INFO: task syz.2.1790:13084 blocked for more than 143 seconds.
      Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.2.1790      state:D stack:26464 pid:13084 tgid:13081 ppid:5826   flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5369 [inline]
 __schedule+0xe58/0x5ad0 kernel/sched/core.c:6756
 __schedule_loop kernel/sched/core.c:6833 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6848
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6905
 __mutex_lock_common kernel/locking/mutex.c:665 [inline]
 __mutex_lock+0x62b/0xa60 kernel/locking/mutex.c:735
 nfsd_nl_rpc_status_get_dumpit+0xb1/0x1160 fs/nfsd/nfsctl.c:1558
 genl_dumpit+0x122/0x230 net/netlink/genetlink.c:1027
 netlink_dump+0x53c/0xd00 net/netlink/af_netlink.c:2317
 __netlink_dump_start+0x6d9/0x980 net/netlink/af_netlink.c:2432
 genl_family_rcv_msg_dumpit+0x1e1/0x2e0 net/netlink/genetlink.c:1076
 genl_family_rcv_msg net/netlink/genetlink.c:1192 [inline]
 genl_rcv_msg+0x470/0x800 net/netlink/genetlink.c:1210
 netlink_rcv_skb+0x165/0x410 net/netlink/af_netlink.c:2542
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
 netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]
 netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1347
 netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1891
 sock_sendmsg_nosec net/socket.c:711 [inline]
 __sock_sendmsg net/socket.c:726 [inline]
 ____sys_sendmsg+0x9ae/0xb40 net/socket.c:2583
 ___sys_sendmsg+0x135/0x1e0 net/socket.c:2637
 __sys_sendmsg+0x16e/0x220 net/socket.c:2669
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f98dab85d29
RSP: 002b:00007f98db933038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000005
RBP: 00007f98dac01b08 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000001 R14: 00007f98dad76080 R15: 00007ffc225ec158
 </TASK>
INFO: task syz.2.1790:13087 blocked for more than 144 seconds.
      Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.2.1790      state:D stack:27248 pid:13087 tgid:13081 ppid:5826   flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5369 [inline]
 __schedule+0xe58/0x5ad0 kernel/sched/core.c:6756
 __schedule_loop kernel/sched/core.c:6833 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6848
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6905
 __mutex_lock_common kernel/locking/mutex.c:665 [inline]
 __mutex_lock+0x62b/0xa60 kernel/locking/mutex.c:735
 netlink_dump+0x9e8/0xd00 net/netlink/af_netlink.c:2263
 netlink_recvmsg+0xa0d/0xf30 net/netlink/af_netlink.c:1973
 sock_recvmsg_nosec net/socket.c:1033 [inline]
 sock_recvmsg+0x1f6/0x250 net/socket.c:1055
 __sys_recvfrom+0x204/0x310 net/socket.c:2247
 __do_sys_recvfrom net/socket.c:2262 [inline]
 __se_sys_recvfrom net/socket.c:2258 [inline]
 __x64_sys_recvfrom+0xe0/0x1c0 net/socket.c:2258
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f98dab87af4
RSP: 002b:00007f98db910ed0 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
RAX: ffffffffffffffda RBX: 00007f98db910fc0 RCX: 00007f98dab87af4
RDX: 0000000000001000 RSI: 00007f98db911010 RDI: 0000000000000005
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
R13: 00007f98db910f68 R14: 00007f98db911010 R15: 0000000000000000
 </TASK>

Showing all locks held in the system:
1 lock held by khungtaskd/30:
 #0: ffffffff8ddbad40 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire include/linux/rcupdate.h:337 [inline]
 #0: ffffffff8ddbad40 (rcu_read_lock){....}-{1:3}, at: rcu_read_lock include/linux/rcupdate.h:849 [inline]
 #0: ffffffff8ddbad40 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390 kernel/locking/lockdep.c:6744
2 locks held by kworker/u9:0/54:
 #0: ffff888025c8e148 ((wq_completion)nbd6-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90000bf7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:1/5142:
 #0: ffff888025c82148 ((wq_completion)nbd7-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9001055fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:2/5834:
 #0: ffff888025b3e948 ((wq_completion)nbd2-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
2 locks held by kworker/u9:3/5836:
 #0: ffff888025d7b148 ((wq_completion)nbd8-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000453fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:4/5839:
 #0: ffff888025acc948 ((wq_completion)nbd0-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000455fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:5/5840:
 #0: ffff888025c65148 ((wq_completion)nbd4-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000456fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:6/5841:
 #0: ffff888025c73948 ((wq_completion)nbd5-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000457fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:7/5842:
 #0: ffff888025bc1148 ((wq_completion)nbd1-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000458fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:8/5843:
 #0: ffff888025bc7948 ((wq_completion)nbd3-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000459fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:9/7202:
 #0: ffff888025f71948 ((wq_completion)nbd9-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000c0c7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:10/7237:
 #0: ffff8880260d3148 ((wq_completion)nbd15-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000be97d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:11/7334:
 #0: ffff888025f28948 ((wq_completion)nbd10-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000bd57d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:12/7358:
