INFO: trying to register non-static key. The code is fine but needs lockdep annotation, or maybe you didn't initialize this object before use? turning off the locking correctness validator. CPU: 1 PID: 5523 Comm: syz-executor.0 Not tainted 6.0.0-rc6-syzkaller-17742-gc194837ebb57 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 Call trace: dump_backtrace+0x1c4/0x1f0 arch/arm64/kernel/stacktrace.c:156 show_stack+0x2c/0x54 arch/arm64/kernel/stacktrace.c:163 __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x104/0x16c lib/dump_stack.c:106 dump_stack+0x1c/0x58 lib/dump_stack.c:113 assign_lock_key+0x134/0x140 kernel/locking/lockdep.c:979 register_lock_class+0xc4/0x2f8 kernel/locking/lockdep.c:1292 __lock_acquire+0xa8/0x30a4 kernel/locking/lockdep.c:4932 lock_acquire+0x100/0x1f8 kernel/locking/lockdep.c:5666 __raw_spin_lock_bh include/linux/spinlock_api_smp.h:126 [inline] _raw_spin_lock_bh+0x54/0x6c kernel/locking/spinlock.c:178 spin_lock_bh include/linux/spinlock.h:354 [inline] __fib6_clean_all+0xf0/0x2c4 net/ipv6/ip6_fib.c:2256 fib6_clean_all+0x3c/0x50 net/ipv6/ip6_fib.c:2268 rt6_sync_down_dev net/ipv6/route.c:4894 [inline] rt6_disable_ip+0x80/0xc8 net/ipv6/route.c:4899 addrconf_ifdown+0x90/0xc30 net/ipv6/addrconf.c:3750 addrconf_notify+0x218/0x848 notifier_call_chain kernel/notifier.c:87 [inline] raw_notifier_call_chain+0x7c/0x108 kernel/notifier.c:455 call_netdevice_notifiers_info net/core/dev.c:1945 [inline] call_netdevice_notifiers_extack net/core/dev.c:1983 [inline] call_netdevice_notifiers net/core/dev.c:1997 [inline] netdev_wait_allrefs_any net/core/dev.c:10250 [inline] netdev_run_todo+0x340/0x6f0 net/core/dev.c:10364 rtnl_unlock+0x14/0x20 net/core/rtnetlink.c:147 tun_detach drivers/net/tun.c:704 [inline] tun_chr_close+0xe8/0xfc drivers/net/tun.c:3455 __fput+0x198/0x3dc fs/file_table.c:320 ____fput+0x20/0x30 fs/file_table.c:353 task_work_run+0xc4/0x14c kernel/task_work.c:177 exit_task_work include/linux/task_work.h:38 [inline] do_exit+0x26c/0xbe0 kernel/exit.c:795 do_group_exit+0x70/0xe8 kernel/exit.c:925 get_signal+0xb0c/0xb40 kernel/signal.c:2857 do_signal+0x128/0x438 arch/arm64/kernel/signal.c:1071 do_notify_resume+0xc0/0x1f0 arch/arm64/kernel/signal.c:1124 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline] exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline] asm_exit_to_user_mode+0x70/0x84 arch/arm64/kernel/entry-common.c:149 ret_from_fork+0x1c/0x20 ------------[ cut here ]------------ WARNING: CPU: 1 PID: 5523 at net/ipv6/ip6_fib.c:2068 fib6_walk_continue+0x278/0x2b0 net/ipv6/ip6_fib.c:2068 Modules linked in: CPU: 1 PID: 5523 Comm: syz-executor.0 Not tainted 6.0.0-rc6-syzkaller-17742-gc194837ebb57 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : fib6_walk_continue+0x278/0x2b0 net/ipv6/ip6_fib.c:2068 lr : fib6_walk_continue+0x278/0x2b0 net/ipv6/ip6_fib.c:2068 sp : ffff800013c5b7b0 x29: ffff800013c5b7b0 x28: 0000000000000000 x27: ffff0001019a2800 x26: ffff0000fc913f90 x25: ffff0001019a2818 x24: ffff0000fc913f90 x23: ffff0000fc913fa0 x22: ffff0000fc913500 x21: ffff80000b768bd4 x20: 0000000000000000 