Warning: Permanently added '10.128.10.48' (ED25519) to the list of known hosts. executing program executing program executing program syzkaller login: [ 80.222461][ T18] [ 80.224944][ T18] ===================================================== [ 80.232083][ T18] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 80.239733][ T18] 6.8.0-syzkaller-05243-g14bb1e8c8d4a #0 Not tainted [ 80.246598][ T18] ----------------------------------------------------- [ 80.253567][ T18] rcu_exp_gp_kthr/18 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire: [ 80.261467][ T18] ffff8880213fc8d8 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 80.271770][ T18] [ 80.271770][ T18] and this task is already holding: [ 80.279128][ T18] ffff8880b952a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 80.288106][ T18] which would create a new lock dependency: [ 80.293993][ T18] (&base->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2} [ 80.302193][ T18] [ 80.302193][ T18] but this new dependency connects a HARDIRQ-irq-safe lock: [ 80.311747][ T18] (&base->lock){-.-.}-{2:2} [ 80.311773][ T18] [ 80.311773][ T18] ... which became HARDIRQ-irq-safe at: [ 80.324065][ T18] lock_acquire+0x1e4/0x530 [ 80.328671][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 80.334061][ T18] lock_timer_base+0x112/0x240 [ 80.338946][ T18] add_timer_on+0x1e5/0x5c0 [ 80.343543][ T18] handle_irq_event+0xad/0x1f0 [ 80.348417][ T18] handle_edge_irq+0x25f/0xc20 [ 80.353310][ T18] __common_interrupt+0x13a/0x230 [ 80.358438][ T18] common_interrupt+0xa5/0xd0 [ 80.363256][ T18] asm_common_interrupt+0x26/0x40 [ 80.368404][ T18] console_flush_all+0x9cd/0xec0 [ 80.373447][ T18] console_unlock+0x13b/0x4d0 [ 80.378219][ T18] vprintk_emit+0x509/0x720 [ 80.382838][ T18] _printk+0xd5/0x120 [ 80.386913][ T18] __clocksource_register_scale+0xb8/0x660 [ 80.392816][ T18] tsc_init+0x1a9/0x1d0 [ 80.397066][ T18] x86_late_time_init+0x94/0xc0 [ 80.402043][ T18] start_kernel+0x3f3/0x500 [ 80.406654][ T18] x86_64_start_reservations+0x2a/0x30 [ 80.412210][ T18] x86_64_start_kernel+0x99/0xa0 [ 80.417243][ T18] common_startup_64+0x13e/0x147 [ 80.422300][ T18] [ 80.422300][ T18] to a HARDIRQ-irq-unsafe lock: [ 80.429317][ T18] (&htab->buckets[i].lock){+...}-{2:2} [ 80.429344][ T18] [ 80.429344][ T18] ... which became HARDIRQ-irq-unsafe at: [ 80.442784][ T18] ... [ 80.442793][ T18] lock_acquire+0x1e4/0x530 [ 80.449979][ T18] _raw_spin_lock_bh+0x35/0x50 [ 80.455487][ T18] sock_hash_free+0x164/0x820 [ 80.460293][ T18] bpf_map_free_deferred+0xe6/0x110 [ 80.465625][ T18] process_scheduled_works+0xa00/0x1770 [ 80.471303][ T18] worker_thread+0x86d/0xd70 [ 80.476005][ T18] kthread+0x2f0/0x390 [ 80.480200][ T18] ret_from_fork+0x4b/0x80 [ 80.484849][ T18] ret_from_fork_asm+0x1a/0x30 [ 80.489742][ T18] [ 80.489742][ T18] other info that might help us debug this: [ 80.489742][ T18] [ 80.500165][ T18] Possible interrupt unsafe locking scenario: [ 80.500165][ T18] [ 80.508534][ T18] CPU0 CPU1 [ 80.513995][ T18] ---- ---- [ 80.519366][ T18] lock(&htab->buckets[i].lock); [ 80.524405][ T18] local_irq_disable(); [ 80.531209][ T18] lock(&base->lock); [ 80.538703][ T18] lock(&htab->buckets[i].lock); [ 80.547502][ T18] [ 80.551225][ T18] lock(&base->lock); [ 80.555581][ T18] [ 80.555581][ T18] *** DEADLOCK *** [ 80.555581][ T18] [ 80.563937][ T18] 2 locks held by rcu_exp_gp_kthr/18: [ 80.569340][ T18] #0: ffff8880b952a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 80.578882][ T18] #1: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x1fc/0x530 [ 80.589054][ T18] [ 80.589054][ T18] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 80.600302][ T18] -> (&base->lock){-.-.