 #0: ffff8880260bd948 ((wq_completion)nbd14-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000b40fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:13/7359:
 #0: ffff888025f9e948 ((wq_completion)nbd13-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900051e7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:14/7361:
 #0: ffff888025f2f148 ((wq_completion)nbd12-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90005197d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:15/7362:
 #0: ffff88807c12a148 ((wq_completion)nbd17-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90005187d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:16/7363:
 #0: ffff888062130148 ((wq_completion)nbd24-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90005177d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:17/7364:
 #0: ffff888025f98148 ((wq_completion)nbd11-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90005167d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:18/7391:
 #0: ffff88804fc5b948 ((wq_completion)nbd16-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90005027d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
 #0: ffff888063666148 ((wq_completion)nbd18-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90003367d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:20/7658:
 #0: ffff888054029148 ((wq_completion)nbd19-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90003337d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:21/7668:
 #0: ffff888062aa9148 ((wq_completion)nbd20-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000b33fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:22/7729:
 #0: ffff888021bec948 ((wq_completion)nbd21-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90005127d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:23/7775:
 #0: ffff88806282d948 ((wq_completion)nbd22-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900050c7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:24/7947:
 #0: ffff88807bd29948 ((wq_completion)nbd23-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90004eb7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:25/8117:
 #0: ffff888032251948 ((wq_completion)nbd39-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000eb27d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:26/8137:
 #0: ffff888034335148 ((wq_completion)nbd25-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900189cfd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:27/8187:
 #0: ffff88805e211148 ((wq_completion)nbd26-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9001908fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:28/8311:
 #0: ffff88806140b948 ((wq_completion)nbd27-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900196c7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:29/8350:
 #0: ffff888012297148 ((wq_completion)nbd28-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90003bffd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:30/8612:
 #0: ffff888028e36948 ((wq_completion)nbd29-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90019c37d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:31/8640:
 #0: ffff88806376d948 ((wq_completion)nbd30-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90019c97d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:32/8676:
 #0: ffff888012c2d948 ((wq_completion)nbd31-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900198cfd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:33/8750:
 #0: ffff8880245bc948 ((wq_completion)nbd32-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9001901fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:34/8803:
 #0: ffff88807d3ea148 ((wq_completion)nbd33-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000ec77d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:35/9113:
 #0: ffff88805e676148 ((wq_completion)nbd34-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90010277d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:36/9196:
 #0: ffff88802494e148 ((wq_completion)nbd35-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900051d7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:37/9412:
 #0: ffff8880543eb148 ((wq_completion)nbd36-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc9000b45fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:38/9568:
 #0: ffff888029e01148 ((wq_completion)nbd37-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90004e87d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:39/9587:
 #0: ffff88802941d148 ((wq_completion)nbd38-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90004ef7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:40/9696:
 #0: ffff888031109948 ((wq_completion)nbd41-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90004d3fd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
 #0: ffff888011d91148 ((wq_completion)nbd40-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90003447d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:42/9737:
 #0: ffff88805cbde148 ((wq_completion)nbd46-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900039c7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:43/9744:
 #0: ffff888028305948 ((wq_completion)nbd42-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900039a7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:44/9767:
 #0: ffff888027322148 ((wq_completion)nbd43-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900032f7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:45/9813:
