====================================== | [ 631.256396][ C3] 1 lock held by swapper/3/0: | [ 631.256583][ C3] #0: ffffffffb938d440 (rcu_callback){....}-{0:0}, at: rcu_do_batch (./include/linux/rcupdate.h:331 kernel/rcu/tree.c:2570) | [ 631.256911][ C3] | [ 631.256911][ C3] stack backtrace: [ 631.257144][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 631.257147][ C3] Call Trace: [ 631.257150][ C3] [ 631.257153][ C3] dump_stack_lvl (lib/dump_stack.c:123) [ 631.257164][ C3] print_usage_bug.part.0 (kernel/locking/lockdep.c:4048) [ 631.257169][ C3] mark_lock_irq (kernel/locking/lockdep.c:4013 kernel/locking/lockdep.c:4059 kernel/locking/lockdep.c:4270) [ 631.257173][ C3] ? stack_depot_save_flags (lib/stackdepot.c:552 lib/stackdepot.c:619) [ 631.257181][ C3] ? validate_chain (kernel/locking/lockdep.c:3804 kernel/locking/lockdep.c:3824 kernel/locking/lockdep.c:3879) [ 631.257186][ C3] mark_lock (kernel/locking/lockdep.c:4756) [ 631.257190][ C3] mark_usage (kernel/locking/lockdep.c:4645) [ 631.257194][ C3] __lock_acquire (kernel/locking/lockdep.c:5194) [ 631.257197][ C3] ? pv_native_safe_halt (arch/x86/kernel/paravirt.c:82) [ 631.257201][ C3] ? default_idle (./arch/x86/include/asm/paravirt.h:107 arch/x86/kernel/process.c:743) [ 631.257204][ C3] ? default_idle_call (./include/linux/cpuidle.h:143 kernel/sched/idle.c:118) [ 631.257207][ C3] ? cpuidle_idle_call (kernel/sched/idle.c:186) [ 631.257216][ C3] lock_acquire.part.0 (kernel/locking/lockdep.c:473 kernel/locking/lockdep.c:5873) [ 631.257219][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 631.257223][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 631.257230][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 631.257233][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 631.257238][ C3] _raw_spin_lock (./include/linux/spinlock_api_smp.h:134 kernel/locking/spinlock.c:154) [ 631.257240][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 631.257244][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 631.257247][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 631.257251][ C3] ? trace_rcu_segcb_stats (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745 ./include/trace/events/rcu.h:537) [ 631.257255][ C3] ? kasan_quarantine_put (mm/kasan/quarantine.c:234 (discriminator 1)) [ 631.257259][ C3] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4475) [ 631.257263][ C3] ref_tracker_dir_exit (lib/ref_tracker.c:54 lib/ref_tracker.c:223) [ 631.257267][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 631.257270][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 631.257273][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 631.257276][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5240) [ 631.257279][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 631.257282][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 631.257298][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 631.257301][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 631.257305][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 631.257309][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 631.257317][ C3] ? do_idle (kernel/sched/idle.c:325) [ 631.257320][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 631.257323][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 631.257336][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 631.257340][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 631.257343][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 631.257347][ C3] ? find_held_lock (kernel/locking/lockdep.c:5353) [ 631.257351][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 631.257354][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) [ 631.257358][ C3] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4475) [ 631.257361][ C3] ? _raw_spin_unlock_irqrestore (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 631.257365][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 631.257369][ C3] handle_softirqs (kernel/softirq.c:579) [ 631.257375][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 631.257378][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 631.257381][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 631.257384][ C3] [ 631.257385][ C3] [ 631.257386][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 631.257398][ C3] RIP: 0010:pv_native_safe_halt (arch/x86/kernel/paravirt.c:82) [ 631.257401][ C3] Code: 54 ce 00 e9 d3 58 02 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 07 1f 00 fb f4 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 All code ======== 0: 54 push %rsp 1: ce (bad) 2: 00 e9 add %ch,%cl 4: d3 58 02 rcrl %cl,0x2(%rax) 7: 00 0f add %cl,(%rdi) 9: 1f (bad) a: 00 90 90 90 90 90 add %dl,-0x6f6f6f70(%rax) 10: 90 nop 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop 16: 90 nop 17: 90 nop 18: 90 nop 19: 90 nop 1a: 90 nop 1b: f3 0f 1e fa endbr64 1f: 66 90 xchg %ax,%ax 21: 0f 00 2d 33 07 1f 00 verw 0x1f0733(%rip) # 0x1f075b 28: fb sti 29: f4 hlt 2a:* c3 ret <-- trapping instruction 2b: cc int3 2c: cc int3 2d: cc int3 2e: cc int3 2f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 36: 00 00 00 39: 66 90 xchg %ax,%ax 3b: 90 nop 3c: 90 nop 3d: 90 nop 3e: 90 nop 3f: 90 nop Code starting with the faulting instruction =========================================== 0: c3 ret 1: cc int3 2: cc int3 3: cc int3 4: cc int3 5: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) c: 00 00 00 f: 66 90 xchg %ax,%ax 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop [ 631.257404][ C3] RSP: 0018:ffffc90000157de8 EFLAGS: 00000242 [ 631.257411][ C3] RAX: 0000000000c39b01 RBX: 1ffff9200002afc1 RCX: ffffffffb7ca43e9 [ 631.257413][ C3] RDX: 0000000000000000 RSI: ffffffffb892ba5f RDI: ffffffffb805cf00 [ 631.257415][ C3] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100d9f6702 [ 631.257417][ C3] R10: ffff88806cfb3813 R11: ffffffffb9011288 R12: 0000000000000000 [ 631.257419][ C3] R13: ffff888001b645c0 R14: dffffc0000000000 R15: 0000000000000000 [ 631.257423][ C3] ? ct_kernel_exit.constprop.0 (kernel/context_tracking.c:146) [ 631.257429][ C3] default_idle (./arch/x86/include/asm/paravirt.h:107 arch/x86/kernel/process.c:743) [ 631.257432][ C3] default_idle_call (./include/linux/cpuidle.h:143 kernel/sched/idle.c:118) [ 631.257435][ C3] cpuidle_idle_call (kernel/sched/idle.c:186) [ 631.257439][ C3] ? __pfx_cpuidle_idle_call (kernel/sched/idle.c:168) [ 631.257443][ C3] ? tsc_verify_tsc_adjust (arch/x86/kernel/tsc_sync.c:60) [ 631.257452][ C3] do_idle (kernel/sched/idle.c:325) [ 631.257455][ C3] cpu_startup_entry (kernel/sched/idle.c:422 (discriminator 1)) [ 631.257459][ C3] start_secondary (arch/x86/kernel/smpboot.c:203 arch/x86/kernel/smpboot.c:283) [ 631.257462][ C3] ? __pfx_start_secondary (arch/x86/kernel/smpboot.c:233) [ 631.257467][ C3] common_startup_64 (arch/x86/kernel/head_64.S:419) | [ 656.670135][ C3] hardirqs last enabled at (0): 0x0 | [ 656.670142][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 656.670159][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 656.670163][ C3] softirqs last disabled at (0): 0x0 [ 656.670175][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 656.670178][ C3] RIP: 0010:__kasan_check_read (mm/kasan/shadow.c:30) [ 656.670185][ C3] Code: c7 c7 b8 57 8c b8 5b 5d 41 5c e9 7b 44 8d ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 0c 24 89 f6 31 d2 e9 4f f0 ff ff 66 66 2e 0f 1f All code ======== 0: c7 c7 b8 57 8c b8 mov $0xb88c57b8,%edi 6: 5b pop %rbx 7: 5d pop %rbp 8: 41 5c pop %r12 a: e9 7b 44 8d ff jmp 0xffffffffff8d448a f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 16: 00 00 00 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 90 nop 27: 90 nop 28: 90 nop 29: 90 nop 2a:* f3 0f 1e fa endbr64 <-- trapping instruction 2e: 48 8b 0c 24 mov (%rsp),%rcx 32: 89 f6 mov %esi,%esi 34: 31 d2 xor %edx,%edx 36: e9 4f f0 ff ff jmp 0xfffffffffffff08a 3b: 66 data16 3c: 66 data16 3d: 2e cs 3e: 0f .byte 0xf 3f: 1f (bad) Code starting with the faulting instruction =========================================== 0: f3 0f 1e fa endbr64 4: 48 8b 0c 24 mov (%rsp),%rcx 8: 89 f6 mov %esi,%esi a: 31 d2 xor %edx,%edx c: e9 4f f0 ff ff jmp 0xfffffffffffff060 11: 66 data16 12: 66 data16 13: 2e cs 14: 0f .byte 0xf 15: 1f (bad) [ 656.670188][ C3] RSP: 0018:ffffc90000270a40 EFLAGS: 00000202 [ 656.670192][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 656.670194][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 656.670196][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 656.670198][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 656.670200][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 656.670202][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 656.670204][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 656.670208][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 656.670210][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 656.670211][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 656.670213][ C3] PKRU: 55555554 [ 656.670214][ C3] Call Trace: [ 656.670219][ C3] [ 656.670220][ C3] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 656.670230][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 656.670238][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 656.670246][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 656.670249][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 656.670255][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 656.670261][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 656.670264][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 656.670269][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 656.670272][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 656.670278][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 656.670281][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 656.670283][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 656.670286][ C3] ? xas_alloc (lib/xarray.c:378) [ 656.670293][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 656.670299][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 656.670301][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 656.670306][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 656.670311][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 656.670316][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 656.670321][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 656.670327][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 656.670339][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 656.670346][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 656.670349][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 656.670352][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 656.670356][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 656.670359][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 656.670362][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 656.670370][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 656.670373][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 656.670376][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 656.670380][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 656.670385][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 656.670389][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 656.670392][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 656.670396][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 656.670399][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 656.670404][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 656.670408][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 656.670411][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 656.670417][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 656.670420][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 656.670424][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 656.670428][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 656.670433][ C3] handle_softirqs (kernel/softirq.c:579) [ 656.670439][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 656.670443][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 656.670446][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 656.670449][ C3] [ 656.670450][ C3] [ 656.670452][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 656.670459][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 656.670462][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 656.670464][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 656.670467][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 656.670468][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 656.670470][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 656.670472][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 656.670473][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 656.670477][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 656.670483][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 656.670488][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 656.670492][ C3] ? xas_alloc (lib/xarray.c:378) [ 656.670497][ C3] ? xas_alloc (lib/xarray.c:378) [ 656.670499][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 656.670504][ C3] ? xas_alloc (lib/xarray.c:378) [ 656.670506][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 656.670511][ C3] xas_alloc (lib/xarray.c:378) [ 656.670516][ C3] xas_create (lib/xarray.c:685) [ 656.670523][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 656.670527][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 656.670531][ C3] __xa_store (lib/xarray.c:1703) [ 656.670535][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 656.670540][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 656.670543][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 656.670546][ C3] ? xa_store (lib/xarray.c:1734) [ 656.670551][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 656.670555][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 656.670558][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 656.670563][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 656.670566][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 656.670568][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 656.670572][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 656.670575][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 656.670580][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 656.670583][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 656.670588][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 656.670592][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 656.670597][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 656.670609][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 656.670613][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 656.670627][ C3] ksys_unshare (kernel/fork.c:3121) [ 656.670632][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 656.670635][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 656.670639][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 656.670642][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 656.670645][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 656.670654][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 656.670658][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 656.670663][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 656.670667][ C3] RIP: 0033:0x7f439756d93b [ 656.670672][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 656.670674][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 656.670677][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 656.670679][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 656.670681][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 656.670682][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 656.670684][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 658.011430][ C3] rcu: INFO: rcu_preempt self-detected stall on CPU | [ 658.011966][ C3] rcu: 3-....: (25966 ticks this GP) idle=10a4/1/0x4000000000000000 softirq=224221/224227 fqs=6487 | [ 658.012445][ C3] rcu: (t=26000 jiffies g=359693 q=1397 ncpus=4) | [ 658.012754][ C3] Tainted: [L]=SOFTLOCKUP [ 658.012756][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 658.012759][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 658.012784][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 658.012790][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 658.012795][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 658.012798][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 658.012801][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 658.012802][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 658.012805][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 658.012807][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 658.012809][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 658.012813][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 658.012815][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 658.012816][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 658.012818][ C3] PKRU: 55555554 [ 658.012819][ C3] Call Trace: [ 658.012821][ C3] [ 658.012822][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 658.012835][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 658.012841][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 658.012844][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 658.012855][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 658.012866][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 658.012869][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 658.012876][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 658.012880][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 658.012885][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 658.012888][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 658.012891][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 658.012894][ C3] ? xas_alloc (lib/xarray.c:378) [ 658.012903][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 658.012909][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 658.012912][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 658.012919][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 658.012925][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 658.012929][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 658.012935][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 658.012942][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 658.012953][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 658.012961][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 658.012964][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 658.012967][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 658.012970][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 658.012973][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 658.012976][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 658.012989][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 658.012993][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 658.012997][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 658.013002][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 658.013008][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 658.013012][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 658.013015][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 658.013022][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 658.013025][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 658.013031][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 658.013036][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 658.013039][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 658.013044][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 658.013048][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 658.013051][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 658.013056][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 658.013060][ C3] handle_softirqs (kernel/softirq.c:579) [ 658.013066][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 658.013069][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 658.013072][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 658.013075][ C3] [ 658.013076][ C3] [ 658.013079][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 658.013086][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 658.013090][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 658.013093][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 658.013095][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 658.013098][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 658.013099][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 658.013101][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 658.013102][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 658.013106][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 658.013111][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 658.013116][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 658.013120][ C3] ? xas_alloc (lib/xarray.c:378) [ 658.013124][ C3] ? xas_alloc (lib/xarray.c:378) [ 658.013127][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 658.013130][ C3] ? xas_alloc (lib/xarray.c:378) [ 658.013133][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 658.013137][ C3] xas_alloc (lib/xarray.c:378) [ 658.013142][ C3] xas_create (lib/xarray.c:685) [ 658.013148][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 658.013152][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 658.013155][ C3] __xa_store (lib/xarray.c:1703) [ 658.013159][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 658.013163][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 658.013166][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 658.013169][ C3] ? xa_store (lib/xarray.c:1734) [ 658.013173][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 658.013177][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 658.013180][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 658.013185][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 658.013187][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 658.013190][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 658.013194][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 658.013197][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 658.013201][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 658.013205][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 658.013209][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 658.013213][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 658.013218][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 658.013230][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 658.013234][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 658.013245][ C3] ksys_unshare (kernel/fork.c:3121) [ 658.013254][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 658.013257][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 658.013261][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 658.013263][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 658.013267][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 658.013276][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 658.013280][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 658.013288][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 658.013291][ C3] RIP: 0033:0x7f439756d93b [ 658.013299][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 658.013302][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 658.013304][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 658.013306][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 658.013307][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 658.013310][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 658.013312][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 684.669181][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 684.669200][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 684.669203][ C1] softirqs last disabled at (0): 0x0 | [ 684.669226][ C1] Tainted: [L]=SOFTLOCKUP [ 684.669228][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 684.669234][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 684.669252][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 684.669257][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 684.669261][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 684.669264][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 684.669266][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 684.669268][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 684.669270][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 684.669273][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 684.669276][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 684.669279][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 684.669282][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 684.669284][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 684.669286][ C1] PKRU: 55555554 [ 684.669287][ C1] Call Trace: [ 684.669293][ C1] [ 684.669299][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 684.669303][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 684.669312][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 684.669319][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 684.669346][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 684.669351][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 684.669354][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 684.669357][ C1] ? xa_store (lib/xarray.c:1734) [ 684.669368][ C1] xa_store (lib/xarray.c:1734) [ 684.669374][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 684.669384][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 684.669390][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 684.669393][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 684.669396][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 684.669407][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 684.669410][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 684.669422][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 684.669426][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 684.669431][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 684.669442][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 684.669447][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 684.669462][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 684.669466][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 684.669475][ C1] ksys_unshare (kernel/fork.c:3121) [ 684.669481][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 684.669485][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 684.669492][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 684.669496][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 684.669500][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 684.669510][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 684.669514][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 684.669524][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 684.669531][ C1] RIP: 0033:0x7f439756d93b [ 684.669541][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 684.669544][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 684.669547][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 684.669550][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 684.669554][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 684.669556][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 684.669558][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 684.670136][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 684.670143][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 684.670147][ C3] softirqs last disabled at (0): 0x0 | [ 684.670161][ C3] Tainted: [L]=SOFTLOCKUP [ 684.670163][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 684.670166][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:104 kernel/locking/qspinlock.c:141) [ 684.670174][ C3] Code: c6 41 83 c5 03 be 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 84 c0 0f 85 8d 07 00 00 8b 45 00 89 44 24 40 <85> c0 0f 85 6e 01 00 00 48 89 ef be 04 00 00 00 e8 60 b8 c7 fd be All code ======== 0: c6 41 83 c5 movb $0xc5,-0x7d(%rcx) 4: 03 be 04 00 00 00 add 0x4(%rsi),%edi a: 48 89 ef mov %rbp,%rdi d: e8 5d b8 c7 fd call 0xfffffffffdc7b86f 12: 41 0f b6 06 movzbl (%r14),%eax 16: 41 38 c5 cmp %al,%r13b 19: 7c 08 jl 0x23 1b: 84 c0 test %al,%al 1d: 0f 85 8d 07 00 00 jne 0x7b0 23: 8b 45 00 mov 0x0(%rbp),%eax 26: 89 44 24 40 mov %eax,0x40(%rsp) 2a:* 85 c0 test %eax,%eax <-- trapping instruction 2c: 0f 85 6e 01 00 00 jne 0x1a0 32: 48 89 ef mov %rbp,%rdi 35: be 04 00 00 00 mov $0x4,%esi 3a: e8 60 b8 c7 fd call 0xfffffffffdc7b89f 3f: be .byte 0xbe Code starting with the faulting instruction =========================================== 0: 85 c0 test %eax,%eax 2: 0f 85 6e 01 00 00 jne 0x176 8: 48 89 ef mov %rbp,%rdi b: be 04 00 00 00 mov $0x4,%esi 10: e8 60 b8 c7 fd call 0xfffffffffdc7b875 15: be .byte 0xbe [ 684.670178][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000246 [ 684.670182][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 684.670184][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 684.670187][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 684.670189][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 684.670191][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 684.670194][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 684.670196][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 684.670200][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 684.670202][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 684.670203][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 684.670205][ C3] PKRU: 55555554 [ 684.670206][ C3] Call Trace: [ 684.670212][ C3] [ 684.670214][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 684.670225][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 684.670235][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 684.670239][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 684.670248][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 684.670258][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 684.670262][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 684.670266][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 684.670272][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 684.670277][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 684.670279][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 684.670283][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 684.670286][ C3] ? xas_alloc (lib/xarray.c:378) [ 684.670292][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 684.670297][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 684.670301][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 684.670306][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 684.670311][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 684.670318][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 684.670325][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 684.670330][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 684.670338][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 684.670348][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 684.670351][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 684.670355][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 684.670359][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 684.670363][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 684.670366][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 684.670381][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 684.670385][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 684.670388][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 684.670392][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 684.670400][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 684.670404][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 684.670407][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 684.670413][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 684.670416][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 684.670421][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 684.670427][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 684.670430][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 684.670438][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 684.670442][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 684.670446][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 684.670451][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 684.670456][ C3] handle_softirqs (kernel/softirq.c:579) [ 684.670464][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 684.670469][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 684.670473][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 684.670478][ C3] [ 684.670479][ C3] [ 684.670481][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 684.670487][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 684.670491][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 684.670495][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 684.670499][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 684.670501][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 684.670503][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 684.670505][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 684.670508][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 684.670512][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 684.670519][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 684.670526][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 684.670531][ C3] ? xas_alloc (lib/xarray.c:378) [ 684.670536][ C3] ? xas_alloc (lib/xarray.c:378) [ 684.670539][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 684.670543][ C3] ? xas_alloc (lib/xarray.c:378) [ 684.670547][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 684.670553][ C3] xas_alloc (lib/xarray.c:378) [ 684.670558][ C3] xas_create (lib/xarray.c:685) [ 684.670565][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 684.670570][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 684.670573][ C3] __xa_store (lib/xarray.c:1703) [ 684.670578][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 684.670583][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 684.670585][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 684.670588][ C3] ? xa_store (lib/xarray.c:1734) [ 684.670593][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 684.670597][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 684.670600][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 684.670605][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 684.670608][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 684.670611][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 684.670615][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 684.670618][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 684.670623][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 684.670627][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 684.670633][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 684.670636][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 684.670641][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 684.670649][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 684.670652][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 684.670658][ C3] ksys_unshare (kernel/fork.c:3121) [ 684.670662][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 684.670666][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 684.670670][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 684.670672][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 684.670676][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 684.670682][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 684.670686][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 684.670691][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 684.670694][ C3] RIP: 0033:0x7f439756d93b [ 684.670700][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 684.670703][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 684.670706][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 684.670709][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 684.670711][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 684.670714][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 684.670716][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 712.656141][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 712.656152][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 712.656156][ C0] softirqs last disabled at (0): 0x0 | [ 712.656168][ C0] Tainted: [L]=SOFTLOCKUP [ 712.656170][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 712.656172][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 712.656183][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 712.656186][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 712.656190][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 712.656192][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 712.656194][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 712.656196][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 712.656198][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 712.656200][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 712.656202][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 712.656207][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 712.656208][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 712.656210][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 712.656211][ C0] PKRU: 55555554 [ 712.656213][ C0] Call Trace: [ 712.656217][ C0] [ 712.656221][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 712.656225][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 712.656231][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 712.656237][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 712.656245][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 712.656249][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 712.656252][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 712.656254][ C0] ? xa_store (lib/xarray.c:1734) [ 712.656262][ C0] xa_store (lib/xarray.c:1734) [ 712.656267][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 712.656274][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 712.656279][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 712.656282][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 712.656285][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.656293][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.656296][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 712.656305][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 712.656309][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 712.656314][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 712.656322][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 712.656327][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 712.656338][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 712.656342][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 712.656350][ C0] ksys_unshare (kernel/fork.c:3121) [ 712.656355][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 712.656358][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 712.656363][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 712.656367][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 712.656371][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 712.656379][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 712.656383][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 712.656389][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 712.656395][ C0] RIP: 0033:0x7f439756d93b [ 712.656399][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 712.656402][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 712.656405][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 712.656407][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 712.656409][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 712.656411][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 712.656412][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 712.669138][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 712.669147][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 712.669151][ C1] softirqs last disabled at (0): 0x0 | [ 712.669162][ C1] Tainted: [L]=SOFTLOCKUP [ 712.669164][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 712.669167][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 712.669176][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 712.669178][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 712.669182][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 712.669184][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 712.669186][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 712.669187][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 712.669189][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 712.669191][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 712.669194][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 712.669197][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 712.669199][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 712.669200][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 712.669202][ C1] PKRU: 55555554 [ 712.669203][ C1] Call Trace: [ 712.669207][ C1] [ 712.669211][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 712.669215][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 712.669220][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 712.669224][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 712.669232][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 712.669235][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 712.669238][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 712.669241][ C1] ? xa_store (lib/xarray.c:1734) [ 712.669248][ C1] xa_store (lib/xarray.c:1734) [ 712.669253][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 712.669259][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 712.669264][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 712.669267][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 712.669270][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.669276][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.669280][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 712.669288][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 712.669291][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 712.669296][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 712.669303][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 712.669308][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 712.669317][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 712.669320][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 712.669327][ C1] ksys_unshare (kernel/fork.c:3121) [ 712.669332][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 712.669335][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 712.669340][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 712.669343][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 712.669347][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 712.669354][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 712.669358][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 712.669363][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 712.669369][ C1] RIP: 0033:0x7f439756d93b [ 712.669374][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 712.669376][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 712.669379][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 712.669381][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 712.669383][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 712.669385][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 712.669387][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 712.670126][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 712.670133][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 712.670136][ C3] softirqs last disabled at (0): 0x0 | [ 712.670146][ C3] Tainted: [L]=SOFTLOCKUP [ 712.670148][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 712.670150][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 712.670155][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 712.670158][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 712.670161][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 712.670163][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 712.670165][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 712.670167][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 712.670169][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 712.670171][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 712.670173][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 712.670176][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 712.670179][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 712.670180][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 712.670181][ C3] PKRU: 55555554 [ 712.670182][ C3] Call Trace: [ 712.670185][ C3] [ 712.670186][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 712.670193][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 712.670198][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 712.670201][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 712.670207][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 712.670212][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 712.670215][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 712.670218][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 712.670222][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 712.670225][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 712.670228][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 712.670231][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 712.670233][ C3] ? xas_alloc (lib/xarray.c:378) [ 712.670238][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 712.670243][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 712.670246][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 712.670249][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 712.670254][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 712.670258][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 712.670264][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.670268][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 712.670273][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 712.670278][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.670281][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 712.670284][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 712.670287][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 712.670291][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 712.670293][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 712.670301][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 712.670304][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 712.670307][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 712.670311][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 712.670316][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 712.670319][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 712.670322][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 712.670326][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.670329][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 712.670334][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 712.670338][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 712.670341][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 712.670347][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 712.670351][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.670354][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 712.670359][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 712.670363][ C3] handle_softirqs (kernel/softirq.c:579) [ 712.670369][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 712.670372][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 712.670376][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 712.670380][ C3] [ 712.670381][ C3] [ 712.670382][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 712.670387][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 712.670390][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 712.670393][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 712.670396][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 712.670398][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 712.670399][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 712.670401][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 712.670403][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 712.670407][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 712.670412][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 712.670418][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 712.670422][ C3] ? xas_alloc (lib/xarray.c:378) [ 712.670427][ C3] ? xas_alloc (lib/xarray.c:378) [ 712.670429][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 712.670434][ C3] ? xas_alloc (lib/xarray.c:378) [ 712.670436][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 712.670441][ C3] xas_alloc (lib/xarray.c:378) [ 712.670446][ C3] xas_create (lib/xarray.c:685) [ 712.670452][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 712.670457][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 712.670461][ C3] __xa_store (lib/xarray.c:1703) [ 712.670465][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 712.670469][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 712.670472][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 712.670475][ C3] ? xa_store (lib/xarray.c:1734) [ 712.670480][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 712.670484][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 712.670487][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 712.670492][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 712.670494][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 712.670497][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.670501][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 712.670504][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 712.670508][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 712.670512][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 712.670517][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 712.670520][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 712.670525][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 712.670531][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 712.670535][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 712.670540][ C3] ksys_unshare (kernel/fork.c:3121) [ 712.670544][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 712.670547][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 712.670550][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 712.670553][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 712.670556][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 712.670562][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 712.670565][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 712.670570][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 712.670573][ C3] RIP: 0033:0x7f439756d93b [ 712.670577][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 712.670579][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 712.670582][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 712.670584][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 712.670586][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 712.670587][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 712.670589][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 736.025184][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 736.025472][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 736.025716][ C1] NMI backtrace for cpu 1 | [ 736.025731][ C1] Tainted: [L]=SOFTLOCKUP [ 736.025733][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 736.025735][ C1] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 736.025743][ C1] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 736.025746][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 736.025750][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 736.025752][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 736.025754][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 736.025756][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 736.025758][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 736.025760][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 736.025762][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 736.025765][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 736.025767][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 736.025769][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 736.025770][ C1] PKRU: 55555554 [ 736.025772][ C1] Call Trace: [ 736.025774][ C1] [ 736.025777][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 736.025781][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 736.025786][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 736.025790][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 736.025797][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 736.025800][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 736.025803][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 736.025806][ C1] ? xa_store (lib/xarray.c:1734) [ 736.025814][ C1] xa_store (lib/xarray.c:1734) [ 736.025818][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 736.025823][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 736.025828][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 736.025831][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 736.025834][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 736.025839][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 736.025842][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 736.025851][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 736.025855][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 736.025860][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 736.025868][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 736.025873][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 736.025881][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 736.025885][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 736.025893][ C1] ksys_unshare (kernel/fork.c:3121) [ 736.025900][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 736.025903][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 736.025910][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 736.025913][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 736.025916][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 736.025924][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 736.025928][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 736.025934][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 736.025940][ C1] RIP: 0033:0x7f439756d93b [ 736.025946][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 736.025949][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 736.025952][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 736.025955][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 736.025956][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 736.025958][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 736.025960][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 736.025958][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 736.025960][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 736.025965][ C1] | [ 736.026715][ C3] Tainted: [L]=SOFTLOCKUP [ 736.026717][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 736.026719][ C3] RIP: 0010:kasan_check_range (mm/kasan/generic.c:188) [ 736.026724][ C3] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 <53> 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 66 0f 1f 00 nopw (%rax) 14: 48 85 f6 test %rsi,%rsi 17: 0f 84 5e 01 00 00 je 0x17b 1d: 48 89 f8 mov %rdi,%rax 20: 41 54 push %r12 22: 44 0f b6 c2 movzbl %dl,%r8d 26: 48 01 f0 add %rsi,%rax 29: 55 push %rbp 2a:* 53 push %rbx <-- trapping instruction 2b: 72 14 jb 0x41 2d: eb 26 jmp 0x55 2f: cc int3 30: cc int3 31: cc int3 32: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 39: ff ff fe 3c: 48 39 c7 cmp %rax,%rdi 3f: 77 .byte 0x77 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: 72 14 jb 0x17 3: eb 26 jmp 0x2b 5: cc int3 6: cc int3 7: cc int3 8: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax f: ff ff fe 12: 48 39 c7 cmp %rax,%rdi 15: 77 .byte 0x77 [ 736.026728][ C3] RSP: 0018:ffffc90000270a30 EFLAGS: 00000282 [ 736.026731][ C3] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 736.026733][ C3] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 736.026735][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 736.026737][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 736.026739][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 736.026742][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 736.026745][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 736.026748][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 736.026750][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 736.026752][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 736.026754][ C3] PKRU: 55555554 [ 736.026755][ C3] Call Trace: [ 736.026756][ C3] [ 736.026758][ C3] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 736.026762][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 736.026768][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 736.026773][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 736.026776][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 736.026780][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 736.026786][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 736.026789][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 736.026794][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 736.026796][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 736.026800][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 736.026803][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 736.026805][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 736.026808][ C3] ? xas_alloc (lib/xarray.c:378) [ 736.026813][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 736.026816][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 736.026819][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 736.026822][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 736.026828][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 736.026832][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 736.026837][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 736.026841][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 736.026846][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 736.026850][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 736.026853][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 736.026856][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 736.026859][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 736.026862][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 736.026865][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 736.026874][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 736.026877][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 736.026880][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 736.026884][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 736.026888][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 736.026891][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 736.026894][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 736.026898][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 736.026902][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 736.026906][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 736.026910][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 736.026913][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 736.026918][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 736.026922][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 736.026925][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 736.026930][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 736.026934][ C3] handle_softirqs (kernel/softirq.c:579) [ 736.026939][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 736.026942][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 736.026946][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 736.026949][ C3] [ 736.026950][ C3] [ 736.026951][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 736.026956][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 736.026959][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 736.026961][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 736.026963][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 736.026965][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 736.026967][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 736.026968][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 736.026970][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 736.026974][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 736.026979][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 736.026984][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 736.026987][ C3] ? xas_alloc (lib/xarray.c:378) [ 736.026992][ C3] ? xas_alloc (lib/xarray.c:378) [ 736.026994][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 736.026998][ C3] ? xas_alloc (lib/xarray.c:378) [ 736.027001][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 736.027005][ C3] xas_alloc (lib/xarray.c:378) [ 736.027010][ C3] xas_create (lib/xarray.c:685) [ 736.027016][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 736.027020][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 736.027024][ C3] __xa_store (lib/xarray.c:1703) [ 736.027028][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 736.027033][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 736.027035][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 736.027038][ C3] ? xa_store (lib/xarray.c:1734) [ 736.027043][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 736.027047][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 736.027050][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 736.027055][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 736.027058][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 736.027060][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 736.027064][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 736.027067][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 736.027072][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 736.027075][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 736.027080][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 736.027083][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 736.027087][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 736.027094][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 736.027097][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 736.027101][ C3] ksys_unshare (kernel/fork.c:3121) [ 736.027106][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 736.027109][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 736.027112][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 736.027114][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 736.027118][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 736.027123][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 736.027127][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 736.027131][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 736.027133][ C3] RIP: 0033:0x7f439756d93b [ 736.027138][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 736.027141][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 736.027144][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 736.027145][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 736.027147][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 736.027149][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 736.027150][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 740.656142][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 740.656153][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 740.656156][ C0] softirqs last disabled at (0): 0x0 | [ 740.656169][ C0] Tainted: [L]=SOFTLOCKUP [ 740.656171][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 740.656173][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 740.656183][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 740.656186][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 740.656189][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 740.656191][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 740.656193][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 740.656195][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 740.656197][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 740.656199][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 740.656201][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 740.656206][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 740.656208][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 740.656209][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 740.656211][ C0] PKRU: 55555554 [ 740.656212][ C0] Call Trace: [ 740.656216][ C0] [ 740.656220][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 740.656224][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 740.656230][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 740.656234][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 740.656242][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 740.656246][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 740.656249][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 740.656251][ C0] ? xa_store (lib/xarray.c:1734) [ 740.656259][ C0] xa_store (lib/xarray.c:1734) [ 740.656264][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 740.656270][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 740.656275][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 740.656278][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 740.656281][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 740.656289][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 740.656294][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 740.656304][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 740.656312][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 740.656321][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 740.656332][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 740.656340][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 740.656350][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 740.656353][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 740.656360][ C0] ksys_unshare (kernel/fork.c:3121) [ 740.656366][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 740.656369][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 740.656374][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 740.656378][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 740.656381][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 740.656388][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 740.656392][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 740.656398][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 740.656403][ C0] RIP: 0033:0x7f439756d93b [ 740.656409][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 740.656411][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 740.656414][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 740.656416][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 740.656418][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 740.656420][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 740.656422][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 744.669145][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 744.669154][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 744.669158][ C2] softirqs last disabled at (0): 0x0 | [ 744.669172][ C2] Tainted: [L]=SOFTLOCKUP [ 744.669174][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 744.669177][ C2] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 744.669189][ C2] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 744.669192][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 744.669195][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 744.669197][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 744.669199][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 744.669201][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 744.669203][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 744.669205][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 744.669207][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 744.669211][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 744.669212][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 744.669214][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 744.669215][ C2] PKRU: 55555554 [ 744.669216][ C2] Call Trace: [ 744.669222][ C2] [ 744.669227][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 744.669231][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 744.669236][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 744.669241][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 744.669249][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 744.669253][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 744.669256][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 744.669258][ C2] ? xa_store (lib/xarray.c:1734) [ 744.669266][ C2] xa_store (lib/xarray.c:1734) [ 744.669270][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 744.669277][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 744.669282][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 744.669285][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 744.669288][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 744.669295][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 744.669298][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 744.669306][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 744.669310][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 744.669315][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 744.669323][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 744.669328][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 744.669338][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 744.669342][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 744.669348][ C2] ksys_unshare (kernel/fork.c:3121) [ 744.669354][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 744.669357][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 744.669362][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 744.669366][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 744.669369][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 744.669377][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 744.669382][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 744.669387][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 744.669393][ C2] RIP: 0033:0x7f439756d93b [ 744.669399][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 744.669401][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 744.669404][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 744.669406][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 744.669408][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 744.669410][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 744.669411][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 760.669142][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 760.669152][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 760.669155][ C1] softirqs last disabled at (0): 0x0 | [ 760.669169][ C1] Tainted: [L]=SOFTLOCKUP [ 760.669170][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 760.669172][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 760.669183][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 760.669186][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 760.669189][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 760.669191][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 760.669193][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 760.669195][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 760.669197][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 760.669199][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 760.669201][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 760.669205][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 760.669207][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 760.669208][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 760.669210][ C1] PKRU: 55555554 [ 760.669211][ C1] Call Trace: [ 760.669216][ C1] [ 760.669220][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 760.669224][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 760.669229][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 760.669233][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 760.669242][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 760.669245][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 760.669248][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 760.669251][ C1] ? xa_store (lib/xarray.c:1734) [ 760.669258][ C1] xa_store (lib/xarray.c:1734) [ 760.669263][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 760.669269][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 760.669274][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 760.669277][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 760.669280][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 760.669287][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 760.669290][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 760.669298][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 760.669301][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 760.669306][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 760.669314][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 760.669318][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 760.669328][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 760.669331][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 760.669338][ C1] ksys_unshare (kernel/fork.c:3121) [ 760.669343][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 760.669346][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 760.669351][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 760.669354][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 760.669358][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 760.669365][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 760.669369][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 760.669375][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 760.669381][ C1] RIP: 0033:0x7f439756d93b [ 760.669386][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 760.669388][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 760.669391][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 760.669393][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 760.669395][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 760.669397][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 760.669399][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 760.670129][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 760.670135][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 760.670139][ C3] softirqs last disabled at (0): 0x0 | [ 760.670149][ C3] Tainted: [L]=SOFTLOCKUP [ 760.670150][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 760.670152][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 760.670158][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 760.670161][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 760.670164][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 760.670166][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 760.670168][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 760.670170][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 760.670172][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 760.670174][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 760.670176][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 760.670179][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 760.670181][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 760.670182][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 760.670184][ C3] PKRU: 55555554 [ 760.670185][ C3] Call Trace: [ 760.670188][ C3] [ 760.670189][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 760.670196][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 760.670201][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 760.670204][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 760.670209][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 760.670215][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 760.670218][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 760.670222][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 760.670225][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 760.670229][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 760.670231][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 760.670234][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 760.670237][ C3] ? xas_alloc (lib/xarray.c:378) [ 760.670241][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 760.670245][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 760.670249][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 760.670252][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 760.670258][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 760.670262][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 760.670268][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 760.670272][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 760.670277][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 760.670282][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 760.670285][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 760.670288][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 760.670291][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 760.670295][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 760.670297][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 760.670304][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 760.670307][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 760.670310][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 760.670314][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 760.670318][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 760.670321][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 760.670324][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 760.670328][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 760.670331][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 760.670335][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 760.670340][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 760.670343][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 760.670349][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 760.670353][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 760.670356][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 760.670361][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 760.670365][ C3] handle_softirqs (kernel/softirq.c:579) [ 760.670371][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 760.670375][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 760.670379][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 760.670383][ C3] [ 760.670383][ C3] [ 760.670385][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 760.670389][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 760.670393][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 760.670396][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 760.670399][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 760.670401][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 760.670402][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 760.670404][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 760.670406][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 760.670410][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 760.670416][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 760.670422][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 760.670426][ C3] ? xas_alloc (lib/xarray.c:378) [ 760.670430][ C3] ? xas_alloc (lib/xarray.c:378) [ 760.670433][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 760.670437][ C3] ? xas_alloc (lib/xarray.c:378) [ 760.670440][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 760.670445][ C3] xas_alloc (lib/xarray.c:378) [ 760.670449][ C3] xas_create (lib/xarray.c:685) [ 760.670456][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 760.670460][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 760.670464][ C3] __xa_store (lib/xarray.c:1703) [ 760.670468][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 760.670473][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 760.670475][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 760.670479][ C3] ? xa_store (lib/xarray.c:1734) [ 760.670484][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 760.670488][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 760.670491][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 760.670496][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 760.670499][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 760.670502][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 760.670506][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 760.670509][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 760.670513][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 760.670517][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 760.670521][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 760.670525][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 760.670529][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 760.670536][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 760.670540][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 760.670545][ C3] ksys_unshare (kernel/fork.c:3121) [ 760.670549][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 760.670552][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 760.670555][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 760.670558][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 760.670561][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 760.670566][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 760.670570][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 760.670575][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 760.670578][ C3] RIP: 0033:0x7f439756d93b [ 760.670582][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 760.670584][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 760.670587][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 760.670589][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 760.670591][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 760.670593][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 760.670595][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 768.656138][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 768.656146][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 768.656150][ C0] softirqs last disabled at (0): 0x0 | [ 768.656163][ C0] Tainted: [L]=SOFTLOCKUP [ 768.656164][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 768.656166][ C0] RIP: 0010:kasan_check_range (mm/kasan/generic.c:188) [ 768.656174][ C0] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 <53> 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 66 0f 1f 00 nopw (%rax) 14: 48 85 f6 test %rsi,%rsi 17: 0f 84 5e 01 00 00 je 0x17b 1d: 48 89 f8 mov %rdi,%rax 20: 41 54 push %r12 22: 44 0f b6 c2 movzbl %dl,%r8d 26: 48 01 f0 add %rsi,%rax 29: 55 push %rbp 2a:* 53 push %rbx <-- trapping instruction 2b: 72 14 jb 0x41 2d: eb 26 jmp 0x55 2f: cc int3 30: cc int3 31: cc int3 32: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 39: ff ff fe 3c: 48 39 c7 cmp %rax,%rdi 3f: 77 .byte 0x77 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: 72 14 jb 0x17 3: eb 26 jmp 0x2b 5: cc int3 6: cc int3 7: cc int3 8: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax f: ff ff fe 12: 48 39 c7 cmp %rax,%rdi 15: 77 .byte 0x77 [ 768.656176][ C0] RSP: 0018:ffffc900034c7a00 EFLAGS: 00000282 [ 768.656180][ C0] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 768.656182][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 768.656184][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 768.656186][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 768.656188][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 768.656190][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 768.656192][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 768.656196][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 768.656198][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 768.656199][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 768.656201][ C0] PKRU: 55555554 [ 768.656202][ C0] Call Trace: [ 768.656206][ C0] [ 768.656209][ C0] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 768.656219][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 768.656222][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 768.656227][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 768.656231][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 768.656238][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 768.656242][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 768.656244][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 768.656247][ C0] ? xa_store (lib/xarray.c:1734) [ 768.656254][ C0] xa_store (lib/xarray.c:1734) [ 768.656259][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 768.656265][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 768.656270][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 768.656273][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 768.656276][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 768.656283][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 768.656286][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 768.656294][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 768.656298][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 768.656303][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 768.656310][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 768.656315][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 768.656324][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 768.656328][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 768.656335][ C0] ksys_unshare (kernel/fork.c:3121) [ 768.656340][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 768.656343][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 768.656348][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 768.656352][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 768.656355][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 768.656362][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 768.656366][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 768.656372][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 768.656377][ C0] RIP: 0033:0x7f439756d93b [ 768.656382][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 768.656384][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 768.656388][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 768.656390][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 768.656392][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 768.656393][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 768.656395][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 772.669133][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 772.669140][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 772.669144][ C2] softirqs last disabled at (0): 0x0 | [ 772.669156][ C2] Tainted: [L]=SOFTLOCKUP [ 772.669159][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 772.669161][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 772.669168][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 772.669171][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 772.669174][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 772.669177][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 772.669179][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 772.669181][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 772.669183][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 772.669185][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 772.669187][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 772.669191][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 772.669193][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 772.669194][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 772.669196][ C2] PKRU: 55555554 [ 772.669197][ C2] Call Trace: [ 772.669200][ C2] [ 772.669203][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 772.669208][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 772.669213][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 772.669217][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 772.669223][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 772.669227][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 772.669230][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 772.669233][ C2] ? xa_store (lib/xarray.c:1734) [ 772.669239][ C2] xa_store (lib/xarray.c:1734) [ 772.669243][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 772.669248][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 772.669253][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 772.669256][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 772.669259][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 772.669265][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 772.669269][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 772.669275][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 772.669279][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 772.669284][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 772.669289][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 772.669294][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 772.669302][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 772.669306][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 772.669311][ C2] ksys_unshare (kernel/fork.c:3121) [ 772.669316][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 772.669320][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 772.669324][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 772.669328][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 772.669331][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 772.669337][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 772.669341][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 772.669346][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 772.669350][ C2] RIP: 0033:0x7f439756d93b [ 772.669355][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 772.669358][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 772.669361][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 772.669363][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 772.669365][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 772.669367][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 772.669369][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 788.669137][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 788.669147][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 788.669151][ C1] softirqs last disabled at (0): 0x0 | [ 788.669164][ C1] Tainted: [L]=SOFTLOCKUP [ 788.669166][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 788.669169][ C1] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 788.669179][ C1] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 788.669181][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 788.669184][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 788.669186][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 788.669188][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 788.669190][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 788.669192][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 788.669194][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 788.669197][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 788.669200][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 788.669202][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 788.669203][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 788.669205][ C1] PKRU: 55555554 [ 788.669206][ C1] Call Trace: [ 788.669210][ C1] [ 788.669213][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 788.669217][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 788.669222][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 788.669227][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 788.669234][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 788.669237][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 788.669240][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 788.669243][ C1] ? xa_store (lib/xarray.c:1734) [ 788.669250][ C1] xa_store (lib/xarray.c:1734) [ 788.669255][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 788.669261][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 788.669266][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 788.669269][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 788.669272][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 788.669278][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 788.669282][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 788.669289][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 788.669293][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 788.669298][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 788.669305][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 788.669310][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 788.669319][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 788.669323][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 788.669330][ C1] ksys_unshare (kernel/fork.c:3121) [ 788.669334][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 788.669337][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 788.669342][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 788.669346][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 788.669349][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 788.669357][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 788.669360][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 788.669366][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 788.669371][ C1] RIP: 0033:0x7f439756d93b [ 788.669375][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 788.669377][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 788.669380][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 788.669382][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 788.669384][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 788.669386][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 788.669387][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 788.670127][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 788.670133][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 788.670136][ C3] softirqs last disabled at (0): 0x0 | [ 788.670147][ C3] Tainted: [L]=SOFTLOCKUP [ 788.670148][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 788.670150][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 788.670157][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 788.670159][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 788.670162][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 788.670164][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 788.670166][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 788.670168][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 788.670170][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 788.670172][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 788.670174][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 788.670177][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 788.670179][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 788.670180][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 788.670182][ C3] PKRU: 55555554 [ 788.670183][ C3] Call Trace: [ 788.670186][ C3] [ 788.670188][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 788.670194][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 788.670199][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 788.670202][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 788.670207][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 788.670214][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 788.670217][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 788.670221][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 788.670224][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 788.670228][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 788.670230][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 788.670233][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 788.670235][ C3] ? xas_alloc (lib/xarray.c:378) [ 788.670240][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 788.670244][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 788.670247][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 788.670250][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 788.670255][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 788.670259][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 788.670265][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 788.670269][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 788.670274][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 788.670280][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 788.670283][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 788.670285][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 788.670289][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 788.670293][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 788.670295][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 788.670302][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 788.670305][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 788.670308][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 788.670312][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 788.670317][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 788.670320][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 788.670323][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 788.670327][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 788.670330][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 788.670334][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 788.670340][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 788.670342][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 788.670348][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 788.670352][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 788.670355][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 788.670360][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 788.670364][ C3] handle_softirqs (kernel/softirq.c:579) [ 788.670370][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 788.670374][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 788.670377][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 788.670381][ C3] [ 788.670382][ C3] [ 788.670383][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 788.670388][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 788.670392][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 788.670394][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 788.670397][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 788.670399][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 788.670401][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 788.670403][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 788.670405][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 788.670409][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 788.670415][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 788.670420][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 788.670424][ C3] ? xas_alloc (lib/xarray.c:378) [ 788.670428][ C3] ? xas_alloc (lib/xarray.c:378) [ 788.670431][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 788.670435][ C3] ? xas_alloc (lib/xarray.c:378) [ 788.670437][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 788.670443][ C3] xas_alloc (lib/xarray.c:378) [ 788.670448][ C3] xas_create (lib/xarray.c:685) [ 788.670454][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 788.670459][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 788.670462][ C3] __xa_store (lib/xarray.c:1703) [ 788.670466][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 788.670471][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 788.670473][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 788.670476][ C3] ? xa_store (lib/xarray.c:1734) [ 788.670481][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 788.670485][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 788.670488][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 788.670492][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 788.670495][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 788.670497][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 788.670501][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 788.670504][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 788.670509][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 788.670513][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 788.670517][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 788.670521][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 788.670525][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 788.670532][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 788.670536][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 788.670540][ C3] ksys_unshare (kernel/fork.c:3121) [ 788.670545][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 788.670548][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 788.670552][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 788.670554][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 788.670558][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 788.670563][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 788.670567][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 788.670572][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 788.670575][ C3] RIP: 0033:0x7f439756d93b [ 788.670579][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 788.670582][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 788.670585][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 788.670587][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 788.670589][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 788.670590][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 788.670592][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 796.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 796.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 796.656148][ C0] softirqs last disabled at (0): 0x0 | [ 796.656161][ C0] Tainted: [L]=SOFTLOCKUP [ 796.656162][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 796.656164][ C0] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 796.656173][ C0] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 796.656176][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 796.656180][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 796.656182][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 796.656184][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 796.656186][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 796.656188][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 796.656189][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 796.656192][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 796.656197][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 796.656198][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 796.656200][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 796.656201][ C0] PKRU: 55555554 [ 796.656203][ C0] Call Trace: [ 796.656206][ C0] [ 796.656209][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 796.656213][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 796.656218][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 796.656222][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 796.656229][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 796.656233][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 796.656235][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 796.656238][ C0] ? xa_store (lib/xarray.c:1734) [ 796.656245][ C0] xa_store (lib/xarray.c:1734) [ 796.656249][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 796.656254][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 796.656259][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 796.656262][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 796.656265][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 796.656272][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 796.656275][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 796.656282][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 796.656286][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 796.656292][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 796.656298][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 796.656303][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 796.656311][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 796.656315][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 796.656322][ C0] ksys_unshare (kernel/fork.c:3121) [ 796.656327][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 796.656330][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 796.656335][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 796.656338][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 796.656342][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 796.656349][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 796.656353][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 796.656359][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 796.656364][ C0] RIP: 0033:0x7f439756d93b [ 796.656368][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 796.656371][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 796.656374][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 796.656376][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 796.656378][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 796.656380][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 796.656382][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 800.669134][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 800.669143][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 800.669146][ C2] softirqs last disabled at (0): 0x0 | [ 800.669158][ C2] Tainted: [L]=SOFTLOCKUP [ 800.669159][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 800.669161][ C2] RIP: 0010:kasan_check_range (mm/kasan/generic.c:103 mm/kasan/generic.c:129 mm/kasan/generic.c:161 mm/kasan/generic.c:180 mm/kasan/generic.c:189) [ 800.669167][ C2] Code: 37 ff 48 89 fd 48 b8 00 00 00 00 00 fc ff df 4d 89 d1 48 c1 ed 03 49 c1 e9 03 48 01 c5 49 01 c1 48 89 e8 49 8d 59 01 48 89 da <48> 29 ea 48 83 fa 10 0f 8e c0 00 00 00 41 89 eb 41 83 e3 07 75 7d All code ======== 0: 37 (bad) 1: ff 48 89 decl -0x77(%rax) 4: fd std 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 4d 89 d1 mov %r10,%r9 12: 48 c1 ed 03 shr $0x3,%rbp 16: 49 c1 e9 03 shr $0x3,%r9 1a: 48 01 c5 add %rax,%rbp 1d: 49 01 c1 add %rax,%r9 20: 48 89 e8 mov %rbp,%rax 23: 49 8d 59 01 lea 0x1(%r9),%rbx 27: 48 89 da mov %rbx,%rdx 2a:* 48 29 ea sub %rbp,%rdx <-- trapping instruction 2d: 48 83 fa 10 cmp $0x10,%rdx 31: 0f 8e c0 00 00 00 jle 0xf7 37: 41 89 eb mov %ebp,%r11d 3a: 41 83 e3 07 and $0x7,%r11d 3e: 75 7d jne 0xbd Code starting with the faulting instruction =========================================== 0: 48 29 ea sub %rbp,%rdx 3: 48 83 fa 10 cmp $0x10,%rdx 7: 0f 8e c0 00 00 00 jle 0xcd d: 41 89 eb mov %ebp,%r11d 10: 41 83 e3 07 and $0x7,%r11d 14: 75 7d jne 0x93 [ 800.669171][ C2] RSP: 0018:ffffc900034d79f8 EFLAGS: 00000282 [ 800.669174][ C2] RAX: fffffbfff77dcb80 RBX: fffffbfff77dcb81 RCX: ffffffffb7cc5ea3 [ 800.669176][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 800.669178][ C2] RBP: fffffbfff77dcb80 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 800.669180][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 800.669182][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 800.669184][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 800.669187][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 800.669192][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 800.669194][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 800.669195][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 800.669197][ C2] PKRU: 55555554 [ 800.669198][ C2] Call Trace: [ 800.669201][ C2] [ 800.669204][ C2] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 800.669212][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 800.669215][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 800.669219][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 800.669223][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 800.669229][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 800.669233][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 800.669236][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 800.669239][ C2] ? xa_store (lib/xarray.c:1734) [ 800.669246][ C2] xa_store (lib/xarray.c:1734) [ 800.669250][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 800.669255][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 800.669260][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 800.669263][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 800.669265][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 800.669271][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 800.669275][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 800.669281][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 800.669285][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 800.669289][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 800.669296][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 800.669300][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 800.669308][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 800.669312][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 800.669317][ C2] ksys_unshare (kernel/fork.c:3121) [ 800.669321][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 800.669325][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 800.669330][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 800.669333][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 800.669336][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 800.669343][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 800.669347][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 800.669352][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 800.669356][ C2] RIP: 0033:0x7f439756d93b [ 800.669360][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 800.669363][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 800.669366][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 800.669368][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 800.669370][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 800.669372][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 800.669374][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 814.038413][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 814.038698][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 814.038952][ C1] NMI backtrace for cpu 1 | [ 814.038967][ C1] Tainted: [L]=SOFTLOCKUP [ 814.038968][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 814.038971][ C1] RIP: 0010:__kasan_check_read (mm/kasan/shadow.c:31) [ 814.038980][ C1] Code: 41 5c e9 7b 44 8d ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 4f f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f All code ======== 0: 41 5c pop %r12 2: e9 7b 44 8d ff jmp 0xffffffffff8d4482 7: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) e: 00 00 00 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop 16: 90 nop 17: 90 nop 18: 90 nop 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: f3 0f 1e fa endbr64 26: 48 8b 0c 24 mov (%rsp),%rcx 2a:* 89 f6 mov %esi,%esi <-- trapping instruction 2c: 31 d2 xor %edx,%edx 2e: e9 4f f0 ff ff jmp 0xfffffffffffff082 33: 66 66 2e 0f 1f 84 00 data16 cs nopw 0x0(%rax,%rax,1) 3a: 00 00 00 00 3e: 0f .byte 0xf 3f: 1f (bad) Code starting with the faulting instruction =========================================== 0: 89 f6 mov %esi,%esi 2: 31 d2 xor %edx,%edx 4: e9 4f f0 ff ff jmp 0xfffffffffffff058 9: 66 66 2e 0f 1f 84 00 data16 cs nopw 0x0(%rax,%rax,1) 10: 00 00 00 00 14: 0f .byte 0xf 15: 1f (bad) [ 814.038982][ C1] RSP: 0018:ffffc900034b7a10 EFLAGS: 00000202 [ 814.038986][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 814.038988][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 814.038990][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 814.038992][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 814.038994][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 814.038995][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 814.038998][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 814.039001][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 814.039003][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 814.039004][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 814.039006][ C1] PKRU: 55555554 [ 814.039007][ C1] Call Trace: [ 814.039010][ C1] [ 814.039011][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 814.039018][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 814.039021][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 814.039025][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 814.039029][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 814.039036][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 814.039039][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 814.039042][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 814.039045][ C1] ? xa_store (lib/xarray.c:1734) [ 814.039052][ C1] xa_store (lib/xarray.c:1734) [ 814.039056][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 814.039062][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 814.039067][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 814.039070][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 814.039073][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 814.039078][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 814.039081][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 814.039089][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 814.039093][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 814.039098][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 814.039105][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 814.039109][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 814.039117][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 814.039121][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 814.039128][ C1] ksys_unshare (kernel/fork.c:3121) [ 814.039134][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 814.039138][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 814.039143][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 814.039146][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 814.039149][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 814.039157][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 814.039160][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 814.039165][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 814.039169][ C1] RIP: 0033:0x7f439756d93b [ 814.039173][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 814.039175][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 814.039179][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 814.039180][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 814.039182][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 814.039184][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 814.039186][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 814.039184][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 814.039186][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 814.039191][ C1] | [ 814.039953][ C3] Tainted: [L]=SOFTLOCKUP [ 814.039954][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 814.039956][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 814.039961][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 814.039963][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 814.039966][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 814.039968][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 814.039970][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 814.039972][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 814.039974][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 814.039975][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 814.039978][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 814.039982][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 814.039984][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 814.039985][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 814.039987][ C3] PKRU: 55555554 [ 814.039988][ C3] Call Trace: [ 814.039989][ C3] [ 814.039990][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 814.039996][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 814.040001][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 814.040004][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 814.040008][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 814.040014][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 814.040017][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 814.040021][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 814.040023][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 814.040027][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 814.040030][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 814.040033][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 814.040036][ C3] ? xas_alloc (lib/xarray.c:378) [ 814.040041][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 814.040044][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 814.040047][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 814.040050][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 814.040056][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 814.040059][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 814.040065][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 814.040068][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 814.040073][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 814.040077][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 814.040080][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 814.040083][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 814.040086][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 814.040089][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 814.040092][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 814.040098][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 814.040101][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 814.040104][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 814.040109][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 814.040112][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 814.040116][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 814.040119][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 814.040123][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 814.040126][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 814.040130][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 814.040134][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 814.040137][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 814.040142][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 814.040146][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 814.040149][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 814.040154][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 814.040158][ C3] handle_softirqs (kernel/softirq.c:579) [ 814.040163][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 814.040166][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 814.040169][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 814.040172][ C3] [ 814.040173][ C3] [ 814.040175][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 814.040179][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 814.040182][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 814.040184][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 814.040186][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 814.040188][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 814.040189][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 814.040191][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 814.040193][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 814.040197][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 814.040202][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 814.040207][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 814.040211][ C3] ? xas_alloc (lib/xarray.c:378) [ 814.040215][ C3] ? xas_alloc (lib/xarray.c:378) [ 814.040217][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 814.040221][ C3] ? xas_alloc (lib/xarray.c:378) [ 814.040224][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 814.040228][ C3] xas_alloc (lib/xarray.c:378) [ 814.040232][ C3] xas_create (lib/xarray.c:685) [ 814.040238][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 814.040242][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 814.040246][ C3] __xa_store (lib/xarray.c:1703) [ 814.040249][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 814.040254][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 814.040256][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 814.040259][ C3] ? xa_store (lib/xarray.c:1734) [ 814.040264][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 814.040268][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 814.040271][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 814.040275][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 814.040278][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 814.040280][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 814.040284][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 814.040287][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 814.040292][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 814.040295][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 814.040299][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 814.040303][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 814.040307][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 814.040313][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 814.040316][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 814.040321][ C3] ksys_unshare (kernel/fork.c:3121) [ 814.040326][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 814.040329][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 814.040332][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 814.040334][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 814.040338][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 814.040343][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 814.040346][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 814.040351][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 814.040353][ C3] RIP: 0033:0x7f439756d93b [ 814.040358][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 814.040360][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 814.040363][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 814.040365][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 814.040367][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 814.040368][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 814.040370][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 824.656134][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 824.656142][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 824.656146][ C0] softirqs last disabled at (0): 0x0 | [ 824.656159][ C0] Tainted: [L]=SOFTLOCKUP [ 824.656160][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 824.656162][ C0] RIP: 0010:__kasan_check_read (mm/kasan/shadow.c:30) [ 824.656170][ C0] Code: c7 c7 b8 57 8c b8 5b 5d 41 5c e9 7b 44 8d ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 0c 24 89 f6 31 d2 e9 4f f0 ff ff 66 66 2e 0f 1f All code ======== 0: c7 c7 b8 57 8c b8 mov $0xb88c57b8,%edi 6: 5b pop %rbx 7: 5d pop %rbp 8: 41 5c pop %r12 a: e9 7b 44 8d ff jmp 0xffffffffff8d448a f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 16: 00 00 00 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 90 nop 27: 90 nop 28: 90 nop 29: 90 nop 2a:* f3 0f 1e fa endbr64 <-- trapping instruction 2e: 48 8b 0c 24 mov (%rsp),%rcx 