./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor982858470 <...> Warning: Permanently added '10.128.1.27' (ED25519) to the list of known hosts. execve("./syz-executor982858470", ["./syz-executor982858470"], 0x7ffcf8bafb90 /* 10 vars */) = 0 brk(NULL) = 0x555579182000 brk(0x555579182d00) = 0x555579182d00 arch_prctl(ARCH_SET_FS, 0x555579182380) = 0 set_tid_address(0x555579182650) = 5072 set_robust_list(0x555579182660, 24) = 0 rseq(0x555579182ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor982858470", 4096) = 27 getrandom("\xb4\x24\xf6\xc4\xfc\xaf\x17\x9d", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555579182d00 brk(0x5555791a3d00) = 0x5555791a3d00 brk(0x5555791a4000) = 0x5555791a4000 mprotect(0x7fc2b4554000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555579182650) = 5073 ./strace-static-x86_64: Process 5073 attached [pid 5073] set_robust_list(0x555579182660, 24) = 0 [pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5073] setpgid(0, 0) = 0 [pid 5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1000", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5073] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5073] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5073] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5073] exit_group(0) = ? [pid 5073] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5073, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5074 attached [pid 5074] set_robust_list(0x555579182660, 24) = 0 [pid 5072] <... clone resumed>, child_tidptr=0x555579182650) = 5074 [pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5074] setpgid(0, 0) = 0 [pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5074] write(3, "1000", 4) = 4 [pid 5074] close(3) = 0 [pid 5074] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5074] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5074] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5074] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5074] exit_group(0) = ? [pid 5074] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5074, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5075 attached , child_tidptr=0x555579182650) = 5075 [pid 5075] set_robust_list(0x555579182660, 24) = 0 [pid 5075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5075] setpgid(0, 0) = 0 [pid 5075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "1000", 4) = 4 [pid 5075] close(3) = 0 [pid 5075] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5075] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5075] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5075] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [ 71.251136][ T2849] ------------[ cut here ]------------ [ 71.251278][ T2849] [ 71.251282][ T2849] ====================================================== [ 71.251286][ T2849] WARNING: possible circular locking dependency detected [ 71.251291][ T2849] 6.8.0-syzkaller-05271-gf99c5f563c17 #0 Not tainted [ 71.251298][ T2849] ------------------------------------------------------ [ 71.251302][ T2849] kworker/u8:7/2849 is trying to acquire lock: [ 71.251308][ T2849] ffffffff8e125be0 (console_owner){....