last executing test programs: 2m9.974138461s ago: executing program 3: bpf$PROG_LOAD(0x5, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_PREPARE(0xffffffffffffffff, 0x4140, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f00000000c0)='wg0\x00', 0x4) connect$phonet_pipe(r0, &(0x7f0000000000)={0x23, 0x0, 0x7}, 0x10) 2m9.796262519s ago: executing program 3: syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000001040)='./file1\x00', 0x4040, &(0x7f00000015c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRES64, @ANYRES32, @ANYBLOB="cdf7c0c4ada580d5d36bd9080600000000b5112f75ca483652cf9b8a22555c3af34a84c5747ac51aa890ca205a0f27d7dde81ad3a01f21810b6de2d56be05416c54e1c6e7bdc4cab5e4da8b1581f7716b38db3d3f3bbeb6d1b846a2aad654e1795850a1f82ac738387d9c3009d18eb2a78258fcc4ac4eb6a12a5650e10ebf077d9ab33f24de7cbffe0", @ANYRESHEX], 0x2, 0xc2d, &(0x7f00000001c0)="$eJzs3U9sHNd9B/DfGy3FldxWTOwoThoXm7ZIZcVy9S+mYhXuqqbZBpBlIhRzC8AVSakLUyRBUo1spAXTSw89BCiKHnIi0BoFUjQwmiLokWldILn4UOTUE9HCRlD0wBYBcgoYzOxbcUmRNi2KEmV9Pjb13Z19b+a9eesZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxB+8cun0mfSwWwEAPEhXRr96+qz7PwA8Vq76/38AAAAAAAAAAAAAADjoUhTxZKSYu7KWxqv3HfXL7b5bt8eGhrevdiRVNQ9V5cuf+pmz585/6YXBC9283J75gPr322fjtdGrlxovz96cm59aWJiabIzNtCdmJ6d2vYe91t/qZHUCGjdfvzV5/fpC4+zz5zZ9fHvg/f4njg9cHHz21DPdsmNDw8OjG0XqveVr99yQjp1meByOIk5Fiue+99PUiogi9n4u6g927Lc6UnXiZNWJsaHhqiPT7dbMYvnhSPdEFBGNnkrN7jnafiyi1vdA+7CzZsRS2fyywSfL7o3OteZb16anGiOt+cX2Ynt2ZiR1Wlv2pxFFXEgRyxGx2n/37vqiiFqk+M6xtXQtIg51z8MXq4nBO7ej2Mc+7kLZzkZfxHLxCIzZAdYfRbwaKX72zomYyNeZ6lrzhYhXy/xBxFtlvhSRyi/G+Yj3tvke8WiqRRF/WY7/xbU0WV0PuteVy19rfGXm+mxP2e515SPeH+66Ujyk+8ORLflgHPBrUz2KaFVX/LV077/ZAQAAAAAAAAAAAAAAAOB+OxJFfCZSvPIff1LNK45qXvqxi4N/OPCrvXPGn/6Q/ZRln4+IpWJ3c3IP54mBI2kkpYc8l/hxVo8i/jTP//vWw24MAAAAAAAAAAAAAAAAAADAY62In0SKF989kZajd03x9syNxtXWtenOqrDdtX+7a6avr6+vN1InmznHcy7lXM65knM1ZxS5fs5mzvGcSzmXc67kXM0Zh3L9nM2c4zmXci7nXMm5mjNquX7OZs7xnEs5l3Ou5FzNGQdk7V4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgI+TIor4RaT49jfWUqSIaEaMRydX+h926wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAUn8q4vuRovFHzTvbahGRqn87TpS/nI/m4TI/Gc3BMl+K5qWcrSprzW89hPazN32piB9Hiv7623cGPI9/X+fdna9BvPXNjXefrXXyUPfDgff7nzh+7OLg8G88vdPrtF0DTl5uz9y63RgbGh4e7dlcy0f/ZM+2gXzc4v50nYhYeOPN11vT01Pz9/6i/Arsofoj9CLVHpeeelG9iNqBaMbD6TuPgfL+/16k+N13/7N7w+/c/+vxK513d+7w8fM/27j/v7h1R7u8/9e21sv3//Kevt39/8mebS/m34301SLqizfn+o5H1BfeePNU+2brxtSNqZnzp09/eXDwy+dO9x2OqF9vT0/1vLovpwsAAAAAAAAAAAAAAADgwUlF/H6kaP14LTUi4nY1X2vg4uCzp545FIeq+Vab5m2/Nnr1UuPl2Ztz81MLC1OTjbGZ9sTs5NRuD1evpnuNDQ3vS2c+1JF9bv+R+suzc2/Mt2/88eK2nx+tX7q2sDjfmtj+4zgSRUSzd8vJqsFjQ8NVo6fbrZmq6si2k+k/ur5UxH9FionzjfT5vC3P/986w3/T/P+lrTvap/n/n+jZVh4zpSJ+Hil+56+ejs9X7Twad52zXO7vIsXJC5/L5eJwWa7bhs5zBTozA8uy/xcp/ukXm8t250M+uVH2zK5P7COiHP9jkeL7f/Hd+M28bfPzH7Yf/6Nbd7RP4/9Uz7ajm55XsOeuk8f/VKR46cm347fytg96/kf32RsncuE7z+fYp/H/VM+2gXzc374/XQcAAAAAAAAAAHik9aUi/j5S/HC4ll7I23bz9/8mt+5on/7+16d7tk3en/WKPvTFnk8qAAAAABwQfamIn0SKG4tv35lDvXn+d8/8z9/bmP85lLZ8Wv05369Vzw24n3/+12sgH3d8790GAAAAAAAAAAAAAAAAAACAAyWlIl7I66mPV/P5J3dcT30lUrzyP8/lcul4Wa67DvxA9Wv9yuzMqUvT07MTrcXWtempxuhca2KqrPtUpFj728/lukW1vnp3vfnOGu8ba7HPR4rhf+iW7azF3l2b/KmNsmfKsp+IFP/9j5vLdtex/tRG2bNl2b+JFF//l+3LHt8oe64s+91I8aOvN7plj5Zlu89H/fRG2ecnZot9GBUAAAAAAAAAAAAAAAAAAAAeN32piD+PFP97c/nOXP68/n9fz9vKW9/sWe9/i9vVOv8D1fr/O72+l/X/q+cKLO10VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+HhKUcSbkWLuylpa6S/fd9Qvt2du3R4bGt6+2pFU1TxUlS9/6mfOnjv/pRcGL3Tzg+vfb5+J10avXmq8PHtzbn5qYWFqsjE2056YnZza9R72Wn+rk9UJaNx8/dbk9esLjbPPn9v08e2B9/ufOD5wcfDZU890y44NDQ+P9pSp9d3z0e+Sdth+OIr460jx3Pd+mn7YH1HE3s/Fh3x39tuRqhMnq06MDQ1XHZlut2YWyw9HuieiiGj0VGp2z9EDGIs9aUYslc0vG3yy7N7oXGu+dW16qjHSml9sL7ZnZ0ZSp7VlfxpRxIUUsRwRq/13764ving9Unzn2Fr61/6IQ93z8MUro189fXbndhT72MddKNvZ6ItYLh6BMTvA+qOIf44UP3vnRPxbf0QtOj/xhYhXy/xBxFvRGe9UfjHOR7y3zfeIR1Mtivj/cvwvrqV3+svrQfe6cvlrja/MXJ/tKdu9rjzy94cH6YBfm+pRxI+qK/5a+nf/XQMAAAAAAAAAAAAAAAAcIEX8eqR48d0TqZoffGdOcXvmRuNq69p0Z1pfd+5fd870+vr6eiN1splzPOdSzuWcKzlXc0aR6+dslllfXx/P75dyLudcybmaMw7l+jmbOcdzLuVczrmSczVn1HL9nM2c4zmXci7nXMm5mjMOyNw9AAAAAAAAAAAAAAAAAADg46Wo/knx7W+spfX+zvrS49HJFeuBfuz9MgAA//8hX/ir") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.throttle.io_serviced\x00', 0x275a, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0xc0086c43, &(0x7f0000000f40)=0x700) rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='.\x02\x00') 2m9.325748522s ago: executing program 3: syz_mount_image$f2fs(&(0x7f0000000200), &(0x7f0000000940)='./bus\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x25, 0x5586, &(0x7f00000079c0)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000540)='./file0\x00', &(0x7f0000000000)='devtmpfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x104000, 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00') mount$bind(&(0x7f0000000300)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0) mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x0) sendfile(r1, r0, 0x0, 0x100800001) 2m5.715673019s ago: executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000006a0003000000000000000000030000020000000008000e00000000d3"], 0x20}}, 0x0) 2m3.973345473s ago: executing program 3: sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f000000a400)={0x2020, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r0, &(0x7f0000008400)="92756f43b31ffe542788ef586b7c5a344424e3acac2590be6bbe37adface4a8f2e534ffe76a83a93f0b3680a72fddfde83f96d01982384e8d689219cb9669b14dbaa1b799f82ea1fc926126a4163618e16d4f94143a4e0f27c44fcef3920a0b3805ed4e78098d8689cc7791bd86648070718d238664332948d87866c8d2590fc0f017f9853abd9ed60b99f1aa6ae2dbd24ab6dbcebdb055246815ace147cc50fa3b2861148fcda374d5b203e51d72c45e4dde3e9ee9a47ffe458baf7bb49035135a8194aa1f0a83fa2abed56398f90daff679634619453f533f22583a6e0a4dc09e9de46684d5e0136e229510f3702cf3a4cd0065d3e5d3c419e38a80b070ca55010e082a9c510fd18cc0b26bb5e8e459e747befbc5c6b60ace80bf41417b7b78cf57e5b3984f0cdddc615c5e0000454d3f4a196fb6d18aa629cf0b0245f95ba958d86dc175616f8cd3ac473057dc3a5ff7107973326350107f4468e7ecd48d689b82c12d22ae5f1858302a1b4cfde8fd347a99ddcde40d1c49d9b5099fbccf09e782212be4b2ce36a2bc3c9ee794abffe72a5501e6c4f3f7f68b74761ffd6620609224a3bf11f655dadb5c8a5813b02fb46830e9ac6825f5d0e89910352eb3a58c0dd82d094f94dd2c85666f684a8f437bbd0e66b9f4d366117b67a054d212c4fbc287848cb0578391335d5d616b14d99a2e3df8e8a152d5de99bcefcaab5bb5cc71f3ddd66b379c104648e190e0b28a180d3aecc5423575d4ba7dbf31215c717da7b87dd454b6efcd36c91aaa631127f5bd88723d221752f102bc0c7ac6c5c7a1ad6747af40d01b6d39eab7b0e1292b44683c586386ad00acf60fb8f9bac551a6eb5bab7317b5d89f64db10bd9018dfa6d65d93862e851afbc30fd70fe5f0de322462045177231852ca80e4e78da4fea0c79ba354333026c8bc77d308a8d256a19ec45d2088c196691d3f9aac28ded36004a65ee1ce49ba9599ceee84534bb61d02d04a6732f1e27d72962f74b59f3522bf844c5022986d55934e48b8681b7f5b7532391448caeef00315d28320a46d8bd7813544e1e4bf994e14a519c2654ff20b42bdb69c262897e28eca528f0999840b00ed8256597d27cfc20d71d5f40d0bbca759f7594c6034aa1e16a84ed152fad0fdc1c303a7f61225712714f823afc5ea241d482d3585759623af8c97ca6a84a2033b3d7314ea0ef7ba9b288b362a294c92c8b9736829c16f61c5a1ee04aca965d71162292274595ea62c9c2918e8279c99f5d2830c617c58211fd7452330184b9428d5ec1d5cd75ddcc6de3326fdc70e891104b3b013c30ffccfaf3308d9671b01f6b080a930dac2052c6f39817a662121d90d40d6a1facfb50bec7d408030b6d0ae3e744f3bcc327c35dc43cf86b743db78ff2e593b19923235ed6467f299b08718fe1840c16a748935dff941150fb08b30573b37bf9af5c86cc8d9e229a832e4ef25ec91f71120f2b3e9062485976c280a2d172386029e2f2a4801197fca0a13514edacf5ddbac5a62e8bb13dd1572657a821a8739297f72e29239d1cdddf3e30cbe9af3141f2275ee4ae85d86ec888fe9a6751f252057e95b8beb055e276439581afee93cd44f1e92f70e5f725451d3ab662918ffbb1269509fbd511e95a00ec717f9d60d643864abd6ad1cc4dd7f933379a6078a86c2158db8076e7b660366fca7b1c46d09d2c8e67a6494bfb4c2c6750e76593895b5e2b2bc78093840c3c4a807826bc2750a96b4e1dd5b82b492bb2215518c92064d1763c37132604e52e73fac3f4511f791753aeecfbb19816e0da7a1bfbea9eeaa0f256eaedcb119a61f7d0ea0f5cd4969d45cb014800f2c888d5c2217cf0f69a7507779883b57352bb8883cc584891950d6e792537074f4fc4337aa19b9bf60e18edd939d289fb4a6b7aa6c66da20774e249ca4f779d3c910b1a9a8e4c38af6adecc87d5481d181fd66023ffff246f4e2556b218fe8110acebe20b1675f1de6f265b6d1d8514a53522396bf0e2f2b153c498e48b36d16f8b9bd56f45d7f5b9397d7f1339117a176d0bad0b68e800682416d3e18fe2197c7f8dc20600feb95cc6ba86ad47f113e159bd4389e30eab2874bd27eebc56020c4dab9973b13f3e82aa62a7e0a151d73de48cb811e32be63ffd303f5a6ea6f097ed763fbf36c430821e451146de79922348354ce285af0997bf3c66e6ef02942e24b8f1ccdd542f09cfe65c0da0094c0b5fd26bbc061538b41e5ed2cbb390ee29b10a4b7a696009e1b5b86c44c0a561a257c15415feaeb1433ea275ed6e4b228503fe71ee5942665164faaed6697112206be0fe7863aebd4bbe951d5dea1da294dba0793196385f4d5141c9d6c4b0fa22b2e200cfb70b52aca31655e71e5a576ccb8ccb5b1364748aa981edbb81a813b1aebc67be1f7619e7e197622d981280429f6ca5145c5b3b05e6bace9191e5c58fbf140f71f594cbfd4db0e9f6923f1758ff9474a61a720a5d4f09c622c3ce3f5d0d3a1d191111168108f41f12b16e9eaf3617c353715cd35260560cbfd0555d51ce5c40bbdb7c95ceaeadadb8902974de50b0863348183864f5ea682e678286a06a6f396af29a7c7fb33a3579e25835963612f3c0d4cf369d85959a0adeda94d35824050e6fba7f83f90867583f713d7783323c7010e94c9be331f860db395dbde6face5bfdb616fcefa9c6b01f6963daa840a31ff554a458c0c50cb5e09f91f54f63234589decaf45bbfbaef0dcbff4ae6e65ca26a530261c491ef8eb9a855a1d7463391c9b66be96cf24c3c321ee5a5bdc857f60b582683c6ae1e3775b62a9f19ff8fa51380ca8a2a3c6de79012f5727ba12025e7e6723a23a81e067ca6e54c7b38ff64880d235d21e7ee5258953dcbf9e2a962f006ca4ffe870859242c850cbae4222b3b72c4f86934379ba2ead1dcde906241b994d95c88355af5a9a30ace9c933a6942f341ad221dd825846a8fd44c03e2eaa9311c26e15a1bd7cbba961a22ef23d7ebba0e34cec5ef09b1ce72814a97e33bd29f3d9ec80a4f45d1d29486accf15c11f1a800bd84918e7626f678275d7c7acb02cc0e6e34bb766ba6b75c3ad14fca9352e09c3b69390c045cfc842ff9ade8ca693c07fadc7047a946e6e570c3afc5b501c964103397f5ddadc2d59a048348dd42f07cfe31bc9b5ae453f5086bb41bba4c8a3e518e30b0855184b053f923025dd72ce1bcbf41231978b34a8547c71d7313992165078903c61d312b0d9469413c9fd97ccdf0ea270fb6c47ec8861a1c8d909eeace761b5a06ba46e25785ff87f867777abb237c6c980687991f1ed0157d58492260c712cec34c1fc0962103955db4d5090b6e8409cf3c3c79d0e691cf4fbc0b2251a016dcd456969cd32e5429533bf0d6f8bda84c05f0e2040de8b53bfb8676eec4b76c3df6f46b1e43732035dda577e75f640777f6ae90fd2f1af42ba462dac732019c599bfef01acd6a0d4d1796bcb8f58519d6f9ad9a3206704a94d472516b988141f44ecd2e6f28a49aa0c449db87972fc995a97379914546ea43143ea2cf779a9cbe81f111fe89129db3610492164ab2598eca7e60d9a6963d8ba03a86729db86e420fd96d61b8fb11edc2b339b57a740074ae5b775eaf60cd85dc934e604bf2b4bd58ee01205b4df57ac20ff8db45a05982b579643882407050c005102a2e71f1e56dc76dbf5331112e83e48bfb5cf2a78a893190d78426175c162ffaa7278a43b9932318fc17fb8cb0dfac610b1ad235b91f9cb7623b155117e07f7b876a3c37627aa31eafed141cc0c5491c4f621a66b6d837a144d78719c46511c04a093cf65fce9fabe5bd6d499eceb63538ece3cf19053550a239bf978c08c879f9954485a4e3e0d5bedb84b407ced85c4dfc4d75af116815992c29f0bc927c4a990c38ae4fcc9feb90fec1b1b555e04d010423010855394d5ccfc8ed21164190cd8f83be5debb70290c3547f07e4dc42814f1e001798e6ceee2558b0c6ff8c1759f90269ee226131116332b99ac8dd104c92088e1f91ace3198c0f59bfb75c4e4a697660eed43a29c831a552de37fce6dce96fa51b6e2111f3071a4e94422d15e102e5f67da7ca6cae6bed7743ebffacb8a811a143605791d17232181a517e872f71262c3c73668f0ef83aad498f67fa26bae698cf78f24c2dbecd399a190e6b8d0684e929f2e8083765eb2c67793a1adbb89d36b58bfb197cdc5f3c894ac9d886e8f3b0936fabd233c09de8fab8099f72a74d908ba5c5e4d39790b0bf9e45b710f5587b7c937c76690c5c5fce621a53a9fd03b0a4ee6d8d1abbe2ed561820a77f12a08cad0755540ab6dd1604b7c30a8652995ab80b85e919011de9438a4637eb0291124ed4b745e782cff98510cb03be79c2a81351abf276584d75cdd96b9c97e73eb71000b3ab7c3c19c2cab4497298fcb3052b5d4503d05e7f310318be6f848547b1a4f4db82caee190801478be28065036aa4d91f290c1f396343e73a5fe8bb5ccf0a317177ed1f77acda1a4a49dccfcab8d1b5d79f015f788b6d5e9f8228a8bcdc0696e6b19f5edffbcd7e9509c87fbe1f726b93bf8c6d8d37428763e142560c46c9e894f7317859000c25abc4f3691ebcd020171e0d4911b5d97a238109aedeb00b2eb475c1e7b45175f8aa85193b5c0f43b434c15de01610c4d022646cd6e3637f349a434a77f571ac1c5d698452d1b991e267f78dca5e592ecd31ccafcad84e4e98d134b4adc525b81bd6843428883023a6ea407201738c8bf16b541ff7280274a34d4cf14819f2dbae167ca0cae8471c495e006b45194ad91c4516f21cbb10e0d26fd5d734cd7725df5b3fbe92955f4a9bb3b9b813aeeff79d6ed5db92def19d060a208c3ec8c42c110786f1e1496c50a7249b03fc792764366894a35320b99d0bef9fd0b6a246c36a357c6b985dc83a37a8d9b8b9ad643dea94860cbe763bb73cc8422b69d4d12332242c8954075fb7117a6679638073617abcdb4619855b2036af160647f66b3531645a3bf047ae290d6ae2249f114e7a8464278bae1486022bcc7c37390c8d9a0efb0e1cfa0da8ef7a5e072f99a47ecc75e4e442880375193db49bb82ba34901286ca473ed5b63e4048db4dc455e74b3fdd2e7898ca3f4c3a02d435cde6141eea645055123a7dcf0d22057f8d425701afc55859f5147954e719d58c7486b1e02ac16cb799b77632c66bb78e6e52e11017c1736424fa4d433f1e19b4c881d23f0b2a12d5fae3ae24339088088d9b496ad97bd9f6e20a8597d1452a0c72dcf43dbbda8f18166585c06d21fbffe5fe7b55f71c9b9f1b34a02bd05ca63c7c1b1bebbb9dd24fb10291b04c665d45154dd28b85d821ce7e613119128996785e1006a8dabc4899b10d2671107d5a0658ed363b9d4b39d02f8cc5e350fbf0a31048adecd1f9e2ca749bd86f195eb48e9b4605f050de03d642940d79184618f7f88a9a0a4683ad84d6134e395305bc1d4d9d17cc334b97653529d6682a87a5fac80a6d46d6e72fc22e58be7b8f8617b3372ef2622110ab1ec448717118b257acffe55d18c7855e9e8710ad977a6792b2315a189eb4468c68641e9b60c0dab7016ac1ad63cd8004b6eca8fc88b1e4263acc00499255c16b11487a0af858075f9c892dc8044c4146e5a5677c4a2cb24bde5e078985020d4ab1e4c87492e76b7e6f4bbd71d84bab1885c9702849e70cf728776b1a94c2a8fb8c7ca01b6111ef6f2032a290949bfe473fe215273b8b5b3ad540f187490f63077dccbca6f62f0a7a66717c596cdef412f2560b10685ede967b3ee68b8c951959aeb1d7564c3b9d806b2ce858381393a79916b78f7e90beadae30ffc0b2b614380f1c2cc551a44565209db3516be379ef566ab00c673fd8aaeeecdcf1168c1960e9a477b9e13757498a44ff089351d1f27abf9fd76816f924504647d1247715ca861ebe624172c322146d66eb2b247f8ecb3e1b5ddca89b287c57510cec40fcf89d802cf4368a861af320e01e34f7a6177d4bc549181b5e87ecdfe02f78c9a59a3bf91ebb6364023ec06410e7b4476ec4e3685bfa3bfe9ef9ecc12dcd899abe0f3c7f16b4686801c0c0a949aa26bed57df56f2bc54ef19af7fcbc7b0d691075f42a4a67acf980b568acb2342f42249f7c1ee3527c13182b096064ecd250887a942d26f637e1c4041b139659d2462a68680bb04387a3b399e396b9fe74de10356125fa47d0a20827370cbf36a79b6fffade91c439dd6cfff4bbe0dd3efefb61c491ee32f935d62307cba369ac8c20f6fe3d4857ce6d240ece5e4d149f0587155a8350fcc18efae2ff11cdbe15218a82499a1996df8b5462ee170b284321e76bbe5c3f4158387644d95f087c598e3d46fbe27f63fa784bda239512113424045a2c5dbc6bc3662ca730a86d13cf8f6fe2743224ca7b535caf6b4701a7dae9cfad3d7290104bbba15b6a064ae6e909a099f75fbe47c9e654d8e3b8dc0f3dbffe829e6c56f7a241e565136812a857f59ab565a9991c6b1d8abcc94c6b33bba314f6e5060e657e4647f969a551dd6c51dfca0ff5d9e4f401fedbc2c927eb1ed95ef25f4e5accba4999322ba1539499310dd5875433a22835cfd42fd77fd4680b7fe767d7aa5c33acde04a65bd3a663fcde4c80e9f2af498f13bf9abbaa1c1265edc691e94abdcc92270c05811cd2a8104eb18efbfec9e4ba9ae5cde211b9b93082ce034b6cd5fbe9cfbac4f7e2404ef159766124f73017cc3600f3c81cd78db25fc3459629eaf20dfdb062c7e502aa69412381d847a9d254d5befc451cda3606f0bc8ae62e0aee928f9ed0b21d705a8d31b899e16445ee064563d32f7b6bb5ad197023cf528d9b329ec67815c6ddf27d2a6ffa7328bb993407cde3d166159fd49fe469254b84c2916daea8df9d69bef019f1351b9bce193e30278835b82ea5f60dc0bdd7f7452b7a820ae7cd6dc29d7ac6a6c1b6411711a96338b1e769146b2a385d282bfaae61b041166efafab2d89a4567b9460cc22d752f8e9aacaaa0db7c84879f5359662d55df6570d4214740851c74574ced733807cbb54571110410892394c3dea07bd4154d0e5689d57c3360207dac951f96a358e9c466a5c5113f3a632e184f57f075edef4dcc9721b963beb95df09dedf848260cbc1ebfdc7408218eaba6d2c51928cd37c4c0c9f321fbb0994a56947cfd9643056db5dbea60a241f8f004c932bc8e645b2ec2eb9bc4e9e2f4156293234d05e70cb26b8a370b0206c756bda6defc11c5eb386640f535a4ffb714168defc6d82f40d8f5ba8768537ead5773c53bd779ca899a2dd31c9138569ff5107c2fb12b804375c3b3dc9b828bfd550328adf358f71e86a0c49fb119f5ef9e06c13855cbfc7d1a62ca2ea655ed912a6dc7bb8b18656e8923fc7a1702ab36947d79384d681c31923e98cf40209f776bc2b219a7ccd139e756a905aa351e6eaae90770c8a193f96cd5c66e4d77a357985556e14333716d80204a5c390e0d76f4081afe917f99ad8a0976b3342f51854b374b4baa9a7f22124d2b82749446e30d9795acb9c3c3a305a6d273ac528e8e9c95c37a78e765fdda55982c2961fbc85a14fc095a78b4654ee6dfc3298749a639ab9c8e155af3a77f8a409ce174532a492ef550a140f774d77d732b3b4ca5bc41fa4488ce5957ce219b032ae1f585273748d81b19edcf3e6cb9a93ec24e41c6b3c472f9baf3ca46cb8b9a91df18acebe7d83bd4473750c4f26806da2f95b9ea48b342460af729ab15e9f033eda67feec645f985d4b9489cf6ceec1b100d007bf46c74be53c7ea17296f9c5b5cbae736491213c93b513009ebdecfcd60d46d7b86c6e3b5e288f2ba5867c07936e7bd1b00de52191eb8630ff82ccafb27a59295164751811bf74eff1e5e2abdf3c93bc5dc9814be83b2562477935e2fa30db7ebb6ec380170cf10c1f98f8c5eb71c730c2b31b55a1dd1c12a64802ab95b63c529e0a96cec8f38680221d6089926d8309796c79994d63b67bfb62f66b4a502f30ed12be41e896e88bc45a160a526fbd5f002e677322f116ec5740d7563cd23ee853c008b84998e38fdf158556e28a532573956e7c00f91f08ca245c295a3d5e003a99ea727f61d12893b435d4c8f2f5cce00c6a3091e2a47f290c07168975c53d7529b71d10faf42d2bac9db8d53669cf59c709c25e9e40b5feaed4c37dde8b84c4961c00712326fb6aaa06e80d766b40b72480f3971def61d1d129676df2478e778d899ed317426ec33e496d1fdd2ec27128f8faee92828e13da72d6aee8330a7988ea1cc8b64ec4d8b20990864c16c52c4be6d00b304b87d97bffdd9c66a740b517223089d9f3f414abedc53c768dab9220b980e6c18d5f20ba8994cc8886d7bdee213442f456d79fce1b1eb48fbf600a666c8ade24d118e6328251cf7b57a6285c650e019850f392b1c29aec5c8fc489a3819d60d5de377d4c11b8ee5625b7c02c5d50d2af3397006f2e2a41a06f039229eef5878ed91f9f6be7e988924dbaeb8455f616275e8698d93fb536e2c839b203aa69bceceddbf9c53f8addba53d50ca0f7a4729a42ac6eb757f1b408ad4a0147546173e62f7621eb18a9e1681510cceb48e0a30ab7a1bf71d56742d5f034f2d725e7ea68a011dbb100fa6eefe4ee093873de366d34f4240ca027a25c5b979c9ac47dd1dcb6ed82c4aee09dcc23cf329a8644f89b5cf00e5683934b1837574e9b39b31b1009f276e15aa040959fdf100838ca3f5ab17e45036668d06044e3a13f3a0a6f68579e50d5b0164f900d7bcfcde78396cf30f0b1dff76dc397ab1a5a44b207eb1eaaf73b945c575029ae2dce20724991e6550155ded6a42672609f2439c5aab4882b2ffaf7da787b71d05d15516bd68c6f1a9d79b675395845f24ee853f877e72c14b6c6702f7b8775ca1bfabbbcf4019f7bccf07f1c211531dfc66a7a1df79e92a20dd1cbe1b22e1209e7e3ecb9d3c2450fc22a57bfe09bd735f61c361cdac2488ae0adc7885edc0712655daaf535e1de96ccbe7869d531d8bf3db512fbd17c772332a3f8cf1e052ee0202eb99a36a0f8d7219888acbb57090cdaf3b28e1e62e8fc2ec237bdf18592a7afe4d8390dcb5e7fcc31bf4f797e6f5710070902265cc2e8c459b7da1451046abd6c8c5b02c0be2d2f505a65376266563ac7b59ef3b4e2570a6cb0bd94d46ad861317c743ce1de12bfa2295a98cdded4414d87a1580b1e4675bbdf73a22cac4a1d8d456d089e0b60cbfd16158f073bd1dac481db49fa5d8801d0fb0844b4afec1bab4e61fa0f381fa667880a1cd8163953be7b591cc9dfd7f91902370b783ae8a0f3c7cbefa7d229a37c00f523529e159b11d2e240629b64af2d11404773e991207a722c320221ce23baed7cbe40a440c5680814b122cfba9092fe03478f85adcbdeacb76d6cbf2491eafae98327b278e267821a0e1cd06ef90cb0328e246c19d8c63b9332291a89bc9f989effc675c79a870ac024756c6f5a7e32babd69625d61487ae7399490b70dd0fade7d70ad9b0757300a2dde77abaff4f63a0303853589d44efa968e10d36561f04408ad0cc227fc6b2f904cead189a0fcca9b2e6cbde5498652e0b3bc9d8b7921474403718feb5cc750dc70f5a9b1a0ae2c642015b6a1a8ab0572182b4e39e0c869cbdc60c9465f5d564d18ba2f5b3bc3e05a458744077430c5ea031ee02dd8f0a65d7dd8d90dd9b8717f77d202239a5778719423fb2aec7ca86eb07c39de65a34b988d65377a7473e9145f16d79593e96903330bbf3a8024fc15519d9baa0fae2018786f4b1846fca355ff0fccf65cccad1896309a5ccf2056dd542c929850cc91cd655962360fe316557ab3fb378328f77a07d9da24447d3fa2020b382ed2e808ec9529a01273434c64b0b7c35a06a019e4ab51cdc9c0f266ab25b6984338a0ba910d1060283b636c5d7e8a3f969c1ee1c99b54bba7ff3679fbeecbb70349f076480a867cc4ee4cacaea39c80f642533599486d2ffb77b8c9109a9d25fa0b06e58eca764f7d56469eb9547036bbea9d5c3d35b4c1fbc3d39a372c2b7ad184965cad3819c8928f1588d00949949c0c4c93d30ac7f6665247c0108bd89dff3aafe780ac66febfacc8c6a3cc387d09da6de700487a80e2c8d56df94d7ebd3e1d9e06411a6c5f7eb6da41c6f52997b5ad47ba985261103fdf12eb4a2828b248f652ef00b6abccab2eb161b878b9dbc0aa911405b6f67adda83c16187748d7b524ffe6381f489f432d592e6171bd9ccb2cd52f977143f57fbf2ab0b823d449ae55f02440972334344cda01837b93afa4f46a2fdefe27e92764cf9596780846de2e3b1ea83e62ee43b1c05aee675e25363504addfaa68e7c53ed685413f5ba951f120d0a646e474872c81e5a887464c19f8460ae814ffff24cb51dd2dca28d597ab2ea60949f8dbbe67f263e722fdb51bce4e328a19f5ff1218e1f63b8da6d40dbd5490964499b2522ea323310634893ead661407966207a66ab13adfcf1a725ed14339c46011c0e0401f2386b47cd9f902fdf84bc85e74d3ae7cc544e4d65670a554a537712c6ee9f75191631d2a4c4da06fc38423b1d5b828d7201235b2974164f52aa16bee70ee509250752f4fdd6b9f8d021943df8320682a6f80ff0d67ab7a4ceea807bd5b3b7b6380b0c7f0caa67b0208ba71317f0355a3b755af0e2c007186389438615df80b7b25104a733fc90625b62682198733c0f1625dfaa08cf81e3df043094b7b5a098b3b36f803b5b0f10a057bf814ae3579932c0a5f208985bab3d817f975283b8838ae5cb709be72b58df7425e059fdbf4e0ee51b3da01fe0b44963c1196baee5ec5909ad80d9d1660f3edd90374952a0bf8b3bece2c2f944593f4de7de5e05ded096b8f4f05d65dfc2e806f78220d84b3db564fb12f4e5e8f5eab316591f004e9374cce8e787263bc3827affe6793c130b8621d3bbb2a86fd87f070ea21718281ee7aec4bb3bb71af4bf5721cecd139c4be8c9df4ec8dfb09a5cf1d86a25d39faa9f064a997c214f334e4410917fc3b4d67ada8d87a38c0f86b02bf653dddaeb5b75b300f8bcfd792858bef8ab23e063421939c59212964c9ed5dd56e215db58cef53d31a966bb8ce4ed56287fecb3a85ba435e0b41b20ba1164b9c9f2c49fa0f7b17a89e0ec47eefe992d63ee29c8c0a1ece2664fee8edadd43636a54c48519b4fcf55b0d9103602b92441a5f85cf8c5e406d0f5815f8f37309934bd78fbc2acf0a03b051b4528db4f7c09de7d0aabafca3736b8259c818ca338ca6754e0747717c2794d664a1cacc1e9c52764a308e6df73d975638630b74cce6c49b1bac16454e96852c4f9d8ed118e86d2f1c8dc33bccd4a07be128db5e80f5684ddcc1158e744411acde590f902f0987cfb750bb5bfeed53bff076868986b566d7701f48ddfcacbd325c8d930bcef26713bf60585d5c991e2a6cc33ccbc27f7ddfba18f998497c2eb378cc8f2cc07a1b4f141c5e0fb6f52e18242e505bcf6dd20e33a469d056a0b4fd5e72d0da9d0bcce1e2f9e9dc7d1c7b6cb0f3604287eca", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000}}}, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0x0, r1}, 