syzbot

 sign-in | mailing list | source | docs
🐞 Open [712]
🐞 Fixed [53]
🐞 Invalid [548]
Missing Backports [52]
Kernel Health Bugs/Month Bug Lifetimes Fuzzing Crashes
💬 Send us feedback

INFO: task hung in ath9k_hif_usb_disconnect

Status: upstream: reported on 2024/08/04 13:02
Reported-by: syzbot+9aa44c24ca5e435a129a@syzkaller.appspotmail.com
First crash: 79d, last: 79d
Similar bugs (2)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream INFO: task hung in ath9k_hif_usb_disconnect (2) wireless 1 150d 150d 0/28 auto-obsoleted due to no activity on 2024/08/23 15:13
upstream INFO: task hung in ath9k_hif_usb_disconnect wireless 1 359d 359d 0/28 auto-obsoleted due to no activity on 2024/01/27 20:16

Sample crash report:
INFO: task kworker/0:6:4071 blocked for more than 143 seconds.
      Not tainted 5.15.164-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/0:6     state:D stack:    0 pid: 4071 ppid:     2 flags:0x00000008
Workqueue: usb_hub_wq hub_event
Call trace:
 __switch_to+0x308/0x5e8 arch/arm64/kernel/process.c:518
 context_switch kernel/sched/core.c:5030 [inline]
 __schedule+0xf10/0x1e48 kernel/sched/core.c:6376
 schedule+0x11c/0x1c8 kernel/sched/core.c:6459
 schedule_timeout+0xb8/0x344 kernel/time/timer.c:1890
 do_wait_for_common+0x214/0x388 kernel/sched/completion.c:85
 __wait_for_common kernel/sched/completion.c:106 [inline]
 wait_for_common kernel/sched/completion.c:117 [inline]
 wait_for_completion+0x4c/0x64 kernel/sched/completion.c:138
 ath9k_hif_usb_disconnect+0xb4/0x1e8 drivers/net/wireless/ath/ath9k/hif_usb.c:1442
 usb_unbind_interface+0x1a4/0x758 drivers/usb/core/driver.c:458
 __device_release_driver drivers/base/dd.c:1229 [inline]
 device_release_driver_internal+0x464/0x6ac drivers/base/dd.c:1262
 device_release_driver+0x28/0x38 drivers/base/dd.c:1285
 bus_remove_device+0x298/0x38c drivers/base/bus.c:529
 device_del+0x57c/0x9b4 drivers/base/core.c:3600
 usb_disable_device+0x354/0x760 drivers/usb/core/message.c:1414
 usb_disconnect+0x290/0x7e8 drivers/usb/core/hub.c:2248
 hub_port_connect drivers/usb/core/hub.c:5299 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5595 [inline]
 port_event drivers/usb/core/hub.c:5741 [inline]
 hub_event+0x1718/0x46b8 drivers/usb/core/hub.c:5823
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 worker_thread+0x910/0x1034 kernel/workqueue.c:2457
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
INFO: task syz.0.343:5554 blocked for more than 143 seconds.
