#1091892 libmtp triggers hung task detector

Package:
libmtp9t64
Source:
libmtp9t64
Description:
Media Transfer Protocol (MTP) library
Submitter:
Alison Chaiken
Date:
2025-01-02 02:57:02 UTC
Severity:
normal
#1091892#5
Date:
2025-01-02 02:48:03 UTC
From:
To:
Dear Maintainer,

Thanks for your hard work in maintaining a Debian package.

I tried to mount an Android filesystem from a brand new phone with the
Nov 2024 Android security update two ways: with the Gnome Files
application 47.1, and with jmtpfs compiled from
https://github.com/JasonFerrara/jmtpfs.git from source.   In both cases,
reproducibly, the application is unresponsive, and dmesg shows

[1116991.221496] usb 1-9: New USB device found, idVendor=22d9,
idProduct=2764, bcdDevice= 5.15
[1116991.221510] usb 1-9: New USB device strings: Mfr=1, Product=2,
SerialNumber=3
[1116991.221518] usb 1-9: Product: KALAMA-MTP_CID:0437_SN:FB6BE2B7
[1116991.221524] usb 1-9: Manufacturer: OnePlus
[1117224.818989] INFO: task find:3589505 blocked for more than 120
seconds.
[1117224.819002]       Tainted: G        W          6.11.10-amd64 #1
Debian 6.11.10-1
[1117224.819008] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs"
disables this message.
[1117224.819012] task:find            state:D stack:0     pid:3589505
tgid:3589505 ppid:25958  flags:0x00004006
[1117224.819022] Call Trace:
[1117224.819025]  <TASK>
[1117224.819034]  __schedule+0x3ec/0xb00
[1117224.819048]  schedule+0x27/0xf0
[1117224.819054]  request_wait_answer+0x1ba/0x2a0
[1117224.819063]  ? __pfx_autoremove_wake_function+0x10/0x10
[1117224.819073]  fuse_simple_request+0x17e/0x2c0
[1117224.819081]  fuse_lookup_name+0xa9/0x1e0
[1117224.819097]  fuse_lookup+0x7f/0x1a0
[1117224.819104]  ? srso_return_thunk+0x5/0x5f
[1117224.819118]  __lookup_slow+0x89/0x130
[1117224.819124]  ? __legitimize_path+0x2a/0x60
[1117224.819133]  walk_component+0xdb/0x150
[1117224.819141]  path_lookupat+0x6a/0x1a0
[1117224.819148]  ? __schedule+0x3f4/0xb00
[1117224.819155]  filename_lookup+0xde/0x1d0
[1117224.819174]  vfs_statx+0x8d/0x100
[1117224.819183]  vfs_fstatat+0x80/0xb0
[1117224.819190]  __do_sys_newfstatat+0x3c/0x80
[1117224.819205]  do_syscall_64+0x82/0x190
[1117224.819211]  ? srso_return_thunk+0x5/0x5f
[1117224.819217]  ? syscall_exit_to_user_mode+0x4d/0x210
[1117224.819223]  ? srso_return_thunk+0x5/0x5f
[1117224.819229]  ? do_syscall_64+0x8e/0x190
[1117224.819235]  ? srso_return_thunk+0x5/0x5f
[1117224.819244]  ? srso_return_thunk+0x5/0x5f
[1117224.819249]  ? syscall_exit_to_user_mode+0x172/0x210
[1117224.819255]  ? srso_return_thunk+0x5/0x5f
[1117224.819260]  ? do_syscall_64+0x8e/0x190
[1117224.819265]  ? srso_return_thunk+0x5/0x5f
[1117224.819270]  ? syscall_exit_to_user_mode+0x172/0x210
[1117224.819276]  ? srso_return_thunk+0x5/0x5f
[1117224.819282]  ? do_syscall_64+0x8e/0x190
[1117224.819289]  ? srso_return_thunk+0x5/0x5f
[1117224.819294]  ? __do_sys_newfstat+0x68/0x70
[1117224.819306]  ? srso_return_thunk+0x5/0x5f
[1117224.819312]  ? syscall_exit_to_user_mode+0x4d/0x210
[1117224.819318]  ? srso_return_thunk+0x5/0x5f
[1117224.819323]  ? do_syscall_64+0x8e/0x190
[1117224.819330]  ? srso_return_thunk+0x5/0x5f
[1117224.819335]  ? __x64_sys_fcntl+0x98/0xd0
[1117224.819341]  ? srso_return_thunk+0x5/0x5f
[1117224.819346]  ? syscall_exit_to_user_mode+0x4d/0x210
[1117224.819352]  ? srso_return_thunk+0x5/0x5f
[1117224.819357]  ? do_syscall_64+0x8e/0x190
[1117224.819362]  ? srso_return_thunk+0x5/0x5f
[1117224.819367]  ? do_syscall_64+0x8e/0x190
[1117224.819372]  ? srso_return_thunk+0x5/0x5f
[1117224.819378]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[1117224.819386] RIP: 0033:0x7f0180bb352a
[1117224.819407] RSP: 002b:00007ffc790becb8 EFLAGS: 00000246 ORIG_RAX:
