last executing test programs:

540.233564ms ago: executing program 3:
userfaultfd(0x0)

529.22012ms ago: executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/msm', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/msm', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/msm', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/msm', 0x800, 0x0)

520.485509ms ago: executing program 4:
clock_adjtime(0x0, &(0x7f0000000000))

502.587885ms ago: executing program 0:
epoll_create(0x0)

502.522717ms ago: executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/btrfs-control', 0x800, 0x0)

491.819322ms ago: executing program 3:
process_madvise(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0)

481.160685ms ago: executing program 4:
utimes(&(0x7f0000000000), &(0x7f0000000000))

471.661658ms ago: executing program 2:
syz_open_dev$amidi(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$amidi(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$amidi(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$amidi(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$amidi(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$amidi(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$amidi(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$amidi(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$amidi(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$amidi(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$amidi(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$amidi(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$amidi(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$amidi(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$amidi(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$amidi(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$amidi(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$amidi(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$amidi(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$amidi(&(0x7f0000000500), 0x4, 0x800)

468.771271ms ago: executing program 3:
syz_open_dev$drirender(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$drirender(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$drirender(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$drirender(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$drirender(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$drirender(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$drirender(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$drirender(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$drirender(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$drirender(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$drirender(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$drirender(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$drirender(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$drirender(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$drirender(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$drirender(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$drirender(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$drirender(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$drirender(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$drirender(&(0x7f0000000500), 0x4, 0x800)

452.421686ms ago: executing program 4:
sched_setparam(0x0, &(0x7f0000000000))

449.25905ms ago: executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video37', 0x2, 0x0)

425.849285ms ago: executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_qlen_max', 0x2, 0x0)

423.553409ms ago: executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/pktcdvd/control', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pktcdvd/control', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/pktcdvd/control', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/pktcdvd/control', 0x800, 0x0)

417.121829ms ago: executing program 4:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bsg', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bsg', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bsg', 0x800, 0x0)

407.352301ms ago: executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb0', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fb0', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0', 0x800, 0x0)

393.103296ms ago: executing program 3:
munlock(0x0, 0x0)

391.247387ms ago: executing program 4:
sched_getscheduler(0x0)

379.578378ms ago: executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/keychord', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/keychord', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/keychord', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/keychord', 0x800, 0x0)

366.50079ms ago: executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_threshold', 0x2, 0x0)

360.935862ms ago: executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/lightnvm/control', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/lightnvm/control', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/lightnvm/control', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/lightnvm/control', 0x800, 0x0)

356.957853ms ago: executing program 4:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/damon/monitor_on', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/damon/monitor_on', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/damon/monitor_on', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/damon/monitor_on', 0x800, 0x0)

352.096747ms ago: executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uhid', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uhid', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uhid', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uhid', 0x800, 0x0)

332.955389ms ago: executing program 0:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

329.404525ms ago: executing program 2:
socket$nl_generic(0x10, 0x3, 0x10)

138.162119ms ago: executing program 1:
socket$xdp(0x2c, 0x3, 0x0)

87.026303ms ago: executing program 1:
sched_getattr(0x0, &(0x7f0000000000), 0x0, 0x0)

69.722862ms ago: executing program 1:
uname(&(0x7f0000000000))

57.326993ms ago: executing program 1:
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)

20.304137ms ago: executing program 1:
splice(0xffffffffffffffff, &(0x7f0000000000), 0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)

