Warning: Permanently added '10.128.0.230' (ED25519) to the list of known hosts. executing program [ 38.674123][ T4219] [ 38.674886][ T4219] ===================================================== [ 38.676874][ T4219] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected [ 38.678977][ T4219] 6.1.45-syzkaller #0 Not tainted [ 38.680435][ T4219] ----------------------------------------------------- [ 38.682408][ T4219] syz-executor261/4219 [HC0[0]:SC0[2]:HE1:SE0] is trying to acquire: [ 38.684712][ T4219] ffff800015b3c360 (fs_reclaim){+.+.}-{0:0}, at: __kmem_cache_alloc_node+0x58/0x388 [ 38.687430][ T4219] [ 38.687430][ T4219] and this task is already holding: [ 38.689563][ T4219] ffff800017eb4848 (noop_qdisc.q.lock){+.-.}-{2:2}, at: sch_tree_lock+0x120/0x1d4 [ 38.692207][ T4219] which would create a new lock dependency: [ 38.693898][ T4219] (noop_qdisc.q.lock){+.-.}-{2:2} -> (fs_reclaim){+.+.}-{0:0} [ 38.696085][ T4219] [ 38.696085][ T4219] but this new dependency connects a SOFTIRQ-irq-safe lock: [ 38.698779][ T4219] (noop_qdisc.q.lock){+.-.}-{2:2} [ 38.698797][ T4219] [ 38.698797][ T4219] ... which became SOFTIRQ-irq-safe at: [ 38.702467][ T4219] lock_acquire+0x26c/0x7cc [ 38.703766][ T4219] _raw_spin_lock+0x54/0x6c [ 38.705053][ T4219] net_tx_action+0x6ec/0x94c [ 38.706393][ T4219] __do_softirq+0x30c/0xea0 [ 38.707729][ T4219] ____do_softirq+0x14/0x20 [ 38.709058][ T4219] call_on_irq_stack+0x24/0x4c [ 38.710454][ T4219] do_softirq_own_stack+0x20/0x2c [ 38.711914][ T4219] do_softirq+0x120/0x20c [ 38.713155][ T4219] __local_bh_enable_ip+0x2c0/0x4d0 [ 38.714635][ T4219] local_bh_enable+0x28/0x34 [ 38.715974][ T4219] dev_deactivate_many+0x3d4/0xa8c [ 38.717450][ T4219] dev_deactivate+0x13c/0x1fc [ 38.718825][ T4219] linkwatch_do_dev+0x29c/0x3a4 [ 38.720226][ T4219] __linkwatch_run_queue+0x3a0/0x700 [ 38.721775][ T4219] linkwatch_event+0x58/0x68 [ 38.723112][ T4219] process_one_work+0x7ac/0x1404 [ 38.724537][ T4219] worker_thread+0x8e4/0xfec [ 38.725872][ T4219] kthread+0x250/0x2d8 [ 38.727060][ T4219] ret_from_fork+0x10/0x20 [ 38.728349][ T4219] [ 38.728349][ T4219] to a SOFTIRQ-irq-unsafe lock: [ 38.730335][ T4219] (fs_reclaim){+.+.}-{0:0} [ 38.730354][ T4219] [ 38.730354][ T4219] ... which became SOFTIRQ-irq-unsafe at: [ 38.733884][ T4219] ... [ 38.733890][ T4219] lock_acquire+0x26c/0x7cc [ 38.735967][ T4219] fs_reclaim_acquire+0x90/0x12c [ 38.737405][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 38.738982][ T4219] kmalloc_node_trace+0x44/0x90 [ 38.740365][ T4219] init_rescuer+0xa4/0x264 [ 38.741630][ T4219] workqueue_init+0x298/0x5b4 [ 38.742993][ T4219] kernel_init_freeable+0x33c/0x528 [ 38.744536][ T4219] kernel_init+0x24/0x29c [ 38.745815][ T4219] ret_from_fork+0x10/0x20 [ 38.747086][ T4219] [ 38.747086][ T4219] other info that might help us debug this: [ 38.747086][ T4219] [ 38.750046][ T4219] Possible interrupt unsafe locking scenario: [ 38.750046][ T4219] [ 38.752518][ T4219] CPU0 CPU1 [ 38.754092][ T4219] ---- ---- [ 