program: r0 = socket$kcm(0x10, 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x18, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = socket(0x11, 0x80a, 0x0) r3 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r6, @ANYBLOB="0800050002000000ccd3651aeda01a86d341b548ccb943bf283f69ad543872f699a674ddda1a471eb536e397c9085ffef866fbd01309b8b5ac4131753c4f50be0f3a39213dbbb71489224018299f0d05a56773dbb8ce9219064d953b0b348698073ebb42313ad352d169554e7cf4477b454a2686489fc4ac562b2b5391aac54d554a631d890b7866f3970c808e4b443d12ffce3dee819dae9b25d1f37c1892cd2dededa5c7a39bce93229b6726b86efe424681db25784065ec19c4e20f6806471b"], 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a00)={0x28, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0) r7 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000100240248ff05000500", 0x2c}, {&(0x7f00000019c0)="06bb", 0x2}], 0x2}, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4400000010000104000000000000000100000000", @ANYRES32=r8, @ANYBLOB="00000000000000002400128009000100626f6e6400000000140002800800030004000000050006"], 0x44}}, 0x0) sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0) [ 71.548899][ T48] Bluetooth: hci0: command tx timeout [ 71.608638][ T5320] netlink: 'syz.0.0': attribute type 10 has an invalid length. [ 71.630687][ T5320] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 71.646467][ T72] [ 71.647557][ T72] ============================= [ 71.649536][ T72] WARNING: suspicious RCU usage [ 71.651405][ T72] 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 Not tainted [ 71.654106][ T72] ----------------------------- [ 71.656304][ T72] net/sched/sch_generic.c:1290 suspicious rcu_dereference_protected() usage! [ 71.659652][ T72] [ 71.659652][ T72] other info that might help us debug this: [ 71.659652][ T72] [ 71.663527][ T72] [ 71.663527][ T72] rcu_scheduler_active = 2, debug_locks = 1 [ 71.666777][ T72] 3 locks held by kworker/u4:4/72: [ 71.668714][ T72] #0: ffff8880523c6948 ((wq_completion)bond0){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840 [ 71.673000][ T72] #1: ffffc9000103fd00 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840 [ 71.678456][ T72] #2: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170 [ 71.682149][ T72] [ 71.682149][ T72] stack backtrace: [ 71.684346][ T72] CPU: 0 UID: 0 PID: 72 Comm: kworker/u4:4 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 71.688458][ T72] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.692137][ T72] Workqueue: bond0 bond_mii_monitor [ 71.693992][ T72] Call Trace: [ 71.695273][ T72] [ 71.696405][ T72] dump_stack_lvl+0x241/0x360 [ 71.698242][ T72] ? __pfx_dump_stack_lvl+0x10/0x10 [ 71.700232][ T72] ? __pfx__printk+0x10/0x10 [ 71.702055][ T72] lockdep_rcu_suspicious+0x226/0x340 [ 71.704084][ T72] dev_deactivate_queue+0x8f/0x160 [ 71.706071][ T72] dev_deactivate_many+0xc8/0xb10 [ 71.707967][ T72] dev_deactivate+0x184/0x280 [ 71.709770][ T72] ? __pfx_dev_deactivate+0x10/0x10 [ 71.711691][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 71.713977][ T72] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 71.716355][ T72] ? rfc2863_policy+0x1db/0x3b0 [ 71.718215][ T72] linkwatch_do_dev+0x10a/0x170 [ 71.720042][ T72] ethtool_op_get_link+0x15/0x60 [ 71.721876][ T72] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 71.723943][ T72] bond_check_dev_link+0x1f1/0x3f0 [ 71.725845][ T72] ? __pfx_bond_check_dev_link+0x10/0x10 [ 71.727946][ T72] bond_mii_monitor+0x49a/0x3170 [ 71.729889][ T72] ? __lock_acquire+0x1397/0x2100 [ 71.731789][ T72] ? bond_mii_monitor+0x174/0x3170 [ 71.733752][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 71.735686][ T72] ? __pfx_bond_mii_monitor+0x10/0x10 [ 71.737729][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 71.739637][ T72] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 