INFO: task kworker/u8:2:43 blocked for more than 143 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/u8:2 state:D stack:0 pid:43 tgid:43 ppid:2 flags:0x00000008 Workqueue: netns cleanup_net Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 rwsem_down_write_slowpath+0xd10/0x14c8 kernel/locking/rwsem.c:1176 __down_write_common kernel/locking/rwsem.c:1304 [inline] __down_write kernel/locking/rwsem.c:1313 [inline] down_write+0xb4/0xc0 kernel/locking/rwsem.c:1578 kernfs_remove_by_name_ns+0x7c/0x188 fs/kernfs/dir.c:1689 kernfs_remove_by_name include/linux/kernfs.h:625 [inline] sysfs_remove_link+0x5c/0x6c fs/sysfs/symlink.c:152 __netdev_adjacent_dev_remove+0x174/0x4fc net/core/dev.c:7834 __netdev_adjacent_dev_unlink_lists net/core/dev.c:7875 [inline] __netdev_adjacent_dev_unlink_neighbour net/core/dev.c:7892 [inline] __netdev_upper_dev_unlink+0x2d8/0x924 net/core/dev.c:8042 netdev_upper_dev_unlink+0xa0/0xe4 net/core/dev.c:8071 del_nbp+0x79c/0x8ec net/bridge/br_if.c:363 br_dev_delete+0x70/0x110 net/bridge/br_if.c:386 br_net_exit_batch_rtnl+0xec/0x19c net/bridge/br.c:369 cleanup_net+0x590/0x9b4 net/core/net_namespace.c:619 process_one_work+0x7bc/0x1600 kernel/workqueue.c:3229 process_scheduled_works kernel/workqueue.c:3310 [inline] worker_thread+0x97c/0xeec kernel/workqueue.c:3391 kthread+0x288/0x310 kernel/kthread.c:389 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862 INFO: task kworker/u8:5:332 blocked for more than 143 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/u8:5 state:D stack:0 pid:332 tgid:332 ppid:2 flags:0x00000008 Workqueue: ipv6_addrconf addrconf_dad_work Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 __mutex_lock_common+0xbd8/0x21a0 kernel/locking/mutex.c:684 __mutex_lock kernel/locking/mutex.c:752 [inline] mutex_lock_nested+0x2c/0x38 kernel/locking/mutex.c:804 rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 addrconf_dad_work+0xcc/0x1350 net/ipv6/addrconf.c:4196 process_one_work+0x7bc/0x1600 kernel/workqueue.c:3229 process_scheduled_works kernel/workqueue.c:3310 [inline] worker_thread+0x97c/0xeec kernel/workqueue.c:3391 kthread+0x288/0x310 kernel/kthread.c:389 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862 INFO: task dhcpcd:6088 blocked for more than 143 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:dhcpcd state:D stack:0 pid:6088 tgid:6088 ppid:1 flags:0x00000804 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 __mutex_lock_common+0xbd8/0x21a0 kernel/locking/mutex.c:684 __mutex_lock kernel/locking/mutex.c:752 [inline] mutex_lock_nested+0x2c/0x38 kernel/locking/mutex.c:804 rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 vlan_ioctl_handler+0x1c0/0xab8 net/8021q/vlan.c:553 sock_ioctl+0x58c/0x838 net/socket.c:1310 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:907 [inline] __se_sys_ioctl fs/ioctl.c:893 [inline] __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:893 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x1e0/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 INFO: task kworker/0:5:8988 blocked for more than 143 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:5 state:D stack:0 pid:8988 tgid:8988 ppid:2 flags:0x00000008 Workqueue: events switchdev_deferred_process_work Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 __mutex_lock_common+0xbd8/0x21a0 kernel/locking/mutex.c:684 __mutex_lock kernel/locking/mutex.c:752 [inline] mutex_lock_nested+0x2c/0x38 kernel/locking/mutex.c:804 rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 switchdev_deferred_process_work+0x14/0x28 net/switchdev/switchdev.c:104 process_one_work+0x7bc/0x1600 kernel/workqueue.c:3229 process_scheduled_works kernel/workqueue.c:3310 [inline] worker_thread+0x97c/0xeec kernel/workqueue.c:3391 kthread+0x288/0x310 kernel/kthread.c:389 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862 INFO: task syz-executor:9813 