      Not tainted 5.15.164-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.0.343       state:D stack:    0 pid: 5554 ppid:  4028 flags:0x00000001
Call trace:
 __switch_to+0x308/0x5e8 arch/arm64/kernel/process.c:518
 context_switch kernel/sched/core.c:5030 [inline]
 __schedule+0xf10/0x1e48 kernel/sched/core.c:6376
 schedule+0x11c/0x1c8 kernel/sched/core.c:6459
 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6518
 __mutex_lock_common+0xba0/0x2154 kernel/locking/mutex.c:669
 __mutex_lock kernel/locking/mutex.c:729 [inline]
 mutex_lock_nested+0xa4/0xf8 kernel/locking/mutex.c:743
 device_lock include/linux/device.h:760 [inline]
 usbdev_open+0x13c/0x6ec drivers/usb/core/devio.c:1040
 chrdev_open+0x3e8/0x4fc fs/char_dev.c:414
 do_dentry_open+0x780/0xed8 fs/open.c:826
 vfs_open+0x7c/0x90 fs/open.c:956
 do_open fs/namei.c:3608 [inline]
 path_openat+0x1ea0/0x26cc fs/namei.c:3742
 do_filp_open+0x1a8/0x3b4 fs/namei.c:3769
 do_sys_openat2+0x128/0x3e0 fs/open.c:1253
 do_sys_open fs/open.c:1269 [inline]
 __do_sys_openat fs/open.c:1285 [inline]
 __se_sys_openat fs/open.c:1280 [inline]
 __arm64_sys_openat+0x1f0/0x240 fs/open.c:1280
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
 el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:608
 el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:626
 el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584

Showing all locks held in the system:
3 locks held by kworker/1:0/21:
 #0: ffff0000c0020938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff800018be7c00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:72
1 lock held by khungtaskd/27:
 #0: ffff800014c91660 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0xc/0x44 include/linux/rcupdate.h:311
4 locks held by kworker/u4:2/148:
 #0: ffff0000d671d938 ((wq_completion)phy27){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001a657c00 ((work_completion)(&sdata->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff0000e7174d40 (&wdev->mtx){+.+.}-{3:3}, at: sdata_lock net/mac80211/ieee80211_i.h:1033 [inline]
 #2: ffff0000e7174d40 (&wdev->mtx){+.+.}-{3:3}, at: ieee80211_ibss_work+0xa0/0x1230 net/mac80211/ibss.c:1685
 #3: ffff0000ede117d0 (&local->sta_mtx){+.+.}-{3:3}, at: ieee80211_ibss_sta_expire net/mac80211/ibss.c:1259 [inline]
 #3: ffff0000ede117d0 (&local->sta_mtx){+.+.}-{3:3}, at: ieee80211_sta_merge_ibss net/mac80211/ibss.c:1302 [inline]
 #3: ffff0000ede117d0 (&local->sta_mtx){+.+.}-{3:3}, at: ieee80211_ibss_work+0x494/0x1230 net/mac80211/ibss.c:1713
4 locks held by kworker/u4:3/303:
 #0: ffff0000da10a938 ((wq_completion)phy26){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001cb27c00 ((work_completion)(&sdata->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff0000c8144d40 (&wdev->mtx){+.+.}-{3:3}, at: sdata_lock net/mac80211/ieee80211_i.h:1033 [inline]
 #2: ffff0000c8144d40 (&wdev->mtx){+.+.}-{3:3}, at: ieee80211_ibss_rx_queued_mgmt+0xe4/0x2814 net/mac80211/ibss.c:1632
 #3: ffff0000d81117d0 (&local->sta_mtx){+.+.}-{3:3}, at: sta_info_destroy_addr+0x54/0xd4 net/mac80211/sta_info.c:1130
2 locks held by getty/3782:
 #0: ffff0000d4ab8098 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x40/0x50 drivers/tty/tty_ldsem.c:340
 #1: ffff80001a30e2e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x414/0x1204 drivers/tty/n_tty.c:2158
5 locks held by kworker/0:6/4071:
 #0: ffff0000c2c94d38 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001d297c00 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff0000ceceb220 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:760 [inline]
 #2: ffff0000ceceb220 (&dev->mutex){....}-{3:3}, at: hub_event+0x1b8/0x46b8 drivers/usb/core/hub.c:5769
 #3: ffff0000c1871220 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:760 [inline]
 #3: ffff0000c1871220 (&dev->mutex){....}-{3:3}, at: usb_disconnect+0xe4/0x7e8 drivers/usb/core/hub.c:2239
 #4: ffff0000d6de51a8 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:760 [inline]
 #4: ffff0000d6de51a8 (&dev->mutex){....}-{3:3}, at: __device_driver_lock drivers/base/dd.c:1044 [inline]
 #4: ffff0000d6de51a8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xbc/0x6ac drivers/base/dd.c:1259
