./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3697161499 <...> Warning: Permanently added '10.128.1.33' (ED25519) to the list of known hosts. execve("./syz-executor3697161499", ["./syz-executor3697161499"], 0x7ffd1cde8c70 /* 10 vars */) = 0 brk(NULL) = 0x55558291e000 brk(0x55558291ed00) = 0x55558291ed00 arch_prctl(ARCH_SET_FS, 0x55558291e380) = 0 set_tid_address(0x55558291e650) = 5066 set_robust_list(0x55558291e660, 24) = 0 rseq(0x55558291eca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3697161499", 4096) = 28 getrandom("\x8c\xd1\x25\xfd\x05\xb3\x21\x87", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558291ed00 brk(0x55558293fd00) = 0x55558293fd00 brk(0x555582940000) = 0x555582940000 mprotect(0x7f69f03f2000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5067 attached , child_tidptr=0x55558291e650) = 5067 [pid 5067] set_robust_list(0x55558291e660, 24) = 0 [pid 5067] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5067] setpgid(0, 0) = 0 [pid 5067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "1000", 4) = 4 [pid 5067] close(3) = 0 [pid 5067] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5067] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5067] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5067] exit_group(0) = ? [pid 5067] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5067, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5068 attached , child_tidptr=0x55558291e650) = 5068 [pid 5068] set_robust_list(0x55558291e660, 24) = 0 [pid 5068] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5068] setpgid(0, 0) = 0 [pid 5068] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5068] write(3, "1000", 4) = 4 [pid 5068] close(3) = 0 [pid 5068] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5068] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5068] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5068] exit_group(0) = ? [pid 5068] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5068, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5069 attached , child_tidptr=0x55558291e650) = 5069 [pid 5069] set_robust_list(0x55558291e660, 24) = 0 [pid 5069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5069] setpgid(0, 0) = 0 [pid 5069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "1000", 4) = 4 [pid 5069] close(3) = 0 [pid 5069] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5069] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5069] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5069] exit_group(0) = ? [pid 5069] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5069, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5070 attached , child_tidptr=0x55558291e650) = 5070 [pid 5070] set_robust_list(0x55558291e660, 24) = 0 [pid 5070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5070] setpgid(0, 0) = 0 [pid 5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5070] write(3, "1000", 4) = 4 [pid 5070] close(3) = 0 [pid 5070] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5070] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5070] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5070] exit_group(0) = ? [pid 5070] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5070, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5071 attached [pid 5071] set_robust_list(0x55558291e660, 24) = 0 [pid 5066] <... clone resumed>, child_tidptr=0x55558291e650) = 5071 [pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5071] setpgid(0, 0) = 0 [pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "1000", 4) = 4 [pid 5071] close(3) = 0 [pid 5071] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5071] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5071] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5071] exit_group(0) = ? [pid 5071] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5071, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558291e650) = 