./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1162108947 <...> Warning: Permanently added '10.128.1.131' (ED25519) to the list of known hosts. execve("./syz-executor1162108947", ["./syz-executor1162108947"], 0x7ffe4254c510 /* 10 vars */) = 0 brk(NULL) = 0x55557b37e000 brk(0x55557b37ed00) = 0x55557b37ed00 arch_prctl(ARCH_SET_FS, 0x55557b37e380) = 0 set_tid_address(0x55557b37e650) = 5066 set_robust_list(0x55557b37e660, 24) = 0 rseq(0x55557b37eca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1162108947", 4096) = 28 getrandom("\x04\x11\x67\xe7\x8f\xd4\xef\xb3", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557b37ed00 brk(0x55557b39fd00) = 0x55557b39fd00 brk(0x55557b3a0000) = 0x55557b3a0000 mprotect(0x7fd465daa000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5067 attached , child_tidptr=0x55557b37e650) = 5067 [pid 5067] set_robust_list(0x55557b37e660, 24) = 0 [pid 5067] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5067] setpgid(0, 0) = 0 [pid 5067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "1000", 4) = 4 [pid 5067] close(3) = 0 [pid 5067] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5067] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5067] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5067] exit_group(0) = ? [pid 5067] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5067, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5068 attached [pid 5068] set_robust_list(0x55557b37e660, 24) = 0 [pid 5066] <... clone resumed>, child_tidptr=0x55557b37e650) = 5068 [pid 5068] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5068] setpgid(0, 0) = 0 [pid 5068] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5068] write(3, "1000", 4) = 4 [pid 5068] close(3) = 0 [pid 5068] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5068] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5068] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5068] exit_group(0) = ? [ 57.035248][ C1] [ 57.037585][ C1] ===================================================== [ 57.044491][ C1] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 57.051924][ C1] 6.8.0-syzkaller-05212-g4c8644f86c85 #0 Not tainted [ 57.058574][ C1] ----------------------------------------------------- [ 57.065171][ C0] ------------[ cut here ]------------ [ 57.065476][ C1] swapper/1/0 [HC0[0]:SC1[3]:HE0:SE0] is trying to acquire: [ 57.070916][ C0] raw_local_irq_restore() called with IRQs enabled [ 57.070975][ C0] WARNING: CPU: 0 PID: 0 at kernel/locking/irqflag-debug.c:10 warn_bogus_irq_restore+0x29/0x40 [ 57.078167][ C1] ffff88807f91e820 (&htab->buckets[i].lock){+.-.}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 57.084678][ C0] Modules linked in: [ 57.094970][ C1] [ 57.094970][ C1] and this task is already holding: [ 57.094976][ C1] ffff888014ca0018 (&pool->lock){-.-.}-{2:2} [ 57.105216][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.8.0-syzkaller-05212-g4c8644f86c85 #0 [ 57.109060][ C1] , at: __queue_work+0x6ec/0xec0 [ 57.116418][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 57.122351][ C1] which would create a new lock dependency: [ 57.122358][ C1] ( [ 57.131634][ C0] RIP: 0010:warn_bogus_irq_restore+0x29/0x40 [ 57.136524][ C1] &pool->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock [ 57.146597][ C0] Code: 90 f3 0f 1e fa 90 80 3d de 59 01 04 00 74 06 90 c3 cc cc cc cc c6 05 cf 59 01 04 01 90 48 c7 c7 20 ba aa 8b e8 f8 d5 e7 f5 90 <0f> 0b 90 90 90 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 57.152442][ C1] ){+.