====================================== | [ 14.408806][ C3] #5: ffff888001e4b358 (&br->multicast_lock){+.-.}-{3:3}, at: br_multicast_port_query_expired (./include/trace/events/../../../net/bridge/br_private.h:1293 ./include/trace/events/../../../net/bridge/br_private.h:1302 net/bridge/br_multicast.c:1906) bridge | [ 14.409313][ C3] #6: ffffffff9ff5b5c0 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit (./include/linux/bottom_half.h:20 ./include/linux/rcupdate.h:901 net/core/dev.c:4555) | [ 14.409830][ C3] | [ 14.409830][ C3] stack backtrace: [ 14.410093][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 14.410096][ C3] Workqueue: events_unbound linkwatch_event [ 14.410102][ C3] Call Trace: [ 14.410104][ C3] [ 14.410107][ C3] dump_stack_lvl (lib/dump_stack.c:123) [ 14.410116][ C3] lockdep_rcu_suspicious (kernel/locking/lockdep.c:6848) [ 14.410128][ C3] dev_hard_start_xmit (./include/net/net_namespace.h:418 ./include/linux/netdevice.h:2695 net/core/dev.c:2466 net/core/dev.c:3772 net/core/dev.c:3793) [ 14.410140][ C3] __dev_queue_xmit (net/core/dev.h:340 net/core/dev.c:4631) [ 14.410150][ C3] ? __build_skb_around (./arch/x86/include/asm/atomic.h:28 ./include/linux/atomic/atomic-arch-fallback.h:503 ./include/linux/atomic/atomic-instrumented.h:68 net/core/skbuff.c:381 net/core/skbuff.c:439) [ 14.410162][ C3] ? __pfx___dev_queue_xmit (net/core/dev.c:4538) [ 14.410165][ C3] ? __pfx___alloc_skb (net/core/skbuff.c:642) [ 14.410171][ C3] ? stack_trace_save (kernel/stacktrace.c:114) [ 14.410178][ C3] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) [ 14.410186][ C3] ? __pfx___br_multicast_query_handle_vlan (net/bridge/br_multicast.c:909) bridge [ 14.410241][ C3] br_dev_queue_push_xmit (net/bridge/br_forward.c:34) bridge [ 14.410274][ C3] ? __pfx_br_dev_queue_push_xmit (net/bridge/br_forward.c:34) bridge [ 14.410307][ C3] ? br_multicast_count (./arch/x86/include/asm/bitops.h:206 ./arch/x86/include/asm/bitops.h:238 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/trace/events/../../../net/bridge/br_private.h:764 net/bridge/br_multicast.c:5052) bridge [ 14.410347][ C3] __br_multicast_send_query (net/bridge/br_multicast.c:1813) bridge [ 14.410392][ C3] ? __pfx___br_multicast_send_query (net/bridge/br_multicast.c:1789) bridge [ 14.410432][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5228) [ 14.410444][ C3] ? br_multicast_send_query (net/bridge/br_multicast.c:1891) bridge [ 14.410479][ C3] br_multicast_send_query (net/bridge/br_multicast.c:1891) bridge [ 14.410518][ C3] ? __pfx_br_multicast_send_query (net/bridge/br_multicast.c:1852) bridge [ 14.410552][ C3] ? br_multicast_port_query_expired (./include/trace/events/../../../net/bridge/br_private.h:1293 ./include/trace/events/../../../net/bridge/br_private.h:1302 net/bridge/br_multicast.c:1906) bridge [ 14.410589][ C3] ? __pfx_br_ip4_multicast_port_query_expired (net/bridge/br_multicast.c:1920) bridge [ 14.410624][ C3] ? __pfx_lock_acquire.part.0 (kernel/locking/lockdep.c:5816) [ 14.410631][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 14.410636][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 