./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1889452631

<...>
Warning: Permanently added '10.128.1.101' (ED25519) to the list of known hosts.
execve("./syz-executor1889452631", ["./syz-executor1889452631"], 0x7ffd1e514fb0 /* 10 vars */) = 0
brk(NULL)                               = 0x555594e7b000
brk(0x555594e7bd00)                     = 0x555594e7bd00
arch_prctl(ARCH_SET_FS, 0x555594e7b380) = 0
set_tid_address(0x555594e7b650)         = 5066
set_robust_list(0x555594e7b660, 24)     = 0
rseq(0x555594e7bca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1889452631", 4096) = 28
getrandom("\x5d\xda\xe6\x08\x9b\xa8\xac\x5a", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555594e7bd00
brk(0x555594e9cd00)                     = 0x555594e9cd00
brk(0x555594e9d000)                     = 0x555594e9d000
mprotect(0x7ff23caad000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mount(NULL, "/proc/sys/fs/binfmt_misc", "binfmt_misc", 0, NULL) = -1 EBUSY (Device or resource busy)
openat(AT_FDCWD, "/proc/sys/fs/binfmt_misc/register", O_WRONLY|O_CLOEXEC) = 3
write(3, "\x3a\x73\x79\x7a\x30\x3a\x4d\x3a\x30\x3a\x01\x3a\x3a\x2e\x2f\x66\x69\x6c\x65\x30\x3a", 21) = 21
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/fs/binfmt_misc/register", O_WRONLY|O_CLOEXEC) = 3
write(3, "\x3a\x73\x79\x7a\x31\x3a\x4d\x3a\x31\x3a\x02\x3a\x3a\x2e\x2f\x66\x69\x6c\x65\x30\x3a\x50\x4f\x43", 24) = 24
close(3)                                = 0
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5067 attached
, child_tidptr=0x555594e7b650) = 5067
[pid  5067] set_robust_list(0x555594e7b660, 24) = 0
[pid  5067] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5067] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5067] setsid()                    = 1
[pid  5067] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5067] unshare(CLONE_NEWNS)        = 0
[pid  5067] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5067] unshare(CLONE_NEWIPC)       = 0
[pid  5067] unshare(CLONE_NEWCGROUP)    = 0
[pid  5067] unshare(CLONE_NEWUTS)       = 0
[pid  5067] unshare(CLONE_SYSVSEM)      = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "16777216", 8)     = 8
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "536870912", 9)    = 9
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "1024", 4)         = 4
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "8192", 4)         = 4
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "1024", 4)         = 4
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "1024", 4)         = 4
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5067] close(3)                    = 0
[pid  5067] getpid()                    = 1
[pid  5067] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5067] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5067] unshare(CLONE_NEWNET)       = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "0 65535", 7)      = 7
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/dev/net/tun", O_RDWR|O_NONBLOCK) = 3
[pid  5067] dup2(3, 200)                = 200
[pid  5067] close(3)                    = 0
[pid  5067] ioctl(200, TUNSETIFF, 0x7ffd302f9ea0) = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/net/ipv6/conf/syz_tun/accept_dad", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "0", 1)            = 1
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/net/ipv6/conf/syz_tun/router_solicitations", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "0", 1)            = 1
[pid  5067] close(3)                    = 0
[pid  5067] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 3
[pid  5067] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5067] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] sendto(3, [{nlmsg_len=40, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}, "\x02\x18\x00\x00\x0b\x00\x00\x00\x08\x00\x02\x00\xac\x14\x14\xaa\x08\x00\x01\x00\xac\x14\x14\xaa"], 40, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 40
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=40, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5067] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] sendto(3, [{nlmsg_len=64, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}, "\x0a\x78\x00\x00\x0b\x00\x00\x00\x14\x00\x02\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa\x14\x00\x01\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5067] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] sendto(3, [{nlmsg_len=48, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}, "\x02\x00\x00\x00\x0b\x00\x00\x00\x80\x00\x00\x00\x08\x00\x01\x00\xac\x14\x14\xbb\x0a\x00\x02\x00\xbb\xaa\xaa\xaa\xaa\xaa\x00\x00"], 48, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 48
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=48, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5067] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] sendto(3, [{nlmsg_len=60, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}, "\x0a\x00\x00\x00\x0b\x00\x00\x00\x80\x00\x00\x00\x14\x00\x01\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbb\x0a\x00\x02\x00\xbb\xaa\xaa\xaa\xaa\xaa\x00\x00"], 60, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 60
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=60, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5067] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] sendto(3, [{nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0b\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00\x0a\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\xaa\x00\x00"], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] close(3)                    = 0
[pid  5067] mkdir("/dev/binderfs", 0777) = 0
[pid  5067] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5067] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5067] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3
[pid  5067] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address)
[pid  5067] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4
[pid  5067] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_end", prog_fd=4}}, 16) = 5
[pid  5067] exit_group(1)               = ?
