Warning: Permanently added '10.128.0.128' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 47.767889][ C1] [ 47.770249][ C1] ======================================================== [ 47.777430][ C1] WARNING: possible irq lock inversion dependency detected [ 47.784607][ C1] 5.6.0-syzkaller #0 Not tainted [ 47.789523][ C1] -------------------------------------------------------- [ 47.796705][ C1] swapper/1/0 just changed the state of lock: [ 47.802761][ C1] ffff8880a6da1cd8 (&ctx->ctx_lock){..-.}-{2:2}, at: free_ioctx_users+0x30/0x1c0 [ 47.811855][ C1] but this lock took another, SOFTIRQ-unsafe lock in the past: [ 47.819365][ C1] (&pid->wait_pidfd){+.+.}-{2:2} [ 47.819371][ C1] [ 47.819371][ C1] [ 47.819371][ C1] and interrupts could create inverse lock ordering between them. [ 47.819371][ C1] [ 47.838754][ C1] [ 47.838754][ C1] other info that might help us debug this: [ 47.846793][ C1] Possible interrupt unsafe locking scenario: [ 47.846793][ C1] [ 47.855083][ C1] CPU0 CPU1 [ 47.860420][ C1] ---- ---- [ 47.865767][ C1] lock(&pid->wait_pidfd); [ 47.870264][ C1] local_irq_disable(); [ 47.877681][ C1] lock(&ctx->ctx_lock); [ 47.884528][ C1] lock(&pid->wait_pidfd); [ 47.891522][ C1] [ 47.894999][ C1] lock(&ctx->ctx_lock); [ 47.899484][ C1] [ 47.899484][ C1] *** DEADLOCK *** [ 47.899484][ C1] [ 47.907613][ C1] 2 locks held by swapper/1/0: [ 47.912377][ C1] #0: ffffffff892e6be0 (rcu_callback){....}-{0:0}, at: rcu_lock_acquire+0x0/0x30 [ 47.921573][ C1] #1: ffffffff892e6b90 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30 [ 47.930842][ C1] [ 47.930842][ C1] the shortest dependencies between 2nd lock and 1st lock: [ 47.940647][ C1] -> (&pid->wait_pidfd){+.+.}-{2:2} { [ 47.946131][ C1] HARDIRQ-ON-W at: [ 47.950181][ C1] lock_acquire+0x169/0x480 [ 47.956545][ C1] _raw_spin_lock+0x2a/0x40 [ 47.962862][ C1] proc_pid_make_inode+0x187/0x2d0 [ 47.969784][ C1] proc_pid_instantiate+0x4b/0x1a0 [ 47.976693][ C1] proc_pid_lookup+0x218/0x2f0 [ 47.983302][ C1] proc_root_lookup+0x1b/0x50 [ 47.989777][ C1] __lookup_slow+0x240/0x370 [ 47.996169][ C1] walk_component+0x442/0x680 [ 48.002674][ C1] link_path_walk+0x66d/0xba0 [ 48.009266][ C1] path_openat+0x21d/0x38b0 [ 48.015611][ C1] do_filp_open+0x191/0x3a0 [ 48.022007][ C1] do_sys_openat2+0x463/0x770 [ 48.028481][ C1] __x64_sys_open+0x1af/0x1e0 [ 48.035041][ C1] do_syscall_64+0xf3/0x1b0 [ 48.041364][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 48.049050][ C1] SOFTIRQ-ON-W at: [ 48.053098][ C1] lock_acquire+0x169/0x480 [ 48.059394][ C1] _raw_spin_lock+0x2a/0x40 [ 48.065698][ C1] proc_pid_make_inode+0x187/0x2d0 [ 48.072798][ C1] proc_pid_instantiate+0x4b/0x1a0 [ 48.079760][ C1] proc_pid_lookup+0x218/0x2f0 [ 48.086321][ C1] proc_root_lookup+0x1b/0x50 [ 48.092816][ C1] __lookup_slow+0x240/0x370 [ 48.099229][ C1] walk_component+0x442/0x680 [ 48.105702][ C1] link_path_walk+0x66d/0xba0 [ 