}-{2:2} { [ 80.605971][ T18] IN-HARDIRQ-W at: [ 80.609952][ T18] lock_acquire+0x1e4/0x530 [ 80.618258][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 80.625339][ T18] lock_timer_base+0x112/0x240 [ 80.631826][ T18] add_timer_on+0x1e5/0x5c0 [ 80.638124][ T18] handle_irq_event+0xad/0x1f0 [ 80.644635][ T18] handle_edge_irq+0x25f/0xc20 [ 80.651765][ T18] __common_interrupt+0x13a/0x230 [ 80.658561][ T18] common_interrupt+0xa5/0xd0 [ 80.665530][ T18] asm_common_interrupt+0x26/0x40 [ 80.672307][ T18] console_flush_all+0x9cd/0xec0 [ 80.679436][ T18] console_unlock+0x13b/0x4d0 [ 80.685771][ T18] vprintk_emit+0x509/0x720 [ 80.692140][ T18] _printk+0xd5/0x120 [ 80.697873][ T18] __clocksource_register_scale+0xb8/0x660 [ 80.705338][ T18] tsc_init+0x1a9/0x1d0 [ 80.711437][ T18] x86_late_time_init+0x94/0xc0 [ 80.717995][ T18] start_kernel+0x3f3/0x500 [ 80.724152][ T18] x86_64_start_reservations+0x2a/0x30 [ 80.731361][ T18] x86_64_start_kernel+0x99/0xa0 [ 80.738043][ T18] common_startup_64+0x13e/0x147 [ 80.744658][ T18] IN-SOFTIRQ-W at: [ 80.748691][ T18] lock_acquire+0x1e4/0x530 [ 80.754873][ T18] _raw_spin_lock_irq+0xd3/0x120 [ 80.761491][ T18] __run_timer_base+0x103/0x8e0 [ 80.768141][ T18] run_timer_softirq+0x67/0x170 [ 80.774670][ T18] __do_softirq+0x2be/0x943 [ 80.780846][ T18] __irq_exit_rcu+0xf2/0x1c0 [ 80.787095][ T18] irq_exit_rcu+0x9/0x30 [ 80.792992][ T18] common_interrupt+0xaa/0xd0 [ 80.799329][ T18] asm_common_interrupt+0x26/0x40 [ 80.806019][ T18] console_flush_all+0x9cd/0xec0 [ 80.812621][ T18] console_unlock+0x13b/0x4d0 [ 80.818968][ T18] vprintk_emit+0x509/0x720 [ 80.825130][ T18] _printk+0xd5/0x120 [ 80.830772][ T18] cpu_select_mitigations+0x3c/0xa0 [ 80.837639][ T18] arch_cpu_finalize_init+0x20/0xa0 [ 80.844502][ T18] start_kernel+0x402/0x500 [ 80.850665][ T18] x86_64_start_reservations+0x2a/0x30 [ 80.857785][ T18] x86_64_start_kernel+0x99/0xa0 [ 80.864379][ T18] common_startup_64+0x13e/0x147 [ 80.870973][ T18] INITIAL USE at: [ 80.874869][ T18] lock_acquire+0x1e4/0x530 [ 80.880938][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 80.887790][ T18] lock_timer_base+0x112/0x240 [ 80.894217][ T18] __mod_timer+0x1ca/0xeb0 [ 80.900639][ T18] queue_delayed_work_on+0x15a/0x260 [ 80.907498][ T18] crng_reseed+0xe7/0x220 [ 80.913393][ T18] random_init+0x1a9/0x300 [ 80.919405][ T18] start_kernel+0x253/0x500 [ 80.925471][ T18] x86_64_start_reservations+0x2a/0x30 [ 80.932502][ T18] x86_64_start_kernel+0x99/0xa0 [ 80.939039][ T18] common_startup_64+0x13e/0x147 [ 80.945548][ T18] } [ 80.948063][ T18] ... key at: [] init_timer_cpu.__key+0x0/0x20 [ 80.956339][ T18] [ 80.956339][ T18] the dependencies between the lock to be acquired [ 80.956349][ T18] and HARDIRQ-irq-unsafe lock: [ 80.969954][ T18] -> (&htab->buckets[i].lock){+...}-{2:2} { [ 80.975876][ T18] HARDIRQ-ON-W at: [ 80.979859][ T18] lock_acquire+0x1e4/0x530 [ 80.986046][ T18] _raw_spin_lock_bh+0x35/0x50 [ 80.992470][ T18] sock_hash_free+0x164/0x820 [ 80.998824][ T18] bpf_map_free_deferred+0xe6/0x110 [ 81.005680][ T18] process_scheduled_works+0xa00/0x1770 [ 81.012878][ T18] worker_thread+0x86d/0xd70 [ 81.019125][ T18] kthread+0x2f0/0x390 [ 81.024877][ T18] ret_from_fork+0x4b/0x80 [ 81.030959][ T18] ret_from_fork_asm+0x1a/0x30 [ 81.037386][ T18] INITIAL USE at: [ 81.041286][ T18] lock_acquire+0x1e4/0x530 [ 81.047358][ T18] _raw_spin_lock_bh+0x35/0x50 [ 81.053691][ T18] sock_hash_free+0x164/0x820 [ 81.060028][ T18] bpf_map_free_deferred+0xe6/0x110 [ 81.066813][ T18] process_scheduled_works+0xa00/0x1770 [ 81.073929][ T18] worker_thread+0x86d/0xd70 [ 81.080091][ T18] kthread+0x2f0/0x390 [ 81.085744][ T18] ret_from_fork+0x4b/0x80 [ 81.091751][ T18] ret_from_fork_asm+0x1a/0x30 [ 81.098092][ T18] } [ 81.100611][ T18] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 81.108970][ T18] ... acquired at: [ 81.112773][ T18] lock_acquire+0x1e4/0x530 [ 81.117471][ T18] _raw_spin_lock_bh+0x35/0x50 [ 81.122439][ T18] sock_hash_delete_elem+0xb0/0x300 [ 81.127825][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 81.133464][ T18] bpf_trace_run2+0x2ec/0x530 [ 81.138342][ T18] enqueue_timer+0x396/0x550 [ 81.143111][ T18] __mod_timer+0xa0e/0xeb0 [ 81.147739][ T18] schedule_timeout+0x1b9/0x310 [ 81.152769][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 81.158340][ T18] kthread_worker_fn+0x4bf/0xab0 [ 81.163458][ T18] kthread+0x2f0/0x390 [ 81.167705][ T18] ret_from_fork+0x4b/0x80 [ 81.172304][ T18] ret_from_fork_asm+0x1a/0x30 [ 81.177250][ T18] [ 81.179572][ T18] [ 81.179572][ T18] stack backtrace: [ 81.185461][ T18] CPU: 1 PID: 18 Comm: rcu_exp_gp_kthr Not tainted 6.8.0-syzkaller-05243-g14bb1e8c8d4a #0 [ 81.195354][ T18] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 81.205410][ T18] Call Trace: [ 81.208699][ T18] [ 81.211635][ T18] dump_stack_lvl+0x1e7/0x2e0 [ 81.216769][ T18] ? __pfx_dump_stack_lvl+0x10/0x10 [ 81.222067][ T18] ? __pfx__printk+0x10/0x10 [ 81.227390][ T18] ? print_shortest_lock_dependencies+0xf2/0x160 [ 81.233755][ T18] validate_chain+0x4dc7/0x58e0 [ 81.238652][ T18] ? __pfx_validate_chain+0x10/0x10 [ 81.243888][ T18] ? __pfx_validate_chain+0x10/0x10 [ 81.249309][ T18] ? __pfx_validate_chain+0x10/0x10 [ 81.254532][ T18] ? register_lock_class+0x102/0x980 [ 81.259826][ T18] ? __pfx_register_lock_class+0x10/0x10 [ 81.265570][ T18] ? mark_lock+0x9a/0x350 [ 81.269912][ T18] __lock_acquire+0x1346/0x1fd0 [ 81.274779][ T18] lock_acquire+0x1e4/0x530 [ 81.279289][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 81.284689][ T18] ? __pfx_lockdep_softirqs_off+0x10/0x10 [ 81.290415][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 81.295472][ T18] ? debug_object_activate+0x3e4/0x510 [ 81.300939][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 81.306358][ T18] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 81.312188][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 81.317232][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 81.322618][ T18] _raw_spin_lock_bh+0x35/0x50 [ 81.327392][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 81.332768][ T18] sock_hash_delete_elem+0xb0/0x300 [ 81.337973][ T18] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 81.343990][ T18] ? bpf_trace_run2+0x1fc/0x530 [ 81.349227][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 81.354701][ T18] bpf_trace_run2+0x2ec/0x530 [ 81.359402][ T18] ? __pfx_bpf_trace_run2+0x10/0x10 [ 81.364624][ T18] ? __pfx_debug_object_activate+0x10/0x10 [ 81.370540][ T18] ? lockdep_hardirqs_on+0x99/0x150 [ 81.375754][ T18] enqueue_timer+0x396/0x550 [ 81.380359][ T18] __mod_timer+0xa0e/0xeb0 [ 81.384799][ T18] ? __asan_memset+0x23/0x50 [ 81.389399][ T18] ? __pfx___mod_timer+0x10/0x10 [ 81.394352][ T18] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 81.400169][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 81.406251][ T18] schedule_timeout+0x1b9/0x310 [ 81.411112][ T18] ? __pfx_schedule_timeout+0x10/0x10 [ 81.416488][ T18] ? __pfx_process_timeout+0x10/0x10 [ 81.421785][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 81.427175][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 81.433165][ T18] ? __pfx_rcu_exp_sel_wait_wake+0x10/0x10 [ 81.438989][ T18] ? _raw_spin_lock_irq+0xdf/0x120 [ 81.444201][ T18] kthread_worker_fn+0x4bf/0xab0 [ 81.449176][ T18] ? kthread_worker_fn+0xdc/0xab0 [ 81.454219][ T18] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 81.459530][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 81.465006][ T18] kthread+0x2f0/0x390 [ 81.469081][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 81.474554][ T18] ? __pfx_kthread+0x10/0x10 [ 81.479158][ T18] ret_from_fork+0x4b/0x80 [ 81.483583][ T18] ? __pfx_kthread+0x10/0x10 [ 81.488181][ T18] ret_from_fork_asm+0x1a/0x30 [ 81.492966][ T18]