[   74.111465][   T18] 
[   74.113813][   T18] =====================================================
[   74.120731][   T18] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected
[   74.128171][   T18] 6.8.0-syzkaller-05236-g443574b03387 #0 Not tainted
[   74.134855][   T18] -----------------------------------------------------
[   74.141770][   T18] rcu_exp_gp_kthr/18 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire:
[   74.149649][   T18] ffff88801e08b020 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300
[   74.159925][   T18] 
[   74.159925][   T18] and this task is already holding:
[   74.167275][   T18] ffff8880b943e158 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[   74.176761][   T18] which would create a new lock dependency:
[   74.182633][   T18]  (&rq->__lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2}
[   74.190729][   T18] 
[   74.190729][   T18] but this new dependency connects a HARDIRQ-irq-safe lock:
[   74.200181][   T18]  (&rq->__lock){-.-.}-{2:2}
[   74.200202][   T18] 
[   74.200202][   T18] ... which became HARDIRQ-irq-safe at:
[   74.212465][   T18]   lock_acquire+0x1e4/0x530
[   74.217044][   T18]   _raw_spin_lock_nested+0x31/0x40
[   74.222246][   T18]   raw_spin_rq_lock_nested+0x2a/0x140
[   74.227698][   T18]   scheduler_tick+0xa1/0x6e0
[   74.232373][   T18]   update_process_times+0x202/0x230
[   74.237664][   T18]   tick_periodic+0x190/0x220
[   74.242328][   T18]   tick_handle_periodic+0x4a/0x160
[   74.247521][   T18]   timer_interrupt+0x5c/0x70
[   74.252193][   T18]   __handle_irq_event_percpu+0x28c/0xa30
[   74.257902][   T18]   handle_irq_event+0x89/0x1f0
[   74.262745][   T18]   handle_edge_irq+0x25f/0xc20
[   74.267585][   T18]   __common_interrupt+0x13a/0x230
[   74.272689][   T18]   common_interrupt+0xa5/0xd0
[   74.277448][   T18]   asm_common_interrupt+0x26/0x40
[   74.282555][   T18]   __sanitizer_cov_trace_switch+0xe/0x120
[   74.288357][   T18]   spectre_v2_select_mitigation+0x93/0x8f0
[   74.294253][   T18]   cpu_select_mitigations+0x41/0xa0
[   74.299552][   T18]   arch_cpu_finalize_init+0x20/0xa0
[   74.304934][   T18]   start_kernel+0x402/0x500
[   74.309515][   T18]   x86_64_start_reservations+0x2a/0x30
[   74.315054][   T18]   x86_64_start_kernel+0x99/0xa0
[   74.320075][   T18]   common_startup_64+0x13e/0x147
[   74.325094][   T18] 
[   74.325094][   T18] to a HARDIRQ-irq-unsafe lock:
[   74.332097][   T18]  (&htab->buckets[i].lock){+...}-{2:2}
[   74.332120][   T18] 
[   74.332120][   T18] ... which became HARDIRQ-irq-unsafe at:
[   74.345505][   T18] ...
[   74.345510][   T18]   lock_acquire+0x1e4/0x530
[   74.352649][   T18]   _raw_spin_lock_bh+0x35/0x50
[   74.357487][   T18]   sock_hash_delete_elem+0xb0/0x300
[   74.362759][   T18]   bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[   74.368290][   T18]   bpf_trace_run2+0x204/0x420
[   74.373067][   T18]   trace_contention_end+0xd7/0x100
[   74.378260][   T18]   __mutex_lock+0x2e5/0xd70
[   74.382844][   T18]   pipe_write+0x1c9/0x1a40
[   74.387340][   T18]   vfs_write+0xa84/0xcb0
[   74.391660][   T18]   ksys_write+0x1a0/0x2c0
[   74.396067][   T18]   do_syscall_64+0xfb/0x240
[   74.400647][   T18]   entry_SYSCALL_64_after_hwframe+0x6d/0x75
[   74.406625][   T18] 
[   74.406625][   T18] other info that might help us debug this:
[   74.406625][   T18] 
[   74.416927][   T18]  Possible interrupt unsafe locking scenario:
[   74.416927][   T18] 
[   74.425233][   T18]        CPU0                    CPU1
[   74.430588][   T18]        ----                    ----
[   74.435950][   T18]   lock(&htab->buckets[i].lock);
[   74.440986][   T18]                                local_irq_disable();
[   74.447727][   T18]                                lock(&rq->__lock);
[   74.454309][   T18]                                lock(&htab->buckets[i].lock);
[   74.461865][   T18]   <Interrupt>
[   74.465306][   T18]     lock(&rq->__lock);
[   74.469559][   T18] 
[   74.469559][   T18]  *** DEADLOCK ***
[   74.469559][   T18] 
[   74.477687][   T18] 3 locks held by rcu_exp_gp_kthr/18:
[   74.483042][   T18]  #0: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: newidle_balance+0x2a8/0x1080
[   74.492602][   T18]  #1: ffff8880b943e158 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[   74.502517][   T18]  #2: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420
