./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2537480352 <...> Warning: Permanently added '10.128.0.23' (ED25519) to the list of known hosts. execve("./syz-executor2537480352", ["./syz-executor2537480352"], 0x7fffb7b26f40 /* 10 vars */) = 0 brk(NULL) = 0x55557f87f000 brk(0x55557f87fd00) = 0x55557f87fd00 arch_prctl(ARCH_SET_FS, 0x55557f87f380) = 0 set_tid_address(0x55557f87f650) = 5074 set_robust_list(0x55557f87f660, 24) = 0 rseq(0x55557f87fca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2537480352", 4096) = 28 getrandom("\xb6\xb0\xe0\x80\x0f\x6c\xd8\xdd", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557f87fd00 brk(0x55557f8a0d00) = 0x55557f8a0d00 brk(0x55557f8a1000) = 0x55557f8a1000 mprotect(0x7f326e4d5000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5075 attached , child_tidptr=0x55557f87f650) = 5075 [pid 5075] set_robust_list(0x55557f87f660, 24) = 0 [pid 5075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5075] setpgid(0, 0) = 0 [pid 5075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "1000", 4) = 4 [pid 5075] close(3) = 0 [pid 5075] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5075] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5075] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5075] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5075] exit_group(0) = ? [pid 5075] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5075, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5076 attached [pid 5076] set_robust_list(0x55557f87f660, 24 [pid 5074] <... clone resumed>, child_tidptr=0x55557f87f650) = 5076 [pid 5076] <... set_robust_list resumed>) = 0 [pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5076] setpgid(0, 0) = 0 [pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5076] write(3, "1000", 4) = 4 [pid 5076] close(3) = 0 [pid 5076] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5076] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5076] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5076] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5076] exit_group(0) = ? [pid 5076] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5076, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5077 attached [pid 5077] set_robust_list(0x55557f87f660, 24) = 0 [pid 5074] <... clone resumed>, child_tidptr=0x55557f87f650) = 5077 [pid 5077] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5077] setpgid(0, 0) = 0 [pid 5077] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5077] write(3, "1000", 4) = 4 [pid 5077] close(3) = 0 [pid 5077] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5077] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5077] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5077] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5077] exit_group(0) = ? [pid 5077] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5077, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5078 attached , child_tidptr=0x55557f87f650) = 5078 [pid 5078] set_robust_list(0x55557f87f660, 24) = 0 [pid 5078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5078] setpgid(0, 0) = 0 [pid 5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5078] write(3, "1000", 4) = 4 [pid 5078] close(3) = 0 [pid 5078] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5078] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5078] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5078] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5078] exit_group(0) = ? [pid 5078] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5078, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5079 attached , child_tidptr=0x55557f87f650) = 5079 [pid 5079] set_robust_list(0x55557f87f660, 24) = 0 [pid 5079] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5079] setpgid(0, 0) = 0 [pid 5079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5079] write(3, "1000", 4) = 4 [pid 5079] close(3) = 