14.410640][ C3] ? lock_acquire (kernel/locking/lockdep.c:5824) [ 14.410643][ C3] ? br_multicast_port_query_expired (./include/trace/events/../../../net/bridge/br_private.h:1293 ./include/trace/events/../../../net/bridge/br_private.h:1302 net/bridge/br_multicast.c:1906) bridge [ 14.410688][ C3] ? br_multicast_port_query_expired (net/bridge/br_multicast.c:1917) bridge [ 14.410732][ C3] br_multicast_port_query_expired (net/bridge/br_multicast.c:1917) bridge [ 14.410778][ C3] ? __pfx_br_ip4_multicast_port_query_expired (net/bridge/br_multicast.c:1920) bridge [ 14.410830][ C3] call_timer_fn (kernel/time/timer.c:1789) [ 14.410836][ C3] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 14.410840][ C3] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 14.410849][ C3] ? __pfx_call_timer_fn (kernel/time/timer.c:1766) [ 14.410855][ C3] ? hlock_class (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 kernel/locking/lockdep.c:230) [ 14.410873][ C3] ? mark_held_locks (kernel/locking/lockdep.c:4323) [ 14.410897][ C3] __run_timers (kernel/time/timer.c:1841 kernel/time/timer.c:2414) [ 14.410904][ C3] ? __pfx_br_ip4_multicast_port_query_expired (net/bridge/br_multicast.c:1920) bridge [ 14.410983][ C3] ? __pfx___run_timers (kernel/time/timer.c:2385) [ 14.410988][ C3] ? clockevents_program_event (kernel/time/clockevents.c:326) [ 14.411007][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 14.411016][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 14.411023][ C3] ? lock_acquire (kernel/locking/lockdep.c:5824) [ 14.411028][ C3] ? run_timer_softirq (kernel/time/timer.c:2426 kernel/time/timer.c:2418 kernel/time/timer.c:2435 kernel/time/timer.c:2445) [ 14.411046][ C3] run_timer_softirq (kernel/time/timer.c:2427 kernel/time/timer.c:2418 kernel/time/timer.c:2435 kernel/time/timer.c:2445) [ 14.411056][ C3] handle_softirqs (kernel/softirq.c:561) [ 14.411083][ C3] __irq_exit_rcu (kernel/softirq.c:596 kernel/softirq.c:435 kernel/softirq.c:662) [ 14.411090][ C3] irq_exit_rcu (kernel/softirq.c:680) [ 14.411095][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 14.411103][ C3] [ 14.411105][ C3] [ 14.411110][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 14.411118][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 14.411126][ C3] Code: 10 e8 b1 3d 87 fd 48 89 ef e8 f9 ad 87 fd 81 e3 00 02 00 00 75 1d 9c 58 f6 c4 02 75 29 48 85 db 74 01 fb 65 ff 0d b5 0d 0f 61 <74> 0e 5b 5d c3 cc cc cc cc e8 2f df ac fd eb dc 0f 1f 44 00 00 5b All code ======== 0: 10 e8 adc %ch,%al 2: b1 3d mov $0x3d,%cl 4: 87 fd xchg %edi,%ebp 6: 48 89 ef mov %rbp,%rdi 9: e8 f9 ad 87 fd call 0xfffffffffd87ae07 e: 81 e3 00 02 00 00 and $0x200,%ebx 14: 75 1d jne 0x33 16: 9c pushf 17: 58 pop %rax 18: f6 c4 02 test $0x2,%ah 1b: 75 29 jne 0x46 1d: 48 85 db test %rbx,%rbx 20: 74 01 je 0x23 22: fb sti 23: 65 ff 0d b5 0d 0f 61 decl %gs:0x610f0db5(%rip) # 0x610f0ddf 2a:* 74 0e je 0x3a <-- trapping instruction 2c: 5b pop %rbx 2d: 5d pop %rbp 2e: c3 ret 2f: cc int3 30: cc int3 31: cc int3 32: cc int3 33: e8 2f df ac fd call 0xfffffffffdacdf67 38: eb dc jmp 0x16 3a: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1) 