[   74.511899][   T18] 
[   74.511899][   T18] the dependencies between HARDIRQ-irq-safe lock and the holding lock:
[   74.522305][   T18] -> (&rq->__lock){-.-.}-{2:2} {
[   74.527279][   T18]    IN-HARDIRQ-W at:
[   74.531291][   T18]                     lock_acquire+0x1e4/0x530
[   74.537435][   T18]                     _raw_spin_lock_nested+0x31/0x40
[   74.544211][   T18]                     raw_spin_rq_lock_nested+0x2a/0x140
[   74.551232][   T18]                     scheduler_tick+0xa1/0x6e0
[   74.557465][   T18]                     update_process_times+0x202/0x230
[   74.564305][   T18]                     tick_periodic+0x190/0x220
[   74.570535][   T18]                     tick_handle_periodic+0x4a/0x160
[   74.577289][   T18]                     timer_interrupt+0x5c/0x70
[   74.583526][   T18]                     __handle_irq_event_percpu+0x28c/0xa30
[   74.590803][   T18]                     handle_irq_event+0x89/0x1f0
[   74.597211][   T18]                     handle_edge_irq+0x25f/0xc20
[   74.603612][   T18]                     __common_interrupt+0x13a/0x230
[   74.610277][   T18]                     common_interrupt+0xa5/0xd0
[   74.616599][   T18]                     asm_common_interrupt+0x26/0x40
[   74.623271][   T18]                     __sanitizer_cov_trace_switch+0xe/0x120
[   74.630632][   T18]                     spectre_v2_select_mitigation+0x93/0x8f0
[   74.638082][   T18]                     cpu_select_mitigations+0x41/0xa0
[   74.644924][   T18]                     arch_cpu_finalize_init+0x20/0xa0
[   74.651769][   T18]                     start_kernel+0x402/0x500
[   74.657915][   T18]                     x86_64_start_reservations+0x2a/0x30
[   74.665016][   T18]                     x86_64_start_kernel+0x99/0xa0
[   74.671596][   T18]                     common_startup_64+0x13e/0x147
[   74.678177][   T18]    IN-SOFTIRQ-W at:
[   74.682146][   T18]                     lock_acquire+0x1e4/0x530
[   74.688286][   T18]                     _raw_spin_lock_nested+0x31/0x40
[   74.695041][   T18]                     raw_spin_rq_lock_nested+0x2a/0x140
[   74.702090][   T18]                     try_to_wake_up+0x7d3/0x1470
[   74.708494][   T18]                     call_timer_fn+0x17e/0x600
[   74.714725][   T18]                     __run_timer_base+0x66a/0x8e0
[   74.721215][   T18]                     run_timer_softirq+0xb7/0x170
[   74.727719][   T18]                     __do_softirq+0x2bc/0x943
[   74.733866][   T18]                     __irq_exit_rcu+0xf2/0x1c0
[   74.740091][   T18]                     irq_exit_rcu+0x9/0x30
[   74.745970][   T18]                     sysvec_apic_timer_interrupt+0xa6/0xc0
[   74.753241][   T18]                     asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   74.760907][   T18]                     default_idle+0x13/0x20
[   74.766902][   T18]                     default_idle_call+0x74/0xb0
[   74.773315][   T18]                     do_idle+0x22f/0x5d0
[   74.781498][   T18]                     cpu_startup_entry+0x42/0x60
[   74.787919][   T18]                     rest_init+0x2e0/0x300
[   74.793825][   T18]                     arch_call_rest_init+0xe/0x10
[   74.800338][   T18]                     start_kernel+0x47a/0x500
[   74.806495][   T18]                     x86_64_start_reservations+0x2a/0x30
[   74.813649][   T18]                     x86_64_start_kernel+0x99/0xa0
[   74.820248][   T18]                     common_startup_64+0x13e/0x147
[   74.826840][   T18]    INITIAL USE at:
[   74.830725][   T18]                    lock_acquire+0x1e4/0x530
[   74.836792][   T18]                    _raw_spin_lock_nested+0x31/0x40
[   74.843478][   T18]                    raw_spin_rq_lock_nested+0x2a/0x140
[   74.850410][   T18]                    rq_attach_root+0xee/0x540
[   74.856555][   T18]                    sched_init+0x64e/0xc30
[   74.862441][   T18]                    start_kernel+0x1ab/0x500
[   74.868498][   T18]                    x86_64_start_reservations+0x2a/0x30
[   74.875514][   T18]                    x86_64_start_kernel+0x99/0xa0
[   74.882006][   T18]                    common_startup_64+0x13e/0x147
[   74.888532][   T18]  }