-.}-{2:2} [ 57.154917][ C0] RSP: 0018:ffffc90000007ad8 EFLAGS: 00010246 [ 57.160865][ C1] [ 57.160870][ C1] [ 57.160870][ C1] but this new dependency connects a HARDIRQ-irq-safe lock: [ 57.160877][ C1] (&pool->lock){-.-.}-{2:2} [ 57.167633][ C0] [ 57.187192][ C1] [ 57.187192][ C1] ... which became HARDIRQ-irq-safe at: [ 57.187200][ C1] lock_acquire+0x1e4/0x530 [ 57.190640][ C0] RAX: fba673377e60e700 RBX: 0000000000000200 RCX: ffffffff8de94680 [ 57.196676][ C1] _raw_spin_lock+0x2e/0x40 [ 57.196696][ C1] __queue_work+0x6ec/0xec0 [ 57.198996][ C0] RDX: 0000000000000101 RSI: 0000000000000000 RDI: 0000000000000000 [ 57.208416][ C1] queue_work_on+0x14f/0x250 [ 57.208435][ C1] hrtimer_run_queues+0x154/0x460 [ 57.213000][ C0] RBP: ffffc90000007bb0 R08: ffffffff8157cc12 R09: 1ffff110172851a2 [ 57.215301][ C1] update_process_times+0x80/0x230 [ 57.215317][ C1] tick_periodic+0x190/0x220 [ 57.223001][ C0] R10: dffffc0000000000 R11: ffffed10172851a3 R12: 0000000000000200 [ 57.227559][ C1] tick_handle_periodic+0x4a/0x160 [ 57.227576][ C1] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 57.235539][ C0] R13: 0000000000000000 R14: 0000000000000246 R15: 1ffff92000000f60 [ 57.240086][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 57.244647][ C0] FS: 0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 57.252591][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 57.257266][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.262334][ C1] rwsem_spin_on_owner+0x1ee/0x2f0 [ 57.270297][ C0] CR2: 00007fd465d8001d CR3: 0000000077e3e000 CR4: 00000000003506f0 [ 57.275451][ C1] rwsem_down_write_slowpath+0x272/0x13b0 [ 57.280134][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 57.288073][ C1] __down_write_common+0x1af/0x200 [ 57.288097][ C1] early_event_add_tracer+0x4a/0x80 [ 57.293257][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 57.299293][ C1] event_trace_init+0xeb/0x170 [ 57.299315][ C1] tracer_init_tracefs_work_func+0x11/0x140 [ 57.307271][ C0] Call Trace: [ 57.312961][ C1] process_scheduled_works+0xa00/0x1770 [ 57.321886][ C0] [ 57.327904][ C1] worker_thread+0x86d/0xd70 [ 57.327922][ C1] kthread+0x2f0/0x390 [ 57.334481][ C0] ? __warn+0x163/0x4b0 [ 57.339650][ C1] ret_from_fork+0x4b/0x80 [ 57.347629][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 57.353393][ C1] ret_from_fork_asm+0x1a/0x30 [ 57.361358][ C0] ? report_bug+0x2b3/0x500 [ 57.366508][ C1] [ 57.366508][ C1] to a HARDIRQ-irq-unsafe lock: [ 57.366516][ C1] (&htab->buckets[i].lock){+.-.}-{2:2} [ 57.371789][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 57.379737][ C1] [ 57.379737][ C1] ... which became HARDIRQ-irq-unsafe at: [ 57.379744][ C1] ... [ 57.379748][ C1] lock_acquire+0x1e4/0x530 [ 57.384576][ C0] ? handle_bug+0x3e/0x70 [ 57.390526][ C1] _raw_spin_lock_bh+0x35/0x50 [ 57.390547][ C1] sock_hash_free+0x164/0x820 [ 57.393805][ C0] ? exc_invalid_op+0x1a/0x50 [ 57.399407][ C1] bpf_map_free_deferred+0xe6/0x110 [ 57.399426][ C1] process_scheduled_works+0xa00/0x1770 [ 57.402250][ C0] ? asm_exc_invalid_op+0x1a/0x20 [ 57.406894][ C1] worker_thread+0x86d/0xd70 [ 57.406912][ C1] kthread+0x2f0/0x390 [ 57.411045][ C0] ? __warn_printk+0x292/0x360 [ 57.415167][ C1] ret_from_fork+0x4b/0x80 [ 