Warning: Permanently added '10.128.0.243' (ED25519) to the list of known hosts. executing program executing program executing program executing program [ 72.389645][ T18] [ 72.392045][ T18] ===================================================== [ 72.399065][ T18] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 72.406534][ T18] 6.8.0-syzkaller-05226-g0740b6427e90 #0 Not tainted [ 72.413293][ T18] ----------------------------------------------------- [ 72.420219][ T18] rcu_exp_gp_kthr/18 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire: [ 72.428218][ T18] ffff88807d886020 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 72.438542][ T18] [ 72.438542][ T18] and this task is already holding: [ 72.445907][ T18] ffff8880b942a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 72.454799][ T18] which would create a new lock dependency: [ 72.460683][ T18] (&base->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2} [ 72.468792][ T18] [ 72.468792][ T18] but this new dependency connects a HARDIRQ-irq-safe lock: [ 72.478236][ T18] (&base->lock){-.-.}-{2:2} [ 72.478262][ T18] [ 72.478262][ T18] ... which became HARDIRQ-irq-safe at: [ 72.490641][ T18] lock_acquire+0x1e4/0x530 [ 72.495243][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 72.500641][ T18] lock_timer_base+0x112/0x240 [ 72.505504][ T18] add_timer_on+0x1e5/0x5c0 [ 72.510126][ T18] handle_irq_event+0xad/0x1f0 [ 72.514981][ T18] handle_level_irq+0x3c5/0x6e0 [ 72.519924][ T18] __common_interrupt+0x13a/0x230 [ 72.525044][ T18] common_interrupt+0xa5/0xd0 [ 72.529834][ T18] asm_common_interrupt+0x26/0x40 [ 72.534953][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 72.540764][ T18] __setup_irq+0x1277/0x1cf0 [ 72.545450][ T18] request_threaded_irq+0x2ab/0x380 [ 72.550952][ T18] setup_default_timer_irq+0x25/0x60 [ 72.556331][ T18] x86_late_time_init+0x66/0xc0 [ 72.561276][ T18] start_kernel+0x3f3/0x500 [ 72.565876][ T18] x86_64_start_reservations+0x2a/0x30 [ 72.571777][ T18] x86_64_start_kernel+0x99/0xa0 [ 72.576823][ T18] common_startup_64+0x13e/0x147 [ 72.581866][ T18] [ 72.581866][ T18] to a HARDIRQ-irq-unsafe lock: [ 72.588884][ T18] (&htab->buckets[i].lock){+...}-{2:2} [ 72.588912][ T18] [ 72.588912][ T18] ... which became HARDIRQ-irq-unsafe at: [ 72.602333][ T18] ... [ 72.602341][ T18] lock_acquire+0x1e4/0x530 [ 72.609511][ T18] _raw_spin_lock_bh+0x35/0x50 [ 72.614376][ T18] sock_hash_free+0x164/0x820 [ 72.619146][ T18] bpf_map_free_deferred+0xe6/0x110 [ 72.624436][ T18] process_scheduled_works+0xa00/0x1770 [ 72.630073][ T18] worker_thread+0x86d/0xd70 [ 72.634753][ T18] kthread+0x2f0/0x390 [ 72.638926][ T18] ret_from_fork+0x4b/0x80 [ 72.643620][ T18] ret_from_fork_asm+0x1a/0x30 [ 72.648484][ T18] [ 72.648484][ T18] other info that might help us debug this: [ 72.648484][ T18] [ 72.658711][ T18] Possible interrupt unsafe locking scenario: [ 72.658711][ T18] [ 72.667026][ T18] CPU0 CPU1 [ 72.672393][ T18] ---- ---- [ 72.677770][ T18] lock(&htab->buckets[i].lock); [ 72.682804][ T18] local_irq_disable(); [ 72.689568][ T18] lock(&base->lock); [ 72.696162][ T18] lock(&htab->buckets[i].lock); [ 72.703710][ T18] [ 72.707162][ T18] lock(&base->lock); [ 72.711412][ T18] [ 72.711412][ T18] *** DEADLOCK *** [ 72.711412][ T18] [ 72.719555][ T18] 2 locks held by rcu_exp_gp_kthr/18: [ 72.724926][ T18] #0: ffff8880b942a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 72.734265][ T18] #1: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420 [ 72.743681][ T18] [ 72.743681][ T18] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 72.754100][ T18] -> (&base->lock){-.-.