}-{0:0}, at: console_flush_all+0x14a/0xec0 [ 71.251367][ T2849] [ 71.251367][ T2849] but task is already holding lock: [ 71.251371][ T2849] ffff888016eb6120 ((worker)->lock){....}-{2:2}, at: kthread_queue_work+0x27/0x180 [ 71.251403][ T2849] [ 71.251403][ T2849] which lock already depends on the new lock. [ 71.251403][ T2849] [ 71.251407][ T2849] [ 71.251407][ T2849] the existing dependency chain (in reverse order) is: [ 71.251411][ T2849] [ 71.251411][ T2849] -> #4 ((worker)->lock){....}-{2:2}: [ 71.251428][ T2849] lock_acquire+0x1e4/0x530 [ 71.251441][ T2849] _raw_spin_lock_irqsave+0xd5/0x120 [ 71.251460][ T2849] kthread_queue_work+0x27/0x180 [ 71.251474][ T2849] put_pwq_unlocked+0x12a/0x190 [ 71.251492][ T2849] apply_workqueue_attrs_locked+0x132/0x210 [ 71.251509][ T2849] apply_workqueue_attrs+0x30/0x50 [ 71.251526][ T2849] padata_alloc+0x22b/0x370 [ 71.251544][ T2849] pcrypt_init_padata+0x27/0x100 [ 71.251565][ T2849] pcrypt_init+0x65/0xe0 [ 71.251580][ T2849] do_one_initcall+0x238/0x830 [ 71.251598][ T2849] do_initcall_level+0x157/0x210 [ 71.251611][ T2849] do_initcalls+0x3f/0x80 [ 71.251623][ T2849] kernel_init_freeable+0x435/0x5d0 [ 71.251635][ T2849] kernel_init+0x1d/0x2a0 [ 71.251654][ T2849] ret_from_fork+0x4b/0x80 [ 71.251674][ T2849] ret_from_fork_asm+0x1a/0x30 [ 71.251692][ T2849] [ 71.251692][ T2849] -> #3 (&pool->lock){-.-.}-{2:2}: [ 71.251709][ T2849] lock_acquire+0x1e4/0x530 [ 71.251720][ T2849] _raw_spin_lock+0x2e/0x40 [ 71.251734][ T2849] __queue_work+0x6ec/0xec0 [ 71.251748][ T2849] queue_work_on+0x14f/0x250 [ 71.251761][ T2849] rpm_suspend+0x11bd/0x1c10 [ 71.251781][ T2849] __pm_runtime_idle+0x131/0x1a0 [ 71.251797][ T2849] __device_attach+0x3e5/0x520 [ 71.251816][ T2849] bus_probe_device+0x189/0x260 [ 71.251831][ T2849] device_add+0x8ff/0xca0 [ 71.251854][ T2849] serial_base_port_add+0x2b6/0x3f0 [ 71.251869][ T2849] serial_core_register_port+0x393/0x1e30 [ 71.251890][ T2849] serial8250_register_8250_port+0x1433/0x1cd0 [ 71.251907][ T2849] serial_pnp_probe+0x7d5/0xa20 [ 71.251925][ T2849] pnp_device_probe+0x2ba/0x460 [ 71.251942][ T2849] really_probe+0x29e/0xc50 [ 71.251962][ T2849] __driver_probe_device+0x1a2/0x3e0 [ 71.251981][ T2849] driver_probe_device+0x50/0x430 [ 71.252001][ T2849] __driver_attach+0x45f/0x710 [ 71.252020][ T2849] bus_for_each_dev+0x239/0x2b0 [ 71.252034][ T2849] bus_add_driver+0x347/0x620 [ 71.252049][ T2849] driver_register+0x23a/0x320 [ 71.252061][ T2849] serial8250_init+0x9e/0x170 [ 71.252080][ T2849] do_one_initcall+0x238/0x830 [ 71.252097][ T2849] do_initcall_level+0x157/0x210 [ 71.252110][ T2849] do_initcalls+0x3f/0x80 [ 71.252121][ T2849] kernel_init_freeable+0x435/0x5d0 [ 71.252134][ T2849] kernel_init+0x1d/0x2a0 [ 71.252152][ T2849] ret_from_fork+0x4b/0x80 [ 71.252170][ T2849] ret_from_fork_asm+0x1a/0x30 [ 71.252189][ T2849] [ 71.252189][ T2849] -> #2 (&dev->power.lock){-...