Warning: Permanently added '10.128.10.26' (ED25519) to the list of known hosts. executing program executing program [ 52.864274][ T102] [ 52.866685][ T102] ===================================================== [ 52.876891][ T102] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 52.887860][ T102] 6.1.82-syzkaller #0 Not tainted [ 52.893673][ T102] ----------------------------------------------------- [ 52.902544][ T102] kworker/u4:4/102 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire: [ 52.911191][ T102] ffff88807f1a70f8 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xac/0x2f0 [ 52.922912][ T102] [ 52.922912][ T102] and this task is already holding: [ 52.930827][ T102] ffff8880b983aa18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140 [ 52.941471][ T102] which would create a new lock dependency: [ 52.947731][ T102] (&rq->__lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2} [ 52.956541][ T102] [ 52.956541][ T102] but this new dependency connects a HARDIRQ-irq-safe lock: [ 52.967228][ T102] (&rq->__lock){-.-.}-{2:2} [ 52.967254][ T102] [ 52.967254][ T102] ... which became HARDIRQ-irq-safe at: [ 52.980794][ T102] lock_acquire+0x1f8/0x5a0 [ 52.987811][ T102] _raw_spin_lock_nested+0x2d/0x40 [ 52.993208][ T102] raw_spin_rq_lock_nested+0x26/0x140 [ 52.998908][ T102] scheduler_tick+0x9d/0x550 [ 53.004052][ T102] update_process_times+0x17b/0x1b0 [ 53.009799][ T102] tick_periodic+0x197/0x210 [ 53.014921][ T102] tick_handle_periodic+0x46/0x150 [ 53.020161][ T102] timer_interrupt+0x4d/0x60 [ 53.024834][ T102] __handle_irq_event_percpu+0x2a8/0xb20 [ 53.031380][ T102] handle_irq_event+0x85/0x1e0 [ 53.037110][ T102] handle_level_irq+0x3ab/0x6c0 [ 53.045013][ T102] __common_interrupt+0xd7/0x1f0 [ 53.050425][ T102] common_interrupt+0x9f/0xc0 [ 53.055386][ T102] asm_common_interrupt+0x22/0x40 [ 53.060880][ T102] _raw_spin_unlock_irqrestore+0xd4/0x130 [ 53.068147][ T102] __setup_irq+0x12fa/0x1d80 [ 53.074252][ T102] request_threaded_irq+0x2a7/0x380 [ 53.079639][ T102] setup_default_timer_irq+0x1f/0x30 [ 53.086253][ T102] x86_late_time_init+0x51/0x86 [ 53.092090][ T102] start_kernel+0x414/0x53f [ 53.097258][ T102] secondary_startup_64_no_verify+0xcf/0xdb [ 53.103623][ T102] [ 53.103623][ T102] to a HARDIRQ-irq-unsafe lock: [ 53.111091][ T102] (&htab->buckets[i].lock){+...}-{2:2} [ 53.111114][ T102] [ 53.111114][ T102] ... which became HARDIRQ-irq-unsafe at: [ 53.126050][ T102] ... [ 53.126060][ T102] lock_acquire+0x1f8/0x5a0 [ 53.137240][ T102] _raw_spin_lock_bh+0x31/0x40 [ 53.143319][ T102] sock_hash_free+0x160/0x820 [ 53.149973][ T102] process_one_work+0x8a9/0x11d0 [ 53.157528][ T102] worker_thread+0xa47/0x1200 [ 53.164715][ T102] kthread+0x28d/0x320 [ 53.169045][ T102] ret_from_fork+0x1f/0x30 [ 53.173754][ T102] [ 53.173754][ T102] other info that might help us debug this: [ 53.173754][ T102] [ 53.184514][ T102] Possible interrupt unsafe locking scenario: [ 53.184514][ T102] [ 53.193618][ T102] CPU0 CPU1 [ 53.199554][ T102] ---- ---- [ 53.205013][ T102] lock(&htab->buckets[i].lock); [ 53.210167][ T102] local_irq_disable(); [ 53.217626][ T102] lock(&rq->__lock); [ 53.224394][ T102] lock(&htab->buckets[i].lock); [ 53.232118][ T102] [ 53.235648][ T102] lock(&rq->__lock); [ 53.240075][ T102] [ 53.240075][ T102] *** DEADLOCK *** [ 53.240075][ T102] [ 53.248378][ T102] 5 locks held by kworker/u4:4/102: [ 53.254633][ T102] #0: ffff888012479138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 53.266059][ T102] #1: ffffc900015c7d20 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 53.277546][ T102] #2: ffffffff8d12ff38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3b0/0x8a0 [ 53.290405][ T102] #3: ffff8880b983aa18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140 [ 53.301008][ T102] #4: ffffffff8d12a940 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x16a/0x470 [ 53.310729][ T102] [ 53.310729][ T102] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 53.321944][ T102] -> (&rq->__lock){-.-.}-{2:2} { [ 53.327008][ T102] IN-HARDIRQ-W at: [ 53.331005][ T102] lock_acquire+0x1f8/0x5a0 [ 53.337615][ T102] _raw_spin_lock_nested+0x2d/0x40 [ 53.344509][ T102] raw_spin_rq_lock_nested+0x26/0x140 [ 53.351729][ T102] scheduler_tick+0x9d/0x550 [ 53.358065][ T102] update_process_times+0x17b/0x1b0 [ 53.364920][ T102] tick_periodic+0x197/0x210 [ 53.371248][ T102] tick_handle_periodic+0x46/0x150 [ 53.378097][ T102] timer_interrupt+0x4d/0x60 [ 53.384342][ T102] __handle_irq_event_percpu+0x2a8/0xb20 [ 53.392088][ T102] handle_irq_event+0x85/0x1e0 [ 53.398614][ T102] handle_level_irq+0x3ab/0x6c0 [ 53.405315][ T102] __common_interrupt+0xd7/0x1f0 [ 53.413070][ T102] common_interrupt+0x9f/0xc0 [ 53.419700][ T102] asm_common_interrupt+0x22/0x40 [ 53.427618][ T102] _raw_spin_unlock_irqrestore+0xd4/0x130 [ 53.435707][ T102] __setup_irq+0x12fa/0x1d80 [ 53.442733][ T102] request_threaded_irq+0x2a7/0x380 [ 53.450696][ T102] setup_default_timer_irq+0x1f/0x30 [ 53.459155][ T102] x86_late_time_init+0x51/0x86 [ 53.466131][ T102] start_kernel+0x414/0x53f [ 53.473084][ T102] secondary_startup_64_no_verify+0xcf/0xdb [ 53.481237][ T102] IN-SOFTIRQ-W at: [ 53.486278][ T102] lock_acquire+0x1f8/0x5a0 [ 53.497059][ T102] _raw_spin_lock_nested+0x2d/0x40 [ 53.505009][ T102] raw_spin_rq_lock_nested+0x26/0x140 [ 53.512680][ T102] try_to_wake_up+0x5bd/0x12e0 [ 53.525386][ T102] call_timer_fn+0x1ad/0x6b0 [ 53.535092][ T102] __run_timers+0x67c/0x890 [ 53.544741][ T102] run_timer_softirq+0x63/0xf0 [ 53.553749][ T102] __do_softirq+0x2e9/0xa4c [ 53.561602][ T102] __irq_exit_rcu+0x155/0x240 [ 53.568330][ T102] irq_exit_rcu+0x5/0x20 [ 53.574865][ T102] sysvec_apic_timer_interrupt+0x91/0xb0 [ 53.585435][ T102] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 53.595445][ T102] default_idle+0xb/0x10 [ 53.603209][ T102] default_idle_call+0x84/0xc0 [ 53.610451][ T102] do_idle+0x251/0x680 [ 53.617775][ T102] cpu_startup_entry+0x3d/0x60 [ 53.626251][ T102] rest_init+0x2da/0x300 [ 53.633071][ T102] start_kernel+0x0/0x53f [ 53.640327][ T102] start_kernel+0x496/0x53f [ 53.647570][ T102] secondary_startup_64_no_verify+0xcf/0xdb [ 53.657083][ T102] INITIAL USE at: [ 53.663322][ T102] lock_acquire+0x1f8/0x5a0 [ 53.671042][ T102] _raw_spin_lock_nested+0x2d/0x40 [ 53.679401][ T102] raw_spin_rq_lock_nested+0x26/0x140 [ 53.688969][ T102] rq_attach_root+0xec/0x540 [ 53.696385][ T102] sched_init+0x6c7/0xcc9 [ 53.703602][ T102] start_kernel+0x1bf/0x53f [ 53.710339][ T102] secondary_startup_64_no_verify+0xcf/0xdb [ 53.718771][ T102] } [ 53.721290][ T102] ... key at: [] sched_init.