48.112199][ C1] path_openat+0x21d/0x38b0 [ 48.118517][ C1] do_filp_open+0x191/0x3a0 [ 48.124826][ C1] do_sys_openat2+0x463/0x770 [ 48.131311][ C1] __x64_sys_open+0x1af/0x1e0 [ 48.137816][ C1] do_syscall_64+0xf3/0x1b0 [ 48.144143][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 48.151839][ C1] INITIAL USE at: [ 48.155899][ C1] lock_acquire+0x169/0x480 [ 48.162151][ C1] _raw_spin_lock_irqsave+0x9e/0xc0 [ 48.169158][ C1] __wake_up+0xb8/0x150 [ 48.175052][ C1] do_notify_parent+0x167/0xce0 [ 48.181643][ C1] do_exit+0x12c5/0x1f80 [ 48.188217][ C1] call_usermodehelper_exec_async+0x47c/0x480 [ 48.196056][ C1] ret_from_fork+0x24/0x30 [ 48.202211][ C1] } [ 48.205032][ C1] ... key at: [] alloc_pid.__key+0x0/0x10 [ 48.212895][ C1] ... acquired at: [ 48.217177][ C1] lock_acquire+0x169/0x480 [ 48.222107][ C1] _raw_spin_lock+0x2a/0x40 [ 48.226825][ C1] io_submit_one+0x10f5/0x1a80 [ 48.231752][ C1] __se_sys_io_submit+0x117/0x220 [ 48.236935][ C1] do_syscall_64+0xf3/0x1b0 [ 48.241598][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 48.247694][ C1] [ 48.250049][ C1] -> (&ctx->ctx_lock){..-.}-{2:2} { [ 48.255382][ C1] IN-SOFTIRQ-W at: [ 48.259350][ C1] lock_acquire+0x169/0x480 [ 48.265531][ C1] _raw_spin_lock_irq+0x67/0x80 [ 48.272024][ C1] free_ioctx_users+0x30/0x1c0 [ 48.278464][ C1] percpu_ref_put+0x18d/0x1a0 [ 48.284885][ C1] rcu_core+0x816/0x1120 [ 48.290759][ C1] __do_softirq+0x268/0x80c [ 48.296900][ C1] irq_exit+0x223/0x230 [ 48.302725][ C1] smp_apic_timer_interrupt+0x113/0x280 [ 48.310229][ C1] apic_timer_interrupt+0xf/0x20 [ 48.316813][ C1] native_safe_halt+0xe/0x10 [ 48.323144][ C1] default_idle+0x4c/0x70 [ 48.329117][ C1] do_idle+0x1ee/0x650 [ 48.334879][ C1] cpu_startup_entry+0x15/0x20 [ 48.341388][ C1] start_secondary+0x386/0x410 [ 48.347783][ C1] secondary_startup_64+0xa4/0xb0 [ 48.354457][ C1] INITIAL USE at: [ 48.358365][ C1] lock_acquire+0x169/0x480 [ 48.364408][ C1] _raw_spin_lock_irq+0x67/0x80 [ 48.370879][ C1] io_submit_one+0x10cb/0x1a80 [ 48.377175][ C1] __se_sys_io_submit+0x117/0x220 [ 48.383746][ C1] do_syscall_64+0xf3/0x1b0 [ 48.389800][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 48.397220][ C1] } [ 48.399700][ C1] ... key at: [] ioctx_alloc.__key+0x0/0x10 [ 48.407647][ C1] ... acquired at: [ 48.411454][ C1] mark_lock+0x529/0x1b00 [ 48.415929][ C1] __lock_acquire+0xaa7/0x2b90 [ 48.420935][ C1] lock_acquire+0x169/0x480 [ 48.425587][ C1] _raw_spin_lock_irq+0x67/0x80 [ 48.430586][ C1] free_ioctx_users+0x30/0x1c0 [ 48.435497][ C1] percpu_ref_put+0x18d/0x1a0 [ 48.440344][ C1] rcu_core+0x816/0x1120 [ 48.444902][ C1] __do_softirq+0x268/0x80c [ 48.449551][ C1] irq_exit+0x223/0x230 [ 48.453849][ C1] smp_apic_timer_interrupt+0x113/0x280 [ 48.459548][ C1] apic_timer_interrupt+0xf/0x20 [ 48.464649][ C1] native_safe_halt+0xe/0x10 [ 48.469507][ C1] default_idle+0x4c/0x70 [ 48.474002][ C1] do_idle+0x1ee/0x650 [ 48.478218][ C1] cpu_startup_entry+0x15/0x20 [ 48.483132][ C1] start_secondary+0x386/0x410 [ 48.488042][ C1] secondary_startup_64+0xa4/0xb0 [ 48.493210][ C1] [ 48.495513][ C1] [ 48.495513][ C1] stack backtrace: [ 48.501505][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.6.0-syzkaller #0 [ 48.509257][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 48.519302][ C1] Call Trace: [ 48.522576][ C1] [ 48.525628][ C1] dump_stack+0x1e9/0x30e [ 48.529939][ C1] print_irq_inversion_bug+0xb67/0xe90 [ 48.535370][ C1] ? arch_stack_walk+0xb4/0xe0 [ 48.540283][ C1] ? secondary_startup_64+0xa4/0xb0 [ 48.545478][ C1] check_usage_forwards+0x13f/0x240 [ 48.550662][ C1] ? save_trace+0x49/0xb60 [ 48.555051][ C1] mark_lock+0x529/0x1b00 [ 48.559369][ C1] ? check_usage_backwards+0x240/0x240 [ 48.564821][ C1] ? mark_lock+0x102/0x1b00 [ 48.569305][ C1] ? __lock_acquire+0x116c/0x2b90 [ 48.574318][ C1] __lock_acquire+0xaa7/0x2b90 [ 48.579055][ C1] ? pcpu_block_update+0x564/0x890 [ 48.584136][ C1] lock_acquire+0x169/0x480 [ 48.588609][ C1] ? free_ioctx_users+0x30/0x1c0 [ 48.593524][ C1] ? rcu_lock_acquire+0x5/0x30 [ 48.598280][ C1] ? trace_irq_disable_rcuidle+0x1f/0x1d0 [ 48.603987][ C1] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 48.610028][ C1] _raw_spin_lock_irq+0x67/0x80 [ 48.614846][ C1] ? free_ioctx_users+0x30/0x1c0 [ 48.619846][ C1] free_ioctx_users+0x30/0x1c0 [ 48.624599][ C1] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 48.630648][ C1] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 48.636697][ C1] percpu_ref_put+0x18d/0x1a0 [ 48.641431][ C1] rcu_core+0x816/0x1120 [ 48.645661][ C1] __do_softirq+0x268/0x80c [ 48.650149][ C1] ? irq_exit+0x223/0x230 [ 48.654447][ C1] irq_exit+0x223/0x230 [ 48.658589][ C1] smp_apic_timer_interrupt+0x113/0x280 [ 48.664104][ C1] apic_timer_interrupt+0xf/0x20 [ 48.669013][ C1] [ 48.671945][ C1] RIP: 0010:native_safe_halt+0xe/0x10 [ 48.677302][ C1] Code: 80 e1 07 80 c1 03 38 c1 7c bc 48 89 df e8 1a fe a7 f9 eb b2 cc cc cc cc cc cc cc cc e9 07 00 00 00 0f 00 2d a6 eb 56 00 fb f4 90 e9 07 00 00 00 0f 00 2d 96 eb 56 00 f4 c3 cc cc 41 56 53 65 [ 48.696991][ C1] RSP: 0018:ffffc90000d3fe60 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13 [ 48.705406][ C1] RAX: 1ffffffff1257401 RBX: ffff8880a9a3c340 RCX: dffffc0000000000 [ 48.713371][ C1] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffff8880a9a3cba4 [ 48.721318][ C1] RBP: ffffffff896b98e0 R08: ffffffff817b9a70 R09: ffffed1015347869 [ 48.729264][ C1] R10: ffffed1015347869 R11: 0000000000000000 R12: 1ffff11015347868 [ 48.737212][ C1] R13: dffffc0000000000 R14: 1ffffffff12573ff R15: 0000000000000001 [ 48.745190][ C1] ? trace_hardirqs_on+0x30/0x70 [ 48.750102][ C1] default_idle+0x4c/0x70 [ 48.754499][ C1] do_idle+0x1ee/0x650 [ 48.758550][ C1] cpu_startup_entry+0x15/0x20 [ 48.763281][ C1] start_secondary+0x386/0x410 [ 48.768124][ C1] secondary_startup_64+0