blocked for more than 143 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor state:D stack:0 pid:9813 tgid:9813 ppid:1 flags:0x00000009 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 __mutex_lock_common+0xbd8/0x21a0 kernel/locking/mutex.c:684 __mutex_lock kernel/locking/mutex.c:752 [inline] mutex_lock_nested+0x2c/0x38 kernel/locking/mutex.c:804 rtnl_lock net/core/rtnetlink.c:79 [inline] rtnetlink_rcv_msg+0x5e8/0xa9c net/core/rtnetlink.c:6672 netlink_rcv_skb+0x214/0x3c4 net/netlink/af_netlink.c:2551 rtnetlink_rcv+0x28/0x38 net/core/rtnetlink.c:6693 netlink_unicast_kernel net/netlink/af_netlink.c:1331 [inline] netlink_unicast+0x668/0x8a4 net/netlink/af_netlink.c:1357 netlink_sendmsg+0x7a4/0xa8c net/netlink/af_netlink.c:1901 sock_sendmsg_nosec net/socket.c:729 [inline] __sock_sendmsg net/socket.c:744 [inline] __sys_sendto+0x374/0x4f4 net/socket.c:2214 __do_sys_sendto net/socket.c:2226 [inline] __se_sys_sendto net/socket.c:2222 [inline] __arm64_sys_sendto+0xd8/0xf8 net/socket.c:2222 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 INFO: task syz-executor:9860 blocked for more than 143 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor state:D stack:0 pid:9860 tgid:9860 ppid:1 flags:0x00000001 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 rwsem_down_read_slowpath+0x534/0x858 kernel/locking/rwsem.c:1084 __down_read_common kernel/locking/rwsem.c:1248 [inline] __down_read kernel/locking/rwsem.c:1261 [inline] down_read+0xa0/0x2fc kernel/locking/rwsem.c:1526 kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 lookup_fast+0x1c4/0x43c walk_component fs/namei.c:2049 [inline] link_path_walk+0x548/0xc44 fs/namei.c:2418 path_openat+0x1d0/0x2b14 fs/namei.c:3929 do_filp_open+0x1bc/0x3cc fs/namei.c:3960 do_sys_openat2+0x124/0x1b8 fs/open.c:1415 do_sys_open fs/open.c:1430 [inline] __do_sys_openat fs/open.c:1446 [inline] __se_sys_openat fs/open.c:1441 [inline] __arm64_sys_openat+0x1f0/0x240 fs/open.c:1441 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 INFO: task syz-executor:9863 blocked for more than 143 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor state:D stack:0 pid:9863 tgid:9863 ppid:1 flags:0x00000001 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 __mutex_lock_common+0xbd8/0x21a0 kernel/locking/mutex.c:684 __mutex_lock kernel/locking/mutex.c:752 [inline] mutex_lock_nested+0x2c/0x38 kernel/locking/mutex.c:804 rtnl_lock net/core/rtnetlink.c:79 [inline] rtnetlink_rcv_msg+0x5e8/0xa9c net/core/rtnetlink.c:6672 netlink_rcv_skb+0x214/0x3c4 net/netlink/af_netlink.c:2551 rtnetlink_rcv+0x28/0x38 net/core/rtnetlink.c:6693 netlink_unicast_kernel net/netlink/af_netlink.c:1331 [inline] netlink_unicast+0x668/0x8a4 net/netlink/af_netlink.c:1357 netlink_sendmsg+0x7a4/0xa8c net/netlink/af_netlink.c:1901 sock_sendmsg_nosec net/socket.c:729 [inline] __sock_sendmsg net/socket.c:744 [inline] __sys_sendto+0x374/0x4f4 net/socket.c:2214 __do_sys_sendto net/socket.c:2226 [inline] __se_sys_sendto net/socket.c:2222 [inline] __arm64_sys_sendto+0xd8/0xf8 net/socket.c:2222 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 INFO: task syz-executor:9867 blocked for more than 143 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor state:D stack:0 pid:9867 tgid:9867 ppid:1 flags:0x00000009 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 __mutex_lock_common+0xbd8/0x21a0 kernel/locking/mutex.c:684 __mutex_lock kernel/locking/mutex.c:752 [inline] mutex_lock_nested+0x2c/0x38 kernel/locking/mutex.c:804 rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 nsim_init_netdevsim drivers/net/netdevsim/netdev.c:678 [inline] nsim_create+0x3b4/0x79c drivers/net/netdevsim/netdev.c:750 __nsim_dev_port_add+0x530/0x894 drivers/net/netdevsim/dev.c:1390 nsim_dev_port_add_all+0x4c/0x110 drivers/net/netdevsim/dev.c:1446 nsim_drv_probe+0x788/0x9a8 drivers/net/netdevsim/dev.c:1604 