32: 89 f6 mov %esi,%esi 34: 31 d2 xor %edx,%edx 36: e9 4f f0 ff ff jmp 0xfffffffffffff08a 3b: 66 data16 3c: 66 data16 3d: 2e cs 3e: 0f .byte 0xf 3f: 1f (bad) Code starting with the faulting instruction =========================================== 0: f3 0f 1e fa endbr64 4: 48 8b 0c 24 mov (%rsp),%rcx 8: 89 f6 mov %esi,%esi a: 31 d2 xor %edx,%edx c: e9 4f f0 ff ff jmp 0xfffffffffffff060 11: 66 data16 12: 66 data16 13: 2e cs 14: 0f .byte 0xf 15: 1f (bad) [ 824.656173][ C0] RSP: 0018:ffffc900034c7a10 EFLAGS: 00000202 [ 824.656177][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 824.656179][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 824.656181][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 824.656183][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 824.656186][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 824.656187][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 824.656190][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 824.656194][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 824.656195][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 824.656197][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 824.656198][ C0] PKRU: 55555554 [ 824.656199][ C0] Call Trace: [ 824.656203][ C0] [ 824.656204][ C0] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 824.656214][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 824.656217][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 824.656222][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 824.656226][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 824.656234][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 824.656237][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 824.656240][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 824.656243][ C0] ? xa_store (lib/xarray.c:1734) [ 824.656250][ C0] xa_store (lib/xarray.c:1734) [ 824.656254][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 824.656260][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 824.656265][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 824.656268][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 824.656271][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 824.656277][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 824.656281][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 824.656288][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 824.656292][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 824.656297][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 824.656305][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 824.656310][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 824.656319][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 824.656323][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 824.656329][ C0] ksys_unshare (kernel/fork.c:3121) [ 824.656334][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 824.656337][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 824.656343][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 824.656346][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 824.656350][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 824.656357][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 824.656360][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 824.656366][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 824.656371][ C0] RIP: 0033:0x7f439756d93b [ 824.656375][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 824.656377][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 824.656380][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 824.656382][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 824.656384][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 824.656386][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 824.656388][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 828.669132][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 828.669139][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 828.669143][ C2] softirqs last disabled at (0): 0x0 | [ 828.669155][ C2] Tainted: [L]=SOFTLOCKUP [ 828.669156][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 828.669158][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 828.669166][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 828.669169][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 828.669172][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 828.669174][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 828.669176][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 828.669178][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 828.669180][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 828.669182][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 828.669184][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 828.669189][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 828.669191][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 828.669192][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 828.669194][ C2] PKRU: 55555554 [ 828.669195][ C2] Call Trace: [ 828.669200][ C2] [ 828.669203][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 828.669207][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 828.669211][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 828.669215][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 828.669222][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 828.669225][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 828.669228][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 828.669231][ C2] ? xa_store (lib/xarray.c:1734) [ 828.669237][ C2] xa_store (lib/xarray.c:1734) [ 828.669242][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 828.669247][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 828.669252][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 828.669255][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 828.669257][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 828.669263][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 828.669266][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 828.669273][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 828.669277][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 828.669281][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 828.669288][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 828.669293][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 828.669300][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 828.669304][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 828.669310][ C2] ksys_unshare (kernel/fork.c:3121) [ 828.669315][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 828.669318][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 828.669323][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 828.669326][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 828.669330][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 828.669336][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 828.669340][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 828.669345][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 828.669350][ C2] RIP: 0033:0x7f439756d93b [ 828.669354][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 828.669357][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 828.669360][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 828.669362][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 828.669364][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 828.669366][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 828.669367][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 840.669139][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 840.669149][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 840.669152][ C1] softirqs last disabled at (0): 0x0 | [ 840.669165][ C1] Tainted: [L]=SOFTLOCKUP [ 840.669167][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 840.669170][ C1] RIP: 0010:kasan_check_range (mm/kasan/generic.c:174 mm/kasan/generic.c:189) [ 840.669177][ C1] Code: 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 <48> 01 f0 55 53 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe All code ======== 0: 0f 1f 40 00 nopl 0x0(%rax) 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 90 nop 11: 90 nop 12: 90 nop 13: 90 nop 14: 66 0f 1f 00 nopw (%rax) 18: 48 85 f6 test %rsi,%rsi 1b: 0f 84 5e 01 00 00 je 0x17f 21: 48 89 f8 mov %rdi,%rax 24: 41 54 push %r12 26: 44 0f b6 c2 movzbl %dl,%r8d 2a:* 48 01 f0 add %rsi,%rax <-- trapping instruction 2d: 55 push %rbp 2e: 53 push %rbx 2f: 72 14 jb 0x45 31: eb 26 jmp 0x59 33: cc int3 34: cc int3 35: cc int3 36: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 3d: ff ff fe Code starting with the faulting instruction =========================================== 0: 48 01 f0 add %rsi,%rax 3: 55 push %rbp 4: 53 push %rbx 5: 72 14 jb 0x1b 7: eb 26 jmp 0x2f 9: cc int3 a: cc int3 b: cc int3 c: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 13: ff ff fe [ 840.669179][ C1] RSP: 0018:ffffc900034b7a08 EFLAGS: 00000202 [ 840.669182][ C1] RAX: ffffffffbbee5c00 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 840.669185][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 840.669187][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 840.669189][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 840.669191][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 840.669192][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 840.669195][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 840.669199][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 840.669201][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 840.669202][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 840.669203][ C1] PKRU: 55555554 [ 840.669205][ C1] Call Trace: [ 840.669208][ C1] [ 840.669211][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 840.669222][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 840.669225][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 840.669230][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 840.669234][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 840.669241][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 840.669245][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 840.669247][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 840.669250][ C1] ? xa_store (lib/xarray.c:1734) [ 840.669257][ C1] xa_store (lib/xarray.c:1734) [ 840.669262][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 840.669268][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 840.669273][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 840.669276][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 840.669279][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 840.669285][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 840.669289][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 840.669296][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 840.669300][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 840.669305][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 840.669312][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 840.669317][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 840.669327][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 840.669331][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 840.669337][ C1] ksys_unshare (kernel/fork.c:3121) [ 840.669342][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 840.669345][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 840.669350][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 840.669353][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 840.669357][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 840.669364][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 840.669368][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 840.669374][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 840.669379][ C1] RIP: 0033:0x7f439756d93b [ 840.669383][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 840.669385][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 840.669388][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 840.669390][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 840.669392][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 840.669393][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 840.669395][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 840.670127][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 840.670133][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 840.670136][ C3] softirqs last disabled at (0): 0x0 | [ 840.670146][ C3] Tainted: [L]=SOFTLOCKUP [ 840.670148][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 840.670149][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 840.670155][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 840.670158][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 840.670161][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 840.670163][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 840.670164][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 840.670166][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 840.670168][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 840.670170][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 840.670172][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 840.670175][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 840.670177][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 840.670178][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 840.670180][ C3] PKRU: 55555554 [ 840.670181][ C3] Call Trace: [ 840.670184][ C3] [ 840.670185][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 840.670191][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 840.670196][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 840.670199][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 840.670204][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 840.670210][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 840.670213][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 840.670217][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 840.670220][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 840.670223][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 840.670225][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 840.670228][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 840.670230][ C3] ? xas_alloc (lib/xarray.c:378) [ 840.670235][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 840.670239][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 840.670242][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 840.670245][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 840.670250][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 840.670255][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 840.670260][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 840.670264][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 840.670269][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 840.670273][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 840.670276][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 840.670279][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 840.670282][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 840.670286][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 840.670288][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 840.670294][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 840.670297][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 840.670300][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 840.670304][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 840.670308][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 840.670311][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 840.670314][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 840.670317][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 840.670320][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 840.670324][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 840.670329][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 840.670332][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 840.670337][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 840.670342][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 840.670345][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 840.670350][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 840.670354][ C3] handle_softirqs (kernel/softirq.c:579) [ 840.670360][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 840.670364][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 840.670367][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 840.670371][ C3] [ 840.670372][ C3] [ 840.670374][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 840.670378][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 840.670382][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 840.670384][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 840.670387][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 840.670389][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 840.670391][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 840.670393][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 840.670395][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 840.670399][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 840.670404][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 840.670410][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 840.670413][ C3] ? xas_alloc (lib/xarray.c:378) [ 840.670418][ C3] ? xas_alloc (lib/xarray.c:378) [ 840.670421][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 840.670425][ C3] ? xas_alloc (lib/xarray.c:378) [ 840.670427][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 840.670433][ C3] xas_alloc (lib/xarray.c:378) [ 840.670437][ C3] xas_create (lib/xarray.c:685) [ 840.670443][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 840.670447][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 840.670451][ C3] __xa_store (lib/xarray.c:1703) [ 840.670455][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 840.670459][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 840.670462][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 840.670465][ C3] ? xa_store (lib/xarray.c:1734) [ 840.670470][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 840.670473][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 840.670476][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 840.670481][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 840.670484][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 840.670487][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 840.670491][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 840.670494][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 840.670499][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 840.670503][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 840.670507][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 840.670511][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 840.670515][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 840.670522][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 840.670526][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 840.670531][ C3] ksys_unshare (kernel/fork.c:3121) [ 840.670535][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 840.670539][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 840.670542][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 840.670545][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 840.670548][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 840.670554][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 840.670557][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 840.670562][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 840.670565][ C3] RIP: 0033:0x7f439756d93b [ 840.670569][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 840.670572][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 840.670574][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 840.670576][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 840.670578][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 840.670579][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 840.670581][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 852.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 852.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 852.656147][ C0] softirqs last disabled at (0): 0x0 | [ 852.656160][ C0] Tainted: [L]=SOFTLOCKUP [ 852.656161][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 852.656164][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 852.656173][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 852.656176][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 852.656180][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 852.656182][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 852.656184][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 852.656186][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 852.656188][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 852.656190][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 852.656192][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 852.656196][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 852.656197][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 852.656199][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 852.656200][ C0] PKRU: 55555554 [ 852.656201][ C0] Call Trace: [ 852.656205][ C0] [ 852.656209][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 852.656213][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 852.656218][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 852.656223][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 852.656230][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 852.656234][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 852.656237][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 852.656240][ C0] ? xa_store (lib/xarray.c:1734) [ 852.656247][ C0] xa_store (lib/xarray.c:1734) [ 852.656251][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 852.656257][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 852.656262][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 852.656265][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 852.656268][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 852.656275][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 852.656279][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 852.656286][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 852.656290][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 852.656295][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 852.656303][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 852.656307][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 852.656316][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 852.656320][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 852.656326][ C0] ksys_unshare (kernel/fork.c:3121) [ 852.656331][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 852.656334][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 852.656340][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 852.656343][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 852.656346][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 852.656354][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 852.656357][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 852.656363][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 852.656369][ C0] RIP: 0033:0x7f439756d93b [ 852.656373][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 852.656376][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 852.656379][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 852.656381][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 852.656383][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 852.656385][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 852.656387][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 856.669143][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 856.669153][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 856.669156][ C2] softirqs last disabled at (0): 0x0 | [ 856.669169][ C2] Tainted: [L]=SOFTLOCKUP [ 856.669171][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 856.669173][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 856.669183][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 856.669186][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 856.669189][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 856.669191][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 856.669193][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 856.669195][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 856.669197][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 856.669199][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 856.669202][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 856.669205][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 856.669207][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 856.669208][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 856.669210][ C2] PKRU: 55555554 [ 856.669211][ C2] Call Trace: [ 856.669216][ C2] [ 856.669220][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 856.669224][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 856.669230][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 856.669234][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 856.669241][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 856.669245][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 856.669248][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 856.669250][ C2] ? xa_store (lib/xarray.c:1734) [ 856.669257][ C2] xa_store (lib/xarray.c:1734) [ 856.669262][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 856.669268][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 856.669273][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 856.669276][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 856.669279][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 856.669285][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 856.669289][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 856.669296][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 856.669300][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 856.669305][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 856.669312][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 856.669317][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 856.669326][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 856.669330][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 856.669336][ C2] ksys_unshare (kernel/fork.c:3121) [ 856.669341][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 856.669345][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 856.669350][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 856.669353][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 856.669356][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 856.669364][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 856.669368][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 856.669374][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 856.669379][ C2] RIP: 0033:0x7f439756d93b [ 856.669385][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 856.669388][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 856.669391][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 856.669393][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 856.669395][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 856.669397][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 856.669399][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 868.669141][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 868.669151][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 868.669155][ C1] softirqs last disabled at (0): 0x0 | [ 868.669167][ C1] Tainted: [L]=SOFTLOCKUP [ 868.669169][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 868.669172][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 868.669182][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 868.669185][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 868.669189][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 868.669191][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 868.669193][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 868.669195][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 868.669197][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 868.669199][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 868.669201][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 868.669204][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 868.669206][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 868.669208][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 868.669209][ C1] PKRU: 55555554 [ 868.669210][ C1] Call Trace: [ 868.669215][ C1] [ 868.669219][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 868.669222][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 868.669229][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 868.669233][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 868.669241][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 868.669245][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 868.669248][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 868.669250][ C1] ? xa_store (lib/xarray.c:1734) [ 868.669257][ C1] xa_store (lib/xarray.c:1734) [ 868.669262][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 868.669269][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 868.669274][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 868.669277][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 868.669279][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 868.669287][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 868.669290][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 868.669297][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 868.669301][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 868.669306][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 868.669314][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 868.669318][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 868.669327][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 868.669331][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 868.669338][ C1] ksys_unshare (kernel/fork.c:3121) [ 868.669343][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 868.669346][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 868.669351][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 868.669354][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 868.669358][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 868.669366][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 868.669369][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 868.669376][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 868.669381][ C1] RIP: 0033:0x7f439756d93b [ 868.669387][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 868.669389][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 868.669392][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 868.669394][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 868.669396][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 868.669398][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 868.669400][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 868.670127][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 868.670133][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 868.670136][ C3] softirqs last disabled at (0): 0x0 | [ 868.670147][ C3] Tainted: [L]=SOFTLOCKUP [ 868.670148][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 868.670150][ C3] RIP: 0010:__kasan_check_read (mm/kasan/shadow.c:30) [ 868.670156][ C3] Code: c7 c7 b8 57 8c b8 5b 5d 41 5c e9 7b 44 8d ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 0c 24 89 f6 31 d2 e9 4f f0 ff ff 66 66 2e 0f 1f All code ======== 0: c7 c7 b8 57 8c b8 mov $0xb88c57b8,%edi 6: 5b pop %rbx 7: 5d pop %rbp 8: 41 5c pop %r12 a: e9 7b 44 8d ff jmp 0xffffffffff8d448a f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 16: 00 00 00 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 90 nop 27: 90 nop 28: 90 nop 29: 90 nop 2a:* f3 0f 1e fa endbr64 <-- trapping instruction 2e: 48 8b 0c 24 mov (%rsp),%rcx 32: 89 f6 mov %esi,%esi 34: 31 d2 xor %edx,%edx 36: e9 4f f0 ff ff jmp 0xfffffffffffff08a 3b: 66 data16 3c: 66 data16 3d: 2e cs 3e: 0f .byte 0xf 3f: 1f (bad) Code starting with the faulting instruction =========================================== 0: f3 0f 1e fa endbr64 4: 48 8b 0c 24 mov (%rsp),%rcx 8: 89 f6 mov %esi,%esi a: 31 d2 xor %edx,%edx c: e9 4f f0 ff ff jmp 0xfffffffffffff060 11: 66 data16 12: 66 data16 13: 2e cs 14: 0f .byte 0xf 15: 1f (bad) [ 868.670159][ C3] RSP: 0018:ffffc90000270a40 EFLAGS: 00000202 [ 868.670162][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 868.670164][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 868.670166][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 868.670168][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 868.670170][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 868.670172][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 868.670174][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 868.670178][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 868.670179][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 868.670181][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 868.670182][ C3] PKRU: 55555554 [ 868.670183][ C3] Call Trace: [ 868.670186][ C3] [ 868.670188][ C3] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 868.670193][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 868.670198][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 868.670203][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 868.670206][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 868.670211][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 868.670216][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 868.670220][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 868.670223][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 868.670226][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 868.670230][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 868.670232][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 868.670235][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 868.670237][ C3] ? xas_alloc (lib/xarray.c:378) [ 868.670242][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 868.670246][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 868.670249][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 868.670252][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 868.670257][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 868.670261][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 868.670267][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 868.670270][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 868.670276][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 868.670281][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 868.670284][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 868.670287][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 868.670290][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 868.670293][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 868.670296][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 868.670302][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 868.670304][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 868.670307][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 868.670312][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 868.670316][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 868.670319][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 868.670322][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 868.670325][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 868.670329][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 868.670333][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 868.670337][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 868.670340][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 868.670345][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 868.670349][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 868.670352][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 868.670357][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 868.670361][ C3] handle_softirqs (kernel/softirq.c:579) [ 868.670367][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 868.670371][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 868.670374][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 868.670378][ C3] [ 868.670380][ C3] [ 868.670381][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 868.670386][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 868.670389][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 868.670391][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 868.670394][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 868.670396][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 868.670398][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 868.670400][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 868.670401][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 868.670405][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 868.670411][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 868.670417][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 868.670421][ C3] ? xas_alloc (lib/xarray.c:378) [ 868.670425][ C3] ? xas_alloc (lib/xarray.c:378) [ 868.670428][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 868.670432][ C3] ? xas_alloc (lib/xarray.c:378) [ 868.670434][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 868.670439][ C3] xas_alloc (lib/xarray.c:378) [ 868.670444][ C3] xas_create (lib/xarray.c:685) [ 868.670450][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 868.670455][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 868.670458][ C3] __xa_store (lib/xarray.c:1703) [ 868.670462][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 868.670467][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 868.670469][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 868.670472][ C3] ? xa_store (lib/xarray.c:1734) [ 868.670477][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 868.670481][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 868.670484][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 868.670489][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 868.670492][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 868.670494][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 868.670498][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 868.670502][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 868.670506][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 868.670510][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 868.670515][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 868.670518][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 868.670523][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 868.670529][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 868.670533][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 868.670538][ C3] ksys_unshare (kernel/fork.c:3121) [ 868.670541][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 868.670545][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 868.670548][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 868.670550][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 868.670553][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 868.670559][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 868.670563][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 868.670567][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 868.670570][ C3] RIP: 0033:0x7f439756d93b [ 868.670574][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 868.670577][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 868.670580][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 868.670582][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 868.670584][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 868.670585][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 868.670587][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 880.656134][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 880.656143][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 880.656146][ C0] softirqs last disabled at (0): 0x0 | [ 880.656159][ C0] Tainted: [L]=SOFTLOCKUP [ 880.656161][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 880.656163][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 880.656171][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 880.656174][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 880.656177][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 880.656179][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 880.656181][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 880.656184][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 880.656186][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 880.656188][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 880.656190][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 880.656194][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 880.656196][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 880.656198][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 880.656199][ C0] PKRU: 55555554 [ 880.656200][ C0] Call Trace: [ 880.656204][ C0] [ 880.656207][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 880.656211][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 880.656215][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 880.656220][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 880.656228][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 880.656231][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 880.656233][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 880.656236][ C0] ? xa_store (lib/xarray.c:1734) [ 880.656243][ C0] xa_store (lib/xarray.c:1734) [ 880.656248][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 880.656253][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 880.656258][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 880.656261][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 880.656264][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 880.656270][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 880.656274][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 880.656281][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 880.656285][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 880.656290][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 880.656297][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 880.656302][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 880.656310][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 880.656314][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 880.656320][ C0] ksys_unshare (kernel/fork.c:3121) [ 880.656325][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 880.656328][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 880.656333][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 880.656337][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 880.656340][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 880.656347][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 880.656351][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 880.656357][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 880.656362][ C0] RIP: 0033:0x7f439756d93b [ 880.656367][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 880.656369][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 880.656373][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 880.656375][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 880.656376][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 880.656379][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 880.656380][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 884.669142][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 884.669152][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 884.669156][ C2] softirqs last disabled at (0): 0x0 | [ 884.669169][ C2] Tainted: [L]=SOFTLOCKUP [ 884.669171][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 884.669173][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 884.669183][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 884.669186][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 884.669190][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 884.669192][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 884.669194][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 884.669196][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 884.669198][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 884.669200][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 884.669202][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 884.669206][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 884.669208][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 884.669209][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 884.669210][ C2] PKRU: 55555554 [ 884.669212][ C2] Call Trace: [ 884.669216][ C2] [ 884.669220][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 884.669225][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 884.669230][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 884.669234][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 884.669242][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 884.669246][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 884.669249][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 884.669252][ C2] ? xa_store (lib/xarray.c:1734) [ 884.669259][ C2] xa_store (lib/xarray.c:1734) [ 884.669263][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 884.669269][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 884.669274][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 884.669277][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 884.669280][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 884.669287][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 884.669290][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 884.669298][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 884.669302][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 884.669306][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 884.669314][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 884.669319][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 884.669328][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 884.669332][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 884.669339][ C2] ksys_unshare (kernel/fork.c:3121) [ 884.669344][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 884.669347][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 884.669352][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 884.669356][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 884.669359][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 884.669367][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 884.669371][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 884.669376][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 884.669382][ C2] RIP: 0033:0x7f439756d93b [ 884.669387][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 884.669389][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 884.669392][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 884.669394][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 884.669396][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 884.669398][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 884.669400][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 892.052072][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 892.052357][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 892.052595][ C1] NMI backtrace for cpu 1 | [ 892.052610][ C1] Tainted: [L]=SOFTLOCKUP [ 892.052612][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 892.052614][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 892.052623][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 892.052626][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 892.052629][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 892.052631][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 892.052633][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 892.052635][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 892.052638][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 892.052639][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 892.052642][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 892.052645][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 892.052647][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 892.052648][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 892.052650][ C1] PKRU: 55555554 [ 892.052651][ C1] Call Trace: [ 892.052653][ C1] [ 892.052656][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 892.052660][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 892.052665][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 892.052668][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 892.052676][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 892.052679][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 892.052682][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 892.052685][ C1] ? xa_store (lib/xarray.c:1734) [ 892.052692][ C1] xa_store (lib/xarray.c:1734) [ 892.052696][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 892.052702][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 892.052707][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 892.052710][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 892.052713][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 892.052718][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 892.052721][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 892.052729][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 892.052733][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 892.052738][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 892.052745][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 892.052749][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 892.052757][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 892.052761][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 892.052768][ C1] ksys_unshare (kernel/fork.c:3121) [ 892.052775][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 892.052778][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 892.052783][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 892.052786][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 892.052790][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 892.052798][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 892.052802][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 892.052808][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 892.052812][ C1] RIP: 0033:0x7f439756d93b [ 892.052817][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 892.052820][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 892.052823][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 892.052825][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 892.052827][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 892.052829][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 892.052830][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 892.052829][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 892.052830][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 892.052836][ C1] | [ 892.053597][ C3] Tainted: [L]=SOFTLOCKUP [ 892.053598][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 892.053600][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 892.053605][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 892.053608][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 892.053611][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 892.053613][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 892.053615][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 892.053616][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 892.053618][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 892.053620][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 892.053623][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 892.053626][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 892.053628][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 892.053630][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 892.053631][ C3] PKRU: 55555554 [ 892.053632][ C3] Call Trace: [ 892.053634][ C3] [ 892.053635][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 892.053641][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 892.053646][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 892.053649][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 892.053653][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 892.053658][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 892.053661][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 892.053665][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 892.053668][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 892.053671][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 892.053674][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 892.053676][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 892.053679][ C3] ? xas_alloc (lib/xarray.c:378) [ 892.053684][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 892.053687][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 892.053690][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 892.053693][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 892.053699][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 892.053702][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 892.053708][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 892.053712][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 892.053717][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 892.053721][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 892.053724][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 892.053727][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 892.053730][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 892.053733][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 892.053735][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 892.053742][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 892.053745][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 892.053748][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 892.053752][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 892.053756][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 892.053759][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 892.053761][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 892.053765][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 892.053768][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 892.053773][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 892.053777][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 892.053779][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 892.053784][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 892.053788][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 892.053792][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 892.053797][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 892.053801][ C3] handle_softirqs (kernel/softirq.c:579) [ 892.053806][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 892.053809][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 892.053813][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 892.053816][ C3] [ 892.053817][ C3] [ 892.053818][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 892.053822][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 892.053825][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 892.053827][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 892.053830][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 892.053831][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 892.053833][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 892.053834][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 892.053836][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 892.053840][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 892.053845][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 892.053850][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 892.053854][ C3] ? xas_alloc (lib/xarray.c:378) [ 892.053858][ C3] ? xas_alloc (lib/xarray.c:378) [ 892.053861][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 892.053865][ C3] ? xas_alloc (lib/xarray.c:378) [ 892.053867][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 892.053872][ C3] xas_alloc (lib/xarray.c:378) [ 892.053877][ C3] xas_create (lib/xarray.c:685) [ 892.053883][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 892.053887][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 892.053890][ C3] __xa_store (lib/xarray.c:1703) [ 892.053894][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 892.053899][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 892.053901][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 892.053904][ C3] ? xa_store (lib/xarray.c:1734) [ 892.053909][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 892.053912][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 892.053915][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 892.053920][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 892.053922][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 892.053925][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 892.053929][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 892.053932][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 892.053936][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 892.053940][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 892.053944][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 892.053948][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 892.053952][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 892.053958][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 892.053961][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 892.053966][ C3] ksys_unshare (kernel/fork.c:3121) [ 892.053970][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 892.053973][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 892.053977][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 892.053979][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 892.053982][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 892.053988][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 892.053991][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 892.053996][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 892.053999][ C3] RIP: 0033:0x7f439756d93b [ 892.054003][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 892.054005][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 892.054008][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 892.054009][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 892.054011][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 892.054012][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 892.054014][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 908.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 908.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 908.656148][ C0] softirqs last disabled at (0): 0x0 | [ 908.656160][ C0] Tainted: [L]=SOFTLOCKUP [ 908.656162][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 908.656164][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 908.656174][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 908.656177][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 908.656180][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 908.656182][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 908.656184][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 908.656186][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 908.656188][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 908.656190][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 908.656192][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 908.656196][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 908.656198][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 908.656199][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 908.656201][ C0] PKRU: 55555554 [ 908.656202][ C0] Call Trace: [ 908.656206][ C0] [ 908.656209][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 908.656213][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 908.656218][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 908.656223][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 908.656231][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 908.656234][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 908.656237][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 908.656240][ C0] ? xa_store (lib/xarray.c:1734) [ 908.656247][ C0] xa_store (lib/xarray.c:1734) [ 908.656251][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 908.656257][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 908.656262][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 908.656265][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 908.656267][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 908.656274][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 908.656277][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 908.656285][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 908.656288][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 908.656294][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 908.656301][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 908.656305][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 908.656314][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 908.656318][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 908.656325][ C0] ksys_unshare (kernel/fork.c:3121) [ 908.656330][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 908.656333][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 908.656338][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 908.656341][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 908.656345][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 908.656352][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 908.656356][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 908.656362][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 908.656367][ C0] RIP: 0033:0x7f439756d93b [ 908.656370][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 908.656373][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 908.656376][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 908.656378][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 908.656380][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 908.656382][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 908.656384][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 912.669144][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 912.669155][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 912.669159][ C2] softirqs last disabled at (0): 0x0 | [ 912.669173][ C2] Tainted: [L]=SOFTLOCKUP [ 912.669175][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 912.669178][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 912.669188][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 912.669191][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 912.669194][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 912.669196][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 912.669198][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 912.669200][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 912.669202][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 912.669204][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 912.669206][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 912.669210][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 912.669212][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 912.669213][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 912.669214][ C2] PKRU: 55555554 [ 912.669216][ C2] Call Trace: [ 912.669220][ C2] [ 912.669225][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 912.669229][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 912.669234][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 912.669239][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 912.669247][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 912.669251][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 912.669254][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 912.669257][ C2] ? xa_store (lib/xarray.c:1734) [ 912.669264][ C2] xa_store (lib/xarray.c:1734) [ 912.669269][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 912.669275][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 912.669284][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 912.669289][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 912.669291][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 912.669298][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 912.669301][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 912.669310][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 912.669313][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 912.669318][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 912.669326][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 912.669330][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 912.669340][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 912.669344][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 912.669351][ C2] ksys_unshare (kernel/fork.c:3121) [ 912.669356][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 912.669359][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 912.669364][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 912.669367][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 912.669371][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 912.669378][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 912.669382][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 912.669387][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 912.669393][ C2] RIP: 0033:0x7f439756d93b [ 912.669398][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 912.669400][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 912.669404][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 912.669406][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 912.669407][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 912.669409][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 912.669411][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 916.669139][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 916.669149][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 916.669153][ C1] softirqs last disabled at (0): 0x0 | [ 916.669166][ C1] Tainted: [L]=SOFTLOCKUP [ 916.669167][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 916.669170][ C1] RIP: 0010:__kasan_check_read (mm/kasan/shadow.c:30) [ 916.669178][ C1] Code: c7 c7 b8 57 8c b8 5b 5d 41 5c e9 7b 44 8d ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 0c 24 89 f6 31 d2 e9 4f f0 ff ff 66 66 2e 0f 1f All code ======== 0: c7 c7 b8 57 8c b8 mov $0xb88c57b8,%edi 6: 5b pop %rbx 7: 5d pop %rbp 8: 41 5c pop %r12 a: e9 7b 44 8d ff jmp 0xffffffffff8d448a f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 16: 00 00 00 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 90 nop 27: 90 nop 28: 90 nop 29: 90 nop 2a:* f3 0f 1e fa endbr64 <-- trapping instruction 2e: 48 8b 0c 24 mov (%rsp),%rcx 32: 89 f6 mov %esi,%esi 34: 31 d2 xor %edx,%edx 36: e9 4f f0 ff ff jmp 0xfffffffffffff08a 3b: 66 data16 3c: 66 data16 3d: 2e cs 3e: 0f .byte 0xf 3f: 1f (bad) Code starting with the faulting instruction =========================================== 0: f3 0f 1e fa endbr64 4: 48 8b 0c 24 mov (%rsp),%rcx 8: 89 f6 mov %esi,%esi a: 31 d2 xor %edx,%edx c: e9 4f f0 ff ff jmp 0xfffffffffffff060 11: 66 data16 12: 66 data16 13: 2e cs 14: 0f .byte 0xf 15: 1f (bad) [ 916.669181][ C1] RSP: 0018:ffffc900034b7a10 EFLAGS: 00000202 [ 916.669184][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 916.669186][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 916.669188][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 916.669189][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 916.669192][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 916.669194][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 916.669196][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 916.669199][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 916.669201][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 916.669203][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 916.669204][ C1] PKRU: 55555554 [ 916.669205][ C1] Call Trace: [ 916.669210][ C1] [ 916.669212][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 916.669224][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 916.669227][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 916.669233][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 916.669237][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 916.669245][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 916.669248][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 916.669251][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 916.669254][ C1] ? xa_store (lib/xarray.c:1734) [ 916.669261][ C1] xa_store (lib/xarray.c:1734) [ 916.669265][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 916.669271][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 916.669276][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 916.669279][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 916.669282][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 916.669289][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 916.669292][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 916.669300][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 916.669304][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 916.669309][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 916.669316][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 916.669321][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 916.669329][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 916.669333][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 916.669340][ C1] ksys_unshare (kernel/fork.c:3121) [ 916.669345][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 916.669349][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 916.669354][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 916.669357][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 916.669361][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 916.669368][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 916.669372][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 916.669378][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 916.669384][ C1] RIP: 0033:0x7f439756d93b [ 916.669390][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 916.669392][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 916.669395][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 916.669397][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 916.669399][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 916.669401][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 916.669403][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 916.670129][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 916.670136][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 916.670139][ C3] softirqs last disabled at (0): 0x0 | [ 916.670150][ C3] Tainted: [L]=SOFTLOCKUP [ 916.670151][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 916.670153][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:104 kernel/locking/qspinlock.c:141) [ 916.670159][ C3] Code: c6 41 83 c5 03 be 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 84 c0 0f 85 8d 07 00 00 8b 45 00 89 44 24 40 <85> c0 0f 85 6e 01 00 00 48 89 ef be 04 00 00 00 e8 60 b8 c7 fd be All code ======== 0: c6 41 83 c5 movb $0xc5,-0x7d(%rcx) 4: 03 be 04 00 00 00 add 0x4(%rsi),%edi a: 48 89 ef mov %rbp,%rdi d: e8 5d b8 c7 fd call 0xfffffffffdc7b86f 12: 41 0f b6 06 movzbl (%r14),%eax 16: 41 38 c5 cmp %al,%r13b 19: 7c 08 jl 0x23 1b: 84 c0 test %al,%al 1d: 0f 85 8d 07 00 00 jne 0x7b0 23: 8b 45 00 mov 0x0(%rbp),%eax 26: 89 44 24 40 mov %eax,0x40(%rsp) 2a:* 85 c0 test %eax,%eax <-- trapping instruction 2c: 0f 85 6e 01 00 00 jne 0x1a0 32: 48 89 ef mov %rbp,%rdi 35: be 04 00 00 00 mov $0x4,%esi 3a: e8 60 b8 c7 fd call 0xfffffffffdc7b89f 3f: be .byte 0xbe Code starting with the faulting instruction =========================================== 0: 85 c0 test %eax,%eax 2: 0f 85 6e 01 00 00 jne 0x176 8: 48 89 ef mov %rbp,%rdi b: be 04 00 00 00 mov $0x4,%esi 10: e8 60 b8 c7 fd call 0xfffffffffdc7b875 15: be .byte 0xbe [ 916.670162][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000246 [ 916.670165][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 916.670167][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 916.670169][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 916.670171][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 916.670173][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 916.670175][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 916.670177][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 916.670181][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 916.670183][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 916.670184][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 916.670185][ C3] PKRU: 55555554 [ 916.670187][ C3] Call Trace: [ 916.670189][ C3] [ 916.670191][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 916.670197][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 916.670203][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 916.670206][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 916.670212][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 916.670217][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 916.670220][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 916.670224][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 916.670227][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 916.670231][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 916.670233][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 916.670236][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 916.670238][ C3] ? xas_alloc (lib/xarray.c:378) [ 916.670243][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 916.670248][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 916.670251][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 916.670254][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 916.670259][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 916.670264][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 916.670269][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 916.670274][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 916.670279][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 916.670284][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 916.670287][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 916.670290][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 916.670294][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 916.670297][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 916.670300][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 916.670307][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 916.670310][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 916.670313][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 916.670318][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 916.670322][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 916.670326][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 916.670328][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 916.670332][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 916.670336][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 916.670340][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 916.670345][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 916.670347][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 916.670353][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 916.670357][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 916.670361][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 916.670365][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 916.670370][ C3] handle_softirqs (kernel/softirq.c:579) [ 916.670376][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 916.670379][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 916.670383][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 916.670387][ C3] [ 916.670388][ C3] [ 916.670389][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 916.670394][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 916.670397][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 916.670399][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 916.670402][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 916.670404][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 916.670406][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 916.670408][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 916.670409][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 916.670413][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 916.670419][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 916.670425][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 916.670429][ C3] ? xas_alloc (lib/xarray.c:378) [ 916.670433][ C3] ? xas_alloc (lib/xarray.c:378) [ 916.670436][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 916.670440][ C3] ? xas_alloc (lib/xarray.c:378) [ 916.670442][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 916.670447][ C3] xas_alloc (lib/xarray.c:378) [ 916.670452][ C3] xas_create (lib/xarray.c:685) [ 916.670459][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 916.670463][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 916.670467][ C3] __xa_store (lib/xarray.c:1703) [ 916.670471][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 916.670475][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 916.670478][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 916.670481][ C3] ? xa_store (lib/xarray.c:1734) [ 916.670487][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 916.670490][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 916.670493][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 916.670499][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 916.670502][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 916.670504][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 916.670508][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 916.670511][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 916.670516][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 916.670519][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 916.670524][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 916.670528][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 916.670532][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 916.670539][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 916.670542][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 916.670547][ C3] ksys_unshare (kernel/fork.c:3121) [ 916.670552][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 916.670555][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 916.670558][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 916.670561][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 916.670564][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 916.670570][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 916.670573][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 916.670578][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 916.670581][ C3] RIP: 0033:0x7f439756d93b [ 916.670585][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 916.670587][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 916.670590][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 916.670592][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 916.670594][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 916.670596][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 916.670597][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 936.656135][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 936.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 936.656148][ C0] softirqs last disabled at (0): 0x0 | [ 936.656160][ C0] Tainted: [L]=SOFTLOCKUP [ 936.656162][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.656164][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 936.656173][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 936.656176][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 936.656179][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 936.656182][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 936.656184][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 936.656185][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 936.656187][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 936.656190][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 936.656192][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.656196][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 936.656198][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 936.656199][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 936.656200][ C0] PKRU: 55555554 [ 936.656202][ C0] Call Trace: [ 936.656205][ C0] [ 936.656209][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 936.656213][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 936.656217][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 936.656222][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 936.656229][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 936.656233][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 936.656235][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 936.656238][ C0] ? xa_store (lib/xarray.c:1734) [ 936.656245][ C0] xa_store (lib/xarray.c:1734) [ 936.656249][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 936.656255][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 936.656260][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 936.656262][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 936.656265][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 936.656272][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 936.656275][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 936.656283][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 936.656286][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 936.656291][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 936.656298][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 936.656303][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 936.656311][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 936.656315][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 936.656322][ C0] ksys_unshare (kernel/fork.c:3121) [ 936.656327][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 936.656331][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 936.656336][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 936.656339][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 936.656343][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 936.656349][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 936.656353][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 936.656359][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.656364][ C0] RIP: 0033:0x7f439756d93b [ 936.656376][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 936.656378][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 936.656382][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 936.656384][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 936.656386][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 936.656387][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 936.656389][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 940.669143][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 940.669153][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 940.669157][ C2] softirqs last disabled at (0): 0x0 | [ 940.669171][ C2] Tainted: [L]=SOFTLOCKUP [ 940.669173][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.669176][ C2] RIP: 0010:__kasan_check_read (mm/kasan/shadow.c:31) [ 940.669184][ C2] Code: 41 5c e9 7b 44 8d ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 4f f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f All code ======== 0: 41 5c pop %r12 2: e9 7b 44 8d ff jmp 0xffffffffff8d4482 7: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) e: 00 00 00 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop 16: 90 nop 17: 90 nop 18: 90 nop 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: f3 0f 1e fa endbr64 26: 48 8b 0c 24 mov (%rsp),%rcx 2a:* 89 f6 mov %esi,%esi <-- trapping instruction 2c: 31 d2 xor %edx,%edx 2e: e9 4f f0 ff ff jmp 0xfffffffffffff082 33: 66 66 2e 0f 1f 84 00 data16 cs nopw 0x0(%rax,%rax,1) 3a: 00 00 00 00 3e: 0f .byte 0xf 3f: 1f (bad) Code starting with the faulting instruction =========================================== 0: 89 f6 mov %esi,%esi 2: 31 d2 xor %edx,%edx 4: e9 4f f0 ff ff jmp 0xfffffffffffff058 9: 66 66 2e 0f 1f 84 00 data16 cs nopw 0x0(%rax,%rax,1) 10: 00 00 00 00 14: 0f .byte 0xf 15: 1f (bad) [ 940.669187][ C2] RSP: 0018:ffffc900034d7a10 EFLAGS: 00000202 [ 940.669190][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 940.669193][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 940.669195][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 940.669197][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 940.669198][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 940.669201][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 940.669203][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.669207][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 940.669209][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 940.669210][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 940.669211][ C2] PKRU: 55555554 [ 940.669212][ C2] Call Trace: [ 940.669218][ C2] [ 940.669220][ C2] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 940.669231][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 940.669234][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 940.669240][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 940.669244][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 940.669251][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 940.669254][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 940.669257][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 940.669260][ C2] ? xa_store (lib/xarray.c:1734) [ 940.669267][ C2] xa_store (lib/xarray.c:1734) [ 940.669272][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 940.669278][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 940.669283][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 940.669286][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 940.669289][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 940.669296][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 940.669299][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 940.669307][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 940.669311][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 940.669316][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 940.669323][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 940.669328][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 940.669337][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 940.669341][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 940.669348][ C2] ksys_unshare (kernel/fork.c:3121) [ 940.669353][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 940.669356][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 940.669362][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 940.669365][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 940.669368][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 940.669376][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 940.669380][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 940.669385][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.669391][ C2] RIP: 0033:0x7f439756d93b [ 940.669396][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 940.669399][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 940.669402][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 940.669404][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 940.669406][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 940.669408][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 940.669410][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 944.669162][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 944.669178][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 944.669182][ C1] softirqs last disabled at (0): 0x0 | [ 944.669201][ C1] Tainted: [L]=SOFTLOCKUP [ 944.669202][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.669207][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 944.669221][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 944.669225][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 944.669229][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 944.669232][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 944.669234][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 944.669236][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 944.669238][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 944.669240][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 944.669243][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.669248][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 944.669250][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 944.669251][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 944.669253][ C1] PKRU: 55555554 [ 944.669254][ C1] Call Trace: [ 944.669261][ C1] [ 944.669266][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 944.669270][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 944.669277][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 944.669282][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 944.669291][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 944.669296][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 944.669299][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 944.669302][ C1] ? xa_store (lib/xarray.c:1734) [ 944.669311][ C1] xa_store (lib/xarray.c:1734) [ 944.669316][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 944.669325][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 944.669330][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 944.669334][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 944.669337][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 944.669346][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 944.669350][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 944.669360][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 944.669364][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 944.669370][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 944.669378][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 944.669384][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 944.669395][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 944.669400][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 944.669408][ C1] ksys_unshare (kernel/fork.c:3121) [ 944.669413][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 944.669417][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 944.669424][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 944.669428][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 944.669432][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 944.669442][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 944.669446][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 944.669455][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.669464][ C1] RIP: 0033:0x7f439756d93b [ 944.669469][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 944.669473][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 944.669477][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 944.669479][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 944.669481][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 944.669483][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 944.669484][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 944.670126][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 944.670133][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 944.670136][ C3] softirqs last disabled at (0): 0x0 | [ 944.670146][ C3] Tainted: [L]=SOFTLOCKUP [ 944.670148][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.670150][ C3] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 944.670155][ C3] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 944.670159][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 944.670161][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 944.670163][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 944.670165][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 944.670167][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 944.670169][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 944.670171][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 944.670174][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.670177][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 944.670179][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 944.670180][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 944.670182][ C3] PKRU: 55555554 [ 944.670183][ C3] Call Trace: [ 944.670185][ C3] [ 944.670187][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 944.670193][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 944.670198][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 944.670201][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 944.670205][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 944.670210][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 944.670213][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 944.670216][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 944.670219][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 944.670223][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 944.670225][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 944.670228][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 944.670231][ C3] ? xas_alloc (lib/xarray.c:378) [ 944.670236][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 944.670240][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 944.670243][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 944.670247][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 944.670253][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 944.670257][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 944.670263][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 944.670268][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 944.670274][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 944.670279][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 944.670282][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 944.670285][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 944.670289][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 944.670292][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 944.670295][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 944.670301][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 944.670303][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 944.670306][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 944.670311][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 944.670315][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 944.670318][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 944.670321][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 944.670325][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 944.670329][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 944.670333][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 944.670338][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 944.670341][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 944.670347][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 944.670351][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 944.670355][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 944.670359][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 944.670364][ C3] handle_softirqs (kernel/softirq.c:579) [ 944.670371][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 944.670375][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 944.670378][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 944.670382][ C3] [ 944.670383][ C3] [ 944.670385][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 944.670390][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 944.670393][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 944.670396][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 944.670399][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 944.670401][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 944.670403][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 944.670405][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 944.670407][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 944.670411][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 944.670417][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 944.670422][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 944.670426][ C3] ? xas_alloc (lib/xarray.c:378) [ 944.670430][ C3] ? xas_alloc (lib/xarray.c:378) [ 944.670433][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 944.670438][ C3] ? xas_alloc (lib/xarray.c:378) [ 944.670440][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 944.670446][ C3] xas_alloc (lib/xarray.c:378) [ 944.670451][ C3] xas_create (lib/xarray.c:685) [ 944.670458][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 944.670463][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 944.670467][ C3] __xa_store (lib/xarray.c:1703) [ 944.670472][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 944.670476][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 944.670479][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 944.670482][ C3] ? xa_store (lib/xarray.c:1734) [ 944.670487][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 944.670491][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 944.670494][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 944.670499][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 944.670501][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 944.670504][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 944.670508][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 944.670511][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 944.670516][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 944.670520][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 944.670524][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 944.670528][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 944.670532][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 944.670539][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 944.670543][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 944.670547][ C3] ksys_unshare (kernel/fork.c:3121) [ 944.670552][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 944.670555][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 944.670559][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 944.670561][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 944.670565][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 944.670570][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 944.670574][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 944.670579][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.670582][ C3] RIP: 0033:0x7f439756d93b [ 944.670585][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 944.670587][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 944.670590][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 944.670592][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 944.670594][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 944.670595][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 944.670597][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 964.656139][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 964.656147][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 964.656151][ C0] softirqs last disabled at (0): 0x0 | [ 964.656162][ C0] Tainted: [L]=SOFTLOCKUP [ 964.656164][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 964.656166][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 964.656176][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 964.656179][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 964.656187][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 964.656189][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 964.656191][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 964.656194][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 964.656196][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 964.656198][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 964.656201][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 964.656205][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 964.656207][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 964.656209][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 964.656210][ C0] PKRU: 55555554 [ 964.656212][ C0] Call Trace: [ 964.656216][ C0] [ 964.656220][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 964.656224][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 964.656229][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 964.656233][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 964.656241][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 964.656245][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 964.656247][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 964.656250][ C0] ? xa_store (lib/xarray.c:1734) [ 964.656258][ C0] xa_store (lib/xarray.c:1734) [ 964.656263][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 964.656269][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 964.656274][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 964.656277][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 964.656280][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 964.656287][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 964.656291][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 964.656298][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 964.656302][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 964.656307][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 964.656314][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 964.656319][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 964.656328][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 964.656332][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 964.656339][ C0] ksys_unshare (kernel/fork.c:3121) [ 964.656344][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 964.656347][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 964.656352][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 964.656356][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 964.656360][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 964.656366][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 964.656371][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 964.656376][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 964.656381][ C0] RIP: 0033:0x7f439756d93b [ 964.656385][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 964.656388][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 964.656392][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 964.656394][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 964.656396][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 964.656398][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 964.656400][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 968.669135][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 968.669143][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 968.669147][ C2] softirqs last disabled at (0): 0x0 | [ 968.669160][ C2] Tainted: [L]=SOFTLOCKUP [ 968.669161][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 968.669164][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 968.669172][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 968.669175][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 968.669178][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 968.669181][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 968.669183][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 968.669185][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 968.669187][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 968.669189][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 968.669192][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 968.669196][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 968.669198][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 968.669200][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 968.669201][ C2] PKRU: 55555554 [ 968.669202][ C2] Call Trace: [ 968.669207][ C2] [ 968.669210][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 968.669214][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 968.669219][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 968.669223][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 968.669230][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 968.669233][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 968.669236][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 968.669240][ C2] ? xa_store (lib/xarray.c:1734) [ 968.669246][ C2] xa_store (lib/xarray.c:1734) [ 968.669250][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 968.669256][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 968.669261][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 968.669264][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 968.669267][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 968.669273][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 968.669276][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 968.669283][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 968.669287][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 968.669292][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 968.669298][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 968.669303][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 968.669311][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 968.669315][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 968.669321][ C2] ksys_unshare (kernel/fork.c:3121) [ 968.669326][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 968.669330][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 968.669334][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 968.669337][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 968.669341][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 968.669347][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 968.669351][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 968.669356][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 968.669361][ C2] RIP: 0033:0x7f439756d93b [ 968.669367][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 968.669370][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 968.669373][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 968.669376][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 968.669378][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 968.669380][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 968.669382][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 970.066701][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 970.066981][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 970.067237][ C1] NMI backtrace for cpu 1 | [ 970.067255][ C1] Tainted: [L]=SOFTLOCKUP [ 970.067257][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 970.067259][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 970.067267][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 970.067270][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 970.067274][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 970.067277][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 970.067279][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 970.067281][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 970.067283][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 970.067285][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 970.067287][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 970.067292][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 970.067294][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 970.067295][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 970.067297][ C1] PKRU: 55555554 [ 970.067298][ C1] Call Trace: [ 970.067301][ C1] [ 970.067304][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 970.067308][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 970.067312][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 970.067316][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 970.067323][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 970.067327][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 970.067330][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 970.067333][ C1] ? xa_store (lib/xarray.c:1734) [ 970.067340][ C1] xa_store (lib/xarray.c:1734) [ 970.067344][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 970.067350][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 970.067356][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 970.067359][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 970.067361][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 970.067367][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 970.067370][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 970.067378][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 970.067382][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 970.067387][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 970.067394][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 970.067399][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 970.067407][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 970.067411][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 970.067417][ C1] ksys_unshare (kernel/fork.c:3121) [ 970.067426][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 970.067430][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 970.067435][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 970.067438][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 970.067442][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 970.067450][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 970.067454][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 970.067460][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 970.067464][ C1] RIP: 0033:0x7f439756d93b [ 970.067470][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 970.067473][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 970.067476][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 970.067479][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 970.067481][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 970.067482][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 970.067484][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 970.067482][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 970.067484][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 970.067490][ C1] | [ 970.068238][ C3] Tainted: [L]=SOFTLOCKUP [ 970.068240][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 970.068242][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 970.068247][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 970.068250][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 970.068253][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 970.068255][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 970.068257][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 970.068259][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 970.068261][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 970.068263][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 970.068265][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 970.068269][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 970.068271][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 970.068273][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 970.068275][ C3] PKRU: 55555554 [ 970.068276][ C3] Call Trace: [ 970.068278][ C3] [ 970.068279][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 970.068286][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 970.068291][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 970.068294][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 970.068298][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 970.068304][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 970.068308][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 970.068312][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 970.068315][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 970.068319][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 970.068322][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 970.068325][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 970.068328][ C3] ? xas_alloc (lib/xarray.c:378) [ 970.068333][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 970.068336][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 970.068340][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 970.068344][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 970.068349][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 970.068353][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 970.068358][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 970.068362][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 970.068367][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 970.068372][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 970.068375][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 970.068378][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 970.068382][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 970.068385][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 970.068388][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 970.068395][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 970.068398][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 970.068401][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 970.068406][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 970.068409][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 970.068413][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 970.068416][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 970.068421][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 970.068424][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 970.068429][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 970.068433][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 970.068437][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 970.068442][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 970.068446][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 970.068449][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 970.068454][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 970.068457][ C3] handle_softirqs (kernel/softirq.c:579) [ 970.068463][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 970.068467][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 970.068470][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 970.068473][ C3] [ 970.068474][ C3] [ 970.068476][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 970.068480][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 970.068483][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 970.068486][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 970.068488][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 970.068490][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 970.068491][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 970.068493][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 970.068495][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 970.068498][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 970.068504][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 970.068509][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 970.068513][ C3] ? xas_alloc (lib/xarray.c:378) [ 970.068517][ C3] ? xas_alloc (lib/xarray.c:378) [ 970.068520][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 970.068524][ C3] ? xas_alloc (lib/xarray.c:378) [ 970.068526][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 970.068531][ C3] xas_alloc (lib/xarray.c:378) [ 970.068535][ C3] xas_create (lib/xarray.c:685) [ 970.068541][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 970.068545][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 970.068549][ C3] __xa_store (lib/xarray.c:1703) [ 970.068553][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 970.068557][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 970.068560][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 970.068563][ C3] ? xa_store (lib/xarray.c:1734) [ 970.068568][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 970.068572][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 970.068575][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 970.068580][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 970.068582][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 970.068585][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 970.068589][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 970.068592][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 970.068597][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 970.068600][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 970.068605][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 970.068609][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 970.068613][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 970.068620][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 970.068624][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 970.068629][ C3] ksys_unshare (kernel/fork.c:3121) [ 970.068633][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 970.068637][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 970.068640][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 970.068643][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 970.068646][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 970.068652][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 970.068656][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 970.068660][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 970.068663][ C3] RIP: 0033:0x7f439756d93b [ 970.068668][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 970.068670][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 970.068673][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 970.068675][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 970.068677][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 970.068679][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 970.068681][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 992.656137][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 992.656145][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 992.656149][ C0] softirqs last disabled at (0): 0x0 | [ 992.656162][ C0] Tainted: [L]=SOFTLOCKUP [ 992.656163][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 992.656166][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 992.656175][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 992.656179][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 992.656182][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 992.656185][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 992.656187][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 992.656189][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 992.656191][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 992.656193][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 992.656195][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 992.656200][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 992.656202][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 992.656204][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 992.656205][ C0] PKRU: 55555554 [ 992.656206][ C0] Call Trace: [ 992.656209][ C0] [ 992.656212][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 992.656216][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 992.656221][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 992.656226][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 992.656234][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 992.656237][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 992.656240][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 992.656243][ C0] ? xa_store (lib/xarray.c:1734) [ 992.656250][ C0] xa_store (lib/xarray.c:1734) [ 992.656254][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 992.656260][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 992.656265][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 992.656268][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 992.656271][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 992.656278][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 992.656281][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 992.656289][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 992.656292][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 992.656298][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 992.656305][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 992.656310][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 992.656318][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 992.656322][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 992.656329][ C0] ksys_unshare (kernel/fork.c:3121) [ 992.656334][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 992.656337][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 992.656342][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 992.656345][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 992.656349][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 992.656356][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 992.656361][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 992.656366][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 992.656371][ C0] RIP: 0033:0x7f439756d93b [ 992.656376][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 992.656379][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 992.656382][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 992.656385][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 992.656387][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 992.656389][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 992.656390][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 996.669139][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 996.669149][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 996.669152][ C1] softirqs last disabled at (0): 0x0 | [ 996.669166][ C1] Tainted: [L]=SOFTLOCKUP [ 996.669168][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 996.669170][ C1] RIP: 0010:__kasan_check_read (mm/kasan/shadow.c:30) [ 996.669179][ C1] Code: c7 c7 b8 57 8c b8 5b 5d 41 5c e9 7b 44 8d ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 0c 24 89 f6 31 d2 e9 4f f0 ff ff 66 66 2e 0f 1f All code ======== 0: c7 c7 b8 57 8c b8 mov $0xb88c57b8,%edi 6: 5b pop %rbx 7: 5d pop %rbp 8: 41 5c pop %r12 a: e9 7b 44 8d ff jmp 0xffffffffff8d448a f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 16: 00 00 00 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 90 nop 27: 90 nop 28: 90 nop 29: 90 nop 2a:* f3 0f 1e fa endbr64 <-- trapping instruction 2e: 48 8b 0c 24 mov (%rsp),%rcx 32: 89 f6 mov %esi,%esi 34: 31 d2 xor %edx,%edx 36: e9 4f f0 ff ff jmp 0xfffffffffffff08a 3b: 66 data16 3c: 66 data16 3d: 2e cs 3e: 0f .byte 0xf 3f: 1f (bad) Code starting with the faulting instruction =========================================== 0: f3 0f 1e fa endbr64 4: 48 8b 0c 24 mov (%rsp),%rcx 8: 89 f6 mov %esi,%esi a: 31 d2 xor %edx,%edx c: e9 4f f0 ff ff jmp 0xfffffffffffff060 11: 66 data16 12: 66 data16 13: 2e cs 14: 0f .byte 0xf 15: 1f (bad) [ 996.669182][ C1] RSP: 0018:ffffc900034b7a10 EFLAGS: 00000202 [ 996.669186][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 996.669188][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 996.669190][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 996.669192][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 996.669194][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 996.669196][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 996.669199][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 996.669202][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 996.669204][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 996.669205][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 996.669207][ C1] PKRU: 55555554 [ 996.669208][ C1] Call Trace: [ 996.669213][ C1] [ 996.669215][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 996.669227][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 996.669230][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 996.669236][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 996.669240][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 996.669247][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 996.669251][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 996.669254][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 996.669257][ C1] ? xa_store (lib/xarray.c:1734) [ 996.669264][ C1] xa_store (lib/xarray.c:1734) [ 996.669269][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 996.669275][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 996.669280][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 996.669283][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 996.669286][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.669293][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.669296][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 996.669304][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 996.669308][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 996.669313][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 996.669320][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 996.669325][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 996.669334][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 996.669338][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 996.669344][ C1] ksys_unshare (kernel/fork.c:3121) [ 996.669349][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 996.669353][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 996.669358][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 996.669361][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 996.669365][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 996.669372][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 996.669376][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 996.669382][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 996.669387][ C1] RIP: 0033:0x7f439756d93b [ 996.669391][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 996.669394][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 996.669398][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 996.669400][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 996.669402][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 996.669404][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 996.669406][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 996.669441][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 996.669447][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 996.669451][ C2] softirqs last disabled at (0): 0x0 | [ 996.669462][ C2] Tainted: [L]=SOFTLOCKUP [ 996.669463][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 996.669465][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 996.669472][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 996.669475][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 996.669478][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 996.669480][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 996.669482][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 996.669484][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 996.669486][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 996.669488][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 996.669491][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 996.669494][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 996.669496][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 996.669498][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 996.669499][ C2] PKRU: 55555554 [ 996.669501][ C2] Call Trace: [ 996.669503][ C2] [ 996.669506][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 996.669510][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 996.669515][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 996.669518][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 996.669524][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 996.669527][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 996.669530][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 996.669533][ C2] ? xa_store (lib/xarray.c:1734) [ 996.669539][ C2] xa_store (lib/xarray.c:1734) [ 996.669543][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 996.669548][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 996.669553][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 996.669555][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 996.669558][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.669564][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.669567][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 996.669573][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 996.669577][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 996.669582][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 996.669587][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 996.669591][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 996.669599][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 996.669603][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 996.669608][ C2] ksys_unshare (kernel/fork.c:3121) [ 996.669612][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 996.669616][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 996.669620][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 996.669623][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 996.669627][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 996.669632][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 996.669636][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 996.669641][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 996.669645][ C2] RIP: 0033:0x7f439756d93b [ 996.669650][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 996.669653][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 996.669656][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 996.669658][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 996.669660][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 996.669662][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 996.669664][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 996.670121][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 996.670127][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 996.670130][ C3] softirqs last disabled at (0): 0x0 | [ 996.670139][ C3] Tainted: [L]=SOFTLOCKUP [ 996.670141][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 996.670142][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 996.670148][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 996.670151][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 996.670153][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 996.670155][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 996.670157][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 996.670159][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 996.670161][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 996.670163][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 996.670165][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 996.670169][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 996.670171][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 996.670172][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 996.670173][ C3] PKRU: 55555554 [ 996.670175][ C3] Call Trace: [ 996.670176][ C3] [ 996.670177][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 996.670183][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 996.670188][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 996.670191][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 996.670196][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 996.670200][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 996.670203][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 996.670207][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 996.670210][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 996.670214][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 996.670216][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 996.670219][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 996.670222][ C3] ? xas_alloc (lib/xarray.c:378) [ 996.670227][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 996.670230][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 996.670233][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 996.670236][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 996.670242][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 996.670246][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 996.670252][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.670256][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 996.670260][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 996.670264][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.670268][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 996.670271][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 996.670274][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 996.670277][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 996.670280][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 996.670286][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 996.670289][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 996.670292][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 996.670297][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 996.670300][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 996.670303][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 996.670306][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 996.670310][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.670314][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 996.670317][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 996.670322][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 996.670324][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 996.670330][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 996.670334][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.670337][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 996.670342][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 996.670346][ C3] handle_softirqs (kernel/softirq.c:579) [ 996.670352][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 996.670356][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 996.670359][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 996.670363][ C3] [ 996.670364][ C3] [ 996.670366][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 996.670370][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 996.670373][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 996.670375][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 996.670378][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 996.670380][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 996.670381][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 996.670383][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 996.670385][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 996.670389][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 996.670395][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 996.670401][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 996.670405][ C3] ? xas_alloc (lib/xarray.c:378) [ 996.670409][ C3] ? xas_alloc (lib/xarray.c:378) [ 996.670412][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 996.670416][ C3] ? xas_alloc (lib/xarray.c:378) [ 996.670419][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 996.670424][ C3] xas_alloc (lib/xarray.c:378) [ 996.670429][ C3] xas_create (lib/xarray.c:685) [ 996.670435][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 996.670439][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 996.670443][ C3] __xa_store (lib/xarray.c:1703) [ 996.670447][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 996.670452][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 996.670454][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 996.670457][ C3] ? xa_store (lib/xarray.c:1734) [ 996.670462][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 996.670466][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 996.670469][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 996.670473][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 996.670476][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 996.670479][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.670483][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 996.670486][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 996.670491][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 996.670495][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 996.670499][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 996.670503][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 996.670507][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 996.670513][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 996.670516][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 996.670521][ C3] ksys_unshare (kernel/fork.c:3121) [ 996.670525][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 996.670528][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 996.670531][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 996.670534][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 996.670537][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 996.670542][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 996.670546][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 996.670551][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 996.670554][ C3] RIP: 0033:0x7f439756d93b [ 996.670556][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 996.670559][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 996.670562][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 996.670564][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 996.670566][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 996.670568][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 996.670570][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1020.