Warning: Permanently added '10.128.0.71' (ED25519) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program [ 56.342277][ T18] [ 56.344653][ T18] ===================================================== [ 56.351570][ T18] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 56.359009][ T18] 6.8.0-syzkaller-05236-g443574b03387 #0 Not tainted [ 56.365668][ T18] ----------------------------------------------------- [ 56.372580][ T18] rcu_exp_gp_kthr/18 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire: [ 56.380454][ T18] ffff88801e0e08d8 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 56.390745][ T18] [ 56.390745][ T18] and this task is already holding: [ 56.398099][ T18] ffff8880b942a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 56.406976][ T18] which would create a new lock dependency: [ 56.412865][ T18] (&base->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2} [ 56.420952][ T18] [ 56.420952][ T18] but this new dependency connects a HARDIRQ-irq-safe lock: [ 56.430468][ T18] (&base->lock){-.-.}-{2:2} [ 56.430488][ T18] [ 56.430488][ T18] ... which became HARDIRQ-irq-safe at: [ 56.442738][ T18] lock_acquire+0x1e4/0x530 [ 56.447314][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 56.452683][ T18] lock_timer_base+0x112/0x240 [ 56.457521][ T18] add_timer_on+0x1e5/0x5c0 [ 56.462098][ T18] handle_irq_event+0xad/0x1f0 [ 56.466932][ T18] handle_level_irq+0x3c5/0x6e0 [ 56.471855][ T18] __common_interrupt+0x13a/0x230 [ 56.476954][ T18] common_interrupt+0xa5/0xd0 [ 56.481709][ T18] asm_common_interrupt+0x26/0x40 [ 56.486810][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 56.492601][ T18] __setup_irq+0x1277/0x1cf0 [ 56.497267][ T18] request_threaded_irq+0x2ab/0x380 [ 56.502543][ T18] setup_default_timer_irq+0x25/0x60 [ 56.507902][ T18] x86_late_time_init+0x66/0xc0 [ 56.512941][ T18] start_kernel+0x3f3/0x500 [ 56.517527][ T18] x86_64_start_reservations+0x2a/0x30 [ 56.523072][ T18] x86_64_start_kernel+0x99/0xa0 [ 56.528093][ T18] common_startup_64+0x13e/0x147 [ 56.533140][ T18] [ 56.533140][ T18] to a HARDIRQ-irq-unsafe lock: [ 56.540140][ T18] (&htab->buckets[i].lock){+...}-{2:2} [ 56.540163][ T18] [ 56.540163][ T18] ... which became HARDIRQ-irq-unsafe at: [ 56.553546][ T18] ... [ 56.553552][ T18] lock_acquire+0x1e4/0x530 [ 56.560691][ T18] _raw_spin_lock_bh+0x35/0x50 [ 56.565529][ T18] sock_hash_free+0x164/0x820 [ 56.570278][ T18] bpf_map_free_deferred+0xe6/0x110 [ 56.575550][ T18] process_scheduled_works+0xa00/0x1770 [ 56.581169][ T18] worker_thread+0x86d/0xd70 [ 56.585830][ T18] kthread+0x2f0/0x390 [ 56.589971][ T18] ret_from_fork+0x4b/0x80 [ 56.594464][ T18] ret_from_fork_asm+0x1a/0x30 [ 56.599305][ T18] [ 56.599305][ T18] other info that might help us debug this: [ 56.599305][ T18] [ 56.609516][ T18] Possible interrupt unsafe locking scenario: [ 56.609516][ T18] [ 56.617815][ T18] CPU0 CPU1 [ 56.623169][ T18] ---- ---- [ 56.628528][ T18] lock(&htab->buckets[i].lock); [ 56.633539][ T18] local_irq_disable(); [ 56.640276][ T18] lock(&base->lock); [ 56.646852][ T18] lock(&htab->buckets[i].lock); [ 56.654380][ T18] [ 56.657818][ T18] lock(&base->lock); [ 56.662046][ T18] [ 56.662046][ T18] *** DEADLOCK *** [ 56.662046][ T18] [ 56.670169][ T18] 2 locks held by rcu_exp_gp_kthr/18: [ 56.675605][ T18] #0: ffff8880b942a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 56.684906][ T18] #1: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420 [ 56.694288][ T18] [ 56.694288][ T18] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 56.704672][ T18] -> (&base->lock){-.-.