./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4259469362 <...> Warning: Permanently added '10.128.1.103' (ED25519) to the list of known hosts. execve("./syz-executor4259469362", ["./syz-executor4259469362"], 0x7ffee6a05490 /* 10 vars */) = 0 brk(NULL) = 0x55557cb58000 brk(0x55557cb58d00) = 0x55557cb58d00 arch_prctl(ARCH_SET_FS, 0x55557cb58380) = 0 set_tid_address(0x55557cb58650) = 5066 set_robust_list(0x55557cb58660, 24) = 0 rseq(0x55557cb58ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4259469362", 4096) = 28 getrandom("\x57\xff\xe0\x26\xcb\x20\x31\x2f", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557cb58d00 brk(0x55557cb79d00) = 0x55557cb79d00 brk(0x55557cb7a000) = 0x55557cb7a000 mprotect(0x7fa9058a6000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5067 attached , child_tidptr=0x55557cb58650) = 5067 [pid 5067] set_robust_list(0x55557cb58660, 24) = 0 [pid 5067] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5067] setpgid(0, 0) = 0 [pid 5067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "1000", 4) = 4 [pid 5067] close(3) = 0 [pid 5067] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=6, value_size=8, max_entries=5, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5067] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x200001c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5067] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_activate_work", prog_fd=4}}, 16) = 5 [pid 5067] exit_group(0) = ? [pid 5067] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5067, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557cb58650) = 5068 ./strace-static-x86_64: Process 5068 attached [pid 5068] set_robust_list(0x55557cb58660, 24) = 0 [pid 5068] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5068] setpgid(0, 0) = 0 [pid 5068] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5068] write(3, "1000", 4) = 4 [pid 5068] close(3) = 0 [pid 5068] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=6, value_size=8, max_entries=5, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5068] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x200001c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5068] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_activate_work", prog_fd=4}}, 16) = 5 [pid 5068] exit_group(0) = ? [ 67.857254][ C1] [ 67.859986][ C1] ===================================================== [ 67.867545][ C1] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 67.874988][ C1] 6.8.0-syzkaller-05236-g443574b03387 #0 Not tainted [ 67.881906][ C1] ----------------------------------------------------- [ 67.889216][ C1] swapper/1/0 [HC0[0]:SC1[3]:HE0:SE0] is trying to acquire: [ 67.896770][ C1] ffff88802af5b0f8 (&htab->buckets[i].lock){+.-.}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 67.907936][ C1] [ 67.907936][ C1] and this task is already holding: [ 67.915808][ C1] ffff8880b943d8d8 (&pool->lock){-.-.}-{2:2}, at: __queue_work+0x6ec/0xec0 [ 67.924455][ C1] which would create a new lock dependency: [ 67.930330][ C1] (&pool->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+.-.}-{2:2} [ 67.938424][ C1] [ 67.938424][ C1] but this new dependency connects a HARDIRQ-irq-safe lock: [ 67.947947][ C1] (&pool->lock){-.-.