Warning: Permanently added '10.128.1.92' (ED25519) to the list of known hosts. executing program executing program executing program executing program [ 67.998271][ T18] [ 68.000643][ T18] ===================================================== [ 68.007572][ T18] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 68.015022][ T18] 6.8.0-syzkaller-05236-g443574b03387 #0 Not tainted [ 68.021689][ T18] ----------------------------------------------------- [ 68.028615][ T18] rcu_exp_gp_kthr/18 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire: [ 68.036507][ T18] ffff88807a166820 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 68.046809][ T18] [ 68.046809][ T18] and this task is already holding: [ 68.054172][ T18] ffff8880b942a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 68.063055][ T18] which would create a new lock dependency: [ 68.068934][ T18] (&base->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2} [ 68.077040][ T18] [ 68.077040][ T18] but this new dependency connects a HARDIRQ-irq-safe lock: [ 68.086483][ T18] (&base->lock){-.-.}-{2:2} [ 68.086508][ T18] [ 68.086508][ T18] ... which became HARDIRQ-irq-safe at: [ 68.098780][ T18] lock_acquire+0x1e4/0x530 [ 68.103368][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 68.108751][ T18] lock_timer_base+0x112/0x240 [ 68.113610][ T18] add_timer_on+0x1e5/0x5c0 [ 68.118207][ T18] handle_irq_event+0xad/0x1f0 [ 68.123059][ T18] handle_level_irq+0x3c5/0x6e0 [ 68.127995][ T18] __common_interrupt+0x13a/0x230 [ 68.133112][ T18] common_interrupt+0xa5/0xd0 [ 68.137881][ T18] asm_common_interrupt+0x26/0x40 [ 68.143000][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 68.148816][ T18] __setup_irq+0x1277/0x1cf0 [ 68.153494][ T18] request_threaded_irq+0x2ab/0x380 [ 68.158783][ T18] setup_default_timer_irq+0x25/0x60 [ 68.164162][ T18] x86_late_time_init+0x66/0xc0 [ 68.169105][ T18] start_kernel+0x3f3/0x500 [ 68.173694][ T18] x86_64_start_reservations+0x2a/0x30 [ 68.179261][ T18] x86_64_start_kernel+0x99/0xa0 [ 68.184303][ T18] common_startup_64+0x13e/0x147 [ 68.189338][ T18] [ 68.189338][ T18] to a HARDIRQ-irq-unsafe lock: [ 68.196358][ T18] (&htab->buckets[i].lock){+...}-{2:2} [ 68.196388][ T18] [ 68.196388][ T18] ... which became HARDIRQ-irq-unsafe at: [ 68.209838][ T18] ... [ 68.209848][ T18] lock_acquire+0x1e4/0x530 [ 68.217015][ T18] _raw_spin_lock_bh+0x35/0x50 [ 68.221869][ T18] sock_hash_free+0x164/0x820 [ 68.226636][ T18] bpf_map_free_deferred+0xe6/0x110 [ 68.231935][ T18] process_scheduled_works+0xa00/0x1770 [ 68.237575][ T18] worker_thread+0x86d/0xd70 [ 68.242251][ T18] kthread+0x2f0/0x390 [ 68.246410][ T18] ret_from_fork+0x4b/0x80 [ 68.250926][ T18] ret_from_fork_asm+0x1a/0x30 [ 68.255802][ T18] [ 68.255802][ T18] other info that might help us debug this: [ 68.255802][ T18] [ 68.266034][ T18] Possible interrupt unsafe locking scenario: [ 68.266034][ T18] [ 68.274349][ T18] CPU0 CPU1 [ 68.279708][ T18] ---- ---- [ 68.285066][ T18] lock(&htab->buckets[i].lock); [ 68.290091][ T18] local_irq_disable(); [ 68.296838][ T18] lock(&base->lock); [ 68.303430][ T18] lock(&htab->buckets[i].lock); [ 68.310971][ T18] [ 68.314428][ T18] lock(&base->lock); [ 68.318669][ T18] [ 68.318669][ T18] *** DEADLOCK *** [ 68.318669][ T18] [ 68.326827][ T18] 2 locks held by rcu_exp_gp_kthr/18: [ 68.332191][ T18] #0: ffff8880b942a758 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 68.341516][ T18] #1: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x114/0x420 [ 68.350919][ T18] [ 68.350919][ T18] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 68.361317][ T18] -> (&base->lock){-.-.