last executing test programs:
1.34689656s ago: executing program 0:
getitimer(0x0, &(0x7f0000000000))
1.304371314s ago: executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_stats', 0x0, 0x0)
1.281072931s ago: executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/member', 0x2, 0x0)
1.245591686s ago: executing program 0:
open_tree(0xffffffffffffffff, &(0x7f0000000000), 0x0)
1.215169501s ago: executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/adsp1', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1', 0x800, 0x0)
1.008189599s ago: executing program 4:
exit_group(0x0)
985.44127ms ago: executing program 2:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
973.838634ms ago: executing program 4:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/udmabuf', 0x2, 0x0)
973.072149ms ago: executing program 1:
socket$bt_cmtp(0x1f, 0x3, 0x5)
958.204862ms ago: executing program 3:
rt_sigprocmask(0x0, &(0x7f0000000000), 0x0, 0x0)
947.186143ms ago: executing program 1:
eventfd2(0x0, 0x0)
934.144889ms ago: executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null', 0x800, 0x0)
933.365523ms ago: executing program 2:
utimensat(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000000), 0x0)
932.913917ms ago: executing program 4:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net', 0x2, 0x0)
908.052508ms ago: executing program 2:
socket$nl_xfrm(0x10, 0x3, 0x6)
904.194538ms ago: executing program 3:
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000000), 0x0)
900.745455ms ago: executing program 1:
process_mrelease(0xffffffffffffffff, 0x0)
894.654409ms ago: executing program 2:
ioprio_set$pid(0x0, 0x0, 0x0)
882.563504ms ago: executing program 4:
syz_init_net_socket$rose(0xb, 0x5, 0x0)
868.749656ms ago: executing program 1:
rt_sigtimedwait(&(0x7f0000000000), 0x0, &(0x7f0000000000), 0x0)
864.307204ms ago: executing program 3:
poll(&(0x7f0000000000), 0x0, 0x0)
849.667834ms ago: executing program 4:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
835.713341ms ago: executing program 1:
llistxattr(&(0x7f0000000000), &(0x7f0000000000), 0x0)
833.482349ms ago: executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_rmem', 0x1, 0x0)
830.365268ms ago: executing program 3:
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000), 0x0)
819.792718ms ago: executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/proc/capi/capi20ncci', 0x800, 0x0)
804.998089ms ago: executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vtpmx', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vtpmx', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vtpmx', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vtpmx', 0x800, 0x0)
798.101021ms ago: executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero', 0x800, 0x0)
790.224994ms ago: executing program 4:
pivot_root(&(0x7f0000000000), &(0x7f0000000000))
0s ago: executing program 1:
mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
kernel console output (not intermixed with test programs):
Warning: Permanently added '10.128.1.236' (ED25519) to the list of known hosts.
2024/06/19 21:27:01 fuzzer started
2024/06/19 21:27:01 dialing manager at 10.128.0.169:30009
[ 61.347607][ T5095] cgroup: Unknown subsys name 'net'
[ 61.492129][ T5095] cgroup: Unknown subsys name 'rlimit'
2024/06/19 21:27:03 starting 5 executor processes
[ 62.654896][ T5090] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 62.668835][ T5090] syz-executor (5090) used greatest stack depth: 18800 bytes left
[ 64.678787][ T5293] mmap: syz-executor.4 (5293) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 64.960388][ T5318] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 68.636434][ T5719] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 68.646660][ T5719] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 68.658064][ T5719] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 68.697510][ T5719] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 68.725789][ T5719] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 68.734619][ T5719] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 69.183388][ T51]
[ 69.186023][ T51] =============================
[ 69.191143][ T51] WARNING: suspicious RCU usage
[ 69.196350][ T51] 6.10.0-rc4-syzkaller-00052-ge5b3efbe1ab1 #0 Not tainted
[ 69.203840][ T51] -----------------------------
[ 69.208974][ T51] net/netfilter/ipset/ip_set_core.c:1200 suspicious rcu_dereference_protected() usage!