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1020.656145][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1020.656149][ C0] softirqs last disabled at (0): 0x0 | [ 1020.656162][ C0] Tainted: [L]=SOFTLOCKUP [ 1020.656163][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1020.656165][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1020.656174][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1020.656177][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1020.656181][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1020.656183][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1020.656185][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1020.656187][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1020.656189][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1020.656191][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1020.656193][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1020.656198][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1020.656199][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1020.656201][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1020.656202][ C0] PKRU: 55555554 [ 1020.656204][ C0] Call Trace: [ 1020.656207][ C0] [ 1020.656211][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1020.656215][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1020.656220][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1020.656224][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1020.656232][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1020.656235][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1020.656238][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1020.656241][ C0] ? xa_store (lib/xarray.c:1734) [ 1020.656247][ C0] xa_store (lib/xarray.c:1734) [ 1020.656252][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1020.656258][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1020.656263][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1020.656266][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1020.656268][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1020.656276][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1020.656280][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1020.656287][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1020.656290][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1020.656295][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1020.656303][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1020.656308][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1020.656316][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1020.656320][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1020.656326][ C0] ksys_unshare (kernel/fork.c:3121) [ 1020.656331][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1020.656335][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1020.656339][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1020.656343][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1020.656347][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1020.656354][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1020.656358][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1020.656364][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1020.656368][ C0] RIP: 0033:0x7f439756d93b [ 1020.656373][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1020.656376][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1020.656379][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1020.656382][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1020.656383][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1020.656385][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1020.656387][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1024.669140][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1024.669151][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1024.669154][ C2] softirqs last disabled at (0): 0x0 | [ 1024.669168][ C2] Tainted: [L]=SOFTLOCKUP [ 1024.669171][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1024.669173][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1024.669183][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1024.669187][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1024.669190][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1024.669192][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1024.669195][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1024.669197][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1024.669199][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1024.669201][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1024.669203][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1024.669207][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1024.669209][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1024.669210][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1024.669212][ C2] PKRU: 55555554 [ 1024.669213][ C2] Call Trace: [ 1024.669218][ C2] [ 1024.669222][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1024.669226][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1024.669231][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1024.669236][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1024.669244][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1024.669248][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1024.669251][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1024.669254][ C2] ? xa_store (lib/xarray.c:1734) [ 1024.669261][ C2] xa_store (lib/xarray.c:1734) [ 1024.669266][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1024.669272][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1024.669277][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1024.669280][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1024.669283][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.669290][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.669294][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1024.669301][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1024.669305][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1024.669311][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1024.669319][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1024.669324][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1024.669333][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1024.669337][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1024.669344][ C2] ksys_unshare (kernel/fork.c:3121) [ 1024.669349][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1024.669352][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1024.669358][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1024.669361][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1024.669365][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1024.669372][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1024.669376][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1024.669382][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1024.669387][ C2] RIP: 0033:0x7f439756d93b [ 1024.669392][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1024.669395][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1024.669398][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1024.669400][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1024.669403][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1024.669405][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1024.669406][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1024.669440][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1024.669446][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1024.669450][ C1] softirqs last disabled at (0): 0x0 | [ 1024.669461][ C1] Tainted: [L]=SOFTLOCKUP [ 1024.669462][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1024.669464][ C1] RIP: 0010:kasan_check_range (mm/kasan/generic.c:188) [ 1024.669470][ C1] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 <53> 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 66 0f 1f 00 nopw (%rax) 14: 48 85 f6 test %rsi,%rsi 17: 0f 84 5e 01 00 00 je 0x17b 1d: 48 89 f8 mov %rdi,%rax 20: 41 54 push %r12 22: 44 0f b6 c2 movzbl %dl,%r8d 26: 48 01 f0 add %rsi,%rax 29: 55 push %rbp 2a:* 53 push %rbx <-- trapping instruction 2b: 72 14 jb 0x41 2d: eb 26 jmp 0x55 2f: cc int3 30: cc int3 31: cc int3 32: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 39: ff ff fe 3c: 48 39 c7 cmp %rax,%rdi 3f: 77 .byte 0x77 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: 72 14 jb 0x17 3: eb 26 jmp 0x2b 5: cc int3 6: cc int3 7: cc int3 8: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax f: ff ff fe 12: 48 39 c7 cmp %rax,%rdi 15: 77 .byte 0x77 [ 1024.669473][ C1] RSP: 0018:ffffc900034b7a00 EFLAGS: 00000282 [ 1024.669476][ C1] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1024.669478][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1024.669480][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1024.669482][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1024.669484][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1024.669486][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1024.669488][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1024.669492][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1024.669493][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1024.669495][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1024.669497][ C1] PKRU: 55555554 [ 1024.669498][ C1] Call Trace: [ 1024.669500][ C1] [ 1024.669503][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1024.669509][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1024.669512][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1024.669516][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1024.669519][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1024.669525][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1024.669528][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1024.669531][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1024.669534][ C1] ? xa_store (lib/xarray.c:1734) [ 1024.669539][ C1] xa_store (lib/xarray.c:1734) [ 1024.669544][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1024.669548][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1024.669553][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1024.669557][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1024.669559][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.669565][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.669568][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1024.669574][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1024.669578][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1024.669583][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1024.669587][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1024.669592][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1024.669600][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1024.669603][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1024.669608][ C1] ksys_unshare (kernel/fork.c:3121) [ 1024.669613][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1024.669616][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1024.669620][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1024.669623][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1024.669627][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1024.669633][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1024.669637][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1024.669641][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1024.669645][ C1] RIP: 0033:0x7f439756d93b [ 1024.669650][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1024.669652][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1024.669656][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1024.669658][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1024.669660][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1024.669661][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1024.669663][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1024.670120][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1024.670126][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1024.670129][ C3] softirqs last disabled at (0): 0x0 | [ 1024.670138][ C3] Tainted: [L]=SOFTLOCKUP [ 1024.670139][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1024.670141][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1024.670145][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1024.670148][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1024.670151][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1024.670153][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1024.670155][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1024.670157][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1024.670159][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1024.670161][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1024.670163][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1024.670167][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1024.670169][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1024.670170][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1024.670172][ C3] PKRU: 55555554 [ 1024.670173][ C3] Call Trace: [ 1024.670175][ C3] [ 1024.670176][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1024.670181][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1024.670186][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1024.670190][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1024.670195][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1024.670200][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1024.670203][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1024.670207][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1024.670210][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1024.670213][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1024.670216][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1024.670218][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1024.670221][ C3] ? xas_alloc (lib/xarray.c:378) [ 1024.670226][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1024.670229][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1024.670232][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1024.670235][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1024.670240][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1024.670244][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1024.670250][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.670254][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1024.670258][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1024.670262][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.670265][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1024.670268][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1024.670271][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1024.670275][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1024.670278][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1024.670283][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1024.670286][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1024.670290][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1024.670294][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1024.670298][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1024.670301][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1024.670304][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1024.670308][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.670311][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1024.670315][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1024.670320][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1024.670323][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1024.670328][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1024.670332][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.670335][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1024.670341][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1024.670345][ C3] handle_softirqs (kernel/softirq.c:579) [ 1024.670351][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1024.670354][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1024.670357][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1024.670362][ C3] [ 1024.670363][ C3] [ 1024.670364][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1024.670368][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1024.670371][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1024.670374][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1024.670376][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1024.670378][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1024.670380][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1024.670382][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1024.670384][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1024.670388][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1024.670393][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1024.670398][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1024.670403][ C3] ? xas_alloc (lib/xarray.c:378) [ 1024.670407][ C3] ? xas_alloc (lib/xarray.c:378) [ 1024.670410][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1024.670414][ C3] ? xas_alloc (lib/xarray.c:378) [ 1024.670417][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1024.670422][ C3] xas_alloc (lib/xarray.c:378) [ 1024.670426][ C3] xas_create (lib/xarray.c:685) [ 1024.670432][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1024.670437][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1024.670441][ C3] __xa_store (lib/xarray.c:1703) [ 1024.670445][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1024.670449][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1024.670452][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1024.670455][ C3] ? xa_store (lib/xarray.c:1734) [ 1024.670459][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1024.670463][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1024.670466][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1024.670471][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1024.670474][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1024.670476][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.670480][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1024.670484][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1024.670488][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1024.670492][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1024.670496][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1024.670500][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1024.670504][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1024.670511][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1024.670514][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1024.670519][ C3] ksys_unshare (kernel/fork.c:3121) [ 1024.670523][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1024.670526][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1024.670530][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1024.670532][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1024.670536][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1024.670541][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1024.670545][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1024.670550][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1024.670553][ C3] RIP: 0033:0x7f439756d93b [ 1024.670556][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1024.670559][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1024.670561][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1024.670563][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1024.670565][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1024.670567][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1024.670569][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1048.079018][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1048.079302][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1048.079541][ C1] NMI backtrace for cpu 1 | [ 1048.079557][ C1] Tainted: [L]=SOFTLOCKUP [ 1048.079559][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1048.079561][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1048.079569][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1048.079572][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1048.079577][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1048.079579][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1048.079581][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1048.079583][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1048.079585][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1048.079587][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1048.079590][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1048.079593][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1048.079595][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1048.079597][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1048.079599][ C1] PKRU: 55555554 [ 1048.079600][ C1] Call Trace: [ 1048.079602][ C1] [ 1048.079605][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1048.079610][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1048.079614][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1048.079618][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1048.079625][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1048.079628][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1048.079631][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1048.079634][ C1] ? xa_store (lib/xarray.c:1734) [ 1048.079641][ C1] xa_store (lib/xarray.c:1734) [ 1048.079645][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1048.079650][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1048.079656][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1048.079659][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1048.079662][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.079667][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.079670][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1048.079678][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1048.079682][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1048.079687][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1048.079694][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1048.079699][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1048.079707][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1048.079711][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1048.079718][ C1] ksys_unshare (kernel/fork.c:3121) [ 1048.079724][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1048.079728][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1048.079734][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1048.079737][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1048.079740][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1048.079747][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1048.079751][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1048.079756][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1048.079761][ C1] RIP: 0033:0x7f439756d93b [ 1048.079765][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1048.079768][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1048.079771][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1048.079773][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1048.079775][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1048.079777][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1048.079779][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1048.079777][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1048.079779][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1048.079785][ C1] | [ 1048.080543][ C3] Tainted: [L]=SOFTLOCKUP [ 1048.080544][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1048.080546][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1048.080551][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1048.080554][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1048.080557][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1048.080559][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1048.080561][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1048.080563][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1048.080564][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1048.080566][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1048.080569][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1048.080572][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1048.080575][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1048.080577][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1048.080578][ C3] PKRU: 55555554 [ 1048.080580][ C3] Call Trace: [ 1048.080581][ C3] [ 1048.080582][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1048.080588][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1048.080593][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1048.080596][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1048.080600][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1048.080605][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1048.080608][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1048.080613][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1048.080616][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1048.080620][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1048.080622][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1048.080625][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1048.080627][ C3] ? xas_alloc (lib/xarray.c:378) [ 1048.080632][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1048.080636][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1048.080638][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1048.080642][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1048.080647][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1048.080651][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1048.080656][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.080659][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1048.080665][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1048.080669][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.080672][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1048.080674][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1048.080678][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1048.080681][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1048.080683][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1048.080690][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1048.080692][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1048.080695][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1048.080700][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1048.080703][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1048.080706][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1048.080709][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1048.080714][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.080717][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1048.080721][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1048.080726][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1048.080729][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1048.080734][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1048.080738][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.080741][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1048.080746][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1048.080750][ C3] handle_softirqs (kernel/softirq.c:579) [ 1048.080755][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1048.080758][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1048.080761][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1048.080765][ C3] [ 1048.080766][ C3] [ 1048.080768][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1048.080772][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1048.080775][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1048.080777][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1048.080780][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1048.080782][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1048.080783][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1048.080785][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1048.080787][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1048.080791][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1048.080796][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1048.080801][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1048.080805][ C3] ? xas_alloc (lib/xarray.c:378) [ 1048.080809][ C3] ? xas_alloc (lib/xarray.c:378) [ 1048.080812][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1048.080816][ C3] ? xas_alloc (lib/xarray.c:378) [ 1048.080818][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1048.080823][ C3] xas_alloc (lib/xarray.c:378) [ 1048.080827][ C3] xas_create (lib/xarray.c:685) [ 1048.080833][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1048.080837][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1048.080841][ C3] __xa_store (lib/xarray.c:1703) [ 1048.080845][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1048.080849][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1048.080852][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1048.080855][ C3] ? xa_store (lib/xarray.c:1734) [ 1048.080860][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1048.080864][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1048.080867][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1048.080872][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1048.080874][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1048.080877][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.080881][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.080884][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1048.080889][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1048.080893][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1048.080897][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1048.080901][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1048.080905][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1048.080911][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1048.080915][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1048.080920][ C3] ksys_unshare (kernel/fork.c:3121) [ 1048.080925][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1048.080928][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1048.080932][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1048.080935][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1048.080939][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1048.080945][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1048.080949][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1048.080953][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1048.080956][ C3] RIP: 0033:0x7f439756d93b [ 1048.080961][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1048.080963][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1048.080966][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1048.080968][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1048.080969][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1048.080971][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1048.080973][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1048.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1048.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1048.656148][ C0] softirqs last disabled at (0): 0x0 | [ 1048.656161][ C0] Tainted: [L]=SOFTLOCKUP [ 1048.656162][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1048.656164][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1048.656174][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1048.656177][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1048.656180][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1048.656183][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1048.656185][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1048.656186][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1048.656189][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1048.656191][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1048.656193][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1048.656197][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1048.656199][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1048.656201][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1048.656202][ C0] PKRU: 55555554 [ 1048.656203][ C0] Call Trace: [ 1048.656207][ C0] [ 1048.656210][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1048.656214][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1048.656219][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1048.656223][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1048.656231][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1048.656234][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1048.656237][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1048.656240][ C0] ? xa_store (lib/xarray.c:1734) [ 1048.656247][ C0] xa_store (lib/xarray.c:1734) [ 1048.656252][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1048.656258][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1048.656263][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1048.656266][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1048.656269][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.656275][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1048.656279][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1048.656287][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1048.656290][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1048.656296][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1048.656303][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1048.656308][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1048.656317][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1048.656321][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1048.656328][ C0] ksys_unshare (kernel/fork.c:3121) [ 1048.656333][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1048.656336][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1048.656341][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1048.656345][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1048.656348][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1048.656355][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1048.656359][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1048.656365][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1048.656370][ C0] RIP: 0033:0x7f439756d93b [ 1048.656374][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1048.656377][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1048.656381][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1048.656383][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1048.656385][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1048.656387][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1048.656389][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1052.669140][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1052.669149][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1052.669153][ C2] softirqs last disabled at (0): 0x0 | [ 1052.669166][ C2] Tainted: [L]=SOFTLOCKUP [ 1052.669168][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1052.669171][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1052.669180][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1052.669184][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1052.669187][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1052.669190][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1052.669192][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1052.669194][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1052.669196][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1052.669198][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1052.669201][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1052.669204][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1052.669206][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1052.669208][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1052.669209][ C2] PKRU: 55555554 [ 1052.669211][ C2] Call Trace: [ 1052.669215][ C2] [ 1052.669218][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1052.669222][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1052.669228][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1052.669232][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1052.669240][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1052.669244][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1052.669246][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1052.669249][ C2] ? xa_store (lib/xarray.c:1734) [ 1052.669256][ C2] xa_store (lib/xarray.c:1734) [ 1052.669261][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1052.669267][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1052.669273][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1052.669276][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1052.669278][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1052.669286][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1052.669289][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1052.669297][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1052.669301][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1052.669306][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1052.669314][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1052.669319][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1052.669328][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1052.669332][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1052.669338][ C2] ksys_unshare (kernel/fork.c:3121) [ 1052.669343][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1052.669347][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1052.669352][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1052.669355][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1052.669359][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1052.669367][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1052.669371][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1052.669377][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1052.669382][ C2] RIP: 0033:0x7f439756d93b [ 1052.669387][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1052.669390][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1052.669393][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1052.669395][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1052.669397][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1052.669399][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1052.669401][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1072.669143][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1072.669153][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1072.669156][ C1] softirqs last disabled at (0): 0x0 | [ 1072.669170][ C1] Tainted: [L]=SOFTLOCKUP [ 1072.669172][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1072.669174][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1072.669184][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1072.669188][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1072.669191][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1072.669193][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1072.669196][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1072.669198][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1072.669200][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1072.669201][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1072.669204][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1072.669208][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1072.669210][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1072.669211][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1072.669213][ C1] PKRU: 55555554 [ 1072.669214][ C1] Call Trace: [ 1072.669219][ C1] [ 1072.669223][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1072.669226][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1072.669232][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1072.669236][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1072.669244][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1072.669248][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1072.669251][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1072.669254][ C1] ? xa_store (lib/xarray.c:1734) [ 1072.669261][ C1] xa_store (lib/xarray.c:1734) [ 1072.669266][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1072.669272][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1072.669277][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1072.669280][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1072.669282][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1072.669290][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1072.669293][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1072.669301][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1072.669305][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1072.669310][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1072.669318][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1072.669323][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1072.669333][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1072.669337][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1072.669344][ C1] ksys_unshare (kernel/fork.c:3121) [ 1072.669349][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1072.669352][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1072.669357][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1072.669361][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1072.669364][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1072.669372][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1072.669376][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1072.669382][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1072.669388][ C1] RIP: 0033:0x7f439756d93b [ 1072.669393][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1072.669397][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1072.669400][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1072.669402][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1072.669404][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1072.669406][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1072.669408][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1072.670126][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1072.670132][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1072.670135][ C3] softirqs last disabled at (0): 0x0 | [ 1072.670145][ C3] Tainted: [L]=SOFTLOCKUP [ 1072.670146][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1072.670148][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1072.670154][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1072.670156][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1072.670159][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1072.670161][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1072.670163][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1072.670165][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1072.670167][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1072.670169][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1072.670172][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1072.670175][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1072.670177][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1072.670178][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1072.670180][ C3] PKRU: 55555554 [ 1072.670181][ C3] Call Trace: [ 1072.670183][ C3] [ 1072.670185][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1072.670190][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1072.670195][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1072.670198][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1072.670203][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1072.670208][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1072.670212][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1072.670215][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1072.670218][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1072.670222][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1072.670225][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1072.670227][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1072.670230][ C3] ? xas_alloc (lib/xarray.c:378) [ 1072.670235][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1072.670239][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1072.670241][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1072.670245][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1072.670250][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1072.670254][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1072.670259][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1072.670264][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1072.670269][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1072.670274][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1072.670277][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1072.670280][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1072.670283][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1072.670287][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1072.670290][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1072.670296][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1072.670299][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1072.670302][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1072.670306][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1072.670310][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1072.670313][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1072.670316][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1072.670320][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1072.670323][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1072.670327][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1072.670333][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1072.670335][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1072.670341][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1072.670345][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1072.670348][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1072.670353][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1072.670357][ C3] handle_softirqs (kernel/softirq.c:579) [ 1072.670363][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1072.670367][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1072.670370][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1072.670374][ C3] [ 1072.670374][ C3] [ 1072.670376][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1072.670380][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1072.670383][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1072.670386][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1072.670388][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1072.670390][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1072.670391][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1072.670393][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1072.670395][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1072.670399][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1072.670405][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1072.670410][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1072.670414][ C3] ? xas_alloc (lib/xarray.c:378) [ 1072.670419][ C3] ? xas_alloc (lib/xarray.c:378) [ 1072.670422][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1072.670426][ C3] ? xas_alloc (lib/xarray.c:378) [ 1072.670429][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1072.670434][ C3] xas_alloc (lib/xarray.c:378) [ 1072.670439][ C3] xas_create (lib/xarray.c:685) [ 1072.670445][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1072.670449][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1072.670452][ C3] __xa_store (lib/xarray.c:1703) [ 1072.670456][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1072.670461][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1072.670464][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1072.670466][ C3] ? xa_store (lib/xarray.c:1734) [ 1072.670471][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1072.670475][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1072.670478][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1072.670483][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1072.670486][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1072.670488][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1072.670492][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1072.670496][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1072.670501][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1072.670505][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1072.670509][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1072.670513][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1072.670518][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1072.670525][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1072.670529][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1072.670533][ C3] ksys_unshare (kernel/fork.c:3121) [ 1072.670537][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1072.670541][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1072.670544][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1072.670547][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1072.670551][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1072.670556][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1072.670560][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1072.670565][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1072.670568][ C3] RIP: 0033:0x7f439756d93b [ 1072.670572][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1072.670575][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1072.670577][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1072.670580][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1072.670582][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1072.670583][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1072.670585][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1076.656137][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1076.656147][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1076.656150][ C0] softirqs last disabled at (0): 0x0 | [ 1076.656163][ C0] Tainted: [L]=SOFTLOCKUP [ 1076.656165][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1076.656167][ C0] RIP: 0010:kasan_check_range (mm/kasan/generic.c:188) [ 1076.656174][ C0] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 <53> 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 66 0f 1f 00 nopw (%rax) 14: 48 85 f6 test %rsi,%rsi 17: 0f 84 5e 01 00 00 je 0x17b 1d: 48 89 f8 mov %rdi,%rax 20: 41 54 push %r12 22: 44 0f b6 c2 movzbl %dl,%r8d 26: 48 01 f0 add %rsi,%rax 29: 55 push %rbp 2a:* 53 push %rbx <-- trapping instruction 2b: 72 14 jb 0x41 2d: eb 26 jmp 0x55 2f: cc int3 30: cc int3 31: cc int3 32: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 39: ff ff fe 3c: 48 39 c7 cmp %rax,%rdi 3f: 77 .byte 0x77 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: 72 14 jb 0x17 3: eb 26 jmp 0x2b 5: cc int3 6: cc int3 7: cc int3 8: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax f: ff ff fe 12: 48 39 c7 cmp %rax,%rdi 15: 77 .byte 0x77 [ 1076.656177][ C0] RSP: 0018:ffffc900034c7a00 EFLAGS: 00000282 [ 1076.656181][ C0] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1076.656183][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1076.656185][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1076.656187][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1076.656189][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1076.656191][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1076.656194][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1076.656198][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1076.656200][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1076.656202][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1076.656203][ C0] PKRU: 55555554 [ 1076.656205][ C0] Call Trace: [ 1076.656208][ C0] [ 1076.656212][ C0] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1076.656222][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1076.656226][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1076.656231][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1076.656235][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1076.656242][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1076.656246][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1076.656249][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1076.656252][ C0] ? xa_store (lib/xarray.c:1734) [ 1076.656259][ C0] xa_store (lib/xarray.c:1734) [ 1076.656264][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1076.656269][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1076.656275][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1076.656277][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1076.656280][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1076.656287][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1076.656291][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1076.656298][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1076.656302][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1076.656307][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1076.656315][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1076.656319][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1076.656327][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1076.656332][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1076.656339][ C0] ksys_unshare (kernel/fork.c:3121) [ 1076.656344][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1076.656347][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1076.656352][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1076.656355][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1076.656359][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1076.656366][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1076.656370][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1076.656375][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1076.656380][ C0] RIP: 0033:0x7f439756d93b [ 1076.656384][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1076.656387][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1076.656389][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1076.656392][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1076.656393][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1076.656395][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1076.656397][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1080.669139][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1080.669149][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1080.669153][ C2] softirqs last disabled at (0): 0x0 | [ 1080.669166][ C2] Tainted: [L]=SOFTLOCKUP [ 1080.669167][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1080.669170][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1080.669180][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1080.669183][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1080.669186][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1080.669189][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1080.669191][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1080.669193][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1080.669195][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1080.669196][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1080.669199][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1080.669202][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1080.669204][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1080.669206][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1080.669208][ C2] PKRU: 55555554 [ 1080.669209][ C2] Call Trace: [ 1080.669213][ C2] [ 1080.669217][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1080.669221][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1080.669226][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1080.669231][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1080.669239][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1080.669243][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1080.669246][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1080.669249][ C2] ? xa_store (lib/xarray.c:1734) [ 1080.669256][ C2] xa_store (lib/xarray.c:1734) [ 1080.669260][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1080.669266][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1080.669272][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1080.669274][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1080.669277][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1080.669284][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1080.669288][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1080.669295][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1080.669299][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1080.669304][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1080.669312][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1080.669317][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1080.669326][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1080.669330][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1080.669337][ C2] ksys_unshare (kernel/fork.c:3121) [ 1080.669342][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1080.669345][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1080.669350][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1080.669354][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1080.669357][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1080.669365][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1080.669369][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1080.669375][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1080.669380][ C2] RIP: 0033:0x7f439756d93b [ 1080.669385][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1080.669387][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1080.669391][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1080.669393][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1080.669395][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1080.669397][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1080.669399][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1100.669141][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1100.669151][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1100.669154][ C1] softirqs last disabled at (0): 0x0 | [ 1100.669167][ C1] Tainted: [L]=SOFTLOCKUP [ 1100.669169][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1100.669172][ C1] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1100.669183][ C1] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 1100.669186][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1100.669189][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1100.669192][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1100.669193][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1100.669196][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1100.669198][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1100.669200][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1100.669202][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1100.669206][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1100.669208][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1100.669209][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1100.669211][ C1] PKRU: 55555554 [ 1100.669212][ C1] Call Trace: [ 1100.669217][ C1] [ 1100.669221][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1100.669225][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1100.669231][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1100.669236][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1100.669243][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1100.669247][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1100.669250][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1100.669253][ C1] ? xa_store (lib/xarray.c:1734) [ 1100.669260][ C1] xa_store (lib/xarray.c:1734) [ 1100.669264][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1100.669271][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1100.669277][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1100.669280][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1100.669283][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1100.669289][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1100.669293][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1100.669301][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1100.669304][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1100.669310][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1100.669317][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1100.669322][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1100.669332][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1100.669336][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1100.669343][ C1] ksys_unshare (kernel/fork.c:3121) [ 1100.669348][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1100.669351][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1100.669357][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1100.669360][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1100.669363][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1100.669371][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1100.669375][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1100.669381][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1100.669386][ C1] RIP: 0033:0x7f439756d93b [ 1100.669392][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1100.669395][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1100.669398][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1100.669400][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1100.669402][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1100.669404][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1100.669405][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1100.670126][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1100.670132][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1100.670136][ C3] softirqs last disabled at (0): 0x0 | [ 1100.670146][ C3] Tainted: [L]=SOFTLOCKUP [ 1100.670147][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1100.670150][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1100.670156][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1100.670159][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1100.670162][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1100.670164][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1100.670166][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1100.670168][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1100.670170][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1100.670172][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1100.670174][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1100.670178][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1100.670180][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1100.670181][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1100.670183][ C3] PKRU: 55555554 [ 1100.670184][ C3] Call Trace: [ 1100.670187][ C3] [ 1100.670188][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1100.670194][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1100.670198][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1100.670201][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1100.670207][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1100.670213][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1100.670216][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1100.670220][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1100.670223][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1100.670226][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1100.670229][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1100.670231][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1100.670235][ C3] ? xas_alloc (lib/xarray.c:378) [ 1100.670240][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1100.670243][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1100.670246][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1100.670250][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1100.670256][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1100.670260][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1100.670265][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1100.670269][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1100.670275][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1100.670279][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1100.670283][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1100.670286][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1100.670289][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1100.670292][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1100.670295][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1100.670301][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1100.670304][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1100.670307][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1100.670312][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1100.670316][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1100.670319][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1100.670322][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1100.670325][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1100.670329][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1100.670333][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1100.670337][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1100.670340][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1100.670346][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1100.670349][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1100.670353][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1100.670358][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1100.670362][ C3] handle_softirqs (kernel/softirq.c:579) [ 1100.670368][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1100.670372][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1100.670375][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1100.670379][ C3] [ 1100.670380][ C3] [ 1100.670382][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1100.670386][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1100.670390][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1100.670393][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1100.670395][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1100.670397][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1100.670399][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1100.670401][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1100.670403][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1100.670407][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1100.670413][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1100.670418][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1100.670423][ C3] ? xas_alloc (lib/xarray.c:378) [ 1100.670427][ C3] ? xas_alloc (lib/xarray.c:378) [ 1100.670430][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1100.670434][ C3] ? xas_alloc (lib/xarray.c:378) [ 1100.670437][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1100.670442][ C3] xas_alloc (lib/xarray.c:378) [ 1100.670447][ C3] xas_create (lib/xarray.c:685) [ 1100.670453][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1100.670458][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1100.670461][ C3] __xa_store (lib/xarray.c:1703) [ 1100.670465][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1100.670470][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1100.670472][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1100.670475][ C3] ? xa_store (lib/xarray.c:1734) [ 1100.670480][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1100.670484][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1100.670487][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1100.670492][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1100.670495][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1100.670498][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1100.670502][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1100.670505][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1100.670510][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1100.670514][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1100.670518][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1100.670522][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1100.670526][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1100.670533][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1100.670536][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1100.670541][ C3] ksys_unshare (kernel/fork.c:3121) [ 1100.670545][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1100.670548][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1100.670552][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1100.670554][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1100.670558][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1100.670563][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1100.670567][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1100.670571][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1100.670574][ C3] RIP: 0033:0x7f439756d93b [ 1100.670578][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1100.670580][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1100.670583][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1100.670585][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1100.670587][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1100.670589][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1100.670591][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1104.656135][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1104.656143][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1104.656147][ C0] softirqs last disabled at (0): 0x0 | [ 1104.656160][ C0] Tainted: [L]=SOFTLOCKUP [ 1104.656162][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1104.656164][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1104.656173][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1104.656176][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1104.656180][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1104.656182][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1104.656184][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1104.656186][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1104.656188][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1104.656190][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1104.656192][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1104.656196][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1104.656198][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1104.656200][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1104.656202][ C0] PKRU: 55555554 [ 1104.656203][ C0] Call Trace: [ 1104.656206][ C0] [ 1104.656209][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1104.656213][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1104.656218][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1104.656223][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1104.656230][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1104.656233][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1104.656236][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1104.656239][ C0] ? xa_store (lib/xarray.c:1734) [ 1104.656246][ C0] xa_store (lib/xarray.c:1734) [ 1104.656250][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1104.656256][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1104.656261][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1104.656264][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1104.656267][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1104.656275][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1104.656278][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1104.656286][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1104.656289][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1104.656294][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1104.656301][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1104.656306][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1104.656314][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1104.656319][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1104.656326][ C0] ksys_unshare (kernel/fork.c:3121) [ 1104.656330][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1104.656334][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1104.656338][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1104.656342][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1104.656345][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1104.656352][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1104.656357][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1104.656362][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1104.656366][ C0] RIP: 0033:0x7f439756d93b [ 1104.656371][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1104.656374][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1104.656377][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1104.656379][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1104.656381][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1104.656383][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1104.656385][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1108.669186][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1108.669211][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1108.669214][ C2] softirqs last disabled at (0): 0x0 | [ 1108.669238][ C2] Tainted: [L]=SOFTLOCKUP [ 1108.669241][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1108.669244][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1108.669260][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1108.669265][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1108.669272][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1108.669274][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1108.669276][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1108.669278][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1108.669280][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1108.669282][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1108.669285][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1108.669289][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1108.669291][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1108.669292][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1108.669294][ C2] PKRU: 55555554 [ 1108.669295][ C2] Call Trace: [ 1108.669306][ C2] [ 1108.669312][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1108.669316][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1108.669327][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1108.669333][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1108.669348][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1108.669354][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1108.669357][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1108.669360][ C2] ? xa_store (lib/xarray.c:1734) [ 1108.669367][ C2] xa_store (lib/xarray.c:1734) [ 1108.669375][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1108.669399][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1108.669405][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1108.669408][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1108.669411][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1108.669418][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1108.669422][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1108.669433][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1108.669437][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1108.669442][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1108.669463][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1108.669468][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1108.669482][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1108.669486][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1108.669499][ C2] ksys_unshare (kernel/fork.c:3121) [ 1108.669506][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1108.669509][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1108.669515][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1108.669518][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1108.669521][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1108.669529][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1108.669533][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1108.669540][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1108.669549][ C2] RIP: 0033:0x7f439756d93b [ 1108.669554][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1108.669557][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1108.669560][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1108.669563][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1108.669565][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1108.669566][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1108.669568][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1126.093216][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1126.093508][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1126.093763][ C1] NMI backtrace for cpu 1 | [ 1126.093781][ C1] Tainted: [L]=SOFTLOCKUP [ 1126.093783][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1126.093785][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1126.093794][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1126.093797][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1126.093801][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1126.093803][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1126.093805][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1126.093808][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1126.093809][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1126.093811][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1126.093816][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1126.093819][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1126.093821][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1126.093823][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1126.093825][ C1] PKRU: 55555554 [ 1126.093826][ C1] Call Trace: [ 1126.093831][ C1] [ 1126.093835][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1126.093839][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1126.093844][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1126.093847][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1126.093856][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1126.093859][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1126.093862][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1126.093865][ C1] ? xa_store (lib/xarray.c:1734) [ 1126.093872][ C1] xa_store (lib/xarray.c:1734) [ 1126.093877][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1126.093883][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1126.093888][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1126.093891][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1126.093894][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1126.093899][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1126.093903][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1126.093911][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1126.093915][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1126.093919][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1126.093926][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1126.093931][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1126.093940][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1126.093943][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1126.093950][ C1] ksys_unshare (kernel/fork.c:3121) [ 1126.093957][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1126.093960][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1126.093965][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1126.093969][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1126.093972][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1126.093979][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1126.093983][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1126.093989][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1126.093993][ C1] RIP: 0033:0x7f439756d93b [ 1126.093999][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1126.094001][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1126.094005][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1126.094007][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1126.094009][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1126.094011][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1126.094013][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1126.094011][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1126.094013][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1126.094019][ C1] | [ 1126.094760][ C3] Tainted: [L]=SOFTLOCKUP [ 1126.094762][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1126.094764][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1126.094769][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1126.094774][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1126.094777][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1126.094779][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1126.094781][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1126.094783][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1126.094785][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1126.094787][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1126.094790][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1126.094793][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1126.094795][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1126.094797][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1126.094798][ C3] PKRU: 55555554 [ 1126.094800][ C3] Call Trace: [ 1126.094801][ C3] [ 1126.094802][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1126.094814][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1126.094821][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1126.094826][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1126.094830][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1126.094835][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1126.094838][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1126.094842][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1126.094845][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1126.094850][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1126.094853][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1126.094855][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1126.094858][ C3] ? xas_alloc (lib/xarray.c:378) [ 1126.094863][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1126.094867][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1126.094869][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1126.094873][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1126.094878][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1126.094881][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1126.094886][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1126.094890][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1126.094895][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1126.094900][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1126.094903][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1126.094905][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1126.094909][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1126.094912][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1126.094915][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1126.094922][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1126.094924][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1126.094928][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1126.094932][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1126.094936][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1126.094940][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1126.094942][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1126.094950][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1126.094953][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1126.094958][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1126.094962][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1126.094965][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1126.094970][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1126.094974][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1126.094977][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1126.094981][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1126.094985][ C3] handle_softirqs (kernel/softirq.c:579) [ 1126.094991][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1126.094995][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1126.094998][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1126.095001][ C3] [ 1126.095002][ C3] [ 1126.095003][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1126.095008][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1126.095011][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1126.095013][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1126.095015][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1126.095017][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1126.095019][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1126.095020][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1126.095022][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1126.095026][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1126.095032][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1126.095037][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1126.095040][ C3] ? xas_alloc (lib/xarray.c:378) [ 1126.095045][ C3] ? xas_alloc (lib/xarray.c:378) [ 1126.095048][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1126.095052][ C3] ? xas_alloc (lib/xarray.c:378) [ 1126.095054][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1126.095059][ C3] xas_alloc (lib/xarray.c:378) [ 1126.095064][ C3] xas_create (lib/xarray.c:685) [ 1126.095070][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1126.095074][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1126.095079][ C3] __xa_store (lib/xarray.c:1703) [ 1126.095082][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1126.095087][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1126.095090][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1126.095093][ C3] ? xa_store (lib/xarray.c:1734) [ 1126.095098][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1126.095101][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1126.095111][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1126.095116][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1126.095119][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1126.095123][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1126.095127][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1126.095130][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1126.095135][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1126.095139][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1126.095144][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1126.095147][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1126.095153][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1126.095160][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1126.095163][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1126.095168][ C3] ksys_unshare (kernel/fork.c:3121) [ 1126.095173][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1126.095176][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1126.095180][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1126.095182][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1126.095186][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1126.095192][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1126.095195][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1126.095200][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1126.095202][ C3] RIP: 0033:0x7f439756d93b [ 1126.095209][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1126.095212][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1126.095215][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1126.095216][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1126.095218][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1126.095220][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1126.095221][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1132.656139][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1132.656149][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1132.656152][ C0] softirqs last disabled at (0): 0x0 | [ 1132.656166][ C0] Tainted: [L]=SOFTLOCKUP [ 1132.656168][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1132.656170][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1132.656179][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1132.656182][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1132.656186][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1132.656188][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1132.656190][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1132.656192][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1132.656194][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1132.656196][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1132.656198][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1132.656203][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1132.656205][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1132.656206][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1132.656208][ C0] PKRU: 55555554 [ 1132.656209][ C0] Call Trace: [ 1132.656213][ C0] [ 1132.656217][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1132.656221][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1132.656226][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1132.656231][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1132.656239][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1132.656243][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1132.656246][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1132.656249][ C0] ? xa_store (lib/xarray.c:1734) [ 1132.656256][ C0] xa_store (lib/xarray.c:1734) [ 1132.656261][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1132.656268][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1132.656273][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1132.656276][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1132.656279][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1132.656285][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1132.656289][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1132.656297][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1132.656308][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1132.656313][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1132.656321][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1132.656326][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1132.656335][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1132.656339][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1132.656346][ C0] ksys_unshare (kernel/fork.c:3121) [ 1132.656352][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1132.656355][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1132.656360][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1132.656363][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1132.656366][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1132.656373][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1132.656377][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1132.656383][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1132.656388][ C0] RIP: 0033:0x7f439756d93b [ 1132.656396][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1132.656399][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1132.656402][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1132.656404][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1132.656406][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1132.656408][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1132.656410][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1136.669142][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1136.669151][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1136.669155][ C2] softirqs last disabled at (0): 0x0 | [ 1136.669170][ C2] Tainted: [L]=SOFTLOCKUP [ 1136.669172][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1136.669174][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1136.669184][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1136.669188][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1136.669191][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1136.669193][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1136.669195][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1136.669197][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1136.669200][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1136.669202][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1136.669204][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1136.669208][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1136.669210][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1136.669211][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1136.669213][ C2] PKRU: 55555554 [ 1136.669214][ C2] Call Trace: [ 1136.669219][ C2] [ 1136.669223][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1136.669227][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1136.669233][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1136.669237][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1136.669245][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1136.669248][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1136.669251][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1136.669254][ C2] ? xa_store (lib/xarray.c:1734) [ 1136.669262][ C2] xa_store (lib/xarray.c:1734) [ 1136.669266][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1136.669273][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1136.669278][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1136.669281][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1136.669284][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1136.669298][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1136.669302][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1136.669309][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1136.669313][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1136.669319][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1136.669326][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1136.669332][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1136.669341][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1136.669345][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1136.669352][ C2] ksys_unshare (kernel/fork.c:3121) [ 1136.669357][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1136.669361][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1136.669366][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1136.669369][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1136.669372][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1136.669381][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1136.669385][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1136.669391][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1136.669396][ C2] RIP: 0033:0x7f439756d93b [ 1136.669402][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1136.669405][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1136.669408][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1136.669410][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1136.669412][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1136.669414][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1136.669416][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1152.669143][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1152.669153][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1152.669157][ C1] softirqs last disabled at (0): 0x0 | [ 1152.669171][ C1] Tainted: [L]=SOFTLOCKUP [ 1152.669172][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1152.669175][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1152.669187][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1152.669190][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1152.669193][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1152.669195][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1152.669198][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1152.669200][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1152.669202][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1152.669204][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1152.669207][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1152.669210][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1152.669212][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1152.669214][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1152.669216][ C1] PKRU: 55555554 [ 1152.669217][ C1] Call Trace: [ 1152.669222][ C1] [ 1152.669226][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1152.669230][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1152.669236][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1152.669240][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1152.669248][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1152.669252][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1152.669255][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1152.669258][ C1] ? xa_store (lib/xarray.c:1734) [ 1152.669265][ C1] xa_store (lib/xarray.c:1734) [ 1152.669270][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1152.669276][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1152.669281][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1152.669289][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1152.669292][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1152.669300][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1152.669303][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1152.669311][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1152.669315][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1152.669320][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1152.669328][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1152.669333][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1152.669342][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1152.669347][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1152.669354][ C1] ksys_unshare (kernel/fork.c:3121) [ 1152.669359][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1152.669363][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1152.669368][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1152.669372][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1152.669375][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1152.669382][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1152.669386][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1152.669392][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1152.669398][ C1] RIP: 0033:0x7f439756d93b [ 1152.669403][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1152.669406][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1152.669409][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1152.669411][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1152.669413][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1152.669415][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1152.669417][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1152.670127][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1152.670132][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1152.670136][ C3] softirqs last disabled at (0): 0x0 | [ 1152.670146][ C3] Tainted: [L]=SOFTLOCKUP [ 1152.670148][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1152.670149][ C3] RIP: 0010:kasan_check_range (mm/kasan/generic.c:190) [ 1152.670154][ C3] Code: 00 00 48 85 d2 0f 84 4c ff ff ff 41 83 e2 07 49 39 d1 0f 85 34 ff ff ff 45 3a 11 0f 8d 2b ff ff ff 5b b8 01 00 00 00 5d 41 5c cc cc cc cc 41 bc 08 00 00 00 45 29 dc 49 8d 14 2c eb 0c 48 83 All code ======== 0: 00 00 add %al,(%rax) 2: 48 85 d2 test %rdx,%rdx 5: 0f 84 4c ff ff ff je 0xffffffffffffff57 b: 41 83 e2 07 and $0x7,%r10d f: 49 39 d1 cmp %rdx,%r9 12: 0f 85 34 ff ff ff jne 0xffffffffffffff4c 18: 45 3a 11 cmp (%r9),%r10b 1b: 0f 8d 2b ff ff ff jge 0xffffffffffffff4c 21: 5b pop %rbx 22: b8 01 00 00 00 mov $0x1,%eax 27: 5d pop %rbp 28: 41 5c pop %r12 2a:* c3 ret <-- trapping instruction 2b: cc int3 2c: cc int3 2d: cc int3 2e: cc int3 2f: 41 bc 08 00 00 00 mov $0x8,%r12d 35: 45 29 dc sub %r11d,%r12d 38: 49 8d 14 2c lea (%r12,%rbp,1),%rdx 3c: eb 0c jmp 0x4a 3e: 48 rex.W 3f: 83 .byte 0x83 Code starting with the faulting instruction =========================================== 0: c3 ret 1: cc int3 2: cc int3 3: cc int3 4: cc int3 5: 41 bc 08 00 00 00 mov $0x8,%r12d b: 45 29 dc sub %r11d,%r12d e: 49 8d 14 2c lea (%r12,%rbp,1),%rdx 12: eb 0c jmp 0x20 14: 48 rex.W 15: 83 .byte 0x83 [ 1152.670157][ C3] RSP: 0018:ffffc90000270a40 EFLAGS: 00000246 [ 1152.670160][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1152.670162][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1152.670164][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1152.670166][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1152.670168][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1152.670170][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1152.670173][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1152.670176][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1152.670178][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1152.670179][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1152.670181][ C3] PKRU: 55555554 [ 1152.670182][ C3] Call Trace: [ 1152.670185][ C3] [ 1152.670186][ C3] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1152.670192][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1152.670197][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1152.670202][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1152.670205][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1152.670209][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1152.670214][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1152.670217][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1152.670221][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1152.670228][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1152.670232][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1152.670234][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1152.670237][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1152.670240][ C3] ? xas_alloc (lib/xarray.c:378) [ 1152.670245][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1152.670249][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1152.670252][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1152.670255][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1152.670261][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1152.670264][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1152.670270][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1152.670274][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1152.670279][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1152.670285][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1152.670287][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1152.670291][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1152.670295][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1152.670298][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1152.670301][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1152.670306][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1152.670309][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1152.670312][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1152.670317][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1152.670321][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1152.670325][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1152.670328][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1152.670332][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1152.670335][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1152.670340][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1152.670344][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1152.670347][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1152.670352][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1152.670356][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1152.670359][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1152.670364][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1152.670368][ C3] handle_softirqs (kernel/softirq.c:579) [ 1152.670374][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1152.670378][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1152.670381][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1152.670384][ C3] [ 1152.670385][ C3] [ 1152.670386][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1152.670390][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1152.670394][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1152.670397][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1152.670400][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1152.670402][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1152.670404][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1152.670406][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1152.670408][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1152.670412][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1152.670417][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1152.670423][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1152.670427][ C3] ? xas_alloc (lib/xarray.c:378) [ 1152.670431][ C3] ? xas_alloc (lib/xarray.c:378) [ 1152.670434][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1152.670438][ C3] ? xas_alloc (lib/xarray.c:378) [ 1152.670441][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1152.670446][ C3] xas_alloc (lib/xarray.c:378) [ 1152.670450][ C3] xas_create (lib/xarray.c:685) [ 1152.670456][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1152.670461][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1152.670465][ C3] __xa_store (lib/xarray.c:1703) [ 1152.670469][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1152.670473][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1152.670476][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1152.670479][ C3] ? xa_store (lib/xarray.c:1734) [ 1152.670484][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1152.670488][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1152.670491][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1152.670495][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1152.670498][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1152.670501][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1152.670505][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1152.670508][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1152.670513][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1152.670517][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1152.670522][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1152.670525][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1152.670530][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1152.670537][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1152.670540][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1152.670545][ C3] ksys_unshare (kernel/fork.c:3121) [ 1152.670549][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1152.670552][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1152.670556][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1152.670559][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1152.670562][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1152.670568][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1152.670571][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1152.670576][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1152.670579][ C3] RIP: 0033:0x7f439756d93b [ 1152.670583][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1152.670585][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1152.670588][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1152.670590][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1152.670592][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1152.670593][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1152.670595][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1160.656138][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1160.656154][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1160.656158][ C0] softirqs last disabled at (0): 0x0 | [ 1160.656171][ C0] Tainted: [L]=SOFTLOCKUP [ 1160.656173][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1160.656174][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1160.656183][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1160.656186][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1160.656189][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1160.656191][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1160.656193][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1160.656195][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1160.656197][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1160.656199][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1160.656201][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1160.656206][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1160.656207][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1160.656209][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1160.656211][ C0] PKRU: 55555554 [ 1160.656212][ C0] Call Trace: [ 1160.656216][ C0] [ 1160.656220][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1160.656224][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1160.656229][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1160.656234][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1160.656242][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1160.656246][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1160.656249][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1160.656251][ C0] ? xa_store (lib/xarray.c:1734) [ 1160.656258][ C0] xa_store (lib/xarray.c:1734) [ 1160.656263][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1160.656269][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1160.656274][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1160.656277][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1160.656280][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1160.656287][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1160.656290][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1160.656298][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1160.656302][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1160.656308][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1160.656315][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1160.656320][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1160.656329][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1160.656333][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1160.656340][ C0] ksys_unshare (kernel/fork.c:3121) [ 1160.656345][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1160.656349][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1160.656355][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1160.656359][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1160.656362][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1160.656370][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1160.656374][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1160.656379][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1160.656384][ C0] RIP: 0033:0x7f439756d93b [ 1160.656389][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1160.656392][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1160.656395][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1160.656397][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1160.656398][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1160.656400][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1160.656402][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1164.669141][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1164.669152][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1164.669156][ C2] softirqs last disabled at (0): 0x0 | [ 1164.669170][ C2] Tainted: [L]=SOFTLOCKUP [ 1164.669172][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1164.669174][ C2] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1164.669184][ C2] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 1164.669188][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1164.669191][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1164.669194][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1164.669196][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1164.669198][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1164.669200][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1164.669202][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1164.669205][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1164.669209][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1164.669211][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1164.669212][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1164.669214][ C2] PKRU: 55555554 [ 1164.669215][ C2] Call Trace: [ 1164.669219][ C2] [ 1164.669223][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1164.669228][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1164.669233][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1164.669238][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1164.669246][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1164.669250][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1164.669261][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1164.669265][ C2] ? xa_store (lib/xarray.c:1734) [ 1164.669272][ C2] xa_store (lib/xarray.c:1734) [ 1164.669278][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1164.669286][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1164.669291][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1164.669294][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1164.669297][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1164.669304][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1164.669308][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1164.669316][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1164.669320][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1164.669325][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1164.669333][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1164.669340][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1164.669349][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1164.669353][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1164.669361][ C2] ksys_unshare (kernel/fork.c:3121) [ 1164.669366][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1164.669371][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1164.669377][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1164.669380][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1164.669384][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1164.669391][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1164.669395][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1164.669400][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1164.669407][ C2] RIP: 0033:0x7f439756d93b [ 1164.669413][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1164.669415][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1164.669419][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1164.669421][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1164.669423][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1164.669424][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1164.669426][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1180.669179][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1180.669200][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1180.669204][ C1] softirqs last disabled at (0): 0x0 | [ 1180.669227][ C1] Tainted: [L]=SOFTLOCKUP [ 1180.669229][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1180.669234][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1180.669264][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1180.669268][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1180.669274][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1180.669276][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1180.669279][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1180.669282][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1180.669284][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1180.669286][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1180.669289][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1180.669293][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1180.669295][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1180.669297][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1180.669298][ C1] PKRU: 55555554 [ 1180.669299][ C1] Call Trace: [ 1180.669311][ C1] [ 1180.669316][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1180.669321][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1180.669329][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1180.669337][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1180.669350][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1180.669354][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1180.669357][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1180.669360][ C1] ? xa_store (lib/xarray.c:1734) [ 1180.669372][ C1] xa_store (lib/xarray.c:1734) [ 1180.669378][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1180.669389][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1180.669394][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1180.669397][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1180.669400][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1180.669413][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1180.669417][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1180.669429][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1180.669434][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1180.669445][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1180.669458][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1180.669464][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1180.669480][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1180.669485][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1180.669497][ C1] ksys_unshare (kernel/fork.c:3121) [ 1180.669503][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1180.669507][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1180.669515][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1180.669520][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1180.669525][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1180.669535][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1180.669538][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1180.669550][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1180.669562][ C1] RIP: 0033:0x7f439756d93b [ 1180.669571][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1180.669575][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1180.669579][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1180.669581][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1180.669583][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1180.669586][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1180.669588][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1180.670130][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1180.670136][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1180.670141][ C3] softirqs last disabled at (0): 0x0 | [ 1180.670156][ C3] Tainted: [L]=SOFTLOCKUP [ 1180.670158][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1180.670161][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1180.670168][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1180.670173][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1180.670176][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1180.670178][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1180.670180][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1180.670184][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1180.670187][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1180.670191][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1180.670193][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1180.670198][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1180.670200][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1180.670201][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1180.670203][ C3] PKRU: 55555554 [ 1180.670204][ C3] Call Trace: [ 1180.670206][ C3] [ 1180.670209][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1180.670218][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1180.670225][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1180.670229][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1180.670235][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1180.670244][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1180.670248][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1180.670252][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1180.670256][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1180.670261][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1180.670264][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1180.670271][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1180.670275][ C3] ? xas_alloc (lib/xarray.c:378) [ 1180.670280][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1180.670284][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1180.670290][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1180.670294][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1180.670299][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1180.670305][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1180.670311][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1180.670317][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1180.670325][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1180.670332][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1180.670335][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1180.670339][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1180.670343][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1180.670347][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1180.670350][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1180.670362][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1180.670365][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1180.670369][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1180.670373][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1180.670380][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1180.670384][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1180.670387][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1180.670391][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1180.670395][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1180.670399][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1180.670405][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1180.670408][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1180.670414][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1180.670419][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1180.670423][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1180.670428][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1180.670434][ C3] handle_softirqs (kernel/softirq.c:579) [ 1180.670441][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1180.670446][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1180.670450][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1180.670454][ C3] [ 1180.670455][ C3] [ 1180.670456][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1180.670462][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1180.670465][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1180.670469][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1180.670473][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1180.670475][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1180.670478][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1180.670480][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1180.670487][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1180.670493][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1180.670499][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1180.670505][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1180.670513][ C3] ? xas_alloc (lib/xarray.c:378) [ 1180.670518][ C3] ? xas_alloc (lib/xarray.c:378) [ 1180.670521][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1180.670525][ C3] ? xas_alloc (lib/xarray.c:378) [ 1180.670528][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1180.670533][ C3] xas_alloc (lib/xarray.c:378) [ 1180.670538][ C3] xas_create (lib/xarray.c:685) [ 1180.670544][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1180.670551][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1180.670554][ C3] __xa_store (lib/xarray.c:1703) [ 1180.670559][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1180.670563][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1180.670566][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1180.670570][ C3] ? xa_store (lib/xarray.c:1734) [ 1180.670575][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1180.670579][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1180.670583][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1180.670589][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1180.670592][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1180.670596][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1180.670601][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1180.670605][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1180.670610][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1180.670614][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1180.670619][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1180.670622][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1180.670628][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1180.670635][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1180.670638][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1180.670643][ C3] ksys_unshare (kernel/fork.c:3121) [ 1180.670647][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1180.670651][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1180.670654][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1180.670657][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1180.670661][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1180.670667][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1180.670671][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1180.670675][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1180.670679][ C3] RIP: 0033:0x7f439756d93b [ 1180.670687][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1180.670691][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1180.670694][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1180.670699][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1180.670701][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1180.670704][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1180.670706][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1188.656176][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1188.656189][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1188.656196][ C0] softirqs last disabled at (0): 0x0 | [ 1188.656217][ C0] Tainted: [L]=SOFTLOCKUP [ 1188.656219][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1188.656223][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1188.656239][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1188.656245][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1188.656250][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1188.656254][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1188.656257][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1188.656260][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1188.656264][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1188.656267][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1188.656271][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1188.656278][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1188.656281][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1188.656285][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1188.656288][ C0] PKRU: 55555554 [ 1188.656290][ C0] Call Trace: [ 1188.656298][ C0] [ 1188.656306][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1188.656313][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1188.656323][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1188.656330][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1188.656345][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1188.656352][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1188.656357][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1188.656362][ C0] ? xa_store (lib/xarray.c:1734) [ 1188.656375][ C0] xa_store (lib/xarray.c:1734) [ 1188.656382][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1188.656393][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1188.656403][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1188.656408][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1188.656412][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1188.656424][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1188.656429][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1188.656442][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1188.656449][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1188.656457][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1188.656472][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1188.656481][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1188.656496][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1188.656503][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1188.656515][ C0] ksys_unshare (kernel/fork.c:3121) [ 1188.656522][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1188.656527][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1188.656535][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1188.656540][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1188.656545][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1188.656556][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1188.656578][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1188.656588][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1188.656596][ C0] RIP: 0033:0x7f439756d93b [ 1188.656604][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1188.656608][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1188.656613][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1188.656617][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1188.656620][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1188.656623][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1188.656626][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1192.669165][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1192.669180][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1192.669185][ C2] softirqs last disabled at (0): 0x0 | [ 1192.669205][ C2] Tainted: [L]=SOFTLOCKUP [ 1192.669207][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1192.669211][ C2] RIP: 0010:kasan_check_range (mm/kasan/generic.c:86 mm/kasan/generic.c:104 mm/kasan/generic.c:129 mm/kasan/generic.c:161 mm/kasan/generic.c:180 mm/kasan/generic.c:189) [ 1192.669221][ C2] Code: d0 74 11 80 38 00 74 ef 4d 8d 1c 2c 48 89 c2 48 85 c0 75 b0 48 89 da 4c 89 d8 4c 29 da e9 49 ff ff ff 48 85 d2 74 b3 48 01 ea 09 48 83 c0 01 48 39 d0 74 a5 80 38 00 74 f2 e9 74 ff ff ff b8 All code ======== 0: d0 74 11 80 shlb $1,-0x80(%rcx,%rdx,1) 4: 38 00 cmp %al,(%rax) 6: 74 ef je 0xfffffffffffffff7 8: 4d 8d 1c 2c lea (%r12,%rbp,1),%r11 c: 48 89 c2 mov %rax,%rdx f: 48 85 c0 test %rax,%rax 12: 75 b0 jne 0xffffffffffffffc4 14: 48 89 da mov %rbx,%rdx 17: 4c 89 d8 mov %r11,%rax 1a: 4c 29 da sub %r11,%rdx 1d: e9 49 ff ff ff jmp 0xffffffffffffff6b 22: 48 85 d2 test %rdx,%rdx 25: 74 b3 je 0xffffffffffffffda 27: 48 01 ea add %rbp,%rdx 2a:* eb 09 jmp 0x35 <-- trapping instruction 2c: 48 83 c0 01 add $0x1,%rax 30: 48 39 d0 cmp %rdx,%rax 33: 74 a5 je 0xffffffffffffffda 35: 80 38 00 cmpb $0x0,(%rax) 38: 74 f2 je 0x2c 3a: e9 74 ff ff ff jmp 0xffffffffffffffb3 3f: b8 .byte 0xb8 Code starting with the faulting instruction =========================================== 0: eb 09 jmp 0xb 2: 48 83 c0 01 add $0x1,%rax 6: 48 39 d0 cmp %rdx,%rax 9: 74 a5 je 0xffffffffffffffb0 b: 80 38 00 cmpb $0x0,(%rax) e: 74 f2 je 0x2 10: e9 74 ff ff ff jmp 0xffffffffffffff89 15: b8 .byte 0xb8 [ 1192.669225][ C2] RSP: 0018:ffffc900034d79f8 EFLAGS: 00000286 [ 1192.669229][ C2] RAX: fffffbfff77dcb80 RBX: fffffbfff77dcb81 RCX: ffffffffb7cc5ea3 [ 1192.669232][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1192.669234][ C2] RBP: fffffbfff77dcb80 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1192.669236][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1192.669239][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1192.669242][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1192.669245][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1192.669249][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1192.669251][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1192.669253][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1192.669255][ C2] PKRU: 55555554 [ 1192.669256][ C2] Call Trace: [ 1192.669266][ C2] [ 1192.669272][ C2] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1192.669290][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1192.669293][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1192.669300][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1192.669307][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1192.669317][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1192.669322][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1192.669326][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1192.669329][ C2] ? xa_store (lib/xarray.c:1734) [ 1192.669338][ C2] xa_store (lib/xarray.c:1734) [ 1192.669344][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1192.669353][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1192.669359][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1192.669362][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1192.669366][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1192.669376][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1192.669392][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1192.669403][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1192.669406][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1192.669412][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1192.669425][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1192.669430][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1192.669445][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1192.669450][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1192.669459][ C2] ksys_unshare (kernel/fork.c:3121) [ 1192.669465][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1192.669469][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1192.669480][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1192.669483][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1192.669487][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1192.669496][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1192.669503][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1192.669512][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1192.669519][ C2] RIP: 0033:0x7f439756d93b [ 1192.669527][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1192.669531][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1192.669535][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1192.669537][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1192.669540][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1192.669542][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1192.669544][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1204.108030][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1204.108329][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1204.108613][ C1] NMI backtrace for cpu 1 | [ 1204.108637][ C1] Tainted: [L]=SOFTLOCKUP [ 1204.108639][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1204.108643][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1204.108655][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1204.108660][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1204.108664][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1204.108667][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1204.108669][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1204.108672][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1204.108680][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1204.108683][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1204.108686][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1204.108690][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1204.108693][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1204.108694][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1204.108697][ C1] PKRU: 55555554 [ 1204.108698][ C1] Call Trace: [ 1204.108702][ C1] [ 1204.108707][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1204.108712][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1204.108717][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1204.108721][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1204.108732][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1204.108736][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1204.108740][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1204.108743][ C1] ? xa_store (lib/xarray.c:1734) [ 1204.108753][ C1] xa_store (lib/xarray.c:1734) [ 1204.108757][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1204.108767][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1204.108773][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1204.108776][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1204.108779][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1204.108785][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1204.108788][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1204.108798][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1204.108802][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1204.108808][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1204.108818][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1204.108823][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1204.108832][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1204.108836][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1204.108846][ C1] ksys_unshare (kernel/fork.c:3121) [ 1204.108856][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1204.108859][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1204.108866][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1204.108871][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1204.108875][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1204.108886][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1204.108890][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1204.108897][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1204.108904][ C1] RIP: 0033:0x7f439756d93b [ 1204.108912][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1204.108916][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1204.108919][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1204.108922][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1204.108924][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1204.108926][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1204.108928][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1204.108926][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1204.108928][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1204.108935][ C1] | [ 1204.109614][ C3] Tainted: [L]=SOFTLOCKUP [ 1204.109616][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1204.109618][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1204.109625][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1204.109629][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1204.109632][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1204.109635][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1204.109638][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1204.109641][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1204.109644][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1204.109646][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1204.109649][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1204.109654][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1204.109656][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1204.109658][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1204.109665][ C3] PKRU: 55555554 [ 1204.109666][ C3] Call Trace: [ 1204.109668][ C3] [ 1204.109669][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1204.109680][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1204.109687][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1204.109691][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1204.109697][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1204.109707][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1204.109711][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1204.109716][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1204.109720][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1204.109725][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1204.109728][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1204.109731][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1204.109734][ C3] ? xas_alloc (lib/xarray.c:378) [ 1204.109739][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1204.109743][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1204.109746][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1204.109749][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1204.109756][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1204.109760][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1204.109766][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1204.109771][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1204.109777][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1204.109782][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1204.109786][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1204.109788][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1204.109792][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1204.109796][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1204.109798][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1204.109810][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1204.109813][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1204.109816][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1204.109821][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1204.109825][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1204.109829][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1204.109831][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1204.109839][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1204.109845][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1204.109850][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1204.109854][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1204.109857][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1204.109862][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1204.109866][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1204.109870][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1204.109875][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1204.109880][ C3] handle_softirqs (kernel/softirq.c:579) [ 1204.109885][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1204.109890][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1204.109894][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1204.109898][ C3] [ 1204.109900][ C3] [ 1204.109901][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1204.109906][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1204.109913][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1204.109916][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1204.109919][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1204.109921][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1204.109923][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1204.109925][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1204.109927][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1204.109931][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1204.109937][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1204.109942][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1204.109946][ C3] ? xas_alloc (lib/xarray.c:378) [ 1204.109951][ C3] ? xas_alloc (lib/xarray.c:378) [ 1204.109953][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1204.109958][ C3] ? xas_alloc (lib/xarray.c:378) [ 1204.109961][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1204.109966][ C3] xas_alloc (lib/xarray.c:378) [ 1204.109971][ C3] xas_create (lib/xarray.c:685) [ 1204.109978][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1204.109983][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1204.109987][ C3] __xa_store (lib/xarray.c:1703) [ 1204.109992][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1204.109996][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1204.109999][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1204.110002][ C3] ? xa_store (lib/xarray.c:1734) [ 1204.110007][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1204.110011][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1204.110014][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1204.110019][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1204.110021][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1204.110024][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1204.110028][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1204.110031][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1204.110038][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1204.110041][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1204.110046][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1204.110051][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1204.110055][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1204.110062][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1204.110065][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1204.110071][ C3] ksys_unshare (kernel/fork.c:3121) [ 1204.110077][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1204.110080][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1204.110084][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1204.110087][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1204.110090][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1204.110096][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1204.110100][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1204.110105][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1204.110108][ C3] RIP: 0033:0x7f439756d93b [ 1204.110114][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1204.110117][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1204.110120][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1204.110122][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1204.110124][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1204.110126][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1204.110128][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1216.656150][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1216.656160][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1216.656164][ C0] softirqs last disabled at (0): 0x0 | [ 1216.656179][ C0] Tainted: [L]=SOFTLOCKUP [ 1216.656181][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1216.656184][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1216.656195][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1216.656199][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1216.656203][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1216.656205][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1216.656207][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1216.656209][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1216.656211][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1216.656213][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1216.656216][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1216.656219][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1216.656221][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1216.656223][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1216.656225][ C0] PKRU: 55555554 [ 1216.656226][ C0] Call Trace: [ 1216.656231][ C0] [ 1216.656236][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1216.656240][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1216.656246][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1216.656251][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1216.656259][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1216.656264][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1216.656267][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1216.656269][ C0] ? xa_store (lib/xarray.c:1734) [ 1216.656277][ C0] xa_store (lib/xarray.c:1734) [ 1216.656282][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1216.656288][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1216.656294][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1216.656296][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1216.656307][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1216.656314][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1216.656318][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1216.656326][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1216.656330][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1216.656335][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1216.656343][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1216.656348][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1216.656361][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1216.656365][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1216.656373][ C0] ksys_unshare (kernel/fork.c:3121) [ 1216.656378][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1216.656381][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1216.656387][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1216.656391][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1216.656395][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1216.656402][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1216.656406][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1216.656413][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1216.656418][ C0] RIP: 0033:0x7f439756d93b [ 1216.656424][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1216.656427][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1216.656431][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1216.656433][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1216.656435][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1216.656436][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1216.656438][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1220.669139][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1220.669149][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1220.669152][ C2] softirqs last disabled at (0): 0x0 | [ 1220.669167][ C2] Tainted: [L]=SOFTLOCKUP [ 1220.669168][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1220.669171][ C2] RIP: 0010:kasan_check_range (mm/kasan/generic.c:174 mm/kasan/generic.c:189) [ 1220.669178][ C2] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 53 <72> 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 23 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 66 0f 1f 00 nopw (%rax) 13: 48 85 f6 test %rsi,%rsi 16: 0f 84 5e 01 00 00 je 0x17a 1c: 48 89 f8 mov %rdi,%rax 1f: 41 54 push %r12 21: 44 0f b6 c2 movzbl %dl,%r8d 25: 48 01 f0 add %rsi,%rax 28: 55 push %rbp 29: 53 push %rbx 2a:* 72 14 jb 0x40 <-- trapping instruction 2c: eb 26 jmp 0x54 2e: cc int3 2f: cc int3 30: cc int3 31: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 38: ff ff fe 3b: 48 39 c7 cmp %rax,%rdi 3e: 77 23 ja 0x63 Code starting with the faulting instruction =========================================== 0: 72 14 jb 0x16 2: eb 26 jmp 0x2a 4: cc int3 5: cc int3 6: cc int3 7: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax e: ff ff fe 11: 48 39 c7 cmp %rax,%rdi 14: 77 23 ja 0x39 [ 1220.669182][ C2] RSP: 0018:ffffc900034d79f8 EFLAGS: 00000282 [ 1220.669186][ C2] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1220.669188][ C2] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1220.669190][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1220.669192][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1220.669194][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1220.669197][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1220.669199][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1220.669203][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1220.669205][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1220.669214][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1220.669215][ C2] PKRU: 55555554 [ 1220.669217][ C2] Call Trace: [ 1220.669220][ C2] [ 1220.669224][ C2] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1220.669237][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1220.669241][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1220.669246][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1220.669252][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1220.669261][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1220.669265][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1220.669268][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1220.669271][ C2] ? xa_store (lib/xarray.c:1734) [ 1220.669278][ C2] xa_store (lib/xarray.c:1734) [ 1220.669282][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1220.669291][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1220.669296][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1220.669300][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1220.669302][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1220.669310][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1220.669313][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1220.669321][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1220.669325][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1220.669331][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1220.669339][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1220.669344][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1220.669353][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1220.669358][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1220.669364][ C2] ksys_unshare (kernel/fork.c:3121) [ 1220.669369][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1220.669373][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1220.669378][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1220.669381][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1220.669384][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1220.669391][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1220.669396][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1220.669401][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1220.669407][ C2] RIP: 0033:0x7f439756d93b [ 1220.669413][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1220.669415][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1220.669419][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1220.669421][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1220.669423][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1220.669425][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1220.669427][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1228.669142][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1228.669157][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1228.669161][ C1] softirqs last disabled at (0): 0x0 | [ 1228.669176][ C1] Tainted: [L]=SOFTLOCKUP [ 1228.669177][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1228.669180][ C1] RIP: 0010:kasan_check_range (mm/kasan/generic.c:188) [ 1228.669188][ C1] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 <53> 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 66 0f 1f 00 nopw (%rax) 14: 48 85 f6 test %rsi,%rsi 17: 0f 84 5e 01 00 00 je 0x17b 1d: 48 89 f8 mov %rdi,%rax 20: 41 54 push %r12 22: 44 0f b6 c2 movzbl %dl,%r8d 26: 48 01 f0 add %rsi,%rax 29: 55 push %rbp 2a:* 53 push %rbx <-- trapping instruction 2b: 72 14 jb 0x41 2d: eb 26 jmp 0x55 2f: cc int3 30: cc int3 31: cc int3 32: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 39: ff ff fe 3c: 48 39 c7 cmp %rax,%rdi 3f: 77 .byte 0x77 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: 72 14 jb 0x17 3: eb 26 jmp 0x2b 5: cc int3 6: cc int3 7: cc int3 8: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax f: ff ff fe 12: 48 39 c7 cmp %rax,%rdi 15: 77 .byte 0x77 [ 1228.669191][ C1] RSP: 0018:ffffc900034b7a00 EFLAGS: 00000282 [ 1228.669195][ C1] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1228.669197][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1228.669199][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1228.669201][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1228.669204][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1228.669206][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1228.669208][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1228.669212][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1228.669214][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1228.669215][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1228.669217][ C1] PKRU: 55555554 [ 1228.669218][ C1] Call Trace: [ 1228.669222][ C1] [ 1228.669226][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1228.669238][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1228.669241][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1228.669247][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1228.669251][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1228.669259][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1228.669263][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1228.669268][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1228.669271][ C1] ? xa_store (lib/xarray.c:1734) [ 1228.669279][ C1] xa_store (lib/xarray.c:1734) [ 1228.669284][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1228.669291][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1228.669296][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1228.669299][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1228.669302][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1228.669309][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1228.669313][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1228.669320][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1228.669324][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1228.669329][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1228.669337][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1228.669342][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1228.669351][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1228.669355][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1228.669361][ C1] ksys_unshare (kernel/fork.c:3121) [ 1228.669367][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1228.669372][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1228.669377][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1228.669380][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1228.669384][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1228.669391][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1228.669395][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1228.669402][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1228.669407][ C1] RIP: 0033:0x7f439756d93b [ 1228.669412][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1228.669415][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1228.669418][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1228.669420][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1228.669422][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1228.669424][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1228.669426][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1228.670140][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1228.670149][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1228.670152][ C3] softirqs last disabled at (0): 0x0 | [ 1228.670166][ C3] Tainted: [L]=SOFTLOCKUP [ 1228.670168][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1228.670170][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1228.670179][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1228.670183][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1228.670186][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1228.670188][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1228.670190][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1228.670192][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1228.670194][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1228.670196][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1228.670198][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1228.670202][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1228.670204][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1228.670205][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1228.670207][ C3] PKRU: 55555554 [ 1228.670208][ C3] Call Trace: [ 1228.670213][ C3] [ 1228.670214][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1228.670223][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1228.670229][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1228.670232][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1228.670249][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1228.670255][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1228.670259][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1228.670263][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1228.670267][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1228.670271][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1228.670273][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1228.670276][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1228.670279][ C3] ? xas_alloc (lib/xarray.c:378) [ 1228.670285][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1228.670290][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1228.670293][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1228.670299][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1228.670304][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1228.670309][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1228.670314][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1228.670320][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1228.670327][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1228.670335][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1228.670338][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1228.670341][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1228.670344][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1228.670347][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1228.670350][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1228.670359][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1228.670362][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1228.670365][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1228.670371][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1228.670378][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1228.670381][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1228.670384][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1228.670389][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1228.670392][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1228.670397][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1228.670402][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1228.670404][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1228.670410][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1228.670414][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1228.670417][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1228.670422][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1228.670426][ C3] handle_softirqs (kernel/softirq.c:579) [ 1228.670432][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1228.670436][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1228.670439][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1228.670444][ C3] [ 1228.670445][ C3] [ 1228.670447][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1228.670457][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1228.670462][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1228.670466][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1228.670471][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1228.670474][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1228.670477][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1228.670480][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1228.670482][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1228.670486][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1228.670492][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1228.670498][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1228.670502][ C3] ? xas_alloc (lib/xarray.c:378) [ 1228.670507][ C3] ? xas_alloc (lib/xarray.c:378) [ 1228.670510][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1228.670514][ C3] ? xas_alloc (lib/xarray.c:378) [ 1228.670517][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1228.670522][ C3] xas_alloc (lib/xarray.c:378) [ 1228.670526][ C3] xas_create (lib/xarray.c:685) [ 1228.670533][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1228.670537][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1228.670541][ C3] __xa_store (lib/xarray.c:1703) [ 1228.670545][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1228.670549][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1228.670552][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1228.670555][ C3] ? xa_store (lib/xarray.c:1734) [ 1228.670560][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1228.670564][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1228.670568][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1228.670573][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1228.670576][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1228.670578][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1228.670582][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1228.670585][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1228.670590][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1228.670594][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1228.670599][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1228.670603][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1228.670608][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1228.670620][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1228.670624][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1228.670630][ C3] ksys_unshare (kernel/fork.c:3121) [ 1228.670635][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1228.670638][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1228.670642][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1228.670644][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1228.670647][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1228.670656][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1228.670660][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1228.670665][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1228.670669][ C3] RIP: 0033:0x7f439756d93b [ 1228.670674][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1228.670677][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1228.670680][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1228.670682][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1228.670684][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1228.670685][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1228.670687][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1244.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1244.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1244.656148][ C0] softirqs last disabled at (0): 0x0 | [ 1244.656160][ C0] Tainted: [L]=SOFTLOCKUP [ 1244.656162][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1244.656164][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1244.656173][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1244.656176][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1244.656179][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1244.656181][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1244.656183][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1244.656185][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1244.656187][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1244.656189][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1244.656191][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1244.656196][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1244.656198][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1244.656199][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1244.656201][ C0] PKRU: 55555554 [ 1244.656202][ C0] Call Trace: [ 1244.656206][ C0] [ 1244.656210][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1244.656214][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1244.656220][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1244.656224][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1244.656232][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1244.656236][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1244.656239][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1244.656242][ C0] ? xa_store (lib/xarray.c:1734) [ 1244.656249][ C0] xa_store (lib/xarray.c:1734) [ 1244.656254][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1244.656260][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1244.656265][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1244.656268][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1244.656271][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1244.656277][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1244.656281][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1244.656288][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1244.656292][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1244.656304][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1244.656311][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1244.656316][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1244.656325][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1244.656329][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1244.656336][ C0] ksys_unshare (kernel/fork.c:3121) [ 1244.656342][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1244.656345][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1244.656349][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1244.656352][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1244.656356][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1244.656363][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1244.656366][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1244.656372][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1244.656377][ C0] RIP: 0033:0x7f439756d93b [ 1244.656382][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1244.656385][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1244.656388][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1244.656390][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1244.656391][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1244.656393][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1244.656395][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1248.669143][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1248.669154][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1248.669158][ C2] softirqs last disabled at (0): 0x0 | [ 1248.669171][ C2] Tainted: [L]=SOFTLOCKUP [ 1248.669173][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1248.669176][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1248.669186][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1248.669190][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1248.669193][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1248.669196][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1248.669198][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1248.669200][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1248.669202][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1248.669204][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1248.669207][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1248.669217][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1248.669219][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1248.669221][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1248.669224][ C2] PKRU: 55555554 [ 1248.669225][ C2] Call Trace: [ 1248.669229][ C2] [ 1248.669234][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1248.669238][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1248.669244][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1248.669249][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1248.669257][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1248.669261][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1248.669265][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1248.669268][ C2] ? xa_store (lib/xarray.c:1734) [ 1248.669275][ C2] xa_store (lib/xarray.c:1734) [ 1248.669280][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1248.669287][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1248.669292][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1248.669295][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1248.669298][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1248.669306][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1248.669310][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1248.669318][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1248.669322][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1248.669327][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1248.669335][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1248.669340][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1248.669349][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1248.669353][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1248.669361][ C2] ksys_unshare (kernel/fork.c:3121) [ 1248.669366][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1248.669369][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1248.669375][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1248.669378][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1248.669382][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1248.669390][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1248.669394][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1248.669399][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1248.669406][ C2] RIP: 0033:0x7f439756d93b [ 1248.669411][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1248.669414][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1248.669418][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1248.669420][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1248.669422][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1248.669424][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1248.669426][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1256.669141][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1256.669152][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1256.669156][ C1] softirqs last disabled at (0): 0x0 | [ 1256.669169][ C1] Tainted: [L]=SOFTLOCKUP [ 1256.669171][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1256.669174][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1256.669185][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1256.669188][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1256.669191][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1256.669194][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1256.669196][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1256.669198][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1256.669200][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1256.669202][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1256.669204][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1256.669209][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1256.669210][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1256.669212][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1256.669214][ C1] PKRU: 55555554 [ 1256.669215][ C1] Call Trace: [ 1256.669220][ C1] [ 1256.669224][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1256.669228][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1256.669234][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1256.669238][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1256.669246][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1256.669250][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1256.669253][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1256.669256][ C1] ? xa_store (lib/xarray.c:1734) [ 1256.669263][ C1] xa_store (lib/xarray.c:1734) [ 1256.669268][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1256.669275][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1256.669280][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1256.669283][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1256.669286][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1256.669293][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1256.669303][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1256.669312][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1256.669316][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1256.669321][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1256.669329][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1256.669334][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1256.669344][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1256.669348][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1256.669355][ C1] ksys_unshare (kernel/fork.c:3121) [ 1256.669360][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1256.669364][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1256.669369][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1256.669372][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1256.669376][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1256.669383][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1256.669388][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1256.669393][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1256.669399][ C1] RIP: 0033:0x7f439756d93b [ 1256.669405][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1256.669408][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1256.669411][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1256.669413][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1256.669415][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1256.669417][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1256.669419][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1256.670141][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1256.670151][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1256.670155][ C3] softirqs last disabled at (0): 0x0 | [ 1256.670168][ C3] Tainted: [L]=SOFTLOCKUP [ 1256.670170][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1256.670172][ C3] RIP: 0010:kasan_check_range (./include/linux/kasan.h:64 mm/kasan/generic.c:130 mm/kasan/generic.c:161 mm/kasan/generic.c:180 mm/kasan/generic.c:189) [ 1256.670179][ C3] Code: 5b 5d 41 5c c3 cc cc cc cc 48 b8 ff ff ff ff ff 7f ff ff 48 39 c7 76 dd 4c 8d 54 37 ff 48 89 fd 48 b8 00 00 00 00 00 fc ff df <4d> 89 d1 48 c1 ed 03 49 c1 e9 03 48 01 c5 49 01 c1 48 89 e8 49 8d All code ======== 0: 5b pop %rbx 1: 5d pop %rbp 2: 41 5c pop %r12 4: c3 ret 5: cc int3 6: cc int3 7: cc int3 8: cc int3 9: 48 b8 ff ff ff ff ff movabs $0xffff7fffffffffff,%rax 10: 7f ff ff 13: 48 39 c7 cmp %rax,%rdi 16: 76 dd jbe 0xfffffffffffffff5 18: 4c 8d 54 37 ff lea -0x1(%rdi,%rsi,1),%r10 1d: 48 89 fd mov %rdi,%rbp 20: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 27: fc ff df 2a:* 4d 89 d1 mov %r10,%r9 <-- trapping instruction 2d: 48 c1 ed 03 shr $0x3,%rbp 31: 49 c1 e9 03 shr $0x3,%r9 35: 48 01 c5 add %rax,%rbp 38: 49 01 c1 add %rax,%r9 3b: 48 89 e8 mov %rbp,%rax 3e: 49 rex.WB 3f: 8d .byte 0x8d Code starting with the faulting instruction =========================================== 0: 4d 89 d1 mov %r10,%r9 3: 48 c1 ed 03 shr $0x3,%rbp 7: 49 c1 e9 03 shr $0x3,%r9 b: 48 01 c5 add %rax,%rbp e: 49 01 c1 add %rax,%r9 11: 48 89 e8 mov %rbp,%rax 14: 49 rex.WB 15: 8d .byte 0x8d [ 1256.670183][ C3] RSP: 0018:ffffc90000270a28 EFLAGS: 00000212 [ 1256.670186][ C3] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1256.670189][ C3] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1256.670190][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1256.670193][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1256.670195][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1256.670197][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1256.670199][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1256.670204][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1256.670206][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1256.670208][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1256.670210][ C3] PKRU: 55555554 [ 1256.670212][ C3] Call Trace: [ 1256.670216][ C3] [ 1256.670220][ C3] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1256.670229][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1256.670233][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1256.670237][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1256.670241][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1256.670246][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1256.670251][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1256.670255][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1256.670259][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1256.670262][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1256.670266][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1256.670269][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1256.670271][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1256.670274][ C3] ? xas_alloc (lib/xarray.c:378) [ 1256.670280][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1256.670285][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1256.670288][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1256.670292][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1256.670298][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1256.670302][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1256.670308][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1256.670314][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1256.670322][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1256.670329][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1256.670332][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1256.670335][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1256.670339][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1256.670343][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1256.670345][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1256.670353][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1256.670356][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1256.670359][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1256.670363][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1256.670369][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1256.670372][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1256.670382][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1256.670386][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1256.670389][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1256.670394][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1256.670398][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1256.670401][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1256.670407][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1256.670412][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1256.670415][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1256.670420][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1256.670425][ C3] handle_softirqs (kernel/softirq.c:579) [ 1256.670431][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1256.670435][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1256.670438][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1256.670442][ C3] [ 1256.670443][ C3] [ 1256.670445][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1256.670451][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1256.670455][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1256.670458][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1256.670461][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1256.670463][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1256.670465][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1256.670467][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1256.670469][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1256.670473][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1256.670479][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1256.670484][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1256.670488][ C3] ? xas_alloc (lib/xarray.c:378) [ 1256.670492][ C3] ? xas_alloc (lib/xarray.c:378) [ 1256.670495][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1256.670500][ C3] ? xas_alloc (lib/xarray.c:378) [ 1256.670502][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1256.670507][ C3] xas_alloc (lib/xarray.c:378) [ 1256.670512][ C3] xas_create (lib/xarray.c:685) [ 1256.670518][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1256.670522][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1256.670526][ C3] __xa_store (lib/xarray.c:1703) [ 1256.670530][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1256.670535][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1256.670537][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1256.670540][ C3] ? xa_store (lib/xarray.c:1734) [ 1256.670545][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1256.670549][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1256.670552][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1256.670557][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1256.670560][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1256.670563][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1256.670567][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1256.670570][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1256.670576][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1256.670580][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1256.670585][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1256.670589][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1256.670594][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1256.670603][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1256.670607][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1256.670614][ C3] ksys_unshare (kernel/fork.c:3121) [ 1256.670619][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1256.670622][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1256.670626][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1256.670629][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1256.670632][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1256.670640][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1256.670643][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1256.670649][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1256.670652][ C3] RIP: 0033:0x7f439756d93b [ 1256.670657][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1256.670659][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1256.670663][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1256.670665][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1256.670667][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1256.670668][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1256.670671][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1272.656139][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1272.656147][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1272.656151][ C0] softirqs last disabled at (0): 0x0 | [ 1272.656164][ C0] Tainted: [L]=SOFTLOCKUP [ 1272.656166][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1272.656168][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1272.656178][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1272.656181][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1272.656184][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1272.656187][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1272.656189][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1272.656191][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1272.656193][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1272.656195][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1272.656197][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1272.656202][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1272.656203][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1272.656205][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1272.656207][ C0] PKRU: 55555554 [ 1272.656208][ C0] Call Trace: [ 1272.656213][ C0] [ 1272.656218][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1272.656222][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1272.656228][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1272.656232][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1272.656241][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1272.656245][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1272.656248][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1272.656252][ C0] ? xa_store (lib/xarray.c:1734) [ 1272.656258][ C0] xa_store (lib/xarray.c:1734) [ 1272.656263][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1272.656270][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1272.656274][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1272.656277][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1272.656280][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1272.656288][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1272.656291][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1272.656300][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1272.656304][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1272.656309][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1272.656317][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1272.656322][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1272.656331][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1272.656335][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1272.656342][ C0] ksys_unshare (kernel/fork.c:3121) [ 1272.656347][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1272.656351][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1272.656356][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1272.656359][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1272.656363][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1272.656370][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1272.656374][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1272.656379][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1272.656384][ C0] RIP: 0033:0x7f439756d93b [ 1272.656388][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1272.656391][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1272.656394][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1272.656396][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1272.656398][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1272.656400][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1272.656402][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1276.669142][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1276.669153][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1276.669157][ C2] softirqs last disabled at (0): 0x0 | [ 1276.669170][ C2] Tainted: [L]=SOFTLOCKUP [ 1276.669172][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1276.669175][ C2] RIP: 0010:kasan_check_range (mm/kasan/generic.c:174 mm/kasan/generic.c:189) [ 1276.669183][ C2] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 53 <72> 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 23 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 66 0f 1f 00 nopw (%rax) 13: 48 85 f6 test %rsi,%rsi 16: 0f 84 5e 01 00 00 je 0x17a 1c: 48 89 f8 mov %rdi,%rax 1f: 41 54 push %r12 21: 44 0f b6 c2 movzbl %dl,%r8d 25: 48 01 f0 add %rsi,%rax 28: 55 push %rbp 29: 53 push %rbx 2a:* 72 14 jb 0x40 <-- trapping instruction 2c: eb 26 jmp 0x54 2e: cc int3 2f: cc int3 30: cc int3 31: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 38: ff ff fe 3b: 48 39 c7 cmp %rax,%rdi 3e: 77 23 ja 0x63 Code starting with the faulting instruction =========================================== 0: 72 14 jb 0x16 2: eb 26 jmp 0x2a 4: cc int3 5: cc int3 6: cc int3 7: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax e: ff ff fe 11: 48 39 c7 cmp %rax,%rdi 14: 77 23 ja 0x39 [ 1276.669186][ C2] RSP: 0018:ffffc900034d79f8 EFLAGS: 00000282 [ 1276.669189][ C2] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1276.669192][ C2] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1276.669194][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1276.669196][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1276.669198][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1276.669200][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1276.669204][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1276.669207][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1276.669209][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1276.669211][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1276.669213][ C2] PKRU: 55555554 [ 1276.669214][ C2] Call Trace: [ 1276.669218][ C2] [ 1276.669223][ C2] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1276.669233][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1276.669236][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1276.669242][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1276.669246][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1276.669253][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1276.669257][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1276.669260][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1276.669263][ C2] ? xa_store (lib/xarray.c:1734) [ 1276.669271][ C2] xa_store (lib/xarray.c:1734) [ 1276.669276][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1276.669283][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1276.669288][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1276.669291][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1276.669294][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1276.669301][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1276.669305][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1276.669312][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1276.669316][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1276.669321][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1276.669329][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1276.669334][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1276.669343][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1276.669348][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1276.669354][ C2] ksys_unshare (kernel/fork.c:3121) [ 1276.669359][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1276.669363][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1276.669368][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1276.669371][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1276.669375][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1276.669382][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1276.669387][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1276.669393][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1276.669398][ C2] RIP: 0033:0x7f439756d93b [ 1276.669404][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1276.669407][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1276.669410][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1276.669413][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1276.669415][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1276.669417][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1276.669419][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1282.121727][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1282.122018][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1282.122279][ C1] NMI backtrace for cpu 1 | [ 1282.122299][ C1] Tainted: [L]=SOFTLOCKUP [ 1282.122301][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1282.122304][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1282.122317][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1282.122321][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1282.122325][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1282.122327][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1282.122330][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1282.122332][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1282.122334][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1282.122336][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1282.122339][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1282.122342][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1282.122344][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1282.122346][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1282.122348][ C1] PKRU: 55555554 [ 1282.122349][ C1] Call Trace: [ 1282.122353][ C1] [ 1282.122358][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1282.122362][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1282.122368][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1282.122372][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1282.122380][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1282.122384][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1282.122387][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1282.122390][ C1] ? xa_store (lib/xarray.c:1734) [ 1282.122397][ C1] xa_store (lib/xarray.c:1734) [ 1282.122401][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1282.122408][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1282.122413][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1282.122424][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1282.122427][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1282.122434][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1282.122437][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1282.122445][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1282.122449][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1282.122454][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1282.122463][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1282.122467][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1282.122477][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1282.122482][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1282.122489][ C1] ksys_unshare (kernel/fork.c:3121) [ 1282.122496][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1282.122499][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1282.122505][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1282.122508][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1282.122512][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1282.122519][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1282.122524][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1282.122529][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1282.122535][ C1] RIP: 0033:0x7f439756d93b [ 1282.122541][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1282.122544][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1282.122548][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1282.122550][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1282.122552][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1282.122554][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1282.122556][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1282.122554][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1282.122556][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1282.122562][ C1] | [ 1282.123282][ C3] Tainted: [L]=SOFTLOCKUP [ 1282.123284][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1282.123286][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1282.123293][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1282.123296][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1282.123300][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1282.123302][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1282.123304][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1282.123306][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1282.123309][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1282.123311][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1282.123314][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1282.123319][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1282.123321][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1282.123324][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1282.123326][ C3] PKRU: 55555554 [ 1282.123328][ C3] Call Trace: [ 1282.123331][ C3] [ 1282.123333][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1282.123340][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1282.123345][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1282.123348][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1282.123352][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1282.123357][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1282.123361][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1282.123366][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1282.123369][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1282.123372][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1282.123375][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1282.123377][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1282.123380][ C3] ? xas_alloc (lib/xarray.c:378) [ 1282.123386][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1282.123390][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1282.123393][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1282.123397][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1282.123402][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1282.123406][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1282.123412][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1282.123416][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1282.123424][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1282.123431][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1282.123434][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1282.123437][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1282.123441][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1282.123444][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1282.123447][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1282.123454][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1282.123457][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1282.123460][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1282.123465][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1282.123469][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1282.123472][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1282.123475][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1282.123479][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1282.123482][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1282.123487][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1282.123491][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1282.123494][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1282.123499][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1282.123502][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1282.123506][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1282.123511][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1282.123515][ C3] handle_softirqs (kernel/softirq.c:579) [ 1282.123520][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1282.123524][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1282.123527][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1282.123531][ C3] [ 1282.123532][ C3] [ 1282.123534][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1282.123539][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1282.123542][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1282.123544][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1282.123547][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1282.123549][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1282.123550][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1282.123552][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1282.123554][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1282.123558][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1282.123564][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1282.123569][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1282.123572][ C3] ? xas_alloc (lib/xarray.c:378) [ 1282.123577][ C3] ? xas_alloc (lib/xarray.c:378) [ 1282.123580][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1282.123584][ C3] ? xas_alloc (lib/xarray.c:378) [ 1282.123586][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1282.123591][ C3] xas_alloc (lib/xarray.c:378) [ 1282.123596][ C3] xas_create (lib/xarray.c:685) [ 1282.123601][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1282.123605][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1282.123609][ C3] __xa_store (lib/xarray.c:1703) [ 1282.123613][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1282.123618][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1282.123621][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1282.123624][ C3] ? xa_store (lib/xarray.c:1734) [ 1282.123629][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1282.123632][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1282.123635][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1282.123644][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1282.123647][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1282.123649][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1282.123654][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1282.123657][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1282.123662][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1282.123666][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1282.123671][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1282.123675][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1282.123680][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1282.123688][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1282.123692][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1282.123699][ C3] ksys_unshare (kernel/fork.c:3121) [ 1282.123705][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1282.123708][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1282.123712][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1282.123714][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1282.123718][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1282.123725][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1282.123728][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1282.123734][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1282.123737][ C3] RIP: 0033:0x7f439756d93b [ 1282.123741][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1282.123744][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1282.123747][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1282.123749][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1282.123750][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1282.123752][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1282.123753][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1300.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1300.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1300.656147][ C0] softirqs last disabled at (0): 0x0 | [ 1300.656160][ C0] Tainted: [L]=SOFTLOCKUP [ 1300.656162][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1300.656164][ C0] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1300.656172][ C0] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 1300.656175][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1300.656178][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1300.656181][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1300.656183][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1300.656184][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1300.656186][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1300.656189][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1300.656191][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1300.656195][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1300.656197][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1300.656198][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1300.656200][ C0] PKRU: 55555554 [ 1300.656202][ C0] Call Trace: [ 1300.656205][ C0] [ 1300.656210][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1300.656214][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1300.656220][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1300.656224][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1300.656232][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1300.656236][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1300.656239][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1300.656242][ C0] ? xa_store (lib/xarray.c:1734) [ 1300.656249][ C0] xa_store (lib/xarray.c:1734) [ 1300.656253][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1300.656260][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1300.656266][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1300.656269][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1300.656271][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1300.656277][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1300.656281][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1300.656289][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1300.656292][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1300.656297][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1300.656304][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1300.656309][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1300.656317][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1300.656321][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1300.656328][ C0] ksys_unshare (kernel/fork.c:3121) [ 1300.656333][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1300.656337][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1300.656341][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1300.656344][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1300.656348][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1300.656355][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1300.656359][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1300.656364][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1300.656370][ C0] RIP: 0033:0x7f439756d93b [ 1300.656374][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1300.656377][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1300.656380][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1300.656381][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1300.656383][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1300.656385][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1300.656387][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1304.669144][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1304.669155][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1304.669159][ C2] softirqs last disabled at (0): 0x0 | [ 1304.669173][ C2] Tainted: [L]=SOFTLOCKUP [ 1304.669175][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1304.669178][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1304.669189][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1304.669193][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1304.669196][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1304.669199][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1304.669201][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1304.669203][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1304.669206][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1304.669207][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1304.669210][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1304.669214][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1304.669216][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1304.669217][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1304.669219][ C2] PKRU: 55555554 [ 1304.669220][ C2] Call Trace: [ 1304.669225][ C2] [ 1304.669229][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1304.669234][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1304.669239][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1304.669244][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1304.669259][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1304.669264][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1304.669266][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1304.669269][ C2] ? xa_store (lib/xarray.c:1734) [ 1304.669276][ C2] xa_store (lib/xarray.c:1734) [ 1304.669281][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1304.669287][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1304.669293][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1304.669296][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1304.669299][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1304.669306][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1304.669310][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1304.669318][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1304.669322][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1304.669327][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1304.669335][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1304.669340][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1304.669349][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1304.669353][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1304.669360][ C2] ksys_unshare (kernel/fork.c:3121) [ 1304.669365][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1304.669369][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1304.669375][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1304.669378][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1304.669382][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1304.669389][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1304.669393][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1304.669399][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1304.669405][ C2] RIP: 0033:0x7f439756d93b [ 1304.669410][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1304.669413][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1304.669416][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1304.669419][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1304.669421][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1304.669423][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1304.669425][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1308.669140][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1308.669150][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1308.669154][ C1] softirqs last disabled at (0): 0x0 | [ 1308.669168][ C1] Tainted: [L]=SOFTLOCKUP [ 1308.669169][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1308.669172][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1308.669182][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1308.669186][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1308.669189][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1308.669191][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1308.669194][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1308.669196][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1308.669198][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1308.669200][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1308.669203][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1308.669207][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1308.669208][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1308.669210][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1308.669212][ C1] PKRU: 55555554 [ 1308.669213][ C1] Call Trace: [ 1308.669217][ C1] [ 1308.669221][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1308.669225][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1308.669240][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1308.669244][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1308.669252][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1308.669256][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1308.669259][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1308.669262][ C1] ? xa_store (lib/xarray.c:1734) [ 1308.669269][ C1] xa_store (lib/xarray.c:1734) [ 1308.669274][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1308.669281][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1308.669286][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1308.669289][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1308.669292][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1308.669299][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1308.669302][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1308.669310][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1308.669314][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1308.669319][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1308.669327][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1308.669332][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1308.669342][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1308.669346][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1308.669352][ C1] ksys_unshare (kernel/fork.c:3121) [ 1308.669357][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1308.669361][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1308.669366][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1308.669370][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1308.669373][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1308.669381][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1308.669385][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1308.669391][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1308.669396][ C1] RIP: 0033:0x7f439756d93b [ 1308.669401][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1308.669404][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1308.669407][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1308.669410][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1308.669412][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1308.669414][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1308.669416][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1308.670138][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1308.670147][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1308.670150][ C3] softirqs last disabled at (0): 0x0 | [ 1308.670163][ C3] Tainted: [L]=SOFTLOCKUP [ 1308.670165][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1308.670167][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1308.670174][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1308.670177][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1308.670181][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1308.670189][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1308.670191][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1308.670193][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1308.670195][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1308.670197][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1308.670200][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1308.670204][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1308.670206][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1308.670207][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1308.670209][ C3] PKRU: 55555554 [ 1308.670213][ C3] Call Trace: [ 1308.670216][ C3] [ 1308.670218][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1308.670224][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1308.670229][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1308.670232][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1308.670237][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1308.670242][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1308.670245][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1308.670250][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1308.670253][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1308.670256][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1308.670259][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1308.670262][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1308.670265][ C3] ? xas_alloc (lib/xarray.c:378) [ 1308.670270][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1308.670275][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1308.670278][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1308.670282][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1308.670287][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1308.670292][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1308.670297][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1308.670301][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1308.670310][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1308.670316][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1308.670320][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1308.670323][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1308.670326][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1308.670329][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1308.670332][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1308.670338][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1308.670341][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1308.670344][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1308.670348][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1308.670354][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1308.670357][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1308.670360][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1308.670365][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1308.670369][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1308.670374][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1308.670378][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1308.670381][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1308.670386][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1308.670390][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1308.670394][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1308.670398][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1308.670403][ C3] handle_softirqs (kernel/softirq.c:579) [ 1308.670409][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1308.670412][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1308.670416][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1308.670420][ C3] [ 1308.670421][ C3] [ 1308.670422][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1308.670428][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1308.670431][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1308.670434][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1308.670437][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1308.670439][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1308.670440][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1308.670442][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1308.670444][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1308.670448][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1308.670454][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1308.670460][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1308.670463][ C3] ? xas_alloc (lib/xarray.c:378) [ 1308.670468][ C3] ? xas_alloc (lib/xarray.c:378) [ 1308.670471][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1308.670475][ C3] ? xas_alloc (lib/xarray.c:378) [ 1308.670478][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1308.670483][ C3] xas_alloc (lib/xarray.c:378) [ 1308.670487][ C3] xas_create (lib/xarray.c:685) [ 1308.670493][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1308.670497][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1308.670501][ C3] __xa_store (lib/xarray.c:1703) [ 1308.670505][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1308.670510][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1308.670513][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1308.670515][ C3] ? xa_store (lib/xarray.c:1734) [ 1308.670520][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1308.670524][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1308.670527][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1308.670532][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1308.670535][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1308.670540][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1308.670544][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1308.670547][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1308.670552][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1308.670558][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1308.670563][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1308.670567][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1308.670572][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1308.670580][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1308.670584][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1308.670591][ C3] ksys_unshare (kernel/fork.c:3121) [ 1308.670596][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1308.670599][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1308.670603][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1308.670605][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1308.670609][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1308.670616][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1308.670620][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1308.670626][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1308.670629][ C3] RIP: 0033:0x7f439756d93b [ 1308.670634][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1308.670636][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1308.670639][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1308.670641][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1308.670643][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1308.670645][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1308.670647][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1328.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1328.