}-{2:2} { [ 68.366271][ T18] IN-HARDIRQ-W at: [ 68.370248][ T18] lock_acquire+0x1e4/0x530 [ 68.376403][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 68.383347][ T18] lock_timer_base+0x112/0x240 [ 68.389771][ T18] add_timer_on+0x1e5/0x5c0 [ 68.395945][ T18] handle_irq_event+0xad/0x1f0 [ 68.402362][ T18] handle_level_irq+0x3c5/0x6e0 [ 68.408948][ T18] __common_interrupt+0x13a/0x230 [ 68.415627][ T18] common_interrupt+0xa5/0xd0 [ 68.421965][ T18] asm_common_interrupt+0x26/0x40 [ 68.428647][ T18] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 68.436020][ T18] __setup_irq+0x1277/0x1cf0 [ 68.442265][ T18] request_threaded_irq+0x2ab/0x380 [ 68.449117][ T18] setup_default_timer_irq+0x25/0x60 [ 68.456057][ T18] x86_late_time_init+0x66/0xc0 [ 68.462560][ T18] start_kernel+0x3f3/0x500 [ 68.468710][ T18] x86_64_start_reservations+0x2a/0x30 [ 68.475819][ T18] x86_64_start_kernel+0x99/0xa0 [ 68.482408][ T18] common_startup_64+0x13e/0x147 [ 68.488999][ T18] IN-SOFTIRQ-W at: [ 68.492973][ T18] lock_acquire+0x1e4/0x530 [ 68.499126][ T18] _raw_spin_lock_irq+0xd3/0x120 [ 68.505716][ T18] __run_timer_base+0x103/0x8e0 [ 68.512216][ T18] run_timer_softirq+0x67/0x170 [ 68.518717][ T18] __do_softirq+0x2be/0x943 [ 68.524871][ T18] __irq_exit_rcu+0xf2/0x1c0 [ 68.531106][ T18] irq_exit_rcu+0x9/0x30 [ 68.536998][ T18] common_interrupt+0xaa/0xd0 [ 68.543332][ T18] asm_common_interrupt+0x26/0x40 [ 68.550012][ T18] console_flush_all+0x9cd/0xec0 [ 68.556691][ T18] console_unlock+0x13b/0x4d0 [ 68.563018][ T18] vprintk_emit+0x509/0x720 [ 68.569170][ T18] _printk+0xd5/0x120 [ 68.574800][ T18] cpu_select_mitigations+0x3c/0xa0 [ 68.581651][ T18] arch_cpu_finalize_init+0x20/0xa0 [ 68.588505][ T18] start_kernel+0x402/0x500 [ 68.594656][ T18] x86_64_start_reservations+0x2a/0x30 [ 68.601766][ T18] x86_64_start_kernel+0x99/0xa0 [ 68.608351][ T18] common_startup_64+0x13e/0x147 [ 68.614937][ T18] INITIAL USE at: [ 68.618833][ T18] lock_acquire+0x1e4/0x530 [ 68.624896][ T18] _raw_spin_lock_irqsave+0xd5/0x120 [ 68.631761][ T18] lock_timer_base+0x112/0x240 [ 68.638094][ T18] __mod_timer+0x1ca/0xeb0 [ 68.644079][ T18] queue_delayed_work_on+0x15a/0x260 [ 68.650928][ T18] crng_reseed+0xe7/0x220 [ 68.656825][ T18] random_init+0x1a9/0x300 [ 68.662839][ T18] start_kernel+0x253/0x500 [ 68.668903][ T18] x86_64_start_reservations+0x2a/0x30 [ 68.675929][ T18] x86_64_start_kernel+0x99/0xa0 [ 68.682431][ T18] common_startup_64+0x13e/0x147 [ 68.688932][ T18] } [ 68.691424][ T18] ... key at: [] init_timer_cpu.__key+0x0/0x20 [ 68.699671][ T18] [ 68.699671][ T18] the dependencies between the lock to be acquired [ 68.699680][ T18] and HARDIRQ-irq-unsafe lock: [ 68.713185][ T18] -> (&htab->buckets[i].lock){+...}-{2:2} { [ 68.719123][ T18] HARDIRQ-ON-W at: [ 68.723123][ T18] lock_acquire+0x1e4/0x530 [ 68.729303][ T18] _raw_spin_lock_bh+0x35/0x50 [ 68.735735][ T18] sock_hash_free+0x164/0x820 [ 68.742064][ T18] bpf_map_free_deferred+0xe6/0x110 [ 68.748917][ T18] process_scheduled_works+0xa00/0x1770 [ 68.756128][ T18] worker_thread+0x86d/0xd70 [ 68.762398][ T18] kthread+0x2f0/0x390 [ 68.768134][ T18] ret_from_fork+0x4b/0x80 [ 68.774221][ T18] ret_from_fork_asm+0x1a/0x30 [ 68.780663][ T18] INITIAL USE at: [ 68.784561][ T18] lock_acquire+0x1e4/0x530 [ 68.790652][ T18] _raw_spin_lock_bh+0x35/0x50 [ 68.796983][ T18] sock_hash_free+0x164/0x820 [ 68.803223][ T18] bpf_map_free_deferred+0xe6/0x110 [ 68.809984][ T18] process_scheduled_works+0xa00/0x1770 [ 68.817090][ T18] worker_thread+0x86d/0xd70 [ 68.823241][ T18] kthread+0x2f0/0x390 [ 68.828874][ T18] ret_from_fork+0x4b/0x80 [ 68.834858][ T18] ret_from_fork_asm+0x1a/0x30 [ 68.841190][ T18] } [ 68.843681][ T18] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 68.852008][ T18] ... acquired at: [ 68.855813][ T18] lock_acquire+0x1e4/0x530 [ 68.860490][ T18] _raw_spin_lock_bh+0x35/0x50 [ 68.865427][ T18] sock_hash_delete_elem+0xb0/0x300 [ 68.870797][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 68.876431][ T18] bpf_trace_run2+0x204/0x420 [ 68.881284][ T18] enqueue_timer+0x396/0x550 [ 68.886046][ T18] __mod_timer+0xa0e/0xeb0 [ 68.890640][ T18] schedule_timeout+0x1b9/0x310 [ 68.895671][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 68.901223][ T18] kthread_worker_fn+0x4bf/0xab0 [ 68.906334][ T18] kthread+0x2f0/0x390 [ 68.910581][ T18] ret_from_fork+0x4b/0x80 [ 68.915175][ T18] ret_from_fork_asm+0x1a/0x30 [ 68.920116][ T18] [ 68.922432][ T18] [ 68.922432][ T18] stack backtrace: [ 68.928315][ T18] CPU: 0 PID: 18 Comm: rcu_exp_gp_kthr Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 68.938198][ T18] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 68.948248][ T18] Call Trace: [ 68.951527][ T18] [ 68.954475][ T18] dump_stack_lvl+0x1e7/0x2e0 [ 68.959162][ T18] ? __pfx_dump_stack_lvl+0x10/0x10 [ 68.964394][ T18] ? __pfx__printk+0x10/0x10 [ 68.968988][ T18] ? print_shortest_lock_dependencies+0xf2/0x160 [ 68.975326][ T18] validate_chain+0x4dc7/0x58e0 [ 68.980192][ T18] ? __pfx_validate_chain+0x10/0x10 [ 68.985400][ T18] ? __pfx_validate_chain+0x10/0x10 [ 68.990604][ T18] ? register_lock_class+0x102/0x980 [ 68.995895][ T18] ? __pfx_register_lock_class+0x10/0x10 [ 69.001527][ T18] ? mark_lock+0x9a/0x350 [ 69.005863][ T18] __lock_acquire+0x1346/0x1fd0 [ 69.010722][ T18] lock_acquire+0x1e4/0x530 [ 69.015222][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 69.020595][ T18] ? __pfx_lockdep_softirqs_off+0x10/0x10 [ 69.026317][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 69.031347][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 69.036728][ T18] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 69.042535][ T18] ? __pfx_lock_acquire+0x10/0x10 [ 69.047556][ T18] ? do_raw_spin_unlock+0x13c/0x8b0 [ 69.052765][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 69.058138][ T18] _raw_spin_lock_bh+0x35/0x50 [ 69.062903][ T18] ? sock_hash_delete_elem+0xb0/0x300 [ 69.068276][ T18] sock_hash_delete_elem+0xb0/0x300 [ 69.073481][ T18] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 69.078939][ T18] bpf_trace_run2+0x204/0x420 [ 69.083616][ T18] ? bpf_trace_run2+0x114/0x420 [ 69.088471][ T18] ? __pfx_bpf_trace_run2+0x10/0x10 [ 69.093669][ T18] ? __pfx_debug_object_activate+0x10/0x10 [ 69.099478][ T18] ? lockdep_hardirqs_on+0x99/0x150 [ 69.104682][ T18] enqueue_timer+0x396/0x550 [ 69.109281][ T18] __mod_timer+0xa0e/0xeb0 [ 69.113713][ T18] ? __asan_memset+0x23/0x50 [ 69.118305][ T18] ? __pfx___mod_timer+0x10/0x10 [ 69.123256][ T18] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 69.129070][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 69.135056][ T18] schedule_timeout+0x1b9/0x310 [ 69.139908][ T18] ? __pfx_schedule_timeout+0x10/0x10 [ 69.145283][ T18] ? __pfx_process_timeout+0x10/0x10 [ 69.150574][ T18] rcu_exp_sel_wait_wake+0x77e/0x1df0 [ 69.155964][ T18] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 69.161944][ T18] ? __pfx_rcu_exp_sel_wait_wake+0x10/0x10 [ 69.167756][ T18] ? _raw_spin_lock_irq+0xdf/0x120 [ 69.172883][ T18] kthread_worker_fn+0x4bf/0xab0 [ 69.177825][ T18] ? kthread_worker_fn+0xdc/0xab0 [ 69.182853][ T18] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 69.188141][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 69.193602][ T18] kthread+0x2f0/0x390 [ 69.197674][ T18] ? __pfx_kthread_worker_fn+0x10/0x10 [ 69.203136][ T18] ? __pfx_kthread+0x10/0x10 [ 69.207729][ T18] ret_from_fork+0x4b/0x80 [ 69.212152][ T18] ? __pfx_kthread+0x10/0x10 [ 69.216748][ T18] ret_from_fork_asm+0x1a/0x30 [ 69.221526][ T18]