[   74.891021][   T18]  ... key      at: [<ffffffff926c4080>] sched_init.__key+0x0/0x20
[   74.898907][   T18] 
[   74.898907][   T18] the dependencies between the lock to be acquired
[   74.898914][   T18]  and HARDIRQ-irq-unsafe lock:
[   74.912417][   T18] -> (&htab->buckets[i].lock){+...}-{2:2} {
[   74.918316][   T18]    HARDIRQ-ON-W at:
[   74.922286][   T18]                     lock_acquire+0x1e4/0x530
[   74.928447][   T18]                     _raw_spin_lock_bh+0x35/0x50
[   74.934855][   T18]                     sock_hash_delete_elem+0xb0/0x300
[   74.941693][   T18]                     bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[   74.948801][   T18]                     bpf_trace_run2+0x204/0x420
[   74.955120][   T18]                     trace_contention_end+0xd7/0x100
[   74.961876][   T18]                     __mutex_lock+0x2e5/0xd70
[   74.968022][   T18]                     pipe_write+0x1c9/0x1a40
[   74.974081][   T18]                     vfs_write+0xa84/0xcb0
[   74.979974][   T18]                     ksys_write+0x1a0/0x2c0
[   74.985945][   T18]                     do_syscall_64+0xfb/0x240
[   74.992094][   T18]                     entry_SYSCALL_64_after_hwframe+0x6d/0x75
[   74.999642][   T18]    INITIAL USE at:
[   75.003525][   T18]                    lock_acquire+0x1e4/0x530
[   75.009585][   T18]                    _raw_spin_lock_bh+0x35/0x50
[   75.015905][   T18]                    sock_hash_delete_elem+0xb0/0x300
[   75.022655][   T18]                    bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[   75.029682][   T18]                    bpf_trace_run2+0x204/0x420
[   75.035924][   T18]                    trace_contention_end+0xd7/0x100
[   75.042636][   T18]                    __mutex_lock+0x2e5/0xd70
[   75.048717][   T18]                    pipe_write+0x1c9/0x1a40
[   75.054697][   T18]                    vfs_write+0xa84/0xcb0
[   75.060493][   T18]                    ksys_write+0x1a0/0x2c0
[   75.066377][   T18]                    do_syscall_64+0xfb/0x240
[   75.072455][   T18]                    entry_SYSCALL_64_after_hwframe+0x6d/0x75
[   75.079926][   T18]  }
[   75.082426][   T18]  ... key      at: [<ffffffff94882300>] sock_hash_alloc.__key+0x0/0x20
[   75.090787][   T18]  ... acquired at:
[   75.094585][   T18]    lock_acquire+0x1e4/0x530
[   75.099259][   T18]    _raw_spin_lock_bh+0x35/0x50
[   75.104207][   T18]    sock_hash_delete_elem+0xb0/0x300
[   75.109576][   T18]    bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[   75.115202][   T18]    bpf_trace_run2+0x204/0x420
[   75.120047][   T18]    trace_contention_end+0xf6/0x120
[   75.125329][   T18]    __pv_queued_spin_lock_slowpath+0x939/0xc60
[   75.131565][   T18]    queued_spin_lock_slowpath+0x42/0x50
[   75.137196][   T18]    do_raw_spin_lock+0x272/0x370
[   75.142216][   T18]    raw_spin_rq_lock_nested+0x2a/0x140
[   75.147758][   T18]    load_balance+0x5022/0x8840
[   75.152604][   T18]    newidle_balance+0x6be/0x1080
[   75.157620][   T18]    pick_next_task_fair+0x27a/0xde0
[   75.162897][   T18]    __pick_next_task+0xb0/0x2c0
[   75.167829][   T18]    __schedule+0x726/0x4a20
[   75.172428][   T18]    schedule+0x14b/0x320
[   75.176751][   T18]    schedule_timeout+0x1be/0x310
[   75.181770][   T18]    rcu_exp_sel_wait_wake+0x77e/0x1df0
[   75.187312][   T18]    kthread_worker_fn+0x4bf/0xab0
[   75.192412][   T18]    kthread+0x2f0/0x390
[   75.196650][   T18]    ret_from_fork+0x4b/0x80
[   75.201236][   T18]    ret_from_fork_asm+0x1a/0x30
[   75.206168][   T18] 
[   75.208479][   T18] 
[   75.208479][   T18] stack backtrace:
[   75.214357][   T18] CPU: 1 PID: 18 Comm: rcu_exp_gp_kthr Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0
[   75.224238][   T18] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   75.234293][   T18] Call Trace:
[   75.237585][   T18]  <TASK>
[   75.240508][   T18]  dump_stack_lvl+0x1e7/0x2e0
[   75.245187][   T18]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.250383][   T18]  ? __pfx__printk+0x10/0x10
[   75.254970][   T18]  ? print_shortest_lock_dependencies+0xf2/0x160
[   75.261297][   T18]  validate_chain+0x4dc7/0x58e0
[   75.266148][   T18]  ? __pfx_validate_chain+0x10/0x10
[   75.271359][   T18]  ? __pfx_validate_chain+0x10/0x10
[   75.276552][   T18]  ? validate_chain+0x11b/0x58e0
