Warning: Permanently added '10.128.0.101' (ED25519) to the list of known hosts. executing program executing program executing program executing program executing program [ 68.197361][ T18] [ 68.199829][ T18] ===================================================== [ 68.206765][ T18] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 68.214218][ T18] 6.8.0-syzkaller-05271-gf99c5f563c17 #0 Not tainted [ 68.220892][ T18] ----------------------------------------------------- [ 68.227825][ T18] rcu_exp_gp_kthr/18 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire: [ 68.235729][ T18] ffff888021a7c8d8 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 68.246036][ T18] [ 68.246036][ T18] and this task is already holding: [ 68.253403][ T18] ffff8880b952a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 68.262302][ T18] which would create a new lock dependency: [ 68.268211][ T18] (&base->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2} [ 68.276329][ T18] [ 68.276329][ T18] but this new dependency connects a HARDIRQ-irq-safe lock: [ 68.285782][ T18] (&base->lock){-.-.}-{2:2} [ 68.285813][ T18] [ 68.285813][ T18] ... which became HARDIRQ-irq-safe at: [ 68.298111][ T18] lock_acquire+0x1e4/0x530 [ 68.302705][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 68.308093][ T18] lock_timer_base+0x112/0x240 [ 68.312948][ T18] add_timer_on+0x1e5/0x5c0 [ 68.317550][ T18] handle_irq_event+0xad/0x1f0 [ 68.322402][ T18] handle_level_irq+0x3c5/0x6e0 [ 68.327351][ T18] __common_interrupt+0x13a/0x230 [ 68.332466][ T18] common_interrupt+0xa5/0xd0 [ 68.337243][ T18] asm_common_interrupt+0x26/0x40 [ 68.342365][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 68.348174][ T18] __setup_irq+0x1277/0x1cf0 [ 68.352852][ T18] request_threaded_irq+0x2ab/0x380 [ 68.358156][ T18] setup_default_timer_irq+0x25/0x60 [ 68.363527][ T18] x86_late_time_init+0x66/0xc0 [ 68.368466][ T18] start_kernel+0x3f3/0x500 [ 68.373063][ T18] x86_64_start_reservations+0x2a/0x30 [ 68.378612][ T18] x86_64_start_kernel+0x99/0xa0 [ 68.383638][ T18] common_startup_64+0x13e/0x147 [ 68.388657][ T18] [ 68.388657][ T18] to a HARDIRQ-irq-unsafe lock: [ 68.395663][ T18] (&htab->buckets[i].lock){+...}-{2:2} [ 68.395688][ T18] [ 68.395688][ T18] ... which became HARDIRQ-irq-unsafe at: [ 68.409097][ T18] ... [ 68.409104][ T18] lock_acquire+0x1e4/0x530 [ 68.416358][ T18] _raw_spin_lock_bh+0x35/0x50 [ 68.421206][ T18] sock_hash_free+0x164/0x820 [ 68.425988][ T18] bpf_map_free_deferred+0xe6/0x110 [ 68.431284][ T18] process_scheduled_works+0xa00/0x1770 [ 68.436907][ T18] worker_thread+0x86d/0xd70 [ 68.441588][ T18] kthread+0x2f0/0x390 [ 68.445744][ T18] ret_from_fork+0x4b/0x80 [ 68.450263][ T18] ret_from_fork_asm+0x1a/0x30 [ 68.455146][ T18] [ 68.455146][ T18] other info that might help us debug this: [ 68.455146][ T18] [ 68.465373][ T18] Possible interrupt unsafe locking scenario: [ 68.465373][ T18] [ 68.473685][ T18] CPU0 CPU1 [ 68.479048][ T18] ---- ---- [ 68.484409][ T18] lock(&htab->buckets[i].lock); [ 68.489432][ T18] local_irq_disable(); [ 68.496193][ T18] lock(&base->lock); [ 68.502791][ T18] lock(&htab->buckets[i].lock); [ 68.510340][ T18] [ 68.513791][ T18] lock(&base->lock); [ 68.518040][ T18] [ 68.518040][ T18] *** DEADLOCK *** [ 68.518040][ T18] [ 68.526264][ T18] 2 locks held by rcu_exp_gp_kthr/18: [ 68.531631][ T18] #0: ffff8880b952a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 68.540982][ T18] #1: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420 [ 68.550389][ T18] [ 68.550389][ T18] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 68.560788][ T18] -> (&base->lock){-.-.