Warning: Permanently added '10.128.0.155' (ED25519) to the list of known hosts. executing program [ 40.060950][ T4219] [ 40.061599][ T4219] ===================================================== [ 40.063441][ T4219] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected [ 40.065419][ T4219] 6.1.45-syzkaller #0 Not tainted [ 40.066706][ T4219] ----------------------------------------------------- [ 40.068529][ T4219] syz-executor119/4219 [HC0[0]:SC0[2]:HE1:SE0] is trying to acquire: [ 40.070532][ T4219] ffff800015b3c360 (fs_reclaim){+.+.}-{0:0}, at: __kmem_cache_alloc_node+0x58/0x388 [ 40.073083][ T4219] [ 40.073083][ T4219] and this task is already holding: [ 40.074987][ T4219] ffff800017eb4848 (noop_qdisc.q.lock){+.-.}-{2:2}, at: sch_tree_lock+0x120/0x1d4 [ 40.077404][ T4219] which would create a new lock dependency: [ 40.078895][ T4219] (noop_qdisc.q.lock){+.-.}-{2:2} -> (fs_reclaim){+.+.}-{0:0} [ 40.080871][ T4219] [ 40.080871][ T4219] but this new dependency connects a SOFTIRQ-irq-safe lock: [ 40.083364][ T4219] (noop_qdisc.q.lock){+.-.}-{2:2} [ 40.083381][ T4219] [ 40.083381][ T4219] ... which became SOFTIRQ-irq-safe at: [ 40.086788][ T4219] lock_acquire+0x26c/0x7cc [ 40.087999][ T4219] _raw_spin_lock+0x54/0x6c [ 40.089214][ T4219] net_tx_action+0x6ec/0x94c [ 40.090426][ T4219] __do_softirq+0x30c/0xea0 [ 40.091599][ T4219] ____do_softirq+0x14/0x20 [ 40.092852][ T4219] call_on_irq_stack+0x24/0x4c [ 40.094123][ T4219] do_softirq_own_stack+0x20/0x2c [ 40.095430][ T4219] do_softirq+0x120/0x20c [ 40.096601][ T4219] __local_bh_enable_ip+0x2c0/0x4d0 [ 40.097980][ T4219] local_bh_enable+0x28/0x34 [ 40.099199][ T4219] dev_deactivate_many+0x3d4/0xa8c [ 40.100560][ T4219] dev_deactivate+0x13c/0x1fc [ 40.101834][ T4219] linkwatch_do_dev+0x29c/0x3a4 [ 40.103120][ T4219] __linkwatch_run_queue+0x3a0/0x700 [ 40.104507][ T4219] linkwatch_event+0x58/0x68 [ 40.105709][ T4219] process_one_work+0x7ac/0x1404 [ 40.107024][ T4219] worker_thread+0x8e4/0xfec [ 40.108265][ T4219] kthread+0x250/0x2d8 [ 40.109345][ T4219] ret_from_fork+0x10/0x20 [ 40.110553][ T4219] [ 40.110553][ T4219] to a SOFTIRQ-irq-unsafe lock: [ 40.112415][ T4219] (fs_reclaim){+.+.}-{0:0} [ 40.112433][ T4219] [ 40.112433][ T4219] ... which became SOFTIRQ-irq-unsafe at: [ 40.115634][ T4219] ... [ 40.115640][ T4219] lock_acquire+0x26c/0x7cc [ 40.117515][ T4219] fs_reclaim_acquire+0x90/0x12c [ 40.118809][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 40.120255][ T4219] kmalloc_node_trace+0x44/0x90 [ 40.121560][ T4219] init_rescuer+0xa4/0x264 [ 40.122766][ T4219] workqueue_init+0x298/0x5b4 [ 40.124057][ T4219] kernel_init_freeable+0x33c/0x528 [ 40.125444][ T4219] kernel_init+0x24/0x29c [ 40.126617][ T4219] ret_from_fork+0x10/0x20 [ 40.127848][ T4219] [ 40.127848][ T4219] other info that might help us debug this: [ 40.127848][ T4219] [ 40.130641][ T4219] Possible interrupt unsafe locking scenario: [ 40.130641][ T4219] [ 40.132893][ T4219] CPU0 CPU1 [ 40.134340][ T4219] ---- ---- [ 