last executing test programs: 52.090784735s ago: executing program 1: setgroups(0x0, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x140}}, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 50.711756698s ago: executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x0, 0x13, 0x0, 0x0}, 0x90) setrlimit(0xd, &(0x7f0000000280)={0x0, 0x401}) syz_emit_ethernet(0x8a, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, 0x0) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000400)='net/mcfilter6\x00') syz_open_dev$tty20(0xc, 0x4, 0x1) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x0, @fixed, 0x0, 0x2}, 0xe) connect$bt_l2cap(r3, 0x0, 0x0) getsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, &(0x7f0000000180)) syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x800}, &(0x7f0000000100), 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) 48.951139743s ago: executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, 0x0) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000ac0)={0x40, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x4}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8}]}]}, 0x40}}, 0x0) 48.800588755s ago: executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = dup2(r0, r1) sendmmsg$inet(r2, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000a00)="316f825a3d29f96a2093a917017b4cd30000000000000035ed313e19d6dd", 0x1e}, {&(0x7f0000000640)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12e4569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d7756bf4fcaff0c23374ec7c4aadbb8b985f14893a91d750e168350685e0f4f079d2d8e79be174e", 0xa7}, {&(0x7f0000000700)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df283b3ca3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25c951279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63ee1bbe01fbb6125e65839ae5b02d542a97d1bfb1ca420b5405baaaf5ec6ad96af2814dbbea5a064f2ab6fc0904c07f02cbfadfb96866d962e6e21d3a0a0276a36e01b6edafd6c8461de7afec966f9c023ffe15c3c1caec8ff3ef3", 0xde}, {&(0x7f0000000500)="fff5c0293353db83a683db60266a3867d03f740f4f0a7bafe7be9b2bac0bf1b2019dbde5f640c897ac57789fb8490642b47a96f0d03ec69d1f6e90e86be7fb3ef9e76969438283b0ab8d31b707ddd3b453f5ed67232e172945aecaf6dd89d72d7a429ef6d0dcc5f0d9cc", 0x6a}], 0x4}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)="2ea5d94f90933978352c42a3dad24b4909f57c7dba08e38797ab936fc9c5158f38287dbf6242139b1abfd08aabc9d67efa71c608a29bc1636373ad0461338c453a5bae9e10b5713832e4a6b717d0ebe8c0ee1fd8ccfdd83c514ffa754463ff63126faf04b514e5a27aa54f59f9516e5cba1a7a587a56a944c41c7081bcfd9fc61a4f714f7d7284f39cb83ab2013358814c3043db251e5caab2c359284c5a1f9755c2c7", 0xa3}], 0x1}}], 0x2, 0x0) sendmsg$TIPC_NL_SOCK_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001340)=ANY=[], 0x2b8}}, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) syz_genetlink_get_family_id$gtp(&(0x7f0000000180), r1) sendto$inet(r0, &(0x7f0000000840)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab", 0x3a, 0x51, 0x0, 0x0) 48.559748247s ago: executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000010000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000300)={0x0, 0x22, 0x22, {[@main=@item_4={0x3, 0x0, 0x0, "e6af01f7"}, @global=@item_4={0x3, 0x1, 0x0, "f7940ef7"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @global=@item_012={0x2, 0x1, 0x0, "b8ef"}, @local, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0) 45.440314156s ago: executing program 1: getpid() mlock2(&(0x7f00005bc000/0x3000)=nil, 0x3000, 0x0) socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000140)) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x0, 0x1000, 0x3a}, 0x1c) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10) connect$inet(r1, 0x0, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10) r3 = dup(r2) sendmsg$inet(r3, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0) select(0x40, &(0x7f0000000080), 0x0, &(0x7f0000000140)={0x3f}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x10) socket$igmp(0x2, 0x3, 0x2) 40.503366932s ago: executing program 0: openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0), 0x48) syz_emit_ethernet(0x3e, 0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) io_uring_register$IORING_REGISTER_RING_FDS(0xffffffffffffffff, 0x14, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10) prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20) syz_emit_ethernet(0x3e, &(0x7f00000002c0)=ANY=[], 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) 40.358640858s ago: executing program 0: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)) preadv(0xffffffffffffffff, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f00000003c0)={0x0}) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'}) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x0, 0x4}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000400), &(0x7f0000000340)=@tcp6=r0}, 0x20) syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000ab9fd540501d6f60d414000000010902120001000040000904"], 0x0) socket$inet6(0xa, 0x3, 0x0) 37.843745869s ago: executing program 4: syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x1000840, &(0x7f0000000380)=ANY=[], 0x3, 0x363, &(0x7f0000000640)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x3ffffffffffff45, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r3, &(0x7f0000001280)=""/4089, 0xff9) r4 = socket(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r4, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"]}, 0xa08) execveat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', &(0x7f0000000080)=[0x0], &(0x7f00000000c0)=[0x0], 0x0) close(0xffffffffffffffff) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180)=[0x0], &(0x7f00000001c0)=[0x0], 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r5, &(0x7f0000000240)="01010101", 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="11000000150001000000000000008900020000000000000000ce313528f90f0f6062f0f1"], 0x24}}, 0x0) close(r5) execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', &(0x7f00000002c0)=[0x0], &(0x7f0000000300)=[0x0], 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x42, 0x0) close(r7) 37.00012567s ago: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x4008c}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) sched_setscheduler(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r1, 0xc1004110, &(0x7f0000000000)={0x0, [0x2, 0xffff133a, 0x7], [{0x0, 0xffffffff}, {0x0, 0x85}, {0x8, 0xffff}, {}, {}, {0x0, 0x9}, {0x0, 0x975}], 0x10}) ioctl$KVM_GET_NESTED_STATE(0xffffffffffffffff, 0x4140aecd, &(0x7f0000006dc0)={{0x0, 0x0, 0x80}}) r4 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r4, 0x1, 0x8, 0x0, 0x0) 35.552910102s ago: executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000011540)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48) setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000040)=r5, 0x4) sendmsg$inet(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000340)="25b096f681cd731c3f3a9badc4e3cf5edeae1f3b5082d7ab3a97c053df68744e7c7e24d0b59997bab4bccff8363b275de3510b0ebe4275d8d2f153395668e3d608e358fc2294263c03f8dc4f8bf194e4fde4600a2dec2f483a914e2fde0cbc344a2b9fc18dd198966045a6d4d4eb8571e8bb69e6724e37fcbaa6e4c64050b47256b9bb17f5c0aa5101e015ecdcb62fec46fc0205512535", 0x97}, {&(0x7f0000000280)="d3a88bea5916e313729a3989393caca70c74cd74e62e524bdd37be131ad827f911027e70ccf679d8e7c0cd3333095f83d6d473db345ded2ac8acaa87503de74c82431758e8e11e3ecb7bce02", 0x4c}], 0x2}, 0x0) 35.440036023s ago: executing program 2: bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) readv(r0, &(0x7f0000001340)=[{0x0}], 0x1) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) readv(r0, &(0x7f0000001240)=[{&(0x7f0000000040)=""/80, 0x50}], 0x1) 33.891160189s ago: executing program 2: setgroups(0x0, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="400100001a0013070000000000000000fe8000000000000000000000000000aaff01000000000009000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB], 0x140}}, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 33.890925891s ago: executing program 4: syz_init_net_socket$x25(0x9, 0x5, 0x0) prctl$PR_SET_IO_FLUSHER(0x39, 0x1) io_uring_setup(0x4001, &(0x7f0000000200)) 33.889436337s ago: executing program 3: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)) preadv(0xffffffffffffffff, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f00000003c0)={0x0}) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'}) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x0, 0x4}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000400), &(0x7f0000000340)=@tcp6=r0}, 0x20) syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000ab9fd540501d6f60d414000000010902120001000040000904"], 0x0) socket$inet6(0xa, 0x3, 0x0) 33.888356363s ago: executing program 4: openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0), 0x48) syz_emit_ethernet(0x3e, 0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) io_uring_register$IORING_REGISTER_RING_FDS(0xffffffffffffffff, 0x14, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10) prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20) syz_emit_ethernet(0x3e, &(0x7f00000002c0)=ANY=[], 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) 31.510772425s ago: executing program 0: syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") getcwd(&(0x7f0000000000), 0xffffffffffffffac) 31.426050311s ago: executing program 4: bpf$MAP_CREATE(0x0, 0x0, 0x0) syz_read_part_table(0x1061, &(0x7f00000014c0)="$eJzsz7tNxEAUBdA74DEQEZM5ogNiJFpAJPRADR5EQC3QAgVQFMEgey2XsLvBOdl9P+mF0+rpB/MaP9rDeFVSUtdYS5KSx79ekrZUpvr2WVoybPvT3dNrkt/b/eLY52GZvU/yfHNZr/fOe3r9qVv4ahfjy/fxHgUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA8/UfAAD//wlVFt0=") 31.309045825s ago: executing program 2: sendmsg$NFC_CMD_DISABLE_SE(0xffffffffffffffff, 0x0, 0x0) socket$inet(0x2, 0x0, 0x84) r0 = socket$qrtr(0x2a, 0x2, 0x0) socket$kcm(0x29, 0x0, 0x0) r1 = syz_open_dev$sndctrl(&(0x7f00000000c0), 0x3e, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000240)={{0x0, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x4, 0x0, 0xd, 0x0, 0x0, 0x0, 'syz1\x00', 0x0}) close_range(r0, 0xffffffffffffffff, 0x0) 31.002470243s ago: executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x48, r2, 0x7562f43b63fde81f, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x2b, 0x33, @action={{{}, {}, @device_a, @device_b}, @channel_switch={0x0, 0x4, {{0x25, 0x3, {0x0, 0x8}}, @void, @val={0x76, 0x6}}}}}]}, 0x48}}, 0x0) 30.830232342s ago: executing program 2: recvmmsg(0xffffffffffffffff, &(0x7f0000006e40)=[{{0x0, 0x0, 0x0}, 0x35b}], 0x1, 0x40012000, 0x0) r0 = socket(0x840000000002, 0x3, 0x100) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0) 30.052945351s ago: executing program 2: r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0) unshare(0x68040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(0xffffffffffffffff, 0x84, 0x65, 0x0, 0x0) socket$inet6(0xa, 0x80001, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 29.682390512s ago: executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)) r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) ioctl$FS_IOC_GETFSLABEL(r4, 0x800452d3, &(0x7f0000000100)) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) connect$pppl2tp(r3, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xb}}, 0x2, 0x0, 0x1}}, 0x2e) r5 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb) pipe2$watch_queue(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) keyctl$KEYCTL_WATCH_KEY(0x20, r5, r6, 0x0) keyctl$KEYCTL_WATCH_KEY(0x20, r5, 0xffffffffffffffff, 0xffffffffffffffff) keyctl$link(0x8, 0x0, r5) socket$nl_rdma(0x10, 0x3, 0x14) 28.554451309s ago: executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000011540)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48) setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000040)=r5, 0x4) sendmsg$inet(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000340)="25b096f681cd731c3f3a9badc4e3cf5edeae1f3b5082d7ab3a97c053df68744e7c7e24d0b59997bab4bccff8363b275de3510b0ebe4275d8d2f153395668e3d608e358fc2294263c03f8dc4f8bf194e4fde4600a2dec2f483a914e2fde0cbc344a2b9fc18dd198966045a6d4d4eb8571e8bb69e6724e37fcbaa6e4c64050b47256b9bb17f5c0aa5101e015ecdcb62fec46fc0205512535", 0x97}, {&(0x7f0000000280)="d3a88bea5916e313729a3989393caca70c74cd74e62e524bdd37be131ad827f911027e70ccf679d8e7c0cd3333095f83d6d473db345ded2ac8acaa87503de74c82431758e8e11e3ecb7bce02", 0x4c}], 0x2}, 0x0) 27.015332224s ago: executing program 3: timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x0, 0x800000000004}, &(0x7f0000bbdffc)) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f00000020c0)=ANY=[], 0x2b) r0 = eventfd(0x0) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) getpeername(r1, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, &(0x7f0000000040)=0x1a) close(r2) rt_sigreturn() timer_settime(0x0, 0x0, 0x0, 0x0) ioctl$KDSETKEYCODE(r0, 0x5451, 0x0) 26.929167151s ago: executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x4008c}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) sched_setscheduler(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r1, 0xc1004110, &(0x7f0000000000)={0x0, [0x2, 0xffff133a, 0x7], [{0x0, 0xffffffff}, {0x0, 0x85}, {0x8, 0xffff}, {}, {}, {0x0, 0x9}, {0x0, 0x975}], 0x10}) ioctl$KVM_GET_NESTED_STATE(0xffffffffffffffff, 0x4140aecd, &(0x7f0000006dc0)={{0x0, 0x0, 0x80}}) r4 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r4, 0x1, 0x8, 0x0, 0x0) 25.218670466s ago: executing program 3: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000140), 0x4) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='sched_switch\x00', r1}, 0x10) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000180)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_addr, @broadcast}, 0x10) setsockopt$MRT_FLUSH(0xffffffffffffffff, 0x0, 0xd4, 0x0, 0x0) 1.391423667s ago: executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x0, 0x3, 0x0, &(0x7f0000000000)='syzkaller\x00'}, 0x90) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x54) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000100)={r2}, 0x14) 941.083652ms ago: executing program 0: getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) socket$tipc(0x1e, 0x0, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000003200010000000000000000000000000a20000000000a01"], 0x7c}}, 0x0) 0s ago: executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random='^'}, @NL80211_ATTR_PREV_BSSID={0xa}]}, 0x30}}, 0x0) kernel console output (not intermixed with test programs): 0][ C1] [ 838.967762][ C1] __schedule+0x17e8/0x4a20 [ 838.967802][ C1] ? __pfx___schedule+0x10/0x10 [ 838.967825][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 838.967849][ C1] ? __pfx_lock_release+0x10/0x10 [ 838.967873][ C1] ? kick_pool+0x45c/0x620 [ 838.967900][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 838.967922][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 838.967949][ C1] ? schedule+0x90/0x320 [ 838.967970][ C1] schedule+0x14b/0x320 [ 838.967993][ C1] schedule_preempt_disabled+0x13/0x30 [ 838.968016][ C1] __mutex_lock+0x6a4/0xd70 [ 838.968044][ C1] ? __mutex_lock+0x527/0xd70 [ 838.968077][ C1] ? linkwatch_event+0xe/0x60 [ 838.968102][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 838.968134][ C1] ? process_scheduled_works+0x945/0x1830 [ 838.968156][ C1] ? rtnl_lock+0xe7/0x130 [ 838.968179][ C1] ? process_scheduled_works+0x945/0x1830 [ 838.968200][ C1] linkwatch_event+0xe/0x60 [ 838.968224][ C1] process_scheduled_works+0xa2c/0x1830 [ 838.968268][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 838.968298][ C1] ? assign_work+0x364/0x3d0 [ 838.968324][ C1] worker_thread+0x86d/0xd50 [ 838.968358][ C1] ? __kthread_parkme+0x169/0x1d0 [ 838.968385][ C1] ? __pfx_worker_thread+0x10/0x10 [ 838.968408][ C1] kthread+0x2f0/0x390 [ 838.968432][ C1] ? __pfx_worker_thread+0x10/0x10 [ 838.968454][ C1] ? __pfx_kthread+0x10/0x10 [ 838.968480][ C1] ret_from_fork+0x4b/0x80 [ 838.968504][ C1] ? __pfx_kthread+0x10/0x10 [ 838.968529][ C1] ret_from_fork_asm+0x1a/0x30 [ 838.968567][ C1] [ 838.968574][ C1] DEBUG: waiting rtnl_mutex for 2591 jiffies. [ 838.968585][ C1] task:syz-executor.0 state:D stack:26112 pid:15061 tgid:15059 ppid:6308 flags:0x00000006 [ 838.968614][ C1] Call Trace: [ 838.968622][ C1] [ 838.968633][ C1] __schedule+0x17e8/0x4a20 [ 838.968673][ C1] ? __pfx___schedule+0x10/0x10 [ 838.968698][ C1] ? __pfx_lock_release+0x10/0x10 [ 838.968722][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 838.968759][ C1] ? schedule+0x90/0x320 [ 838.968779][ C1] schedule+0x14b/0x320 [ 838.968803][ C1] schedule_preempt_disabled+0x13/0x30 [ 838.968825][ C1] __mutex_lock+0x6a4/0xd70 [ 838.968853][ C1] ? __mutex_lock+0x527/0xd70 [ 838.968879][ C1] ? nl80211_pre_doit+0x5f/0x8b0 [ 838.968907][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 838.968943][ C1] ? rtnl_lock+0xe7/0x130 [ 838.968968][ C1] nl80211_pre_doit+0x5f/0x8b0 [ 838.968999][ C1] genl_rcv_msg+0xaaa/0xec0 [ 838.969026][ C1] ? mark_lock+0x9a/0x360 [ 838.969062][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 838.969110][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 838.969132][ C1] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 838.969162][ C1] ? __pfx_nl80211_tx_mgmt+0x10/0x10 [ 838.969190][ C1] ? __pfx_nl80211_post_doit+0x10/0x10 [ 838.969216][ C1] ? __pfx___might_resched+0x10/0x10 [ 838.969246][ C1] netlink_rcv_skb+0x1e3/0x430 [ 838.969269][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 838.969298][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 838.969334][ C1] ? __netlink_deliver_tap+0x77e/0x7c0 [ 838.969369][ C1] genl_rcv+0x28/0x40 [ 838.969394][ C1] netlink_unicast+0x7f0/0x990 [ 838.969421][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 838.969440][ C1] ? __virt_addr_valid+0x183/0x520 [ 838.969469][ C1] ? __check_object_size+0x49c/0x900 [ 838.969493][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 838.969520][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 838.969553][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 838.969578][ C1] ? __import_iovec+0x536/0x820 [ 838.969597][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 838.969618][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 838.969642][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 838.969668][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 838.969689][ C1] __sock_sendmsg+0x221/0x270 [ 838.969714][ C1] ____sys_sendmsg+0x525/0x7d0 [ 838.969740][ C1] ? __pfx_____sys_sendmsg+0x10/0x10 [ 838.969771][ C1] __sys_sendmsg+0x2b0/0x3a0 [ 838.969791][ C1] ? __pfx___sys_sendmsg+0x10/0x10 [ 838.969844][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 838.969869][ C1] ? do_syscall_64+0x100/0x230 [ 838.969890][ C1] ? do_syscall_64+0xb6/0x230 [ 838.969910][ C1] do_syscall_64+0xf3/0x230 [ 838.969928][ C1] ? clear_bhb_loop+0x35/0x90 [ 838.969951][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 838.969971][ C1] RIP: 0033:0x7f287bc7d0a9 [ 838.969986][ C1] RSP: 002b:00007f287ca640c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 838.970006][ C1] RAX: ffffffffffffffda RBX: 00007f287bdb3f80 RCX: 00007f287bc7d0a9 [ 838.970020][ C1] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 838.970033][ C1] RBP: 00007f287bcec074 R08: 0000000000000000 R09: 0000000000000000 [ 838.970045][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 838.970064][ C1] R13: 000000000000000b R14: 00007f287bdb3f80 R15: 00007ffcb612a7a8 [ 838.970090][ C1] [ 838.970098][ C1] DEBUG: waiting rtnl_mutex for 2516 jiffies. [ 838.970108][ C1] task:syz-executor.2 state:D stack:27072 pid:15065 tgid:15064 ppid:11843 flags:0x00004006 [ 838.970139][ C1] Call Trace: [ 838.970147][ C1] [ 838.970158][ C1] __schedule+0x17e8/0x4a20 [ 838.970197][ C1] ? __pfx___schedule+0x10/0x10 [ 838.970223][ C1] ? __pfx_lock_release+0x10/0x10 [ 838.970247][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 838.970289][ C1] ? schedule+0x90/0x320 [ 838.970312][ C1] schedule+0x14b/0x320 [ 838.970338][ C1] schedule_preempt_disabled+0x13/0x30 [ 838.970360][ C1] __mutex_lock+0x6a4/0xd70 [ 838.970388][ C1] ? __mutex_lock+0x527/0xd70 [ 838.970414][ C1] ? register_nexthop_notifier+0x84/0x290 [ 838.970440][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 838.970474][ C1] ? rtnl_lock+0xe7/0x130 [ 838.970498][ C1] register_nexthop_notifier+0x84/0x290 [ 838.970522][ C1] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 838.970550][ C1] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 838.970579][ C1] ? __asan_memset+0x23/0x50 [ 838.970610][ C1] ops_init+0x359/0x610 [ 838.970641][ C1] setup_net+0x515/0xca0 [ 838.970664][ C1] ? __pfx_down_read_killable+0x10/0x10 [ 838.970694][ C1] ? __pfx_setup_net+0x10/0x10 [ 838.970726][ C1] copy_net_ns+0x4e2/0x7b0 [ 838.970754][ C1] create_new_namespaces+0x425/0x7b0 [ 838.970780][ C1] ? bpf_lsm_capable+0x9/0x10 [ 838.970808][ C1] unshare_nsproxy_namespaces+0x124/0x180 [ 838.970833][ C1] ksys_unshare+0x619/0xc10 [ 838.970866][ C1] ? __pfx_ksys_unshare+0x10/0x10 [ 838.970891][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 838.970920][ C1] ? do_syscall_64+0x100/0x230 [ 838.970944][ C1] __x64_sys_unshare+0x38/0x40 [ 838.970969][ C1] do_syscall_64+0xf3/0x230 [ 838.970987][ C1] ? clear_bhb_loop+0x35/0x90 [ 838.971010][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 838.971030][ C1] RIP: 0033:0x7fd6c6e7d0a9 [ 838.971044][ C1] RSP: 002b:00007fd6c7b1a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 838.971068][ C1] RAX: ffffffffffffffda RBX: 00007fd6c6fb3f80 RCX: 00007fd6c6e7d0a9 [ 838.971083][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068040200 [ 838.971096][ C1] RBP: 00007fd6c6eec074 R08: 0000000000000000 R09: 0000000000000000 [ 838.971108][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 838.971120][ C1] R13: 000000000000000b R14: 00007fd6c6fb3f80 R15: 00007ffc5418cb78 [ 838.971146][ C1] [ 838.971154][ C1] DEBUG: waiting rtnl_mutex for 2037 jiffies. [ 838.971165][ C1] task:syz-executor.3 state:D stack:28528 pid:15083 tgid:15082 ppid:5124 flags:0x00000006 [ 838.971196][ C1] Call Trace: [ 838.971204][ C1] [ 838.971215][ C1] __schedule+0x17e8/0x4a20 [ 838.971255][ C1] ? __pfx___schedule+0x10/0x10 [ 838.971280][ C1] ? __pfx_lock_release+0x10/0x10 [ 838.971304][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 838.971341][ C1] ? schedule+0x90/0x320 [ 838.971361][ C1] schedule+0x14b/0x320 [ 838.971385][ C1] schedule_preempt_disabled+0x13/0x30 [ 838.971407][ C1] __mutex_lock+0x6a4/0xd70 [ 838.971435][ C1] ? __mutex_lock+0x527/0xd70 [ 838.971461][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 838.971484][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 838.971518][ C1] ? rtnl_lock+0xe7/0x130 [ 838.971543][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 838.971564][ C1] ? schedule+0x90/0x320 [ 838.971589][ C1] ? schedule+0x90/0x320 [ 838.971618][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 838.971664][ C1] ? __lock_acquire+0x1359/0x2000 [ 838.971695][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 838.971726][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 838.971767][ C1] ? aa_sk_perm+0x967/0xab0 [ 838.971803][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 838.971833][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 838.971857][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 838.971878][ C1] ip_setsockopt+0x63/0x100 [ 838.971902][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 838.971927][ C1] do_sock_setsockopt+0x3af/0x720 [ 838.971960][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 838.972063][ C1] ? __fget_files+0x29/0x470 [ 838.972100][ C1] ? __fget_files+0x3f6/0x470 [ 838.972144][ C1] __sys_setsockopt+0x1ae/0x250 [ 838.972190][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 838.972235][ C1] do_syscall_64+0xf3/0x230 [ 838.972262][ C1] ? clear_bhb_loop+0x35/0x90 [ 838.972298][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 838.972325][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 838.972348][ C1] RSP: 002b:00007f3d1f1e60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 838.972378][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b3f80 RCX: 00007f3d1e47d0a9 [ 838.972401][ C1] RDX: 00000000000000c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 838.972418][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000004 R09: 0000000000000000 [ 838.972436][ C1] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000000 [ 838.972454][ C1] R13: 000000000000000b R14: 00007f3d1e5b3f80 R15: 00007ffcff745198 [ 838.972491][ C1] [ 838.972503][ C1] DEBUG: waiting rtnl_mutex for 2030 jiffies. [ 838.972519][ C1] task:syz-executor.3 state:D stack:23800 pid:15084 tgid:15082 ppid:5124 flags:0x00000006 [ 838.972568][ C1] Call Trace: [ 838.972580][ C1] [ 838.972599][ C1] __schedule+0x17e8/0x4a20 [ 838.972663][ C1] ? __pfx___schedule+0x10/0x10 [ 838.972701][ C1] ? __pfx_lock_release+0x10/0x10 [ 838.972739][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 838.972794][ C1] ? schedule+0x90/0x320 [ 838.972825][ C1] schedule+0x14b/0x320 [ 838.972861][ C1] schedule_preempt_disabled+0x13/0x30 [ 838.972895][ C1] __mutex_lock+0x6a4/0xd70 [ 838.972937][ C1] ? __mutex_lock+0x527/0xd70 [ 838.972976][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 838.973011][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 838.973097][ C1] ? preempt_schedule+0xe1/0xf0 [ 838.973130][ C1] ? __pfx_preempt_schedule+0x10/0x10 [ 838.973167][ C1] ? rtnl_lock+0xe7/0x130 [ 838.973205][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 838.973250][ C1] ? try_to_wake_up+0x9a1/0x1470 [ 838.973288][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 838.973336][ C1] ? __lock_acquire+0x1359/0x2000 [ 838.973381][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 838.973425][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 838.973457][ C1] ? aa_sk_perm+0x967/0xab0 [ 838.973509][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 838.973552][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 838.973586][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 838.973618][ C1] ip_setsockopt+0x63/0x100 [ 838.973651][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 838.973685][ C1] do_sock_setsockopt+0x3af/0x720 [ 838.973734][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 838.973772][ C1] ? __fget_files+0x29/0x470 [ 838.973807][ C1] ? __fget_files+0x3f6/0x470 [ 838.973856][ C1] __sys_setsockopt+0x1ae/0x250 [ 838.973903][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 838.973946][ C1] do_syscall_64+0xf3/0x230 [ 838.973974][ C1] ? clear_bhb_loop+0x35/0x90 [ 838.974009][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 838.974039][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 838.974070][ C1] RSP: 002b:00007f3d1f1c50c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 838.974101][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b4050 RCX: 00007f3d1e47d0a9 [ 838.974123][ C1] RDX: 00000000000000ca RSI: 0000000000000000 RDI: 0000000000000003 [ 838.974142][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000010 R09: 0000000000000000 [ 838.974161][ C1] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000000 [ 838.974181][ C1] R13: 000000000000006e R14: 00007f3d1e5b4050 R15: 00007ffcff745198 [ 838.974223][ C1] [ 838.974235][ C1] DEBUG: waiting rtnl_mutex for 937 jiffies. [ 838.974252][ C1] task:kworker/u8:11 state:D stack:22624 pid:3724 tgid:3724 ppid:2 flags:0x00004000 [ 838.974304][ C1] Workqueue: ipv6_addrconf addrconf_verify_work [ 838.974349][ C1] Call Trace: [ 838.974361][ C1] [ 838.974379][ C1] __schedule+0x17e8/0x4a20 [ 838.974441][ C1] ? __pfx___schedule+0x10/0x10 [ 838.974478][ C1] ? __pfx_lock_release+0x10/0x10 [ 838.974515][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 838.974558][ C1] ? kthread_data+0x52/0xd0 [ 838.974590][ C1] ? schedule+0x90/0x320 [ 838.974621][ C1] ? wq_worker_sleeping+0x66/0x240 [ 838.974659][ C1] ? schedule+0x90/0x320 [ 838.974690][ C1] schedule+0x14b/0x320 [ 838.974725][ C1] schedule_preempt_disabled+0x13/0x30 [ 838.974758][ C1] __mutex_lock+0x6a4/0xd70 [ 838.974799][ C1] ? __mutex_lock+0x527/0xd70 [ 838.974838][ C1] ? addrconf_verify_work+0x19/0x30 [ 838.974880][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 838.974914][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 838.974953][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 838.974995][ C1] ? process_scheduled_works+0x945/0x1830 [ 838.975027][ C1] ? rtnl_lock+0xe7/0x130 [ 838.975070][ C1] ? process_scheduled_works+0x945/0x1830 [ 838.975100][ C1] addrconf_verify_work+0x19/0x30 [ 838.975139][ C1] process_scheduled_works+0xa2c/0x1830 [ 838.975208][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 838.975254][ C1] ? assign_work+0x364/0x3d0 [ 838.975294][ C1] worker_thread+0x86d/0xd50 [ 838.975348][ C1] ? __kthread_parkme+0x169/0x1d0 [ 838.975388][ C1] ? __pfx_worker_thread+0x10/0x10 [ 838.975422][ C1] kthread+0x2f0/0x390 [ 838.975459][ C1] ? __pfx_worker_thread+0x10/0x10 [ 838.975491][ C1] ? __pfx_kthread+0x10/0x10 [ 838.975530][ C1] ret_from_fork+0x4b/0x80 [ 838.975566][ C1] ? __pfx_kthread+0x10/0x10 [ 838.975604][ C1] ret_from_fork_asm+0x1a/0x30 [ 838.975662][ C1] [ 838.975679][ C1] [ 838.975679][ C1] Showing all locks held in the system: [ 838.975697][ C1] 4 locks held by kworker/u8:0/11: [ 838.975717][ C1] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 838.975801][ C1] #1: ffffc90000107d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 838.975881][ C1] #2: ffff8880117c8768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: cfg80211_wiphy_work+0xd9/0x490 [ 838.975964][ C1] #3: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 838.976053][ C1] 2 locks held by kworker/u8:1/12: [ 838.976141][ C1] 3 locks held by kworker/u8:11/3724: [ 838.976158][ C1] #0: ffff888029dd8948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 838.976238][ C1] #1: ffffc9000b207d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 838.976318][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30 [ 838.976405][ C1] 5 locks held by kworker/u8:13/3751: [ 838.976422][ C1] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 838.976500][ C1] #1: ffffc9000b6c7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 838.976577][ C1] #2: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 838.976658][ C1] #3: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 838.976736][ C1] #4: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 838.976827][ C1] 2 locks held by getty/4859: [ 838.976844][ C1] #0: ffff88802a7640a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 838.976925][ C1] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 838.977041][ C1] 3 locks held by kworker/0:7/5179: [ 838.977063][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 838.977141][ C1] #1: ffffc90004117d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 838.977220][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 838.977304][ C1] 3 locks held by syz-executor.2/11843: [ 838.977321][ C1] #0: ffff88806e00cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x203/0x510 [ 838.977403][ C1] #1: ffff88806e00c078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x494/0xf70 [ 838.977502][ C1] #2: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xa6/0x240 [ 838.977582][ C1] 1 lock held by syz-executor.1/14929: [ 838.977600][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 838.977678][ C1] 6 locks held by syz-executor.4/15050: [ 838.977695][ C1] #0: ffff8880201594c8 (&disk->open_mutex){+.+.}-{3:3}, at: loop_set_status+0x6f3/0x900 [ 838.977768][ C1] #1: ffffffff8e210f80 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120 [ 838.977850][ C1] #2: ffffffff8e210b90 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 838.977924][ C1] #3: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 838.977995][ C1] #4: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 838.978077][ C1] #5: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 838.978159][ C1] 2 locks held by syz-executor.0/15061: [ 838.978177][ C1] #0: ffffffff8f661470 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 838.978260][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0x5f/0x8b0 [ 838.978343][ C1] 2 locks held by syz-executor.2/15065: [ 838.978360][ C1] #0: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 838.978437][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 838.978518][ C1] 1 lock held by syz-executor.3/15083: [ 838.978535][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 838.978612][ C1] 1 lock held by syz-executor.3/15084: [ 838.978629][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 838.978706][ C1] [ 838.978716][ C1] ============================================= [ 838.978716][ C1] [ 840.007670][ C1] DEBUG: holding rtnl_mutex for 3006 jiffies. [ 840.007690][ C1] task:kworker/u8:13 state:D stack:21488 pid:3751 tgid:3751 ppid:2 flags:0x00004000 [ 840.007724][ C1] Workqueue: netns cleanup_net [ 840.007753][ C1] Call Trace: [ 840.007761][ C1] [ 840.007774][ C1] __schedule+0x17e8/0x4a20 [ 840.007815][ C1] ? __pfx___schedule+0x10/0x10 [ 840.007839][ C1] ? __pfx_lock_release+0x10/0x10 [ 840.007860][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 840.007887][ C1] ? kthread_data+0x52/0xd0 [ 840.007911][ C1] ? wq_worker_sleeping+0x66/0x240 [ 840.007935][ C1] ? schedule+0x90/0x320 [ 840.007960][ C1] schedule+0x14b/0x320 [ 840.007983][ C1] synchronize_rcu_expedited+0x684/0x830 [ 840.008014][ C1] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 840.008054][ C1] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 840.008081][ C1] ? __pfx___might_resched+0x10/0x10 [ 840.008101][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 840.008123][ C1] ? __pfx_autoremove_wake_function+0x10/0x10 [ 840.008146][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 840.008177][ C1] synchronize_rcu+0x11b/0x360 [ 840.008204][ C1] ? __pfx_synchronize_rcu+0x10/0x10 [ 840.008241][ C1] lockdep_unregister_key+0x4b7/0x540 [ 840.008268][ C1] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 840.008299][ C1] ? rcu_is_watching+0x15/0xb0 [ 840.008325][ C1] ? qdisc_reset+0x3bf/0x5b0 [ 840.008352][ C1] __qdisc_destroy+0x165/0x410 [ 840.008378][ C1] dev_shutdown+0x357/0x440 [ 840.008404][ C1] unregister_netdevice_many_notify+0x977/0x16b0 [ 840.008434][ C1] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 840.008457][ C1] ? unregister_netdevice_queue+0x26b/0x370 [ 840.008486][ C1] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 840.008514][ C1] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 840.008543][ C1] default_device_exit_batch+0xa0f/0xa90 [ 840.008573][ C1] ? __pfx___might_resched+0x10/0x10 [ 840.008594][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 840.008623][ C1] ? cfg802154_pernet_exit+0xc3/0xe0 [ 840.008648][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 840.008672][ C1] cleanup_net+0x89d/0xcc0 [ 840.008700][ C1] ? __pfx_cleanup_net+0x10/0x10 [ 840.008733][ C1] ? process_scheduled_works+0x945/0x1830 [ 840.008754][ C1] process_scheduled_works+0xa2c/0x1830 [ 840.008797][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 840.008826][ C1] ? assign_work+0x364/0x3d0 [ 840.008850][ C1] worker_thread+0x86d/0xd50 [ 840.008884][ C1] ? __kthread_parkme+0x169/0x1d0 [ 840.008910][ C1] ? __pfx_worker_thread+0x10/0x10 [ 840.008932][ C1] kthread+0x2f0/0x390 [ 840.008961][ C1] ? __pfx_worker_thread+0x10/0x10 [ 840.008982][ C1] ? __pfx_kthread+0x10/0x10 [ 840.009007][ C1] ret_from_fork+0x4b/0x80 [ 840.009030][ C1] ? __pfx_kthread+0x10/0x10 [ 840.009055][ C1] ret_from_fork_asm+0x1a/0x30 [ 840.009092][ C1] [ 840.009100][ C1] DEBUG: waiting rtnl_mutex for 3004 jiffies. [ 840.009110][ C1] task:syz-executor.1 state:D stack:21024 pid:14929 tgid:14929 ppid:14915 flags:0x00004002 [ 840.009139][ C1] Call Trace: [ 840.009146][ C1] [ 840.009157][ C1] __schedule+0x17e8/0x4a20 [ 840.009195][ C1] ? __pfx___schedule+0x10/0x10 [ 840.009219][ C1] ? __pfx_lock_release+0x10/0x10 [ 840.009243][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 840.009278][ C1] ? schedule+0x90/0x320 [ 840.009298][ C1] schedule+0x14b/0x320 [ 840.009321][ C1] schedule_preempt_disabled+0x13/0x30 [ 840.009342][ C1] __mutex_lock+0x6a4/0xd70 [ 840.009365][ C1] ? rcu_is_watching+0x15/0xb0 [ 840.009392][ C1] ? __mutex_lock+0x527/0xd70 [ 840.009417][ C1] ? rtnetlink_rcv_msg+0x839/0x1170 [ 840.009440][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 840.009473][ C1] ? rtnl_lock+0xe7/0x130 [ 840.009497][ C1] rtnetlink_rcv_msg+0x839/0x1170 [ 840.009522][ C1] ? rtnetlink_rcv_msg+0x208/0x1170 [ 840.009545][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 840.009569][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 840.009592][ C1] ? __pfx_validate_chain+0x10/0x10 [ 840.009618][ C1] ? __pfx_validate_chain+0x10/0x10 [ 840.009644][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 840.009666][ C1] ? finish_task_switch+0x1e5/0x870 [ 840.009692][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 840.009721][ C1] ? mark_lock+0x9a/0x360 [ 840.009743][ C1] ? __pfx_validate_chain+0x10/0x10 [ 840.009771][ C1] ? __lock_acquire+0x1359/0x2000 [ 840.009806][ C1] ? mark_lock+0x9a/0x360 [ 840.009832][ C1] ? __lock_acquire+0x1359/0x2000 [ 840.009871][ C1] netlink_rcv_skb+0x1e3/0x430 [ 840.009894][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 840.009916][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 