[   75.281485][   T18]  ? mark_lock+0x9a/0x350
[   75.285820][   T18]  __lock_acquire+0x1346/0x1fd0
[   75.290671][   T18]  lock_acquire+0x1e4/0x530
[   75.295166][   T18]  ? sock_hash_delete_elem+0xb0/0x300
[   75.300527][   T18]  ? __pfx_lockdep_softirqs_off+0x10/0x10
[   75.306233][   T18]  ? __pfx_lock_acquire+0x10/0x10
[   75.311243][   T18]  ? sock_hash_delete_elem+0xb0/0x300
[   75.316599][   T18]  ? __pfx___local_bh_disable_ip+0x10/0x10
[   75.322391][   T18]  ? __pfx_lock_acquire+0x10/0x10
[   75.327449][   T18]  ? __lock_acquire+0x1346/0x1fd0
[   75.332460][   T18]  ? sock_hash_delete_elem+0xb0/0x300
[   75.337841][   T18]  _raw_spin_lock_bh+0x35/0x50
[   75.342613][   T18]  ? sock_hash_delete_elem+0xb0/0x300
[   75.347989][   T18]  sock_hash_delete_elem+0xb0/0x300
[   75.353189][   T18]  bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[   75.358632][   T18]  bpf_trace_run2+0x204/0x420
[   75.363296][   T18]  ? bpf_trace_run2+0x114/0x420
[   75.368135][   T18]  ? __pfx_bpf_trace_run2+0x10/0x10
[   75.373325][   T18]  ? __lock_acquire+0x1346/0x1fd0
[   75.378340][   T18]  trace_contention_end+0xf6/0x120
[   75.383444][   T18]  __pv_queued_spin_lock_slowpath+0x939/0xc60
[   75.389508][   T18]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[   75.396101][   T18]  queued_spin_lock_slowpath+0x42/0x50
[   75.401556][   T18]  do_raw_spin_lock+0x272/0x370
[   75.406404][   T18]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   75.411774][   T18]  ? validate_chain+0x11b/0x58e0
[   75.416727][   T18]  raw_spin_rq_lock_nested+0x2a/0x140
[   75.422122][   T18]  load_balance+0x5022/0x8840
[   75.426830][   T18]  ? __pfx_load_balance+0x10/0x10
[   75.431849][   T18]  ? rcu_read_lock_sched_held+0x8d/0x130
[   75.437501][   T18]  ? __lock_acquire+0x1346/0x1fd0
[   75.442546][   T18]  ? __pfx_lock_acquire+0x10/0x10
[   75.447621][   T18]  ? __pfx_sched_clock_cpu+0x10/0x10
[   75.452916][   T18]  newidle_balance+0x6be/0x1080
[   75.457795][   T18]  ? newidle_balance+0x2a8/0x1080
[   75.462822][   T18]  ? __pfx_newidle_balance+0x10/0x10
[   75.468106][   T18]  pick_next_task_fair+0x27a/0xde0
[   75.473214][   T18]  __pick_next_task+0xb0/0x2c0
[   75.477985][   T18]  __schedule+0x726/0x4a20
[   75.482405][   T18]  ? __pfx___schedule+0x10/0x10
[   75.487255][   T18]  ? schedule+0x90/0x320
[   75.491497][   T18]  ? __pfx_lock_release+0x10/0x10
[   75.496532][   T18]  ? __asan_memset+0x23/0x50
[   75.501118][   T18]  ? __pfx_lockdep_init_map_type+0x10/0x10
[   75.506930][   T18]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   75.512906][   T18]  ? schedule+0x90/0x320
[   75.517184][   T18]  schedule+0x14b/0x320
[   75.521351][   T18]  schedule_timeout+0x1be/0x310
[   75.526208][   T18]  ? __pfx_schedule_timeout+0x10/0x10
[   75.531583][   T18]  ? __pfx_process_timeout+0x10/0x10
[   75.536877][   T18]  rcu_exp_sel_wait_wake+0x77e/0x1df0
[   75.542255][   T18]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   75.548243][   T18]  ? __pfx_rcu_exp_sel_wait_wake+0x10/0x10
[   75.554063][   T18]  ? _raw_spin_lock_irq+0xdf/0x120
[   75.559185][   T18]  kthread_worker_fn+0x4bf/0xab0
[   75.564130][   T18]  ? kthread_worker_fn+0xdc/0xab0
[   75.569161][   T18]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   75.574449][   T18]  ? __pfx_kthread_worker_fn+0x10/0x10
[   75.579922][   T18]  kthread+0x2f0/0x390
[   75.584015][   T18]  ? __pfx_kthread_worker_fn+0x10/0x10
[   75.589471][   T18]  ? __pfx_kthread+0x10/0x10
[   75.594060][   T18]  ret_from_fork+0x4b/0x80
[   75.598476][   T18]  ? __pfx_kthread+0x10/0x10
[   75.603062][   T18]  ret_from_fork_asm+0x1a/0x30
[   75.607832][   T18]  </TASK>
[   75.610902][    C1] ------------[ cut here ]------------
[   75.616344][    C1] WARNING: CPU: 1 PID: 18 at kernel/sched/core.c:3889 sched_ttwu_pending+0x349/0x740
[   75.625802][    C1] Modules linked in:
[   75.629694][    C1] CPU: 1 PID: 18 Comm: rcu_exp_gp_kthr Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0
[   75.639571][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   75.649621][    C1] RIP: 0010:sched_ttwu_pending+0x349/0x740
[   75.655423][    C1] Code: 83 e2 20 48 89 df 4c 89 ee 48 8d 8c 24 a0 00 00 00 e8 1b 04 00 00 4d 8d 6f c8 49 83 fd c8 0f 85 2d ff ff ff e9 51 01 00 00 90 <0f> 0b 90 0f b6 04 13 84 c0 0f 85 01 01 00 00 41 83 3e 00 74 5e f3