3 locks held by kworker/0:7/4077:
 #0: ffff0000c0020938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001d347c00 ((work_completion)(&fw_work->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff800014b42550 (umhelper_sem){++++}-{3:3}, at: usermodehelper_read_lock_wait+0x138/0x244 kernel/umh.c:249
4 locks held by kworker/u4:6/4085:
 #0: ffff0000d93c7138 ((wq_completion)phy25){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001d387c00 ((work_completion)(&sdata->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff0000d2b14d40 (&wdev->mtx){+.+.}-{3:3}, at: sdata_lock net/mac80211/ieee80211_i.h:1033 [inline]
 #2: ffff0000d2b14d40 (&wdev->mtx){+.+.}-{3:3}, at: ieee80211_ibss_work+0xa0/0x1230 net/mac80211/ibss.c:1685
 #3: ffff0000db2717d0 (&local->sta_mtx){+.+.}-{3:3}, at: ieee80211_ibss_sta_expire net/mac80211/ibss.c:1259 [inline]
 #3: ffff0000db2717d0 (&local->sta_mtx){+.+.}-{3:3}, at: ieee80211_sta_merge_ibss net/mac80211/ibss.c:1302 [inline]
 #3: ffff0000db2717d0 (&local->sta_mtx){+.+.}-{3:3}, at: ieee80211_ibss_work+0x494/0x1230 net/mac80211/ibss.c:1713
4 locks held by kworker/u4:7/4111:
 #0: ffff0000c03f4138 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001d487c00 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff800016be8a90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xf4/0x9bc net/core/net_namespace.c:561
 #3: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:72
4 locks held by kworker/u4:9/4258:
 #0: ffff0000eb46e138 ((wq_completion)phy24){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001cd87c00 ((work_completion)(&sdata->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff0000d5b4cd40 (&wdev->mtx){+.+.}-{3:3}, at: sdata_lock net/mac80211/ieee80211_i.h:1033 [inline]
 #2: ffff0000d5b4cd40 (&wdev->mtx){+.+.}-{3:3}, at: ieee80211_ibss_work+0xa0/0x1230 net/mac80211/ibss.c:1685
 #3: ffff0000f25397d0 (&local->sta_mtx){+.+.}-{3:3}, at: ieee80211_ibss_sta_expire net/mac80211/ibss.c:1259 [inline]
 #3: ffff0000f25397d0 (&local->sta_mtx){+.+.}-{3:3}, at: ieee80211_sta_merge_ibss net/mac80211/ibss.c:1302 [inline]
 #3: ffff0000f25397d0 (&local->sta_mtx){+.+.}-{3:3}, at: ieee80211_ibss_work+0x494/0x1230 net/mac80211/ibss.c:1713
4 locks held by kworker/u4:13/4601:
 #0: ffff0000dffd9938 ((wq_completion)phy28){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001d4e7c00 ((work_completion)(&sdata->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff0000da09cd40 (&wdev->mtx){+.+.}-{3:3}, at: sdata_lock net/mac80211/ieee80211_i.h:1033 [inline]
 #2: ffff0000da09cd40 (&wdev->mtx){+.+.}-{3:3}, at: ieee80211_ibss_rx_queued_mgmt+0xe4/0x2814 net/mac80211/ibss.c:1632
 #3: ffff0000ede197d0 (&local->sta_mtx){+.+.}-{3:3}, at: sta_info_destroy_addr+0x54/0xd4 net/mac80211/sta_info.c:1130
2 locks held by kworker/1:12/5129:
 #0: ffff0000c0021938 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001d247c00 ((work_completion)(&rew.rew_work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
4 locks held by kworker/u4:14/5238:
 #0: ffff0000d46ff138 ((wq_completion)phy23){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283
 #1: ffff80001d877c00 ((work_completion)(&sdata->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285
 #2: ffff0000d5b48d40 (&wdev->mtx){+.+.}-{3:3}, at: sdata_lock net/mac80211/ieee80211_i.h:1033 [inline]
 #2: ffff0000d5b48d40 (&wdev->mtx){+.+.}-{3:3}, at: ieee80211_ibss_rx_queued_mgmt+0xe4/0x2814 net/mac80211/ibss.c:1632
 #3: ffff0000f3f017d0 (&local->sta_mtx){+.+.}-{3:3}, at: sta_info_destroy_addr+0x54/0xd4 net/mac80211/sta_info.c:1130
1 lock held by syz.0.343/5554:
 #0: ffff0000ceceb220 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:760 [inline]
 #0: ffff0000ceceb220 (&dev->mutex){....}-{3:3}, at: usbdev_open+0x13c/0x6ec drivers/usb/core/devio.c:1040
2 locks held by syz.1.638/6904:
 #0: ffff0000de753810 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:789 [inline]
 #0: ffff0000de753810 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: __sock_release net/socket.c:648 [inline]
 #0: ffff0000de753810 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x80/0x1fc net/socket.c:1336
