule+0x88b/0x1de0 kernel/sched/core.c:3387
schedule+0x8d/0x1b0 kernel/sched/core.c:3431
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3489
__mutex_lock_common kernel/locking/mutex.c:833 [inline]
__mutex_lock+0x669/0x1310 kernel/locking/mutex.c:893
loop_control_ioctl+0x67/0x3f0 drivers/block/loop.c:1993
vfs_ioctl fs/ioctl.c:46 [inline]
file_ioctl fs/ioctl.c:500 [inline]
do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684
SYSC_ioctl fs/ioctl.c:701 [inline]
SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f568d22f279
RSP: 002b:00007f568bb83168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f568d342050 RCX: 00007f568d22f279
RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003
RBP: 00007f568d289189 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffe510dfddf R14: 00007f568bb83300 R15: 0000000000022000
Showing all locks held in the system:
1 lock held by khungtaskd/1534:
#0: (tasklist_lock){.+.+}, at: [<ffffffff8701eaf9>] debug_show_all_locks+0x7c/0x21a kernel/locking/lockdep.c:4548
2 locks held by agetty/7932:
#0: (&tty->ldisc_sem){++++}, at: [<ffffffff83554c92>] tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:284
#1: (&ldata->atomic_read_lock){+.+.}, at: [<ffffffff8354a013>] n_tty_read+0x1e3/0x1680 drivers/tty/n_tty.c:2156
2 locks held by syz-executor.0/18897:
#0: (&lo->lo_ctl_mutex/1){+.+.}, at: [<ffffffff838d5f97>] lo_ioctl+0x87/0x1cd0 drivers/block/loop.c:1414
#1: (&bdev->bd_mutex){+.+.}, at: [<ffffffff830bd23b>] blkdev_reread_part+0x1b/0x40 block/ioctl.c:192
2 locks held by syz-executor.1/18922:
#0: (loop_index_mutex){+.+.}, at: [<ffffffff838d3047>] loop_control_ioctl+0x67/0x3f0 drivers/block/loop.c:1993
#1: (&lo->lo_ctl_mutex){+.+.}, at: [<ffffffff838d3161>] loop_control_ioctl+0x181/0x3f0 drivers/block/loop.c:2007
2 locks held by systemd-udevd/18924:
#0: (&bdev->bd_mutex){+.+.}, at: [<ffffffff81941cd1>] __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
#1: (loop_index_mutex){+.+.}, at: [<ffffffff838cc8e9>] lo_open+0x19/0xb0 drivers/block/loop.c:1634
1 lock held by syz-executor.2/18946:
#0: (loop_index_mutex){+.+.}, at: [<ffffffff838d3047>] loop_control_ioctl+0x67/0x3f0 drivers/block/loop.c:1993
1 lock held by syz-executor.2/18949:
#0: (loop_index_mutex){+.+.}, at: [<ffffffff838d3047>] loop_control_ioctl+0x67/0x3f0 drivers/block/loop.c:1993
1 lock held by syz-executor.0/18966:
#0: (&bdev->bd_mutex){+.+.}, at: [<ffffffff81941cd1>] __blkdev_get+0x191/0x1090 fs/block_dev.c:1455
1 lock held by syz-executor.1/19443:
#0: (loop_index_mutex){+.+.}, at: [<ffffffff838d3047>] loop_control_ioctl+0x67/0x3f0 drivers/block/loop.c:1993
1 lock held by syz-executor.1/19444:
#0: (loop_index_mutex){+.+.}, at: [<ffffffff838d3047>] loop_control_ioctl+0x67/0x3f0 drivers/block/loop.c:1993
=============================================
NMI backtrace for cpu 0
CPU: 0 PID: 1534 Comm: khungtaskd Not tainted 4.14.290-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
Call Trace:
__dump_stack lib/dump_stack.c:17 [inline]
dump_stack+0x1b2/0x281 lib/dump_stack.c:58
nmi_cpu_backtrace.cold+0x57/0x93 lib/nmi_backtrace.c:101
nmi_trigger_cpumask_backtrace+0x13a/0x180 lib/nmi_backtrace.c:62
trigger_all_cpu_backtrace include/linux/nmi.h:140 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:195 [inline]
watchdog+0x5b9/0xb40 kernel/hung_task.c:274
kthread+0x30d/0x420 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 13906 Comm: kworker/u4:7 Not tainted 4.14.290-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
Workqueue: bat_events batadv_nc_worker
task: ffff8880971a8480 task.stack: ffff888089d30000
RIP: 0010:separate_irq_context kernel/locking/lockdep.c:3107 [inline]
RIP: 0010:__lock_acquire+0x6de/0x3f20 kernel/locking/lockdep.c:3482
RSP: 0018:ffff888089d37a28 EFLAGS: 00000046
RAX: 00000000000005c0 RBX: 925544fb9f36ca3b RCX: 1ffff11012e351a0
RDX: 0000000000000000 RSI: ffff8880971a8d58 RDI: ffffffff8ba61620
RBP: ffff8880971a8d7a R08: 0000000000000001 R09: 00000000000405c0
R10: ffff8880971a8d58 R11: ffff8880971a8480 R12: ffff8880971a8d70
R13: 0000000000000000 R14: 00000000000005c0 R15: ffffffff8beccd80
FS: 0000000000000000(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f552b441000 CR3: 00000000a1098000 CR4: 00000000003406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
lock_acquire+0x170/0x3f0 kernel/locking/lockdep.c:3998
__raw_spin_lock_bh include/linux/spinlock_api_smp.h:135 [inline]
_raw_spin_lock_bh+0x2f/0x40 kernel/locking/spinlock.c:176
spin_lock_bh include/linux/spinlock.h:322 [inline]
batadv_nc_purge_paths+0xce/0x300 net/batman-adv/network-coding.c:452
batadv_nc_worker+0x628/0xc50 net/batman-adv/network-coding.c:729
process_one_work+0x793/0x14a0 kernel/workqueue.c:2117
worker_thread+0x5cc/0xff0 kernel/workqueue.c:2251
kthread+0x30d/0x420 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
Code: 5f 25 00 00 48 8b 4c 24 18 49 89 1a 48 ba 00 00 00 00 00 fc ff df 48 c1 e9 03 0f b6 14 11 84 d2 74 09 80 fa 03 0f 8e 0f 25 00 00 <41> 8b 93 80 08 00 00 85 d2 74 75 48 8b 74 24 10 48 8d 14 92 48