INFO: task dhcpcd:5504 blocked for more than 143 seconds.
      Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:dhcpcd          state:D stack:24736 pid:5504  tgid:5504  ppid:1      task_flags:0x400140 flags:0x00004002
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5367 [inline]
 __schedule+0x1b18/0x50e0 kernel/sched/core.c:6748
 __schedule_loop kernel/sched/core.c:6825 [inline]
 schedule+0x163/0x360 kernel/sched/core.c:6840
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
 __mutex_lock_common kernel/locking/mutex.c:664 [inline]
 __mutex_lock+0x7fa/0x1000 kernel/locking/mutex.c:732
 vlan_ioctl_handler+0x118/0xa20 net/8021q/vlan.c:554
 sock_ioctl+0x6a9/0x900 net/socket.c:1282
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:906 [inline]
 __se_sys_ioctl+0xf1/0x160 fs/ioctl.c:892
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fc3b1730d49
RSP: 002b:00007ffcd781ea28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000561585aa6800 RCX: 00007fc3b1730d49
RDX: 00007ffcd781ea30 RSI: 0000000000008982 RDI: 0000000000000011
RBP: 0000000000000002 R08: 1999999999999999 R09: 00007ffcd781e9b4
R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcd781ea30
R13: 00007ffcd781eab0 R14: 0000561585aa6800 R15: 0000561585b8f778
 </TASK>
INFO: task kworker/u8:696:20267 blocked for more than 143 seconds.
      Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u8:696  state:D stack:23840 pid:20267 tgid:20267 ppid:2      task_flags:0x4208060 flags:0x00004000
Workqueue: events_unbound linkwatch_event
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5367 [inline]
 __schedule+0x1b18/0x50e0 kernel/sched/core.c:6748
 __schedule_loop kernel/sched/core.c:6825 [inline]
 schedule+0x163/0x360 kernel/sched/core.c:6840
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
 __mutex_lock_common kernel/locking/mutex.c:664 [inline]
 __mutex_lock+0x7fa/0x1000 kernel/locking/mutex.c:732
 linkwatch_event+0xe/0x60 net/core/link_watch.c:285
 process_one_work kernel/workqueue.c:3238 [inline]
 process_scheduled_works+0xac3/0x18e0 kernel/workqueue.c:3319
 worker_thread+0x870/0xd30 kernel/workqueue.c:3400
 kthread+0x7a9/0x920 kernel/kthread.c:464
 ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:153
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
INFO: task kworker/u8:1798:26061 blocked for more than 143 seconds.
      Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u8:1798 state:D stack:24944 pid:26061 tgid:26061 ppid:2      task_flags:0x4208060 flags:0x00004000
Workqueue: ipv6_addrconf addrconf_dad_work
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5367 [inline]
 __schedule+0x1b18/0x50e0 kernel/sched/core.c:6748
 __schedule_loop kernel/sched/core.c:6825 [inline]
 schedule+0x163/0x360 kernel/sched/core.c:6840
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
 __mutex_lock_common kernel/locking/mutex.c:664 [inline]
 __mutex_lock+0x7fa/0x1000 kernel/locking/mutex.c:732
 rtnl_net_lock include/linux/rtnetlink.h:129 [inline]
 addrconf_dad_work+0x110/0x16a0 net/ipv6/addrconf.c:4190
 process_one_work kernel/workqueue.c:3238 [inline]
 process_scheduled_works+0xac3/0x18e0 kernel/workqueue.c:3319
 worker_thread+0x870/0xd30 kernel/workqueue.c:3400
 kthread+0x7a9/0x920 kernel/kthread.c:464
 ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:153
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
INFO: task syz-executor:31503 blocked for more than 144 seconds.
      Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor    state:D stack:21456 pid:31503 tgid:31503 ppid:1      task_flags:0x400140 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5367 [inline]
 __schedule+0x1b18/0x50e0 kernel/sched/core.c:6748
 __schedule_loop kernel/sched/core.c:6825 [inline]
 schedule+0x163/0x360 kernel/sched/core.c:6840
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
 __mutex_lock_common kernel/locking/mutex.c:664 [inline]
 __mutex_lock+0x7fa/0x1000 kernel/locking/mutex.c:732
 rtnl_net_lock include/linux/rtnetlink.h:129 [inline]
 inet_rtm_newaddr+0x406/0x1c40 net/ipv4/devinet.c:987
 rtnetlink_rcv_msg+0x80f/0xd70 net/core/rtnetlink.c:6912
 netlink_rcv_skb+0x208/0x480 net/netlink/af_netlink.c:2533
 netlink_unicast_kernel net/netlink/af_netlink.c:1312 [inline]
 netlink_unicast+0x7f8/0x9a0 net/netlink/af_netlink.c:1338
 netlink_sendmsg+0x8e8/0xce0 net/netlink/af_netlink.c:1882
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg+0x221/0x270 net/socket.c:733
 __sys_sendto+0x365/0x4c0 net/socket.c:2187
 __do_sys_sendto net/socket.c:2194 [inline]
 __se_sys_sendto net/socket.c:2190 [inline]
 __x64_sys_sendto+0xde/0x100 net/socket.c:2190
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f72ae78effc
RSP: 002b:00007f72aeacf670 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007f72af4d4620 RCX: 00007f72ae78effc
RDX: 0000000000000028 RSI: 00007f72af4d4670 RDI: 0000000000000003
RBP: 0000000000000000 R08: 00007f72aeacf6c4 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
R13: 0000000000000000 R14: 00007f72af4d4670 R15: 0000000000000000
 </TASK>
INFO: task syz-executor:31514 blocked for more than 144 seconds.
      Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor    state:D stack:21392 pid:31514 tgid:31514 ppid:1      task_flags:0x400140 flags:0x00004004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5367 [inline]
 __schedule+0x1b18/0x50e0 kernel/sched/core.c:6748
 __schedule_loop kernel/sched/core.c:6825 [inline]
 schedule+0x163/0x360 kernel/sched/core.c:6840
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
 __mutex_lock_common kernel/locking/mutex.c:664 [inline]
 __mutex_lock+0x7fa/0x1000 kernel/locking/mutex.c:732
 rtnl_lock net/core/rtnetlink.c:79 [inline]
 rtnl_nets_lock net/core/rtnetlink.c:335 [inline]
 rtnl_newlink+0xd6a/0x1f60 net/core/rtnetlink.c:4021
 rtnetlink_rcv_msg+0x80f/0xd70 net/core/rtnetlink.c:6912
 netlink_rcv_skb+0x208/0x480 net/netlink/af_netlink.c:2533
 netlink_unicast_kernel net/netlink/af_netlink.c:1312 [inline]
 netlink_unicast+0x7f8/0x9a0 net/netlink/af_netlink.c:1338
 netlink_sendmsg+0x8e8/0xce0 net/netlink/af_netlink.c:1882
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg+0x221/0x270 net/socket.c:733
 __sys_sendto+0x365/0x4c0 net/socket.c:2187
 __do_sys_sendto net/socket.c:2194 [inline]
 __se_sys_sendto net/socket.c:2190 [inline]
 __x64_sys_sendto+0xde/0x100 net/socket.c:2190
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f8d0f78effc
RSP: 002b:00007f8d0facf630 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007f8d104d4620 RCX: 00007f8d0f78effc
RDX: 000000000000002c RSI: 00007f8d104d4670 RDI: 0000000000000003
RBP: 0000000000000000 R08: 00007f8d0facf684 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
R13: 0000000000000000 R14: 00007f8d104d4670 R15: 0000000000000000
 </TASK>
INFO: task syz-executor:31554 blocked for more than 144 seconds.
      Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor    state:D stack:22216 pid:31554 tgid:31554 ppid:1      task_flags:0x400140 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5367 [inline]
 __schedule+0x1b18/0x50e0 kernel/sched/core.c:6748
 __schedule_loop kernel/sched/core.c:6825 [inline]
 schedule+0x163/0x360 kernel/sched/core.c:6840
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
 __mutex_lock_common kernel/locking/mutex.c:664 [inline]
 __mutex_lock+0x7fa/0x1000 kernel/locking/mutex.c:732
 wg_set_device+0x106/0x20c0 drivers/net/wireguard/netlink.c:504
 genl_family_rcv_msg_doit net/netlink/genetlink.c:1115 [inline]
 genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]
 genl_rcv_msg+0xb38/0xf00 net/netlink/genetlink.c:1210
 netlink_rcv_skb+0x208/0x480 net/netlink/af_netlink.c:2533
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
 netlink_unicast_kernel net/netlink/af_netlink.c:1312 [inline]
 netlink_unicast+0x7f8/0x9a0 net/netlink/af_netlink.c:1338
 netlink_sendmsg+0x8e8/0xce0 net/netlink/af_netlink.c:1882
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg+0x221/0x270 net/socket.c:733
 __sys_sendto+0x365/0x4c0 net/socket.c:2187
 __do_sys_sendto net/socket.c:2194 [inline]
 __se_sys_sendto net/socket.c:2190 [inline]
 __x64_sys_sendto+0xde/0x100 net/socket.c:2190
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fc2ec58effc
RSP: 002b:00007fc2ec8cf6b0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007fc2ed2d4620 RCX: 00007fc2ec58effc
RDX: 0000000000000170 RSI: 00007fc2ed2d4670 RDI: 0000000000000005
RBP: 0000000000000000 R08: 00007fc2ec8cf704 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005
R13: 0000000000000000 R14: 00007fc2ed2d4670 R15: 0000000000000000
 </TASK>
INFO: task syz.4.3668:31655 blocked for more than 145 seconds.
      Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.4.3668      state:D stack:26672 pid:31655 tgid:31654 ppid:30850  task_flags:0x400140 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5367 [inline]
 __schedule+0x1b18/0x50e0 kernel/sched/core.c:6748
 __schedule_loop kernel/sched/core.c:6825 [inline]
 schedule+0x163/0x360 kernel/sched/core.c:6840
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
 __mutex_lock_common kernel/locking/mutex.c:664 [inline]
 __mutex_lock+0x7fa/0x1000 kernel/locking/mutex.c:732
 rtnl_lock net/core/rtnetlink.c:79 [inline]
 rtnetlink_rcv_msg+0x767/0xd70 net/core/rtnetlink.c:6918
 netlink_rcv_skb+0x208/0x480 net/netlink/af_netlink.c:2533
 netlink_unicast_kernel net/netlink/af_netlink.c:1312 [inline]
 netlink_unicast+0x7f8/0x9a0 net/netlink/af_netlink.c:1338
 netlink_sendmsg+0x8e8/0xce0 net/netlink/af_netlink.c:1882
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg+0x221/0x270 net/socket.c:733
 ____sys_sendmsg+0x53c/0x870 net/socket.c:2573
 ___sys_sendmsg net/socket.c:2627 [inline]
 __sys_sendmsg+0x271/0x360 net/socket.c:2659
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f7fbc78d169
RSP: 002b:00007f7fbd676038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007f7fbc9a5fa0 RCX: 00007f7fbc78d169
RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000005
RBP: 00007f7fbc80e2a0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f7fbc9a5fa0 R15: 00007f7fbcacfa28
 </TASK>

Showing all locks held in the system:
3 locks held by kworker/0:0/9:
 #0: ffff88801ac81d48 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3213 [inline]
 #0: ffff88801ac81d48 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0 kernel/workqueue.c:3319
 #1: ffffc900000e7c60 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3214 [inline]
 #1: ffffc900000e7c60 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0 kernel/workqueue.c:3319
 #2: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: reg_check_chans_work+0x9b/0xfc0 net/wireless/reg.c:2481
1 lock held by khungtaskd/31:
 #0: ffffffff8eb3a760 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire include/linux/rcupdate.h:331 [inline]
