last executing test programs:
860.967913ms ago: executing program 1:
getsockopt(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000))
837.394672ms ago: executing program 1:
memfd_create(&(0x7f0000000000), 0x0)
792.257601ms ago: executing program 1:
remap_file_pages(0x0, 0x0, 0x0, 0x0, 0x0)
697.043085ms ago: executing program 1:
creat(&(0x7f0000000000), 0x0)
679.928192ms ago: executing program 1:
prctl$0(0x0, 0x0, 0x0, 0x0, 0x0)
256.153767ms ago: executing program 2:
quotactl_fd$Q_GETFMT(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000))
254.960108ms ago: executing program 0:
syz_open_dev$hiddev(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$hiddev(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$hiddev(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$hiddev(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$hiddev(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$hiddev(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$hiddev(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$hiddev(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$hiddev(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$hiddev(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$hiddev(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$hiddev(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$hiddev(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$hiddev(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$hiddev(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$hiddev(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$hiddev(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$hiddev(&(0x7f0000000500), 0x4, 0x800)
252.844613ms ago: executing program 4:
syz_open_dev$floppy(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$floppy(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$floppy(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$floppy(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$floppy(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$floppy(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$floppy(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$floppy(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$floppy(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$floppy(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$floppy(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$floppy(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$floppy(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$floppy(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$floppy(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$floppy(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$floppy(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$floppy(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$floppy(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$floppy(&(0x7f0000000500), 0x4, 0x800)
219.34838ms ago: executing program 2:
lsetxattr(&(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000), 0x0, 0x0)
215.197319ms ago: executing program 0:
uname(&(0x7f0000000000))
202.562079ms ago: executing program 4:
getsockname(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000000))
200.735875ms ago: executing program 3:
rt_tgsigqueueinfo(0x0, 0x0, 0x0, &(0x7f0000000000))
200.576601ms ago: executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/raw-gadget', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/raw-gadget', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/raw-gadget', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/raw-gadget', 0x800, 0x0)
184.970631ms ago: executing program 3:
capget(&(0x7f0000000000), &(0x7f0000000000))
167.771031ms ago: executing program 0:
signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
141.13436ms ago: executing program 2:
epoll_wait(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
132.811396ms ago: executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs', 0x800, 0x0)
123.984832ms ago: executing program 4:
syz_open_dev$sndpcmc(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$sndpcmc(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$sndpcmc(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$sndpcmc(&(0x7f0000000140), 0xa, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000180), 0xa, 0x1)
syz_open_dev$sndpcmc(&(0x7f00000001c0), 0xa, 0x2)
syz_open_dev$sndpcmc(&(0x7f0000000200), 0xa, 0x800)
syz_open_dev$sndpcmc(&(0x7f0000000240), 0x14, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000280), 0x14, 0x1)
syz_open_dev$sndpcmc(&(0x7f00000002c0), 0x14, 0x2)
syz_open_dev$sndpcmc(&(0x7f0000000300), 0x14, 0x800)
syz_open_dev$sndpcmc(&(0x7f0000000340), 0x1e, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000380), 0x1e, 0x1)
syz_open_dev$sndpcmc(&(0x7f00000003c0), 0x1e, 0x2)
syz_open_dev$sndpcmc(&(0x7f0000000400), 0x1e, 0x800)
syz_open_dev$sndpcmc(&(0x7f0000000440), 0x28, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000480), 0x28, 0x1)
syz_open_dev$sndpcmc(&(0x7f00000004c0), 0x28, 0x2)
syz_open_dev$sndpcmc(&(0x7f0000000500), 0x28, 0x800)
108.90951ms ago: executing program 0:
socket$inet_udplite(0x2, 0x2, 0x88)
91.591661ms ago: executing program 2:
socket$nl_netfilter(0x10, 0x3, 0xc)
85.928807ms ago: executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/failed_transaction_log', 0x0, 0x0)
82.784814ms ago: executing program 4:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nmem0', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nmem0', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nmem0', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nmem0', 0x800, 0x0)
46.38224ms ago: executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools', 0x1, 0x0)
36.312383ms ago: executing program 2:
set_robust_list(&(0x7f0000000000), 0x0)
35.592743ms ago: executing program 4:
execveat(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000), 0x0)
29.950169ms ago: executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter', 0x800, 0x0)
11.615582ms ago: executing program 0:
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
3.645905ms ago: executing program 3:
openat2(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000000), 0x0)
3.107602ms ago: executing program 4:
getuid()
0s ago: executing program 2:
landlock_add_rule$LANDLOCK_RULE_NET_PORT(0xffffffffffffffff, 0x2, &(0x7f0000000000), 0x0)
kernel console output (not intermixed with test programs):
Warning: Permanently added '10.128.0.167' (ED25519) to the list of known hosts.
2024/06/17 18:35:52 fuzzer started
2024/06/17 18:35:52 dialing manager at 10.128.0.169:30001
[ 58.719549][ T5089] cgroup: Unknown subsys name 'net'
[ 58.988892][ T5089] cgroup: Unknown subsys name 'rlimit'
2024/06/17 18:35:54 starting 5 executor processes
[ 60.122727][ T5111] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 60.769147][ T5151] mmap: syz-executor.1 (5151) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 61.462685][ T5231] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 61.537353][ T1054]
[ 61.540141][ T1054] =============================
[ 61.545272][ T1054] WARNING: suspicious RCU usage
[ 61.550218][ T1054] 6.10.0-rc4-syzkaller #0 Not tainted
[ 61.555702][ T1054] -----------------------------
[ 61.560592][ T1054] net/netfilter/ipset/ip_set_core.c:1200 suspicious rcu_dereference_protected() usage!
