INFO: task dhcpcd:4724 blocked for more than 143 seconds.
Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:dhcpcd state:D stack:23768 pid:4724 tgid:4724 ppid:4723 flags:0x00004002
Call Trace:
context_switch kernel/sched/core.c:5400 [inline]
__schedule+0xf12/0x5c60 kernel/sched/core.c:6727
__schedule_loop kernel/sched/core.c:6802 [inline]
schedule+0xe9/0x280 kernel/sched/core.c:6817
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6874
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x5bd/0x9d0 kernel/locking/mutex.c:752
netlink_dump+0xc1/0xcc0 net/netlink/af_netlink.c:2211
netlink_recvmsg+0xa03/0xf20 net/netlink/af_netlink.c:1990
sock_recvmsg_nosec net/socket.c:1046 [inline]
sock_recvmsg+0x1f6/0x250 net/socket.c:1068
____sys_recvmsg+0x21f/0x6b0 net/socket.c:2803
___sys_recvmsg+0x115/0x1a0 net/socket.c:2845
__sys_recvmsg+0x114/0x1e0 net/socket.c:2875
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xd5/0x270 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x6f/0x77
RIP: 0033:0x7f3797ab991e
RSP: 002b:00007ffe61d5dbe8 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
RAX: ffffffffffffffda RBX: 00007ffe61d5ed10 RCX: 00007f3797ab991e
RDX: 0000000000000000 RSI: 00007ffe61d5ec30 RDI: 000000000000000c
RBP: 00007ffe61d5eca0 R08: 00007ffe61d5ec14 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000012
R13: 00007ffe61d5ec14 R14: 00007ffe61d5ec30 R15: 00007ffe61d5ec20
INFO: task kworker/1:0:28095 blocked for more than 143 seconds.
Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/1:0 state:D stack:23920 pid:28095 tgid:28095 ppid:2 flags:0x00004000
Workqueue: events switchdev_deferred_process_work
Call Trace:
context_switch kernel/sched/core.c:5400 [inline]
__schedule+0xf12/0x5c60 kernel/sched/core.c:6727
__schedule_loop kernel/sched/core.c:6802 [inline]
schedule+0xe9/0x280 kernel/sched/core.c:6817
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6874
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x5bd/0x9d0 kernel/locking/mutex.c:752
switchdev_deferred_process_work+0xe/0x20 net/switchdev/switchdev.c:75
process_one_work+0x889/0x15e0 kernel/workqueue.c:2633
process_scheduled_works kernel/workqueue.c:2706 [inline]
worker_thread+0x8b9/0x12a0 kernel/workqueue.c:2787
kthread+0x2c6/0x3b0 kernel/kthread.c:388
ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:242
INFO: task syz-executor.3:7301 blocked for more than 143 seconds.
Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.3 state:D stack:23440 pid:7301 tgid:7298 ppid:5102 flags:0x00004002
Call Trace:
context_switch kernel/sched/core.c:5400 [inline]
__schedule+0xf12/0x5c60 kernel/sched/core.c:6727
__schedule_loop kernel/sched/core.c:6802 [inline]
schedule+0xe9/0x280 kernel/sched/core.c:6817
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6874
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x5bd/0x9d0 kernel/locking/mutex.c:752
netdev_wait_allrefs_any net/core/dev.c:10451 [inline]
netdev_run_todo+0xe9b/0x12f0 net/core/dev.c:10561
tun_detach drivers/net/tun.c:703 [inline]
tun_chr_close+0xf0/0x250 drivers/net/tun.c:3505
__fput+0x270/0xb80 fs/file_table.c:376
task_work_run+0x14f/0x250 kernel/task_work.c:180
exit_task_work include/linux/task_work.h:38 [inline]
do_exit+0xa8a/0x2ad0 kernel/exit.c:871
do_group_exit+0xd4/0x2a0 kernel/exit.c:1020
get_signal+0x23b9/0x2790 kernel/signal.c:2893
arch_do_signal_or_restart+0x90/0x7f0 arch/x86/kernel/signal.c:310
exit_to_user_mode_loop kernel/entry/common.c:105 [inline]
exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline]
__syscall_exit_to_user_mode_work kernel/entry/common.c:201 [inline]
syscall_exit_to_user_mode+0x156/0x2b0 kernel/entry/common.c:212
do_syscall_64+0xe5/0x270 arch/x86/entry/common.c:89
entry_SYSCALL_64_after_hwframe+0x6f/0x77
RIP: 0033:0x7f600567dda9
RSP: 002b:00007f60063360c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: 0000000000000054 RBX: 00007f60057abf80 RCX: 00007f600567dda9
RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
RBP: 00007f60056ca47a R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000000b R14: 00007f60057abf80 R15: 00007ffe53cf6d68
INFO: task syz-executor.0:7467 blocked for more than 144 seconds.
Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.0 state:D stack:23648 pid:7467 tgid:7467 ppid:1 flags:0x00004006
Call Trace:
context_switch kernel/sched/core.c:5400 [inline]
__schedule+0xf12/0x5c60 kernel/sched/core.c:6727
__schedule_loop kernel/sched/core.c:6802 [inline]
schedule+0xe9/0x280 kernel/sched/core.c:6817
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6874
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x5bd/0x9d0 kernel/locking/mutex.c:752
unregister_nexthop_notifier+0x18/0x60 net/ipv4/nexthop.c:3638
nsim_fib_destroy+0x83/0x1b0 drivers/net/netdevsim/fib.c:1656
nsim_dev_reload_destroy+0x16e/0x4d0 drivers/net/netdevsim/dev.c:1662
nsim_drv_remove+0x52/0x1d0 drivers/net/netdevsim/dev.c:1673
device_remove+0xc8/0x170 drivers/base/dd.c:567
__device_release_driver drivers/base/dd.c:1272 [inline]
device_release_driver_internal+0x44a/0x610 drivers/base/dd.c:1295
bus_remove_device+0x22f/0x420 drivers/base/bus.c:574
device_del+0x39d/0xa60 drivers/base/core.c:3814
device_unregister+0x1d/0xc0 drivers/base/core.c:3855
nsim_bus_dev_del drivers/net/netdevsim/bus.c:317 [inline]
del_device_store+0x346/0x4b0 drivers/net/netdevsim/bus.c:226
bus_attr_store+0x76/0xa0 drivers/base/bus.c:170
sysfs_kf_write+0x117/0x170 fs/sysfs/file.c:136
kernfs_fop_write_iter+0x343/0x500 fs/kernfs/file.c:334
call_write_iter include/linux/fs.h:2085 [inline]
new_sync_write fs/read_write.c:497 [inline]
vfs_write+0x6de/0x1110 fs/read_write.c:590
ksys_write+0x12f/0x260 fs/read_write.c:643
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xd5/0x270 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x6f/0x77
RIP: 0033:0x7f8798e7caef
RSP: 002b:00007fff28c51f00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f8798e7caef
RDX: 0000000000000001 RSI: 00007fff28c51f50 RDI: 0000000000000005
RBP: 00007f8798eca021 R08: 0000000000000000 R09: 00007fff28c51d57
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
R13: 00007fff28c51f50 R14: 00007f8799ad4620 R15: 0000000000000003
INFO: task kworker/0:15:7528 blocked for more than 144 seconds.
Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/0:15 state:D stack:28176 pid:7528 tgid:7528 ppid:2 flags:0x00004000
Workqueue: events linkwatch_event
Call Trace:
context_switch kernel/sched/core.c:5400 [inline]
__schedule+0xf12/0x5c60 kernel/sched/core.c:6727
__schedule_loop kernel/sched/core.c:6802 [inline]
schedule+0xe9/0x280 kernel/sched/core.c:6817
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6874
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x5bd/0x9d0 kernel/locking/mutex.c:752
linkwatch_event+0x51/0xc0 net/core/link_watch.c:281
process_one_work+0x889/0x15e0 kernel/workqueue.c:2633
process_scheduled_works kernel/workqueue.c:2706 [inline]
worker_thread+0x8b9/0x12a0 kernel/workqueue.c:2787
kthread+0x2c6/0x3b0 kernel/kthread.c:388
ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:242
INFO: task syz-executor.2:7536 blocked for more than 144 seconds.
Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2 state:D stack:23440 pid:7536 tgid:7536 ppid:1 flags:0x00004006
Call Trace:
context_switch kernel/sched/core.c:5400 [inline]
__schedule+0xf12/0x5c60 kernel/sched/core.c:6727
__schedule_loop kernel/sched/core.c:6802 [inline]
schedule+0xe9/0x280 kernel/sched/core.c:6817
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6874
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x5bd/0x9d0 kernel/locking/mutex.c:752
rtnl_lock net/core/rtnetlink.c:79 [inline]
rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2543
netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]
netlink_unicast+0x542/0x820 net/netlink/af_netlink.c:1367
netlink_sendmsg+0x8bb/0xd70 net/netlink/af_netlink.c:1908
sock_sendmsg_nosec net/socket.c:730 [inline]
__sock_sendmsg net/socket.c:745 [inline]
__sys_sendto+0x47f/0x4e0 net/socket.c:2191
__do_sys_sendto net/socket.c:2203 [inline]
__se_sys_sendto net/socket.c:2199 [inline]
__x64_sys_sendto+0xe0/0x1c0 net/socket.c:2199
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xd5/0x270 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x6f/0x77
RIP: 0033:0x7f7afaa7fa9c
RSP: 002b:00007fff47b9ff50 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007f7afb6d4620 RCX: 00007f7afaa7fa9c
RDX: 0000000000000068 RSI: 00007f7afb6d4670 RDI: 0000000000000003
RBP: 0000000000000000 R08: 00007fff47b9ffa4 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
R13: 0000000000000000 R14: 00007f7afb6d4670 R15: 0000000000000000
INFO: task syz-executor.4:7542 blocked for more than 145 seconds.
Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.4 state:D stack:25088 pid:7542 tgid:7542 ppid:1 flags:0x00000006
Call Trace:
context_switch kernel/sched/core.c:5400 [inline]
__schedule+0xf12/0x5c60 kernel/sched/core.c:6727
__schedule_loop kernel/sched/core.c:6802 [inline]
schedule+0xe9/0x280 kernel/sched/core.c:6817
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6874
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x5bd/0x9d0 kernel/locking/mutex.c:752
rtnl_lock net/core/rtnetlink.c:79 [inline]
rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2543
netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]
netlink_unicast+0x542/0x820 net/netlink/af_netlink.c:1367
netlink_sendmsg+0x8bb/0xd70 net/netlink/af_netlink.c:1908
sock_sendmsg_nosec net/socket.c:730 [inline]
__sock_sendmsg net/socket.c:745 [inline]
__sys_sendto+0x47f/0x4e0 net/socket.c:2191
__do_sys_sendto net/socket.c:2203 [inline]
__se_sys_sendto net/socket.c:2199 [inline]
__x64_sys_sendto+0xe0/0x1c0 net/socket.c:2199
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xd5/0x270 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x6f/0x77
RIP: 0033:0x7f42f407fa9c
RSP: 002b:00007ffc10f79890 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007f42f4cd4620 RCX: 00007f42f407fa9c
RDX: 000000000000003c RSI: 00007f42f4cd4670 RDI: 0000000000000003
RBP: 0000000000000000 R08: 00007ffc10f798e4 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
R13: 0000000000000000 R14: 00007f42f4cd4670 R15: 0000000000000000
INFO: task syz-executor.1:7547 blocked for more than 145 seconds.
Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.1 state:D stack:25600 pid:7547 tgid:7547 ppid:1 flags:0x00000006
Call Trace:
context_switch kernel/sched/core.c:5400 [inline]
__schedule+0xf12/0x5c60 kernel/sched/core.c:6727
__schedule_loop kernel/sched/core.c:6802 [inline]
schedule+0xe9/0x280 kernel/sched/core.c:6817
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6874
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x5bd/0x9d0 kernel/locking/mutex.c:752
rtnl_lock net/core/rtnetlink.c:79 [inline]
rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2543
netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]
netlink_unicast+0x542/0x820 net/netlink/af_netlink.c:1367
netlink_sendmsg+0x8bb/0xd70 net/netlink/af_netlink.c:1908
sock_sendmsg_nosec net/socket.c:730 [inline]
__sock_sendmsg net/socket.c:745 [inline]
__sys_sendto+0x47f/0x4e0 net/socket.c:2191
__do_sys_sendto net/socket.c:2203 [inline]
__se_sys_sendto net/socket.c:2199 [inline]
__x64_sys_sendto+0xe0/0x1c0 net/socket.c:2199
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xd5/0x270 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x6f/0x77
RIP: 0033:0x7fdab627fa9c
RSP: 002b:00007fffa3f561c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007fdab6ed4620 RCX: 00007fdab627fa9c
RDX: 000000000000003c RSI: 00007fdab6ed4670 RDI: 0000000000000003
RBP: 0000000000000000 R08: 00007fffa3f56214 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
R13: 0000000000000000 R14: 00007fdab6ed4670 R15: 0000000000000000
INFO: task syz-executor.3:7549 blocked for more than 145 seconds.
Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.3 state:D stack:24256 pid:7549 tgid:7549 ppid:1 flags:0x00004006
Call Trace:
context_switch kernel/sched/core.c:5400 [inline]
__schedule+0xf12/0x5c60 kernel/sched/core.c:6727
__schedule_loop kernel/sched/core.c:6802 [inline]
schedule+0xe9/0x280 kernel/sched/core.c:6817
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6874
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x5bd/0x9d0 kernel/locking/mutex.c:752
rtnl_lock net/core/rtnetlink.c:79 [inline]
__rtnl_newlink+0x65a/0x1960 net/core/rtnetlink.c:3725
rtnl_newlink+0x67/0xa0 net/core/rtnetlink.c:3748
rtnetlink_rcv_msg+0x3c7/0xe10 net/core/rtnetlink.c:6615
netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2543
netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]
netlink_unicast+0x542/0x820 net/netlink/af_netlink.c:1367
netlink_sendmsg+0x8bb/0xd70 net/netlink/af_netlink.c:1908
sock_sendmsg_nosec net/socket.c:730 [inline]
__sock_sendmsg net/socket.c:745 [inline]
__sys_sendto+0x47f/0x4e0 net/socket.c:2191
__do_sys_sendto net/socket.c:2203 [inline]
__se_sys_sendto net/socket.c:2199 [inline]
__x64_sys_sendto+0xe0/0x1c0 net/socket.c:2199
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xd5/0x270 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x6f/0x77
RIP: 0033:0x7fe55ae7fa9c
RSP: 002b:00007ffc14b70cf0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007fe55bad4620 RCX: 00007fe55ae7fa9c
RDX: 000000000000003c RSI: 00007fe55bad4670 RDI: 0000000000000003
RBP: 0000000000000000 R08: 00007ffc14b70d44 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
R13: 0000000000000000 R14: 00007fe55bad4670 R15: 0000000000000000
Showing all locks held in the system:
3 locks held by kworker/0:1/9:
#0: ffff8880b943cc98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 kernel/sched/core.c:559
#1: ffff8880b9428a08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x2d9/0x900 kernel/sched/psi.c:988
#2: ffff8880b9429958 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x5d/0x200 kernel/time/timer.c:999
1 lock held by khungtaskd/29:
#0: ffffffff8d7ad160 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire include/linux/rcupdate.h:298 [inline]
#0: ffffffff8d7ad160 (rcu_read_lock){....}-{1:2}, at: rcu_read_lock include/linux/rcupdate.h:750 [inline]
#0: ffffffff8d7ad160 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 kernel/locking/lockdep.c:6614
4 locks held by kworker/1:2/782:
#0: ffff8880b953cc98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 kernel/sched/core.c:559
#1: ffff8880b9528a08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x20c/0x900 kernel/sched/psi.c:976
#2: ffff8880b9529958 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x5d/0x200 kernel/time/timer.c:999
#3: ffffffff947e2020 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_activate+0x199/0x540 lib/debugobjects.c:708
1 lock held by dhcpcd/4724:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: netlink_dump+0xc1/0xcc0 net/netlink/af_netlink.c:2211
2 locks held by getty/4812:
#0: ffff88802aec50a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 drivers/tty/tty_ldisc.c:243
#1: ffffc900015b02f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfca/0x1490 drivers/tty/n_tty.c:2201
3 locks held by kworker/1:7/13700:
#0: ffff88802a186938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x789/0x15e0 kernel/workqueue.c:2608
#1: ffffc9001489fd80 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15e0 kernel/workqueue.c:2609
#2: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x12/0x30 net/ipv6/addrconf.c:4671
3 locks held by kworker/1:0/28095:
#0: ffff888014c8c938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x789/0x15e0 kernel/workqueue.c:2608
#1: ffffc90013127d80 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15e0 kernel/workqueue.c:2609
#2: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20 net/switchdev/switchdev.c:75
5 locks held by kworker/u4:0/3421:
#0: ffff888014c8f938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x789/0x15e0 kernel/workqueue.c:2608
#1: ffffc90015367d80 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15e0 kernel/workqueue.c:2609
#2: ffffffff8f2cea50 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x9f/0xb20 net/core/net_namespace.c:580
#3: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0x8f/0xb30 net/core/dev.c:11605
#4: ffffffff8d7b8880 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x48/0x6c0 kernel/rcu/tree.c:4064
1 lock held by syz-executor.3/7301:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: netdev_wait_allrefs_any net/core/dev.c:10451 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: netdev_run_todo+0xe9b/0x12f0 net/core/dev.c:10561
7 locks held by syz-executor.0/7467:
#0: ffff88802fa02420 (sb_writers#9){.+.+}-{0:0}, at: ksys_write+0x12f/0x260 fs/read_write.c:643
#1: ffff8880888b7088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x281/0x500 fs/kernfs/file.c:325
