Warning: Permanently added '10.128.1.186' (ED25519) to the list of known hosts. executing program executing program executing program executing program [ 59.141328][ T18] [ 59.143702][ T18] ===================================================== [ 59.150617][ T18] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 59.158067][ T18] 6.8.0-syzkaller-05236-g443574b03387 #0 Not tainted [ 59.164738][ T18] ----------------------------------------------------- [ 59.171667][ T18] rcu_exp_gp_kthr/18 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire: [ 59.179546][ T18] ffff8880218aa8d8 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 59.189929][ T18] [ 59.189929][ T18] and this task is already holding: [ 59.197282][ T18] ffff8880b942a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 59.206155][ T18] which would create a new lock dependency: [ 59.212027][ T18] (&base->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2} [ 59.220132][ T18] [ 59.220132][ T18] but this new dependency connects a HARDIRQ-irq-safe lock: [ 59.229582][ T18] (&base->lock){-.-.}-{2:2} [ 59.229608][ T18] [ 59.229608][ T18] ... which became HARDIRQ-irq-safe at: [ 59.241863][ T18] lock_acquire+0x1e4/0x530 [ 59.246443][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 59.251819][ T18] lock_timer_base+0x112/0x240 [ 59.256668][ T18] add_timer_on+0x1e5/0x5c0 [ 59.261244][ T18] handle_irq_event+0xad/0x1f0 [ 59.266079][ T18] handle_level_irq+0x3c5/0x6e0 [ 59.270998][ T18] __common_interrupt+0x13a/0x230 [ 59.276093][ T18] common_interrupt+0xa5/0xd0 [ 59.280851][ T18] asm_common_interrupt+0x26/0x40 [ 59.285948][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 59.291740][ T18] __setup_irq+0x1277/0x1cf0 [ 59.296401][ T18] request_threaded_irq+0x2ab/0x380 [ 59.301678][ T18] setup_default_timer_irq+0x25/0x60 [ 59.307035][ T18] x86_late_time_init+0x66/0xc0 [ 59.311961][ T18] start_kernel+0x3f3/0x500 [ 59.316529][ T18] x86_64_start_reservations+0x2a/0x30 [ 59.322057][ T18] x86_64_start_kernel+0x99/0xa0 [ 59.327065][ T18] common_startup_64+0x13e/0x147 [ 59.332088][ T18] [ 59.332088][ T18] to a HARDIRQ-irq-unsafe lock: [ 59.339095][ T18] (&htab->buckets[i].lock){+...}-{2:2} [ 59.339120][ T18] [ 59.339120][ T18] ... which became HARDIRQ-irq-unsafe at: [ 59.352514][ T18] ... [ 59.352522][ T18] lock_acquire+0x1e4/0x530 [ 59.359674][ T18] _raw_spin_lock_bh+0x35/0x50 [ 59.364511][ T18] sock_hash_free+0x164/0x820 [ 59.369263][ T18] bpf_map_free_deferred+0xe6/0x110 [ 59.374536][ T18] process_scheduled_works+0xa00/0x1770 [ 59.380257][ T18] worker_thread+0x86d/0xd70 [ 59.384930][ T18] kthread+0x2f0/0x390 [ 59.389086][ T18] ret_from_fork+0x4b/0x80 [ 59.393588][ T18] ret_from_fork_asm+0x1a/0x30 [ 59.398427][ T18] [ 59.398427][ T18] other info that might help us debug this: [ 59.398427][ T18] [ 59.408642][ T18] Possible interrupt unsafe locking scenario: [ 59.408642][ T18] [ 59.416946][ T18] CPU0 CPU1 [ 59.422297][ T18] ---- ---- [ 59.427645][ T18] lock(&htab->buckets[i].lock); [ 59.432659][ T18] local_irq_disable(); [ 59.439399][ T18] lock(&base->lock); [ 59.445976][ T18] lock(&htab->buckets[i].lock); [ 59.453563][ T18] [ 59.457000][ T18] lock(&base->lock); [ 59.461232][ T18] [ 59.461232][ T18] *** DEADLOCK *** [ 59.461232][ T18] [ 59.469355][ T18] 2 locks held by rcu_exp_gp_kthr/18: [ 59.474707][ T18] #0: ffff8880b942a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 59.484010][ T18] #1: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420 [ 59.493394][ T18] [ 59.493394][ T18] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 59.503782][ T18] -> (&base->lock){-.-.