[   75.675018][    C1] RSP: 0018:ffffc90000a08e40 EFLAGS: 00010002
[   75.681079][    C1] RAX: 0000000000000000 RBX: 1ffff11002dd83c6 RCX: 1ffff110172a7d93
[   75.689040][    C1] RDX: dffffc0000000000 RSI: ffffffff8bfec6c0 RDI: ffffffff8bfec680
[   75.697001][    C1] RBP: ffffc90000a08f58 R08: ffffffff8f86ae6f R09: 1ffffffff1f0d5cd
[   75.704964][    C1] R10: dffffc0000000000 R11: fffffbfff1f0d5ce R12: ffff888016ec1e38
[   75.712926][    C1] R13: ffff888016ec1e00 R14: ffff888016ec1e34 R15: 0000000000000000
[   75.720909][    C1] FS:  0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[   75.729847][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.736431][    C1] CR2: 0000000000666000 CR3: 000000007e966000 CR4: 00000000003506f0
[   75.744403][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   75.752366][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   75.760328][    C1] Call Trace:
[   75.763601][    C1]  <IRQ>
[   75.766441][    C1]  ? __warn+0x163/0x4b0
[   75.770599][    C1]  ? sched_ttwu_pending+0x349/0x740
[   75.775796][    C1]  ? report_bug+0x2b3/0x500
[   75.780299][    C1]  ? sched_ttwu_pending+0x349/0x740
[   75.785494][    C1]  ? handle_bug+0x3e/0x70
[   75.789821][    C1]  ? exc_invalid_op+0x1a/0x50
[   75.794495][    C1]  ? asm_exc_invalid_op+0x1a/0x20
[   75.799520][    C1]  ? sched_ttwu_pending+0x349/0x740
[   75.804726][    C1]  ? __pfx_sched_ttwu_pending+0x10/0x10
[   75.810374][    C1]  ? kvm_sched_clock_read+0x11/0x20
[   75.815586][    C1]  ? sched_clock+0x4a/0x70
[   75.820005][    C1]  ? sched_clock_cpu+0x76/0x490
[   75.824880][    C1]  __flush_smp_call_function_queue+0x109f/0x15b0
[   75.831208][    C1]  __sysvec_call_function_single+0xa8/0x3e0
[   75.837093][    C1]  sysvec_call_function_single+0x9e/0xc0
[   75.842721][    C1]  </IRQ>
[   75.845675][    C1]  <TASK>
[   75.848637][    C1]  asm_sysvec_call_function_single+0x1a/0x20
[   75.854641][    C1] RIP: 0010:__local_bh_enable_ip+0x170/0x200
[   75.860622][    C1] Code: 8b e8 94 a0 16 0a 65 66 8b 05 54 5d aa 7e 66 85 c0 75 5d bf 01 00 00 00 e8 cd 7a 0b 00 e8 a8 ae 42 00 fb 65 8b 05 18 5d aa 7e <85> c0 75 05 e8 b7 19 a7 ff 48 c7 44 24 20 0e 36 e0 45 49 c7 04 1c
[   75.880218][    C1] RSP: 0018:ffffc90000176be0 EFLAGS: 00000282
[   75.886280][    C1] RAX: 0000000080000004 RBX: 1ffff9200002ed80 RCX: ffffffff819c1f2c
[   75.894289][    C1] RDX: dffffc0000000000 RSI: ffffffff8bfec6c0 RDI: ffffffff81597168
[   75.902254][    C1] RBP: ffffc90000176ca0 R08: ffffffff8f86ae6f R09: 1ffffffff1f0d5cd
[   75.910240][    C1] R10: dffffc0000000000 R11: fffffbfff1f0d5ce R12: dffffc0000000000
[   75.918306][    C1] R13: 1ffff9200002ed84 R14: ffffc90000176c20 R15: 0000000000000201
[   75.926273][    C1]  ? trace_irq_enable+0x2c/0x100
[   75.931207][    C1]  ? __local_bh_enable_ip+0x168/0x200
[   75.936582][    C1]  ? sock_hash_delete_elem+0x1a6/0x300
[   75.942037][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[   75.947750][    C1]  ? sock_hash_delete_elem+0x1a6/0x300
[   75.953204][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[   75.958415][    C1]  ? sock_hash_delete_elem+0xb0/0x300
[   75.963787][    C1]  sock_hash_delete_elem+0x1a6/0x300
[   75.969077][    C1]  bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[   75.974530][    C1]  bpf_trace_run2+0x204/0x420
[   75.979201][    C1]  ? bpf_trace_run2+0x114/0x420
[   75.984042][    C1]  ? __pfx_bpf_trace_run2+0x10/0x10
[   75.989235][    C1]  ? __lock_acquire+0x1346/0x1fd0
[   75.994256][    C1]  trace_contention_end+0xf6/0x120
[   75.999364][    C1]  __pv_queued_spin_lock_slowpath+0x939/0xc60
[   76.005467][    C1]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[   76.012056][    C1]  queued_spin_lock_slowpath+0x42/0x50
[   76.017512][    C1]  do_raw_spin_lock+0x272/0x370
[   76.022378][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   76.027747][    C1]  ? validate_chain+0x11b/0x58e0
[   76.032694][    C1]  raw_spin_rq_lock_nested+0x2a/0x140
[   76.038090][    C1]  load_balance+0x5022/0x8840
[   76.042798][    C1]  ? __pfx_load_balance+0x10/0x10
[   76.047822][    C1]  ? rcu_read_lock_sched_held+0x8d/0x130
[   76.053466][    C1]  ? __lock_acquire+0x1346/0x1fd0
