Warning: Permanently added '10.128.1.55' (ED25519) to the list of known hosts. executing program [ 42.032054][ T4216] [ 42.032653][ T4216] ===================================================== [ 42.034444][ T4216] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected [ 42.036421][ T4216] 6.1.45-syzkaller #0 Not tainted [ 42.037808][ T4216] ----------------------------------------------------- [ 42.039588][ T4216] syz-executor272/4216 [HC0[0]:SC0[2]:HE1:SE0] is trying to acquire: [ 42.041757][ T4216] ffff800015b3c360 (fs_reclaim){+.+.}-{0:0}, at: __kmem_cache_alloc_node+0x58/0x388 [ 42.044304][ T4216] [ 42.044304][ T4216] and this task is already holding: [ 42.046165][ T4216] ffff800017eb4848 (noop_qdisc.q.lock){+.-.}-{2:2}, at: sch_tree_lock+0x120/0x1d4 [ 42.048596][ T4216] which would create a new lock dependency: [ 42.050185][ T4216] (noop_qdisc.q.lock){+.-.}-{2:2} -> (fs_reclaim){+.+.}-{0:0} [ 42.052165][ T4216] [ 42.052165][ T4216] but this new dependency connects a SOFTIRQ-irq-safe lock: [ 42.054717][ T4216] (noop_qdisc.q.lock){+.-.}-{2:2} [ 42.054736][ T4216] [ 42.054736][ T4216] ... which became SOFTIRQ-irq-safe at: [ 42.058132][ T4216] lock_acquire+0x26c/0x7cc [ 42.059340][ T4216] _raw_spin_lock+0x54/0x6c [ 42.060528][ T4216] net_tx_action+0x6ec/0x94c [ 42.061753][ T4216] __do_softirq+0x30c/0xea0 [ 42.062931][ T4216] run_ksoftirqd+0x68/0x258 [ 42.064079][ T4216] smpboot_thread_fn+0x4b0/0x96c [ 42.065445][ T4216] kthread+0x250/0x2d8 [ 42.066462][ T4216] ret_from_fork+0x10/0x20 [ 42.067653][ T4216] [ 42.067653][ T4216] to a SOFTIRQ-irq-unsafe lock: [ 42.069461][ T4216] (fs_reclaim){+.+.}-{0:0} [ 42.069478][ T4216] [ 42.069478][ T4216] ... which became SOFTIRQ-irq-unsafe at: [ 42.072779][ T4216] ... [ 42.072784][ T4216] lock_acquire+0x26c/0x7cc [ 42.074754][ T4216] fs_reclaim_acquire+0x90/0x12c [ 42.076062][ T4216] __kmem_cache_alloc_node+0x58/0x388 [ 42.077556][ T4216] kmalloc_node_trace+0x44/0x90 [ 42.078917][ T4216] init_rescuer+0xa4/0x264 [ 42.080132][ T4216] workqueue_init+0x298/0x5b4 [ 42.081363][ T4216] kernel_init_freeable+0x33c/0x528 [ 42.082794][ T4216] kernel_init+0x24/0x29c [ 42.083996][ T4216] ret_from_fork+0x10/0x20 [ 42.085206][ T4216] [ 42.085206][ T4216] other info that might help us debug this: [ 42.085206][ T4216] [ 42.087921][ T4216] Possible interrupt unsafe locking scenario: [ 42.087921][ T4216] [ 42.090127][ T4216] CPU0 CPU1 [ 42.091511][ T4216] ---- ---- [ 42.092934][ T4216] lock(fs_reclaim); [ 42.093990][ T4216] local_irq_disable(); [ 42.095778][ T4216] lock(noop_qdisc.q.lock); [ 42.097613][ T4216] lock(fs_reclaim); [ 42.099324][ T4216] [ 42.100246][ T4216] lock(noop_qdisc.q.lock); [ 42.101533][ T4216] [ 42.101533][ T4216] *** DEADLOCK *** [ 42.101533][ T4216] [ 42.103757][ T4216] 2 locks held by syz-executor272/4216: [ 42.105224][ T4216] #0: ffff800017e6fdc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e8/0xd94 [ 42.107758][ T4216] #1: ffff800017eb4848 (noop_qdisc.q.lock){+.