INFO: task kworker/u4:4:3068 blocked for more than 143 seconds.
Not tainted 5.10.0-rc4-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u4:4 state:D stack:24208 pid: 3068 ppid: 2 flags:0x00004000
Workqueue: tc_filter_workqueue flow_destroy_filter_work
Call Trace:
context_switch kernel/sched/core.c:3774 [inline]
__schedule+0x893/0x2130 kernel/sched/core.c:4523
schedule+0xcf/0x270 kernel/sched/core.c:4601
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4660
__mutex_lock_common kernel/locking/mutex.c:1033 [inline]
__mutex_lock+0x3e2/0x10e0 kernel/locking/mutex.c:1103
flow_destroy_filter_work+0xe/0x20 net/sched/cls_flow.c:382
process_one_work+0x933/0x15a0 kernel/workqueue.c:2272
worker_thread+0x64c/0x1120 kernel/workqueue.c:2418
kthread+0x3af/0x4a0 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296
INFO: task kworker/u4:5:9828 blocked for more than 143 seconds.
Not tainted 5.10.0-rc4-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u4:5 state:D stack:25640 pid: 9828 ppid: 2 flags:0x00004000
Workqueue: netns cleanup_net
Call Trace:
context_switch kernel/sched/core.c:3774 [inline]
__schedule+0x893/0x2130 kernel/sched/core.c:4523
schedule+0xcf/0x270 kernel/sched/core.c:4601
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4660
__mutex_lock_common kernel/locking/mutex.c:1033 [inline]
__mutex_lock+0x3e2/0x10e0 kernel/locking/mutex.c:1103
cangw_pernet_exit+0xe/0x20 net/can/gw.c:1241
ops_exit_list+0xb0/0x160 net/core/net_namespace.c:187
cleanup_net+0x4ea/0xa00 net/core/net_namespace.c:604
process_one_work+0x933/0x15a0 kernel/workqueue.c:2272
worker_thread+0x64c/0x1120 kernel/workqueue.c:2418
kthread+0x3af/0x4a0 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296
INFO: task kworker/0:9:11277 blocked for more than 143 seconds.
Not tainted 5.10.0-rc4-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/0:9 state:D stack:27768 pid:11277 ppid: 2 flags:0x00004000
Workqueue: events linkwatch_event
Call Trace:
context_switch kernel/sched/core.c:3774 [inline]
__schedule+0x893/0x2130 kernel/sched/core.c:4523
schedule+0xcf/0x270 kernel/sched/core.c:4601
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4660
__mutex_lock_common kernel/locking/mutex.c:1033 [inline]
__mutex_lock+0x3e2/0x10e0 kernel/locking/mutex.c:1103
linkwatch_event+0xb/0x60 net/core/link_watch.c:250
process_one_work+0x933/0x15a0 kernel/workqueue.c:2272
worker_thread+0x64c/0x1120 kernel/workqueue.c:2418
kthread+0x3af/0x4a0 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296
INFO: task syz-executor.4:14773 blocked for more than 144 seconds.
Not tainted 5.10.0-rc4-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.4 state:D stack:26672 pid:14773 ppid: 8487 flags:0x00004004
Call Trace:
context_switch kernel/sched/core.c:3774 [inline]
__schedule+0x893/0x2130 kernel/sched/core.c:4523
schedule+0xcf/0x270 kernel/sched/core.c:4601
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4660
__mutex_lock_common kernel/locking/mutex.c:1033 [inline]
__mutex_lock+0x3e2/0x10e0 kernel/locking/mutex.c:1103
ip_tunnel_init_net+0x321/0x9d0 net/ipv4/ip_tunnel.c:1062
ops_init+0xaf/0x470 net/core/net_namespace.c:152
setup_net+0x2d8/0x850 net/core/net_namespace.c:342
copy_net_ns+0x2cf/0x5e0 net/core/net_namespace.c:483
create_new_namespaces+0x3f6/0xb10 kernel/nsproxy.c:110
unshare_nsproxy_namespaces+0xbd/0x1f0 kernel/nsproxy.c:231
ksys_unshare+0x445/0x8e0 kernel/fork.c:2949
__do_sys_unshare kernel/fork.c:3017 [inline]
__se_sys_unshare kernel/fork.c:3015 [inline]
__x64_sys_unshare+0x2d/0x40 kernel/fork.c:3015
do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x45deb9
Code: Unable to access opcode bytes at RIP 0x45de8f.