[   76.058509][    C1]  ? __pfx_lock_acquire+0x10/0x10
[   76.063539][    C1]  ? __pfx_sched_clock_cpu+0x10/0x10
[   76.068834][    C1]  newidle_balance+0x6be/0x1080
[   76.073691][    C1]  ? newidle_balance+0x2a8/0x1080
[   76.078719][    C1]  ? __pfx_newidle_balance+0x10/0x10
[   76.084002][    C1]  pick_next_task_fair+0x27a/0xde0
[   76.089112][    C1]  __pick_next_task+0xb0/0x2c0
[   76.093879][    C1]  __schedule+0x726/0x4a20
[   76.098302][    C1]  ? __pfx___schedule+0x10/0x10
[   76.103148][    C1]  ? schedule+0x90/0x320
[   76.107384][    C1]  ? __pfx_lock_release+0x10/0x10
[   76.112400][    C1]  ? __asan_memset+0x23/0x50
[   76.116989][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[   76.122802][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   76.128773][    C1]  ? schedule+0x90/0x320
[   76.133014][    C1]  schedule+0x14b/0x320
[   76.137164][    C1]  schedule_timeout+0x1be/0x310
[   76.142009][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[   76.147367][    C1]  ? __pfx_process_timeout+0x10/0x10
[   76.152658][    C1]  rcu_exp_sel_wait_wake+0x77e/0x1df0
[   76.158037][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   76.164014][    C1]  ? __pfx_rcu_exp_sel_wait_wake+0x10/0x10
[   76.169814][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[   76.174928][    C1]  kthread_worker_fn+0x4bf/0xab0
[   76.179882][    C1]  ? kthread_worker_fn+0xdc/0xab0
[   76.184903][    C1]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   76.190179][    C1]  ? __pfx_kthread_worker_fn+0x10/0x10
[   76.195629][    C1]  kthread+0x2f0/0x390
[   76.199698][    C1]  ? __pfx_kthread_worker_fn+0x10/0x10
[   76.205149][    C1]  ? __pfx_kthread+0x10/0x10
[   76.209736][    C1]  ret_from_fork+0x4b/0x80
[   76.214154][    C1]  ? __pfx_kthread+0x10/0x10
[   76.218761][    C1]  ret_from_fork_asm+0x1a/0x30
[   76.223526][    C1]  </TASK>
[   76.226549][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   76.233817][    C1] CPU: 1 PID: 18 Comm: rcu_exp_gp_kthr Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0
[   76.243713][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   76.253758][    C1] Call Trace:
[   76.257027][    C1]  <IRQ>
[   76.259862][    C1]  dump_stack_lvl+0x1e7/0x2e0
[   76.264551][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.269761][    C1]  ? __pfx__printk+0x10/0x10
[   76.274349][    C1]  ? vscnprintf+0x5d/0x90
[   76.278676][    C1]  panic+0x349/0x860
[   76.282579][    C1]  ? __warn+0x172/0x4b0
[   76.286745][    C1]  ? __pfx_panic+0x10/0x10
[   76.291155][    C1]  ? ret_from_fork_asm+0x1a/0x30
[   76.296089][    C1]  __warn+0x31e/0x4b0
[   76.300065][    C1]  ? sched_ttwu_pending+0x349/0x740
[   76.305276][    C1]  report_bug+0x2b3/0x500
[   76.309601][    C1]  ? sched_ttwu_pending+0x349/0x740
[   76.314800][    C1]  handle_bug+0x3e/0x70
[   76.318956][    C1]  exc_invalid_op+0x1a/0x50
[   76.323451][    C1]  asm_exc_invalid_op+0x1a/0x20
[   76.328311][    C1] RIP: 0010:sched_ttwu_pending+0x349/0x740
[   76.334129][    C1] Code: 83 e2 20 48 89 df 4c 89 ee 48 8d 8c 24 a0 00 00 00 e8 1b 04 00 00 4d 8d 6f c8 49 83 fd c8 0f 85 2d ff ff ff e9 51 01 00 00 90 <0f> 0b 90 0f b6 04 13 84 c0 0f 85 01 01 00 00 41 83 3e 00 74 5e f3
[   76.353726][    C1] RSP: 0018:ffffc90000a08e40 EFLAGS: 00010002
[   76.359786][    C1] RAX: 0000000000000000 RBX: 1ffff11002dd83c6 RCX: 1ffff110172a7d93
[   76.367755][    C1] RDX: dffffc0000000000 RSI: ffffffff8bfec6c0 RDI: ffffffff8bfec680
[   76.375721][    C1] RBP: ffffc90000a08f58 R08: ffffffff8f86ae6f R09: 1ffffffff1f0d5cd
[   76.383690][    C1] R10: dffffc0000000000 R11: fffffbfff1f0d5ce R12: ffff888016ec1e38
[   76.391678][    C1] R13: ffff888016ec1e00 R14: ffff888016ec1e34 R15: 0000000000000000
[   76.399676][    C1]  ? __pfx_sched_ttwu_pending+0x10/0x10
[   76.405214][    C1]  ? kvm_sched_clock_read+0x11/0x20
[   76.410404][    C1]  ? sched_clock+0x4a/0x70
[   76.414818][    C1]  ? sched_clock_cpu+0x76/0x490
[   76.419673][    C1]  __flush_smp_call_function_queue+0x109f/0x15b0
[   76.426012][    C1]  __sysvec_call_function_single+0xa8/0x3e0
[   76.431901][    C1]  sysvec_call_function_single+0x9e/0xc0
[   76.437528][    C1]  </IRQ>
[   76.440471][    C1]  <TASK>
[   76.443393][    C1]  asm_sysvec_call_function_single+0x1a/0x20