nsim_bus_probe+0x20/0x30 drivers/net/netdevsim/bus.c:391 really_probe+0x38c/0x8fc drivers/base/dd.c:658 __driver_probe_device+0x194/0x374 drivers/base/dd.c:800 driver_probe_device+0x78/0x330 drivers/base/dd.c:830 __device_attach_driver+0x2a8/0x4f4 drivers/base/dd.c:958 bus_for_each_drv+0x228/0x2bc drivers/base/bus.c:459 __device_attach+0x2b4/0x434 drivers/base/dd.c:1030 device_initial_probe+0x24/0x34 drivers/base/dd.c:1079 bus_probe_device+0x178/0x240 drivers/base/bus.c:534 device_add+0x728/0xa6c drivers/base/core.c:3675 device_register+0x28/0x38 drivers/base/core.c:3757 nsim_bus_dev_new drivers/net/netdevsim/bus.c:442 [inline] new_device_store+0x340/0x704 drivers/net/netdevsim/bus.c:173 bus_attr_store+0x80/0xa4 drivers/base/bus.c:172 sysfs_kf_write+0x200/0x280 fs/sysfs/file.c:136 kernfs_fop_write_iter+0x334/0x48c fs/kernfs/file.c:334 new_sync_write fs/read_write.c:590 [inline] vfs_write+0x920/0xcf4 fs/read_write.c:683 ksys_write+0x15c/0x26c fs/read_write.c:736 __do_sys_write fs/read_write.c:748 [inline] __se_sys_write fs/read_write.c:745 [inline] __arm64_sys_write+0x7c/0x90 fs/read_write.c:745 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 INFO: task syz-executor:9870 blocked for more than 143 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor state:D stack:0 pid:9870 tgid:9870 ppid:1 flags:0x00000009 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 __mutex_lock_common+0xbd8/0x21a0 kernel/locking/mutex.c:684 __mutex_lock kernel/locking/mutex.c:752 [inline] mutex_lock_nested+0x2c/0x38 kernel/locking/mutex.c:804 del_device_store+0xec/0x39c drivers/net/netdevsim/bus.c:216 bus_attr_store+0x80/0xa4 drivers/base/bus.c:172 sysfs_kf_write+0x200/0x280 fs/sysfs/file.c:136 kernfs_fop_write_iter+0x334/0x48c fs/kernfs/file.c:334 new_sync_write fs/read_write.c:590 [inline] vfs_write+0x920/0xcf4 fs/read_write.c:683 ksys_write+0x15c/0x26c fs/read_write.c:736 __do_sys_write fs/read_write.c:748 [inline] __se_sys_write fs/read_write.c:745 [inline] __arm64_sys_write+0x7c/0x90 fs/read_write.c:745 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 INFO: task udevd:9883 blocked for more than 144 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:udevd state:D stack:0 pid:9883 tgid:9883 ppid:6035 flags:0x00000004 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 rwsem_down_read_slowpath+0x534/0x858 kernel/locking/rwsem.c:1084 __down_read_common kernel/locking/rwsem.c:1248 [inline] __down_read kernel/locking/rwsem.c:1261 [inline] down_read+0xa0/0x2fc kernel/locking/rwsem.c:1526 kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 lookup_fast+0x1c4/0x43c walk_component fs/namei.c:2049 [inline] link_path_walk+0x548/0xc44 fs/namei.c:2418 path_openat+0x1d0/0x2b14 fs/namei.c:3929 do_filp_open+0x1bc/0x3cc fs/namei.c:3960 do_sys_openat2+0x124/0x1b8 fs/open.c:1415 do_sys_open fs/open.c:1430 [inline] __do_sys_openat fs/open.c:1446 [inline] __se_sys_openat fs/open.c:1441 [inline] __arm64_sys_openat+0x1f0/0x240 fs/open.c:1441 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings INFO: task syz.2.464:9927 blocked for more than 144 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz.2.464 state:D stack:0 pid:9927 tgid:9927 ppid:9860 flags:0x00000001 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 __mutex_lock_common+0xbd8/0x21a0 kernel/locking/mutex.c:684 __mutex_lock kernel/locking/mutex.c:752 [inline] mutex_lock_nested+0x2c/0x38 kernel/locking/mutex.c:804 rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 raw_release+0x18c/0x800 net/can/raw.c:415 __sock_release net/socket.c:658 [inline] sock_close+0xa4/0x1e8 net/socket.c:1426 __fput+0x1bc/0x75c fs/file_table.c:431 ____fput+0x20/0x30 fs/file_table.c:459 task_work_run+0x230/0x2e0 kernel/task_work.c:228 resume_user_mode_work include/linux/resume_user_mode.h:50 [inline] do_notify_resume+0x178/0x1f4 arch/arm64/kernel/entry-common.c:151 exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline] exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline] el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:745 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings INFO: task udevd:9929 blocked for more than 144 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:udevd state:D stack:0 pid:9929 tgid:9929 ppid:6035 flags:0x00000004 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 rwsem_down_read_slowpath+0x534/0x858 kernel/locking/rwsem.c:1084 __down_read_common kernel/locking/rwsem.c:1248 [inline] __down_read kernel/locking/rwsem.c:1261 [inline] down_read+0xa0/0x2fc kernel/locking/rwsem.c:1526 kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 lookup_fast+0x1c4/0x43c walk_component fs/namei.c:2049 [inline] link_path_walk+0x548/0xc44 fs/namei.c:2418 path_openat+0x1d0/0x2b14 fs/namei.c:3929 do_filp_open+0x1bc/0x3cc fs/namei.c:3960 do_sys_openat2+0x124/0x1b8 fs/open.c:1415 do_sys_open fs/open.c:1430 [inline] __do_sys_openat fs/open.c:1446 [inline] __se_sys_openat fs/open.c:1441 [inline] __arm64_sys_openat+0x1f0/0x240 fs/open.c:1441 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings INFO: task syz-executor:9934 blocked for more than 144 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor state:D stack:0 pid:9934 tgid:9934 ppid:6414 flags:0x00000001 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 rwsem_down_read_slowpath+0x534/0x858 kernel/locking/rwsem.c:1084 __down_read_common kernel/locking/rwsem.c:1248 [inline] __down_read kernel/locking/rwsem.c:1261 [inline] down_read+0xa0/0x2fc kernel/locking/rwsem.c:1526 kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 lookup_fast+0x1c4/0x43c walk_component fs/namei.c:2049 [inline] link_path_walk+0x548/0xc44 fs/namei.c:2418 path_openat+0x1d0/0x2b14 fs/namei.c:3929 do_filp_open+0x1bc/0x3cc fs/namei.c:3960 do_sys_openat2+0x124/0x1b8 fs/open.c:1415 do_sys_open fs/open.c:1430 [inline] __do_sys_openat fs/open.c:1446 [inline] __se_sys_openat fs/open.c:1441 [inline] __arm64_sys_openat+0x1f0/0x240 fs/open.c:1441 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings INFO: task syz-executor:9935 blocked for more than 144 seconds. Tainted: G W 6.12.0-rc3-syzkaller-gc7e6f5e2fb8d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor state:D stack:0 pid:9935 tgid:9935 ppid:6414 flags:0x00000000 Call trace: __switch_to+0x428/0x860 arch/arm64/kernel/process.c:701 (T) context_switch kernel/sched/core.c:5322 [inline] __schedule+0x14bc/0x2718 kernel/sched/core.c:6682 __schedule_loop kernel/sched/core.c:6759 [inline] schedule+0xbc/0x238 kernel/sched/core.c:6774 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6831 rwsem_down_read_slowpath+0x534/0x858 kernel/locking/rwsem.c:1084 __down_read_common kernel/locking/rwsem.c:1248 [inline] __down_read kernel/locking/rwsem.c:1261 [inline] down_read+0xa0/0x2fc kernel/locking/rwsem.c:1526 kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 lookup_fast+0x1c4/0x43c walk_component fs/namei.c:2049 [inline] link_path_walk+0x548/0xc44 fs/namei.c:2418 path_openat+0x1d0/0x2b14 fs/namei.c:3929 do_filp_open+0x1bc/0x3cc fs/namei.c:3960 do_sys_openat2+0x124/0x1b8 fs/open.c:1415 do_sys_open fs/open.c:1430 [inline] __do_sys_openat fs/open.c:1446 [inline] __se_sys_openat fs/open.c:1441 [inline] __arm64_sys_openat+0x1f0/0x240 fs/open.c:1441 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x108 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings Showing all locks held in the system: 1 lock held by khungtaskd/31: #0: ffff80008f9d0520 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0xc/0x44 include/linux/rcupdate.h:336 5 locks held by kworker/u8:2/43: #0: ffff0000c1891948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x628/0x1600 kernel/workqueue.c:3203 #1: ffff800097fa7c20 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1600 kernel/workqueue.c:3203 #2: ffff8000926f5650 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x13c/0x9b4 net/core/net_namespace.c:580 #3: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 #4: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_remove_by_name_ns+0x7c/0x188 fs/kernfs/dir.c:1689 5 locks held by kworker/u9:0/53: #0: ffff0000d8472948 ((wq_completion)hci0){+.