Warning: Permanently added '10.128.0.46' (ED25519) to the list of known hosts. executing program executing program executing program executing program executing program [ 56.989585][ T4171] [ 56.991935][ T4171] ====================================================== [ 56.999113][ T4171] WARNING: possible circular locking dependency detected [ 57.006119][ T4171] 5.15.176-syzkaller #0 Not tainted [ 57.011343][ T4171] ------------------------------------------------------ [ 57.018509][ T4171] syz-executor482/4171 is trying to acquire lock: [ 57.025003][ T4171] ffff8880717390a0 (&htab->lockdep_key#3){....}-{2:2}, at: htab_map_delete_elem+0x1bd/0x560 [ 57.035113][ T4171] [ 57.035113][ T4171] but task is already holding lock: [ 57.042454][ T4171] ffff8880716540a0 (&htab->lockdep_key#4){....}-{2:2}, at: htab_map_update_elem+0x245/0x9c0 [ 57.052618][ T4171] [ 57.052618][ T4171] which lock already depends on the new lock. [ 57.052618][ T4171] [ 57.063112][ T4171] [ 57.063112][ T4171] the existing dependency chain (in reverse order) is: [ 57.073336][ T4171] [ 57.073336][ T4171] -> #1 (&htab->lockdep_key#4){....}-{2:2}: [ 57.081785][ T4171] lock_acquire+0x1db/0x4f0 [ 57.086798][ T4171] _raw_spin_lock_irqsave+0xd1/0x120 [ 57.092725][ T4171] htab_map_delete_elem+0x1bd/0x560 [ 57.098555][ T4171] bpf_prog_2c29ac5cdc6b1842+0x3a/0xd58 [ 57.104772][ T4171] bpf_trace_run4+0x1ea/0x390 [ 57.110407][ T4171] __bpf_trace_mm_page_alloc+0xba/0xe0 [ 57.116504][ T4171] __traceiter_mm_page_alloc+0x35/0x50 [ 57.122770][ T4171] __alloc_pages+0x6e0/0x700 [ 57.127884][ T4171] kmalloc_large_node+0x7c/0x180 [ 57.133388][ T4171] __kmalloc_node+0x22d/0x390 [ 57.138717][ T4171] bpf_map_kmalloc_node+0xdb/0x160 [ 57.144450][ T4171] alloc_htab_elem+0x28b/0x920 [ 57.150389][ T4171] htab_map_update_elem+0x3cb/0x9c0 [ 57.156556][ T4171] bpf_map_update_value+0x5d7/0x6c0 [ 57.162367][ T4171] map_update_elem+0x6a0/0x7c0 [ 57.167875][ T4171] __sys_bpf+0x2fd/0x670 [ 57.172649][ T4171] __x64_sys_bpf+0x78/0x90 [ 57.177738][ T4171] do_syscall_64+0x3b/0xb0 [ 57.182773][ T4171] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 57.189199][ T4171] [ 57.189199][ T4171] -> #0 (&htab->lockdep_key#3){....}-{2:2}: [ 57.197395][ T4171] validate_chain+0x1649/0x5930 [ 57.203058][ T4171] __lock_acquire+0x1295/0x1ff0 [ 57.208419][ T4171] lock_acquire+0x1db/0x4f0 [ 57.213429][ T4171] _raw_spin_lock_irqsave+0xd1/0x120 [ 57.219224][ T4171] htab_map_delete_elem+0x1bd/0x560 [ 57.224943][ T4171] bpf_prog_2c29ac5cdc6b1842+0x3a/0x364 [ 57.231098][ T4171] bpf_trace_run4+0x1ea/0x390 [ 57.236404][ T4171] __bpf_trace_mm_page_alloc+0xba/0xe0 [ 57.242492][ T4171] __traceiter_mm_page_alloc+0x35/0x50 [ 57.248561][ T4171] __alloc_pages+0x6e0/0x700 [ 57.253683][ T4171] kmalloc_large_node+0x7c/0x180 [ 57.259245][ T4171] __kmalloc_node+0x22d/0x390 [ 57.264436][ T4171] bpf_map_kmalloc_node+0xdb/0x160 [ 57.270072][ T4171] alloc_htab_elem+0x28b/0x920 [ 57.275616][ T4171] htab_map_update_elem+0x3cb/0x9c0 [ 57.281322][ T4171] bpf_map_update_value+0x5d7/0x6c0 [ 57.287299][ T4171] map_update_elem+0x6a0/0x7c0 [ 57.292776][ T4171] __sys_bpf+0x2fd/0x670 [ 57.297537][ T4171] __x64_sys_bpf+0x78/0x90 [ 57.302609][ T4171] do_syscall_64+0x3b/0xb0 [ 57.308343][ T4171] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 57.315076][ T4171] [ 57.315076][ T4171] other info that might help us debug this: [ 57.315076][ T4171] [ 57.325519][ T4171] Possible unsafe locking scenario: [ 57.325519][ T4171] [ 57.333062][ T4171] CPU0 CPU1 [ 57.338783][ T4171] ---- ---- [ 57.344480][ T4171] lock(&htab->lockdep_key#4); [ 57.349578][ T4171] lock(&htab->lockdep_key#3); [ 57.357266][ T4171] lock(&htab->lockdep_key#4); [ 57.366286][ T4171] lock(&htab->lockdep_key#3); [ 57.371320][ T4171] [ 57.371320][ T4171] *** DEADLOCK *** [ 57.371320][ T4171] [ 57.382921][ T4171] 3 locks held by syz-executor482/4171: [ 57.389106][ T4171] #0: ffffffff8cb1fce0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30 [ 57.399786][ T4171] #1: ffff8880716540a0 (&htab->lockdep_key#4){....