38.755668][ T4219] lock(fs_reclaim); [ 38.756806][ T4219] local_irq_disable(); [ 38.758780][ T4219] lock(noop_qdisc.q.lock); [ 38.760893][ T4219] lock(fs_reclaim); [ 38.762766][ T4219] [ 38.763727][ T4219] lock(noop_qdisc.q.lock); [ 38.765107][ T4219] [ 38.765107][ T4219] *** DEADLOCK *** [ 38.765107][ T4219] [ 38.767488][ T4219] 2 locks held by syz-executor261/4219: [ 38.769081][ T4219] #0: ffff800017e6fdc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e8/0xd94 [ 38.771823][ T4219] #1: ffff800017eb4848 (noop_qdisc.q.lock){+.-.}-{2:2}, at: sch_tree_lock+0x120/0x1d4 [ 38.774640][ T4219] [ 38.774640][ T4219] the dependencies between SOFTIRQ-irq-safe lock and the holding lock: [ 38.777641][ T4219] -> (noop_qdisc.q.lock){+.-.}-{2:2} { [ 38.779261][ T4219] HARDIRQ-ON-W at: [ 38.780420][ T4219] lock_acquire+0x26c/0x7cc [ 38.782189][ T4219] _raw_spin_lock+0x54/0x6c [ 38.783945][ T4219] __dev_queue_xmit+0xb14/0x38d8 [ 38.785855][ T4219] tx+0x90/0x134 [ 38.787365][ T4219] kthread+0x1ac/0x374 [ 38.788988][ T4219] kthread+0x250/0x2d8 [ 38.790583][ T4219] ret_from_fork+0x10/0x20 [ 38.792338][ T4219] IN-SOFTIRQ-W at: [ 38.793477][ T4219] lock_acquire+0x26c/0x7cc [ 38.795284][ T4219] _raw_spin_lock+0x54/0x6c [ 38.797080][ T4219] net_tx_action+0x6ec/0x94c [ 38.798874][ T4219] __do_softirq+0x30c/0xea0 [ 38.800625][ T4219] ____do_softirq+0x14/0x20 [ 38.802390][ T4219] call_on_irq_stack+0x24/0x4c [ 38.804230][ T4219] do_softirq_own_stack+0x20/0x2c [ 38.806148][ T4219] do_softirq+0x120/0x20c [ 38.807899][ T4219] __local_bh_enable_ip+0x2c0/0x4d0 [ 38.809876][ T4219] local_bh_enable+0x28/0x34 [ 38.811675][ T4219] dev_deactivate_many+0x3d4/0xa8c [ 38.813623][ T4219] dev_deactivate+0x13c/0x1fc [ 38.815479][ T4219] linkwatch_do_dev+0x29c/0x3a4 [ 38.817345][ T4219] __linkwatch_run_queue+0x3a0/0x700 [ 38.819373][ T4219] linkwatch_event+0x58/0x68 [ 38.821160][ T4219] process_one_work+0x7ac/0x1404 [ 38.823034][ T4219] worker_thread+0x8e4/0xfec [ 38.824865][ T4219] kthread+0x250/0x2d8 [ 38.826512][ T4219] ret_from_fork+0x10/0x20 [ 38.828289][ T4219] INITIAL USE at: [ 38.829434][ T4219] lock_acquire+0x26c/0x7cc [ 38.831210][ T4219] _raw_spin_lock+0x54/0x6c [ 38.832991][ T4219] __dev_queue_xmit+0xb14/0x38d8 [ 38.834903][ T4219] tx+0x90/0x134 [ 38.836363][ T4219] kthread+0x1ac/0x374 [ 38.838000][ T4219] kthread+0x250/0x2d8 [ 38.839691][ T4219] ret_from_fork+0x10/0x20 [ 38.841386][ T4219] } [ 38.842107][ T4219] ... key at: [] noop_qdisc+0x108/0x320 [ 38.844323][ T4219] [ 38.844323][ T4219] the dependencies between the lock to be acquired [ 38.844330][ T4219] and SOFTIRQ-irq-unsafe lock: [ 38.848218][ T4219] -> (fs_reclaim){+.+.