__key+0x0/0x20 [ 53.730373][ T102] [ 53.730373][ T102] the dependencies between the lock to be acquired [ 53.730385][ T102] and HARDIRQ-irq-unsafe lock: [ 53.744648][ T102] -> (&htab->buckets[i].lock){+...}-{2:2} { [ 53.750641][ T102] HARDIRQ-ON-W at: [ 53.755080][ T102] lock_acquire+0x1f8/0x5a0 [ 53.761358][ T102] _raw_spin_lock_bh+0x31/0x40 [ 53.770052][ T102] sock_hash_free+0x160/0x820 [ 53.777376][ T102] process_one_work+0x8a9/0x11d0 [ 53.785400][ T102] worker_thread+0xa47/0x1200 [ 53.792635][ T102] kthread+0x28d/0x320 [ 53.803110][ T102] ret_from_fork+0x1f/0x30 [ 53.814850][ T102] INITIAL USE at: [ 53.819830][ T102] lock_acquire+0x1f8/0x5a0 [ 53.831958][ T102] _raw_spin_lock_bh+0x31/0x40 [ 53.845716][ T102] sock_hash_free+0x160/0x820 [ 53.858505][ T102] process_one_work+0x8a9/0x11d0 [ 53.867818][ T102] worker_thread+0xa47/0x1200 [ 53.877234][ T102] kthread+0x28d/0x320 [ 53.888017][ T102] ret_from_fork+0x1f/0x30 [ 53.897970][ T102] } [ 53.901303][ T102] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 53.912806][ T102] ... acquired at: [ 53.919319][ T102] lock_acquire+0x1f8/0x5a0 [ 53.926081][ T102] _raw_spin_lock_bh+0x31/0x40 [ 53.935137][ T102] sock_hash_delete_elem+0xac/0x2f0 [ 53.943310][ T102] bpf_prog_41dc942b539d01dc+0x3a/0x4f [ 53.950855][ T102] bpf_trace_run4+0x253/0x470 [ 53.957316][ T102] __schedule+0x2116/0x4550 [ 53.962899][ T102] schedule+0xbf/0x180 [ 53.968350][ T102] synchronize_rcu_expedited+0x6dc/0x8a0 [ 53.975202][ T102] synchronize_rcu+0x11c/0x3f0 [ 53.982092][ T102] sock_hash_free+0x769/0x820 [ 53.988704][ T102] process_one_work+0x8a9/0x11d0 [ 53.996262][ T102] worker_thread+0xa47/0x1200 [ 54.002469][ T102] kthread+0x28d/0x320 [ 54.006742][ T102] ret_from_fork+0x1f/0x30 [ 54.011540][ T102] [ 54.014389][ T102] [ 54.014389][ T102] stack backtrace: [ 54.022028][ T102] CPU: 0 PID: 102 Comm: kworker/u4:4 Not tainted 6.1.82-syzkaller #0 [ 54.030188][ T102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 54.041238][ T102] Workqueue: events_unbound bpf_map_free_deferred [ 54.048188][ T102] Call Trace: [ 54.051644][ T102] [ 54.055299][ T102] dump_stack_lvl+0x1e3/0x2cb [ 54.061834][ T102] ? nf_tcp_handle_invalid+0x642/0x642 [ 54.071771][ T102] ? panic+0x75d/0x75d [ 54.076010][ T102] ? print_shortest_lock_dependencies+0xee/0x150 [ 54.085286][ T102] validate_chain+0x4d16/0x5950 [ 54.091394][ T102] ? reacquire_held_locks+0x660/0x660 [ 54.097453][ T102] ? add_chain_block+0x850/0x850 [ 54.104010][ T102] ? register_lock_class+0x100/0x990 [ 54.110120][ T102] ? is_dynamic_key+0x260/0x260 [ 54.115698][ T102] ? mark_lock+0x9a/0x340 [ 54.120860][ T102] __lock_acquire+0x125b/0x1f80 [ 54.126388][ T102] lock_acquire+0x1f8/0x5a0 [ 54.131443][ T102] ? sock_hash_delete_elem+0xac/0x2f0 [ 