}-{2:2}, at: htab_map_update_elem+0x245/0x9c0 [ 57.411118][ T4171] #2: ffffffff8cb1fce0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30 [ 57.421043][ T4171] [ 57.421043][ T4171] stack backtrace: [ 57.427126][ T4171] CPU: 0 PID: 4171 Comm: syz-executor482 Not tainted 5.15.176-syzkaller #0 [ 57.435915][ T4171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 57.446346][ T4171] Call Trace: [ 57.449631][ T4171] [ 57.452772][ T4171] dump_stack_lvl+0x1e3/0x2d0 [ 57.457867][ T4171] ? io_uring_drop_tctx_refs+0x1a0/0x1a0 [ 57.464133][ T4171] ? print_circular_bug+0x12b/0x1a0 [ 57.469343][ T4171] check_noncircular+0x2f8/0x3b0 [ 57.474525][ T4171] ? add_chain_block+0x850/0x850 [ 57.480145][ T4171] ? lockdep_lock+0x11f/0x2a0 [ 57.485413][ T4171] validate_chain+0x1649/0x5930 [ 57.490277][ T4171] ? reacquire_held_locks+0x660/0x660 [ 57.495664][ T4171] ? is_bpf_text_address+0x24f/0x260 [ 57.500948][ T4171] ? stack_trace_save+0x1c0/0x1c0 [ 57.506183][ T4171] ? reacquire_held_locks+0x660/0x660 [ 57.512002][ T4171] ? mark_lock+0x98/0x340 [ 57.516456][ T4171] __lock_acquire+0x1295/0x1ff0 [ 57.521397][ T4171] lock_acquire+0x1db/0x4f0 [ 57.525923][ T4171] ? htab_map_delete_elem+0x1bd/0x560 [ 57.531315][ T4171] ? read_lock_is_recursive+0x10/0x10 [ 57.536935][ T4171] _raw_spin_lock_irqsave+0xd1/0x120 [ 57.542497][ T4171] ? htab_map_delete_elem+0x1bd/0x560 [ 57.547997][ T4171] ? _raw_spin_lock+0x40/0x40 [ 57.554059][ T4171] ? htab_map_hash+0x267/0x6c0 [ 57.559272][ T4171] htab_map_delete_elem+0x1bd/0x560 [ 57.564591][ T4171] bpf_prog_2c29ac5cdc6b1842+0x3a/0x364 [ 57.571316][ T4171] bpf_trace_run4+0x1ea/0x390 [ 57.576505][ T4171] ? bpf_trace_run3+0x380/0x380 [ 57.581343][ T4171] ? __alloc_pages+0x700/0x700 [ 57.586192][ T4171] __bpf_trace_mm_page_alloc+0xba/0xe0 [ 57.591932][ T4171] __traceiter_mm_page_alloc+0x35/0x50 [ 57.597651][ T4171] __alloc_pages+0x6e0/0x700 [ 57.602742][ T4171] ? __rmqueue_pcplist+0x23a0/0x23a0 [ 57.608180][ T4171] ? mark_lock+0x98/0x340 [ 57.612950][ T4171] kmalloc_large_node+0x7c/0x180 [ 57.617897][ T4171] __kmalloc_node+0x22d/0x390 [ 57.622758][ T4171] ? __rwlock_init+0x140/0x140 [ 57.627891][ T4171] bpf_map_kmalloc_node+0xdb/0x160 [ 57.633288][ T4171] alloc_htab_elem+0x28b/0x920 [ 57.638069][ T4171] htab_map_update_elem+0x3cb/0x9c0 [ 57.643515][ T4171] bpf_map_update_value+0x5d7/0x6c0 [ 57.649586][ T4171] map_update_elem+0x6a0/0x7c0 [ 57.654806][ T4171] __sys_bpf+0x2fd/0x670 [ 57.659984][ T4171] ? bpf_link_show_fdinfo+0x300/0x300 [ 57.665707][ T4171] ? syscall_enter_from_user_mode+0x2e/0x240 [ 57.672462][ T4171] ? lockdep_hardirqs_on+0x94/0x130 [ 57.677667][ T4171] __x64_sys_bpf+0x78/0x90 [ 57.682070][ T4171] do_syscall_64+0x3b/0xb0 [ 57.686463][ T4171] ? clear_bhb_loop+0x15/0x70 [ 57.691149][ T4171] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 57.697376][ T4171] RIP: 0033:0x7ff0e52c9029 [ 57.701953][ T4171] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 57.721709][ T4171] RSP: 002b:00007ffe4747ca28 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 57.730701][ T4171] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff0e52c9029 executing program executing program [ 57.738974][ T4171] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000002 [ 57.747128][ T4171] RBP: 0000000000000000 R08: 00000000000000a0 R09: 00000000000000a0 [ 57.755651][ T4171] R10: 00000000000000a0 R11: 0000000000000246 R12: 0000000000000000 [ 57.765604][ T4171] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 57.774995][ T4171]