 #1: ffff800014c95c68 (rcu_state.exp_mutex){+.+.}-{3:3}, at: exp_funnel_lock kernel/rcu/tree_exp.h:290 [inline]
 #1: ffff800014c95c68 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x320/0x660 kernel/rcu/tree_exp.h:845
1 lock held by syz.4.641/6919:
 #0: ffff0000cfc7aab8 (&nft_net->commit_mutex){+.+.}-{3:3}, at: nf_tables_valid_genid+0x3c/0xd4 net/netfilter/nf_tables_api.c:9942
4 locks held by syz.4.641/6922:
 #0: ffff800016c50350 (cb_lock){++++}-{3:3}, at: genl_rcv+0x28/0x50 net/netlink/genetlink.c:802
 #1: ffff0000e5060690 (nlk_cb_mutex-GENERIC){+.+.}-{3:3}, at: netlink_dump+0xbc/0xa88 net/netlink/af_netlink.c:2225
 #2: ffff800016c50208 (genl_mutex){+.+.}-{3:3}, at: genl_lock net/netlink/genetlink.c:33 [inline]
 #2: ffff800016c50208 (genl_mutex){+.+.}-{3:3}, at: genl_lock_dumpit+0x54/0xa4 net/netlink/genetlink.c:614
 #3: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:72
2 locks held by syz.3.642/6920:
 #0: ffff0000de669a10 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:789 [inline]
 #0: ffff0000de669a10 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: __sock_release net/socket.c:648 [inline]
 #0: ffff0000de669a10 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x80/0x1fc net/socket.c:1336
 #1: ffff800014c95c68 (rcu_state.exp_mutex){+.+.}-{3:3}, at: exp_funnel_lock kernel/rcu/tree_exp.h:322 [inline]
 #1: ffff800014c95c68 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x2f0/0x660 kernel/rcu/tree_exp.h:845
3 locks held by syz.3.642/6921:
1 lock held by syz-executor/6923:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626
1 lock held by syz-executor/6927:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626
1 lock held by syz-executor/6933:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626
1 lock held by syz-executor/6934:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626
1 lock held by syz-executor/6935:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626
1 lock held by dhcpcd/6941:
 #0: ffff0000f8414120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1676 [inline]
 #0: ffff0000f8414120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x4c/0xbc0 net/packet/af_packet.c:3161
1 lock held by dhcpcd/6942:
 #0: ffff0000cb57e120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1676 [inline]
 #0: ffff0000cb57e120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x4c/0xbc0 net/packet/af_packet.c:3161
1 lock held by dhcpcd/6943:
 #0: ffff0000c6290120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1676 [inline]
 #0: ffff0000c6290120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x4c/0xbc0 net/packet/af_packet.c:3161
1 lock held by dhcpcd/6944:
 #0: ffff0000c6296120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1676 [inline]
 #0: ffff0000c6296120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x4c/0xbc0 net/packet/af_packet.c:3161
1 lock held by dhcpcd/6945:
 #0: ffff0000d9226120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1676 [inline]
 #0: ffff0000d9226120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x4c/0xbc0 net/packet/af_packet.c:3161
1 lock held by dhcpcd/6946:
 #0: ffff0000c102e120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1676 [inline]
 #0: ffff0000c102e120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x4c/0xbc0 net/packet/af_packet.c:3161
1 lock held by syz-executor/6948:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626
1 lock held by syz-executor/6956:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626
1 lock held by syz-executor/6958:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626
1 lock held by syz-executor/6960:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626
1 lock held by syz-executor/6961:
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:72 [inline]
 #0: ffff800016bf4268 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0xa2c/0xdac net/core/rtnetlink.c:5626

=============================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/08/04 13:02 linux-5.15.y 7e89efd3ae1c 1786a2a8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 INFO: task hung in ath9k_hif_usb_disconnect
* Struck through repros no longer work on HEAD.