Warning: Permanently added '10.128.1.89' (ED25519) to the list of known hosts. executing program [ 41.835176][ T4218] [ 41.835819][ T4218] ===================================================== [ 41.837572][ T4218] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected [ 41.839525][ T4218] 6.1.44-syzkaller #0 Not tainted [ 41.840815][ T4218] ----------------------------------------------------- [ 41.842669][ T4218] syz-executor363/4218 [HC0[0]:SC0[2]:HE1:SE0] is trying to acquire: [ 41.844846][ T4218] ffff800015b3c2e0 (fs_reclaim){+.+.}-{0:0}, at: __kmem_cache_alloc_node+0x58/0x388 [ 41.847364][ T4218] [ 41.847364][ T4218] and this task is already holding: [ 41.849278][ T4218] ffff800017eb4748 (noop_qdisc.q.lock){+.-.}-{2:2}, at: sch_tree_lock+0x120/0x1d4 [ 41.851762][ T4218] which would create a new lock dependency: [ 41.853299][ T4218] (noop_qdisc.q.lock){+.-.}-{2:2} -> (fs_reclaim){+.+.}-{0:0} [ 41.855333][ T4218] [ 41.855333][ T4218] but this new dependency connects a SOFTIRQ-irq-safe lock: [ 41.857791][ T4218] (noop_qdisc.q.lock){+.-.}-{2:2} [ 41.857809][ T4218] [ 41.857809][ T4218] ... which became SOFTIRQ-irq-safe at: [ 41.861135][ T4218] lock_acquire+0x26c/0x7cc [ 41.862386][ T4218] _raw_spin_lock+0x54/0x6c [ 41.863528][ T4218] net_tx_action+0x6ec/0x94c [ 41.864800][ T4218] __do_softirq+0x30c/0xea0 [ 41.866031][ T4218] ____do_softirq+0x14/0x20 [ 41.867220][ T4218] call_on_irq_stack+0x24/0x4c [ 41.868537][ T4218] do_softirq_own_stack+0x20/0x2c [ 41.869869][ T4218] do_softirq+0x120/0x20c [ 41.871013][ T4218] __local_bh_enable_ip+0x2c0/0x4d0 [ 41.872426][ T4218] local_bh_enable+0x28/0x34 [ 41.873716][ T4218] dev_deactivate_many+0x3d4/0xa8c [ 41.875110][ T4218] dev_deactivate+0x13c/0x1fc [ 41.876356][ T4218] linkwatch_do_dev+0x29c/0x3a4 [ 41.877663][ T4218] __linkwatch_run_queue+0x3a0/0x700 [ 41.879043][ T4218] linkwatch_event+0x58/0x68 [ 41.880264][ T4218] process_one_work+0x7ac/0x1404 [ 41.881623][ T4218] worker_thread+0x8e4/0xfec [ 41.882823][ T4218] kthread+0x250/0x2d8 [ 41.883917][ T4218] ret_from_fork+0x10/0x20 [ 41.885102][ T4218] [ 41.885102][ T4218] to a SOFTIRQ-irq-unsafe lock: [ 41.886932][ T4218] (fs_reclaim){+.+.}-{0:0} [ 41.886951][ T4218] [ 41.886951][ T4218] ... which became SOFTIRQ-irq-unsafe at: [ 41.890169][ T4218] ... [ 41.890175][ T4218] lock_acquire+0x26c/0x7cc [ 41.892130][ T4218] fs_reclaim_acquire+0x90/0x12c [ 41.893423][ T4218] __kmem_cache_alloc_node+0x58/0x388 [ 41.894833][ T4218] kmalloc_node_trace+0x44/0x90 [ 41.896175][ T4218] init_rescuer+0xa4/0x264 [ 41.897327][ T4218] workqueue_init+0x298/0x5b4 [ 41.898574][ T4218] kernel_init_freeable+0x33c/0x528 [ 41.900026][ T4218] kernel_init+0x24/0x29c [ 41.901197][ T4218] ret_from_fork+0x10/0x20 [ 41.902505][ T4218] [ 41.902505][ T4218] other info that might help us debug this: [ 41.902505][ T4218] [ 41.905296][ T4218] Possible interrupt unsafe locking scenario: [ 41.905296][ T4218] [ 41.907485][ T4218] CPU0 CPU1 [ 41.908918][ T4218] ---- ---- [ 