./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2778192051 <...> Warning: Permanently added '10.128.1.94' (ED25519) to the list of known hosts. execve("./syz-executor2778192051", ["./syz-executor2778192051"], 0x7ffe57c30920 /* 10 vars */) = 0 brk(NULL) = 0x555569bf1000 brk(0x555569bf1d00) = 0x555569bf1d00 arch_prctl(ARCH_SET_FS, 0x555569bf1380) = 0 set_tid_address(0x555569bf1650) = 5071 set_robust_list(0x555569bf1660, 24) = 0 rseq(0x555569bf1ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2778192051", 4096) = 28 getrandom("\x80\x50\x59\xa9\xab\x97\x5f\xa6", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555569bf1d00 brk(0x555569c12d00) = 0x555569c12d00 brk(0x555569c13000) = 0x555569c13000 mprotect(0x7f49233f8000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569bf1650) = 5072 ./strace-static-x86_64: Process 5072 attached [pid 5072] set_robust_list(0x555569bf1660, 24) = 0 [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5072] setpgid(0, 0) = 0 [pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "1000", 4) = 4 [pid 5072] close(3) = 0 [pid 5072] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5072] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 5072] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5072] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5072] exit_group(0) = ? [pid 5072] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5072, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5073 attached , child_tidptr=0x555569bf1650) = 5073 [pid 5073] set_robust_list(0x555569bf1660, 24) = 0 [pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5073] setpgid(0, 0) = 0 [pid 5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1000", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5073] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 5073] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5073] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [ 74.305437][ C0] [ 74.307795][ C0] ===================================================== [ 74.314731][ C0] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 74.322273][ C0] 6.8.0-syzkaller-05236-g443574b03387 #0 Not tainted [ 74.328940][ C0] ----------------------------------------------------- [ 74.335871][ C0] swapper/0/0 [HC0[0]:SC1[3]:HE0:SE0] is trying to acquire: [ 74.343204][ C0] ffff8880182d8468 (&htab->buckets[i].lock){+.-.}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 74.353688][ C0] [ 74.353688][ C0] and this task is already holding: [ 74.361048][ C0] ffff8880b943d8d8 (&pool->lock){-.-.}-{2:2}, at: __queue_work+0x6ec/0xec0 [ 74.369742][ C0] which would create a new lock dependency: [ 74.375636][ C0] (&pool->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+.-.}-{2:2} [ 74.383730][ C0] [ 74.383730][ C0] but this new dependency connects a HARDIRQ-irq-safe lock: [ 74.393183][ C0] (&pool->lock){-.-.}-{2:2} [ 74.393206][ C0] [ 74.393206][ C0] ... which became HARDIRQ-irq-safe at: [ 74.405473][ C0] lock_acquire+0x1e4/0x530 [ 74.410057][ C0] _raw_spin_lock+0x2e/0x40 [ 74.414652][ C0] __queue_work+0x6ec/0xec0 [ 74.419235][ C0] queue_work_on+0x14f/0x250 [ 74.423906][ C0] hrtimer_run_queues+0x154/0x460 [ 74.429016][ C0] update_process_times+0x80/0x230 [ 74.434219][ C0] tick_periodic+0x190/0x220 [ 74.438888][ C0] tick_handle_periodic+0x4a/0x160 [ 74.444091][ C0] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 74.450176][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 