5072 ./strace-static-x86_64: Process 5072 attached [pid 5072] set_robust_list(0x55558291e660, 24) = 0 [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5072] setpgid(0, 0) = 0 [pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "1000", 4) = 4 [pid 5072] close(3) = 0 [pid 5072] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5072] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5072] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5072] exit_group(0) = ? [pid 5072] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5072, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558291e650) = 5073 ./strace-static-x86_64: Process 5073 attached [pid 5073] set_robust_list(0x55558291e660, 24) = 0 [pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5073] setpgid(0, 0) = 0 [pid 5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1000", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3 [pid 5073] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5073] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="workqueue_queue_work", prog_fd=4}}, 16) = 5 [pid 5073] exit_group(0) = ? [ 53.583349][ C0] [ 53.585690][ C0] ===================================================== [ 53.592598][ C0] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 53.600032][ C0] 6.8.0-syzkaller-05204-g237bb5f7f7f5 #0 Not tainted [ 53.606682][ C0] ----------------------------------------------------- [ 53.613589][ C0] swapper/0/0 [HC0[0]:SC1[3]:HE0:SE0] is trying to acquire: [ 53.620879][ C0] ffff8880215c8020 (&htab->buckets[i].lock){+.-.}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 53.631138][ C0] [ 53.631138][ C0] and this task is already holding: [ 53.638479][ C0] ffff8880b943d8d8 (&pool->lock){-.-.}-{2:2}, at: __queue_work+0x6ec/0xec0 [ 53.647064][ C0] which would create a new lock dependency: [ 53.652924][ C0] (&pool->lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+.-.}-{2:2} [ 53.655006][ C1] ------------[ cut here ]------------ [ 53.660980][ C0] [ 53.660980][ C0] but this new dependency connects a HARDIRQ-irq-safe lock: [ 53.666418][ C1] WARNING: CPU: 1 PID: 0 at kernel/softirq.c:307 __local_bh_disable_ip+0x1f6/0x220 [ 53.675840][ C0] (&pool->lock [ 53.685087][ C1] Modules linked in: [ 53.685098][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.8.0-syzkaller-05204-g237bb5f7f7f5 #0 [ 53.688527][ C0] ){-.-.}-{2:2} [ 53.692400][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 53.701646][ C0] [ 53.701646][ C0] ... which became HARDIRQ-irq-safe at: [ 53.705075][ C1] RIP: 0010:__local_bh_disable_ip+0x1f6/0x220 [ 53.715102][ C0] lock_acquire+0x1e4/0x530 [ 53.722800][ C1] Code: 2c 0b 00 65 48 8b 04 25 28 00 00 00 48 3b 84 24 80 00 00 00 75 33 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 <0f> 0b 90 e9 99 fe ff ff e8 4d 84 16 0a 41 f7 c6 00 02 00 00 0f 85 [ 53.728833][ C0] _raw_spin_lock+0x2e/0x40 [ 53.733479][ C1] RSP: 0018:ffffc90000a089e0 EFLAGS: 00010006 [ 53.753057][ C0] __queue_work+0x6ec/0xec0 [ 53.757617][ C1] [ 53.757623][ C1] RAX: 0000000080010004 RBX: ffffffff895fc820 RCX: ffff8880172c5a00 [ 53.763650][ C0] queue_work_on+0x14f/0x250 [ 53.768208][ C1] RDX: dffffc0000000000 RSI: 0000000000000201 RDI: ffffffff895fc820 [ 53.770507][ C0] hrtimer_run_queues+0x154/0x460 [ 53.778448][ C1] RBP: ffffc90000a08aa8 R08: 0000000000000005 R09: ffffffff89600b3e [ 53.783092][ C0] update_process_times+0x80/0x230 [ 53.791038][ C1] R10: 000000000000000c R11: ffff8880172c5a00 R12: dffffc0000000000 [ 53.796116][ C0] tick_periodic+0x190/0x220 [ 53.804068][ C1] R13: 1ffff92000141140 R14: ffffc90000a08a40 R15: 0000000000000201 [ 53.809252][ C0] tick_handle_periodic+0x4a/0x160 [ 53.817195][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 53.821838][ C0] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 53.829781][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.834947][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 