0 [pid 5079] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5079] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5079] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5079] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5079] exit_group(0) = ? [pid 5079] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5079, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f87f650) = 5080 ./strace-static-x86_64: Process 5080 attached [pid 5080] set_robust_list(0x55557f87f660, 24) = 0 [pid 5080] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5080] setpgid(0, 0) = 0 [pid 5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5080] write(3, "1000", 4) = 4 [pid 5080] close(3) = 0 [pid 5080] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5080] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5080] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5080] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5080] exit_group(0) = ? [pid 5080] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5080, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5081 attached , child_tidptr=0x55557f87f650) = 5081 [pid 5081] set_robust_list(0x55557f87f660, 24) = 0 [pid 5081] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5081] setpgid(0, 0) = 0 [pid 5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5081] write(3, "1000", 4) = 4 [pid 5081] close(3) = 0 [pid 5081] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5081] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5081] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5081] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5081] exit_group(0) = ? [pid 5081] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5081, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5082 attached , child_tidptr=0x55557f87f650) = 5082 [pid 5082] set_robust_list(0x55557f87f660, 24) = 0 [pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5082] setpgid(0, 0) = 0 [pid 5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "1000", 4) = 4 [pid 5082] close(3) = 0 [pid 5082] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5082] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5082] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5082] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5082] exit_group(0) = ? [pid 5082] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5082, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f87f650) = 5083 ./strace-static-x86_64: Process 5083 attached [pid 5083] set_robust_list(0x55557f87f660, 24) = 0 [pid 5083] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5083] setpgid(0, 0) = 0 [pid 5083] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5083] write(3, "1000", 4) = 4 [pid 5083] close(3) = 0 [pid 5083] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5083] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5083] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5083] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5083] exit_group(0) = ? [pid 5083] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5083, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5084 attached , child_tidptr=0x55557f87f650) = 5084 [pid 5084] set_robust_list(0x55557f87f660, 24) = 0 [pid 5084] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5084] setpgid(0, 0) = 0 [pid 5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5084] write(3, "1000", 4) = 4 [pid 5084] close(3) = 0 [pid 5084] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5084] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5084] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5084] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5084] exit_group(0) = ? [pid 5084] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5084, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5085 attached , child_tidptr=0x55557f87f650) = 5085 [pid 5085] set_robust_list(0x55557f87f660, 24) = 0 [pid 