./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3489556676 <...> Warning: Permanently added '10.128.1.125' (ED25519) to the list of known hosts. execve("./syz-executor3489556676", ["./syz-executor3489556676"], 0x7ffe1a699da0 /* 10 vars */) = 0 brk(NULL) = 0x555590b89000 brk(0x555590b89d00) = 0x555590b89d00 arch_prctl(ARCH_SET_FS, 0x555590b89380) = 0 set_tid_address(0x555590b89650) = 5110 set_robust_list(0x555590b89660, 24) = 0 rseq(0x555590b89ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3489556676", 4096) = 28 getrandom("\xe6\xc3\x64\x0b\xf0\xfc\x2b\xf4", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555590b89d00 brk(0x555590baad00) = 0x555590baad00 brk(0x555590bab000) = 0x555590bab000 mprotect(0x7fe8ac77f000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555590b89650) = 5111 ./strace-static-x86_64: Process 5111 attached [pid 5111] set_robust_list(0x555590b89660, 24) = 0 [pid 5111] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5111] setpgid(0, 0) = 0 [pid 5111] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5111] write(3, "1000", 4) = 4 [pid 5111] close(3) = 0 [pid 5111] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=6, value_size=8, max_entries=5, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5111] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x200001c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5111] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_activate_work", prog_fd=4}}, 16) = 5 [pid 5111] exit_group(0) = ? [pid 5111] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5111, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5112 attached , child_tidptr=0x555590b89650) = 5112 [pid 5112] set_robust_list(0x555590b89660, 24) = 0 [pid 5112] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5112] setpgid(0, 0) = 0 [pid 5112] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5112] write(3, "1000", 4) = 4 [pid 5112] close(3) = 0 [pid 5112] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=6, value_size=8, max_entries=5, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5112] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x200001c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5112] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_activate_work", prog_fd=4}}, 16) = 5 [ 250.466265][ C1] [ 250.468651][ C1] ===================================================== [ 250.475599][ C1] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 250.483057][ C1] 6.9.0-rc1-next-20240328-syzkaller #0 Not tainted [ 250.489553][ C1] ----------------------------------------------------- [ 250.496492][ C1] swapper/1/0 [HC0[0]:SC1[3]:HE0:SE0] is trying to acquire: [ 250.503778][ C1] ffff88802a56d0f8 (&htab->buckets[i].lock){+.-.}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 250.514090][ C1] [ 250.514090][ C1] and this task is already holding: [ 250.521465][ C1] ffff8880b953de18 (&pool->lock){-.-.}-{2:2}, at: __queue_work+0x6ec/0xef0 [ 250.530122][ C1] which would create a new lock dependency: [ 250.536023][ C1] (&pool->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+.-.}-{2:2} [ 250.544130][ C1] [ 250.544130][ C1] but this new dependency connects a HARDIRQ-irq-safe lock: [ 250.553576][ C1] (&pool->lock){-.-.