41.910340][ T4218] lock(fs_reclaim); [ 41.911371][ T4218] local_irq_disable(); [ 41.913094][ T4218] lock(noop_qdisc.q.lock); [ 41.914915][ T4218] lock(fs_reclaim); [ 41.916608][ T4218] [ 41.917571][ T4218] lock(noop_qdisc.q.lock); [ 41.918881][ T4218] [ 41.918881][ T4218] *** DEADLOCK *** [ 41.918881][ T4218] [ 41.921010][ T4218] 2 locks held by syz-executor363/4218: [ 41.922460][ T4218] #0: ffff800017e6fcc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e8/0xd94 [ 41.924994][ T4218] #1: ffff800017eb4748 (noop_qdisc.q.lock){+.-.}-{2:2}, at: sch_tree_lock+0x120/0x1d4 [ 41.927558][ T4218] [ 41.927558][ T4218] the dependencies between SOFTIRQ-irq-safe lock and the holding lock: [ 41.930305][ T4218] -> (noop_qdisc.q.lock){+.-.}-{2:2} { [ 41.931804][ T4218] HARDIRQ-ON-W at: [ 41.932879][ T4218] lock_acquire+0x26c/0x7cc [ 41.934544][ T4218] _raw_spin_lock+0x54/0x6c [ 41.936135][ T4218] __dev_queue_xmit+0xb14/0x38d8 [ 41.937866][ T4218] tx+0x90/0x134 [ 41.939285][ T4218] kthread+0x1ac/0x374 [ 41.940810][ T4218] kthread+0x250/0x2d8 [ 41.942312][ T4218] ret_from_fork+0x10/0x20 [ 41.943948][ T4218] IN-SOFTIRQ-W at: [ 41.944962][ T4218] lock_acquire+0x26c/0x7cc [ 41.946557][ T4218] _raw_spin_lock+0x54/0x6c [ 41.948126][ T4218] net_tx_action+0x6ec/0x94c [ 41.949767][ T4218] __do_softirq+0x30c/0xea0 [ 41.951423][ T4218] ____do_softirq+0x14/0x20 [ 41.953068][ T4218] call_on_irq_stack+0x24/0x4c [ 41.954749][ T4218] do_softirq_own_stack+0x20/0x2c [ 41.956446][ T4218] do_softirq+0x120/0x20c [ 41.958044][ T4218] __local_bh_enable_ip+0x2c0/0x4d0 [ 41.959796][ T4218] local_bh_enable+0x28/0x34 [ 41.961514][ T4218] dev_deactivate_many+0x3d4/0xa8c [ 41.963306][ T4218] dev_deactivate+0x13c/0x1fc [ 41.964980][ T4218] linkwatch_do_dev+0x29c/0x3a4 [ 41.966663][ T4218] __linkwatch_run_queue+0x3a0/0x700 [ 41.968476][ T4218] linkwatch_event+0x58/0x68 [ 41.970140][ T4218] process_one_work+0x7ac/0x1404 [ 41.971910][ T4218] worker_thread+0x8e4/0xfec [ 41.973529][ T4218] kthread+0x250/0x2d8 [ 41.975048][ T4218] ret_from_fork+0x10/0x20 [ 41.976677][ T4218] INITIAL USE at: [ 41.977698][ T4218] lock_acquire+0x26c/0x7cc [ 41.979339][ T4218] _raw_spin_lock+0x54/0x6c [ 41.980944][ T4218] __dev_queue_xmit+0xb14/0x38d8 [ 41.982619][ T4218] tx+0x90/0x134 [ 41.983950][ T4218] kthread+0x1ac/0x374 [ 41.985428][ T4218] kthread+0x250/0x2d8 [ 41.986949][ T4218] ret_from_fork+0x10/0x20 [ 41.988484][ T4218] } [ 41.989141][ T4218] ... key at: [] noop_qdisc+0x108/0x320 [ 41.991170][ T4218] [ 41.991170][ T4218] the dependencies between the lock to be acquired [ 41.991177][ T4218] and SOFTIRQ-irq-unsafe lock: [ 41.994644][ T4218] -> (fs_reclaim){+.+.