RSP: 002b:00007fbb55d12c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
RAX: ffffffffffffffda RBX: 0000000000038240 RCX: 000000000045deb9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000064000080
RBP: 000000000118bf50 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c
R13: 00007fffbe9147ff R14: 00007fbb55d139c0 R15: 000000000118bf2c
INFO: task syz-executor.2:14775 blocked for more than 144 seconds.
Not tainted 5.10.0-rc4-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2 state:D stack:27824 pid:14775 ppid: 8483 flags:0x00004004
Call Trace:
context_switch kernel/sched/core.c:3774 [inline]
__schedule+0x893/0x2130 kernel/sched/core.c:4523
schedule+0xcf/0x270 kernel/sched/core.c:4601
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4660
__mutex_lock_common kernel/locking/mutex.c:1033 [inline]
__mutex_lock+0x3e2/0x10e0 kernel/locking/mutex.c:1103
ib_get_eth_speed+0xeb/0x5c0 drivers/infiniband/core/verbs.c:1811
rxe_query_port+0x13d/0x2d0 drivers/infiniband/sw/rxe/rxe_verbs.c:41
__ib_query_port drivers/infiniband/core/device.c:2017 [inline]
ib_query_port drivers/infiniband/core/device.c:2052 [inline]
ib_query_port+0x4d9/0x9e0 drivers/infiniband/core/device.c:2042
add_port drivers/infiniband/core/sysfs.c:1052 [inline]
ib_setup_port_attrs+0x1ee/0x14f0 drivers/infiniband/core/sysfs.c:1367
add_one_compat_dev+0x4ab/0x800 drivers/infiniband/core/device.c:917
rdma_dev_init_net+0x2dc/0x480 drivers/infiniband/core/device.c:1133
ops_init+0xaf/0x470 net/core/net_namespace.c:152
setup_net+0x2d8/0x850 net/core/net_namespace.c:342
copy_net_ns+0x2cf/0x5e0 net/core/net_namespace.c:483
create_new_namespaces+0x3f6/0xb10 kernel/nsproxy.c:110
unshare_nsproxy_namespaces+0xbd/0x1f0 kernel/nsproxy.c:231
ksys_unshare+0x445/0x8e0 kernel/fork.c:2949
__do_sys_unshare kernel/fork.c:3017 [inline]
__se_sys_unshare kernel/fork.c:3015 [inline]
__x64_sys_unshare+0x2d/0x40 kernel/fork.c:3015
do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x45deb9
Code: Unable to access opcode bytes at RIP 0x45de8f.
RSP: 002b:00007f5f0787fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
RAX: ffffffffffffffda RBX: 0000000000038240 RCX: 000000000045deb9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c060000
RBP: 000000000118bf50 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c
R13: 00007ffc0abbb84f R14: 00007f5f078809c0 R15: 000000000118bf2c
INFO: task syz-executor.2:14778 blocked for more than 144 seconds.
Not tainted 5.10.0-rc4-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2 state:D stack:26864 pid:14778 ppid: 8483 flags:0x00004004
Call Trace:
context_switch kernel/sched/core.c:3774 [inline]
__schedule+0x893/0x2130 kernel/sched/core.c:4523
schedule+0xcf/0x270 kernel/sched/core.c:4601
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4660
__mutex_lock_common kernel/locking/mutex.c:1033 [inline]
__mutex_lock+0x3e2/0x10e0 kernel/locking/mutex.c:1103
add_one_compat_dev+0xea/0x800 drivers/infiniband/core/device.c:891
rdma_dev_init_net+0x2dc/0x480 drivers/infiniband/core/device.c:1133
ops_init+0xaf/0x470 net/core/net_namespace.c:152
setup_net+0x2d8/0x850 net/core/net_namespace.c:342
copy_net_ns+0x2cf/0x5e0 net/core/net_namespace.c:483
create_new_namespaces+0x3f6/0xb10 kernel/nsproxy.c:110
unshare_nsproxy_namespaces+0xbd/0x1f0 kernel/nsproxy.c:231
ksys_unshare+0x445/0x8e0 kernel/fork.c:2949
__do_sys_unshare kernel/fork.c:3017 [inline]
__se_sys_unshare kernel/fork.c:3015 [inline]
__x64_sys_unshare+0x2d/0x40 kernel/fork.c:3015
do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x45deb9
Code: Unable to access opcode bytes at RIP 0x45de8f.