}-{2:2} [ 250.553600][ C1] [ 250.553600][ C1] ... which became HARDIRQ-irq-safe at: [ 250.565880][ C1] lock_acquire+0x1ed/0x550 [ 250.570475][ C1] _raw_spin_lock+0x2e/0x40 [ 250.575073][ C1] __queue_work+0x6ec/0xef0 [ 250.579678][ C1] queue_work_on+0x1c2/0x380 [ 250.584413][ C1] hrtimer_run_queues+0x154/0x460 [ 250.589556][ C1] update_process_times+0x80/0x230 [ 250.594766][ C1] tick_periodic+0x190/0x220 [ 250.599447][ C1] tick_handle_periodic+0x4a/0x160 [ 250.604645][ C1] __sysvec_apic_timer_interrupt+0x110/0x3f0 [ 250.610722][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 250.616447][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 250.622520][ C1] __sanitizer_cov_trace_const_cmp4+0x0/0x90 [ 250.628602][ C1] trace_event_eval_update+0x372/0xf90 [ 250.634152][ C1] process_scheduled_works+0xa2c/0x1830 [ 250.639783][ C1] worker_thread+0x86d/0xd70 [ 250.644459][ C1] kthread+0x2f0/0x390 [ 250.648617][ C1] ret_from_fork+0x4b/0x80 [ 250.653126][ C1] ret_from_fork_asm+0x1a/0x30 [ 250.657994][ C1] [ 250.657994][ C1] to a HARDIRQ-irq-unsafe lock: [ 250.665007][ C1] (&htab->buckets[i].lock){+.-.}-{2:2} [ 250.665034][ C1] [ 250.665034][ C1] ... which became HARDIRQ-irq-unsafe at: [ 250.678441][ C1] ... [ 250.678449][ C1] lock_acquire+0x1ed/0x550 [ 250.685614][ C1] _raw_spin_lock_bh+0x35/0x50 [ 250.690498][ C1] sock_hash_free+0x164/0x820 [ 250.695268][ C1] bpf_map_free_deferred+0xe6/0x110 [ 250.700557][ C1] process_scheduled_works+0xa2c/0x1830 [ 250.706205][ C1] worker_thread+0x86d/0xd70 [ 250.710895][ C1] kthread+0x2f0/0x390 [ 250.715074][ C1] ret_from_fork+0x4b/0x80 [ 250.719596][ C1] ret_from_fork_asm+0x1a/0x30 [ 250.724454][ C1] [ 250.724454][ C1] other info that might help us debug this: [ 250.724454][ C1] [ 250.734684][ C1] Possible interrupt unsafe locking scenario: [ 250.734684][ C1] [ 250.743010][ C1] CPU0 CPU1 [ 250.748372][ C1] ---- ---- [ 250.753731][ C1] lock(&htab->buckets[i].lock); [ 250.758758][ C1] local_irq_disable(); [ 250.765604][ C1] lock(&pool->lock); [ 250.772201][ C1] lock(&htab->buckets[i].lock); [ 250.779779][ C1] [ 250.783256][ C1] lock(&pool->lock); [ 250.787507][ C1] [ 250.787507][ C1] *** DEADLOCK *** [ 250.787507][ C1] [ 250.795690][ C1] 4 locks held by swapper/1/0: [ 250.800460][ C1] #0: ffffc90000a08c00 (&(&ssp->srcu_sup->work)->timer){..-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 250.811176][ C1] #1: ffffffff8e334d60 (rcu_read_lock){....}-{1:2}, at: __queue_work+0x198/0xef0 [ 250.820406][ C1] #2: ffff8880b953de18 (&pool->lock){-.-.}-{2:2}, at: __queue_work+0x6ec/0xef0 [ 250.829461][ C1] #3: ffffffff8e334d60 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run1+0x1d6/0x510 [ 250.838866][ C1] [ 250.838866][ C1] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 250.849277][ C1] -> (&pool->lock){-.-.}-{2:2} { [ 250.854243][ C1] IN-HARDIRQ-W at: [ 250.858243][ C1] lock_acquire+0x1ed/0x550 [ 250.864399][ C1] _raw_spin_lock+0x2e/0x40 [ 250.870563][ C1] __queue_work+0x6ec/0xef0 [ 250.876717][ C1] queue_work_on+0x1c2/0x380 [ 250.882964][ C1] hrtimer_run_queues+0x154/0x460 [ 250.889655][ C1] update_process_times+0x80/0x230 [ 250.896419][ C1] tick_periodic+0x190/0x220 [ 250.902658][ C1] tick_handle_periodic+0x4a/0x160 [ 250.909423][ C1] __sysvec_apic_timer_interrupt+0x110/0x3f0 [ 250.917062][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 250.924367][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 250.932003][ C1] __sanitizer_cov_trace_const_cmp4+0x0/0x90 [ 250.939641][ C1] trace_event_eval_update+0x372/0xf90 [ 250.946854][ C1] process_scheduled_works+0xa2c/0x1830 [ 250.954161][ C1] worker_thread+0x86d/0xd70 [ 250.960424][ C1] kthread+0x2f0/0x390 [ 250.966157][ C1] ret_from_fork+0x4b/0x80 [ 250.972234][ C1] ret_from_fork_asm+0x1a/0x30 [ 250.978738][ C1] IN-SOFTIRQ-W at: [ 250.982735][ C1] lock_acquire+0x1ed/0x550 [ 250.988994][ C1] _raw_spin_lock+0x2e/0x40 [ 250.995176][ C1] __queue_work+0x6ec/0xef0 [ 251.001352][ C1] call_timer_fn+0x18e/0x650 [ 251.007634][ C1] __run_timer_base+0x695/0x8e0 [ 251.014139][ C1] run_timer_softirq+0xb7/0x170 [ 251.020653][ C1] __do_softirq+0x2c6/0x980 [ 251.026812][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 251.033067][ C1] irq_exit_rcu+0x9/0x30 [ 251.038964][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 251.046256][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 251.053891][ C1] default_idle+0x13/0x20 [ 251.059870][ C1] default_idle_call+0x74/0xb0 [ 251.066294][ C1] do_idle+0x22f/0x5d0 [ 251.072030][ C1] cpu_startup_entry+0x42/0x60 [ 251.078448][ C1] rest_init+0x2dc/0x300 [ 251.084357][ C1] start_kernel+0x47a/0x500 [ 251.090609][ C1] x86_64_start_reservations+0x2a/0x30 [ 251.097734][ C1] x86_64_start_kernel+0x99/0xa0 [ 251.104326][ C1] common_startup_64+0x13e/0x147 [ 251.110931][ C1] INITIAL USE at: [ 251.114848][ C1] lock_acquire+0x1ed/0x550 [ 251.120924][ C1] _raw_spin_lock+0x2e/0x40 [ 251.127013][ C1] __queue_work+0x6ec/0xef0 [ 251.133084][ C1] queue_work_on+0x1c2/0x380 [ 251.139239][ C1] start_poll_synchronize_rcu_expedited+0xf7/0x150 [ 251.147313][ C1] rcu_init+0xea/0x140 [ 251.152946][ C1] start_kernel+0x1f7/0x500 [ 251.159021][ C1] x86_64_start_reservations+0x2a/0x30 [ 251.166063][ C1] x86_64_start_kernel+0x99/0xa0 [ 251.172573][ C1] common_startup_64+0x13e/0x147 [ 251.179254][ C1] } [ 251.181770][ C1] ... key at: [] init_worker_pool.__key+0x0/0x20 [ 251.190190][ C1] [ 251.190190][ C1] the dependencies between the lock to be acquired [ 251.190199][ C1] and HARDIRQ-irq-unsafe lock: [ 251.203746][ C1] -> (&htab->buckets[i].lock){+.-.}-{2:2} { [ 251.209674][ C1] HARDIRQ-ON-W at: [ 251.213651][ C1] lock_acquire+0x1ed/0x550 [ 251.219808][ C1] _raw_spin_lock_bh+0x35/0x50 [ 251.226225][ C1] sock_hash_free+0x164/0x820 [ 251.232558][ C1] bpf_map_free_deferred+0xe6/0x110 [ 251.239421][ C1] process_scheduled_works+0xa2c/0x1830 [ 251.246616][ C1] worker_thread+0x86d/0xd70 [ 251.252855][ C1] kthread+0x2f0/0x390 [ 251.258666][ C1] ret_from_fork+0x4b/0x80 [ 251.264742][ C1] ret_from_fork_asm+0x1a/0x30 [ 251.271180][ C1] IN-SOFTIRQ-W at: [ 251.275168][ C1] lock_acquire+0x1ed/0x550 [ 251.281415][ C1] _raw_spin_lock_bh+0x35/0x50 [ 251.287834][ C1] sock_hash_delete_elem+0xb0/0x300 [ 251.294688][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 251.301801][ C1] bpf_trace_run1+0x2ca/0x510 [ 251.308133][ C1] trace_workqueue_activate_work+0x186/0x1f0 [ 251.315797][ C1] __queue_work+0xc14/0xef0 [ 251.321954][ C1] call_timer_fn+0x18e/0x650 [ 251.328212][ C1] __run_timer_base+0x695/0x8e0 [ 251.334724][ C1] run_timer_softirq+0xb7/0x170 [ 251.341233][ C1] __do_softirq+0x2c6/0x980 [ 251.347401][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 251.353641][ C1] irq_exit_rcu+0x9/0x30 [ 251.359533][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 251.366853][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 251.374517][ C1] acpi_safe_halt+0x21/0x30 [ 251.380718][ C1] acpi_idle_enter+0xe4/0x140 [ 251.387240][ C1] cpuidle_enter_state+0x112/0x480 [ 251.394004][ C1] cpuidle_enter+0x5d/0xa0 [ 251.400512][ C1] do_idle+0x375/0x5d0 [ 