Warning: Permanently added '10.128.1.93' (ED25519) to the list of known hosts. executing program executing program syzkaller login: [ 51.504795][ T152] [ 51.507264][ T152] ===================================================== [ 51.514283][ T152] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 51.521738][ T152] 6.1.83-syzkaller #0 Not tainted [ 51.527378][ T152] ----------------------------------------------------- [ 51.534293][ T152] kworker/0:2/152 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire: [ 51.541949][ T152] ffff88807c0cd0f8 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xac/0x2f0 [ 51.552314][ T152] [ 51.552314][ T152] and this task is already holding: [ 51.559693][ T152] ffff8880b983aa18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140 [ 51.569464][ T152] which would create a new lock dependency: [ 51.575347][ T152] (&rq->__lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2} [ 51.583532][ T152] [ 51.583532][ T152] but this new dependency connects a HARDIRQ-irq-safe lock: [ 51.593342][ T152] (&rq->__lock){-.-.}-{2:2} [ 51.593361][ T152] [ 51.593361][ T152] ... which became HARDIRQ-irq-safe at: [ 51.605965][ T152] lock_acquire+0x1f8/0x5a0 [ 51.610643][ T152] _raw_spin_lock_nested+0x2d/0x40 [ 51.618216][ T152] raw_spin_rq_lock_nested+0x26/0x140 [ 51.623803][ T152] scheduler_tick+0x9d/0x550 [ 51.628776][ T152] update_process_times+0x17b/0x1b0 [ 51.634105][ T152] tick_periodic+0x197/0x210 [ 51.638781][ T152] tick_handle_periodic+0x46/0x150 [ 51.643987][ T152] timer_interrupt+0x4d/0x60 [ 51.648745][ T152] __handle_irq_event_percpu+0x2a8/0xb20 [ 51.654541][ T152] handle_irq_event+0x85/0x1e0 [ 51.659382][ T152] handle_level_irq+0x3ab/0x6c0 [ 51.664329][ T152] __common_interrupt+0xd7/0x1f0 [ 51.669442][ T152] common_interrupt+0x9f/0xc0 [ 51.674203][ T152] asm_common_interrupt+0x22/0x40 [ 51.679416][ T152] _raw_spin_unlock_irqrestore+0xd4/0x130 [ 51.685223][ T152] __setup_irq+0x12fa/0x1d80 [ 51.689889][ T152] request_threaded_irq+0x2a7/0x380 [ 51.695183][ T152] setup_default_timer_irq+0x1f/0x30 [ 51.701172][ T152] x86_late_time_init+0x51/0x86 [ 51.706109][ T152] start_kernel+0x414/0x53f [ 51.710975][ T152] secondary_startup_64_no_verify+0xcf/0xdb [ 51.716949][ T152] [ 51.716949][ T152] to a HARDIRQ-irq-unsafe lock: [ 51.724322][ T152] (&htab->buckets[i].lock){+...}-{2:2} [ 51.724344][ T152] [ 51.724344][ T152] ... which became HARDIRQ-irq-unsafe at: [ 51.738142][ T152] ... [ 51.738148][ T152] lock_acquire+0x1f8/0x5a0 [ 51.745296][ T152] _raw_spin_lock_bh+0x31/0x40 [ 51.750134][ T152] sock_hash_free+0x160/0x820 [ 51.754899][ T152] process_one_work+0x8a9/0x11d0 [ 51.759997][ T152] worker_thread+0xa47/0x1200 [ 51.764754][ T152] kthread+0x28d/0x320 [ 51.768908][ T152] ret_from_fork+0x1f/0x30 [ 51.773410][ T152] [ 51.773410][ T152] other info that might help us debug this: [ 51.773410][ T152] [ 51.783779][ T152] Possible interrupt unsafe locking scenario: [ 51.783779][ T152] [ 51.792080][ T152] CPU0 CPU1 [ 51.797516][ T152] ---- ---- [ 51.802966][ T152] lock(&htab->buckets[i].lock); [ 51.807983][ T152] local_irq_disable(); [ 51.814732][ T152] lock(&rq->__lock); [ 51.821797][ T152] lock(&htab->buckets[i].lock); [ 51.829328][ T152] [ 51.832767][ T152] lock(&rq->__lock); [ 51.836996][ T152] [ 51.836996][ T152] *** DEADLOCK *** [ 51.836996][ T152] [ 51.845212][ T152] 2 locks held by kworker/0:2/152: [ 51.850402][ T152] #0: ffff8880b983aa18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140 [ 51.860459][ T152] #1: ffffffff8d12a940 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x16a/0x470 [ 51.869946][ T152] [ 51.869946][ T152] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 51.880332][ T152] -> (&rq->__lock){-.