RSP: 002b:00007f5f0785ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
RAX: ffffffffffffffda RBX: 0000000000038240 RCX: 000000000045deb9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c060000
RBP: 000000000118bff8 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4
R13: 00007ffc0abbb84f R14: 00007f5f0785f9c0 R15: 000000000118bfd4
INFO: task syz-executor.3:14857 blocked for more than 145 seconds.
Not tainted 5.10.0-rc4-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.3 state:D stack:27824 pid:14857 ppid: 8485 flags:0x00004004
Call Trace:
context_switch kernel/sched/core.c:3774 [inline]
__schedule+0x893/0x2130 kernel/sched/core.c:4523
schedule+0xcf/0x270 kernel/sched/core.c:4601
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4660
__mutex_lock_common kernel/locking/mutex.c:1033 [inline]
__mutex_lock+0x3e2/0x10e0 kernel/locking/mutex.c:1103
add_one_compat_dev+0xea/0x800 drivers/infiniband/core/device.c:891
rdma_dev_init_net+0x2dc/0x480 drivers/infiniband/core/device.c:1133
ops_init+0xaf/0x470 net/core/net_namespace.c:152
setup_net+0x2d8/0x850 net/core/net_namespace.c:342
copy_net_ns+0x2cf/0x5e0 net/core/net_namespace.c:483
create_new_namespaces+0x3f6/0xb10 kernel/nsproxy.c:110
unshare_nsproxy_namespaces+0xbd/0x1f0 kernel/nsproxy.c:231
ksys_unshare+0x445/0x8e0 kernel/fork.c:2949
__do_sys_unshare kernel/fork.c:3017 [inline]
__se_sys_unshare kernel/fork.c:3015 [inline]
__x64_sys_unshare+0x2d/0x40 kernel/fork.c:3015
do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x45deb9
Code: Unable to access opcode bytes at RIP 0x45de8f.
RSP: 002b:00007fbdbf458c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
RAX: ffffffffffffffda RBX: 0000000000038240 RCX: 000000000045deb9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000004a000000
RBP: 000000000118bf50 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c
R13: 00007ffc5770dbbf R14: 00007fbdbf4599c0 R15: 000000000118bf2c
INFO: task syz-executor.3:14866 blocked for more than 145 seconds.
Not tainted 5.10.0-rc4-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.3 state:D stack:27696 pid:14866 ppid: 8485 flags:0x00004004
Call Trace:
context_switch kernel/sched/core.c:3774 [inline]
__schedule+0x893/0x2130 kernel/sched/core.c:4523
schedule+0xcf/0x270 kernel/sched/core.c:4601
schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:4660
__mutex_lock_common kernel/locking/mutex.c:1033 [inline]
__mutex_lock+0x3e2/0x10e0 kernel/locking/mutex.c:1103
smc_pnet_create_pnetids_list net/smc/smc_pnet.c:799 [inline]
smc_pnet_net_init+0x245/0x400 net/smc/smc_pnet.c:866
ops_init+0xaf/0x470 net/core/net_namespace.c:152
setup_net+0x2d8/0x850 net/core/net_namespace.c:342
copy_net_ns+0x2cf/0x5e0 net/core/net_namespace.c:483
create_new_namespaces+0x3f6/0xb10 kernel/nsproxy.c:110
unshare_nsproxy_namespaces+0xbd/0x1f0 kernel/nsproxy.c:231
ksys_unshare+0x445/0x8e0 kernel/fork.c:2949
__do_sys_unshare kernel/fork.c:3017 [inline]
__se_sys_unshare kernel/fork.c:3015 [inline]
__x64_sys_unshare+0x2d/0x40 kernel/fork.c:3015
do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x45deb9
Code: Unable to access opcode bytes at RIP 0x45de8f.