57.419662][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 57.425000][ C1] ret_from_fork_asm+0x1a/0x30 [ 57.429838][ C0] ? warn_bogus_irq_restore+0x28/0x40 [ 57.434296][ C1] [ 57.434296][ C1] other info that might help us debug this: [ 57.434296][ C1] [ 57.434303][ C1] Possible interrupt unsafe locking scenario: [ 57.434303][ C1] [ 57.441300][ C0] queue_work_on+0x1ea/0x250 [ 57.446806][ C1] CPU0 CPU1 [ 57.446811][ C1] ---- ---- [ 57.446816][ C1] lock(&htab->buckets[i].lock); [ 57.452166][ C0] ? __pfx_queue_work_on+0x10/0x10 [ 57.460019][ C1] local_irq_disable(); [ 57.460025][ C1] lock(&pool->lock); [ 57.462603][ C0] ? rcu_is_watching+0x15/0xb0 [ 57.467162][ C1] lock(&htab->buckets[i].lock); [ 57.467177][ C1] [ 57.467180][ C1] lock(&pool->lock [ 57.471479][ C0] ? lock_release+0xbf/0x9d0 [ 57.476301][ C1] ); [ 57.476305][ C1] [ 57.476305][ C1] *** DEADLOCK *** [ 57.476305][ C1] [ 57.476310][ C1] 4 locks held by swapper/1/0: [ 57.476320][ C1] #0: [ 57.481048][ C0] ? call_timer_fn+0xa8/0x600 [ 57.485693][ C1] ffffc90000a08c00 (&(&kfence_timer)->timer){..-.}-{0:0} [ 57.490966][ C0] call_timer_fn+0x17e/0x600 [ 57.496579][ C1] , at: call_timer_fn+0xc0/0x600 [ 57.496599][ C1] #1: [ 57.501591][ C0] ? call_timer_fn+0xc0/0x600 [ 57.506236][ C1] ffffffff8e131920 (rcu_read_lock){....}-{1:2} [ 57.510377][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 57.515112][ C1] , at: __queue_work+0x198/0xec0 [ 57.515132][ C1] #2: ffff888014ca0018 [ 57.519606][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 57.524951][ C1] (&pool->lock [ 57.529791][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 57.535114][ C1] ){-.-.}-{2:2}, at: __queue_work+0x6ec/0xec0 [ 57.545349][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 57.553627][ C1] #3: ffffffff8e131920 [ 57.558203][ C0] ? rcu_is_watching+0x15/0xb0 [ 57.563527][ C1] (rcu_read_lock [ 57.568882][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 57.573860][ C1] ){....}-{1:2} [ 57.578957][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 57.585671][ C1] , at: bpf_trace_run3+0x14a/0x460 [ 57.585693][ C1] [ 57.585693][ C1] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 57.592244][ C0] __run_timer_base+0x66a/0x8e0 [ 57.596976][ C1] -> (&pool->lock){-.-.}-{2:2} [ 57.604511][ C0] ? __pfx___run_timer_base+0x10/0x10 [ 57.607935][ C1] { [ 57.607940][ C1] IN-HARDIRQ-W at: [ 57.607951][ C1] lock_acquire+0x1e4/0x530 [ 57.611996][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 57.616557][ C1] _raw_spin_lock+0x2e/0x40 [ 57.616577][ C1] __queue_work+0x6ec/0xec0 [ 57.619048][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 57.627166][ C1] queue_work_on+0x14f/0x250 [ 57.627186][ C1] hrtimer_run_queues+0x154/0x460 [ 57.631923][ C0] run_timer_softirq+0xb7/0x170 [ 57.634662][ C1] update_process_times+0x80/0x230 [ 57.639327][ C0] __do_softirq+0x2bc/0x943 [ 57.646299][ C1] tick_periodic+0x190/0x220 [ 57.646316][ C1] tick_handle_periodic+0x4a/0x160 [ 57.650889][ C0] ? __irq_exit_rcu+0xf2/0x1c0 [ 57.655803][ C1] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 57.655831][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 57.658585][ C0] ? __pfx___do_softirq+0x10/0x10 [ 57.663234][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 57.669387][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 57.674706][ C1] rwsem_spin_on_owner+0x1ee/0x2f0 [ 