0x50) openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0) 2m2.593884252s ago: executing program 3: syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x53d, &(0x7f0000000a80)="$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") syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) r0 = open(&(0x7f0000000140)='./bus\x00', 0x1eb142, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0x2047ffb, 0x800006, 0x11, r0, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x9) r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8) 1m24.703848309s ago: executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000900)=@newsa={0x154, 0x10, 0x713, 0x0, 0x0, {{@in=@loopback, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in6=@local, 0x0, 0x32}, @in=@dev, {}, {}, {}, 0x0, 0x0, 0xa, 0x4}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @replay_esn_val={0x1c}]}, 0x154}}, 0x0) 1m24.552800798s ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000e800000000000000290e0095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)={0x14, r2, 0x321, 0x0, 0x0, {0x7}}, 0x14}}, 0x0) 1m24.376451373s ago: executing program 1: syz_mount_image$ext4(&(0x7f0000000800)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2040d0, &(0x7f0000000c40)={[{@jqfmt_vfsv0}, {@abort}, {@barrier}, {@barrier}, {@test_dummy_encryption}, {@nomblk_io_submit}]}, 0xfb, 0x49f, &(0x7f0000001440)="$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") mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, 0x0) chdir(&(0x7f0000000140)='./file0\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]}) mkdir(&(0x7f0000000040)='./file0/file0\x00', 0x0) rmdir(&(0x7f00000002c0)='./bus/file0\x00') 1m23.123789563s ago: executing program 1: unshare(0x8000400) r0 = mq_open(&(0x7f0000000040)='!selinuxsel\xad\"\x0e\xabx\xb8\xc9\xa8x\x00', 0x6e93ebbbcc0884f2, 0x0, 0x0) mq_notify(r0, &(0x7f0000000200)) mq_notify(r0, 0x0) 1m20.352341643s ago: executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) listen(r1, 0x0) syz_emit_ethernet(0x6e, &(0x7f0000000040)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x38, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xe, 0xc2, 0x0, 0x0, 0x0, {[@mptcp=@add_addr={0x1e, 0x12, 0x0, 0x3, 0x0, @local, 0x0, "e4869b1006d44a6f"}, @mptcp=@add_addr={0x1e, 0x11, 0x0, 0x11, 0x0, @dev, 0x0, "20f0ddf9a66acb"}]}}}}}}}}, 0x0) 1m19.864465064s ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x0, 0x0, {{}, {}, {0xd, 0x17, {0x0, 0x0, @udp='udp:syz1\x00'}}}}, 0x34}}, 0x0) 42.078203434s ago: executing program 2: r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$netlink(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000140)=ANY=[@ANYBLOB="e000000010000905000000000000fafd17ff030000a90000002b0e13e735a3184f12540eee4f6abf8fe63d6da2f1acfac0ee3dd2b184b27db1f3020000bf852c8c4894d4c6d9ad9db6f28e256e815244e4ce2d712828"], 0xe0}], 0x1}, 0x0) 41.679646817s ago: executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x5, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="6400000002060108000000000000000000b5000016000300686173683a6e65742c706f72742c6e65740000000900020073797a30000000000500040000000000140007800800124000000000080008400000000005000500020000000500010006"], 0x64}}, 0x0) 41.398489894s ago: executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f0000000100)=0xc) syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000180)='./file2\x00', 0x2200886, &(0x7f00000003c0)={[{@iocharset={'iocharset', 0x3d, 'cp936'}}, {@iocharset={'iocharset', 0x3d, 'cp1255'}}, {@uid={'uid', 0x3d, r1}}, {@uid={'uid', 0x3d, r1}}, {}, {@resize}, {@discard, 0x0}, {@umask}, {@resize}, {@discard}, {@resize_size={'resize', 0x3d, 0x9}}, {@errors_remount}, {@resize}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}]}, 0x4, 0x6172, &(0x7f0000006880)="$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") 40.008415615s ago: executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x12) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x11) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000100)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) 39.390357751s ago: executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x21, 0x8}, 0x48) 39.117107324s ago: executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)={0x20, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x4}]}, 0x20}}, 0x0) 37.67801984s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000950000000000000033bd4725bcb2811470878e3991f2983737293cca63fcbdaf13c8b268ae82ccc39e73be0b08266a9d8e8a24d8ee152d853fc6564e4c1e9c1bc9926ac83b49941452ab30936f3faee17f05e537207c003144a499f9d3ff8bb64dc0398f4957018830b461e14fcf15cba275d235e178576e350ab685d4b20003c1"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00'}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000480), 0x111002, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00'}) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r4}, 0x0, &(0x7f0000000540)}, 0x20) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='ext4_request_blocks\x00', r5}, 0x10) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='ext4_allocate_inode\x00', r1}, 0x10) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0x220104, 0xe2a4, 0x1}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11}, 0x48) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x8, 0x4, 0x4, 0x7}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r8, &(0x7f0000000bc0), 0x20000000}, 0x20) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000001940), 0x2000cc0, r7}, 0x38) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x1b, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240), 0x0, 0x2, r7}, 0x38) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0x5}, 0x8) write$cgroup_freezer_state(r6, &(0x7f0000000440)='FREEZING\x00', 0x9) 35.834769529s ago: executing program 0: r0 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f0000000080)=0x6) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ppoll(&(0x7f00000001c0)=[{r0}, {r1}], 0x2, 0x0, 0x0, 0x0) 35.542385503s ago: executing program 2: syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socket(0x21, 0x3, 0x0) syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000340), 0x204040, 0x0) mkdir(0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f0000000080)=@v2={0x2, @aes256, 0x8, '\x00', @d}) preadv(r0, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x8000000, &(0x7f0000000080)={&(0x7f00000007c0)=ANY=[@ANYBLOB="2c0000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="bf8500000000000004002b8008001b"], 0x2c}}, 0x0) memfd_create(0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0xb}, 0x48) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00'}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r3}, 0x10) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x1000}, 0x4) r4 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x1000}, 0x4) close(0xffffffffffffffff) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000800000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x44}}, 0x4c04) r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='./file0/file0\x00', r6, &(0x7f00000000c0)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010000000000f400040000000000000020"], 0x1c, 0x0) renameat2(r6, &(0x7f00000001c0)='./file0\x00', r6, &(0x7f00000002c0)='./file0/file0\x00', 0x0) 34.304681689s ago: executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000ad7800000000000000005de995"], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000400)='kfree\x00', r0}, 0x10) r1 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000040)='source', &(0x7f0000000f80)='//\xf2b\x06\b\xba\xdfXo\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b/Q9\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce//\xb4/\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b [ 831.883102][ C0] DEBUG: waiting rtnl_mutex for 2479 jiffies. [ 831.883117][ C0] task:syz-executor.2 state:D stack:21024 pid:10936 tgid:10936 ppid:10934 flags:0x00000002 [ 831.883161][ C0] Call Trace: [ 831.883172][ C0] [ 831.883189][ C0] __schedule+0x17e8/0x4a20 [ 831.883247][ C0] ? __pfx___schedule+0x10/0x10 [ 831.883289][ C0] ? __pfx_lock_release+0x10/0x10 [ 831.883322][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 831.883373][ C0] ? schedule+0x90/0x320 [ 831.883403][ C0] schedule+0x14b/0x320 [ 831.883438][ C0] schedule_preempt_disabled+0x13/0x30 [ 831.883470][ C0] __mutex_lock+0x6a4/0xd70 [ 831.883510][ C0] ? __mutex_lock+0x527/0xd70 [ 831.883547][ C0] ? wg_set_device+0x102/0x2160 [ 831.883577][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 831.883617][ C0] ? dev_get_by_name+0x25/0x2d0 [ 831.883651][ C0] ? dev_get_by_name+0x28c/0x2d0 [ 831.883688][ C0] ? rtnl_lock+0xe7/0x130 [ 831.883718][ C0] wg_set_device+0x102/0x2160 [ 831.883786][ C0] ? __pfx___nla_validate_parse+0x10/0x10 [ 831.883825][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 831.883894][ C0] ? __nla_parse+0x40/0x60 [ 831.883948][ C0] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 831.883989][ C0] genl_rcv_msg+0xb14/0xec0 [ 831.884015][ C0] ? mark_lock+0x9a/0x360 [ 831.884068][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 831.884127][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 831.884158][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 831.884187][ C0] ? __pfx___might_resched+0x10/0x10 [ 831.884238][ C0] netlink_rcv_skb+0x1e3/0x430 [ 831.884279][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 831.884310][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 831.884382][ C0] genl_rcv+0x28/0x40 [ 831.884407][ C0] netlink_unicast+0x7ea/0x980 [ 831.884450][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 831.884480][ C0] ? __virt_addr_valid+0x183/0x520 [ 831.884520][ C0] ? __check_object_size+0x49c/0x900 [ 831.884553][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 831.884587][ C0] netlink_sendmsg+0x8db/0xcb0 [ 831.884639][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 831.884678][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 831.884709][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 831.884741][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 831.884778][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 831.884812][ C0] __sock_sendmsg+0x221/0x270 [ 831.884855][ C0] __sys_sendto+0x3a4/0x4f0 [ 831.884944][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 831.885004][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 831.885041][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 831.885079][ C0] __x64_sys_sendto+0xde/0x100 [ 831.885115][ C0] do_syscall_64+0xf3/0x230 [ 831.885141][ C0] ? clear_bhb_loop+0x35/0x90 [ 831.885172][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 831.885199][ C0] RIP: 0033:0x7f3bfb67eb9c [ 831.885223][ C0] RSP: 002b:00007ffdb79e8f90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 831.885254][ C0] RAX: ffffffffffffffda RBX: 00007f3bfc2e4620 RCX: 00007f3bfb67eb9c [ 831.885282][ C0] RDX: 0000000000000170 RSI: 00007f3bfc2e4670 RDI: 0000000000000005 [ 831.885303][ C0] RBP: 0000000000000000 R08: 00007ffdb79e8fe4 R09: 000000000000000c [ 831.885322][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005 [ 831.885341][ C0] R13: 0000000000000000 R14: 00007f3bfc2e4670 R15: 0000000000000000 [ 831.885380][ C0] [ 831.885392][ C0] DEBUG: waiting rtnl_mutex for 2469 jiffies. [ 831.885409][ C0] task:syz-executor.4 state:D stack:21024 pid:10946 tgid:10946 ppid:10944 flags:0x00004002 [ 831.885455][ C0] Call Trace: [ 831.885466][ C0] [ 831.885483][ C0] __schedule+0x17e8/0x4a20 [ 831.885544][ C0] ? __pfx___schedule+0x10/0x10 [ 831.885581][ C0] ? __pfx_lock_release+0x10/0x10 [ 831.885615][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 831.885667][ C0] ? schedule+0x90/0x320 [ 831.885698][ C0] schedule+0x14b/0x320 [ 831.885733][ C0] schedule_preempt_disabled+0x13/0x30 [ 831.885766][ C0] __mutex_lock+0x6a4/0xd70 [ 831.885801][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 831.885832][ C0] ? __mutex_lock+0x527/0xd70 [ 831.885870][ C0] ? nsim_destroy+0x71/0x5c0 [ 831.885898][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 831.885939][ C0] ? __pfx_mntput_no_expire+0x10/0x10 [ 831.885982][ C0] ? rtnl_lock+0xe7/0x130 [ 831.886013][ C0] nsim_destroy+0x71/0x5c0 [ 831.886048][ C0] __nsim_dev_port_del+0x14b/0x1b0 [ 831.886083][ C0] nsim_dev_reload_destroy+0x28a/0x490 [ 831.886120][ C0] ? __pfx_nsim_bus_remove+0x10/0x10 [ 831.886157][ C0] nsim_drv_remove+0x58/0x160 [ 831.886191][ C0] device_release_driver_internal+0x4a9/0x7c0 [ 831.886239][ C0] bus_remove_device+0x34f/0x420 [ 831.886283][ C0] device_del+0x57a/0x9b0 [ 831.886328][ C0] ? __pfx_device_del+0x10/0x10 [ 831.886373][ C0] device_unregister+0x20/0xc0 [ 831.886408][ C0] del_device_store+0x363/0x480 [ 831.886452][ C0] ? __pfx_del_device_store+0x10/0x10 [ 831.886500][ C0] ? sysfs_kf_write+0x182/0x2a0 [ 831.886532][ C0] ? bus_attr_store+0x4f/0xa0 [ 831.886565][ C0] ? __pfx_sysfs_kf_write+0x10/0x10 [ 831.886596][ C0] kernfs_fop_write_iter+0x3a1/0x500 [ 831.886634][ C0] vfs_write+0xa72/0xc90 [ 831.886667][ C0] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 831.886699][ C0] ? __pfx_vfs_write+0x10/0x10 [ 831.886752][ C0] ksys_write+0x1a0/0x2c0 [ 831.886786][ C0] ? __pfx_ksys_write+0x10/0x10 [ 831.886814][ C0] ? do_syscall_64+0x100/0x230 [ 831.886846][ C0] ? do_syscall_64+0xb6/0x230 [ 831.886875][ C0] do_syscall_64+0xf3/0x230 [ 831.886902][ C0] ? clear_bhb_loop+0x35/0x90 [ 831.886935][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 831.886964][ C0] RIP: 0033:0x7f4e6e67bbef [ 831.886986][ C0] RSP: 002b:00007ffd60744090 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 831.887016][ C0] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f4e6e67bbef [ 831.887037][ C0] RDX: 0000000000000001 RSI: 00007ffd607440e0 RDI: 0000000000000005 [ 831.887056][ C0] RBP: 00007f4e6e6da2aa R08: 0000000000000000 R09: 00007ffd60743ee7 [ 831.887076][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 831.887094][ C0] R13: 00007ffd607440e0 R14: 00007f4e6f2e4620 R15: 0000000000000003 [ 831.887134][ C0] [ 831.887146][ C0] DEBUG: waiting rtnl_mutex for 2449 jiffies. [ 831.887162][ C0] task:kworker/1:0 state:D stack:20760 pid:25 tgid:25 ppid:2 flags:0x00004000 [ 831.887208][ C0] Workqueue: events linkwatch_event [ 831.887248][ C0] Call Trace: [ 831.887259][ C0] [ 831.887283][ C0] __schedule+0x17e8/0x4a20 [ 831.887343][ C0] ? __pfx___schedule+0x10/0x10 [ 831.887376][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 831.887409][ C0] ? __pfx_lock_release+0x10/0x10 [ 831.887443][ C0] ? kick_pool+0x45c/0x620 [ 831.887482][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 831.887513][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 831.887552][ C0] ? schedule+0x90/0x320 [ 831.887583][ C0] schedule+0x14b/0x320 [ 831.887618][ C0] schedule_preempt_disabled+0x13/0x30 [ 831.887650][ C0] __mutex_lock+0x6a4/0xd70 [ 831.887691][ C0] ? __mutex_lock+0x527/0xd70 [ 831.887729][ C0] ? linkwatch_event+0xe/0x60 [ 831.887759][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 831.887806][ C0] ? process_scheduled_works+0x945/0x1830 [ 831.887836][ C0] ? rtnl_lock+0xe7/0x130 [ 831.887864][ C0] ? process_scheduled_works+0x945/0x1830 [ 831.887895][ C0] linkwatch_event+0xe/0x60 [ 831.887921][ C0] process_scheduled_works+0xa2c/0x1830 [ 831.887986][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 831.888028][ C0] ? assign_work+0x364/0x3d0 [ 831.888066][ C0] worker_thread+0x86d/0xd50 [ 831.888116][ C0] ? __kthread_parkme+0x169/0x1d0 [ 831.888154][ C0] ? __pfx_worker_thread+0x10/0x10 [ 831.888186][ C0] kthread+0x2f0/0x390 [ 831.888221][ C0] ? __pfx_worker_thread+0x10/0x10 [ 831.888252][ C0] ? __pfx_kthread+0x10/0x10 [ 831.888296][ C0] ret_from_fork+0x4b/0x80 [ 831.888330][ C0] ? __pfx_kthread+0x10/0x10 [ 831.888366][ C0] ret_from_fork_asm+0x1a/0x30 [ 831.888421][ C0] [ 831.888436][ C0] [ 831.888436][ C0] Showing all locks held in the system: [ 831.888454][ C0] 3 locks held by kworker/1:0/25: [ 831.888472][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 831.888552][ C0] #1: ffffc900001f7d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 831.888629][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 831.888714][ C0] 2 locks held by kworker/u8:5/947: [ 831.888735][ C0] 3 locks held by kworker/u8:6/1039: [ 831.888752][ C0] #0: ffff888029be4948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 831.888829][ C0] #1: ffffc90003ecfd00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 831.888906][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 831.889004][ C0] 5 locks held by kworker/u8:7/3216: [ 831.889021][ C0] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 831.889096][ C0] #1: ffffc9000a20fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 831.889171][ C0] #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 831.889244][ C0] #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 831.889335][ C0] #4: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 831.889423][ C0] 2 locks held by getty/4848: [ 831.889440][ C0] #0: ffff88802a6d70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 831.889522][ C0] #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 831.889607][ C0] 1 lock held by syz-executor.4/5369: [ 831.889625][ C0] 7 locks held by syz-executor.0/5814: [ 831.889642][ C0] #0: ffff88801eec8420 (sb_writers#18){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 [ 831.889728][ C0] #1: ffff888058f786c0 (&type->i_mutex_dir_key#11){+.+.}-{3:3}, at: path_openat+0x7d3/0x3280 [ 831.889820][ C0] #2: ffffffff8e210d80 (console_lock){+.+.