Warning: Permanently added '10.128.1.151' (ED25519) to the list of known hosts. executing program [ 50.492184][ T3541] [ 50.494518][ T3541] ====================================================== [ 50.501511][ T3541] WARNING: possible circular locking dependency detected [ 50.508508][ T3541] 6.1.85-syzkaller #0 Not tainted [ 50.513512][ T3541] ------------------------------------------------------ [ 50.520509][ T3541] syz-executor211/3541 is trying to acquire lock: [ 50.526897][ T3541] ffff888016aa7290 (&psock->link_lock){+...}-{2:2}, at: sock_map_update_common+0x31c/0x5b0 [ 50.536900][ T3541] [ 50.536900][ T3541] but task is already holding lock: [ 50.544241][ T3541] ffff888076a2f240 (&stab->lock){+...}-{2:2}, at: sock_map_update_common+0x1b6/0x5b0 [ 50.553705][ T3541] [ 50.553705][ T3541] which lock already depends on the new lock. [ 50.553705][ T3541] [ 50.564086][ T3541] [ 50.564086][ T3541] the existing dependency chain (in reverse order) is: [ 50.573078][ T3541] [ 50.573078][ T3541] -> #1 (&stab->lock){+...}-{2:2}: [ 50.580359][ T3541] lock_acquire+0x1f8/0x5a0 [ 50.585372][ T3541] _raw_spin_lock_bh+0x31/0x40 [ 50.590648][ T3541] sock_map_delete_elem+0x161/0x230 [ 50.596358][ T3541] bpf_prog_9d96c76a008f5a1e+0x5b/0x5f [ 50.602319][ T3541] bpf_trace_run2+0x1fd/0x410 [ 50.607498][ T3541] __bpf_trace_kfree+0x6e/0x90 [ 50.612763][ T3541] kfree+0xf6/0x190 [ 50.617075][ T3541] sock_map_unref+0x3ac/0x5d0 [ 50.622264][ T3541] sock_hash_delete_elem+0x388/0x400 [ 50.628056][ T3541] map_delete_elem+0x3ff/0x550 [ 50.633329][ T3541] __sys_bpf+0x350/0x6c0 [ 50.638080][ T3541] __x64_sys_bpf+0x78/0x90 [ 50.643003][ T3541] do_syscall_64+0x3b/0xb0 [ 50.647928][ T3541] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 50.654327][ T3541] [ 50.654327][ T3541] -> #0 (&psock->link_lock){+...}-{2:2}: [ 50.662126][ T3541] validate_chain+0x1661/0x5950 [ 50.667487][ T3541] __lock_acquire+0x125b/0x1f80 [ 50.672845][ T3541] lock_acquire+0x1f8/0x5a0 [ 50.677857][ T3541] _raw_spin_lock_bh+0x31/0x40 [ 50.683126][ T3541] sock_map_update_common+0x31c/0x5b0 [ 50.689004][ T3541] sock_map_update_elem_sys+0x55b/0x910 [ 50.695056][ T3541] map_update_elem+0x503/0x680 [ 50.700337][ T3541] __sys_bpf+0x337/0x6c0 [ 50.705092][ T3541] __x64_sys_bpf+0x78/0x90 [ 50.710020][ T3541] do_syscall_64+0x3b/0xb0 [ 50.714945][ T3541] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 50.721350][ T3541] [ 50.721350][ T3541] other info that might help us debug this: [ 50.721350][ T3541] [ 50.731555][ T3541] Possible unsafe locking scenario: [ 50.731555][ T3541] [ 50.738983][ T3541] CPU0 CPU1 [ 50.744335][ T3541] ---- ---- [ 50.749679][ T3541] lock(&stab->lock); [ 50.753731][ T3541] lock(&psock->link_lock); [ 50.760822][ T3541] lock(&stab->lock); [ 50.767390][ T3541] lock(&psock->link_lock); [ 50.771965][ T3541] [ 50.771965][ T3541] *** DEADLOCK *** [ 50.771965][ T3541] [ 50.780092][ T3541] 3 locks held by syz-executor211/3541: [ 50.785613][ T3541] #0: ffff888076aa1930 (sk_lock-AF_UNIX){+.+.