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1328.656147][ C0] softirqs last disabled at (0): 0x0 | [ 1328.656159][ C0] Tainted: [L]=SOFTLOCKUP [ 1328.656161][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1328.656163][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1328.656171][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1328.656174][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1328.656177][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1328.656180][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1328.656181][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1328.656183][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1328.656185][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1328.656187][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1328.656190][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1328.656194][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1328.656197][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1328.656198][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1328.656200][ C0] PKRU: 55555554 [ 1328.656201][ C0] Call Trace: [ 1328.656206][ C0] [ 1328.656209][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1328.656213][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1328.656218][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1328.656222][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1328.656231][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1328.656234][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1328.656237][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1328.656240][ C0] ? xa_store (lib/xarray.c:1734) [ 1328.656247][ C0] xa_store (lib/xarray.c:1734) [ 1328.656252][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1328.656257][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1328.656263][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1328.656266][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1328.656269][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1328.656280][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1328.656284][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1328.656291][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1328.656295][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1328.656300][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1328.656307][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1328.656312][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1328.656320][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1328.656324][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1328.656331][ C0] ksys_unshare (kernel/fork.c:3121) [ 1328.656336][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1328.656339][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1328.656344][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1328.656347][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1328.656350][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1328.656357][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1328.656361][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1328.656366][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1328.656371][ C0] RIP: 0033:0x7f439756d93b [ 1328.656375][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1328.656378][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1328.656382][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1328.656384][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1328.656386][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1328.656387][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1328.656389][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1332.669142][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1332.669152][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1332.669156][ C2] softirqs last disabled at (0): 0x0 | [ 1332.669169][ C2] Tainted: [L]=SOFTLOCKUP [ 1332.669171][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1332.669174][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1332.669184][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1332.669188][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1332.669191][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1332.669194][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1332.669196][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1332.669198][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1332.669200][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1332.669202][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1332.669204][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1332.669208][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1332.669210][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1332.669212][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1332.669213][ C2] PKRU: 55555554 [ 1332.669214][ C2] Call Trace: [ 1332.669220][ C2] [ 1332.669224][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1332.669228][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1332.669234][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1332.669239][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1332.669246][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1332.669250][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1332.669253][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1332.669256][ C2] ? xa_store (lib/xarray.c:1734) [ 1332.669263][ C2] xa_store (lib/xarray.c:1734) [ 1332.669268][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1332.669274][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1332.669279][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1332.669290][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1332.669294][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1332.669301][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1332.669304][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1332.669312][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1332.669316][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1332.669321][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1332.669329][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1332.669334][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1332.669344][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1332.669348][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1332.669355][ C2] ksys_unshare (kernel/fork.c:3121) [ 1332.669360][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1332.669364][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1332.669369][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1332.669372][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1332.669376][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1332.669383][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1332.669387][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1332.669393][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1332.669399][ C2] RIP: 0033:0x7f439756d93b [ 1332.669404][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1332.669407][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1332.669410][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1332.669412][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1332.669414][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1332.669416][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1332.669418][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1336.669142][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1336.669153][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1336.669157][ C1] softirqs last disabled at (0): 0x0 | [ 1336.669171][ C1] Tainted: [L]=SOFTLOCKUP [ 1336.669173][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1336.669176][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1336.669187][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1336.669190][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1336.669194][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1336.669196][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1336.669198][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1336.669200][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1336.669203][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1336.669205][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1336.669207][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1336.669211][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1336.669213][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1336.669215][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1336.669217][ C1] PKRU: 55555554 [ 1336.669218][ C1] Call Trace: [ 1336.669223][ C1] [ 1336.669227][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1336.669232][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1336.669238][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1336.669243][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1336.669250][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1336.669255][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1336.669258][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1336.669261][ C1] ? xa_store (lib/xarray.c:1734) [ 1336.669268][ C1] xa_store (lib/xarray.c:1734) [ 1336.669282][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1336.669289][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1336.669294][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1336.669297][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1336.669300][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1336.669307][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1336.669311][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1336.669319][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1336.669323][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1336.669328][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1336.669335][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1336.669340][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1336.669350][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1336.669354][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1336.669361][ C1] ksys_unshare (kernel/fork.c:3121) [ 1336.669366][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1336.669370][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1336.669375][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1336.669379][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1336.669382][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1336.669390][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1336.669394][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1336.669399][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1336.669405][ C1] RIP: 0033:0x7f439756d93b [ 1336.669411][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1336.669414][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1336.669417][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1336.669419][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1336.669421][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1336.669423][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1336.669425][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1336.670136][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1336.670144][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1336.670147][ C3] softirqs last disabled at (0): 0x0 | [ 1336.670159][ C3] Tainted: [L]=SOFTLOCKUP [ 1336.670160][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1336.670163][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1336.670170][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1336.670173][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1336.670176][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1336.670178][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1336.670180][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1336.670182][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1336.670184][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1336.670186][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1336.670188][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1336.670192][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1336.670195][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1336.670196][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1336.670198][ C3] PKRU: 55555554 [ 1336.670199][ C3] Call Trace: [ 1336.670203][ C3] [ 1336.670205][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1336.670210][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1336.670216][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1336.670219][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1336.670223][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1336.670228][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1336.670231][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1336.670241][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1336.670244][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1336.670248][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1336.670250][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1336.670253][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1336.670256][ C3] ? xas_alloc (lib/xarray.c:378) [ 1336.670262][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1336.670267][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1336.670270][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1336.670274][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1336.670279][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1336.670284][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1336.670289][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1336.670293][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1336.670301][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1336.670308][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1336.670311][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1336.670314][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1336.670321][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1336.670324][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1336.670327][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1336.670333][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1336.670336][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1336.670339][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1336.670343][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1336.670348][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1336.670352][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1336.670355][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1336.670359][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1336.670362][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1336.670367][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1336.670372][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1336.670374][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1336.670380][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1336.670384][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1336.670387][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1336.670392][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1336.670397][ C3] handle_softirqs (kernel/softirq.c:579) [ 1336.670402][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1336.670406][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1336.670410][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1336.670414][ C3] [ 1336.670415][ C3] [ 1336.670417][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1336.670423][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1336.670426][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1336.670429][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1336.670431][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1336.670433][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1336.670436][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1336.670437][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1336.670439][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1336.670443][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1336.670449][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1336.670455][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1336.670458][ C3] ? xas_alloc (lib/xarray.c:378) [ 1336.670463][ C3] ? xas_alloc (lib/xarray.c:378) [ 1336.670466][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1336.670470][ C3] ? xas_alloc (lib/xarray.c:378) [ 1336.670472][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1336.670477][ C3] xas_alloc (lib/xarray.c:378) [ 1336.670482][ C3] xas_create (lib/xarray.c:685) [ 1336.670488][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1336.670493][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1336.670496][ C3] __xa_store (lib/xarray.c:1703) [ 1336.670500][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1336.670505][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1336.670508][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1336.670511][ C3] ? xa_store (lib/xarray.c:1734) [ 1336.670516][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1336.670520][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1336.670524][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1336.670529][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1336.670531][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1336.670534][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1336.670538][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1336.670542][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1336.670546][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1336.670550][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1336.670555][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1336.670559][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1336.670564][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1336.670573][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1336.670576][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1336.670583][ C3] ksys_unshare (kernel/fork.c:3121) [ 1336.670590][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1336.670593][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1336.670597][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1336.670599][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1336.670603][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1336.670610][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1336.670613][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1336.670619][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1336.670622][ C3] RIP: 0033:0x7f439756d93b [ 1336.670626][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1336.670629][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1336.670632][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1336.670634][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1336.670636][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1336.670638][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1336.670640][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1356.656163][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1356.656173][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1356.656177][ C0] softirqs last disabled at (0): 0x0 | [ 1356.656196][ C0] Tainted: [L]=SOFTLOCKUP [ 1356.656198][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1356.656202][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1356.656212][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1356.656215][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1356.656221][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1356.656224][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1356.656226][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1356.656228][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1356.656230][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1356.656232][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1356.656235][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1356.656239][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1356.656241][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1356.656242][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1356.656244][ C0] PKRU: 55555554 [ 1356.656245][ C0] Call Trace: [ 1356.656251][ C0] [ 1356.656257][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1356.656261][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1356.656267][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1356.656272][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1356.656280][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1356.656284][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1356.656287][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1356.656290][ C0] ? xa_store (lib/xarray.c:1734) [ 1356.656300][ C0] xa_store (lib/xarray.c:1734) [ 1356.656307][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1356.656317][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1356.656323][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1356.656326][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1356.656329][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1356.656336][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1356.656340][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1356.656347][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1356.656351][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1356.656356][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1356.656365][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1356.656370][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1356.656383][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1356.656387][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1356.656396][ C0] ksys_unshare (kernel/fork.c:3121) [ 1356.656402][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1356.656406][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1356.656411][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1356.656414][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1356.656418][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1356.656426][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1356.656430][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1356.656436][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1356.656441][ C0] RIP: 0033:0x7f439756d93b [ 1356.656446][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1356.656448][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1356.656452][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1356.656454][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1356.656456][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1356.656458][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1356.656460][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1360.135605][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1360.135898][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1360.136173][ C1] NMI backtrace for cpu 1 | [ 1360.136199][ C1] Tainted: [L]=SOFTLOCKUP [ 1360.136202][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1360.136205][ C1] RIP: 0010:kasan_check_range (mm/kasan/generic.c:89 mm/kasan/generic.c:104 mm/kasan/generic.c:129 mm/kasan/generic.c:161 mm/kasan/generic.c:180 mm/kasan/generic.c:189) [ 1360.136218][ C1] Code: 11 80 38 00 74 ef 4d 8d 1c 2c 48 89 c2 48 85 c0 75 b0 48 89 da 4c 89 d8 4c 29 da e9 49 ff ff ff 48 85 d2 74 b3 48 01 ea eb 09 <48> 83 c0 01 48 39 d0 74 a5 80 38 00 74 f2 e9 74 ff ff ff b8 01 00 All code ======== 0: 11 80 38 00 74 ef adc %eax,-0x108bffc8(%rax) 6: 4d 8d 1c 2c lea (%r12,%rbp,1),%r11 a: 48 89 c2 mov %rax,%rdx d: 48 85 c0 test %rax,%rax 10: 75 b0 jne 0xffffffffffffffc2 12: 48 89 da mov %rbx,%rdx 15: 4c 89 d8 mov %r11,%rax 18: 4c 29 da sub %r11,%rdx 1b: e9 49 ff ff ff jmp 0xffffffffffffff69 20: 48 85 d2 test %rdx,%rdx 23: 74 b3 je 0xffffffffffffffd8 25: 48 01 ea add %rbp,%rdx 28: eb 09 jmp 0x33 2a:* 48 83 c0 01 add $0x1,%rax <-- trapping instruction 2e: 48 39 d0 cmp %rdx,%rax 31: 74 a5 je 0xffffffffffffffd8 33: 80 38 00 cmpb $0x0,(%rax) 36: 74 f2 je 0x2a 38: e9 74 ff ff ff jmp 0xffffffffffffffb1 3d: b8 .byte 0xb8 3e: 01 00 add %eax,(%rax) Code starting with the faulting instruction =========================================== 0: 48 83 c0 01 add $0x1,%rax 4: 48 39 d0 cmp %rdx,%rax 7: 74 a5 je 0xffffffffffffffae 9: 80 38 00 cmpb $0x0,(%rax) c: 74 f2 je 0x0 e: e9 74 ff ff ff jmp 0xffffffffffffff87 13: b8 .byte 0xb8 14: 01 00 add %eax,(%rax) [ 1360.136223][ C1] RSP: 0018:ffffc900034b79f8 EFLAGS: 00000246 [ 1360.136230][ C1] RAX: fffffbfff77dcb80 RBX: fffffbfff77dcb81 RCX: ffffffffb7cc5ea3 [ 1360.136238][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1360.136241][ C1] RBP: fffffbfff77dcb80 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1360.136245][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1360.136248][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1360.136252][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1360.136256][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1360.136262][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1360.136266][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1360.136269][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1360.136271][ C1] PKRU: 55555554 [ 1360.136274][ C1] Call Trace: [ 1360.136279][ C1] [ 1360.136286][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1360.136298][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1360.136303][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1360.136310][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1360.136316][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1360.136327][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1360.136333][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1360.136338][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1360.136343][ C1] ? xa_store (lib/xarray.c:1734) [ 1360.136353][ C1] xa_store (lib/xarray.c:1734) [ 1360.136360][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1360.136367][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1360.136375][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1360.136379][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1360.136383][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.136392][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.136397][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1360.136406][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1360.136416][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1360.136426][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1360.136436][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1360.136443][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1360.136456][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1360.136462][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1360.136471][ C1] ksys_unshare (kernel/fork.c:3121) [ 1360.136481][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1360.136486][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1360.136493][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1360.136498][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1360.136503][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1360.136512][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1360.136518][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1360.136526][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1360.136533][ C1] RIP: 0033:0x7f439756d93b [ 1360.136542][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1360.136546][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1360.136551][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1360.136554][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1360.136557][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1360.136559][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1360.136562][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1360.136559][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1360.136562][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1360.136569][ C1] | [ 1360.137155][ C3] Tainted: [L]=SOFTLOCKUP [ 1360.137156][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1360.137158][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1360.137165][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1360.137168][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1360.137172][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1360.137175][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1360.137177][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1360.137179][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1360.137181][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1360.137183][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1360.137188][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1360.137193][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1360.137195][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1360.137197][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1360.137199][ C3] PKRU: 55555554 [ 1360.137200][ C3] Call Trace: [ 1360.137202][ C3] [ 1360.137203][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1360.137209][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1360.137214][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1360.137218][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1360.137224][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1360.137229][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1360.137232][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1360.137237][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1360.137240][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1360.137243][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1360.137246][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1360.137248][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1360.137251][ C3] ? xas_alloc (lib/xarray.c:378) [ 1360.137257][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1360.137261][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1360.137264][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1360.137268][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1360.137273][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1360.137277][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1360.137282][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.137286][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1360.137294][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1360.137301][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.137304][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1360.137307][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1360.137310][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1360.137314][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1360.137317][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1360.137324][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1360.137327][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1360.137330][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1360.137334][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1360.137339][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1360.137342][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1360.137345][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1360.137348][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.137352][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1360.137356][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1360.137360][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1360.137363][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1360.137368][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1360.137372][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.137375][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1360.137380][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1360.137384][ C3] handle_softirqs (kernel/softirq.c:579) [ 1360.137389][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1360.137393][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1360.137396][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1360.137399][ C3] [ 1360.137400][ C3] [ 1360.137404][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1360.137408][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1360.137411][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1360.137414][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1360.137417][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1360.137419][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1360.137420][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1360.137422][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1360.137424][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1360.137428][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1360.137433][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1360.137439][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1360.137442][ C3] ? xas_alloc (lib/xarray.c:378) [ 1360.137447][ C3] ? xas_alloc (lib/xarray.c:378) [ 1360.137450][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1360.137454][ C3] ? xas_alloc (lib/xarray.c:378) [ 1360.137456][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1360.137461][ C3] xas_alloc (lib/xarray.c:378) [ 1360.137466][ C3] xas_create (lib/xarray.c:685) [ 1360.137472][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1360.137476][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1360.137480][ C3] __xa_store (lib/xarray.c:1703) [ 1360.137484][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1360.137488][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1360.137491][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1360.137494][ C3] ? xa_store (lib/xarray.c:1734) [ 1360.137499][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1360.137503][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1360.137508][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1360.137513][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1360.137516][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1360.137519][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.137524][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.137528][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1360.137533][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1360.137537][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1360.137542][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1360.137546][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1360.137551][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1360.137559][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1360.137563][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1360.137570][ C3] ksys_unshare (kernel/fork.c:3121) [ 1360.137576][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1360.137579][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1360.137582][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1360.137585][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1360.137588][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1360.137598][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1360.137602][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1360.137608][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1360.137611][ C3] RIP: 0033:0x7f439756d93b [ 1360.137616][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1360.137618][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1360.137622][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1360.137623][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1360.137625][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1360.137627][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1360.137629][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1360.669154][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1360.669165][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1360.669170][ C2] softirqs last disabled at (0): 0x0 | [ 1360.669186][ C2] Tainted: [L]=SOFTLOCKUP [ 1360.669188][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1360.669191][ C2] RIP: 0010:kasan_check_range (mm/kasan/generic.c:188) [ 1360.669199][ C2] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 <53> 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 66 0f 1f 00 nopw (%rax) 14: 48 85 f6 test %rsi,%rsi 17: 0f 84 5e 01 00 00 je 0x17b 1d: 48 89 f8 mov %rdi,%rax 20: 41 54 push %r12 22: 44 0f b6 c2 movzbl %dl,%r8d 26: 48 01 f0 add %rsi,%rax 29: 55 push %rbp 2a:* 53 push %rbx <-- trapping instruction 2b: 72 14 jb 0x41 2d: eb 26 jmp 0x55 2f: cc int3 30: cc int3 31: cc int3 32: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 39: ff ff fe 3c: 48 39 c7 cmp %rax,%rdi 3f: 77 .byte 0x77 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: 72 14 jb 0x17 3: eb 26 jmp 0x2b 5: cc int3 6: cc int3 7: cc int3 8: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax f: ff ff fe 12: 48 39 c7 cmp %rax,%rdi 15: 77 .byte 0x77 [ 1360.669204][ C2] RSP: 0018:ffffc900034d7a00 EFLAGS: 00000282 [ 1360.669209][ C2] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1360.669212][ C2] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1360.669214][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1360.669217][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1360.669220][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1360.669222][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1360.669226][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1360.669233][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1360.669237][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1360.669239][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1360.669242][ C2] PKRU: 55555554 [ 1360.669243][ C2] Call Trace: [ 1360.669249][ C2] [ 1360.669254][ C2] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1360.669267][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1360.669271][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1360.669278][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1360.669284][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1360.669293][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1360.669299][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1360.669325][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1360.669329][ C2] ? xa_store (lib/xarray.c:1734) [ 1360.669341][ C2] xa_store (lib/xarray.c:1734) [ 1360.669348][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1360.669355][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1360.669363][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1360.669368][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1360.669372][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.669381][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1360.669385][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1360.669394][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1360.669400][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1360.669407][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1360.669416][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1360.669423][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1360.669436][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1360.669442][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1360.669450][ C2] ksys_unshare (kernel/fork.c:3121) [ 1360.669457][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1360.669462][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1360.669469][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1360.669473][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1360.669478][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1360.669488][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1360.669494][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1360.669501][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1360.669508][ C2] RIP: 0033:0x7f439756d93b [ 1360.669516][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1360.669520][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1360.669524][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1360.669527][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1360.669530][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1360.669532][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1360.669534][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1384.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1384.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1384.656148][ C0] softirqs last disabled at (0): 0x0 | [ 1384.656160][ C0] Tainted: [L]=SOFTLOCKUP [ 1384.656162][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1384.656164][ C0] RIP: 0010:kasan_check_range (mm/kasan/generic.c:188) [ 1384.656171][ C0] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 <53> 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 66 0f 1f 00 nopw (%rax) 14: 48 85 f6 test %rsi,%rsi 17: 0f 84 5e 01 00 00 je 0x17b 1d: 48 89 f8 mov %rdi,%rax 20: 41 54 push %r12 22: 44 0f b6 c2 movzbl %dl,%r8d 26: 48 01 f0 add %rsi,%rax 29: 55 push %rbp 2a:* 53 push %rbx <-- trapping instruction 2b: 72 14 jb 0x41 2d: eb 26 jmp 0x55 2f: cc int3 30: cc int3 31: cc int3 32: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 39: ff ff fe 3c: 48 39 c7 cmp %rax,%rdi 3f: 77 .byte 0x77 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: 72 14 jb 0x17 3: eb 26 jmp 0x2b 5: cc int3 6: cc int3 7: cc int3 8: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax f: ff ff fe 12: 48 39 c7 cmp %rax,%rdi 15: 77 .byte 0x77 [ 1384.656174][ C0] RSP: 0018:ffffc900034c7a00 EFLAGS: 00000282 [ 1384.656189][ C0] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1384.656191][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1384.656193][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1384.656195][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1384.656197][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1384.656199][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1384.656202][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1384.656206][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1384.656208][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1384.656209][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1384.656211][ C0] PKRU: 55555554 [ 1384.656212][ C0] Call Trace: [ 1384.656216][ C0] [ 1384.656219][ C0] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1384.656227][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1384.656231][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1384.656239][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1384.656243][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1384.656251][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1384.656255][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1384.656257][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1384.656260][ C0] ? xa_store (lib/xarray.c:1734) [ 1384.656267][ C0] xa_store (lib/xarray.c:1734) [ 1384.656272][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1384.656278][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1384.656283][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1384.656286][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1384.656289][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.656294][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.656298][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1384.656305][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1384.656309][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1384.656314][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1384.656320][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1384.656325][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1384.656333][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1384.656337][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1384.656342][ C0] ksys_unshare (kernel/fork.c:3121) [ 1384.656347][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1384.656351][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1384.656355][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1384.656358][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1384.656362][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1384.656368][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1384.656372][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1384.656377][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1384.656381][ C0] RIP: 0033:0x7f439756d93b [ 1384.656388][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1384.656391][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1384.656394][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1384.656396][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1384.656398][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1384.656400][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1384.656402][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1384.669131][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1384.669137][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1384.669141][ C1] softirqs last disabled at (0): 0x0 | [ 1384.669151][ C1] Tainted: [L]=SOFTLOCKUP [ 1384.669153][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1384.669155][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1384.669160][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1384.669164][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1384.669167][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1384.669169][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1384.669171][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1384.669172][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1384.669174][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1384.669176][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1384.669179][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1384.669182][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1384.669184][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1384.669186][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1384.669188][ C1] PKRU: 55555554 [ 1384.669189][ C1] Call Trace: [ 1384.669197][ C1] [ 1384.669200][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1384.669204][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1384.669209][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1384.669212][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1384.669218][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1384.669222][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1384.669225][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1384.669228][ C1] ? xa_store (lib/xarray.c:1734) [ 1384.669233][ C1] xa_store (lib/xarray.c:1734) [ 1384.669237][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1384.669242][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1384.669247][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1384.669252][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1384.669255][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.669259][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.669263][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1384.669268][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1384.669273][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1384.669277][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1384.669282][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1384.669286][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1384.669293][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1384.669297][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1384.669302][ C1] ksys_unshare (kernel/fork.c:3121) [ 1384.669307][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1384.669310][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1384.669314][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1384.669317][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1384.669320][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1384.669326][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1384.669330][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1384.669335][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1384.669338][ C1] RIP: 0033:0x7f439756d93b [ 1384.669343][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1384.669345][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1384.669348][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1384.669351][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1384.669352][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1384.669354][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1384.669356][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1384.670123][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1384.670128][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1384.670131][ C3] softirqs last disabled at (0): 0x0 | [ 1384.670141][ C3] Tainted: [L]=SOFTLOCKUP [ 1384.670142][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1384.670144][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1384.670149][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1384.670152][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1384.670154][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1384.670156][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1384.670158][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1384.670160][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1384.670162][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1384.670167][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1384.670170][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1384.670173][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1384.670175][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1384.670180][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1384.670181][ C3] PKRU: 55555554 [ 1384.670183][ C3] Call Trace: [ 1384.670185][ C3] [ 1384.670186][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1384.670190][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1384.670195][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1384.670199][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1384.670203][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1384.670207][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1384.670210][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1384.670214][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1384.670217][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1384.670221][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1384.670223][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1384.670226][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1384.670229][ C3] ? xas_alloc (lib/xarray.c:378) [ 1384.670233][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1384.670237][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1384.670240][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1384.670243][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1384.670248][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1384.670252][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1384.670257][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.670261][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1384.670266][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1384.670270][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.670273][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1384.670276][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1384.670280][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1384.670283][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1384.670286][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1384.670291][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1384.670294][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1384.670297][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1384.670301][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1384.670305][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1384.670308][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1384.670311][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1384.670314][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.670317][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1384.670321][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1384.670328][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1384.670330][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1384.670336][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1384.670340][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.670343][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1384.670348][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1384.670352][ C3] handle_softirqs (kernel/softirq.c:579) [ 1384.670358][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1384.670362][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1384.670365][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1384.670369][ C3] [ 1384.670370][ C3] [ 1384.670371][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1384.670375][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1384.670378][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1384.670381][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1384.670384][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1384.670385][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1384.670387][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1384.670389][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1384.670391][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1384.670395][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1384.670401][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1384.670406][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1384.670410][ C3] ? xas_alloc (lib/xarray.c:378) [ 1384.670414][ C3] ? xas_alloc (lib/xarray.c:378) [ 1384.670417][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1384.670422][ C3] ? xas_alloc (lib/xarray.c:378) [ 1384.670424][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1384.670429][ C3] xas_alloc (lib/xarray.c:378) [ 1384.670434][ C3] xas_create (lib/xarray.c:685) [ 1384.670440][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1384.670444][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1384.670448][ C3] __xa_store (lib/xarray.c:1703) [ 1384.670452][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1384.670457][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1384.670459][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1384.670462][ C3] ? xa_store (lib/xarray.c:1734) [ 1384.670467][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1384.670471][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1384.670474][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1384.670479][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1384.670481][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1384.670484][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.670488][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1384.670493][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1384.670498][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1384.670503][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1384.670508][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1384.670511][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1384.670516][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1384.670523][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1384.670526][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1384.670531][ C3] ksys_unshare (kernel/fork.c:3121) [ 1384.670535][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1384.670538][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1384.670542][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1384.670545][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1384.670548][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1384.670553][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1384.670557][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1384.670561][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1384.670564][ C3] RIP: 0033:0x7f439756d93b [ 1384.670567][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1384.670570][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1384.670573][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1384.670575][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1384.670576][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1384.670578][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1384.670580][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1388.669145][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1388.669155][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1388.669159][ C2] softirqs last disabled at (0): 0x0 | [ 1388.669173][ C2] Tainted: [L]=SOFTLOCKUP [ 1388.669175][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1388.669178][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1388.669188][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1388.669191][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1388.669195][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1388.669197][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1388.669199][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1388.669201][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1388.669203][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1388.669205][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1388.669208][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1388.669213][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1388.669215][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1388.669226][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1388.669227][ C2] PKRU: 55555554 [ 1388.669229][ C2] Call Trace: [ 1388.669234][ C2] [ 1388.669239][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1388.669243][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1388.669250][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1388.669254][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1388.669262][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1388.669266][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1388.669269][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1388.669272][ C2] ? xa_store (lib/xarray.c:1734) [ 1388.669279][ C2] xa_store (lib/xarray.c:1734) [ 1388.669284][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1388.669290][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1388.669295][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1388.669300][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1388.669304][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1388.669311][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1388.669314][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1388.669322][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1388.669326][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1388.669331][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1388.669339][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1388.669344][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1388.669354][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1388.669358][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1388.669365][ C2] ksys_unshare (kernel/fork.c:3121) [ 1388.669370][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1388.669374][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1388.669379][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1388.669382][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1388.669385][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1388.669393][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1388.669397][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1388.669403][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1388.669408][ C2] RIP: 0033:0x7f439756d93b [ 1388.669413][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1388.669416][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1388.669419][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1388.669422][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1388.669424][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1388.669426][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1388.669427][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1412.656146][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1412.656154][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1412.656158][ C0] softirqs last disabled at (0): 0x0 | [ 1412.656170][ C0] Tainted: [L]=SOFTLOCKUP [ 1412.656171][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1412.656173][ C0] RIP: 0010:kasan_check_range (mm/kasan/generic.c:171 mm/kasan/generic.c:189) [ 1412.656179][ C0] Code: 00 00 e9 2f 4d 36 02 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 <48> 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 All code ======== 0: 00 00 add %al,(%rax) 2: e9 2f 4d 36 02 jmp 0x2364d36 7: 66 66 2e 0f 1f 84 00 data16 cs nopw 0x0(%rax,%rax,1) e: 00 00 00 00 12: 0f 1f 40 00 nopl 0x0(%rax) 16: 90 nop 17: 90 nop 18: 90 nop 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 66 0f 1f 00 nopw (%rax) 2a:* 48 85 f6 test %rsi,%rsi <-- trapping instruction 2d: 0f 84 5e 01 00 00 je 0x191 33: 48 89 f8 mov %rdi,%rax 36: 41 54 push %r12 38: 44 0f b6 c2 movzbl %dl,%r8d 3c: 48 01 f0 add %rsi,%rax 3f: 55 push %rbp Code starting with the faulting instruction =========================================== 0: 48 85 f6 test %rsi,%rsi 3: 0f 84 5e 01 00 00 je 0x167 9: 48 89 f8 mov %rdi,%rax c: 41 54 push %r12 e: 44 0f b6 c2 movzbl %dl,%r8d 12: 48 01 f0 add %rsi,%rax 15: 55 push %rbp [ 1412.656182][ C0] RSP: 0018:ffffc900034c7a10 EFLAGS: 00000246 [ 1412.656185][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1412.656187][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1412.656189][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1412.656191][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1412.656193][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1412.656195][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1412.656198][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1412.656201][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1412.656204][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1412.656205][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1412.656207][ C0] PKRU: 55555554 [ 1412.656208][ C0] Call Trace: [ 1412.656213][ C0] [ 1412.656215][ C0] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1412.656224][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1412.656227][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1412.656232][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1412.656236][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1412.656244][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1412.656247][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1412.656250][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1412.656253][ C0] ? xa_store (lib/xarray.c:1734) [ 1412.656259][ C0] xa_store (lib/xarray.c:1734) [ 1412.656267][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1412.656272][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1412.656277][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1412.656280][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1412.656283][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.656289][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.656293][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1412.656299][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1412.656303][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1412.656308][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1412.656314][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1412.656319][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1412.656329][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1412.656333][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1412.656339][ C0] ksys_unshare (kernel/fork.c:3121) [ 1412.656344][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1412.656347][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1412.656351][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1412.656354][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1412.656358][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1412.656365][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1412.656369][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1412.656374][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1412.656379][ C0] RIP: 0033:0x7f439756d93b [ 1412.656383][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1412.656386][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1412.656389][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1412.656391][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1412.656393][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1412.656395][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1412.656397][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1412.669133][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1412.669140][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1412.669143][ C1] softirqs last disabled at (0): 0x0 | [ 1412.669154][ C1] Tainted: [L]=SOFTLOCKUP [ 1412.669155][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1412.669157][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1412.669163][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1412.669166][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1412.669169][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1412.669171][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1412.669173][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1412.669175][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1412.669177][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1412.669179][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1412.669181][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1412.669185][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1412.669187][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1412.669189][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1412.669191][ C1] PKRU: 55555554 [ 1412.669192][ C1] Call Trace: [ 1412.669195][ C1] [ 1412.669198][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1412.669207][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1412.669212][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1412.669215][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1412.669221][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1412.669225][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1412.669230][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1412.669233][ C1] ? xa_store (lib/xarray.c:1734) [ 1412.669239][ C1] xa_store (lib/xarray.c:1734) [ 1412.669243][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1412.669247][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1412.669252][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1412.669255][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1412.669258][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.669263][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.669267][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1412.669273][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1412.669277][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1412.669281][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1412.669287][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1412.669291][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1412.669298][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1412.669302][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1412.669307][ C1] ksys_unshare (kernel/fork.c:3121) [ 1412.669311][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1412.669314][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1412.669318][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1412.669321][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1412.669325][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1412.669330][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1412.669334][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1412.669339][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1412.669343][ C1] RIP: 0033:0x7f439756d93b [ 1412.669347][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1412.669349][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1412.669352][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1412.669355][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1412.669356][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1412.669358][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1412.669360][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1412.670125][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1412.670130][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1412.670134][ C3] softirqs last disabled at (0): 0x0 | [ 1412.670147][ C3] Tainted: [L]=SOFTLOCKUP [ 1412.670149][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1412.670150][ C3] RIP: 0010:kasan_check_range (mm/kasan/generic.c:171 mm/kasan/generic.c:189) [ 1412.670154][ C3] Code: 00 00 e9 2f 4d 36 02 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 <48> 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 All code ======== 0: 00 00 add %al,(%rax) 2: e9 2f 4d 36 02 jmp 0x2364d36 7: 66 66 2e 0f 1f 84 00 data16 cs nopw 0x0(%rax,%rax,1) e: 00 00 00 00 12: 0f 1f 40 00 nopl 0x0(%rax) 16: 90 nop 17: 90 nop 18: 90 nop 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 66 0f 1f 00 nopw (%rax) 2a:* 48 85 f6 test %rsi,%rsi <-- trapping instruction 2d: 0f 84 5e 01 00 00 je 0x191 33: 48 89 f8 mov %rdi,%rax 36: 41 54 push %r12 38: 44 0f b6 c2 movzbl %dl,%r8d 3c: 48 01 f0 add %rsi,%rax 3f: 55 push %rbp Code starting with the faulting instruction =========================================== 0: 48 85 f6 test %rsi,%rsi 3: 0f 84 5e 01 00 00 je 0x167 9: 48 89 f8 mov %rdi,%rax c: 41 54 push %r12 e: 44 0f b6 c2 movzbl %dl,%r8d 12: 48 01 f0 add %rsi,%rax 15: 55 push %rbp [ 1412.670157][ C3] RSP: 0018:ffffc90000270a40 EFLAGS: 00000246 [ 1412.670160][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1412.670162][ C3] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1412.670164][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1412.670166][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1412.670168][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1412.670170][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1412.670173][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1412.670176][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1412.670178][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1412.670180][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1412.670181][ C3] PKRU: 55555554 [ 1412.670183][ C3] Call Trace: [ 1412.670185][ C3] [ 1412.670186][ C3] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1412.670191][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1412.670195][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1412.670200][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1412.670206][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1412.670211][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1412.670215][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1412.670219][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1412.670222][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1412.670225][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1412.670229][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1412.670232][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1412.670234][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1412.670237][ C3] ? xas_alloc (lib/xarray.c:378) [ 1412.670242][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1412.670245][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1412.670248][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1412.670251][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1412.670256][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1412.670260][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1412.670266][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.670269][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1412.670274][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1412.670278][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.670282][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1412.670285][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1412.670288][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1412.670293][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1412.670296][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1412.670301][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1412.670304][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1412.670307][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1412.670312][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1412.670315][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1412.670319][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1412.670322][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1412.670325][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.670328][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1412.670333][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1412.670338][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1412.670341][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1412.670346][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1412.670350][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.670354][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1412.670358][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1412.670363][ C3] handle_softirqs (kernel/softirq.c:579) [ 1412.670368][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1412.670372][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1412.670375][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1412.670379][ C3] [ 1412.670380][ C3] [ 1412.670382][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1412.670386][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1412.670389][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1412.670392][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1412.670395][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1412.670397][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1412.670399][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1412.670401][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1412.670403][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1412.670407][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1412.670413][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1412.670418][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1412.670422][ C3] ? xas_alloc (lib/xarray.c:378) [ 1412.670427][ C3] ? xas_alloc (lib/xarray.c:378) [ 1412.670430][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1412.670434][ C3] ? xas_alloc (lib/xarray.c:378) [ 1412.670436][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1412.670442][ C3] xas_alloc (lib/xarray.c:378) [ 1412.670446][ C3] xas_create (lib/xarray.c:685) [ 1412.670452][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1412.670456][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1412.670460][ C3] __xa_store (lib/xarray.c:1703) [ 1412.670464][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1412.670471][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1412.670474][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1412.670477][ C3] ? xa_store (lib/xarray.c:1734) [ 1412.670482][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1412.670486][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1412.670489][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1412.670494][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1412.670497][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1412.670499][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.670504][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1412.670507][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1412.670512][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1412.670515][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1412.670520][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1412.670523][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1412.670530][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1412.670536][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1412.670540][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1412.670544][ C3] ksys_unshare (kernel/fork.c:3121) [ 1412.670548][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1412.670552][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1412.670555][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1412.670558][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1412.670561][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1412.670566][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1412.670570][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1412.670574][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1412.670577][ C3] RIP: 0033:0x7f439756d93b [ 1412.670581][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1412.670583][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1412.670586][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1412.670588][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1412.670590][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1412.670592][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1412.670593][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1416.669147][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1416.669157][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1416.669161][ C2] softirqs last disabled at (0): 0x0 | [ 1416.669175][ C2] Tainted: [L]=SOFTLOCKUP [ 1416.669177][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1416.669202][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1416.669213][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1416.669217][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1416.669220][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1416.669223][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1416.669225][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1416.669227][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1416.669229][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1416.669231][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1416.669234][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1416.669241][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1416.669243][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1416.669245][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1416.669246][ C2] PKRU: 55555554 [ 1416.669248][ C2] Call Trace: [ 1416.669253][ C2] [ 1416.669258][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1416.669262][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1416.669268][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1416.669273][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1416.669281][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1416.669285][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1416.669288][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1416.669291][ C2] ? xa_store (lib/xarray.c:1734) [ 1416.669299][ C2] xa_store (lib/xarray.c:1734) [ 1416.669304][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1416.669310][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1416.669316][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1416.669319][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1416.669322][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1416.669329][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1416.669333][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1416.669341][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1416.669349][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1416.669354][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1416.669362][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1416.669367][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1416.669377][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1416.669381][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1416.669389][ C2] ksys_unshare (kernel/fork.c:3121) [ 1416.669394][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1416.669398][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1416.669404][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1416.669407][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1416.669411][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1416.669418][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1416.669422][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1416.669433][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1416.669438][ C2] RIP: 0033:0x7f439756d93b [ 1416.669444][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1416.669447][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1416.669451][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1416.669453][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1416.669455][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1416.669457][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1416.669459][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1438.148004][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1438.148277][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1438.148540][ C1] NMI backtrace for cpu 1 | [ 1438.148562][ C1] Tainted: [L]=SOFTLOCKUP [ 1438.148564][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1438.148567][ C1] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1438.148580][ C1] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 1438.148597][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1438.148601][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1438.148604][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1438.148606][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1438.148608][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1438.148610][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1438.148613][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1438.148615][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1438.148620][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1438.148622][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1438.148624][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1438.148626][ C1] PKRU: 55555554 [ 1438.148627][ C1] Call Trace: [ 1438.148631][ C1] [ 1438.148636][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1438.148641][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1438.148647][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1438.148651][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1438.148658][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1438.148662][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1438.148665][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1438.148668][ C1] ? xa_store (lib/xarray.c:1734) [ 1438.148676][ C1] xa_store (lib/xarray.c:1734) [ 1438.148680][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1438.148687][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1438.148692][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1438.148695][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1438.148698][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1438.148705][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1438.148708][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1438.148716][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1438.148720][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1438.148725][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1438.148732][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1438.148742][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1438.148751][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1438.148755][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1438.148763][ C1] ksys_unshare (kernel/fork.c:3121) [ 1438.148770][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1438.148774][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1438.148779][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1438.148783][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1438.148786][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1438.148794][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1438.148798][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1438.148805][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1438.148810][ C1] RIP: 0033:0x7f439756d93b [ 1438.148817][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1438.148820][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1438.148824][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1438.148826][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1438.148828][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1438.148830][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1438.148832][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1438.148830][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1438.148832][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1438.148838][ C1] | [ 1438.149541][ C3] Tainted: [L]=SOFTLOCKUP [ 1438.149543][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1438.149545][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1438.149553][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1438.149556][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1438.149560][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1438.149563][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1438.149565][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1438.149567][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1438.149569][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1438.149574][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1438.149577][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1438.149581][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1438.149583][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1438.149585][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1438.149587][ C3] PKRU: 55555554 [ 1438.149588][ C3] Call Trace: [ 1438.149591][ C3] [ 1438.149592][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1438.149598][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1438.149602][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1438.149606][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1438.149610][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1438.149614][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1438.149620][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1438.149625][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1438.149627][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1438.149631][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1438.149634][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1438.149636][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1438.149640][ C3] ? xas_alloc (lib/xarray.c:378) [ 1438.149645][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1438.149649][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1438.149652][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1438.149656][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1438.149662][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1438.149666][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1438.149671][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1438.149676][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1438.149682][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1438.149688][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1438.149691][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1438.149694][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1438.149697][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1438.149701][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1438.149703][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1438.149709][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1438.149712][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1438.149715][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1438.149720][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1438.149724][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1438.149727][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1438.149730][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1438.149734][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1438.149737][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1438.149742][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1438.149747][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1438.149749][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1438.149754][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1438.149758][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1438.149762][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1438.149767][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1438.149771][ C3] handle_softirqs (kernel/softirq.c:579) [ 1438.149776][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1438.149779][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1438.149783][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1438.149786][ C3] [ 1438.149787][ C3] [ 1438.149789][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1438.149793][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1438.149797][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1438.149800][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1438.149803][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1438.149805][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1438.149807][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1438.149809][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1438.149810][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1438.149814][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1438.149820][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1438.149825][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1438.149829][ C3] ? xas_alloc (lib/xarray.c:378) [ 1438.149834][ C3] ? xas_alloc (lib/xarray.c:378) [ 1438.149837][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1438.149841][ C3] ? xas_alloc (lib/xarray.c:378) [ 1438.149843][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1438.149848][ C3] xas_alloc (lib/xarray.c:378) [ 1438.149853][ C3] xas_create (lib/xarray.c:685) [ 1438.149858][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1438.149863][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1438.149866][ C3] __xa_store (lib/xarray.c:1703) [ 1438.149871][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1438.149875][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1438.149878][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1438.149883][ C3] ? xa_store (lib/xarray.c:1734) [ 1438.149888][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1438.149892][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1438.149896][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1438.149901][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1438.149904][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1438.149907][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1438.149911][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1438.149914][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1438.149919][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1438.149923][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1438.149928][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1438.149931][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1438.149936][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1438.149943][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1438.149947][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1438.149952][ C3] ksys_unshare (kernel/fork.c:3121) [ 1438.149958][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1438.149961][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1438.149964][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1438.149967][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1438.149971][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1438.149977][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1438.149981][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1438.149988][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1438.149991][ C3] RIP: 0033:0x7f439756d93b [ 1438.149996][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1438.149999][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1438.150002][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1438.150004][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1438.150006][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1438.150008][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1438.150009][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1440.656144][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1440.656155][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1440.656159][ C0] softirqs last disabled at (0): 0x0 | [ 1440.656170][ C0] Tainted: [L]=SOFTLOCKUP [ 1440.656171][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1440.656174][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1440.656181][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1440.656184][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1440.656187][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1440.656189][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1440.656191][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1440.656193][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1440.656195][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1440.656197][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1440.656200][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1440.656203][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1440.656205][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1440.656207][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1440.656209][ C0] PKRU: 55555554 [ 1440.656210][ C0] Call Trace: [ 1440.656215][ C0] [ 1440.656219][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1440.656223][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1440.656229][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1440.656232][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1440.656243][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1440.656252][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1440.656255][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1440.656258][ C0] ? xa_store (lib/xarray.c:1734) [ 1440.656264][ C0] xa_store (lib/xarray.c:1734) [ 1440.656271][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1440.656277][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1440.656284][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1440.656287][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1440.656290][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1440.656296][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1440.656300][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1440.656307][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1440.656311][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1440.656316][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1440.656321][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1440.656326][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1440.656338][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1440.656342][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1440.656348][ C0] ksys_unshare (kernel/fork.c:3121) [ 1440.656355][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1440.656359][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1440.656363][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1440.656366][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1440.656369][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1440.656375][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1440.656380][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1440.656386][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1440.656392][ C0] RIP: 0033:0x7f439756d93b [ 1440.656401][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1440.656403][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1440.656407][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1440.656409][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1440.656411][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1440.656413][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1440.656414][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1444.669144][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1444.669154][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1444.669158][ C2] softirqs last disabled at (0): 0x0 | [ 1444.669172][ C2] Tainted: [L]=SOFTLOCKUP [ 1444.669173][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1444.669176][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1444.669186][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1444.669190][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1444.669193][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1444.669196][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1444.669198][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1444.669200][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1444.669209][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1444.669211][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1444.669214][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1444.669219][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1444.669221][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1444.669223][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1444.669225][ C2] PKRU: 55555554 [ 1444.669226][ C2] Call Trace: [ 1444.669231][ C2] [ 1444.669236][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1444.669240][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1444.669246][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1444.669251][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1444.669259][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1444.669263][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1444.669266][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1444.669269][ C2] ? xa_store (lib/xarray.c:1734) [ 1444.669276][ C2] xa_store (lib/xarray.c:1734) [ 1444.669281][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1444.669288][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1444.669293][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1444.669296][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1444.669299][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1444.669306][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1444.669310][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1444.669318][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1444.669322][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1444.669327][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1444.669335][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1444.669340][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1444.669349][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1444.669353][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1444.669359][ C2] ksys_unshare (kernel/fork.c:3121) [ 1444.669365][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1444.669369][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1444.669374][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1444.669377][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1444.669381][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1444.669388][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1444.669392][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1444.669398][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1444.669404][ C2] RIP: 0033:0x7f439756d93b [ 1444.669409][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1444.669412][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1444.669416][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1444.669418][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1444.669422][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1444.669424][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1444.669426][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1464.669142][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1464.669150][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1464.669154][ C1] softirqs last disabled at (0): 0x0 | [ 1464.669166][ C1] Tainted: [L]=SOFTLOCKUP [ 1464.669168][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1464.669170][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1464.669178][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1464.669181][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1464.669184][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1464.669187][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1464.669188][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1464.669191][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1464.669193][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1464.669195][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1464.669197][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1464.669202][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1464.669204][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1464.669206][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1464.669208][ C1] PKRU: 55555554 [ 1464.669209][ C1] Call Trace: [ 1464.669213][ C1] [ 1464.669217][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1464.669221][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1464.669226][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1464.669230][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1464.669238][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1464.669242][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1464.669245][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1464.669248][ C1] ? xa_store (lib/xarray.c:1734) [ 1464.669254][ C1] xa_store (lib/xarray.c:1734) [ 1464.669259][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1464.669264][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1464.669269][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1464.669273][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1464.669275][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1464.669281][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1464.669284][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1464.669292][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1464.669310][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1464.669315][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1464.669322][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1464.669328][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1464.669336][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1464.669340][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1464.669346][ C1] ksys_unshare (kernel/fork.c:3121) [ 1464.669351][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1464.669355][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1464.669359][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1464.669362][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1464.669366][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1464.669372][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1464.669376][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1464.669381][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1464.669385][ C1] RIP: 0033:0x7f439756d93b [ 1464.669391][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1464.669394][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1464.669397][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1464.669399][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1464.669401][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1464.669403][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1464.669405][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1464.670129][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1464.670135][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1464.670139][ C3] softirqs last disabled at (0): 0x0 | [ 1464.670149][ C3] Tainted: [L]=SOFTLOCKUP [ 1464.670150][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1464.670152][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1464.670158][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1464.670161][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1464.670164][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1464.670166][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1464.670168][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1464.670170][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1464.670172][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1464.670174][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1464.670176][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1464.670180][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1464.670182][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1464.670190][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1464.670192][ C3] PKRU: 55555554 [ 1464.670193][ C3] Call Trace: [ 1464.670197][ C3] [ 1464.670198][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1464.670206][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1464.670211][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1464.670215][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1464.670220][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1464.670224][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1464.670227][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1464.670231][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1464.670235][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1464.670238][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1464.670241][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1464.670244][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1464.670247][ C3] ? xas_alloc (lib/xarray.c:378) [ 1464.670252][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1464.670256][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1464.670259][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1464.670262][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1464.670268][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1464.670274][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1464.670280][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1464.670284][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1464.670289][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1464.670293][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1464.670297][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1464.670300][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1464.670303][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1464.670307][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1464.670309][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1464.670315][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1464.670318][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1464.670321][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1464.670326][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1464.670329][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1464.670333][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1464.670335][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1464.670339][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1464.670342][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1464.670346][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1464.670351][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1464.670354][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1464.670362][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1464.670366][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1464.670370][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1464.670376][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1464.670381][ C3] handle_softirqs (kernel/softirq.c:579) [ 1464.670387][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1464.670390][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1464.670394][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1464.670398][ C3] [ 1464.670399][ C3] [ 1464.670401][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1464.670405][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1464.670408][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1464.670411][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1464.670415][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1464.670417][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1464.670419][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1464.670420][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1464.670422][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1464.670426][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1464.670432][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1464.670438][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1464.670441][ C3] ? xas_alloc (lib/xarray.c:378) [ 1464.670446][ C3] ? xas_alloc (lib/xarray.c:378) [ 1464.670449][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1464.670453][ C3] ? xas_alloc (lib/xarray.c:378) [ 1464.670456][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1464.670461][ C3] xas_alloc (lib/xarray.c:378) [ 1464.670466][ C3] xas_create (lib/xarray.c:685) [ 1464.670472][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1464.670477][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1464.670481][ C3] __xa_store (lib/xarray.c:1703) [ 1464.670485][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1464.670489][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1464.670492][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1464.670495][ C3] ? xa_store (lib/xarray.c:1734) [ 1464.670500][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1464.670504][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1464.670507][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1464.670512][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1464.670515][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1464.670518][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1464.670522][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1464.670525][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1464.670530][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1464.670534][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1464.670538][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1464.670542][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1464.670547][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1464.670556][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1464.670559][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1464.670564][ C3] ksys_unshare (kernel/fork.c:3121) [ 1464.670569][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1464.670572][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1464.670576][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1464.670579][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1464.670582][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1464.670588][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1464.670592][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1464.670597][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1464.670600][ C3] RIP: 0033:0x7f439756d93b [ 1464.670603][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1464.670606][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1464.670609][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1464.670611][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1464.670613][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1464.670615][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1464.670617][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1468.656148][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1468.656159][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1468.656163][ C0] softirqs last disabled at (0): 0x0 | [ 1468.656178][ C0] Tainted: [L]=SOFTLOCKUP [ 1468.656179][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1468.656182][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1468.656193][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1468.656196][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1468.656199][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1468.656202][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1468.656220][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1468.656222][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1468.656224][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1468.656226][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1468.656229][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1468.656234][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1468.656236][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1468.656238][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1468.656240][ C0] PKRU: 55555554 [ 1468.656241][ C0] Call Trace: [ 1468.656247][ C0] [ 1468.656252][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1468.656260][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1468.656266][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1468.656271][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1468.656279][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1468.656283][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1468.656286][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1468.656290][ C0] ? xa_store (lib/xarray.c:1734) [ 1468.656297][ C0] xa_store (lib/xarray.c:1734) [ 1468.656302][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1468.656309][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1468.656315][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1468.656318][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1468.656321][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1468.656329][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1468.656332][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1468.656340][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1468.656344][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1468.656350][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1468.656358][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1468.656364][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1468.656373][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1468.656377][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1468.656384][ C0] ksys_unshare (kernel/fork.c:3121) [ 1468.656390][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1468.656393][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1468.656398][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1468.656402][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1468.656406][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1468.656413][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1468.656418][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1468.656424][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1468.656429][ C0] RIP: 0033:0x7f439756d93b [ 1468.656435][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1468.656438][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1468.656442][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1468.656444][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1468.656446][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1468.656448][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1468.656450][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1472.669143][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1472.669153][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1472.669167][ C2] softirqs last disabled at (0): 0x0 | [ 1472.669182][ C2] Tainted: [L]=SOFTLOCKUP [ 1472.669184][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1472.669187][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1472.669197][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1472.669201][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1472.669204][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1472.669207][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1472.669209][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1472.669211][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1472.669213][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1472.669215][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1472.669218][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1472.669222][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1472.669224][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1472.669226][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1472.669227][ C2] PKRU: 55555554 [ 1472.669229][ C2] Call Trace: [ 1472.669233][ C2] [ 1472.669238][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1472.669242][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1472.669248][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1472.669252][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1472.669260][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1472.669265][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1472.669268][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1472.669271][ C2] ? xa_store (lib/xarray.c:1734) [ 1472.669278][ C2] xa_store (lib/xarray.c:1734) [ 1472.669283][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1472.669289][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1472.669295][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1472.669297][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1472.669301][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1472.669308][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1472.669311][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1472.669319][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1472.669323][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1472.669328][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1472.669335][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1472.669340][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1472.669350][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1472.669354][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1472.669360][ C2] ksys_unshare (kernel/fork.c:3121) [ 1472.669365][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1472.669369][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1472.669374][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1472.669381][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1472.669384][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1472.669391][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1472.669396][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1472.669402][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1472.669407][ C2] RIP: 0033:0x7f439756d93b [ 1472.669412][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1472.669415][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1472.669418][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1472.669420][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1472.669422][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1472.669424][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1472.669426][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1492.669145][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1492.669155][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1492.669158][ C1] softirqs last disabled at (0): 0x0 | [ 1492.669172][ C1] Tainted: [L]=SOFTLOCKUP [ 1492.669174][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1492.669177][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1492.669187][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1492.669190][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1492.669194][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1492.669196][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1492.669198][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1492.669200][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1492.669203][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1492.669205][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1492.669208][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1492.669212][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1492.669214][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1492.669216][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1492.669218][ C1] PKRU: 55555554 [ 1492.669219][ C1] Call Trace: [ 1492.669224][ C1] [ 1492.669229][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1492.669234][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1492.669240][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1492.669244][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1492.669253][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1492.669257][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1492.669269][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1492.669273][ C1] ? xa_store (lib/xarray.c:1734) [ 1492.669280][ C1] xa_store (lib/xarray.c:1734) [ 1492.669285][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1492.669292][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1492.669297][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1492.669301][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1492.669304][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1492.669311][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1492.669314][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1492.669322][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1492.669326][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1492.669332][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1492.669339][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1492.669344][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1492.669354][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1492.669358][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1492.669365][ C1] ksys_unshare (kernel/fork.c:3121) [ 1492.669370][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1492.669374][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1492.669382][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1492.669385][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1492.669388][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1492.669396][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1492.669400][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1492.669406][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1492.669412][ C1] RIP: 0033:0x7f439756d93b [ 1492.669418][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1492.669421][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1492.669425][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1492.669427][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1492.669429][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1492.669431][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1492.669433][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1492.670137][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1492.670145][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1492.670149][ C3] softirqs last disabled at (0): 0x0 | [ 1492.670161][ C3] Tainted: [L]=SOFTLOCKUP [ 1492.670163][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1492.670165][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1492.670173][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1492.670184][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1492.670187][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1492.670190][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1492.670191][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1492.670193][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1492.670195][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1492.670198][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1492.670200][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1492.670204][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1492.670206][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1492.670207][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1492.670209][ C3] PKRU: 55555554 [ 1492.670210][ C3] Call Trace: [ 1492.670215][ C3] [ 1492.670217][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1492.670222][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1492.670227][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1492.670231][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1492.670236][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1492.670240][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1492.670243][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1492.670248][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1492.670251][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1492.670254][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1492.670257][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1492.670260][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1492.670263][ C3] ? xas_alloc (lib/xarray.c:378) [ 1492.670268][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1492.670273][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1492.670276][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1492.670280][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1492.670285][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1492.670289][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1492.670295][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1492.670300][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1492.670306][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1492.670311][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1492.670315][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1492.670318][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1492.670321][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1492.670325][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1492.670327][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1492.670333][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1492.670336][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1492.670339][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1492.670343][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1492.670348][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1492.670354][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1492.670357][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1492.670360][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1492.670364][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1492.670368][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1492.670373][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1492.670376][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1492.670381][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1492.670385][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1492.670389][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1492.670394][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1492.670398][ C3] handle_softirqs (kernel/softirq.c:579) [ 1492.670404][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1492.670407][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1492.670411][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1492.670415][ C3] [ 1492.670416][ C3] [ 1492.670418][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1492.670423][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1492.670426][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1492.670429][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1492.670431][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1492.670433][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1492.670436][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1492.670437][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1492.670439][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1492.670443][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1492.670449][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1492.670454][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1492.670458][ C3] ? xas_alloc (lib/xarray.c:378) [ 1492.670463][ C3] ? xas_alloc (lib/xarray.c:378) [ 1492.670466][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1492.670470][ C3] ? xas_alloc (lib/xarray.c:378) [ 1492.670473][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1492.670478][ C3] xas_alloc (lib/xarray.c:378) [ 1492.670483][ C3] xas_create (lib/xarray.c:685) [ 1492.670489][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1492.670494][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1492.670497][ C3] __xa_store (lib/xarray.c:1703) [ 1492.670501][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1492.670506][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1492.670509][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1492.670512][ C3] ? xa_store (lib/xarray.c:1734) [ 1492.670516][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1492.670521][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1492.670524][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1492.670531][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1492.670534][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1492.670537][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1492.670541][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1492.670544][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1492.670549][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1492.670553][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1492.670558][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1492.670562][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1492.670566][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1492.670575][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1492.670579][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1492.670585][ C3] ksys_unshare (kernel/fork.c:3121) [ 1492.670589][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1492.670593][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1492.670597][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1492.670599][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1492.670603][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1492.670609][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1492.670613][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1492.670618][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1492.670622][ C3] RIP: 0033:0x7f439756d93b [ 1492.670625][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1492.670628][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1492.670631][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1492.670634][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1492.670636][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1492.670638][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1492.670639][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1496.656141][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1496.656151][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1496.656155][ C0] softirqs last disabled at (0): 0x0 | [ 1496.656170][ C0] Tainted: [L]=SOFTLOCKUP [ 1496.656171][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1496.656174][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1496.656185][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1496.656189][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1496.656192][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1496.656194][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1496.656197][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1496.656199][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1496.656212][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1496.656215][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1496.656218][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1496.656224][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1496.656226][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1496.656228][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1496.656230][ C0] PKRU: 55555554 [ 1496.656231][ C0] Call Trace: [ 1496.656236][ C0] [ 1496.656240][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1496.656245][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1496.656251][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1496.656255][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1496.656264][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1496.656268][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1496.656271][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1496.656274][ C0] ? xa_store (lib/xarray.c:1734) [ 1496.656281][ C0] xa_store (lib/xarray.c:1734) [ 1496.656286][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1496.656292][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1496.656297][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1496.656300][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1496.656303][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1496.656310][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1496.656314][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1496.656322][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1496.656326][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1496.656331][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1496.656339][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1496.656343][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1496.656353][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1496.656356][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1496.656363][ C0] ksys_unshare (kernel/fork.c:3121) [ 1496.656369][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1496.656372][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1496.656377][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1496.656381][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1496.656384][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1496.656392][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1496.656396][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1496.656402][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1496.656407][ C0] RIP: 0033:0x7f439756d93b [ 1496.656413][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1496.656416][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1496.656419][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1496.656422][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1496.656426][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1496.656428][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1496.656430][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1500.669141][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1500.669151][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1500.669154][ C2] softirqs last disabled at (0): 0x0 | [ 1500.669169][ C2] Tainted: [L]=SOFTLOCKUP [ 1500.669171][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1500.669174][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1500.669184][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1500.669187][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1500.669191][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1500.669193][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1500.669195][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1500.669198][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1500.669200][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1500.669202][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1500.669204][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1500.669208][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1500.669210][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1500.669212][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1500.669213][ C2] PKRU: 55555554 [ 1500.669215][ C2] Call Trace: [ 1500.669220][ C2] [ 1500.669225][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1500.669229][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1500.669235][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1500.669239][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1500.669247][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1500.669251][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1500.669254][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1500.669257][ C2] ? xa_store (lib/xarray.c:1734) [ 1500.669264][ C2] xa_store (lib/xarray.c:1734) [ 1500.669269][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1500.669275][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1500.669280][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1500.669283][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1500.669286][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1500.669294][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1500.669297][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1500.669305][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1500.669316][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1500.669321][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1500.669329][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1500.669334][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1500.669343][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1500.669348][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1500.669355][ C2] ksys_unshare (kernel/fork.c:3121) [ 1500.669360][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1500.669364][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1500.669369][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1500.669372][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1500.669376][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1500.669383][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1500.669387][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1500.669393][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1500.669399][ C2] RIP: 0033:0x7f439756d93b [ 1500.669404][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1500.669407][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1500.669410][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1500.669412][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1500.669414][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1500.669416][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1500.669418][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1516.161785][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1516.162086][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1516.162360][ C1] NMI backtrace for cpu 1 | [ 1516.162380][ C1] Tainted: [L]=SOFTLOCKUP [ 1516.162382][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1516.162385][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1516.162398][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1516.162401][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1516.162412][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1516.162414][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1516.162416][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1516.162418][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1516.162421][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1516.162424][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1516.162426][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1516.162432][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1516.162434][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1516.162436][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1516.162437][ C1] PKRU: 55555554 [ 1516.162439][ C1] Call Trace: [ 1516.162443][ C1] [ 1516.162448][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1516.162453][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1516.162459][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1516.162463][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1516.162471][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1516.162475][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1516.162480][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1516.162483][ C1] ? xa_store (lib/xarray.c:1734) [ 1516.162490][ C1] xa_store (lib/xarray.c:1734) [ 1516.162495][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1516.162501][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1516.162506][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1516.162509][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1516.162512][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1516.162519][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1516.162523][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1516.162531][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1516.162535][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1516.162539][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1516.162548][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1516.162552][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1516.162563][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1516.162567][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1516.162574][ C1] ksys_unshare (kernel/fork.c:3121) [ 1516.162581][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1516.162585][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1516.162590][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1516.162593][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1516.162597][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1516.162604][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1516.162608][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1516.162614][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1516.162619][ C1] RIP: 0033:0x7f439756d93b [ 1516.162625][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1516.162628][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1516.162631][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1516.162633][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1516.162635][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1516.162637][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1516.162639][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1516.162637][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1516.162639][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1516.162645][ C1] | [ 1516.163350][ C3] Tainted: [L]=SOFTLOCKUP [ 1516.163352][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1516.163354][ C3] RIP: 0010:kasan_check_range (mm/kasan/generic.c:177 mm/kasan/generic.c:189) [ 1516.163360][ C3] Code: ff ff ff ff ff ff fe 48 39 c7 77 23 44 89 c2 e8 b7 e7 ff ff 83 f0 01 5b 5d 41 5c c3 cc cc cc cc 48 b8 ff ff ff ff ff 7f ff ff <48> 39 c7 76 dd 4c 8d 54 37 ff 48 89 fd 48 b8 00 00 00 00 00 fc ff All code ======== 0: ff (bad) 1: ff (bad) 2: ff (bad) 3: ff (bad) 4: ff (bad) 5: ff (bad) 6: fe 48 39 decb 0x39(%rax) 9: c7 (bad) a: 77 23 ja 0x2f c: 44 89 c2 mov %r8d,%edx f: e8 b7 e7 ff ff call 0xffffffffffffe7cb 14: 83 f0 01 xor $0x1,%eax 17: 5b pop %rbx 18: 5d pop %rbp 19: 41 5c pop %r12 1b: c3 ret 1c: cc int3 1d: cc int3 1e: cc int3 1f: cc int3 20: 48 b8 ff ff ff ff ff movabs $0xffff7fffffffffff,%rax 27: 7f ff ff 2a:* 48 39 c7 cmp %rax,%rdi <-- trapping instruction 2d: 76 dd jbe 0xc 2f: 4c 8d 54 37 ff lea -0x1(%rdi,%rsi,1),%r10 34: 48 89 fd mov %rdi,%rbp 37: 48 rex.W 38: b8 00 00 00 00 mov $0x0,%eax 3d: 00 fc add %bh,%ah 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 48 39 c7 cmp %rax,%rdi 3: 76 dd jbe 0xffffffffffffffe2 5: 4c 8d 54 37 ff lea -0x1(%rdi,%rsi,1),%r10 a: 48 89 fd mov %rdi,%rbp d: 48 rex.W e: b8 00 00 00 00 mov $0x0,%eax 13: 00 fc add %bh,%ah 15: ff .byte 0xff [ 1516.163364][ C3] RSP: 0018:ffffc90000270a28 EFLAGS: 00000282 [ 1516.163368][ C3] RAX: ffff7fffffffffff RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1516.163370][ C3] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1516.163372][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1516.163375][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1516.163376][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1516.163381][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1516.163384][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1516.163388][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1516.163390][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1516.163392][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1516.163394][ C3] PKRU: 55555554 [ 1516.163395][ C3] Call Trace: [ 1516.163397][ C3] [ 1516.163400][ C3] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1516.163405][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1516.163409][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1516.163414][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1516.163417][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1516.163420][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1516.163425][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1516.163428][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1516.163432][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1516.163435][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1516.163439][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1516.163441][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1516.163444][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1516.163447][ C3] ? xas_alloc (lib/xarray.c:378) [ 1516.163452][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1516.163455][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1516.163459][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1516.163462][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1516.163467][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1516.163471][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1516.163476][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1516.163480][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1516.163486][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1516.163491][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1516.163494][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1516.163497][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1516.163501][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1516.163505][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1516.163507][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1516.163514][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1516.163517][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1516.163520][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1516.163525][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1516.163530][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1516.163536][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1516.163539][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1516.163545][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1516.163549][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1516.163553][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1516.163560][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1516.163563][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1516.163568][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1516.163572][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1516.163576][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1516.163581][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1516.163586][ C3] handle_softirqs (kernel/softirq.c:579) [ 1516.163591][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1516.163595][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1516.163598][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1516.163602][ C3] [ 1516.163603][ C3] [ 1516.163604][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1516.163609][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1516.163612][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1516.163615][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1516.163618][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1516.163620][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1516.163621][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1516.163623][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1516.163625][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1516.163629][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1516.163635][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1516.163640][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1516.163644][ C3] ? xas_alloc (lib/xarray.c:378) [ 1516.163648][ C3] ? xas_alloc (lib/xarray.c:378) [ 1516.163651][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1516.163656][ C3] ? xas_alloc (lib/xarray.c:378) [ 1516.163658][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1516.163663][ C3] xas_alloc (lib/xarray.c:378) [ 1516.163668][ C3] xas_create (lib/xarray.c:685) [ 1516.163674][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1516.163678][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1516.163682][ C3] __xa_store (lib/xarray.c:1703) [ 1516.163686][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1516.163691][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1516.163694][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1516.163697][ C3] ? xa_store (lib/xarray.c:1734) [ 1516.163702][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1516.163706][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1516.163709][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1516.163714][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1516.163717][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1516.163720][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1516.163724][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1516.163727][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1516.163734][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1516.163738][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1516.163743][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1516.163747][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1516.163751][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1516.163759][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1516.163763][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1516.163768][ C3] ksys_unshare (kernel/fork.c:3121) [ 1516.163773][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1516.163776][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1516.163780][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1516.163783][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1516.163786][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1516.163792][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1516.163796][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1516.163801][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1516.163805][ C3] RIP: 0033:0x7f439756d93b [ 1516.163809][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1516.163812][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1516.163815][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1516.163819][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1516.163820][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1516.163822][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1516.163824][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1524.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1524.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1524.656147][ C0] softirqs last disabled at (0): 0x0 | [ 1524.656159][ C0] Tainted: [L]=SOFTLOCKUP [ 1524.656161][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1524.656163][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1524.656170][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1524.656174][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1524.656177][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1524.656179][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1524.656181][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1524.656183][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1524.656185][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1524.656187][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1524.656190][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1524.656193][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1524.656195][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1524.656207][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1524.656208][ C0] PKRU: 55555554 [ 1524.656210][ C0] Call Trace: [ 1524.656214][ C0] [ 1524.656218][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1524.656222][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1524.656227][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1524.656232][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1524.656239][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1524.656243][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1524.656246][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1524.656249][ C0] ? xa_store (lib/xarray.c:1734) [ 1524.656255][ C0] xa_store (lib/xarray.c:1734) [ 1524.656259][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1524.656264][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1524.656270][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1524.656273][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1524.656275][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1524.656282][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1524.656285][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1524.656291][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1524.656296][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1524.656300][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1524.656306][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1524.656310][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1524.656318][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1524.656322][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1524.656327][ C0] ksys_unshare (kernel/fork.c:3121) [ 1524.656332][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1524.656336][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1524.656340][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1524.656343][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1524.656346][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1524.656353][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1524.656357][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1524.656362][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1524.656366][ C0] RIP: 0033:0x7f439756d93b [ 1524.656371][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1524.656374][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1524.656377][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1524.656379][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1524.656381][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1524.656383][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1524.656384][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1528.669151][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1528.669161][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1528.669165][ C2] softirqs last disabled at (0): 0x0 | [ 1528.669179][ C2] Tainted: [L]=SOFTLOCKUP [ 1528.669181][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1528.669184][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1528.669195][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1528.669199][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1528.669202][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1528.669205][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1528.669207][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1528.669209][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1528.669211][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1528.669213][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1528.669216][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1528.669220][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1528.669222][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1528.669223][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1528.669225][ C2] PKRU: 55555554 [ 1528.669226][ C2] Call Trace: [ 1528.669232][ C2] [ 1528.669237][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1528.669241][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1528.669247][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1528.669251][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1528.669259][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1528.669264][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1528.669267][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1528.669270][ C2] ? xa_store (lib/xarray.c:1734) [ 1528.669277][ C2] xa_store (lib/xarray.c:1734) [ 1528.669282][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1528.669289][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1528.669295][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1528.669297][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1528.669300][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1528.669307][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1528.669311][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1528.669319][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1528.669323][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1528.669328][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1528.669336][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1528.669341][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1528.669350][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1528.669357][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1528.669363][ C2] ksys_unshare (kernel/fork.c:3121) [ 1528.669369][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1528.669372][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1528.669377][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1528.669381][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1528.669384][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1528.669391][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1528.669396][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1528.669402][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1528.669407][ C2] RIP: 0033:0x7f439756d93b [ 1528.669413][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1528.669416][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1528.669420][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1528.669422][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1528.669424][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1528.669426][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1528.669428][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1540.669139][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1540.669148][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1540.669151][ C1] softirqs last disabled at (0): 0x0 | [ 1540.669163][ C1] Tainted: [L]=SOFTLOCKUP [ 1540.669164][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1540.669167][ C1] RIP: 0010:kasan_check_range (mm/kasan/generic.c:171 mm/kasan/generic.c:189) [ 1540.669172][ C1] Code: 00 00 e9 2f 4d 36 02 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 <48> 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 All code ======== 0: 00 00 add %al,(%rax) 2: e9 2f 4d 36 02 jmp 0x2364d36 7: 66 66 2e 0f 1f 84 00 data16 cs nopw 0x0(%rax,%rax,1) e: 00 00 00 00 12: 0f 1f 40 00 nopl 0x0(%rax) 16: 90 nop 17: 90 nop 18: 90 nop 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 66 0f 1f 00 nopw (%rax) 2a:* 48 85 f6 test %rsi,%rsi <-- trapping instruction 2d: 0f 84 5e 01 00 00 je 0x191 33: 48 89 f8 mov %rdi,%rax 36: 41 54 push %r12 38: 44 0f b6 c2 movzbl %dl,%r8d 3c: 48 01 f0 add %rsi,%rax 3f: 55 push %rbp Code starting with the faulting instruction =========================================== 0: 48 85 f6 test %rsi,%rsi 3: 0f 84 5e 01 00 00 je 0x167 9: 48 89 f8 mov %rdi,%rax c: 41 54 push %r12 e: 44 0f b6 c2 movzbl %dl,%r8d 12: 48 01 f0 add %rsi,%rax 15: 55 push %rbp [ 1540.669176][ C1] RSP: 0018:ffffc900034b7a10 EFLAGS: 00000246 [ 1540.669179][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1540.669181][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1540.669183][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1540.669185][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1540.669187][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1540.669189][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1540.669192][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1540.669196][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1540.669198][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1540.669200][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1540.669202][ C1] PKRU: 55555554 [ 1540.669203][ C1] Call Trace: [ 1540.669207][ C1] [ 1540.669209][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1540.669219][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1540.669223][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1540.669228][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1540.669232][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1540.669245][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1540.669249][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1540.669251][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1540.669255][ C1] ? xa_store (lib/xarray.c:1734) [ 1540.669261][ C1] xa_store (lib/xarray.c:1734) [ 1540.669266][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1540.669271][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1540.669276][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1540.669279][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1540.669282][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1540.669288][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1540.669292][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1540.669299][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1540.669302][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1540.669307][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1540.669313][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1540.669318][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1540.669326][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1540.669330][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1540.669335][ C1] ksys_unshare (kernel/fork.c:3121) [ 1540.669341][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1540.669344][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1540.669348][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1540.669351][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1540.669355][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1540.669361][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1540.669365][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1540.669370][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1540.669374][ C1] RIP: 0033:0x7f439756d93b [ 1540.669380][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1540.669382][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1540.669386][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1540.669388][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1540.669390][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1540.669391][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1540.669393][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1540.670128][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1540.670134][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1540.670138][ C3] softirqs last disabled at (0): 0x0 | [ 1540.670148][ C3] Tainted: [L]=SOFTLOCKUP [ 1540.670150][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1540.670152][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1540.670158][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1540.670161][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1540.670164][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1540.670166][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1540.670168][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1540.670170][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1540.670172][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1540.670174][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1540.670176][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1540.670180][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1540.670182][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1540.670184][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1540.670185][ C3] PKRU: 55555554 [ 1540.670187][ C3] Call Trace: [ 1540.670190][ C3] [ 1540.670192][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1540.670197][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1540.670202][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1540.670206][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1540.670210][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1540.670215][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1540.670218][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1540.670222][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1540.670225][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1540.670229][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1540.670231][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1540.670234][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1540.670237][ C3] ? xas_alloc (lib/xarray.c:378) [ 1540.670242][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1540.670246][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1540.670249][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1540.670253][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1540.670258][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1540.670262][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1540.670268][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1540.670272][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1540.670277][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1540.670282][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1540.670285][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1540.670288][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1540.670292][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1540.670295][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1540.670298][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1540.670304][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1540.670307][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1540.670310][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1540.670315][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1540.670318][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1540.670322][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1540.670325][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1540.670329][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1540.670332][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1540.670336][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1540.670341][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1540.670344][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1540.670349][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1540.670353][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1540.670356][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1540.670361][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1540.670366][ C3] handle_softirqs (kernel/softirq.c:579) [ 1540.670371][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1540.670375][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1540.670378][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1540.670382][ C3] [ 1540.670383][ C3] [ 1540.670385][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1540.670389][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1540.670392][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1540.670395][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1540.670398][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1540.670401][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1540.670403][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1540.670405][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1540.670407][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1540.670411][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1540.670417][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1540.670423][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1540.670427][ C3] ? xas_alloc (lib/xarray.c:378) [ 1540.670431][ C3] ? xas_alloc (lib/xarray.c:378) [ 1540.670434][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1540.670438][ C3] ? xas_alloc (lib/xarray.c:378) [ 1540.670441][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1540.670446][ C3] xas_alloc (lib/xarray.c:378) [ 1540.670450][ C3] xas_create (lib/xarray.c:685) [ 1540.670456][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1540.670461][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1540.670464][ C3] __xa_store (lib/xarray.c:1703) [ 1540.670468][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1540.670473][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1540.670476][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1540.670479][ C3] ? xa_store (lib/xarray.c:1734) [ 1540.670484][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1540.670488][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1540.670492][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1540.670497][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1540.670500][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1540.670502][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1540.670506][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1540.670510][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1540.670515][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1540.670519][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1540.670523][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1540.670527][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1540.670531][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1540.670539][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1540.670542][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1540.670547][ C3] ksys_unshare (kernel/fork.c:3121) [ 1540.670551][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1540.670555][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1540.670558][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1540.670561][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1540.670564][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1540.670570][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1540.670574][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1540.670578][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1540.670581][ C3] RIP: 0033:0x7f439756d93b [ 1540.670585][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1540.670588][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1540.670591][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1540.670593][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1540.670595][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1540.670597][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1540.670599][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1552.656138][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1552.656147][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1552.656151][ C0] softirqs last disabled at (0): 0x0 | [ 1552.656163][ C0] Tainted: [L]=SOFTLOCKUP [ 1552.656164][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1552.656167][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1552.656176][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1552.656179][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1552.656182][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1552.656184][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1552.656186][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1552.656189][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1552.656191][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1552.656193][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1552.656195][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1552.656199][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1552.656201][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1552.656203][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1552.656204][ C0] PKRU: 55555554 [ 1552.656206][ C0] Call Trace: [ 1552.656210][ C0] [ 1552.656214][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1552.656218][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1552.656223][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1552.656227][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1552.656234][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1552.656238][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1552.656241][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1552.656244][ C0] ? xa_store (lib/xarray.c:1734) [ 1552.656251][ C0] xa_store (lib/xarray.c:1734) [ 1552.656255][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1552.656261][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1552.656266][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1552.656269][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1552.656272][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1552.656279][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1552.656282][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1552.656289][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1552.656293][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1552.656298][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1552.656305][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1552.656309][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1552.656318][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1552.656321][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1552.656327][ C0] ksys_unshare (kernel/fork.c:3121) [ 1552.656332][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1552.656336][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1552.656341][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1552.656344][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1552.656347][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1552.656354][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1552.656358][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1552.656363][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1552.656368][ C0] RIP: 0033:0x7f439756d93b [ 1552.656373][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1552.656376][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1552.656379][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1552.656381][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1552.656384][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1552.656385][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1552.656387][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1556.669136][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1556.669144][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1556.669147][ C2] softirqs last disabled at (0): 0x0 | [ 1556.669159][ C2] Tainted: [L]=SOFTLOCKUP [ 1556.669161][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1556.669164][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1556.669171][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1556.669175][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1556.669177][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1556.669180][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1556.669182][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1556.669184][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1556.669186][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1556.669188][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1556.669190][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1556.669195][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1556.669197][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1556.669199][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1556.669200][ C2] PKRU: 55555554 [ 1556.669202][ C2] Call Trace: [ 1556.669206][ C2] [ 1556.669210][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1556.669214][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1556.669219][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1556.669223][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1556.669229][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1556.669233][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1556.669236][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1556.669239][ C2] ? xa_store (lib/xarray.c:1734) [ 1556.669245][ C2] xa_store (lib/xarray.c:1734) [ 1556.669250][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1556.669255][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1556.669260][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1556.669263][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1556.669266][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1556.669272][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1556.669275][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1556.669282][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1556.669286][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1556.669291][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1556.669297][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1556.669302][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1556.669310][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1556.669313][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1556.669319][ C2] ksys_unshare (kernel/fork.c:3121) [ 1556.669324][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1556.669328][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1556.669332][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1556.669335][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1556.669339][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1556.669345][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1556.669349][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1556.669354][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1556.669359][ C2] RIP: 0033:0x7f439756d93b [ 1556.669364][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1556.669367][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1556.669370][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1556.669372][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1556.669374][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1556.669376][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1556.669378][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1568.669137][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1568.669144][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1568.669148][ C1] softirqs last disabled at (0): 0x0 | [ 1568.669160][ C1] Tainted: [L]=SOFTLOCKUP [ 1568.669162][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1568.669164][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1568.669172][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1568.669175][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1568.669178][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1568.669181][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1568.669183][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1568.669185][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1568.669187][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1568.669189][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1568.669192][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1568.669196][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1568.669198][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1568.669200][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1568.669202][ C1] PKRU: 55555554 [ 1568.669203][ C1] Call Trace: [ 1568.669207][ C1] [ 1568.669211][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1568.669215][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1568.669220][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1568.669224][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1568.669231][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1568.669235][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1568.669238][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1568.669241][ C1] ? xa_store (lib/xarray.c:1734) [ 1568.669247][ C1] xa_store (lib/xarray.c:1734) [ 1568.669252][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1568.669257][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1568.669262][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1568.669265][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1568.669268][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1568.669274][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1568.669277][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1568.669284][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1568.669288][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1568.669293][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1568.669299][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1568.669304][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1568.669312][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1568.669316][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1568.669321][ C1] ksys_unshare (kernel/fork.c:3121) [ 1568.669326][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1568.669330][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1568.669334][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1568.669337][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1568.669341][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1568.669347][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1568.669351][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1568.669357][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1568.669361][ C1] RIP: 0033:0x7f439756d93b [ 1568.669365][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1568.669368][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1568.669371][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1568.669373][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1568.669375][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1568.669377][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1568.669378][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1568.670125][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1568.670131][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1568.670135][ C3] softirqs last disabled at (0): 0x0 | [ 1568.670145][ C3] Tainted: [L]=SOFTLOCKUP [ 1568.670147][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1568.670149][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1568.670155][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1568.670158][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1568.670160][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1568.670163][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1568.670165][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1568.670167][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1568.670169][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1568.670171][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1568.670173][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1568.670177][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1568.670179][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1568.670181][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1568.670182][ C3] PKRU: 55555554 [ 1568.670183][ C3] Call Trace: [ 1568.670186][ C3] [ 1568.670188][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1568.670193][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1568.670198][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1568.670201][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1568.670206][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1568.670210][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1568.670213][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1568.670217][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1568.670221][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1568.670224][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1568.670227][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1568.670229][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1568.670232][ C3] ? xas_alloc (lib/xarray.c:378) [ 1568.670237][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1568.670241][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1568.670244][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1568.670247][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1568.670253][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1568.670257][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1568.670263][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1568.670267][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1568.670273][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1568.670277][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1568.670280][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1568.670284][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1568.670287][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1568.670290][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1568.670293][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1568.670298][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1568.670301][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1568.670304][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1568.670309][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1568.670312][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1568.670316][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1568.670319][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1568.670322][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1568.670326][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1568.670330][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1568.670335][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1568.670338][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1568.670344][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1568.670348][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1568.670351][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1568.670356][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1568.670361][ C3] handle_softirqs (kernel/softirq.c:579) [ 1568.670367][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1568.670371][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1568.670374][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1568.670377][ C3] [ 1568.670378][ C3] [ 1568.670380][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1568.670384][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1568.670387][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1568.670390][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1568.670393][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1568.670395][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1568.670397][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1568.670399][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1568.670400][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1568.670405][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1568.670410][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1568.670416][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1568.670420][ C3] ? xas_alloc (lib/xarray.c:378) [ 1568.670424][ C3] ? xas_alloc (lib/xarray.c:378) [ 1568.670427][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1568.670431][ C3] ? xas_alloc (lib/xarray.c:378) [ 1568.670434][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1568.670439][ C3] xas_alloc (lib/xarray.c:378) [ 1568.670444][ C3] xas_create (lib/xarray.c:685) [ 1568.670450][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1568.670454][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1568.670458][ C3] __xa_store (lib/xarray.c:1703) [ 1568.670462][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1568.670467][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1568.670469][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1568.670472][ C3] ? xa_store (lib/xarray.c:1734) [ 1568.670477][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1568.670481][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1568.670484][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1568.670489][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1568.670492][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1568.670495][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1568.670499][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1568.670502][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1568.670507][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1568.670511][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1568.670516][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1568.670519][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1568.670524][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1568.670531][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1568.670535][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1568.670539][ C3] ksys_unshare (kernel/fork.c:3121) [ 1568.670544][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1568.670548][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1568.670551][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1568.670554][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1568.670558][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1568.670564][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1568.670567][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1568.670573][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1568.670576][ C3] RIP: 0033:0x7f439756d93b [ 1568.670580][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1568.670582][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1568.670586][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1568.670588][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1568.670590][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1568.670592][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1568.670594][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1580.656136][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1580.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1580.656148][ C0] softirqs last disabled at (0): 0x0 | [ 1580.656159][ C0] Tainted: [L]=SOFTLOCKUP [ 1580.656161][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1580.656164][ C0] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1580.656171][ C0] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 1580.656175][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1580.656178][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1580.656180][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1580.656182][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1580.656184][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1580.656187][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1580.656189][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1580.656191][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1580.656196][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1580.656198][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1580.656199][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1580.656201][ C0] PKRU: 55555554 [ 1580.656202][ C0] Call Trace: [ 1580.656206][ C0] [ 1580.656210][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1580.656214][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1580.656219][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1580.656223][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1580.656230][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1580.656234][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1580.656236][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1580.656240][ C0] ? xa_store (lib/xarray.c:1734) [ 1580.656246][ C0] xa_store (lib/xarray.c:1734) [ 1580.656250][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1580.656256][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1580.656261][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1580.656264][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1580.656267][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1580.656272][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1580.656276][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1580.656283][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1580.656287][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1580.656291][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1580.656298][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1580.656302][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1580.656311][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1580.656315][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1580.656321][ C0] ksys_unshare (kernel/fork.c:3121) [ 1580.656326][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1580.656329][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1580.656333][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1580.656337][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1580.656341][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1580.656347][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1580.656351][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1580.656356][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1580.656360][ C0] RIP: 0033:0x7f439756d93b [ 1580.656366][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1580.656368][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1580.656372][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1580.656374][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1580.656375][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1580.656377][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1580.656379][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1584.669145][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1584.669154][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1584.669158][ C2] softirqs last disabled at (0): 0x0 | [ 1584.669173][ C2] Tainted: [L]=SOFTLOCKUP [ 1584.669175][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1584.669178][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1584.669189][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1584.669192][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1584.669195][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1584.669198][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1584.669200][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1584.669202][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1584.669204][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1584.669206][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1584.669209][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1584.669214][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1584.669216][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1584.669218][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1584.669220][ C2] PKRU: 55555554 [ 1584.669221][ C2] Call Trace: [ 1584.669227][ C2] [ 1584.669232][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1584.669237][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1584.669243][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1584.669247][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1584.669256][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1584.669260][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1584.669263][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1584.669266][ C2] ? xa_store (lib/xarray.c:1734) [ 1584.669273][ C2] xa_store (lib/xarray.c:1734) [ 1584.669279][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1584.669286][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1584.669291][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1584.669294][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1584.669298][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1584.669305][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1584.669308][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1584.669316][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1584.669320][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1584.669326][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1584.669333][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1584.669338][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1584.669348][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1584.669352][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1584.669359][ C2] ksys_unshare (kernel/fork.c:3121) [ 1584.669364][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1584.669368][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1584.669373][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1584.669376][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1584.669380][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1584.669387][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1584.669392][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1584.669397][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1584.669402][ C2] RIP: 0033:0x7f439756d93b [ 1584.669409][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1584.669411][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1584.669415][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1584.669417][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1584.669420][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1584.669421][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1584.669423][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1594.174709][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1594.175005][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1594.175270][ C1] NMI backtrace for cpu 1 | [ 1594.175285][ C1] Tainted: [L]=SOFTLOCKUP [ 1594.175292][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1594.175295][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1594.175303][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1594.175306][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1594.175310][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1594.175312][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1594.175314][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1594.175317][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1594.175319][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1594.175321][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1594.175323][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1594.175328][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1594.175330][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1594.175332][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1594.175334][ C1] PKRU: 55555554 [ 1594.175335][ C1] Call Trace: [ 1594.175338][ C1] [ 1594.175341][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1594.175345][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1594.175350][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1594.175353][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1594.175361][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1594.175365][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1594.175368][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1594.175371][ C1] ? xa_store (lib/xarray.c:1734) [ 1594.175377][ C1] xa_store (lib/xarray.c:1734) [ 1594.175381][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1594.175387][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1594.175391][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1594.175394][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1594.175397][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1594.175402][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1594.175406][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1594.175412][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1594.175416][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1594.175423][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1594.175428][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1594.175433][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1594.175441][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1594.175444][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1594.175450][ C1] ksys_unshare (kernel/fork.c:3121) [ 1594.175456][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1594.175459][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1594.175463][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1594.175466][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1594.175470][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1594.175476][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1594.175480][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1594.175486][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1594.175490][ C1] RIP: 0033:0x7f439756d93b [ 1594.175496][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1594.175499][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1594.175502][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1594.175504][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1594.175506][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1594.175508][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1594.175510][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1594.175508][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1594.175510][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1594.175515][ C1] | [ 1594.176270][ C3] Tainted: [L]=SOFTLOCKUP [ 1594.176272][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1594.176274][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1594.176279][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1594.176282][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1594.176285][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1594.176290][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1594.176292][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1594.176294][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1594.176296][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1594.176298][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1594.176301][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1594.176304][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1594.176306][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1594.176308][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1594.176310][ C3] PKRU: 55555554 [ 1594.176311][ C3] Call Trace: [ 1594.176312][ C3] [ 1594.176314][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1594.176319][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1594.176323][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1594.176326][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1594.176330][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1594.176335][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1594.176338][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1594.176342][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1594.176345][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1594.176348][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1594.176350][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1594.176353][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1594.176356][ C3] ? xas_alloc (lib/xarray.c:378) [ 1594.176361][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1594.176364][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1594.176367][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1594.176370][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1594.176376][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1594.176379][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1594.176385][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1594.176388][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1594.176394][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1594.176398][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1594.176401][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1594.176404][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1594.176407][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1594.176411][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1594.176414][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1594.176419][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1594.176423][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1594.176426][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1594.176430][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1594.176433][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1594.176437][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1594.176439][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1594.176443][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1594.176446][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1594.176451][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1594.176455][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1594.176458][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1594.176463][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1594.176467][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1594.176470][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1594.176474][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1594.176478][ C3] handle_softirqs (kernel/softirq.c:579) [ 1594.176484][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1594.176488][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1594.176491][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1594.176495][ C3] [ 1594.176496][ C3] [ 1594.176497][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1594.176501][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1594.176504][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1594.176507][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1594.176509][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1594.176511][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1594.176513][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1594.176515][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1594.176517][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1594.176521][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1594.176527][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1594.176532][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1594.176535][ C3] ? xas_alloc (lib/xarray.c:378) [ 1594.176540][ C3] ? xas_alloc (lib/xarray.c:378) [ 1594.176543][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1594.176547][ C3] ? xas_alloc (lib/xarray.c:378) [ 1594.176550][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1594.176554][ C3] xas_alloc (lib/xarray.c:378) [ 1594.176561][ C3] xas_create (lib/xarray.c:685) [ 1594.176567][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1594.176571][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1594.176575][ C3] __xa_store (lib/xarray.c:1703) [ 1594.176579][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1594.176584][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1594.176587][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1594.176590][ C3] ? xa_store (lib/xarray.c:1734) [ 1594.176595][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1594.176599][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1594.176602][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1594.176606][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1594.176609][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1594.176612][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1594.176616][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1594.176619][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1594.176624][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1594.176628][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1594.176632][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1594.176636][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1594.176640][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1594.176647][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1594.176651][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1594.176655][ C3] ksys_unshare (kernel/fork.c:3121) [ 1594.176660][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1594.176664][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1594.176667][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1594.176670][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1594.176673][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1594.176679][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1594.176682][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1594.176687][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1594.176690][ C3] RIP: 0033:0x7f439756d93b [ 1594.176694][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1594.176697][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1594.176700][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1594.176702][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1594.176704][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1594.176706][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1594.176707][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1608.656139][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1608.656147][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1608.656151][ C0] softirqs last disabled at (0): 0x0 | [ 1608.656164][ C0] Tainted: [L]=SOFTLOCKUP [ 1608.656165][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1608.656168][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1608.656176][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1608.656180][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1608.656183][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1608.656185][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1608.656187][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1608.656189][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1608.656191][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1608.656194][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1608.656196][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1608.656201][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1608.656203][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1608.656205][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1608.656219][ C0] PKRU: 55555554 [ 1608.656220][ C0] Call Trace: [ 1608.656225][ C0] [ 1608.656229][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1608.656234][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1608.656239][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1608.656243][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1608.656250][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1608.656254][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1608.656257][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1608.656260][ C0] ? xa_store (lib/xarray.c:1734) [ 1608.656267][ C0] xa_store (lib/xarray.c:1734) [ 1608.656272][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1608.656277][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1608.656282][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1608.656285][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1608.656288][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1608.656294][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1608.656297][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1608.656304][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1608.656308][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1608.656313][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1608.656319][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1608.656324][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1608.656333][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1608.656337][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1608.656343][ C0] ksys_unshare (kernel/fork.c:3121) [ 1608.656349][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1608.656352][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1608.656356][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1608.656359][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1608.656363][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1608.656370][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1608.656374][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1608.656379][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1608.656384][ C0] RIP: 0033:0x7f439756d93b [ 1608.656388][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1608.656391][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1608.656394][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1608.656396][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1608.656398][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1608.656400][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1608.656402][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1612.669133][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1612.669141][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1612.669144][ C2] softirqs last disabled at (0): 0x0 | [ 1612.669156][ C2] Tainted: [L]=SOFTLOCKUP [ 1612.669157][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1612.669160][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1612.669168][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1612.669171][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1612.669175][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1612.669177][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1612.669179][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1612.669181][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1612.669184][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1612.669186][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1612.669188][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1612.669192][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1612.669204][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1612.669205][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1612.669207][ C2] PKRU: 55555554 [ 1612.669208][ C2] Call Trace: [ 1612.669212][ C2] [ 1612.669216][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1612.669220][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1612.669226][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1612.669230][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1612.669236][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1612.669240][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1612.669243][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1612.669246][ C2] ? xa_store (lib/xarray.c:1734) [ 1612.669252][ C2] xa_store (lib/xarray.c:1734) [ 1612.669257][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1612.669262][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1612.669267][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1612.669270][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1612.669273][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1612.669279][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1612.669283][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1612.669289][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1612.669293][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1612.669298][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1612.669304][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1612.669308][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1612.669317][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1612.669321][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1612.669326][ C2] ksys_unshare (kernel/fork.c:3121) [ 1612.669332][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1612.669335][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1612.669340][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1612.669343][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1612.669347][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1612.669353][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1612.669357][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1612.669362][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1612.669367][ C2] RIP: 0033:0x7f439756d93b [ 1612.669373][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1612.669375][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1612.669379][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1612.669381][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1612.669383][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1612.669385][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1612.669386][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1620.669135][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1620.669143][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1620.669146][ C1] softirqs last disabled at (0): 0x0 | [ 1620.669158][ C1] Tainted: [L]=SOFTLOCKUP [ 1620.669160][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1620.669162][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1620.669170][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1620.669173][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1620.669176][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1620.669179][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1620.669180][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1620.669182][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1620.669185][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1620.669187][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1620.669190][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1620.669203][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1620.669205][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1620.669207][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1620.669208][ C1] PKRU: 55555554 [ 1620.669210][ C1] Call Trace: [ 1620.669214][ C1] [ 1620.669218][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1620.669222][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1620.669227][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1620.669231][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1620.669237][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1620.669241][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1620.669244][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1620.669247][ C1] ? xa_store (lib/xarray.c:1734) [ 1620.669253][ C1] xa_store (lib/xarray.c:1734) [ 1620.669258][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1620.669263][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1620.669268][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1620.669271][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1620.669274][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1620.669279][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1620.669283][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1620.669290][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1620.669294][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1620.669298][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1620.669305][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1620.669309][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1620.669318][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1620.669321][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1620.669327][ C1] ksys_unshare (kernel/fork.c:3121) [ 1620.669332][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1620.669335][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1620.669339][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1620.669342][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1620.669346][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1620.669352][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1620.669356][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1620.669361][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1620.669366][ C1] RIP: 0033:0x7f439756d93b [ 1620.669371][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1620.669374][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1620.669377][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1620.669379][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1620.669381][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1620.669383][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1620.669384][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1620.670127][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1620.670133][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1620.670137][ C3] softirqs last disabled at (0): 0x0 | [ 1620.670147][ C3] Tainted: [L]=SOFTLOCKUP [ 1620.670148][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1620.670150][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1620.670157][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1620.670160][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1620.670162][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1620.670164][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1620.670166][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1620.670168][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1620.670170][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1620.670177][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1620.670180][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1620.670183][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1620.670186][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1620.670187][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1620.670189][ C3] PKRU: 55555554 [ 1620.670191][ C3] Call Trace: [ 1620.670194][ C3] [ 1620.670195][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1620.670201][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1620.670205][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1620.670208][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1620.670213][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1620.670218][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1620.670221][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1620.670225][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1620.670229][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1620.670233][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1620.670235][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1620.670238][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1620.670241][ C3] ? xas_alloc (lib/xarray.c:378) [ 1620.670246][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1620.670250][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1620.670253][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1620.670256][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1620.670262][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1620.670266][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1620.670271][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1620.670276][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1620.670281][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1620.670286][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1620.670289][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1620.670292][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1620.670295][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1620.670298][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1620.670302][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1620.670307][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1620.670310][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1620.670313][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1620.670317][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1620.670321][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1620.670325][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1620.670327][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1620.670330][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1620.670334][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1620.670338][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1620.670343][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1620.670346][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1620.670351][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1620.670355][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1620.670359][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1620.670364][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1620.670368][ C3] handle_softirqs (kernel/softirq.c:579) [ 1620.670374][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1620.670378][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1620.670381][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1620.670385][ C3] [ 1620.670386][ C3] [ 1620.670388][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1620.670392][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1620.670395][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1620.670398][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1620.670401][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1620.670404][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1620.670405][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1620.670407][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1620.670409][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1620.670414][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1620.670420][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1620.670426][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1620.670430][ C3] ? xas_alloc (lib/xarray.c:378) [ 1620.670434][ C3] ? xas_alloc (lib/xarray.c:378) [ 1620.670437][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1620.670442][ C3] ? xas_alloc (lib/xarray.c:378) [ 1620.670444][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1620.670449][ C3] xas_alloc (lib/xarray.c:378) [ 1620.670454][ C3] xas_create (lib/xarray.c:685) [ 1620.670460][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1620.670464][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1620.670468][ C3] __xa_store (lib/xarray.c:1703) [ 1620.670472][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1620.670477][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1620.670480][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1620.670485][ C3] ? xa_store (lib/xarray.c:1734) [ 1620.670490][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1620.670495][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1620.670498][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1620.670503][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1620.670505][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1620.670508][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1620.670512][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1620.670516][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1620.670521][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1620.670525][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1620.670530][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1620.670534][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1620.670538][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1620.670546][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1620.670549][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1620.670554][ C3] ksys_unshare (kernel/fork.c:3121) [ 1620.670558][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1620.670562][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1620.670566][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1620.670568][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1620.670572][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1620.670578][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1620.670581][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1620.670586][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1620.670589][ C3] RIP: 0033:0x7f439756d93b [ 1620.670593][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1620.670596][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1620.670599][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1620.670601][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1620.670603][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1620.670605][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1620.670606][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1636.656135][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1636.656144][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1636.656147][ C0] softirqs last disabled at (0): 0x0 | [ 1636.656159][ C0] Tainted: [L]=SOFTLOCKUP [ 1636.656161][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1636.656163][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1636.656171][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1636.656175][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1636.656178][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1636.656180][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1636.656182][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1636.656184][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1636.656187][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1636.656188][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1636.656191][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1636.656195][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1636.656197][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1636.656199][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1636.656201][ C0] PKRU: 55555554 [ 1636.656202][ C0] Call Trace: [ 1636.656206][ C0] [ 1636.656210][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1636.656214][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1636.656219][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1636.656223][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1636.656240][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1636.656244][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1636.656247][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1636.656250][ C0] ? xa_store (lib/xarray.c:1734) [ 1636.656256][ C0] xa_store (lib/xarray.c:1734) [ 1636.656261][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1636.656266][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1636.656271][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1636.656274][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1636.656277][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1636.656283][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1636.656287][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1636.656294][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1636.656298][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1636.656303][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1636.656308][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1636.656313][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1636.656322][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1636.656326][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1636.656332][ C0] ksys_unshare (kernel/fork.c:3121) [ 1636.656338][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1636.656341][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1636.656346][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1636.656349][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1636.656353][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1636.656359][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1636.656363][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1636.656368][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1636.656373][ C0] RIP: 0033:0x7f439756d93b [ 1636.656377][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1636.656380][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1636.656383][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1636.656385][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1636.656387][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1636.656389][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1636.656391][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1640.669132][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1640.669140][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1640.669144][ C2] softirqs last disabled at (0): 0x0 | [ 1640.669156][ C2] Tainted: [L]=SOFTLOCKUP [ 1640.669157][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1640.669159][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1640.669167][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1640.669170][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1640.669173][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1640.669175][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1640.669177][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1640.669179][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1640.669181][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1640.669183][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1640.669186][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1640.669189][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1640.669192][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1640.669193][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1640.669195][ C2] PKRU: 55555554 [ 1640.669196][ C2] Call Trace: [ 1640.669200][ C2] [ 1640.669204][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1640.669208][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1640.669213][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1640.669217][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1640.669224][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1640.669228][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1640.669231][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1640.669234][ C2] ? xa_store (lib/xarray.c:1734) [ 1640.669241][ C2] xa_store (lib/xarray.c:1734) [ 1640.669245][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1640.669250][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1640.669256][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1640.669259][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1640.669261][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1640.669267][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1640.669271][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1640.669278][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1640.669282][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1640.669287][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1640.669293][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1640.669298][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1640.669306][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1640.669310][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1640.669316][ C2] ksys_unshare (kernel/fork.c:3121) [ 1640.669321][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1640.669324][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1640.669330][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1640.669333][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1640.669336][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1640.669342][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1640.669346][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1640.669352][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1640.669357][ C2] RIP: 0033:0x7f439756d93b [ 1640.669362][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1640.669364][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1640.669368][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1640.669370][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1640.669372][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1640.669374][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1640.669375][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1648.669168][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1648.669180][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1648.669185][ C1] softirqs last disabled at (0): 0x0 | [ 1648.669203][ C1] Tainted: [L]=SOFTLOCKUP [ 1648.669205][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1648.669209][ C1] RIP: 0010:__kasan_check_read (mm/kasan/shadow.c:30) [ 1648.669218][ C1] Code: c7 c7 b8 57 8c b8 5b 5d 41 5c e9 7b 44 8d ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 0c 24 89 f6 31 d2 e9 4f f0 ff ff 66 66 2e 0f 1f All code ======== 0: c7 c7 b8 57 8c b8 mov $0xb88c57b8,%edi 6: 5b pop %rbx 7: 5d pop %rbp 8: 41 5c pop %r12 a: e9 7b 44 8d ff jmp 0xffffffffff8d448a f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 16: 00 00 00 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 90 nop 27: 90 nop 28: 90 nop 29: 90 nop 2a:* f3 0f 1e fa endbr64 <-- trapping instruction 2e: 48 8b 0c 24 mov (%rsp),%rcx 32: 89 f6 mov %esi,%esi 34: 31 d2 xor %edx,%edx 36: e9 4f f0 ff ff jmp 0xfffffffffffff08a 3b: 66 data16 3c: 66 data16 3d: 2e cs 3e: 0f .byte 0xf 3f: 1f (bad) Code starting with the faulting instruction =========================================== 0: f3 0f 1e fa endbr64 4: 48 8b 0c 24 mov (%rsp),%rcx 8: 89 f6 mov %esi,%esi a: 31 d2 xor %edx,%edx c: e9 4f f0 ff ff jmp 0xfffffffffffff060 11: 66 data16 12: 66 data16 13: 2e cs 14: 0f .byte 0xf 15: 1f (bad) [ 1648.669223][ C1] RSP: 0018:ffffc900034b7a10 EFLAGS: 00000202 [ 1648.669227][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1648.669230][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1648.669233][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1648.669236][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1648.669239][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1648.669242][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1648.669245][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1648.669256][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1648.669259][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1648.669261][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1648.669264][ C1] PKRU: 55555554 [ 1648.669266][ C1] Call Trace: [ 1648.669272][ C1] [ 1648.669275][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1648.669294][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1648.669301][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1648.669310][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1648.669315][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1648.669324][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1648.669330][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1648.669334][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1648.669338][ C1] ? xa_store (lib/xarray.c:1734) [ 1648.669347][ C1] xa_store (lib/xarray.c:1734) [ 1648.669353][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1648.669361][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1648.669369][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1648.669373][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1648.669377][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1648.669385][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1648.669390][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1648.669400][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1648.669405][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1648.669412][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1648.669421][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1648.669427][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1648.669439][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1648.669467][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1648.669475][ C1] ksys_unshare (kernel/fork.c:3121) [ 1648.669482][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1648.669487][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1648.669493][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1648.669497][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1648.669502][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1648.669511][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1648.669516][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1648.669523][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1648.669530][ C1] RIP: 0033:0x7f439756d93b [ 1648.669538][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1648.669542][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1648.669546][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1648.669549][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1648.669552][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1648.669555][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1648.669557][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1648.670135][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1648.670142][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1648.670146][ C3] softirqs last disabled at (0): 0x0 | [ 1648.670158][ C3] Tainted: [L]=SOFTLOCKUP [ 1648.670160][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1648.670162][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1648.670170][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1648.670173][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1648.670176][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1648.670178][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1648.670180][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1648.670182][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1648.670184][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1648.670186][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1648.670189][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1648.670193][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1648.670195][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1648.670197][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1648.670199][ C3] PKRU: 55555554 [ 1648.670200][ C3] Call Trace: [ 1648.670204][ C3] [ 1648.670206][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1648.670211][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1648.670227][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1648.670231][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1648.670236][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1648.670240][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1648.670244][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1648.670248][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1648.670252][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1648.670255][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1648.670257][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1648.670260][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1648.670263][ C3] ? xas_alloc (lib/xarray.c:378) [ 1648.670269][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1648.670273][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1648.670276][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1648.670280][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1648.670285][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1648.670289][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1648.670294][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1648.670299][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1648.670305][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1648.670311][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1648.670314][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1648.670317][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1648.670321][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1648.670324][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1648.670327][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1648.670333][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1648.670337][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1648.670339][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1648.670344][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1648.670349][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1648.670352][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1648.670355][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1648.670358][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1648.670361][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1648.670366][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1648.670370][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1648.670373][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1648.670379][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1648.670383][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1648.670386][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1648.670391][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1648.670396][ C3] handle_softirqs (kernel/softirq.c:579) [ 1648.670402][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1648.670406][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1648.670409][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1648.670415][ C3] [ 1648.670417][ C3] [ 1648.670418][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1648.670424][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1648.670427][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1648.670430][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1648.670434][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1648.670436][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1648.670438][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1648.670440][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1648.670442][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1648.670446][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1648.670452][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1648.670457][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1648.670461][ C3] ? xas_alloc (lib/xarray.c:378) [ 1648.670466][ C3] ? xas_alloc (lib/xarray.c:378) [ 1648.670469][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1648.670473][ C3] ? xas_alloc (lib/xarray.c:378) [ 1648.670475][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1648.670480][ C3] xas_alloc (lib/xarray.c:378) [ 1648.670485][ C3] xas_create (lib/xarray.c:685) [ 1648.670491][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1648.670495][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1648.670499][ C3] __xa_store (lib/xarray.c:1703) [ 1648.670503][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1648.670508][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1648.670511][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1648.670514][ C3] ? xa_store (lib/xarray.c:1734) [ 1648.670519][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1648.670523][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1648.670526][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1648.670531][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1648.670534][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1648.670537][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1648.670541][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1648.670545][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1648.670550][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1648.670554][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1648.670559][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1648.670563][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1648.670567][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1648.670576][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1648.670580][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1648.670585][ C3] ksys_unshare (kernel/fork.c:3121) [ 1648.670590][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1648.670593][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1648.670597][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1648.670601][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1648.670604][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1648.670611][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1648.670615][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1648.670620][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1648.670624][ C3] RIP: 0033:0x7f439756d93b [ 1648.670628][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1648.670631][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1648.670634][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1648.670637][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1648.670638][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1648.670641][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1648.670643][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1664.656145][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1664.656155][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1664.656159][ C0] softirqs last disabled at (0): 0x0 | [ 1664.656173][ C0] Tainted: [L]=SOFTLOCKUP [ 1664.656174][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1664.656177][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1664.656187][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1664.656191][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1664.656194][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1664.656197][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1664.656199][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1664.656201][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1664.656203][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1664.656205][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1664.656208][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1664.656212][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1664.656215][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1664.656216][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1664.656218][ C0] PKRU: 55555554 [ 1664.656219][ C0] Call Trace: [ 1664.656225][ C0] [ 1664.656230][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1664.656234][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1664.656239][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1664.656244][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1664.656252][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1664.656256][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1664.656270][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1664.656273][ C0] ? xa_store (lib/xarray.c:1734) [ 1664.656280][ C0] xa_store (lib/xarray.c:1734) [ 1664.656286][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1664.656292][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1664.656298][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1664.656301][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1664.656304][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1664.656311][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1664.656314][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1664.656323][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1664.656327][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1664.656332][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1664.656339][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1664.656344][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1664.656354][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1664.656358][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1664.656364][ C0] ksys_unshare (kernel/fork.c:3121) [ 1664.656370][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1664.656373][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1664.656378][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1664.656382][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1664.656385][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1664.656393][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1664.656397][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1664.656404][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1664.656409][ C0] RIP: 0033:0x7f439756d93b [ 1664.656416][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1664.656418][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1664.656422][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1664.656424][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1664.656426][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1664.656428][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1664.656430][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1668.669137][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1668.669144][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1668.669148][ C2] softirqs last disabled at (0): 0x0 | [ 1668.669160][ C2] Tainted: [L]=SOFTLOCKUP [ 1668.669161][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1668.669163][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1668.669171][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1668.669183][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1668.669186][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1668.669188][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1668.669190][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1668.669192][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1668.669194][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1668.669196][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1668.669198][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1668.669202][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1668.669204][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1668.669206][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1668.669207][ C2] PKRU: 55555554 [ 1668.669209][ C2] Call Trace: [ 1668.669212][ C2] [ 1668.669216][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1668.669220][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1668.669225][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1668.669229][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1668.669237][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1668.669241][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1668.669243][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1668.669246][ C2] ? xa_store (lib/xarray.c:1734) [ 1668.669253][ C2] xa_store (lib/xarray.c:1734) [ 1668.669257][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1668.669263][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1668.669268][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1668.669271][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1668.669274][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1668.669279][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1668.669283][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1668.669290][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1668.669294][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1668.669299][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1668.669305][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1668.669310][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1668.669318][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1668.669322][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1668.669328][ C2] ksys_unshare (kernel/fork.c:3121) [ 1668.669333][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1668.669336][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1668.669341][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1668.669344][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1668.669347][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1668.669354][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1668.669358][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1668.669363][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1668.669370][ C2] RIP: 0033:0x7f439756d93b [ 