RSP: 002b:00007fbdbf437c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
RAX: ffffffffffffffda RBX: 0000000000038240 RCX: 000000000045deb9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000004a000000
RBP: 000000000118bff8 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4
R13: 00007ffc5770dbbf R14: 00007fbdbf4389c0 R15: 000000000118bfd4
Showing all locks held in the system:
1 lock held by khungtaskd/1651:
#0: ffffffff8b337820 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 kernel/locking/lockdep.c:6252
3 locks held by kworker/u4:4/3068:
#0: ffff8880150cc138 ((wq_completion)tc_filter_workqueue){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
#0: ffff8880150cc138 ((wq_completion)tc_filter_workqueue){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
#0: ffff8880150cc138 ((wq_completion)tc_filter_workqueue){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
#0: ffff8880150cc138 ((wq_completion)tc_filter_workqueue){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:616 [inline]
#0: ffff8880150cc138 ((wq_completion)tc_filter_workqueue){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline]
#0: ffff8880150cc138 ((wq_completion)tc_filter_workqueue){+.+.}-{0:0}, at: process_one_work+0x821/0x15a0 kernel/workqueue.c:2243
#1: ffffc90001a0fda8 ((work_completion)(&(rwork)->work)){+.+.}-{0:0}, at: process_one_work+0x854/0x15a0 kernel/workqueue.c:2247
#2: ffffffff8c92b608 (rtnl_mutex){+.+.}-{3:3}, at: flow_destroy_filter_work+0xe/0x20 net/sched/cls_flow.c:382
1 lock held by in:imklog/8168:
#0: ffff88801b402870 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 fs/file.c:932
3 locks held by kworker/1:4/9700:
#0: ffff8881475c6538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
#0: ffff8881475c6538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
#0: ffff8881475c6538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
#0: ffff8881475c6538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:616 [inline]
#0: ffff8881475c6538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline]
#0: ffff8881475c6538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x821/0x15a0 kernel/workqueue.c:2243
#1: ffffc90016107da8 ((addr_chk_work).work){+.+.}-{0:0}, at: process_one_work+0x854/0x15a0 kernel/workqueue.c:2247
#2: ffffffff8c92b608 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0xa/0x20 net/ipv6/addrconf.c:4569
4 locks held by kworker/u4:5/9828:
#0: ffff888010e82938 ((wq_completion)netns){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
#0: ffff888010e82938 ((wq_completion)netns){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
#0: ffff888010e82938 ((wq_completion)netns){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
#0: ffff888010e82938 ((wq_completion)netns){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:616 [inline]
#0: ffff888010e82938 ((wq_completion)netns){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline]
#0: ffff888010e82938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x821/0x15a0 kernel/workqueue.c:2243
#1: ffffc90016667da8 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x854/0x15a0 kernel/workqueue.c:2247
#2: ffffffff8c919450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x9b/0xa00 net/core/net_namespace.c:566
#3: ffffffff8c92b608 (rtnl_mutex){+.+.}-{3:3}, at: cangw_pernet_exit+0xe/0x20 net/can/gw.c:1241
3 locks held by kworker/0:6/11273:
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:616 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x821/0x15a0 kernel/workqueue.c:2243
#1: ffffc90001a7fda8 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x854/0x15a0 kernel/workqueue.c:2247
#2: ffffffff8c92b608 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xa/0x20 net/switchdev/switchdev.c:74
3 locks held by kworker/0:9/11277:
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:616 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline]
#0: ffff888010064d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x821/0x15a0 kernel/workqueue.c:2243
#1: ffffc90001affda8 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x854/0x15a0 kernel/workqueue.c:2247
#2: ffffffff8c92b608 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xb/0x60 net/core/link_watch.c:250
2 locks held by syz-executor.4/14773:
#0: ffffffff8c919450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x2ac/0x5e0 net/core/net_namespace.c:479