71.741943][ T72] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 71.744312][ T72] ? process_scheduled_works+0x976/0x1840 [ 71.746451][ T72] process_scheduled_works+0xa66/0x1840 [ 71.748590][ T72] ? __pfx_process_scheduled_works+0x10/0x10 [ 71.751035][ T72] ? assign_work+0x364/0x3d0 [ 71.752717][ T72] worker_thread+0x870/0xd30 [ 71.754494][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 71.756724][ T72] ? __kthread_parkme+0x169/0x1d0 [ 71.758653][ T72] ? __pfx_worker_thread+0x10/0x10 [ 71.760418][ T72] kthread+0x2f0/0x390 [ 71.761815][ T72] ? __pfx_worker_thread+0x10/0x10 [ 71.763541][ T72] ? __pfx_kthread+0x10/0x10 [ 71.765108][ T72] ret_from_fork+0x4b/0x80 [ 71.766653][ T72] ? __pfx_kthread+0x10/0x10 [ 71.768225][ T72] ret_from_fork_asm+0x1a/0x30 [ 71.769888][ T72] [ 71.776308][ T5320] netlink: 'syz.0.0': attribute type 10 has an invalid length. [ 71.786311][ T72] [ 71.787499][ T72] ============================= [ 71.789304][ T72] WARNING: suspicious RCU usage [ 71.791131][ T72] 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 Not tainted [ 71.793745][ T72] ----------------------------- [ 71.795678][ T72] ./include/linux/rtnetlink.h:156 suspicious rcu_dereference_protected() usage! [ 71.798996][ T72] [ 71.798996][ T72] other info that might help us debug this: [ 71.798996][ T72] [ 71.802531][ T72] [ 71.802531][ T72] rcu_scheduler_active = 2, debug_locks = 1 [ 71.805136][ T72] 3 locks held by kworker/u4:4/72: [ 71.807024][ T72] #0: ffff8880523c6948 ((wq_completion)bond0){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840 [ 71.810989][ T72] #1: ffffc9000103fd00 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840 [ 71.816353][ T72] #2: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170 [ 71.819926][ T72] [ 71.819926][ T72] stack backtrace: [ 71.822044][ T72] CPU: 0 UID: 0 PID: 72 Comm: kworker/u4:4 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 71.826084][ T72] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.830053][ T72] Workqueue: bond0 bond_mii_monitor [ 71.831981][ T72] Call Trace: [ 71.833235][ T72] [ 71.834330][ T72] dump_stack_lvl+0x241/0x360 [ 71.835976][ T72] ? __pfx_dump_stack_lvl+0x10/0x10 [ 71.837882][ T72] ? __pfx__printk+0x10/0x10 [ 71.839564][ T72] lockdep_rcu_suspicious+0x226/0x340 [ 71.841554][ T72] dev_deactivate_many+0x18f/0xb10 [ 71.844160][ T72] dev_deactivate+0x184/0x280 [ 71.845918][ T72] ? __pfx_dev_deactivate+0x10/0x10 [ 71.847845][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 71.850016][ T72] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 71.852292][ T72] ? rfc2863_policy+0x1db/0x3b0 [ 71.854124][ T72] linkwatch_do_dev+0x10a/0x170 [ 71.855918][ T72] ethtool_op_get_link+0x15/0x60 [ 71.857774][ T72] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 71.859827][ T72] bond_check_dev_link+0x1f1/0x3f0 [ 71.861755][ T72] ? __pfx_bond_check_dev_link+0x10/0x10 [ 71.863814][ T72] bond_mii_monitor+0x49a/0x3170 [ 71.865620][ T72] ? __lock_acquire+0x1397/0x2100 [ 71.867437][ T72] ? bond_mii_monitor+0x174/0x3170 [ 71.869286][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 71.871217][ T72] ? __pfx_bond_mii_monitor+0x10/0x10 [ 71.873149][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 71.874961][ T72] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 71.877121][ T72] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 71.879363][ T72] ? process_scheduled_works+0x976/0x1840 [ 71.881468][ T72] process_scheduled_works+0xa66/0x1840 [ 71.883610][ T72] ? __pfx_process_scheduled_works+0x10/0x10 [ 71.885802][ T72] ? assign_work+0x364/0x3d0 [ 71.887425][ T72] worker_thread+0x870/0xd30 [ 71.889091][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 71.891255][ T72] ? __kthread_parkme+0x169/0x1d0 [ 71.893060][ T72] ? __pfx_worker_thread+0x10/0x10 [ 71.894959][ T72] kthread+0x2f0/0x390 [ 71.896481][ T72] ? __pfx_worker_thread+0x10/0x10 [ 71.898385][ T72] ? __pfx_kthread+0x10/0x10 [ 71.900080][ T72] ret_from_fork+0x4b/0x80 [ 71.901704][ T72] ? __pfx_kthread+0x10/0x10 [ 71.903412][ T72] ret_from_fork_asm+0x1a/0x30 [ 71.905078][ T72] [ 71.918186][ T72] BUG: sleeping function called from invalid context at net/core/dev.c:11403 [ 71.921685][ T72] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 72, name: kworker/u4:4 [ 71.926060][ T72] preempt_count: 0, expected: 0 [ 71.927860][ T72] RCU nest depth: 1, expected: 0 [ 71.929887][ T72] 3 locks held by kworker/u4:4/72: [ 71.931901][ T72] #0: ffff8880523c6948 ((wq_completion)bond0){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840 [ 71.936457][ T72] #1: ffffc9000103fd00 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840 [ 71.941056][ T72] #2: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170 [ 71.945926][ T72] CPU: 0 UID: 0 PID: 72 Comm: kworker/u4:4 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 71.949736][ T72] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.953641][ T72] Workqueue: bond0 bond_mii_monitor [ 71.955505][ T72] Call Trace: [ 71.956698][ T72] [ 71.957777][ T72] dump_stack_lvl+0x241/0x360 [ 71.959508][ T72] ? __pfx_dump_stack_lvl+0x10/0x10 [ 71.961412][ T72] ? __pfx__printk+0x10/0x10 [ 71.963027][ T72] ? preempt_schedule_common+0x84/0xd0 [ 71.965035][ T72] __might_resched+0x5d4/0x780 [ 71.966831][ T72] ? preempt_schedule+0xe1/0xf0 [ 71.968675][ T72] ? __pfx___might_resched+0x10/0x10 [ 71.970687][ T72] ? __local_bh_enable_ip+0x179/0x200 [ 71.972716][ T72] ? dev_deactivate_many+0x250/0xb10 [ 71.974637][ T72] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 71.976709][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 71.978320][ T72] synchronize_net+0x1b/0x50 [ 71.979996][ T72] dev_deactivate_many+0x4a7/0xb10 [ 71.981845][ T72] ? dev_deactivate_many+0x250/0xb10 [ 71.983773][ T72] dev_deactivate+0x184/0x280 [ 71.985557][ T72] ? __pfx_dev_deactivate+0x10/0x10 [ 71.987350][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 71.989495][ T72] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 71.991749][ T72] ? rfc2863_policy+0x1db/0x3b0 [ 71.993494][ T72] linkwatch_do_dev+0x10a/0x170 [ 71.995297][ T72] ethtool_op_get_link+0x15/0x60 [ 71.997100][ T72] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 71.999180][ T72] bond_check_dev_link+0x1f1/0x3f0 [ 72.001035][ T72] ? __pfx_bond_check_dev_link+0x10/0x10 [ 72.003118][ T72] bond_mii_monitor+0x49a/0x3170 [ 72.004912][ T72] ? __lock_acquire+0x1397/0x2100 [ 72.006793][ T72] ? bond_mii_monitor+0x174/0x3170 [ 72.008691][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.010603][ T72] ? __pfx_bond_mii_monitor+0x10/0x10 [ 72.012542][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 72.014392][ T72] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.016521][ T72] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.018767][ T72] ? process_scheduled_works+0x976/0x1840 [ 72.020929][ T72] process_scheduled_works+0xa66/0x1840 [ 72.022990][ T72] ? __pfx_process_scheduled_works+0x10/0x10 [ 72.025108][ T72] ? assign_work+0x364/0x3d0 [ 72.026794][ T72] worker_thread+0x870/0xd30 [ 72.028478][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 72.030590][ T72] ? __kthread_parkme+0x169/0x1d0 [ 72.032435][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.034326][ T72] kthread+0x2f0/0x390 [ 72.035798][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.037643][ T72] ? __pfx_kthread+0x10/0x10 [ 72.039359][ T72] ret_from_fork+0x4b/0x80 [ 72.041023][ T72] ? __pfx_kthread+0x10/0x10 [ 72.042725][ T72] ret_from_fork_asm+0x1a/0x30 [ 72.044451][ T72] [ 72.053306][ T72] [ 72.054296][ T72] ============================= [ 72.056156][ T72] WARNING: suspicious RCU usage [ 