+.}-{0:0}, at: process_one_work+0x628/0x1600 kernel/workqueue.c:3203 #1: ffff800098fb7c20 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1600 kernel/workqueue.c:3203 #2: ffff0000e0d4cd80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x194/0x34c net/bluetooth/hci_sync.c:327 #3: ffff0000e0d4c078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x200/0xbb0 net/bluetooth/hci_sync.c:5567 #4: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_find_and_get_ns+0x78/0x150 fs/kernfs/dir.c:918 3 locks held by kworker/u8:4/254: #0: ffff0000c0031948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x628/0x1600 kernel/workqueue.c:3203 #1: ffff80009be17c20 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1600 kernel/workqueue.c:3203 #2: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 3 locks held by kworker/u8:5/332: #0: ffff0000d1d03948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x628/0x1600 kernel/workqueue.c:3203 #1: ffff80009c217c20 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1600 kernel/workqueue.c:3203 #2: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 2 locks held by dhcpcd/6088: #0: ffff8000926e73c8 (vlan_ioctl_mutex){+.+.}-{3:3}, at: sock_ioctl+0x574/0x838 net/socket.c:1308 #1: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 2 locks held by getty/6189: #0: ffff0000ccfd60a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c drivers/tty/tty_ldsem.c:340 #1: ffff80009b7ce2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x41c/0x1228 drivers/tty/n_tty.c:2211 5 locks held by kworker/u9:3/6430: #0: ffff0000dea00148 ((wq_completion)hci5){+.+.}-{0:0}, at: process_one_work+0x628/0x1600 kernel/workqueue.c:3203 #1: ffff8000a3487c20 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1600 kernel/workqueue.c:3203 #2: ffff0000c1d44d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x194/0x34c net/bluetooth/hci_sync.c:327 #3: ffff0000c1d44078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x200/0xbb0 net/bluetooth/hci_sync.c:5567 #4: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_find_and_get_ns+0x78/0x150 fs/kernfs/dir.c:918 3 locks held by kworker/0:5/8988: #0: ffff0000c0028948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x628/0x1600 kernel/workqueue.c:3203 #1: ffff80009bd97c20 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1600 kernel/workqueue.c:3203 #2: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 1 lock held by syz-executor/9813: #0: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline] #0: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x5e8/0xa9c net/core/rtnetlink.c:6672 3 locks held by syz.1.461/9855: 1 lock held by syz-executor/9860: #0: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 1 lock held by syz-executor/9863: #0: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline] #0: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x5e8/0xa9c net/core/rtnetlink.c:6672 7 locks held by syz-executor/9867: #0: ffff0000d773e420 (sb_writers#7){.+.+}-{0:0}, at: file_start_write include/linux/fs.h:2931 [inline] #0: ffff0000d773e420 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x354/0xcf4 fs/read_write.c:679 #1: ffff0000e2ecac88 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1c8/0x48c fs/kernfs/file.c:325 #2: ffff0000ca342968 (kn->active#45){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x1e4/0x48c fs/kernfs/file.c:326 #3: ffff800091860da8 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: new_device_store+0x170/0x704 drivers/net/netdevsim/bus.c:166 #4: ffff0000d41100e8 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:1014 [inline] #4: ffff0000d41100e8 (&dev->mutex){....