54.137895][ T102] ? lockdep_softirqs_on+0x590/0x590 [ 54.146422][ T102] ? read_lock_is_recursive+0x10/0x10 [ 54.152158][ T102] ? psi_task_switch+0x43d/0x770 [ 54.159173][ T102] ? sock_hash_delete_elem+0xac/0x2f0 [ 54.164748][ T102] ? __bpf_trace_softirq+0x10/0x10 [ 54.170232][ T102] ? read_lock_is_recursive+0x10/0x10 [ 54.176293][ T102] ? sock_hash_delete_elem+0xac/0x2f0 [ 54.182029][ T102] _raw_spin_lock_bh+0x31/0x40 [ 54.187255][ T102] ? sock_hash_delete_elem+0xac/0x2f0 [ 54.193547][ T102] sock_hash_delete_elem+0xac/0x2f0 [ 54.199061][ T102] bpf_prog_41dc942b539d01dc+0x3a/0x4f [ 54.204891][ T102] ? bpf_trace_run4+0x16a/0x470 [ 54.209755][ T102] bpf_trace_run4+0x253/0x470 [ 54.214610][ T102] ? bpf_trace_run3+0x440/0x440 [ 54.219448][ T102] ? psi_task_switch+0x43d/0x770 [ 54.224418][ T102] __schedule+0x2116/0x4550 [ 54.229131][ T102] ? lockdep_hardirqs_on+0x94/0x130 [ 54.234353][ T102] ? mark_lock+0x9a/0x340 [ 54.238783][ T102] ? __sched_text_start+0x8/0x8 [ 54.244525][ T102] ? wq_worker_last_func+0x40/0x40 [ 54.249832][ T102] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 54.255850][ T102] ? wq_worker_sleeping+0x5f/0x270 [ 54.261162][ T102] schedule+0xbf/0x180 [ 54.265356][ T102] synchronize_rcu_expedited+0x6dc/0x8a0 [ 54.271438][ T102] ? synchronize_rcu+0x3f0/0x3f0 [ 54.277165][ T102] ? lockdep_unlock+0x165/0x300 [ 54.282142][ T102] ? cpufreq_update_util+0x94/0x250 [ 54.287369][ T102] ? look_up_lock_class+0x77/0x140 [ 54.293381][ T102] ? sync_rcu_exp_done_unlocked+0x140/0x140 [ 54.299713][ T102] ? is_dynamic_key+0x260/0x260 [ 54.305462][ T102] ? mark_lock+0x9a/0x340 [ 54.310245][ T102] ? __lock_acquire+0x125b/0x1f80 [ 54.315555][ T102] ? wake_bit_function+0x210/0x210 [ 54.322239][ T102] synchronize_rcu+0x11c/0x3f0 [ 54.330489][ T102] ? schedule_delayed_monitor_work+0x160/0x160 [ 54.337991][ T102] ? print_irqtrace_events+0x210/0x210 [ 54.344118][ T102] ? __local_bh_enable_ip+0x164/0x1f0 [ 54.349831][ T102] ? lockdep_hardirqs_on+0x94/0x130 [ 54.355847][ T102] ? __local_bh_enable_ip+0x164/0x1f0 [ 54.362031][ T102] ? sock_hash_free+0x335/0x820 [ 54.367933][ T102] ? _local_bh_enable+0xa0/0xa0 [ 54.372826][ T102] ? sock_hash_free+0x160/0x820 [ 54.378214][ T102] sock_hash_free+0x769/0x820 [ 54.383546][ T102] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 54.390242][ T102] ? sock_hash_alloc+0x500/0x500 [ 54.396253][ T102] ? bpf_map_free_deferred+0x46/0xc0 [ 54.402083][ T102] ? bpf_map_free_deferred+0x46/0xc0 [ 54.408692][ T102] ? kfree+0x30/0x190 [ 54.413785][ T102] ? process_one_work+0x7a9/0x11d0 [ 54.420829][ T102] process_one_work+0x8a9/0x11d0 [ 54.427662][ T102] ? worker_detach_from_pool+0x260/0x260 [ 54.434208][ T102] ? _raw_spin_lock_irqsave+0x120/0x120 [ 54.440486][ T102] ? kthread_data+0x4e/0xc0 [ 54.446130][ T102] ? wq_worker_running+0x97/0x190 [ 54.451667][ T102] worker_thread+0xa47/0x1200 [ 54.456608][ T102] ? _raw_spin_unlock+0x40/0x40 [ 54.462015][ T102] kthread+0x28d/0x320 [ 54.466200][ T102] ? worker_clr_flags+0x190/0x190 [ 54.471523][ T102] ? kthread_blkcg+0xd0/0xd0 [ 54.477842][ T102] ret_from_fork+0x1f/0x30 [ 54.482793][ T102]