}-{2:2} [ 67.947970][ C1] [ 67.947970][ C1] ... which became HARDIRQ-irq-safe at: [ 67.960358][ C1] lock_acquire+0x1e4/0x530 [ 67.964978][ C1] _raw_spin_lock+0x2e/0x40 [ 67.969903][ C1] __queue_work+0x6ec/0xec0 [ 67.974669][ C1] queue_work_on+0x14f/0x250 [ 67.979354][ C1] hrtimer_run_queues+0x154/0x460 [ 67.984712][ C1] update_process_times+0x80/0x230 [ 67.990104][ C1] tick_periodic+0x190/0x220 [ 67.994784][ C1] tick_handle_periodic+0x4a/0x160 [ 68.000159][ C1] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 68.006504][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 68.012335][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 68.018945][ C1] console_flush_all+0x9cd/0xec0 [ 68.023980][ C1] console_unlock+0x13b/0x4d0 [ 68.028925][ C1] vprintk_emit+0x509/0x720 [ 68.033528][ C1] _printk+0xd5/0x120 [ 68.037693][ C1] __clocksource_select+0x2f2/0x350 [ 68.043125][ C1] clocksource_done_booting+0x36/0x50 [ 68.048741][ C1] do_one_initcall+0x238/0x830 [ 68.054145][ C1] do_initcall_level+0x157/0x210 [ 68.059367][ C1] do_initcalls+0x3f/0x80 [ 68.063972][ C1] kernel_init_freeable+0x435/0x5d0 [ 68.069502][ C1] kernel_init+0x1d/0x2a0 [ 68.074846][ C1] ret_from_fork+0x4b/0x80 [ 68.079560][ C1] ret_from_fork_asm+0x1a/0x30 [ 68.084689][ C1] [ 68.084689][ C1] to a HARDIRQ-irq-unsafe lock: [ 68.092669][ C1] (&htab->buckets[i].lock){+.-.}-{2:2} [ 68.092692][ C1] [ 68.092692][ C1] ... which became HARDIRQ-irq-unsafe at: [ 68.107086][ C1] ... [ 68.107094][ C1] lock_acquire+0x1e4/0x530 [ 68.114530][ C1] _raw_spin_lock_bh+0x35/0x50 [ 68.119488][ C1] sock_hash_free+0x164/0x820 [ 68.124268][ C1] bpf_map_free_deferred+0xe6/0x110 [ 68.129628][ C1] process_scheduled_works+0xa00/0x1770 [ 68.135458][ C1] worker_thread+0x86d/0xd70 [ 68.140512][ C1] kthread+0x2f0/0x390 [ 68.144897][ C1] ret_from_fork+0x4b/0x80 [ 68.150140][ C1] ret_from_fork_asm+0x1a/0x30 [ 68.155758][ C1] [ 68.155758][ C1] other info that might help us debug this: [ 68.155758][ C1] [ 68.166285][ C1] Possible interrupt unsafe locking scenario: [ 68.166285][ C1] [ 68.176264][ C1] CPU0 CPU1 [ 68.181809][ C1] ---- ---- [ 68.187359][ C1] lock(&htab->buckets[i].lock); [ 68.192483][ C1] local_irq_disable(); [ 68.199227][ C1] lock(&pool->lock); [ 68.205902][ C1] lock(&htab->buckets[i].lock); [ 68.214015][ C1] [ 68.217673][ C1] lock(&pool->lock); [ 68.222169][ C1] [ 68.222169][ C1] *** DEADLOCK *** [ 68.222169][ C1] [ 68.230392][ C1] 4 locks held by swapper/1/0: [ 68.235219][ C1] #0: ffffc90000a08c00 ((&sdp->delay_work)){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x600 [ 68.246117][ C1] #1: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: __queue_work+0x198/0xec0 [ 68.255436][ C1] #2: ffff8880b943d8d8 (&pool->lock){-.-.}-{2:2}, at: __queue_work+0x6ec/0xec0 [ 68.264844][ C1] #3: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run1+0xf0/0x3f0 [ 68.285454][ C1] [ 68.285454][ C1] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 68.295940][ C1] -> (&pool->lock){-.-.}-{2:2} { [ 68.301174][ C1] IN-HARDIRQ-W at: [ 68.305172][ C1] lock_acquire+0x1e4/0x530 [ 68.311952][ C1] _raw_spin_lock+0x2e/0x40 [ 68.318114][ C1] __queue_work+0x6ec/0xec0 [ 68.324459][ C1] queue_work_on+0x14f/0x250 [ 68.330688][ C1] hrtimer_run_queues+0x154/0x460 [ 68.337529][ C1] update_process_times+0x80/0x230 [ 68.344352][ C1] tick_periodic+0x190/0x220 [ 68.350587][ C1] tick_handle_periodic+0x4a/0x160 [ 68.357565][ C1] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 68.365309][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 68.372600][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 68.380403][ C1] console_flush_all+0x9cd/0xec0 [ 68.387248][ C1] console_unlock+0x13b/0x4d0 [ 68.393583][ C1] vprintk_emit+0x509/0x720 [ 68.399747][ C1] _printk+0xd5/0x120 [ 68.405444][ C1] __clocksource_select+0x2f2/0x350 [ 68.412389][ C1] clocksource_done_booting+0x36/0x50 [ 68.419617][ C1] do_one_initcall+0x238/0x830 [ 68.426137][ C1] do_initcall_level+0x157/0x210 [ 68.432742][ C1] do_initcalls+0x3f/0x80 [ 68.438930][ C1] kernel_init_freeable+0x435/0x5d0 [ 68.446577][ C1] kernel_init+0x1d/0x2a0 [ 68.453600][ C1] ret_from_fork+0x4b/0x80 [ 68.460004][ C1] ret_from_fork_asm+0x1a/0x30 [ 68.466453][ C1] IN-SOFTIRQ-W at: [ 68.470423][ C1] lock_acquire+0x1e4/0x530 [ 68.476653][ C1] _raw_spin_lock+0x2e/0x40 [ 68.482807][ C1] __queue_work+0x6ec/0xec0 [ 68.489178][ C1] call_timer_fn+0x17e/0x600 [ 68.496097][ C1] __run_timer_base+0x695/0x8e0 [ 68.502579][ C1] run_timer_softirq+0xb7/0x170 [ 68.509159][ C1] __do_softirq+0x2bc/0x943 [ 68.515861][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 68.522971][ C1] irq_exit_rcu+0x9/0x30 [ 68.529054][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 68.536980][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 68.545509][ C1] default_idle+0x13/0x20 [ 68.552472][ C1] default_idle_call+0x74/0xb0 [ 68.559951][ C1] do_idle+0x22f/0x5d0 [ 68.566066][ C1] cpu_startup_entry+0x42/0x60 [ 68.572807][ C1] rest_init+0x2e0/0x300 [ 68.578975][ C1] arch_call_rest_init+0xe/0x10 [ 68.585563][ C1] start_kernel+0x47a/0x500 [ 68.591827][ C1] x86_64_start_reservations+0x2a/0x30 [ 68.599060][ C1] x86_64_start_kernel+0x99/0xa0 [ 68.605728][ C1] common_startup_64+0x13e/0x147 [ 68.613260][ C1] INITIAL USE at: [ 68.617567][ C1] lock_acquire+0x1e4/0x530 [ 68.623624][ C1] _raw_spin_lock+0x2e/0x40 [ 68.629683][ C1] __queue_work+0x6ec/0xec0 [ 68.636546][ C1] queue_work_on+0x14f/0x250 [ 68.642919][ C1] start_poll_synchronize_rcu_expedited+0xf7/0x150 [ 68.651360][ C1] rcu_init+0xea/0x140 [ 68.657450][ C1] start_kernel+0x1f7/0x500 [ 68.664059][ C1] x86_64_start_reservations+0x2a/0x30 [ 68.671707][ C1] x86_64_start_kernel+0x99/0xa0 [ 68.678471][ C1] common_startup_64+0x13e/0x147 [ 68.685319][ C1] } [ 68.687870][ C1] ... key at: [] init_worker_pool.__key+0x0/0x20 [ 68.697291][ C1] [ 68.697291][ C1] the dependencies between the lock to be acquired [ 68.697301][ C1] and HARDIRQ-irq-unsafe lock: [ 68.711606][ C1] -> (&htab->buckets[i].lock){+.-.}-{2:2} { [ 68.717529][ C1] HARDIRQ-ON-W at: [ 68.721700][ C1] lock_acquire+0x1e4/0x530 [ 68.728036][ C1] _raw_spin_lock_bh+0x35/0x50 [ 68.734679][ C1] sock_hash_free+0x164/0x820 [ 68.741180][ C1] bpf_map_free_deferred+0xe6/0x110 [ 68.748382][ C1] process_scheduled_works+0xa00/0x1770 [ 68.755696][ C1] worker_thread+0x86d/0xd70 [ 68.762037][ C1] kthread+0x2f0/0x390 [ 68.767954][ C1] ret_from_fork+0x4b/0x80 [ 68.774401][ C1] ret_from_fork_asm+0x1a/0x30 [ 68.781480][ C1] IN-SOFTIRQ-W at: [ 68.785451][ C1] lock_acquire+0x1e4/0x530 [ 68.791627][ C1] _raw_spin_lock_bh+0x35/0x50 [ 68.798192][ C1] sock_hash_delete_elem+0xb0/0x300 [ 68.805089][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 68.812201][ C1] bpf_trace_run1+0x1e0/0x3f0 [ 68.818552][ C1] trace_workqueue_activate_work+0x161/0x1d0 [ 68.826683][ C1] __queue_work+0xc04/0xec0 [ 68.832870][ C1] queue_work_on+0x14f/0x250 [ 68.839116][ C1] call_timer_fn+0x17e/0x600 [ 68.845472][ C1] __run_timer_base+0x66a/0x8e0 [ 68.853053][ C1] run_timer_softirq+0xb7/0x170 [ 68.859604][ C1] __do_softirq+0x2bc/0x943 [ 68.865760][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 