840.009962][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 840.009986][ C1] netlink_unicast+0x7f0/0x990 [ 840.010012][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 840.010031][ C1] ? __virt_addr_valid+0x183/0x520 [ 840.010059][ C1] ? __check_object_size+0x49c/0x900 [ 840.010084][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 840.010109][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 840.010142][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 840.010167][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 840.010187][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 840.010210][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 840.010236][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 840.010257][ C1] __sock_sendmsg+0x221/0x270 [ 840.010282][ C1] __sys_sendto+0x3a4/0x4f0 [ 840.010312][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 840.010357][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 840.010382][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 840.010410][ C1] __x64_sys_sendto+0xde/0x100 [ 840.010438][ C1] do_syscall_64+0xf3/0x230 [ 840.010455][ C1] ? clear_bhb_loop+0x35/0x90 [ 840.010479][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 840.010500][ C1] RIP: 0033:0x7fb0d247ed9c [ 840.010515][ C1] RSP: 002b:00007ffcec5a7f50 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 840.010534][ C1] RAX: ffffffffffffffda RBX: 00007fb0d30e4620 RCX: 00007fb0d247ed9c [ 840.010548][ C1] RDX: 0000000000000038 RSI: 00007fb0d30e4670 RDI: 0000000000000003 [ 840.010561][ C1] RBP: 0000000000000000 R08: 00007ffcec5a7fa4 R09: 000000000000000c [ 840.010574][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 840.010585][ C1] R13: 0000000000000000 R14: 00007fb0d30e4670 R15: 0000000000000000 [ 840.010610][ C1] [ 840.010618][ C1] DEBUG: waiting rtnl_mutex for 2855 jiffies. [ 840.010628][ C1] task:kworker/0:7 state:D stack:21304 pid:5179 tgid:5179 ppid:2 flags:0x00004000 [ 840.010657][ C1] Workqueue: events linkwatch_event [ 840.010681][ C1] Call Trace: [ 840.010688][ C1] [ 840.010699][ C1] __schedule+0x17e8/0x4a20 [ 840.010738][ C1] ? __pfx___schedule+0x10/0x10 [ 840.010760][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 840.010783][ C1] ? __pfx_lock_release+0x10/0x10 [ 840.010806][ C1] ? kick_pool+0x45c/0x620 [ 840.010832][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 840.010852][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 840.010878][ C1] ? schedule+0x90/0x320 [ 840.010898][ C1] schedule+0x14b/0x320 [ 840.010921][ C1] schedule_preempt_disabled+0x13/0x30 [ 840.010942][ C1] __mutex_lock+0x6a4/0xd70 [ 840.010973][ C1] ? __mutex_lock+0x527/0xd70 [ 840.010998][ C1] ? linkwatch_event+0xe/0x60 [ 840.011022][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 840.011053][ C1] ? process_scheduled_works+0x945/0x1830 [ 840.011073][ C1] ? rtnl_lock+0xe7/0x130 [ 840.011096][ C1] ? process_scheduled_works+0x945/0x1830 [ 840.011117][ C1] linkwatch_event+0xe/0x60 [ 840.011139][ C1] process_scheduled_works+0xa2c/0x1830 [ 840.011182][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 840.011210][ C1] ? assign_work+0x364/0x3d0 [ 840.011235][ C1] worker_thread+0x86d/0xd50 [ 840.011269][ C1] ? __kthread_parkme+0x169/0x1d0 [ 840.011294][ C1] ? __pfx_worker_thread+0x10/0x10 [ 840.011316][ C1] kthread+0x2f0/0x390 [ 840.011339][ C1] ? __pfx_worker_thread+0x10/0x10 [ 840.011360][ C1] ? __pfx_kthread+0x10/0x10 [ 840.011385][ C1] ret_from_fork+0x4b/0x80 [ 840.011408][ C1] ? __pfx_kthread+0x10/0x10 [ 840.011432][ C1] ret_from_fork_asm+0x1a/0x30 [ 840.011468][ C1] [ 840.011476][ C1] DEBUG: waiting rtnl_mutex for 2695 jiffies. [ 840.011486][ C1] task:syz-executor.0 state:D stack:26112 pid:15061 tgid:15059 ppid:6308 flags:0x00000006 [ 840.011515][ C1] Call Trace: [ 840.011523][ C1] [ 840.011534][ C1] __schedule+0x17e8/0x4a20 [ 840.011572][ C1] ? __pfx___schedule+0x10/0x10 [ 840.011598][ C1] ? __pfx_lock_release+0x10/0x10 [ 840.011621][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 840.011656][ C1] ? schedule+0x90/0x320 [ 840.011676][ C1] schedule+0x14b/0x320 [ 840.011699][ C1] schedule_preempt_disabled+0x13/0x30 [ 840.011720][ C1] __mutex_lock+0x6a4/0xd70 [ 840.011746][ C1] ? __mutex_lock+0x527/0xd70 [ 840.011772][ C1] ? nl80211_pre_doit+0x5f/0x8b0 [ 840.011798][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 840.011831][ C1] ? rtnl_lock+0xe7/0x130 [ 840.011855][ C1] nl80211_pre_doit+0x5f/0x8b0 [ 840.011885][ C1] genl_rcv_msg+0xaaa/0xec0 [ 840.011910][ C1] ? mark_lock+0x9a/0x360 [ 840.011939][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 840.012040][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 840.012071][ C1] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 840.012103][ C1] ? __pfx_nl80211_tx_mgmt+0x10/0x10 [ 840.012139][ C1] ? __pfx_nl80211_post_doit+0x10/0x10 [ 840.012177][ C1] ? __pfx___might_resched+0x10/0x10 [ 840.012218][ C1] netlink_rcv_skb+0x1e3/0x430 [ 840.012249][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 840.012286][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 840.012333][ C1] ? __netlink_deliver_tap+0x77e/0x7c0 [ 840.012385][ C1] genl_rcv+0x28/0x40 [ 840.012420][ C1] netlink_unicast+0x7f0/0x990 [ 840.012460][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 840.012487][ C1] ? __virt_addr_valid+0x183/0x520 [ 840.012527][ C1] ? __check_object_size+0x49c/0x900 [ 840.012562][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 840.012598][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 840.012645][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 840.012681][ C1] ? __import_iovec+0x536/0x820 [ 840.012707][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 840.012736][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 840.012769][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 840.012805][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 840.012835][ C1] __sock_sendmsg+0x221/0x270 [ 840.012870][ C1] ____sys_sendmsg+0x525/0x7d0 [ 840.012906][ C1] ? __pfx_____sys_sendmsg+0x10/0x10 [ 840.012951][ C1] __sys_sendmsg+0x2b0/0x3a0 [ 840.012987][ C1] ? __pfx___sys_sendmsg+0x10/0x10 [ 840.013064][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 840.013099][ C1] ? do_syscall_64+0x100/0x230 [ 840.013128][ C1] ? do_syscall_64+0xb6/0x230 [ 840.013157][ C1] do_syscall_64+0xf3/0x230 [ 840.013182][ C1] ? clear_bhb_loop+0x35/0x90 [ 840.013215][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 840.013243][ C1] RIP: 0033:0x7f287bc7d0a9 [ 840.013264][ C1] RSP: 002b:00007f287ca640c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 840.013294][ C1] RAX: ffffffffffffffda RBX: 00007f287bdb3f80 RCX: 00007f287bc7d0a9 [ 840.013314][ C1] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 840.013333][ C1] RBP: 00007f287bcec074 R08: 0000000000000000 R09: 0000000000000000 [ 840.013350][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 840.013368][ C1] R13: 000000000000000b R14: 00007f287bdb3f80 R15: 00007ffcb612a7a8 [ 840.013406][ C1] [ 840.013418][ C1] DEBUG: waiting rtnl_mutex for 2621 jiffies. [ 840.013434][ C1] task:syz-executor.2 state:D stack:27072 pid:15065 tgid:15064 ppid:11843 flags:0x00004006 [ 840.013479][ C1] Call Trace: [ 840.013490][ C1] [ 840.013507][ C1] __schedule+0x17e8/0x4a20 [ 840.013556][ C1] ? __pfx___schedule+0x10/0x10 [ 840.013581][ C1] ? __pfx_lock_release+0x10/0x10 [ 840.013605][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 840.013640][ C1] ? schedule+0x90/0x320 [ 840.013660][ C1] schedule+0x14b/0x320 [ 840.013683][ C1] schedule_preempt_disabled+0x13/0x30 [ 840.013704][ C1] __mutex_lock+0x6a4/0xd70 [ 840.013730][ C1] ? __mutex_lock+0x527/0xd70 [ 840.013755][ C1] ? register_nexthop_notifier+0x84/0x290 [ 840.013780][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 840.013812][ C1] ? rtnl_lock+0xe7/0x130 [ 840.013837][ C1] register_nexthop_notifier+0x84/0x290 [ 840.013859][ C1] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 840.013887][ C1] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 840.013915][ C1] ? __asan_memset+0x23/0x50 [ 840.013945][ C1] ops_init+0x359/0x610 [ 840.013980][ C1] setup_net+0x515/0xca0 [ 840.014002][ C1] ? __pfx_down_read_killable+0x10/0x10 [ 840.014031][ C1] ? __pfx_setup_net+0x10/0x10 [ 840.014062][ C1] copy_net_ns+0x4e2/0x7b0 [ 840.014089][ C1] create_new_namespaces+0x425/0x7b0 [ 840.014113][ C1] ? bpf_lsm_capable+0x9/0x10 [ 840.014140][ C1] unshare_nsproxy_namespaces+0x124/0x180 [ 840.014164][ C1] ksys_unshare+0x619/0xc10 [ 840.014197][ C1] ? __pfx_ksys_unshare+0x10/0x10 [ 840.014220][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 840.014248][ C1] ? do_syscall_64+0x100/0x230 [ 840.014271][ C1] __x64_sys_unshare+0x38/0x40 [ 840.014295][ C1] do_syscall_64+0xf3/0x230 [ 840.014312][ C1] ? clear_bhb_loop+0x35/0x90 [ 840.014335][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 840.014354][ C1] RIP: 0033:0x7fd6c6e7d0a9 [ 840.014368][ C1] RSP: 002b:00007fd6c7b1a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 840.014388][ C1] RAX: ffffffffffffffda RBX: 00007fd6c6fb3f80 RCX: 00007fd6c6e7d0a9 [ 840.014402][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068040200 [ 840.014414][ C1] RBP: 00007fd6c6eec074 R08: 0000000000000000 R09: 0000000000000000 [ 840.014426][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 840.014438][ C1] R13: 000000000000000b R14: 00007fd6c6fb3f80 R15: 00007ffc5418cb78 [ 840.014463][ C1] [ 840.014471][ C1] DEBUG: waiting rtnl_mutex for 2142 jiffies. [ 840.014481][ C1] task:syz-executor.3 state:D stack:28528 pid:15083 tgid:15082 ppid:5124 flags:0x00000006 [ 840.014510][ C1] Call Trace: [ 840.014517][ C1] [ 840.014528][ C1] __schedule+0x17e8/0x4a20 [ 840.014566][ C1] ? __pfx___schedule+0x10/0x10 [ 840.014590][ C1] ? __pfx_lock_release+0x10/0x10 [ 840.014613][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 840.014648][ C1] ? schedule+0x90/0x320 [ 840.014668][ C1] schedule+0x14b/0x320 [ 840.014690][ C1] schedule_preempt_disabled+0x13/0x30 [ 840.014711][ C1] __mutex_lock+0x6a4/0xd70 [ 840.014738][ C1] ? __mutex_lock+0x527/0xd70 [ 840.014763][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 840.014785][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 840.014818][ C1] ? rtnl_lock+0xe7/0x130 [ 840.014842][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 840.014861][ C1] ? schedule+0x90/0x320 [ 840.014881][ C1] ? schedule+0x90/0x320 [ 840.014908][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 840.014938][ C1] ? __lock_acquire+0x1359/0x2000 [ 840.014997][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 840.015024][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 840.015045][ C1] ? aa_sk_perm+0x967/0xab0 [ 840.015077][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 840.015105][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 840.015127][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 840.015147][ C1] ip_setsockopt+0x63/0x100 [ 840.015168][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 840.015190][ C1] do_sock_setsockopt+0x3af/0x720 [ 840.015221][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 840.015246][ C1] ? __fget_files+0x29/0x470 [ 840.015269][ C1] ? __fget_files+0x3f6/0x470 [ 840.015300][ C1] __sys_setsockopt+0x1ae/0x250 [ 840.015330][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 840.015358][ C1] do_syscall_64+0xf3/0x230 [ 840.015375][ C1] ? clear_bhb_loop+0x35/0x90 [ 840.015398][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 840.015417][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 840.015431][ C1] RSP: 002b:00007f3d1f1e60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 840.015450][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b3f80 RCX: 00007f3d1e47d0a9 [ 840.015464][ C1] RDX: 00000000000000c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 840.015476][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000004 R09: 0000000000000000 [ 840.015489][ C1] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000000 [ 840.015501][ C1] R13: 000000000000000b R14: 00007f3d1e5b3f80 R15: 00007ffcff745198 [ 840.015527][ C1] [ 840.015534][ C1] DEBUG: waiting rtnl_mutex for 2134 jiffies. [ 840.015544][ C1] task:syz-executor.3 state:D stack:23800 pid:15084 tgid:15082 ppid:5124 flags:0x00000006 [ 840.015571][ C1] Call Trace: [ 840.015578][ C1] [ 840.015590][ C1] __schedule+0x17e8/0x4a20 [ 840.015627][ C1] ? __pfx___schedule+0x10/0x10 [ 840.015651][ C1] ? __pfx_lock_release+0x10/0x10 [ 840.015674][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 840.015709][ C1] ? schedule+0x90/0x320 [ 840.015729][ C1] schedule+0x14b/0x320 [ 840.015752][ C1] schedule_preempt_disabled+0x13/0x30 [ 840.015772][ C1] __mutex_lock+0x6a4/0xd70 [ 840.015799][ C1] ? __mutex_lock+0x527/0xd70 [ 840.015824][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 840.015846][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 840.015873][ C1] ? preempt_schedule+0xe1/0xf0 [ 840.015894][ C1] ? __pfx_preempt_schedule+0x10/0x10 [ 840.015917][ C1] ? rtnl_lock+0xe7/0x130 [ 840.015941][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 840.015975][ C1] ? try_to_wake_up+0x9a1/0x1470 [ 840.015999][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 840.016029][ C1] ? __lock_acquire+0x1359/0x2000 [ 840.016058][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 840.016085][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 840.016106][ C1] ? aa_sk_perm+0x967/0xab0 [ 840.016137][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 840.016166][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 840.016188][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 840.016207][ C1] ip_setsockopt+0x63/0x100 [ 840.016228][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 840.016250][ C1] do_sock_setsockopt+0x3af/0x720 [ 840.016281][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 840.016305][ C1] ? __fget_files+0x29/0x470 [ 840.016328][ C1] ? __fget_files+0x3f6/0x470 [ 840.016358][ C1] __sys_setsockopt+0x1ae/0x250 [ 840.016388][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 840.016416][ C1] do_syscall_64+0xf3/0x230 [ 840.016433][ C1] ? clear_bhb_loop+0x35/0x90 [ 840.016456][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 840.016475][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 840.016489][ C1] RSP: 002b:00007f3d1f1c50c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 840.016507][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b4050 RCX: 00007f3d1e47d0a9 [ 840.016521][ C1] RDX: 00000000000000ca RSI: 0000000000000000 RDI: 0000000000000003 [ 840.016533][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000010 R09: 0000000000000000 [ 840.016545][ C1] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000000 [ 840.016557][ C1] R13: 000000000000006e R14: 00007f3d1e5b4050 R15: 00007ffcff745198 [ 840.016582][ C1] [ 840.016590][ C1] DEBUG: waiting rtnl_mutex for 1041 jiffies. [ 840.016599][ C1] task:kworker/u8:11 state:D stack:22624 pid:3724 tgid:3724 ppid:2 flags:0x00004000 [ 840.016627][ C1] Workqueue: ipv6_addrconf addrconf_verify_work [ 840.016655][ C1] Call Trace: [ 840.016662][ C1] [ 840.016673][ C1] __schedule+0x17e8/0x4a20 [ 840.016711][ C1] ? __pfx___schedule+0x10/0x10 [ 840.016735][ C1] ? __pfx_lock_release+0x10/0x10 [ 840.016758][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 840.016786][ C1] ? kthread_data+0x52/0xd0 [ 840.016807][ C1] ? schedule+0x90/0x320 [ 840.016827][ C1] ? wq_worker_sleeping+0x66/0x240 [ 840.016851][ C1] ? schedule+0x90/0x320 [ 840.016871][ C1] schedule+0x14b/0x320 [ 840.016893][ C1] schedule_preempt_disabled+0x13/0x30 [ 840.016941][ C1] __mutex_lock+0x6a4/0xd70 [ 840.016972][ C1] ? __mutex_lock+0x527/0xd70 [ 840.016997][ C1] ? addrconf_verify_work+0x19/0x30 [ 840.017025][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 840.017047][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 840.017072][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 840.017099][ C1] ? process_scheduled_works+0x945/0x1830 [ 840.017120][ C1] ? rtnl_lock+0xe7/0x130 [ 840.017143][ C1] ? process_scheduled_works+0x945/0x1830 [ 840.017164][ C1] addrconf_verify_work+0x19/0x30 [ 840.017190][ C1] process_scheduled_works+0xa2c/0x1830 [ 840.017233][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 840.017262][ C1] ? assign_work+0x364/0x3d0 [ 840.017286][ C1] worker_thread+0x86d/0xd50 [ 840.017319][ C1] ? __kthread_parkme+0x169/0x1d0 [ 840.017345][ C1] ? __pfx_worker_thread+0x10/0x10 [ 840.017367][ C1] kthread+0x2f0/0x390 [ 840.017391][ C1] ? __pfx_worker_thread+0x10/0x10 [ 840.017412][ C1] ? __pfx_kthread+0x10/0x10 [ 840.017437][ C1] ret_from_fork+0x4b/0x80 [ 840.017460][ C1] ? __pfx_kthread+0x10/0x10 [ 840.017484][ C1] ret_from_fork_asm+0x1a/0x30 [ 840.017521][ C1] [ 840.017531][ C1] [ 840.017531][ C1] Showing all locks held in the system: [ 840.017541][ C1] 4 locks held by kworker/u8:0/11: [ 840.017553][ C1] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 840.017611][ C1] #1: ffffc90000107d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 840.017662][ C1] #2: ffff8880117c8768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: cfg80211_wiphy_work+0xd9/0x490 [ 840.017714][ C1] #3: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 840.017797][ C1] 3 locks held by kworker/u8:11/3724: [ 840.017808][ C1] #0: ffff888029dd8948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 840.017857][ C1] #1: ffffc9000b207d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 840.017908][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30 [ 840.017968][ C1] 5 locks held by kworker/u8:13/3751: [ 840.017979][ C1] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 840.018028][ C1] #1: ffffc9000b6c7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 840.018076][ C1] #2: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 840.018127][ C1] #3: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 840.018177][ C1] #4: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 840.018235][ C1] 2 locks held by getty/4859: [ 840.018245][ C1] #0: ffff88802a7640a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 840.018296][ C1] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 840.018346][ C1] 3 locks held by kworker/0:7/5179: [ 840.018357][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 840.018406][ C1] #1: ffffc90004117d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 840.018455][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 840.018507][ C1] 3 locks held by syz-executor.2/11843: [ 840.018519][ C1] #0: ffff88806e00cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x203/0x510 [ 840.018570][ C1] #1: ffff88806e00c078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x494/0xf70 [ 840.018621][ C1] #2: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xa6/0x240 [ 840.018673][ C1] 1 lock held by syz-executor.1/14929: [ 840.018683][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 840.018732][ C1] 6 locks held by syz-executor.4/15050: [ 840.018743][ C1] #0: ffff8880201594c8 (&disk->open_mutex){+.