251.406231][ C1] cpu_startup_entry+0x42/0x60 [ 251.412652][ C1] __pfx_ap_starting+0x0/0x10 [ 251.418994][ C1] common_startup_64+0x13e/0x147 [ 251.426646][ C1] INITIAL USE at: [ 251.430542][ C1] lock_acquire+0x1ed/0x550 [ 251.436630][ C1] _raw_spin_lock_bh+0x35/0x50 [ 251.442954][ C1] sock_hash_free+0x164/0x820 [ 251.449191][ C1] bpf_map_free_deferred+0xe6/0x110 [ 251.455961][ C1] process_scheduled_works+0xa2c/0x1830 [ 251.463084][ C1] worker_thread+0x86d/0xd70 [ 251.469237][ C1] kthread+0x2f0/0x390 [ 251.474870][ C1] ret_from_fork+0x4b/0x80 [ 251.480868][ C1] ret_from_fork_asm+0x1a/0x30 [ 251.487200][ C1] } [ 251.489704][ C1] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 251.498056][ C1] ... acquired at: [ 251.501886][ C1] lock_acquire+0x1ed/0x550 [ 251.506587][ C1] _raw_spin_lock_bh+0x35/0x50 [ 251.511563][ C1] sock_hash_delete_elem+0xb0/0x300 [ 251.516967][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 251.522608][ C1] bpf_trace_run1+0x2ca/0x510 [ 251.527463][ C1] trace_workqueue_activate_work+0x186/0x1f0 [ 251.533614][ C1] __queue_work+0xc14/0xef0 [ 251.538291][ C1] call_timer_fn+0x18e/0x650 [ 251.543059][ C1] __run_timer_base+0x695/0x8e0 [ 251.548081][ C1] run_timer_softirq+0xb7/0x170 [ 251.553104][ C1] __do_softirq+0x2c6/0x980 [ 251.557796][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 251.562556][ C1] irq_exit_rcu+0x9/0x30 [ 251.566968][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 251.572778][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 251.578939][ C1] acpi_safe_halt+0x21/0x30 [ 251.583645][ C1] acpi_idle_enter+0xe4/0x140 [ 251.588695][ C1] cpuidle_enter_state+0x112/0x480 [ 251.593998][ C1] cpuidle_enter+0x5d/0xa0 [ 251.598611][ C1] do_idle+0x375/0x5d0 [ 251.602863][ C1] cpu_startup_entry+0x42/0x60 [ 251.607808][ C1] __pfx_ap_starting+0x0/0x10 [ 251.612692][ C1] common_startup_64+0x13e/0x147 [ 251.617831][ C1] [ 251.620181][ C1] [ 251.620181][ C1] stack backtrace: [ 251.626081][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.9.0-rc1-next-20240328-syzkaller #0 [ 251.635202][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 251.645351][ C1] Call Trace: [ 251.648630][ C1] [ 251.651486][ C1] dump_stack_lvl+0x241/0x360 [ 251.656187][ C1] ? __pfx_dump_stack_lvl+0x10/0x10 [ 251.661432][ C1] ? __pfx__printk+0x10/0x10 [ 251.666052][ C1] ? print_shortest_lock_dependencies+0xf2/0x160 [ 251.672392][ C1] validate_chain+0x4dc7/0x58e0 [ 251.677263][ C1] ? __pfx_validate_chain+0x10/0x10 [ 251.682494][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 251.687882][ C1] ? validate_chain+0x11b/0x58e0 [ 251.692838][ C1] ? lockdep_unlock+0x16a/0x300 [ 251.697710][ C1] ? mark_lock+0x9a/0x350 [ 251.702054][ C1] __lock_acquire+0x1346/0x1fd0 [ 251.706930][ C1] lock_acquire+0x1ed/0x550 [ 251.711433][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 251.716816][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 251.721851][ C1] ? __lock_acquire+0x1346/0x1fd0 [ 251.726891][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 251.732270][ C1] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 251.738172][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 251.743207][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 251.748589][ C1] _raw_spin_lock_bh+0x35/0x50 [ 251.753349][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 251.758718][ C1] sock_hash_delete_elem+0xb0/0x300 [ 251.763918][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 