program: setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f00000003c0)=@urb_type_control={0x2, {0x7, 0x1}, 0x10000, 0x1, &(0x7f0000000380)={0x60, 0x30, 0x100, 0x3, 0xc1b}, 0x8, 0x3, 0xf503, 0x0, 0xc0000000, 0xdc8c, &(0x7f0000000b00)="4f3e30d2a318545c227aa476c8f0c4a622fcc77d832198ed90c7dfc88306b1b9237206ea44bf1e59b4b0b539777192e8759dcfef14cbaa90bb89c11ab17bf85e406b65a53e4f5e45f3712800172eab99187a54f7a0277e78e3dc29c4a33de057038e543953f18b2850a56b90ebd7b962802a42c3bbb0943304f60814e46e9b392f09ee4f70ce18cd67afb3ef3c7de62e66b4d350a163c61b10cea725510387dda3f9cdb88e2f990a529124d8162f5d7389922640893aeafefe70ce16972f5739a95ad623b62e554bc6b912b32648d32206e54406eb57cea0703d7b2817f4c1c7cdfb364eeab3680f18f9"}) socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r4, 0x0, 0x0}, 0x10) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0) read$FUSE(r6, 0x0, 0x0) pread64(r6, &(0x7f0000000300)=""/94, 0x5e, 0x227) syz_clone3(0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10) syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f00000000c0)={[{@quota}, {@bsdgroups}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@bsdgroups}]}, 0x2, 0x46b, &(0x7f0000000580)="$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") [ 76.565479][ T5297] Bluetooth: hci0: command tx timeout [ 76.569126][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.572063][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.931351][ T5320] [ 76.932643][ T5320] ============================= [ 76.934824][ T5320] WARNING: suspicious RCU usage [ 76.937272][ T5320] syzkaller #0 Not tainted [ 76.939403][ T5320] ----------------------------- [ 76.941716][ T5320] kernel/events/callchain.c:163 suspicious rcu_dereference_check() usage! [ 76.945842][ T5320] [ 76.945842][ T5320] other info that might help us debug this: [ 76.945842][ T5320] [ 76.950864][ T5320] [ 76.950864][ T5320] rcu_scheduler_active = 2, debug_locks = 1 [ 76.954895][ T5320] 1 lock held by syz.0.0/5320: [ 76.957224][ T5320] #0: ffffffff8df3d880 (rcu_read_lock_trace){....}-{0:0}, at: rcu_read_lock_trace+0x38/0x80 [ 76.961616][ T5320] [ 76.961616][ T5320] stack backtrace: [ 76.963826][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 76.963838][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.963844][ T5320] Call Trace: [ 76.963850][ T5320] [ 76.963855][ T5320] dump_stack_lvl+0x189/0x250 [ 76.963871][ T5320] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.963882][ T5320] ? __pfx__printk+0x10/0x10 [ 76.963895][ T5320] lockdep_rcu_suspicious+0x140/0x1d0 [ 76.963906][ T5320] get_callchain_entry+0x2b6/0x3c0 [ 76.963918][ T5320] get_perf_callchain+0xb3/0x6f0 [ 76.963929][ T5320] ? __pfx_get_perf_callchain+0x10/0x10 [ 76.963939][ T5320] ? futex_unqueue+0x22/0x240 [ 76.963949][ T5320] ? futex_unqueue+0x22/0x240 [ 76.963956][ T5320] ? futex_unqueue+0x22/0x240 [ 76.963965][ T5320] ? futex_unqueue+0x211/0x240 [ 76.963974][ T5320] __bpf_get_stack+0x3fa/0xa60 [ 76.963984][ T5320] ? __pfx___bpf_get_stack+0x10/0x10 [ 76.963989][ T5320] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 76.964006][ T5320] bpf_get_stack+0x33/0x50 [ 76.964017][ T5320] ? bpf_prog_e8e6327ccf46c9a7+0x46/0x4e [ 76.964025][ T5320] bpf_get_stack_raw_tp+0x1a9/0x220 [ 76.964038][ T5320] bpf_prog_e8e6327ccf46c9a7+0x46/0x4e [ 76.964045][ T5320] bpf_prog_run_pin_on_cpu+0x143/0x470 [ 76.964061][ T5320] bpf_prog_test_run_syscall+0x312/0x4b0 [ 76.964072][ T5320] ? __pfx_bpf_prog_test_run_syscall+0x10/0x10 [ 76.964086][ T5320] ? __fget_files+0x2a/0x420 [ 76.964104][ T5320] ? __pfx_bpf_prog_test_run_syscall+0x10/0x10 [ 76.964120][ T5320] bpf_prog_test_run+0x2c7/0x340 [ 76.964135][ T5320] __sys_bpf+0x562/0x860 [ 76.964146][ T5320] ? __pfx___sys_bpf+0x10/0x10 [ 76.964155][ T5320] ? rcu_is_watching+0x15/0xb0 [ 76.964175][ T5320] ? rcu_is_watching+0x15/0xb0 [ 76.964187][ T5320] __x64_sys_bpf+0x7c/0x90 [ 76.964198][ T5320] do_syscall_64+0xfa/0xfa0 [ 76.964209][ T5320] ? lockdep_hardirqs_on+0x9c/0x150 [ 76.964218][ T5320] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.964225][ T5320] ? clear_bhb_loop+0x60/0xb0 [ 76.964233][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.964240][ T5320] RIP: 0033:0x7f004778f6c9 [ 76.964255][ T5320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.964263][ T5320] RSP: 002b:00007f004863e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 76.964272][ T5320] RAX: ffffffffffffffda RBX: 00007f00479e6180 RCX: 00007f004778f6c9 [ 76.964278][ T5320] RDX: 0000000000000010 RSI: 0000200000000740 RDI: 000000000000000a [ 76.964282][ T5320] RBP: 00007f0047811f91 R08: 0000000000000000 R09: 0000000000000000 [ 76.964287][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 76.964292][ T5320] R13: 00007f00479e6218 R14: 00007f00479e6180 R15: 00007ffc3edede38 [ 76.964303][ T5320] [ 77.091797][ T5320] loop0: detected capacity change from 0 to 512 [ 77.097746][ T5320] EXT4-fs: Ignoring removed oldalloc option [ 77.149186][ T5320] EXT4-fs (loop0): 1 truncate cleaned up [ 77.152804][ T5320] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.