53.843846][ C1] CR2: 00007f69f03f60d0 CR3: 000000001f57e000 CR4: 00000000003506f0 [ 53.849881][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 53.856438][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 53.862121][ C0] console_flush_all+0x9cd/0xec0 [ 53.870066][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 53.876101][ C0] console_unlock+0x13b/0x4d0 [ 53.884043][ C1] Call Trace: [ 53.884052][ C1] [ 53.889035][ C0] vprintk_emit+0x509/0x720 [ 53.896979][ C1] ? __warn+0x163/0x4b0 [ 53.901710][ C0] _printk+0xd5/0x120 [ 53.904964][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 53.907783][ C0] __clocksource_select+0x2f2/0x350 [ 53.912343][ C1] ? report_bug+0x2b3/0x500 [ 53.916465][ C0] clocksource_done_booting+0x36/0x50 [ 53.920502][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 53.925928][ C0] do_one_initcall+0x238/0x830 [ 53.931186][ C1] ? handle_bug+0x3e/0x70 [ 53.935652][ C0] do_initcall_level+0x157/0x210 [ 53.941078][ C1] ? exc_invalid_op+0x1a/0x50 [ 53.946504][ C0] do_initcalls+0x3f/0x80 [ 53.951323][ C1] ? asm_exc_invalid_op+0x1a/0x20 [ 53.955622][ C0] kernel_init_freeable+0x435/0x5d0 [ 53.960616][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 53.965260][ C0] kernel_init+0x1d/0x2a0 [ 53.969649][ C1] ? sock_hash_bucket_hash+0x24e/0x740 [ 53.974653][ C0] ret_from_fork+0x4b/0x80 [ 53.979908][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 53.985247][ C0] ret_from_fork_asm+0x1a/0x30 [ 53.989631][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 53.995056][ C0] [ 53.995056][ C0] to a HARDIRQ-irq-unsafe lock: [ 53.999528][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 54.004863][ C0] ( [ 54.009681][ C1] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 54.015108][ C0] &htab->buckets[i].lock [ 54.022095][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 54.027434][ C0] ){+.-.}-{2:2} [ 54.029911][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 54.035681][ C0] [ 54.035681][ C0] ... which became HARDIRQ-irq-unsafe at: [ 54.039893][ C1] _raw_spin_lock_bh+0x1c/0x50 [ 54.044890][ C0] ... [ 54.044896][ C0] lock_acquire+0x1e4/0x530 [ 54.048329][ C1] sock_hash_delete_elem+0xb0/0x300 [ 54.053665][ C0] _raw_spin_lock_bh+0x35/0x50 [ 54.061532][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 54.066261][ C0] sock_hash_free+0x164/0x820 [ 54.068831][ C1] bpf_trace_run3+0x238/0x460 [ 54.073385][ C0] bpf_map_free_deferred+0xe6/0x110 [ 54.078552][ C1] ? bpf_trace_run3+0x14a/0x460 [ 54.083385][ C0] process_scheduled_works+0xa00/0x1770 [ 54.088814][ C1] ? __pfx_bpf_trace_run3+0x10/0x10 [ 54.093544][ C0] worker_thread+0x86d/0xd70 [ 54.098191][ C1] ? rcu_is_watching+0x15/0xb0 [ 54.103446][ C0] kthread+0x2f0/0x390 [ 54.108265][ C1] ? lock_release+0xbf/0x9d0 [ 54.113869][ C0] ret_from_fork+0x4b/0x80 [ 54.119039][ C1] __queue_work+0xe5b/0xec0 [ 54.123681][ C0] ret_from_fork_asm+0x1a/0x30 [ 54.128417][ C1] ? __queue_work+0x198/0xec0 [ 54.132539][ C0] [ 54.132539][ C0] other info that might help us debug this: [ 54.132539][ C0] [ 54.137100][ C1] queue_work_on+0x14f/0x250 [ 54.141567][ C0] Possible interrupt unsafe locking scenario: [ 54.141567][ C0] [ 54.146041][ C1] ? __pfx_queue_work_on+0x10/0x10 [ 54.150855][ C0] CPU0 CPU1 [ 54.150861][ C0] ---- ---- [ 54.155501][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 54.165703][ C0] lock(&htab->buckets[i].lock [ 54.170260][ C1] ? rcu_is_watching+0x15/0xb0 [ 54.178550][ C0] ); [ 54.178556][ C0] local_irq_disable(); [ 54.183630][ C1] ? lock_release+0xbf/0x9d0 [ 54.188977][ C0] lock(&pool->lock [ 54.194334][ C1] stats_request+0xd0/0x100 [ 54.199679][ C0] ); [ 54.199688][ C0] lock( [ 54.204509][ C1] ? __pfx_stats_request+0x10/0x10 [ 54.209266][ C0] &htab->buckets[i].lock [ 54.211745][ C1] ? __pfx_vring_interrupt+0x10/0x10 [ 54.218482][ C0] ); [ 54.218490][ C0] [ 54.223046][ C1] vring_interrupt+0x21d/0x380 [ 54.229429][ C0] lock(&pool->lock [ 54.233906][ C1] ? __pfx_vring_interrupt+0x10/0x10 [ 54.236376][ C0] ); [ 54.236382][ C0] [ 54.236382][ C0] *** DEADLOCK *** [ 54.236382][ C0] [ 54.241800][ C1] __handle_irq_event_percpu+0x28a/0xa30 [ 54.246883][ C0] 4 locks held by swapper/0/0: [ 54.251097][ C1] ? __pfx___handle_irq_event_percpu+0x10/0x10 [ 54.256345][ C0] #0: [ 54.258820][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 54.262250][ C0] ffffc90000007c00 [ 54.266984][ C1] handle_irq_event+0x89/0x1f0 [ 54.271018][ C0] ((&sdp->delay_work) [ 54.276273][ C1] ? handle_edge_irq+0x257/0xc20 [ 54.278751][ C0] ){+.-.}-{0:0} [ 54.286869][ C1] handle_edge_irq+0x25f/0xc20 [ 54.292467][ C0] , at: call_timer_fn+0xc0/0x600 [ 54.297206][ C1] __common_interrupt+0x138/0x230 [ 54.303326][ C0] #1: [ 54.306078][ C1] common_interrupt+0xa5/0xd0 [ 54.311245][ C0] ffffffff8e131920 [ 54.314950][ C1] [ 54.319694][ C0] (rcu_read_lock [ 54.323740][ C1] [ 54.323751][ C1] asm_common_interrupt+0x26/0x40 [ 54.328653][ C0] ){....}-{1:2} [ 54.332091][ C1] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 54.336836][ C0] , at: __queue_work+0x198/0xec0 [ 54.341750][ C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 54.346746][ C0] #2: [ 54.349501][ C1] RSP: 0018:ffffc90000197d08 EFLAGS: 00000246 [ 54.354150][ C0] ffff8880b943d8d8 [ 54.357843][ C1] [ 54.357849][ C1] RAX: ffff8880172c5a00 RBX: ffff8880172ec864 RCX: 000000000001abd1 [ 54.360754][ C0] (&pool->lock [ 54.364358][ C1] RDX: 0000000000000001 RSI: ffff8880172ec800 RDI: ffff8880172ec864 [ 54.367276][ C0] ){-.-.}-{2:2} [ 54.372266][ C1] RBP: 0000000000039f18 R08: ffff8880b9537d0b R09: 1ffff110172a6fa1 [ 54.375704][ C0] , at: __queue_work+0x6ec/0xec0 [ 54.380967][ C1] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff88801971a800 [ 54.385885][ C0] #3: [ 54.405463][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2e80 [ 54.408207][ C0] ffffffff8e131920 [ 54.414264][ C1] ? __pfx_acpi_idle_enter+0x10/0x10 [ 54.417952][ C0] (rcu_read_lock [ 54.420261][ C1] acpi_idle_enter+0xe4/0x140 [ 54.428198][ C0] ){....}-{1:2} [ 54.431632][ C1] cpuidle_enter_state+0x118/0x490 [ 54.439573][ C0] , at: bpf_trace_run3+0x14a/0x460 [ 54.443014][ C1] ? __pfx_menu_select+0x10/0x10 [ 54.450958][ C0] [ 54.450958][ C0] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 54.455866][ C1] cpuidle_enter+0x5d/0xa0 [ 54.463808][ C0] -> [ 54.466546][ C1] do_idle+0x375/0x5d0 [ 54.474486][ C0] (&pool->lock [ 54.478177][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 54.483428][ C0] ){-.-.}-{2:2} [ 54.487035][ C1] ? __pfx_do_idle+0x10/0x10 [ 54.491675][ C0] { [ 54.491681][ C0] IN-HARDIRQ-W [ 54.495103][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 54.500183][ C0] at: [ 54.500189][ C0] lock_acquire+0x1e4/0x530 [ 54.505268][ C1] ? complete+0xb4/0x1c0 [ 54.510168][ C0] _raw_spin_lock+0x2e/0x40 [ 54.520548][ C1] cpu_startup_entry+0x42/0x60 [ 54.524930][ C0] __queue_work+0x6ec/0xec0 [ 54.527405][ C1] start_secondary+0x100/0x100 [ 54.531439][ C0] queue_work_on+0x14f/0x250 [ 54.534873][ C1] common_startup_64+0x13e/0x147 [ 54.541163][ C0] hrtimer_run_queues+0x154/0x460 [ 54.544606][ C1] [ 54.549151][ C0] update_process_times+0x80/0x230 [ 54.551628][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 54.551638][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.8.0-syzkaller-05204-g237bb5f7f7f5 #0 [ 54.551654][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 54.551663][ C1] Call Trace: [ 54.551670][ C1] [ 54.551676][ C1] dump_stack_lvl+0x1e7/0x2e0 [ 54.551698][ C1] ? __pfx_dump_stack_lvl+0x10/0x10 [ 54.551717][ C1] ? __pfx__printk+0x10/0x10 [ 54.551737][ C1] ? vscnprintf+0x5d/0x90 [ 54.551758][ C1] panic+0x349/0x860 [ 54.551776][ C1] ? __warn+0x172/0x4b0 [ 54.551795][ C1] ? __pfx_panic+0x10/0x10 [ 54.551815][ C1] ? common_startup_64+0x13e/0x147 [ 54.551835][ C1] __warn+0x31e/0x4b0 [ 54.551854][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 