5085] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5085] setpgid(0, 0) = 0 [pid 5085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5085] write(3, "1000", 4) = 4 [pid 5085] close(3) = 0 [pid 5085] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5085] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5085] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5085] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5085] exit_group(0) = ? [pid 5085] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5085, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5086 attached , child_tidptr=0x55557f87f650) = 5086 [pid 5086] set_robust_list(0x55557f87f660, 24) = 0 [pid 5086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5086] setpgid(0, 0) = 0 [pid 5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5086] write(3, "1000", 4) = 4 [pid 5086] close(3) = 0 [pid 5086] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5086] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5086] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5086] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [pid 5086] exit_group(0) = ? [pid 5086] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5086, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5087 attached , child_tidptr=0x55557f87f650) = 5087 [pid 5087] set_robust_list(0x55557f87f660, 24) = 0 [pid 5087] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5087] setpgid(0, 0) = 0 [pid 5087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5087] write(3, "1000", 4) = 4 [pid 5087] close(3) = 0 [pid 5087] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=128, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5087] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_RINGBUF, key_size=0, value_size=0, max_entries=32768, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 4 [pid 5087] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=21, insns=0x20000000, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 5 [pid 5087] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_kthread_work_queue_work", prog_fd=5}}, 16) = 6 [ 71.595220][ T1142] ------------[ cut here ]------------ [ 71.595357][ T1142] [ 71.595361][ T1142] ====================================================== [ 71.595365][ T1142] WARNING: possible circular locking dependency detected [ 71.595369][ T1142] 6.8.0-syzkaller-05236-g443574b03387 #0 Not tainted [ 71.595376][ T1142] ------------------------------------------------------ [ 71.595380][ T1142] kworker/u8:5/1142 is trying to acquire lock: [ 71.595386][ T1142] ffffffff8e125be0 (console_owner){....}-{0:0}, at: console_flush_all+0x14a/0xec0 [ 71.595447][ T1142] [ 71.595447][ T1142] but task is already holding lock: [ 71.595451][ T1142] ffff888016eb6120 ((worker)->lock){....}-{2:2}, at: kthread_queue_work+0x27/0x180 [ 71.595482][ T1142] [ 71.595482][ T1142] which lock already depends on the new lock. [ 71.595482][ T1142] [ 71.595486][ T1142] [ 71.595486][ T1142] the existing dependency chain (in reverse order) is: [ 71.595490][ T1142] [ 71.595490][ T1142] -> #4 ((worker)->lock){....}-{2:2}: [ 71.595506][ T1142] lock_acquire+0x1e4/0x530 [ 71.595518][ T1142] _raw_spin_lock_irqsave+0xd5/0x120 [ 71.595537][ T1142] kthread_queue_work+0x27/0x180 [ 71.595551][ T1142] put_pwq_unlocked+0x12a/0x190 [ 71.595568][ T1142] apply_workqueue_attrs_locked+0x132/0x210 [ 71.595585][ T1142] apply_workqueue_attrs+0x30/0x50 [ 71.595601][ T1142] padata_alloc+0x22b/0x370 [ 71.595637][ T1142] pcrypt_init_padata+0x27/0x100 [ 71.595658][ T1142] pcrypt_init+0x65/0xe0 [ 71.595672][ T1142] do_one_initcall+0x238/0x830 [ 71.595690][ T1142] do_initcall_level+0x157/0x210 [ 71.595704][ T1142] do_initcalls+0x3f/0x80 [ 71.595716][ T1142] kernel_init_freeable+0x435/0x5d0 [ 71.595728][ T1142] kernel_init+0x1d/0x2a0 [ 71.595750][ T1142] ret_from_fork+0x4b/0x80 [ 71.595770][ T1142] ret_from_fork_asm+0x1a/0x30 [ 71.595788][ T1142] [ 71.595788][ T1142] -> #3 (&pool->lock){-.