#1: ffffffff8c92b608 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_init_net+0x321/0x9d0 net/ipv4/ip_tunnel.c:1062
6 locks held by syz-executor.2/14775:
#0: ffffffff8c919450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x2ac/0x5e0 net/core/net_namespace.c:479
#1: ffffffff8c654b50 (devices_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x25e/0x480 drivers/infiniband/core/device.c:1127
#2: ffffffff8c6548d0 (rdma_nets_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x2d1/0x480 drivers/infiniband/core/device.c:1132
#3: ffff88805c95cf80 (&device->compat_devs_mutex){+.+.}-{3:3}, at: add_one_compat_dev+0xea/0x800 drivers/infiniband/core/device.c:891
#4: ffff88805c95d1b8 (&rxe->usdev_lock){+.+.}-{3:3}, at: rxe_query_port+0x129/0x2d0 drivers/infiniband/sw/rxe/rxe_verbs.c:40
#5: ffffffff8c92b608 (rtnl_mutex){+.+.}-{3:3}, at: ib_get_eth_speed+0xeb/0x5c0 drivers/infiniband/core/verbs.c:1811
4 locks held by syz-executor.2/14778:
#0: ffffffff8c919450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x2ac/0x5e0 net/core/net_namespace.c:479
#1: ffffffff8c654b50 (devices_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x25e/0x480 drivers/infiniband/core/device.c:1127
#2: ffffffff8c6548d0 (rdma_nets_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x2d1/0x480 drivers/infiniband/core/device.c:1132
#3: ffff88805c95cf80 (&device->compat_devs_mutex){+.+.}-{3:3}, at: add_one_compat_dev+0xea/0x800 drivers/infiniband/core/device.c:891
4 locks held by syz-executor.3/14857:
#0: ffffffff8c919450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x2ac/0x5e0 net/core/net_namespace.c:479
#1: ffffffff8c654b50 (devices_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x25e/0x480 drivers/infiniband/core/device.c:1127
#2: ffffffff8c6548d0 (rdma_nets_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x2d1/0x480 drivers/infiniband/core/device.c:1132
#3: ffff88805c95cf80 (&device->compat_devs_mutex){+.+.}-{3:3}, at: add_one_compat_dev+0xea/0x800 drivers/infiniband/core/device.c:891
2 locks held by syz-executor.3/14866:
#0: ffffffff8c919450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x2ac/0x5e0 net/core/net_namespace.c:479
#1: ffffffff8c92b608 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:799 [inline]
#1: ffffffff8c92b608 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x245/0x400 net/smc/smc_pnet.c:866
1 lock held by syz-executor.5/14877:
=============================================
NMI backtrace for cpu 0
CPU: 0 PID: 1651 Comm: khungtaskd Not tainted 5.10.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:77 [inline]
dump_stack+0x107/0x163 lib/dump_stack.c:118
nmi_cpu_backtrace.cold+0x44/0xd7 lib/nmi_backtrace.c:105
nmi_trigger_cpumask_backtrace+0x1b3/0x230 lib/nmi_backtrace.c:62
trigger_all_cpu_backtrace include/linux/nmi.h:146 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:209 [inline]
watchdog+0xd43/0xfa0 kernel/hung_task.c:294
kthread+0x3af/0x4a0 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 522 Comm: kworker/u4:3 Not tainted 5.10.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
RIP: 0010:write_comp_data+0x2f/0x80 kernel/kcov.c:218
Code: 05 b6 c8 91 7e 65 48 8b 34 25 00 f0 01 00 a9 00 01 ff 00 74 0f f6 c4 01 74 59 8b 86 54 14 00 00 85 c0 74 4f 8b 86 30 14 00 00 <83> f8 03 75 44 48 8b 86 38 14 00 00 8b b6 34 14 00 00 4c 8b 00 48
RSP: 0018:ffffc90001fefba0 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 0000000000000400 RCX: ffffffff888c7906
RDX: 0000000000000400 RSI: ffff888012269a40 RDI: 0000000000000004
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000288 R11: 0000000000000000 R12: ffff88802ec2289c
R13: dffffc0000000000 R14: ffff88805e96cc00 R15: 0000000000000288
FS: 0000000000000000(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ff700cf2000 CR3: 0000000012d45000 CR4: 00000000001506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
batadv_iv_ogm_slide_own_bcast_window net/batman-adv/bat_iv_ogm.c:752 [inline]
batadv_iv_ogm_schedule_buff+0x7d6/0x1410 net/batman-adv/bat_iv_ogm.c:826
batadv_iv_ogm_schedule net/batman-adv/bat_iv_ogm.c:870 [inline]
batadv_iv_ogm_schedule net/batman-adv/bat_iv_ogm.c:863 [inline]
batadv_iv_send_outstanding_bat_ogm_packet+0x5c8/0x800 net/batman-adv/bat_iv_ogm.c:1724
process_one_work+0x933/0x15a0 kernel/workqueue.c:2272
worker_thread+0x64c/0x1120 kernel/workqueue.c:2418
kthread+0x3af/0x4a0 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296