BUG: MAX_LOCKDEP_CHAINS too low! turning off the locking correctness validator. CPU: 0 PID: 12674 Comm: kworker/u4:3 Not tainted 5.15.0-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: phy154 ieee80211_iface_work Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106 add_chain_cache kernel/locking/lockdep.c:3637 [inline] lookup_chain_cache_add kernel/locking/lockdep.c:3736 [inline] validate_chain kernel/locking/lockdep.c:3757 [inline] __lock_acquire.cold+0x372/0x3ab kernel/locking/lockdep.c:5015 lock_acquire kernel/locking/lockdep.c:5625 [inline] lock_acquire+0x1ab/0x510 kernel/locking/lockdep.c:5590 do_write_seqcount_begin_nested include/linux/seqlock.h:520 [inline] do_write_seqcount_begin include/linux/seqlock.h:545 [inline] vtime_task_switch_generic+0xb5/0x5a0 kernel/sched/cputime.c:768 vtime_task_switch include/linux/vtime.h:95 [inline] finish_task_switch.isra.0+0x6cf/0xb80 kernel/sched/core.c:4808 context_switch kernel/sched/core.c:4943 [inline] __schedule+0xb4c/0x5960 kernel/sched/core.c:6287 preempt_schedule_irq+0x4e/0x90 kernel/sched/core.c:6687 irqentry_exit+0x31/0x80 kernel/entry/common.c:425 asm_sysvec_reschedule_ipi+0x12/0x20 arch/x86/include/asm/idtentry.h:643 RIP: 0010:ieee80211_sta_get_rates+0x4b5/0x960 net/mac80211/util.c:2122 Code: 85 dd 03 00 00 48 8b 0c 24 4b 8d 04 64 48 8b 51 08 48 b9 00 00 00 00 00 fc ff df 4c 8d 34 82 4c 89 f0 48 c1 e8 03 0f b6 14 08 <4c> 89 f0 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 b2 03 00 00 41 RSP: 0018:ffffc9000ab2f490 EFLAGS: 00000217 RAX: 1ffff1100f080bc3 RBX: 000000000000000a RCX: dffffc0000000000 RDX: 0000000000000000 RSI: ffffffff8893ff02 RDI: 0000000000000003 RBP: 000000000000000c R08: 0000000000000001 R09: 0000000000000002 R10: ffffffff8893fef4 R11: 000000000000007f R12: 0000000000000001 R13: 0000000000000001 R14: ffff888078405e1c R15: 0000000000000000 ieee80211_update_sta_info net/mac80211/ibss.c:1003 [inline] ieee80211_rx_bss_info net/mac80211/ibss.c:1117 [inline] ieee80211_rx_mgmt_probe_beacon+0x546/0x17c0 net/mac80211/ibss.c:1608 ieee80211_ibss_rx_queued_mgmt+0xd34/0x1610 net/mac80211/ibss.c:1635 ieee80211_iface_process_skb net/mac80211/iface.c:1439 [inline] ieee80211_iface_work+0xa65/0xd00 net/mac80211/iface.c:1493 process_one_work+0x9bf/0x16b0 kernel/workqueue.c:2297 worker_thread+0x658/0x11f0 kernel/workqueue.c:2444 kthread+0x3e5/0x4d0 kernel/kthread.c:319 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295 ---------------- Code disassembly (best guess): 0: 85 dd test %ebx,%ebp 2: 03 00 add (%rax),%eax 4: 00 48 8b add %cl,-0x75(%rax) 7: 0c 24 or $0x24,%al 9: 4b 8d 04 64 lea (%r12,%r12,2),%rax d: 48 8b 51 08 mov 0x8(%rcx),%rdx 11: 48 b9 00 00 00 00 00 movabs $0xdffffc0000000000,%rcx 18: fc ff df 1b: 4c 8d 34 82 lea (%rdx,%rax,4),%r14 1f: 4c 89 f0 mov %r14,%rax 22: 48 c1 e8 03 shr $0x3,%rax 26: 0f b6 14 08 movzbl (%rax,%rcx,1),%edx * 2a: 4c 89 f0 mov %r14,%rax <-- trapping instruction 2d: 83 e0 07 and $0x7,%eax 30: 83 c0 03 add $0x3,%eax 33: 38 d0 cmp %dl,%al 35: 7c 08 jl 0x3f 37: 84 d2 test %dl,%dl 39: 0f 85 b2 03 00 00 jne 0x3f1 3f: 41 rex.B