 #0: ffffffff8eb3a760 (rcu_read_lock){....}-{1:3}, at: rcu_read_lock include/linux/rcupdate.h:841 [inline]
 #0: ffffffff8eb3a760 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x30/0x180 kernel/locking/lockdep.c:6761
2 locks held by dhcpcd/5504:
 #0: ffffffff8febb028 (vlan_ioctl_mutex){+.+.}-{4:4}, at: sock_ioctl+0x68a/0x900 net/socket.c:1280
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: vlan_ioctl_handler+0x118/0xa20 net/8021q/vlan.c:554
2 locks held by getty/5592:
 #0: ffff88814da050a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 drivers/tty/tty_ldisc.c:243
 #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x53d/0x16b0 drivers/tty/n_tty.c:2211
3 locks held by kworker/u8:696/20267:
 #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3213 [inline]
 #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0 kernel/workqueue.c:3319
 #1: ffffc9002657fc60 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3214 [inline]
 #1: ffffc9002657fc60 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0 kernel/workqueue.c:3319
 #2: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60 net/core/link_watch.c:285
3 locks held by kworker/u8:1022/21815:
5 locks held by kworker/u8:1291/23168:
 #0: ffff88801baf6148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3213 [inline]
 #0: ffff88801baf6148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0 kernel/workqueue.c:3319
 #1: ffffc9000e9b7c60 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3214 [inline]
 #1: ffffc9000e9b7c60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0 kernel/workqueue.c:3319
 #2: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x17c/0xd60 net/core/net_namespace.c:606
 #3: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0xde/0x880 net/core/dev.c:12420
 #4: ffff888061caad28 (&dev->lock){+.+.}-{4:4}, at: netdev_lock include/linux/netdevice.h:2706 [inline]
 #4: ffff888061caad28 (&dev->lock){+.+.}-{4:4}, at: napi_disable+0x4d/0x80 net/core/dev.c:7097
3 locks held by kworker/u8:1798/26061:
 #0: ffff88814d8c5948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3213 [inline]
 #0: ffff88814d8c5948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0 kernel/workqueue.c:3319
 #1: ffffc90016257c60 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3214 [inline]
 #1: ffffc90016257c60 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0 kernel/workqueue.c:3319
 #2: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_lock include/linux/rtnetlink.h:129 [inline]
 #2: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_dad_work+0x110/0x16a0 net/ipv6/addrconf.c:4190
3 locks held by kworker/u8:1971/26878:
1 lock held by syz-executor/31503:
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_lock include/linux/rtnetlink.h:129 [inline]
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x406/0x1c40 net/ipv4/devinet.c:987
1 lock held by syz-executor/31514:
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_nets_lock net/core/rtnetlink.c:335 [inline]
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0xd6a/0x1f60 net/core/rtnetlink.c:4021
3 locks held by syz-executor/31554:
 #0: ffffffff8ff3a410 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 net/netlink/genetlink.c:1218
 #1: ffffffff8ff3a2c8 (genl_mutex){+.+.}-{4:4}, at: genl_lock net/netlink/genetlink.c:35 [inline]
 #1: ffffffff8ff3a2c8 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:60 [inline]
 #1: ffffffff8ff3a2c8 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x125/0xf00 net/netlink/genetlink.c:1209
 #2: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: wg_set_device+0x106/0x20c0 drivers/net/wireguard/netlink.c:504
1 lock held by syz.6.3664/31647:
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_nets_lock net/core/rtnetlink.c:335 [inline]
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0xd6a/0x1f60 net/core/rtnetlink.c:4021
1 lock held by syz.4.3668/31655:
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