}-{0:0}, at: sock_map_update_elem_sys+0x1c8/0x910 [ 50.796039][ T3541] #1: ffffffff8d12ac40 (rcu_read_lock){....}-{1:2}, at: sock_map_update_elem_sys+0x1d4/0x910 [ 50.806286][ T3541] #2: ffff888076a2f240 (&stab->lock){+...}-{2:2}, at: sock_map_update_common+0x1b6/0x5b0 [ 50.816188][ T3541] [ 50.816188][ T3541] stack backtrace: [ 50.822056][ T3541] CPU: 1 PID: 3541 Comm: syz-executor211 Not tainted 6.1.85-syzkaller #0 [ 50.830461][ T3541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 50.840502][ T3541] Call Trace: [ 50.843767][ T3541] [ 50.846684][ T3541] dump_stack_lvl+0x1e3/0x2cb [ 50.851363][ T3541] ? nf_tcp_handle_invalid+0x642/0x642 [ 50.856817][ T3541] ? print_circular_bug+0x12b/0x1a0 [ 50.862003][ T3541] check_noncircular+0x2fa/0x3b0 [ 50.866927][ T3541] ? add_chain_block+0x850/0x850 [ 50.871853][ T3541] ? lockdep_lock+0x11f/0x2a0 [ 50.876518][ T3541] ? _find_first_zero_bit+0xd0/0x100 [ 50.881794][ T3541] validate_chain+0x1661/0x5950 [ 50.886631][ T3541] ? reacquire_held_locks+0x660/0x660 [ 50.891999][ T3541] ? reacquire_held_locks+0x660/0x660 [ 50.897358][ T3541] ? mark_lock+0x29d/0x340 [ 50.901762][ T3541] ? mark_lock+0x9a/0x340 [ 50.906079][ T3541] ? look_up_lock_class+0x77/0x140 [ 50.911176][ T3541] ? register_lock_class+0x100/0x990 [ 50.916451][ T3541] ? is_dynamic_key+0x260/0x260 [ 50.921292][ T3541] ? mark_lock+0x9a/0x340 [ 50.925611][ T3541] __lock_acquire+0x125b/0x1f80 [ 50.930458][ T3541] lock_acquire+0x1f8/0x5a0 [ 50.934953][ T3541] ? sock_map_update_common+0x31c/0x5b0 [ 50.940489][ T3541] ? read_lock_is_recursive+0x10/0x10 [ 50.945852][ T3541] ? sock_map_update_common+0x31c/0x5b0 [ 50.951388][ T3541] ? __bpf_trace_softirq+0x10/0x10 [ 50.956490][ T3541] ? __rwlock_init+0x140/0x140 [ 50.961240][ T3541] ? sock_map_update_common+0x31c/0x5b0 [ 50.966778][ T3541] _raw_spin_lock_bh+0x31/0x40 [ 50.971528][ T3541] ? sock_map_update_common+0x31c/0x5b0 [ 50.977064][ T3541] sock_map_update_common+0x31c/0x5b0 [ 50.982428][ T3541] sock_map_update_elem_sys+0x55b/0x910 [ 50.987969][ T3541] ? sock_map_update_elem_sys+0x1d4/0x910 [ 50.993677][ T3541] ? sock_map_prog_detach+0x290/0x290 [ 50.999036][ T3541] ? bpf_map_update_value+0x14a/0x6f0 [ 51.004399][ T3541] map_update_elem+0x503/0x680 [ 51.009159][ T3541] __sys_bpf+0x337/0x6c0 [ 51.013395][ T3541] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 51.018757][ T3541] ? fd_install+0x57/0x540 [ 51.023164][ T3541] ? print_irqtrace_events+0x210/0x210 [ 51.028613][ T3541] ? print_irqtrace_events+0x210/0x210 [ 51.034059][ T3541] ? syscall_enter_from_user_mode+0x2e/0x230 [ 51.040026][ T3541] ? lockdep_hardirqs_on+0x94/0x130 [ 51.045210][ T3541] __x64_sys_bpf+0x78/0x90 [ 51.049612][ T3541] do_syscall_64+0x3b/0xb0 [ 51.054018][ T3541] ? clear_bhb_loop+0x45/0xa0 [ 51.058691][ T3541] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 51.064572][ T3541] RIP: 0033:0x7eff0a91ea29 [ 51.068971][ T3541] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 51.088559][ T3541] RSP: 002b:00007fff74ee7148 EFLAGS: 00000246 ORIG_RAX