-.}-{2:2}, at: sch_tree_lock+0x120/0x1d4 [ 42.110431][ T4216] [ 42.110431][ T4216] the dependencies between SOFTIRQ-irq-safe lock and the holding lock: [ 42.113291][ T4216] -> (noop_qdisc.q.lock){+.-.}-{2:2} { [ 42.114761][ T4216] HARDIRQ-ON-W at: [ 42.115750][ T4216] lock_acquire+0x26c/0x7cc [ 42.117396][ T4216] _raw_spin_lock+0x54/0x6c [ 42.118992][ T4216] __dev_queue_xmit+0xb14/0x38d8 [ 42.120771][ T4216] tx+0x90/0x134 [ 42.122157][ T4216] kthread+0x1ac/0x374 [ 42.123713][ T4216] kthread+0x250/0x2d8 [ 42.125256][ T4216] ret_from_fork+0x10/0x20 [ 42.126940][ T4216] IN-SOFTIRQ-W at: [ 42.128064][ T4216] lock_acquire+0x26c/0x7cc [ 42.129775][ T4216] _raw_spin_lock+0x54/0x6c [ 42.131510][ T4216] net_tx_action+0x6ec/0x94c [ 42.133270][ T4216] __do_softirq+0x30c/0xea0 [ 42.134960][ T4216] run_ksoftirqd+0x68/0x258 [ 42.136638][ T4216] smpboot_thread_fn+0x4b0/0x96c [ 42.138340][ T4216] kthread+0x250/0x2d8 [ 42.139767][ T4216] ret_from_fork+0x10/0x20 [ 42.141327][ T4216] INITIAL USE at: [ 42.142322][ T4216] lock_acquire+0x26c/0x7cc [ 42.143892][ T4216] _raw_spin_lock+0x54/0x6c [ 42.145524][ T4216] __dev_queue_xmit+0xb14/0x38d8 [ 42.147223][ T4216] tx+0x90/0x134 [ 42.148568][ T4216] kthread+0x1ac/0x374 [ 42.150154][ T4216] kthread+0x250/0x2d8 [ 42.151602][ T4216] ret_from_fork+0x10/0x20 [ 42.153204][ T4216] } [ 42.153822][ T4216] ... key at: [] noop_qdisc+0x108/0x320 [ 42.155828][ T4216] [ 42.155828][ T4216] the dependencies between the lock to be acquired [ 42.155835][ T4216] and SOFTIRQ-irq-unsafe lock: [ 42.159404][ T4216] -> (fs_reclaim){+.+.}-{0:0} { [ 42.160615][ T4216] HARDIRQ-ON-W at: [ 42.161663][ T4216] lock_acquire+0x26c/0x7cc [ 42.163241][ T4216] fs_reclaim_acquire+0x90/0x12c [ 42.164965][ T4216] __kmem_cache_alloc_node+0x58/0x388 [ 42.166782][ T4216] kmalloc_node_trace+0x44/0x90 [ 42.168552][ T4216] init_rescuer+0xa4/0x264 [ 42.170175][ T4216] workqueue_init+0x298/0x5b4 [ 42.171800][ T4216] kernel_init_freeable+0x33c/0x528 [ 42.173628][ T4216] kernel_init+0x24/0x29c [ 42.175180][ T4216] ret_from_fork+0x10/0x20 [ 42.176830][ T4216] SOFTIRQ-ON-W at: [ 42.177848][ T4216] lock_acquire+0x26c/0x7cc [ 42.179463][ T4216] fs_reclaim_acquire+0x90/0x12c [ 42.181276][ T4216] __kmem_cache_alloc_node+0x58/0x388 [ 42.183126][ T4216] kmalloc_node_trace+0x44/0x90 [ 42.184872][ T4216] init_rescuer+0xa4/0x264 [ 42.186503][ T4216] workqueue_init+0x298/0x5b4 [ 42.188314][ T4216] kernel_init_freeable+0x33c/0x528 [ 42.190157][ T4216] kernel_init+0x24/0x29c [ 42.191835][ T4216] ret_from_fork+0x10/0x20 [ 42.193474][ T4216] INITIAL USE at: [ 42.194527][ T4216] lock_acquire+0x26c/0x7cc [ 42.196153][ T4216] fs_reclaim_acquire+0x90/0x12c [ 42.197904][ T4216] __kmem_cache_alloc_node+0x58/0x388 [ 42.199825][ T4216] kmalloc_node_trace+0x44/0x90 [ 42.201583][ T4216] init_rescuer+0xa4/0x264 [ 42.203227][ T4216] workqueue_init+0x298/0x5b4 [ 42.204880][ T4216] kernel_init_freeable+0x33c/0x528 [ 42.206663][ T4216] kernel_init+0x24/0x29c [ 42.208215][ T4216] ret_from_fork+0x10/0x20 [ 42.209797][ T4216] } [ 42.210484][ T4216] ... key at: [] __fs_reclaim_map+0x0/0xe0 [ 42.212551][ T4216] ... acquired at: [ 42.213595][ T4216] fs_reclaim_acquire+0x90/0x12c [ 42.215003][ T4216] __kmem_cache_alloc_node+0x58/0x388 [ 42.216499][ T4216] __kmalloc_node+0xcc/0x1d0 [ 42.217827][ T4216] kvmalloc_node+0x84/0x1e4 [ 42.219124][ T4216] get_dist_table+0xa0/0x354 [ 42.220415][ T4216] netem_change+0x7a4/0x1900 [ 42.221743][ T4216] netem_init+0x54/0xb8 [ 42.222850][ T4216] qdisc_create+0x70c/0xe64 [ 42.224163][ T4216] tc_modify_qdisc+0x9f0/0x1840 [ 42.225506][ T4216] rtnetlink_rcv_msg+0x72c/0xd94 [ 42.226870][ T4216] netlink_rcv_skb+0x20c/0x3b8 [ 42.228200][ T4216] rtnetlink_rcv+0x28/0x38 [ 42.229449][ T4216] netlink_unicast+0x660/0x8d4 [ 42.230797][ T4216] netlink_sendmsg+0x834/0xb18 [ 42.232095][ T4216] ____sys_sendmsg+0x558/0x844 [ 42.233396][ T4216] __sys_sendmsg+0x26c/0x33c [ 42.234629][ T4216] __arm64_sys_sendmsg+0x80/0x94 [ 42.236004][ T4216] invoke_syscall+0x98/0x2c0 [ 42.237242][ T4216] el0_svc_common+0x138/0x258 [ 42.238522][ T4216] do_el0_svc+0x64/0x218 [ 42.239673][ T4216] el0_svc+0x58/0x168 [ 42.240727][ T4216] el0t_64_sync_handler+0x84/0xf0 [ 42.242095][ T4216] el0t_64_sync+0x18c/0x190 [ 42.243339][ T4216] [ 42.243951][ T4216] [ 42.243951][ T4216] stack backtrace: [ 42.245574][ T4216] CPU: 0 PID: 4216 Comm: syz-executor272 Not tainted 6.1.45-syzkaller #0 [ 42.247824][ T4216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 42.250412][ T4216] Call trace: [ 42.251254][ T4216] dump_backtrace+0x1c8/0x1f4 [ 42.252445][ T4216] show_stack+0x2c/0x3c [ 42.253513][ T4216] dump_stack_lvl+0x108/0x170 [ 42.254730][ T4216] dump_stack+0x1c/0x58 [ 42.255812][ T4216] __lock_acquire+0x6310/0x764c [ 42.257129][ T4216] lock_acquire+0x26c/0x7cc [ 42.258272][ T4216] fs_reclaim_acquire+0x90/0x12c [ 42.259594][ T4216] __kmem_cache_alloc_node+0x58/0x388 [ 42.260913][ T4216] __kmalloc_node+0xcc/0x1d0 [ 42.262119][ T4216] kvmalloc_node+0x84/0x1e4 [ 42.263271][ T4216] get_dist_table+0xa0/0x354 [ 42.264495][ T4216] netem_change+0x7a4/0x1900 [ 42.265675][ T4216] netem_init+0x54/0xb8 [ 42.266761][ T4216] qdisc_create+0x70c/0xe64 [ 42.267907][ T4216] tc_modify_qdisc+0x9f0/0x1840 [ 42.269188][ T4216] rtnetlink_rcv_msg+0x72c/0xd94 [ 42.270603][ T4216] netlink_rcv_skb+0x20c/0x3b8 [ 42.271886][ T4216] rtnetlink_rcv+0x28/0x38 [ 42.273016][ T4216] netlink_unicast+0x660/0x8d4 [ 42.274322][ T4216] netlink_sendmsg+0x834/0xb18 [ 42.275571][ T4216] ____sys_sendmsg+0x558/0x844 [ 42.276819][ T4216] __sys_sendmsg+0x26c/0x33c [ 42.277985][ T4216] __arm64_sys_sendmsg+0x80/0x94 [ 42.279313][ T4216] invoke_syscall+0x98/0x2c0 [ 42.280544][ T4216] el0_svc_common+0x138/0x258 [ 42.281742][ T4216] do_el0_svc+0x64/0x218 [ 42.282840][ T4216] el0_svc+0x58/0x168 [ 42.283934][ T4216] el0t_64_sync_handler+0x84/0xf0 [ 42.285232][ T4216] el0t_64_sync+0x18c/0x190 [ 42.286494][ T4216] BUG: sleeping function called from invalid context at include/linux/sched/mm.h:274 [ 42.288894][ T4216] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4216, name: syz-executor272 [ 42.291278][ T4216] preempt_count: 201, expected: 0 [ 42.292549][ T4216] RCU nest depth: 0, expected: 0 [ 42.293744][ T4216] INFO: lockdep is turned off. [ 42.294967][ T4216] Preemption disabled at: [ 42.294975][ T4216] [] sch_tree_lock+0x120/0x1d4 [ 42.297769][ T4216] CPU: 0 PID: 4216 Comm: syz-executor272 Not tainted 6.1.45-syzkaller #0 [ 42.299804][ T4216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 42.302306][ T4216] Call trace: [ 42.303068][ T4216] dump_backtrace+0x1c8/0x1f4 [ 42.304241][ T4216] show_stack+0x2c/0x3c [ 42.305286][ T4216] dump_stack_lvl+0x108/0x170 [ 42.306541][ T4216] dump_stack+0x1c/0x58 [ 42.307591][ T4216] __might_resched+0x37c/0x4d8 [ 42.308825][ T4216] __might_sleep+0x90/0xe4 [ 42.309954][ T4216] __kmem_cache_alloc_node+0x74/0x388 [ 42.311383][ T4216] __kmalloc_node+0xcc/0x1d0 [ 42.312589][ T4216] kvmalloc_node+0x84/0x1e4 [ 42.313756][ T4216] get_dist_table+0xa0/0x354 [ 42.314972][ T4216] netem_change+0x7a4/0x1900 [ 42.316196][ T4216] netem_init+0x54/0xb8 [ 42.317251][ T4216] qdisc_create+0x70c/0xe64 [ 42.318409][ T4216] tc_modify_qdisc+0x9f0/0x1840 [ 42.319695][ T4216] rtnetlink_rcv_msg+0x72c/0xd94 [ 42.320951][ T4216] netlink_rcv_skb+0x20c/0x3b8 [ 42.322161][ T4216] rtnetlink_rcv+0x28/0x38 [ 42.323294][ T4216] netlink_unicast+0x660/0x8d4 [ 42.324504][ T4216] netlink_sendmsg+0x834/0xb18 [ 42.325713][ T4216] ____sys_sendmsg+0x558/0x844 [ 42.326950][ T4216] __sys_sendmsg+0x26c/0x33c [ 42.328067][ T4216] __arm64_sys_sendmsg+0x80/0x94 [ 42.329378][ T4216] invoke_syscall+0x98/0x2c0 [ 42.330588][ T4216] el0_svc_common+0x138/0x258 [ 42.331819][ T4216] do_el0_svc+0x64/0x218 [ 42.332902][ T4216] el0_svc+0x58/0x168 [ 42.333926][ T4216] el0t_64_sync_handler+0x84/0xf0 [ 42.335268][ T4216] el0t_64_sync+0x18c/0x190