+.}-{3:3}, at: loop_set_status+0x6f3/0x900 [ 840.018789][ C1] #1: ffffffff8e210f80 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120 [ 840.018841][ C1] #2: ffffffff8e210b90 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 840.018887][ C1] #3: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 840.018932][ C1] #4: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 840.018986][ C1] #5: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 840.019038][ C1] 2 locks held by syz-executor.0/15061: [ 840.019049][ C1] #0: ffffffff8f661470 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 840.019101][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0x5f/0x8b0 [ 840.019154][ C1] 2 locks held by syz-executor.2/15065: [ 840.019165][ C1] #0: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 840.019214][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 840.019264][ C1] 1 lock held by syz-executor.3/15083: [ 840.019274][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 840.019323][ C1] 1 lock held by syz-executor.3/15084: [ 840.019333][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 840.019382][ C1] [ 840.019387][ C1] ============================================= [ 840.019387][ C1] [ 841.046940][ C1] DEBUG: holding rtnl_mutex for 3110 jiffies. [ 841.046968][ C1] task:kworker/u8:13 state:D stack:21488 pid:3751 tgid:3751 ppid:2 flags:0x00004000 [ 841.047019][ C1] Workqueue: netns cleanup_net [ 841.047059][ C1] Call Trace: [ 841.047070][ C1] [ 841.047087][ C1] __schedule+0x17e8/0x4a20 [ 841.047131][ C1] ? __pfx___schedule+0x10/0x10 [ 841.047155][ C1] ? __pfx_lock_release+0x10/0x10 [ 841.047177][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 841.047204][ C1] ? kthread_data+0x52/0xd0 [ 841.047227][ C1] ? wq_worker_sleeping+0x66/0x240 [ 841.047251][ C1] ? schedule+0x90/0x320 [ 841.047272][ C1] schedule+0x14b/0x320 [ 841.047295][ C1] synchronize_rcu_expedited+0x684/0x830 [ 841.047326][ C1] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 841.047365][ C1] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 841.047392][ C1] ? __pfx___might_resched+0x10/0x10 [ 841.047412][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 841.047434][ C1] ? __pfx_autoremove_wake_function+0x10/0x10 [ 841.047458][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 841.047489][ C1] synchronize_rcu+0x11b/0x360 [ 841.047516][ C1] ? __pfx_synchronize_rcu+0x10/0x10 [ 841.047553][ C1] lockdep_unregister_key+0x4b7/0x540 [ 841.047579][ C1] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 841.047606][ C1] ? rcu_is_watching+0x15/0xb0 [ 841.047631][ C1] ? qdisc_reset+0x3bf/0x5b0 [ 841.047658][ C1] __qdisc_destroy+0x165/0x410 [ 841.047684][ C1] dev_shutdown+0x357/0x440 [ 841.047710][ C1] unregister_netdevice_many_notify+0x977/0x16b0 [ 841.047740][ C1] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 841.047763][ C1] ? unregister_netdevice_queue+0x26b/0x370 [ 841.047792][ C1] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 841.047821][ C1] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 841.047850][ C1] default_device_exit_batch+0xa0f/0xa90 [ 841.047880][ C1] ? __pfx___might_resched+0x10/0x10 [ 841.047908][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 841.047937][ C1] ? cfg802154_pernet_exit+0xc3/0xe0 [ 841.047962][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 841.047986][ C1] cleanup_net+0x89d/0xcc0 [ 841.048014][ C1] ? __pfx_cleanup_net+0x10/0x10 [ 841.048047][ C1] ? process_scheduled_works+0x945/0x1830 [ 841.048068][ C1] process_scheduled_works+0xa2c/0x1830 [ 841.048111][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 841.048140][ C1] ? assign_work+0x364/0x3d0 [ 841.048165][ C1] worker_thread+0x86d/0xd50 [ 841.048198][ C1] ? __kthread_parkme+0x169/0x1d0 [ 841.048224][ C1] ? __pfx_worker_thread+0x10/0x10 [ 841.048246][ C1] kthread+0x2f0/0x390 [ 841.048270][ C1] ? __pfx_worker_thread+0x10/0x10 [ 841.048291][ C1] ? __pfx_kthread+0x10/0x10 [ 841.048316][ C1] ret_from_fork+0x4b/0x80 [ 841.048340][ C1] ? __pfx_kthread+0x10/0x10 [ 841.048364][ C1] ret_from_fork_asm+0x1a/0x30 [ 841.048401][ C1] [ 841.048409][ C1] DEBUG: waiting rtnl_mutex for 3108 jiffies. [ 841.048419][ C1] task:syz-executor.1 state:D stack:21024 pid:14929 tgid:14929 ppid:14915 flags:0x00004002 [ 841.048449][ C1] Call Trace: [ 841.048456][ C1] [ 841.048468][ C1] __schedule+0x17e8/0x4a20 [ 841.048506][ C1] ? __pfx___schedule+0x10/0x10 [ 841.048530][ C1] ? __pfx_lock_release+0x10/0x10 [ 841.048553][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 841.048589][ C1] ? schedule+0x90/0x320 [ 841.048609][ C1] schedule+0x14b/0x320 [ 841.048632][ C1] schedule_preempt_disabled+0x13/0x30 [ 841.048653][ C1] __mutex_lock+0x6a4/0xd70 [ 841.048676][ C1] ? rcu_is_watching+0x15/0xb0 [ 841.048703][ C1] ? __mutex_lock+0x527/0xd70 [ 841.048728][ C1] ? rtnetlink_rcv_msg+0x839/0x1170 [ 841.048751][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 841.048783][ C1] ? rtnl_lock+0xe7/0x130 [ 841.048808][ C1] rtnetlink_rcv_msg+0x839/0x1170 [ 841.048832][ C1] ? rtnetlink_rcv_msg+0x208/0x1170 [ 841.048855][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 841.048880][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 841.048928][ C1] ? __pfx_validate_chain+0x10/0x10 [ 841.048955][ C1] ? __pfx_validate_chain+0x10/0x10 [ 841.048981][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 841.049003][ C1] ? finish_task_switch+0x1e5/0x870 [ 841.049029][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 841.049058][ C1] ? mark_lock+0x9a/0x360 [ 841.049081][ C1] ? __pfx_validate_chain+0x10/0x10 [ 841.049109][ C1] ? __lock_acquire+0x1359/0x2000 [ 841.049143][ C1] ? mark_lock+0x9a/0x360 [ 841.049170][ C1] ? __lock_acquire+0x1359/0x2000 [ 841.049208][ C1] netlink_rcv_skb+0x1e3/0x430 [ 841.049231][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 841.049254][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 841.049294][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 841.049318][ C1] netlink_unicast+0x7f0/0x990 [ 841.049344][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 841.049363][ C1] ? __virt_addr_valid+0x183/0x520 [ 841.049390][ C1] ? __check_object_size+0x49c/0x900 [ 841.049415][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 841.049441][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 841.049473][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 841.049497][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 841.049518][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 841.049541][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 841.049566][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 841.049587][ C1] __sock_sendmsg+0x221/0x270 [ 841.049612][ C1] __sys_sendto+0x3a4/0x4f0 [ 841.049641][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 841.049686][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 841.049711][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 841.049739][ C1] __x64_sys_sendto+0xde/0x100 [ 841.049766][ C1] do_syscall_64+0xf3/0x230 [ 841.049784][ C1] ? clear_bhb_loop+0x35/0x90 [ 841.049807][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 841.049828][ C1] RIP: 0033:0x7fb0d247ed9c [ 841.049843][ C1] RSP: 002b:00007ffcec5a7f50 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 841.049862][ C1] RAX: ffffffffffffffda RBX: 00007fb0d30e4620 RCX: 00007fb0d247ed9c [ 841.049876][ C1] RDX: 0000000000000038 RSI: 00007fb0d30e4670 RDI: 0000000000000003 [ 841.049889][ C1] RBP: 0000000000000000 R08: 00007ffcec5a7fa4 R09: 000000000000000c [ 841.049905][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 841.049917][ C1] R13: 0000000000000000 R14: 00007fb0d30e4670 R15: 0000000000000000 [ 841.049942][ C1] [ 841.049950][ C1] DEBUG: waiting rtnl_mutex for 2959 jiffies. [ 841.049960][ C1] task:kworker/0:7 state:D stack:21304 pid:5179 tgid:5179 ppid:2 flags:0x00004000 [ 841.049990][ C1] Workqueue: events linkwatch_event [ 841.050014][ C1] Call Trace: [ 841.050021][ C1] [ 841.050032][ C1] __schedule+0x17e8/0x4a20 [ 841.050070][ C1] ? __pfx___schedule+0x10/0x10 [ 841.050092][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 841.050115][ C1] ? __pfx_lock_release+0x10/0x10 [ 841.050138][ C1] ? kick_pool+0x45c/0x620 [ 841.050165][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 841.050185][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 841.050210][ C1] ? schedule+0x90/0x320 [ 841.050230][ C1] schedule+0x14b/0x320 [ 841.050253][ C1] schedule_preempt_disabled+0x13/0x30 [ 841.050274][ C1] __mutex_lock+0x6a4/0xd70 [ 841.050301][ C1] ? __mutex_lock+0x527/0xd70 [ 841.050326][ C1] ? linkwatch_event+0xe/0x60 [ 841.050350][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 841.050381][ C1] ? process_scheduled_works+0x945/0x1830 [ 841.050402][ C1] ? rtnl_lock+0xe7/0x130 [ 841.050424][ C1] ? process_scheduled_works+0x945/0x1830 [ 841.050445][ C1] linkwatch_event+0xe/0x60 [ 841.050467][ C1] process_scheduled_works+0xa2c/0x1830 [ 841.050510][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 841.050538][ C1] ? assign_work+0x364/0x3d0 [ 841.050563][ C1] worker_thread+0x86d/0xd50 [ 841.050596][ C1] ? __kthread_parkme+0x169/0x1d0 [ 841.050622][ C1] ? __pfx_worker_thread+0x10/0x10 [ 841.050644][ C1] kthread+0x2f0/0x390 [ 841.050667][ C1] ? __pfx_worker_thread+0x10/0x10 [ 841.050688][ C1] ? __pfx_kthread+0x10/0x10 [ 841.050713][ C1] ret_from_fork+0x4b/0x80 [ 841.050736][ C1] ? __pfx_kthread+0x10/0x10 [ 841.050760][ C1] ret_from_fork_asm+0x1a/0x30 [ 841.050796][ C1] [ 841.050804][ C1] DEBUG: waiting rtnl_mutex for 2799 jiffies. [ 841.050813][ C1] task:syz-executor.0 state:D stack:26112 pid:15061 tgid:15059 ppid:6308 flags:0x00000006 [ 841.050842][ C1] Call Trace: [ 841.050849][ C1] [ 841.050860][ C1] __schedule+0x17e8/0x4a20 [ 841.050902][ C1] ? __pfx___schedule+0x10/0x10 [ 841.050926][ C1] ? __pfx_lock_release+0x10/0x10 [ 841.050950][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 841.050985][ C1] ? schedule+0x90/0x320 [ 841.051005][ C1] schedule+0x14b/0x320 [ 841.051028][ C1] schedule_preempt_disabled+0x13/0x30 [ 841.051049][ C1] __mutex_lock+0x6a4/0xd70 [ 841.051075][ C1] ? __mutex_lock+0x527/0xd70 [ 841.051100][ C1] ? nl80211_pre_doit+0x5f/0x8b0 [ 841.051127][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 841.051160][ C1] ? rtnl_lock+0xe7/0x130 [ 841.051184][ C1] nl80211_pre_doit+0x5f/0x8b0 [ 841.051214][ C1] genl_rcv_msg+0xaaa/0xec0 [ 841.051239][ C1] ? mark_lock+0x9a/0x360 [ 841.051269][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 841.051315][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 841.051336][ C1] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 841.051360][ C1] ? __pfx_nl80211_tx_mgmt+0x10/0x10 [ 841.051386][ C1] ? __pfx_nl80211_post_doit+0x10/0x10 [ 841.051411][ C1] ? __pfx___might_resched+0x10/0x10 [ 841.051440][ C1] netlink_rcv_skb+0x1e3/0x430 [ 841.051463][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 841.051491][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 841.051523][ C1] ? __netlink_deliver_tap+0x77e/0x7c0 [ 841.051556][ C1] genl_rcv+0x28/0x40 [ 841.051581][ C1] netlink_unicast+0x7f0/0x990 [ 841.051611][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 841.051629][ C1] ? __virt_addr_valid+0x183/0x520 [ 841.051656][ C1] ? __check_object_size+0x49c/0x900 [ 841.051680][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 841.051705][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 841.051737][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 841.051761][ C1] ? __import_iovec+0x536/0x820 [ 841.051780][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 841.051799][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 841.051822][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 841.051846][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 841.051867][ C1] __sock_sendmsg+0x221/0x270 [ 841.051897][ C1] ____sys_sendmsg+0x525/0x7d0 [ 841.051922][ C1] ? __pfx_____sys_sendmsg+0x10/0x10 [ 841.051952][ C1] __sys_sendmsg+0x2b0/0x3a0 [ 841.052019][ C1] ? __pfx___sys_sendmsg+0x10/0x10 [ 841.052092][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 841.052126][ C1] ? do_syscall_64+0x100/0x230 [ 841.052153][ C1] ? do_syscall_64+0xb6/0x230 [ 841.052181][ C1] do_syscall_64+0xf3/0x230 [ 841.052207][ C1] ? clear_bhb_loop+0x35/0x90 [ 841.052240][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 841.052268][ C1] RIP: 0033:0x7f287bc7d0a9 [ 841.052290][ C1] RSP: 002b:00007f287ca640c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 841.052319][ C1] RAX: ffffffffffffffda RBX: 00007f287bdb3f80 RCX: 00007f287bc7d0a9 [ 841.052340][ C1] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 841.052358][ C1] RBP: 00007f287bcec074 R08: 0000000000000000 R09: 0000000000000000 [ 841.052376][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 841.052394][ C1] R13: 000000000000000b R14: 00007f287bdb3f80 R15: 00007ffcb612a7a8 [ 841.052432][ C1] [ 841.052444][ C1] DEBUG: waiting rtnl_mutex for 2725 jiffies. [ 841.052459][ C1] task:syz-executor.2 state:D stack:27072 pid:15065 tgid:15064 ppid:11843 flags:0x00004006 [ 841.052504][ C1] Call Trace: [ 841.052515][ C1] [ 841.052532][ C1] __schedule+0x17e8/0x4a20 [ 841.052590][ C1] ? __pfx___schedule+0x10/0x10 [ 841.052625][ C1] ? __pfx_lock_release+0x10/0x10 [ 841.052658][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 841.052709][ C1] ? schedule+0x90/0x320 [ 841.052738][ C1] schedule+0x14b/0x320 [ 841.052771][ C1] schedule_preempt_disabled+0x13/0x30 [ 841.052801][ C1] __mutex_lock+0x6a4/0xd70 [ 841.052839][ C1] ? __mutex_lock+0x527/0xd70 [ 841.052875][ C1] ? register_nexthop_notifier+0x84/0x290 [ 841.052918][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 841.052966][ C1] ? rtnl_lock+0xe7/0x130 [ 841.053000][ C1] register_nexthop_notifier+0x84/0x290 [ 841.053033][ C1] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 841.053073][ C1] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 841.053115][ C1] ? __asan_memset+0x23/0x50 [ 841.053156][ C1] ops_init+0x359/0x610 [ 841.053201][ C1] setup_net+0x515/0xca0 [ 841.053232][ C1] ? __pfx_down_read_killable+0x10/0x10 [ 841.053274][ C1] ? __pfx_setup_net+0x10/0x10 [ 841.053319][ C1] copy_net_ns+0x4e2/0x7b0 [ 841.053357][ C1] create_new_namespaces+0x425/0x7b0 [ 841.053382][ C1] ? bpf_lsm_capable+0x9/0x10 [ 841.053409][ C1] unshare_nsproxy_namespaces+0x124/0x180 [ 841.053433][ C1] ksys_unshare+0x619/0xc10 [ 841.053466][ C1] ? __pfx_ksys_unshare+0x10/0x10 [ 841.053489][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 841.053516][ C1] ? do_syscall_64+0x100/0x230 [ 841.053539][ C1] __x64_sys_unshare+0x38/0x40 [ 841.053563][ C1] do_syscall_64+0xf3/0x230 [ 841.053580][ C1] ? clear_bhb_loop+0x35/0x90 [ 841.053603][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 841.053622][ C1] RIP: 0033:0x7fd6c6e7d0a9 [ 841.053636][ C1] RSP: 002b:00007fd6c7b1a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 841.053655][ C1] RAX: ffffffffffffffda RBX: 00007fd6c6fb3f80 RCX: 00007fd6c6e7d0a9 [ 841.053669][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068040200 [ 841.053681][ C1] RBP: 00007fd6c6eec074 R08: 0000000000000000 R09: 0000000000000000 [ 841.053693][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 841.053705][ C1] R13: 000000000000000b R14: 00007fd6c6fb3f80 R15: 00007ffc5418cb78 [ 841.053730][ C1] [ 841.053738][ C1] DEBUG: waiting rtnl_mutex for 2246 jiffies. [ 841.053748][ C1] task:syz-executor.3 state:D stack:28528 pid:15083 tgid:15082 ppid:5124 flags:0x00000006 [ 841.053779][ C1] Call Trace: [ 841.053786][ C1] [ 841.053797][ C1] __schedule+0x17e8/0x4a20 [ 841.053835][ C1] ? __pfx___schedule+0x10/0x10 [ 841.053859][ C1] ? __pfx_lock_release+0x10/0x10 [ 841.053883][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 841.053924][ C1] ? schedule+0x90/0x320 [ 841.053944][ C1] schedule+0x14b/0x320 [ 841.053967][ C1] schedule_preempt_disabled+0x13/0x30 [ 841.053988][ C1] __mutex_lock+0x6a4/0xd70 [ 841.054015][ C1] ? __mutex_lock+0x527/0xd70 [ 841.054040][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 841.054062][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 841.054094][ C1] ? rtnl_lock+0xe7/0x130 [ 841.054118][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 841.054138][ C1] ? schedule+0x90/0x320 [ 841.054157][ C1] ? schedule+0x90/0x320 [ 841.054185][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 841.054215][ C1] ? __lock_acquire+0x1359/0x2000 [ 841.054244][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 841.054271][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 841.054292][ C1] ? aa_sk_perm+0x967/0xab0 [ 841.054325][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 841.054353][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 841.054375][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 841.054395][ C1] ip_setsockopt+0x63/0x100 [ 841.054416][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 841.054439][ C1] do_sock_setsockopt+0x3af/0x720 [ 841.054470][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 841.054494][ C1] ? __fget_files+0x29/0x470 [ 841.054518][ C1] ? __fget_files+0x3f6/0x470 [ 841.054548][ C1] __sys_setsockopt+0x1ae/0x250 [ 841.054578][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 841.054606][ C1] do_syscall_64+0xf3/0x230 [ 841.054624][ C1] ? clear_bhb_loop+0x35/0x90 [ 841.054646][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 841.054665][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 841.054679][ C1] RSP: 002b:00007f3d1f1e60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 841.054697][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b3f80 RCX: 00007f3d1e47d0a9 [ 841.054711][ C1] RDX: 00000000000000c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 841.054723][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000004 R09: 0000000000000000 [ 841.054734][ C1] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000000 [ 841.054747][ C1] R13: 000000000000000b R14: 00007f3d1e5b3f80 R15: 00007ffcff745198 [ 841.054772][ C1] [ 841.054779][ C1] DEBUG: waiting rtnl_mutex for 2238 jiffies. [ 841.054789][ C1] task:syz-executor.3 state:D stack:23800 pid:15084 tgid:15082 ppid:5124 flags:0x00000006 [ 841.054818][ C1] Call Trace: [ 841.054824][ C1] [ 841.054836][ C1] __schedule+0x17e8/0x4a20 [ 841.054874][ C1] ? __pfx___schedule+0x10/0x10 [ 841.054903][ C1] ? __pfx_lock_release+0x10/0x10 [ 841.054926][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 841.054961][ C1] ? schedule+0x90/0x320 [ 841.054981][ C1] schedule+0x14b/0x320 [ 841.055004][ C1] schedule_preempt_disabled+0x13/0x30 [ 841.055025][ C1] __mutex_lock+0x6a4/0xd70 [ 841.055052][ C1] ? __mutex_lock+0x527/0xd70 [ 841.055077][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 841.055098][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 841.055125][ C1] ? preempt_schedule+0xe1/0xf0 [ 841.055146][ C1] ? __pfx_preempt_schedule+0x10/0x10 [ 841.055170][ C1] ? rtnl_lock+0xe7/0x130 [ 841.055194][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 841.055222][ C1] ? try_to_wake_up+0x9a1/0x1470 [ 841.055247][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 841.055278][ C1] ? __lock_acquire+0x1359/0x2000 [ 841.055306][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 841.055334][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 841.055354][ C1] ? aa_sk_perm+0x967/0xab0 [ 841.055386][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 841.055414][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 841.055436][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 841.055456][ C1] ip_setsockopt+0x63/0x100 [ 841.055477][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 841.055499][ C1] do_sock_setsockopt+0x3af/0x720 [ 841.055529][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 841.055554][ C1] ? __fget_files+0x29/0x470 [ 841.055577][ C1] ? __fget_files+0x3f6/0x470 [ 841.055607][ C1] __sys_setsockopt+0x1ae/0x250 [ 841.055636][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 841.055665][ C1] do_syscall_64+0xf3/0x230 [ 841.055682][ C1] ? clear_bhb_loop+0x35/0x90 [ 841.055704][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 841.055723][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 841.055737][ C1] RSP: 002b:00007f3d1f1c50c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 841.055755][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b4050 RCX: 00007f3d1e47d0a9 [ 841.055769][ C1] RDX: 00000000000000ca RSI: 0000000000000000 RDI: 0000000000000003 [ 841.055781][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000010 R09: 0000000000000000 [ 841.055793][ C1] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000000 [ 841.055804][ C1] R13: 000000000000006e R14: 00007f3d1e5b4050 R15: 00007ffcff745198 [ 841.055829][ C1] [ 841.055837][ C1] DEBUG: waiting rtnl_mutex for 1145 jiffies. [ 841.055846][ C1] task:kworker/u8:11 state:D stack:22624 pid:3724 tgid:3724 ppid:2 flags:0x00004000 [ 841.055875][ C1] Workqueue: ipv6_addrconf addrconf_verify_work [ 841.055908][ C1] Call Trace: [ 841.055916][ C1] [ 841.055926][ C1] __schedule+0x17e8/0x4a20 [ 841.055965][ C1] ? __pfx___schedule+0x10/0x10 [ 841.055989][ C1] ? __pfx_lock_release+0x10/0x10 [ 841.056012][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 841.056039][ C1] ? kthread_data+0x52/0xd0 [ 841.056060][ C1] ? schedule+0x90/0x320 [ 841.056080][ C1] ? wq_worker_sleeping+0x66/0x240 [ 841.056104][ C1] ? schedule+0x90/0x320 [ 841.056124][ C1] schedule+0x14b/0x320 [ 841.056146][ C1] schedule_preempt_disabled+0x13/0x30 [ 841.056167][ C1] __mutex_lock+0x6a4/0xd70 [ 841.056194][ C1] ? __mutex_lock+0x527/0xd70 [ 841.056219][ C1] ? addrconf_verify_work+0x19/0x30 [ 841.056246][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 841.056268][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 841.056293][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 841.056320][ C1] ? process_scheduled_works+0x945/0x1830 [ 841.056341][ C1] ? rtnl_lock+0xe7/0x130 [ 841.056364][ C1] ? process_scheduled_works+0x945/0x1830 [ 841.056385][ C1] addrconf_verify_work+0x19/0x30 [ 841.056411][ C1] process_scheduled_works+0xa2c/0x1830 [ 841.056454][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 841.056483][ C1] ? assign_work+0x364/0x3d0 [ 841.056507][ C1] worker_thread+0x86d/0xd50 [ 841.056541][ C1] ? __kthread_parkme+0x169/0x1d0 [ 841.056566][ C1] ? __pfx_worker_thread+0x10/0x10 [ 841.056587][ C1] kthread+0x2f0/0x390 [ 841.056612][ C1] ? __pfx_worker_thread+0x10/0x10 [ 841.056632][ C1] ? __pfx_kthread+0x10/0x10 [ 841.056657][ C1] ret_from_fork+0x4b/0x80 [ 841.056680][ C1] ? __pfx_kthread+0x10/0x10 [ 841.056704][ C1] ret_from_fork_asm+0x1a/0x30 [ 841.056741][ C1] [ 841.056751][ C1] [ 841.056751][ C1] Showing all locks held in the system: [ 841.056761][ C1] 4 locks held by kworker/u8:0/11: [ 841.056773][ C1] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 841.056850][ C1] #1: ffffc90000107d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 841.056904][ C1] #2: ffff8880117c8768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: cfg80211_wiphy_work+0xd9/0x490 [ 841.056956][ C1] #3: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 841.057042][ C1] 3 locks held by kworker/u8:11/3724: [ 841.057053][ C1] #0: ffff888029dd8948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 841.057103][ C1] #1: ffffc9000b207d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 841.057153][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30 [ 841.057207][ C1] 2 locks held by kworker/u8:12/3740: [ 841.057218][ C1] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 841.057268][ C1] #1: ffffc9000b4d7d00 ((work_completion)(&(&kfence_timer)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 841.057318][ C1] 5 locks held by kworker/u8:13/3751: [ 841.057329][ C1] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 841.057378][ C1] #1: ffffc9000b6c7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 841.057427][ C1] #2: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 841.057478][ C1] #3: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 841.057528][ C1] #4: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 841.057586][ C1] 2 locks held by getty/4859: [ 841.057597][ C1] #0: ffff88802a7640a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 841.057649][ C1] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 841.057699][ C1] 3 locks held by kworker/0:7/5179: [ 841.057709][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 841.057758][ C1] #1: ffffc90004117d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 841.057807][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 841.057860][ C1] 3 locks held by syz-executor.2/11843: [ 841.057871][ C1] #0: ffff88806e00cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x203/0x510 [ 841.057930][ C1] #1: ffff88806e00c078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x494/0xf70 [ 841.057981][ C1] #2: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xa6/0x240 [ 841.058032][ C1] 1 lock held by syz-executor.1/14929: [ 841.058043][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 841.058093][ C1] 6 locks held by syz-executor.4/15050: [ 841.058104][ C1] #0: ffff8880201594c8 (&disk->open_mutex){+.+.}-{3:3}, at: loop_set_status+0x6f3/0x900 [ 841.058151][ C1] #1: ffffffff8e210f80 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120 [ 841.058203][ C1] #2: ffffffff8e210b90 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 841.058250][ C1] #3: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 841.058295][ C1] #4: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 841.058342][ C1] #5: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 841.058394][ C1] 2 locks held by syz-executor.0/15061: [ 841.058406][ C1] #0: ffffffff8f661470 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 841.058459][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0x5f/0x8b0 [ 841.058511][ C1] 2 locks held by syz-executor.2/15065: [ 841.058522][ C1] #0: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 841.058571][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 841.058622][ C1] 1 lock held by syz-executor.3/15083: [ 841.058633][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 841.058682][ C1] 1 lock held by syz-executor.3/15084: [ 841.058693][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 841.058741][ C1] [ 841.058746][ C1] ============================================= [ 841.058746][ C1] [ 842.085745][ C1] DEBUG: holding rtnl_mutex for 3214 jiffies. [ 842.085774][ C1] task:kworker/u8:13 state:D stack:21488 pid:3751 tgid:3751 ppid:2 flags:0x00004000 [ 842.085832][ C1] Workqueue: netns cleanup_net [ 842.085877][ C1] Call Trace: [ 842.085889][ C1] [ 842.085908][ C1] __schedule+0x17e8/0x4a20 [ 842.085970][ C1] ? __pfx___schedule+0x10/0x10 [ 842.086007][ C1] ? __pfx_lock_release+0x10/0x10 [ 842.086039][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 842.086078][ C1] ? kthread_data+0x52/0xd0 [ 842.086112][ C1] ? wq_worker_sleeping+0x66/0x240 [ 842.086148][ C1] ? schedule+0x90/0x320 [ 842.086177][ C1] schedule+0x14b/0x320 [ 842.086211][ C1] synchronize_rcu_expedited+0x684/0x830 [ 842.086257][ C1] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 842.086315][ C1] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 842.086353][ C1] ? __pfx___might_resched+0x10/0x10 [ 842.086382][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 842.086415][ C1] ? __pfx_autoremove_wake_function+0x10/0x10 [ 842.086448][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 842.086495][ C1] synchronize_rcu+0x11b/0x360 [ 842.086533][ C1] ? __pfx_synchronize_rcu+0x10/0x10 [ 842.086588][ C1] lockdep_unregister_key+0x4b7/0x540 [ 842.086625][ C1] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 842.086659][ C1] ? rcu_is_watching+0x15/0xb0 [ 842.086684][ C1] ? qdisc_reset+0x3bf/0x5b0 [ 842.086712][ C1] __qdisc_destroy+0x165/0x410 [ 842.086737][ C1] dev_shutdown+0x357/0x440 [ 842.086764][ C1] unregister_netdevice_many_notify+0x977/0x16b0 [ 842.086800][ C1] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 842.086824][ C1] ? unregister_netdevice_queue+0x26b/0x370 [ 842.086852][ C1] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 842.086881][ C1] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 842.086910][ C1] default_device_exit_batch+0xa0f/0xa90 [ 842.086940][ C1] ? __pfx___might_resched+0x10/0x10 [ 842.086962][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 842.086991][ C1] ? cfg802154_pernet_exit+0xc3/0xe0 [ 842.087015][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 842.087040][ C1] cleanup_net+0x89d/0xcc0 [ 842.087068][ C1] ? __pfx_cleanup_net+0x10/0x10 [ 842.087100][ C1] ? process_scheduled_works+0x945/0x1830 [ 842.087121][ C1] process_scheduled_works+0xa2c/0x1830 [ 842.087164][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 842.087193][ C1] ? assign_work+0x364/0x3d0 [ 842.087217][ C1] worker_thread+0x86d/0xd50 [ 842.087251][ C1] ? __kthread_parkme+0x169/0x1d0 [ 842.087276][ C1] ? __pfx_worker_thread+0x10/0x10 [ 842.087299][ C1] kthread+0x2f0/0x390 [ 842.087323][ C1] ? __pfx_worker_thread+0x10/0x10 [ 842.087344][ C1] ? __pfx_kthread+0x10/0x10 [ 842.087370][ C1] ret_from_fork+0x4b/0x80 [ 842.087393][ C1] ? __pfx_kthread+0x10/0x10 [ 842.087418][ C1] ret_from_fork_asm+0x1a/0x30 [ 842.087455][ C1] [ 842.087464][ C1] DEBUG: waiting rtnl_mutex for 3212 jiffies. [ 842.087475][ C1] task:syz-executor.1 state:D stack:21024 pid:14929 tgid:14929 ppid:14915 flags:0x00004002 [ 842.087505][ C1] Call Trace: [ 842.087512][ C1] [ 842.087524][ C1] __schedule+0x17e8/0x4a20 [ 842.087562][ C1] ? __pfx___schedule+0x10/0x10 [ 842.087586][ C1] ? __pfx_lock_release+0x10/0x10 [ 842.087609][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 842.087644][ C1] ? schedule+0x90/0x320 [ 842.087665][ C1] schedule+0x14b/0x320 [ 842.087687][ C1] schedule_preempt_disabled+0x13/0x30 [ 842.087709][ C1] __mutex_lock+0x6a4/0xd70 [ 842.087731][ C1] ? rcu_is_watching+0x15/0xb0 [ 842.087758][ C1] ? __mutex_lock+0x527/0xd70 [ 842.087783][ C1] ? rtnetlink_rcv_msg+0x839/0x1170 [ 842.087811][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 842.087843][ C1] ? rtnl_lock+0xe7/0x130 [ 842.087868][ C1] rtnetlink_rcv_msg+0x839/0x1170 [ 842.087892][ C1] ? rtnetlink_rcv_msg+0x208/0x1170 [ 842.087915][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 842.087940][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 842.087963][ C1] ? __pfx_validate_chain+0x10/0x10 [ 842.087989][ C1] ? __pfx_validate_chain+0x10/0x10 [ 842.088015][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 842.088037][ C1] ? finish_task_switch+0x1e5/0x870 [ 842.088063][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 842.088092][ C1] ? mark_lock+0x9a/0x360 [ 842.088115][ C1] ? __pfx_validate_chain+0x10/0x10 [ 842.088143][ C1] ? __lock_acquire+0x1359/0x2000 [ 842.088177][ C1] ? mark_lock+0x9a/0x360 [ 842.088204][ C1] ? __lock_acquire+0x1359/0x2000 [ 842.088242][ C1] netlink_rcv_skb+0x1e3/0x430 [ 842.088265][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 842.088288][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 842.088328][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 842.088352][ C1] netlink_unicast+0x7f0/0x990 [ 842.088379][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 842.088397][ C1] ? __virt_addr_valid+0x183/0x520 [ 842.088425][ C1] ? __check_object_size+0x49c/0x900 [ 842.088450][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 842.088475][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 842.088508][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 842.088532][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 842.088553][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 842.088576][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 842.088602][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 842.088623][ C1] __sock_sendmsg+0x221/0x270 [ 842.088647][ C1] __sys_sendto+0x3a4/0x4f0 [ 842.088677][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 842.088722][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 842.088747][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 842.088774][ C1] __x64_sys_sendto+0xde/0x100 [ 842.088808][ C1] do_syscall_64+0xf3/0x230 [ 842.088826][ C1] ? clear_bhb_loop+0x35/0x90 [ 842.088850][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 842.088871][ C1] RIP: 0033:0x7fb0d247ed9c [ 842.088886][ C1] RSP: 002b:00007ffcec5a7f50 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 842.088906][ C1] RAX: ffffffffffffffda RBX: 00007fb0d30e4620 RCX: 00007fb0d247ed9c [ 842.088920][ C1] RDX: 0000000000000038 RSI: 00007fb0d30e4670 RDI: 0000000000000003 [ 842.088933][ C1] RBP: 0000000000000000 R08: 00007ffcec5a7fa4 R09: 000000000000000c [ 842.088945][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 842.088957][ C1] R13: 0000000000000000 R14: 00007fb0d30e4670 R15: 0000000000000000 [ 842.088982][ C1] [ 842.088989][ C1] DEBUG: waiting rtnl_mutex for 3063 jiffies. [ 842.088999][ C1] task:kworker/0:7 state:D stack:21304 pid:5179 tgid:5179 ppid:2 flags:0x00004000 [ 842.089028][ C1] Workqueue: events linkwatch_event [ 842.089052][ C1] Call Trace: [ 842.089059][ C1] [ 842.089071][ C1] __schedule+0x17e8/0x4a20 [ 842.089109][ C1] ? __pfx___schedule+0x10/0x10 [ 842.089131][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 842.089154][ C1] ? __pfx_lock_release+0x10/0x10 [ 842.089177][ C1] ? kick_pool+0x45c/0x620 [ 842.089203][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 842.089223][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 842.089249][ C1] ? schedule+0x90/0x320 [ 842.089268][ C1] schedule+0x14b/0x320 [ 842.089291][ C1] schedule_preempt_disabled+0x13/0x30 [ 842.089312][ C1] __mutex_lock+0x6a4/0xd70 [ 842.089339][ C1] ? __mutex_lock+0x527/0xd70 [ 842.089363][ C1] ? linkwatch_event+0xe/0x60 [ 842.089387][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 842.089418][ C1] ? process_scheduled_works+0x945/0x1830 [ 842.089439][ C1] ? rtnl_lock+0xe7/0x130 [ 842.089462][ C1] ? process_scheduled_works+0x945/0x1830 [ 842.089482][ C1] linkwatch_event+0xe/0x60 [ 842.089504][ C1] process_scheduled_works+0xa2c/0x1830 [ 842.089547][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 842.089576][ C1] ? assign_work+0x364/0x3d0 [ 842.089601][ C1] worker_thread+0x86d/0xd50 [ 842.089634][ C1] ? __kthread_parkme+0x169/0x1d0 [ 842.089659][ C1] ? __pfx_worker_thread+0x10/0x10 [ 842.089681][ C1] kthread+0x2f0/0x390 [ 842.089705][ C1] ? __pfx_worker_thread+0x10/0x10 [ 842.089726][ C1] ? __pfx_kthread+0x10/0x10 [ 842.089751][ C1] ret_from_fork+0x4b/0x80 [ 842.089773][ C1] ? __pfx_kthread+0x10/0x10 [ 842.089802][ C1] ret_from_fork_asm+0x1a/0x30 [ 842.089838][ C1] [ 842.089845][ C1] DEBUG: waiting rtnl_mutex for 2903 jiffies. [ 842.089856][ C1] task:syz-executor.0 state:D stack:26112 pid:15061 tgid:15059 ppid:6308 flags:0x00000006 [ 842.089883][ C1] Call Trace: [ 842.089890][ C1] [ 842.089901][ C1] __schedule+0x17e8/0x4a20 [ 842.089939][ C1] ? __pfx___schedule+0x10/0x10 [ 842.089963][ C1] ? __pfx_lock_release+0x10/0x10 [ 842.089987][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 842.090022][ C1] ? schedule+0x90/0x320 [ 842.090042][ C1] schedule+0x14b/0x320 [ 842.090065][ C1] schedule_preempt_disabled+0x13/0x30 [ 842.090086][ C1] __mutex_lock+0x6a4/0xd70 [ 842.090112][ C1] ? __mutex_lock+0x527/0xd70 [ 842.090137][ C1] ? nl80211_pre_doit+0x5f/0x8b0 [ 842.090164][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 842.090197][ C1] ? rtnl_lock+0xe7/0x130 [ 842.090221][ C1] nl80211_pre_doit+0x5f/0x8b0 [ 842.090251][ C1] genl_rcv_msg+0xaaa/0xec0 [ 842.090276][ C1] ? mark_lock+0x9a/0x360 [ 842.090305][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 842.090351][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 842.090372][ C1] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 842.090396][ C1] ? __pfx_nl80211_tx_mgmt+0x10/0x10 [ 842.090422][ C1] ? __pfx_nl80211_post_doit+0x10/0x10 [ 842.090447][ C1] ? __pfx___might_resched+0x10/0x10 [ 842.090476][ C1] netlink_rcv_skb+0x1e3/0x430 [ 842.090499][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 842.090526][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 842.090558][ C1] ? __netlink_deliver_tap+0x77e/0x7c0 [ 842.090591][ C1] genl_rcv+0x28/0x40 [ 842.090616][ C1] netlink_unicast+0x7f0/0x990 [ 842.090642][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 842.090660][ C1] ? __virt_addr_valid+0x183/0x520 [ 842.090687][ C1] ? __check_object_size+0x49c/0x900 [ 842.090711][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 842.090736][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 842.090767][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 842.090791][ C1] ? __import_iovec+0x536/0x820 [ 842.090815][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 842.090835][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 842.090858][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 842.090882][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 842.090903][ C1] __sock_sendmsg+0x221/0x270 [ 842.090927][ C1] ____sys_sendmsg+0x525/0x7d0 [ 842.090952][ C1] ? __pfx_____sys_sendmsg+0x10/0x10 [ 842.090982][ C1] __sys_sendmsg+0x2b0/0x3a0 [ 842.091001][ C1] ? __pfx___sys_sendmsg+0x10/0x10 [ 