#2: ffff888021fab8c0 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2a4/0x500 fs/kernfs/file.c:326
#3: ffffffff8e9474a8 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xd2/0x4b0 drivers/net/netdevsim/bus.c:216
#4: ffff8880240480e8 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:990 [inline]
#4: ffff8880240480e8 (&dev->mutex){....}-{3:3}, at: __device_driver_lock drivers/base/dd.c:1095 [inline]
#4: ffff8880240480e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xa4/0x610 drivers/base/dd.c:1292
#5: ffff888024049250 (&devlink->lock_key#3){+.+.}-{3:3}, at: nsim_drv_remove+0x4a/0x1d0 drivers/net/netdevsim/dev.c:1672
#6: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: unregister_nexthop_notifier+0x18/0x60 net/ipv4/nexthop.c:3638
3 locks held by kworker/0:13/7522:
#0: ffff88802a186938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x789/0x15e0 kernel/workqueue.c:2608
#1: ffffc9001b79fd80 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15e0 kernel/workqueue.c:2609
#2: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x12/0x30 net/ipv6/addrconf.c:4671
3 locks held by kworker/0:15/7528:
#0: ffff888014c8c938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x789/0x15e0 kernel/workqueue.c:2608
#1: ffffc9001b7dfd80 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15e0 kernel/workqueue.c:2609
#2: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0x51/0xc0 net/core/link_watch.c:281
1 lock held by syz-executor.2/7536:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.4/7542:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.1/7547:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.3/7549:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: __rtnl_newlink+0x65a/0x1960 net/core/rtnetlink.c:3725
1 lock held by syz-executor.0/7581:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.2/7587:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.4/7590:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.3/7594:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.1/7597:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.0/7601:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.2/7612:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.4/7617:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.3/7620:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.1/7623:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
1 lock held by syz-executor.0/7627:
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f2e3e28 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe10 net/core/rtnetlink.c:6612
=============================================
NMI backtrace for cpu 0
CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
Call Trace:
__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0xd9/0x1b0 lib/dump_stack.c:106
nmi_cpu_backtrace+0x27b/0x390 lib/nmi_backtrace.c:113
nmi_trigger_cpumask_backtrace+0x29c/0x300 lib/nmi_backtrace.c:62
trigger_all_cpu_backtrace include/linux/nmi.h:160 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:222 [inline]
watchdog+0xf87/0x1210 kernel/hung_task.c:379
kthread+0x2c6/0x3b0 kernel/kthread.c:388
ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:242
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 26140 Comm: kworker/u4:4 Not tainted 6.8.0-rc3-syzkaller-00317-g7521f258ea30 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
Workqueue: bat_events batadv_nc_worker
RIP: 0010:forward_timer_base kernel/time/timer.c:968 [inline]
RIP: 0010:__mod_timer+0x468/0xea0 kernel/time/timer.c:1089
Code: 55 08 00 00 48 83 7b 18 00 0f 84 8d 04 00 00 e8 6e 15 12 00 48 c7 c2 00 f2 40 8d 48 b8 00 00 00 00 00 fc ff df 48 89 54 24 18 <48> c1 ea 03 80 3c 02 00 0f 85 42 08 00 00 48 8d 7d 48 4c 8b 2d cf
RSP: 0018:ffffc90013d7fa18 EFLAGS: 00000093
RAX: dffffc0000000000 RBX: ffff888012189728 RCX: ffffffff81787d43
RDX: ffffffff8d40f200 RSI: ffffffff81793802 RDI: ffff888012189740
RBP: ffff8880b9529940 R08: 0000000000000004 R09: 0000000005200001
R10: 0000000005200001 R11: 0000000000000002 R12: 0000000000000004
R13: 0000000000000004 R14: ffff888012189728 R15: ffff8880121896e8
FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c0017f5000 CR3: 000000000d57a000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
add_timer+0x62/0x90 kernel/time/timer.c:1244
__queue_delayed_work+0x19d/0x270 kernel/workqueue.c:1964
queue_delayed_work_on+0x10e/0x130 kernel/workqueue.c:1989
queue_delayed_work include/linux/workqueue.h:563 [inline]
batadv_nc_start_timer net/batman-adv/network-coding.c:72 [inline]
batadv_nc_worker+0xb6f/0x10f0 net/batman-adv/network-coding.c:741
process_one_work+0x889/0x15e0 kernel/workqueue.c:2633
process_scheduled_works kernel/workqueue.c:2706 [inline]
worker_thread+0x8b9/0x12a0 kernel/workqueue.c:2787
kthread+0x2c6/0x3b0 kernel/kthread.c:388
ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:242