40.135719][ T4219] lock(fs_reclaim); [ 40.136751][ T4219] local_irq_disable(); [ 40.138503][ T4219] lock(noop_qdisc.q.lock); [ 40.140374][ T4219] lock(fs_reclaim); [ 40.142090][ T4219] [ 40.142972][ T4219] lock(noop_qdisc.q.lock); [ 40.144242][ T4219] [ 40.144242][ T4219] *** DEADLOCK *** [ 40.144242][ T4219] [ 40.146504][ T4219] 2 locks held by syz-executor119/4219: [ 40.147976][ T4219] #0: ffff800017e6fdc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e8/0xd94 [ 40.150444][ T4219] #1: ffff800017eb4848 (noop_qdisc.q.lock){+.-.}-{2:2}, at: sch_tree_lock+0x120/0x1d4 [ 40.153034][ T4219] [ 40.153034][ T4219] the dependencies between SOFTIRQ-irq-safe lock and the holding lock: [ 40.155822][ T4219] -> (noop_qdisc.q.lock){+.-.}-{2:2} { [ 40.157302][ T4219] HARDIRQ-ON-W at: [ 40.158335][ T4219] lock_acquire+0x26c/0x7cc [ 40.159955][ T4219] _raw_spin_lock+0x54/0x6c [ 40.161612][ T4219] __dev_queue_xmit+0xb14/0x38d8 [ 40.163330][ T4219] tx+0x90/0x134 [ 40.164711][ T4219] kthread+0x1ac/0x374 [ 40.166240][ T4219] kthread+0x250/0x2d8 [ 40.167728][ T4219] ret_from_fork+0x10/0x20 [ 40.169343][ T4219] IN-SOFTIRQ-W at: [ 40.170365][ T4219] lock_acquire+0x26c/0x7cc [ 40.172037][ T4219] _raw_spin_lock+0x54/0x6c [ 40.173665][ T4219] net_tx_action+0x6ec/0x94c [ 40.175311][ T4219] __do_softirq+0x30c/0xea0 [ 40.176913][ T4219] ____do_softirq+0x14/0x20 [ 40.178495][ T4219] call_on_irq_stack+0x24/0x4c [ 40.180152][ T4219] do_softirq_own_stack+0x20/0x2c [ 40.181835][ T4219] do_softirq+0x120/0x20c [ 40.183435][ T4219] __local_bh_enable_ip+0x2c0/0x4d0 [ 40.185333][ T4219] local_bh_enable+0x28/0x34 [ 40.186957][ T4219] dev_deactivate_many+0x3d4/0xa8c [ 40.188754][ T4219] dev_deactivate+0x13c/0x1fc [ 40.190469][ T4219] linkwatch_do_dev+0x29c/0x3a4 [ 40.192179][ T4219] __linkwatch_run_queue+0x3a0/0x700 [ 40.193971][ T4219] linkwatch_event+0x58/0x68 [ 40.195600][ T4219] process_one_work+0x7ac/0x1404 [ 40.197325][ T4219] worker_thread+0x8e4/0xfec [ 40.198925][ T4219] kthread+0x250/0x2d8 [ 40.200507][ T4219] ret_from_fork+0x10/0x20 [ 40.202170][ T4219] INITIAL USE at: [ 40.203208][ T4219] lock_acquire+0x26c/0x7cc [ 40.204788][ T4219] _raw_spin_lock+0x54/0x6c [ 40.206391][ T4219] __dev_queue_xmit+0xb14/0x38d8 [ 40.208162][ T4219] tx+0x90/0x134 [ 40.209517][ T4219] kthread+0x1ac/0x374 [ 40.210996][ T4219] kthread+0x250/0x2d8 [ 40.212488][ T4219] ret_from_fork+0x10/0x20 [ 40.214071][ T4219] } [ 40.214713][ T4219] ... key at: [] noop_qdisc+0x108/0x320 [ 40.216800][ T4219] [ 40.216800][ T4219] the dependencies between the lock to be acquired [ 40.216807][ T4219] and SOFTIRQ-irq-unsafe lock: [ 40.220298][ T4219] -> (fs_reclaim){+.+.