74.455908][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 74.461984][ C0] __kernel_text_address+0x12/0x40 [ 74.467186][ C0] unwind_get_return_address+0x5d/0xc0 [ 74.472894][ C0] arch_stack_walk+0x125/0x1b0 [ 74.477863][ C0] stack_trace_save+0x118/0x1d0 [ 74.483049][ C0] kasan_save_track+0x3f/0x80 [ 74.487841][ C0] __kasan_slab_alloc+0x66/0x80 [ 74.492813][ C0] kmem_cache_alloc_node+0x192/0x380 [ 74.498199][ C0] __kmem_cache_create+0x191/0x8b0 [ 74.503391][ C0] kmem_cache_create_usercopy+0x199/0x330 [ 74.509194][ C0] kmem_cache_create+0x13/0x20 [ 74.514036][ C0] eventpoll_init+0x14a/0x1d0 [ 74.518803][ C0] do_one_initcall+0x238/0x830 [ 74.523656][ C0] do_initcall_level+0x157/0x210 [ 74.528673][ C0] do_initcalls+0x3f/0x80 [ 74.533082][ C0] kernel_init_freeable+0x435/0x5d0 [ 74.538362][ C0] kernel_init+0x1d/0x2a0 [ 74.542778][ C0] ret_from_fork+0x4b/0x80 [ 74.547304][ C0] ret_from_fork_asm+0x1a/0x30 [ 74.552182][ C0] [ 74.552182][ C0] to a HARDIRQ-irq-unsafe lock: [ 74.559224][ C0] (&htab->buckets[i].lock){+.-.}-{2:2} [ 74.559251][ C0] [ 74.559251][ C0] ... which became HARDIRQ-irq-unsafe at: [ 74.572657][ C0] ... [ 74.572664][ C0] lock_acquire+0x1e4/0x530 [ 74.579828][ C0] _raw_spin_lock_bh+0x35/0x50 [ 74.584672][ C0] sock_hash_free+0x164/0x820 [ 74.589447][ C0] bpf_map_free_deferred+0xe6/0x110 [ 74.594725][ C0] process_scheduled_works+0xa00/0x1770 [ 74.600351][ C0] worker_thread+0x86d/0xd70 [ 74.605022][ C0] kthread+0x2f0/0x390 [ 74.609323][ C0] ret_from_fork+0x4b/0x80 [ 74.613824][ C0] ret_from_fork_asm+0x1a/0x30 [ 74.618676][ C0] [ 74.618676][ C0] other info that might help us debug this: [ 74.618676][ C0] [ 74.628897][ C0] Possible interrupt unsafe locking scenario: [ 74.628897][ C0] [ 74.637208][ C0] CPU0 CPU1 [ 74.642565][ C0] ---- ---- [ 74.647918][ C0] lock(&htab->buckets[i].lock); [ 74.653028][ C0] local_irq_disable(); [ 74.659794][ C0] lock(&pool->lock); [ 74.666911][ C0] lock(&htab->buckets[i].lock); [ 74.674465][ C0] [ 74.677918][ C0] lock(&pool->lock); [ 74.682167][ C0] [ 74.682167][ C0] *** DEADLOCK *** [ 74.682167][ C0] [ 74.690298][ C0] 4 locks held by swapper/0/0: [ 74.695047][ C0] #0: ffffc90000007c00 ((&sdp->delay_work)){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x600 [ 74.704725][ C0] #1: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: __queue_work+0x198/0xec0 [ 74.713953][ C0] #2: ffff8880b943d8d8 (&pool->lock){-.-.}-{2:2}, at: __queue_work+0x6ec/0xec0 [ 74.723015][ C0] #3: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run3+0x14a/0x460 [ 74.732497][ C0] [ 74.732497][ C0] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 74.742891][ C0] -> (&pool->lock){-.-.}-{2:2} { [ 74.747860][ C0] IN-HARDIRQ-W at: [ 74.751845][ C0] lock_acquire+0x1e4/0x530 [ 74.757998][ C0] _raw_spin_lock+0x2e/0x40 [ 74.764151][ C0] __queue_work+0x6ec/0xec0 [ 74.770330][ C0] queue_work_on+0x14f/0x250 [ 74.776653][ C0] hrtimer_run_queues+0x154/0x460 [ 74.783406][ C0] update_process_times+0x80/0x230 [ 74.790159][ C0] tick_periodic+0x190/0x220 [ 74.796393][ C0] tick_handle_periodic+0x4a/0x160 [ 74.803144][ C0] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 74.810776][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 74.818054][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 74.825594][ C1] ------------[ cut here ]------------ [ 74.825678][ C0] __kernel_text_address+0x12/0x40 [ 74.831126][ C1] WARNING: CPU: 1 PID: 0 at kernel/softirq.c:307 __local_bh_disable_ip+0x1f6/0x220 [ 74.837871][ C0] unwind_get_return_address+0x5d/0xc0 [ 74.847230][ C1] Modules linked in: [ 74.854325][ C0] arch_stack_walk+0x125/0x1b0 [ 74.858204][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 74.864596][ C0] stack_trace_save+0x118/0x1d0 [ 74.873863][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 74.880341][ C0] kasan_save_track+0x3f/0x80 [ 74.890485][ C1] RIP: 0010:__local_bh_disable_ip+0x1f6/0x220 [ 74.896794][ C0] __kasan_slab_alloc+0x66/0x80 [ 74.902853][ C1] Code: 2c 0b 00 65 48 8b 04 25 28 00 00 00 48 3b 84 24 80 00 00 00 75 33 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 <0f> 0b 90 e9 99 fe ff ff e8 4d 84 16 0a 41 f7 c6 00 02 00 00 0f 85 [ 74.909335][ C0] kmem_cache_alloc_node+0x192/0x380 [ 74.928924][ C1] RSP: 0018:ffffc90000a089e0 EFLAGS: 00010006 [ 74.935845][ C0] __kmem_cache_create+0x191/0x8b0 [ 74.941891][ C1] RAX: 0000000080010004 RBX: ffffffff895fca60 RCX: ffff8880172c5a00 [ 74.948634][ C0] kmem_cache_create_usercopy+0x199/0x330 [ 74.956597][ C1] RDX: dffffc0000000000 RSI: 0000000000000201 RDI: ffffffff895fca60 [ 74.963944][ C0] kmem_cache_create+0x13/0x20 [ 74.971899][ C1] RBP: ffffc90000a08aa8 R08: 0000000000000005 R09: ffffffff89600d7e [ 74.978294][ C0] eventpoll_init+0x14a/0x1d0 [ 74.986274][ C1] R10: 000000000000000c R11: ffff8880172c5a00 R12: dffffc0000000000 [ 74.992580][ C0] do_one_initcall+0x238/0x830 [ 75.000539][ C1] R13: 1ffff92000141140 R14: ffffc90000a08a40 R15: 0000000000000201 [ 75.006934][ C0] do_initcall_level+0x157/0x210 [ 75.014976][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 75.021652][ C0] do_initcalls+0x3f/0x80 [ 75.030566][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 75.036526][ C0] kernel_init_freeable+0x435/0x5d0 [ 75.043114][ C1] CR2: 0000000000000000 CR3: 000000002e2e2000 CR4: 00000000003506f0 [ 75.049947][ C0] kernel_init+0x1d/0x2a0 [ 75.057910][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 75.063873][ C0] ret_from_fork+0x4b/0x80 [ 75.071837][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 75.077886][ C0] ret_from_fork_asm+0x1a/0x30 [ 75.085846][ C1] Call Trace: [ 75.085859][ C1] [ 75.092247][ C0] IN-SOFTIRQ-W [ 75.095542][ C1] ? __warn+0x163/0x4b0 [ 75.098377][ C0] at: [ 75.098385][ C0] lock_acquire+0x1e4/0x530 [ 75.102023][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 75.106164][ C0] _raw_spin_lock+0x2e/0x40 [ 75.108940][ C1] ? report_bug+0x2b3/0x500 [ 75.115087][ C0] __queue_work+0x6ec/0xec0 [ 75.120542][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 75.126694][ C0] call_timer_fn+0x17e/0x600 [ 75.131266][ C1] ? handle_bug+0x3e/0x70 [ 75.137400][ C0] __run_timer_base+0x695/0x8e0 [ 75.142843][ C1] ? exc_invalid_op+0x1a/0x50 [ 75.149073][ C0] run_timer_softirq+0xb7/0x170 [ 75.153388][ C1] ? asm_exc_invalid_op+0x1a/0x20 [ 75.159870][ C0] __do_softirq+0x2bc/0x943 [ 75.164533][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 75.171103][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 75.176119][ C1] ? sock_hash_bucket_hash+0x24e/0x740 [ 75.182273][ C0] irq_exit_rcu+0x9/0x30 [ 75.187823][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 75.194054][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 75.199502][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 75.205470][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 75.210829][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 75.218092][ C0] default_idle+0x13/0x20 [ 75.223561][ C1] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 75.231177][ C0] default_idle_call+0x74/0xb0 [ 75.236550][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 75.242511][ C0] do_idle+0x22f/0x5d0 [ 75.248565][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 75.254959][ C0] cpu_startup_entry+0x42/0x60 [ 75.259967][ C1] _raw_spin_lock_bh+0x1c/0x50 [ 75.265668][ C0] rest_init+0x2e0/0x300 [ 75.271027][ C1] sock_hash_delete_elem+0xb0/0x300 [ 75.277421][ C0] arch_call_rest_init+0xe/0x10 [ 75.282198][ C1] bpf_prog_bc4ba9860fbb0da4+0x46/0x4a [ 75.288067][ C0] start_kernel+0x47a/0x500 [ 75.293251][ C1] bpf_trace_run3+0x238/0x460 [ 75.299736][ C0] x86_64_start_reservations+0x2a/0x30 [ 75.305194][ C1] ? bpf_trace_run3+0x14a/0x460 [ 75.311344][ C0] x86_64_start_kernel+0x99/0xa0 [ 75.316013][ C1] ? __pfx_bpf_trace_run3+0x10/0x10 [ 75.323108][ C0] common_startup_64+0x13e/0x147 [ 75.327979][ C1] __queue_work+0xe5b/0xec0 [ 75.334542][ C0] INITIAL USE [ 75.339727][ C1] ? __queue_work+0x198/0xec0 [ 75.346294][ C0] at: [ 75.346303][ C0] lock_acquire+0x1e4/0x530 [ 75.350810][ C1] queue_work_on+0x14f/0x250 [ 75.354340][ C0] _raw_spin_lock+0x2e/0x40 [ 75.359004][ C1] ? __pfx_queue_work_on+0x10/0x10 [ 75.361664][ C0] __queue_work+0x6ec/0xec0 [ 75.367890][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 75.372463][ C0] queue_work_on+0x14f/0x250 [ 75.378526][ C1] ? rcu_is_watching+0x15/0xb0 [ 75.383644][ C0] start_poll_synchronize_rcu_expedited+0xf7/0x150 [ 75.389696][ C1] ? lock_release+0xbf/0x9d0 [ 75.395050][ C0] rcu_init+0xea/0x140 [ 75.401192][ C1] stats_request+0xd0/0x100 [ 75.405936][ C0] start_kernel+0x1f7/0x500 [ 75.413981][ C1] ? __pfx_stats_request+0x10/0x10 [ 75.418554][ C0] x86_64_start_reservations+0x2a/0x30 [ 75.424170][ C1] ? __pfx_vring_interrupt+0x10/0x10 [ 75.428657][ C0] x86_64_start_kernel+0x99/0xa0 [ 75.434706][ C1] vring_interrupt+0x21d/0x380 [ 75.439802][ C0] common_startup_64+0x13e/0x147 [ 75.446820][ C1] ? __pfx_vring_interrupt+0x10/0x10 [ 75.452085][ C0] } [ 75.452093][ C0] ... key at: [] init_worker_pool.__key+0x0/0x20 [ 75.458568][ C1] __handle_irq_event_percpu+0x28a/0xa30 [ 75.463328][ C0] [ 75.463328][ C0] the dependencies between the lock to be acquired [ 75.469820][ C1] ? __pfx___handle_irq_event_percpu+0x10/0x10 [ 75.475075][ C0] and HARDIRQ-irq-unsafe lock: [ 75.477562][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 75.485998][ C0] -> [ 75.491575][ C1] handle_irq_event+0x89/0x1f0 [ 75.500223][ C0] ( [ 75.506356][ C1] ? handle_edge_irq+0x257/0xc20 [ 75.511185][ C0] &htab->buckets[i].lock [ 75.516367][ C1] handle_edge_irq+0x25f/0xc20 [ 75.518851][ C0] ){+.-.}-{2:2} [ 75.523613][ C1] __common_interrupt+0x138/0x230 [ 75.526098][ C0] { [ 75.526105][ C0] HARDIRQ-ON-W [ 75.531017][ C1] common_interrupt+0xa5/0xd0 [ 75.535262][ C0] at: [ 75.535270][ C0] lock_acquire+0x1e4/0x530 [ 75.540012][ C1] [ 75.543464][ C0] _raw_spin_lock_bh+0x35/0x50 [ 75.548495][ C1] [ 75.548505][ C1] asm_common_interrupt+0x26/0x40 [ 75.550993][ C0] sock_hash_free+0x164/0x820 [ 75.554616][ C1] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 75.559278][ C0] bpf_map_free_deferred+0xe6/0x110 [ 75.561942][ C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 75.568079][ C0] process_scheduled_works+0xa00/0x1770 [ 75.571003][ C1] RSP: 0018:ffffc90000197d08 EFLAGS: 00000246 [ 75.577398][ C0] worker_thread+0x86d/0xd70 [ 75.580322][ C1] [ 75.580328][ C1] RAX: ffff8880172c5a00 RBX: ffff8880172ec864 RCX: 000000000001ab61 [ 75.585353][ C0] kthread+0x2f0/0x390 [ 75.591662][ C1] RDX: 0000000000000001 RSI: ffff8880172ec800 RDI: ffff8880172ec864 [ 75.596928][ C0] ret_from_fork+0x4b/0x80 [ 75.603763][ C1] RBP: 0000000000039f18 R08: ffff8880b9537d0b R09: 1ffff110172a6fa1 [ 75.623436][ C0] ret_from_fork_asm+0x1a/0x30 [ 75.630610][ C1] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff88801a3a3000 [ 75.636743][ C0] IN-SOFTIRQ-W [ 75.642963][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2ec0 [ 75.645275][ C0] at: [ 75.645283][ C0] lock_acquire+0x1e4/0x530 [ 75.653257][ C1] ? __pfx_acpi_idle_enter+0x10/0x10 [ 75.658980][ C0] _raw_spin_lock_bh+0x35/0x50 [ 75.667043][ C1] acpi_idle_enter+0xe4/0x140 [ 75.673085][ C0] sock_hash_delete_elem+0xb0/0x300 [ 75.681044][ C1] cpuidle_enter_state+0x118/0x490 [ 75.687435][ C0] bpf_prog_bc4ba9860fbb0da4+0x46/0x4a [ 75.695394][ C1] ? __pfx_menu_select+0x10/0x10 [ 75.699008][ C0] bpf_trace_run3+0x238/0x460 [ 75.706965][ C1] cpuidle_enter+0x5d/0xa0 [ 75.709632][ C0] __queue_work+0xe5b/0xec0 [ 75.715771][ C1] do_idle+0x375/0x5d0 [ 75.721042][ C0] queue_work_on+0x14f/0x250 [ 75.727609][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.732273][ C0] call_timer_fn+0x17e/0x600 [ 75.739104][ C1] ? __pfx_do_idle+0x10/0x10 [ 75.744227][ C0] __run_timer_base+0x66a/0x8e0 [ 75.751317][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 75.756232][ C0] run_timer_softirq+0xb7/0x170 [ 75.762548][ C1] ? complete+0xb4/0x1c0 [ 75.766944][ C0] __do_softirq+0x2bc/0x943 [ 75.773084][ C1] cpu_startup_entry+0x42/0x60 [ 75.777131][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 75.783358][ C1] start_secondary+0x100/0x100 [ 75.789665][ C0] irq_exit_rcu+0x9/0x30 [ 75.795889][ C1] common_startup_64+0x13e/0x147 [ 75.800462][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 75.806956][ C1] [ 75.812817][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 75.819308][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 75.819321][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 75.819342][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 75.819354][ C1] Call Trace: [ 75.819364][ C1] [ 75.819371][ C1] dump_stack_lvl+0x1e7/0x2e0 [ 75.819401][ C1] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.819427][ C1] ? __pfx__printk+0x10/0x10 [ 75.819455][ C1] ? vscnprintf+0x5d/0x90 [ 75.819485][ C1] panic+0x349/0x860 [ 75.819509][ C1] ? __warn+0x172/0x4b0 [ 75.819536][ C1] ? __pfx_panic+0x10/0x10 [ 75.819565][ C1] ? common_startup_64+0x13e/0x147 [ 75.819591][ C1] __warn+0x31e/0x4b0 [ 75.819618][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 75.819641][ C1] report_bug+0x2b3/0x500 [ 75.819670][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 75.819694][ C1] handle_bug+0x3e/0x70 [ 75.819721][ C1] exc_invalid_op+0x1a/0x50 [ 75.819748][ C1] asm_exc_invalid_op+0x1a/0x20 [ 75.819777][ C1] RIP: 0010:__local_bh_disable_ip+0x1f6/0x220 [ 75.819807][ C1] Code: 2c 0b 00 65 48 8b 04 25 28 00 00 00 48 3b 84 24 80 00 00 00 75 33 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 <0f> 0b 90 e9 99 fe ff ff e8 4d 84 16 0a 41 f7 c6 00 02 00 00 0f 85 [ 75.819823][ C1] RSP: 0018:ffffc90000a089e0 EFLAGS: 00010006 [ 75.819843][ C1] RAX: 0000000080010004 RBX: ffffffff895fca60 RCX: ffff8880172c5a00 [ 75.819859][ C1] RDX: dffffc0000000000 RSI: 0000000000000201 RDI: ffffffff895fca60 [ 75.819874][ C1] RBP: ffffc90000a08aa8 R08: 0000000000000005 R09: ffffffff89600d7e [ 75.819887][ C1] R10: 000000000000000c R11: ffff8880172c5a00 R12: dffffc0000000000 [ 75.819902][ C1] R13: 1ffff92000141140 R14: ffffc90000a08a40 R15: 