}-{2:2} { [ 72.759066][ T18] IN-HARDIRQ-W at: [ 72.763068][ T18] lock_acquire+0x1e4/0x530 [ 72.769229][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 72.776173][ T18] lock_timer_base+0x112/0x240 [ 72.782601][ T18] add_timer_on+0x1e5/0x5c0 [ 72.788764][ T18] handle_irq_event+0xad/0x1f0 [ 72.795200][ T18] handle_level_irq+0x3c5/0x6e0 [ 72.801706][ T18] __common_interrupt+0x13a/0x230 [ 72.808389][ T18] common_interrupt+0xa5/0xd0 [ 72.814995][ T18] asm_common_interrupt+0x26/0x40 [ 72.821687][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 72.829065][ T18] __setup_irq+0x1277/0x1cf0 [ 72.835314][ T18] request_threaded_irq+0x2ab/0x380 [ 72.842189][ T18] setup_default_timer_irq+0x25/0x60 [ 72.849423][ T18] x86_late_time_init+0x66/0xc0 [ 72.855945][ T18] start_kernel+0x3f3/0x500 [ 72.862102][ T18] x86_64_start_reservations+0x2a/0x30 [ 72.869220][ T18] x86_64_start_kernel+0x99/0xa0 [ 72.875816][ T18] common_startup_64+0x13e/0x147 [ 72.882412][ T18] IN-SOFTIRQ-W at: [ 72.886418][ T18] lock_acquire+0x1e4/0x530 [ 72.892601][ T18] _raw_spin_lock_irq+0xd3/0x120 [ 72.899246][ T18] __run_timer_base+0x103/0x8e0 [ 72.905782][ T18] run_timer_softirq+0x67/0x170 [ 72.912298][ T18] __do_softirq+0x2be/0x943 [ 72.918481][ T18] __irq_exit_rcu+0xf2/0x1c0 [ 72.924929][ T18] irq_exit_rcu+0x9/0x30 [ 72.930840][ T18] common_interrupt+0xaa/0xd0 [ 72.937209][ T18] asm_common_interrupt+0x26/0x40 [ 72.943909][ T18] console_flush_all+0x9cd/0xec0 [ 72.950534][ T18] console_unlock+0x13b/0x4d0 [ 72.956887][ T18] vprintk_emit+0x509/0x720 [ 72.963058][ T18] _printk+0xd5/0x120 [ 72.968718][ T18] __clocksource_register_scale+0xb8/0x660 [ 72.976387][ T18] tsc_init+0x1a9/0x1d0 [ 72.982211][ T18] x86_late_time_init+0x94/0xc0 [ 72.988755][ T18] start_kernel+0x3f3/0x500 [ 72.994915][ T18] x86_64_start_reservations+0x2a/0x30 [ 73.002030][ T18] x86_64_start_kernel+0x99/0xa0 [ 73.008633][ T18] common_startup_64+0x13e/0x147 [ 73.015227][ T18] INITIAL USE at: [ 73.019123][ T18] lock_acquire+0x1e4/0x530 [ 73.025195][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 73.032134][ T18] lock_timer_base+0x112/0x240 [ 73.038473][ T18] __mod_timer+0x1ca/0xeb0 [ 73.044463][ T18] queue_delayed_work_on+0x15a/0x260 [ 73.051316][ T18] crng_reseed+0xe7/0x220 [ 73.057223][ T18] random_init+0x1a9/0x300 [ 73.063309][ T18] start_kernel+0x253/0x500 [ 73.069379][ T18] x86_64_start_reservations+0x2a/0x30 [ 73.076413][ T18] x86_64_start_kernel+0x99/0xa0 [ 73.082924][ T18] common_startup_64+0x13e/0x147 [ 73.089434][ T18] } [ 73.091932][ T18] ... key at: [] init_timer_cpu.__key+0x0/0x20 [ 73.100187][ T18] [ 73.100187][ T18] the dependencies between the lock to be acquired [ 73.100197][ T18] and HARDIRQ-irq-unsafe lock: [ 73.114505][ T18] -> (&htab->buckets[i].lock){+...}-{2:2} { [ 73.120427][ T18] HARDIRQ-ON-W at: [ 73.124409][ T18] lock_acquire+0x1e4/0x530 [ 73.130653][ T18] _raw_spin_lock_bh+0x35/0x50 [ 73.137592][ T18] sock_hash_free+0x164/0x820 [ 73.143923][ T18] bpf_map_free_deferred+0xe6/0x110 [ 73.150789][ T18] process_scheduled_works+0xa00/0x1770 [ 73.157985][ T18] worker_thread+0x86d/0xd70 [ 73.164226][ T18] kthread+0x2f0/0x390 [ 73.169952][ T18] ret_from_fork+0x4b/0x80 [ 73.176051][ T18] ret_from_fork_asm+0x1a/0x30 [ 73.183277][ T18] INITIAL USE at: [ 73.187185][ T18] lock_acquire+0x1e4/0x530 [ 73.193276][ T18] _raw_spin_lock_bh+0x35/0x50 [ 73.199637][ T18] sock_hash_free+0x164/0x820 [ 73.205881][ T18] bpf_map_free_deferred+0xe6/0x110 [ 73.212643][ T18] process_scheduled_works+0xa00/0x1770 [ 73.219752][ T18] worker_thread+0x86d/0xd70 [ 73.225910][ T18] kthread+0x2f0/0x390 [ 73.231549][ T18] ret_from_fork+0x4b/0x80 [ 73.237629][ T18] ret_from_fork_asm+0x1a/0x30 [ 73.243965][ T18] } [ 73.246461][ T18] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 73.254790][ T18] ... acquired at: [ 73.258601][ T18] lock_acquire+0x1e4/0x530 [ 73.263289][ T18] _raw_spin_lock_bh+0x35/0x50 [ 73.268233][ T18] sock_hash_delete_elem+0xb0/0x300 [ 73.273611][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 73.279247][ T18] bpf_trace_run2+0x204/0x420 [ 73.284103][ T18] enqueue_timer+0x396/0x550 [ 73.288961][ T18] __mod_timer+0xa0e/0xeb0 [ 73.293559][ T18] schedule_timeout+0x1b9/0x310 [ 73.298603][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 73.304254][ T18] kthread_worker_fn+0x4bf/0xab0 [ 73.309372][ T18] kthread+0x2f0/0x390 [ 73.313619][ T18] ret_from_fork+0x4b/0x80 [ 73.318219][ T18] ret_from_fork_asm+0x1a/0x30 [ 73.323168][ T18] [ 73.325492][ T18] [ 73.325492][ T18] stack backtrace: [ 73.331376][ T18] CPU: 0 PID: 18 Comm: rcu_exp_gp_kthr Not tainted 6.8.0-syzkaller-05226-g0740b6427e90 #0 [ 73.341287][ T18] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 73.351341][ T18] Call Trace: [ 73.354627][ T18] [ 73.357568][ T18] dump_stack_lvl+0x1e7/0x2e0 [ 73.362283][ T18] ? __pfx_dump_stack_lvl+0x10/0x10 [ 73.367490][ T18] ? __pfx__printk+0x10/0x10 [ 73.372281][ T18] ? print_shortest_lock_dependencies+0xf2/0x160 [ 73.378670][ T18] validate_chain+0x4dc7/0x58e0 [ 73.383541][ T18] ? __pfx_validate_chain+0x10/0x10 [ 73.388775][ T18] ? __pfx_validate_chain+0x10/0x10 [ 73.393985][ T18] ? register_lock_class+0x102/0x980 [ 73.399280][ T18] ? __pfx_register_lock_class+0x10/0x10 [ 73.404919][ T18] ? mark_lock+0x9a/0x350 [ 73.409254][ T18] __lock_acquire+0x1346/0x1fd0 [ 73.414118][ T18] lock_acquire+0x1e4/0x530 [ 73.418626][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 73.424004][ T18] ? __pfx_lockdep_softirqs_off+0x10/0x10 [ 73.429728][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 73.434850][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 73.440229][ T18] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 73.446128][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 73.451157][ T18] ? do_raw_spin_unlock+0x13c/0x8b0 [ 73.456369][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 73.461769][ T18] _raw_spin_lock_bh+0x35/0x50 [ 73.466540][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 73.471922][ T18] sock_hash_delete_elem+0xb0/0x300 [ 73.477131][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 73.482595][ T18] bpf_trace_run2+0x204/0x420 [ 73.487278][ T18] ? bpf_trace_run2+0x114/0x420 [ 73.492136][ T18] ? __pfx_bpf_trace_run2+0x10/0x10 [ 73.497347][ T18] ? __pfx_debug_object_activate+0x10/0x10 [ 73.503162][ T18] ? lockdep_hardirqs_on+0x99/0x150 [ 73.508371][ T18] enqueue_timer+0x396/0x550 [ 73.512976][ T18] __mod_timer+0xa0e/0xeb0 [ 73.517410][ T18] ? __asan_memset+0x23/0x50 [ 73.522009][ T18] ? __pfx___mod_timer+0x10/0x10 [ 73.526965][ T18] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 73.532785][ T18] schedule_timeout+0x1b9/0x310 [ 73.537820][ T18] ? __pfx_schedule_timeout+0x10/0x10 [ 73.543283][ T18] ? _raw_spin_unlock_irqrestore+0xd8/0x140 [ 73.549186][ T18] ? __pfx_process_timeout+0x10/0x10 [ 73.554485][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 73.559878][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 73.565864][ T18] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.572197][ T18] ? irqentry_exit+0x63/0x90 [ 73.576795][ T18] ? __pfx_rcu_exp_sel_wait_wake+0x10/0x10 [ 73.582626][ T18] kthread_worker_fn+0x4bf/0xab0 [ 73.587575][ T18] ? kthread_worker_fn+0xdc/0xab0 [ 73.592605][ T18] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 73.597895][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 73.603383][ T18] kthread+0x2f0/0x390 [ 73.607468][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 73.612937][ T18] ? __pfx_kthread+0x10/0x10 [ 73.617542][ T18] ret_from_fork+0x4b/0x80 [ 73.621973][ T18] ? __pfx_kthread+0x10/0x10 [ 73.626568][ T18] ret_from_fork_asm+0x1a/0x30 [ 73.631357][ T18]