251.769376][ C1] bpf_trace_run1+0x2ca/0x510 [ 251.774056][ C1] ? bpf_trace_run1+0x1d6/0x510 [ 251.778915][ C1] ? __pfx_bpf_trace_run1+0x10/0x10 [ 251.784183][ C1] ? pwq_tryinc_nr_active+0x227/0x720 [ 251.789560][ C1] trace_workqueue_activate_work+0x186/0x1f0 [ 251.795543][ C1] __queue_work+0xc14/0xef0 [ 251.800051][ C1] ? __queue_work+0x198/0xef0 [ 251.804734][ C1] call_timer_fn+0x18e/0x650 [ 251.809327][ C1] ? call_timer_fn+0xc0/0x650 [ 251.814007][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 251.819825][ C1] ? __pfx_call_timer_fn+0x10/0x10 [ 251.824940][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 251.830768][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 251.835979][ C1] ? rcu_is_watching+0x15/0xb0 [ 251.840750][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 251.846554][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 251.852358][ C1] __run_timer_base+0x695/0x8e0 [ 251.857213][ C1] ? __pfx___run_timer_base+0x10/0x10 [ 251.862594][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 251.868920][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 251.874127][ C1] run_timer_softirq+0xb7/0x170 [ 251.878979][ C1] __do_softirq+0x2c6/0x980 [ 251.883488][ C1] ? __irq_exit_rcu+0xf2/0x1c0 [ 251.888254][ C1] ? __pfx___do_softirq+0x10/0x10 [ 251.893287][ C1] ? irqtime_account_irq+0xd4/0x1e0 [ 251.898490][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 251.903080][ C1] ? __pfx___irq_exit_rcu+0x10/0x10 [ 251.908284][ C1] irq_exit_rcu+0x9/0x30 [ 251.912553][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 251.918199][ C1] [ 251.921124][ C1] [ 251.924060][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 251.930047][ C1] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 251.935350][ C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 c0 d3 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 85 70 a9 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 251.955131][ C1] RSP: 0018:ffffc90000197d08 EFLAGS: 00000246 [ 251.961201][ C1] RAX: ffff8880176dda00 RBX: ffff888017a84064 RCX: 0000000000037171 [ 251.969170][ C1] RDX: 0000000000000001 RSI: ffff888017a84000 RDI: ffff888017a84064 [ 251.977144][ C1] RBP: 000000000003a478 R08: ffff8880b9537ccb R09: 1ffff110172a6f99 [ 251.985116][ C1] R10: dffffc0000000000 R11: ffffffff8b7fd1b0 R12: ffff888017f4c000 [ 251.993097][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8eac13a0 [ 252.001097][ C1] ? __pfx_acpi_idle_enter+0x10/0x10 [ 252.006402][ C1] acpi_idle_enter+0xe4/0x140 [ 252.011167][ C1] cpuidle_enter_state+0x112/0x480 [ 252.016280][ C1] ? __pfx_menu_select+0x10/0x10 [ 252.021225][ C1] cpuidle_enter+0x5d/0xa0 [ 252.025743][ C1] do_idle+0x375/0x5d0 [ 252.029844][ C1] ? __pfx_do_idle+0x10/0x10 [ 252.034441][ C1] cpu_startup_entry+0x42/0x60 [ 252.039213][ C1] start_secondary+0x100/0x100 [ 252.043983][ C1] common_startup_64+0x13e/0x147 [ 252.048941][ C1] [ 255.406073][ C0] ------------[ cut here ]------------ [ 255.411594][ C0] raw_local_irq_restore() called with IRQs enabled [ 255.418178][ C0] WARNING: CPU: 0 PID: 0 at kernel/locking/irqflag-debug.c:10 warn_bogus_irq_restore+0x29/0x40 [ 255.428557][ C0] Modules linked in: [ 255.432481][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.9.0-rc1-next-20240328-syzkaller #0 [ 255.441634][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 255.451707][ C0] RIP: 0010:warn_bogus_irq_restore+0x29/0x40 [ 255.457722][ C0] Code: 90 f3 0f 1e fa 90 80 3d f4 fc 13 04 00 74 06 90 c3 cc cc cc cc c6 05 e5 fc 13 04 01 90 48 c7 c7 c0 cd ca 8b e8 68 60 d8 f5 90 <0f> 0b 90 90 90 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 255.477385][ C0] RSP: 0018:ffffc90000007ab8 EFLAGS: 00010246 [ 255.483459][ C0] RAX: 612ed802bb4e0500 RBX: 0000000000000200 RCX: ffffffff8e0946c0 [ 255.491467][ C0] RDX: 0000000000000101 RSI: 0000000000000000 RDI: 0000000000000000 [ 255.499459][ C0] RBP: ffffc90000007bb0 R08: ffffffff815802c2 R09: fffffbfff1c39b10 [ 255.507448][ C0] R10: dffffc0000000000 R11: fffffbfff1c39b10 R12: 0000000002400001 [ 255.515430][ C0] R13: 0000000000000246 R14: 1ffff92000000f5c R15: dffffc0000000000 [ 255.523420][ C0] FS: 0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 255.532357][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 255.538946][ C0] CR2: 00007fe8ac709e43 CR3: 000000007dc08000 CR4: 00000000003506f0 [ 255.547051][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 255.555049][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 255.563039][ C0] Call Trace: [ 255.566339][ C0] [ 255.569224][ C0] ? __warn+0x163/0x4e0 [ 255.573388][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 255.578817][ C0] ? report_bug+0x2b3/0x500 [ 255.583339][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 255.588751][ C0] ? handle_bug+0x3e/0x70 [ 255.593104][ C0] ? exc_invalid_op+0x1a/0x50 [ 255.597823][ C0] ? asm_exc_invalid_op+0x1a/0x20 [ 255.602860][ C0] ? __warn_printk+0x292/0x360 [ 255.607735][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 255.613169][ C0] ? warn_bogus_irq_restore+0x28/0x40 [ 255.618596][ C0] queue_work_on+0x252/0x380 [ 255.623204][ C0] ? __pfx_queue_work_on+0x10/0x10 [ 255.628376][ C0] ? rcu_is_watching+0x15/0xb0 [ 255.633148][ C0] ? lock_release+0xbf/0x9f0 [ 255.637784][ C0] ? call_timer_fn+0xa8/0x650 [ 255.642479][ C0] call_timer_fn+0x18e/0x650 [ 255.647116][ C0] ? call_timer_fn+0xc0/0x650 [ 255.651815][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 255.658250][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 255.663372][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 255.669808][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 255.676230][ C0] ? rcu_is_watching+0x15/0xb0 [ 255.680991][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 255.687411][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 255.693823][ C0] __run_timer_base+0x66a/0x8e0 [ 255.698690][ C0] ? __pfx___run_timer_base+0x10/0x10 [ 255.704063][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 255.710399][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 255.715604][ C0] run_timer_softirq+0xb7/0x170 [ 255.720528][ C0] __do_softirq+0x2c6/0x980 [ 255.725045][ C0] ? __irq_exit_rcu+0xf2/0x1c0 [ 255.729842][ C0] ? __pfx___do_softirq+0x10/0x10 [ 255.734877][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 255.740119][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 255.744705][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 255.749916][ C0] irq_exit_rcu+0x9/0x30 [ 255.754152][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 255.759805][ C0] [ 255.762751][ C0] [ 255.765688][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 255.771757][ C0] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 255.777075][ C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 c0 d3 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 85 70 a9 