}-{0:0}, at: vprintk_emit+0x4ed/0x900 [ 831.889902][ C0] #3: ffffffff8e210990 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 831.889974][ C0] #4: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 831.890056][ C0] #5: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 831.890136][ C0] #6: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 831.890216][ C0] 2 locks held by syz-executor.2/6410: [ 831.890247][ C0] 1 lock held by syz-executor.1/10927: [ 831.890270][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 831.890355][ C0] 3 locks held by syz-executor.2/10936: [ 831.890372][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 831.890442][ C0] #1: ffffffff8f655b88 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0 [ 831.890514][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: wg_set_device+0x102/0x2160 [ 831.890587][ C0] 4 locks held by syz-executor.0/10940: [ 831.890605][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 831.890682][ C0] #1: ffff88802354d088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 831.890756][ C0] #2: ffff8880222f8a58 (kn->active#51){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 831.890837][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: new_device_store+0x1b4/0x890 [ 831.890922][ C0] 7 locks held by syz-executor.4/10946: [ 831.890939][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 831.891016][ C0] #1: ffff888023a02088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 831.891089][ C0] #2: ffff8880222f8b48 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 831.891171][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 831.891252][ C0] #4: ffff88808565b0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0 [ 831.891340][ C0] #5: ffff88808565a250 (&devlink->lock_key#19){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160 [ 831.891422][ C0] #6: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0 [ 831.891495][ C0] 1 lock held by syz-executor.3/10968: [ 831.891513][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 831.891597][ C0] [ 831.891607][ C0] ============================================= [ 831.891607][ C0] [ 832.916951][ C0] DEBUG: holding rtnl_mutex for 2577 jiffies. [ 832.916982][ C0] task:kworker/u8:7 state:D stack:20944 pid:3216 tgid:3216 ppid:2 flags:0x00004000 [ 832.917041][ C0] Workqueue: netns cleanup_net [ 832.917081][ C0] Call Trace: [ 832.917093][ C0] [ 832.917112][ C0] __schedule+0x17e8/0x4a20 [ 832.917182][ C0] ? __pfx___schedule+0x10/0x10 [ 832.917220][ C0] ? __pfx_lock_release+0x10/0x10 [ 832.917252][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 832.917292][ C0] ? kthread_data+0x52/0xd0 [ 832.917326][ C0] ? wq_worker_sleeping+0x66/0x240 [ 832.917362][ C0] ? schedule+0x90/0x320 [ 832.917392][ C0] schedule+0x14b/0x320 [ 832.917428][ C0] synchronize_rcu_expedited+0x684/0x830 [ 832.917473][ C0] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 832.917531][ C0] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 832.917570][ C0] ? __pfx___might_resched+0x10/0x10 [ 832.917599][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 832.917632][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 832.917665][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 832.917711][ C0] synchronize_rcu+0x11b/0x360 [ 832.917750][ C0] ? __pfx_synchronize_rcu+0x10/0x10 [ 832.917804][ C0] lockdep_unregister_key+0x4b7/0x540 [ 832.917842][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 832.917882][ C0] ? team_uninit+0x383/0x3e0 [ 832.917916][ C0] ? __pfx_team_uninit+0x10/0x10 [ 832.917949][ C0] unregister_netdevice_many_notify+0x10c5/0x16b0 [ 832.918001][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 832.918043][ C0] ? unregister_netdevice_queue+0x26b/0x370 [ 832.918079][ C0] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 832.918123][ C0] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 832.918180][ C0] default_device_exit_batch+0xa0f/0xa90 [ 832.918266][ C0] ? __pfx___might_resched+0x10/0x10 [ 832.918310][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 832.918374][ C0] ? cfg802154_pernet_exit+0xc3/0xe0 [ 832.918433][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 832.918487][ C0] cleanup_net+0x89d/0xcc0 [ 832.918523][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 832.918571][ C0] ? process_scheduled_works+0x945/0x1830 [ 832.918603][ C0] process_scheduled_works+0xa2c/0x1830 [ 832.918668][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 832.918711][ C0] ? assign_work+0x364/0x3d0 [ 832.918748][ C0] worker_thread+0x86d/0xd50 [ 832.918798][ C0] ? __kthread_parkme+0x169/0x1d0 [ 832.918836][ C0] ? __pfx_worker_thread+0x10/0x10 [ 832.918867][ C0] kthread+0x2f0/0x390 [ 832.918898][ C0] ? __pfx_worker_thread+0x10/0x10 [ 832.918925][ C0] ? __pfx_kthread+0x10/0x10 [ 832.918962][ C0] ret_from_fork+0x4b/0x80 [ 832.918996][ C0] ? __pfx_kthread+0x10/0x10 [ 832.919031][ C0] ret_from_fork_asm+0x1a/0x30 [ 832.919092][ C0] [ 832.919105][ C0] DEBUG: waiting rtnl_mutex for 2595 jiffies. [ 832.919121][ C0] task:syz-executor.1 state:D stack:19968 pid:10927 tgid:10927 ppid:10926 flags:0x00000002 [ 832.919173][ C0] Call Trace: [ 832.919185][ C0] [ 832.919201][ C0] __schedule+0x17e8/0x4a20 [ 832.919260][ C0] ? __pfx___schedule+0x10/0x10 [ 832.919296][ C0] ? __pfx_lock_release+0x10/0x10 [ 832.919330][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 832.919381][ C0] ? schedule+0x90/0x320 [ 832.919411][ C0] schedule+0x14b/0x320 [ 832.919446][ C0] schedule_preempt_disabled+0x13/0x30 [ 832.919479][ C0] __mutex_lock+0x6a4/0xd70 [ 832.919519][ C0] ? __mutex_lock+0x527/0xd70 [ 832.919557][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 832.919598][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 832.919647][ C0] ? rtnl_lock+0xe7/0x130 [ 832.919677][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 832.919720][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 832.919762][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 832.919798][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 832.919842][ C0] ? __pfx_validate_chain+0x10/0x10 [ 832.919880][ C0] ? __pfx_validate_chain+0x10/0x10 [ 832.919918][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 832.919958][ C0] ? mark_lock+0x9a/0x360 [ 832.919991][ C0] ? __pfx_validate_chain+0x10/0x10 [ 832.920031][ C0] ? __lock_acquire+0x1359/0x2000 [ 832.920082][ C0] ? mark_lock+0x9a/0x360 [ 832.920121][ C0] ? __lock_acquire+0x1359/0x2000 [ 832.920185][ C0] netlink_rcv_skb+0x1e3/0x430 [ 832.920223][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 832.920265][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 832.920328][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 832.920367][ C0] netlink_unicast+0x7ea/0x980 [ 832.920411][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 832.920441][ C0] ? __virt_addr_valid+0x183/0x520 [ 832.920482][ C0] ? __check_object_size+0x49c/0x900 [ 832.920516][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 832.920551][ C0] netlink_sendmsg+0x8db/0xcb0 [ 832.920616][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 832.920651][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 832.920688][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 832.920720][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 832.920752][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 832.920791][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 832.920825][ C0] __sock_sendmsg+0x221/0x270 [ 832.920869][ C0] __sys_sendto+0x3a4/0x4f0 [ 832.920908][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 832.920969][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 832.921005][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 832.921046][ C0] __x64_sys_sendto+0xde/0x100 [ 832.921081][ C0] do_syscall_64+0xf3/0x230 [ 832.921109][ C0] ? clear_bhb_loop+0x35/0x90 [ 832.921149][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 832.921180][ C0] RIP: 0033:0x7fc12947eb9c [ 832.921204][ C0] RSP: 002b:00007fff433a4530 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 832.921235][ C0] RAX: ffffffffffffffda RBX: 00007fc12a0e4620 RCX: 00007fc12947eb9c [ 832.921258][ C0] RDX: 000000000000002c RSI: 00007fc12a0e4670 RDI: 0000000000000003 [ 832.921278][ C0] RBP: 0000000000000000 R08: 00007fff433a4584 R09: 000000000000000c [ 832.921297][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 832.921315][ C0] R13: 0000000000000000 R14: 00007fc12a0e4670 R15: 0000000000000000 [ 832.921354][ C0] [ 832.921366][ C0] DEBUG: waiting rtnl_mutex for 2597 jiffies. [ 832.921382][ C0] task:kworker/u8:6 state:D stack:21040 pid:1039 tgid:1039 ppid:2 flags:0x00004000 [ 832.921430][ C0] Workqueue: ipv6_addrconf addrconf_dad_work [ 832.921470][ C0] Call Trace: [ 832.921482][ C0] [ 832.921499][ C0] __schedule+0x17e8/0x4a20 [ 832.921558][ C0] ? __pfx___schedule+0x10/0x10 [ 832.921595][ C0] ? __pfx_lock_release+0x10/0x10 [ 832.921629][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 832.921670][ C0] ? kthread_data+0x52/0xd0 [ 832.921700][ C0] ? schedule+0x90/0x320 [ 832.921731][ C0] ? wq_worker_sleeping+0x66/0x240 [ 832.921766][ C0] ? schedule+0x90/0x320 [ 832.921797][ C0] schedule+0x14b/0x320 [ 832.921832][ C0] schedule_preempt_disabled+0x13/0x30 [ 832.921865][ C0] __mutex_lock+0x6a4/0xd70 [ 832.921899][ C0] ? mark_lock+0x9a/0x360 [ 832.921936][ C0] ? __mutex_lock+0x527/0xd70 [ 832.921975][ C0] ? addrconf_dad_work+0xd0/0x16f0 [ 832.922014][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 832.922064][ C0] ? rtnl_lock+0xe7/0x130 [ 832.922094][ C0] addrconf_dad_work+0xd0/0x16f0 [ 832.922148][ C0] ? __pfx_addrconf_dad_work+0x10/0x10 [ 832.922187][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 832.922235][ C0] ? process_scheduled_works+0x945/0x1830 [ 832.922265][ C0] process_scheduled_works+0xa2c/0x1830 [ 832.922330][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 832.922373][ C0] ? assign_work+0x364/0x3d0 [ 832.922410][ C0] worker_thread+0x86d/0xd50 [ 832.922453][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 832.922490][ C0] ? __kthread_parkme+0x169/0x1d0 [ 832.922528][ C0] ? __pfx_worker_thread+0x10/0x10 [ 832.922560][ C0] kthread+0x2f0/0x390 [ 832.922595][ C0] ? __pfx_worker_thread+0x10/0x10 [ 832.922626][ C0] ? __pfx_kthread+0x10/0x10 [ 832.922663][ C0] ret_from_fork+0x4b/0x80 [ 832.922696][ C0] ? __pfx_kthread+0x10/0x10 [ 832.922732][ C0] ret_from_fork_asm+0x1a/0x30 [ 832.922787][ C0] [ 832.922799][ C0] DEBUG: waiting rtnl_mutex for 2597 jiffies. [ 832.922814][ C0] task:syz-executor.3 state:D stack:21024 pid:10968 tgid:10968 ppid:10966 flags:0x00004002 [ 832.922859][ C0] Call Trace: [ 832.922870][ C0] [ 832.922887][ C0] __schedule+0x17e8/0x4a20 [ 832.922945][ C0] ? __pfx___schedule+0x10/0x10 [ 832.922981][ C0] ? __pfx_lock_release+0x10/0x10 [ 832.923015][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 832.923066][ C0] ? schedule+0x90/0x320 [ 832.923097][ C0] schedule+0x14b/0x320 [ 832.923138][ C0] schedule_preempt_disabled+0x13/0x30 [ 832.923171][ C0] __mutex_lock+0x6a4/0xd70 [ 832.923211][ C0] ? __mutex_lock+0x527/0xd70 [ 832.923249][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 832.923290][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 832.923339][ C0] ? rtnl_lock+0xe7/0x130 [ 832.923369][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 832.923412][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 832.923455][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 832.923491][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 832.923535][ C0] ? __pfx_validate_chain+0x10/0x10 [ 832.923573][ C0] ? __pfx_validate_chain+0x10/0x10 [ 832.923611][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 832.923650][ C0] ? mark_lock+0x9a/0x360 [ 832.923683][ C0] ? __pfx_validate_chain+0x10/0x10 [ 832.923723][ C0] ? __lock_acquire+0x1359/0x2000 [ 832.923774][ C0] ? mark_lock+0x9a/0x360 [ 832.923814][ C0] ? __lock_acquire+0x1359/0x2000 [ 832.923871][ C0] netlink_rcv_skb+0x1e3/0x430 [ 832.923908][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 832.923950][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 832.924013][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 832.924052][ C0] netlink_unicast+0x7ea/0x980 [ 832.924095][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 832.924125][ C0] ? __virt_addr_valid+0x183/0x520 [ 832.924172][ C0] ? __check_object_size+0x49c/0x900 [ 832.924205][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 832.924240][ C0] netlink_sendmsg+0x8db/0xcb0 [ 832.924292][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 832.924326][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 832.924361][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 832.924392][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 832.924424][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 832.924463][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 832.924497][ C0] __sock_sendmsg+0x221/0x270 [ 832.924541][ C0] __sys_sendto+0x3a4/0x4f0 [ 832.924579][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 832.924639][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 832.924676][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 832.924717][ C0] __x64_sys_sendto+0xde/0x100 [ 832.924752][ C0] do_syscall_64+0xf3/0x230 [ 832.924780][ C0] ? clear_bhb_loop+0x35/0x90 [ 832.924814][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 832.924843][ C0] RIP: 0033:0x7f5b4367eb9c [ 832.924866][ C0] RSP: 002b:00007ffc03fb9b80 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 832.924953][ C0] RAX: ffffffffffffffda RBX: 00007f5b442e4620 RCX: 00007f5b4367eb9c [ 832.924972][ C0] RDX: 0000000000000028 RSI: 00007f5b442e4670 RDI: 0000000000000003 [ 832.924989][ C0] RBP: 0000000000000000 R08: 00007ffc03fb9bd4 R09: 000000000000000c [ 832.925006][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 832.925023][ C0] R13: 0000000000000000 R14: 00007f5b442e4670 R15: 0000000000000000 [ 832.925057][ C0] [ 832.925069][ C0] DEBUG: waiting rtnl_mutex for 2584 jiffies. [ 832.925085][ C0] task:syz-executor.2 state:D stack:21024 pid:10936 tgid:10936 ppid:10934 flags:0x00000002 [ 832.925136][ C0] Call Trace: [ 832.925151][ C0] [ 832.925168][ C0] __schedule+0x17e8/0x4a20 [ 832.925231][ C0] ? __pfx___schedule+0x10/0x10 [ 832.925267][ C0] ? __pfx_lock_release+0x10/0x10 [ 832.925299][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 832.925351][ C0] ? schedule+0x90/0x320 [ 832.925381][ C0] schedule+0x14b/0x320 [ 832.925416][ C0] schedule_preempt_disabled+0x13/0x30 [ 832.925448][ C0] __mutex_lock+0x6a4/0xd70 [ 832.925488][ C0] ? __mutex_lock+0x527/0xd70 [ 832.925526][ C0] ? wg_set_device+0x102/0x2160 [ 832.925556][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 832.925596][ C0] ? dev_get_by_name+0x25/0x2d0 [ 832.925629][ C0] ? dev_get_by_name+0x28c/0x2d0 [ 832.925666][ C0] ? rtnl_lock+0xe7/0x130 [ 832.925696][ C0] wg_set_device+0x102/0x2160 [ 832.925743][ C0] ? __pfx___nla_validate_parse+0x10/0x10 [ 832.925781][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 832.925840][ C0] ? __nla_parse+0x40/0x60 [ 832.925876][ C0] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 832.925916][ C0] genl_rcv_msg+0xb14/0xec0 [ 832.925942][ C0] ? mark_lock+0x9a/0x360 [ 832.925985][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 832.926044][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 832.926075][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 832.926104][ C0] ? __pfx___might_resched+0x10/0x10 [ 832.926154][ C0] netlink_rcv_skb+0x1e3/0x430 [ 832.926190][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 832.926221][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 832.926293][ C0] genl_rcv+0x28/0x40 [ 832.926318][ C0] netlink_unicast+0x7ea/0x980 [ 832.926361][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 832.926391][ C0] ? __virt_addr_valid+0x183/0x520 [ 832.926431][ C0] ? __check_object_size+0x49c/0x900 [ 832.926463][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 832.926498][ C0] netlink_sendmsg+0x8db/0xcb0 [ 832.926549][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 832.926589][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 832.926620][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 832.926652][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 832.926690][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 832.926725][ C0] __sock_sendmsg+0x221/0x270 [ 832.926768][ C0] __sys_sendto+0x3a4/0x4f0 [ 832.926805][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 832.926865][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 832.926901][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 832.926941][ C0] __x64_sys_sendto+0xde/0x100 [ 832.926975][ C0] do_syscall_64+0xf3/0x230 [ 832.927002][ C0] ? clear_bhb_loop+0x35/0x90 [ 832.927035][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 832.927063][ C0] RIP: 0033:0x7f3bfb67eb9c [ 832.927085][ C0] RSP: 002b:00007ffdb79e8f90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 832.927114][ C0] RAX: ffffffffffffffda RBX: 00007f3bfc2e4620 RCX: 00007f3bfb67eb9c [ 832.927142][ C0] RDX: 0000000000000170 RSI: 00007f3bfc2e4670 RDI: 0000000000000005 [ 832.927161][ C0] RBP: 0000000000000000 R08: 00007ffdb79e8fe4 R09: 000000000000000c [ 832.927180][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005 [ 832.927199][ C0] R13: 0000000000000000 R14: 00007f3bfc2e4670 R15: 0000000000000000 [ 832.927237][ C0] [ 832.927248][ C0] DEBUG: waiting rtnl_mutex for 2573 jiffies. [ 832.927263][ C0] task:syz-executor.4 state:D stack:21024 pid:10946 tgid:10946 ppid:10944 flags:0x00004002 [ 832.927307][ C0] Call Trace: [ 832.927318][ C0] [ 832.927335][ C0] __schedule+0x17e8/0x4a20 [ 832.927392][ C0] ? __pfx___schedule+0x10/0x10 [ 832.927428][ C0] ? __pfx_lock_release+0x10/0x10 [ 832.927461][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 832.927521][ C0] ? schedule+0x90/0x320 [ 832.927551][ C0] schedule+0x14b/0x320 [ 832.927585][ C0] schedule_preempt_disabled+0x13/0x30 [ 832.927617][ C0] __mutex_lock+0x6a4/0xd70 [ 832.927651][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 832.927683][ C0] ? __mutex_lock+0x527/0xd70 [ 832.927720][ C0] ? nsim_destroy+0x71/0x5c0 [ 832.927749][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 832.927788][ C0] ? __pfx_mntput_no_expire+0x10/0x10 [ 832.927831][ C0] ? rtnl_lock+0xe7/0x130 [ 832.927861][ C0] nsim_destroy+0x71/0x5c0 [ 832.927895][ C0] __nsim_dev_port_del+0x14b/0x1b0 [ 832.927930][ C0] nsim_dev_reload_destroy+0x28a/0x490 [ 832.927967][ C0] ? __pfx_nsim_bus_remove+0x10/0x10 [ 832.928004][ C0] nsim_drv_remove+0x58/0x160 [ 832.928036][ C0] device_release_driver_internal+0x4a9/0x7c0 [ 832.928085][ C0] bus_remove_device+0x34f/0x420 [ 832.928122][ C0] device_del+0x57a/0x9b0 [ 832.928172][ C0] ? __pfx_device_del+0x10/0x10 [ 832.928218][ C0] device_unregister+0x20/0xc0 [ 832.928252][ C0] del_device_store+0x363/0x480 [ 832.928294][ C0] ? __pfx_del_device_store+0x10/0x10 [ 832.928338][ C0] ? sysfs_kf_write+0x182/0x2a0 [ 832.928368][ C0] ? bus_attr_store+0x4f/0xa0 [ 832.928401][ C0] ? __pfx_sysfs_kf_write+0x10/0x10 [ 832.928431][ C0] kernfs_fop_write_iter+0x3a1/0x500 [ 832.928468][ C0] vfs_write+0xa72/0xc90 [ 832.928500][ C0] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 832.928532][ C0] ? __pfx_vfs_write+0x10/0x10 [ 832.928584][ C0] ksys_write+0x1a0/0x2c0 [ 832.928618][ C0] ? __pfx_ksys_write+0x10/0x10 [ 832.928646][ C0] ? do_syscall_64+0x100/0x230 [ 832.928676][ C0] ? do_syscall_64+0xb6/0x230 [ 832.928705][ C0] do_syscall_64+0xf3/0x230 [ 832.928732][ C0] ? clear_bhb_loop+0x35/0x90 [ 832.928765][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 832.928793][ C0] RIP: 0033:0x7f4e6e67bbef [ 832.928815][ C0] RSP: 002b:00007ffd60744090 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 832.928844][ C0] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f4e6e67bbef [ 832.928864][ C0] RDX: 0000000000000001 RSI: 00007ffd607440e0 RDI: 0000000000000005 [ 832.928883][ C0] RBP: 00007f4e6e6da2aa R08: 0000000000000000 R09: 00007ffd60743ee7 [ 832.928903][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 832.928920][ C0] R13: 00007ffd607440e0 R14: 00007f4e6f2e4620 R15: 0000000000000003 [ 832.928959][ C0] [ 832.928971][ C0] DEBUG: waiting rtnl_mutex for 2553 jiffies. [ 832.928986][ C0] task:kworker/1:0 state:D stack:20760 pid:25 tgid:25 ppid:2 flags:0x00004000 [ 832.929030][ C0] Workqueue: events linkwatch_event [ 832.929060][ C0] Call Trace: [ 832.929071][ C0] [ 832.929088][ C0] __schedule+0x17e8/0x4a20 [ 832.929152][ C0] ? __pfx___schedule+0x10/0x10 [ 832.929186][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 832.929218][ C0] ? __pfx_lock_release+0x10/0x10 [ 832.929252][ C0] ? kick_pool+0x45c/0x620 [ 832.929290][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 832.929320][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 832.929360][ C0] ? schedule+0x90/0x320 [ 832.929390][ C0] schedule+0x14b/0x320 [ 832.929424][ C0] schedule_preempt_disabled+0x13/0x30 [ 832.929456][ C0] __mutex_lock+0x6a4/0xd70 [ 832.929496][ C0] ? __mutex_lock+0x527/0xd70 [ 832.929534][ C0] ? linkwatch_event+0xe/0x60 [ 832.929562][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 832.929609][ C0] ? process_scheduled_works+0x945/0x1830 [ 832.929638][ C0] ? rtnl_lock+0xe7/0x130 [ 832.929667][ C0] ? process_scheduled_works+0x945/0x1830 [ 832.929696][ C0] linkwatch_event+0xe/0x60 [ 832.929722][ C0] process_scheduled_works+0xa2c/0x1830 [ 832.929786][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 832.929829][ C0] ? assign_work+0x364/0x3d0 [ 832.929865][ C0] worker_thread+0x86d/0xd50 [ 832.929914][ C0] ? __kthread_parkme+0x169/0x1d0 [ 832.929951][ C0] ? __pfx_worker_thread+0x10/0x10 [ 832.929982][ C0] kthread+0x2f0/0x390 [ 832.930017][ C0] ? __pfx_worker_thread+0x10/0x10 [ 832.930047][ C0] ? __pfx_kthread+0x10/0x10 [ 832.930083][ C0] ret_from_fork+0x4b/0x80 [ 832.930117][ C0] ? __pfx_kthread+0x10/0x10 [ 832.930158][ C0] ret_from_fork_asm+0x1a/0x30 [ 832.930213][ C0] [ 832.930228][ C0] [ 832.930228][ C0] Showing all locks held in the system: [ 832.930245][ C0] 3 locks held by kworker/1:0/25: [ 832.930263][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 832.930341][ C0] #1: ffffc900001f7d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 832.930416][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 832.930498][ C0] 2 locks held by kworker/u8:5/947: [ 832.930519][ C0] 3 locks held by kworker/u8:6/1039: [ 832.930536][ C0] #0: ffff888029be4948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 832.930611][ C0] #1: ffffc90003ecfd00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 832.930686][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 832.930783][ C0] 5 locks held by kworker/u8:7/3216: [ 832.930800][ C0] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 832.930873][ C0] #1: ffffc9000a20fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 832.930946][ C0] #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 832.931016][ C0] #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 832.931099][ C0] #4: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 832.931189][ C0] 2 locks held by kworker/u8:8/3221: [ 832.931206][ C0] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 832.931281][ C0] #1: ffffc9000a46fd00 ((work_completion)(&(&kfence_timer)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 832.931359][ C0] 2 locks held by getty/4848: [ 832.931375][ C0] #0: ffff88802a6d70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 832.931454][ C0] #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 832.931536][ C0] 2 locks held by syz-executor.4/5369: [ 832.931554][ C0] 7 locks held by syz-executor.0/5814: [ 832.931571][ C0] #0: ffff88801eec8420 (sb_writers#18){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 [ 832.931655][ C0] #1: ffff888058f786c0 (&type->i_mutex_dir_key#11){+.