}-{0:0} { [ 41.995961][ T4218] HARDIRQ-ON-W at: [ 41.997006][ T4218] lock_acquire+0x26c/0x7cc [ 41.998581][ T4218] fs_reclaim_acquire+0x90/0x12c [ 42.000342][ T4218] __kmem_cache_alloc_node+0x58/0x388 [ 42.002206][ T4218] kmalloc_node_trace+0x44/0x90 [ 42.003918][ T4218] init_rescuer+0xa4/0x264 [ 42.005477][ T4218] workqueue_init+0x298/0x5b4 [ 42.007143][ T4218] kernel_init_freeable+0x33c/0x528 [ 42.008949][ T4218] kernel_init+0x24/0x29c [ 42.010534][ T4218] ret_from_fork+0x10/0x20 [ 42.012135][ T4218] SOFTIRQ-ON-W at: [ 42.013138][ T4218] lock_acquire+0x26c/0x7cc [ 42.014792][ T4218] fs_reclaim_acquire+0x90/0x12c [ 42.016510][ T4218] __kmem_cache_alloc_node+0x58/0x388 [ 42.018378][ T4218] kmalloc_node_trace+0x44/0x90 [ 42.020064][ T4218] init_rescuer+0xa4/0x264 [ 42.021657][ T4218] workqueue_init+0x298/0x5b4 [ 42.023344][ T4218] kernel_init_freeable+0x33c/0x528 [ 42.025163][ T4218] kernel_init+0x24/0x29c [ 42.026724][ T4218] ret_from_fork+0x10/0x20 [ 42.028357][ T4218] INITIAL USE at: [ 42.029376][ T4218] lock_acquire+0x26c/0x7cc [ 42.030975][ T4218] fs_reclaim_acquire+0x90/0x12c [ 42.032702][ T4218] __kmem_cache_alloc_node+0x58/0x388 [ 42.034562][ T4218] kmalloc_node_trace+0x44/0x90 [ 42.036072][ T4218] init_rescuer+0xa4/0x264 [ 42.037657][ T4218] workqueue_init+0x298/0x5b4 [ 42.039333][ T4218] kernel_init_freeable+0x33c/0x528 [ 42.041114][ T4218] kernel_init+0x24/0x29c [ 42.042639][ T4218] ret_from_fork+0x10/0x20 [ 42.044214][ T4218] } [ 42.044794][ T4218] ... key at: [] __fs_reclaim_map+0x0/0xe0 [ 42.046916][ T4218] ... acquired at: [ 42.047891][ T4218] fs_reclaim_acquire+0x90/0x12c [ 42.049242][ T4218] __kmem_cache_alloc_node+0x58/0x388 [ 42.050737][ T4218] __kmalloc_node+0xcc/0x1d0 [ 42.051965][ T4218] kvmalloc_node+0x84/0x1e4 [ 42.053235][ T4218] get_dist_table+0xa0/0x354 [ 42.054449][ T4218] netem_change+0x754/0x1900 [ 42.055664][ T4218] netem_init+0x54/0xb8 [ 42.056830][ T4218] qdisc_create+0x70c/0xe64 [ 42.058100][ T4218] tc_modify_qdisc+0x9f0/0x1840 [ 42.059381][ T4218] rtnetlink_rcv_msg+0x72c/0xd94 [ 42.060735][ T4218] netlink_rcv_skb+0x20c/0x3b8 [ 42.062113][ T4218] rtnetlink_rcv+0x28/0x38 [ 42.063294][ T4218] netlink_unicast+0x660/0x8d4 [ 42.064582][ T4218] netlink_sendmsg+0x834/0xb18 [ 42.065883][ T4218] ____sys_sendmsg+0x558/0x844 [ 42.067145][ T4218] __sys_sendmsg+0x26c/0x33c [ 42.068400][ T4218] __arm64_sys_sendmsg+0x80/0x94 [ 42.069725][ T4218] invoke_syscall+0x98/0x2c0 [ 42.071038][ T4218] el0_svc_common+0x138/0x258 [ 42.072365][ T4218] do_el0_svc+0x64/0x218 [ 42.073520][ T4218] el0_svc+0x58/0x168 [ 42.074578][ T4218] el0t_64_sync_handler+0x84/0xf0 [ 42.075896][ T4218] el0t_64_sync+0x18c/0x190 [ 42.077103][ T4218] [ 42.077709][ T4218] [ 42.077709][ T4218] stack backtrace: [ 42.079280][ T4218] CPU: 1 PID: 4218 Comm: syz-executor363 Not tainted 6.1.44-syzkaller #0 [ 42.081495][ T4218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 42.084110][ T4218] Call trace: [ 42.084985][ T4218] dump_backtrace+0x1c8/0x1f4 [ 42.086242][ T4218] show_stack+0x2c/0x3c [ 42.087348][ T4218] dump_stack_lvl+0x108/0x170 [ 42.088572][ T4218] dump_stack+0x1c/0x58 [ 42.089618][ T4218] __lock_acquire+0x6310/0x764c [ 42.090923][ T4218] lock_acquire+0x26c/0x7cc [ 42.092160][ T4218] fs_reclaim_acquire+0x90/0x12c [ 42.093469][ T4218] __kmem_cache_alloc_node+0x58/0x388 [ 42.094828][ T4218] __kmalloc_node+0xcc/0x1d0 [ 42.096047][ T4218] kvmalloc_node+0x84/0x1e4 [ 42.097220][ T4218] get_dist_table+0xa0/0x354 [ 42.098458][ T4218] netem_change+0x754/0x1900 [ 42.099721][ T4218] netem_init+0x54/0xb8 [ 42.100799][ T4218] qdisc_create+0x70c/0xe64 [ 42.102002][ T4218] tc_modify_qdisc+0x9f0/0x1840 [ 42.103264][ T4218] rtnetlink_rcv_msg+0x72c/0xd94 [ 42.104538][ T4218] netlink_rcv_skb+0x20c/0x3b8 [ 42.105761][ T4218] rtnetlink_rcv+0x28/0x38 [ 42.106907][ T4218] netlink_unicast+0x660/0x8d4 [ 42.108201][ T4218] netlink_sendmsg+0x834/0xb18 [ 42.109453][ T4218] ____sys_sendmsg+0x558/0x844 [ 42.110679][ T4218] __sys_sendmsg+0x26c/0x33c [ 42.111924][ T4218] __arm64_sys_sendmsg+0x80/0x94 [ 42.113252][ T4218] invoke_syscall+0x98/0x2c0 [ 42.114424][ T4218] el0_svc_common+0x138/0x258 [ 42.115648][ T4218] do_el0_svc+0x64/0x218 [ 42.116756][ T4218] el0_svc+0x58/0x168 [ 42.117799][ T4218] el0t_64_sync_handler+0x84/0xf0 [ 42.119077][ T4218] el0t_64_sync+0x18c/0x190 [ 42.120298][ T4218] BUG: sleeping function called from invalid context at include/linux/sched/mm.h:274 [ 42.122683][ T4218] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4218, name: syz-executor363 [ 42.125075][ T4218] preempt_count: 201, expected: 0 [ 42.126359][ T4218] RCU nest depth: 0, expected: 0 [ 42.127552][ T4218] INFO: lockdep is turned off. [ 42.128713][ T4218] Preemption disabled at: [ 42.128722][ T4218] [] sch_tree_lock+0x120/0x1d4 [ 42.131615][ T4218] CPU: 1 PID: 4218 Comm: syz-executor363 Not tainted 6.1.44-syzkaller #0 [ 42.133757][ T4218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 42.136276][ T4218] Call trace: [ 42.137135][ T4218] dump_backtrace+0x1c8/0x1f4 [ 42.138389][ T4218] show_stack+0x2c/0x3c [ 42.139468][ T4218] dump_stack_lvl+0x108/0x170 [ 42.140671][ T4218] dump_stack+0x1c/0x58 [ 42.141777][ T4218] __might_resched+0x37c/0x4d8 [ 42.143043][ T4218] __might_sleep+0x90/0xe4 [ 42.144159][ T4218] __kmem_cache_alloc_node+0x74/0x388 [ 42.145556][ T4218] __kmalloc_node+0xcc/0x1d0 [ 42.146768][ T4218] kvmalloc_node+0x84/0x1e4 [ 42.147887][ T4218] get_dist_table+0xa0/0x354 [ 42.149067][ T4218] netem_change+0x754/0x1900 [ 42.150280][ T4218] netem_init+0x54/0xb8 [ 42.151346][ T4218] qdisc_create+0x70c/0xe64 [ 42.152595][ T4218] tc_modify_qdisc+0x9f0/0x1840 [ 42.153892][ T4218] rtnetlink_rcv_msg+0x72c/0xd94 [ 42.155181][ T4218] netlink_rcv_skb+0x20c/0x3b8 [ 42.156479][ T4218] rtnetlink_rcv+0x28/0x38 [ 42.157673][ T4218] netlink_unicast+0x660/0x8d4 [ 42.158949][ T4218] netlink_sendmsg+0x834/0xb18 [ 42.160200][ T4218] ____sys_sendmsg+0x558/0x844 [ 42.161448][ T4218] __sys_sendmsg+0x26c/0x33c [ 42.162623][ T4218] __arm64_sys_sendmsg+0x80/0x94 [ 42.163963][ T4218] invoke_syscall+0x98/0x2c0 [ 42.165154][ T4218] el0_svc_common+0x138/0x258 [ 42.166394][ T4218] do_el0_svc+0x64/0x218 [ 42.167588][ T4218] el0_svc+0x58/0x168 [ 42.168654][ T4218] el0t_64_sync_handler+0x84/0xf0 [ 42.169940][ T4218] el0t_64_sync+0x18c/0x190