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 255.796821][ C0] RSP: 0018:ffffffff8e007ca8 EFLAGS: 00000246 [ 255.802895][ C0] RAX: ffffffff8e0946c0 RBX: ffff888017a83864 RCX: 00000000000230f1 [ 255.810902][ C0] RDX: 0000000000000001 RSI: ffff888017a83800 RDI: ffff888017a83864 [ 255.818940][ C0] RBP: 000000000003a478 R08: ffff8880b9437ccb R09: 1ffff11017286f99 [ 255.826936][ C0] R10: dffffc0000000000 R11: ffffffff8b7fd1b0 R12: ffff88801a7c7800 [ 255.834932][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8eac13a0 [ 255.842974][ C0] ? __pfx_acpi_idle_enter+0x10/0x10 [ 255.848315][ C0] acpi_idle_enter+0xe4/0x140 [ 255.853031][ C0] cpuidle_enter_state+0x112/0x480 [ 255.858184][ C0] ? __pfx_menu_select+0x10/0x10 [ 255.863135][ C0] cpuidle_enter+0x5d/0xa0 [ 255.867583][ C0] do_idle+0x375/0x5d0 [ 255.871664][ C0] ? __pfx___schedule+0x10/0x10 [ 255.876543][ C0] ? __pfx_do_idle+0x10/0x10 [ 255.881142][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 255.887063][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 255.893399][ C0] ? rest_init+0x31/0x300 [ 255.897752][ C0] ? rest_init+0x31/0x300 [ 255.902093][ C0] cpu_startup_entry+0x42/0x60 [ 255.906880][ C0] rest_init+0x2dc/0x300 [ 255.911132][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 255.916727][ C0] start_kernel+0x47a/0x500 [ 255.921263][ C0] x86_64_start_reservations+0x2a/0x30 [ 255.926758][ C0] x86_64_start_kernel+0x99/0xa0 [ 255.931725][ C0] common_startup_64+0x13e/0x147 [ 255.936724][ C0] [ 255.939751][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 255.947056][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.9.0-rc1-next-20240328-syzkaller #0 [ 255.956164][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 255.966223][ C0] Call Trace: [ 255.969504][ C0] [ 255.972353][ C0] dump_stack_lvl+0x241/0x360 [ 255.977034][ C0] ? __pfx_dump_stack_lvl+0x10/0x10 [ 255.982254][ C0] ? __pfx__printk+0x10/0x10 [ 255.986871][ C0] ? _printk+0xd5/0x120 [ 255.991042][ C0] ? vscnprintf+0x5d/0x90 [ 255.995383][ C0] panic+0x349/0x860 [ 255.999292][ C0] ? __warn+0x172/0x4e0 [ 256.003549][ C0] ? __pfx_panic+0x10/0x10 [ 256.007977][ C0] ? show_trace_log_lvl+0x4e6/0x520 [ 256.013201][ C0] ? common_startup_64+0x13e/0x147 [ 256.018339][ C0] __warn+0x346/0x4e0 [ 256.022365][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 256.027752][ C0] report_bug+0x2b3/0x500 [ 256.032114][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 256.037504][ C0] handle_bug+0x3e/0x70 [ 256.041669][ C0] exc_invalid_op+0x1a/0x50 [ 256.046184][ C0] asm_exc_invalid_op+0x1a/0x20 [ 256.051046][ C0] RIP: 0010:warn_bogus_irq_restore+0x29/0x40 [ 256.057043][ C0] Code: 90 f3 0f 1e fa 90 80 3d f4 fc 13 04 00 74 06 90 c3 cc cc cc cc c6 05 e5 fc 13 04 01 90 48 c7 c7 c0 cd ca 8b e8 68 60 d8 f5 90 <0f> 0b 90 90 90 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 256.076668][ C0] RSP: 0018:ffffc90000007ab8 EFLAGS: 00010246 [ 256.082825][ C0] RAX: 612ed802bb4e0500 RBX: 0000000000000200 RCX: ffffffff8e0946c0 [ 256.090796][ C0] RDX: 0000000000000101 RSI: 0000000000000000 RDI: 0000000000000000 [ 256.098782][ C0] RBP: ffffc90000007bb0 R08: ffffffff815802c2 R09: fffffbfff1c39b10 [ 256.106792][ C0] R10: dffffc0000000000 R11: fffffbfff1c39b10 R12: 0000000002400001 [ 256.114768][ C0] R13: 0000000000000246 R14: 1ffff92000000f5c R15: dffffc0000000000 [ 256.122765][ C0] ? __warn_printk+0x292/0x360 [ 256.127547][ C0] ? warn_bogus_irq_restore+0x28/0x40 [ 