57.679661][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 57.683767][ C1] rwsem_down_write_slowpath+0x272/0x13b0 [ 57.688870][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 57.692280][ C1] __down_write_common+0x1af/0x200 [ 57.697644][ C0] irq_exit_rcu+0x9/0x30 [ 57.703658][ C1] early_event_add_tracer+0x4a/0x80 [ 57.709016][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 57.713126][ C1] event_trace_init+0xeb/0x170 [ 57.717879][ C0] [ 57.721465][ C1] tracer_init_tracefs_work_func+0x11/0x140 [ 57.726846][ C0] [ 57.730260][ C1] process_scheduled_works+0xa00/0x1770 [ 57.735620][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 57.740686][ C1] worker_thread+0x86d/0xd70 [ 57.751080][ C0] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 57.755886][ C1] kthread+0x2f0/0x390 [ 57.755907][ C1] ret_from_fork+0x4b/0x80 [ 57.760638][ C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 57.765976][ C1] ret_from_fork_asm+0x1a/0x30 [ 57.768467][ C0] RSP: 0018:ffffffff8de07ca8 EFLAGS: 00000246 [ 57.772418][ C1] IN-SOFTIRQ-W [ 57.778558][ C0] [ 57.784839][ C1] at: [ 57.784844][ C1] lock_acquire+0x1e4/0x530 [ 57.790985][ C0] RAX: ffffffff8de94680 RBX: ffff88801aedb064 RCX: 000000000000da09 [ 57.797113][ C1] _raw_spin_lock+0x2e/0x40 [ 57.797135][ C1] __queue_work+0x6ec/0xec0 [ 57.802296][ C0] RDX: 0000000000000001 RSI: ffff88801aedb000 RDI: ffff88801aedb064 [ 57.808503][ C1] call_timer_fn+0x17e/0x600 [ 57.808523][ C1] __run_timer_base+0x695/0x8e0 [ 57.815178][ C0] RBP: 0000000000039f18 R08: ffff8880b9437d0b R09: 1ffff11017286fa1 [ 57.819993][ C1] run_timer_softirq+0xb7/0x170 [ 57.826738][ C0] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff888015fa6000 [ 57.831197][ C1] __do_softirq+0x2bc/0x943 [ 57.837423][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2e80 [ 57.844147][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 57.848957][ C0] ? __pfx_acpi_idle_enter+0x10/0x10 [ 57.856517][ C1] irq_exit_rcu+0x9/0x30 [ 57.856535][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 57.863797][ C0] acpi_idle_enter+0xe4/0x140 [ 57.868787][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 57.876425][ C0] cpuidle_enter_state+0x118/0x490 [ 57.881573][ C1] default_idle+0x13/0x20 [ 57.888331][ C0] ? __pfx_menu_select+0x10/0x10 [ 57.892874][ C1] default_idle_call+0x74/0xb0 [ 57.900237][ C0] cpuidle_enter+0x5d/0xa0 [ 57.905390][ C1] do_idle+0x22f/0x5d0 [ 57.905415][ C1] cpu_startup_entry+0x42/0x60 [ 57.912170][ C0] do_idle+0x375/0x5d0 [ 57.916387][ C1] rest_init+0x2e0/0x300 [ 57.916418][ C1] arch_call_rest_init+0xe/0x10 [ 57.923247][ C0] ? __pfx___schedule+0x10/0x10 [ 57.928852][ C1] start_kernel+0x47a/0x500 [ 57.928874][ C1] x86_64_start_reservations+0x2a/0x30 [ 57.935293][ C0] ? __pfx_do_idle+0x10/0x10 [ 57.938184][ C1] x86_64_start_kernel+0x99/0xa0 [ 57.945718][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 57.948609][ C1] common_startup_64+0x13e/0x147 [ 57.955788][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 57.961721][ C1] INITIAL USE [ 57.967953][ C0] ? rest_init+0x35/0x300 [ 57.973187][ C1] at: [ 57.973193][ C1] lock_acquire+0x1e4/0x530 [ 57.978896][ C0] ? rest_init+0x35/0x300 [ 57.984910][ C1] _raw_spin_lock+0x2e/0x40 [ 58.004516][ C0] cpu_startup_entry+0x42/0x60 [ 58.010875][ C1] __queue_work+0x6ec/0xec0 [ 58.010896][ C1] queue_work_on+0x14f/0x250 [ 58.016947][ C0] rest_init+0x2e0/0x300 [ 58.020617][ C1] start_poll_synchronize_rcu_expedited+0xf7/0x150 [ 58.022922][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 58.025572][ C1] rcu_init+0xea/0x140 [ 58.025591][ C1] start_kernel+0x1f7/0x500 [ 58.031715][ C0] arch_call_rest_init+0xe/0x10 [ 58.039657][ C1] x86_64_start_reservations+0x2a/0x30 [ 58.039680][ C1] x86_64_start_kernel+0x99/0xa0 [ 58.045903][ C0] start_kernel+0x47a/0x500 [ 58.052007][ C1] common_startup_64+0x13e/0x147 [ 58.059973][ C0] x86_64_start_reservations+0x2a/0x30 [ 58.066160][ C1] } [ 58.066166][ C1] ... key at: [] init_worker_pool.__key+0x0/0x20 [ 58.072645][ C0] x86_64_start_kernel+0x99/0xa0 [ 58.080587][ C1] [ 58.080587][ C1] the dependencies between the lock to be acquired [ 58.080594][ C1] and HARDIRQ-irq-unsafe lock: [ 58.080631][ C1] -> [ 58.087087][ C0] common_startup_64+0x13e/0x147 [ 58.095015][ C1] (&htab->buckets[i].lock [ 58.101161][ C0] [ 58.109081][ C1] ){+.-.}-{2:2} { [ 58.109096][ C1] HARDIRQ-ON-W at: [ 58.115325][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 58.115335][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.8.0-syzkaller-05212-g4c8644f86c85 #0 [ 58.115353][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 58.115363][ C0] Call Trace: [ 58.115369][ C0] [ 58.115375][ C0] dump_stack_lvl+0x1e7/0x2e0 [ 58.115401][ C0] ? __pfx_dump_stack_lvl+0x10/0x10 [ 58.115428][ C0] ? __pfx__printk+0x10/0x10 [ 58.115447][ C0] ? _printk+0xd5/0x120 [ 58.115469][ C0] ? vscnprintf+0x5d/0x90 [ 58.115496][ C0] panic+0x349/0x860 [ 58.115516][ C0] ? __warn+0x172/0x4b0 [ 58.115539][ C0] ? __pfx_panic+0x10/0x10 [ 58.115558][ C0] ? show_trace_log_lvl+0x4e6/0x520 [ 58.115592][ C0] ? common_startup_64+0x13e/0x147 [ 58.115614][ C0] __warn+0x31e/0x4b0 [ 58.115637][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 58.115660][ C0] report_bug+0x2b3/0x500 [ 58.115686][ C0] ? warn_bogus_irq_restore+0x29/0x40 [ 58.115708][ C0] handle_bug+0x3e/0x70 [ 58.115730][ C0] exc_invalid_op+0x1a/0x50 [ 58.115754][ C0] asm_exc_invalid_op+0x1a/0x20 [ 58.115781][ C0] RIP: 0010:warn_bogus_irq_restore+0x29/0x40 [ 58.115803][ C0] Code: 90 f3 0f 1e fa 90 80 3d de 59 01 04 00 74 06 90 c3 cc cc cc cc c6 05 cf 59 01 04 01 90 48 c7 c7 20 ba aa 8b e8 f8 d5 e7 f5 90 <0f> 0b 90 90 90 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 58.115818][ C0] RSP: 0018:ffffc90000007ad8 EFLAGS: 00010246 [ 58.115833][ C0] RAX: fba673377e60e700 RBX: 0000000000000200 RCX: ffffffff8de94680 [ 58.115846][ C0] RDX: 0000000000000101 RSI: 0000000000000000 RDI: 0000000000000000 [ 58.115858][ C0] RBP: ffffc90000007bb0 R08: ffffffff8157cc12 R09: 1ffff110172851a2 [ 58.115871][ C0] R10: dffffc0000000000 R11: ffffed10172851a3 R12: 0000000000000200 [ 58.115884][ C0] R13: 0000000000000000 R14: 0000000000000246 R15: 1ffff92000000f60 [ 58.115900][ C0] ? __warn_printk+0x292/0x360 [ 58.115926][ C0] ? warn_bogus_irq_restore+0x28/0x40 [ 58.115946][ C0] queue_work_on+0x1ea/0x250 [ 58.115968][ C0] ? __pfx_queue_work_on+0x10/0x10 [ 58.115989][ C0] ? rcu_is_watching+0x15/0xb0 [ 58.116007][ C0] ? lock_release+0xbf/0x9d0 [ 58.116023][ C0] ? call_timer_fn+0xa8/0x600 [ 58.116045][ C0] call_timer_fn+0x17e/0x600 [ 58.116064][ C0] ? call_timer_fn+0xc0/0x600 [ 58.116082][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 58.116099][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 58.116119][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 