72.057901][ T72] 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 Tainted: G W [ 72.061049][ T72] ----------------------------- [ 72.062852][ T72] kernel/rcu/tree_exp.h:949 Illegal synchronize_rcu_expedited() in RCU read-side critical section! [ 72.066747][ T72] [ 72.066747][ T72] other info that might help us debug this: [ 72.066747][ T72] [ 72.070408][ T72] [ 72.070408][ T72] rcu_scheduler_active = 2, debug_locks = 1 [ 72.073271][ T72] 3 locks held by kworker/u4:4/72: [ 72.075282][ T72] #0: ffff8880523c6948 ((wq_completion)bond0){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840 [ 72.079215][ T72] #1: ffffc9000103fd00 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840 [ 72.083504][ T72] #2: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170 [ 72.086996][ T72] [ 72.086996][ T72] stack backtrace: [ 72.089008][ T72] CPU: 0 UID: 0 PID: 72 Comm: kworker/u4:4 Tainted: G W 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 72.093133][ T72] Tainted: [W]=WARN [ 72.094445][ T72] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 72.098030][ T72] Workqueue: bond0 bond_mii_monitor [ 72.099801][ T72] Call Trace: [ 72.101032][ T72] [ 72.102106][ T72] dump_stack_lvl+0x241/0x360 [ 72.103664][ T72] ? __pfx_dump_stack_lvl+0x10/0x10 [ 72.105441][ T72] ? __pfx__printk+0x10/0x10 [ 72.106978][ T72] lockdep_rcu_suspicious+0x226/0x340 [ 72.108861][ T72] synchronize_rcu_expedited+0x12e/0x830 [ 72.111032][ T72] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 72.113248][ T72] ? add_taint+0x99/0xe0 [ 72.114823][ T72] ? __might_resched+0x5e0/0x780 [ 72.116637][ T72] ? __local_bh_enable_ip+0x179/0x200 [ 72.118488][ T72] ? dev_deactivate_many+0x250/0xb10 [ 72.120423][ T72] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 72.122596][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.124487][ T72] dev_deactivate_many+0x4a7/0xb10 [ 72.126437][ T72] ? dev_deactivate_many+0x250/0xb10 [ 72.128391][ T72] dev_deactivate+0x184/0x280 [ 72.130009][ T72] ? __pfx_dev_deactivate+0x10/0x10 [ 72.131792][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 72.133867][ T72] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 72.136115][ T72] ? rfc2863_policy+0x1db/0x3b0 [ 72.137784][ T72] linkwatch_do_dev+0x10a/0x170 [ 72.139431][ T72] ethtool_op_get_link+0x15/0x60 [ 72.140882][ T72] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 72.142616][ T72] bond_check_dev_link+0x1f1/0x3f0 [ 72.144523][ T72] ? __pfx_bond_check_dev_link+0x10/0x10 [ 72.146614][ T72] bond_mii_monitor+0x49a/0x3170 [ 72.148131][ T72] ? __lock_acquire+0x1397/0x2100 [ 72.149818][ T72] ? bond_mii_monitor+0x174/0x3170 [ 72.151479][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.153261][ T72] ? __pfx_bond_mii_monitor+0x10/0x10 [ 72.154978][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 72.156459][ T72] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.158478][ T72] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.160754][ T72] ? process_scheduled_works+0x976/0x1840 [ 72.163022][ T72] process_scheduled_works+0xa66/0x1840 [ 72.165425][ T72] ? __pfx_process_scheduled_works+0x10/0x10 [ 72.167509][ T72] ? assign_work+0x364/0x3d0 [ 72.169230][ T72] worker_thread+0x870/0xd30 [ 72.170889][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 72.172597][ T72] ? __kthread_parkme+0x169/0x1d0 [ 72.174428][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.176292][ T72] kthread+0x2f0/0x390 [ 72.177790][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.179601][ T72] ? __pfx_kthread+0x10/0x10 [ 72.181097][ T72] ret_from_fork+0x4b/0x80 [ 72.182521][ T72] ? __pfx_kthread+0x10/0x10 [ 72.184037][ T72] ret_from_fork_asm+0x1a/0x30 [ 72.185737][ T72] [ 72.192860][ T72] [ 72.193723][ T72] ============================= [ 72.195447][ T72] [ BUG: Invalid wait context ] [ 72.197191][ T72] 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 Tainted: G W [ 72.200367][ T72] ----------------------------- [ 72.202072][ T72] kworker/u4:4/72 is trying to lock: [ 72.204016][ T72] ffffffff8e93cff8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x451/0x830 [ 72.207657][ T72] other info that might help us debug this: [ 72.209576][ T72] context-{5:5} [ 72.210795][ T72] 3 locks held by kworker/u4:4/72: [ 72.212777][ T72] #0: ffff8880523c6948 ((wq_completion)bond0){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840 [ 72.217192][ T72] #1: ffffc9000103fd00 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840 [ 72.221352][ T72] #2: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170 [ 72.224593][ T72] stack backtrace: [ 72.225876][ T72] CPU: 0 UID: 0 PID: 72 Comm: kworker/u4:4 Tainted: G W 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 72.230130][ T72] Tainted: [W]=WARN [ 72.231877][ T72] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 72.235765][ T72] Workqueue: bond0 bond_mii_monitor [ 72.237725][ T72] Call Trace: [ 72.238953][ T72] [ 72.240050][ T72] dump_stack_lvl+0x241/0x360 [ 72.241835][ T72] ? __pfx_dump_stack_lvl+0x10/0x10 [ 72.243808][ T72] ? __pfx__printk+0x10/0x10 [ 72.245612][ T72] __lock_acquire+0x15a8/0x2100 [ 72.247493][ T72] lock_acquire+0x1ed/0x550 [ 72.249145][ T72] ? synchronize_rcu_expedited+0x451/0x830 [ 72.251146][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 72.252951][ T72] ? __pfx___might_resched+0x10/0x10 [ 72.254883][ T72] __mutex_lock+0x1ac/0xee0 [ 72.256409][ T72] ? synchronize_rcu_expedited+0x451/0x830 [ 72.258407][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 72.260257][ T72] ? synchronize_rcu_expedited+0x451/0x830 [ 72.262480][ T72] ? __pfx___mutex_lock+0x10/0x10 [ 72.264026][ T72] ? do_raw_spin_lock+0x14f/0x370 [ 72.265760][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.267661][ T72] synchronize_rcu_expedited+0x451/0x830 [ 72.269744][ T72] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 72.272013][ T72] ? add_taint+0x99/0xe0 [ 72.273756][ T72] ? __might_resched+0x5e0/0x780 [ 72.275641][ T72] ? __local_bh_enable_ip+0x179/0x200 [ 72.277529][ T72] ? dev_deactivate_many+0x250/0xb10 [ 72.279364][ T72] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 72.281354][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.283288][ T72] dev_deactivate_many+0x4a7/0xb10 [ 72.285217][ T72] ? dev_deactivate_many+0x250/0xb10 [ 72.287113][ T72] dev_deactivate+0x184/0x280 [ 72.288716][ T72] ? __pfx_dev_deactivate+0x10/0x10 [ 72.290586][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 72.292573][ T72] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 72.294925][ T72] ? rfc2863_policy+0x1db/0x3b0 [ 72.296636][ T72] linkwatch_do_dev+0x10a/0x170 [ 72.298426][ T72] ethtool_op_get_link+0x15/0x60 [ 72.300287][ T72] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 72.302351][ T72] bond_check_dev_link+0x1f1/0x3f0 [ 72.304131][ T72] ? __pfx_bond_check_dev_link+0x10/0x10 [ 72.306086][ T72] bond_mii_monitor+0x49a/0x3170 [ 72.307834][ T72] ? __lock_acquire+0x1397/0x2100 [ 72.309687][ T72] ? bond_mii_monitor+0x174/0x3170 [ 72.311538][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.313409][ T72] ? __pfx_bond_mii_monitor+0x10/0x10 [ 72.315372][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 72.317132][ T72] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.319372][ T72] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.321567][ T72] ? process_scheduled_works+0x976/0x1840 [ 72.323400][ T72] process_scheduled_works+0xa66/0x1840 [ 72.325303][ T72] ? __pfx_process_scheduled_works+0x10/0x10 [ 72.327330][ T72] ? assign_work+0x364/0x3d0 [ 72.329038][ T72] worker_thread+0x870/0xd30 [ 72.330688][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 72.332797][ T72] ? __kthread_parkme+0x169/0x1d0 [ 72.334651][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.336410][ T72] kthread+0x2f0/0x390 [ 72.337854][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.339716][ T72] ? __pfx_kthread+0x10/0x10 [ 72.341472][ T72] ret_from_fork+0x4b/0x80 [ 72.342943][ T72] ? __pfx_kthread+0x10/0x10 [ 72.344625][ T72] ret_from_fork_asm+0x1a/0x30 [ 72.346495][ T72] [ 72.347968][ T72] ------------[ cut here ]------------ [ 72.349805][ T72] Voluntary context switch within RCU read-side critical section! [ 72.349873][ T72] WARNING: CPU: 0 PID: 72 at kernel/rcu/tree_plugin.h:331 rcu_note_context_switch+0xcf4/0xff0 [ 72.357013][ T72] Modules linked in: [ 72.358493][ T72] CPU: 0 UID: 0 PID: 72 Comm: kworker/u4:4 Tainted: G W 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 72.362941][ T72] Tainted: [W]=WARN [ 72.364365][ T72] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 72.368326][ T72] Workqueue: bond0 bond_mii_monitor [ 72.370257][ T72] RIP: 0010:rcu_note_context_switch+0xcf4/0xff0 [ 72.372478][ T72] Code: 00 ba 02 00 00 00 e8 7b 13 fe ff 4c 8b b4 24 80 00 00 00 eb 91 c6 05 43 bc 7d 0e 01 90 48 c7 c7 00 ed 0b 8c e8 9d 30 da ff 90 <0f> 0b 90 90 e9 3b f4 ff ff 90 0f 0b 90 45 84 ed 0f 84 00 f4 ff ff [ 72.379372][ T72] RSP: 0018:ffffc9000103ef60 EFLAGS: 00010046 [ 72.381944][ T72] RAX: be6b63daa467aa00 RBX: ffff88801f0fccc4 RCX: ffff88801f0fc880 [ 72.384874][ T72] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 72.387808][ T72] RBP: ffffc9000103f0b0 R08: ffffffff81600a42 R09: fffffbfff1cfa210 [ 72.390728][ T72] R10: dffffc0000000000 R11: fffffbfff1cfa210 R12: ffff88801f0fc880 [ 72.393635][ T72] R13: 0000000000000000 R14: 1ffff92000207e04 R15: dffffc0000000000 [ 72.396489][ T72] FS: 0000000000000000(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 72.399776][ T72] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 72.402202][ T72] CR2: 00000000200019c0 CR3: 0000000011ef0000 CR4: 0000000000352ef0 [ 72.405170][ T72] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 72.407957][ T72] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 72.410869][ T72] Call Trace: [ 72.412157][ T72] [ 72.413282][ T72] ? __warn+0x165/0x4d0 [ 72.415985][ T72] ? rcu_note_context_switch+0xcf4/0xff0 [ 72.417832][ T72] ? report_bug+0x2b3/0x500 [ 72.419356][ T72] ? rcu_note_context_switch+0xcf4/0xff0 [ 72.421318][ T72] ? handle_bug+0x60/0x90 [ 72.422863][ T72] ? exc_invalid_op+0x1a/0x50 [ 72.424594][ T72] ? asm_exc_invalid_op+0x1a/0x20 [ 72.426506][ T72] ? __warn_printk+0x292/0x360 [ 72.428179][ T72] ? rcu_note_context_switch+0xcf4/0xff0 [ 72.430281][ T72] ? ret_from_fork_asm+0x1a/0x30 [ 72.432003][ T72] ? __printk_cpu_sync_put+0x67/0x80 [ 72.433753][ T72] ? dump_stack_lvl+0x301/0x360 [ 72.435488][ T72] ? __pfx_dump_stack_lvl+0x10/0x10 [ 72.437253][ T72] ? __pfx__printk+0x10/0x10 [ 72.438918][ T72] ? __pfx_rcu_note_context_switch+0x10/0x10 [ 72.441075][ T72] ? rcu_is_watching+0x15/0xb0 [ 72.442681][ T72] __schedule+0x34b/0x4c30 [ 72.444223][ T72] ? rcu_is_watching+0x15/0xb0 [ 72.445887][ T72] ? lock_acquire+0x264/0x550 [ 72.447505][ T72] ? __pfx___schedule+0x10/0x10 [ 72.449113][ T72] ? __mutex_trylock_common+0x92/0x2e0 [ 72.451024][ T72] ? __pfx___mutex_trylock_common+0x10/0x10 [ 72.453108][ T72] schedule+0x14b/0x320 [ 72.454635][ T72] schedule_preempt_disabled+0x13/0x30 [ 72.456497][ T72] __mutex_lock+0x425/0xee0 [ 72.457956][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 72.459720][ T72] ? synchronize_rcu_expedited+0x451/0x830 [ 72.461674][ T72] ? __pfx___mutex_lock+0x10/0x10 [ 72.463444][ T72] ? do_raw_spin_lock+0x14f/0x370 [ 72.465119][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.466952][ T72] synchronize_rcu_expedited+0x451/0x830 [ 72.468877][ T72] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 