Warning: Permanently added '10.128.0.51' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 41.646958][ C1] [ 41.649338][ C1] ======================================================== [ 41.656500][ C1] WARNING: possible irq lock inversion dependency detected [ 41.663674][ C1] 5.6.0-syzkaller #0 Not tainted [ 41.668614][ C1] -------------------------------------------------------- [ 41.675795][ C1] swapper/1/0 just changed the state of lock: [ 41.681842][ C1] ffff88808f38bcd8 (&ctx->ctx_lock){..-.}-{2:2}, at: free_ioctx_users+0x30/0x1c0 [ 41.690932][ C1] but this lock took another, SOFTIRQ-unsafe lock in the past: [ 41.698445][ C1] (&pid->wait_pidfd){+.+.}-{2:2} [ 41.698450][ C1] [ 41.698450][ C1] [ 41.698450][ C1] and interrupts could create inverse lock ordering between them. [ 41.698450][ C1] [ 41.717741][ C1] [ 41.717741][ C1] other info that might help us debug this: [ 41.725774][ C1] Possible interrupt unsafe locking scenario: [ 41.725774][ C1] [ 41.734063][ C1] CPU0 CPU1 [ 41.739403][ C1] ---- ---- [ 41.744743][ C1] lock(&pid->wait_pidfd); [ 41.749216][ C1] local_irq_disable(); [ 41.755959][ C1] lock(&ctx->ctx_lock); [ 41.762787][ C1] lock(&pid->wait_pidfd); [ 41.769780][ C1] [ 41.773218][ C1] lock(&ctx->ctx_lock); [ 41.777690][ C1] [ 41.777690][ C1] *** DEADLOCK *** [ 41.777690][ C1] [ 41.785824][ C1] 2 locks held by swapper/1/0: [ 41.790564][ C1] #0: ffffffff892e67a0 (rcu_callback){....}-{0:0}, at: rcu_lock_acquire+0x0/0x30 [ 41.799748][ C1] #1: ffffffff892e6750 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30 [ 41.809019][ C1] [ 41.809019][ C1] the shortest dependencies between 2nd lock and 1st lock: [ 41.818368][ C1] -> (&pid->wait_pidfd){+.+.}-{2:2} { [ 41.823808][ C1] HARDIRQ-ON-W at: [ 41.827854][ C1] lock_acquire+0x169/0x480 [ 41.834150][ C1] _raw_spin_lock+0x2a/0x40 [ 41.840446][ C1] proc_pid_make_inode+0x187/0x2d0 [ 41.847350][ C1] proc_pid_instantiate+0x4b/0x1a0 [ 41.854299][ C1] proc_pid_lookup+0x218/0x2f0 [ 41.860900][ C1] proc_root_lookup+0x1b/0x50 [ 41.867374][ C1] __lookup_slow+0x240/0x370 [ 41.873764][ C1] walk_component+0x442/0x680 [ 41.880236][ C1] link_path_walk+0x66d/0xba0 [ 41.886708][ C1] path_openat+0x21d/0x38b0 [ 41.893026][ C1] do_filp_open+0x2b4/0x3a0 [ 41.899325][ C1] do_sys_openat2+0x463/0x6f0 [ 41.905895][ C1] __x64_sys_open+0x1af/0x1e0 [ 41.912384][ C1] do_syscall_64+0xf3/0x1b0 [ 41.918690][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 41.926374][ C1] SOFTIRQ-ON-W at: [ 41.930418][ C1] lock_acquire+0x169/0x480 [ 41.936716][ C1] _raw_spin_lock+0x2a/0x40 [ 41.943024][ C1] proc_pid_make_inode+0x187/0x2d0 [ 41.949930][ C1] proc_pid_instantiate+0x4b/0x1a0 [ 41.956847][ C1] proc_pid_lookup+0x218/0x2f0 [ 41.963445][ C1] proc_root_lookup+0x1b/0x50 [ 41.969921][ C1] __lookup_slow+0x240/0x370 [ 41.976314][ C1] walk_component+0x442/0x680 [ 41.982802][ C1] link_path_walk+0x66d/0xba0 [ 41.989299][ C1] path_openat+0x21d/0x38b0 [ 41.995600][ C1] do_filp_open+0x2b4/0x3a0 [ 42.001899][ C1] do_sys_openat2+0x463/0x6f0 [ 42.008371][ C1] __x64_sys_open+0x1af/0x1e0 [ 42.014858][ C1] do_syscall_64+0xf3/0x1b0 [ 42.021159][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 42.028859][ C1] INITIAL USE at: [ 42.032816][ C1] lock_acquire+0x169/0x480 [ 42.039029][ C1] _raw_spin_lock_irqsave+0x9e/0xc0 [ 42.045932][ C1] __wake_up+0xb8/0x150 [ 42.051796][ C1] do_notify_parent+0x167/0xce0 [ 42.058377][ C1] do_exit+0x12c5/0x1f80 [ 42.064328][ C1] call_usermodehelper_exec_async+0x47c/0x480 [ 42.072114][ C1] ret_from_fork+0x24/0x30 [ 42.078288][ C1] } [ 42.080892][ C1] ... key at: [] alloc_pid.__key+0x0/0x10 [ 42.088752][ C1] ... acquired at: [ 42.092662][ C1] lock_acquire+0x169/0x480 [ 42.097313][ C1] _raw_spin_lock+0x2a/0x40 [ 42.101959][ C1] io_submit_one+0x10f5/0x1a80 [ 42.106903][ C1] __se_sys_io_submit+0x117/0x220 [ 42.112075][ C1] do_syscall_64+0xf3/0x1b0 [ 42.116721][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 42.122761][ C1] [ 42.125060][ C1] -> (&ctx->ctx_lock){..-.}-{2:2} { [ 42.130228][ C1] IN-SOFTIRQ-W at: [ 42.134181][ C1] lock_acquire+0x169/0x480 [ 42.140304][ C1] _raw_spin_lock_irq+0x67/0x80 [ 42.146773][ C1] free_ioctx_users+0x30/0x1c0 [ 42.153173][ C1] percpu_ref_put+0x18d/0x1a0 [ 42.159469][ C1] rcu_core+0x816/0x1120 [ 42.165332][ C1] __do_softirq+0x268/0x80c [ 42.171457][ C1] irq_exit+0x223/0x230 [ 42.177232][ C1] smp_apic_timer_interrupt+0x113/0x280 [ 42.184412][ C1] apic_timer_interrupt+0xf/0x20 [ 42.190970][ C1] native_safe_halt+0xe/0x10 [ 42.197191][ C1] default_idle+0x4c/0x70 [ 42.203155][ C1] do_idle+0x1ee/0x650 [ 42.208848][ C1] cpu_startup_entry+0x15/0x20 [ 42.215233][ C1] start_secondary+0x386/0x410 [ 42.221633][ C1] secondary_startup_64+0xa4/0xb0 [ 42.228271][ C1] INITIAL USE at: [ 42.232138][ C1] lock_acquire+0x169/0x480 [ 42.238173][ C1] _raw_spin_lock_irq+0x67/0x80 [ 42.244560][ C1] io_submit_one+0x10cb/0x1a80 [ 42.250855][ C1] __se_sys_io_submit+0x117/0x220 [ 42.257414][ C1] do_syscall_64+0xf3/0x1b0 [ 42.263449][ C1] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 42.270871][ C1] } [ 42.273365][ C1] ... key at: [] ioctx_alloc.__key+0x0/0x10 [ 42.281321][ C1] ... acquired at: [ 42.285113][ C1] mark_lock+0x529/0x1b00 [ 42.289602][ C1] __lock_acquire+0xaa7/0x2b90 [ 42.294508][ C1] lock_acquire+0x169/0x480 [ 42.299171][ C1] _raw_spin_lock_irq+0x67/0x80 [ 42.304178][ C1] free_ioctx_users+0x30/0x1c0 [ 42.309156][ C1] percpu_ref_put+0x18d/0x1a0 [ 42.313994][ C1] rcu_core+0x816/0x1120 [ 42.318924][ C1] __do_softirq+0x268/0x80c [ 42.323617][ C1] irq_exit+0x223/0x230 [ 42.327921][ C1] smp_apic_timer_interrupt+0x113/0x280 [ 42.333611][ C1] apic_timer_interrupt+0xf/0x20 [ 42.338692][ C1] native_safe_halt+0xe/0x10 [ 42.343425][ C1] default_idle+0x4c/0x70 [ 42.347898][ C1] do_idle+0x1ee/0x650 [ 42.352121][ C1] cpu_startup_entry+0x15/0x20 [ 42.357027][ C1] start_secondary+0x386/0x410 [ 42.361983][ C1] secondary_startup_64+0xa4/0xb0 [ 42.367207][ C1] [ 42.369544][ C1] [ 42.369544][ C1] stack backtrace: [ 42.375424][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.6.0-syzkaller #0 [ 42.382933][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.392973][ C1] Call Trace: [ 42.396230][ C1] [ 42.399061][ C1] dump_stack+0x1e9/0x30e [ 42.403377][ C1] print_irq_inversion_bug+0xb67/0xe90 [ 42.408810][ C1] ? arch_stack_walk+0xb4/0xe0 [ 42.413557][ C1] ? secondary_startup_64+0xa4/0xb0 [ 42.418807][ C1] check_usage_forwards+0x13f/0x240 [ 42.424095][ C1] ? save_trace+0x49/0xb60 [ 42.428501][ C1] mark_lock+0x529/0x1b00 [ 42.432841][ C1] ? check_usage_backwards+0x240/0x240 [ 42.438276][ C1] ? mark_lock+0x102/0x1b00 [ 42.442755][ C1] ? __lock_acquire+0x116c/0x2b90 [ 42.447750][ C1] __lock_acquire+0xaa7/0x2b90 [ 42.452487][ C1] ? pcpu_block_update+0x564/0x890 [ 42.457571][ C1] lock_acquire+0x169/0x480 [ 42.462061][ C1] ? free_ioctx_users+0x30/0x1c0 [ 42.467059][ C1] ? rcu_lock_acquire+0x5/0x30 [ 42.471811][ C1] ? trace_irq_disable_rcuidle+0x1f/0x1d0 [ 42.477522][ C1] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 42.483587][ C1] _raw_spin_lock_irq+0x67/0x80 [ 42.488418][ C1] ? free_ioctx_users+0x30/0x1c0 [ 42.493336][ C1] free_ioctx_users+0x30/0x1c0 [ 42.498085][ C1] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 42.504182][ C1] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 42.510225][ C1] percpu_ref_put+0x18d/0x1a0 [ 42.514923][ C1] rcu_core+0x816/0x1120 [ 42.519148][ C1] __do_softirq+0x268/0x80c [ 42.523649][ C1] ? irq_exit+0x223/0x230 [ 42.527959][ C1] irq_exit+0x223/0x230 [ 42.532164][ C1] smp_apic_timer_interrupt+0x113/0x280 [ 42.537698][ C1] apic_timer_interrupt+0xf/0x20 [ 42.542609][ C1] [ 42.545536][ C1] RIP: 0010:native_safe_halt+0xe/0x10 [ 42.550897][ C1] Code: 80 e1 07 80 c1 03 38 c1 7c bc 48 89 df e8 8a fc ab f9 eb b2 cc cc cc cc cc cc cc cc e9 07 00 00 00 0f 00 2d d6 a2 5c 00 fb f4 90 e9 07 00 00 00 0f 00 2d c6 a2 5c 00 f4 c3 cc cc 41 56 53 65 [ 42.570479][ C1] RSP: 0018:ffffc90000d3fe60 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13 [ 42.578877][ C1] RAX: 1ffffffff12573b1 RBX: ffff8880a9a3c340 RCX: dffffc0000000000 [ 42.586835][ C1] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffff8880a9a3cba4 [ 42.594872][ C1] RBP: ffffffff896b61e0 R08: ffffffff817a6f90 R09: ffffed1015347869 [ 42.602869][ C1] R10: ffffed1015347869 R11: 0000000000000000 R12: 1ffff11015347868 [ 42.610836][ C1] R13: dffffc0000000000 R14: 1ffffffff12573af R15: 0000000000000001 [ 42.618813][ C1] ? trace_hardirqs_on+0x30/0x70 [ 42.623724][ C1] default_idle+0x4c/0x70 [ 42.628024][ C1] do_idle+0x1ee/0x650 [ 42.632076][ C1] cpu_startup_entry+0x15/0x20 [ 42.636810][ C1] start_secondary+0x386/0x410 [ 42.641543][ C1] secondary_startup_64+0xa4/0xb0