1668.669375][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1668.669378][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1668.669381][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1668.669383][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1668.669385][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1668.669387][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1668.669389][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1672.187529][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1672.187804][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1672.188045][ C1] NMI backtrace for cpu 1 | [ 1672.188065][ C1] Tainted: [L]=SOFTLOCKUP [ 1672.188067][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1672.188070][ C1] RIP: 0010:kasan_check_range (mm/kasan/generic.c:188) [ 1672.188080][ C1] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 <53> 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 66 0f 1f 00 nopw (%rax) 14: 48 85 f6 test %rsi,%rsi 17: 0f 84 5e 01 00 00 je 0x17b 1d: 48 89 f8 mov %rdi,%rax 20: 41 54 push %r12 22: 44 0f b6 c2 movzbl %dl,%r8d 26: 48 01 f0 add %rsi,%rax 29: 55 push %rbp 2a:* 53 push %rbx <-- trapping instruction 2b: 72 14 jb 0x41 2d: eb 26 jmp 0x55 2f: cc int3 30: cc int3 31: cc int3 32: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 39: ff ff fe 3c: 48 39 c7 cmp %rax,%rdi 3f: 77 .byte 0x77 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: 72 14 jb 0x17 3: eb 26 jmp 0x2b 5: cc int3 6: cc int3 7: cc int3 8: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax f: ff ff fe 12: 48 39 c7 cmp %rax,%rdi 15: 77 .byte 0x77 [ 1672.188084][ C1] RSP: 0018:ffffc900034b7a00 EFLAGS: 00000282 [ 1672.188088][ C1] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1672.188090][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1672.188092][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1672.188094][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1672.188096][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1672.188099][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1672.188101][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1672.188105][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1672.188107][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1672.188108][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1672.188110][ C1] PKRU: 55555554 [ 1672.188111][ C1] Call Trace: [ 1672.188113][ C1] [ 1672.188115][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1672.188124][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1672.188127][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1672.188133][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1672.188137][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1672.188144][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1672.188147][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1672.188150][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1672.188153][ C1] ? xa_store (lib/xarray.c:1734) [ 1672.188160][ C1] xa_store (lib/xarray.c:1734) [ 1672.188164][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1672.188169][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1672.188174][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1672.188177][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1672.188180][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1672.188187][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1672.188190][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1672.188198][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1672.188202][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1672.188208][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1672.188214][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1672.188226][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1672.188235][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1672.188239][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1672.188246][ C1] ksys_unshare (kernel/fork.c:3121) [ 1672.188253][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1672.188257][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1672.188262][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1672.188265][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1672.188269][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1672.188276][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1672.188280][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1672.188286][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1672.188290][ C1] RIP: 0033:0x7f439756d93b [ 1672.188296][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1672.188298][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1672.188302][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1672.188304][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1672.188306][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1672.188308][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1672.188309][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1672.188308][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1672.188309][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1672.188315][ C1] | [ 1672.189049][ C3] Tainted: [L]=SOFTLOCKUP [ 1672.189050][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1672.189052][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1672.189058][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1672.189062][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1672.189065][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1672.189068][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1672.189070][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1672.189072][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1672.189074][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1672.189076][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1672.189079][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1672.189083][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1672.189085][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1672.189086][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1672.189088][ C3] PKRU: 55555554 [ 1672.189089][ C3] Call Trace: [ 1672.189091][ C3] [ 1672.189093][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1672.189098][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1672.189103][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1672.189106][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1672.189109][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1672.189114][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1672.189117][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1672.189124][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1672.189127][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1672.189130][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1672.189133][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1672.189135][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1672.189139][ C3] ? xas_alloc (lib/xarray.c:378) [ 1672.189144][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1672.189148][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1672.189151][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1672.189154][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1672.189159][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1672.189163][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1672.189168][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1672.189172][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1672.189179][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1672.189184][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1672.189187][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1672.189190][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1672.189193][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1672.189196][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1672.189199][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1672.189205][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1672.189208][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1672.189212][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1672.189216][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1672.189220][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1672.189224][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1672.189226][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1672.189230][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1672.189234][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1672.189238][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1672.189242][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1672.189245][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1672.189250][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1672.189254][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1672.189257][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1672.189262][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1672.189266][ C3] handle_softirqs (kernel/softirq.c:579) [ 1672.189272][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1672.189275][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1672.189278][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1672.189282][ C3] [ 1672.189283][ C3] [ 1672.189285][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1672.189289][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1672.189293][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1672.189298][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1672.189301][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1672.189303][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1672.189304][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1672.189307][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1672.189309][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1672.189313][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1672.189319][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1672.189324][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1672.189328][ C3] ? xas_alloc (lib/xarray.c:378) [ 1672.189333][ C3] ? xas_alloc (lib/xarray.c:378) [ 1672.189336][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1672.189340][ C3] ? xas_alloc (lib/xarray.c:378) [ 1672.189343][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1672.189348][ C3] xas_alloc (lib/xarray.c:378) [ 1672.189352][ C3] xas_create (lib/xarray.c:685) [ 1672.189358][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1672.189362][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1672.189366][ C3] __xa_store (lib/xarray.c:1703) [ 1672.189370][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1672.189375][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1672.189378][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1672.189381][ C3] ? xa_store (lib/xarray.c:1734) [ 1672.189386][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1672.189390][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1672.189393][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1672.189398][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1672.189401][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1672.189403][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1672.189407][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1672.189411][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1672.189415][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1672.189419][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1672.189424][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1672.189428][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1672.189432][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1672.189439][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1672.189443][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1672.189448][ C3] ksys_unshare (kernel/fork.c:3121) [ 1672.189454][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1672.189457][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1672.189460][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1672.189463][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1672.189466][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1672.189473][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1672.189476][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1672.189481][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1672.189485][ C3] RIP: 0033:0x7f439756d93b [ 1672.189490][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1672.189493][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1672.189496][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1672.189497][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1672.189499][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1672.189501][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1672.189502][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1692.656143][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1692.656153][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1692.656157][ C0] softirqs last disabled at (0): 0x0 | [ 1692.656171][ C0] Tainted: [L]=SOFTLOCKUP [ 1692.656172][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1692.656176][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1692.656186][ C0] Code: 00 00 fc ff df 49 01 c6 41 83 c5 03 be 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 84 c0 0f 85 8d 07 00 00 <8b> 45 00 89 44 24 40 85 c0 0f 85 6e 01 00 00 48 89 ef be 04 00 00 All code ======== 0: 00 00 add %al,(%rax) 2: fc cld 3: ff lcall (bad) 4: df 49 01 fisttps 0x1(%rcx) 7: c6 41 83 c5 movb $0xc5,-0x7d(%rcx) b: 03 be 04 00 00 00 add 0x4(%rsi),%edi 11: 48 89 ef mov %rbp,%rdi 14: e8 5d b8 c7 fd call 0xfffffffffdc7b876 19: 41 0f b6 06 movzbl (%r14),%eax 1d: 41 38 c5 cmp %al,%r13b 20: 7c 08 jl 0x2a 22: 84 c0 test %al,%al 24: 0f 85 8d 07 00 00 jne 0x7b7 2a:* 8b 45 00 mov 0x0(%rbp),%eax <-- trapping instruction 2d: 89 44 24 40 mov %eax,0x40(%rsp) 31: 85 c0 test %eax,%eax 33: 0f 85 6e 01 00 00 jne 0x1a7 39: 48 89 ef mov %rbp,%rdi 3c: be .byte 0xbe 3d: 04 00 add $0x0,%al ... Code starting with the faulting instruction =========================================== 0: 8b 45 00 mov 0x0(%rbp),%eax 3: 89 44 24 40 mov %eax,0x40(%rsp) 7: 85 c0 test %eax,%eax 9: 0f 85 6e 01 00 00 jne 0x17d f: 48 89 ef mov %rbp,%rdi 12: be .byte 0xbe 13: 04 00 add $0x0,%al ... [ 1692.656190][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000246 [ 1692.656193][ C0] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1692.656196][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1692.656198][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1692.656200][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1692.656202][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1692.656204][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1692.656207][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1692.656211][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1692.656213][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1692.656215][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1692.656217][ C0] PKRU: 55555554 [ 1692.656218][ C0] Call Trace: [ 1692.656223][ C0] [ 1692.656228][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1692.656232][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1692.656237][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1692.656242][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1692.656250][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1692.656254][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1692.656256][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1692.656259][ C0] ? xa_store (lib/xarray.c:1734) [ 1692.656266][ C0] xa_store (lib/xarray.c:1734) [ 1692.656271][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1692.656278][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1692.656283][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1692.656294][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1692.656297][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1692.656304][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1692.656308][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1692.656315][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1692.656319][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1692.656325][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1692.656332][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1692.656337][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1692.656347][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1692.656351][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1692.656358][ C0] ksys_unshare (kernel/fork.c:3121) [ 1692.656363][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1692.656367][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1692.656372][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1692.656376][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1692.656380][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1692.656387][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1692.656392][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1692.656398][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1692.656403][ C0] RIP: 0033:0x7f439756d93b [ 1692.656408][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1692.656411][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1692.656415][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1692.656417][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1692.656418][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1692.656421][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1692.656423][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1696.669136][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1696.669144][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1696.669148][ C2] softirqs last disabled at (0): 0x0 | [ 1696.669161][ C2] Tainted: [L]=SOFTLOCKUP [ 1696.669162][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1696.669164][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1696.669173][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1696.669176][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1696.669179][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1696.669182][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1696.669184][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1696.669186][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1696.669193][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1696.669195][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1696.669197][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1696.669201][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1696.669203][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1696.669205][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1696.669207][ C2] PKRU: 55555554 [ 1696.669209][ C2] Call Trace: [ 1696.669211][ C2] [ 1696.669215][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1696.669219][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1696.669224][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1696.669228][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1696.669236][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1696.669240][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1696.669243][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1696.669246][ C2] ? xa_store (lib/xarray.c:1734) [ 1696.669252][ C2] xa_store (lib/xarray.c:1734) [ 1696.669256][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1696.669261][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1696.669266][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1696.669269][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1696.669272][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.669278][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.669281][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1696.669288][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1696.669292][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1696.669296][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1696.669302][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1696.669307][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1696.669315][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1696.669318][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1696.669324][ C2] ksys_unshare (kernel/fork.c:3121) [ 1696.669328][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1696.669332][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1696.669336][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1696.669339][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1696.669343][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1696.669349][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1696.669353][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1696.669358][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1696.669363][ C2] RIP: 0033:0x7f439756d93b [ 1696.669367][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1696.669370][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1696.669373][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1696.669375][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1696.669377][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1696.669381][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1696.669383][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1696.669429][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1696.669438][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1696.669442][ C1] softirqs last disabled at (0): 0x0 | [ 1696.669456][ C1] Tainted: [L]=SOFTLOCKUP [ 1696.669457][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1696.669460][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1696.669469][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1696.669473][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1696.669476][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1696.669478][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1696.669480][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1696.669482][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1696.669484][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1696.669486][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1696.669489][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1696.669493][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1696.669495][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1696.669497][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1696.669499][ C1] PKRU: 55555554 [ 1696.669500][ C1] Call Trace: [ 1696.669504][ C1] [ 1696.669509][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1696.669513][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1696.669519][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1696.669523][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1696.669530][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1696.669534][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1696.669537][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1696.669540][ C1] ? xa_store (lib/xarray.c:1734) [ 1696.669547][ C1] xa_store (lib/xarray.c:1734) [ 1696.669552][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1696.669558][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1696.669563][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1696.669566][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1696.669569][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.669575][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.669579][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1696.669586][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1696.669596][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1696.669601][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1696.669608][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1696.669613][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1696.669622][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1696.669626][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1696.669632][ C1] ksys_unshare (kernel/fork.c:3121) [ 1696.669637][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1696.669641][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1696.669646][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1696.669649][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1696.669653][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1696.669660][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1696.669664][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1696.669670][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1696.669675][ C1] RIP: 0033:0x7f439756d93b [ 1696.669681][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1696.669684][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1696.669687][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1696.669689][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1696.669691][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1696.669693][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1696.669695][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1696.670127][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1696.670133][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1696.670137][ C3] softirqs last disabled at (0): 0x0 | [ 1696.670147][ C3] Tainted: [L]=SOFTLOCKUP [ 1696.670148][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1696.670150][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1696.670155][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1696.670158][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1696.670161][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1696.670163][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1696.670165][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1696.670167][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1696.670169][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1696.670172][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1696.670174][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1696.670178][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1696.670181][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1696.670182][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1696.670189][ C3] PKRU: 55555554 [ 1696.670191][ C3] Call Trace: [ 1696.670193][ C3] [ 1696.670194][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1696.670200][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1696.670204][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1696.670208][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1696.670212][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1696.670217][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1696.670220][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1696.670224][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1696.670228][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1696.670231][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1696.670233][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1696.670236][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1696.670239][ C3] ? xas_alloc (lib/xarray.c:378) [ 1696.670244][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1696.670248][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1696.670251][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1696.670254][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1696.670260][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1696.670264][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1696.670269][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.670273][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1696.670279][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1696.670283][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.670286][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1696.670289][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1696.670292][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1696.670296][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1696.670299][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1696.670304][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1696.670307][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1696.670310][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1696.670315][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1696.670319][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1696.670322][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1696.670325][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1696.670329][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.670332][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1696.670336][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1696.670341][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1696.670344][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1696.670349][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1696.670353][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.670356][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1696.670363][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1696.670368][ C3] handle_softirqs (kernel/softirq.c:579) [ 1696.670373][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1696.670377][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1696.670380][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1696.670384][ C3] [ 1696.670385][ C3] [ 1696.670387][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1696.670391][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1696.670395][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1696.670397][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1696.670400][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1696.670403][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1696.670405][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1696.670407][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1696.670409][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1696.670413][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1696.670418][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1696.670424][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1696.670428][ C3] ? xas_alloc (lib/xarray.c:378) [ 1696.670432][ C3] ? xas_alloc (lib/xarray.c:378) [ 1696.670435][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1696.670440][ C3] ? xas_alloc (lib/xarray.c:378) [ 1696.670442][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1696.670447][ C3] xas_alloc (lib/xarray.c:378) [ 1696.670452][ C3] xas_create (lib/xarray.c:685) [ 1696.670458][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1696.670462][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1696.670466][ C3] __xa_store (lib/xarray.c:1703) [ 1696.670471][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1696.670475][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1696.670478][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1696.670481][ C3] ? xa_store (lib/xarray.c:1734) [ 1696.670486][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1696.670490][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1696.670494][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1696.670499][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1696.670502][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1696.670504][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.670508][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1696.670512][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1696.670516][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1696.670520][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1696.670525][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1696.670528][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1696.670533][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1696.670540][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1696.670545][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1696.670550][ C3] ksys_unshare (kernel/fork.c:3121) [ 1696.670554][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1696.670557][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1696.670561][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1696.670563][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1696.670567][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1696.670573][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1696.670576][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1696.670581][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1696.670583][ C3] RIP: 0033:0x7f439756d93b [ 1696.670586][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1696.670589][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1696.670592][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1696.670594][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1696.670595][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1696.670597][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1696.670599][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1720.656172][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1720.656194][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1720.656198][ C0] softirqs last disabled at (0): 0x0 | [ 1720.656213][ C0] Tainted: [L]=SOFTLOCKUP [ 1720.656215][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1720.656218][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1720.656231][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1720.656236][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1720.656242][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1720.656244][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1720.656246][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1720.656248][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1720.656250][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1720.656252][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1720.656254][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1720.656258][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1720.656260][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1720.656261][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1720.656263][ C0] PKRU: 55555554 [ 1720.656264][ C0] Call Trace: [ 1720.656271][ C0] [ 1720.656277][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1720.656284][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1720.656295][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1720.656299][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1720.656308][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1720.656318][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1720.656321][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1720.656325][ C0] ? xa_store (lib/xarray.c:1734) [ 1720.656332][ C0] xa_store (lib/xarray.c:1734) [ 1720.656341][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1720.656350][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1720.656355][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1720.656358][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1720.656361][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1720.656369][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1720.656373][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1720.656381][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1720.656385][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1720.656390][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1720.656402][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1720.656407][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1720.656418][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1720.656422][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1720.656429][ C0] ksys_unshare (kernel/fork.c:3121) [ 1720.656436][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1720.656439][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1720.656447][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1720.656450][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1720.656454][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1720.656465][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1720.656469][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1720.656478][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1720.656490][ C0] RIP: 0033:0x7f439756d93b [ 1720.656497][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1720.656500][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1720.656504][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1720.656506][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1720.656508][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1720.656510][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1720.656512][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1724.669135][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1724.669144][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1724.669148][ C2] softirqs last disabled at (0): 0x0 | [ 1724.669169][ C2] Tainted: [L]=SOFTLOCKUP [ 1724.669170][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1724.669172][ C2] RIP: 0010:kasan_check_range (mm/kasan/generic.c:188) [ 1724.669179][ C2] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 85 f6 0f 84 5e 01 00 00 48 89 f8 41 54 44 0f b6 c2 48 01 f0 55 <53> 72 14 eb 26 cc cc cc 48 b8 ff ff ff ff ff ff ff fe 48 39 c7 77 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: 90 nop 8: 90 nop 9: 90 nop a: 90 nop b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 66 0f 1f 00 nopw (%rax) 14: 48 85 f6 test %rsi,%rsi 17: 0f 84 5e 01 00 00 je 0x17b 1d: 48 89 f8 mov %rdi,%rax 20: 41 54 push %r12 22: 44 0f b6 c2 movzbl %dl,%r8d 26: 48 01 f0 add %rsi,%rax 29: 55 push %rbp 2a:* 53 push %rbx <-- trapping instruction 2b: 72 14 jb 0x41 2d: eb 26 jmp 0x55 2f: cc int3 30: cc int3 31: cc int3 32: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax 39: ff ff fe 3c: 48 39 c7 cmp %rax,%rdi 3f: 77 .byte 0x77 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: 72 14 jb 0x17 3: eb 26 jmp 0x2b 5: cc int3 6: cc int3 7: cc int3 8: 48 b8 ff ff ff ff ff movabs $0xfeffffffffffffff,%rax f: ff ff fe 12: 48 39 c7 cmp %rax,%rdi 15: 77 .byte 0x77 [ 1724.669182][ C2] RSP: 0018:ffffc900034d7a00 EFLAGS: 00000282 [ 1724.669185][ C2] RAX: ffffffffbbee5c04 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1724.669188][ C2] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1724.669190][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1724.669192][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1724.669194][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1724.669196][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1724.669199][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1724.669202][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1724.669204][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1724.669206][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1724.669208][ C2] PKRU: 55555554 [ 1724.669209][ C2] Call Trace: [ 1724.669212][ C2] [ 1724.669214][ C2] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1724.669224][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1724.669228][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1724.669233][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1724.669237][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1724.669244][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1724.669247][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1724.669250][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1724.669253][ C2] ? xa_store (lib/xarray.c:1734) [ 1724.669259][ C2] xa_store (lib/xarray.c:1734) [ 1724.669264][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1724.669269][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1724.669274][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1724.669277][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1724.669280][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.669286][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.669290][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1724.669297][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1724.669301][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1724.669305][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1724.669312][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1724.669316][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1724.669325][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1724.669329][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1724.669334][ C2] ksys_unshare (kernel/fork.c:3121) [ 1724.669339][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1724.669342][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1724.669350][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1724.669353][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1724.669357][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1724.669364][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1724.669368][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1724.669373][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1724.669378][ C2] RIP: 0033:0x7f439756d93b [ 1724.669384][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1724.669387][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1724.669390][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1724.669392][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1724.669394][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1724.669396][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1724.669398][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1724.669442][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1724.669459][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1724.669463][ C1] softirqs last disabled at (0): 0x0 | [ 1724.669476][ C1] Tainted: [L]=SOFTLOCKUP [ 1724.669478][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1724.669481][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1724.669490][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1724.669493][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1724.669497][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1724.669499][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1724.669501][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1724.669503][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1724.669505][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1724.669508][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1724.669510][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1724.669514][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1724.669516][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1724.669518][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1724.669520][ C1] PKRU: 55555554 [ 1724.669521][ C1] Call Trace: [ 1724.669525][ C1] [ 1724.669529][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1724.669534][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1724.669539][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1724.669544][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1724.669551][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1724.669555][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1724.669560][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1724.669564][ C1] ? xa_store (lib/xarray.c:1734) [ 1724.669571][ C1] xa_store (lib/xarray.c:1734) [ 1724.669575][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1724.669580][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1724.669586][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1724.669589][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1724.669592][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.669599][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.669602][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1724.669610][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1724.669614][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1724.669619][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1724.669626][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1724.669630][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1724.669639][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1724.669643][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1724.669649][ C1] ksys_unshare (kernel/fork.c:3121) [ 1724.669655][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1724.669658][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1724.669663][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1724.669666][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1724.669670][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1724.669677][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1724.669681][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1724.669687][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1724.669692][ C1] RIP: 0033:0x7f439756d93b [ 1724.669697][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1724.669700][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1724.669704][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1724.669705][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1724.669707][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1724.669709][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1724.669711][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1724.670129][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1724.670136][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1724.670140][ C3] softirqs last disabled at (0): 0x0 | [ 1724.670150][ C3] Tainted: [L]=SOFTLOCKUP [ 1724.670151][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1724.670153][ C3] RIP: 0010:kasan_check_range (mm/kasan/generic.c:190) [ 1724.670157][ C3] Code: 00 00 48 85 d2 0f 84 4c ff ff ff 41 83 e2 07 49 39 d1 0f 85 34 ff ff ff 45 3a 11 0f 8d 2b ff ff ff 5b b8 01 00 00 00 5d 41 5c cc cc cc cc 41 bc 08 00 00 00 45 29 dc 49 8d 14 2c eb 0c 48 83 All code ======== 0: 00 00 add %al,(%rax) 2: 48 85 d2 test %rdx,%rdx 5: 0f 84 4c ff ff ff je 0xffffffffffffff57 b: 41 83 e2 07 and $0x7,%r10d f: 49 39 d1 cmp %rdx,%r9 12: 0f 85 34 ff ff ff jne 0xffffffffffffff4c 18: 45 3a 11 cmp (%r9),%r10b 1b: 0f 8d 2b ff ff ff jge 0xffffffffffffff4c 21: 5b pop %rbx 22: b8 01 00 00 00 mov $0x1,%eax 27: 5d pop %rbp 28: 41 5c pop %r12 2a:* c3 ret <-- trapping instruction 2b: cc int3 2c: cc int3 2d: cc int3 2e: cc int3 2f: 41 bc 08 00 00 00 mov $0x8,%r12d 35: 45 29 dc sub %r11d,%r12d 38: 49 8d 14 2c lea (%r12,%rbp,1),%rdx 3c: eb 0c jmp 0x4a 3e: 48 rex.W 3f: 83 .byte 0x83 Code starting with the faulting instruction =========================================== 0: c3 ret 1: cc int3 2: cc int3 3: cc int3 4: cc int3 5: 41 bc 08 00 00 00 mov $0x8,%r12d b: 45 29 dc sub %r11d,%r12d e: 49 8d 14 2c lea (%r12,%rbp,1),%rdx 12: eb 0c jmp 0x20 14: 48 rex.W 15: 83 .byte 0x83 [ 1724.670165][ C3] RSP: 0018:ffffc90000270a40 EFLAGS: 00000246 [ 1724.670168][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1724.670170][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1724.670172][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1724.670174][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1724.670176][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1724.670178][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1724.670180][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1724.670184][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1724.670186][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1724.670188][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1724.670190][ C3] PKRU: 55555554 [ 1724.670191][ C3] Call Trace: [ 1724.670193][ C3] [ 1724.670195][ C3] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1724.670202][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1724.670206][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1724.670211][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1724.670214][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1724.670219][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1724.670223][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1724.670226][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1724.670230][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1724.670234][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1724.670237][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1724.670239][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1724.670242][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1724.670245][ C3] ? xas_alloc (lib/xarray.c:378) [ 1724.670250][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1724.670255][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1724.670258][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1724.670261][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1724.670266][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1724.670273][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1724.670278][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.670283][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1724.670288][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1724.670292][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.670295][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1724.670298][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1724.670302][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1724.670305][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1724.670308][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1724.670318][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1724.670321][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1724.670324][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1724.670330][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1724.670335][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1724.670338][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1724.670341][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1724.670346][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.670350][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1724.670354][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1724.670361][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1724.670364][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1724.670371][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1724.670375][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.670378][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1724.670383][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1724.670388][ C3] handle_softirqs (kernel/softirq.c:579) [ 1724.670393][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1724.670397][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1724.670400][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1724.670404][ C3] [ 1724.670406][ C3] [ 1724.670407][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1724.670412][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1724.670415][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1724.670418][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1724.670421][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1724.670423][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1724.670425][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1724.670427][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1724.670428][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1724.670433][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1724.670438][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1724.670444][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1724.670448][ C3] ? xas_alloc (lib/xarray.c:378) [ 1724.670452][ C3] ? xas_alloc (lib/xarray.c:378) [ 1724.670455][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1724.670460][ C3] ? xas_alloc (lib/xarray.c:378) [ 1724.670462][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1724.670467][ C3] xas_alloc (lib/xarray.c:378) [ 1724.670472][ C3] xas_create (lib/xarray.c:685) [ 1724.670478][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1724.670483][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1724.670486][ C3] __xa_store (lib/xarray.c:1703) [ 1724.670491][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1724.670495][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1724.670498][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1724.670501][ C3] ? xa_store (lib/xarray.c:1734) [ 1724.670506][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1724.670510][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1724.670515][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1724.670520][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1724.670523][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1724.670527][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.670531][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1724.670535][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1724.670540][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1724.670543][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1724.670548][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1724.670552][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1724.670557][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1724.670565][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1724.670569][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1724.670573][ C3] ksys_unshare (kernel/fork.c:3121) [ 1724.670577][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1724.670581][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1724.670584][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1724.670587][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1724.670590][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1724.670596][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1724.670599][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1724.670604][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1724.670607][ C3] RIP: 0033:0x7f439756d93b [ 1724.670613][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1724.670615][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1724.670618][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1724.670620][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1724.670622][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1724.670624][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1724.670625][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1748.656145][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1748.656155][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1748.656159][ C0] softirqs last disabled at (0): 0x0 | [ 1748.656173][ C0] Tainted: [L]=SOFTLOCKUP [ 1748.656175][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1748.656178][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1748.656188][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1748.656191][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1748.656194][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1748.656196][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1748.656206][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1748.656208][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1748.656210][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1748.656212][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1748.656215][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1748.656219][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1748.656222][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1748.656224][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1748.656226][ C0] PKRU: 55555554 [ 1748.656227][ C0] Call Trace: [ 1748.656232][ C0] [ 1748.656237][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1748.656241][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1748.656247][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1748.656251][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1748.656259][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1748.656263][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1748.656266][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1748.656270][ C0] ? xa_store (lib/xarray.c:1734) [ 1748.656277][ C0] xa_store (lib/xarray.c:1734) [ 1748.656282][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1748.656289][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1748.656294][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1748.656297][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1748.656300][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1748.656307][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1748.656311][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1748.656318][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1748.656322][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1748.656327][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1748.656334][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1748.656339][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1748.656348][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1748.656352][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1748.656359][ C0] ksys_unshare (kernel/fork.c:3121) [ 1748.656364][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1748.656368][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1748.656373][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1748.656376][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1748.656380][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1748.656387][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1748.656391][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1748.656398][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1748.656404][ C0] RIP: 0033:0x7f439756d93b [ 1748.656409][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1748.656412][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1748.656416][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1748.656418][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1748.656420][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1748.656422][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1748.656424][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1750.202368][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1750.202645][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1750.202901][ C1] NMI backtrace for cpu 1 | [ 1750.202920][ C1] Tainted: [L]=SOFTLOCKUP [ 1750.202922][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1750.202925][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1750.202937][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1750.202941][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1750.202945][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1750.202947][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1750.202950][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1750.202952][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1750.202954][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1750.202956][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1750.202959][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1750.202963][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1750.202964][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1750.202966][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1750.202968][ C1] PKRU: 55555554 [ 1750.202969][ C1] Call Trace: [ 1750.202970][ C1] [ 1750.202973][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1750.202977][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1750.202983][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1750.202987][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1750.202995][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1750.202998][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1750.203000][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1750.203004][ C1] ? xa_store (lib/xarray.c:1734) [ 1750.203010][ C1] xa_store (lib/xarray.c:1734) [ 1750.203014][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1750.203019][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1750.203024][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1750.203027][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1750.203033][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1750.203039][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1750.203043][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1750.203051][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1750.203055][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1750.203060][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1750.203067][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1750.203071][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1750.203081][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1750.203084][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1750.203091][ C1] ksys_unshare (kernel/fork.c:3121) [ 1750.203098][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1750.203101][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1750.203106][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1750.203109][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1750.203113][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1750.203120][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1750.203124][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1750.203130][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1750.203135][ C1] RIP: 0033:0x7f439756d93b [ 1750.203141][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1750.203143][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1750.203147][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1750.203149][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1750.203151][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1750.203153][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1750.203155][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1750.203153][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1750.203155][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1750.203161][ C1] | [ 1750.203896][ C3] Tainted: [L]=SOFTLOCKUP [ 1750.203898][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1750.203901][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1750.203909][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1750.203912][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1750.203917][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1750.203919][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1750.203921][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1750.203923][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1750.203925][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1750.203927][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1750.203929][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1750.203933][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1750.203935][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1750.203937][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1750.203938][ C3] PKRU: 55555554 [ 1750.203940][ C3] Call Trace: [ 1750.203941][ C3] [ 1750.203943][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1750.203949][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1750.203953][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1750.203956][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1750.203959][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1750.203965][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1750.203968][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1750.203972][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1750.203975][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1750.203979][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1750.203981][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1750.203984][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1750.203987][ C3] ? xas_alloc (lib/xarray.c:378) [ 1750.203992][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1750.203996][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1750.203999][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1750.204003][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1750.204009][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1750.204012][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1750.204018][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1750.204022][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1750.204029][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1750.204034][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1750.204037][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1750.204040][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1750.204043][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1750.204046][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1750.204049][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1750.204055][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1750.204058][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1750.204062][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1750.204066][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1750.204070][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1750.204073][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1750.204076][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1750.204080][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1750.204083][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1750.204087][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1750.204092][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1750.204094][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1750.204099][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1750.204103][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1750.204106][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1750.204111][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1750.204115][ C3] handle_softirqs (kernel/softirq.c:579) [ 1750.204120][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1750.204124][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1750.204127][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1750.204130][ C3] [ 1750.204131][ C3] [ 1750.204133][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1750.204137][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1750.204140][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1750.204143][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1750.204145][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1750.204147][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1750.204148][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1750.204150][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1750.204152][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1750.204157][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1750.204162][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1750.204168][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1750.204172][ C3] ? xas_alloc (lib/xarray.c:378) [ 1750.204176][ C3] ? xas_alloc (lib/xarray.c:378) [ 1750.204179][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1750.204183][ C3] ? xas_alloc (lib/xarray.c:378) [ 1750.204186][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1750.204190][ C3] xas_alloc (lib/xarray.c:378) [ 1750.204195][ C3] xas_create (lib/xarray.c:685) [ 1750.204201][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1750.204205][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1750.204209][ C3] __xa_store (lib/xarray.c:1703) [ 1750.204212][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1750.204217][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1750.204220][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1750.204223][ C3] ? xa_store (lib/xarray.c:1734) [ 1750.204228][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1750.204231][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1750.204234][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1750.204239][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1750.204242][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1750.204245][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1750.204249][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1750.204252][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1750.204257][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1750.204260][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1750.204265][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1750.204269][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1750.204273][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1750.204280][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1750.204284][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1750.204289][ C3] ksys_unshare (kernel/fork.c:3121) [ 1750.204295][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1750.204298][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1750.204302][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1750.204304][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1750.204308][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1750.204314][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1750.204317][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1750.204322][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1750.204325][ C3] RIP: 0033:0x7f439756d93b [ 1750.204330][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1750.204332][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1750.204335][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1750.204340][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1750.204341][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1750.204343][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1750.204345][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1752.669133][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1752.669140][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1752.669143][ C2] softirqs last disabled at (0): 0x0 | [ 1752.669154][ C2] Tainted: [L]=SOFTLOCKUP [ 1752.669156][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1752.669158][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1752.669164][ C2] Code: 00 00 fc ff df 49 01 c6 41 83 c5 03 be 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 84 c0 0f 85 8d 07 00 00 <8b> 45 00 89 44 24 40 85 c0 0f 85 6e 01 00 00 48 89 ef be 04 00 00 All code ======== 0: 00 00 add %al,(%rax) 2: fc cld 3: ff lcall (bad) 4: df 49 01 fisttps 0x1(%rcx) 7: c6 41 83 c5 movb $0xc5,-0x7d(%rcx) b: 03 be 04 00 00 00 add 0x4(%rsi),%edi 11: 48 89 ef mov %rbp,%rdi 14: e8 5d b8 c7 fd call 0xfffffffffdc7b876 19: 41 0f b6 06 movzbl (%r14),%eax 1d: 41 38 c5 cmp %al,%r13b 20: 7c 08 jl 0x2a 22: 84 c0 test %al,%al 24: 0f 85 8d 07 00 00 jne 0x7b7 2a:* 8b 45 00 mov 0x0(%rbp),%eax <-- trapping instruction 2d: 89 44 24 40 mov %eax,0x40(%rsp) 31: 85 c0 test %eax,%eax 33: 0f 85 6e 01 00 00 jne 0x1a7 39: 48 89 ef mov %rbp,%rdi 3c: be .byte 0xbe 3d: 04 00 add $0x0,%al ... Code starting with the faulting instruction =========================================== 0: 8b 45 00 mov 0x0(%rbp),%eax 3: 89 44 24 40 mov %eax,0x40(%rsp) 7: 85 c0 test %eax,%eax 9: 0f 85 6e 01 00 00 jne 0x17d f: 48 89 ef mov %rbp,%rdi 12: be .byte 0xbe 13: 04 00 add $0x0,%al ... [ 1752.669167][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000246 [ 1752.669170][ C2] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1752.669172][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1752.669184][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1752.669186][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1752.669187][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1752.669189][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1752.669192][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1752.669196][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1752.669198][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1752.669200][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1752.669202][ C2] PKRU: 55555554 [ 1752.669203][ C2] Call Trace: [ 1752.669207][ C2] [ 1752.669210][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1752.669214][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1752.669219][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1752.669222][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1752.669229][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1752.669233][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1752.669236][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1752.669238][ C2] ? xa_store (lib/xarray.c:1734) [ 1752.669244][ C2] xa_store (lib/xarray.c:1734) [ 1752.669249][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1752.669254][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1752.669259][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1752.669262][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1752.669264][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1752.669270][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1752.669273][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1752.669281][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1752.669285][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1752.669290][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1752.669295][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1752.669299][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1752.669307][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1752.669310][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1752.669315][ C2] ksys_unshare (kernel/fork.c:3121) [ 1752.669320][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1752.669323][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1752.669327][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1752.669330][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1752.669334][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1752.669340][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1752.669344][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1752.669349][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1752.669353][ C2] RIP: 0033:0x7f439756d93b [ 1752.669357][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1752.669360][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1752.669363][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1752.669365][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1752.669367][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1752.669369][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1752.669371][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1776.656146][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1776.656156][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1776.656160][ C0] softirqs last disabled at (0): 0x0 | [ 1776.656174][ C0] Tainted: [L]=SOFTLOCKUP [ 1776.656176][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1776.656179][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1776.656190][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1776.656193][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1776.656197][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1776.656199][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1776.656201][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1776.656204][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1776.656206][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1776.656208][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1776.656211][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1776.656215][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1776.656217][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1776.656230][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1776.656232][ C0] PKRU: 55555554 [ 1776.656233][ C0] Call Trace: [ 1776.656238][ C0] [ 1776.656243][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1776.656247][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1776.656253][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1776.656257][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1776.656266][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1776.656270][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1776.656273][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1776.656276][ C0] ? xa_store (lib/xarray.c:1734) [ 1776.656283][ C0] xa_store (lib/xarray.c:1734) [ 1776.656288][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1776.656295][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1776.656300][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1776.656304][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1776.656306][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.656314][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.656317][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1776.656325][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1776.656329][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1776.656334][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1776.656342][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1776.656347][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1776.656358][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1776.656362][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1776.656369][ C0] ksys_unshare (kernel/fork.c:3121) [ 1776.656374][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1776.656378][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1776.656383][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1776.656387][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1776.656390][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1776.656398][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1776.656402][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1776.656408][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1776.656413][ C0] RIP: 0033:0x7f439756d93b [ 1776.656419][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1776.656422][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1776.656425][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1776.656427][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1776.656429][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1776.656431][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1776.656434][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1776.669131][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1776.669138][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1776.669141][ C1] softirqs last disabled at (0): 0x0 | [ 1776.669152][ C1] Tainted: [L]=SOFTLOCKUP [ 1776.669154][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1776.669156][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1776.669162][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1776.669165][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1776.669167][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1776.669170][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1776.669172][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1776.669174][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1776.669176][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1776.669178][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1776.669181][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1776.669184][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1776.669186][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1776.669188][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1776.669190][ C1] PKRU: 55555554 [ 1776.669191][ C1] Call Trace: [ 1776.669193][ C1] [ 1776.669196][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1776.669201][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1776.669205][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1776.669208][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1776.669214][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1776.669217][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1776.669220][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1776.669223][ C1] ? xa_store (lib/xarray.c:1734) [ 1776.669229][ C1] xa_store (lib/xarray.c:1734) [ 1776.669233][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1776.669237][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1776.669243][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1776.669246][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1776.669249][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.669254][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.669257][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1776.669264][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1776.669268][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1776.669272][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1776.669277][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1776.669281][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1776.669288][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1776.669295][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1776.669299][ C1] ksys_unshare (kernel/fork.c:3121) [ 1776.669304][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1776.669310][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1776.669314][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1776.669317][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1776.669321][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1776.669327][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1776.669331][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1776.669335][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1776.669339][ C1] RIP: 0033:0x7f439756d93b [ 1776.669343][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1776.669347][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1776.669350][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1776.669352][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1776.669354][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1776.669356][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1776.669358][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1776.670136][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1776.670144][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1776.670148][ C3] softirqs last disabled at (0): 0x0 | [ 1776.670159][ C3] Tainted: [L]=SOFTLOCKUP [ 1776.670160][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1776.670163][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1776.670170][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1776.670174][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1776.670177][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1776.670179][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1776.670181][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1776.670183][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1776.670185][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1776.670188][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1776.670191][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1776.670194][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1776.670197][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1776.670198][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1776.670200][ C3] PKRU: 55555554 [ 1776.670201][ C3] Call Trace: [ 1776.670205][ C3] [ 1776.670207][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1776.670220][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1776.670225][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1776.670229][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1776.670233][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1776.670238][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1776.670241][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1776.670246][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1776.670249][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1776.670253][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1776.670255][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1776.670258][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1776.670261][ C3] ? xas_alloc (lib/xarray.c:378) [ 1776.670267][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1776.670272][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1776.670274][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1776.670278][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1776.670284][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1776.670288][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1776.670294][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.670298][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1776.670305][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1776.670310][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.670313][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1776.670316][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1776.670320][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1776.670324][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1776.670326][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1776.670332][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1776.670335][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1776.670339][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1776.670343][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1776.670348][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1776.670351][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1776.670354][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1776.670357][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.670361][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1776.670365][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1776.670370][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1776.670373][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1776.670379][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1776.670383][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.670386][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1776.670391][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1776.670396][ C3] handle_softirqs (kernel/softirq.c:579) [ 1776.670402][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1776.670405][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1776.670409][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1776.670414][ C3] [ 1776.670415][ C3] [ 1776.670417][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1776.670422][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1776.670425][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1776.670428][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1776.670431][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1776.670433][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1776.670435][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1776.670437][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1776.670439][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1776.670443][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1776.670449][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1776.670455][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1776.670458][ C3] ? xas_alloc (lib/xarray.c:378) [ 1776.670463][ C3] ? xas_alloc (lib/xarray.c:378) [ 1776.670466][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1776.670470][ C3] ? xas_alloc (lib/xarray.c:378) [ 1776.670473][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1776.670478][ C3] xas_alloc (lib/xarray.c:378) [ 1776.670483][ C3] xas_create (lib/xarray.c:685) [ 1776.670489][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1776.670493][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1776.670497][ C3] __xa_store (lib/xarray.c:1703) [ 1776.670502][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1776.670506][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1776.670509][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1776.670512][ C3] ? xa_store (lib/xarray.c:1734) [ 1776.670517][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1776.670521][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1776.670525][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1776.670530][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1776.670533][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1776.670536][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.670540][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1776.670543][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1776.670548][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1776.670551][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1776.670556][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1776.670560][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1776.670565][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1776.670572][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1776.670576][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1776.670582][ C3] ksys_unshare (kernel/fork.c:3121) [ 1776.670587][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1776.670590][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1776.670595][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1776.670598][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1776.670601][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1776.670608][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1776.670612][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1776.670616][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1776.670620][ C3] RIP: 0033:0x7f439756d93b [ 1776.670624][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1776.670631][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1776.670634][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1776.670636][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1776.670638][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1776.670640][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1776.670642][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1780.669130][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1780.669137][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1780.669140][ C2] softirqs last disabled at (0): 0x0 | [ 1780.669151][ C2] Tainted: [L]=SOFTLOCKUP [ 1780.669153][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1780.669155][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1780.669161][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1780.669164][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1780.669167][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1780.669169][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1780.669171][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1780.669173][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1780.669175][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1780.669177][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1780.669179][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1780.669191][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1780.669193][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1780.669195][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1780.669196][ C2] PKRU: 55555554 [ 1780.669198][ C2] Call Trace: [ 1780.669201][ C2] [ 1780.669205][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1780.669209][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1780.669213][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1780.669217][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1780.669223][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1780.669227][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1780.669232][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1780.669235][ C2] ? xa_store (lib/xarray.c:1734) [ 1780.669240][ C2] xa_store (lib/xarray.c:1734) [ 1780.669245][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1780.669249][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1780.669254][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1780.669258][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1780.669260][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1780.669265][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1780.669269][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1780.669275][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1780.669279][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1780.669283][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1780.669289][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1780.669293][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1780.669300][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1780.669304][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1780.669309][ C2] ksys_unshare (kernel/fork.c:3121) [ 1780.669314][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1780.669317][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1780.669321][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1780.669324][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1780.669328][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1780.669334][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1780.669338][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1780.669342][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1780.669346][ C2] RIP: 0033:0x7f439756d93b [ 1780.669350][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1780.669353][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1780.669356][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1780.669358][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1780.669360][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1780.669361][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1780.669363][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1804.656144][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1804.656155][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1804.656158][ C0] softirqs last disabled at (0): 0x0 | [ 1804.656172][ C0] Tainted: [L]=SOFTLOCKUP [ 1804.656174][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1804.656177][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1804.656187][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1804.656191][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1804.656194][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1804.656196][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1804.656199][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1804.656201][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1804.656203][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1804.656205][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1804.656208][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1804.656212][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1804.656214][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1804.656216][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1804.656218][ C0] PKRU: 55555554 [ 1804.656219][ C0] Call Trace: [ 1804.656224][ C0] [ 1804.656228][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1804.656232][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1804.656238][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1804.656243][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1804.656251][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1804.656254][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1804.656257][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1804.656260][ C0] ? xa_store (lib/xarray.c:1734) [ 1804.656268][ C0] xa_store (lib/xarray.c:1734) [ 1804.656273][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1804.656279][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1804.656284][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1804.656287][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1804.656290][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.656298][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.656301][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1804.656309][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1804.656313][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1804.656318][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1804.656326][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1804.656330][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1804.656341][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1804.656345][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1804.656352][ C0] ksys_unshare (kernel/fork.c:3121) [ 1804.656357][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1804.656361][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1804.656366][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1804.656370][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1804.656373][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1804.656380][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1804.656384][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1804.656391][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1804.656396][ C0] RIP: 0033:0x7f439756d93b [ 1804.656402][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1804.656404][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1804.656408][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1804.656410][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1804.656412][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1804.656414][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1804.656416][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1804.669124][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1804.669130][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1804.669134][ C1] softirqs last disabled at (0): 0x0 | [ 1804.669144][ C1] Tainted: [L]=SOFTLOCKUP [ 1804.669145][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1804.669147][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1804.669152][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1804.669155][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1804.669158][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1804.669160][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1804.669162][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1804.669164][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1804.669167][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1804.669169][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1804.669171][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1804.669181][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1804.669183][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1804.669185][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1804.669186][ C1] PKRU: 55555554 [ 1804.669188][ C1] Call Trace: [ 1804.669189][ C1] [ 1804.669192][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1804.669196][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1804.669200][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1804.669204][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1804.669209][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1804.669213][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1804.669216][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1804.669219][ C1] ? xa_store (lib/xarray.c:1734) [ 1804.669225][ C1] xa_store (lib/xarray.c:1734) [ 1804.669229][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1804.669232][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1804.669238][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1804.669241][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1804.669244][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.669248][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.669252][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1804.669258][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1804.669262][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1804.669266][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1804.669270][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1804.669275][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1804.669281][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1804.669285][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1804.669291][ C1] ksys_unshare (kernel/fork.c:3121) [ 1804.669295][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1804.669298][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1804.669302][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1804.669305][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1804.669309][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1804.669314][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1804.669318][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1804.669322][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1804.669325][ C1] RIP: 0033:0x7f439756d93b [ 1804.669329][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1804.669332][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1804.669335][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1804.669337][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1804.669339][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1804.669341][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1804.669343][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1804.670133][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1804.670140][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1804.670144][ C3] softirqs last disabled at (0): 0x0 | [ 1804.670155][ C3] Tainted: [L]=SOFTLOCKUP [ 1804.670156][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1804.670158][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1804.670165][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1804.670167][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1804.670170][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1804.670172][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1804.670174][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1804.670176][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1804.670178][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1804.670180][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1804.670187][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1804.670190][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1804.670192][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1804.670194][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1804.670196][ C3] PKRU: 55555554 [ 1804.670197][ C3] Call Trace: [ 1804.670200][ C3] [ 1804.670202][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1804.670207][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1804.670212][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1804.670215][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1804.670220][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1804.670224][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1804.670228][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1804.670232][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1804.670235][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1804.670238][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1804.670241][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1804.670243][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1804.670246][ C3] ? xas_alloc (lib/xarray.c:378) [ 1804.670252][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1804.670256][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1804.670259][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1804.670263][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1804.670268][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1804.670272][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1804.670277][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.670282][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1804.670289][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1804.670294][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.670297][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1804.670300][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1804.670303][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1804.670307][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1804.670310][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1804.670315][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1804.670318][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1804.670321][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1804.670326][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1804.670330][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1804.670333][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1804.670336][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1804.670338][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.670342][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1804.670346][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1804.670351][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1804.670354][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1804.670360][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1804.670364][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.670367][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1804.670372][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1804.670377][ C3] handle_softirqs (kernel/softirq.c:579) [ 1804.670382][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1804.670386][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1804.670389][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1804.670394][ C3] [ 1804.670395][ C3] [ 1804.670397][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1804.670401][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1804.670404][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1804.670407][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1804.670409][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1804.670411][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1804.670413][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1804.670415][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1804.670417][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1804.670421][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1804.670426][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1804.670432][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1804.670442][ C3] ? xas_alloc (lib/xarray.c:378) [ 1804.670446][ C3] ? xas_alloc (lib/xarray.c:378) [ 1804.670449][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1804.670454][ C3] ? xas_alloc (lib/xarray.c:378) [ 1804.670456][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1804.670462][ C3] xas_alloc (lib/xarray.c:378) [ 1804.670466][ C3] xas_create (lib/xarray.c:685) [ 1804.670472][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1804.670476][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1804.670480][ C3] __xa_store (lib/xarray.c:1703) [ 1804.670484][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1804.670489][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1804.670492][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1804.670495][ C3] ? xa_store (lib/xarray.c:1734) [ 1804.670501][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1804.670505][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1804.670509][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1804.670514][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1804.670516][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1804.670519][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.670523][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1804.670527][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1804.670532][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1804.670535][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1804.670540][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1804.670544][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1804.670549][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1804.670558][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1804.670562][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1804.670567][ C3] ksys_unshare (kernel/fork.c:3121) [ 1804.670571][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1804.670574][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1804.670578][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1804.670580][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1804.670584][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1804.670590][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1804.670594][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1804.670599][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1804.670602][ C3] RIP: 0033:0x7f439756d93b [ 1804.670605][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1804.670608][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1804.670611][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1804.670613][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1804.670615][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1804.670617][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1804.670618][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1808.669130][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1808.669136][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1808.669140][ C2] softirqs last disabled at (0): 0x0 | [ 1808.669151][ C2] Tainted: [L]=SOFTLOCKUP [ 1808.669153][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1808.669155][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1808.669161][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1808.669165][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1808.669167][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1808.669169][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1808.669171][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1808.669173][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1808.669175][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1808.669177][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1808.669179][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1808.669183][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1808.669185][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1808.669187][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1808.669188][ C2] PKRU: 55555554 [ 1808.669190][ C2] Call Trace: [ 1808.669193][ C2] [ 1808.669196][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1808.669201][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1808.669205][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1808.669208][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1808.669215][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1808.669222][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1808.669225][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1808.669228][ C2] ? xa_store (lib/xarray.c:1734) [ 1808.669234][ C2] xa_store (lib/xarray.c:1734) [ 1808.669239][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1808.669243][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1808.669249][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1808.669251][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1808.669254][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1808.669259][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1808.669263][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1808.669269][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1808.669272][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1808.669277][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1808.669282][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1808.669287][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1808.669294][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1808.669298][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1808.669303][ C2] ksys_unshare (kernel/fork.c:3121) [ 1808.669307][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1808.669311][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1808.669315][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1808.669318][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1808.669322][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1808.669328][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1808.669332][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1808.669337][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1808.669341][ C2] RIP: 0033:0x7f439756d93b [ 1808.669345][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1808.669348][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1808.669351][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1808.669353][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1808.669355][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1808.669357][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1808.669358][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1828.216527][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1828.216966][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1828.217204][ C1] NMI backtrace for cpu 1 | [ 1828.217225][ C1] Tainted: [L]=SOFTLOCKUP [ 1828.217227][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1828.217230][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1828.217249][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1828.217252][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1828.217257][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1828.217259][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1828.217261][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1828.217263][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1828.217265][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1828.217267][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1828.217269][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1828.217272][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1828.217274][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1828.217276][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1828.217277][ C1] PKRU: 55555554 [ 1828.217279][ C1] Call Trace: [ 1828.217280][ C1] [ 1828.217283][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1828.217287][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1828.217293][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1828.217297][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1828.217305][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1828.217308][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1828.217311][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1828.217314][ C1] ? xa_store (lib/xarray.c:1734) [ 1828.217321][ C1] xa_store (lib/xarray.c:1734) [ 1828.217325][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1828.217330][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1828.217335][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1828.217338][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1828.217340][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1828.217347][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1828.217350][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1828.217358][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1828.217362][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1828.217367][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1828.217373][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1828.217377][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1828.217387][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1828.217390][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1828.217398][ C1] ksys_unshare (kernel/fork.c:3121) [ 1828.217404][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1828.217408][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1828.217413][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1828.217416][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1828.217421][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1828.217428][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1828.217432][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1828.217439][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1828.217443][ C1] RIP: 0033:0x7f439756d93b [ 1828.217448][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1828.217450][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1828.217453][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1828.217455][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1828.217457][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1828.217459][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1828.217461][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1828.217459][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1828.217461][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1828.217466][ C1] | [ 1828.218207][ C3] Tainted: [L]=SOFTLOCKUP [ 1828.218209][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1828.218211][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1828.218217][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1828.218223][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1828.218226][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1828.218229][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1828.218231][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1828.218233][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1828.218235][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1828.218237][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1828.218239][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1828.218243][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1828.218245][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1828.218246][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1828.218248][ C3] PKRU: 55555554 [ 1828.218249][ C3] Call Trace: [ 1828.218251][ C3] [ 1828.218252][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1828.218257][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1828.218261][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1828.218265][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1828.218268][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1828.218273][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1828.218276][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1828.218280][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1828.218283][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1828.218286][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1828.218289][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1828.218291][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1828.218295][ C3] ? xas_alloc (lib/xarray.c:378) [ 1828.218300][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1828.218304][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1828.218307][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1828.218311][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1828.218317][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1828.218323][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1828.218328][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1828.218332][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1828.218338][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1828.218343][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1828.218347][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1828.218350][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1828.218353][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1828.218356][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1828.218359][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1828.218365][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1828.218368][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1828.218371][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1828.218376][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1828.218380][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1828.218384][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1828.218386][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1828.218390][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1828.218393][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1828.218397][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1828.218402][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1828.218405][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1828.218409][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1828.218413][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1828.218417][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1828.218422][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1828.218425][ C3] handle_softirqs (kernel/softirq.c:579) [ 1828.218431][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1828.218434][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1828.218438][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1828.218441][ C3] [ 1828.218442][ C3] [ 1828.218444][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1828.218447][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1828.218450][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1828.218453][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1828.218456][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1828.218457][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1828.218459][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1828.218461][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1828.218462][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1828.218466][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1828.218472][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1828.218477][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1828.218482][ C3] ? xas_alloc (lib/xarray.c:378) [ 1828.218487][ C3] ? xas_alloc (lib/xarray.c:378) [ 1828.218491][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1828.218495][ C3] ? xas_alloc (lib/xarray.c:378) [ 1828.218498][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1828.218503][ C3] xas_alloc (lib/xarray.c:378) [ 1828.218507][ C3] xas_create (lib/xarray.c:685) [ 1828.218513][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1828.218517][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1828.218521][ C3] __xa_store (lib/xarray.c:1703) [ 1828.218525][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1828.218529][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1828.218532][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1828.218535][ C3] ? xa_store (lib/xarray.c:1734) [ 1828.218540][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1828.218544][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1828.218547][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1828.218551][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1828.218554][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1828.218557][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1828.218561][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1828.218564][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1828.218569][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1828.218573][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1828.218578][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1828.218581][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1828.218586][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1828.218593][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1828.218597][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1828.218602][ C3] ksys_unshare (kernel/fork.c:3121) [ 1828.218607][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1828.218610][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1828.218614][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1828.218616][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1828.218620][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1828.218626][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1828.218630][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1828.218634][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1828.218637][ C3] RIP: 0033:0x7f439756d93b [ 1828.218642][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1828.218644][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1828.218647][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1828.218648][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1828.218650][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1828.218652][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1828.218653][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1832.656142][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1832.656149][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1832.656153][ C0] softirqs last disabled at (0): 0x0 | [ 1832.656164][ C0] Tainted: [L]=SOFTLOCKUP [ 1832.656166][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1832.656168][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1832.656175][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1832.656178][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1832.656181][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1832.656183][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1832.656185][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1832.656187][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1832.656190][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1832.656192][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1832.656196][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1832.656200][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1832.656202][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1832.656204][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1832.656206][ C0] PKRU: 55555554 [ 1832.656207][ C0] Call Trace: [ 1832.656211][ C0] [ 1832.656214][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1832.656218][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1832.656224][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1832.656227][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1832.656234][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1832.656238][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1832.656241][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1832.656244][ C0] ? xa_store (lib/xarray.c:1734) [ 1832.656250][ C0] xa_store (lib/xarray.c:1734) [ 1832.656254][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1832.656259][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1832.656264][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1832.656267][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1832.656270][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1832.656275][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1832.656279][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1832.656285][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1832.656289][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1832.656294][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1832.656299][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1832.656304][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1832.656312][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1832.656317][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1832.656322][ C0] ksys_unshare (kernel/fork.c:3121) [ 1832.656327][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1832.656330][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1832.656334][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1832.656337][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1832.656341][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1832.656347][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1832.656351][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1832.656356][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1832.656360][ C0] RIP: 0033:0x7f439756d93b [ 1832.656364][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1832.656367][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1832.656371][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1832.656373][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1832.656374][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1832.656376][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1832.656378][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1836.669134][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1836.669142][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1836.669146][ C2] softirqs last disabled at (0): 0x0 | [ 1836.669158][ C2] Tainted: [L]=SOFTLOCKUP [ 1836.669160][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1836.669162][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1836.669170][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1836.669174][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1836.669177][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1836.669179][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1836.669181][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1836.669183][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1836.669185][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1836.669187][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1836.669190][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1836.669194][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1836.669197][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1836.669198][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1836.669200][ C2] PKRU: 55555554 [ 1836.669201][ C2] Call Trace: [ 1836.669205][ C2] [ 1836.669208][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1836.669212][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1836.669225][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1836.669229][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1836.669236][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1836.669239][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1836.669242][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1836.669245][ C2] ? xa_store (lib/xarray.c:1734) [ 1836.669251][ C2] xa_store (lib/xarray.c:1734) [ 1836.669256][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1836.669261][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1836.669266][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1836.669269][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1836.669272][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1836.669278][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1836.669281][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1836.669288][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1836.669292][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1836.669297][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1836.669304][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1836.669308][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1836.669316][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1836.669320][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1836.669326][ C2] ksys_unshare (kernel/fork.c:3121) [ 1836.669331][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1836.669334][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1836.669339][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1836.669342][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1836.669345][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1836.669352][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1836.669356][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1836.669361][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1836.669365][ C2] RIP: 0033:0x7f439756d93b [ 1836.669370][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1836.669373][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1836.669376][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1836.669378][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1836.669380][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1836.669382][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1836.669384][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1852.669144][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1852.669154][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1852.669158][ C1] softirqs last disabled at (0): 0x0 | [ 1852.669179][ C1] Tainted: [L]=SOFTLOCKUP [ 1852.669181][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1852.669184][ C1] RIP: 0010:__kasan_check_read (mm/kasan/shadow.c:30) [ 1852.669192][ C1] Code: c7 c7 b8 57 8c b8 5b 5d 41 5c e9 7b 44 8d ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 0c 24 89 f6 31 d2 e9 4f f0 ff ff 66 66 2e 0f 1f All code ======== 0: c7 c7 b8 57 8c b8 mov $0xb88c57b8,%edi 6: 5b pop %rbx 7: 5d pop %rbp 8: 41 5c pop %r12 a: e9 7b 44 8d ff jmp 0xffffffffff8d448a f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 16: 00 00 00 19: 90 nop 1a: 90 nop 1b: 90 nop 1c: 90 nop 1d: 90 nop 1e: 90 nop 1f: 90 nop 20: 90 nop 21: 90 nop 22: 90 nop 23: 90 nop 24: 90 nop 25: 90 nop 26: 90 nop 27: 90 nop 28: 90 nop 29: 90 nop 2a:* f3 0f 1e fa endbr64 <-- trapping instruction 2e: 48 8b 0c 24 mov (%rsp),%rcx 32: 89 f6 mov %esi,%esi 34: 31 d2 xor %edx,%edx 36: e9 4f f0 ff ff jmp 0xfffffffffffff08a 3b: 66 data16 3c: 66 data16 3d: 2e cs 3e: 0f .byte 0xf 3f: 1f (bad) Code starting with the faulting instruction =========================================== 0: f3 0f 1e fa endbr64 4: 48 8b 0c 24 mov (%rsp),%rcx 8: 89 f6 mov %esi,%esi a: 31 d2 xor %edx,%edx c: e9 4f f0 ff ff jmp 0xfffffffffffff060 11: 66 data16 12: 66 data16 13: 2e cs 14: 0f .byte 0xf 15: 1f (bad) [ 1852.669196][ C1] RSP: 0018:ffffc900034b7a10 EFLAGS: 00000202 [ 1852.669199][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1852.669201][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1852.669203][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1852.669206][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1852.669208][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1852.669210][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1852.669213][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1852.669217][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1852.669219][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1852.669220][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1852.669222][ C1] PKRU: 55555554 [ 1852.669224][ C1] Call Trace: [ 1852.669229][ C1] [ 1852.669230][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1852.669242][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1852.669246][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1852.669252][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1852.669256][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1852.669264][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1852.669268][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1852.669271][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1852.669274][ C1] ? xa_store (lib/xarray.c:1734) [ 1852.669281][ C1] xa_store (lib/xarray.c:1734) [ 1852.669286][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1852.669292][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1852.669297][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1852.669300][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1852.669303][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1852.669310][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1852.669314][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1852.669322][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1852.669326][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1852.669332][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1852.669340][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1852.669345][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1852.669354][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1852.669358][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1852.669365][ C1] ksys_unshare (kernel/fork.c:3121) [ 1852.669370][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1852.669374][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1852.669379][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1852.669383][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1852.669386][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1852.669394][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1852.669398][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1852.669404][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1852.669410][ C1] RIP: 0033:0x7f439756d93b [ 1852.669415][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1852.669418][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1852.669421][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1852.669424][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1852.669426][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1852.669428][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1852.669430][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1852.670141][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1852.670149][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1852.670153][ C3] softirqs last disabled at (0): 0x0 | [ 1852.670164][ C3] Tainted: [L]=SOFTLOCKUP [ 1852.670165][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1852.670167][ C3] RIP: 0010:queued_spin_lock_slowpath (./include/linux/instrumented.h:68 ./include/linux/atomic/atomic-instrumented.h:32 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1852.670174][ C3] Code: 00 49 89 fe 49 89 fd 4c 8d 7c 24 40 bb 01 00 00 00 49 c1 ee 03 41 83 e5 07 48 b8 00 00 00 00 00 fc ff df 49 01 c6 41 83 c5 03 04 00 00 00 48 89 ef e8 5d b8 c7 fd 41 0f b6 06 41 38 c5 7c 08 All code ======== 0: 00 49 89 add %cl,-0x77(%rcx) 3: fe 49 89 decb -0x77(%rcx) 6: fd std 7: 4c 8d 7c 24 40 lea 0x40(%rsp),%r15 c: bb 01 00 00 00 mov $0x1,%ebx 11: 49 c1 ee 03 shr $0x3,%r14 15: 41 83 e5 07 and $0x7,%r13d 19: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 20: fc ff df 23: 49 01 c6 add %rax,%r14 26: 41 83 c5 03 add $0x3,%r13d 2a:* be 04 00 00 00 mov $0x4,%esi <-- trapping instruction 2f: 48 89 ef mov %rbp,%rdi 32: e8 5d b8 c7 fd call 0xfffffffffdc7b894 37: 41 0f b6 06 movzbl (%r14),%eax 3b: 41 38 c5 cmp %al,%r13b 3e: 7c 08 jl 0x48 Code starting with the faulting instruction =========================================== 0: be 04 00 00 00 mov $0x4,%esi 5: 48 89 ef mov %rbp,%rdi 8: e8 5d b8 c7 fd call 0xfffffffffdc7b86a d: 41 0f b6 06 movzbl (%r14),%eax 11: 41 38 c5 cmp %al,%r13b 14: 7c 08 jl 0x1e [ 1852.670177][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1852.670180][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1852.670182][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1852.670184][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1852.670186][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1852.670188][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1852.670190][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1852.670192][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1852.670196][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1852.670198][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1852.670200][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1852.670201][ C3] PKRU: 55555554 [ 1852.670202][ C3] Call Trace: [ 1852.670206][ C3] [ 1852.670208][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1852.670213][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1852.670218][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1852.670221][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1852.670226][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1852.670230][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1852.670233][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1852.670238][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1852.670241][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1852.670244][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1852.670246][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1852.670249][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1852.670252][ C3] ? xas_alloc (lib/xarray.c:378) [ 1852.670258][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1852.670262][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1852.670265][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1852.670269][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1852.670274][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1852.670279][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1852.670284][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1852.670288][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1852.670294][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1852.670299][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1852.670302][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1852.670305][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1852.670308][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1852.670312][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1852.670315][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1852.670320][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1852.670323][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1852.670326][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1852.670331][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1852.670335][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1852.670338][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1852.670341][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1852.670344][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1852.670347][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1852.670352][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1852.670356][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1852.670359][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1852.670364][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1852.670368][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1852.670371][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1852.670376][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1852.670381][ C3] handle_softirqs (kernel/softirq.c:579) [ 1852.670386][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1852.670390][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1852.670393][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1852.670397][ C3] [ 1852.670398][ C3] [ 1852.670400][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1852.670404][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1852.670408][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1852.670410][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1852.670413][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1852.670415][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1852.670417][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1852.670419][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1852.670422][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1852.670426][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1852.670431][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1852.670437][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1852.670441][ C3] ? xas_alloc (lib/xarray.c:378) [ 1852.670445][ C3] ? xas_alloc (lib/xarray.c:378) [ 1852.670448][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1852.670452][ C3] ? xas_alloc (lib/xarray.c:378) [ 1852.670455][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1852.670460][ C3] xas_alloc (lib/xarray.c:378) [ 1852.670464][ C3] xas_create (lib/xarray.c:685) [ 1852.670470][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1852.670475][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1852.670478][ C3] __xa_store (lib/xarray.c:1703) [ 1852.670483][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1852.670487][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1852.670490][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1852.670493][ C3] ? xa_store (lib/xarray.c:1734) [ 1852.670498][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1852.670502][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1852.670505][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1852.670510][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1852.670513][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1852.670516][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1852.670520][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1852.670523][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1852.670528][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1852.670532][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1852.670537][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1852.670540][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1852.670545][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1852.670553][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1852.670557][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1852.670562][ C3] ksys_unshare (kernel/fork.c:3121) [ 1852.670567][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1852.670570][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1852.670574][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1852.670576][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1852.670580][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1852.670586][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1852.670590][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1852.670595][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1852.670599][ C3] RIP: 0033:0x7f439756d93b [ 1852.670603][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1852.670605][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1852.670608][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1852.670610][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1852.670612][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1852.670614][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1852.670617][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1860.656138][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1860.656146][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1860.656150][ C0] softirqs last disabled at (0): 0x0 | [ 1860.656163][ C0] Tainted: [L]=SOFTLOCKUP [ 1860.656164][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1860.656167][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1860.656175][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1860.656178][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1860.656181][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1860.656184][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1860.656186][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1860.656188][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1860.656190][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1860.656192][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1860.656195][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1860.656200][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1860.656202][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1860.656203][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1860.656205][ C0] PKRU: 55555554 [ 1860.656207][ C0] Call Trace: [ 1860.656211][ C0] [ 1860.656215][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1860.656219][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1860.656224][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1860.656228][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1860.656234][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1860.656239][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1860.656242][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1860.656245][ C0] ? xa_store (lib/xarray.c:1734) [ 1860.656251][ C0] xa_store (lib/xarray.c:1734) [ 1860.656256][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1860.656262][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1860.656268][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1860.656271][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1860.656274][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1860.656280][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1860.656284][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1860.656291][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1860.656295][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1860.656300][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1860.656307][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1860.656312][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1860.656321][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1860.656325][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1860.656331][ C0] ksys_unshare (kernel/fork.c:3121) [ 1860.656336][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1860.656340][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1860.656344][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1860.656348][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1860.656351][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1860.656358][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1860.656362][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1860.656367][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1860.656372][ C0] RIP: 0033:0x7f439756d93b [ 1860.656377][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1860.656380][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1860.656383][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1860.656385][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1860.656388][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1860.656390][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1860.656392][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1864.669136][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1864.669144][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1864.669148][ C2] softirqs last disabled at (0): 0x0 | [ 1864.669159][ C2] Tainted: [L]=SOFTLOCKUP [ 1864.669161][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1864.669163][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1864.669171][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1864.669174][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1864.669177][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1864.669179][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1864.669182][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1864.669183][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1864.669185][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1864.669187][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1864.669190][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1864.669194][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1864.669197][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1864.669198][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1864.669200][ C2] PKRU: 55555554 [ 1864.669202][ C2] Call Trace: [ 1864.669206][ C2] [ 1864.669209][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1864.669213][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1864.669218][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1864.669222][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1864.669230][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1864.669234][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1864.669237][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1864.669240][ C2] ? xa_store (lib/xarray.c:1734) [ 1864.669246][ C2] xa_store (lib/xarray.c:1734) [ 1864.669251][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1864.669256][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1864.669262][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1864.669265][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1864.669268][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1864.669273][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1864.669277][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1864.669284][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1864.669288][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1864.669293][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1864.669299][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1864.669304][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1864.669312][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1864.669316][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1864.669322][ C2] ksys_unshare (kernel/fork.c:3121) [ 1864.669327][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1864.669331][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1864.669336][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1864.669339][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1864.669343][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1864.669349][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1864.669353][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1864.669359][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1864.669363][ C2] RIP: 0033:0x7f439756d93b [ 1864.669368][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1864.669371][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1864.669374][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1864.669376][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1864.669378][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1864.669380][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1864.669382][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1880.669142][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1880.669152][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1880.669156][ C1] softirqs last disabled at (0): 0x0 | [ 1880.669170][ C1] Tainted: [L]=SOFTLOCKUP [ 1880.669171][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1880.669174][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1880.669184][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1880.669188][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1880.669191][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1880.669194][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1880.669196][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1880.669198][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1880.669200][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1880.669201][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1880.669204][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1880.669208][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1880.669210][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1880.669212][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1880.669214][ C1] PKRU: 55555554 [ 1880.669215][ C1] Call Trace: [ 1880.669219][ C1] [ 1880.669222][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1880.669226][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1880.669232][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1880.669236][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1880.669244][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1880.669247][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1880.669250][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1880.669253][ C1] ? xa_store (lib/xarray.c:1734) [ 1880.669260][ C1] xa_store (lib/xarray.c:1734) [ 1880.669265][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1880.669271][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1880.669277][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1880.669279][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1880.669282][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1880.669289][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1880.669293][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1880.669301][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1880.669305][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1880.669310][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1880.669317][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1880.669321][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1880.669331][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1880.669335][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1880.669342][ C1] ksys_unshare (kernel/fork.c:3121) [ 1880.669347][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1880.669350][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1880.669356][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1880.669359][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1880.669363][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1880.669370][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1880.669374][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1880.669380][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1880.669385][ C1] RIP: 0033:0x7f439756d93b [ 1880.669390][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1880.669392][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1880.669396][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1880.669398][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1880.669400][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1880.669402][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1880.669404][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1880.670131][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1880.670140][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1880.670143][ C3] softirqs last disabled at (0): 0x0 | [ 1880.670155][ C3] Tainted: [L]=SOFTLOCKUP [ 1880.670156][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1880.670158][ C3] RIP: 0010:kasan_check_range (mm/kasan/generic.c:190) [ 1880.670164][ C3] Code: 00 74 f2 48 89 c2 b8 01 00 00 00 48 85 d2 0f 84 4c ff ff ff 41 83 e2 07 49 39 d1 0f 85 34 ff ff ff 45 3a 11 0f 8d 2b ff ff ff <5b> b8 01 00 00 00 5d 41 5c c3 cc cc cc cc 41 bc 08 00 00 00 45 29 All code ======== 0: 00 74 f2 48 add %dh,0x48(%rdx,%rsi,8) 4: 89 c2 mov %eax,%edx 6: b8 01 00 00 00 mov $0x1,%eax b: 48 85 d2 test %rdx,%rdx e: 0f 84 4c ff ff ff je 0xffffffffffffff60 14: 41 83 e2 07 and $0x7,%r10d 18: 49 39 d1 cmp %rdx,%r9 1b: 0f 85 34 ff ff ff jne 0xffffffffffffff55 21: 45 3a 11 cmp (%r9),%r10b 24: 0f 8d 2b ff ff ff jge 0xffffffffffffff55 2a:* 5b pop %rbx <-- trapping instruction 2b: b8 01 00 00 00 mov $0x1,%eax 30: 5d pop %rbp 31: 41 5c pop %r12 33: c3 ret 34: cc int3 35: cc int3 36: cc int3 37: cc int3 38: 41 bc 08 00 00 00 mov $0x8,%r12d 3e: 45 rex.RB 3f: 29 .byte 0x29 Code starting with the faulting instruction =========================================== 0: 5b pop %rbx 1: b8 01 00 00 00 mov $0x1,%eax 6: 5d pop %rbp 7: 41 5c pop %r12 9: c3 ret a: cc int3 b: cc int3 c: cc int3 d: cc int3 e: 41 bc 08 00 00 00 mov $0x8,%r12d 14: 45 rex.RB 15: 29 .byte 0x29 [ 1880.670167][ C3] RSP: 0018:ffffc90000270a28 EFLAGS: 00000246 [ 1880.670170][ C3] RAX: fffffbfff77dcb81 RBX: fffffbfff77dcb81 RCX: ffffffffb7cc5ea3 [ 1880.670172][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1880.670174][ C3] RBP: fffffbfff77dcb80 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1880.670176][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1880.670178][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1880.670180][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1880.670183][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1880.670187][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1880.670189][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1880.670197][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1880.670199][ C3] PKRU: 55555554 [ 1880.670201][ C3] Call Trace: [ 1880.670204][ C3] [ 1880.670208][ C3] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1880.670215][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1880.670219][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1880.670223][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1880.670227][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1880.670232][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1880.670236][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1880.670239][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1880.670244][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1880.670247][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1880.670250][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1880.670253][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1880.670255][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1880.670258][ C3] ? xas_alloc (lib/xarray.c:378) [ 1880.670264][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1880.670268][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1880.670271][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1880.670275][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1880.670280][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1880.670284][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1880.670290][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1880.670295][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1880.670301][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1880.670306][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1880.670309][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1880.670312][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1880.670316][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1880.670319][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1880.670322][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1880.670328][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1880.670330][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1880.670333][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1880.670338][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1880.670342][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1880.670346][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1880.670348][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1880.670352][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1880.670355][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1880.670359][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1880.670364][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1880.670367][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1880.670372][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1880.670376][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1880.670382][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1880.670387][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1880.670391][ C3] handle_softirqs (kernel/softirq.c:579) [ 1880.670397][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1880.670401][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1880.670405][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1880.670409][ C3] [ 1880.670410][ C3] [ 1880.670412][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1880.670416][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1880.670420][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1880.670423][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1880.670426][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1880.670428][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1880.670429][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1880.670431][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1880.670433][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1880.670437][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1880.670443][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1880.670448][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1880.670452][ C3] ? xas_alloc (lib/xarray.c:378) [ 1880.670457][ C3] ? xas_alloc (lib/xarray.c:378) [ 1880.670459][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1880.670464][ C3] ? xas_alloc (lib/xarray.c:378) [ 1880.670466][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1880.670472][ C3] xas_alloc (lib/xarray.c:378) [ 1880.670476][ C3] xas_create (lib/xarray.c:685) [ 1880.670482][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1880.670487][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1880.670491][ C3] __xa_store (lib/xarray.c:1703) [ 1880.670495][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1880.670500][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1880.670503][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1880.670505][ C3] ? xa_store (lib/xarray.c:1734) [ 1880.670510][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1880.670515][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1880.670518][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1880.670523][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1880.670525][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1880.670528][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1880.670532][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1880.670536][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1880.670541][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1880.670545][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1880.670549][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1880.670553][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1880.670558][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1880.670567][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1880.670571][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1880.670577][ C3] ksys_unshare (kernel/fork.c:3121) [ 1880.670581][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1880.670584][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1880.670588][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1880.670591][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1880.670594][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1880.670601][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1880.670604][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1880.670609][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1880.670613][ C3] RIP: 0033:0x7f439756d93b [ 1880.670616][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1880.670619][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1880.670622][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1880.670624][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1880.670625][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1880.670627][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1880.670629][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1888.656144][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1888.656153][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1888.656157][ C0] softirqs last disabled at (0): 0x0 | [ 1888.656171][ C0] Tainted: [L]=SOFTLOCKUP [ 1888.656173][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1888.656175][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1888.656184][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1888.656188][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1888.656191][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1888.656194][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1888.656196][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1888.656198][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1888.656200][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1888.656202][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1888.656205][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1888.656210][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1888.656212][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1888.656213][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1888.656215][ C0] PKRU: 55555554 [ 1888.656216][ C0] Call Trace: [ 1888.656221][ C0] [ 1888.656235][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1888.656240][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1888.656245][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1888.656250][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1888.656258][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1888.656263][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1888.656266][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1888.656269][ C0] ? xa_store (lib/xarray.c:1734) [ 1888.656276][ C0] xa_store (lib/xarray.c:1734) [ 1888.656281][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1888.656287][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1888.656292][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1888.656295][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1888.656298][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1888.656305][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1888.656309][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1888.656317][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1888.656321][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1888.656326][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1888.656333][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1888.656338][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1888.656348][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1888.656352][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1888.656359][ C0] ksys_unshare (kernel/fork.c:3121) [ 1888.656364][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1888.656367][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1888.656372][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1888.656376][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1888.656380][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1888.656387][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1888.656391][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1888.656397][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1888.656402][ C0] RIP: 0033:0x7f439756d93b [ 1888.656408][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1888.656411][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1888.656414][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1888.656417][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1888.656419][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1888.656421][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1888.656423][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1892.669135][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1892.669143][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1892.669147][ C2] softirqs last disabled at (0): 0x0 | [ 1892.669158][ C2] Tainted: [L]=SOFTLOCKUP [ 1892.669160][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1892.669162][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1892.669170][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1892.669173][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1892.669176][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1892.669178][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1892.669181][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1892.669182][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1892.669185][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1892.669186][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1892.669189][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1892.669193][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1892.669195][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1892.669197][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1892.669198][ C2] PKRU: 55555554 [ 1892.669200][ C2] Call Trace: [ 1892.669203][ C2] [ 1892.669208][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1892.669212][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1892.669218][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1892.669222][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1892.669228][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1892.669232][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1892.669235][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1892.669238][ C2] ? xa_store (lib/xarray.c:1734) [ 1892.669245][ C2] xa_store (lib/xarray.c:1734) [ 1892.669249][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1892.669255][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1892.669260][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1892.669263][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1892.669266][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1892.669272][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1892.669275][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1892.669282][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1892.669287][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1892.669291][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1892.669298][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1892.669302][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1892.669311][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1892.669314][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1892.669320][ C2] ksys_unshare (kernel/fork.c:3121) [ 1892.669325][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1892.669329][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1892.669333][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1892.669336][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1892.669340][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1892.669346][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1892.669350][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1892.669355][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1892.669360][ C2] RIP: 0033:0x7f439756d93b [ 1892.669366][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1892.669369][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1892.669372][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1892.669374][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1892.669376][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1892.669378][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1892.669380][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1906.230456][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1906.230728][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1906.231140][ C1] NMI backtrace for cpu 1 | [ 1906.231161][ C1] Tainted: [L]=SOFTLOCKUP [ 1906.231163][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1906.231166][ C1] RIP: 0010:kasan_check_range (./include/linux/kasan.h:65 mm/kasan/generic.c:130 mm/kasan/generic.c:161 mm/kasan/generic.c:180 mm/kasan/generic.c:189) [ 1906.231176][ C1] Code: ff ff 7f ff ff 48 39 c7 76 dd 4c 8d 54 37 ff 48 89 fd 48 b8 00 00 00 00 00 fc ff df 4d 89 d1 48 c1 ed 03 49 c1 e9 03 48 01 c5 <49> 01 c1 48 89 e8 49 8d 59 01 48 89 da 48 29 ea 48 83 fa 10 0f 8e All code ======== 0: ff (bad) 1: ff (bad) 2: 7f ff jg 0x3 4: ff 48 39 decl 0x39(%rax) 7: c7 (bad) 8: 76 dd jbe 0xffffffffffffffe7 a: 4c 8d 54 37 ff lea -0x1(%rdi,%rsi,1),%r10 f: 48 89 fd mov %rdi,%rbp 12: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 19: fc ff df 1c: 4d 89 d1 mov %r10,%r9 1f: 48 c1 ed 03 shr $0x3,%rbp 23: 49 c1 e9 03 shr $0x3,%r9 27: 48 01 c5 add %rax,%rbp 2a:* 49 01 c1 add %rax,%r9 <-- trapping instruction 2d: 48 89 e8 mov %rbp,%rax 30: 49 8d 59 01 lea 0x1(%r9),%rbx 34: 48 89 da mov %rbx,%rdx 37: 48 29 ea sub %rbp,%rdx 3a: 48 83 fa 10 cmp $0x10,%rdx 3e: 0f .byte 0xf 3f: 8e .byte 0x8e Code starting with the faulting instruction =========================================== 0: 49 01 c1 add %rax,%r9 3: 48 89 e8 mov %rbp,%rax 6: 49 8d 59 01 lea 0x1(%r9),%rbx a: 48 89 da mov %rbx,%rdx d: 48 29 ea sub %rbp,%rdx 10: 48 83 fa 10 cmp $0x10,%rdx 14: 0f .byte 0xf 15: 8e .byte 0x8e [ 1906.231179][ C1] RSP: 0018:ffffc900034b79f8 EFLAGS: 00000282 [ 1906.231184][ C1] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1906.231186][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1906.231189][ C1] RBP: fffffbfff77dcb80 R08: 0000000000000000 R09: 1ffffffff77dcb80 [ 1906.231191][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1906.231193][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1906.231195][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1906.231197][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1906.231201][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1906.231203][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1906.231205][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1906.231206][ C1] PKRU: 55555554 [ 1906.231208][ C1] Call Trace: [ 1906.231212][ C1] [ 1906.231216][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1906.231225][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1906.231229][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1906.231234][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1906.231238][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1906.231246][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1906.231249][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1906.231252][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1906.231255][ C1] ? xa_store (lib/xarray.c:1734) [ 1906.231262][ C1] xa_store (lib/xarray.c:1734) [ 1906.231267][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1906.231273][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1906.231278][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1906.231281][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1906.231284][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1906.231290][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1906.231294][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1906.231302][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1906.231306][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1906.231311][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1906.231318][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1906.231323][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1906.231333][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1906.231338][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1906.231344][ C1] ksys_unshare (kernel/fork.c:3121) [ 1906.231352][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1906.231356][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1906.231361][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1906.231364][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1906.231368][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1906.231375][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1906.231379][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1906.231385][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1906.231390][ C1] RIP: 0033:0x7f439756d93b [ 1906.231396][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1906.231399][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1906.231402][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1906.231404][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1906.231407][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1906.231409][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1906.231411][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1906.231409][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1906.231411][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1906.231416][ C1] | [ 1906.232143][ C3] Tainted: [L]=SOFTLOCKUP [ 1906.232144][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1906.232146][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1906.232154][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1906.232157][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1906.232161][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1906.232163][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1906.232165][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1906.232167][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1906.232169][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1906.232172][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1906.232174][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1906.232178][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1906.232180][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1906.232182][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1906.232183][ C3] PKRU: 55555554 [ 1906.232185][ C3] Call Trace: [ 1906.232187][ C3] [ 1906.232188][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1906.232193][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1906.232197][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1906.232201][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1906.232204][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1906.232209][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1906.232213][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1906.232217][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1906.232220][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1906.232223][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1906.232226][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1906.232228][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1906.232231][ C3] ? xas_alloc (lib/xarray.c:378) [ 1906.232237][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1906.232241][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1906.232243][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1906.232246][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1906.232252][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1906.232255][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1906.232261][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1906.232265][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1906.232271][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1906.232276][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1906.232279][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1906.232282][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1906.232285][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1906.232288][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1906.232291][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1906.232297][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1906.232300][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1906.232303][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1906.232307][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1906.232311][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1906.232314][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1906.232317][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1906.232321][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1906.232324][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1906.232328][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1906.232333][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1906.232335][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1906.232340][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1906.232345][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1906.232348][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1906.232353][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1906.232357][ C3] handle_softirqs (kernel/softirq.c:579) [ 1906.232362][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1906.232366][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1906.232369][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1906.232373][ C3] [ 1906.232374][ C3] [ 1906.232375][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1906.232379][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1906.232382][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1906.232385][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1906.232387][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1906.232389][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1906.232390][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1906.232392][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1906.232394][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1906.232398][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1906.232403][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1906.232408][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1906.232412][ C3] ? xas_alloc (lib/xarray.c:378) [ 1906.232416][ C3] ? xas_alloc (lib/xarray.c:378) [ 1906.232419][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1906.232423][ C3] ? xas_alloc (lib/xarray.c:378) [ 1906.232426][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1906.232431][ C3] xas_alloc (lib/xarray.c:378) [ 1906.232435][ C3] xas_create (lib/xarray.c:685) [ 1906.232441][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1906.232445][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1906.232449][ C3] __xa_store (lib/xarray.c:1703) [ 1906.232453][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1906.232457][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1906.232460][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1906.232463][ C3] ? xa_store (lib/xarray.c:1734) [ 1906.232468][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1906.232472][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1906.232475][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1906.232480][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1906.232483][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1906.232485][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1906.232489][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1906.232493][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1906.232498][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1906.232502][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1906.232506][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1906.232510][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1906.232514][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1906.232521][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1906.232525][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1906.232530][ C3] ksys_unshare (kernel/fork.c:3121) [ 1906.232535][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1906.232538][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1906.232542][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1906.232544][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1906.232548][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1906.232554][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1906.232558][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1906.232563][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1906.232566][ C3] RIP: 0033:0x7f439756d93b [ 1906.232570][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1906.232573][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1906.232576][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1906.232578][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1906.232579][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1906.232581][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1906.232583][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1916.656145][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1916.656155][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1916.656159][ C0] softirqs last disabled at (0): 0x0 | [ 1916.656173][ C0] Tainted: [L]=SOFTLOCKUP [ 1916.656175][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1916.656178][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1916.656188][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1916.656192][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1916.656196][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1916.656198][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1916.656201][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1916.656203][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1916.656205][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1916.656207][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1916.656210][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1916.656214][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1916.656216][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1916.656218][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1916.656220][ C0] PKRU: 55555554 [ 1916.656221][ C0] Call Trace: [ 1916.656226][ C0] [ 1916.656231][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1916.656235][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1916.656241][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1916.656246][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1916.656254][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1916.656258][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1916.656261][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1916.656264][ C0] ? xa_store (lib/xarray.c:1734) [ 1916.656272][ C0] xa_store (lib/xarray.c:1734) [ 1916.656277][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1916.656283][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1916.656288][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1916.656292][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1916.656295][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1916.656302][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1916.656306][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1916.656313][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1916.656317][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1916.656322][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1916.656329][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1916.656334][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1916.656344][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1916.656348][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1916.656355][ C0] ksys_unshare (kernel/fork.c:3121) [ 1916.656360][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1916.656363][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1916.656368][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1916.656372][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1916.656375][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1916.656383][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1916.656387][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1916.656393][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1916.656399][ C0] RIP: 0033:0x7f439756d93b [ 1916.656405][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1916.656407][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1916.656411][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1916.656413][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1916.656415][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1916.656417][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1916.656419][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1920.669134][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1920.669142][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1920.669146][ C2] softirqs last disabled at (0): 0x0 | [ 1920.669158][ C2] Tainted: [L]=SOFTLOCKUP [ 1920.669160][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1920.669162][ C2] RIP: 0010:kasan_check_range (mm/kasan/generic.c:190) [ 1920.669168][ C2] Code: 00 74 f2 48 89 c2 b8 01 00 00 00 48 85 d2 0f 84 4c ff ff ff 41 83 e2 07 49 39 d1 0f 85 34 ff ff ff 45 3a 11 0f 8d 2b ff ff ff <5b> b8 01 00 00 00 5d 41 5c c3 cc cc cc cc 41 bc 08 00 00 00 45 29 All code ======== 0: 00 74 f2 48 add %dh,0x48(%rdx,%rsi,8) 4: 89 c2 mov %eax,%edx 6: b8 01 00 00 00 mov $0x1,%eax b: 48 85 d2 test %rdx,%rdx e: 0f 84 4c ff ff ff je 0xffffffffffffff60 14: 41 83 e2 07 and $0x7,%r10d 18: 49 39 d1 cmp %rdx,%r9 1b: 0f 85 34 ff ff ff jne 0xffffffffffffff55 21: 45 3a 11 cmp (%r9),%r10b 24: 0f 8d 2b ff ff ff jge 0xffffffffffffff55 2a:* 5b pop %rbx <-- trapping instruction 2b: b8 01 00 00 00 mov $0x1,%eax 30: 5d pop %rbp 31: 41 5c pop %r12 33: c3 ret 34: cc int3 35: cc int3 36: cc int3 37: cc int3 38: 41 bc 08 00 00 00 mov $0x8,%r12d 3e: 45 rex.RB 3f: 29 .byte 0x29 Code starting with the faulting instruction =========================================== 0: 5b pop %rbx 1: b8 01 00 00 00 mov $0x1,%eax 6: 5d pop %rbp 7: 41 5c pop %r12 9: c3 ret a: cc int3 b: cc int3 c: cc int3 d: cc int3 e: 41 bc 08 00 00 00 mov $0x8,%r12d 14: 45 rex.RB 15: 29 .byte 0x29 [ 1920.669172][ C2] RSP: 0018:ffffc900034d79f8 EFLAGS: 00000246 [ 1920.669175][ C2] RAX: fffffbfff77dcb81 RBX: fffffbfff77dcb81 RCX: ffffffffb7cc5ea3 [ 1920.669177][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1920.669179][ C2] RBP: fffffbfff77dcb80 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1920.669182][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1920.669184][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1920.669186][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1920.669188][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1920.669192][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1920.669194][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1920.669196][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1920.669198][ C2] PKRU: 55555554 [ 1920.669200][ C2] Call Trace: [ 1920.669203][ C2] [ 1920.669207][ C2] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1920.669215][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1920.669218][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1920.669223][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1920.669227][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1920.669234][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1920.669237][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1920.669240][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1920.669243][ C2] ? xa_store (lib/xarray.c:1734) [ 1920.669249][ C2] xa_store (lib/xarray.c:1734) [ 1920.669254][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1920.669259][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1920.669264][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1920.669267][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1920.669270][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1920.669276][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1920.669279][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1920.669286][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1920.669290][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1920.669295][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1920.669301][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1920.669306][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1920.669314][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1920.669317][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1920.669323][ C2] ksys_unshare (kernel/fork.c:3121) [ 1920.669328][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1920.669331][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1920.669336][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1920.669339][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1920.669343][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1920.669349][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1920.669353][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1920.669359][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1920.669363][ C2] RIP: 0033:0x7f439756d93b [ 1920.669368][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1920.669370][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1920.669373][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1920.669376][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1920.669377][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1920.669379][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1920.669381][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1932.669153][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1932.669163][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1932.669167][ C1] softirqs last disabled at (0): 0x0 | [ 1932.669182][ C1] Tainted: [L]=SOFTLOCKUP [ 1932.669183][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1932.669186][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1932.669197][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1932.669200][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1932.669204][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1932.669206][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1932.669208][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1932.669210][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1932.669213][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1932.669215][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1932.669218][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1932.669222][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1932.669224][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1932.669225][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1932.669227][ C1] PKRU: 55555554 [ 1932.669229][ C1] Call Trace: [ 1932.669237][ C1] [ 1932.669241][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1932.669245][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1932.669251][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1932.669255][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1932.669263][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1932.669267][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1932.669270][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1932.669273][ C1] ? xa_store (lib/xarray.c:1734) [ 1932.669280][ C1] xa_store (lib/xarray.c:1734) [ 1932.669287][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1932.669293][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1932.669298][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1932.669301][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1932.669304][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1932.669311][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1932.669315][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1932.669323][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1932.669327][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1932.669332][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1932.669340][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1932.669345][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1932.669355][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1932.669359][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1932.669366][ C1] ksys_unshare (kernel/fork.c:3121) [ 1932.669371][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1932.669375][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1932.669380][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1932.669383][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1932.669387][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1932.669395][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1932.669399][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1932.669405][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1932.669410][ C1] RIP: 0033:0x7f439756d93b [ 1932.669415][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1932.669418][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1932.669422][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1932.669424][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1932.669426][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1932.669428][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1932.669430][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1932.670136][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1932.670144][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1932.670148][ C3] softirqs last disabled at (0): 0x0 | [ 1932.670160][ C3] Tainted: [L]=SOFTLOCKUP [ 1932.670162][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1932.670165][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1932.670173][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1932.670175][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1932.670178][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1932.670181][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1932.670183][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1932.670185][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1932.670187][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1932.670189][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1932.670192][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1932.670195][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1932.670198][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1932.670199][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1932.670201][ C3] PKRU: 55555554 [ 1932.670202][ C3] Call Trace: [ 1932.670206][ C3] [ 1932.670207][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1932.670214][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1932.670219][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1932.670222][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1932.670226][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1932.670231][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1932.670234][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1932.670238][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1932.670242][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1932.670245][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1932.670248][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1932.670251][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1932.670254][ C3] ? xas_alloc (lib/xarray.c:378) [ 1932.670259][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1932.670264][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1932.670266][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1932.670270][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1932.670275][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1932.670280][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1932.670285][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1932.670290][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1932.670296][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1932.670301][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1932.670304][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1932.670307][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1932.670311][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1932.670314][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1932.670317][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1932.670324][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1932.670327][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1932.670330][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1932.670334][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1932.670339][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1932.670342][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1932.670345][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1932.670348][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1932.670352][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1932.670356][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1932.670361][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1932.670364][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1932.670369][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1932.670373][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1932.670377][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1932.670382][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1932.670386][ C3] handle_softirqs (kernel/softirq.c:579) [ 1932.670392][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1932.670396][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1932.670400][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1932.670404][ C3] [ 1932.670405][ C3] [ 1932.670407][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1932.670412][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1932.670415][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1932.670418][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1932.670421][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1932.670423][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1932.670425][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1932.670427][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1932.670429][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1932.670433][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1932.670438][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1932.670444][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1932.670448][ C3] ? xas_alloc (lib/xarray.c:378) [ 1932.670452][ C3] ? xas_alloc (lib/xarray.c:378) [ 1932.670455][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1932.670460][ C3] ? xas_alloc (lib/xarray.c:378) [ 1932.670462][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1932.670467][ C3] xas_alloc (lib/xarray.c:378) [ 1932.670472][ C3] xas_create (lib/xarray.c:685) [ 1932.670478][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1932.670482][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1932.670486][ C3] __xa_store (lib/xarray.c:1703) [ 1932.670491][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1932.670495][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1932.670498][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1932.670501][ C3] ? xa_store (lib/xarray.c:1734) [ 1932.670506][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1932.670510][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1932.670513][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1932.670518][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1932.670521][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1932.670524][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1932.670528][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1932.670531][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1932.670536][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1932.670540][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1932.670545][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1932.670549][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1932.670553][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1932.670561][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1932.670565][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1932.670570][ C3] ksys_unshare (kernel/fork.c:3121) [ 1932.670574][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1932.670578][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1932.670581][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1932.670584][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1932.670588][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1932.670594][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1932.670598][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1932.670604][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1932.670608][ C3] RIP: 0033:0x7f439756d93b [ 1932.670612][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1932.670614][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1932.670617][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1932.670619][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1932.670621][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1932.670623][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1932.670625][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1944.656143][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1944.656153][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1944.656157][ C0] softirqs last disabled at (0): 0x0 | [ 1944.656170][ C0] Tainted: [L]=SOFTLOCKUP [ 1944.656172][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1944.656175][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1944.656185][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1944.656188][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1944.656192][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1944.656194][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1944.656196][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1944.656198][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1944.656201][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1944.656203][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1944.656205][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1944.656211][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1944.656213][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1944.656215][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1944.656217][ C0] PKRU: 55555554 [ 1944.656219][ C0] Call Trace: [ 1944.656223][ C0] [ 1944.656228][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1944.656232][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1944.656238][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1944.656242][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1944.656250][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1944.656255][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1944.656258][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1944.656261][ C0] ? xa_store (lib/xarray.c:1734) [ 1944.656268][ C0] xa_store (lib/xarray.c:1734) [ 1944.656273][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1944.656279][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1944.656284][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1944.656287][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1944.656291][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1944.656297][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1944.656301][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1944.656309][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1944.656313][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1944.656318][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1944.656325][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1944.656330][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1944.656339][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1944.656343][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1944.656350][ C0] ksys_unshare (kernel/fork.c:3121) [ 1944.656354][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1944.656358][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1944.656363][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1944.656366][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1944.656370][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1944.656377][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1944.656381][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1944.656387][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1944.656393][ C0] RIP: 0033:0x7f439756d93b [ 1944.656406][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1944.656409][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1944.656413][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1944.656415][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1944.656417][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1944.656419][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1944.656421][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1948.669136][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1948.669144][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1948.669148][ C2] softirqs last disabled at (0): 0x0 | [ 1948.669161][ C2] Tainted: [L]=SOFTLOCKUP [ 1948.669162][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1948.669165][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1948.669173][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1948.669176][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1948.669179][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1948.669181][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1948.669183][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1948.669185][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1948.669187][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1948.669189][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1948.669192][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1948.669196][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1948.669198][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1948.669200][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1948.669202][ C2] PKRU: 55555554 [ 1948.669203][ C2] Call Trace: [ 1948.669207][ C2] [ 1948.669211][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1948.669215][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1948.669221][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1948.669225][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1948.669231][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1948.669235][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1948.669238][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1948.669241][ C2] ? xa_store (lib/xarray.c:1734) [ 1948.669248][ C2] xa_store (lib/xarray.c:1734) [ 1948.669252][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1948.669258][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1948.669263][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1948.669266][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1948.669269][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1948.669275][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1948.669279][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1948.669285][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1948.669289][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1948.669294][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1948.669300][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1948.669305][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1948.669314][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1948.669318][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1948.669323][ C2] ksys_unshare (kernel/fork.c:3121) [ 1948.669328][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1948.669332][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1948.669337][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1948.669340][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1948.669343][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1948.669350][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1948.669354][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1948.669359][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1948.669364][ C2] RIP: 0033:0x7f439756d93b [ 1948.669369][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1948.669371][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1948.669374][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1948.669376][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1948.669378][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1948.669380][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1948.669382][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1960.669144][ C1] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1960.669155][ C1] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1960.669159][ C1] softirqs last disabled at (0): 0x0 | [ 1960.669173][ C1] Tainted: [L]=SOFTLOCKUP [ 1960.669175][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1960.669177][ C1] RIP: 0010:kasan_check_range (mm/kasan/generic.c:190) [ 1960.669184][ C1] Code: 00 00 48 85 d2 0f 84 4c ff ff ff 41 83 e2 07 49 39 d1 0f 85 34 ff ff ff 45 3a 11 0f 8d 2b ff ff ff 5b b8 01 00 00 00 5d 41 5c cc cc cc cc 41 bc 08 00 00 00 45 29 dc 49 8d 14 2c eb 0c 48 83 All code ======== 0: 00 00 add %al,(%rax) 2: 48 85 d2 test %rdx,%rdx 5: 0f 84 4c ff ff ff je 0xffffffffffffff57 b: 41 83 e2 07 and $0x7,%r10d f: 49 39 d1 cmp %rdx,%r9 12: 0f 85 34 ff ff ff jne 0xffffffffffffff4c 18: 45 3a 11 cmp (%r9),%r10b 1b: 0f 8d 2b ff ff ff jge 0xffffffffffffff4c 21: 5b pop %rbx 22: b8 01 00 00 00 mov $0x1,%eax 27: 5d pop %rbp 28: 41 5c pop %r12 2a:* c3 ret <-- trapping instruction 2b: cc int3 2c: cc int3 2d: cc int3 2e: cc int3 2f: 41 bc 08 00 00 00 mov $0x8,%r12d 35: 45 29 dc sub %r11d,%r12d 38: 49 8d 14 2c lea (%r12,%rbp,1),%rdx 3c: eb 0c jmp 0x4a 3e: 48 rex.W 3f: 83 .byte 0x83 Code starting with the faulting instruction =========================================== 0: c3 ret 1: cc int3 2: cc int3 3: cc int3 4: cc int3 5: 41 bc 08 00 00 00 mov $0x8,%r12d b: 45 29 dc sub %r11d,%r12d e: 49 8d 14 2c lea (%r12,%rbp,1),%rdx 12: eb 0c jmp 0x20 14: 48 rex.W 15: 83 .byte 0x83 [ 1960.669188][ C1] RSP: 0018:ffffc900034b7a10 EFLAGS: 00000246 [ 1960.669191][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1960.669193][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1960.669195][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1960.669198][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1960.669200][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1960.669202][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1960.669205][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1960.669210][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1960.669213][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1960.669214][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1960.669216][ C1] PKRU: 55555554 [ 1960.669217][ C1] Call Trace: [ 1960.669222][ C1] [ 1960.669224][ C1] queued_spin_lock_slowpath (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./arch/x86/include/asm/qspinlock.h:102 kernel/locking/qspinlock.c:141) [ 1960.669236][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1960.669239][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1960.669245][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1960.669249][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1960.669257][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1960.669261][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1960.669264][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1960.669267][ C1] ? xa_store (lib/xarray.c:1734) [ 1960.669274][ C1] xa_store (lib/xarray.c:1734) [ 1960.669279][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1960.669285][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1960.669291][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1960.669294][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1960.669297][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1960.669304][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1960.669307][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1960.669315][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1960.669319][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1960.669324][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1960.669331][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1960.669336][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1960.669346][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1960.669350][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1960.669357][ C1] ksys_unshare (kernel/fork.c:3121) [ 1960.669362][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1960.669365][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1960.669375][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1960.669379][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1960.669382][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1960.669390][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1960.669394][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1960.669400][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1960.669405][ C1] RIP: 0033:0x7f439756d93b [ 1960.669411][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1960.669414][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1960.669418][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1960.669420][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1960.669422][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1960.669424][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1960.669426][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1960.670131][ C3] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1960.670139][ C3] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1960.670142][ C3] softirqs last disabled at (0): 0x0 | [ 1960.670154][ C3] Tainted: [L]=SOFTLOCKUP [ 1960.670155][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1960.670157][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1960.670165][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1960.670168][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1960.670171][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1960.670173][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1960.670175][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1960.670177][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1960.670179][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1960.670181][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1960.670184][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1960.670187][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1960.670189][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1960.670191][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1960.670193][ C3] PKRU: 55555554 [ 1960.670194][ C3] Call Trace: [ 1960.670198][ C3] [ 1960.670199][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1960.670204][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1960.670210][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1960.670213][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1960.670218][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1960.670222][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1960.670225][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1960.670229][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1960.670233][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1960.670236][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1960.670238][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1960.670241][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1960.670244][ C3] ? xas_alloc (lib/xarray.c:378) [ 1960.670249][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1960.670253][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1960.670256][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1960.670260][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1960.670265][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1960.670269][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1960.670274][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1960.670279][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1960.670285][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1960.670290][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1960.670293][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1960.670296][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1960.670300][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1960.670303][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1960.670306][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1960.670312][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1960.670315][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1960.670318][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1960.670323][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1960.670327][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1960.670331][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1960.670333][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1960.670336][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1960.670340][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1960.670344][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1960.670349][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1960.670351][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1960.670357][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1960.670361][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1960.670365][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1960.670369][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1960.670373][ C3] handle_softirqs (kernel/softirq.c:579) [ 1960.670379][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1960.670382][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1960.670386][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1960.670390][ C3] [ 1960.670391][ C3] [ 1960.670392][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1960.670397][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1960.670400][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1960.670402][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1960.670405][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1960.670407][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1960.670408][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1960.670410][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1960.670412][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1960.670416][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1960.670421][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1960.670427][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1960.670431][ C3] ? xas_alloc (lib/xarray.c:378) [ 1960.670435][ C3] ? xas_alloc (lib/xarray.c:378) [ 1960.670438][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1960.670442][ C3] ? xas_alloc (lib/xarray.c:378) [ 1960.670445][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1960.670450][ C3] xas_alloc (lib/xarray.c:378) [ 1960.670455][ C3] xas_create (lib/xarray.c:685) [ 1960.670460][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1960.670465][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1960.670469][ C3] __xa_store (lib/xarray.c:1703) [ 1960.670473][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1960.670478][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1960.670481][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1960.670484][ C3] ? xa_store (lib/xarray.c:1734) [ 1960.670489][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1960.670493][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1960.670496][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1960.670501][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1960.670504][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1960.670506][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1960.670511][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1960.670514][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1960.670519][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1960.670522][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1960.670527][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1960.670531][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1960.670535][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1960.670543][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1960.670547][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1960.670553][ C3] ksys_unshare (kernel/fork.c:3121) [ 1960.670557][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1960.670560][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1960.670564][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1960.670567][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1960.670570][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1960.670576][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1960.670580][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1960.670586][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1960.670589][ C3] RIP: 0033:0x7f439756d93b [ 1960.670593][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1960.670595][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1960.670598][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1960.670600][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1960.670602][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1960.670604][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1960.670606][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1972.656143][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1972.656152][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1972.656156][ C0] softirqs last disabled at (0): 0x0 | [ 1972.656170][ C0] Tainted: [L]=SOFTLOCKUP [ 1972.656172][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1972.656174][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1972.656183][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1972.656187][ C0] RSP: 0018:ffffc900034c7a18 EFLAGS: 00000202 [ 1972.656190][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1972.656193][ C0] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1972.656195][ C0] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1972.656197][ C0] R10: ffffffffbbee5c03 R11: ffffc900034c78e0 R12: 1ffff92000698f45 [ 1972.656199][ C0] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034c7a58 [ 1972.656201][ C0] FS: 00007f439752b740(0000) GS:ffff8880b1f83000(0000) knlGS:0000000000000000 [ 1972.656204][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1972.656210][ C0] CR2: 00007f439756d930 CR3: 0000000023fbb006 CR4: 0000000000772ef0 [ 1972.656212][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1972.656214][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1972.656215][ C0] PKRU: 55555554 [ 1972.656217][ C0] Call Trace: [ 1972.656222][ C0] [ 1972.656226][ C0] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1972.656230][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1972.656236][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1972.656240][ C0] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1972.656248][ C0] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1972.656253][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1972.656256][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1972.656259][ C0] ? xa_store (lib/xarray.c:1734) [ 1972.656266][ C0] xa_store (lib/xarray.c:1734) [ 1972.656270][ C0] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1972.656276][ C0] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1972.656282][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1972.656285][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1972.656288][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1972.656295][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1972.656299][ C0] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1972.656306][ C0] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1972.656310][ C0] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1972.656316][ C0] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1972.656323][ C0] copy_net_ns (net/core/net_namespace.c:567) [ 1972.656327][ C0] create_new_namespaces (kernel/nsproxy.c:110) [ 1972.656336][ C0] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1972.656341][ C0] ? handle_mm_fault (mm/memory.c:6413) [ 1972.656347][ C0] ksys_unshare (kernel/fork.c:3121) [ 1972.656352][ C0] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1972.656356][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1972.656361][ C0] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1972.656364][ C0] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1972.656368][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1972.656375][ C0] __x64_sys_unshare (kernel/fork.c:3190) [ 1972.656379][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1972.656385][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1972.656391][ C0] RIP: 0033:0x7f439756d93b [ 1972.656396][ C0] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1972.656399][ C0] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1972.656402][ C0] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1972.656405][ C0] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1972.656407][ C0] RBP: 00007f4397528000 R08: 0000000000000000 R09: 0000000000000000 [ 1972.656408][ C0] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1972.656410][ C0] R13: 00007ffcb7327b50 R14: 00007f4397528000 R15: 00000000004082a0 | [ 1976.669135][ C2] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 1976.669143][ C2] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 1976.669147][ C2] softirqs last disabled at (0): 0x0 | [ 1976.669158][ C2] Tainted: [L]=SOFTLOCKUP [ 1976.669159][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1976.669162][ C2] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1976.669169][ C2] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1976.669172][ C2] RSP: 0018:ffffc900034d7a18 EFLAGS: 00000202 [ 1976.669176][ C2] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1976.669178][ C2] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1976.669180][ C2] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1976.669182][ C2] R10: ffffffffbbee5c03 R11: ffffc900034d78e0 R12: 1ffff9200069af45 [ 1976.669184][ C2] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034d7a58 [ 1976.669186][ C2] FS: 00007f439752b740(0000) GS:ffff8880b2083000(0000) knlGS:0000000000000000 [ 1976.669189][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1976.669193][ C2] CR2: 00007f439756d930 CR3: 0000000023c0b004 CR4: 0000000000772ef0 [ 1976.669195][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1976.669206][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1976.669208][ C2] PKRU: 55555554 [ 1976.669209][ C2] Call Trace: [ 1976.669214][ C2] [ 1976.669218][ C2] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1976.669222][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1976.669227][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1976.669232][ C2] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1976.669238][ C2] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1976.669242][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1976.669246][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1976.669249][ C2] ? xa_store (lib/xarray.c:1734) [ 1976.669255][ C2] xa_store (lib/xarray.c:1734) [ 1976.669260][ C2] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1976.669270][ C2] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1976.669275][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1976.669278][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1976.669281][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1976.669286][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1976.669290][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1976.669297][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1976.669301][ C2] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1976.669306][ C2] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1976.669312][ C2] copy_net_ns (net/core/net_namespace.c:567) [ 1976.669317][ C2] create_new_namespaces (kernel/nsproxy.c:110) [ 1976.669325][ C2] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1976.669329][ C2] ? handle_mm_fault (mm/memory.c:6413) [ 1976.669335][ C2] ksys_unshare (kernel/fork.c:3121) [ 1976.669340][ C2] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1976.669344][ C2] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1976.669348][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1976.669351][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1976.669355][ C2] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1976.669361][ C2] __x64_sys_unshare (kernel/fork.c:3190) [ 1976.669366][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1976.669371][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1976.669375][ C2] RIP: 0033:0x7f439756d93b [ 1976.669380][ C2] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1976.669383][ C2] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1976.669386][ C2] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1976.669389][ C2] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1976.669391][ C2] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1976.669393][ C2] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1976.669395][ C2] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 1984.244683][ C3] rcu: Stack dump where RCU GP kthread last ran: | [ 1984.244961][ C3] Sending NMI from CPU 3 to CPUs 1: | [ 1984.245371][ C1] NMI backtrace for cpu 1 | [ 1984.245392][ C1] Tainted: [L]=SOFTLOCKUP [ 1984.245394][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1984.245397][ C1] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1984.245410][ C1] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1984.245414][ C1] RSP: 0018:ffffc900034b7a18 EFLAGS: 00000202 [ 1984.245418][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1984.245422][ C1] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1984.245424][ C1] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1984.245427][ C1] R10: ffffffffbbee5c03 R11: ffffc900034b78e0 R12: 1ffff92000696f45 [ 1984.245429][ C1] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc900034b7a58 [ 1984.245431][ C1] FS: 00007f439752b740(0000) GS:ffff8880b2003000(0000) knlGS:0000000000000000 [ 1984.245434][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1984.245438][ C1] CR2: 00007f439756d930 CR3: 000000000aef9003 CR4: 0000000000772ef0 [ 1984.245440][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1984.245441][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1984.245443][ C1] PKRU: 55555554 [ 1984.245448][ C1] Call Trace: [ 1984.245451][ C1] [ 1984.245456][ C1] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1984.245460][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1984.245466][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1984.245470][ C1] ? __d_instantiate (fs/dcache.c:1915 (discriminator 3)) [ 1984.245479][ C1] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1984.245482][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1984.245485][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1984.245488][ C1] ? xa_store (lib/xarray.c:1734) [ 1984.245495][ C1] xa_store (lib/xarray.c:1734) [ 1984.245500][ C1] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1984.245506][ C1] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1984.245511][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1984.245514][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1984.245517][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1984.245523][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1984.245527][ C1] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1984.245535][ C1] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1984.245539][ C1] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1984.245544][ C1] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1984.245551][ C1] copy_net_ns (net/core/net_namespace.c:567) [ 1984.245556][ C1] create_new_namespaces (kernel/nsproxy.c:110) [ 1984.245565][ C1] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1984.245569][ C1] ? handle_mm_fault (mm/memory.c:6413) [ 1984.245576][ C1] ksys_unshare (kernel/fork.c:3121) [ 1984.245583][ C1] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1984.245587][ C1] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1984.245593][ C1] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1984.245596][ C1] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1984.245600][ C1] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1984.245607][ C1] __x64_sys_unshare (kernel/fork.c:3190) [ 1984.245611][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1984.245617][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1984.245622][ C1] RIP: 0033:0x7f439756d93b [ 1984.245628][ C1] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1984.245631][ C1] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1984.245634][ C1] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1984.245636][ C1] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1984.245638][ C1] RBP: 00007f4397529000 R08: 0000000000000000 R09: 0000000000000000 [ 1984.245640][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1984.245642][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1984.245640][ C1] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 | [ 1984.245642][ C1] R13: 00007ffcb7327b50 R14: 00007f4397529000 R15: 00000000004082a0 | [ 1984.245648][ C1] | [ 1984.246368][ C3] Tainted: [L]=SOFTLOCKUP [ 1984.246370][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1984.246372][ C3] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 1984.246383][ C3] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90 5e fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 All code ======== 0: 02 48 89 add -0x77(%rax),%cl 3: e8 83 e0 07 83 call 0xffffffff8307e08b 8: c0 01 38 rolb $0x38,(%rcx) b: d0 7c 08 84 sarb $1,-0x7c(%rax,%rcx,1) f: d2 0f rorb %cl,(%rdi) 11: 85 1c 07 test %ebx,(%rdi,%rax,1) 14: 00 00 add %al,(%rax) 16: b8 01 00 00 00 mov $0x1,%eax 1b: 66 89 45 00 mov %ax,0x0(%rbp) 1f: e9 c2 fe ff ff jmp 0xfffffffffffffee6 24: 89 44 24 40 mov %eax,0x40(%rsp) 28: f3 90 pause 2a:* e9 5e fe ff ff jmp 0xfffffffffffffe8d <-- trapping instruction 2f: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 36: fc ff df 39: 48 89 fa mov %rdi,%rdx 3c: 48 c1 ea 03 shr $0x3,%rdx Code starting with the faulting instruction =========================================== 0: e9 5e fe ff ff jmp 0xfffffffffffffe63 5: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax c: fc ff df f: 48 89 fa mov %rdi,%rdx 12: 48 c1 ea 03 shr $0x3,%rdx [ 1984.246386][ C3] RSP: 0018:ffffc90000270a48 EFLAGS: 00000202 [ 1984.246390][ C3] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffffb7cc5ea3 [ 1984.246392][ C3] RDX: fffffbfff77dcb81 RSI: 0000000000000004 RDI: ffffffffbbee5c00 [ 1984.246395][ C3] RBP: ffffffffbbee5c00 R08: 0000000000000000 R09: fffffbfff77dcb80 [ 1984.246396][ C3] R10: ffffffffbbee5c03 R11: ffffc90000270938 R12: 1ffff9200004e14b [ 1984.246399][ C3] R13: 0000000000000003 R14: fffffbfff77dcb80 R15: ffffc90000270a88 [ 1984.246401][ C3] FS: 00007f439752b740(0000) GS:ffff8880b2103000(0000) knlGS:0000000000000000 [ 1984.246403][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1984.246407][ C3] CR2: 00007f439756d930 CR3: 0000000020bad002 CR4: 0000000000772ef0 [ 1984.246409][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1984.246411][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1984.246413][ C3] PKRU: 55555554 [ 1984.246414][ C3] Call Trace: [ 1984.246416][ C3] [ 1984.246417][ C3] ? __kasan_slab_free (mm/kasan/common.c:271) [ 1984.246422][ C3] ? kfree (mm/slub.c:4643 mm/slub.c:4842) [ 1984.246427][ C3] ? __pfx_queued_spin_lock_slowpath (kernel/locking/qspinlock.c:131) [ 1984.246430][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1984.246434][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1984.246438][ C3] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1984.246441][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1984.246445][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1984.246448][ C3] ? get_partial_node.part.0 (mm/slub.c:2903) [ 1984.246451][ C3] ? ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1984.246454][ C3] ? __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1984.246456][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1984.246459][ C3] ? xas_alloc (lib/xarray.c:378) [ 1984.246464][ C3] do_raw_spin_lock (./include/asm-generic/qspinlock.h:114 kernel/locking/spinlock_debug.c:116) [ 1984.246468][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1984.246471][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1984.246474][ C3] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1984.246480][ C3] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) [ 1984.246484][ C3] ? __pfx_xa_set_mark (lib/xarray.c:2144) [ 1984.246489][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1984.246494][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1984.246500][ C3] ref_tracker_dir_exit (./include/linux/workqueue.h:723 lib/ref_tracker.c:55 lib/ref_tracker.c:223) [ 1984.246505][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1984.246508][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1984.246511][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) [ 1984.246514][ C3] ? ref_tracker_free (lib/ref_tracker.c:281) [ 1984.246518][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) [ 1984.246520][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1984.246526][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1984.246529][ C3] ? rcu_core (kernel/rcu/tree.c:2834) [ 1984.246532][ C3] ? handle_softirqs (kernel/softirq.c:579) [ 1984.246539][ C3] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) [ 1984.246544][ C3] ? kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1984.246547][ C3] ? __pfx___put_net (net/core/net_namespace.c:729) [ 1984.246550][ C3] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1984.246553][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1984.246557][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1984.246562][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) [ 1984.246566][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) [ 1984.246569][ C3] rcu_do_batch (kernel/rcu/tree.c:2576) [ 1984.246574][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) [ 1984.246578][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1984.246581][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1984.246586][ C3] rcu_core (kernel/rcu/tree.c:2834) [ 1984.246590][ C3] handle_softirqs (kernel/softirq.c:579) [ 1984.246596][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1984.246600][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 1984.246603][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) [ 1984.246606][ C3] [ 1984.246608][ C3] [ 1984.246609][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1984.246614][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1984.246617][ C3] Code: 74 24 10 e8 41 16 53 fd 48 89 ef e8 f9 68 53 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 ba 26 47 fd 65 8b 05 33 7b 1d 03 85 c0 74 0e 5b 5d e9 98 34 00 All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 41 16 rex.B (bad) 6: 53 push %rbx 7: fd std 8: 48 89 ef mov %rbp,%rdi b: e8 f9 68 53 fd call 0xfffffffffd536909 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 ba 26 47 fd call 0xfffffffffd4726e9 <-- trapping instruction 2f: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b69 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: e9 .byte 0xe9 3d: 98 cwtl 3e: 34 00 xor $0x0,%al Code starting with the faulting instruction =========================================== 0: e8 ba 26 47 fd call 0xfffffffffd4726bf 5: 65 8b 05 33 7b 1d 03 mov %gs:0x31d7b33(%rip),%eax # 0x31d7b3f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: e9 .byte 0xe9 13: 98 cwtl 14: 34 00 xor $0x0,%al [ 1984.246620][ C3] RSP: 0018:ffffc900034977b8 EFLAGS: 00000206 [ 1984.246622][ C3] RAX: 0000000000000046 RBX: 0000000000000200 RCX: ffffffffb546081f [ 1984.246624][ C3] RDX: 0000000000000000 RSI: ffffffffb805ce80 RDI: 0000000000000001 [ 1984.246626][ C3] RBP: ffff88800104fd00 R08: 0000000000000000 R09: 0000000000000000 [ 1984.246628][ C3] R10: ffffffffb9e8c0d7 R11: ffffc900034978e0 R12: ffff88800104fd00 [ 1984.246630][ C3] R13: ffffea00003cf000 R14: ffff888001050940 R15: ffff88800f3c32a8 [ 1984.246634][ C3] ? trace_irq_enable.constprop.0 (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/cpumask.h:638 ./include/linux/cpumask.h:1197 ./include/trace/events/preemptirq.h:40) [ 1984.246640][ C3] get_partial_node.part.0 (mm/slub.c:2903) [ 1984.246645][ C3] ___slab_alloc (mm/slub.c:2864 mm/slub.c:2981 mm/slub.c:3839) [ 1984.246649][ C3] ? xas_alloc (lib/xarray.c:378) [ 1984.246654][ C3] ? xas_alloc (lib/xarray.c:378) [ 1984.246657][ C3] __slab_alloc.constprop.0 (mm/slub.c:3949) [ 1984.246661][ C3] ? xas_alloc (lib/xarray.c:378) [ 1984.246664][ C3] kmem_cache_alloc_lru_noprof (mm/slub.c:4024 mm/slub.c:4185 mm/slub.c:4216) [ 1984.246669][ C3] xas_alloc (lib/xarray.c:378) [ 1984.246673][ C3] xas_create (lib/xarray.c:685) [ 1984.246679][ C3] xas_store (lib/xarray.c:795 (discriminator 6)) [ 1984.246683][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1984.246686][ C3] __xa_store (lib/xarray.c:1703) [ 1984.246691][ C3] ? __pfx___xa_store (lib/xarray.c:1693) [ 1984.246695][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1984.246698][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 1984.246701][ C3] ? xa_store (lib/xarray.c:1734) [ 1984.246706][ C3] xa_store (./include/linux/spinlock.h:391 lib/xarray.c:1735) [ 1984.246710][ C3] ref_tracker_dir_debugfs (./include/linux/xarray.h:175 ./include/linux/xarray.h:207 lib/ref_tracker.c:442) [ 1984.246714][ C3] ? __pfx_ref_tracker_dir_debugfs (lib/ref_tracker.c:419) [ 1984.246719][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1984.246722][ C3] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1984.246725][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1984.246729][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 1984.246732][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 1984.246737][ C3] ? lockdep_init_map_type (kernel/locking/lockdep.c:4976) [ 1984.246741][ C3] ? __raw_spin_lock_init (kernel/locking/spinlock_debug.c:27) [ 1984.246745][ C3] preinit_net (./include/linux/ref_tracker.h:71 net/core/net_namespace.c:406) [ 1984.246749][ C3] copy_net_ns (net/core/net_namespace.c:567) [ 1984.246754][ C3] create_new_namespaces (kernel/nsproxy.c:110) [ 1984.246760][ C3] unshare_nsproxy_namespaces (kernel/nsproxy.c:218 (discriminator 4)) [ 1984.246765][ C3] ? handle_mm_fault (mm/memory.c:6413) [ 1984.246770][ C3] ksys_unshare (kernel/fork.c:3121) [ 1984.246776][ C3] ? __pfx_ksys_unshare (kernel/fork.c:3072) [ 1984.246779][ C3] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [ 1984.246783][ C3] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1984.246785][ C3] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5884) [ 1984.246789][ C3] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:142 ./include/linux/mmap_lock.h:237 arch/x86/mm/fault.c:1338) [ 1984.246795][ C3] __x64_sys_unshare (kernel/fork.c:3190) [ 1984.246799][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1984.246804][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1984.246807][ C3] RIP: 0033:0x7f439756d93b [ 1984.246812][ C3] Code: 73 01 c3 48 8b 0d c5 94 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 95 94 1b 00 f7 d8 64 89 01 48 All code ======== 0: 73 01 jae 0x3 2: c3 ret 3: 48 8b 0d c5 94 1b 00 mov 0x1b94c5(%rip),%rcx # 0x1b94cf a: f7 d8 neg %eax c: 64 89 01 mov %eax,%fs:(%rcx) f: 48 83 c8 ff or $0xffffffffffffffff,%rax 13: c3 ret 14: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 1b: 00 00 00 1e: 90 nop 1f: f3 0f 1e fa endbr64 23: b8 10 01 00 00 mov $0x110,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94cf 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d 95 94 1b 00 mov 0x1b9495(%rip),%rcx # 0x1b94a5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 1984.246815][ C3] RSP: 002b:00007ffcb7327b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 1984.246817][ C3] RAX: ffffffffffffffda RBX: 00007ffcb7327b50 RCX: 00007f439756d93b [ 1984.246819][ C3] RDX: 0000000000000000 RSI: 00007ffcb7327b50 RDI: 0000000040000000 [ 1984.246821][ C3] RBP: 00007f439752a000 R08: 0000000000000000 R09: 0000000000000000 [ 1984.246823][ C3] R10: 00007f4397542f18 R11: 0000000000000206 R12: 0000000000000003 [ 1984.246824][ C3] R13: 00007ffcb7327b50 R14: 00007f439752a000 R15: 00000000004082a0 | [ 2000.656144][ C0] hardirqs last disabled at (0): copy_process (kernel/fork.c:2113) | [ 2000.656154][ C0] softirqs last enabled at (0): copy_process (kernel/fork.c:2115) | [ 2000.656158][ C0] softirqs last disabled at (0): 0x0 | [ 2000.656172][ C0] Tainted: [L]=SOFTLOCKUP [ 2000.656174][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 2000.656177][ C0] RIP: 0010:queued_spin_lock_slowpath (./arch/x86/include/asm/qspinlock.h:106 kernel/locking/qspinlock.c:141) [ 2000.656188][ C0] Code: 02 48 89 e8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 1c 07 00 00 b8 01 00 00 00 66 89 45 00 e9 c2 fe ff ff 89 44 24 40 f3 90