0s ago: executing program 1:
epoll_pwait2(0xffffffffffffffff, &(0x7f0000000000), 0x0, &(0x7f0000000000), &(0x7f0000000000), 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.111' (ED25519) to the list of known hosts.
2024/06/19 09:50:41 fuzzer started
2024/06/19 09:50:41 dialing manager at 10.128.0.169:30009
[   61.058052][ T5076] cgroup: Unknown subsys name 'net'
[   61.349295][ T5076] cgroup: Unknown subsys name 'rlimit'
2024/06/19 09:50:43 starting 5 executor processes
[   62.522034][ T5100] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   64.145005][ T5256] mmap: syz-executor.1 (5256) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   66.732694][ T5536] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   67.151619][ T5587] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   68.524367][ T4477] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   68.534350][ T4477] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   68.544691][ T4477] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   68.553329][ T4477] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   68.561563][ T4477] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   68.569718][ T4477] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   68.958890][ T1107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.967035][ T1107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.117460][ T1048] 
[   69.120052][ T1048] =============================
[   69.125013][ T1048] WARNING: suspicious RCU usage
[   69.130041][ T1048] 6.10.0-rc4-syzkaller-00045-g92e5605a199e #0 Not tainted
[   69.137174][ T1048] -----------------------------
[   69.142171][ T1048] net/netfilter/ipset/ip_set_core.c:1200 suspicious rcu_dereference_protected() usage!
[   69.151868][ T1048] 
[   69.151868][ T1048] other info that might help us debug this:
[   69.151868][ T1048] 
[   69.162848][ T1048] 
2024/06/19 09:50:49 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[   69.162848][ T1048] rcu_scheduler_active = 2, debug_locks = 1
[   69.171079][ T1048] 3 locks held by kworker/u8:5/1048:
[   69.176399][ T1048]  #0: ffff888015ed3148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[   69.188206][ T1048]  #1: ffffc90004387d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[   69.199414][ T1048]  #2: ffffffff8f5c7c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[   69.205876][ T1107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.209292][ T1048] 
[   69.209292][ T1048] stack backtrace:
[   69.223272][ T1048] CPU: 0 PID: 1048 Comm: kworker/u8:5 Not tainted 6.10.0-rc4-syzkaller-00045-g92e5605a199e #0
[   69.233544][ T1048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   69.243603][ T1048] Workqueue: netns cleanup_net
[   69.248411][ T1048] Call Trace:
[   69.251699][ T1048]  <TASK>
[   69.254931][ T1048]  dump_stack_lvl+0x241/0x360
[   69.259622][ T1048]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.264906][ T1048]  ? __pfx__printk+0x10/0x10
[   69.269591][ T1048]  lockdep_rcu_suspicious+0x221/0x340
[   69.275062][ T1048]  _destroy_all_sets+0x232/0x5f0
[   69.280018][ T1048]  ip_set_net_exit+0x20/0x50
[   69.284697][ T1048]  cleanup_net+0x802/0xcc0
[   69.289119][ T1048]  ? __pfx_cleanup_net+0x10/0x10
[   69.294142][ T1048]  ? process_scheduled_works+0x945/0x1830
[   69.299852][ T1048]  process_scheduled_works+0xa2c/0x1830
[   69.305416][ T1048]  ? __pfx_process_scheduled_works+0x10/0x10
[   69.311483][ T1048]  ? assign_work+0x364/0x3d0
[   69.316067][ T1048]  worker_thread+0x86d/0xd70
[   69.320663][ T1048]  ? __kthread_parkme+0x169/0x1d0
[   69.325685][ T1048]  ? __pfx_worker_thread+0x10/0x10
[   69.330786][ T1048]  kthread+0x2f0/0x390
[   69.334849][ T1048]  ? __pfx_worker_thread+0x10/0x10
[   69.340128][ T1048]  ? __pfx_kthread+0x10/0x10
[   69.344710][ T1048]  ret_from_fork+0x4b/0x80
[   69.349136][ T1048]  ? __pfx_kthread+0x10/0x10
[   69.353718][ T1048]  ret_from_fork_asm+0x1a/0x30
[   69.358493][ T1048]  </TASK>
[   69.378421][ T1107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.492742][ T1048] 
[   69.495318][ T1048] =============================
[   69.500471][ T1048] WARNING: suspicious RCU usage
[   69.505335][ T1048] 6.10.0-rc4-syzkaller-00045-g92e5605a199e #0 Not tainted
[   69.512888][ T1048] -----------------------------
[   69.517748][ T1048] net/netfilter/ipset/ip_set_core.c:1211 suspicious rcu_dereference_protected() usage!
[   69.527982][ T1048] 
[   69.527982][ T1048] other info that might help us debug this:
[   69.527982][ T1048] 
[   69.538428][ T1048] 
[   69.538428][ T1048] rcu_scheduler_active = 2, debug_locks = 1
[   69.546777][ T1048] 3 locks held by kworker/u8:5/1048:
[   69.552233][ T1048]  #0: ffff888015ed3148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[   69.563231][ T1048]  #1: ffffc90004387d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[   69.573932][ T1048]  #2: ffffffff8f5c7c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[   69.583655][ T1048] 
[   69.583655][ T1048] stack backtrace:
[   69.589653][ T1048] CPU: 0 PID: 1048 Comm: kworker/u8:5 Not tainted 6.10.0-rc4-syzkaller-00045-g92e5605a199e #0
[   69.599904][ T1048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   69.610053][ T1048] Workqueue: netns cleanup_net
[   69.614826][ T1048] Call Trace:
[   69.618099][ T1048]  <TASK>
[   69.621038][ T1048]  dump_stack_lvl+0x241/0x360
[   69.625722][ T1048]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.630922][ T1048]  ? __pfx__printk+0x10/0x10
[   69.635535][ T1048]  lockdep_rcu_suspicious+0x221/0x340
[   69.640927][ T1048]  _destroy_all_sets+0x53f/0x5f0
[   69.645969][ T1048]  ip_set_net_exit+0x20/0x50
[   69.650663][ T1048]  cleanup_net+0x802/0xcc0
[   69.655085][ T1048]  ? __pfx_cleanup_net+0x10/0x10
[   69.660465][ T1048]  ? process_scheduled_works+0x945/0x1830
[   69.666186][ T1048]  process_scheduled_works+0xa2c/0x1830
[   69.671748][ T1048]  ? __pfx_process_scheduled_works+0x10/0x10
[   69.677729][ T1048]  ? assign_work+0x364/0x3d0
[   69.682316][ T1048]  worker_thread+0x86d/0xd70
[   69.687003][ T1048]  ? __kthread_parkme+0x169/0x1d0
[   69.692049][ T1048]  ? __pfx_worker_thread+0x10/0x10
[   69.697171][ T1048]  kthread+0x2f0/0x390
[   69.701255][ T1048]  ? __pfx_worker_thread+0x10/0x10
[   69.706368][ T1048]  ? __pfx_kthread+0x10/0x10
[   69.710957][ T1048]  ret_from_fork+0x4b/0x80
[   69.715383][ T1048]  ? __pfx_kthread+0x10/0x10
[   69.719967][ T1048]  ret_from_fork_asm+0x1a/0x30
[   69.724747][ T1048]  </TASK>