58.116136][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 58.116152][ C0] ? rcu_is_watching+0x15/0xb0 [ 58.116169][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 58.116185][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 58.116202][ C0] __run_timer_base+0x66a/0x8e0 [ 58.116224][ C0] ? __pfx___run_timer_base+0x10/0x10 [ 58.116244][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 58.116261][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 58.116290][ C0] run_timer_softirq+0xb7/0x170 [ 58.116308][ C0] __do_softirq+0x2bc/0x943 [ 58.116333][ C0] ? __irq_exit_rcu+0xf2/0x1c0 [ 58.116353][ C0] ? __pfx___do_softirq+0x10/0x10 [ 58.116379][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 58.116405][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 58.116428][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 58.116450][ C0] irq_exit_rcu+0x9/0x30 [ 58.116466][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 58.116486][ C0] [ 58.116492][ C0] [ 58.116498][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 58.116524][ C0] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 58.116549][ C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 58.116566][ C0] RSP: 0018:ffffffff8de07ca8 EFLAGS: 00000246 [ 58.116581][ C0] RAX: ffffffff8de94680 RBX: ffff88801aedb064 RCX: 000000000000da09 [ 58.116594][ C0] RDX: 0000000000000001 RSI: ffff88801aedb000 RDI: ffff88801aedb064 [ 58.116607][ C0] RBP: 0000000000039f18 R08: ffff8880b9437d0b R09: 1ffff11017286fa1 [ 58.116620][ C0] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff888015fa6000 [ 58.116633][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2e80 [ 58.116647][ C0] ? __pfx_acpi_idle_enter+0x10/0x10 [ 58.116677][ C0] acpi_idle_enter+0xe4/0x140 [ 58.116702][ C0] cpuidle_enter_state+0x118/0x490 [ 58.116724][ C0] ? __pfx_menu_select+0x10/0x10 [ 58.116745][ C0] cpuidle_enter+0x5d/0xa0 [ 58.116770][ C0] do_idle+0x375/0x5d0 [ 58.116787][ C0] ? __pfx___schedule+0x10/0x10 [ 58.116812][ C0] ? __pfx_do_idle+0x10/0x10 [ 58.116831][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 58.116854][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 58.116877][ C0] ? rest_init+0x35/0x300 [ 58.116901][ C0] ? rest_init+0x35/0x300 [ 58.116924][ C0] cpu_startup_entry+0x42/0x60 [ 58.116943][ C0] rest_init+0x2e0/0x300 [ 58.116967][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 58.116991][ C0] arch_call_rest_init+0xe/0x10 [ 58.117008][ C0] start_kernel+0x47a/0x500 [ 58.117027][ C0] x86_64_start_reservations+0x2a/0x30 [ 58.117051][ C0] x86_64_start_kernel+0x99/0xa0 [ 58.117072][ C0] common_startup_64+0x13e/0x147 [ 58.117098][ C0] [ 58.120562][ C1] lock_acquire+0x1e4/0x530 [ 58.120578][ C1] _raw_spin_lock_bh+0x35/0x50 [ 58.120597][ C1] sock_hash_free+0x164/0x820 [ 58.120614][ C1] bpf_map_free_deferred+0xe6/0x110 [ 58.120632][ C1] process_scheduled_works+0xa00/0x1770 [ 58.120648][ C1] worker_thread+0x86d/0xd70 [ 58.120664][ C1] kthread+0x2f0/0x390 [ 58.120683][ C1] ret_from_fork+0x4b/0x80 [ 58.120708][ C1] ret_from_fork_asm+0x1a/0x30 [ 58.120732][ C1] IN-SOFTIRQ-W at: [ 58.120741][ C1] lock_acquire+0x1e4/0x530 [ 58.120756][ C1] _raw_spin_lock_bh+0x35/0x50 [ 58.120775][ C1] sock_hash_delete_elem+0xb0/0x300 [ 58.120791][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 58.120808][ C1] bpf_trace_run3+0x238/0x460 [ 58.120825][ C1] __queue_work+0xe5b/0xec0 [ 58.120843][ C1] call_timer_fn+0x17e/0x600 [ 58.120860][ C1] __run_timer_base+0x695/0x8e0 [ 58.120874][ C1] run_timer_softirq+0xb7/0x170 [ 58.120889][ C1] __do_softirq+0x2bc/0x943 [ 58.120916][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 58.120931][ C1] irq_exit_rcu+0x9/0x30 [ 58.120946][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 58.120964][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 58.121005][ C1] acpi_safe_halt+0x21/0x30 [ 58.121028][ C1] acpi_idle_enter+0xe4/0x140 [ 58.121050][ C1] cpuidle_enter_state+0x118/0x490 [ 58.121071][ C1] cpuidle_enter+0x5d/0xa0 [ 58.121092][ C1] do_idle+0x375/0x5d0 [ 58.121108][ C1] cpu_startup_entry+0x42/0x60 [ 58.121125][ C1] __pfx_ap_starting+0x0/0x10 [ 58.121145][ C1] common_startup_64+0x13e/0x147 [ 58.121163][ C1] INITIAL USE at: [ 58.121171][ C1] lock_acquire+0x1e4/0x530 [ 58.121186][ C1] _raw_spin_lock_bh+0x35/0x50 [ 58.121204][ C1] sock_hash_free+0x164/0x820 [ 58.121220][ C1] bpf_map_free_deferred+0xe6/0x110 [ 58.121236][ C1] process_scheduled_works+0xa00/0x1770 [ 58.121252][ C1] worker_thread+0x86d/0xd70 [ 58.121269][ C1] kthread+0x2f0/0x390 [ 58.121287][ C1] ret_from_fork+0x4b/0x80 [ 58.121310][ C1] ret_from_fork_asm+0x1a/0x30 [ 58.121333][ C1] } [ 58.121337][ C1] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 58.121358][ C1] ... acquired at: [ 58.121363][ C1] lock_acquire+0x1e4/0x530 [ 58.121377][ C1] _raw_spin_lock_bh+0x35/0x50 [ 58.121395][ C1] sock_hash_delete_elem+0xb0/0x300 [ 58.121409][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 58.121424][ C1] bpf_trace_run3+0x238/0x460 [ 58.121441][ C1] __queue_work+0xe5b/0xec0 [ 58.121457][ C1] call_timer_fn+0x17e/0x600 [ 58.121474][ C1] __run_timer_base+0x695/0x8e0 [ 58.121487][ C1] run_timer_softirq+0xb7/0x170 [ 58.121502][ C1] __do_softirq+0x2bc/0x943 [ 58.121522][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 58.121537][ C1] irq_exit_rcu+0x9/0x30 [ 58.121551][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 58.121568][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 58.121593][ C1] acpi_safe_halt+0x21/0x30 [ 58.121614][ C1] acpi_idle_enter+0xe4/0x140 [ 58.121635][ C1] cpuidle_enter_state+0x118/0x490 [ 58.121656][ C1] cpuidle_enter+0x5d/0xa0 [ 58.121676][ C1] do_idle+0x375/0x5d0 [ 58.121691][ C1] cpu_startup_entry+0x42/0x60 [ 58.121707][ C1] __pfx_ap_starting+0x0/0x10 [ 58.121726][ C1] common_startup_64+0x13e/0x147 [ 58.121744][ C1] [ 58.121746][ C1] [ 58.121746][ C1] stack backtrace: [ 58.121751][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.8.0-syzkaller-05212-g4c8644f86c85 #0 [ 58.121768][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 58.121777][ C1] Call Trace: [ 58.121783][ C1] [ 58.121788][ C1] dump_stack_lvl+0x1e7/0x2e0 [ 58.121811][ C1] ? __pfx_dump_stack_lvl+0x10/0x10 [ 58.121833][ C1] ? __pfx__printk+0x10/0x10 [ 58.121855][ C1] ? print_shortest_lock_dependencies+0xf2/0x160 [ 58.121884][ C1] validate_chain+0x4dc7/0x58e0 [ 58.121922][ C1] ? __pfx_validate_chain+0x10/0x10 [ 58.121947][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 58.121977][ C1] ? lockdep_unlock+0x16a/0x300 [ 58.122008][ C1] ? mark_lock+0x9a/0x350 [ 58.122029][ C1] __lock_acquire+0x1346/0x1fd0 [ 58.122054][ C1] lock_acquire+0x1e4/0x530 [ 58.122070][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 58.122093][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 