68.872895][ C1] irq_exit_rcu+0x9/0x30 [ 68.878884][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 68.886180][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 68.893805][ C1] acpi_safe_halt+0x21/0x30 [ 68.900209][ C1] acpi_idle_enter+0xe4/0x140 [ 68.906798][ C1] cpuidle_enter_state+0x118/0x490 [ 68.913919][ C1] cpuidle_enter+0x5d/0xa0 [ 68.920008][ C1] do_idle+0x375/0x5d0 [ 68.925982][ C1] cpu_startup_entry+0x42/0x60 [ 68.932662][ C1] __pfx_ap_starting+0x0/0x10 [ 68.939179][ C1] common_startup_64+0x13e/0x147 [ 68.945917][ C1] INITIAL USE at: [ 68.950099][ C1] lock_acquire+0x1e4/0x530 [ 68.956555][ C1] _raw_spin_lock_bh+0x35/0x50 [ 68.962899][ C1] sock_hash_free+0x164/0x820 [ 68.969387][ C1] bpf_map_free_deferred+0xe6/0x110 [ 68.976373][ C1] process_scheduled_works+0xa00/0x1770 [ 68.984411][ C1] worker_thread+0x86d/0xd70 [ 68.990768][ C1] kthread+0x2f0/0x390 [ 68.996425][ C1] ret_from_fork+0x4b/0x80 [ 69.002541][ C1] ret_from_fork_asm+0x1a/0x30 [ 69.009232][ C1] } [ 69.011853][ C1] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 69.021312][ C1] ... acquired at: [ 69.025418][ C1] lock_acquire+0x1e4/0x530 [ 69.030587][ C1] _raw_spin_lock_bh+0x35/0x50 [ 69.036005][ C1] sock_hash_delete_elem+0xb0/0x300 [ 69.041942][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 69.049028][ C1] bpf_trace_run1+0x1e0/0x3f0 [ 69.054163][ C1] trace_workqueue_activate_work+0x161/0x1d0 [ 69.060976][ C1] __queue_work+0xc04/0xec0 [ 69.065911][ C1] queue_work_on+0x14f/0x250 [ 69.071624][ C1] call_timer_fn+0x17e/0x600 [ 69.076977][ C1] __run_timer_base+0x66a/0x8e0 [ 69.082081][ C1] run_timer_softirq+0xb7/0x170 [ 69.087644][ C1] __do_softirq+0x2bc/0x943 [ 69.092800][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 69.097857][ C1] irq_exit_rcu+0x9/0x30 [ 69.104295][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 69.110396][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 69.116895][ C1] acpi_safe_halt+0x21/0x30 [ 69.121926][ C1] acpi_idle_enter+0xe4/0x140 [ 69.126986][ C1] cpuidle_enter_state+0x118/0x490 [ 69.132812][ C1] cpuidle_enter+0x5d/0xa0 [ 69.137543][ C1] do_idle+0x375/0x5d0 [ 69.141872][ C1] cpu_startup_entry+0x42/0x60 [ 69.146904][ C1] __pfx_ap_starting+0x0/0x10 [ 69.151763][ C1] common_startup_64+0x13e/0x147 [ 69.156988][ C1] [ 69.159342][ C1] [ 69.159342][ C1] stack backtrace: [ 69.165253][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 69.174791][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 69.184854][ C1] Call Trace: [ 69.188140][ C1] [ 69.190968][ C1] dump_stack_lvl+0x1e7/0x2e0 [ 69.195766][ C1] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.201174][ C1] ? __pfx__printk+0x10/0x10 [ 69.205769][ C1] ? print_shortest_lock_dependencies+0xf2/0x160 [ 69.212119][ C1] validate_chain+0x4dc7/0x58e0 [ 69.217071][ C1] ? __pfx_validate_chain+0x10/0x10 [ 69.222258][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 69.227648][ C1] ? lockdep_unlock+0x16a/0x300 [ 69.232901][ C1] ? mark_lock+0x9a/0x350 [ 69.237328][ C1] __lock_acquire+0x1346/0x1fd0 [ 69.242320][ C1] lock_acquire+0x1e4/0x530 [ 69.246826][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 69.252210][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 69.257348][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 69.262842][ C1] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 69.268765][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 