72.471195][ T72] ? add_taint+0x99/0xe0 [ 72.472602][ T72] ? __might_resched+0x5e0/0x780 [ 72.474428][ T72] ? __local_bh_enable_ip+0x179/0x200 [ 72.476206][ T72] ? dev_deactivate_many+0x250/0xb10 [ 72.478082][ T72] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 72.480025][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.481680][ T72] dev_deactivate_many+0x4a7/0xb10 [ 72.483468][ T72] ? dev_deactivate_many+0x250/0xb10 [ 72.485313][ T72] dev_deactivate+0x184/0x280 [ 72.487003][ T72] ? __pfx_dev_deactivate+0x10/0x10 [ 72.488952][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 72.491211][ T72] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 72.493330][ T72] ? rfc2863_policy+0x1db/0x3b0 [ 72.495044][ T72] linkwatch_do_dev+0x10a/0x170 [ 72.496773][ T72] ethtool_op_get_link+0x15/0x60 [ 72.498758][ T72] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 72.500735][ T72] bond_check_dev_link+0x1f1/0x3f0 [ 72.502755][ T72] ? __pfx_bond_check_dev_link+0x10/0x10 [ 72.504773][ T72] bond_mii_monitor+0x49a/0x3170 [ 72.506555][ T72] ? __lock_acquire+0x1397/0x2100 [ 72.508364][ T72] ? bond_mii_monitor+0x174/0x3170 [ 72.510193][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.512107][ T72] ? __pfx_bond_mii_monitor+0x10/0x10 [ 72.514103][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 72.515870][ T72] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.518187][ T72] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.520510][ T72] ? process_scheduled_works+0x976/0x1840 [ 72.522602][ T72] process_scheduled_works+0xa66/0x1840 [ 72.524467][ T72] ? __pfx_process_scheduled_works+0x10/0x10 [ 72.526657][ T72] ? assign_work+0x364/0x3d0 [ 72.528394][ T72] worker_thread+0x870/0xd30 [ 72.530113][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 72.532247][ T72] ? __kthread_parkme+0x169/0x1d0 [ 72.534105][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.535966][ T72] kthread+0x2f0/0x390 [ 72.537518][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.539375][ T72] ? __pfx_kthread+0x10/0x10 [ 72.540936][ T72] ret_from_fork+0x4b/0x80 [ 72.542492][ T72] ? __pfx_kthread+0x10/0x10 [ 72.544085][ T72] ret_from_fork_asm+0x1a/0x30 [ 72.545785][ T72] [ 72.547020][ T72] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 72.549763][ T72] CPU: 0 UID: 0 PID: 72 Comm: kworker/u4:4 Tainted: G W 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 [ 72.554207][ T72] Tainted: [W]=WARN [ 72.555609][ T72] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 72.559503][ T72] Workqueue: bond0 bond_mii_monitor [ 72.561441][ T72] Call Trace: [ 72.562920][ T72] [ 72.564063][ T72] dump_stack_lvl+0x241/0x360 [ 72.565790][ T72] ? __pfx_dump_stack_lvl+0x10/0x10 [ 72.567726][ T72] ? __pfx__printk+0x10/0x10 [ 72.569287][ T72] ? _printk+0xd5/0x120 [ 72.570766][ T72] ? __init_begin+0x41000/0x41000 [ 72.572596][ T72] ? vscnprintf+0x5d/0x90 [ 72.574093][ T72] panic+0x349/0x880 [ 72.575497][ T72] ? __warn+0x174/0x4d0 [ 72.576997][ T72] ? __pfx_panic+0x10/0x10 [ 72.578678][ T72] ? ret_from_fork_asm+0x1a/0x30 [ 72.580490][ T72] __warn+0x344/0x4d0 [ 72.581997][ T72] ? rcu_note_context_switch+0xcf4/0xff0 [ 72.584110][ T72] report_bug+0x2b3/0x500 [ 72.585679][ T72] ? rcu_note_context_switch+0xcf4/0xff0 [ 72.587675][ T72] handle_bug+0x60/0x90 [ 72.589142][ T72] exc_invalid_op+0x1a/0x50 [ 72.590708][ T72] asm_exc_invalid_op+0x1a/0x20 [ 72.592323][ T72] RIP: 0010:rcu_note_context_switch+0xcf4/0xff0 [ 72.594530][ T72] Code: 00 ba 02 00 00 00 e8 7b 13 fe ff 4c 8b b4 24 80 00 00 00 eb 91 c6 05 43 bc 7d 0e 01 90 48 c7 c7 00 ed 0b 8c e8 9d 30 da ff 90 <0f> 0b 90 90 e9 3b f4 ff ff 90 0f 0b 90 45 84 ed 0f 84 00 f4 ff ff [ 72.600951][ T72] RSP: 0018:ffffc9000103ef60 EFLAGS: 00010046 [ 72.602987][ T72] RAX: be6b63daa467aa00 RBX: ffff88801f0fccc4 RCX: ffff88801f0fc880 [ 72.605610][ T72] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 72.608257][ T72] RBP: ffffc9000103f0b0 R08: ffffffff81600a42 R09: fffffbfff1cfa210 [ 72.611055][ T72] R10: dffffc0000000000 R11: fffffbfff1cfa210 R12: ffff88801f0fc880 [ 72.613960][ T72] R13: 0000000000000000 R14: 1ffff92000207e04 R15: dffffc0000000000 [ 72.616779][ T72] ? __warn_printk+0x292/0x360 [ 72.618369][ T72] ? ret_from_fork_asm+0x1a/0x30 [ 72.620155][ T72] ? __printk_cpu_sync_put+0x67/0x80 [ 72.622142][ T72] ? dump_stack_lvl+0x301/0x360 [ 72.623992][ T72] ? __pfx_dump_stack_lvl+0x10/0x10 [ 72.626005][ T72] ? __pfx__printk+0x10/0x10 [ 72.627681][ T72] ? __pfx_rcu_note_context_switch+0x10/0x10 [ 72.629825][ T72] ? rcu_is_watching+0x15/0xb0 [ 72.631545][ T72] __schedule+0x34b/0x4c30 [ 72.633131][ T72] ? rcu_is_watching+0x15/0xb0 [ 72.634999][ T72] ? lock_acquire+0x264/0x550 [ 72.636711][ T72] ? __pfx___schedule+0x10/0x10 [ 72.638387][ T72] ? __mutex_trylock_common+0x92/0x2e0 [ 72.640079][ T72] ? __pfx___mutex_trylock_common+0x10/0x10 [ 72.641870][ T72] schedule+0x14b/0x320 [ 72.643250][ T72] schedule_preempt_disabled+0x13/0x30 [ 72.644814][ T72] __mutex_lock+0x425/0xee0 [ 72.646148][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 72.647643][ T72] ? synchronize_rcu_expedited+0x451/0x830 [ 72.649450][ T72] ? __pfx___mutex_lock+0x10/0x10 [ 72.650992][ T72] ? do_raw_spin_lock+0x14f/0x370 [ 72.652846][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.654489][ T72] synchronize_rcu_expedited+0x451/0x830 [ 72.656502][ T72] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 72.658548][ T72] ? add_taint+0x99/0xe0 [ 72.660054][ T72] ? __might_resched+0x5e0/0x780 [ 72.661724][ T72] ? __local_bh_enable_ip+0x179/0x200 [ 72.663429][ T72] ? dev_deactivate_many+0x250/0xb10 [ 72.665401][ T72] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 72.667566][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.669417][ T72] dev_deactivate_many+0x4a7/0xb10 [ 72.671285][ T72] ? dev_deactivate_many+0x250/0xb10 [ 72.673251][ T72] dev_deactivate+0x184/0x280 [ 72.674850][ T72] ? __pfx_dev_deactivate+0x10/0x10 [ 72.676556][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 72.678594][ T72] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 72.680746][ T72] ? rfc2863_policy+0x1db/0x3b0 [ 72.682494][ T72] linkwatch_do_dev+0x10a/0x170 [ 72.684146][ T72] ethtool_op_get_link+0x15/0x60 [ 72.685858][ T72] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 72.687644][ T72] bond_check_dev_link+0x1f1/0x3f0 [ 72.689397][ T72] ? __pfx_bond_check_dev_link+0x10/0x10 [ 72.691267][ T72] bond_mii_monitor+0x49a/0x3170 [ 72.693010][ T72] ? __lock_acquire+0x1397/0x2100 [ 72.694775][ T72] ? bond_mii_monitor+0x174/0x3170 [ 72.696539][ T72] ? do_raw_spin_unlock+0x58/0x8b0 [ 72.698534][ T72] ? __pfx_bond_mii_monitor+0x10/0x10 [ 72.700520][ T72] ? __pfx_lock_acquire+0x10/0x10 [ 72.702265][ T72] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.704424][ T72] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.706758][ T72] ? process_scheduled_works+0x976/0x1840 [ 72.708772][ T72] process_scheduled_works+0xa66/0x1840 [ 72.710696][ T72] ? __pfx_process_scheduled_works+0x10/0x10 [ 72.712635][ T72] ? assign_work+0x364/0x3d0 [ 72.714282][ T72] worker_thread+0x870/0xd30 [ 72.715934][ T72] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 72.717819][ T72] ? __kthread_parkme+0x169/0x1d0 [ 72.719598][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.721462][ T72] kthread+0x2f0/0x390 [ 72.722985][ T72] ? __pfx_worker_thread+0x10/0x10 [ 72.724870][ T72] ? __pfx_kthread+0x10/0x10 [ 72.726527][ T72] ret_from_fork+0x4b/0x80 [ 72.728166][ T72] ? __pfx_kthread+0x10/0x10 [ 72.729844][ T72] ret_from_fork_asm+0x1a/0x30 [ 72.731619][ T72] [ 72.732996][ T72] Kernel Offset: disabled [ 72.734585][ T72] Rebooting in 86400 seconds..