}-{2:2} { [ 56.709608][ T18] IN-HARDIRQ-W at: [ 56.713575][ T18] lock_acquire+0x1e4/0x530 [ 56.719714][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 56.726635][ T18] lock_timer_base+0x112/0x240 [ 56.733037][ T18] add_timer_on+0x1e5/0x5c0 [ 56.739198][ T18] handle_irq_event+0xad/0x1f0 [ 56.745602][ T18] handle_level_irq+0x3c5/0x6e0 [ 56.752091][ T18] __common_interrupt+0x13a/0x230 [ 56.758754][ T18] common_interrupt+0xa5/0xd0 [ 56.765070][ T18] asm_common_interrupt+0x26/0x40 [ 56.771736][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 56.779091][ T18] __setup_irq+0x1277/0x1cf0 [ 56.785320][ T18] request_threaded_irq+0x2ab/0x380 [ 56.792156][ T18] setup_default_timer_irq+0x25/0x60 [ 56.799083][ T18] x86_late_time_init+0x66/0xc0 [ 56.805570][ T18] start_kernel+0x3f3/0x500 [ 56.811705][ T18] x86_64_start_reservations+0x2a/0x30 [ 56.818804][ T18] x86_64_start_kernel+0x99/0xa0 [ 56.825379][ T18] common_startup_64+0x13e/0x147 [ 56.831964][ T18] IN-SOFTIRQ-W at: [ 56.835930][ T18] lock_acquire+0x1e4/0x530 [ 56.842068][ T18] _raw_spin_lock_irq+0xd3/0x120 [ 56.848641][ T18] __run_timer_base+0x103/0x8e0 [ 56.855126][ T18] run_timer_softirq+0x67/0x170 [ 56.861610][ T18] __do_softirq+0x2be/0x943 [ 56.867748][ T18] __irq_exit_rcu+0xf2/0x1c0 [ 56.873970][ T18] irq_exit_rcu+0x9/0x30 [ 56.880281][ T18] common_interrupt+0xaa/0xd0 [ 56.886598][ T18] asm_common_interrupt+0x26/0x40 [ 56.893259][ T18] console_flush_all+0x9cd/0xec0 [ 56.899832][ T18] console_unlock+0x13b/0x4d0 [ 56.906146][ T18] vprintk_emit+0x509/0x720 [ 56.912285][ T18] _printk+0xd5/0x120 [ 56.917903][ T18] cpu_select_mitigations+0x3c/0xa0 [ 56.924742][ T18] arch_cpu_finalize_init+0x20/0xa0 [ 56.931577][ T18] start_kernel+0x402/0x500 [ 56.937712][ T18] x86_64_start_reservations+0x2a/0x30 [ 56.944807][ T18] x86_64_start_kernel+0x99/0xa0 [ 56.951383][ T18] common_startup_64+0x13e/0x147 [ 56.957960][ T18] INITIAL USE at: [ 56.961839][ T18] lock_acquire+0x1e4/0x530 [ 56.967890][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 56.974725][ T18] lock_timer_base+0x112/0x240 [ 56.981048][ T18] __mod_timer+0x1ca/0xeb0 [ 56.987019][ T18] queue_delayed_work_on+0x15a/0x260 [ 56.993856][ T18] crng_reseed+0xe7/0x220 [ 56.999740][ T18] random_init+0x1a9/0x300 [ 57.005713][ T18] start_kernel+0x253/0x500 [ 57.011766][ T18] x86_64_start_reservations+0x2a/0x30 [ 57.018775][ T18] x86_64_start_kernel+0x99/0xa0 [ 57.025269][ T18] common_startup_64+0x13e/0x147 [ 57.031758][ T18] } [ 57.034240][ T18] ... key at: [] init_timer_cpu.__key+0x0/0x20 [ 57.042476][ T18] [ 57.042476][ T18] the dependencies between the lock to be acquired [ 57.042483][ T18] and HARDIRQ-irq-unsafe lock: [ 57.055971][ T18] -> (&htab->buckets[i].lock){+...}-{2:2} { [ 57.061867][ T18] HARDIRQ-ON-W at: [ 57.065834][ T18] lock_acquire+0x1e4/0x530 [ 57.071973][ T18] _raw_spin_lock_bh+0x35/0x50 [ 57.078377][ T18] sock_hash_free+0x164/0x820 [ 57.084688][ T18] bpf_map_free_deferred+0xe6/0x110 [ 57.091524][ T18] process_scheduled_works+0xa00/0x1770 [ 57.098702][ T18] worker_thread+0x86d/0xd70 [ 57.104926][ T18] kthread+0x2f0/0x390 [ 57.110634][ T18] ret_from_fork+0x4b/0x80 [ 57.116689][ T18] ret_from_fork_asm+0x1a/0x30 [ 57.123101][ T18] INITIAL USE at: [ 57.126978][ T18] lock_acquire+0x1e4/0x530 [ 57.133025][ T18] _raw_spin_lock_bh+0x35/0x50 [ 57.139338][ T18] sock_hash_free+0x164/0x820 [ 57.145567][ T18] bpf_map_free_deferred+0xe6/0x110 [ 57.152313][ T18] process_scheduled_works+0xa00/0x1770 [ 57.159404][ T18] worker_thread+0x86d/0xd70 [ 57.165543][ T18] kthread+0x2f0/0x390 [ 57.171161][ T18] ret_from_fork+0x4b/0x80 [ 57.177300][ T18] ret_from_fork_asm+0x1a/0x30 [ 57.183615][ T18] } [ 57.186099][ T18] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 57.194409][ T18] ... acquired at: [ 57.198193][ T18] lock_acquire+0x1e4/0x530 [ 57.202852][ T18] _raw_spin_lock_bh+0x35/0x50 [ 57.207776][ T18] sock_hash_delete_elem+0xb0/0x300 [ 57.213160][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 57.218795][ T18] bpf_trace_run2+0x204/0x420 [ 57.223646][ T18] enqueue_timer+0x396/0x550 [ 57.228400][ T18] __mod_timer+0xa0e/0xeb0 [ 57.232984][ T18] schedule_timeout+0x1b9/0x310 [ 57.238008][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 57.243547][ T18] kthread_worker_fn+0x4bf/0xab0 [ 57.248648][ T18] kthread+0x2f0/0x390 [ 57.252881][ T18] ret_from_fork+0x4b/0x80 [ 57.257464][ T18] ret_from_fork_asm+0x1a/0x30 [ 57.262392][ T18] [ 57.264702][ T18] [ 57.264702][ T18] stack backtrace: [ 57.270570][ T18] CPU: 0 PID: 18 Comm: rcu_exp_gp_kthr Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 57.280460][ T18] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 57.290515][ T18] Call Trace: [ 57.293792][ T18] [ 57.296716][ T18] dump_stack_lvl+0x1e7/0x2e0 [ 57.301391][ T18] ? __pfx_dump_stack_lvl+0x10/0x10 [ 57.306579][ T18] ? __pfx__printk+0x10/0x10 [ 57.311166][ T18] ? print_shortest_lock_dependencies+0xf2/0x160 [ 57.317504][ T18] validate_chain+0x4dc7/0x58e0 [ 57.322380][ T18] ? __pfx_validate_chain+0x10/0x10 [ 57.327587][ T18] ? __pfx_validate_chain+0x10/0x10 [ 57.332786][ T18] ? register_lock_class+0x102/0x980 [ 57.338064][ T18] ? __pfx_register_lock_class+0x10/0x10 [ 57.343687][ T18] ? mark_lock+0x9a/0x350 [ 57.348009][ T18] __lock_acquire+0x1346/0x1fd0 [ 57.352854][ T18] lock_acquire+0x1e4/0x530 [ 57.357347][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 57.362722][ T18] ? __pfx_lockdep_softirqs_off+0x10/0x10 [ 57.368431][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 57.373448][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 57.378808][ T18] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 57.384600][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 57.389608][ T18] ? do_raw_spin_unlock+0x13c/0x8b0 [ 57.394797][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 57.400153][ T18] _raw_spin_lock_bh+0x35/0x50 [ 57.404905][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 57.410279][ T18] sock_hash_delete_elem+0xb0/0x300 [ 57.415477][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 57.420928][ T18] bpf_trace_run2+0x204/0x420 [ 57.425602][ T18] ? bpf_trace_run2+0x114/0x420 [ 57.430449][ T18] ? __pfx_bpf_trace_run2+0x10/0x10 [ 57.435642][ T18] ? __pfx_debug_object_activate+0x10/0x10 [ 57.441440][ T18] ? lockdep_hardirqs_on+0x99/0x150 [ 57.446628][ T18] enqueue_timer+0x396/0x550 [ 57.451210][ T18] __mod_timer+0xa0e/0xeb0 [ 57.455616][ T18] ? __asan_memset+0x23/0x50 [ 57.460192][ T18] ? __pfx___mod_timer+0x10/0x10 [ 57.465158][ T18] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 57.470977][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 57.476945][ T18] schedule_timeout+0x1b9/0x310 [ 57.481784][ T18] ? __pfx_schedule_timeout+0x10/0x10 [ 57.487143][ T18] ? __pfx_process_timeout+0x10/0x10 [ 57.492421][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 57.497791][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 57.503761][ T18] ? __pfx_rcu_exp_sel_wait_wake+0x10/0x10 [ 57.509556][ T18] ? _raw_spin_lock_irq+0xdf/0x120 [ 57.514659][ T18] kthread_worker_fn+0x4bf/0xab0 [ 57.519585][ T18] ? kthread_worker_fn+0xdc/0xab0 [ 57.524596][ T18] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 57.529867][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 57.535333][ T18] kthread+0x2f0/0x390 [ 57.539390][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 57.544839][ T18] ? __pfx_kthread+0x10/0x10 [ 57.549415][ T18] ret_from_fork+0x4b/0x80 [ 57.553827][ T18] ? __pfx_kthread+0x10/0x10 [ 57.558405][ T18] ret_from_fork_asm+0x1a/0x30 [ 57.563166][ T18]