+.}-{3:3}, at: path_openat+0x7d3/0x3280 [ 832.931745][ C0] #2: ffffffff8e210d80 (console_lock){+.+.}-{0:0}, at: vprintk_emit+0x4ed/0x900 [ 832.931825][ C0] #3: ffffffff8e210990 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 832.931895][ C0] #4: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 832.931977][ C0] #5: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 832.932054][ C0] #6: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 832.932136][ C0] 2 locks held by syz-executor.2/6410: [ 832.932157][ C0] 1 lock held by syz-executor.1/10927: [ 832.932172][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 832.932252][ C0] 3 locks held by syz-executor.2/10936: [ 832.932269][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 832.932343][ C0] #1: ffffffff8f655b88 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0 [ 832.932420][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: wg_set_device+0x102/0x2160 [ 832.932513][ C0] 4 locks held by syz-executor.0/10940: [ 832.932534][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 832.932630][ C0] #1: ffff88802354d088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 832.932703][ C0] #2: ffff8880222f8a58 (kn->active#51){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 832.932805][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: new_device_store+0x1b4/0x890 [ 832.932896][ C0] 7 locks held by syz-executor.4/10946: [ 832.932913][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 832.932990][ C0] #1: ffff888023a02088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 832.933062][ C0] #2: ffff8880222f8b48 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 832.933147][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 832.933230][ C0] #4: ffff88808565b0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0 [ 832.933311][ C0] #5: ffff88808565a250 (&devlink->lock_key#19){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160 [ 832.933393][ C0] #6: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0 [ 832.933466][ C0] 1 lock held by syz-executor.3/10968: [ 832.933483][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 832.933564][ C0] [ 832.933574][ C0] ============================================= [ 832.933574][ C0] [ 833.954935][ C0] DEBUG: holding rtnl_mutex for 2681 jiffies. [ 833.954958][ C0] task:kworker/u8:7 state:D stack:20944 pid:3216 tgid:3216 ppid:2 flags:0x00004000 [ 833.955008][ C0] Workqueue: netns cleanup_net [ 833.955048][ C0] Call Trace: [ 833.955058][ C0] [ 833.955074][ C0] __schedule+0x17e8/0x4a20 [ 833.955129][ C0] ? __pfx___schedule+0x10/0x10 [ 833.955163][ C0] ? __pfx_lock_release+0x10/0x10 [ 833.955195][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 833.955233][ C0] ? kthread_data+0x52/0xd0 [ 833.955264][ C0] ? wq_worker_sleeping+0x66/0x240 [ 833.955299][ C0] ? schedule+0x90/0x320 [ 833.955328][ C0] schedule+0x14b/0x320 [ 833.955370][ C0] synchronize_rcu_expedited+0x684/0x830 [ 833.955413][ C0] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 833.955469][ C0] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 833.955505][ C0] ? __pfx___might_resched+0x10/0x10 [ 833.955532][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 833.955563][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 833.955595][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 833.955638][ C0] synchronize_rcu+0x11b/0x360 [ 833.955673][ C0] ? __pfx_synchronize_rcu+0x10/0x10 [ 833.955725][ C0] lockdep_unregister_key+0x4b7/0x540 [ 833.955762][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 833.955800][ C0] ? team_uninit+0x383/0x3e0 [ 833.955833][ C0] ? __pfx_team_uninit+0x10/0x10 [ 833.955864][ C0] unregister_netdevice_many_notify+0x10c5/0x16b0 [ 833.955913][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 833.955954][ C0] ? unregister_netdevice_queue+0x26b/0x370 [ 833.955989][ C0] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 833.956032][ C0] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 833.956073][ C0] default_device_exit_batch+0xa0f/0xa90 [ 833.956123][ C0] ? __pfx___might_resched+0x10/0x10 [ 833.956154][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 833.956206][ C0] ? cfg802154_pernet_exit+0xc3/0xe0 [ 833.956244][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 833.956287][ C0] cleanup_net+0x89d/0xcc0 [ 833.956322][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 833.956363][ C0] ? process_scheduled_works+0x945/0x1830 [ 833.956392][ C0] process_scheduled_works+0xa2c/0x1830 [ 833.956454][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 833.956498][ C0] ? assign_work+0x364/0x3d0 [ 833.956532][ C0] worker_thread+0x86d/0xd50 [ 833.956581][ C0] ? __kthread_parkme+0x169/0x1d0 [ 833.956619][ C0] ? __pfx_worker_thread+0x10/0x10 [ 833.956650][ C0] kthread+0x2f0/0x390 [ 833.956685][ C0] ? __pfx_worker_thread+0x10/0x10 [ 833.956716][ C0] ? __pfx_kthread+0x10/0x10 [ 833.956752][ C0] ret_from_fork+0x4b/0x80 [ 833.956786][ C0] ? __pfx_kthread+0x10/0x10 [ 833.956822][ C0] ret_from_fork_asm+0x1a/0x30 [ 833.956877][ C0] [ 833.956890][ C0] DEBUG: waiting rtnl_mutex for 2699 jiffies. [ 833.956906][ C0] task:syz-executor.1 state:D stack:19968 pid:10927 tgid:10927 ppid:10926 flags:0x00000002 [ 833.956950][ C0] Call Trace: [ 833.956961][ C0] [ 833.956979][ C0] __schedule+0x17e8/0x4a20 [ 833.957040][ C0] ? __pfx___schedule+0x10/0x10 [ 833.957075][ C0] ? __pfx_lock_release+0x10/0x10 [ 833.957107][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 833.957158][ C0] ? schedule+0x90/0x320 [ 833.957189][ C0] schedule+0x14b/0x320 [ 833.957224][ C0] schedule_preempt_disabled+0x13/0x30 [ 833.957256][ C0] __mutex_lock+0x6a4/0xd70 [ 833.957297][ C0] ? __mutex_lock+0x527/0xd70 [ 833.957334][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 833.957375][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 833.957424][ C0] ? rtnl_lock+0xe7/0x130 [ 833.957455][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 833.957498][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 833.957540][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 833.957576][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 833.957619][ C0] ? __pfx_validate_chain+0x10/0x10 [ 833.957655][ C0] ? __pfx_validate_chain+0x10/0x10 [ 833.957694][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 833.957733][ C0] ? mark_lock+0x9a/0x360 [ 833.957774][ C0] ? __pfx_validate_chain+0x10/0x10 [ 833.957815][ C0] ? __lock_acquire+0x1359/0x2000 [ 833.957865][ C0] ? mark_lock+0x9a/0x360 [ 833.957904][ C0] ? __lock_acquire+0x1359/0x2000 [ 833.957961][ C0] netlink_rcv_skb+0x1e3/0x430 [ 833.957999][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 833.958045][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 833.958106][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 833.958144][ C0] netlink_unicast+0x7ea/0x980 [ 833.958187][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 833.958217][ C0] ? __virt_addr_valid+0x183/0x520 [ 833.958257][ C0] ? __check_object_size+0x49c/0x900 [ 833.958290][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 833.958326][ C0] netlink_sendmsg+0x8db/0xcb0 [ 833.958377][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 833.958412][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 833.958446][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 833.958476][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 833.958507][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 833.958545][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 833.958579][ C0] __sock_sendmsg+0x221/0x270 [ 833.958623][ C0] __sys_sendto+0x3a4/0x4f0 [ 833.958661][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 833.958722][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 833.958757][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 833.958795][ C0] __x64_sys_sendto+0xde/0x100 [ 833.958830][ C0] do_syscall_64+0xf3/0x230 [ 833.958858][ C0] ? clear_bhb_loop+0x35/0x90 [ 833.958892][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 833.958921][ C0] RIP: 0033:0x7fc12947eb9c [ 833.958946][ C0] RSP: 002b:00007fff433a4530 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 833.958977][ C0] RAX: ffffffffffffffda RBX: 00007fc12a0e4620 RCX: 00007fc12947eb9c [ 833.958999][ C0] RDX: 000000000000002c RSI: 00007fc12a0e4670 RDI: 0000000000000003 [ 833.959025][ C0] RBP: 0000000000000000 R08: 00007fff433a4584 R09: 000000000000000c [ 833.959045][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 833.959063][ C0] R13: 0000000000000000 R14: 00007fc12a0e4670 R15: 0000000000000000 [ 833.959102][ C0] [ 833.959114][ C0] DEBUG: waiting rtnl_mutex for 2701 jiffies. [ 833.959130][ C0] task:kworker/u8:6 state:D stack:21040 pid:1039 tgid:1039 ppid:2 flags:0x00004000 [ 833.959177][ C0] Workqueue: ipv6_addrconf addrconf_dad_work [ 833.959218][ C0] Call Trace: [ 833.959229][ C0] [ 833.959246][ C0] __schedule+0x17e8/0x4a20 [ 833.959302][ C0] ? __pfx___schedule+0x10/0x10 [ 833.959338][ C0] ? __pfx_lock_release+0x10/0x10 [ 833.959371][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 833.959411][ C0] ? kthread_data+0x52/0xd0 [ 833.959442][ C0] ? schedule+0x90/0x320 [ 833.959471][ C0] ? wq_worker_sleeping+0x66/0x240 [ 833.959506][ C0] ? schedule+0x90/0x320 [ 833.959537][ C0] schedule+0x14b/0x320 [ 833.959571][ C0] schedule_preempt_disabled+0x13/0x30 [ 833.959602][ C0] __mutex_lock+0x6a4/0xd70 [ 833.959634][ C0] ? mark_lock+0x9a/0x360 [ 833.959671][ C0] ? __mutex_lock+0x527/0xd70 [ 833.959707][ C0] ? addrconf_dad_work+0xd0/0x16f0 [ 833.959747][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 833.959796][ C0] ? rtnl_lock+0xe7/0x130 [ 833.959825][ C0] addrconf_dad_work+0xd0/0x16f0 [ 833.959873][ C0] ? __pfx_addrconf_dad_work+0x10/0x10 [ 833.959912][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 833.959959][ C0] ? process_scheduled_works+0x945/0x1830 [ 833.959989][ C0] process_scheduled_works+0xa2c/0x1830 [ 833.960059][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 833.960102][ C0] ? assign_work+0x364/0x3d0 [ 833.960145][ C0] worker_thread+0x86d/0xd50 [ 833.960188][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 833.960226][ C0] ? __kthread_parkme+0x169/0x1d0 [ 833.960263][ C0] ? __pfx_worker_thread+0x10/0x10 [ 833.960295][ C0] kthread+0x2f0/0x390 [ 833.960330][ C0] ? __pfx_worker_thread+0x10/0x10 [ 833.960361][ C0] ? __pfx_kthread+0x10/0x10 [ 833.960397][ C0] ret_from_fork+0x4b/0x80 [ 833.960430][ C0] ? __pfx_kthread+0x10/0x10 [ 833.960465][ C0] ret_from_fork_asm+0x1a/0x30 [ 833.960520][ C0] [ 833.960531][ C0] DEBUG: waiting rtnl_mutex for 2701 jiffies. [ 833.960546][ C0] task:syz-executor.3 state:D stack:21024 pid:10968 tgid:10968 ppid:10966 flags:0x00004002 [ 833.960587][ C0] Call Trace: [ 833.960598][ C0] [ 833.960614][ C0] __schedule+0x17e8/0x4a20 [ 833.960670][ C0] ? __pfx___schedule+0x10/0x10 [ 833.960704][ C0] ? __pfx_lock_release+0x10/0x10 [ 833.960736][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 833.960788][ C0] ? schedule+0x90/0x320 [ 833.960816][ C0] schedule+0x14b/0x320 [ 833.960850][ C0] schedule_preempt_disabled+0x13/0x30 [ 833.960879][ C0] __mutex_lock+0x6a4/0xd70 [ 833.960920][ C0] ? __mutex_lock+0x527/0xd70 [ 833.960958][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 833.960999][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 833.961056][ C0] ? rtnl_lock+0xe7/0x130 [ 833.961088][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 833.961132][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 833.961175][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 833.961212][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 833.961266][ C0] ? __pfx_validate_chain+0x10/0x10 [ 833.961305][ C0] ? __pfx_validate_chain+0x10/0x10 [ 833.961344][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 833.961385][ C0] ? mark_lock+0x9a/0x360 [ 833.961417][ C0] ? __pfx_validate_chain+0x10/0x10 [ 833.961457][ C0] ? __lock_acquire+0x1359/0x2000 [ 833.961508][ C0] ? mark_lock+0x9a/0x360 [ 833.961548][ C0] ? __lock_acquire+0x1359/0x2000 [ 833.961605][ C0] netlink_rcv_skb+0x1e3/0x430 [ 833.961643][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 833.961685][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 833.961748][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 833.961788][ C0] netlink_unicast+0x7ea/0x980 [ 833.961831][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 833.961862][ C0] ? __virt_addr_valid+0x183/0x520 [ 833.961902][ C0] ? __check_object_size+0x49c/0x900 [ 833.961936][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 833.961971][ C0] netlink_sendmsg+0x8db/0xcb0 [ 833.962028][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 833.962063][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 833.962099][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 833.962131][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 833.962163][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 833.962203][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 833.962237][ C0] __sock_sendmsg+0x221/0x270 [ 833.962281][ C0] __sys_sendto+0x3a4/0x4f0 [ 833.962319][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 833.962380][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 833.962418][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 833.962458][ C0] __x64_sys_sendto+0xde/0x100 [ 833.962494][ C0] do_syscall_64+0xf3/0x230 [ 833.962522][ C0] ? clear_bhb_loop+0x35/0x90 [ 833.962557][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 833.962586][ C0] RIP: 0033:0x7f5b4367eb9c [ 833.962610][ C0] RSP: 002b:00007ffc03fb9b80 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 833.962641][ C0] RAX: ffffffffffffffda RBX: 00007f5b442e4620 RCX: 00007f5b4367eb9c [ 833.962663][ C0] RDX: 0000000000000028 RSI: 00007f5b442e4670 RDI: 0000000000000003 [ 833.962683][ C0] RBP: 0000000000000000 R08: 00007ffc03fb9bd4 R09: 000000000000000c [ 833.962703][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 833.962722][ C0] R13: 0000000000000000 R14: 00007f5b442e4670 R15: 0000000000000000 [ 833.962760][ C0] [ 833.962773][ C0] DEBUG: waiting rtnl_mutex for 2687 jiffies. [ 833.962789][ C0] task:syz-executor.2 state:D stack:21024 pid:10936 tgid:10936 ppid:10934 flags:0x00000002 [ 833.962834][ C0] Call Trace: [ 833.962845][ C0] [ 833.962863][ C0] __schedule+0x17e8/0x4a20 [ 833.962922][ C0] ? __pfx___schedule+0x10/0x10 [ 833.962959][ C0] ? __pfx_lock_release+0x10/0x10 [ 833.962993][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 833.963057][ C0] ? schedule+0x90/0x320 [ 833.963089][ C0] schedule+0x14b/0x320 [ 833.963125][ C0] schedule_preempt_disabled+0x13/0x30 [ 833.963157][ C0] __mutex_lock+0x6a4/0xd70 [ 833.963197][ C0] ? __mutex_lock+0x527/0xd70 [ 833.963235][ C0] ? wg_set_device+0x102/0x2160 [ 833.963267][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 833.963307][ C0] ? dev_get_by_name+0x25/0x2d0 [ 833.963343][ C0] ? dev_get_by_name+0x28c/0x2d0 [ 833.963381][ C0] ? rtnl_lock+0xe7/0x130 [ 833.963411][ C0] wg_set_device+0x102/0x2160 [ 833.963459][ C0] ? __pfx___nla_validate_parse+0x10/0x10 [ 833.963498][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 833.963557][ C0] ? __nla_parse+0x40/0x60 [ 833.963594][ C0] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 833.963634][ C0] genl_rcv_msg+0xb14/0xec0 [ 833.963661][ C0] ? mark_lock+0x9a/0x360 [ 833.963705][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 833.963763][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 833.963796][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 833.963826][ C0] ? __pfx___might_resched+0x10/0x10 [ 833.963869][ C0] netlink_rcv_skb+0x1e3/0x430 [ 833.963906][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 833.963938][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 833.964016][ C0] genl_rcv+0x28/0x40 [ 833.964043][ C0] netlink_unicast+0x7ea/0x980 [ 833.964086][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 833.964117][ C0] ? __virt_addr_valid+0x183/0x520 [ 833.964157][ C0] ? __check_object_size+0x49c/0x900 [ 833.964190][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 833.964225][ C0] netlink_sendmsg+0x8db/0xcb0 [ 833.964277][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 833.964317][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 833.964349][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 833.964381][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 833.964420][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 833.964454][ C0] __sock_sendmsg+0x221/0x270 [ 833.964498][ C0] __sys_sendto+0x3a4/0x4f0 [ 833.964536][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 833.964597][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 833.964634][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 833.964675][ C0] __x64_sys_sendto+0xde/0x100 [ 833.964710][ C0] do_syscall_64+0xf3/0x230 [ 833.964738][ C0] ? clear_bhb_loop+0x35/0x90 [ 833.964772][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 833.964802][ C0] RIP: 0033:0x7f3bfb67eb9c [ 833.964825][ C0] RSP: 002b:00007ffdb79e8f90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 833.964855][ C0] RAX: ffffffffffffffda RBX: 00007f3bfc2e4620 RCX: 00007f3bfb67eb9c [ 833.964876][ C0] RDX: 0000000000000170 RSI: 00007f3bfc2e4670 RDI: 0000000000000005 [ 833.964950][ C0] RBP: 0000000000000000 R08: 00007ffdb79e8fe4 R09: 000000000000000c [ 833.964968][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005 [ 833.964986][ C0] R13: 0000000000000000 R14: 00007f3bfc2e4670 R15: 0000000000000000 [ 833.965030][ C0] [ 833.965043][ C0] DEBUG: waiting rtnl_mutex for 2677 jiffies. [ 833.965058][ C0] task:syz-executor.4 state:D stack:21024 pid:10946 tgid:10946 ppid:10944 flags:0x00004002 [ 833.965102][ C0] Call Trace: [ 833.965113][ C0] [ 833.965130][ C0] __schedule+0x17e8/0x4a20 [ 833.965188][ C0] ? __pfx___schedule+0x10/0x10 [ 833.965225][ C0] ? __pfx_lock_release+0x10/0x10 [ 833.965258][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 833.965304][ C0] ? schedule+0x90/0x320 [ 833.965332][ C0] schedule+0x14b/0x320 [ 833.965364][ C0] schedule_preempt_disabled+0x13/0x30 [ 833.965398][ C0] __mutex_lock+0x6a4/0xd70 [ 833.965432][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 833.965467][ C0] ? __mutex_lock+0x527/0xd70 [ 833.965506][ C0] ? nsim_destroy+0x71/0x5c0 [ 833.965534][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 833.965577][ C0] ? __pfx_mntput_no_expire+0x10/0x10 [ 833.965618][ C0] ? rtnl_lock+0xe7/0x130 [ 833.965647][ C0] nsim_destroy+0x71/0x5c0 [ 833.965679][ C0] __nsim_dev_port_del+0x14b/0x1b0 [ 833.965712][ C0] nsim_dev_reload_destroy+0x28a/0x490 [ 833.965748][ C0] ? __pfx_nsim_bus_remove+0x10/0x10 [ 833.965785][ C0] nsim_drv_remove+0x58/0x160 [ 833.965818][ C0] device_release_driver_internal+0x4a9/0x7c0 [ 833.965868][ C0] bus_remove_device+0x34f/0x420 [ 833.965906][ C0] device_del+0x57a/0x9b0 [ 833.965951][ C0] ? __pfx_device_del+0x10/0x10 [ 833.965997][ C0] device_unregister+0x20/0xc0 [ 833.966039][ C0] del_device_store+0x363/0x480 [ 833.966083][ C0] ? __pfx_del_device_store+0x10/0x10 [ 833.966127][ C0] ? sysfs_kf_write+0x182/0x2a0 [ 833.966159][ C0] ? bus_attr_store+0x4f/0xa0 [ 833.966192][ C0] ? __pfx_sysfs_kf_write+0x10/0x10 [ 833.966223][ C0] kernfs_fop_write_iter+0x3a1/0x500 [ 833.966261][ C0] vfs_write+0xa72/0xc90 [ 833.966294][ C0] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 833.966326][ C0] ? __pfx_vfs_write+0x10/0x10 [ 833.966380][ C0] ksys_write+0x1a0/0x2c0 [ 833.966414][ C0] ? __pfx_ksys_write+0x10/0x10 [ 833.966442][ C0] ? do_syscall_64+0x100/0x230 [ 833.966477][ C0] ? do_syscall_64+0xb6/0x230 [ 833.966508][ C0] do_syscall_64+0xf3/0x230 [ 833.966535][ C0] ? clear_bhb_loop+0x35/0x90 [ 833.966569][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 833.966598][ C0] RIP: 0033:0x7f4e6e67bbef [ 833.966621][ C0] RSP: 002b:00007ffd60744090 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 833.966652][ C0] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f4e6e67bbef [ 833.966673][ C0] RDX: 0000000000000001 RSI: 00007ffd607440e0 RDI: 0000000000000005 [ 833.966700][ C0] RBP: 00007f4e6e6da2aa R08: 0000000000000000 R09: 00007ffd60743ee7 [ 833.966719][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 833.966738][ C0] R13: 00007ffd607440e0 R14: 00007f4e6f2e4620 R15: 0000000000000003 [ 833.966783][ C0] [ 833.966796][ C0] DEBUG: waiting rtnl_mutex for 2657 jiffies. [ 833.966812][ C0] task:kworker/1:0 state:D stack:20760 pid:25 tgid:25 ppid:2 flags:0x00004000 [ 833.966859][ C0] Workqueue: events linkwatch_event [ 833.966891][ C0] Call Trace: [ 833.966902][ C0] [ 833.966919][ C0] __schedule+0x17e8/0x4a20 [ 833.966978][ C0] ? __pfx___schedule+0x10/0x10 [ 833.967018][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 833.967050][ C0] ? __pfx_lock_release+0x10/0x10 [ 833.967083][ C0] ? kick_pool+0x45c/0x620 [ 833.967121][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 833.967151][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 833.967191][ C0] ? schedule+0x90/0x320 [ 833.967220][ C0] schedule+0x14b/0x320 [ 833.967256][ C0] schedule_preempt_disabled+0x13/0x30 [ 833.967287][ C0] __mutex_lock+0x6a4/0xd70 [ 833.967335][ C0] ? __mutex_lock+0x527/0xd70 [ 833.967373][ C0] ? linkwatch_event+0xe/0x60 [ 833.967403][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 833.967449][ C0] ? process_scheduled_works+0x945/0x1830 [ 833.967479][ C0] ? rtnl_lock+0xe7/0x130 [ 833.967507][ C0] ? process_scheduled_works+0x945/0x1830 [ 833.967536][ C0] linkwatch_event+0xe/0x60 [ 833.967563][ C0] process_scheduled_works+0xa2c/0x1830 [ 833.967627][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 833.967668][ C0] ? assign_work+0x364/0x3d0 [ 833.967704][ C0] worker_thread+0x86d/0xd50 [ 833.967754][ C0] ? __kthread_parkme+0x169/0x1d0 [ 833.967791][ C0] ? __pfx_worker_thread+0x10/0x10 [ 833.967823][ C0] kthread+0x2f0/0x390 [ 833.967859][ C0] ? __pfx_worker_thread+0x10/0x10 [ 833.967889][ C0] ? __pfx_kthread+0x10/0x10 [ 833.967926][ C0] ret_from_fork+0x4b/0x80 [ 833.967960][ C0] ? __pfx_kthread+0x10/0x10 [ 833.967995][ C0] ret_from_fork_asm+0x1a/0x30 [ 833.968057][ C0] [ 833.968073][ C0] [ 833.968073][ C0] Showing all locks held in the system: [ 833.968091][ C0] 3 locks held by kworker/1:0/25: [ 833.968110][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 833.968190][ C0] #1: ffffc900001f7d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 833.968266][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 833.968360][ C0] 1 lock held by kworker/u8:5/947: [ 833.968380][ C0] 3 locks held by kworker/u8:6/1039: [ 833.968397][ C0] #0: ffff888029be4948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 833.968473][ C0] #1: ffffc90003ecfd00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 833.968548][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 833.968646][ C0] 5 locks held by kworker/u8:7/3216: [ 833.968663][ C0] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 833.968738][ C0] #1: ffffc9000a20fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 833.968811][ C0] #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 833.968882][ C0] #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 833.968966][ C0] #4: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 833.969057][ C0] 2 locks held by getty/4848: [ 833.969073][ C0] #0: ffff88802a6d70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 833.969154][ C0] #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 833.969237][ C0] 1 lock held by syz-executor.4/5369: [ 833.969255][ C0] 7 locks held by syz-executor.0/5814: [ 833.969271][ C0] #0: ffff88801eec8420 (sb_writers#18){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 [ 833.969357][ C0] #1: ffff888058f786c0 (&type->i_mutex_dir_key#11){+.+.}-{3:3}, at: path_openat+0x7d3/0x3280 [ 833.969448][ C0] #2: ffffffff8e210d80 (console_lock){+.+.}-{0:0}, at: vprintk_emit+0x4ed/0x900 [ 833.969530][ C0] #3: ffffffff8e210990 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 833.969601][ C0] #4: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 833.969684][ C0] #5: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 833.969763][ C0] #6: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 833.969844][ C0] 2 locks held by syz-executor.2/6410: [ 833.969865][ C0] 1 lock held by syz-executor.1/10927: [ 833.969883][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 833.969967][ C0] 3 locks held by syz-executor.2/10936: [ 833.969984][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 833.970060][ C0] #1: ffffffff8f655b88 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0 [ 833.970131][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: wg_set_device+0x102/0x2160 [ 833.970203][ C0] 4 locks held by syz-executor.0/10940: [ 833.970221][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 833.970297][ C0] #1: ffff88802354d088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 833.970369][ C0] #2: ffff8880222f8a58 (kn->active#51){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 833.970450][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: new_device_store+0x1b4/0x890 [ 833.970534][ C0] 7 locks held by syz-executor.4/10946: [ 833.970551][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 833.970627][ C0] #1: ffff888023a02088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 833.970699][ C0] #2: ffff8880222f8b48 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 833.970779][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 833.970861][ C0] #4: ffff88808565b0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0 [ 833.970940][ C0] #5: ffff88808565a250 (&devlink->lock_key#19){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160 [ 833.971028][ C0] #6: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0 [ 833.971101][ C0] 1 lock held by syz-executor.3/10968: [ 833.971118][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 833.971201][ C0] [ 833.971210][ C0] ============================================= [ 833.971210][ C0] [ 834.996780][ C0] DEBUG: holding rtnl_mutex for 2785 jiffies. [ 834.996809][ C0] task:kworker/u8:7 state:D stack:20944 pid:3216 tgid:3216 ppid:2 flags:0x00004000 [ 834.996861][ C0] Workqueue: netns cleanup_net [ 834.996897][ C0] Call Trace: [ 834.996910][ C0] [ 834.996928][ C0] __schedule+0x17e8/0x4a20 [ 834.996999][ C0] ? __pfx___schedule+0x10/0x10 [ 834.997036][ C0] ? __pfx_lock_release+0x10/0x10 [ 834.997067][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 834.997106][ C0] ? kthread_data+0x52/0xd0 [ 834.997140][ C0] ? wq_worker_sleeping+0x66/0x240 [ 834.997176][ C0] ? schedule+0x90/0x320 [ 834.997206][ C0] schedule+0x14b/0x320 [ 834.997242][ C0] synchronize_rcu_expedited+0x684/0x830 [ 834.997287][ C0] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 834.997345][ C0] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 834.997384][ C0] ? __pfx___might_resched+0x10/0x10 [ 834.997412][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 834.997445][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 834.997478][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 834.997524][ C0] synchronize_rcu+0x11b/0x360 [ 834.997562][ C0] ? __pfx_synchronize_rcu+0x10/0x10 [ 834.997616][ C0] lockdep_unregister_key+0x4b7/0x540 [ 834.997655][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 834.997694][ C0] ? team_uninit+0x383/0x3e0 [ 834.997728][ C0] ? __pfx_team_uninit+0x10/0x10 [ 834.997760][ C0] unregister_netdevice_many_notify+0x10c5/0x16b0 [ 834.997811][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 834.997852][ C0] ? unregister_netdevice_queue+0x26b/0x370 [ 834.997887][ C0] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 834.997923][ C0] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 834.997972][ C0] default_device_exit_batch+0xa0f/0xa90 [ 834.998023][ C0] ? __pfx___might_resched+0x10/0x10 [ 834.998053][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 834.998104][ C0] ? cfg802154_pernet_exit+0xc3/0xe0 [ 834.998141][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 834.998184][ C0] cleanup_net+0x89d/0xcc0 [ 834.998220][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 834.998262][ C0] ? process_scheduled_works+0x945/0x1830 [ 834.998293][ C0] process_scheduled_works+0xa2c/0x1830 [ 834.998357][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 834.998399][ C0] ? assign_work+0x364/0x3d0 [ 834.998436][ C0] worker_thread+0x86d/0xd50 [ 834.998486][ C0] ? __kthread_parkme+0x169/0x1d0 [ 834.998523][ C0] ? __pfx_worker_thread+0x10/0x10 [ 834.998555][ C0] kthread+0x2f0/0x390 [ 834.998589][ C0] ? __pfx_worker_thread+0x10/0x10 [ 834.998620][ C0] ? __pfx_kthread+0x10/0x10 [ 834.998657][ C0] ret_from_fork+0x4b/0x80 [ 834.998692][ C0] ? __pfx_kthread+0x10/0x10 [ 834.998727][ C0] ret_from_fork_asm+0x1a/0x30 [ 834.998782][ C0] [ 834.998794][ C0] DEBUG: waiting rtnl_mutex for 2803 jiffies. [ 834.998810][ C0] task:syz-executor.1 state:D stack:19968 pid:10927 tgid:10927 ppid:1 flags:0x00000006 [ 834.998853][ C0] Call Trace: [ 834.998865][ C0] [ 834.998881][ C0] __schedule+0x17e8/0x4a20 [ 834.998938][ C0] ? __pfx___schedule+0x10/0x10 [ 834.998979][ C0] ? __pfx_lock_release+0x10/0x10 [ 834.999012][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 834.999062][ C0] ? schedule+0x90/0x320 [ 834.999092][ C0] schedule+0x14b/0x320 [ 834.999126][ C0] schedule_preempt_disabled+0x13/0x30 [ 834.999158][ C0] __mutex_lock+0x6a4/0xd70 [ 834.999198][ C0] ? __mutex_lock+0x527/0xd70 [ 834.999236][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 834.999275][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 834.999324][ C0] ? rtnl_lock+0xe7/0x130 [ 834.999354][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 834.999394][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 834.999437][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 834.999473][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 834.999517][ C0] ? __pfx_validate_chain+0x10/0x10 [ 834.999554][ C0] ? __pfx_validate_chain+0x10/0x10 [ 834.999592][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 834.999631][ C0] ? mark_lock+0x9a/0x360 [ 834.999663][ C0] ? __pfx_validate_chain+0x10/0x10 [ 834.999703][ C0] ? __lock_acquire+0x1359/0x2000 [ 834.999754][ C0] ? mark_lock+0x9a/0x360 [ 834.999793][ C0] ? __lock_acquire+0x1359/0x2000 [ 834.999849][ C0] netlink_rcv_skb+0x1e3/0x430 [ 834.999888][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 834.999929][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 834.999999][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 835.000038][ C0] netlink_unicast+0x7ea/0x980 [ 835.000081][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 835.000111][ C0] ? __virt_addr_valid+0x183/0x520 [ 835.000151][ C0] ? __check_object_size+0x49c/0x900 [ 835.000184][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 835.000219][ C0] netlink_sendmsg+0x8db/0xcb0 [ 835.000270][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 835.000304][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 835.000339][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 835.000371][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 835.000403][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 835.000442][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 835.000476][ C0] __sock_sendmsg+0x221/0x270 [ 835.000520][ C0] __sys_sendto+0x3a4/0x4f0 [ 835.000557][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 835.000618][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 835.000653][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 835.000694][ C0] __x64_sys_sendto+0xde/0x100 [ 835.000729][ C0] do_syscall_64+0xf3/0x230 [ 835.000758][ C0] ? clear_bhb_loop+0x35/0x90 [ 835.000792][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 835.000821][ C0] RIP: 0033:0x7fc12947eb9c [ 835.000845][ C0] RSP: 002b:00007fff433a4530 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 835.000875][ C0] RAX: ffffffffffffffda RBX: 00007fc12a0e4620 RCX: 00007fc12947eb9c [ 835.000896][ C0] RDX: 000000000000002c RSI: 00007fc12a0e4670 RDI: 0000000000000003 [ 835.000916][ C0] RBP: 0000000000000000 R08: 00007fff433a4584 R09: 000000000000000c [ 835.000936][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 835.000973][ C0] R13: 0000000000000000 R14: 00007fc12a0e4670 R15: 0000000000000000 [ 835.001012][ C0] [ 835.001024][ C0] DEBUG: waiting rtnl_mutex for 2805 jiffies. [ 835.001040][ C0] task:kworker/u8:6 state:D stack:21040 pid:1039 tgid:1039 ppid:2 flags:0x00004000 [ 835.001087][ C0] Workqueue: ipv6_addrconf addrconf_dad_work [ 835.001126][ C0] Call Trace: [ 835.001137][ C0] [ 835.001155][ C0] __schedule+0x17e8/0x4a20 [ 835.001214][ C0] ? __pfx___schedule+0x10/0x10 [ 835.001250][ C0] ? __pfx_lock_release+0x10/0x10 [ 835.001284][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 835.001324][ C0] ? kthread_data+0x52/0xd0 [ 835.001354][ C0] ? schedule+0x90/0x320 [ 835.001384][ C0] ? wq_worker_sleeping+0x66/0x240 [ 835.001419][ C0] ? schedule+0x90/0x320 [ 835.001449][ C0] schedule+0x14b/0x320 [ 835.001484][ C0] schedule_preempt_disabled+0x13/0x30 [ 835.001516][ C0] __mutex_lock+0x6a4/0xd70 [ 835.001549][ C0] ? mark_lock+0x9a/0x360 [ 835.001586][ C0] ? __mutex_lock+0x527/0xd70 [ 835.001624][ C0] ? addrconf_dad_work+0xd0/0x16f0 [ 835.001663][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 835.001711][ C0] ? rtnl_lock+0xe7/0x130 [ 835.001741][ C0] addrconf_dad_work+0xd0/0x16f0 [ 835.001790][ C0] ? __pfx_addrconf_dad_work+0x10/0x10 [ 835.001829][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 835.001876][ C0] ? process_scheduled_works+0x945/0x1830 [ 835.001905][ C0] process_scheduled_works+0xa2c/0x1830 [ 835.001975][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 835.002018][ C0] ? assign_work+0x364/0x3d0 [ 835.002055][ C0] worker_thread+0x86d/0xd50 [ 835.002097][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 835.002134][ C0] ? __kthread_parkme+0x169/0x1d0 [ 835.002171][ C0] ? __pfx_worker_thread+0x10/0x10 [ 835.002203][ C0] kthread+0x2f0/0x390 [ 835.002237][ C0] ? __pfx_worker_thread+0x10/0x10 [ 835.002268][ C0] ? __pfx_kthread+0x10/0x10 [ 835.002304][ C0] ret_from_fork+0x4b/0x80 [ 835.002337][ C0] ? __pfx_kthread+0x10/0x10 [ 835.002372][ C0] ret_from_fork_asm+0x1a/0x30 [ 835.002427][ C0] [ 835.002439][ C0] DEBUG: waiting rtnl_mutex for 2805 jiffies. [ 835.002454][ C0] task:syz-executor.3 state:D stack:21024 pid:10968 tgid:10968 ppid:10966 flags:0x00004002 [ 835.002498][ C0] Call Trace: [ 835.002509][ C0] [ 835.002526][ C0] __schedule+0x17e8/0x4a20 [ 835.002583][ C0] ? __pfx___schedule+0x10/0x10 [ 835.002619][ C0] ? __pfx_lock_release+0x10/0x10 [ 835.002653][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 835.002703][ C0] ? schedule+0x90/0x320 [ 835.002729][ C0] schedule+0x14b/0x320 [ 835.002761][ C0] schedule_preempt_disabled+0x13/0x30 [ 835.002793][ C0] __mutex_lock+0x6a4/0xd70 [ 835.002833][ C0] ? __mutex_lock+0x527/0xd70 [ 835.002871][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 835.002911][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 835.002965][ C0] ? rtnl_lock+0xe7/0x130 [ 835.002996][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 835.003039][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 835.003081][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 835.003118][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 835.003161][ C0] ? __pfx_validate_chain+0x10/0x10 [ 835.003198][ C0] ? __pfx_validate_chain+0x10/0x10 [ 835.003236][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 835.003275][ C0] ? mark_lock+0x9a/0x360 [ 835.003307][ C0] ? __pfx_validate_chain+0x10/0x10 [ 835.003347][ C0] ? __lock_acquire+0x1359/0x2000 [ 835.003398][ C0] ? mark_lock+0x9a/0x360 [ 835.003436][ C0] ? __lock_acquire+0x1359/0x2000 [ 835.003493][ C0] netlink_rcv_skb+0x1e3/0x430 [ 835.003529][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 835.003571][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 835.003634][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 835.003673][ C0] netlink_unicast+0x7ea/0x980 [ 835.003716][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 835.003746][ C0] ? __virt_addr_valid+0x183/0x520 [ 835.003786][ C0] ? __check_object_size+0x49c/0x900 [ 835.003818][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 835.003853][ C0] netlink_sendmsg+0x8db/0xcb0 [ 835.003904][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 835.003938][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 835.003980][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 835.004011][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 835.004043][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 835.004081][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 835.004115][ C0] __sock_sendmsg+0x221/0x270 [ 835.004158][ C0] __sys_sendto+0x3a4/0x4f0 [ 835.004196][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 835.004257][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 835.004293][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 835.004332][ C0] __x64_sys_sendto+0xde/0x100 [ 835.004367][ C0] do_syscall_64+0xf3/0x230 [ 835.004395][ C0] ? clear_bhb_loop+0x35/0x90 [ 835.004428][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 835.004457][ C0] RIP: 0033:0x7f5b4367eb9c [ 835.004479][ C0] RSP: 002b:00007ffc03fb9b80 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 835.004509][ C0] RAX: ffffffffffffffda RBX: 00007f5b442e4620 RCX: 00007f5b4367eb9c [ 835.004531][ C0] RDX: 0000000000000028 RSI: 00007f5b442e4670 RDI: 0000000000000003 [ 835.004550][ C0] RBP: 0000000000000000 R08: 00007ffc03fb9bd4 R09: 000000000000000c [ 835.004569][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 835.004587][ C0] R13: 0000000000000000 R14: 00007f5b442e4670 R15: 0000000000000000 [ 835.004625][ C0] [ 835.004637][ C0] DEBUG: waiting rtnl_mutex for 2791 jiffies. [ 835.004652][ C0] task:syz-executor.2 state:D stack:21024 pid:10936 tgid:10936 ppid:10934 flags:0x00000002 [ 835.004695][ C0] Call Trace: [ 835.004706][ C0] [ 835.004723][ C0] __schedule+0x17e8/0x4a20 [ 835.004780][ C0] ? __pfx___schedule+0x10/0x10 [ 835.004815][ C0] ? __pfx_lock_release+0x10/0x10 [ 835.004849][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 835.004948][ C0] ? schedule+0x90/0x320 [ 835.004985][ C0] schedule+0x14b/0x320 [ 835.005017][ C0] schedule_preempt_disabled+0x13/0x30 [ 835.005048][ C0] __mutex_lock+0x6a4/0xd70 [ 835.005086][ C0] ? __mutex_lock+0x527/0xd70 [ 835.005120][ C0] ? wg_set_device+0x102/0x2160 [ 835.005148][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 835.005185][ C0] ? dev_get_by_name+0x25/0x2d0 [ 835.005216][ C0] ? dev_get_by_name+0x28c/0x2d0 [ 835.005254][ C0] ? rtnl_lock+0xe7/0x130 [ 835.005284][ C0] wg_set_device+0x102/0x2160 [ 835.005330][ C0] ? __pfx___nla_validate_parse+0x10/0x10 [ 835.005369][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 835.005428][ C0] ? __nla_parse+0x40/0x60 [ 835.005465][ C0] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 835.005505][ C0] genl_rcv_msg+0xb14/0xec0 [ 835.005532][ C0] ? mark_lock+0x9a/0x360 [ 835.005575][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 835.005634][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 835.005667][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 835.005697][ C0] ? __pfx___might_resched+0x10/0x10 [ 835.005740][ C0] netlink_rcv_skb+0x1e3/0x430 [ 835.005778][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 835.005809][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 835.005881][ C0] genl_rcv+0x28/0x40 [ 835.005908][ C0] netlink_unicast+0x7ea/0x980 [ 835.005951][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 835.005990][ C0] ? __virt_addr_valid+0x183/0x520 [ 835.006031][ C0] ? __check_object_size+0x49c/0x900 [ 835.006063][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 835.006099][ C0] netlink_sendmsg+0x8db/0xcb0 [ 835.006150][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 835.006190][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 835.006221][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 835.006254][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 835.006292][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 835.006327][ C0] __sock_sendmsg+0x221/0x270 [ 835.006371][ C0] __sys_sendto+0x3a4/0x4f0 [ 835.006408][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 835.006470][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 835.006506][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 835.006547][ C0] __x64_sys_sendto+0xde/0x100 [ 835.006582][ C0] do_syscall_64+0xf3/0x230 [ 835.006611][ C0] ? clear_bhb_loop+0x35/0x90 [ 835.006645][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 835.006675][ C0] RIP: 0033:0x7f3bfb67eb9c [ 835.006698][ C0] RSP: 002b:00007ffdb79e8f90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 835.006730][ C0] RAX: ffffffffffffffda RBX: 00007f3bfc2e4620 RCX: 00007f3bfb67eb9c [ 835.006751][ C0] RDX: 0000000000000170 RSI: 00007f3bfc2e4670 RDI: 0000000000000005 [ 835.006771][ C0] RBP: 0000000000000000 R08: 00007ffdb79e8fe4 R09: 000000000000000c [ 835.006790][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005 [ 835.006809][ C0] R13: 0000000000000000 R14: 00007f3bfc2e4670 R15: 0000000000000000 [ 835.006848][ C0] [ 835.006860][ C0] DEBUG: waiting rtnl_mutex for 2781 jiffies. [ 835.006876][ C0] task:syz-executor.4 state:D stack:21024 pid:10946 tgid:10946 ppid:10944 flags:0x00004002 [ 835.006924][ C0] Call Trace: [ 835.006935][ C0] [ 835.006959][ C0] __schedule+0x17e8/0x4a20 [ 835.007019][ C0] ? __pfx___schedule+0x10/0x10 [ 835.007057][ C0] ? __pfx_lock_release+0x10/0x10 [ 835.007091][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 835.007143][ C0] ? schedule+0x90/0x320 [ 835.007173][ C0] schedule+0x14b/0x320 [ 835.007209][ C0] schedule_preempt_disabled+0x13/0x30 [ 835.007242][ C0] __mutex_lock+0x6a4/0xd70 [ 835.007277][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 835.007308][ C0] ? __mutex_lock+0x527/0xd70 [ 835.007347][ C0] ? nsim_destroy+0x71/0x5c0 [ 835.007375][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 835.007416][ C0] ? __pfx_mntput_no_expire+0x10/0x10 [ 835.007459][ C0] ? rtnl_lock+0xe7/0x130 [ 835.007490][ C0] nsim_destroy+0x71/0x5c0 [ 835.007525][ C0] __nsim_dev_port_del+0x14b/0x1b0 [ 835.007559][ C0] nsim_dev_reload_destroy+0x28a/0x490 [ 835.007597][ C0] ? __pfx_nsim_bus_remove+0x10/0x10 [ 835.007634][ C0] nsim_drv_remove+0x58/0x160 [ 835.007668][ C0] device_release_driver_internal+0x4a9/0x7c0 [ 835.007717][ C0] bus_remove_device+0x34f/0x420 [ 835.007755][ C0] device_del+0x57a/0x9b0 [ 835.007800][ C0] ? __pfx_device_del+0x10/0x10 [ 835.007846][ C0] device_unregister+0x20/0xc0 [ 835.007880][ C0] del_device_store+0x363/0x480 [ 835.007924][ C0] ? __pfx_del_device_store+0x10/0x10 [ 835.007975][ C0] ? sysfs_kf_write+0x182/0x2a0 [ 835.008007][ C0] ? bus_attr_store+0x4f/0xa0 [ 835.008039][ C0] ? __pfx_sysfs_kf_write+0x10/0x10 [ 835.008071][ C0] kernfs_fop_write_iter+0x3a1/0x500 [ 835.008109][ C0] vfs_write+0xa72/0xc90 [ 835.008141][ C0] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 835.008174][ C0] ? __pfx_vfs_write+0x10/0x10 [ 835.008226][ C0] ksys_write+0x1a0/0x2c0 [ 835.008261][ C0] ? __pfx_ksys_write+0x10/0x10 [ 835.008290][ C0] ? do_syscall_64+0x100/0x230 [ 835.008320][ C0] ? do_syscall_64+0xb6/0x230 [ 835.008351][ C0] do_syscall_64+0xf3/0x230 [ 835.008378][ C0] ? clear_bhb_loop+0x35/0x90 [ 835.008412][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 835.008441][ C0] RIP: 0033:0x7f4e6e67bbef [ 835.008463][ C0] RSP: 002b:00007ffd60744090 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 835.008494][ C0] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f4e6e67bbef [ 835.008515][ C0] RDX: 0000000000000001 RSI: 00007ffd607440e0 RDI: 0000000000000005 [ 835.008534][ C0] RBP: 00007f4e6e6da2aa R08: 0000000000000000 R09: 00007ffd60743ee7 [ 835.008554][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 835.008572][ C0] R13: 00007ffd607440e0 R14: 00007f4e6f2e4620 R15: 0000000000000003 [ 835.008611][ C0] [ 835.008624][ C0] DEBUG: waiting rtnl_mutex for 2761 jiffies. [ 835.008639][ C0] task:kworker/1:0 state:D stack:20760 pid:25 tgid:25 ppid:2 flags:0x00004000 [ 835.008686][ C0] Workqueue: events linkwatch_event [ 835.008718][ C0] Call Trace: [ 835.008729][ C0] [ 835.008747][ C0] __schedule+0x17e8/0x4a20 [ 835.008806][ C0] ? __pfx___schedule+0x10/0x10 [ 835.008841][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 835.008873][ C0] ? __pfx_lock_release+0x10/0x10 [ 835.008907][ C0] ? kick_pool+0x45c/0x620 [ 835.008946][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 835.008983][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 835.009023][ C0] ? schedule+0x90/0x320 [ 835.009054][ C0] schedule+0x14b/0x320 [ 835.009089][ C0] schedule_preempt_disabled+0x13/0x30 [ 835.009121][ C0] __mutex_lock+0x6a4/0xd70 [ 835.009162][ C0] ? __mutex_lock+0x527/0xd70 [ 835.009200][ C0] ? linkwatch_event+0xe/0x60 [ 835.009230][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 835.009276][ C0] ? process_scheduled_works+0x945/0x1830 [ 835.009306][ C0] ? rtnl_lock+0xe7/0x130 [ 835.009335][ C0] ? process_scheduled_works+0x945/0x1830 [ 835.009365][ C0] linkwatch_event+0xe/0x60 [ 835.009392][ C0] process_scheduled_works+0xa2c/0x1830 [ 835.009456][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 835.009498][ C0] ? assign_work+0x364/0x3d0 [ 835.009535][ C0] worker_thread+0x86d/0xd50 [ 835.009585][ C0] ? __kthread_parkme+0x169/0x1d0 [ 835.009623][ C0] ? __pfx_worker_thread+0x10/0x10 [ 835.009655][ C0] kthread+0x2f0/0x390 [ 835.009690][ C0] ? __pfx_worker_thread+0x10/0x10 [ 835.009721][ C0] ? __pfx_kthread+0x10/0x10 [ 835.009758][ C0] ret_from_fork+0x4b/0x80 [ 835.009792][ C0] ? __pfx_kthread+0x10/0x10 [ 835.009828][ C0] ret_from_fork_asm+0x1a/0x30 [ 835.009884][ C0] [ 835.009900][ C0] [ 835.009900][ C0] Showing all locks held in the system: [ 835.009916][ C0] 3 locks held by kworker/1:0/25: [ 835.009935][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 835.010022][ C0] #1: ffffc900001f7d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 835.010100][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 835.010185][ C0] 3 locks held by kworker/u8:5/947: [ 835.010206][ C0] 3 locks held by kworker/u8:6/1039: [ 835.010224][ C0] #0: ffff888029be4948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 835.010300][ C0] #1: ffffc90003ecfd00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 835.010377][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 835.010477][ C0] 5 locks held by kworker/u8:7/3216: [ 835.010493][ C0] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 835.010588][ C0] #1: ffffc9000a20fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 835.010664][ C0] #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 835.010735][ C0] #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 835.010819][ C0] #4: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 835.010907][ C0] 2 locks held by getty/4848: [ 835.010924][ C0] #0: ffff88802a6d70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 835.011011][ C0] #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 835.011095][ C0] 1 lock held by syz-executor.4/5369: [ 835.011113][ C0] 7 locks held by syz-executor.0/5814: [ 835.011130][ C0] #0: ffff88801eec8420 (sb_writers#18){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 [ 835.011216][ C0] #1: ffff888058f786c0 (&type->i_mutex_dir_key#11){+.+.}-{3:3}, at: path_openat+0x7d3/0x3280 [ 835.011308][ C0] #2: ffffffff8e210d80 (console_lock){+.+.}-{0:0}, at: vprintk_emit+0x4ed/0x900 [ 835.011389][ C0] #3: ffffffff8e210990 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 835.011460][ C0] #4: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 835.011543][ C0] #5: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 835.011623][ C0] #6: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 835.011703][ C0] 2 locks held by syz-executor.2/6410: [ 835.011726][ C0] 1 lock held by syz-executor.1/10927: [ 835.011744][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 835.011828][ C0] 3 locks held by syz-executor.2/10936: [ 835.011845][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 835.011911][ C0] #1: ffffffff8f655b88 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0 [ 835.011987][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: wg_set_device+0x102/0x2160 [ 835.012061][ C0] 4 locks held by syz-executor.0/10940: [ 835.012078][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 835.012151][ C0] #1: ffff88802354d088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 835.012223][ C0] #2: ffff8880222f8a58 (kn->active#51){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 835.012302][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: new_device_store+0x1b4/0x890 [ 835.012387][ C0] 7 locks held by syz-executor.4/10946: [ 835.012404][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 835.012480][ C0] #1: ffff888023a02088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 835.012573][ C0] #2: ffff8880222f8b48 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 835.012653][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 835.012736][ C0] #4: ffff88808565b0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0 [ 835.012817][ C0] #5: ffff88808565a250 (&devlink->lock_key#19){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160 [ 835.012900][ C0] #6: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0 [ 835.012979][ C0] 1 lock held by syz-executor.3/10968: [ 835.012997][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 835.013080][ C0] [ 835.013090][ C0] ============================================= [ 835.013090][ C0] [ 836.036905][ C0] DEBUG: holding rtnl_mutex for 2889 jiffies. [ 836.036934][ C0] task:kworker/u8:7 state:D stack:20944 pid:3216 tgid:3216 ppid:2 flags:0x00004000 [ 836.037001][ C0] Workqueue: netns cleanup_net [ 836.037036][ C0] Call Trace: [ 836.037049][ C0] [ 836.037068][ C0] __schedule+0x17e8/0x4a20 [ 836.037131][ C0] ? __pfx___schedule+0x10/0x10 [ 836.037168][ C0] ? __pfx_lock_release+0x10/0x10 [ 836.037199][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 836.037239][ C0] ? kthread_data+0x52/0xd0 [ 836.037273][ C0] ? wq_worker_sleeping+0x66/0x240 [ 836.037308][ C0] ? schedule+0x90/0x320 [ 836.037338][ C0] schedule+0x14b/0x320 [ 836.037374][ C0] synchronize_rcu_expedited+0x684/0x830 [ 836.037417][ C0] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 836.037475][ C0] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 836.037513][ C0] ? __pfx___might_resched+0x10/0x10 [ 836.037541][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 836.037579][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 836.037612][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 836.037657][ C0] synchronize_rcu+0x11b/0x360 [ 836.037694][ C0] ? __pfx_synchronize_rcu+0x10/0x10 [ 836.037749][ C0] lockdep_unregister_key+0x4b7/0x540 [ 836.037787][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 836.037827][ C0] ? team_uninit+0x383/0x3e0 [ 836.037861][ C0] ? __pfx_team_uninit+0x10/0x10 [ 836.037893][ C0] unregister_netdevice_many_notify+0x10c5/0x16b0 [ 836.037945][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 836.037986][ C0] ? unregister_netdevice_queue+0x26b/0x370 [ 836.038021][ C0] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 836.038057][ C0] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 836.038101][ C0] default_device_exit_batch+0xa0f/0xa90 [ 836.038153][ C0] ? __pfx___might_resched+0x10/0x10 [ 836.038184][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 836.038234][ C0] ? cfg802154_pernet_exit+0xc3/0xe0 [ 836.038272][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 836.038315][ C0] cleanup_net+0x89d/0xcc0 [ 836.038350][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 836.038393][ C0] ? process_scheduled_works+0x945/0x1830 [ 836.038431][ C0] process_scheduled_works+0xa2c/0x1830 [ 836.038495][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 836.038537][ C0] ? assign_work+0x364/0x3d0 [ 836.038584][ C0] worker_thread+0x86d/0xd50 [ 836.038634][ C0] ? __kthread_parkme+0x169/0x1d0 [ 836.038672][ C0] ? __pfx_worker_thread+0x10/0x10 [ 836.038703][ C0] kthread+0x2f0/0x390 [ 836.038738][ C0] ? __pfx_worker_thread+0x10/0x10 [ 836.038769][ C0] ? __pfx_kthread+0x10/0x10 [ 836.038804][ C0] ret_from_fork+0x4b/0x80 [ 836.038840][ C0] ? __pfx_kthread+0x10/0x10 [ 836.038875][ C0] ret_from_fork_asm+0x1a/0x30 [ 836.038931][ C0] [ 836.038943][ C0] DEBUG: waiting rtnl_mutex for 2907 jiffies. [ 836.038959][ C0] task:syz-executor.1 state:D stack:19968 pid:10927 tgid:10927 ppid:1 flags:0x00000006 [ 836.039003][ C0] Call Trace: [ 836.039014][ C0] [ 836.039031][ C0] __schedule+0x17e8/0x4a20 [ 836.039089][ C0] ? __pfx___schedule+0x10/0x10 [ 836.039126][ C0] ? __pfx_lock_release+0x10/0x10 [ 836.039159][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 836.039209][ C0] ? schedule+0x90/0x320 [ 836.039240][ C0] schedule+0x14b/0x320 [ 836.039274][ C0] schedule_preempt_disabled+0x13/0x30 [ 836.039306][ C0] __mutex_lock+0x6a4/0xd70 [ 836.039346][ C0] ? __mutex_lock+0x527/0xd70 [ 836.039384][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 836.039424][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 836.039473][ C0] ? rtnl_lock+0xe7/0x130 [ 836.039503][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 836.039547][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 836.039600][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 836.039636][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 836.039679][ C0] ? __pfx_validate_chain+0x10/0x10 [ 836.039717][ C0] ? __pfx_validate_chain+0x10/0x10 [ 836.039755][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 836.039794][ C0] ? mark_lock+0x9a/0x360 [ 836.039826][ C0] ? __pfx_validate_chain+0x10/0x10 [ 836.039866][ C0] ? __lock_acquire+0x1359/0x2000 [ 836.039917][ C0] ? mark_lock+0x9a/0x360 [ 836.039956][ C0] ? __lock_acquire+0x1359/0x2000 [ 836.040013][ C0] netlink_rcv_skb+0x1e3/0x430 [ 836.040050][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 836.040091][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 836.040154][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 836.040193][ C0] netlink_unicast+0x7ea/0x980 [ 836.040236][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 836.040266][ C0] ? __virt_addr_valid+0x183/0x520 [ 836.040306][ C0] ? __check_object_size+0x49c/0x900 [ 836.040349][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 836.040384][ C0] netlink_sendmsg+0x8db/0xcb0 [ 836.040435][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 836.040468][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 836.040504][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 836.040535][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 836.040572][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 836.040611][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 836.040645][ C0] __sock_sendmsg+0x221/0x270 [ 836.040688][ C0] __sys_sendto+0x3a4/0x4f0 [ 836.040726][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 836.040787][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 836.040822][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 836.040862][ C0] __x64_sys_sendto+0xde/0x100 [ 836.040897][ C0] do_syscall_64+0xf3/0x230 [ 836.040925][ C0] ? clear_bhb_loop+0x35/0x90 [ 836.040958][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.040988][ C0] RIP: 0033:0x7fc12947eb9c [ 836.041020][ C0] RSP: 002b:00007fff433a4530 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 836.041051][ C0] RAX: ffffffffffffffda RBX: 00007fc12a0e4620 RCX: 00007fc12947eb9c [ 836.041072][ C0] RDX: 000000000000002c RSI: 00007fc12a0e4670 RDI: 0000000000000003 [ 836.041092][ C0] RBP: 0000000000000000 R08: 00007fff433a4584 R09: 000000000000000c [ 836.041111][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 836.041130][ C0] R13: 0000000000000000 R14: 00007fc12a0e4670 R15: 0000000000000000 [ 836.041168][ C0] [ 836.041180][ C0] DEBUG: waiting rtnl_mutex for 2909 jiffies. [ 836.041196][ C0] task:kworker/u8:6 state:D stack:21040 pid:1039 tgid:1039 ppid:2 flags:0x00004000 [ 836.041242][ C0] Workqueue: ipv6_addrconf addrconf_dad_work [ 836.041282][ C0] Call Trace: [ 836.041292][ C0] [ 836.041310][ C0] __schedule+0x17e8/0x4a20 [ 836.041368][ C0] ? __pfx___schedule+0x10/0x10 [ 836.041404][ C0] ? __pfx_lock_release+0x10/0x10 [ 836.041438][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 836.041477][ C0] ? kthread_data+0x52/0xd0 [ 836.041508][ C0] ? schedule+0x90/0x320 [ 836.041538][ C0] ? wq_worker_sleeping+0x66/0x240 [ 836.041580][ C0] ? schedule+0x90/0x320 [ 836.041610][ C0] schedule+0x14b/0x320 [ 836.041643][ C0] schedule_preempt_disabled+0x13/0x30 [ 836.041673][ C0] __mutex_lock+0x6a4/0xd70 [ 836.041706][ C0] ? mark_lock+0x9a/0x360 [ 836.041743][ C0] ? __mutex_lock+0x527/0xd70 [ 836.041780][ C0] ? addrconf_dad_work+0xd0/0x16f0 [ 836.041819][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 836.041868][ C0] ? rtnl_lock+0xe7/0x130 [ 836.041897][ C0] addrconf_dad_work+0xd0/0x16f0 [ 836.041946][ C0] ? __pfx_addrconf_dad_work+0x10/0x10 [ 836.041985][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 836.042032][ C0] ? process_scheduled_works+0x945/0x1830 [ 836.042062][ C0] process_scheduled_works+0xa2c/0x1830 [ 836.042126][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 836.042168][ C0] ? assign_work+0x364/0x3d0 [ 836.042205][ C0] worker_thread+0x86d/0xd50 [ 836.042247][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 836.042285][ C0] ? __kthread_parkme+0x169/0x1d0 [ 836.042322][ C0] ? __pfx_worker_thread+0x10/0x10 [ 836.042354][ C0] kthread+0x2f0/0x390 [ 836.042388][ C0] ? __pfx_worker_thread+0x10/0x10 [ 836.042419][ C0] ? __pfx_kthread+0x10/0x10 [ 836.042455][ C0] ret_from_fork+0x4b/0x80 [ 836.042489][ C0] ? __pfx_kthread+0x10/0x10 [ 836.042524][ C0] ret_from_fork_asm+0x1a/0x30 [ 836.042584][ C0] [ 836.042596][ C0] DEBUG: waiting rtnl_mutex for 2909 jiffies. [ 836.042611][ C0] task:syz-executor.3 state:D stack:21024 pid:10968 tgid:10968 ppid:10966 flags:0x00004002 [ 836.042655][ C0] Call Trace: [ 836.042666][ C0] [ 836.042683][ C0] __schedule+0x17e8/0x4a20 [ 836.042741][ C0] ? __pfx___schedule+0x10/0x10 [ 836.042777][ C0] ? __pfx_lock_release+0x10/0x10 [ 836.042810][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 836.042861][ C0] ? schedule+0x90/0x320 [ 836.042892][ C0] schedule+0x14b/0x320 [ 836.042926][ C0] schedule_preempt_disabled+0x13/0x30 [ 836.042958][ C0] __mutex_lock+0x6a4/0xd70 [ 836.042998][ C0] ? __mutex_lock+0x527/0xd70 [ 836.043036][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 836.043075][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 836.043124][ C0] ? rtnl_lock+0xe7/0x130 [ 836.043154][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 836.043198][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 836.043239][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 836.043276][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 836.043318][ C0] ? __pfx_validate_chain+0x10/0x10 [ 836.043356][ C0] ? __pfx_validate_chain+0x10/0x10 [ 836.043394][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 836.043433][ C0] ? mark_lock+0x9a/0x360 [ 836.043465][ C0] ? __pfx_validate_chain+0x10/0x10 [ 836.043505][ C0] ? __lock_acquire+0x1359/0x2000 [ 836.043555][ C0] ? mark_lock+0x9a/0x360 [ 836.043600][ C0] ? __lock_acquire+0x1359/0x2000 [ 836.043653][ C0] netlink_rcv_skb+0x1e3/0x430 [ 836.043683][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 836.043715][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 836.043775][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 836.043812][ C0] netlink_unicast+0x7ea/0x980 [ 836.043857][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 836.043887][ C0] ? __virt_addr_valid+0x183/0x520 [ 836.043927][ C0] ? __check_object_size+0x49c/0x900 [ 836.043961][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 836.043995][ C0] netlink_sendmsg+0x8db/0xcb0 [ 836.044047][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 836.044082][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 836.044117][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 836.044149][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 836.044181][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 836.044220][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 836.044254][ C0] __sock_sendmsg+0x221/0x270 [ 836.044298][ C0] __sys_sendto+0x3a4/0x4f0 [ 836.044336][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 836.044397][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 836.044434][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 836.044474][ C0] __x64_sys_sendto+0xde/0x100 [ 836.044510][ C0] do_syscall_64+0xf3/0x230 [ 836.044538][ C0] ? clear_bhb_loop+0x35/0x90 [ 836.044585][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.044614][ C0] RIP: 0033:0x7f5b4367eb9c [ 836.044637][ C0] RSP: 002b:00007ffc03fb9b80 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 836.044668][ C0] RAX: ffffffffffffffda RBX: 00007f5b442e4620 RCX: 00007f5b4367eb9c [ 836.044689][ C0] RDX: 0000000000000028 RSI: 00007f5b442e4670 RDI: 0000000000000003 [ 836.044709][ C0] RBP: 0000000000000000 R08: 00007ffc03fb9bd4 R09: 000000000000000c [ 836.044728][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 836.044747][ C0] R13: 0000000000000000 R14: 00007f5b442e4670 R15: 0000000000000000 [ 836.044785][ C0] [ 836.044797][ C0] DEBUG: waiting rtnl_mutex for 2895 jiffies. [ 836.044812][ C0] task:syz-executor.2 state:D stack:21024 pid:10936 tgid:10936 ppid:10934 flags:0x00000002 [ 836.044856][ C0] Call Trace: [ 836.044867][ C0] [ 836.044935][ C0] __schedule+0x17e8/0x4a20 [ 836.045001][ C0] ? __pfx___schedule+0x10/0x10 [ 836.045034][ C0] ? __pfx_lock_release+0x10/0x10 [ 836.045066][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 836.045113][ C0] ? schedule+0x90/0x320 [ 836.045145][ C0] schedule+0x14b/0x320 [ 836.045179][ C0] schedule_preempt_disabled+0x13/0x30 [ 836.045211][ C0] __mutex_lock+0x6a4/0xd70 [ 836.045252][ C0] ? __mutex_lock+0x527/0xd70 [ 836.045290][ C0] ? wg_set_device+0x102/0x2160 [ 836.045321][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 836.045362][ C0] ? dev_get_by_name+0x25/0x2d0 [ 836.045397][ C0] ? dev_get_by_name+0x28c/0x2d0 [ 836.045435][ C0] ? rtnl_lock+0xe7/0x130 [ 836.045465][ C0] wg_set_device+0x102/0x2160 [ 836.045513][ C0] ? __pfx___nla_validate_parse+0x10/0x10 [ 836.045552][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 836.045617][ C0] ? __nla_parse+0x40/0x60 [ 836.045654][ C0] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 836.045695][ C0] genl_rcv_msg+0xb14/0xec0 [ 836.045722][ C0] ? mark_lock+0x9a/0x360 [ 836.045766][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 836.045823][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 836.045856][ C0] ? __pfx_wg_set_device+0x10/0x10 [ 836.045885][ C0] ? __pfx___might_resched+0x10/0x10 [ 836.045929][ C0] netlink_rcv_skb+0x1e3/0x430 [ 836.045966][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 836.045997][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 836.046069][ C0] genl_rcv+0x28/0x40 [ 836.046095][ C0] netlink_unicast+0x7ea/0x980 [ 836.046139][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 836.046170][ C0] ? __virt_addr_valid+0x183/0x520 [ 836.046210][ C0] ? __check_object_size+0x49c/0x900 [ 836.046244][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 836.046278][ C0] netlink_sendmsg+0x8db/0xcb0 [ 836.046327][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 836.046367][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 836.046398][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 836.046430][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 836.046469][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 836.046503][ C0] __sock_sendmsg+0x221/0x270 [ 836.046564][ C0] __sys_sendto+0x3a4/0x4f0 [ 836.046603][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 836.046663][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 836.046700][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 836.046740][ C0] __x64_sys_sendto+0xde/0x100 [ 836.046775][ C0] do_syscall_64+0xf3/0x230 [ 836.046803][ C0] ? clear_bhb_loop+0x35/0x90 [ 836.046836][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.046866][ C0] RIP: 0033:0x7f3bfb67eb9c [ 836.046888][ C0] RSP: 002b:00007ffdb79e8f90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 836.046920][ C0] RAX: ffffffffffffffda RBX: 00007f3bfc2e4620 RCX: 00007f3bfb67eb9c [ 836.046942][ C0] RDX: 0000000000000170 RSI: 00007f3bfc2e4670 RDI: 0000000000000005 [ 836.046962][ C0] RBP: 0000000000000000 R08: 00007ffdb79e8fe4 R09: 000000000000000c [ 836.046980][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005 [ 836.046998][ C0] R13: 0000000000000000 R14: 00007f3bfc2e4670 R15: 0000000000000000 [ 836.047036][ C0] [ 836.047048][ C0] DEBUG: waiting rtnl_mutex for 2885 jiffies. [ 836.047065][ C0] task:syz-executor.4 state:D stack:21024 pid:10946 tgid:10946 ppid:10944 flags:0x00004002 [ 836.047110][ C0] Call Trace: [ 836.047121][ C0] [ 836.047139][ C0] __schedule+0x17e8/0x4a20 [ 836.047198][ C0] ? __pfx___schedule+0x10/0x10 [ 836.047236][ C0] ? __pfx_lock_release+0x10/0x10 [ 836.047270][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 836.047322][ C0] ? schedule+0x90/0x320 [ 836.047353][ C0] schedule+0x14b/0x320 [ 836.047388][ C0] schedule_preempt_disabled+0x13/0x30 [ 836.047421][ C0] __mutex_lock+0x6a4/0xd70 [ 836.047456][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 836.047487][ C0] ? __mutex_lock+0x527/0xd70 [ 836.047525][ C0] ? nsim_destroy+0x71/0x5c0 [ 836.047553][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 836.047601][ C0] ? __pfx_mntput_no_expire+0x10/0x10 [ 836.047644][ C0] ? rtnl_lock+0xe7/0x130 [ 836.047675][ C0] nsim_destroy+0x71/0x5c0 [ 836.047710][ C0] __nsim_dev_port_del+0x14b/0x1b0 [ 836.047744][ C0] nsim_dev_reload_destroy+0x28a/0x490 [ 836.047782][ C0] ? __pfx_nsim_bus_remove+0x10/0x10 [ 836.047819][ C0] nsim_drv_remove+0x58/0x160 [ 836.047853][ C0] device_release_driver_internal+0x4a9/0x7c0 [ 836.047902][ C0] bus_remove_device+0x34f/0x420 [ 836.047940][ C0] device_del+0x57a/0x9b0 [ 836.047984][ C0] ? __pfx_device_del+0x10/0x10 [ 836.048030][ C0] device_unregister+0x20/0xc0 [ 836.048064][ C0] del_device_store+0x363/0x480 [ 836.048108][ C0] ? __pfx_del_device_store+0x10/0x10 [ 836.048152][ C0] ? sysfs_kf_write+0x182/0x2a0 [ 836.048184][ C0] ? bus_attr_store+0x4f/0xa0 [ 836.048217][ C0] ? __pfx_sysfs_kf_write+0x10/0x10 [ 836.048256][ C0] kernfs_fop_write_iter+0x3a1/0x500 [ 836.048294][ C0] vfs_write+0xa72/0xc90 [ 836.048326][ C0] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 836.048358][ C0] ? __pfx_vfs_write+0x10/0x10 [ 836.048412][ C0] ksys_write+0x1a0/0x2c0 [ 836.048447][ C0] ? __pfx_ksys_write+0x10/0x10 [ 836.048475][ C0] ? do_syscall_64+0x100/0x230 [ 836.048506][ C0] ? do_syscall_64+0xb6/0x230 [ 836.048536][ C0] do_syscall_64+0xf3/0x230 [ 836.048569][ C0] ? clear_bhb_loop+0x35/0x90 [ 836.048602][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.048632][ C0] RIP: 0033:0x7f4e6e67bbef [ 836.048654][ C0] RSP: 002b:00007ffd60744090 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 836.048684][ C0] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f4e6e67bbef [ 836.048705][ C0] RDX: 0000000000000001 RSI: 00007ffd607440e0 RDI: 0000000000000005 [ 836.048724][ C0] RBP: 00007f4e6e6da2aa R08: 0000000000000000 R09: 00007ffd60743ee7 [ 836.048743][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 836.048762][ C0] R13: 00007ffd607440e0 R14: 00007f4e6f2e4620 R15: 0000000000000003 [ 836.048801][ C0] [ 836.048814][ C0] DEBUG: waiting rtnl_mutex for 2865 jiffies. [ 836.048829][ C0] task:kworker/1:0 state:D stack:20760 pid:25 tgid:25 ppid:2 flags:0x00004000 [ 836.048876][ C0] Workqueue: events linkwatch_event [ 836.048907][ C0] Call Trace: [ 836.048918][ C0] [ 836.048936][ C0] __schedule+0x17e8/0x4a20 [ 836.048994][ C0] ? __pfx___schedule+0x10/0x10 [ 836.049029][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 836.049061][ C0] ? __pfx_lock_release+0x10/0x10 [ 836.049095][ C0] ? kick_pool+0x45c/0x620 [ 836.049134][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 836.049165][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 836.049204][ C0] ? schedule+0x90/0x320 [ 836.049234][ C0] schedule+0x14b/0x320 [ 836.049270][ C0] schedule_preempt_disabled+0x13/0x30 [ 836.049302][ C0] __mutex_lock+0x6a4/0xd70 [ 836.049342][ C0] ? __mutex_lock+0x527/0xd70 [ 836.049380][ C0] ? linkwatch_event+0xe/0x60 [ 836.049410][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 836.049457][ C0] ? process_scheduled_works+0x945/0x1830 [ 836.049487][ C0] ? rtnl_lock+0xe7/0x130 [ 836.049515][ C0] ? process_scheduled_works+0x945/0x1830 [ 836.049545][ C0] linkwatch_event+0xe/0x60 [ 836.049578][ C0] process_scheduled_works+0xa2c/0x1830 [ 836.049643][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 836.049685][ C0] ? assign_work+0x364/0x3d0 [ 836.049722][ C0] worker_thread+0x86d/0xd50 [ 836.049772][ C0] ? __kthread_parkme+0x169/0x1d0 [ 836.049810][ C0] ? __pfx_worker_thread+0x10/0x10 [ 836.049843][ C0] kthread+0x2f0/0x390 [ 836.049877][ C0] ? __pfx_worker_thread+0x10/0x10 [ 836.049908][ C0] ? __pfx_kthread+0x10/0x10 [ 836.049945][ C0] ret_from_fork+0x4b/0x80 [ 836.049979][ C0] ? __pfx_kthread+0x10/0x10 [ 836.050014][ C0] ret_from_fork_asm+0x1a/0x30 [ 836.050070][ C0] [ 836.050087][ C0] [ 836.050087][ C0] Showing all locks held in the system: [ 836.050103][ C0] 3 locks held by kworker/1:0/25: [ 836.050120][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 836.050198][ C0] #1: ffffc900001f7d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 836.050286][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 836.050372][ C0] 3 locks held by kworker/u8:5/947: [ 836.050392][ C0] 3 locks held by kworker/u8:6/1039: [ 836.050409][ C0] #0: ffff888029be4948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 836.050485][ C0] #1: ffffc90003ecfd00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 836.050566][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 836.050666][ C0] 5 locks held by kworker/u8:7/3216: [ 836.050682][ C0] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 836.050757][ C0] #1: ffffc9000a20fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 836.050829][ C0] #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 836.050901][ C0] #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 836.050985][ C0] #4: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 836.051071][ C0] 2 locks held by getty/4848: [ 836.051087][ C0] #0: ffff88802a6d70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 836.051168][ C0] #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 836.051251][ C0] 1 lock held by syz-executor.4/5369: [ 836.051269][ C0] 7 locks held by syz-executor.0/5814: [ 836.051285][ C0] #0: ffff88801eec8420 (sb_writers#18){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 [ 836.051371][ C0] #1: ffff888058f786c0 (&type->i_mutex_dir_key#11){+.+.}-{3:3}, at: path_openat+0x7d3/0x3280 [ 836.051462][ C0] #2: ffffffff8e210d80 (console_lock){+.+.}-{0:0}, at: vprintk_emit+0x4ed/0x900 [ 836.051543][ C0] #3: ffffffff8e210990 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 836.051621][ C0] #4: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 836.051704][ C0] #5: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 836.051784][ C0] #6: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 836.051863][ C0] 2 locks held by syz-executor.2/6410: [ 836.051885][ C0] 1 lock held by syz-executor.1/10927: [ 836.051903][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 836.051987][ C0] 3 locks held by syz-executor.2/10936: [ 836.052004][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 836.052073][ C0] #1: ffffffff8f655b88 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0 [ 836.052144][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: wg_set_device+0x102/0x2160 [ 836.052215][ C0] 4 locks held by syz-executor.0/10940: [ 836.052232][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 836.052309][ C0] #1: ffff88802354d088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 836.052396][ C0] #2: ffff8880222f8a58 (kn->active#51){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 836.052492][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: new_device_store+0x1b4/0x890 [ 836.052579][ C0] 7 locks held by syz-executor.4/10946: [ 836.052597][ C0] #0: ffff88807e804420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 836.052673][ C0] #1: ffff888023a02088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 836.052739][ C0] #2: ffff8880222f8b48 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 836.052817][ C0] #3: ffffffff8eefc428 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 836.052894][ C0] #4: ffff88808565b0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0 [ 836.052967][ C0] #5: ffff88808565a250 (&devlink->lock_key#19){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160 [ 836.053050][ C0] #6: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0 [ 836.053121][ C0] 1 lock held by syz-executor.3/10968: [ 836.053139][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 836.053220][ C0] [ 836.053229][ C0] ============================================= [ 836.053229][ C0] [ 836.730201][ T5369] sysv_free_block: flc_count > flc_size [ 837.084993][ C0] DEBUG: holding rtnl_mutex for 2993 jiffies. [ 837.115332][ T5814] Buffer I/O error on dev loop0, logical block 3245768, async page read [ 837.116237][ C0] task:kworker/u8:7 state:D [ 837.121612][ T5814] syz-executor.0: attempt to access beyond end of device [ 837.121612][ T5814] loop0: rw=0, sector=17666806, nr_sectors = 2 limit=128 [ 837.126816][ C0] stack:20944 pid:3216 tgid:3216 ppid:2 flags:0x00004000 [ 837.126849][ C0] Workqueue: netns cleanup_net [ 837.126885][ C0] Call Trace: [ 837.126897][ C0] [ 837.126915][ C0] __schedule+0x17e8/0x4a20 [ 837.126975][ C0] ? __pfx___schedule+0x10/0x10 [ 837.127011][ C0] ? __pfx_lock_release+0x10/0x10 [ 837.127043][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 837.183099][ T5814] Buffer I/O error on dev loop0, logical block 8833403, async page read [ 837.185131][ C0] ? kthread_data+0x52/0xd0 [ 837.185174][ C0] ? wq_worker_sleeping+0x66/0x240 [ 837.185207][ C0] ? schedule+0x90/0x320 [ 837.185239][ C0] schedule+0x14b/0x320 [ 837.185275][ C0] synchronize_rcu_expedited+0x684/0x830 [ 837.185320][ C0] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 837.185377][ C0] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 837.185415][ C0] ? __pfx___might_resched+0x10/0x10 [ 837.185443][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 837.185474][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 837.190396][ T5814] syz-executor.0: attempt to access beyond end of device [ 837.190396][ T5814] loop0: rw=0, sector=26539618, nr_sectors = 2 limit=128 [ 837.194830][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 837.215156][ T5814] Buffer I/O error on dev loop0, logical block 13269809, async page read [ 837.218374][ C0] synchronize_rcu+0x11b/0x360 [ 837.245192][ T5814] syz-executor.0: attempt to access beyond end of device [ 837.245192][ T5814] loop0: rw=0, sector=16147212, nr_sectors = 2 limit=128 [ 837.250504][ C0] ? __pfx_synchronize_rcu+0x10/0x10 [ 837.265007][ T5814] Buffer I/O error on dev loop0, logical block 8073606, async page read [ 837.267690][ C0] lockdep_unregister_key+0x4b7/0x540 [ 837.294348][ T5814] sysv_free_inode: unable to read inode block on device loop0 [ 837.298592][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 837.298642][ C0] ? team_uninit+0x383/0x3e0 [ 837.298675][ C0] ? __pfx_team_uninit+0x10/0x10 [ 837.298707][ C0] unregister_netdevice_many_notify+0x10c5/0x16b0 [ 837.298760][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 837.298801][ C0] ? unregister_netdevice_queue+0x26b/0x370 [ 837.298836][ C0] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 837.353849][ T5369] sysv_free_block: flc_count > flc_size [ 837.356671][ C0] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 837.356723][ C0] default_device_exit_batch+0xa0f/0xa90 [ 837.356776][ C0] ? __pfx___might_resched+0x10/0x10 [ 837.356807][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 837.356857][ C0] ? cfg802154_pernet_exit+0xc3/0xe0 [ 837.356894][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 837.356936][ C0] cleanup_net+0x89d/0xcc0 [ 837.356969][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 837.357012][ C0] ? process_scheduled_works+0x945/0x1830 [ 837.357042][ C0] process_scheduled_works+0xa2c/0x1830 [ 837.357106][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 837.357147][ C0] ? assign_work+0x364/0x3d0 [ 837.357182][ C0] worker_thread+0x86d/0xd50 [ 837.357231][ C0] ? __kthread_parkme+0x169/0x1d0 [ 837.357269][ C0] ? __pfx_worker_thread+0x10/0x10 [ 837.357299][ C0] kthread+0x2f0/0x390 [ 837.357333][ C0] ? __pfx_worker_thread+0x10/0x10 [ 837.357363][ C0] ? __pfx_kthread+0x10/0x10 [ 837.415083][ T5369] sysv_free_block: flc_count > flc_size [ 837.418288][ C0] ret_from_fork+0x4b/0x80 [ 837.422961][ T5369] sysv_free_block: flc_count > flc_size [ 837.428182][ C0] ? __pfx_kthread+0x10/0x10 [ 837.428223][ C0] ret_from_fork_asm+0x1a/0x30 [ 837.428277][ C0] [ 837.428291][ C0] DEBUG: waiting rtnl_mutex for 3046 jiffies. [ 837.428308][ C0] task:syz-executor.1 state:D stack:19968 pid:10927 tgid:10927 ppid:1 flags:0x00000006 [ 837.428357][ C0] Call Trace: [ 837.428369][ C0] [ 837.428387][ C0] __schedule+0x17e8/0x4a20 [ 837.428446][ C0] ? __pfx___schedule+0x10/0x10 [ 837.428488][ C0] ? __pfx_lock_release+0x10/0x10 [ 837.428521][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 837.428571][ C0] ? schedule+0x90/0x320 [ 837.445020][ T5369] sysv_free_block: flc_count > flc_size [ 837.448968][ C0] schedule+0x14b/0x320 [ 837.453258][ T5369] sysv_free_block: flc_count > flc_size [ 837.458157][ C0] schedule_preempt_disabled+0x13/0x30 [ 837.458196][ C0] __mutex_lock+0x6a4/0xd70 [ 837.458235][ C0] ? __mutex_lock+0x527/0xd70 [ 837.458273][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 837.458314][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 837.458363][ C0] ? rtnl_lock+0xe7/0x130 [ 837.458393][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 837.458444][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 837.458482][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 