69.274082][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 69.279474][ C1] _raw_spin_lock_bh+0x35/0x50 [ 69.284249][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 69.289946][ C1] sock_hash_delete_elem+0xb0/0x300 [ 69.295154][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 69.300627][ C1] bpf_trace_run1+0x1e0/0x3f0 [ 69.305340][ C1] ? bpf_trace_run1+0xf0/0x3f0 [ 69.310192][ C1] ? __pfx_bpf_trace_run1+0x10/0x10 [ 69.315400][ C1] ? pwq_tryinc_nr_active+0x227/0x720 [ 69.320937][ C1] trace_workqueue_activate_work+0x161/0x1d0 [ 69.326938][ C1] __queue_work+0xc04/0xec0 [ 69.331624][ C1] ? __queue_work+0x198/0xec0 [ 69.336399][ C1] ? rcu_is_watching+0x15/0xb0 [ 69.341274][ C1] queue_work_on+0x14f/0x250 [ 69.345945][ C1] ? __pfx_queue_work_on+0x10/0x10 [ 69.351104][ C1] ? call_timer_fn+0xa8/0x600 [ 69.355978][ C1] call_timer_fn+0x17e/0x600 [ 69.360562][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.366132][ C1] ? call_timer_fn+0xc0/0x600 [ 69.370829][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.376358][ C1] ? __pfx_call_timer_fn+0x10/0x10 [ 69.381635][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.386993][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.392412][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.398259][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 69.403471][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 69.408665][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.414016][ C1] __run_timer_base+0x66a/0x8e0 [ 69.418884][ C1] ? __pfx___run_timer_base+0x10/0x10 [ 69.424456][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 69.430781][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 69.436011][ C1] run_timer_softirq+0xb7/0x170 [ 69.440900][ C1] __do_softirq+0x2bc/0x943 [ 69.445671][ C1] ? __irq_exit_rcu+0xf2/0x1c0 [ 69.450424][ C1] ? __pfx___do_softirq+0x10/0x10 [ 69.456058][ C1] ? irqtime_account_irq+0xd4/0x1e0 [ 69.461442][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 69.466056][ C1] ? __pfx___irq_exit_rcu+0x10/0x10 [ 69.471258][ C1] irq_exit_rcu+0x9/0x30 [ 69.475500][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 69.481273][ C1] [ 69.484489][ C1] [ 69.487507][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 69.494658][ C1] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 69.500333][ C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 69.520918][ C1] RSP: 0018:ffffc90000197d08 EFLAGS: 00000246 [ 69.527178][ C1] RAX: ffff8880172c5a00 RBX: ffff88801b2a3064 RCX: 000000000001b039 [ 69.535332][ C1] RDX: 0000000000000001 RSI: ffff88801b2a3000 RDI: ffff88801b2a3064 [ 69.544694][ C1] RBP: 0000000000039f18 R08: ffff8880b9537d0b R09: 1ffff110172a6fa1 [ 69.553389][ C1] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff8880172ec800 [ 69.561383][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2ec0 [ 69.569380][ C1] ? __pfx_acpi_idle_enter+0x10/0x10 [ 69.574687][ C1] acpi_idle_enter+0xe4/0x140 [ 69.579433][ C1] cpuidle_enter_state+0x118/0x490 [ 69.584582][ C1] ? __pfx_menu_select+0x10/0x10 [ 69.589754][ C1] cpuidle_enter+0x5d/0xa0 [ 69.594319][ C1] do_idle+0x375/0x5d0 [ 69.598388][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 69.604906][ C1] ? __pfx_do_idle+0x10/0x10 [ 69.609595][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 69.615643][ C1] ? complete+0xb4/0x1c0 [ 69.619922][ C1] cpu_startup_entry+0x42/0x60 [ 69.624870][ C1] start_secondary+0x100/0x100 [ 69.629775][ C1] common_startup_64+0x13e/0x147 [ 69.635347][ C1] [ 69.638959][ C1] ------------[ cut here ]------------ [ 69.644798][ C1] raw_local_irq_restore() called with IRQs enabled [ 69.651647][ C1] WARNING: CPU: 1 PID: 0 at kernel/locking/irqflag-debug.c:10 warn_bogus_irq_restore+0x29/0x40 [pid 5068] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5068, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557cb58650) = 5069 ./strace-static-x86_64: Process 5069 attached [pid 5069] set_robust_list(0x55557cb58660, 24) = 0 [ 69.662067][ C1] Modules linked in: [ 69.665988][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 69.675601][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 69.686092][ C1] RIP: 0010:warn_bogus_irq_restore+0x29/0x40 [ 69.692687][ C1] Code: 90 f3 0f 1e fa 90 80 3d de 59 01 04 00 74 06 90 c3 cc cc cc cc c6 05 cf 59 01 04 01 90 48 c7 c7 20 ba aa 8b e8 f8 d5 e7 f5 90 <0f> 0b 90 90 90 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [pid 5069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5069] setpgid(0, 0) = 0 [pid 5069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "1000", 4) = 4 [pid 5069] close(3) = 0 [pid 5069] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=6, value_size=8, max_entries=5, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5069] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x200001c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [ 69.713034][ C1] RSP: 0018:ffffc90000a08ad8 EFLAGS: 00010246 [ 69.720130][ C1] RAX: 6054a315ce0e0400 RBX: 0000000000000200 RCX: ffff8880172c5a00 [ 69.728531][ C1] RDX: 0000000000000101 RSI: 0000000000000000 RDI: 0000000000000000 [ 69.736628][ C1] RBP: ffffc90000a08bb0 R08: ffffffff8157cc12 R09: 1ffff920001410b0 [ 69.748302][ C1] R10: dffffc0000000000 R11: fffff520001410b1 R12: 0000000000000200 [ 69.756472][ C1] R13: 0000000000000000 R14: 0000000000000246 R15: 1ffff92000141160 [ 69.764779][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 69.773784][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.780491][ C1] CR2: 000000003c6c6548 CR3: 000000000df32000 CR4: 00000000003506f0 [ 69.788616][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.797067][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.805234][ C1] Call Trace: [ 69.808639][ C1] [ 69.811538][ C1] ? __warn+0x163/0x4b0 [ 69.815720][ C1] ? warn_bogus_irq_restore+0x29/0x40 [ 69.821132][ C1] ? report_bug+0x2b3/0x500 [ 69.825652][ C1] ? warn_bogus_irq_restore+0x29/0x40 [ 69.831220][ C1] ? handle_bug+0x3e/0x70 [ 69.835569][ C1] ? exc_invalid_op+0x1a/0x50 [ 69.840320][ C1] ? asm_exc_invalid_op+0x1a/0x20 [ 69.845583][ C1] ? __warn_printk+0x292/0x360 [ 69.850700][ C1] ? warn_bogus_irq_restore+0x29/0x40 [ 69.856275][ C1] ? warn_bogus_irq_restore+0x28/0x40 [ 69.861782][ C1] queue_work_on+0x1ea/0x250 [ 69.866409][ C1] ? __pfx_queue_work_on+0x10/0x10 [ 69.871709][ C1] ? call_timer_fn+0xa8/0x600 [ 69.876781][ C1] call_timer_fn+0x17e/0x600 [ 69.881537][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.886940][ C1] ? call_timer_fn+0xc0/0x600 [ 69.891691][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.897230][ C1] ? __pfx_call_timer_fn+0x10/0x10 [ 69.902473][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.907925][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.913408][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.919013][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 