842.091052][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 842.091076][ C1] ? do_syscall_64+0x100/0x230 [ 842.091096][ C1] ? do_syscall_64+0xb6/0x230 [ 842.091115][ C1] do_syscall_64+0xf3/0x230 [ 842.091133][ C1] ? clear_bhb_loop+0x35/0x90 [ 842.091155][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 842.091174][ C1] RIP: 0033:0x7f287bc7d0a9 [ 842.091188][ C1] RSP: 002b:00007f287ca640c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 842.091207][ C1] RAX: ffffffffffffffda RBX: 00007f287bdb3f80 RCX: 00007f287bc7d0a9 [ 842.091220][ C1] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 842.091233][ C1] RBP: 00007f287bcec074 R08: 0000000000000000 R09: 0000000000000000 [ 842.091245][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 842.091256][ C1] R13: 000000000000000b R14: 00007f287bdb3f80 R15: 00007ffcb612a7a8 [ 842.091282][ C1] [ 842.091289][ C1] DEBUG: waiting rtnl_mutex for 2828 jiffies. [ 842.091299][ C1] task:syz-executor.2 state:D stack:27072 pid:15065 tgid:15064 ppid:11843 flags:0x00004006 [ 842.091328][ C1] Call Trace: [ 842.091335][ C1] [ 842.091346][ C1] __schedule+0x17e8/0x4a20 [ 842.091384][ C1] ? __pfx___schedule+0x10/0x10 [ 842.091408][ C1] ? __pfx_lock_release+0x10/0x10 [ 842.091431][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 842.091466][ C1] ? schedule+0x90/0x320 [ 842.091486][ C1] schedule+0x14b/0x320 [ 842.091509][ C1] schedule_preempt_disabled+0x13/0x30 [ 842.091529][ C1] __mutex_lock+0x6a4/0xd70 [ 842.091556][ C1] ? __mutex_lock+0x527/0xd70 [ 842.091581][ C1] ? register_nexthop_notifier+0x84/0x290 [ 842.091607][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 842.091639][ C1] ? rtnl_lock+0xe7/0x130 [ 842.091663][ C1] register_nexthop_notifier+0x84/0x290 [ 842.091686][ C1] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 842.091714][ C1] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 842.091742][ C1] ? __asan_memset+0x23/0x50 [ 842.091771][ C1] ops_init+0x359/0x610 [ 842.091805][ C1] setup_net+0x515/0xca0 [ 842.091827][ C1] ? __pfx_down_read_killable+0x10/0x10 [ 842.091857][ C1] ? __pfx_setup_net+0x10/0x10 [ 842.091888][ C1] copy_net_ns+0x4e2/0x7b0 [ 842.091915][ C1] create_new_namespaces+0x425/0x7b0 [ 842.091939][ C1] ? bpf_lsm_capable+0x9/0x10 [ 842.092021][ C1] unshare_nsproxy_namespaces+0x124/0x180 [ 842.092058][ C1] ksys_unshare+0x619/0xc10 [ 842.092102][ C1] ? __pfx_ksys_unshare+0x10/0x10 [ 842.092135][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 842.092175][ C1] ? do_syscall_64+0x100/0x230 [ 842.092208][ C1] __x64_sys_unshare+0x38/0x40 [ 842.092242][ C1] do_syscall_64+0xf3/0x230 [ 842.092268][ C1] ? clear_bhb_loop+0x35/0x90 [ 842.092301][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 842.092329][ C1] RIP: 0033:0x7fd6c6e7d0a9 [ 842.092348][ C1] RSP: 002b:00007fd6c7b1a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 842.092375][ C1] RAX: ffffffffffffffda RBX: 00007fd6c6fb3f80 RCX: 00007fd6c6e7d0a9 [ 842.092395][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068040200 [ 842.092412][ C1] RBP: 00007fd6c6eec074 R08: 0000000000000000 R09: 0000000000000000 [ 842.092430][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 842.092448][ C1] R13: 000000000000000b R14: 00007fd6c6fb3f80 R15: 00007ffc5418cb78 [ 842.092487][ C1] [ 842.092499][ C1] DEBUG: waiting rtnl_mutex for 2350 jiffies. [ 842.092515][ C1] task:syz-executor.3 state:D stack:28528 pid:15083 tgid:15082 ppid:5124 flags:0x00000006 [ 842.092561][ C1] Call Trace: [ 842.092572][ C1] [ 842.092589][ C1] __schedule+0x17e8/0x4a20 [ 842.092646][ C1] ? __pfx___schedule+0x10/0x10 [ 842.092681][ C1] ? __pfx_lock_release+0x10/0x10 [ 842.092715][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 842.092765][ C1] ? schedule+0x90/0x320 [ 842.092801][ C1] schedule+0x14b/0x320 [ 842.092835][ C1] schedule_preempt_disabled+0x13/0x30 [ 842.092865][ C1] __mutex_lock+0x6a4/0xd70 [ 842.092903][ C1] ? __mutex_lock+0x527/0xd70 [ 842.092939][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 842.092970][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 842.093018][ C1] ? rtnl_lock+0xe7/0x130 [ 842.093053][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 842.093081][ C1] ? schedule+0x90/0x320 [ 842.093108][ C1] ? schedule+0x90/0x320 [ 842.093149][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 842.093193][ C1] ? __lock_acquire+0x1359/0x2000 [ 842.093235][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 842.093276][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 842.093306][ C1] ? aa_sk_perm+0x967/0xab0 [ 842.093353][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 842.093393][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 842.093424][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 842.093453][ C1] ip_setsockopt+0x63/0x100 [ 842.093484][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 842.093515][ C1] do_sock_setsockopt+0x3af/0x720 [ 842.093559][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 842.093594][ C1] ? __fget_files+0x29/0x470 [ 842.093628][ C1] ? __fget_files+0x3f6/0x470 [ 842.093673][ C1] __sys_setsockopt+0x1ae/0x250 [ 842.093716][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 842.093757][ C1] do_syscall_64+0xf3/0x230 [ 842.093782][ C1] ? clear_bhb_loop+0x35/0x90 [ 842.093820][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 842.093848][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 842.093869][ C1] RSP: 002b:00007f3d1f1e60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 842.093897][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b3f80 RCX: 00007f3d1e47d0a9 [ 842.093917][ C1] RDX: 00000000000000c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 842.093934][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000004 R09: 0000000000000000 [ 842.093952][ C1] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000000 [ 842.093969][ C1] R13: 000000000000000b R14: 00007f3d1e5b3f80 R15: 00007ffcff745198 [ 842.094007][ C1] [ 842.094018][ C1] DEBUG: waiting rtnl_mutex for 2342 jiffies. [ 842.094033][ C1] task:syz-executor.3 state:D stack:23800 pid:15084 tgid:15082 ppid:5124 flags:0x00000006 [ 842.094075][ C1] Call Trace: [ 842.094086][ C1] [ 842.094103][ C1] __schedule+0x17e8/0x4a20 [ 842.094159][ C1] ? __pfx___schedule+0x10/0x10 [ 842.094194][ C1] ? __pfx_lock_release+0x10/0x10 [ 842.094227][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 842.094277][ C1] ? schedule+0x90/0x320 [ 842.094306][ C1] schedule+0x14b/0x320 [ 842.094338][ C1] schedule_preempt_disabled+0x13/0x30 [ 842.094368][ C1] __mutex_lock+0x6a4/0xd70 [ 842.094407][ C1] ? __mutex_lock+0x527/0xd70 [ 842.094442][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 842.094473][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 842.094511][ C1] ? preempt_schedule+0xe1/0xf0 [ 842.094541][ C1] ? __pfx_preempt_schedule+0x10/0x10 [ 842.094575][ C1] ? rtnl_lock+0xe7/0x130 [ 842.094609][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 842.094651][ C1] ? try_to_wake_up+0x9a1/0x1470 [ 842.094686][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 842.094730][ C1] ? __lock_acquire+0x1359/0x2000 [ 842.094772][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 842.094817][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 842.094847][ C1] ? aa_sk_perm+0x967/0xab0 [ 842.094893][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 842.094933][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 842.094964][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 842.094993][ C1] ip_setsockopt+0x63/0x100 [ 842.095024][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 842.095055][ C1] do_sock_setsockopt+0x3af/0x720 [ 842.095099][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 842.095134][ C1] ? __fget_files+0x29/0x470 [ 842.095166][ C1] ? __fget_files+0x3f6/0x470 [ 842.095211][ C1] __sys_setsockopt+0x1ae/0x250 [ 842.095254][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 842.095295][ C1] do_syscall_64+0xf3/0x230 [ 842.095320][ C1] ? clear_bhb_loop+0x35/0x90 [ 842.095352][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 842.095380][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 842.095400][ C1] RSP: 002b:00007f3d1f1c50c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 842.095428][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b4050 RCX: 00007f3d1e47d0a9 [ 842.095448][ C1] RDX: 00000000000000ca RSI: 0000000000000000 RDI: 0000000000000003 [ 842.095465][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000010 R09: 0000000000000000 [ 842.095481][ C1] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000000 [ 842.095499][ C1] R13: 000000000000006e R14: 00007f3d1e5b4050 R15: 00007ffcff745198 [ 842.095538][ C1] [ 842.095549][ C1] DEBUG: waiting rtnl_mutex for 1249 jiffies. [ 842.095563][ C1] task:kworker/u8:11 state:D stack:22624 pid:3724 tgid:3724 ppid:2 flags:0x00004000 [ 842.095606][ C1] Workqueue: ipv6_addrconf addrconf_verify_work [ 842.095646][ C1] Call Trace: [ 842.095657][ C1] [ 842.095674][ C1] __schedule+0x17e8/0x4a20 [ 842.095730][ C1] ? __pfx___schedule+0x10/0x10 [ 842.095764][ C1] ? __pfx_lock_release+0x10/0x10 [ 842.095805][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 842.095845][ C1] ? kthread_data+0x52/0xd0 [ 842.095875][ C1] ? schedule+0x90/0x320 [ 842.095904][ C1] ? wq_worker_sleeping+0x66/0x240 [ 842.095939][ C1] ? schedule+0x90/0x320 [ 842.095968][ C1] schedule+0x14b/0x320 [ 842.096001][ C1] schedule_preempt_disabled+0x13/0x30 [ 842.096031][ C1] __mutex_lock+0x6a4/0xd70 [ 842.096070][ C1] ? __mutex_lock+0x527/0xd70 [ 842.096106][ C1] ? addrconf_verify_work+0x19/0x30 [ 842.096145][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 842.096177][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 842.096213][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 842.096253][ C1] ? process_scheduled_works+0x945/0x1830 [ 842.096282][ C1] ? rtnl_lock+0xe7/0x130 [ 842.096315][ C1] ? process_scheduled_works+0x945/0x1830 [ 842.096344][ C1] addrconf_verify_work+0x19/0x30 [ 842.096381][ C1] process_scheduled_works+0xa2c/0x1830 [ 842.096445][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 842.096487][ C1] ? assign_work+0x364/0x3d0 [ 842.096523][ C1] worker_thread+0x86d/0xd50 [ 842.096573][ C1] ? __kthread_parkme+0x169/0x1d0 [ 842.096609][ C1] ? __pfx_worker_thread+0x10/0x10 [ 842.096640][ C1] kthread+0x2f0/0x390 [ 842.096674][ C1] ? __pfx_worker_thread+0x10/0x10 [ 842.096704][ C1] ? __pfx_kthread+0x10/0x10 [ 842.096758][ C1] ret_from_fork+0x4b/0x80 [ 842.096791][ C1] ? __pfx_kthread+0x10/0x10 [ 842.096831][ C1] ret_from_fork_asm+0x1a/0x30 [ 842.096885][ C1] [ 842.096900][ C1] [ 842.096900][ C1] Showing all locks held in the system: [ 842.096914][ C1] 4 locks held by kworker/u8:0/11: [ 842.096931][ C1] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 842.097009][ C1] #1: ffffc90000107d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 842.097085][ C1] #2: ffff8880117c8768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: cfg80211_wiphy_work+0xd9/0x490 [ 842.097162][ C1] #3: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 842.097282][ C1] 3 locks held by kworker/u8:11/3724: [ 842.097298][ C1] #0: ffff888029dd8948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 842.097372][ C1] #1: ffffc9000b207d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 842.097446][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30 [ 842.097525][ C1] 2 locks held by kworker/u8:12/3740: [ 842.097541][ C1] 5 locks held by kworker/u8:13/3751: [ 842.097557][ C1] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 842.097630][ C1] #1: ffffc9000b6c7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 842.097702][ C1] #2: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 842.097776][ C1] #3: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 842.097856][ C1] #4: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 842.097940][ C1] 2 locks held by getty/4859: [ 842.097955][ C1] #0: ffff88802a7640a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 842.098029][ C1] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 842.098103][ C1] 3 locks held by kworker/0:7/5179: [ 842.098119][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 842.098189][ C1] #1: ffffc90004117d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 842.098259][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 842.098320][ C1] 3 locks held by syz-executor.2/11843: [ 842.098332][ C1] #0: ffff88806e00cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x203/0x510 [ 842.098384][ C1] #1: ffff88806e00c078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x494/0xf70 [ 842.098435][ C1] #2: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xa6/0x240 [ 842.098487][ C1] 1 lock held by syz-executor.1/14929: [ 842.098498][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 842.098548][ C1] 6 locks held by syz-executor.4/15050: [ 842.098559][ C1] #0: ffff8880201594c8 (&disk->open_mutex){+.+.}-{3:3}, at: loop_set_status+0x6f3/0x900 [ 842.098605][ C1] #1: ffffffff8e210f80 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120 [ 842.098658][ C1] #2: ffffffff8e210b90 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 842.098705][ C1] #3: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 842.098750][ C1] #4: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 842.098803][ C1] #5: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 842.098855][ C1] 2 locks held by syz-executor.0/15061: [ 842.098865][ C1] #0: ffffffff8f661470 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 842.098918][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0x5f/0x8b0 [ 842.098971][ C1] 2 locks held by syz-executor.2/15065: [ 842.098982][ C1] #0: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 842.099031][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 842.099081][ C1] 1 lock held by syz-executor.3/15083: [ 842.099092][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 842.099141][ C1] 1 lock held by syz-executor.3/15084: [ 842.099152][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 842.099201][ C1] [ 842.099206][ C1] ============================================= [ 842.099206][ C1] [ 843.056966][ T5141] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 843.132021][ C1] DEBUG: holding rtnl_mutex for 3318 jiffies. [ 843.140849][T15050] loop4: p209 start 8388612 is beyond EOD, [ 843.147831][ C1] task:kworker/u8:13 state:R running task stack:21488 pid:3751 tgid:3751 ppid:2 flags:0x00004000 [ 843.147889][ C1] Workqueue: netns cleanup_net [ 843.147928][ C1] Call Trace: [ 843.147939][ C1] [ 843.147956][ C1] __schedule+0x17e8/0x4a20 [ 843.148013][ C1] ? __pfx___schedule+0x10/0x10 [ 843.148049][ C1] ? __pfx_lock_release+0x10/0x10 [ 843.148079][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 843.180516][T15090] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 843.182482][ C1] ? __schedule+0x17e8/0x4a20 [ 843.201773][T15090] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 843.203684][ C1] ? __pfx_validate_chain+0x10/0x10 [ 843.213179][T15090] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 843.214049][T15090] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 843.218268][ C1] ? __pfx___schedule+0x10/0x10 [ 843.223492][T15090] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 843.227486][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 843.278694][T15050] truncated [ 843.286597][ C1] ? preempt_schedule_irq+0xf0/0x1c0 [ 843.286643][ C1] ? preempt_schedule_irq+0xfb/0x1c0 [ 843.286677][ C1] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 843.302072][T15050] loop4: p210 start 8388612 is beyond EOD, [ 843.302880][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 843.325007][T15050] truncated [ 843.328081][ C1] ? synchronize_rcu+0x11b/0x360 [ 843.340327][T15050] loop4: p211 start 8388612 is beyond EOD, [ 843.343000][ C1] ? __pfx_synchronize_rcu+0x10/0x10 [ 843.343062][ C1] ? lockdep_unregister_key+0x4b7/0x540 [ 843.343101][ C1] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 843.343140][ C1] ? rcu_is_watching+0x15/0xb0 [ 843.360580][T15050] truncated [ 843.364555][ C1] ? qdisc_reset+0x3bf/0x5b0 [ 843.364604][ C1] ? __qdisc_destroy+0x165/0x410 [ 843.364638][ C1] ? dev_shutdown+0x9b/0x440 [ 843.364675][ C1] ? unregister_netdevice_many_notify+0x977/0x16b0 [ 843.381712][T15050] loop4: p212 start 8388612 is beyond EOD, [ 843.384176][ C1] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 843.401148][T15050] truncated [ 843.409492][ C1] ? unregister_netdevice_queue+0x26b/0x370 [ 843.409540][ C1] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 843.446967][T15050] loop4: p213 start 8388612 is beyond EOD, [ 843.456093][ C1] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 843.456145][ C1] ? default_device_exit_batch+0xa0f/0xa90 [ 843.456191][ C1] ? __pfx___might_resched+0x10/0x10 [ 843.456223][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 843.456263][ C1] ? cfg802154_pernet_exit+0xc3/0xe0 [ 843.456298][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 843.456334][ C1] ? cleanup_net+0x89d/0xcc0 [ 843.456371][ C1] ? __pfx_cleanup_net+0x10/0x10 [ 843.456417][ C1] ? process_scheduled_works+0x945/0x1830 [ 843.456447][ C1] ? process_scheduled_works+0xa2c/0x1830 [ 843.456507][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 843.456548][ C1] ? assign_work+0x364/0x3d0 [ 843.492055][T15050] truncated [ 843.495717][ C1] ? worker_thread+0x86d/0xd50 [ 843.510431][T15050] loop4: p214 start 8388612 is beyond EOD, [ 843.515305][ C1] ? __kthread_parkme+0x169/0x1d0 [ 843.515353][ C1] ? __pfx_worker_thread+0x10/0x10 [ 843.534170][T15050] truncated [ 843.534928][ C1] ? kthread+0x2f0/0x390 [ 843.540432][T15050] loop4: p215 start 8388612 is beyond EOD, [ 843.548699][ C1] ? __pfx_worker_thread+0x10/0x10 [ 843.548735][ C1] ? __pfx_kthread+0x10/0x10 [ 843.548769][ C1] ? ret_from_fork+0x4b/0x80 [ 843.548799][ C1] ? __pfx_kthread+0x10/0x10 [ 843.548833][ C1] ? ret_from_fork_asm+0x1a/0x30 [ 843.548887][ C1] [ 843.548899][ C1] DEBUG: waiting rtnl_mutex for 3358 jiffies. [ 843.548914][ C1] task:syz-executor.1 state:D stack:21024 pid:14929 tgid:14929 ppid:14915 flags:0x00004002 [ 843.548959][ C1] Call Trace: [ 843.548969][ C1] [ 843.548985][ C1] __schedule+0x17e8/0x4a20 [ 843.588944][T15050] truncated [ 843.589006][ C1] ? __pfx___schedule+0x10/0x10 [ 843.618737][T15050] loop4: p216 start 8388612 is beyond EOD, [ 843.624856][ C1] ? __pfx_lock_release+0x10/0x10 [ 843.624900][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 843.624949][ C1] ? schedule+0x90/0x320 [ 843.632378][T15050] truncated [ 843.641225][ C1] schedule+0x14b/0x320 [ 843.651043][T15050] loop4: p217 start 8388612 is beyond EOD, [ 843.652321][ C1] schedule_preempt_disabled+0x13/0x30 [ 843.652358][ C1] __mutex_lock+0x6a4/0xd70 [ 843.652390][ C1] ? rcu_is_watching+0x15/0xb0 [ 843.652431][ C1] ? __mutex_lock+0x527/0xd70 [ 843.652466][ C1] ? rtnetlink_rcv_msg+0x839/0x1170 [ 843.652499][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 843.677383][T15050] truncated [ 843.682507][ C1] ? rtnl_lock+0xe7/0x130 [ 843.682549][ C1] rtnetlink_rcv_msg+0x839/0x1170 [ 843.682585][ C1] ? rtnetlink_rcv_msg+0x208/0x1170 [ 843.682619][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 843.682654][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 843.682694][ C1] ? __pfx_validate_chain+0x10/0x10 [ 843.682731][ C1] ? __pfx_validate_chain+0x10/0x10 [ 843.682769][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 843.682800][ C1] ? finish_task_switch+0x1e5/0x870 [ 843.682837][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 843.682879][ C1] ? mark_lock+0x9a/0x360 [ 843.682911][ C1] ? __pfx_validate_chain+0x10/0x10 [ 843.682949][ C1] ? __lock_acquire+0x1359/0x2000 [ 843.682997][ C1] ? mark_lock+0x9a/0x360 [ 843.696731][T15050] loop4: p218 start 8388612 is beyond EOD, [ 843.697084][ C1] ? __lock_acquire+0x1359/0x2000 [ 843.704649][T15050] truncated [ 843.708531][ C1] netlink_rcv_skb+0x1e3/0x430 [ 843.720240][T15050] loop4: p219 start 8388612 is beyond EOD, [ 843.725952][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 843.725994][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 843.726051][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 843.738376][T15050] truncated [ 843.742460][ C1] netlink_unicast+0x7f0/0x990 [ 843.742508][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 843.747859][T15050] loop4: p220 start 8388612 is beyond EOD, [ 843.753769][ C1] ? __virt_addr_valid+0x183/0x520 [ 843.753815][ C1] ? __check_object_size+0x49c/0x900 [ 843.753849][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 843.753886][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 843.753933][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 843.753969][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 843.753998][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 843.754030][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 843.754066][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 843.754095][ C1] __sock_sendmsg+0x221/0x270 [ 843.776047][T15050] truncated [ 843.779262][ C1] __sys_sendto+0x3a4/0x4f0 [ 843.833315][T15050] loop4: p221 start 8388612 is beyond EOD, [ 843.833632][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 843.838026][T15050] truncated [ 843.838041][T15050] loop4: p222 start 8388612 is beyond EOD, [ 843.843109][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 843.843152][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 843.843193][ C1] __x64_sys_sendto+0xde/0x100 [ 843.843234][ C1] do_syscall_64+0xf3/0x230 [ 843.843261][ C1] ? clear_bhb_loop+0x35/0x90 [ 843.843293][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 843.843322][ C1] RIP: 0033:0x7fb0d247ed9c [ 843.843345][ C1] RSP: 002b:00007ffcec5a7f50 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 843.843374][ C1] RAX: ffffffffffffffda RBX: 00007fb0d30e4620 RCX: 00007fb0d247ed9c [ 843.843394][ C1] RDX: 0000000000000038 RSI: 00007fb0d30e4670 RDI: 0000000000000003 [ 843.843412][ C1] RBP: 0000000000000000 R08: 00007ffcec5a7fa4 R09: 000000000000000c [ 843.872409][T15050] truncated [ 843.875177][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 843.880252][T15050] loop4: p223 start 8388612 is beyond EOD, [ 843.884342][ C1] R13: 0000000000000000 R14: 00007fb0d30e4670 R15: 0000000000000000 [ 843.884384][ C1] [ 843.884397][ C1] DEBUG: waiting rtnl_mutex for 3243 jiffies. [ 843.884411][ C1] task:kworker/0:7 state:D stack:21304 pid:5179 tgid:5179 ppid:2 flags:0x00004000 [ 843.884456][ C1] Workqueue: events linkwatch_event [ 843.884498][ C1] Call Trace: [ 843.916939][T15050] truncated [ 843.917460][ C1] [ 843.952500][T15050] loop4: p224 start 8388612 is beyond EOD, [ 843.953867][ C1] __schedule+0x17e8/0x4a20 [ 843.958071][T15050] truncated [ 843.958084][T15050] loop4: p225 start 8388612 is beyond EOD, [ 843.962274][ C1] ? __pfx___schedule+0x10/0x10 [ 843.962309][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 843.962342][ C1] ? __pfx_lock_release+0x10/0x10 [ 843.962373][ C1] ? kick_pool+0x45c/0x620 [ 843.962412][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 843.996588][T15050] truncated [ 844.001588][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 844.028775][T15050] loop4: p226 start 8388612 is beyond EOD, [ 844.033978][ C1] ? schedule+0x90/0x320 [ 844.034017][ C1] schedule+0x14b/0x320 [ 844.034048][ C1] schedule_preempt_disabled+0x13/0x30 [ 844.034080][ C1] __mutex_lock+0x6a4/0xd70 [ 844.034118][ C1] ? __mutex_lock+0x527/0xd70 [ 844.034154][ C1] ? linkwatch_event+0xe/0x60 [ 844.034189][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 844.034234][ C1] ? process_scheduled_works+0x945/0x1830 [ 844.034263][ C1] ? rtnl_lock+0xe7/0x130 [ 844.034296][ C1] ? process_scheduled_works+0x945/0x1830 [ 844.034326][ C1] linkwatch_event+0xe/0x60 [ 844.034357][ C1] process_scheduled_works+0xa2c/0x1830 [ 844.034417][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 844.052269][T15050] truncated [ 844.054401][ C1] ? assign_work+0x364/0x3d0 [ 844.059378][T15050] loop4: p227 start 8388612 is beyond EOD, [ 844.063748][ C1] worker_thread+0x86d/0xd50 [ 844.063803][ C1] ? __kthread_parkme+0x169/0x1d0 [ 844.063839][ C1] ? __pfx_worker_thread+0x10/0x10 [ 844.063869][ C1] kthread+0x2f0/0x390 [ 844.063908][ C1] ? __pfx_worker_thread+0x10/0x10 [ 844.063940][ C1] ? __pfx_kthread+0x10/0x10 [ 844.092341][T15050] truncated [ 844.094587][ C1] ret_from_fork+0x4b/0x80 [ 844.099839][T15050] loop4: p228 start 8388612 is beyond EOD, [ 844.104971][ C1] ? __pfx_kthread+0x10/0x10 [ 844.105013][ C1] ret_from_fork_asm+0x1a/0x30 [ 844.105065][ C1] [ 844.105077][ C1] DEBUG: waiting rtnl_mutex for 3105 jiffies. [ 844.105093][ C1] task:syz-executor.0 state:D [ 844.141379][T15050] truncated [ 844.146663][ C1] stack:26112 pid:15061 tgid:15059 ppid:6308 flags:0x00000006 [ 844.146692][ C1] Call Trace: [ 844.146703][ C1] [ 844.146719][ C1] __schedule+0x17e8/0x4a20 [ 844.146780][ C1] ? __pfx___schedule+0x10/0x10 [ 844.146816][ C1] ? __pfx_lock_release+0x10/0x10 [ 844.179422][T15050] loop4: p229 start 8388612 is beyond EOD, [ 844.182750][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 844.182808][ C1] ? schedule+0x90/0x320 [ 844.182839][ C1] schedule+0x14b/0x320 [ 844.182874][ C1] schedule_preempt_disabled+0x13/0x30 [ 844.187628][T15050] truncated [ 844.193642][ C1] __mutex_lock+0x6a4/0xd70 [ 844.193687][ C1] ? __mutex_lock+0x527/0xd70 [ 844.193722][ C1] ? nl80211_pre_doit+0x5f/0x8b0 [ 844.193760][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 844.193809][ C1] ? rtnl_lock+0xe7/0x130 [ 844.193843][ C1] nl80211_pre_doit+0x5f/0x8b0 [ 844.193884][ C1] genl_rcv_msg+0xaaa/0xec0 [ 844.212255][T15050] loop4: p230 start 8388612 is beyond EOD, [ 844.214762][ C1] ? mark_lock+0x9a/0x360 [ 844.232144][T15050] truncated [ 844.238815][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 844.273377][T15050] loop4: p231 start 8388612 is beyond EOD, [ 844.274928][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 844.277796][T15050] truncated [ 844.277808][T15050] loop4: p232 start 8388612 is beyond EOD, [ 844.282330][ C1] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 844.282368][ C1] ? __pfx_nl80211_tx_mgmt+0x10/0x10 [ 844.282404][ C1] ? __pfx_nl80211_post_doit+0x10/0x10 [ 844.282441][ C1] ? __pfx___might_resched+0x10/0x10 [ 844.282482][ C1] netlink_rcv_skb+0x1e3/0x430 [ 844.312179][T15050] truncated [ 844.313543][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 844.317750][T15050] loop4: p233 start 8388612 is beyond EOD, [ 844.321923][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 844.368269][T15050] truncated [ 844.372597][ C1] ? __netlink_deliver_tap+0x77e/0x7c0 [ 844.372656][ C1] genl_rcv+0x28/0x40 [ 844.372689][ C1] netlink_unicast+0x7f0/0x990 [ 844.372727][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 844.372751][ C1] ? __virt_addr_valid+0x183/0x520 [ 844.372791][ C1] ? __check_object_size+0x49c/0x900 [ 844.372826][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 844.402838][T15050] loop4: p234 start 8388612 is beyond EOD, [ 844.407426][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 844.422248][T15050] truncated [ 844.425863][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 844.428836][T15050] loop4: p235 start 8388612 is beyond EOD, [ 844.434928][ C1] ? __import_iovec+0x536/0x820 [ 844.434959][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 844.434986][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 844.435021][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 844.435056][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 844.435087][ C1] __sock_sendmsg+0x221/0x270 [ 844.435121][ C1] ____sys_sendmsg+0x525/0x7d0 [ 844.435154][ C1] ? __pfx_____sys_sendmsg+0x10/0x10 [ 844.435194][ C1] __sys_sendmsg+0x2b0/0x3a0 [ 844.435219][ C1] ? __pfx___sys_sendmsg+0x10/0x10 [ 844.435291][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 844.435324][ C1] ? do_syscall_64+0x100/0x230 [ 844.435353][ C1] ? do_syscall_64+0xb6/0x230 [ 844.482352][T15050] truncated [ 844.485685][ C1] do_syscall_64+0xf3/0x230 [ 844.490152][T15050] loop4: p236 start 8388612 is beyond EOD, [ 844.494848][ C1] ? clear_bhb_loop+0x35/0x90 [ 844.494885][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 844.494914][ C1] RIP: 0033:0x7f287bc7d0a9 [ 844.494936][ C1] RSP: 002b:00007f287ca640c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 844.494966][ C1] RAX: ffffffffffffffda RBX: 00007f287bdb3f80 RCX: 00007f287bc7d0a9 [ 844.494986][ C1] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 844.495003][ C1] RBP: 00007f287bcec074 R08: 0000000000000000 R09: 0000000000000000 [ 844.495019][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 844.495035][ C1] R13: 000000000000000b R14: 00007f287bdb3f80 R15: 00007ffcb612a7a8 [ 844.495071][ C1] [ 844.495085][ C1] DEBUG: waiting rtnl_mutex for 3069 jiffies. [ 844.495100][ C1] task:syz-executor.2 state:D stack:27072 pid:15065 tgid:15064 ppid:11843 flags:0x00004006 [ 844.533313][T15050] truncated [ 844.538595][ C1] Call Trace: [ 844.562079][T15050] loop4: p237 start 8388612 is beyond EOD, [ 844.564592][ C1] [ 844.569844][T15050] truncated [ 844.575324][ C1] __schedule+0x17e8/0x4a20 [ 844.575386][ C1] ? __pfx___schedule+0x10/0x10 [ 844.575421][ C1] ? __pfx_lock_release+0x10/0x10 [ 844.575456][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 844.575507][ C1] ? schedule+0x90/0x320 [ 844.575535][ C1] schedule+0x14b/0x320 [ 844.575569][ C1] schedule_preempt_disabled+0x13/0x30 [ 844.575598][ C1] __mutex_lock+0x6a4/0xd70 [ 844.603419][T15050] loop4: p238 start 8388612 is beyond EOD, [ 844.605294][ C1] ? __mutex_lock+0x527/0xd70 [ 844.610009][T15050] truncated [ 844.610022][T15050] loop4: p239 start 8388612 is beyond EOD, [ 844.615318][ C1] ? register_nexthop_notifier+0x84/0x290 [ 844.615357][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 844.615403][ C1] ? rtnl_lock+0xe7/0x130 [ 844.615440][ C1] register_nexthop_notifier+0x84/0x290 [ 844.615471][ C1] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 844.615511][ C1] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 844.648370][T15050] truncated [ 844.650899][ C1] ? __asan_memset+0x23/0x50 [ 844.659303][T15050] loop4: p240 start 8388612 is beyond EOD, [ 844.660842][ C1] ops_init+0x359/0x610 [ 844.690998][T15050] truncated [ 844.691119][ C1] setup_net+0x515/0xca0 [ 844.704457][T15050] loop4: p241 start 8388612 is beyond EOD, [ 844.709920][ C1] ? __pfx_down_read_killable+0x10/0x10 [ 844.761184][T15050] truncated [ 844.769478][ C1] ? __pfx_setup_net+0x10/0x10 [ 844.769535][ C1] copy_net_ns+0x4e2/0x7b0 [ 844.769574][ C1] create_new_namespaces+0x425/0x7b0 [ 844.774586][ T5136] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 844.775840][ C1] ? bpf_lsm_capable+0x9/0x10 [ 844.787405][ T5136] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 844.790661][ C1] unshare_nsproxy_namespaces+0x124/0x180 [ 844.799196][ T5136] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 844.800466][ C1] ksys_unshare+0x619/0xc10 [ 844.806335][ T5136] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 844.810255][ C1] ? __pfx_ksys_unshare+0x10/0x10 [ 844.816081][ T5136] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 844.819471][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 844.827117][ T5136] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 844.830441][ C1] ? do_syscall_64+0x100/0x230 [ 844.876063][T15050] loop4: p242 start 8388612 is beyond EOD, [ 844.880383][ C1] __x64_sys_unshare+0x38/0x40 [ 844.899337][T15050] truncated [ 844.900879][ C1] do_syscall_64+0xf3/0x230 [ 844.911794][T15050] loop4: p243 start 8388612 is beyond EOD, [ 844.911910][ C1] ? clear_bhb_loop+0x35/0x90 [ 844.917090][T15050] truncated [ 844.921468][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 844.926276][T15050] loop4: p244 start 8388612 is beyond EOD, [ 844.930656][ C1] RIP: 0033:0x7fd6c6e7d0a9 [ 844.944232][T15050] truncated [ 844.949514][ C1] RSP: 002b:00007fd6c7b1a0c8 EFLAGS: 00000246 [ 844.957905][T15050] loop4: p245 start 8388612 is beyond EOD, [ 844.965603][ C1] ORIG_RAX: 0000000000000110 [ 844.965623][ C1] RAX: ffffffffffffffda RBX: 00007fd6c6fb3f80 RCX: 00007fd6c6e7d0a9 [ 844.965642][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068040200 [ 844.965659][ C1] RBP: 00007fd6c6eec074 R08: 0000000000000000 R09: 0000000000000000 [ 844.965676][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 844.965692][ C1] R13: 000000000000000b R14: 00007fd6c6fb3f80 R15: 00007ffc5418cb78 [ 844.965730][ C1] [ 844.965743][ C1] DEBUG: waiting rtnl_mutex for 2637 jiffies. [ 844.965758][ C1] task:syz-executor.3 state:D stack:28528 pid:15083 tgid:15082 ppid:5124 flags:0x00000006 [ 844.965800][ C1] Call Trace: [ 844.965812][ C1] [ 844.965836][ C1] __schedule+0x17e8/0x4a20 [ 844.965896][ C1] ? __pfx___schedule+0x10/0x10 [ 844.965930][ C1] ? __pfx_lock_release+0x10/0x10 [ 844.965964][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 844.966015][ C1] ? schedule+0x90/0x320 [ 844.966043][ C1] schedule+0x14b/0x320 [ 844.966077][ C1] schedule_preempt_disabled+0x13/0x30 [ 844.966108][ C1] __mutex_lock+0x6a4/0xd70 [ 844.966147][ C1] ? __mutex_lock+0x527/0xd70 [ 844.966183][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 844.966214][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 844.966261][ C1] ? rtnl_lock+0xe7/0x130 [ 844.966297][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 844.966325][ C1] ? schedule+0x90/0x320 [ 844.966353][ C1] ? schedule+0x90/0x320 [ 844.966394][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 844.966439][ C1] ? __lock_acquire+0x1359/0x2000 [ 844.966480][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 844.966521][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 844.966551][ C1] ? aa_sk_perm+0x967/0xab0 [ 844.966598][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 844.966640][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 844.966671][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 844.966701][ C1] ip_setsockopt+0x63/0x100 [ 844.966731][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 844.966763][ C1] do_sock_setsockopt+0x3af/0x720 [ 844.966808][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 844.966852][ C1] ? __fget_files+0x29/0x470 [ 844.966885][ C1] ? __fget_files+0x3f6/0x470 [ 844.966931][ C1] __sys_setsockopt+0x1ae/0x250 [ 844.966974][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 844.967016][ C1] do_syscall_64+0xf3/0x230 [ 844.967041][ C1] ? clear_bhb_loop+0x35/0x90 [ 844.967075][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 844.967103][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 844.967125][ C1] RSP: 002b:00007f3d1f1e60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 844.967154][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b3f80 RCX: 00007f3d1e47d0a9 [ 844.967175][ C1] RDX: 00000000000000c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 844.967192][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000004 R09: 0000000000000000 [ 844.967209][ C1] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000000 [ 844.967227][ C1] R13: 000000000000000b R14: 00007f3d1e5b3f80 R15: 00007ffcff745198 [ 844.967265][ C1] [ 844.967276][ C1] DEBUG: waiting rtnl_mutex for 2629 jiffies. [ 844.967291][ C1] task:syz-executor.3 state:D stack:23800 pid:15084 tgid:15082 ppid:5124 flags:0x00000006 [ 844.967335][ C1] Call Trace: [ 844.967346][ C1] [ 844.967362][ C1] __schedule+0x17e8/0x4a20 [ 844.967419][ C1] ? __pfx___schedule+0x10/0x10 [ 844.967454][ C1] ? __pfx_lock_release+0x10/0x10 [ 844.967488][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 844.967538][ C1] ? schedule+0x90/0x320 [ 844.967567][ C1] schedule+0x14b/0x320 [ 844.967600][ C1] schedule_preempt_disabled+0x13/0x30 [ 844.967630][ C1] __mutex_lock+0x6a4/0xd70 [ 844.967669][ C1] ? __mutex_lock+0x527/0xd70 [ 844.967704][ C1] ? ip_mroute_setsockopt+0x15b/0x1190 [ 844.967735][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 844.967775][ C1] ? preempt_schedule+0xe1/0xf0 [ 844.967805][ C1] ? __pfx_preempt_schedule+0x10/0x10 [ 844.967845][ C1] ? rtnl_lock+0xe7/0x130 [ 844.967880][ C1] ip_mroute_setsockopt+0x15b/0x1190 [ 844.967922][ C1] ? try_to_wake_up+0x9a1/0x1470 [ 844.967957][ C1] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 844.968001][ C1] ? __lock_acquire+0x1359/0x2000 [ 844.968042][ C1] do_ip_setsockopt+0x129f/0x3cd0 [ 844.968082][ C1] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 844.968110][ C1] ? aa_sk_perm+0x967/0xab0 [ 844.968155][ C1] ? __pfx_aa_sk_perm+0x10/0x10 [ 844.968193][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 844.968225][ C1] ? aa_sock_opt_perm+0x79/0x120 [ 844.968253][ C1] ip_setsockopt+0x63/0x100 [ 844.968282][ C1] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 844.968313][ C1] do_sock_setsockopt+0x3af/0x720 [ 844.968358][ C1] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 844.968392][ C1] ? __fget_files+0x29/0x470 [ 844.968425][ C1] ? __fget_files+0x3f6/0x470 [ 844.968469][ C1] __sys_setsockopt+0x1ae/0x250 [ 844.983718][T15050] truncated [ 844.984548][ C1] __x64_sys_setsockopt+0xb5/0xd0 [ 844.996618][T15050] loop4: p246 start 8388612 is beyond EOD, [ 845.001727][ C1] do_syscall_64+0xf3/0x230 [ 845.028637][T15050] truncated [ 845.032990][ C1] ? clear_bhb_loop+0x35/0x90 [ 845.033030][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 845.033059][ C1] RIP: 0033:0x7f3d1e47d0a9 [ 845.033082][ C1] RSP: 002b:00007f3d1f1c50c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 845.033112][ C1] RAX: ffffffffffffffda RBX: 00007f3d1e5b4050 RCX: 00007f3d1e47d0a9 [ 845.033131][ C1] RDX: 00000000000000ca RSI: 0000000000000000 RDI: 0000000000000003 [ 845.033149][ C1] RBP: 00007f3d1e4ec074 R08: 0000000000000010 R09: 0000000000000000 [ 845.038755][T15050] loop4: p247 start 8388612 is beyond EOD, [ 845.042867][ C1] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000000 [ 845.042890][ C1] R13: 000000000000006e R14: 00007f3d1e5b4050 R15: 00007ffcff745198 [ 845.042926][ C1] [ 845.042939][ C1] DEBUG: waiting rtnl_mutex for 1544 jiffies. [ 845.042954][ C1] task:kworker/u8:11 state:D stack:22624 pid:3724 tgid:3724 ppid:2 flags:0x00004000 [ 845.043000][ C1] Workqueue: ipv6_addrconf addrconf_verify_work [ 845.043043][ C1] Call Trace: [ 845.043054][ C1] [ 845.043072][ C1] __schedule+0x17e8/0x4a20 [ 845.043129][ C1] ? __pfx___schedule+0x10/0x10 [ 845.043164][ C1] ? __pfx_lock_release+0x10/0x10 [ 845.043198][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 845.053671][T15050] truncated [ 845.057390][ C1] ? kthread_data+0x52/0xd0 [ 845.077075][T15050] loop4: p248 start 8388612 is beyond EOD, [ 845.082345][ C1] ? schedule+0x90/0x320 [ 845.082384][ C1] ? wq_worker_sleeping+0x66/0x240 [ 845.082419][ C1] ? schedule+0x90/0x320 [ 845.082447][ C1] schedule+0x14b/0x320 [ 845.082482][ C1] schedule_preempt_disabled+0x13/0x30 [ 845.082512][ C1] __mutex_lock+0x6a4/0xd70 [ 845.086751][T15050] truncated [ 845.090993][ C1] ? __mutex_lock+0x527/0xd70 [ 845.091031][ C1] ? addrconf_verify_work+0x19/0x30 [ 845.091070][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 845.091101][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 845.091139][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 845.103001][T15050] loop4: p249 start 8388612 is beyond EOD, [ 845.107055][ C1] ? process_scheduled_works+0x945/0x1830 [ 845.117361][T15050] truncated [ 845.121992][ C1] ? rtnl_lock+0xe7/0x130 [ 845.122033][ C1] ? process_scheduled_works+0x945/0x1830 [ 845.122062][ C1] addrconf_verify_work+0x19/0x30 [ 845.122101][ C1] process_scheduled_works+0xa2c/0x1830 [ 845.122166][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 845.128431][T15050] loop4: p250 start 8388612 is beyond EOD, [ 845.132164][ C1] ? assign_work+0x364/0x3d0 [ 845.132205][ C1] worker_thread+0x86d/0xd50 [ 845.132255][ C1] ? __kthread_parkme+0x169/0x1d0 [ 845.132292][ C1] ? __pfx_worker_thread+0x10/0x10 [ 845.132322][ C1] kthread+0x2f0/0x390 [ 845.132357][ C1] ? __pfx_worker_thread+0x10/0x10 [ 845.132387][ C1] ? __pfx_kthread+0x10/0x10 [ 845.141524][T15050] truncated [ 845.143108][ C1] ret_from_fork+0x4b/0x80 [ 845.143146][ C1] ? __pfx_kthread+0x10/0x10 [ 845.143182][ C1] ret_from_fork_asm+0x1a/0x30 [ 845.143236][ C1] [ 845.143253][ C1] [ 845.143253][ C1] Showing all locks held in the system: [ 845.148278][T15050] loop4: p251 start 8388612 is beyond EOD, [ 845.153938][ C1] 4 locks held by kworker/u8:0/11: [ 845.153958][ C1] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 845.154037][ C1] #1: ffffc90000107d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 845.154107][ C1] #2: ffff8880117c8768 (&rdev->wiphy.mtx [ 845.165704][T15050] truncated [ 845.168340][ C1] ){+.+.}-{3:3} [ 845.175942][T15050] loop4: p252 start 8388612 is beyond EOD, [ 845.177882][ C1] , at: cfg80211_wiphy_work+0xd9/0x490 [ 845.182800][T15050] truncated [ 845.188460][ C1] #3: [ 845.217352][T15050] loop4: p253 start 8388612 is beyond EOD, [ 845.225372][ C1] ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 845.225465][ C1] 2 locks held by kworker/u8:5/82: [ 845.225482][ C1] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 845.225556][ C1] #1: ffffc9000232fd00 ((work_completion)(&(&kfence_timer)->work)){+.+.}-{0:0} [ 845.239408][T15050] truncated [ 845.241553][ C1] , at: process_scheduled_works+0x945/0x1830 [ 845.244798][T15050] loop4: p254 start 8388612 is beyond EOD, [ 845.250706][ C1] 3 locks held by kworker/u8:11/3724: [ 845.266980][T15050] truncated [ 845.267105][ C1] #0: [ 845.271598][T15050] loop4: p255 start 8388612 is beyond EOD, [ 845.276464][ C1] ffff888029dd8948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 845.276552][ C1] #1: ffffc9000b207d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 845.276627][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30 [ 845.276707][ C1] 5 locks held by kworker/u8:13/3751: [ 845.289389][T15050] truncated [ 845.291477][ C1] #0: [ 869.926803][ T19] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 1-.... } 2672 jiffies s: 80697 root: 0x2/. [ 869.926854][ T19] rcu: blocking rcu_node structures (internal RCU debug): [ 869.926876][ T19] Sending NMI from CPU 0 to CPUs 1: [ 869.926912][ C1] NMI backtrace for cpu 1 [ 869.926939][ C1] CPU: 1 UID: 0 PID: 15087 Comm: syz-executor.0 Not tainted 6.10.0-rc4-next-20240621-syzkaller #0 [ 869.926961][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 869.926973][ C1] RIP: 0010:io_serial_in+0x76/0xb0 [ 869.927010][ C1] Code: 40 12 54 fc 89 e9 41 d3 e6 48 83 c3 40 48 89 d8 48 c1 e8 03 42 80 3c 38 00 74 08 48 89 df e8 41 79 ba fc 44 03 33 44 89 f2 ec <0f> b6 c0 5b 41 5e 41 5f 5d c3 cc cc cc cc 89 e9 80 e1 07 38 c1 7c [ 869.927027][ C1] RSP: 0018:ffffc90000a183f8 EFLAGS: 00000002 [ 869.927044][ C1] RAX: 1ffffffff2961100 RBX: ffffffff94b08b80 RCX: 0000000000000000 [ 869.927058][ C1] RDX: 00000000000003fd RSI: 0000000000000000 RDI: 0000000000000020 [ 869.927070][ C1] RBP: 0000000000000000 R08: ffffffff853f6886 R09: 1ffff11003f75046 [ 869.927084][ C1] R10: dffffc0000000000 R11: ffffffff853f6840 R12: dffffc0000000000 [ 869.927098][ C1] R13: ffffffff9481cbc0 R14: 00000000000003fd R15: dffffc0000000000 [ 869.927112][ C1] FS: 000055556e98a480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 869.927129][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 869.927142][ C1] CR2: 00007f9ad7bb4018 CR3: 0000000054a80000 CR4: 00000000003506f0 [ 869.927159][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 869.927170][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 869.927182][ C1] Call Trace: [ 869.927190][ C1] [ 869.927198][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 869.927223][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 869.927250][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 869.927272][ C1] ? nmi_handle+0x2a/0x5a0 [ 869.927298][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 869.927320][ C1] ? nmi_handle+0x14f/0x5a0 [ 869.927336][ C1] ? nmi_handle+0x2a/0x5a0 [ 869.927354][ C1] ? io_serial_in+0x76/0xb0 [ 869.927381][ C1] ? default_do_nmi+0x63/0x160 [ 869.927405][ C1] ? exc_nmi+0x123/0x1f0 [ 869.927427][ C1] ? end_repeat_nmi+0xf/0x53 [ 869.927451][ C1] ? __pfx_io_serial_in+0x10/0x10 [ 869.927479][ C1] ? io_serial_in+0x46/0xb0 [ 869.927507][ C1] ? io_serial_in+0x76/0xb0 [ 869.927534][ C1] ? io_serial_in+0x76/0xb0 [ 869.927563][ C1] ? io_serial_in+0x76/0xb0 [ 869.927590][ C1] [ 869.927597][ C1] [ 869.927605][ C1] serial8250_console_write+0x1373/0x1ed0 [ 869.927644][ C1] ? __pfx_serial8250_console_write+0x10/0x10 [ 869.927678][ C1] ? __pfx_lock_release+0x10/0x10 [ 869.927701][ C1] ? do_raw_spin_lock+0x14f/0x370 [ 869.927726][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 869.927748][ C1] ? __pfx_univ8250_console_write+0x10/0x10 [ 869.927772][ C1] console_flush_all+0x880/0xf50 [ 869.927795][ C1] ? mark_lock+0x9a/0x360 [ 869.927819][ C1] ? console_flush_all+0x147/0xf50 [ 869.927842][ C1] ? __pfx_console_flush_all+0x10/0x10 [ 869.927874][ C1] console_unlock+0x13b/0x4d0 [ 869.927895][ C1] ? __pfx_console_unlock+0x10/0x10 [ 869.927916][ C1] ? vprintk_emit+0x470/0x900 [ 869.927937][ C1] ? vprintk_emit+0x761/0x900 [ 869.927957][ C1] vprintk_emit+0x7a1/0x900 [ 869.927978][ C1] ? __pfx_vprintk_emit+0x10/0x10 [ 869.927997][ C1] ? __wake_up_klogd+0x109/0x140 [ 869.928018][ C1] ? __pfx__printk+0x10/0x10 [ 869.928051][ C1] _printk+0xd5/0x120 [ 869.928080][ C1] ? __wake_up_klogd+0x109/0x140 [ 869.928101][ C1] ? __pfx__printk+0x10/0x10 [ 869.928129][ C1] ? __pfx__printk+0x10/0x10 [ 869.928155][ C1] ? sched_show_task+0x580/0x740 [ 869.928180][ C1] lockdep_print_held_locks+0x13e/0x210 [ 869.928209][ C1] debug_show_all_locks+0x197/0x2a0 [ 869.928234][ C1] ? debug_show_all_locks+0x55/0x2a0 [ 869.928261][ C1] report_rtnl_holders+0x1ec/0x2d0 [ 869.928282][ C1] ? report_rtnl_holders+0x20/0x2d0 [ 869.928304][ C1] call_timer_fn+0x18e/0x650 [ 869.928321][ C1] ? __pfx_report_rtnl_holders+0x10/0x10 [ 869.928341][ C1] ? call_timer_fn+0xc0/0x650 [ 869.928357][ C1] ? __pfx_report_rtnl_holders+0x10/0x10 [ 869.928377][ C1] ? __pfx_call_timer_fn+0x10/0x10 [ 869.928397][ C1] ? __pfx_report_rtnl_holders+0x10/0x10 [ 869.928418][ C1] ? __pfx_report_rtnl_holders+0x10/0x10 [ 869.928438][ C1] ? __pfx_report_rtnl_holders+0x10/0x10 [ 869.928458][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 869.928479][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 869.928506][ C1] ? __pfx_report_rtnl_holders+0x10/0x10 [ 869.928527][ C1] __run_timer_base+0x66a/0x8e0 [ 869.928562][ C1] ? __pfx___run_timer_base+0x10/0x10 [ 869.928592][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 869.928621][ C1] run_timer_softirq+0xb7/0x170 [ 869.928649][ C1] handle_softirqs+0x2c4/0x970 [ 869.928679][ C1] ? __irq_exit_rcu+0xf4/0x1c0 [ 869.928704][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 869.928729][ C1] ? irqtime_account_irq+0xd4/0x1e0 [ 869.928756][ C1] __irq_exit_rcu+0xf4/0x1c0 [ 869.928779][ C1] ? __pfx___irq_exit_rcu+0x10/0x10 [ 869.928806][ C1] irq_exit_rcu+0x9/0x30 [ 869.928826][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 869.928855][ C1] [ 869.928861][ C1] [ 869.928868][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 869.928892][ C1] RIP: 0010:__asan_memset+0x1e/0x50 [ 869.928921][ C1] Code: 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 41 56 53 48 89 d3 41 89 f6 48 89 fd 48 8b 4c 24 18 48 89 d6 ba 01 00 00 00 fd e5 ff ff 84 c0 74 12 48 89 ef 44 89 f6 48 89 da 5b 41 5e 5d [ 869.928938][ C1] RSP: 0018:ffffc90009c67388 EFLAGS: 00000246 [ 869.928954][ C1] RAX: ffffc90009c67f58 RBX: 0000000000000010 RCX: ffffffff81410a4b [ 869.928968][ C1] RDX: 0000000000000001 RSI: 0000000000000010 RDI: ffffc90009c674d0 [ 869.928981][ C1] RBP: ffffc90009c674d0 R08: ffffffff8141073d R09: ffffffff81410696 [ 869.928996][ C1] R10: 0000000000000003 R11: ffff88802dbeda00 R12: ffffc90009c67f50 [ 869.929010][ C1] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffff9200138ce90 [ 869.929027][ C1] ? unwind_next_frame+0xff6/0x2a00 [ 869.929054][ C1] ? unwind_next_frame+0x109d/0x2a00 [ 869.929080][ C1] ? unwind_next_frame+0x13ab/0x2a00 [ 869.929112][ C1] unwind_next_frame+0x13ab/0x2a00 [ 869.929145][ C1] ? do_syscall_64+0xf3/0x230 [ 869.929164][ C1] ? do_syscall_64+0xf3/0x230 [ 869.929182][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 869.929207][ C1] arch_stack_walk+0x151/0x1b0 [ 869.929229][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 869.929254][ C1] stack_trace_save+0x118/0x1d0 [ 869.929279][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 869.929311][ C1] save_stack+0xfb/0x1f0 [ 869.929336][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 869.929360][ C1] ? __pfx_save_stack+0x10/0x10 [ 869.929384][ C1] ? post_alloc_hook+0x1f3/0x230 [ 869.929407][ C1] ? get_page_from_freelist+0x2ccb/0x2d80 [ 869.929433][ C1] ? __alloc_pages_noprof+0x256/0x6c0 [ 869.929458][ C1] ? alloc_pages_mpol_noprof+0x3e8/0x680 [ 869.929482][ C1] ? __vmalloc_node_range_noprof+0x971/0x1460 [ 869.929511][ C1] ? vmalloc_user_noprof+0x74/0x80 [ 869.929527][ C1] ? kcov_ioctl+0x59/0x640 [ 869.929552][ C1] ? __se_sys_ioctl+0xfc/0x170 [ 869.929571][ C1] ? do_syscall_64+0xf3/0x230 [ 869.929598][ C1] __set_page_owner+0x92/0x800 [ 869.929623][ C1] ? __pfx_seqcount_lockdep_reader_access+0x10/0x10 [ 869.929645][ C1] ? get_page_from_freelist+0x7e5/0x2d80 [ 869.929680][ C1] ? __pfx_lock_release+0x10/0x10 [ 869.929705][ C1] ? __pfx___set_page_owner+0x10/0x10 [ 869.929736][ C1] post_alloc_hook+0x1f3/0x230 [ 869.929762][ C1] get_page_from_freelist+0x2ccb/0x2d80 [ 869.929797][ C1] ? __alloc_pages_noprof+0x166/0x6c0 [ 869.929828][ C1] ? alloc_pages_bulk_noprof+0x729/0xd40 [ 869.929867][ C1] __alloc_pages_noprof+0x256/0x6c0 [ 869.929895][ C1] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 869.929934][ C1] alloc_pages_mpol_noprof+0x3e8/0x680 [ 869.929963][ C1] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 869.929986][ C1] ? rcu_is_watching+0x15/0xb0 [ 869.930014][ C1] ? trace_kmalloc+0x1f/0xd0 [ 869.930039][ C1] ? __vmalloc_node_range_noprof+0x5dd/0x1460 [ 869.930068][ C1] ? alloc_pages_noprof+0xef/0x170 [ 869.930093][ C1] __vmalloc_node_range_noprof+0x971/0x1460 [ 869.930140][ C1] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 869.930177][ C1] vmalloc_user_noprof+0x74/0x80 [ 869.930196][ C1] ? kcov_ioctl+0x59/0x640 [ 869.930220][ C1] kcov_ioctl+0x59/0x640 [ 869.930246][ C1] ? bpf_lsm_file_ioctl+0x9/0x10 [ 869.930264][ C1] ? security_file_ioctl+0x87/0xb0 [ 869.930290][ C1] ? __pfx_kcov_ioctl+0x10/0x10 [ 869.930316][ C1] __se_sys_ioctl+0xfc/0x170 [ 869.930338][ C1] do_syscall_64+0xf3/0x230 [ 869.930356][ C1] ? clear_bhb_loop+0x35/0x90 [ 869.930379][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 869.930400][ C1] RIP: 0033:0x7f9ad7a7ce0b [ 869.930416][ C1] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00 [ 869.930431][ C1] RSP: 002b:00007ffd7336cd50 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 869.930450][ C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f9ad7a7ce0b [ 869.930463][ C1] RDX: 0000000000040000 RSI: ffffffff80086301 RDI: 00000000000000d9 [ 869.930476][ C1] RBP: 00007f9ad7bb40e8 R08: 00000000000000d8 R09: 0000000000000000 [ 869.930488][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd7336d498 [ 869.930500][ C1] R13: 000000000000000c R14: 0000000000000003 R15: 0000000000000001 [ 869.930522][ C1] [ 873.799321][ C1] ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 873.809840][ C1] #1: ffffc9000b6c7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 873.820521][ C1] #2: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 873.830034][ C1] #3: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 873.840108][ C1] #4: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 873.851080][ C1] 3 locks held by kworker/0:3/4841: [ 873.856307][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 873.867330][ C1] #1: ffffc90004007d00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 873.878370][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20 [ 873.888805][ C1] 2 locks held by getty/4859: [ 873.893553][ C1] #0: ffff88802a7640a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 873.903421][ C1] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 873.913633][ C1] 4 locks held by syz-fuzzer/5095: [ 873.918761][ C1] #0: ffff88807ddda848 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x24e/0x310 [ 873.928071][ C1] #1: ffff888078882bd8 (&type->i_mutex_dir_key#3){++++}-{3:3}, at: iterate_dir+0x215/0x810 [ 873.938271][ C1] #2: ffff88802f0ce420 (sb_writers#4){.+.+}-{0:0}, at: iterate_dir+0x620/0x810 [ 873.947389][ C1] #3: ffff88802ebaa950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x203f/0x22a0 [ 873.957103][ C1] 4 locks held by syz-fuzzer/5104: [ 873.962253][ C1] #0: ffff88807dddb4c8 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x24e/0x310 [ 873.971565][ C1] #1: ffff888079a117e8 (&type->i_mutex_dir_key#3){++++}-{3:3}, at: iterate_dir+0x215/0x810 [ 873.981750][ C1] #2: ffff88802f0ce420 (sb_writers#4){.+.+}-{0:0}, at: iterate_dir+0x620/0x810 [ 873.990876][ C1] #3: ffff88802ebaa950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x203f/0x22a0 [ 874.000588][ C1] 4 locks held by kworker/u9:5/5136: [ 874.005923][ C1] #0: ffff888011abc148 ((wq_completion)hci6#2){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 874.017133][ C1] #1: ffffc9000397fd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 874.029234][ C1] #2: ffff88806dec4078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0 [ 874.039242][ C1] #3: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0 [ 874.049831][ C1] 3 locks held by kworker/0:7/5179: [ 874.055070][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 874.066153][ C1] #1: ffffc90004117d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 874.077271][ C1] #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 874.086511][ C1] 3 locks held by syz-executor.2/11843: [ 874.092112][ C1] #0: ffff88806e00cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x203/0x510 [ 874.102144][ C1] #1: ffff88806e00c078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x494/0xf70 [ 874.111792][ C1] #2: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xa6/0x240 [ 874.121858][ C1] 4 locks held by kworker/u9:0/12798: [ 874.127341][ C1] #0: ffff88802f5da148 ((wq_completion)hci5#2){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 874.138367][ C1] #1: ffffc9000b4ffd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 874.150420][ C1] #2: ffff88807b800078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0 [ 874.160411][ C1] #3: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0 [ 874.170910][ C1] 1 lock held by syz-executor.1/14929: [ 874.176416][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 874.186004][ C1] 2 locks held by syz-executor.0/15061: [ 874.191571][ C1] #0: ffffffff8f661470 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 874.200081][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0x5f/0x8b0 [ 874.209475][ C1] 2 locks held by syz-executor.2/15065: [ 874.215092][ C1] #0: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 874.224691][ C1] #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 874.234772][ C1] 1 lock held by syz-executor.3/15083: [ 874.240247][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 874.250074][ C1] 1 lock held by syz-executor.3/15084: [ 874.255600][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190 [ 874.265455][ C1] 3 locks held by syz-executor.0/15087: [ 874.271000][ C1] #0: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 874.281142][ C1] #1: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 874.290960][ C1] #2: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 874.300870][ C1] 1 lock held by syz-executor.4/15088: [ 874.306365][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 874.315902][ C1] 1 lock held by syz-executor.2/15092: [ 874.321362][ C1] #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170 [ 874.330920][ C1] [ 874.333288][ C1] ============================================= [ 874.333288][ C1] 2024/06/22 04:09:48 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 874.358496][ T1247] ieee802154 phy0 wpan0: encryption failed: -22 [ 874.365162][ T1247] ieee802154 phy1 wpan1: encryption failed: -22