[ 69.218829][ T51]
[ 69.218829][ T51] other info that might help us debug this:
[ 69.218829][ T51]
[ 69.229284][ T51]
2024/06/19 21:27:10 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[ 69.229284][ T51] rcu_scheduler_active = 2, debug_locks = 1
[ 69.237624][ T51] 3 locks held by kworker/u8:3/51:
[ 69.242767][ T51] #0: ffff888015ed3148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[ 69.253869][ T51] #1: ffffc90000bb7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[ 69.264674][ T51] #2: ffffffff8f5c7c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[ 69.274339][ T51]
[ 69.274339][ T51] stack backtrace:
[ 69.280382][ T51] CPU: 1 PID: 51 Comm: kworker/u8:3 Not tainted 6.10.0-rc4-syzkaller-00052-ge5b3efbe1ab1 #0
[ 69.290686][ T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 69.300861][ T51] Workqueue: netns cleanup_net
[ 69.305694][ T51] Call Trace:
[ 69.309014][ T51]
[ 69.311985][ T51] dump_stack_lvl+0x241/0x360
[ 69.316728][ T51] ? __pfx_dump_stack_lvl+0x10/0x10
[ 69.322003][ T51] ? __pfx__printk+0x10/0x10
[ 69.326663][ T51] lockdep_rcu_suspicious+0x221/0x340
[ 69.332099][ T51] _destroy_all_sets+0x232/0x5f0
[ 69.337183][ T51] ip_set_net_exit+0x20/0x50
[ 69.341802][ T51] cleanup_net+0x802/0xcc0
[ 69.346270][ T51] ? __pfx_cleanup_net+0x10/0x10
[ 69.351258][ T51] ? process_scheduled_works+0x945/0x1830
[ 69.357040][ T51] process_scheduled_works+0xa2c/0x1830
[ 69.362808][ T51] ? __pfx_process_scheduled_works+0x10/0x10
[ 69.368833][ T51] ? assign_work+0x364/0x3d0
[ 69.373800][ T51] worker_thread+0x86d/0xd70
[ 69.378398][ T51] ? __kthread_parkme+0x169/0x1d0
[ 69.383422][ T51] ? __pfx_worker_thread+0x10/0x10
[ 69.388550][ T51] kthread+0x2f0/0x390
[ 69.392768][ T51] ? __pfx_worker_thread+0x10/0x10
[ 69.398181][ T51] ? __pfx_kthread+0x10/0x10
[ 69.402970][ T51] ret_from_fork+0x4b/0x80
[ 69.407584][ T51] ? __pfx_kthread+0x10/0x10
[ 69.412190][ T51] ret_from_fork_asm+0x1a/0x30
[ 69.417139][ T51]
[ 69.420188][ C1] vkms_vblank_simulate: vblank timer overrun
[ 69.457285][ T51]
[ 69.459674][ T51] =============================
[ 69.464537][ T51] WARNING: suspicious RCU usage
[ 69.469628][ T51] 6.10.0-rc4-syzkaller-00052-ge5b3efbe1ab1 #0 Not tainted
[ 69.476835][ T51] -----------------------------
[ 69.481882][ T51] net/netfilter/ipset/ip_set_core.c:1211 suspicious rcu_dereference_protected() usage!
[ 69.491604][ T51]
[ 69.491604][ T51] other info that might help us debug this:
[ 69.491604][ T51]
[ 69.502070][ T51]
[ 69.502070][ T51] rcu_scheduler_active = 2, debug_locks = 1
[ 69.510211][ T51] 3 locks held by kworker/u8:3/51:
[ 69.515345][ T51] #0: ffff888015ed3148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[ 69.526417][ T51] #1: ffffc90000bb7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[ 69.537293][ T51] #2: ffffffff8f5c7c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[ 69.546808][ T51]
[ 69.546808][ T51] stack backtrace:
[ 69.552903][ T51] CPU: 0 PID: 51 Comm: kworker/u8:3 Not tainted 6.10.0-rc4-syzkaller-00052-ge5b3efbe1ab1 #0
[ 69.563003][ T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 69.573163][ T51] Workqueue: netns cleanup_net
[ 69.578283][ T51] Call Trace:
[ 69.581621][ T51]
[ 69.584581][ T51] dump_stack_lvl+0x241/0x360
[ 69.589301][ T51] ? __pfx_dump_stack_lvl+0x10/0x10
[ 69.594557][ T51] ? __pfx__printk+0x10/0x10
[ 69.599191][ T51] lockdep_rcu_suspicious+0x221/0x340
[ 69.604595][ T51] _destroy_all_sets+0x53f/0x5f0
[ 69.609659][ T51] ip_set_net_exit+0x20/0x50
[ 69.614302][ T51] cleanup_net+0x802/0xcc0
[ 69.618960][ T51] ? __pfx_cleanup_net+0x10/0x10
[ 69.624107][ T51] ? process_scheduled_works+0x945/0x1830
[ 69.629832][ T51] process_scheduled_works+0xa2c/0x1830
[ 69.635399][ T51] ? __pfx_process_scheduled_works+0x10/0x10
[ 69.641820][ T51] ? assign_work+0x364/0x3d0
[ 69.646535][ T51] worker_thread+0x86d/0xd70
[ 69.651278][ T51] ? __kthread_parkme+0x169/0x1d0
[ 69.656399][ T51] ? __pfx_worker_thread+0x10/0x10
[ 69.661523][ T51] kthread+0x2f0/0x390
[ 69.665685][ T51] ? __pfx_worker_thread+0x10/0x10
[ 69.670812][ T51] ? __pfx_kthread+0x10/0x10
[ 69.675436][ T51] ret_from_fork+0x4b/0x80
[ 69.679881][ T51] ? __pfx_kthread+0x10/0x10
[ 69.684605][ T51] ret_from_fork_asm+0x1a/0x30
[ 69.689471][ T51]