58.122113][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 58.122131][ C1] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 58.122149][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 58.122168][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 58.122187][ C1] _raw_spin_lock_bh+0x35/0x50 [ 58.122206][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 58.122224][ C1] sock_hash_delete_elem+0xb0/0x300 [ 58.122246][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 58.122264][ C1] bpf_trace_run3+0x238/0x460 [ 58.122282][ C1] ? bpf_trace_run3+0x14a/0x460 [ 58.122301][ C1] ? __pfx_bpf_trace_run3+0x10/0x10 [ 58.122327][ C1] __queue_work+0xe5b/0xec0 [ 58.122346][ C1] ? __queue_work+0x198/0xec0 [ 58.122369][ C1] call_timer_fn+0x17e/0x600 [ 58.122388][ C1] ? call_timer_fn+0xc0/0x600 [ 58.122405][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 58.122425][ C1] ? __pfx_call_timer_fn+0x10/0x10 [ 58.122445][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 58.122465][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 58.122489][ C1] ? rcu_is_watching+0x15/0xb0 [ 58.122506][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 58.122526][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 58.122547][ C1] __run_timer_base+0x695/0x8e0 [ 58.122568][ C1] ? __pfx___run_timer_base+0x10/0x10 [ 58.122587][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 58.122604][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 58.122632][ C1] run_timer_softirq+0xb7/0x170 [ 58.122648][ C1] __do_softirq+0x2bc/0x943 [ 58.122673][ C1] ? __irq_exit_rcu+0xf2/0x1c0 [ 58.122692][ C1] ? __pfx___do_softirq+0x10/0x10 [ 58.122717][ C1] ? irqtime_account_irq+0xd4/0x1e0 [ 58.122741][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 58.122758][ C1] ? __pfx___irq_exit_rcu+0x10/0x10 [ 58.122780][ C1] irq_exit_rcu+0x9/0x30 [ 58.122795][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 58.122815][ C1] [ 58.122820][ C1] [ 58.122825][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 58.122852][ C1] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 58.122876][ C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 58.122890][ C1] RSP: 0018:ffffc90000197d08 EFLAGS: 00000246 [ 58.122904][ C1] RAX: ffff8880172c5a00 RBX: ffff88801aedb864 RCX: 0000000000015279 [ 58.122922][ C1] RDX: 0000000000000001 RSI: ffff88801aedb800 RDI: ffff88801aedb864 [ 58.122934][ C1] RBP: 0000000000039f18 R08: ffff8880b9537d0b R09: 1ffff110172a6fa1 [ 58.122947][ C1] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff888015fa6800 [ 58.122960][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2e80 [ 58.122973][ C1] ? __pfx_acpi_idle_enter+0x10/0x10 [ 58.123002][ C1] acpi_idle_enter+0xe4/0x140 [ 58.123028][ C1] cpuidle_enter_state+0x118/0x490 [ 58.123050][ C1] ? __pfx_menu_select+0x10/0x10 [ 58.123069][ C1] cpuidle_enter+0x5d/0xa0 [ 58.123094][ C1] do_idle+0x375/0x5d0 [ 58.123111][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 58.123132][ C1] ? __pfx_do_idle+0x10/0x10 [ 58.123150][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 58.123175][ C1] ? complete+0xb4/0x1c0 [ 58.123201][ C1] cpu_startup_entry+0x42/0x60 [ 58.123219][ C1] start_secondary+0x100/0x100 [ 58.123240][ C1] common_startup_64+0x13e/0x147 [ 58.123266][ C1] [ 58.123363][ C0] Kernel Offset: disabled [ 59.734862][ C0] Rebooting in 86400 seconds..