}-{0:0} { [ 38.849604][ T4219] HARDIRQ-ON-W at: [ 38.850735][ T4219] lock_acquire+0x26c/0x7cc [ 38.852482][ T4219] fs_reclaim_acquire+0x90/0x12c [ 38.854375][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 38.856402][ T4219] kmalloc_node_trace+0x44/0x90 [ 38.858280][ T4219] init_rescuer+0xa4/0x264 [ 38.860044][ T4219] workqueue_init+0x298/0x5b4 [ 38.861865][ T4219] kernel_init_freeable+0x33c/0x528 [ 38.863823][ T4219] kernel_init+0x24/0x29c [ 38.865536][ T4219] ret_from_fork+0x10/0x20 [ 38.867266][ T4219] SOFTIRQ-ON-W at: [ 38.868429][ T4219] lock_acquire+0x26c/0x7cc [ 38.870228][ T4219] fs_reclaim_acquire+0x90/0x12c [ 38.872128][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 38.874145][ T4219] kmalloc_node_trace+0x44/0x90 [ 38.876001][ T4219] init_rescuer+0xa4/0x264 [ 38.877730][ T4219] workqueue_init+0x298/0x5b4 [ 38.879446][ T4219] kernel_init_freeable+0x33c/0x528 [ 38.881275][ T4219] kernel_init+0x24/0x29c [ 38.882896][ T4219] ret_from_fork+0x10/0x20 [ 38.884586][ T4219] INITIAL USE at: [ 38.885616][ T4219] lock_acquire+0x26c/0x7cc [ 38.887292][ T4219] fs_reclaim_acquire+0x90/0x12c [ 38.889160][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 38.891046][ T4219] kmalloc_node_trace+0x44/0x90 [ 38.892784][ T4219] init_rescuer+0xa4/0x264 [ 38.894409][ T4219] workqueue_init+0x298/0x5b4 [ 38.896131][ T4219] kernel_init_freeable+0x33c/0x528 [ 38.897991][ T4219] kernel_init+0x24/0x29c [ 38.899577][ T4219] ret_from_fork+0x10/0x20 [ 38.901269][ T4219] } [ 38.901968][ T4219] ... key at: [] __fs_reclaim_map+0x0/0xe0 [ 38.904117][ T4219] ... acquired at: [ 38.905182][ T4219] fs_reclaim_acquire+0x90/0x12c [ 38.906599][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 38.908169][ T4219] __kmalloc_node+0xcc/0x1d0 [ 38.909481][ T4219] kvmalloc_node+0x84/0x1e4 [ 38.910813][ T4219] get_dist_table+0xa0/0x354 [ 38.912200][ T4219] netem_change+0x754/0x1900 [ 38.913531][ T4219] netem_init+0x54/0xb8 [ 38.914800][ T4219] qdisc_create+0x70c/0xe64 [ 38.916130][ T4219] tc_modify_qdisc+0x9f0/0x1840 [ 38.917564][ T4219] rtnetlink_rcv_msg+0x72c/0xd94 [ 38.919052][ T4219] netlink_rcv_skb+0x20c/0x3b8 [ 38.920426][ T4219] rtnetlink_rcv+0x28/0x38 [ 38.921705][ T4219] netlink_unicast+0x660/0x8d4 [ 38.923087][ T4219] netlink_sendmsg+0x834/0xb18 [ 38.924494][ T4219] ____sys_sendmsg+0x558/0x844 [ 38.925899][ T4219] __sys_sendmsg+0x26c/0x33c [ 38.927294][ T4219] __arm64_sys_sendmsg+0x80/0x94 [ 38.928799][ T4219] invoke_syscall+0x98/0x2c0 [ 38.930131][ T4219] el0_svc_common+0x138/0x258 [ 38.931530][ T4219] do_el0_svc+0x64/0x218 [ 38.932798][ T4219] el0_svc+0x58/0x168 [ 38.933986][ T4219] el0t_64_sync_handler+0x84/0xf0 [ 38.935448][ T4219] el0t_64_sync+0x18c/0x190 [ 38.936783][ T4219] [ 38.937428][ T4219] [ 38.937428][ T4219] stack backtrace: [ 38.939131][ T4219] CPU: 0 PID: 4219 Comm: syz-executor261 Not tainted 6.1.45-syzkaller #0 [ 38.941553][ T4219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 38.944366][ T4219] Call trace: [ 38.945249][ T4219] dump_backtrace+0x1c8/0x1f4 [ 38.946543][ T4219] show_stack+0x2c/0x3c [ 38.947717][ T4219] dump_stack_lvl+0x108/0x170 [ 38.949051][ T4219] dump_stack+0x1c/0x58 [ 38.950217][ T4219] __lock_acquire+0x6310/0x764c [ 38.951610][ T4219] lock_acquire+0x26c/0x7cc [ 38.952857][ T4219] fs_reclaim_acquire+0x90/0x12c [ 38.954269][ T4219] __kmem_cache_alloc_node+0x58/0x388 [ 38.955813][ T4219] __kmalloc_node+0xcc/0x1d0 [ 38.957116][ T4219] kvmalloc_node+0x84/0x1e4 [ 38.958349][ T4219] get_dist_table+0xa0/0x354 [ 38.959674][ T4219] netem_change+0x754/0x1900 [ 38.961039][ T4219] netem_init+0x54/0xb8 [ 38.962209][ T4219] qdisc_create+0x70c/0xe64 [ 38.963489][ T4219] tc_modify_qdisc+0x9f0/0x1840 [ 38.964848][ T4219] rtnetlink_rcv_msg+0x72c/0xd94 [ 38.966247][ T4219] netlink_rcv_skb+0x20c/0x3b8 [ 38.967573][ T4219] rtnetlink_rcv+0x28/0x38 [ 38.968836][ T4219] netlink_unicast+0x660/0x8d4 [ 38.970189][ T4219] netlink_sendmsg+0x834/0xb18 [ 38.971519][ T4219] ____sys_sendmsg+0x558/0x844 [ 38.972912][ T4219] __sys_sendmsg+0x26c/0x33c [ 38.974263][ T4219] __arm64_sys_sendmsg+0x80/0x94 [ 38.975699][ T4219] invoke_syscall+0x98/0x2c0 [ 38.977004][ T4219] el0_svc_common+0x138/0x258 [ 38.978317][ T4219] do_el0_svc+0x64/0x218 [ 38.979487][ T4219] el0_svc+0x58/0x168 [ 38.980605][ T4219] el0t_64_sync_handler+0x84/0xf0 [ 38.982023][ T4219] el0t_64_sync+0x18c/0x190 [ 38.983345][ T4219] BUG: sleeping function called from invalid context at include/linux/sched/mm.h:274 [ 38.985943][ T4219] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 4219, name: syz-executor261 [ 38.988503][ T4219] preempt_count: 201, expected: 0 [ 38.989874][ T4219] RCU nest depth: 0, expected: 0 [ 38.991216][ T4219] INFO: lockdep is turned off. [ 38.992503][ T4219] Preemption disabled at: [ 38.992511][ T4219] [] sch_tree_lock+0x120/0x1d4 [ 38.995432][ T4219] CPU: 0 PID: 4219 Comm: syz-executor261 Not tainted 6.1.45-syzkaller #0 [ 38.997684][ T4219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 39.000366][ T4219] Call trace: [ 39.001237][ T4219] dump_backtrace+0x1c8/0x1f4 [ 39.002454][ T4219] show_stack+0x2c/0x3c [ 39.003617][ T4219] dump_stack_lvl+0x108/0x170 [ 39.004885][ T4219] dump_stack+0x1c/0x58 [ 39.006039][ T4219] __might_resched+0x37c/0x4d8 [ 39.007366][ T4219] __might_sleep+0x90/0xe4 [ 39.008611][ T4219] __kmem_cache_alloc_node+0x74/0x388 [ 39.010145][ T4219] __kmalloc_node+0xcc/0x1d0 [ 39.011449][ T4219] kvmalloc_node+0x84/0x1e4 [ 39.012706][ T4219] get_dist_table+0xa0/0x354 [ 39.013982][ T4219] netem_change+0x754/0x1900 [ 39.015196][ T4219] netem_init+0x54/0xb8 [ 39.016317][ T4219] qdisc_create+0x70c/0xe64 [ 39.017583][ T4219] tc_modify_qdisc+0x9f0/0x1840 [ 39.018964][ T4219] rtnetlink_rcv_msg+0x72c/0xd94 [ 39.020357][ T4219] netlink_rcv_skb+0x20c/0x3b8 [ 39.021677][ T4219] rtnetlink_rcv+0x28/0x38 [ 39.022902][ T4219] netlink_unicast+0x660/0x8d4 [ 39.024174][ T4219] netlink_sendmsg+0x834/0xb18 [ 39.025471][ T4219] ____sys_sendmsg+0x558/0x844 [ 39.026800][ T4219] __sys_sendmsg+0x26c/0x33c [ 39.028084][ T4219] __arm64_sys_sendmsg+0x80/0x94 [ 39.029472][ T4219] invoke_syscall+0x98/0x2c0 [ 39.030764][ T4219] el0_svc_common+0x138/0x258 [ 39.032067][ T4219] do_el0_svc+0x64/0x218 [ 39.033161][ T4219] el0_svc+0x58/0x168 [ 39.034213][ T4219] el0t_64_sync_handler+0x84/0xf0 [ 39.035614][ T4219] el0t_64_sync+0x18c/0x190