-.}-{2:2} { [ 51.885269][ T152] IN-HARDIRQ-W at: [ 51.889246][ T152] lock_acquire+0x1f8/0x5a0 [ 51.895476][ T152] _raw_spin_lock_nested+0x2d/0x40 [ 51.902231][ T152] raw_spin_rq_lock_nested+0x26/0x140 [ 51.909240][ T152] scheduler_tick+0x9d/0x550 [ 51.915567][ T152] update_process_times+0x17b/0x1b0 [ 51.922422][ T152] tick_periodic+0x197/0x210 [ 51.928652][ T152] tick_handle_periodic+0x46/0x150 [ 51.935432][ T152] timer_interrupt+0x4d/0x60 [ 51.941662][ T152] __handle_irq_event_percpu+0x2a8/0xb20 [ 51.948938][ T152] handle_irq_event+0x85/0x1e0 [ 51.955513][ T152] handle_level_irq+0x3ab/0x6c0 [ 51.962026][ T152] __common_interrupt+0xd7/0x1f0 [ 51.968609][ T152] common_interrupt+0x9f/0xc0 [ 51.974927][ T152] asm_common_interrupt+0x22/0x40 [ 51.981593][ T152] _raw_spin_unlock_irqrestore+0xd4/0x130 [ 51.988961][ T152] __setup_irq+0x12fa/0x1d80 [ 51.995204][ T152] request_threaded_irq+0x2a7/0x380 [ 52.002038][ T152] setup_default_timer_irq+0x1f/0x30 [ 52.008968][ T152] x86_late_time_init+0x51/0x86 [ 52.015457][ T152] start_kernel+0x414/0x53f [ 52.021619][ T152] secondary_startup_64_no_verify+0xcf/0xdb [ 52.029153][ T152] IN-SOFTIRQ-W at: [ 52.033325][ T152] lock_acquire+0x1f8/0x5a0 [ 52.039492][ T152] _raw_spin_lock_nested+0x2d/0x40 [ 52.046254][ T152] raw_spin_rq_lock_nested+0x26/0x140 [ 52.053268][ T152] try_to_wake_up+0x5bd/0x12e0 [ 52.059687][ T152] __queue_work+0xb4b/0xf90 [ 52.065834][ T152] call_timer_fn+0x1ad/0x6b0 [ 52.072066][ T152] __run_timers+0x6a8/0x890 [ 52.078214][ T152] run_timer_softirq+0x63/0xf0 [ 52.084629][ T152] __do_softirq+0x2e9/0xa4c [ 52.090792][ T152] __irq_exit_rcu+0x155/0x240 [ 52.097119][ T152] irq_exit_rcu+0x5/0x20 [ 52.102994][ T152] sysvec_apic_timer_interrupt+0x91/0xb0 [ 52.110253][ T152] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 52.118125][ T152] default_idle+0xb/0x10 [ 52.123994][ T152] default_idle_call+0x84/0xc0 [ 52.130402][ T152] do_idle+0x251/0x680 [ 52.136177][ T152] cpu_startup_entry+0x3d/0x60 [ 52.142778][ T152] rest_init+0x2da/0x300 [ 52.148661][ T152] start_kernel+0x0/0x53f [ 52.154637][ T152] start_kernel+0x496/0x53f [ 52.160783][ T152] secondary_startup_64_no_verify+0xcf/0xdb [ 52.168497][ T152] INITIAL USE at: [ 52.172366][ T152] lock_acquire+0x1f8/0x5a0 [ 52.178416][ T152] _raw_spin_lock_nested+0x2d/0x40 [ 52.185069][ T152] raw_spin_rq_lock_nested+0x26/0x140 [ 52.191997][ T152] rq_attach_root+0xec/0x540 [ 52.198164][ T152] sched_init+0x6c7/0xcc9 [ 52.204049][ T152] start_kernel+0x1bf/0x53f [ 52.210115][ T152] secondary_startup_64_no_verify+0xcf/0xdb [ 52.217604][ T152] } [ 52.220083][ T152] ... key at: [] sched_init.__key+0x0/0x20 [ 52.227975][ T152] [ 52.227975][ T152] the dependencies between the lock to be acquired [ 52.227983][ T152] and HARDIRQ-irq-unsafe lock: [ 52.241633][ T152] -> (&htab->buckets[i].lock){+...