}-{0:0} { [ 40.221570][ T4219] HARDIRQ-ON-W at: [ 40.222584][ T4219] lock_acquire+0x26c/0x7cc [ 40.224204][ T4219] fs_reclaim_acquire+0x90/0x12c [ 40.225915][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 40.227767][ T4219] kmalloc_node_trace+0x44/0x90 [ 40.229490][ T4219] init_rescuer+0xa4/0x264 [ 40.231149][ T4219] workqueue_init+0x298/0x5b4 [ 40.232813][ T4219] kernel_init_freeable+0x33c/0x528 [ 40.234682][ T4219] kernel_init+0x24/0x29c [ 40.236310][ T4219] ret_from_fork+0x10/0x20 [ 40.237910][ T4219] SOFTIRQ-ON-W at: [ 40.238948][ T4219] lock_acquire+0x26c/0x7cc [ 40.240553][ T4219] fs_reclaim_acquire+0x90/0x12c [ 40.242287][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 40.244132][ T4219] kmalloc_node_trace+0x44/0x90 [ 40.245841][ T4219] init_rescuer+0xa4/0x264 [ 40.247400][ T4219] workqueue_init+0x298/0x5b4 [ 40.249064][ T4219] kernel_init_freeable+0x33c/0x528 [ 40.250857][ T4219] kernel_init+0x24/0x29c [ 40.252426][ T4219] ret_from_fork+0x10/0x20 [ 40.254078][ T4219] INITIAL USE at: [ 40.255147][ T4219] lock_acquire+0x26c/0x7cc [ 40.256801][ T4219] fs_reclaim_acquire+0x90/0x12c [ 40.258513][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 40.260311][ T4219] kmalloc_node_trace+0x44/0x90 [ 40.261990][ T4219] init_rescuer+0xa4/0x264 [ 40.263608][ T4219] workqueue_init+0x298/0x5b4 [ 40.265252][ T4219] kernel_init_freeable+0x33c/0x528 [ 40.267023][ T4219] kernel_init+0x24/0x29c [ 40.268539][ T4219] ret_from_fork+0x10/0x20 [ 40.270140][ T4219] } [ 40.270774][ T4219] ... key at: [] __fs_reclaim_map+0x0/0xe0 [ 40.272840][ T4219] ... acquired at: [ 40.273858][ T4219] fs_reclaim_acquire+0x90/0x12c [ 40.275269][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 40.276779][ T4219] __kmalloc_node+0xcc/0x1d0 [ 40.278070][ T4219] kvmalloc_node+0x84/0x1e4 [ 40.279352][ T4219] get_dist_table+0xa0/0x354 [ 40.280600][ T4219] netem_change+0x754/0x1900 [ 40.281806][ T4219] netem_init+0x54/0xb8 [ 40.282930][ T4219] qdisc_create+0x70c/0xe64 [ 40.284168][ T4219] tc_modify_qdisc+0x9f0/0x1840 [ 40.285470][ T4219] rtnetlink_rcv_msg+0x72c/0xd94 [ 40.286820][ T4219] netlink_rcv_skb+0x20c/0x3b8 [ 40.288096][ T4219] rtnetlink_rcv+0x28/0x38 [ 40.289263][ T4219] netlink_unicast+0x660/0x8d4 [ 40.290603][ T4219] netlink_sendmsg+0x834/0xb18 [ 40.291915][ T4219] ____sys_sendmsg+0x558/0x844 [ 40.292868][ T4219] __sys_sendmsg+0x26c/0x33c [ 40.293731][ T4219] __arm64_sys_sendmsg+0x80/0x94 [ 40.294707][ T4219] invoke_syscall+0x98/0x2c0 [ 40.295570][ T4219] el0_svc_common+0x138/0x258 [ 40.296422][ T4219] do_el0_svc+0x64/0x218 [ 40.297302][ T4219] el0_svc+0x58/0x168 [ 40.298425][ T4219] el0t_64_sync_handler+0x84/0xf0 [ 40.299769][ T4219] el0t_64_sync+0x18c/0x190 [ 40.301023][ T4219] [ 40.301651][ T4219] [ 40.301651][ T4219] stack backtrace: [ 40.303239][ T4219] CPU: 1 PID: 4219 Comm: syz-executor119 Not tainted 6.1.45-syzkaller #0 [ 40.305367][ T4219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 40.308029][ T4219] Call trace: [ 40.308867][ T4219] dump_backtrace+0x1c8/0x1f4 [ 40.310119][ T4219] show_stack+0x2c/0x3c [ 40.311199][ T4219] dump_stack_lvl+0x108/0x170 [ 40.312419][ T4219] dump_stack+0x1c/0x58 [ 40.313495][ T4219] __lock_acquire+0x6310/0x764c [ 40.314725][ T4219] lock_acquire+0x26c/0x7cc [ 40.315931][ T4219] fs_reclaim_acquire+0x90/0x12c [ 40.317227][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 