DUID 00:04:89:05:98:7d:bd:cb:ea:8e:b7:3c:a9:5c:45:de:a2:b6 forked to background, child pid 3174 [ 31.120364][ T3175] 8021q: adding VLAN 0 to HW filter on device bond0 [ 31.131058][ T3175] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.10.35' (ED25519) to the list of known hosts. executing program syzkaller login: [ 52.675499][ T3500] [ 52.677842][ T3500] ============================================ [ 52.683983][ T3500] WARNING: possible recursive locking detected [ 52.690151][ T3500] 5.15.157-syzkaller #0 Not tainted [ 52.695356][ T3500] -------------------------------------------- [ 52.701490][ T3500] syz-executor427/3500 is trying to acquire lock: [ 52.707889][ T3500] ffff88807d7b49c0 (&stab->lock){+...}-{2:2}, at: sock_map_delete_elem+0x161/0x230 [ 52.717234][ T3500] [ 52.717234][ T3500] but task is already holding lock: [ 52.724603][ T3500] ffff88807d7b49c0 (&stab->lock){+...}-{2:2}, at: sock_map_delete_elem+0x161/0x230 [ 52.733913][ T3500] [ 52.733913][ T3500] other info that might help us debug this: [ 52.741964][ T3500] Possible unsafe locking scenario: [ 52.741964][ T3500] [ 52.749399][ T3500] CPU0 [ 52.752685][ T3500] ---- [ 52.755966][ T3500] lock(&stab->lock); [ 52.760024][ T3500] lock(&stab->lock); [ 52.764081][ T3500] [ 52.764081][ T3500] *** DEADLOCK *** [ 52.764081][ T3500] [ 52.772212][ T3500] May be due to missing lock nesting notation [ 52.772212][ T3500] [ 52.780513][ T3500] 4 locks held by syz-executor427/3500: [ 52.786069][ T3500] #0: ffffffff8c91fb20 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30 [ 52.795494][ T3500] #1: ffff88807d7b49c0 (&stab->lock){+...}-{2:2}, at: sock_map_delete_elem+0x161/0x230 [ 52.805336][ T3500] #2: ffff888078959290 (&psock->link_lock){+...}-{2:2}, at: sock_map_unref+0xcc/0x5d0 [ 52.815078][ T3500] #3: ffffffff8c91fb20 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30 [ 52.824386][ T3500] [ 52.824386][ T3500] stack backtrace: [ 52.830799][ T3500] CPU: 0 PID: 3500 Comm: syz-executor427 Not tainted 5.15.157-syzkaller #0 [ 52.839370][ T3500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 52.849413][ T3500] Call Trace: [ 52.852684][ T3500] [ 52.855618][ T3500] dump_stack_lvl+0x1e3/0x2d0 [ 52.860324][ T3500] ? io_uring_drop_tctx_refs+0x1a0/0x1a0 [ 52.865947][ T3500] ? panic+0x860/0x860 [ 52.870017][ T3500] validate_chain+0x46d2/0x5930 [ 52.874866][ T3500] ? check_path+0x21/0x40 [ 52.879200][ T3500] ? check_noncircular+0x1e1/0x3b0 [ 52.884301][ T3500] ? reacquire_held_locks+0x660/0x660 [ 52.889675][ T3500] ? lockdep_unlock+0x166/0x300 [ 52.894519][ T3500] ? lockdep_lock+0x2a0/0x2a0 [ 52.899189][ T3500] ? reacquire_held_locks+0x660/0x660 [ 52.904567][ T3500] ? validate_chain+0x13bd/0x5930 [ 52.909589][ T3500] ? mark_lock+0x98/0x340 [ 52.913911][ T3500] __lock_acquire+0x1295/0x1ff0 [ 52.918766][ T3500] lock_acquire+0x1db/0x4f0 [ 52.923256][ T3500] ? sock_map_delete_elem+0x161/0x230 [ 52.928625][ T3500] ? read_lock_is_recursive+0x10/0x10 [ 52.933988][ T3500] ? sock_map_delete_elem+0x161/0x230 [ 52.939353][ T3500] ? __bpf_trace_softirq+0x10/0x10 [ 52.944458][ T3500] ? sock_map_delete_elem+0x161/0x230 [ 52.949826][ T3500] _raw_spin_lock_bh+0x31/0x40 [ 52.954584][ T3500] ? sock_map_delete_elem+0x161/0x230 [ 52.959947][ T3500] sock_map_delete_elem+0x161/0x230 [ 52.965136][ T3500] ? sock_map_update_elem+0x380/0x380 [ 52.970505][ T3500] bpf_prog_2c29ac5cdc6b1842+0x3a/0x984 [ 52.976039][ T3500] bpf_trace_run2+0x19e/0x340 [ 52.980714][ T3500] ? bpf_trace_run1+0x2f0/0x2f0 [ 52.985573][ T3500] ? sock_map_unref+0x3ac/0x5d0 [ 52.990777][ T3500] ? do_raw_spin_lock+0x14a/0x370 [ 52.995816][ T3500] ? __bpf_trace_softirq+0x10/0x10 [ 53.000921][ T3500] ? sock_map_unref+0x3ac/0x5d0 [ 53.005769][ T3500] __bpf_trace_kfree+0x6e/0x90 [ 53.010536][ T3500] ? sock_map_unref+0x3ac/0x5d0 [ 53.015384][ T3500] kfree+0x22f/0x270 [ 53.019280][ T3500] ? sock_map_unref+0xcc/0x5d0 [ 53.024043][ T3500] sock_map_unref+0x3ac/0x5d0 [ 53.028739][ T3500] sock_map_delete_elem+0x191/0x230 [ 53.033951][ T3500] ? sock_map_update_elem+0x380/0x380 [ 53.039318][ T3500] ? lockdep_hardirqs_on+0x94/0x130 [ 53.044517][ T3500] ? __local_bh_enable_ip+0x164/0x1f0 [ 53.049886][ T3500] bpf_prog_2c29ac5cdc6b1842+0x3a/0x984 [ 53.055463][ T3500] bpf_trace_run2+0x19e/0x340 [ 53.060141][ T3500] ? bpf_trace_run1+0x2f0/0x2f0 [ 53.064982][ T3500] ? map_update_elem+0x6ab/0x7c0 [ 53.069916][ T3500] ? sock_map_update_elem_sys+0x549/0x770 [ 53.075639][ T3500] ? map_update_elem+0x6ab/0x7c0 [ 53.080607][ T3500] __bpf_trace_kfree+0x6e/0x90 [ 53.085407][ T3500] ? map_update_elem+0x6ab/0x7c0 [ 53.090337][ T3500] kfree+0x22f/0x270 [ 53.094225][ T3500] map_update_elem+0x6ab/0x7c0 [ 53.098992][ T3500] __sys_bpf+0x2fd/0x670 [ 53.103229][ T3500] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 53.108595][ T3500] ? syscall_enter_from_user_mode+0x2e/0x240 [ 53.114569][ T3500] ? lockdep_hardirqs_on+0x94/0x130 [ 53.119763][ T3500] __x64_sys_bpf+0x78/0x90 [ 53.124176][ T3500] do_syscall_64+0x3b/0xb0 [ 53.128584][ T3500] ? clear_bhb_loop+0x15/0x70 [ 53.133252][ T3500] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 53.139134][ T3500] RIP: 0033:0x7feecb305e39 [ 53.143543][ T3500] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 53.163171][ T3500] RSP: 002b:00007ffd5dc702e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 53.171574][ T3500] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007feecb305e39 [ 53.179533][ T3500] RDX: 0000000000000020 RSI: 0000000020000500 RDI: 0000000000000002 [ 53.187492][ T3500] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000006 [ 53.195452][ T3500] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 53.203414][ T3500] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 53.211462][ T3500]