-.}-{2:2}: [ 71.595805][ T1142] lock_acquire+0x1e4/0x530 [ 71.595817][ T1142] _raw_spin_lock+0x2e/0x40 [ 71.595830][ T1142] __queue_work+0x6ec/0xec0 [ 71.595844][ T1142] queue_work_on+0x14f/0x250 [ 71.595857][ T1142] rpm_suspend+0x11bd/0x1c10 [ 71.595877][ T1142] __pm_runtime_idle+0x131/0x1a0 [ 71.595893][ T1142] __device_attach+0x3e5/0x520 [ 71.595912][ T1142] bus_probe_device+0x189/0x260 [ 71.595927][ T1142] device_add+0x8ff/0xca0 [ 71.595944][ T1142] serial_base_port_add+0x2b6/0x3f0 [ 71.595959][ T1142] serial_core_register_port+0x393/0x1e30 [ 71.595978][ T1142] serial8250_register_8250_port+0x1433/0x1cd0 [ 71.595996][ T1142] serial_pnp_probe+0x7d5/0xa20 [ 71.596014][ T1142] pnp_device_probe+0x2ba/0x460 [ 71.596031][ T1142] really_probe+0x29e/0xc50 [ 71.596077][ T1142] __driver_probe_device+0x1a2/0x3e0 [ 71.596096][ T1142] driver_probe_device+0x50/0x430 [ 71.596116][ T1142] __driver_attach+0x45f/0x710 [ 71.596135][ T1142] bus_for_each_dev+0x239/0x2b0 [ 71.596149][ T1142] bus_add_driver+0x347/0x620 [ 71.596164][ T1142] driver_register+0x23a/0x320 [ 71.596176][ T1142] serial8250_init+0x9e/0x170 [ 71.596195][ T1142] do_one_initcall+0x238/0x830 [ 71.596212][ T1142] do_initcall_level+0x157/0x210 [ 71.596225][ T1142] do_initcalls+0x3f/0x80 [ 71.596237][ T1142] kernel_init_freeable+0x435/0x5d0 [ 71.596250][ T1142] kernel_init+0x1d/0x2a0 [ 71.596268][ T1142] ret_from_fork+0x4b/0x80 [ 71.596287][ T1142] ret_from_fork_asm+0x1a/0x30 [ 71.596305][ T1142] [ 71.596305][ T1142] -> #2 (&dev->power.lock){-...}-{2:2}: [ 71.596322][ T1142] lock_acquire+0x1e4/0x530 [ 71.596334][ T1142] _raw_spin_lock_irqsave+0xd5/0x120 [ 71.596349][ T1142] __pm_runtime_resume+0x112/0x180 [ 71.596365][ T1142] __uart_start+0x17a/0x3c0 [ 71.596383][ T1142] uart_write+0x427/0x5c0 [ 71.596402][ T1142] n_tty_write+0xd6a/0x1230 [ 71.596416][ T1142] file_tty_write+0x54f/0x9b0 [ 71.596435][ T1142] vfs_write+0xa84/0xcb0 [ 71.596448][ T1142] ksys_write+0x1a0/0x2c0 [ 71.596462][ T1142] do_syscall_64+0xfb/0x240 [ 71.596478][ T1142] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 71.596498][ T1142] [ 71.596498][ T1142] -> #1 (&port_lock_key){-.-.}-{2:2}: [ 71.596515][ T1142] lock_acquire+0x1e4/0x530 [ 71.596526][ T1142] _raw_spin_lock_irqsave+0xd5/0x120 [ 71.596541][ T1142] serial8250_console_write+0x1a8/0x1840 [ 71.596553][ T1142] console_flush_all+0x80b/0xec0 [ 71.596571][ T1142] console_unlock+0x13b/0x4d0 [ 71.596586][ T1142] vprintk_emit+0x509/0x720 [ 71.596601][ T1142] _printk+0xd5/0x120 [ 71.596614][ T1142] register_console+0x70a/0xcd0 [ 71.596632][ T1142] univ8250_console_init+0x49/0x50 [ 71.596651][ T1142] console_init+0x198/0x680 [ 71.596663][ T1142] start_kernel+0x2d3/0x500 [ 71.596674][ T1142] x86_64_start_reservations+0x2a/0x30 [ 71.596690][ T1142] x86_64_start_kernel+0x99/0xa0 [ 71.596706][ T1142] common_startup_64+0x13e/0x147 [ 71.596720][ T1142] [ 71.596720][ T1142] -> #0 (console_owner){....}-{0:0}: [ 71.596737][ T1142] validate_chain+0x18cb/0x58e0 [ 71.596758][ T1142] __lock_acquire+0x1346/0x1fd0 [ 71.596770][ T1142] lock_acquire+0x1e4/0x530 [ 71.596785][ T1142] console_flush_all+0x7ba/0xec0 [ 71.596802][ T1142] console_unlock+0x13b/0x4d0 [ 71.596817][ T1142] vprintk_emit+0x509/0x720 [ 71.596832][ T1142] _printk+0xd5/0x120 [ 71.596845][ T1142] report_bug+0x346/0x500 [ 71.596865][ T1142] handle_bug+0x3e/0x70 [ 71.596881][ T1142] exc_invalid_op+0x1a/0x50 [ 71.596898][ T1142] asm_exc_invalid_op+0x1a/0x20 [ 71.596917][ T1142] __local_bh_enable_ip+0x1be/0x200 [ 71.596929][ T1142] sock_map_delete_elem+0xca/0x140 [ 71.596943][ T1142] bpf_prog_d247abf228e51871+0x69/0x6d [ 71.596955][ T1142] bpf_trace_run2+0x204/0x420 [ 71.596969][ T1142] kthread_insert_work+0x3f4/0x460 [ 71.596984][ T1142] kthread_queue_work+0xff/0x180 [ 71.596998][ T1142] synchronize_rcu_expedited+0x593/0x820 [ 71.597013][ T1142] synchronize_rcu+0x136/0x3e0 [ 71.597026][ T1142] sock_map_free+0x29/0x3e0 [ 71.597037][ T1142] bpf_map_free_deferred+0xe6/0x110 [ 71.597055][ T1142] process_scheduled_works+0xa00/0x1770 [ 71.597067][ T1142] worker_thread+0x86d/0xd70 [ 71.597080][ T1142] kthread+0x2f0/0x390 [ 71.597095][ T1142] ret_from_fork+0x4b/0x80 [ 71.597114][ T1142] ret_from_fork_asm+0x1a/0x30 [ 71.597132][ T1142] [ 71.597132][ T1142] other info that might help us debug this: [ 71.597132][ T1142] [ 71.597136][ T1142] Chain exists of: [ 71.597136][ T1142] console_owner --> &pool->lock --> (worker)->lock [ 71.597136][ T1142] [ 71.597155][ T1142] Possible unsafe locking scenario: [ 71.597155][ T1142] [ 71.597159][ T1142] CPU0 CPU1 [ 71.597162][ T1142] ---- ---- [ 71.597165][ T1142] lock((worker)->lock); [ 71.597172][ T1142] lock(&pool->lock); [ 71.597181][ T1142] lock((worker)->lock); [ 71.597190][ T1142] lock(console_owner); [ 71.597197][ T1142] [ 71.597197][ T1142] *** DEADLOCK *** [ 71.597197][ T1142] [ 71.597200][ T1142] 7 locks held by kworker/u8:5/1142: [ 71.597207][ T1142] #0: ffff888014c81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x8e0/0x1770 [ 71.597240][ T1142] #1: ffffc90005077d00 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_scheduled_works+0x91b/0x1770 [ 71.597271][ T1142] #2: ffffffff8e136cb8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x39a/0x820 [ 71.597305][ T1142] #3: ffff888016eb6120 ((worker)->lock){....}-{2:2}, at: kthread_queue_work+0x27/0x180 [ 71.597338][ T1142] #4: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420 [ 71.597371][ T1142] #5: ffffffff8e00d500 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120 [ 71.597403][ T1142] #6: ffffffff8e00d130 (console_srcu){....}-{0:0}, at: console_flush_all+0x14a/0xec0 [ 71.597439][ T1142] [ 71.597439][ T1142] stack backtrace: [ 71.597443][ T1142] CPU: 0 PID: 1142 Comm: kworker/u8:5 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 71.597456][ T1142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 71.597465][ T1142] Workqueue: events_unbound bpf_map_free_deferred [ 71.597480][ T1142] Call Trace: [ 71.597485][ T1142] [ 71.597490][ T1142] dump_stack_lvl+0x1e7/0x2e0 [ 71.597509][ T1142] ? __pfx_dump_stack_lvl+0x10/0x10 [ 71.597533][ T1142] ? print_circular_bug+0x130/0x1a0 [ 71.597553][ T1142] check_noncircular+0x36a/0x4a0 [ 71.597573][ T1142] ? __pfx_check_noncircular+0x10/0x10 [ 71.597592][ T1142] ? lockdep_lock+0x123/0x2b0 [ 71.597615][ T1142] ? add_lock_to_list+0x1de/0x2e0 [ 71.597636][ T1142] validate_chain+0x18cb/0x58e0 [ 71.597663][ T1142] ? __pfx_validate_chain+0x10/0x10 [ 71.597682][ T1142] ? sprintf+0xda/0x120 [ 71.597703][ T1142] ? vsnprintf+0x1cc3/0x1da0 [ 71.597730][ T1142] ? info_print_prefix+0x204/0x310 [ 71.597754][ T1142] ? mark_lock+0x9a/0x350 [ 71.597771][ T1142] __lock_acquire+0x1346/0x1fd0 [ 71.597792][ T1142] lock_acquire+0x1e4/0x530 [ 71.597805][ T1142] ? console_flush_all+0x14a/0xec0 [ 71.597827][ T1142] ? __pfx_lock_acquire+0x10/0x10 [ 71.597840][ T1142] ? __pfx_lock_release+0x10/0x10 [ 71.597853][ T1142] ? do_raw_spin_lock+0x14f/0x370 [ 71.597876][ T1142] ? do_raw_spin_unlock+0x13c/0x8b0 [ 71.597896][ T1142] ? console_flush_all+0x3d0/0xec0 [ 71.597915][ T1142] ? console_flush_all+0x14a/0xec0 [ 71.597934][ T1142] console_flush_all+0x7ba/0xec0 [ 71.597952][ T1142] ? console_flush_all+0x14a/0xec0 [ 71.597972][ T1142] ? console_flush_all+0x14a/0xec0 [ 71.597996][ T1142] ? __pfx_console_flush_all+0x10/0x10 [ 71.598016][ T1142] ? __pfx_lock_acquire+0x10/0x10 [ 71.598031][ T1142] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 71.598055][ T1142] ? validate_chain+0x15a2/0x58e0 [ 71.598073][ T1142] console_unlock+0x13b/0x4d0 [ 71.598093][ T1142] ? __pfx_console_unlock+0x10/0x10 [ 71.598109][ T1142] ? _printk+0xd5/0x120 [ 71.598124][ T1142] ? _printk+0xd5/0x120 [ 71.598138][ T1142] ? __pfx___down_trylock_console_sem+0x10/0x10 [ 71.598160][ T1142] ? __pfx_validate_chain+0x10/0x10 [ 71.598180][ T1142] vprintk_emit+0x509/0x720 [ 71.598198][ T1142] ? __pfx_vprintk_emit+0x10/0x10 [ 71.598218][ T1142] ? lockdep_unlock+0x16a/0x300 [ 71.598242][ T1142] _printk+0xd5/0x120 [ 71.598258][ T1142] ? report_bug+0x25e/0x500 [ 71.598279][ T1142] ? __pfx__printk+0x10/0x10 [ 71.598295][ T1142] ? __lock_acquire+0x1346/0x1fd0 [ 71.598309][ T1142] ? find_bug+0xa3/0x390 [ 71.598328][ T1142] ? __local_bh_enable_ip+0x1be/0x200 [ 71.598344][ T1142] report_bug+0x346/0x500 [ 71.598363][ T1142] ? __local_bh_enable_ip+0x1be/0x200 [ 71.598379][ T1142] handle_bug+0x3e/0x70 [ 71.598397][ T1142] exc_invalid_op+0x1a/0x50 [ 71.598416][ T1142] asm_exc_invalid_op+0x1a/0x20 [ 71.598436][ T1142] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 71.598451][ T1142] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 71.598466][ T1142] RSP: 0018:ffffc900050774a0 EFLAGS: 00010046 [ 71.598477][ T1142] RAX: 0000000000000000 RBX: 1ffff92000a0ee98 RCX: 0000000000000000 [ 71.598486][ T1142] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a [ 71.598495][ T1142] RBP: ffffc90005077560 R08: ffff88802d67e9eb R09: 1ffff11005acfd3d [ 71.598505][ T1142] R10: dffffc0000000000 R11: ffffed1005acfd3e R12: dffffc0000000000 [ 71.598515][ T1142] R13: ffff88802d678000 R14: ffffc900050774e0 R15: 0000000000000201 [ 71.598531][ T1142] ? sock_map_delete_elem+0xca/0x140 [ 71.598548][ T1142] ? sock_map_delete_elem+0xca/0x140 [ 71.598561][ T1142] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 71.598575][ T1142] ? sock_map_delete_elem+0xca/0x140 [ 71.598588][ T1142] ? do_raw_spin_unlock+0x13c/0x8b0 [ 71.598609][ T1142] ? arch_irq_work_raise+0x6f/0x80 [ 71.598627][ T1142] ? sock_map_delete_elem+0x97/0x140 [ 71.598643][ T1142] sock_map_delete_elem+0xca/0x140 [ 71.598658][ T1142] bpf_prog_d247abf228e51871+0x69/0x6d [ 71.598672][ T1142] bpf_trace_run2+0x204/0x420 [ 71.598687][ T1142] ? bpf_trace_run2+0x114/0x420 [ 71.598702][ T1142] ? __pfx_bpf_trace_run2+0x10/0x10 [ 71.598722][ T1142] kthread_insert_work+0x3f4/0x460 [ 71.598741][ T1142] kthread_queue_work+0xff/0x180 [ 71.598763][ T1142] synchronize_rcu_expedited+0x593/0x820 [ 71.598781][ T1142] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 71.598797][ T1142] ? __pfx_validate_chain+0x10/0x10 [ 71.598814][ T1142] ? mark_lock+0x9a/0x350 [ 71.598830][ T1142] ? __lock_acquire+0x1346/0x1fd0 [ 71.598846][ T1142] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 71.598867][ T1142] ? __pfx___might_resched+0x10/0x10 [ 71.598891][ T1142] synchronize_rcu+0x136/0x3e0 [ 71.598906][ T1142] ? __pfx_synchronize_rcu+0x10/0x10 [ 71.598930][ T1142] ? __pfx_lock_acquire+0x10/0x10 [ 71.598944][ T1142] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 71.598960][ T1142] sock_map_free+0x29/0x3e0 [ 71.598976][ T1142] bpf_map_free_deferred+0xe6/0x110 [ 71.598991][ T1142] ? process_scheduled_works+0x91b/0x1770 [ 71.599004][ T1142] process_scheduled_works+0xa00/0x1770 [ 71.599029][ T1142] ? __pfx_process_scheduled_works+0x10/0x10 [ 71.599052][ T1142] ? assign_work+0x364/0x3d0 [ 71.599067][ T1142] worker_thread+0x86d/0xd70 [ 71.599085][ T1142] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 71.599103][ T1142] ? __kthread_parkme+0x169/0x1d0 [ 71.599120][ T1142] ? __pfx_worker_thread+0x10/0x10 [ 71.599134][ T1142] kthread+0x2f0/0x390 [ 71.599150][ T1142] ? __pfx_worker_thread+0x10/0x10 [ 71.599164][ T1142] ? __pfx_kthread+0x10/0x10 [ 71.599181][ T1142] ret_from_fork+0x4b/0x80 [ 71.599201][ T1142] ? __pfx_kthread+0x10/0x10 [ 71.599217][ T1142] ret_from_fork_asm+0x1a/0x30 [ 71.599243][ T1142] [ 72.946475][ T1142] WARNING: CPU: 0 PID: 1142 at kernel/softirq.c:362 __local_bh_enable_ip+0x1be/0x200 [ 72.955954][ T1142] Modules linked in: [ 72.959851][ T1142] CPU: 0 PID: 1142 Comm: kworker/u8:5 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 72.969670][ T1142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 72.979812][ T1142] Workqueue: events_unbound bpf_map_free_deferred [ 72.986515][ T1142] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 72.992498][ T1142] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 73.012106][ T1142] RSP: 0018:ffffc900050774a0 EFLAGS: 00010046 [ 73.018202][ T1142] RAX: 0000000000000000 RBX: 1ffff92000a0ee98 RCX: 0000000000000000 [ 73.026172][ T1142] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a [ 73.034145][ T1142] RBP: ffffc90005077560 R08: ffff88802d67e9eb R09: 1ffff11005acfd3d [ 73.042124][ T1142] R10: dffffc0000000000 R11: ffffed1005acfd3e R12: dffffc0000000000 [ 73.050134][ T1142] R13: ffff88802d678000 R14: ffffc900050774e0 R15: 0000000000000201 [ 73.058112][ T1142] FS: 0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 73.067139][ T1142] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.073744][ T1142] CR2: 000055557f87f650 CR3: 000000000df32000 CR4: 00000000003506f0 [ 73.081805][ T1142] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 73.089874][ T1142] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 73.097849][ T1142] Call Trace: [ 73.101130][ T1142] [ 73.104063][ T1142] ? __warn+0x163/0x4b0 [ 73.108244][ T1142] ? __local_bh_enable_ip+0x1be/0x200 [ 73.113624][ T1142] ? report_bug+0x2b3/0x500 [ 73.118226][ T1142] ? __local_bh_enable_ip+0x1be/0x200 [ 73.123615][ T1142] ? handle_bug+0x3e/0x70 [ 73.127960][ T1142] ? exc_invalid_op+0x1a/0x50 [ 73.132735][ T1142] ? asm_exc_invalid_op+0x1a/0x20 [ 73.137775][ T1142] ? sock_map_delete_elem+0xca/0x140 [ 73.143067][ T1142] ? __local_bh_enable_ip+0x1be/0x200 [ 73.148444][ T1142] ? sock_map_delete_elem+0xca/0x140 [ 73.153731][ T1142] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 73.159453][ T1142] ? sock_map_delete_elem+0xca/0x140 [ 73.164830][ T1142] ? do_raw_spin_unlock+0x13c/0x8b0 [ 73.170038][ T1142] ? arch_irq_work_raise+0x6f/0x80 [ 73.175157][ T1142] ? sock_map_delete_elem+0x97/0x140 [ 73.180449][ T1142] sock_map_delete_elem+0xca/0x140 [ 73.185566][ T1142] bpf_prog_d247abf228e51871+0x69/0x6d [ 73.191032][ T1142] bpf_trace_run2+0x204/0x420 [ 73.195716][ T1142] ? bpf_trace_run2+0x114/0x420 [ 73.200570][ T1142] ? __pfx_bpf_trace_run2+0x10/0x10 [ 73.205802][ T1142] kthread_insert_work+0x3f4/0x460 [ 73.210987][ T1142] kthread_queue_work+0xff/0x180 [ 73.215931][ T1142] synchronize_rcu_expedited+0x593/0x820 [ 73.221573][ T1142] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 73.227737][ T1142] ? __pfx_validate_chain+0x10/0x10 [ 73.232957][ T1142] ? mark_lock+0x9a/0x350 [ 73.237294][ T1142] ? __lock_acquire+0x1346/0x1fd0 [ 73.242504][ T1142] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 73.247893][ T1142] ? __pfx___might_resched+0x10/0x10 [ 73.253478][ T1142] synchronize_rcu+0x136/0x3e0 [ 73.258511][ T1142] ? __pfx_synchronize_rcu+0x10/0x10 [ 73.263816][ T1142] ? __pfx_lock_acquire+0x10/0x10 [ 73.268902][ T1142] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 73.274926][ T1142] sock_map_free+0x29/0x3e0 [ 73.279455][ T1142] bpf_map_free_deferred+0xe6/0x110 [ 73.284678][ T1142] ? process_scheduled_works+0x91b/0x1770 [ 73.290429][ T1142] process_scheduled_works+0xa00/0x1770 [ 73.296122][ T1142] ? __pfx_process_scheduled_works+0x10/0x10 [ 73.302128][ T1142] ? assign_work+0x364/0x3d0 [ 73.306758][ T1142] worker_thread+0x86d/0xd70 [ 73.311439][ T1142] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 73.317358][ T1142] ? __kthread_parkme+0x169/0x1d0 [ 73.322404][ T1142] ? __pfx_worker_thread+0x10/0x10 [ 73.327527][ T1142] kthread+0x2f0/0x390 [ 73.331607][ T1142] ? __pfx_worker_thread+0x10/0x10 [ 73.336728][ T1142] ? __pfx_kthread+0x10/0x10 [ 73.341329][ T1142] ret_from_fork+0x4b/0x80 [ 73.345759][ T1142] ? __pfx_kthread+0x10/0x10 [ 73.350356][ T1142] ret_from_fork_asm+0x1a/0x30 [ 73.355143][ T1142] [ 73.358191][ T1142] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 73.365556][ T1142] CPU: 0 PID: 1142 Comm: kworker/u8:5 