40.318662][ T4219] __kmalloc_node+0xcc/0x1d0 [ 40.319912][ T4219] kvmalloc_node+0x84/0x1e4 [ 40.321057][ T4219] get_dist_table+0xa0/0x354 [ 40.322245][ T4219] netem_change+0x754/0x1900 [ 40.323424][ T4219] netem_init+0x54/0xb8 [ 40.324523][ T4219] qdisc_create+0x70c/0xe64 [ 40.325676][ T4219] tc_modify_qdisc+0x9f0/0x1840 [ 40.326935][ T4219] rtnetlink_rcv_msg+0x72c/0xd94 [ 40.328242][ T4219] netlink_rcv_skb+0x20c/0x3b8 [ 40.329474][ T4219] rtnetlink_rcv+0x28/0x38 [ 40.330691][ T4219] netlink_unicast+0x660/0x8d4 [ 40.331991][ T4219] netlink_sendmsg+0x834/0xb18 [ 40.333237][ T4219] ____sys_sendmsg+0x558/0x844 [ 40.334525][ T4219] __sys_sendmsg+0x26c/0x33c [ 40.335721][ T4219] __arm64_sys_sendmsg+0x80/0x94 [ 40.337047][ T4219] invoke_syscall+0x98/0x2c0 [ 40.338313][ T4219] el0_svc_common+0x138/0x258 [ 40.339599][ T4219] do_el0_svc+0x64/0x218 [ 40.340731][ T4219] el0_svc+0x58/0x168 [ 40.341774][ T4219] el0t_64_sync_handler+0x84/0xf0 [ 40.343076][ T4219] el0t_64_sync+0x18c/0x190 [ 40.344301][ T4219] BUG: sleeping function called from invalid context at include/linux/sched/mm.h:274 [ 40.346715][ T4219] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4219, name: syz-executor119 [ 40.349276][ T4219] preempt_count: 201, expected: 0 [ 40.350592][ T4219] RCU nest depth: 0, expected: 0 [ 40.351853][ T4219] INFO: lockdep is turned off. [ 40.353074][ T4219] Preemption disabled at: [ 40.353082][ T4219] [] sch_tree_lock+0x120/0x1d4 [ 40.355794][ T4219] CPU: 1 PID: 4219 Comm: syz-executor119 Not tainted 6.1.45-syzkaller #0 [ 40.358034][ T4219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 40.360688][ T4219] Call trace: [ 40.361528][ T4219] dump_backtrace+0x1c8/0x1f4 [ 40.362754][ T4219] show_stack+0x2c/0x3c [ 40.363810][ T4219] dump_stack_lvl+0x108/0x170 [ 40.365086][ T4219] dump_stack+0x1c/0x58 [ 40.366154][ T4219] __might_resched+0x37c/0x4d8 [ 40.367432][ T4219] __might_sleep+0x90/0xe4 [ 40.368599][ T4219] __kmem_cache_alloc_node+0x74/0x388 [ 40.369994][ T4219] __kmalloc_node+0xcc/0x1d0 [ 40.371210][ T4219] kvmalloc_node+0x84/0x1e4 [ 40.372410][ T4219] get_dist_table+0xa0/0x354 [ 40.373637][ T4219] netem_change+0x754/0x1900 [ 40.374805][ T4219] netem_init+0x54/0xb8 [ 40.375898][ T4219] qdisc_create+0x70c/0xe64 [ 40.377128][ T4219] tc_modify_qdisc+0x9f0/0x1840 [ 40.378432][ T4219] rtnetlink_rcv_msg+0x72c/0xd94 [ 40.379724][ T4219] netlink_rcv_skb+0x20c/0x3b8 [ 40.380996][ T4219] rtnetlink_rcv+0x28/0x38 [ 40.382188][ T4219] netlink_unicast+0x660/0x8d4 [ 40.383485][ T4219] netlink_sendmsg+0x834/0xb18 [ 40.384742][ T4219] ____sys_sendmsg+0x558/0x844 [ 40.385961][ T4219] __sys_sendmsg+0x26c/0x33c [ 40.387145][ T4219] __arm64_sys_sendmsg+0x80/0x94 [ 40.388462][ T4219] invoke_syscall+0x98/0x2c0 [ 40.389635][ T4219] el0_svc_common+0x138/0x258 [ 40.390847][ T4219] do_el0_svc+0x64/0x218 [ 40.391902][ T4219] el0_svc+0x58/0x168 [ 40.392949][ T4219] el0t_64_sync_handler+0x84/0xf0 [ 40.394258][ T4219] el0t_64_sync+0x18c/0x190