69.924320][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 69.929691][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 69.935178][ C1] __run_timer_base+0x66a/0x8e0 [ 69.940077][ C1] ? __pfx___run_timer_base+0x10/0x10 [ 69.945455][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 69.951842][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 69.957298][ C1] run_timer_softirq+0xb7/0x170 [ 69.962189][ C1] __do_softirq+0x2bc/0x943 [ 69.967144][ C1] ? __irq_exit_rcu+0xf2/0x1c0 [ 69.971925][ C1] ? __pfx___do_softirq+0x10/0x10 [ 69.977295][ C1] ? irqtime_account_irq+0xd4/0x1e0 [ 69.983976][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 69.988710][ C1] ? __pfx___irq_exit_rcu+0x10/0x10 [ 69.994129][ C1] irq_exit_rcu+0x9/0x30 [ 69.998454][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 70.004292][ C1] [ 70.007306][ C1] [ 70.010260][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 70.016570][ C1] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 70.021942][ C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 70.041803][ C1] RSP: 0018:ffffc90000197d08 EFLAGS: 00000246 [ 70.048271][ C1] RAX: ffff8880172c5a00 RBX: ffff88801b2a3064 RCX: 000000000001b039 [ 70.056608][ C1] RDX: 0000000000000001 RSI: ffff88801b2a3000 RDI: ffff88801b2a3064 [ 70.064719][ C1] RBP: 0000000000039f18 R08: ffff8880b9537d0b R09: 1ffff110172a6fa1 [ 70.073089][ C1] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff8880172ec800 [ 70.081682][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2ec0 [ 70.090392][ C1] ? __pfx_acpi_idle_enter+0x10/0x10 [ 70.096586][ C1] acpi_idle_enter+0xe4/0x140 [ 70.101951][ C1] cpuidle_enter_state+0x118/0x490 [ 70.107133][ C1] ? __pfx_menu_select+0x10/0x10 [ 70.112446][ C1] cpuidle_enter+0x5d/0xa0 [ 70.117178][ C1] do_idle+0x375/0x5d0 [ 70.121530][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 70.128031][ C1] ? __pfx_do_idle+0x10/0x10 [ 70.132997][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 70.139534][ C1] ? complete+0xb4/0x1c0 [ 70.143836][ C1] cpu_startup_entry+0x42/0x60 [ 70.148782][ C1] start_secondary+0x100/0x100 [ 70.154045][ C1] common_startup_64+0x13e/0x147 [ 70.159316][ C1] [ 70.162567][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 70.169966][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 70.179264][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 70.189586][ C1] Call Trace: [ 70.192967][ C1] [ 70.195994][ C1] dump_stack_lvl+0x1e7/0x2e0 [ 70.200989][ C1] ? __pfx_dump_stack_lvl+0x10/0x10 [ 70.206237][ C1] ? __pfx__printk+0x10/0x10 [ 70.210921][ C1] ? _printk+0xd5/0x120 [ 70.215281][ C1] ? vscnprintf+0x5d/0x90 [ 70.219626][ C1] panic+0x349/0x860 [ 70.223528][ C1] ? __warn+0x172/0x4b0 [ 70.227774][ C1] ? __pfx_panic+0x10/0x10 [ 70.232284][ C1] ? show_trace_log_lvl+0x4e6/0x520 [ 70.237556][ C1] ? common_startup_64+0x13e/0x147 [ 70.242763][ C1] __warn+0x31e/0x4b0 [ 70.246737][ C1] ? warn_bogus_irq_restore+0x29/0x40 [ 70.252205][ C1] report_bug+0x2b3/0x500 [ 70.256746][ C1] ? warn_bogus_irq_restore+0x29/0x40 [ 70.262255][ C1] handle_bug+0x3e/0x70 [ 70.266438][ C1] exc_invalid_op+0x1a/0x50 [ 70.270966][ C1] asm_exc_invalid_op+0x1a/0x20 [ 70.275945][ C1] RIP: 0010:warn_bogus_irq_restore+0x29/0x40 [ 70.282038][ C1] Code: 90 f3 0f 1e fa 90 80 3d de 59 01 04 00 74 06 90 c3 cc cc cc cc c6 05 cf 59 01 04 01 90 48 c7 c7 20 ba aa 8b e8 f8 d5 e7 f5 90 <0f> 0b 90 90 90 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 70.302093][ C1] RSP: 