837.458517][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 837.458559][ C0] ? __pfx_validate_chain+0x10/0x10 [ 837.504977][ T5369] sysv_free_block: flc_count > flc_size [ 837.512471][ C0] ? __pfx_validate_chain+0x10/0x10 [ 837.564999][ T5369] sysv_free_block: flc_count > flc_size [ 837.567496][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 837.571956][ T5369] sysv_free_block: flc_count > flc_size [ 837.576835][ C0] ? mark_lock+0x9a/0x360 [ 837.576871][ C0] ? __pfx_validate_chain+0x10/0x10 [ 837.576909][ C0] ? __lock_acquire+0x1359/0x2000 [ 837.576960][ C0] ? mark_lock+0x9a/0x360 [ 837.576998][ C0] ? __lock_acquire+0x1359/0x2000 [ 837.577051][ C0] netlink_rcv_skb+0x1e3/0x430 [ 837.615254][ T5369] sysv_free_block: flc_count > flc_size [ 837.616980][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 837.621733][ T5369] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 837.626164][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 837.626235][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 840.747092][ T5129] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 840.751797][ C0] netlink_unicast+0x7ea/0x980 [ 840.751856][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 840.765549][ T5129] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 840.767617][ C0] ? __virt_addr_valid+0x183/0x520 [ 840.785322][ T5129] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 840.788518][ C0] ? __check_object_size+0x49c/0x900 [ 840.795099][ T5129] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 840.798637][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 840.806068][ T5129] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 840.807805][ C0] netlink_sendmsg+0x8db/0xcb0 [ 840.812887][ T5129] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 840.816834][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 842.915225][ T5129] Bluetooth: hci1: command tx timeout [ 842.922934][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 844.995150][ T5129] Bluetooth: hci1: command tx timeout [ 844.998207][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 847.075602][ T5129] Bluetooth: hci1: command tx timeout [ 847.077612][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 849.155347][ T5129] Bluetooth: hci1: command tx timeout [ 849.158001][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 851.204854][T10561] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 851.211656][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 851.211703][ C0] __sock_sendmsg+0x221/0x270 [ 851.211745][ C0] __sys_sendto+0x3a4/0x4f0 [ 851.211783][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 851.211842][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 851.211878][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 851.211918][ C0] __x64_sys_sendto+0xde/0x100 [ 851.211954][ C0] do_syscall_64+0xf3/0x230 [ 851.211982][ C0] ? clear_bhb_loop+0x35/0x90 [ 851.212016][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 851.212043][ C0] RIP: 0033:0x7fc12947eb9c [ 851.212066][ C0] RSP: 002b:00007fff433a4530 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 851.212096][ C0] RAX: ffffffffffffffda RBX: 00007fc12a0e4620 RCX: 00007fc12947eb9c [ 851.212117][ C0] RDX: 000000000000002c RSI: 00007fc12a0e4670 RDI: 0000000000000003 [ 851.212135][ C0] RBP: 0000000000000000 R08: 00007fff433a4584 R09: 000000000000000c [ 851.212154][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 851.212171][ C0] R13: 0000000000000000 R14: 00007fc12a0e4670 R15: 0000000000000000 [ 851.212204][ C0] [ 851.212217][ C0] DEBUG: waiting rtnl_mutex for 4426 jiffies. [ 851.212232][ C0] task:kworker/u8:6 state:D stack:21040 pid:1039 tgid:1039 ppid:2 flags:0x00004000 [ 851.212279][ C0] Workqueue: ipv6_addrconf addrconf_dad_work [ 851.212319][ C0] Call Trace: [ 851.212332][ C0] [ 851.212348][ C0] __schedule+0x17e8/0x4a20 [ 851.212415][ C0] ? __pfx___schedule+0x10/0x10 [ 851.224596][T10561] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 851.226802][ C0] ? __pfx_lock_release+0x10/0x10 [ 851.226843][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 851.226881][ C0] ? kthread_data+0x52/0xd0 [ 851.234539][T10561] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 851.237049][ C0] ? schedule+0x90/0x320 [ 851.237088][ C0] ? wq_worker_sleeping+0x66/0x240 [ 851.237123][ C0] ? schedule+0x90/0x320 [ 851.237154][ C0] schedule+0x14b/0x320 [ 851.253305][T10561] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 851.257589][ C0] schedule_preempt_disabled+0x13/0x30 [ 851.257632][ C0] __mutex_lock+0x6a4/0xd70 [ 851.257667][ C0] ? mark_lock+0x9a/0x360 [ 851.267815][T10561] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 851.271810][ C0] ? __mutex_lock+0x527/0xd70 [ 851.277587][T10561] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 851.282234][ C0] ? addrconf_dad_work+0xd0/0x16f0 [ 852.766995][ T5129] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 852.768181][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 852.780341][ T5129] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 852.784365][ C0] ? rtnl_lock+0xe7/0x130 [ 852.792721][ T5129] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 852.794373][ C0] addrconf_dad_work+0xd0/0x16f0 [ 852.803131][ T5129] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 852.804925][ C0] ? __pfx_addrconf_dad_work+0x10/0x10 [ 852.811336][ T5129] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 852.815297][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 852.820820][ T5129] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 852.825423][ C0] ? process_scheduled_works+0x945/0x1830 [ 852.825463][ C0] process_scheduled_works+0xa2c/0x1830 [ 852.825525][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 853.195750][ T5129] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 853.197984][ C0] ? assign_work+0x364/0x3d0 [ 853.209286][ T5129] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 853.212547][ C0] worker_thread+0x86d/0xd50 [ 853.225385][ T5129] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 853.227673][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 853.235562][ T5129] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 853.237100][ C0] ? __kthread_parkme+0x169/0x1d0 [ 853.243264][ T5129] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 853.247804][ C0] ? __pfx_worker_thread+0x10/0x10 [ 853.247852][ C0] kthread+0x2f0/0x390 [ 853.247887][ C0] ? __pfx_worker_thread+0x10/0x10 [ 853.253986][ T5129] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 853.258428][ C0] ? __pfx_kthread+0x10/0x10 [ 853.258476][ C0] ret_from_fork+0x4b/0x80 [ 853.258510][ C0] ? __pfx_kthread+0x10/0x10 [ 853.258550][ C0] ret_from_fork_asm+0x1a/0x30 [ 853.258604][ C0] [ 853.258617][ C0] DEBUG: waiting rtnl_mutex for 4631 jiffies. [ 853.258634][ C0] task:syz-executor.3 state:D stack:21024 pid:10968 tgid:10968 ppid:10966 flags:0x00004002 [ 853.258683][ C0] Call Trace: [ 853.258694][ C0] [ 853.258711][ C0] __schedule+0x17e8/0x4a20 [ 853.258771][ C0] ? __pfx___schedule+0x10/0x10 [ 853.258806][ C0] ? __pfx_lock_release+0x10/0x10 [ 853.315441][ T5129] Bluetooth: hci7: command tx timeout [ 853.319076][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 854.915538][ T5129] Bluetooth: hci8: command tx timeout [ 854.916161][ C0] ? schedule+0x90/0x320 [ 855.315238][ T5129] Bluetooth: hci10: command tx timeout [ 855.318317][ C0] schedule+0x14b/0x320 [ 855.395518][ T5129] Bluetooth: hci7: command tx timeout [ 855.397952][ C0] schedule_preempt_disabled+0x13/0x30 [ 856.995233][ T5129] Bluetooth: hci8: command tx timeout [ 856.997262][ C0] __mutex_lock+0x6a4/0xd70 [ 857.395096][ T5129] Bluetooth: hci10: command tx timeout [ 857.400381][ C0] ? __mutex_lock+0x527/0xd70 [ 857.475513][ T5129] Bluetooth: hci7: command tx timeout [ 857.475582][ C0] ? rtnetlink_rcv_msg+0x839/0x1170 [ 859.075366][ T5129] Bluetooth: hci8: command tx timeout [ 859.081025][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 859.475632][ T5129] Bluetooth: hci10: command tx timeout [ 859.475887][ C0] ? rtnl_lock+0xe7/0x130 [ 859.555323][ T5129] Bluetooth: hci7: command tx timeout [ 859.558312][ C0] rtnetlink_rcv_msg+0x839/0x1170 [ 860.058439][ T6410] ================================================================== [ 860.062219][ C0] ? rtnetlink_rcv_msg+0x208/0x1170 [ 860.072355][ T6410] BUG: KASAN: use-after-free in sysv_new_inode+0xfd3/0x1170 [ 860.072383][ T6410] Read of size 2 at addr ffff8880367911ce by task syz-executor.2/6410 [ 860.072403][ T6410] [ 860.072427][ T6410] CPU: 1 PID: 6410 Comm: syz-executor.2 Not tainted 6.10.0-rc3-next-20240611-syzkaller #0 [ 860.078409][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 860.081643][ T6410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 860.084576][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 860.089062][ T6410] Call Trace: [ 860.089076][ T6410] [ 860.089088][ T6410] dump_stack_lvl+0x241/0x360 [ 860.094054][ C0] ? __pfx_validate_chain+0x10/0x10 [ 860.099061][ T6410] ? __pfx_dump_stack_lvl+0x10/0x10 [ 860.099089][ T6410] ? __pfx__printk+0x10/0x10 [ 860.104539][ C0] ? __pfx_validate_chain+0x10/0x10 [ 860.109026][ T6410] ? _printk+0xd5/0x120 [ 860.109064][ T6410] ? __virt_addr_valid+0x183/0x520 [ 860.113302][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 860.118413][ T6410] ? __virt_addr_valid+0x183/0x520 [ 860.118452][ T6410] print_report+0x169/0x550 [ 860.122695][ C0] ? mark_lock+0x9a/0x360 [ 860.126842][ T6410] ? __virt_addr_valid+0x183/0x520 [ 860.126878][ T6410] ? __virt_addr_valid+0x183/0x520 [ 860.132361][ C0] ? __pfx_validate_chain+0x10/0x10 [ 860.136852][ T6410] ? __virt_addr_valid+0x44e/0x520 [ 860.136888][ T6410] ? __phys_addr+0xba/0x170 [ 860.141212][ C0] ? __lock_acquire+0x1359/0x2000 [ 860.145890][ T6410] ? sysv_new_inode+0xfd3/0x1170 [ 860.145917][ T6410] kasan_report+0x143/0x180 [ 860.151040][ C0] ? mark_lock+0x9a/0x360 [ 860.156128][ T6410] ? sysv_new_inode+0xfd3/0x1170 [ 860.156174][ T6410] sysv_new_inode+0xfd3/0x1170 [ 860.156211][ T6410] ? __pfx_sysv_new_inode+0x10/0x10 [ 860.160545][ C0] ? __lock_acquire+0x1359/0x2000 [ 860.165483][ T6410] ? _raw_spin_unlock+0x28/0x50 [ 860.165521][ T6410] ? __d_add+0x500/0x800 [ 860.171018][ C0] netlink_rcv_skb+0x1e3/0x430 [ 860.177360][ T6410] sysv_mknod+0x4e/0xe0 [ 860.177392][ T6410] ? __pfx_sysv_create+0x10/0x10 [ 860.183109][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 860.188656][ T6410] path_openat+0x1425/0x3280 [ 860.188718][ T6410] ? __pfx_path_openat+0x10/0x10 [ 860.194679][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 860.199351][ T6410] do_filp_open+0x235/0x490 [ 860.204070][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 860.209922][ T6410] ? __pfx_do_filp_open+0x10/0x10 [ 860.209975][ T6410] ? _raw_spin_unlock+0x28/0x50 [ 860.215017][ C0] netlink_unicast+0x7ea/0x980 [ 860.220085][ T6410] ? alloc_fd+0x5a1/0x640 [ 860.224273][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 860.229500][ T6410] do_sys_openat2+0x13e/0x1d0 [ 860.229536][ T6410] ? __might_fault+0xaa/0x120 [ 860.229573][ T6410] ? __pfx_do_sys_openat2+0x10/0x10 [ 860.234230][ C0] ? __virt_addr_valid+0x183/0x520 [ 860.238634][ T6410] ? rcu_is_watching+0x15/0xb0 [ 860.238670][ T6410] ? __rseq_handle_notify_resume+0x353/0x14e0 [ 860.243260][ C0] ? __check_object_size+0x49c/0x900 [ 860.248008][ T6410] __x64_sys_openat+0x247/0x2a0 [ 860.248048][ T6410] ? __pfx___x64_sys_openat+0x10/0x10 [ 860.251052][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 860.257123][ T6410] ? do_syscall_64+0x100/0x230 [ 860.257152][ T6410] ? do_syscall_64+0xb6/0x230 [ 860.257178][ T6410] do_syscall_64+0xf3/0x230 [ 860.267470][ C0] netlink_sendmsg+0x8db/0xcb0 [ 860.270711][ T6410] ? clear_bhb_loop+0x35/0x90 [ 860.273657][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 860.278125][ T6410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.278157][ T6410] RIP: 0033:0x7f6b2b07cea9 [ 860.282996][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 860.288011][ T6410] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 860.288034][ T6410] RSP: 002b:00007f6b2be010c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 860.293494][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 860.297718][ T6410] RAX: ffffffffffffffda RBX: 00007f6b2b1b3f80 RCX: 00007f6b2b07cea9 [ 860.297739][ T6410] RDX: 000000000000275a RSI: 0000000020000040 RDI: ffffffffffffff9c [ 860.297757][ T6410] RBP: 00007f6b2b0ebff4 R08: 0000000000000000 R09: 0000000000000000 [ 860.301988][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 860.307427][ T6410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 860.307445][ T6410] R13: 000000000000000b R14: 00007f6b2b1b3f80 R15: 00007ffe52ad5498 [ 860.307473][ T6410] [ 860.307483][ T6410] [ 860.311965][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 860.316625][ T6410] The buggy address belongs to the physical page: [ 860.316647][ T6410] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x75b2c pfn:0x36791 [ 860.321863][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 860.326882][ T6410] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 860.326927][ T6410] raw: 00fff00000000000 dead000000000100 dead000000000122 0000000000000000 [ 860.326948][ T6410] raw: 0000000000075b2c 0000000000000000 00000000ffffffff 0000000000000000 [ 860.331531][ C0] __sock_sendmsg+0x221/0x270 [ 860.336542][ T6410] page dumped because: kasan: bad access detected [ 860.336565][ T6410] page_owner tracks the page as freed [ 860.336574][ T6410] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 5369, tgid 5368 (syz-executor.4), ts 784988145585, free_ts 827139477253 [ 860.341781][ C0] __sys_sendto+0x3a4/0x4f0 [ 860.347212][ T6410] post_alloc_hook+0x1f3/0x230 [ 860.347240][ T6410] get_page_from_freelist+0x2cbd/0x2d70 [ 860.352558][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 860.357727][ T6410] __alloc_pages_noprof+0x256/0x6c0 [ 860.357758][ T6410] alloc_pages_mpol_noprof+0x3e8/0x680 [ 860.357784][ T6410] folio_alloc_noprof+0x128/0x180 [ 860.362999][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 860.367899][ T6410] filemap_alloc_folio_noprof+0xdf/0x500 [ 860.367928][ T6410] do_read_cache_folio+0xed/0x820 [ 860.372256][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 860.377430][ T6410] do_read_cache_page+0x30/0x200 [ 860.377465][ T6410] sysv_find_entry+0x1af/0x410 [ 860.382505][ C0] __x64_sys_sendto+0xde/0x100 [ 860.386899][ T6410] sysv_inode_by_name+0x98/0x1f0 [ 860.386928][ T6410] sysv_lookup+0x6b/0xe0 [ 860.392044][ C0] do_syscall_64+0xf3/0x230 [ 860.396778][ T6410] path_openat+0x1033/0x3280 [ 860.396814][ T6410] do_filp_open+0x235/0x490 [ 860.402266][ C0] ? clear_bhb_loop+0x35/0x90 [ 860.407528][ T6410] do_sys_openat2+0x13e/0x1d0 [ 860.407559][ T6410] __x64_sys_openat+0x247/0x2a0 [ 860.412851][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.417597][ T6410] do_syscall_64+0xf3/0x230 [ 860.417622][ T6410] page last free pid 5369 tgid 5368 stack trace: [ 860.417637][ T6410] free_unref_folios+0x103a/0x1b00 [ 860.423000][ C0] RIP: 0033:0x7f5b4367eb9c [ 860.428178][ T6410] folios_put_refs+0x76e/0x860 [ 860.428213][ T6410] truncate_inode_pages_range+0x47b/0xfc0 [ 860.433485][ C0] RSP: 002b:00007ffc03fb9b80 EFLAGS: 00000293 [ 860.438612][ T6410] sysv_evict_inode+0x2b/0x110 [ 860.438639][ T6410] evict+0x2a8/0x630 [ 860.443413][ C0] ORIG_RAX: 000000000000002c [ 860.448694][ T6410] __dentry_kill+0x20d/0x630 [ 860.448730][ T6410] dput+0x19f/0x2b0 [ 860.448755][ T6410] shrink_dcache_for_umount+0xb4/0x180 [ 860.454814][ C0] RAX: ffffffffffffffda RBX: 00007f5b442e4620 RCX: 00007f5b4367eb9c [ 860.459821][ T6410] generic_shutdown_super+0x6a/0x2d0 [ 860.459857][ T6410] kill_block_super+0x44/0x90 [ 860.459879][ T6410] deactivate_locked_super+0xc4/0x130 [ 860.465209][ C0] RDX: 0000000000000028 RSI: 00007f5b442e4670 RDI: 0000000000000003 [ 860.470627][ T6410] cleanup_mnt+0x41f/0x4b0 [ 860.475932][ C0] RBP: 0000000000000000 R08: 00007ffc03fb9bd4 R09: 000000000000000c [ 860.480561][ T6410] task_work_run+0x24f/0x310 [ 860.485085][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 860.490062][ T6410] do_exit+0xa27/0x28e0 [ 860.496166][ C0] R13: 0000000000000000 R14: 00007f5b442e4670 R15: 0000000000000000 [ 860.502442][ T6410] do_group_exit+0x207/0x2c0 [ 860.507258][ C0] [ 860.511678][ T6410] get_signal+0x16a1/0x1740 [ 860.516383][ C0] DEBUG: waiting rtnl_mutex for 5342 jiffies. [ 860.522225][ T6410] [ 860.522234][ T6410] Memory state around the buggy address: [ 860.526666][ C0] task:syz-executor.2 state:D [ 860.535046][ T6410] ffff888036791080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 860.535065][ T6410] ffff888036791100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 860.535082][ T6410] >ffff888036791180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 860.543051][ C0] stack:21024 pid:10936 tgid:10936 ppid:1 flags:0x00000006 [ 860.551041][ T6410] ^ [ 860.551059][ T6410] ffff888036791200: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 860.551075][ T6410] ffff888036791280: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 860.559088][ C0] Call Trace: [ 860.567000][ T6410] ================================================================== [ 860.793529][ T6410] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 860.793551][ T6410] CPU: 1 PID: 6410 Comm: syz-executor.2 Not tainted 6.10.0-rc3-next-20240611-syzkaller #0 [ 860.793579][ T6410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 860.793595][ T6410] Call Trace: [ 860.793609][ T6410] [ 860.793622][ T6410] dump_stack_lvl+0x241/0x360 [ 860.793657][ T6410] ? __pfx_dump_stack_lvl+0x10/0x10 [ 860.793682][ T6410] ? __pfx__printk+0x10/0x10 [ 860.793721][ T6410] ? preempt_schedule+0xe1/0xf0 [ 860.793755][ T6410] ? vscnprintf+0x5d/0x90 [ 860.793785][ T6410] panic+0x349/0x870 [ 860.793822][ T6410] ? check_panic_on_warn+0x21/0xb0 [ 860.793859][ T6410] ? __pfx_panic+0x10/0x10 [ 860.793900][ T6410] ? _raw_spin_unlock_irqrestore+0x130/0x140 [ 860.793931][ T6410] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 860.793962][ T6410] ? print_report+0x502/0x550 [ 860.793991][ T6410] check_panic_on_warn+0x86/0xb0 [ 860.794028][ T6410] ? sysv_new_inode+0xfd3/0x1170 [ 860.794053][ T6410] end_report+0x77/0x160 [ 860.794078][ T6410] kasan_report+0x154/0x180 [ 860.794106][ T6410] ? sysv_new_inode+0xfd3/0x1170 [ 860.794135][ T6410] sysv_new_inode+0xfd3/0x1170 [ 860.794172][ T6410] ? __pfx_sysv_new_inode+0x10/0x10 [ 860.794222][ T6410] ? _raw_spin_unlock+0x28/0x50 [ 860.794250][ T6410] ? __d_add+0x500/0x800 [ 860.794279][ T6410] sysv_mknod+0x4e/0xe0 [ 860.794308][ T6410] ? __pfx_sysv_create+0x10/0x10 [ 860.794337][ T6410] path_openat+0x1425/0x3280 [ 860.794394][ T6410] ? __pfx_path_openat+0x10/0x10 [ 860.794444][ T6410] do_filp_open+0x235/0x490 [ 860.794483][ T6410] ? __pfx_do_filp_open+0x10/0x10 [ 860.794543][ T6410] ? _raw_spin_unlock+0x28/0x50 [ 860.794571][ T6410] ? alloc_fd+0x5a1/0x640 [ 860.794602][ T6410] do_sys_openat2+0x13e/0x1d0 [ 860.794636][ T6410] ? __might_fault+0xaa/0x120 [ 860.794668][ T6410] ? __pfx_do_sys_openat2+0x10/0x10 [ 860.794700][ T6410] ? rcu_is_watching+0x15/0xb0 [ 860.794735][ T6410] ? __rseq_handle_notify_resume+0x353/0x14e0 [ 860.794780][ T6410] __x64_sys_openat+0x247/0x2a0 [ 860.794815][ T6410] ? __pfx___x64_sys_openat+0x10/0x10 [ 860.794851][ T6410] ? do_syscall_64+0x100/0x230 [ 860.794882][ T6410] ? do_syscall_64+0xb6/0x230 [ 860.794907][ T6410] do_syscall_64+0xf3/0x230 [ 860.794932][ T6410] ? clear_bhb_loop+0x35/0x90 [ 860.794964][ T6410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.794992][ T6410] RIP: 0033:0x7f6b2b07cea9 [ 860.795014][ T6410] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 860.795037][ T6410] RSP: 002b:00007f6b2be010c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 860.795064][ T6410] RAX: ffffffffffffffda RBX: 00007f6b2b1b3f80 RCX: 00007f6b2b07cea9 [ 860.795084][ T6410] RDX: 000000000000275a RSI: 0000000020000040 RDI: ffffffffffffff9c [ 860.795103][ T6410] RBP: 00007f6b2b0ebff4 R08: 0000000000000000 R09: 0000000000000000 [ 860.795120][ T6410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 860.795135][ T6410] R13: 000000000000000b R14: 00007f6b2b1b3f80 R15: 00007ffe52ad5498 [ 860.795164][ T6410] [ 860.795600][ T6410] Kernel Offset: disabled