}-{2:2} { [ 68.565832][ T18] IN-HARDIRQ-W at: [ 68.569812][ T18] lock_acquire+0x1e4/0x530 [ 68.575969][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 68.582907][ T18] lock_timer_base+0x112/0x240 [ 68.589330][ T18] add_timer_on+0x1e5/0x5c0 [ 68.595489][ T18] handle_irq_event+0xad/0x1f0 [ 68.601921][ T18] handle_level_irq+0x3c5/0x6e0 [ 68.608422][ T18] __common_interrupt+0x13a/0x230 [ 68.615104][ T18] common_interrupt+0xa5/0xd0 [ 68.621441][ T18] asm_common_interrupt+0x26/0x40 [ 68.628146][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 68.635550][ T18] __setup_irq+0x1277/0x1cf0 [ 68.641837][ T18] request_threaded_irq+0x2ab/0x380 [ 68.648799][ T18] setup_default_timer_irq+0x25/0x60 [ 68.655764][ T18] x86_late_time_init+0x66/0xc0 [ 68.662463][ T18] start_kernel+0x3f3/0x500 [ 68.668623][ T18] x86_64_start_reservations+0x2a/0x30 [ 68.675736][ T18] x86_64_start_kernel+0x99/0xa0 [ 68.682348][ T18] common_startup_64+0x13e/0x147 [ 68.688942][ T18] IN-SOFTIRQ-W at: [ 68.692947][ T18] lock_acquire+0x1e4/0x530 [ 68.699209][ T18] _raw_spin_lock_irq+0xd3/0x120 [ 68.705836][ T18] __run_timer_base+0x103/0x8e0 [ 68.712338][ T18] run_timer_softirq+0x67/0x170 [ 68.718853][ T18] __do_softirq+0x2be/0x943 [ 68.725028][ T18] __irq_exit_rcu+0xf2/0x1c0 [ 68.731271][ T18] irq_exit_rcu+0x9/0x30 [ 68.737163][ T18] common_interrupt+0xaa/0xd0 [ 68.743502][ T18] asm_common_interrupt+0x26/0x40 [ 68.750189][ T18] console_flush_all+0x9cd/0xec0 [ 68.756788][ T18] console_unlock+0x13b/0x4d0 [ 68.763121][ T18] vprintk_emit+0x509/0x720 [ 68.769297][ T18] _printk+0xd5/0x120 [ 68.774942][ T18] identify_boot_cpu+0xae/0xe0 [ 68.781364][ T18] arch_cpu_finalize_init+0x9/0xa0 [ 68.788240][ T18] start_kernel+0x402/0x500 [ 68.794391][ T18] x86_64_start_reservations+0x2a/0x30 [ 68.801505][ T18] x86_64_start_kernel+0x99/0xa0 [ 68.808109][ T18] common_startup_64+0x13e/0x147 [ 68.814697][ T18] INITIAL USE at: [ 68.818608][ T18] lock_acquire+0x1e4/0x530 [ 68.824671][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 68.831532][ T18] lock_timer_base+0x112/0x240 [ 68.837915][ T18] __mod_timer+0x1ca/0xeb0 [ 68.843903][ T18] queue_delayed_work_on+0x15a/0x260 [ 68.850847][ T18] crng_reseed+0xe7/0x220 [ 68.856742][ T18] random_init+0x1a9/0x300 [ 68.862730][ T18] start_kernel+0x253/0x500 [ 68.868792][ T18] x86_64_start_reservations+0x2a/0x30 [ 68.875824][ T18] x86_64_start_kernel+0x99/0xa0 [ 68.882349][ T18] common_startup_64+0x13e/0x147 [ 68.888864][ T18] } [ 68.891363][ T18] ... key at: [] init_timer_cpu.__key+0x0/0x20 [ 68.899618][ T18] [ 68.899618][ T18] the dependencies between the lock to be acquired [ 68.899626][ T18] and HARDIRQ-irq-unsafe lock: [ 68.913242][ T18] -> (&htab->buckets[i].lock){+...}-{2:2} { [ 68.919158][ T18] HARDIRQ-ON-W at: [ 68.923135][ T18] lock_acquire+0x1e4/0x530 [ 68.929288][ T18] _raw_spin_lock_bh+0x35/0x50 [ 68.935877][ T18] sock_hash_free+0x164/0x820 [ 68.942207][ T18] bpf_map_free_deferred+0xe6/0x110 [ 68.949060][ T18] process_scheduled_works+0xa00/0x1770 [ 68.956258][ T18] worker_thread+0x86d/0xd70 [ 68.962497][ T18] kthread+0x2f0/0x390 [ 68.968222][ T18] ret_from_fork+0x4b/0x80 [ 68.974311][ T18] ret_from_fork_asm+0x1a/0x30 [ 68.980731][ T18] INITIAL USE at: [ 68.984624][ T18] lock_acquire+0x1e4/0x530 [ 68.990688][ T18] _raw_spin_lock_bh+0x35/0x50 [ 68.997015][ T18] sock_hash_free+0x164/0x820 [ 69.003258][ T18] bpf_map_free_deferred+0xe6/0x110 [ 69.010020][ T18] process_scheduled_works+0xa00/0x1770 [ 69.017128][ T18] worker_thread+0x86d/0xd70 [ 69.023282][ T18] kthread+0x2f0/0x390 [ 69.028938][ T18] ret_from_fork+0x4b/0x80 [ 69.034935][ T18] ret_from_fork_asm+0x1a/0x30 [ 69.041278][ T18] } [ 69.043788][ T18] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 69.052132][ T18] ... acquired at: [ 69.055934][ T18] lock_acquire+0x1e4/0x530 [ 69.060614][ T18] _raw_spin_lock_bh+0x35/0x50 [ 69.065557][ T18] sock_hash_delete_elem+0xb0/0x300 [ 69.070940][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 69.076571][ T18] bpf_trace_run2+0x204/0x420 [ 69.081424][ T18] enqueue_timer+0x396/0x550 [ 69.086208][ T18] __mod_timer+0xa0e/0xeb0 [ 69.090803][ T18] schedule_timeout+0x1b9/0x310 [ 69.095830][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 69.101381][ T18] kthread_worker_fn+0x4bf/0xab0 [ 69.106496][ T18] kthread+0x2f0/0x390 [ 69.110738][ T18] ret_from_fork+0x4b/0x80 [ 69.115331][ T18] ret_from_fork_asm+0x1a/0x30 [ 69.120372][ T18] [ 69.122693][ T18] [ 69.122693][ T18] stack backtrace: [ 69.128573][ T18] CPU: 1 PID: 18 Comm: rcu_exp_gp_kthr Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0 [ 69.138458][ T18] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 69.148508][ T18] Call Trace: [ 69.151785][ T18] [ 69.154716][ T18] dump_stack_lvl+0x1e7/0x2e0 [ 69.159398][ T18] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.164603][ T18] ? __pfx__printk+0x10/0x10 [ 69.169197][ T18] ? print_shortest_lock_dependencies+0xf2/0x160 [ 69.175537][ T18] validate_chain+0x4dc7/0x58e0 [ 69.180404][ T18] ? __pfx_validate_chain+0x10/0x10 [ 69.185613][ T18] ? __pfx_validate_chain+0x10/0x10 [ 69.190817][ T18] ? register_lock_class+0x102/0x980 [ 69.196104][ T18] ? __pfx_register_lock_class+0x10/0x10 [ 69.201737][ T18] ? mark_lock+0x9a/0x350 [ 69.206098][ T18] __lock_acquire+0x1346/0x1fd0 [ 69.210973][ T18] lock_acquire+0x1e4/0x530 [ 69.215489][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 69.220876][ T18] ? __pfx_lockdep_softirqs_off+0x10/0x10 [ 69.226603][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 69.231633][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 69.237008][ T18] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 69.242813][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 69.247839][ T18] ? do_raw_spin_unlock+0x13c/0x8b0 [ 69.253045][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 69.258423][ T18] _raw_spin_lock_bh+0x35/0x50 [ 69.263209][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 69.268590][ T18] sock_hash_delete_elem+0xb0/0x300 [ 69.273797][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 69.279258][ T18] bpf_trace_run2+0x204/0x420 [ 69.283956][ T18] ? bpf_trace_run2+0x114/0x420 [ 69.288828][ T18] ? __pfx_bpf_trace_run2+0x10/0x10 [ 69.294030][ T18] ? __pfx_debug_object_activate+0x10/0x10 [ 69.299853][ T18] ? lockdep_hardirqs_on+0x99/0x150 [ 69.305070][ T18] enqueue_timer+0x396/0x550 [ 69.309763][ T18] __mod_timer+0xa0e/0xeb0 [ 69.314191][ T18] ? __asan_memset+0x23/0x50 [ 69.318784][ T18] ? __pfx___mod_timer+0x10/0x10 [ 69.323727][ T18] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 69.329537][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 69.335519][ T18] schedule_timeout+0x1b9/0x310 [ 69.340369][ T18] ? __pfx_schedule_timeout+0x10/0x10 [ 69.345743][ T18] ? __pfx_process_timeout+0x10/0x10 [ 69.351041][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 69.356432][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 69.362419][ T18] ? __pfx_rcu_exp_sel_wait_wake+0x10/0x10 [ 69.368247][ T18] ? _raw_spin_lock_irq+0xdf/0x120 [ 69.373370][ T18] kthread_worker_fn+0x4bf/0xab0 [ 69.378318][ T18] ? kthread_worker_fn+0xdc/0xab0 [ 69.383347][ T18] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 69.388632][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 69.394094][ T18] kthread+0x2f0/0x390 [ 69.398170][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 69.403649][ T18] ? __pfx_kthread+0x10/0x10 [ 69.408244][ T18] ret_from_fork+0x4b/0x80 [ 69.412688][ T18] ? __pfx_kthread+0x10/0x10 [ 69.417283][ T18] ret_from_fork_asm+0x1a/0x30 [ 69.422062][ T18]