54.551871][ C1] report_bug+0x2b3/0x500 [ 54.551892][ C1] ? __local_bh_disable_ip+0x1f6/0x220 [ 54.551909][ C1] handle_bug+0x3e/0x70 [ 54.551928][ C1] exc_invalid_op+0x1a/0x50 [ 54.551948][ C1] asm_exc_invalid_op+0x1a/0x20 [ 54.551969][ C1] RIP: 0010:__local_bh_disable_ip+0x1f6/0x220 [ 54.551986][ C1] Code: 2c 0b 00 65 48 8b 04 25 28 00 00 00 48 3b 84 24 80 00 00 00 75 33 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 <0f> 0b 90 e9 99 fe ff ff e8 4d 84 16 0a 41 f7 c6 00 02 00 00 0f 85 [ 54.551998][ C1] RSP: 0018:ffffc90000a089e0 EFLAGS: 00010006 [ 54.552012][ C1] RAX: 0000000080010004 RBX: ffffffff895fc820 RCX: ffff8880172c5a00 [ 54.552024][ C1] RDX: dffffc0000000000 RSI: 0000000000000201 RDI: ffffffff895fc820 [ 54.552036][ C1] RBP: ffffc90000a08aa8 R08: 0000000000000005 R09: ffffffff89600b3e [ 54.552047][ C1] R10: 000000000000000c R11: ffff8880172c5a00 R12: dffffc0000000000 [ 54.552058][ C1] R13: 1ffff92000141140 R14: ffffc90000a08a40 R15: 0000000000000201 [ 54.552070][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 54.552088][ C1] ? sock_hash_bucket_hash+0x24e/0x740 [ 54.552106][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 54.552125][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 54.552141][ C1] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 54.552156][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 54.552173][ C1] ? sock_hash_delete_elem+0xb0/0x300 [ 54.552190][ C1] _raw_spin_lock_bh+0x1c/0x50 [ 54.552208][ C1] sock_hash_delete_elem+0xb0/0x300 [ 54.552227][ C1] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 54.552244][ C1] bpf_trace_run3+0x238/0x460 [ 54.552261][ C1] ? bpf_trace_run3+0x14a/0x460 [ 54.552277][ C1] ? __pfx_bpf_trace_run3+0x10/0x10 [ 54.552294][ C1] ? rcu_is_watching+0x15/0xb0 [ 54.552310][ C1] ? lock_release+0xbf/0x9d0 [ 54.552328][ C1] __queue_work+0xe5b/0xec0 [ 54.552345][ C1] ? __queue_work+0x198/0xec0 [ 54.552365][ C1] queue_work_on+0x14f/0x250 [ 54.552382][ C1] ? __pfx_queue_work_on+0x10/0x10 [ 54.552399][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 54.552418][ C1] ? rcu_is_watching+0x15/0xb0 [ 54.552434][ C1] ? lock_release+0xbf/0x9d0 [ 54.552451][ C1] stats_request+0xd0/0x100 [ 54.552471][ C1] ? __pfx_stats_request+0x10/0x10 [ 54.552492][ C1] ? __pfx_vring_interrupt+0x10/0x10 [ 54.552509][ C1] vring_interrupt+0x21d/0x380 [ 54.552527][ C1] ? __pfx_vring_interrupt+0x10/0x10 [ 54.552545][ C1] __handle_irq_event_percpu+0x28a/0xa30 [ 54.552567][ C1] ? __pfx___handle_irq_event_percpu+0x10/0x10 [ 54.552587][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 54.552616][ C1] handle_irq_event+0x89/0x1f0 [ 54.552633][ C1] ? handle_edge_irq+0x257/0xc20 [ 54.552650][ C1] handle_edge_irq+0x25f/0xc20 [ 54.552671][ C1] __common_interrupt+0x138/0x230 [ 54.552691][ C1] common_interrupt+0xa5/0xd0 [ 54.552711][ C1] [ 54.552716][ C1] [ 54.552722][ C1] asm_common_interrupt+0x26/0x40 [ 54.552742][ C1] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 54.552763][ C1] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 54.552774][ C1] RSP: 0018:ffffc90000197d08 EFLAGS: 00000246 [ 54.552787][ C1] RAX: ffff8880172c5a00 RBX: ffff8880172ec864 RCX: 000000000001abd1 [ 54.552798][ C1] RDX: 0000000000000001 RSI: ffff8880172ec800 RDI: ffff8880172ec864 [ 54.552809][ C1] RBP: 0000000000039f18 R08: ffff8880b9537d0b R09: 1ffff110172a6fa1 [ 54.552820][ C1] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff88801971a800 [ 54.552831][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2e80 [ 54.552844][ C1] ? __pfx_acpi_idle_enter+0x10/0x10 [ 54.552868][ C1] acpi_idle_enter+0xe4/0x140 [ 54.552889][ C1] cpuidle_enter_state+0x118/0x490 [ 54.552908][ C1] ? __pfx_menu_select+0x10/0x10 [ 54.552926][ C1] cpuidle_enter+0x5d/0xa0 [ 54.552946][ C1] do_idle+0x375/0x5d0 [ 54.552962][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 54.552981][ C1] ? __pfx_do_idle+0x10/0x10 [ 54.552997][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 54.553018][ C1] ? complete+0xb4/0x1c0 [ 54.553039][ C1] cpu_startup_entry+0x42/0x60 [ 54.553055][ C1] start_secondary+0x100/0x100 [ 54.553074][ C1] common_startup_64+0x13e/0x147 [ 54.553097][ C1] [ 54.555229][ C0] tick_periodic+0x190/0x220 [ 54.555246][ C0] tick_handle_periodic+0x4a/0x160 [ 54.555262][ C0] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 54.555288][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 54.555306][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 54.555331][ C0] console_flush_all+0x9cd/0xec0 [ 54.555352][ C0] console_unlock+0x13b/0x4d0 [ 54.555372][ C0] vprintk_emit+0x509/0x720 [ 54.555391][ C0] _printk+0xd5/0x120 [ 54.555408][ C0] __clocksource_select+0x2f2/0x350 [ 54.555426][ C0] clocksource_done_booting+0x36/0x50 [ 54.555448][ C0] do_one_initcall+0x238/0x830 [ 54.555470][ C0] do_initcall_level+0x157/0x210 [ 54.555487][ C0] do_initcalls+0x3f/0x80 [ 54.555503][ C0] kernel_init_freeable+0x435/0x5d0 [ 54.555519][ C0] kernel_init+0x1d/0x2a0 [ 54.555542][ C0] ret_from_fork+0x4b/0x80 [ 54.555566][ C0] ret_from_fork_asm+0x1a/0x30 [ 54.555589][ C0] IN-SOFTIRQ-W at: [ 54.555598][ C0] lock_acquire+0x1e4/0x530 [ 54.555613][ C0] _raw_spin_lock+0x2e/0x40 [ 54.555631][ C0] __queue_work+0x6ec/0xec0 [ 54.555648][ C0] call_timer_fn+0x17e/0x600 [ 54.555666][ C0] __run_timer_base+0x695/0x8e0 [ 54.555680][ C0] run_timer_softirq+0xb7/0x170 [ 54.555695][ C0] __do_softirq+0x2bc/0x943 [ 54.555716][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 54.555732][ C0] irq_exit_rcu+0x9/0x30 [ 54.555746][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 54.555764][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 54.555789][ C0] default_idle+0x13/0x20 [ 54.555809][ C0] default_idle_call+0x74/0xb0 [ 54.555831][ C0] do_idle+0x22f/0x5d0 [ 54.555847][ C0] cpu_startup_entry+0x42/0x60 [ 54.555863][ C0] rest_init+0x2e0/0x300 [ 54.555885][ C0] arch_call_rest_init+0xe/0x10 [ 54.555899][ C0] start_kernel+0x47a/0x500 [ 54.555914][ C0] x86_64_start_reservations+0x2a/0x30 [ 54.555935][ C0] x86_64_start_kernel+0x99/0xa0 [ 54.555954][ C0] common_startup_64+0x13e/0x147 [ 54.555973][ C0] INITIAL USE at: [ 54.555981][ C0] lock_acquire+0x1e4/0x530 [ 54.555996][ C0] _raw_spin_lock+0x2e/0x40 [ 54.556014][ C0] __queue_work+0x6ec/0xec0 [ 54.556031][ C0] queue_work_on+0x14f/0x250 [ 54.556048][ C0] start_poll_synchronize_rcu_expedited+0xf7/0x150 [ 54.556071][ C0] rcu_init+0xea/0x140 [ 54.556087][ C0] start_kernel+0x1f7/0x500 [ 54.556107][ C0] x86_64_start_reservations+0x2a/0x30 [ 54.556127][ C0] x86_64_start_kernel+0x99/0xa0 [ 54.556146][ C0] common_startup_64+0x13e/0x147 [ 54.556165][ C0] } [ 54.556169][ C0] ... key at: [] init_worker_pool.__key+0x0/0x20 [ 54.556192][ C0] [ 54.556192][ C0] the dependencies between the lock to be acquired [ 54.556198][ C0] and HARDIRQ-irq-unsafe lock: [ 54.556235][ C0] -> (&htab->buckets[i].lock){+.-.}-{2:2} { [ 54.556258][ C0] HARDIRQ-ON-W at: [ 54.556266][ C0] lock_acquire+0x1e4/0x530 [ 54.556282][ C0] _raw_spin_lock_bh+0x35/0x50 [ 54.556300][ C0] sock_hash_free+0x164/0x820 [ 54.556316][ C0] bpf_map_free_deferred+0xe6/0x110 [ 54.556333][ C0] process_scheduled_works+0xa00/0x1770 [ 54.556349][ C0] worker_thread+0x86d/0xd70 [ 54.556365][ C0] kthread+0x2f0/0x390 [ 54.556384][ C0] ret_from_fork+0x4b/0x80 [ 54.556407][ C0] ret_from_fork_asm+0x1a/0x30 [ 54.556430][ C0] IN-SOFTIRQ-W at: [ 54.556438][ C0] lock_acquire+0x1e4/0x530 [ 54.556453][ C0] _raw_spin_lock_bh+0x35/0x50 [ 54.556471][ C0] sock_hash_delete_elem+0xb0/0x300 [ 54.556488][ C0] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 54.556503][ C0] bpf_trace_run3+0x238/0x460 [ 54.556521][ C0] __queue_work+0xe5b/0xec0 [ 54.556538][ C0] queue_work_on+0x14f/0x250 [ 54.556555][ C0] call_timer_fn+0x17e/0x600 [ 54.556572][ C0] __run_timer_base+0x66a/0x8e0 [ 54.556586][ C0] run_timer_softirq+0xb7/0x170 [ 54.556601][ C0] __do_softirq+0x2bc/0x943 [ 54.556622][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 54.556637][ C0] irq_exit_rcu+0x9/0x30 [ 54.556652][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 54.556670][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 54.556695][ C0] acpi_safe_halt+0x21/0x30 [ 54.556717][ C0] acpi_idle_enter+0xe4/0x140 [ 54.556738][ C0] cpuidle_enter_state+0x118/0x490 [ 54.556759][ C0] cpuidle_enter+0x5d/0xa0 [ 54.556780][ C0] do_idle+0x375/0x5d0 [ 54.556795][ C0] cpu_startup_entry+0x42/0x60 [ 54.556812][ C0] rest_init+0x2e0/0x300 [ 54.556833][ C0] arch_call_rest_init+0xe/0x10 [ 54.556848][ C0] start_kernel+0x47a/0x500 [ 54.556862][ C0] x86_64_start_reservations+0x2a/0x30 [ 54.556882][ C0] x86_64_start_kernel+0x99/0xa0 [ 54.556902][ C0] common_startup_64+0x13e/0x147 [ 54.556920][ C0] INITIAL USE at: [ 54.556928][ C0] lock_acquire+0x1e4/0x530 [ 54.556943][ C0] _raw_spin_lock_bh+0x35/0x50 [ 54.556961][ C0] sock_hash_free+0x164/0x820 [ 54.556977][ C0] bpf_map_free_deferred+0xe6/0x110 [ 54.556993][ C0] process_scheduled_works+0xa00/0x1770 [ 54.557009][ C0] worker_thread+0x86d/0xd70 [ 54.557025][ C0] kthread+0x2f0/0x390 [ 54.557043][ C0] ret_from_fork+0x4b/0x80 [ 54.557066][ C0] ret_from_fork_asm+0x1a/0x30 [ 54.557089][ C0] } [ 54.557093][ C0] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 54.557118][ C0] ... acquired at: [ 54.557122][ C0] lock_acquire+0x1e4/0x530 [ 54.557137][ C0] _raw_spin_lock_bh+0x35/0x50 [ 54.557154][ C0] sock_hash_delete_elem+0xb0/0x300 [ 54.557170][ C0] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 54.557185][ C0] bpf_trace_run3+0x238/0x460 [ 54.557201][ C0] __queue_work+0xe5b/0xec0 [ 54.557218][ C0] queue_work_on+0x14f/0x250 [ 54.557234][ C0] call_timer_fn+0x17e/0x600 [ 54.557250][ C0] __run_timer_base+0x66a/0x8e0 [ 54.557264][ C0] run_timer_softirq+0xb7/0x170 [ 54.557278][ C0] __do_softirq+0x2bc/0x943 [ 54.557298][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 54.557313][ C0] irq_exit_rcu+0x9/0x30 [ 54.557327][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 54.557344][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 54.557368][ C0] acpi_safe_halt+0x21/0x30 [ 54.557389][ C0] acpi_idle_enter+0xe4/0x140 [ 54.557410][ C0] cpuidle_enter_state+0x118/0x490 [ 54.557430][ C0] cpuidle_enter+0x5d/0xa0 [ 54.557450][ C0] do_idle+0x375/0x5d0 [ 54.557465][ C0] cpu_startup_entry+0x42/0x60 [ 54.557481][ C0] rest_init+0x2e0/0x300 [ 54.557503][ C0] arch_call_rest_init+0xe/0x10 [ 54.557516][ C0] start_kernel+0x47a/0x500 [ 54.557530][ C0] x86_64_start_reservations+0x2a/0x30 [ 54.557550][ C0] x86_64_start_kernel+0x99/0xa0 [ 54.557568][ C0] common_startup_64+0x13e/0x147 [ 54.557585][ C0] [ 54.557588][ C0] [ 54.557588][ C0] stack backtrace: [ 54.557593][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.8.0-syzkaller-05204-g237bb5f7f7f5 #0 [ 54.557610][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 54.557619][ C0] Call Trace: [ 54.557624][ C0] [ 54.557630][ C0] dump_stack_lvl+0x1e7/0x2e0 [ 54.557652][ C0] ? __pfx_dump_stack_lvl+0x10/0x10 [ 54.557674][ C0] ? __pfx__printk+0x10/0x10 [ 54.557696][ C0] ? print_shortest_lock_dependencies+0xf2/0x160 [ 54.557724][ C0] validate_chain+0x4dc7/0x58e0 [ 54.557757][ C0] ? __pfx_validate_chain+0x10/0x10 [ 54.557782][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 54.557811][ C0] ? lockdep_unlock+0x16a/0x300 [ 54.557843][ C0] ? mark_lock+0x9a/0x350 [ 54.557863][ C0] __lock_acquire+0x1346/0x1fd0 [ 54.557888][ C0] lock_acquire+0x1e4/0x530 [ 54.557905][ C0] ? sock_hash_delete_elem+0xb0/0x300 [ 54.557927][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 54.557947][ C0] ? sock_hash_delete_elem+0xb0/0x300 [ 54.557965][ C0] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 54.557983][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 54.558001][ C0] ? sock_hash_delete_elem+0xb0/0x300 [ 