3f: 5b pop %rbx Code starting with the faulting instruction =========================================== 0: 74 0e je 0x10 2: 5b pop %rbx 3: 5d pop %rbp 4: c3 ret 5: cc int3 6: cc int3 7: cc int3 8: cc int3 9: e8 2f df ac fd call 0xfffffffffdacdf3d e: eb dc jmp 0xffffffffffffffec 10: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1) 15: 5b pop %rbx [ 14.411131][ C3] RSP: 0018:ffffc900002af868 EFLAGS: 00000286 [ 14.411136][ C3] RAX: 0000000000000002 RBX: 0000000000000200 RCX: 1ffffffff4407cc3 [ 14.411140][ C3] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9ef4b761 [ 14.411143][ C3] RBP: ffff888001040f40 R08: 0000000000000001 R09: fffffbfff4405be5 [ 14.411146][ C3] R10: ffffffffa202df2f R11: ffff888001d82300 R12: ffff8880091885e4 [ 14.411148][ C3] R13: 0000000000000000 R14: ffffc900002af8b8 R15: ffff88800b894064 [ 14.411169][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) [ 14.411186][ C3] qlist_free_all (mm/kasan/quarantine.c:174) [ 14.411201][ C3] kasan_quarantine_reduce (./include/linux/srcu.h:357 mm/kasan/quarantine.c:287) [ 14.411213][ C3] __kasan_slab_alloc (mm/kasan/common.c:329) [ 14.411227][ C3] kmem_cache_alloc_node_noprof (mm/slub.c:4116 mm/slub.c:4164 mm/slub.c:4216) [ 14.411236][ C3] ? __pfx_lock_acquire.part.0 (kernel/locking/lockdep.c:5816) [ 14.411256][ C3] __alloc_skb (net/core/skbuff.c:659) [ 14.411265][ C3] ? __pfx___alloc_skb (net/core/skbuff.c:642) [ 14.411279][ C3] ? rtnl_prop_list_size (net/core/rtnetlink.c:1233) [ 14.411293][ C3] ? if_nlmsg_size (net/core/rtnetlink.c:1326) [ 14.411310][ C3] rtmsg_ifinfo_build_skb (./include/linux/skbuff.h:1339 ./include/net/netlink.h:1019 net/core/rtnetlink.c:4399) [ 14.411329][ C3] rtmsg_ifinfo_event.part.0 (net/core/rtnetlink.c:4443) [ 14.411348][ C3] rtmsg_ifinfo (net/core/rtnetlink.c:4452 net/core/rtnetlink.c:4450) [ 14.411365][ C3] netdev_state_change (net/core/dev.c:1540) [ 14.411373][ C3] ? __pfx_netdev_state_change (net/core/dev.c:1530) [ 14.411401][ C3] linkwatch_do_dev (net/core/link_watch.c:186) [ 14.411408][ C3] __linkwatch_run_queue (./include/linux/spinlock.h:376 net/core/link_watch.c:245) [ 14.411422][ C3] ? __pfx___linkwatch_run_queue (net/core/link_watch.c:195) [ 14.411434][ C3] ? lock_acquire (kernel/locking/lockdep.c:5824) [ 14.411453][ C3] linkwatch_event (net/core/link_watch.c:287) [ 14.411458][ C3] process_one_work (kernel/workqueue.c:3238) [ 14.411486][ C3] ? __pfx___lock_release (kernel/locking/lockdep.c:5503) [ 14.411495][ C3] ? __pfx_process_one_work (kernel/workqueue.c:3140) [ 14.411521][ C3] ? assign_work (kernel/workqueue.c:1200) [ 14.411540][ C3] worker_thread (kernel/workqueue.c:3313 kernel/workqueue.c:3400) [ 14.411560][ C3] ? __pfx_worker_thread (kernel/workqueue.c:3346) [ 14.411567][ C3] kthread (kernel/kthread.c:464) [ 14.411572][ C3] ? __pfx_kthread (kernel/kthread.c:413) [ 14.411581][ C3] ? __pfx_kthread (kernel/kthread.c:413) [ 14.411588][ C3] ret_from_fork (arch/x86/kernel/process.c:148) [ 14.411594][ C3] ? __pfx_kthread (kernel/kthread.c:413) Finger prints: lockdep_rcu_suspicious:dev_hard_start_xmit:__dev_queue_xmit:br_dev_queue_push_xmit:__br_multicast_send_query