}-{2:2} { [ 59.508742][ T18] IN-HARDIRQ-W at: [ 59.512703][ T18] lock_acquire+0x1e4/0x530 [ 59.518838][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 59.525757][ T18] lock_timer_base+0x112/0x240 [ 59.532158][ T18] add_timer_on+0x1e5/0x5c0 [ 59.538300][ T18] handle_irq_event+0xad/0x1f0 [ 59.544697][ T18] handle_level_irq+0x3c5/0x6e0 [ 59.551180][ T18] __common_interrupt+0x13a/0x230 [ 59.557850][ T18] common_interrupt+0xa5/0xd0 [ 59.564164][ T18] asm_common_interrupt+0x26/0x40 [ 59.570825][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 59.578186][ T18] __setup_irq+0x1277/0x1cf0 [ 59.584412][ T18] request_threaded_irq+0x2ab/0x380 [ 59.591262][ T18] setup_default_timer_irq+0x25/0x60 [ 59.598209][ T18] x86_late_time_init+0x66/0xc0 [ 59.604715][ T18] start_kernel+0x3f3/0x500 [ 59.610867][ T18] x86_64_start_reservations+0x2a/0x30 [ 59.617968][ T18] x86_64_start_kernel+0x99/0xa0 [ 59.624544][ T18] common_startup_64+0x13e/0x147 [ 59.631118][ T18] IN-SOFTIRQ-W at: [ 59.635083][ T18] lock_acquire+0x1e4/0x530 [ 59.641223][ T18] _raw_spin_lock_irq+0xd3/0x120 [ 59.647795][ T18] __run_timer_base+0x103/0x8e0 [ 59.654277][ T18] run_timer_softirq+0x67/0x170 [ 59.660759][ T18] __do_softirq+0x2be/0x943 [ 59.666901][ T18] __irq_exit_rcu+0xf2/0x1c0 [ 59.673123][ T18] irq_exit_rcu+0x9/0x30 [ 59.679013][ T18] common_interrupt+0xaa/0xd0 [ 59.685329][ T18] asm_common_interrupt+0x26/0x40 [ 59.691993][ T18] console_flush_all+0x9cd/0xec0 [ 59.698595][ T18] console_unlock+0x13b/0x4d0 [ 59.704927][ T18] vprintk_emit+0x509/0x720 [ 59.711079][ T18] _printk+0xd5/0x120 [ 59.716704][ T18] cpu_select_mitigations+0x3c/0xa0 [ 59.723542][ T18] arch_cpu_finalize_init+0x20/0xa0 [ 59.730381][ T18] start_kernel+0x402/0x500 [ 59.736519][ T18] x86_64_start_reservations+0x2a/0x30 [ 59.743616][ T18] x86_64_start_kernel+0x99/0xa0 [ 59.750189][ T18] common_startup_64+0x13e/0x147 [ 59.756761][ T18] INITIAL USE at: [ 59.760641][ T18] lock_acquire+0x1e4/0x530 [ 59.766775][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 59.773609][ T18] lock_timer_base+0x112/0x240 [ 59.780013][ T18] __mod_timer+0x1ca/0xeb0 [ 59.785983][ T18] queue_delayed_work_on+0x15a/0x260 [ 59.792815][ T18] crng_reseed+0xe7/0x220 [ 59.798688][ T18] random_init+0x1a9/0x300 [ 59.804656][ T18] start_kernel+0x253/0x500 [ 59.810702][ T18] x86_64_start_reservations+0x2a/0x30 [ 59.817709][ T18] x86_64_start_kernel+0x99/0xa0 [ 59.824201][ T18] common_startup_64+0x13e/0x147 [ 59.830787][ T18] } [ 59.833280][ T18] ... key at: [] init_timer_cpu.__key+0x0/0x20 [ 59.841701][ T18] [ 59.841701][ T18] the dependencies between the lock to be acquired [ 59.841710][ T18] and HARDIRQ-irq-unsafe lock: [ 59.855296][ T18] -> (&htab->buckets[i].lock){+...}-{2:2} { [ 59.861192][ T18] HARDIRQ-ON-W at: [ 59.865156][ T18] lock_acquire+0x1e4/0x530 [ 59.871297][ T18] _raw_spin_lock_bh+0x35/0x50 [ 59.877695][ T18] sock_hash_free+0x164/0x820 [ 59.884006][ T18] bpf_map_free_deferred+0xe6/0x110 [ 59.890838][ T18] process_scheduled_works+0xa00/0x1770 [ 59.898018][ T18] worker_thread+0x86d/0xd70 [ 59.904240][ T18] kthread+0x2f0/0x390 [ 59.909964][ T18] ret_from_fork+0x4b/0x80 [ 59.916032][ T18] ret_from_fork_asm+0x1a/0x30 [ 59.922442][ T18] INITIAL USE at: [ 59.926334][ T18] lock_acquire+0x1e4/0x530 [ 59.932401][ T18] _raw_spin_lock_bh+0x35/0x50 [ 59.938711][ T18] sock_hash_free+0x164/0x820 [ 59.944942][ T18] bpf_map_free_deferred+0xe6/0x110 [ 59.951687][ T18] process_scheduled_works+0xa00/0x1770 [ 59.958781][ T18] worker_thread+0x86d/0xd70 [ 59.964918][ T18] kthread+0x2f0/0x390 [ 59.970535][ T18] ret_from_fork+0x4b/0x80 [ 59.976513][ T18] ret_from_fork_asm+0x1a/0x30 [ 59.982830][ T18] } [ 59.985311][ T18] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 59.993621][ T18] ... acquired at: [ 59.997404][ T18] lock_acquire+0x1e4/0x530 [ 60.002063][ T18] _raw_spin_lock_bh+0x35/0x50 [ 60.006988][ T18] sock_hash_delete_elem+0xb0/0x300 [ 60.012346][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 60.017963][ T18] bpf_trace_run2+0x204/0x420 [ 60.022797][ T18] enqueue_timer+0x396/0x550 [ 60.027546][ T18] __mod_timer+0xa0e/0xeb0 [ 60.032123][ T18] schedule_timeout+0x1b9/0x310 [ 60.037130][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 60.042661][ T18] kthread_worker_fn+0x4bf/0xab0 [ 60.047765][ T18] kthread+0x2f0/0x390 [ 60.051991][ T18] ret_from_fork+0x4b/0x80 [ 60.056572][ T18] ret_from_fork_asm+0x1a/0x30 [ 60.061507][ T18] [ 60.063816][ T18] [ 60.063816][ T18] stack backtrace: [ 60.069685][ T18] CPU: 0 PID: 18 Comm: rcu_exp_gp_kthr Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 60.079554][ T18] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 60.089593][ T18] Call Trace: [ 60.092858][ T18] [ 60.095776][ T18] dump_stack_lvl+0x1e7/0x2e0 [ 60.100446][ T18] ? __pfx_dump_stack_lvl+0x10/0x10 [ 60.105637][ T18] ? __pfx__printk+0x10/0x10 [ 60.110215][ T18] ? print_shortest_lock_dependencies+0xf2/0x160 [ 60.116535][ T18] validate_chain+0x4dc7/0x58e0 [ 60.121383][ T18] ? __pfx_validate_chain+0x10/0x10 [ 60.126570][ T18] ? __pfx_validate_chain+0x10/0x10 [ 60.131755][ T18] ? register_lock_class+0x102/0x980 [ 60.137026][ T18] ? __pfx_register_lock_class+0x10/0x10 [ 60.142645][ T18] ? mark_lock+0x9a/0x350 [ 60.146967][ T18] __lock_acquire+0x1346/0x1fd0 [ 60.151813][ T18] lock_acquire+0x1e4/0x530 [ 60.156298][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 60.161657][ T18] ? __pfx_lockdep_softirqs_off+0x10/0x10 [ 60.167361][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 60.172373][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 60.177729][ T18] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 60.183519][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 60.188537][ T18] ? do_raw_spin_unlock+0x13c/0x8b0 [ 60.193728][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 60.199191][ T18] _raw_spin_lock_bh+0x35/0x50 [ 60.203942][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 60.209301][ T18] sock_hash_delete_elem+0xb0/0x300 [ 60.214498][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 60.219943][ T18] bpf_trace_run2+0x204/0x420 [ 60.224607][ T18] ? bpf_trace_run2+0x114/0x420 [ 60.229441][ T18] ? __pfx_bpf_trace_run2+0x10/0x10 [ 60.234622][ T18] ? __pfx_debug_object_activate+0x10/0x10 [ 60.240414][ T18] ? lockdep_hardirqs_on+0x99/0x150 [ 60.245598][ T18] enqueue_timer+0x396/0x550 [ 60.250178][ T18] __mod_timer+0xa0e/0xeb0 [ 60.254585][ T18] ? __asan_memset+0x23/0x50 [ 60.259158][ T18] ? __pfx___mod_timer+0x10/0x10 [ 60.264082][ T18] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 60.269873][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 60.275841][ T18] schedule_timeout+0x1b9/0x310 [ 60.280683][ T18] ? __pfx_schedule_timeout+0x10/0x10 [ 60.286130][ T18] ? __pfx_process_timeout+0x10/0x10 [ 60.291406][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 60.296773][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 60.302744][ T18] ? __pfx_rcu_exp_sel_wait_wake+0x10/0x10 [ 60.308536][ T18] ? _raw_spin_lock_irq+0xdf/0x120 [ 60.313639][ T18] kthread_worker_fn+0x4bf/0xab0 [ 60.318564][ T18] ? kthread_worker_fn+0xdc/0xab0 [ 60.323575][ T18] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 60.328849][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 60.334294][ T18] kthread+0x2f0/0x390 [ 60.338352][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 60.343808][ T18] ? __pfx_kthread+0x10/0x10 [ 60.348383][ T18] ret_from_fork+0x4b/0x80 [ 60.352789][ T18] ? __pfx_kthread+0x10/0x10 [ 60.357362][ T18] ret_from_fork_asm+0x1a/0x30 [ 60.362121][ T18]