256.132926][ C0] queue_work_on+0x252/0x380 [ 256.137518][ C0] ? __pfx_queue_work_on+0x10/0x10 [ 256.142631][ C0] ? rcu_is_watching+0x15/0xb0 [ 256.147395][ C0] ? lock_release+0xbf/0x9f0 [ 256.151983][ C0] ? call_timer_fn+0xa8/0x650 [ 256.156662][ C0] call_timer_fn+0x18e/0x650 [ 256.161369][ C0] ? call_timer_fn+0xc0/0x650 [ 256.166068][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 256.172487][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 256.177602][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 256.184012][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 256.190422][ C0] ? rcu_is_watching+0x15/0xb0 [ 256.195217][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 256.201631][ C0] ? __pfx_rxrpc_peer_keepalive_timeout+0x10/0x10 [ 256.208043][ C0] __run_timer_base+0x66a/0x8e0 [ 256.212986][ C0] ? __pfx___run_timer_base+0x10/0x10 [ 256.218361][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 256.224687][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 256.229916][ C0] run_timer_softirq+0xb7/0x170 [ 256.234784][ C0] __do_softirq+0x2c6/0x980 [ 256.239295][ C0] ? __irq_exit_rcu+0xf2/0x1c0 [ 256.244066][ C0] ? __pfx___do_softirq+0x10/0x10 [ 256.249113][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 256.254320][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 256.258924][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 256.264139][ C0] irq_exit_rcu+0x9/0x30 [ 256.268377][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 256.274018][ C0] [ 256.276944][ C0] [ 256.279871][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 256.285857][ C0] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 256.291144][ C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 c0 d3 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 85 70 a9 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 256.310764][ C0] RSP: 0018:ffffffff8e007ca8 EFLAGS: 00000246 [ 256.316834][ C0] RAX: ffffffff8e0946c0 RBX: ffff888017a83864 RCX: 00000000000230f1 [ 256.324804][ C0] RDX: 0000000000000001 RSI: ffff888017a83800 RDI: ffff888017a83864 [ 256.332796][ C0] RBP: 000000000003a478 R08: ffff8880b9437ccb R09: 1ffff11017286f99 [ 256.340767][ C0] R10: dffffc0000000000 R11: ffffffff8b7fd1b0 R12: ffff88801a7c7800 [ 256.348733][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8eac13a0 [ 256.356705][ C0] ? __pfx_acpi_idle_enter+0x10/0x10 [ 256.361998][ C0] acpi_idle_enter+0xe4/0x140 [ 256.366674][ C0] cpuidle_enter_state+0x112/0x480 [ 256.371783][ C0] ? __pfx_menu_select+0x10/0x10 [ 256.376723][ C0] cpuidle_enter+0x5d/0xa0 [ 256.381159][ C0] do_idle+0x375/0x5d0 [ 256.385228][ C0] ? __pfx___schedule+0x10/0x10 [ 256.390095][ C0] ? __pfx_do_idle+0x10/0x10 [ 256.394698][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 256.400601][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 256.406931][ C0] ? rest_init+0x31/0x300 [ 256.411261][ C0] ? rest_init+0x31/0x300 [ 256.415593][ C0] cpu_startup_entry+0x42/0x60 [ 256.420365][ C0] rest_init+0x2dc/0x300 [ 256.424605][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 256.430154][ C0] start_kernel+0x47a/0x500 [ 256.434659][ C0] x86_64_start_reservations+0x2a/0x30 [ 256.440120][ C0] x86_64_start_kernel+0x99/0xa0 [ 256.445061][ C0] common_startup_64+0x13e/0x147 [ 256.450007][ C0] [ 257.557417][ C0] Shutting down cpus with NMI [ 257.562482][ C0] Kernel Offset: disabled [ 257.566861][ C0] Rebooting in 86400 seconds..