 #0: ffff88805d88d148 ((wq_completion)nbd44-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90002f77d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:46/9837:
 #0: ffff888045151948 ((wq_completion)nbd45-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90002f37d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:47/9876:
 #0: ffff888054f91148 ((wq_completion)nbd49-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90019b07d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:48/9908:
 #0: ffff888064413148 ((wq_completion)nbd47-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc900196efd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:49/10055:
 #0: ffff888060cdb148 ((wq_completion)nbd48-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90018ec7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:50/10417:
 #0: ffff888029f89148 ((wq_completion)nbd51-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90010097d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:51/10462:
 #0: ffff888060bba148 ((wq_completion)nbd50-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90005157d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:52/10509:
 #0: ffff888024bf5148 ((wq_completion)nbd52-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90004fd7d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:54/10830:
 #0: ffff888032650148 ((wq_completion)nbd53-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90019ccfd80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by kworker/u9:56/12329:
 #0: ffff888061454148 ((wq_completion)nbd54-recv){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 kernel/workqueue.c:3211
 #1: ffffc90004e97d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3212
2 locks held by syz.2.1790/13083:
 #0: ffffffff8fb5f590 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 net/netlink/genetlink.c:1218
 #1: ffffffff8e1bb548 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xe3/0x1b40 fs/nfsd/nfsctl.c:1964
3 locks held by syz.2.1790/13084:
 #0: ffffffff8fb5f590 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 net/netlink/genetlink.c:1218
 #1: ffff8880645126c8 (nlk_cb_mutex-GENERIC){+.+.}-{4:4}, at: __netlink_dump_start+0x154/0x980 net/netlink/af_netlink.c:2396
 #2: ffffffff8e1bb548 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_rpc_status_get_dumpit+0xb1/0x1160 fs/nfsd/nfsctl.c:1558
1 lock held by syz.2.1790/13087:
 #0: ffff8880645126c8 (nlk_cb_mutex-GENERIC){+.+.}-{4:4}, at: netlink_dump+0x9e8/0xd00 net/netlink/af_netlink.c:2263
2 locks held by syz.3.2070/14068:
 #0: ffffffff8fb5f590 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 net/netlink/genetlink.c:1218
 #1: ffffffff8e1bb548 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xe3/0x1b40 fs/nfsd/nfsctl.c:1964

=============================================

NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:94 [inline]
 dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120
 nmi_cpu_backtrace+0x27b/0x390 lib/nmi_backtrace.c:113
 nmi_trigger_cpumask_backtrace+0x29c/0x300 lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:162 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:234 [inline]
 watchdog+0xf14/0x1240 kernel/hung_task.c:397
 kthread+0x2c1/0x3a0 kernel/kthread.c:389
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 16 Comm: ksoftirqd/0 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
RIP: 0010:arch_atomic_read arch/x86/include/asm/atomic.h:23 [inline]
RIP: 0010:raw_atomic_read include/linux/atomic/atomic-arch-fallback.h:457 [inline]
RIP: 0010:rcu_is_watching_curr_cpu include/linux/context_tracking.h:128 [inline]
RIP: 0010:rcu_is_watching+0x5c/0xc0 kernel/rcu/tree.c:737
Code: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 5c 48 03 1c ed e0 0c 83 8d 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <0f> b6 14 02 48 89 d8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 24 8b
RSP: 0018:ffffc90000157ae8 EFLAGS: 00000a06
RAX: dffffc0000000000 RBX: ffff8880b8637f68 RCX: ffffffff81756e1c
RDX: 1ffff110170c6fed RSI: ffffffff8bb17240 RDI: ffffffff8d830ce0
RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff2039eda
R10: ffffffff901cf6d7 R11: 0000000000000002 R12: 0000000000000000
R13: 000000000003da4c R14: 0000000000000000 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055fb59745d88 CR3: 000000000db7e000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <NMI>
 </NMI>
 <TASK>
 trace_lock_acquire+0x14e/0x1f0 include/trace/events/lock.h:24
 lock_acquire+0x2f/0xb0 kernel/locking/lockdep.c:5820
 rcu_lock_acquire include/linux/rcupdate.h:337 [inline]
 rcu_read_lock include/linux/rcupdate.h:849 [inline]
 percpu_ref_put_many include/linux/percpu-refcount.h:330 [inline]
 percpu_ref_put include/linux/percpu-refcount.h:351 [inline]
 obj_cgroup_put include/linux/memcontrol.h:780 [inline]
 obj_cgroup_put include/linux/memcontrol.h:777 [inline]
 refill_obj_stock+0x2ab/0x610 mm/memcontrol.c:2894
 obj_cgroup_uncharge mm/memcontrol.c:2946 [inline]
 __memcg_slab_free_hook+0x229/0x5a0 mm/memcontrol.c:3033
 memcg_slab_free_hook mm/slub.c:2178 [inline]
 slab_free mm/slub.c:4610 [inline]
 kmem_cache_free+0x387/0x4c0 mm/slub.c:4715
 rcu_do_batch kernel/rcu/tree.c:2567 [inline]
 rcu_core+0x79d/0x14d0 kernel/rcu/tree.c:2823
 handle_softirqs+0x213/0x8f0 kernel/softirq.c:561
 run_ksoftirqd kernel/softirq.c:950 [inline]
 run_ksoftirqd+0x3a/0x60 kernel/softirq.c:942
 smpboot_thread_fn+0x661/0xa30 kernel/smpboot.c:164
 kthread+0x2c1/0x3a0 kernel/kthread.c:389
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>