[ 61.570292][ T1054]
[ 61.570292][ T1054] other info that might help us debug this:
[ 61.570292][ T1054]
[ 61.580686][ T1054]
2024/06/17 18:35:55 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[ 61.580686][ T1054] rcu_scheduler_active = 2, debug_locks = 1
[ 61.588807][ T1054] 3 locks held by kworker/u8:7/1054:
[ 61.594694][ T1054] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[ 61.605941][ T1054] #1: ffffc900043bfd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[ 61.616877][ T1054] #2: ffffffff8f5dba90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[ 61.627076][ T1054]
[ 61.627076][ T1054] stack backtrace:
[ 61.633239][ T1054] CPU: 1 PID: 1054 Comm: kworker/u8:7 Not tainted 6.10.0-rc4-syzkaller #0
[ 61.641772][ T1054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 61.651923][ T1054] Workqueue: netns cleanup_net
[ 61.656766][ T1054] Call Trace:
[ 61.660067][ T1054]
[ 61.663009][ T1054] dump_stack_lvl+0x241/0x360
[ 61.667711][ T1054] ? __pfx_dump_stack_lvl+0x10/0x10
[ 61.673019][ T1054] ? __pfx__printk+0x10/0x10
[ 61.677645][ T1054] lockdep_rcu_suspicious+0x221/0x340
[ 61.683074][ T1054] _destroy_all_sets+0x232/0x5f0
[ 61.688124][ T1054] ip_set_net_exit+0x20/0x50
[ 61.692715][ T1054] cleanup_net+0x802/0xcc0
[ 61.697135][ T1054] ? __pfx_cleanup_net+0x10/0x10
[ 61.702077][ T1054] ? process_scheduled_works+0x945/0x1830
[ 61.707788][ T1054] process_scheduled_works+0xa2c/0x1830
[ 61.713449][ T1054] ? __pfx_process_scheduled_works+0x10/0x10
[ 61.719515][ T1054] ? assign_work+0x364/0x3d0
[ 61.724142][ T1054] worker_thread+0x86d/0xd70
[ 61.728846][ T1054] ? __kthread_parkme+0x169/0x1d0
[ 61.733889][ T1054] ? __pfx_worker_thread+0x10/0x10
[ 61.738993][ T1054] kthread+0x2f0/0x390
[ 61.743056][ T1054] ? __pfx_worker_thread+0x10/0x10
[ 61.748190][ T1054] ? __pfx_kthread+0x10/0x10
[ 61.752788][ T1054] ret_from_fork+0x4b/0x80
[ 61.757227][ T1054] ? __pfx_kthread+0x10/0x10
[ 61.761899][ T1054] ret_from_fork_asm+0x1a/0x30
[ 61.766711][ T1054]
[ 61.778478][ T1054]
[ 61.780867][ T1054] =============================
[ 61.785729][ T1054] WARNING: suspicious RCU usage
[ 61.791147][ T1054] 6.10.0-rc4-syzkaller #0 Not tainted
[ 61.796581][ T1054] -----------------------------
[ 61.801548][ T1054] net/netfilter/ipset/ip_set_core.c:1211 suspicious rcu_dereference_protected() usage!
[ 61.811444][ T1054]
[ 61.811444][ T1054] other info that might help us debug this:
[ 61.811444][ T1054]
[ 61.821873][ T1054]
[ 61.821873][ T1054] rcu_scheduler_active = 2, debug_locks = 1
[ 61.830230][ T1054] 3 locks held by kworker/u8:7/1054:
[ 61.835547][ T1054] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[ 61.846918][ T1054] #1: ffffc900043bfd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[ 61.857750][ T1054] #2: ffffffff8f5dba90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[ 61.867213][ T1054]
[ 61.867213][ T1054] stack backtrace:
[ 61.873187][ T1054] CPU: 1 PID: 1054 Comm: kworker/u8:7 Not tainted 6.10.0-rc4-syzkaller #0
[ 61.881720][ T1054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 61.891896][ T1054] Workqueue: netns cleanup_net
[ 61.896758][ T1054] Call Trace:
[ 61.900192][ T1054]
[ 61.903223][ T1054] dump_stack_lvl+0x241/0x360
[ 61.908423][ T1054] ? __pfx_dump_stack_lvl+0x10/0x10
[ 61.913751][ T1054] ? __pfx__printk+0x10/0x10
[ 61.918397][ T1054] lockdep_rcu_suspicious+0x221/0x340
[ 61.923811][ T1054] _destroy_all_sets+0x53f/0x5f0
[ 61.928783][ T1054] ip_set_net_exit+0x20/0x50
[ 61.933590][ T1054] cleanup_net+0x802/0xcc0
[ 61.938130][ T1054] ? __pfx_cleanup_net+0x10/0x10
[ 61.943071][ T1054] ? process_scheduled_works+0x945/0x1830
[ 61.948806][ T1054] process_scheduled_works+0xa2c/0x1830
[ 61.954411][ T1054] ? __pfx_process_scheduled_works+0x10/0x10
[ 61.960509][ T1054] ? assign_work+0x364/0x3d0
[ 61.965104][ T1054] worker_thread+0x86d/0xd70
[ 61.969723][ T1054] ? __kthread_parkme+0x169/0x1d0
[ 61.974773][ T1054] ? __pfx_worker_thread+0x10/0x10
[ 61.979908][ T1054] kthread+0x2f0/0x390
[ 61.983988][ T1054] ? __pfx_worker_thread+0x10/0x10
[ 61.989119][ T1054] ? __pfx_kthread+0x10/0x10
[ 61.993809][ T1054] ret_from_fork+0x4b/0x80
[ 61.998254][ T1054] ? __pfx_kthread+0x10/0x10
[ 62.002865][ T1054] ret_from_fork_asm+0x1a/0x30
[ 62.007649][ T1054]