x19: ffff800013c5b818 x18: 00000000000000c0 x17: 6e69676e45206574 x16: 0000000000000202 x15: 0000000000000000 x14: 0000000000000000 x13: 205d333235355420 x12: 5b5d393131313332 x11: ff8080000b77c8c0 x10: 0000000000000000 x9 : ffff80000b77c8c0 x8 : ffff000103cd4f80 x7 : 205b5d3931313133 x6 : ffff80000b77b11c x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000000 x2 : ffff000103cd4f80 x1 : 0000000000000000 x0 : 0000000000000000 Call trace: fib6_walk_continue+0x278/0x2b0 net/ipv6/ip6_fib.c:2068 fib6_walk net/ipv6/ip6_fib.c:2161 [inline] fib6_clean_tree net/ipv6/ip6_fib.c:2241 [inline] __fib6_clean_all+0x16c/0x2c4 net/ipv6/ip6_fib.c:2257 fib6_clean_all+0x3c/0x50 net/ipv6/ip6_fib.c:2268 rt6_sync_down_dev net/ipv6/route.c:4894 [inline] rt6_disable_ip+0x80/0xc8 net/ipv6/route.c:4899 addrconf_ifdown+0x90/0xc30 net/ipv6/addrconf.c:3750 addrconf_notify+0x218/0x848 notifier_call_chain kernel/notifier.c:87 [inline] raw_notifier_call_chain+0x7c/0x108 kernel/notifier.c:455 call_netdevice_notifiers_info net/core/dev.c:1945 [inline] call_netdevice_notifiers_extack net/core/dev.c:1983 [inline] call_netdevice_notifiers net/core/dev.c:1997 [inline] netdev_wait_allrefs_any net/core/dev.c:10250 [inline] netdev_run_todo+0x340/0x6f0 net/core/dev.c:10364 rtnl_unlock+0x14/0x20 net/core/rtnetlink.c:147 tun_detach drivers/net/tun.c:704 [inline] tun_chr_close+0xe8/0xfc drivers/net/tun.c:3455 __fput+0x198/0x3dc fs/file_table.c:320 ____fput+0x20/0x30 fs/file_table.c:353 task_work_run+0xc4/0x14c kernel/task_work.c:177 exit_task_work include/linux/task_work.h:38 [inline] do_exit+0x26c/0xbe0 kernel/exit.c:795 do_group_exit+0x70/0xe8 kernel/exit.c:925 get_signal+0xb0c/0xb40 kernel/signal.c:2857 do_signal+0x128/0x438 arch/arm64/kernel/signal.c:1071 do_notify_resume+0xc0/0x1f0 arch/arm64/kernel/signal.c:1124 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline] exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline] asm_exit_to_user_mode+0x70/0x84 arch/arm64/kernel/entry-common.c:149 ret_from_fork+0x1c/0x20 irq event stamp: 7514 hardirqs last enabled at (7513): [] __local_bh_enable_ip+0x13c/0x1a4 kernel/softirq.c:401 hardirqs last disabled at (7511): [] __local_bh_enable_ip+0xc4/0x1a4 kernel/softirq.c:378 softirqs last enabled at (7512): [] spin_unlock_bh include/linux/spinlock.h:394 [inline] softirqs last enabled at (7512): [] clusterip_netdev_event+0x188/0x1ac net/ipv4/netfilter/ipt_CLUSTERIP.c:233 softirqs last disabled at (7514): [] spin_lock_bh include/linux/spinlock.h:354 [inline] softirqs last disabled at (7514): [] __fib6_clean_all+0xf0/0x2c4 net/ipv6/ip6_fib.c:2256 ---[ end trace 0000000000000000 ]--- Unable to handle kernel paging request at virtual address 0000000c0000005c Mem abort info: ESR = 0x0000000096000005 EC = 0x25: DABT (current EL), IL = 32 bits SET = 0, FnV = 0 EA = 0, S1PTW = 0 FSC = 0x05: level 1 translation fault Data abort info: ISV = 0, ISS = 0x00000005 CM = 0, WnR = 0 user pgtable: 4k pages, 48-bit VAs, pgdp=000000010bf96000 [0000000c0000005c] pgd=080000010bf6e003, p4d=080000010bf6e003, pud=0000000000000000 Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP Modules linked in: CPU: 1 PID: 5523 Comm: syz-executor.0 Tainted: G W 6.0.0-rc6-syzkaller-17742-gc194837ebb57 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 pstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : owner_on_cpu include/linux/sched.h:2269 [inline] pc : mutex_can_spin_on_owner kernel/locking/mutex.c:409 [inline] pc : mutex_optimistic_spin+0x1c8/0x254 kernel/locking/mutex.c:452 lr : __mutex_lock_common+0x1b4/0xca8 kernel/locking/mutex.c:607 sp : ffff800013c5b8b0 x29: ffff800013c5b8c0 x28: ffff80000ee2b000 x27: ffff80000cb4f56b x26: 0000000000000000 x25: 0000000000000001 x24: ffff0001019a9368 x23: ffff80000bdd6594 x22: ffff80000d30c000 x21: 0000000000000000 x20: 0000000000000000 x19: ffff0001019a9300 x18: 00000000000002db x17: ffff80000bffd6bc x16: 0000000000000000 x15: 0000000000000000 x14: 0000000000000000 x13: 0000000000000006 x12: ffff80000d891d88 x11: ff808000095a0efc x10: ffff80000d30c000 x9 : 0000000000000003 x8 : 0000000c00000028 x7 : 0000000000000000 x6 : ffff80000bdd6594 x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000000 x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff0001019a9300 Call trace: mutex_can_spin_on_owner kernel/locking/mutex.c:408 [inline] mutex_optimistic_spin+0x1c8/0x254 kernel/locking/mutex.c:452 __mutex_lock_common+0x1b4/0xca8 kernel/locking/mutex.c:607 __mutex_lock kernel/locking/mutex.c:747 [inline] mutex_lock_nested+0x38/0x44 kernel/locking/mutex.c:799 smc_pnet_remove_by_ndev+0x3c/0x194 net/smc/smc_pnet.c:228 smc_pnet_netdev_event+0x194/0x258 net/smc/smc_pnet.c:834 notifier_call_chain kernel/notifier.c:87 [inline] raw_notifier_call_chain+0x7c/0x108 kernel/notifier.c:455 call_netdevice_notifiers_info net/core/dev.c:1945 [inline] call_netdevice_notifiers_extack net/core/dev.c:1983 [inline] call_netdevice_notifiers net/core/dev.c:1997 [inline] netdev_wait_allrefs_any net/core/dev.c:10250 [inline] netdev_run_todo+0x340/0x6f0 net/core/dev.c:10364 rtnl_unlock+0x14/0x20 net/core/rtnetlink.c:147 tun_detach drivers/net/tun.c:704 [inline] tun_chr_close+0xe8/0xfc drivers/net/tun.c:3455 __fput+0x198/0x3dc fs/file_table.c:320 ____fput+0x20/0x30 fs/file_table.c:353 task_work_run+0xc4/0x14c kernel/task_work.c:177 exit_task_work include/linux/task_work.h:38 [inline] do_exit+0x26c/0xbe0 kernel/exit.c:795 do_group_exit+0x70/0xe8 kernel/exit.c:925 get_signal+0xb0c/0xb40 kernel/signal.c:2857 do_signal+0x128/0x438 arch/arm64/kernel/signal.c:1071 do_notify_resume+0xc0/0x1f0 arch/arm64/kernel/signal.c:1124 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline] exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline] asm_exit_to_user_mode+0x70/0x84 arch/arm64/kernel/entry-common.c:149 ret_from_fork+0x1c/0x20 Code: 37080148 f9400268 f27df108 54000080 (b9403509) ---[ end trace 0000000000000000 ]--- ---------------- Code disassembly (best guess): 0: 37080148 tbnz w8, #1, 0x28 4: f9400268 ldr x8, [x19] 8: f27df108 ands x8, x8, #0xfffffffffffffff8 c: 54000080 b.eq 0x1c // b.none * 10: b9403509 ldr w9, [x8, #52] <-- trapping instruction