0018:ffffc90000a08ad8 EFLAGS: 00010246 [ 70.308404][ C1] RAX: 6054a315ce0e0400 RBX: 0000000000000200 RCX: ffff8880172c5a00 [ 70.316937][ C1] RDX: 0000000000000101 RSI: 0000000000000000 RDI: 0000000000000000 [ 70.325146][ C1] RBP: ffffc90000a08bb0 R08: ffffffff8157cc12 R09: 1ffff920001410b0 [ 70.334708][ C1] R10: dffffc0000000000 R11: fffff520001410b1 R12: 0000000000000200 [ 70.342873][ C1] R13: 0000000000000000 R14: 0000000000000246 R15: 1ffff92000141160 [ 70.351231][ C1] ? __warn_printk+0x292/0x360 [ 70.356010][ C1] ? warn_bogus_irq_restore+0x28/0x40 [ 70.361842][ C1] queue_work_on+0x1ea/0x250 [ 70.366460][ C1] ? __pfx_queue_work_on+0x10/0x10 [ 70.371671][ C1] ? call_timer_fn+0xa8/0x600 [ 70.376355][ C1] call_timer_fn+0x17e/0x600 [ 70.380957][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 70.386540][ C1] ? call_timer_fn+0xc0/0x600 [ 70.391411][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 70.396815][ C1] ? __pfx_call_timer_fn+0x10/0x10 [ 70.401960][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 70.408228][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 70.413927][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 70.419351][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 70.424943][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 70.430460][ C1] ? __pfx_srcu_delay_timer+0x10/0x10 [ 70.435925][ C1] __run_timer_base+0x66a/0x8e0 [ 70.440797][ C1] ? __pfx___run_timer_base+0x10/0x10 [ 70.446202][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 70.452556][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 70.457788][ C1] run_timer_softirq+0xb7/0x170 [ 70.462679][ C1] __do_softirq+0x2bc/0x943 [ 70.467282][ C1] ? __irq_exit_rcu+0xf2/0x1c0 [ 70.472230][ C1] ? __pfx___do_softirq+0x10/0x10 [ 70.477272][ C1] ? irqtime_account_irq+0xd4/0x1e0 [ 70.482493][ C1] __irq_exit_rcu+0xf2/0x1c0 [ 70.487102][ C1] ? __pfx___irq_exit_rcu+0x10/0x10 [ 70.492348][ C1] irq_exit_rcu+0x9/0x30 [ 70.496709][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 70.502619][ C1] [ 70.505561][ C1] [ 70.508926][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 70.514937][ C1] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 70.520239][ C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 70.540166][ C1] RSP: 0018:ffffc90000197d08 EFLAGS: 00000246 [ 70.546547][ C1] RAX: ffff8880172c5a00 RBX: ffff88801b2a3064 RCX: 000000000001b039 [ 70.554534][ C1] RDX: 0000000000000001 RSI: ffff88801b2a3000 RDI: ffff88801b2a3064 [ 70.562599][ C1] RBP: 0000000000039f18 R08: ffff8880b9537d0b R09: 1ffff110172a6fa1 [ 70.570660][ C1] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff8880172ec800 [ 70.578892][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2ec0 [ 70.586866][ C1] ? __pfx_acpi_idle_enter+0x10/0x10 [ 70.592262][ C1] acpi_idle_enter+0xe4/0x140 [ 70.596966][ C1] cpuidle_enter_state+0x118/0x490 [ 70.602295][ C1] ? __pfx_menu_select+0x10/0x10 [ 70.607497][ C1] cpuidle_enter+0x5d/0xa0 [ 70.612445][ C1] do_idle+0x375/0x5d0 [ 70.616862][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 70.623803][ C1] ? __pfx_do_idle+0x10/0x10 [ 70.628489][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 70.635087][ C1] ? complete+0xb4/0x1c0 [ 70.639605][ C1] cpu_startup_entry+0x42/0x60 [ 70.644387][ C1] start_secondary+0x100/0x100 [ 70.649204][ C1] common_startup_64+0x13e/0x147 [ 70.654191][ C1] [ 70.657328][ C1] Kernel Offset: disabled [ 70.661734][ C1] Rebooting in 86400 seconds..