}-{2:2} { [ 52.247545][ T152] HARDIRQ-ON-W at: [ 52.251515][ T152] lock_acquire+0x1f8/0x5a0 [ 52.257657][ T152] _raw_spin_lock_bh+0x31/0x40 [ 52.264049][ T152] sock_hash_free+0x160/0x820 [ 52.270379][ T152] process_one_work+0x8a9/0x11d0 [ 52.276998][ T152] worker_thread+0xa47/0x1200 [ 52.283321][ T152] kthread+0x28d/0x320 [ 52.289026][ T152] ret_from_fork+0x1f/0x30 [ 52.295161][ T152] INITIAL USE at: [ 52.299053][ T152] lock_acquire+0x1f8/0x5a0 [ 52.305115][ T152] _raw_spin_lock_bh+0x31/0x40 [ 52.311516][ T152] sock_hash_free+0x160/0x820 [ 52.317858][ T152] process_one_work+0x8a9/0x11d0 [ 52.324360][ T152] worker_thread+0xa47/0x1200 [ 52.330591][ T152] kthread+0x28d/0x320 [ 52.336345][ T152] ret_from_fork+0x1f/0x30 [ 52.342331][ T152] } [ 52.344849][ T152] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 52.353291][ T152] ... acquired at: [ 52.357090][ T152] lock_acquire+0x1f8/0x5a0 [ 52.361757][ T152] _raw_spin_lock_bh+0x31/0x40 [ 52.366675][ T152] sock_hash_delete_elem+0xac/0x2f0 [ 52.372043][ T152] bpf_prog_2c29ac5cdc6b1842+0x3a/0x3e [ 52.377673][ T152] bpf_trace_run4+0x253/0x470 [ 52.382589][ T152] __schedule+0x2116/0x4550 [ 52.387340][ T152] schedule+0xbf/0x180 [ 52.391560][ T152] worker_thread+0xe9d/0x1200 [ 52.396397][ T152] kthread+0x28d/0x320 [ 52.400619][ T152] ret_from_fork+0x1f/0x30 [ 52.405193][ T152] [ 52.407504][ T152] [ 52.407504][ T152] stack backtrace: [ 52.413395][ T152] CPU: 0 PID: 152 Comm: kworker/0:2 Not tainted 6.1.83-syzkaller #0 [ 52.421458][ T152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 52.431521][ T152] Workqueue: 0x0 (rcu_gp) [ 52.435953][ T152] Call Trace: [ 52.439231][ T152] [ 52.442144][ T152] dump_stack_lvl+0x1e3/0x2cb [ 52.446824][ T152] ? nf_tcp_handle_invalid+0x642/0x642 [ 52.452297][ T152] ? panic+0x75d/0x75d [ 52.456396][ T152] ? print_shortest_lock_dependencies+0xee/0x150 [ 52.462723][ T152] validate_chain+0x4d16/0x5950 [ 52.467621][ T152] ? reacquire_held_locks+0x660/0x660 [ 52.473282][ T152] ? validate_chain+0x112/0x5950 [ 52.478409][ T152] ? register_lock_class+0x100/0x990 [ 52.483782][ T152] ? is_dynamic_key+0x260/0x260 [ 52.488627][ T152] ? mark_lock+0x9a/0x340 [ 52.493043][ T152] __lock_acquire+0x125b/0x1f80 [ 52.497902][ T152] lock_acquire+0x1f8/0x5a0 [ 52.502756][ T152] ? sock_hash_delete_elem+0xac/0x2f0 [ 52.508127][ T152] ? lockdep_softirqs_on+0x590/0x590 [ 52.513521][ T152] ? read_lock_is_recursive+0x10/0x10 [ 52.518917][ T152] ? psi_task_switch+0x43d/0x770 [ 52.523846][ T152] ? sock_hash_delete_elem+0xac/0x2f0 [ 52.529300][ T152] ? __bpf_trace_softirq+0x10/0x10 [ 52.534403][ T152] ? read_lock_is_recursive+0x10/0x10 [ 52.539775][ T152] ? sock_hash_delete_elem+0xac/0x2f0 [ 52.545593][ T152] _raw_spin_lock_bh+0x31/0x40 [ 52.550963][ T152] ? sock_hash_delete_elem+0xac/0x2f0 [ 52.556444][ T152] sock_hash_delete_elem+0xac/0x2f0 [ 52.561625][ T152] bpf_prog_2c29ac5cdc6b1842+0x3a/0x3e [ 52.567065][ T152] ? bpf_trace_run4+0x16a/0x470 [ 52.571913][ T152] bpf_trace_run4+0x253/0x470 [ 52.576565][ T152] ? asm_exc_int3+0x35/0x40 [ 52.581049][ T152] ? bpf_trace_run3+0x440/0x440 [ 52.585931][ T152] ? __schedule+0x205b/0x4550 [ 52.590602][ T152] __schedule+0x2116/0x4550 [ 52.595095][ T152] ? worker_thread+0xe98/0x1200 [ 52.600016][ T152] ? __sched_text_start+0x8/0x8 [ 52.604871][ T152] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 52.611617][ T152] ? print_irqtrace_events+0x210/0x210 [ 52.617145][ T152] ? kthread_data+0x4e/0xc0 [ 52.621650][ T152] ? wq_worker_sleeping+0x5f/0x270 [ 52.626748][ T152] schedule+0xbf/0x180 [ 52.630798][ T152] worker_thread+0xe9d/0x1200 [ 52.635471][ T152] ? _raw_spin_unlock+0x40/0x40 [ 52.640308][ T152] kthread+0x28d/0x320 [ 52.644380][ T152] ? worker_clr_flags+0x190/0x190 [ 52.649386][ T152] ? kthread_blkcg+0xd0/0xd0 [ 52.653960][ T152] ret_from_fork+0x1f/0x30 [ 52.658377][ T152]