watchdog: BUG: soft lockup - CPU#0 stuck for 123s! [kworker/0:1:29787]
Modules linked in:
irq event stamp: 5753426
hardirqs last  enabled at (5753425): [<ffffffff89400c02>] asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:638
hardirqs last disabled at (5753426): [<ffffffff8938085b>] sysvec_apic_timer_interrupt+0xb/0xc0 arch/x86/kernel/apic/apic.c:1097
softirqs last  enabled at (5730078): [<ffffffff8146d973>] invoke_softirq kernel/softirq.c:432 [inline]
softirqs last  enabled at (5730078): [<ffffffff8146d973>] __irq_exit_rcu+0x123/0x180 kernel/softirq.c:636
softirqs last disabled at (5730049): [<ffffffff8146d973>] invoke_softirq kernel/softirq.c:432 [inline]
softirqs last disabled at (5730049): [<ffffffff8146d973>] __irq_exit_rcu+0x123/0x180 kernel/softirq.c:636
CPU: 0 PID: 29787 Comm: kworker/0:1 Not tainted 5.15.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: events prog_array_map_clear_deferred
RIP: 0010:lock_acquire+0x1ef/0x510 kernel/locking/lockdep.c:5593
Code: 95 a5 7e 83 f8 01 0f 85 b4 02 00 00 9c 58 f6 c4 02 0f 85 9f 02 00 00 48 83 7c 24 08 00 74 01 fb 48 b8 00 00 00 00 00 fc ff df <48> 01 c3 48 c7 03 00 00 00 00 48 c7 43 08 00 00 00 00 48 8b 84 24
RSP: 0018:ffffc90005d6f9f0 EFLAGS: 00000206
RAX: dffffc0000000000 RBX: 1ffff92000badf40 RCX: ffffffff815c91af
RDX: 1ffff1100f43314b RSI: 0000000000000001 RDI: 0000000000000000
RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffff8fd3ab6f
R10: fffffbfff1fa756d R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000000 R14: ffff88807a3d10c8 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055555662d848 CR3: 000000000b68e000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 __mutex_lock_common kernel/locking/mutex.c:607 [inline]
 __mutex_lock+0x12f/0x12f0 kernel/locking/mutex.c:740
 fd_array_map_delete_elem+0x120/0x2e0 kernel/bpf/arraymap.c:821
 bpf_fd_array_map_clear kernel/bpf/arraymap.c:871 [inline]
 prog_array_map_clear_deferred+0x10b/0x1b0 kernel/bpf/arraymap.c:1050
 process_one_work+0x9b2/0x1690 kernel/workqueue.c:2298
 worker_thread+0x658/0x11f0 kernel/workqueue.c:2445
 kthread+0x405/0x4f0 kernel/kthread.c:327
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295
 </TASK>
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 6218 Comm: kworker/1:2 Not tainted 5.15.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: events prog_array_map_clear_deferred
RIP: 0010:hlock_class kernel/locking/lockdep.c:199 [inline]
RIP: 0010:mark_lock+0xf7/0x17b0 kernel/locking/lockdep.c:4571
Code: 66 81 e2 ff 1f 44 0f b7 f2 be 08 00 00 00 4c 89 f0 48 c1 f8 06 48 8d 3c c5 00 aa d3 8f e8 81 e4 61 00 4c 0f a3 35 19 4a 77 0e <0f> 83 03 01 00 00 4b 8d 04 76 48 c1 e0 06 48 05 20 ae d3 8f 48 8d
RSP: 0018:ffffc90003a3f760 EFLAGS: 00000047
RAX: 0000000000000001 RBX: 1ffff92000747ef3 RCX: ffffffff815c5fdf
RDX: fffffbfff1fa756e RSI: 0000000000000008 RDI: ffffffff8fd3ab68
RBP: 0000000000000100 R08: 0000000000000000 R09: ffffffff8fd3ab6f
R10: fffffbfff1fa756d R11: 0000000000000000 R12: 0000000000000008
R13: ffff8880364a8ab0 R14: 0000000000000b42 R15: ffff8880364a8ad0
FS:  0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f20d66fc9e0 CR3: 000000000b68e000 CR4: 00000000003526e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 mark_usage kernel/locking/lockdep.c:4514 [inline]
 __lock_acquire+0x8a7/0x54a0 kernel/locking/lockdep.c:4969
 lock_acquire kernel/locking/lockdep.c:5625 [inline]
 lock_acquire+0x1ab/0x510 kernel/locking/lockdep.c:5590
 __mutex_lock_common kernel/locking/mutex.c:607 [inline]
 __mutex_lock+0x12f/0x12f0 kernel/locking/mutex.c:740
 fd_array_map_delete_elem+0x120/0x2e0 kernel/bpf/arraymap.c:821
 bpf_fd_array_map_clear kernel/bpf/arraymap.c:871 [inline]
 prog_array_map_clear_deferred+0x10b/0x1b0 kernel/bpf/arraymap.c:1050
 process_one_work+0x9b2/0x1690 kernel/workqueue.c:2298
 worker_thread+0x658/0x11f0 kernel/workqueue.c:2445
 kthread+0x405/0x4f0 kernel/kthread.c:327
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295
 </TASK>
----------------
Code disassembly (best guess):
   0:	95                   	xchg   %eax,%ebp
   1:	a5                   	movsl  %ds:(%rsi),%es:(%rdi)
   2:	7e 83                	jle    0xffffff87
   4:	f8                   	clc
   5:	01 0f                	add    %ecx,(%rdi)
   7:	85 b4 02 00 00 9c 58 	test   %esi,0x589c0000(%rdx,%rax,1)
   e:	f6 c4 02             	test   $0x2,%ah
  11:	0f 85 9f 02 00 00    	jne    0x2b6
  17:	48 83 7c 24 08 00    	cmpq   $0x0,0x8(%rsp)
  1d:	74 01                	je     0x20
  1f:	fb                   	sti
  20:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  27:	fc ff df
* 2a:	48 01 c3             	add    %rax,%rbx <-- trapping instruction
  2d:	48 c7 03 00 00 00 00 	movq   $0x0,(%rbx)
  34:	48 c7 43 08 00 00 00 	movq   $0x0,0x8(%rbx)
  3b:	00
  3c:	48                   	rex.W
  3d:	8b                   	.byte 0x8b
  3e:	84                   	.byte 0x84
  3f:	24                   	.byte 0x24