}-{3:3}, at: __device_attach+0x90/0x434 drivers/base/dd.c:1005 #5: ffff0000d4111250 (&devlink->lock_key#38){+.+.}-{3:3}, at: devl_lock+0x24/0x34 net/devlink/core.c:276 #6: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 4 locks held by syz-executor/9870: #0: ffff0000d773e420 (sb_writers#7){.+.+}-{0:0}, at: file_start_write include/linux/fs.h:2931 [inline] #0: ffff0000d773e420 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x354/0xcf4 fs/read_write.c:679 #1: ffff0000c7c0b488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1c8/0x48c fs/kernfs/file.c:325 #2: ffff0000ca342a58 (kn->active#44){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x1e4/0x48c fs/kernfs/file.c:326 #3: ffff800091860da8 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xec/0x39c drivers/net/netdevsim/bus.c:216 1 lock held by udevd/9883: #0: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 2 locks held by syz.2.464/9927: #0: ffff0000dca46808 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:815 [inline] #0: ffff0000dca46808 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: __sock_release net/socket.c:657 [inline] #0: ffff0000dca46808 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x80/0x1e8 net/socket.c:1426 #1: ffff800092701b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79 1 lock held by udevd/9929: #0: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 1 lock held by syz-executor/9934: #0: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 1 lock held by syz-executor/9935: #0: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 1 lock held by syz-executor/9936: #0: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 1 lock held by syz-executor/9937: #0: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 1 lock held by syz-executor/9938: #0: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_dop_revalidate+0xc8/0x4ec fs/kernfs/dir.c:1159 5 locks held by kworker/u9:1/9939: #0: ffff000101296148 ((wq_completion)hci6){+.+.}-{0:0}, at: process_one_work+0x628/0x1600 kernel/workqueue.c:3203 #1: ffff80009bdd7c20 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1600 kernel/workqueue.c:3203 #2: ffff0000ffde4d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x194/0x34c net/bluetooth/hci_sync.c:327 #3: ffff0000ffde4078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x200/0xbb0 net/bluetooth/hci_sync.c:5567 #4: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_find_and_get_ns+0x78/0x150 fs/kernfs/dir.c:918 5 locks held by kworker/u9:2/9940: #0: ffff0000cc157148 ((wq_completion)hci3){+.+.}-{0:0}, at: process_one_work+0x628/0x1600 kernel/workqueue.c:3203 #1: ffff80009fe87c20 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1600 kernel/workqueue.c:3203 #2: ffff0000c8e20d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x194/0x34c net/bluetooth/hci_sync.c:327 #3: ffff0000c8e20078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x200/0xbb0 net/bluetooth/hci_sync.c:5567 #4: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_find_and_get_ns+0x78/0x150 fs/kernfs/dir.c:918 5 locks held by kworker/u9:4/9941: #0: ffff0000f71bc948 ((wq_completion)hci7){+.+.}-{0:0}, at: process_one_work+0x628/0x1600 kernel/workqueue.c:3203 #1: ffff800097877c20 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1600 kernel/workqueue.c:3203 #2: ffff0000efd78d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x194/0x34c net/bluetooth/hci_sync.c:327 #3: ffff0000efd78078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x200/0xbb0 net/bluetooth/hci_sync.c:5567 #4: ffff0000c1892948 (&root->kernfs_rwsem){++++}-{3:3}, at: kernfs_find_and_get_ns+0x78/0x150 fs/kernfs/dir.c:918 =============================================