}-{2:2}: [ 71.252206][ T2849] lock_acquire+0x1e4/0x530 [ 71.252217][ T2849] _raw_spin_lock_irqsave+0xd5/0x120 [ 71.252232][ T2849] __pm_runtime_resume+0x112/0x180 [ 71.252249][ T2849] __uart_start+0x17a/0x3c0 [ 71.252267][ T2849] uart_write+0x427/0x5c0 [ 71.252285][ T2849] n_tty_write+0xd6a/0x1230 [ 71.252300][ T2849] file_tty_write+0x54f/0x9b0 [ 71.252319][ T2849] vfs_write+0xa84/0xcb0 [ 71.252332][ T2849] ksys_write+0x1a0/0x2c0 [ 71.252346][ T2849] do_syscall_64+0xfb/0x240 [ 71.252379][ T2849] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 71.252399][ T2849] [ 71.252399][ T2849] -> #1 (&port_lock_key){-.-.}-{2:2}: [ 71.252416][ T2849] lock_acquire+0x1e4/0x530 [ 71.252427][ T2849] _raw_spin_lock_irqsave+0xd5/0x120 [ 71.252442][ T2849] serial8250_console_write+0x1a8/0x1840 [ 71.252463][ T2849] console_flush_all+0x80b/0xec0 [ 71.252480][ T2849] console_unlock+0x13b/0x4d0 [ 71.252496][ T2849] vprintk_emit+0x509/0x720 [ 71.252511][ T2849] _printk+0xd5/0x120 [ 71.252524][ T2849] register_console+0x70a/0xcd0 [ 71.252542][ T2849] univ8250_console_init+0x49/0x50 [ 71.252561][ T2849] console_init+0x198/0x680 [ 71.252572][ T2849] start_kernel+0x2d3/0x500 [ 71.252583][ T2849] x86_64_start_reservations+0x2a/0x30 [ 71.252599][ T2849] x86_64_start_kernel+0x99/0xa0 [ 71.252614][ T2849] common_startup_64+0x13e/0x147 [ 71.252629][ T2849] [ 71.252629][ T2849] -> #0 (console_owner){....}-{0:0}: [ 71.252646][ T2849] validate_chain+0x18cb/0x58e0 [ 71.252661][ T2849] __lock_acquire+0x1346/0x1fd0 [ 71.252673][ T2849] lock_acquire+0x1e4/0x530 [ 71.252685][ T2849] console_flush_all+0x7ba/0xec0 [ 71.252702][ T2849] console_unlock+0x13b/0x4d0 [ 71.252717][ T2849] vprintk_emit+0x509/0x720 [ 71.252733][ T2849] _printk+0xd5/0x120 [ 71.252745][ T2849] report_bug+0x346/0x500 [ 71.252765][ T2849] handle_bug+0x3e/0x70 [ 71.252781][ T2849] exc_invalid_op+0x1a/0x50 [ 71.252798][ T2849] asm_exc_invalid_op+0x1a/0x20 [ 71.252816][ T2849] __local_bh_enable_ip+0x1be/0x200 [ 71.252829][ T2849] sock_map_delete_elem+0xca/0x140 [ 71.252842][ T2849] bpf_prog_d247abf228e51871+0x69/0x6d [ 71.252859][ T2849] bpf_trace_run2+0x204/0x420 [ 71.252873][ T2849] kthread_insert_work+0x3f4/0x460 [ 71.252888][ T2849] kthread_queue_work+0xff/0x180 [ 71.252902][ T2849] synchronize_rcu_expedited+0x593/0x820 [ 71.252918][ T2849] synchronize_rcu+0x136/0x3e0 [ 71.252937][ T2849] sock_map_free+0x29/0x3e0 [ 71.252952][ T2849] bpf_map_free_deferred+0xe6/0x110 [ 71.252970][ T2849] process_scheduled_works+0xa00/0x1770 [ 71.252986][ T2849] worker_thread+0x86d/0xd70 [ 71.253002][ T2849] kthread+0x2f0/0x390 [ 71.253021][ T2849] ret_from_fork+0x4b/0x80 [ 71.253047][ T2849] ret_from_fork_asm+0x1a/0x30 [ 71.253074][ T2849] [ 71.253074][ T2849] other info that might help us debug this: [ 71.253074][ T2849] [ 71.253079][ T2849] Chain exists of: [ 71.253079][ T2849] console_owner --> &pool->lock --> (worker)->lock [ 