54.558020][ C0] _raw_spin_lock_bh+0x35/0x50 [ 54.558039][ C0] ? sock_hash_delete_elem+0xb0/0x300 [ 54.558057][ C0] sock_hash_delete_elem+0xb0/0x300 [ 54.558078][ C0] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 54.558095][ C0] bpf_trace_run3+0x238/0x460 [ 54.558118][ C0] ? bpf_trace_run3+0x14a/0x460 [ 54.558137][ C0] ? __pfx_bpf_trace_run3+0x10/0x10 [ 54.558161][ C0] __queue_work+0xe5b/0xec0 [ 54.558181][ C0] ? __queue_work+0x198/0xec0 [ 54.558201][ C0] ? rcu_is_watching+0x15/0xb0 [ 54.558219][ C0] queue_work_on+0x14f/0x250 [ 54.558239][ C0] ? __pfx_queue_work_on+0x10/0x10 [ 54.558261][ C0] ? call_timer_fn+0xa8/0x600 [ 54.558281][ C0] call_timer_fn+0x17e/0x600 [ 54.558299][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 54.558314][ C0] ? call_timer_fn+0xc0/0x600 [ 54.558331][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 54.558347][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 54.558367][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 54.558383][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 54.558398][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 54.558413][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 54.558433][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 54.558452][ C0] ? __pfx_srcu_delay_timer+0x10/0x10 [ 54.558468][ C0] __run_timer_base+0x66a/0x8e0 [ 54.558490][ C0] ? __pfx___run_timer_base+0x10/0x10 [ 54.558508][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 54.558525][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 54.558552][ C0] run_timer_softirq+0xb7/0x170 [ 54.558569][ C0] __do_softirq+0x2bc/0x943 [ 54.558593][ C0] ? __irq_exit_rcu+0xf2/0x1c0 [ 54.558613][ C0] ? __pfx___do_softirq+0x10/0x10 [ 54.558638][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 54.558662][ C0] __irq_exit_rcu+0xf2/0x1c0 [ 54.558679][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 54.558701][ C0] irq_exit_rcu+0x9/0x30 [ 54.558716][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 54.558735][ C0] [ 54.558740][ C0] [ 54.558746][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 54.558771][ C0] RIP: 0010:acpi_safe_halt+0x21/0x30 [ 54.558796][ C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 80 ce 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 15 3a 98 00 f3 0f 1e fa fb f4 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 [ 54.558809][ C0] RSP: 0018:ffffffff8de07ca8 EFLAGS: 00000246 [ 54.558823][ C0] RAX: ffffffff8de94680 RBX: ffff8880172ec064 RCX: 0000000000015509 [ 54.558836][ C0] RDX: 0000000000000001 RSI: ffff8880172ec000 RDI: ffff8880172ec064 [ 54.558848][ C0] RBP: 0000000000039f18 R08: ffff8880b9437d0b R09: 1ffff11017286fa1 [ 54.558860][ C0] R10: dffffc0000000000 R11: ffffffff8b702580 R12: ffff88801971a000 [ 54.558874][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8e8a2e80 [ 54.558887][ C0] ? __pfx_acpi_idle_enter+0x10/0x10 [ 54.558915][ C0] acpi_idle_enter+0xe4/0x140 [ 54.558940][ C0] cpuidle_enter_state+0x118/0x490 [ 54.558962][ C0] ? __pfx_menu_select+0x10/0x10 [ 54.558981][ C0] cpuidle_enter+0x5d/0xa0 [ 54.559005][ C0] do_idle+0x375/0x5d0 [ 54.559022][ C0] ? __pfx___schedule+0x10/0x10 [ 54.559046][ C0] ? __pfx_do_idle+0x10/0x10 [ 54.559065][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 54.559086][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 54.559112][ C0] ? rest_init+0x35/0x300 [ 54.559135][ C0] ? rest_init+0x35/0x300 [ 54.559158][ C0] cpu_startup_entry+0x42/0x60 [ 54.559176][ C0] rest_init+0x2e0/0x300 [ 54.559199][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 54.559223][ C0] arch_call_rest_init+0xe/0x10 [ 54.559239][ C0] start_kernel+0x47a/0x500 [ 54.559257][ C0] x86_64_start_reservations+0x2a/0x30 [ 54.559279][ C0] x86_64_start_kernel+0x99/0xa0 [ 54.559299][ C0] common_startup_64+0x13e/0x147 [ 54.559325][ C0] [ 54.559599][ C1] Kernel Offset: disabled [ 56.415087][ C1] Rebooting in 86400 seconds..