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 73.375361][ T1142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 73.385505][ T1142] Workqueue: events_unbound bpf_map_free_deferred [ 73.391954][ T1142] Call Trace: [ 73.395248][ T1142] [ 73.398184][ T1142] dump_stack_lvl+0x1e7/0x2e0 [ 73.402882][ T1142] ? __pfx_dump_stack_lvl+0x10/0x10 [ 73.408105][ T1142] ? __pfx__printk+0x10/0x10 [ 73.412709][ T1142] ? vscnprintf+0x5d/0x90 [ 73.417055][ T1142] panic+0x349/0x860 [ 73.420975][ T1142] ? __warn+0x172/0x4b0 [ 73.425142][ T1142] ? __pfx_panic+0x10/0x10 [ 73.429573][ T1142] ? ret_from_fork_asm+0x1a/0x30 [ 73.434527][ T1142] __warn+0x31e/0x4b0 [ 73.438527][ T1142] ? __local_bh_enable_ip+0x1be/0x200 [ 73.443912][ T1142] report_bug+0x2b3/0x500 [ 73.448254][ T1142] ? __local_bh_enable_ip+0x1be/0x200 [ 73.453637][ T1142] handle_bug+0x3e/0x70 [ 73.457819][ T1142] exc_invalid_op+0x1a/0x50 [ 73.462337][ T1142] asm_exc_invalid_op+0x1a/0x20 [ 73.467207][ T1142] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 73.473195][ T1142] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 73.492808][ T1142] RSP: 0018:ffffc900050774a0 EFLAGS: 00010046 [ 73.498884][ T1142] RAX: 0000000000000000 RBX: 1ffff92000a0ee98 RCX: 0000000000000000 [ 73.507031][ T1142] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a [ 73.515005][ T1142] RBP: ffffc90005077560 R08: ffff88802d67e9eb R09: 1ffff11005acfd3d [ 73.523013][ T1142] R10: dffffc0000000000 R11: ffffed1005acfd3e R12: dffffc0000000000 [ 73.530992][ T1142] R13: ffff88802d678000 R14: ffffc900050774e0 R15: 0000000000000201 [ 73.538978][ T1142] ? sock_map_delete_elem+0xca/0x140 [ 73.544283][ T1142] ? sock_map_delete_elem+0xca/0x140 [ 73.549571][ T1142] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 73.555297][ T1142] ? sock_map_delete_elem+0xca/0x140 [ 73.560586][ T1142] ? do_raw_spin_unlock+0x13c/0x8b0 [ 73.565797][ T1142] ? arch_irq_work_raise+0x6f/0x80 [ 73.570924][ T1142] ? sock_map_delete_elem+0x97/0x140 [ 73.576214][ T1142] sock_map_delete_elem+0xca/0x140 [ 73.581353][ T1142] bpf_prog_d247abf228e51871+0x69/0x6d [ 73.586822][ T1142] bpf_trace_run2+0x204/0x420 [ 73.591535][ T1142] ? bpf_trace_run2+0x114/0x420 [ 73.596454][ T1142] ? __pfx_bpf_trace_run2+0x10/0x10 [ 73.601711][ T1142] kthread_insert_work+0x3f4/0x460 [ 73.606864][ T1142] kthread_queue_work+0xff/0x180 [ 73.611817][ T1142] synchronize_rcu_expedited+0x593/0x820 [ 73.617462][ T1142] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 73.623629][ T1142] ? __pfx_validate_chain+0x10/0x10 [ 73.628836][ T1142] ? mark_lock+0x9a/0x350 [ 73.633173][ T1142] ? __lock_acquire+0x1346/0x1fd0 [ 73.638206][ T1142] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 73.643502][ T1142] ? __pfx___might_resched+0x10/0x10 [ 73.648828][ T1142] synchronize_rcu+0x136/0x3e0 [ 73.653686][ T1142] ? __pfx_synchronize_rcu+0x10/0x10 [ 73.658987][ T1142] ? __pfx_lock_acquire+0x10/0x10 [ 73.664016][ T1142] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 73.670005][ T1142] sock_map_free+0x29/0x3e0 [ 73.674519][ T1142] bpf_map_free_deferred+0xe6/0x110 [ 73.679723][ T1142] ? process_scheduled_works+0x91b/0x1770 [ 73.685447][ T1142] process_scheduled_works+0xa00/0x1770 [ 73.691012][ T1142] ? __pfx_process_scheduled_works+0x10/0x10 [ 73.697026][ T1142] ? assign_work+0x364/0x3d0 [ 73.701622][ T1142] worker_thread+0x86d/0xd70 [ 73.706231][ T1142] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 73.712136][ T1142] ? __kthread_parkme+0x169/0x1d0 [ 73.717174][ T1142] ? __pfx_worker_thread+0x10/0x10 [ 73.722288][ T1142] kthread+0x2f0/0x390 [ 73.726367][ T1142] ? __pfx_worker_thread+0x10/0x10 [ 73.731502][ T1142] ? __pfx_kthread+0x10/0x10 [ 73.736114][ T1142] ret_from_fork+0x4b/0x80 [ 73.740562][ T1142] ? __pfx_kthread+0x10/0x10 [ 73.745171][ T1142] ret_from_fork_asm+0x1a/0x30 [ 73.749961][ T1142] [ 73.753236][ T1142] Kernel Offset: disabled [ 73.757632][ T1142] Rebooting in 86400 seconds..