INFO: task syz.8.1306:10530 blocked for more than 143 seconds. Tainted: G L syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz.8.1306 state:D stack:0 pid:10530 tgid:10529 ppid:7487 task_flags:0x400140 flags:0x00800081 Call trace: __switch_to+0x2b0/0x6e0 arch/arm64/kernel/process.c:810 (T) context_switch kernel/sched/core.c:5388 [inline] __schedule+0x1bec/0x2dcc kernel/sched/core.c:7189 __schedule_loop kernel/sched/core.c:7268 [inline] schedule+0x140/0x218 kernel/sched/core.c:7283 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:7340 __mutex_lock_common kernel/locking/mutex.c:726 [inline] __mutex_lock+0x4e4/0xef8 kernel/locking/mutex.c:820 mutex_lock_nested+0x24/0x30 kernel/locking/mutex.c:873 genl_lock net/netlink/genetlink.c:35 [inline] genl_op_lock net/netlink/genetlink.c:60 [inline] genl_rcv_msg+0xec/0x620 net/netlink/genetlink.c:1208 netlink_rcv_skb+0x22c/0x410 net/netlink/af_netlink.c:2555 genl_rcv+0x38/0x50 net/netlink/genetlink.c:1218 netlink_unicast_kernel net/netlink/af_netlink.c:1318 [inline] netlink_unicast+0x610/0x800 net/netlink/af_netlink.c:1344 netlink_sendmsg+0x63c/0x920 net/netlink/af_netlink.c:1899 sock_sendmsg_nosec net/socket.c:787 [inline] __sock_sendmsg+0xc8/0x138 net/socket.c:802 __sys_sendto+0x254/0x338 net/socket.c:2265 __do_sys_sendto net/socket.c:2272 [inline] __se_sys_sendto net/socket.c:2268 [inline] __arm64_sys_sendto+0xd8/0xf8 net/socket.c:2268 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x244 arch/arm64/kernel/syscall.c:49 el0_svc_common+0xe8/0x23c arch/arm64/kernel/syscall.c:121 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:140 el0_svc+0x64/0x260 arch/arm64/kernel/entry-common.c:736 el0t_64_sync_handler+0x48/0x148 arch/arm64/kernel/entry-common.c:755 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:594 Showing all locks held in the system: 4 locks held by kworker/u8:1/15: #0: ffff0000c004b940 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3289 [inline] #0: ffff0000c004b940 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x748/0x1098 kernel/workqueue.c:3397 #1: ffff80008eae7c40 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3289 [inline] #1: ffff80008eae7c40 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x750/0x1098 kernel/workqueue.c:3397 #2: ffff800089c3d140 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:80 #3: ffff0000cf420780 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: class_wiphy_constructor include/net/cfg80211.h:6645 [inline] #3: ffff0000cf420780 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: reg_leave_invalid_chans net/wireless/reg.c:2454 [inline] #3: ffff0000cf420780 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: reg_check_chans_work+0x14c/0x112c net/wireless/reg.c:2469 1 lock held by khungtaskd/31: #0: ffff800088b672e0 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire include/linux/rcupdate.h:300 [inline] #0: ffff800088b672e0 (rcu_read_lock){....}-{1:3}, at: rcu_read_lock include/linux/rcupdate.h:838 [inline] #0: ffff800088b672e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x4c/0x188 kernel/locking/lockdep.c:6775 3 locks held by kworker/u8:5/888: #0: ffff0000ce61d140 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3289 [inline] #0: ffff0000ce61d140 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x748/0x1098 kernel/workqueue.c:3397 #1: ffff800093a67c40 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3289 [inline] #1: ffff800093a67c40 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x750/0x1098 kernel/workqueue.c:3397 #2: ffff800089c3d140 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:80 4 locks held by kworker/u8:6/1246: 3 locks held by kworker/u8:9/1789: 3 locks held by kworker/u8:11/1891: 3 locks held by udevd/4342: 2 locks held by getty/4491: #0: ffff0000d39fa0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c drivers/tty/tty_ldsem.c:340 #1: ffff80009232e2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x354/0xf84 drivers/tty/n_tty.c:2211 1 lock held by syz-executor/4697: 2 locks held by syz-executor/4717: 3 locks held by kworker/0:5/4801: #0: ffff0000c002b540 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3289 [inline] #0: ffff0000c002b540 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x748/0x1098 kernel/workqueue.c:3397 #1: ffff800097687c40 (deferred_process_work){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3289 [inline] #1: ffff800097687c40 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x750/0x1098 kernel/workqueue.c:3397 #2: ffff800089c3d140 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:80 3 locks held by kworker/u8:12/4945: 3 locks held by kworker/u8:13/5189: 3 locks held by kworker/u8:14/6563: 3 locks held by kworker/u8:15/6564: 2 locks held by kworker/u8:18/6572: 3 locks held by kworker/u8:20/6574: 1 lock held by syz-executor/7916: 2 locks held by kworker/u8:25/8761: 2 locks held by kworker/u8:27/8764: #0: ffff0000c47e7140 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3289 [inline] #0: ffff0000c47e7140 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_scheduled_works+0x748/0x1098 kernel/workqueue.c:3397 #1: ffff800098057c40 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3289 [inline] #1: ffff800098057c40 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_scheduled_works+0x750/0x1098 kernel/workqueue.c:3397 2 locks held by kworker/u8:28/8765: 2 locks held by kworker/u8:29/8766: 3 locks held by kworker/u8:30/8768: 3 locks held by kworker/u8:32/8770: 3 locks held by kworker/u8:33/8771: 3 locks held by kworker/u8:34/8772: 3 locks held by kworker/u8:36/8778: 4 locks held by syz-executor/10168: 2 locks held by syz.8.1306/10530: #0: ffff800089ca3c08 (cb_lock){++++}-{4:4}, at: genl_rcv+0x28/0x50 net/netlink/genetlink.c:1217 #1: ffff800089ca3a40 (genl_mutex){+.+.}-{4:4}, at: genl_lock net/netlink/genetlink.c:35 [inline] #1: ffff800089ca3a40 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:60 [inline] #1: ffff800089ca3a40 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0xec/0x620 net/netlink/genetlink.c:1208 =============================================