syzbot

INFO: task syz.2.391:7548 blocked for more than 143 seconds.
      Not tainted 6.10.0-rc6-syzkaller-g8e2f4becf4fa #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.2.391       state:D stack:0     pid:7548  tgid:7548  ppid:6293   flags:0x00000009
Call trace:
 __switch_to+0x314/0x560 arch/arm64/kernel/process.c:553
 context_switch kernel/sched/core.c:5408 [inline]
 __schedule+0x14ac/0x24d8 kernel/sched/core.c:6745
 __schedule_loop kernel/sched/core.c:6822 [inline]
 schedule+0xbc/0x238 kernel/sched/core.c:6837
 coredump_task_exit+0x278/0x394 kernel/exit.c:435
 do_exit+0x1b0/0x1ac8 kernel/exit.c:828
 do_group_exit+0x194/0x22c kernel/exit.c:1023
 get_signal+0x1414/0x1530 kernel/signal.c:2909
 do_signal+0x238/0x3e8c arch/arm64/kernel/signal.c:1308
 do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148
 exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]
 el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713
 el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598
INFO: task syz.2.391:7549 blocked for more than 143 seconds.
      Not tainted 6.10.0-rc6-syzkaller-g8e2f4becf4fa #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.2.391       state:D stack:0     pid:7549  tgid:7548  ppid:6293   flags:0x00000009
Call trace:
 __switch_to+0x314/0x560 arch/arm64/kernel/process.c:553
 context_switch kernel/sched/core.c:5408 [inline]
 __schedule+0x14ac/0x24d8 kernel/sched/core.c:6745
 __schedule_loop kernel/sched/core.c:6822 [inline]
 schedule+0xbc/0x238 kernel/sched/core.c:6837
 coredump_task_exit+0x278/0x394 kernel/exit.c:435
 do_exit+0x1b0/0x1ac8 kernel/exit.c:828
 do_group_exit+0x194/0x22c kernel/exit.c:1023
 get_signal+0x1414/0x1530 kernel/signal.c:2909
 do_signal+0x238/0x3e8c arch/arm64/kernel/signal.c:1308
 do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148
 exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]
 el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713
 el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598
INFO: task syz.2.391:7570 blocked for more than 143 seconds.
      Not tainted 6.10.0-rc6-syzkaller-g8e2f4becf4fa #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.2.391       state:D stack:0     pid:7570  tgid:7548  ppid:6293   flags:0x00000005
Call trace:
 __switch_to+0x314/0x560 arch/arm64/kernel/process.c:553
 context_switch kernel/sched/core.c:5408 [inline]
 __schedule+0x14ac/0x24d8 kernel/sched/core.c:6745
 __schedule_loop kernel/sched/core.c:6822 [inline]
 schedule+0xbc/0x238 kernel/sched/core.c:6837
 coredump_task_exit+0x278/0x394 kernel/exit.c:435
 do_exit+0x1b0/0x1ac8 kernel/exit.c:828
 do_group_exit+0x194/0x22c kernel/exit.c:1023
 get_signal+0x1414/0x1530 kernel/signal.c:2909
 do_signal+0x238/0x3e8c arch/arm64/kernel/signal.c:1308
 do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148
 exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]
 el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713
 el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598

Showing all locks held in the system:
3 locks held by kworker/0:0/8:
 #0: ffff0000c0028948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 kernel/workqueue.c:3222
 #1: ffff800093fe7c20 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 kernel/workqueue.c:3222
 #2: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
4 locks held by kworker/u8:0/11:
 #0: ffff0000c1819948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 kernel/workqueue.c:3222
 #1: ffff800094f87c20 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 kernel/workqueue.c:3222
 #2: ffff800091fb2710 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x13c/0x9b4 net/core/net_namespace.c:594
 #3: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
1 lock held by khungtaskd/31:
 #0: ffff80008f387a60 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0xc/0x44 include/linux/rcupdate.h:328
2 locks held by kworker/u8:4/553:
3 locks held by kworker/u8:9/4548:
 #0: ffff0000d1b9f148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 kernel/workqueue.c:3222
 #1: ffff8000a01b7c20 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 kernel/workqueue.c:3222
 #2: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
2 locks held by getty/6043:
 #0: ffff0000d291b0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c drivers/tty/tty_ldsem.c:340
 #1: ffff800097f9b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x41c/0x1228 drivers/tty/n_tty.c:2211
1 lock held by syz.2.391/7571:
 #0: ffff0000d85ca420 (sb_writers#21){.+.+}-{0:0}, at: do_coredump+0x149c/0x2314 fs/coredump.c:766
1 lock held by syz-executor/9076:
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
1 lock held by syz-executor/9305:
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x704/0xe64 net/core/rtnetlink.c:6632
1 lock held by syz-executor/9327:
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x704/0xe64 net/core/rtnetlink.c:6632
1 lock held by syz-executor/9506:
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x704/0xe64 net/core/rtnetlink.c:6632
2 locks held by syz.2.684/9508:
 #0: ffff0000df9e5010 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:791 [inline]
 #0: ffff0000df9e5010 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: __sock_release net/socket.c:658 [inline]
 #0: ffff0000df9e5010 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x80/0x1e8 net/socket.c:1421
 #1: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
1 lock held by syz-executor/9514:
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x704/0xe64 net/core/rtnetlink.c:6632
1 lock held by syz-executor/9518:
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
 #0: ffff800091fbe968 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x704/0xe64 net/core/rtnetlink.c:6632

=============================================