71.253079][ T2849] [ 71.253108][ T2849] Possible unsafe locking scenario: [ 71.253108][ T2849] [ 71.253113][ T2849] CPU0 CPU1 [ 71.253117][ T2849] ---- ---- [ 71.253122][ T2849] lock((worker)->lock); [ 71.253134][ T2849] lock(&pool->lock); [ 71.253146][ T2849] lock((worker)->lock); [ 71.253157][ T2849] lock(console_owner); [ 71.253168][ T2849] [ 71.253168][ T2849] *** DEADLOCK *** [ 71.253168][ T2849] [ 71.253171][ T2849] 7 locks held by kworker/u8:7/2849: [ 71.253181][ T2849] #0: ffff888014c81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x8e0/0x1770 [ 71.253227][ T2849] #1: ffffc9000a8a7d00 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_scheduled_works+0x91b/0x1770 [ 71.253271][ T2849] #2: ffffffff8e136cb8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x39a/0x820 [ 71.253319][ T2849] #3: ffff888016eb6120 ((worker)->lock){....}-{2:2}, at: kthread_queue_work+0x27/0x180 [ 71.253366][ T2849] #4: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420 [ 71.253413][ T2849] #5: ffffffff8e00d500 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120 [ 71.253459][ T2849] #6: ffffffff8e00d130 (console_srcu){....}-{0:0}, at: console_flush_all+0x14a/0xec0 [ 71.253510][ T2849] [ 71.253510][ T2849] stack backtrace: [ 71.253516][ T2849] CPU: 1 PID: 2849 Comm: kworker/u8:7 Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0 [ 71.253535][ T2849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 71.253547][ T2849] Workqueue: events_unbound bpf_map_free_deferred [ 71.253567][ T2849] Call Trace: [ 71.253574][ T2849] [ 71.253581][ T2849] dump_stack_lvl+0x1e7/0x2e0 [ 71.253608][ T2849] ? __pfx_dump_stack_lvl+0x10/0x10 [ 71.253638][ T2849] ? print_circular_bug+0x130/0x1a0 [ 71.253666][ T2849] check_noncircular+0x36a/0x4a0 [ 71.253695][ T2849] ? __pfx_check_noncircular+0x10/0x10 [ 71.253720][ T2849] ? lockdep_lock+0x123/0x2b0 [ 71.253752][ T2849] ? add_lock_to_list+0x1de/0x2e0 [ 71.253782][ T2849] validate_chain+0x18cb/0x58e0 [ 71.253822][ T2849] ? __pfx_validate_chain+0x10/0x10 [ 71.253856][ T2849] ? sprintf+0xda/0x120 [ 71.253886][ T2849] ? vsnprintf+0x1cc3/0x1da0 [ 71.253923][ T2849] ? info_print_prefix+0x204/0x310 [ 71.253957][ T2849] ? mark_lock+0x9a/0x350 [ 71.253980][ T2849] __lock_acquire+0x1346/0x1fd0 [ 71.254011][ T2849] lock_acquire+0x1e4/0x530 [ 71.254030][ T2849] ? console_flush_all+0x14a/0xec0 [ 71.254061][ T2849] ? __pfx_lock_acquire+0x10/0x10 [ 71.254081][ T2849] ? __pfx_lock_release+0x10/0x10 [ 71.254099][ T2849] ? do_raw_spin_lock+0x14f/0x370 [ 71.254132][ T2849] ? do_raw_spin_unlock+0x13c/0x8b0 [ 71.254161][ T2849] ? console_flush_all+0x3d0/0xec0 [ 71.254186][ T2849] ? console_flush_all+0x14a/0xec0 [ 71.254214][ T2849] console_flush_all+0x7ba/0xec0 [ 71.254240][ T2849] ? console_flush_all+0x14a/0xec0 [ 71.254268][ T2849] ? console_flush_all+0x14a/0xec0 [ 71.254302][ T2849] ? __pfx_console_flush_all+0x10/0x10 [ 71.254332][ T2849] ? __pfx_lock_acquire+0x10/0x10 [ 71.254353][ T2849] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 71.254378][ T2849] ? validate_chain+0x15a2/0x58e0 [ 71.254404][ T2849] console_unlock+0x13b/0x4d0 [ 71.254432][ T2849] ? __pfx_console_unlock+0x10/0x10 [ 71.254456][ T2849] ? _printk+0xd5/0x120 [ 71.254475][ T2849] ? _printk+0xd5/0x120 [ 71.254495][ T2849] ? __pfx___down_trylock_console_sem+0x10/0x10 [ 71.254525][ T2849] ? __pfx_validate_chain+0x10/0x10 [ 71.254552][ T2849] vprintk_emit+0x509/0x720 [ 71.254576][ T2849] ? __pfx_vprintk_emit+0x10/0x10 [ 71.254602][ T2849] ? lockdep_unlock+0x16a/0x300 [ 71.254630][ T2849] _printk+0xd5/0x120 [ 71.254649][ T2849] ? report_bug+0x25e/0x500 [ 71.254673][ T2849] ? __pfx__printk+0x10/0x10 [ 71.254691][ T2849] ? __lock_acquire+0x1346/0x1fd0 [ 71.254708][ T2849] ? find_bug+0xa3/0x390 [ 71.254730][ T2849] ? __local_bh_enable_ip+0x1be/0x200 [ 71.254748][ T2849] report_bug+0x346/0x500 [ 71.254771][ T2849] ? __local_bh_enable_ip+0x1be/0x200 [ 71.254790][ T2849] handle_bug+0x3e/0x70 [ 71.254811][ T2849] exc_invalid_op+0x1a/0x50 [ 71.254832][ T2849] asm_exc_invalid_op+0x1a/0x20 [ 71.254862][ T2849] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 71.254879][ T2849] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 71.254892][ T2849] RSP: 0018:ffffc9000a8a74a0 EFLAGS: 00010046 [ 71.254905][ T2849] RAX: 0000000000000000 RBX: 1ffff92001514e98 RCX: 0000000000000001 [ 71.254916][ T2849] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa5ea [ 71.254926][ T2849] RBP: ffffc9000a8a7560 R08: ffff88801123d9eb R09: 1ffff11002247b3d [ 71.254938][ T2849] R10: dffffc0000000000 R11: ffffed1002247b3e R12: dffffc0000000000 [ 71.254950][ T2849] R13: ffff88801123d000 R14: ffffc9000a8a74e0 R15: 0000000000000201 [ 71.254966][ T2849] ? sock_map_delete_elem+0xca/0x140 [ 71.254986][ T2849] ? sock_map_delete_elem+0xca/0x140 [ 71.255001][ T2849] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 71.255017][ T2849] ? sock_map_delete_elem+0xca/0x140 [ 71.255032][ T2849] ? do_raw_spin_unlock+0x13c/0x8b0 [ 71.255057][ T2849] ? arch_irq_work_raise+0x6f/0x80 [ 71.255078][ T2849] ? sock_map_delete_elem+0x97/0x140 [ 71.255096][ T2849] sock_map_delete_elem+0xca/0x140 [ 71.255114][ T2849] bpf_prog_d247abf228e51871+0x69/0x6d [ 71.255130][ T2849] bpf_trace_run2+0x204/0x420 [ 71.255149][ T2849] ? bpf_trace_run2+0x114/0x420 [ 71.255166][ T2849] ? __pfx_bpf_trace_run2+0x10/0x10 [ 71.255189][ T2849] kthread_insert_work+0x3f4/0x460 [ 71.255211][ T2849] kthread_queue_work+0xff/0x180 [ 71.255231][ T2849] synchronize_rcu_expedited+0x593/0x820 [ 71.255252][ T2849] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 71.255271][ T2849] ? __pfx_validate_chain+0x10/0x10 [ 71.255290][ T2849] ? mark_lock+0x9a/0x350 [ 71.255309][ T2849] ? __lock_acquire+0x1346/0x1fd0 [ 71.255327][ T2849] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 71.255352][ T2849] ? __pfx___might_resched+0x10/0x10 [ 71.255379][ T2849] synchronize_rcu+0x136/0x3e0 [ 71.255397][ T2849] ? __pfx_synchronize_rcu+0x10/0x10 [ 71.255425][ T2849] ? __pfx_lock_acquire+0x10/0x10 [ 71.255441][ T2849] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 71.255460][ T2849] sock_map_free+0x29/0x3e0 [ 71.255478][ T2849] bpf_map_free_deferred+0xe6/0x110 [ 71.255495][ T2849] ? process_scheduled_works+0x91b/0x1770 [ 71.255511][ T2849] process_scheduled_works+0xa00/0x1770 [ 71.255540][ T2849] ? __pfx_process_scheduled_works+0x10/0x10 [ 71.255560][ T2849] ? assign_work+0x364/0x3d0 [ 71.255578][ T2849] worker_thread+0x86d/0xd70 [ 71.255601][ T2849] ? __kthread_parkme+0x169/0x1d0 [ 71.255620][ T2849] ? __pfx_worker_thread+0x10/0x10 [ 71.255637][ T2849] kthread+0x2f0/0x390 [ 71.255656][ T2849] ? __pfx_worker_thread+0x10/0x10 [ 71.255672][ T2849] ? __pfx_kthread+0x10/0x10 [ 71.255692][ T2849] ret_from_fork+0x4b/0x80 [ 71.255715][ T2849] ? __pfx_kthread+0x10/0x10 [ 71.255734][ T2849] ret_from_fork_asm+0x1a/0x30 [ 71.255764][ T2849] [ 72.602241][ T2849] WARNING: CPU: 1 PID: 2849 at kernel/softirq.c:362 __local_bh_enable_ip+0x1be/0x200 [ 72.611886][ T2849] Modules linked in: [ 72.615786][ T2849] CPU: 1 PID: 2849 Comm: kworker/u8:7 Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0 [ 72.625599][ T2849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 72.635700][ T2849] Workqueue: events_unbound bpf_map_free_deferred [ 72.642159][ T2849] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 72.648175][ T2849] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 72.667795][ T2849] RSP: 0018:ffffc9000a8a74a0 EFLAGS: 00010046 [ 72.673869][ T2849] RAX: 0000000000000000 RBX: 1ffff92001514e98 RCX: 0000000000000001 [ 72.681869][ T2849] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa5ea [ 72.689876][ T2849] RBP: ffffc9000a8a7560 R08: ffff88801123d9eb R09: 1ffff11002247b3d [ 72.697853][ T2849] R10: dffffc0000000000 R11: ffffed1002247b3e R12: dffffc0000000000 [ 72.705924][ T2849] R13: ffff88801123d000 R14: ffffc9000a8a74e0 R15: 0000000000000201 [ 72.713916][ T2849] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 72.722856][ T2849] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 72.729445][ T2849] CR2: 00007fc2b45580d0 CR3: 000000001fcf6000 CR4: 00000000003506f0 [ 72.737438][ T2849] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 72.745434][ T2849] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 72.753501][ T2849] Call Trace: [ 72.756785][ T2849] [ 72.759809][ T2849] ? __warn+0x163/0x4b0 [ 72.763982][ T2849] ? __local_bh_enable_ip+0x1be/0x200 [ 72.769412][ T2849] ? report_bug+0x2b3/0x500 [ 72.773949][ T2849] ? __local_bh_enable_ip+0x1be/0x200 [ 72.779434][ T2849] ? handle_bug+0x3e/0x70 [ 72.783800][ T2849] ? exc_invalid_op+0x1a/0x50 [ 72.788501][ T2849] ? asm_exc_invalid_op+0x1a/0x20 [ 72.793573][ T2849] ? sock_map_delete_elem+0xca/0x140 [ 72.798869][ T2849] ? __local_bh_enable_ip+0x1be/0x200 [ 72.804334][ T2849] ? sock_map_delete_elem+0xca/0x140 [ 72.809657][ T2849] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 72.815393][ T2849] ? sock_map_delete_elem+0xca/0x140 [ 72.820685][ T2849] ? do_raw_spin_unlock+0x13c/0x8b0 [ 72.825994][ T2849] ? arch_irq_work_raise+0x6f/0x80 [ 72.831137][ T2849] ? sock_map_delete_elem+0x97/0x140 [ 72.836459][ T2849] sock_map_delete_elem+0xca/0x140 [ 72.841668][ T2849] bpf_prog_d247abf228e51871+0x69/0x6d [ 72.847140][ T2849] bpf_trace_run2+0x204/0x420 [ 72.851839][ T2849] ? bpf_trace_run2+0x114/0x420 [ 72.856699][ T2849] ? __pfx_bpf_trace_run2+0x10/0x10 [ 72.862087][ T2849] kthread_insert_work+0x3f4/0x460 [ 72.867308][ T2849] kthread_queue_work+0xff/0x180 [ 72.872265][ T2849] synchronize_rcu_expedited+0x593/0x820 [ 72.877910][ T2849] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 72.884214][ T2849] ? __pfx_validate_chain+0x10/0x10 [ 72.889420][ T2849] ? mark_lock+0x9a/0x350 [ 72.893856][ T2849] ? __lock_acquire+0x1346/0x1fd0 [ 72.898898][ T2849] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 72.904478][ T2849] ? __pfx___might_resched+0x10/0x10 [ 72.909870][ T2849] synchronize_rcu+0x136/0x3e0 [ 72.914641][ T2849] ? __pfx_synchronize_rcu+0x10/0x10 [ 72.919969][ T2849] ? __pfx_lock_acquire+0x10/0x10 [ 72.925087][ T2849] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.931080][ T2849] sock_map_free+0x29/0x3e0 [ 72.935613][ T2849] bpf_map_free_deferred+0xe6/0x110 [ 72.940819][ T2849] ? process_scheduled_works+0x91b/0x1770 [ 72.946554][ T2849] process_scheduled_works+0xa00/0x1770 [ 72.952223][ T2849] ? __pfx_process_scheduled_works+0x10/0x10 [ 72.958213][ T2849] ? assign_work+0x364/0x3d0 [ 72.962810][ T2849] worker_thread+0x86d/0xd70 [ 72.967415][ T2849] ? __kthread_parkme+0x169/0x1d0 [ 72.972469][ T2849] ? __pfx_worker_thread+0x10/0x10 [ 72.977599][ T2849] kthread+0x2f0/0x390 [ 72.981681][ T2849] ? __pfx_worker_thread+0x10/0x10 [ 72.986804][ T2849] ? __pfx_kthread+0x10/0x10 [ 72.991599][ T2849] ret_from_fork+0x4b/0x80 [ 72.996036][ T2849] ? __pfx_kthread+0x10/0x10 [ 73.000665][ T2849] ret_from_fork_asm+0x1a/0x30 [ 73.005470][ T2849] [ 73.008496][ T2849] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 73.016583][ T2849] CPU: 1 PID: 2849 Comm: kworker/u8:7 Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0 [ 73.026418][ T2849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 73.036845][ T2849] Workqueue: events_unbound bpf_map_free_deferred [ 73.043487][ T2849] Call Trace: [ 73.047126][ T2849] [ 73.050589][ T2849] dump_stack_lvl+0x1e7/0x2e0 [ 73.055315][ T2849] ? __pfx_dump_stack_lvl+0x10/0x10 [ 73.061050][ T2849] ? __pfx__printk+0x10/0x10 [ 73.065859][ T2849] ? vscnprintf+0x5d/0x90 [ 73.070211][ T2849] panic+0x349/0x860 [ 73.074115][ T2849] ? __warn+0x172/0x4b0 [ 73.078308][ T2849] ? __pfx_panic+0x10/0x10 [ 73.082739][ T2849] ? ret_from_fork_asm+0x1a/0x30 [ 73.087695][ T2849] __warn+0x31e/0x4b0 [ 73.091698][ T2849] ? __local_bh_enable_ip+0x1be/0x200 [ 73.097268][ T2849] report_bug+0x2b3/0x500 [ 73.101707][ T2849] ? __local_bh_enable_ip+0x1be/0x200 [ 73.107092][ T2849] handle_bug+0x3e/0x70 [ 73.111262][ T2849] exc_invalid_op+0x1a/0x50 [ 73.115780][ T2849] asm_exc_invalid_op+0x1a/0x20 [ 73.120707][ T2849] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 73.126701][ T2849] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 73.146554][ T2849] RSP: 0018:ffffc9000a8a74a0 EFLAGS: 00010046 [ 73.152649][ T2849] RAX: 0000000000000000 RBX: 1ffff92001514e98 RCX: 0000000000000001 [ 73.160648][ T2849] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa5ea [ 73.168634][ T2849] RBP: ffffc9000a8a7560 R08: ffff88801123d9eb R09: 1ffff11002247b3d [ 73.176621][ T2849] R10: dffffc0000000000 R11: ffffed1002247b3e R12: dffffc0000000000 [ 73.184611][ T2849] R13: ffff88801123d000 R14: ffffc9000a8a74e0 R15: 0000000000000201 [ 73.192613][ T2849] ? sock_map_delete_elem+0xca/0x140 [ 73.197922][ T2849] ? sock_map_delete_elem+0xca/0x140 [ 73.203215][ T2849] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 73.208977][ T2849] ? sock_map_delete_elem+0xca/0x140 [ 73.214287][ T2849] ? do_raw_spin_unlock+0x13c/0x8b0 [ 73.219510][ T2849] ? arch_irq_work_raise+0x6f/0x80 [ 73.224721][ T2849] ? sock_map_delete_elem+0x97/0x140 [ 73.230054][ T2849] sock_map_delete_elem+0xca/0x140 [ 73.235206][ T2849] bpf_prog_d247abf228e51871+0x69/0x6d [ 73.240761][ T2849] bpf_trace_run2+0x204/0x420 [ 73.245452][ T2849] ? bpf_trace_run2+0x114/0x420 [ 73.250399][ T2849] ? __pfx_bpf_trace_run2+0x10/0x10 [ 73.255784][ T2849] kthread_insert_work+0x3f4/0x460 [ 73.261520][ T2849] kthread_queue_work+0xff/0x180 [ 73.266468][ T2849] synchronize_rcu_expedited+0x593/0x820 [ 73.272111][ T2849] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 73.278367][ T2849] ? __pfx_validate_chain+0x10/0x10 [ 73.283605][ T2849] ? mark_lock+0x9a/0x350 [ 73.287963][ T2849] ? __lock_acquire+0x1346/0x1fd0 [ 73.293003][ T2849] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 73.298302][ T2849] ? __pfx___might_resched+0x10/0x10 [ 73.303783][ T2849] synchronize_rcu+0x136/0x3e0 [ 73.308591][ T2849] ? __pfx_synchronize_rcu+0x10/0x10 [ 73.313923][ T2849] ? __pfx_lock_acquire+0x10/0x10 [ 73.319071][ T2849] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 73.325296][ T2849] sock_map_free+0x29/0x3e0 [ 73.329814][ T2849] bpf_map_free_deferred+0xe6/0x110 [ 73.335118][ T2849] ? process_scheduled_works+0x91b/0x1770 [ 73.340861][ T2849] process_scheduled_works+0xa00/0x1770 [ 73.346424][ T2849] ? __pfx_process_scheduled_works+0x10/0x10 [ 73.352430][ T2849] ? assign_work+0x364/0x3d0 [ 73.357034][ T2849] worker_thread+0x86d/0xd70 [ 73.361641][ T2849] ? __kthread_parkme+0x169/0x1d0 [ 73.366772][ T2849] ? __pfx_worker_thread+0x10/0x10 [ 73.371892][ T2849] kthread+0x2f0/0x390 [ 73.375984][ T2849] ? __pfx_worker_thread+0x10/0x10 [ 73.381203][ T2849] ? __pfx_kthread+0x10/0x10 [ 73.385823][ T2849] ret_from_fork+0x4b/0x80 [ 73.390256][ T2849] ? __pfx_kthread+0x10/0x10 [ 73.394873][ T2849] ret_from_fork_asm+0x1a/0x30 [ 73.399682][ T2849] [ 73.403171][ T2849] Kernel Offset: disabled [ 73.407525][ T2849] Rebooting in 86400 seconds..