0000000000000201 [ 75.819919][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 75.819943][ C1] ? sock_hash_bucket_hash+0x24e/0x740 [ 75.819968][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 75.819993][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 75.820015][ C1] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 75.820036][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 75.820060][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 75.820083][ C1] _raw_spin_lock_bh+0x1c/0x50 [ 75.820107][ C1] sock_hash_delete_elem+0xb0/0x300 [ 75.820133][ C1] bpf_prog_bc4ba9860fbb0da4+0x46/0x4a [ 75.820156][ C1] bpf_trace_run3+0x238/0x460 [ 75.820179][ C1] ? bpf_trace_run3+0x14a/0x460 [ 75.820201][ C1] ? __pfx_bpf_trace_run3+0x10/0x10 [ 75.820232][ C1] __queue_work+0xe5b/0xec0 [ 75.820255][ C1] ? __queue_work+0x198/0xec0 [ 75.820282][ C1] queue_work_on+0x14f/0x250 [ 75.820307][ C1] ? __pfx_queue_work_on+0x10/0x10 [ 75.820329][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 75.820357][ C1] ? rcu_is_watching+0x15/0xb0 [ 75.820378][ C1] ? lock_release+0xbf/0x9d0 [ 75.820401][ C1] stats_request+0xd0/0x100 [ 75.820430][ C1] ? __pfx_stats_request+0x10/0x10 [ 75.820459][ C1] ? __pfx_vring_interrupt+0x10/0x10 [ 75.820483][ C1] vring_interrupt+0x21d/0x380 [ 75.820509][ C1] ? __pfx_vring_interrupt+0x10/0x10 [ 75.820533][ C1] __handle_irq_event_percpu+0x28a/0xa30 [ 75.820565][ C1] ? __pfx___handle_irq_event_percpu+0x10/0x10 [ 75.820591][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 75.820625][ C1] handle_irq_event+0x89/0x1f0 [ 75.820649][ C1] ? handle_edge_irq+0x257/0xc20 [ 75.820673][ C1] handle_edge_irq+0x25f/0xc20 [ 75.820701][ C1] __common_interrupt+0x138/0x230 [ 75.820729][ C1] common_interrupt+0xa5/0xd0 [ 75.820759][ C1] [ 75.820765][ C1] [ 75.820773][ C1] asm_common_interrupt+0x26/0x40 [ 75.820809][ C1] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 75.820840][ C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 75.820856][ C1] RSP: 0018:ffffc90000197d08 EFLAGS: 00000246 [ 75.820873][ C1] RAX: ffff8880172c5a00 RBX: ffff8880172ec864 RCX: 000000000001ab61 [ 75.820888][ C1] RDX: 0000000000000001 RSI: ffff8880172ec800 RDI: ffff8880172ec864 [ 75.820902][ C1] RBP: 0000000000039f18 R08: ffff8880b9537d0b R09: 1ffff110172a6fa1 [ 75.820917][ C1] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff88801a3a3000 [ 75.820932][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2ec0 [ 75.820948][ C1] ? __pfx_acpi_idle_enter+0x10/0x10 [ 75.820982][ C1] acpi_idle_enter+0xe4/0x140 [ 75.821012][ C1] cpuidle_enter_state+0x118/0x490 [ 75.821039][ C1] ? __pfx_menu_select+0x10/0x10 [ 75.821063][ C1] cpuidle_enter+0x5d/0xa0 [ 75.821092][ C1] do_idle+0x375/0x5d0 [ 75.821113][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.821138][ C1] ? __pfx_do_idle+0x10/0x10 [ 75.821160][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 75.821190][ C1] ? complete+0xb4/0x1c0 [ 75.821220][ C1] cpu_startup_entry+0x42/0x60 [ 75.821242][ C1] start_secondary+0x100/0x100 [ 75.821266][ C1] common_startup_64+0x13e/0x147 [ 75.821297][ C1] [ 75.823530][ C0] acpi_safe_halt+0x21/0x30 [ 75.823556][ C0] acpi_idle_enter+0xe4/0x140 [ 75.823578][ C0] cpuidle_enter_state+0x118/0x490 [ 75.823600][ C0] cpuidle_enter+0x5d/0xa0 [ 75.823621][ C0] do_idle+0x375/0x5d0 [ 75.823637][ C0] cpu_startup_entry+0x42/0x60 [ 75.823654][ C0] rest_init+0x2e0/0x300 [ 75.823676][ C0] arch_call_rest_init+0xe/0x10 [ 75.823692][ C0] start_kernel+0x47a/0x500 [ 75.823706][ C0] x86_64_start_reservations+0x2a/0x30 [ 75.823727][ C0] x86_64_start_kernel+0x99/0xa0 [ 75.823747][ C0] common_startup_64+0x13e/0x147 [ 75.823766][ C0] INITIAL USE at: [ 75.823776][ C0] lock_acquire+0x1e4/0x530 [ 75.823792][ C0] _raw_spin_lock_bh+0x35/0x50 [ 75.823811][ C0] sock_hash_free+0x164/0x820 [ 75.823827][ C0] bpf_map_free_deferred+0xe6/0x110 [ 75.823844][ C0] process_scheduled_works+0xa00/0x1770 [ 75.823860][ C0] worker_thread+0x86d/0xd70 [ 75.823877][ C0] kthread+0x2f0/0x390 [ 75.823895][ C0] ret_from_fork+0x4b/0x80 [ 75.823920][ C0] ret_from_fork_asm+0x1a/0x30 [ 75.823944][ C0] } [ 75.823948][ C0] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 75.823970][ C0] ... acquired at: [ 75.823974][ C0] lock_acquire+0x1e4/0x530 [ 75.823989][ C0] _raw_spin_lock_bh+0x35/0x50 [ 75.824007][ C0] sock_hash_delete_elem+0xb0/0x300 [ 75.824024][ C0] bpf_prog_bc4ba9860fbb0da4+0x46/0x4a [ 75.824039][ C0] bpf_trace_run3+0x238/0x460 [ 75.824056][ C0] __queue_work+0xe5b/0xec0 [ 75.824072][ C0] queue_work_on+0x14f/0x250 [ 75.824089][ C0] call_timer_fn+0x17e/0x600 [ 75.824106][ C0] __run_timer_base+0x66a/0x8e0 [ 75.824120][ C0] run_timer_softirq+0xb7/0x170 [ 75.824134][ C0] __do_softirq+0x2bc/0x943 [ 75.824155][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 75.824170][ C0] irq_exit_rcu+0x9/0x30 [ 75.824185][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 75.824202][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 75.824227][ C0] acpi_safe_halt+0x21/0x30 [ 75.824250][ C0] acpi_idle_enter+0xe4/0x140 [ 75.824271][ C0] cpuidle_enter_state+0x118/0x490 [ 75.824297][ C0] cpuidle_enter+0x5d/0xa0 [ 75.824318][ C0] do_idle+0x375/0x5d0 [ 75.824333][ C0] cpu_startup_entry+0x42/0x60 [ 75.824349][ C0] rest_init+0x2e0/0x300 [ 75.824371][ C0] arch_call_rest_init+0xe/0x10 [ 75.824385][ C0] start_kernel+0x47a/0x500 [ 75.824399][ C0] x86_64_start_reservations+0x2a/0x30 [ 75.824419][ C0] x86_64_start_kernel+0x99/0xa0 [ 75.824438][ C0] common_startup_64+0x13e/0x147 [ 75.824456][ C0] [ 75.824459][ C0] [ 75.824459][ C0] stack backtrace: [ 75.824464][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 75.824481][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 75.824490][ C0] Call Trace: [ 75.824496][ C0] [ 75.824502][ C0] dump_stack_lvl+0x1e7/0x2e0 [ 75.824526][ C0] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.824548][ C0] ? __pfx__printk+0x10/0x10 [ 75.824571][ C0] ? print_shortest_lock_dependencies+0xf2/0x160 [ 75.824602][ C0] validate_chain+0x4dc7/0x58e0 [ 75.824636][ C0] ? __pfx_validate_chain+0x10/0x10 [ 75.824663][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 75.824693][ C0] ? lockdep_unlock+0x16a/0x300 [ 75.824726][ C0] ? mark_lock+0x9a/0x350 [ 75.824747][ C0] __lock_acquire+0x1346/0x1fd0 [ 75.824773][ C0] lock_acquire+0x1e4/0x530 [ 75.824791][ C0] ? sock_hash_delete_elem+0xb0/0x300 [ 75.824814][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 75.824835][ C0] ? sock_hash_delete_elem+0xb0/0x300 [ 75.824853][ C0] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 75.824871][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 75.824890][ C0] ? sock_hash_delete_elem+0xb0/0x300 [ 75.824910][ C0] _raw_spin_lock_bh+0x35/0x50 [ 75.824929][ C0] ? sock_hash_delete_elem+0xb0/0x300 [ 75.824948][ C0] sock_hash_delete_elem+0xb0/0x300 [ 75.824970][ C0] bpf_prog_bc4ba9860fbb0da4+0x46/0x4a [ 75.824994][ C0] bpf_trace_run3+0x238/0x460 [ 75.825013][ C0] ? bpf_trace_run3+0x14a/0x460 [ 75.825032][ C0] ? __pfx_bpf_trace_run3+0x10/0x10 [ 75.825058][ C0] __queue_work+0xe5b/0xec0 [ 75.825078][ C0] ? __queue_work+0x198/0xec0 [ 75.825098][ C0] ? rcu_is_watching+0x15/0xb0 [ 75.825117][ C0] queue_work_on+0x14f/0x250 [ 75.825137][ C0] ? __pfx_queue_work_on+0x10/0x10 [ 75.825160][ C0] ? call_timer_fn+0xa8/0x600 [ 75.825181][ C0] call_timer_fn+0x17e/0x600 [ 75.825199][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 75.825215][ C0] ? call_timer_fn+0xc0/0x600 [ 75.825232][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 75.825248][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 75.825269][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 75.825290][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 75.825306][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 75.825322][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 75.825341][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 75.825361][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 75.825378][ C0] __run_timer_base+0x66a/0x8e0 [ 75.825400][ C0] ? __pfx___run_timer_base+0x10/0x10 [ 75.825420][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.825437][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 75.825465][ C0] run_timer_softirq+0xb7/0x170 [ 75.825483][ C0] __do_softirq+0x2bc/0x943 [ 75.825509][ C0] ? __irq_exit_rcu+0xf2/0x1c0 [ 75.825529][ C0] ? __pfx___do_softirq+0x10/0x10 [ 75.825554][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 75.825580][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 75.825597][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 75.825619][ C0] irq_exit_rcu+0x9/0x30 [ 75.825635][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 75.825655][ C0] [ 75.825660][ C0] [ 75.825666][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 75.825693][ C0] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 75.825718][ C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 75.825732][ C0] RSP: 0018:ffffffff8de07ca8 EFLAGS: 00000246 [ 75.825747][ C0] RAX: ffffffff8de94680 RBX: ffff8880172ec064 RCX: 0000000000010f61 [ 75.825760][ C0] RDX: 0000000000000001 RSI: ffff8880172ec000 RDI: ffff8880172ec064 [ 75.825772][ C0] RBP: 0000000000039f18 R08: ffff8880b9437d0b R09: 1ffff11017286fa1 [ 75.825784][ C0] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff88801a3a2800 [ 75.825798][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2ec0 [ 75.825811][ C0] ? __pfx_acpi_idle_enter+0x10/0x10 [ 75.825841][ C0] acpi_idle_enter+0xe4/0x140 [ 75.825867][ C0] cpuidle_enter_state+0x118/0x490 [ 75.825890][ C0] ? __pfx_menu_select+0x10/0x10 [ 75.825910][ C0] cpuidle_enter+0x5d/0xa0 [ 75.825935][ C0] do_idle+0x375/0x5d0 [ 75.825952][ C0] ? __pfx___schedule+0x10/0x10 [ 75.825976][ C0] ? __pfx_do_idle+0x10/0x10 [ 75.825996][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 75.826017][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 75.826040][ C0] ? rest_init+0x35/0x300 [ 75.826064][ C0] ? rest_init+0x35/0x300 [ 75.826088][ C0] cpu_startup_entry+0x42/0x60 [ 75.826106][ C0] rest_init+0x2e0/0x300 [ 75.826130][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 75.826155][ C0] arch_call_rest_init+0xe/0x10 [ 75.826172][ C0] start_kernel+0x47a/0x500 [ 75.826190][ C0] x86_64_start_reservations+0x2a/0x30 [ 75.826214][ C0] x86_64_start_kernel+0x99/0xa0 [ 75.826235][ C0] common_startup_64+0x13e/0x147 [ 75.826262][ C0] [ 75.826595][ C1] Kernel Offset: disabled [ 77.147415][ C1] Rebooting in 86400 seconds..