 #0: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: rtnetlink_rcv_msg+0x767/0xd70 net/core/rtnetlink.c:6918
2 locks held by syz-executor/31663:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31668:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31672:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31676:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31679:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31684:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31687:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31691:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31698:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31701:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31707:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878
2 locks held by syz-executor/31711:
 #0: ffffffff8fec98d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570 net/core/net_namespace.c:512
 #1: ffffffff8fed6108 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x87/0x270 net/ipv4/nexthop.c:3878

=============================================

NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:94 [inline]
 dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120
 nmi_cpu_backtrace+0x4ab/0x4e0 lib/nmi_backtrace.c:113
 nmi_trigger_cpumask_backtrace+0x198/0x320 lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:158 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:236 [inline]
 watchdog+0x1058/0x10a0 kernel/hung_task.c:399
 kthread+0x7a9/0x920 kernel/kthread.c:464
 ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:153
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 19543 Comm: kworker/u8:564 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: bat_events batadv_mcast_mla_update
RIP: 0010:bytes_is_nonzero mm/kasan/generic.c:87 [inline]
RIP: 0010:memory_is_nonzero mm/kasan/generic.c:104 [inline]
RIP: 0010:memory_is_poisoned_n mm/kasan/generic.c:129 [inline]
RIP: 0010:memory_is_poisoned mm/kasan/generic.c:161 [inline]
RIP: 0010:check_region_inline mm/kasan/generic.c:180 [inline]
RIP: 0010:kasan_check_range+0x86/0x2a0 mm/kasan/generic.c:189
Code: 00 fc ff df 4f 8d 3c 31 4c 89 fd 4c 29 dd 48 83 fd 10 7f 29 48 85 ed 0f 84 3e 01 00 00 4c 89 cd 48 f7 d5 48 01 dd 41 80 3b 00 <0f> 85 d6 01 00 00 49 ff c3 48 ff c5 75 ee e9 1e 01 00 00 45 89 dc
RSP: 0018:ffffc9000f79f470 EFLAGS: 00000246
RAX: ffffffff822bb801 RBX: 1ffffffff34a3350 RCX: ffffffff822bb8e5
RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffffff9a519a80
RBP: ffffffffffffffff R08: ffffffff9a519a87 R09: 1ffffffff34a3350
R10: dffffc0000000000 R11: fffffbfff34a3350 R12: ffff88823bf12fe0
R13: ffff88801ac417c8 R14: dffffc0000000001 R15: fffffbfff34a3351
FS:  0000000000000000(0000) GS:ffff888125324000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000562ac250bd88 CR3: 000000000e938000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000004520
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Call Trace:
 <NMI>
 </NMI>
 <TASK>
 instrument_atomic_read_write include/linux/instrumented.h:96 [inline]
 atomic_long_inc include/linux/atomic/atomic-instrumented.h:3591 [inline]
 kfence_guarded_alloc+0x8c5/0xd00 mm/kfence/core.c:508
 __kfence_alloc+0x408/0x430 mm/kfence/core.c:1138
 kfence_alloc include/linux/kfence.h:129 [inline]
 slab_alloc_node mm/slub.c:4171 [inline]
 __kmalloc_cache_noprof+0x2cc/0x370 mm/slub.c:4344
 kmalloc_noprof include/linux/slab.h:902 [inline]
 batadv_mcast_mla_softif_get_ipv6 net/batman-adv/multicast.c:477 [inline]
 batadv_mcast_mla_softif_get net/batman-adv/multicast.c:535 [inline]
 __batadv_mcast_mla_update net/batman-adv/multicast.c:911 [inline]
 batadv_mcast_mla_update+0x1be2/0x43c0 net/batman-adv/multicast.c:948
 process_one_work kernel/workqueue.c:3238 [inline]
 process_scheduled_works+0xac3/0x18e0 kernel/workqueue.c:3319
 worker_thread+0x870/0xd30 kernel/workqueue.c:3400
 kthread+0x7a9/0x920 kernel/kthread.c:464
 ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:153
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>