0000000000000106
[1117224.819415] RAX: ffffffffffffffda RBX: 0000556731c9d470 RCX:
00007f0180bb352a
[1117224.819419] RDX: 0000556731c9d4e0 RSI: 0000556731c9d570 RDI:
0000000000000006
[1117224.819423] RBP: 0000556731c95a30 R08: 000000000000e370 R09:
0000000000000001
[1117224.819427] R10: 0000000000000100 R11: 0000000000000246 R12:
0000556731c9d4e0
[1117224.819430] R13: 0000000000000003 R14: 0000000000000003 R15:
00007ffc790c05f6
[1117224.819442]  </TASK>
[1117224.819447] INFO: task find:3593551 blocked for more than 120
seconds.
[1117224.819453]       Tainted: G        W          6.11.10-amd64 #1
Debian 6.11.10-1
[1117224.819457] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs"
disables this message.
[1117224.819461] task:find            state:D stack:0     pid:3593551
tgid:3593551 ppid:25958  flags:0x00000006
[1117224.819469] Call Trace:
[1117224.819471]  <TASK>
[1117224.819476]  __schedule+0x3ec/0xb00
[1117224.819487]  schedule+0x27/0xf0
[1117224.819492]  schedule_preempt_disabled+0x15/0x30
[1117224.819498]  __mutex_lock.constprop.0+0x3d0/0x6d0
[1117224.819506]  ? srso_return_thunk+0x5/0x5f
[1117224.819515]  fuse_lock_inode+0x33/0x40
[1117224.819522]  fuse_readdir_uncached+0x16c/0x840
[1117224.819530]  ? srso_return_thunk+0x5/0x5f
[1117224.819536]  ? path_openat+0xaaa/0x11e0
[1117224.819543]  ? tomoyo_init_request_info+0x99/0xc0
[1117224.819550]  ? srso_return_thunk+0x5/0x5f
[1117224.819556]  ? tomoyo_path_perm+0xa8/0x200
[1117224.819566]  ? srso_return_thunk+0x5/0x5f
[1117224.819571]  ? aa_file_perm+0x12e/0x4f0
[1117224.819590]  iterate_dir+0x124/0x220
[1117224.819598]  __x64_sys_getdents64+0x86/0x130
[1117224.819604]  ? __pfx_filldir64+0x10/0x10
[1117224.819612]  ? __x64_sys_fcntl+0x98/0xd0
[1117224.819619]  do_syscall_64+0x82/0x190
[1117224.819624]  ? srso_return_thunk+0x5/0x5f
[1117224.819629]  ? do_syscall_64+0x8e/0x190
[1117224.819641]  ? srso_return_thunk+0x5/0x5f
[1117224.819647]  ? srso_return_thunk+0x5/0x5f
[1117224.819652]  ? cp_new_stat+0x131/0x170
[1117224.819665]  ? srso_return_thunk+0x5/0x5f
[1117224.819670]  ? __do_sys_newfstat+0x68/0x70
[1117224.819683]  ? srso_return_thunk+0x5/0x5f
[1117224.819688]  ? syscall_exit_to_user_mode+0x4d/0x210
[1117224.819694]  ? srso_return_thunk+0x5/0x5f
[1117224.819699]  ? do_syscall_64+0x8e/0x190
[1117224.819704]  ? srso_return_thunk+0x5/0x5f
[1117224.819710]  ? do_syscall_64+0x8e/0x190
[1117224.819715]  ? srso_return_thunk+0x5/0x5f
[1117224.819720]  ? syscall_exit_to_user_mode+0x4d/0x210
[1117224.819726]  ? srso_return_thunk+0x5/0x5f
[1117224.819731]  ? do_syscall_64+0x8e/0x190
[1117224.819736]  ? srso_return_thunk+0x5/0x5f
[1117224.819741]  ? do_syscall_64+0x8e/0x190
[1117224.819746]  ? srso_return_thunk+0x5/0x5f
[1117224.819753]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[1117224.819759] RIP: 0033:0x7fca6233d7b3
[1117224.819766] RSP: 002b:00007ffddb0dc448 EFLAGS: 00000293 ORIG_RAX:
00000000000000d9
[1117224.819772] RAX: ffffffffffffffda RBX: 000055a7ac746ca0 RCX:
00007fca6233d7b3
[1117224.819776] RDX: 0000000000008000 RSI: 000055a7ac746cd0 RDI:
0000000000000006
[1117224.819779] RBP: 000055a7ac746ca4 R08: 0000000000000005 R09:
0000000000000002
[1117224.819783] R10: 0000000000000007 R11: 0000000000000293 R12:
000055a7ac746cd0
[1117224.819786] R13: fffffffffffffea0 R14: 0000000000000000 R15:
0000000000000000
[1117224.819797]  </TASK>

I'd be happy to provide more information if it would help.   There is no
core dump.

Thanks,
Alison Chaiken
alison@she-devel.com
---
Alison Chaiken                   alison@she-devel.com
https://she-devel.com
Nature is like a genie that answers exactly the question we pose, not
necessarily the one we intend to ask. -- Judea Pearl