[   76.449370][    C1] RIP: 0010:__local_bh_enable_ip+0x170/0x200
[   76.455341][    C1] Code: 8b e8 94 a0 16 0a 65 66 8b 05 54 5d aa 7e 66 85 c0 75 5d bf 01 00 00 00 e8 cd 7a 0b 00 e8 a8 ae 42 00 fb 65 8b 05 18 5d aa 7e <85> c0 75 05 e8 b7 19 a7 ff 48 c7 44 24 20 0e 36 e0 45 49 c7 04 1c
[   76.474954][    C1] RSP: 0018:ffffc90000176be0 EFLAGS: 00000282
[   76.481026][    C1] RAX: 0000000080000004 RBX: 1ffff9200002ed80 RCX: ffffffff819c1f2c
[   76.489008][    C1] RDX: dffffc0000000000 RSI: ffffffff8bfec6c0 RDI: ffffffff81597168
[   76.496985][    C1] RBP: ffffc90000176ca0 R08: ffffffff8f86ae6f R09: 1ffffffff1f0d5cd
[   76.504954][    C1] R10: dffffc0000000000 R11: fffffbfff1f0d5ce R12: dffffc0000000000
[   76.512925][    C1] R13: 1ffff9200002ed84 R14: ffffc90000176c20 R15: 0000000000000201
[   76.520897][    C1]  ? trace_irq_enable+0x2c/0x100
[   76.525851][    C1]  ? __local_bh_enable_ip+0x168/0x200
[   76.531220][    C1]  ? sock_hash_delete_elem+0x1a6/0x300
[   76.536674][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[   76.542391][    C1]  ? sock_hash_delete_elem+0x1a6/0x300
[   76.547844][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[   76.553041][    C1]  ? sock_hash_delete_elem+0xb0/0x300
[   76.558410][    C1]  sock_hash_delete_elem+0x1a6/0x300
[   76.563697][    C1]  bpf_prog_05fc780d7a5f93f9+0x4a/0x4e
[   76.569151][    C1]  bpf_trace_run2+0x204/0x420
[   76.573824][    C1]  ? bpf_trace_run2+0x114/0x420
[   76.578683][    C1]  ? __pfx_bpf_trace_run2+0x10/0x10
[   76.583875][    C1]  ? __lock_acquire+0x1346/0x1fd0
[   76.588895][    C1]  trace_contention_end+0xf6/0x120
[   76.594003][    C1]  __pv_queued_spin_lock_slowpath+0x939/0xc60
[   76.600071][    C1]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[   76.606665][    C1]  queued_spin_lock_slowpath+0x42/0x50
[   76.612132][    C1]  do_raw_spin_lock+0x272/0x370
[   76.616984][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   76.622355][    C1]  ? validate_chain+0x11b/0x58e0
[   76.627294][    C1]  raw_spin_rq_lock_nested+0x2a/0x140
[   76.632669][    C1]  load_balance+0x5022/0x8840
[   76.637373][    C1]  ? __pfx_load_balance+0x10/0x10
[   76.642383][    C1]  ? rcu_read_lock_sched_held+0x8d/0x130
[   76.648018][    C1]  ? __lock_acquire+0x1346/0x1fd0
[   76.653044][    C1]  ? __pfx_lock_acquire+0x10/0x10
[   76.658062][    C1]  ? __pfx_sched_clock_cpu+0x10/0x10
[   76.663344][    C1]  newidle_balance+0x6be/0x1080
[   76.668195][    C1]  ? newidle_balance+0x2a8/0x1080
[   76.673224][    C1]  ? __pfx_newidle_balance+0x10/0x10
[   76.678526][    C1]  pick_next_task_fair+0x27a/0xde0
[   76.683638][    C1]  __pick_next_task+0xb0/0x2c0
[   76.688406][    C1]  __schedule+0x726/0x4a20
[   76.692835][    C1]  ? __pfx___schedule+0x10/0x10
[   76.697699][    C1]  ? schedule+0x90/0x320
[   76.701936][    C1]  ? __pfx_lock_release+0x10/0x10
[   76.706950][    C1]  ? __asan_memset+0x23/0x50
[   76.711531][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[   76.717326][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   76.723313][    C1]  ? schedule+0x90/0x320
[   76.727574][    C1]  schedule+0x14b/0x320
[   76.731734][    C1]  schedule_timeout+0x1be/0x310
[   76.736578][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[   76.741943][    C1]  ? __pfx_process_timeout+0x10/0x10
[   76.747226][    C1]  rcu_exp_sel_wait_wake+0x77e/0x1df0
[   76.752603][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   76.758576][    C1]  ? __pfx_rcu_exp_sel_wait_wake+0x10/0x10
[   76.764379][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[   76.769492][    C1]  kthread_worker_fn+0x4bf/0xab0
[   76.774445][    C1]  ? kthread_worker_fn+0xdc/0xab0
[   76.779483][    C1]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   76.784759][    C1]  ? __pfx_kthread_worker_fn+0x10/0x10
[   76.790211][    C1]  kthread+0x2f0/0x390
[   76.794280][    C1]  ? __pfx_kthread_worker_fn+0x10/0x10
[   76.799744][    C1]  ? __pfx_kthread+0x10/0x10
[   76.804336][    C1]  ret_from_fork+0x4b/0x80
[   76.808769][    C1]  ? __pfx_kthread+0x10/0x10
[   76.813354][    C1]  ret_from_fork_asm+0x1a/0x30
[   76.818119][    C1]  </TASK>
[   77.948362][    C1] Shutting down cpus with NMI
[   77.953199][    C1] Kernel Offset: disabled
[   77.957521][    C1] Rebooting in 86400 seconds..