====================================== | [ 1033.646866][ C0] #3: ffffffff94775260 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) | [ 1033.647264][ C0] #4: ffffc90000007d60 ((&icsk->icsk_retransmit_timer)){+.-.}-{0:0}, at: call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) | [ 1033.647710][ C0] | [ 1033.647710][ C0] stack backtrace: [ 1033.647998][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1033.648001][ C0] Call Trace: [ 1033.648003][ C0] [ 1033.648005][ C0] dump_stack_lvl (lib/dump_stack.c:123) [ 1033.648013][ C0] print_usage_bug.part.0 (kernel/locking/lockdep.c:4046) [ 1033.648017][ C0] mark_lock_irq (kernel/locking/lockdep.c:4011 kernel/locking/lockdep.c:4057 kernel/locking/lockdep.c:4268) [ 1033.648024][ C0] mark_lock (kernel/locking/lockdep.c:4754) [ 1033.648028][ C0] mark_usage (kernel/locking/lockdep.c:4643) [ 1033.648031][ C0] __lock_acquire (kernel/locking/lockdep.c:5189) [ 1033.648036][ C0] lock_acquire.part.0 (kernel/locking/lockdep.c:472 kernel/locking/lockdep.c:5868) [ 1033.648040][ C0] ? simple_pin_fs (fs/libfs.c:1066) [ 1033.648044][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1033.648049][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) [ 1033.648052][ C0] ? simple_pin_fs (fs/libfs.c:1066) [ 1033.648056][ C0] _raw_spin_lock (./include/linux/spinlock_api_smp.h:134 kernel/locking/spinlock.c:154) [ 1033.648059][ C0] ? simple_pin_fs (fs/libfs.c:1066) [ 1033.648062][ C0] simple_pin_fs (fs/libfs.c:1066) [ 1033.648065][ C0] debugfs_remove (fs/debugfs/inode.c:805 fs/debugfs/inode.c:799) [ 1033.648068][ C0] ref_tracker_dir_exit (lib/ref_tracker.c:423 lib/ref_tracker.c:195) [ 1033.648076][ C0] ? __pfx_ref_tracker_free (lib/ref_tracker.c:253) [ 1033.648079][ C0] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2366) [ 1033.648085][ C0] ? call_timer_fn (kernel/time/timer.c:1790) [ 1033.648088][ C0] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:189) [ 1033.648091][ C0] ? handle_softirqs (kernel/softirq.c:580) [ 1033.648095][ C0] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1033.648098][ C0] ? irq_exit_rcu (kernel/softirq.c:698) [ 1033.648101][ C0] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 1033.648106][ C0] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1033.648111][ C0] ? __orc_find (arch/x86/kernel/unwind_orc.c:109) [ 1033.648114][ C0] ? unwind_next_frame (arch/x86/kernel/unwind_orc.c:495) [ 1033.648117][ C0] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:24) [ 1033.648120][ C0] ? stack_trace_save (kernel/stacktrace.c:123) [ 1033.648124][ C0] ? kasan_save_stack (mm/kasan/common.c:48) [ 1033.648130][ C0] ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) [ 1033.648136][ C0] __put_net (net/core/net_namespace.c:732) [ 1033.648139][ C0] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2366) [ 1033.648143][ C0] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) [ 1033.648150][ C0] call_timer_fn (kernel/time/timer.c:1790) [ 1033.648152][ C0] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1033.648155][ C0] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1033.648158][ C0] ? __pfx_call_timer_fn (kernel/time/timer.c:1766) [ 1033.648163][ C0] ? mark_held_locks (kernel/locking/lockdep.c:4326) [ 1033.648167][ C0] __run_timers (kernel/time/timer.c:1841 kernel/time/timer.c:2414) [ 1033.648171][ C0] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) [ 1033.648176][ C0] ? trace_contention_end (./include/trace/events/lock.h:122 (discriminator 23)) [ 1033.648181][ C0] ? __pfx___run_timers (kernel/time/timer.c:2385) [ 1033.648185][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1033.648189][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1033.648192][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) [ 1033.648195][ C0] ? run_timer_base (kernel/time/timer.c:2426 kernel/time/timer.c:2418 kernel/time/timer.c:2435) [ 1033.648199][ C0] run_timer_base (kernel/time/timer.c:2427 kernel/time/timer.c:2418 kernel/time/timer.c:2435) [ 1033.648202][ C0] run_timer_softirq (kernel/time/timer.c:2446) [ 1033.648205][ C0] handle_softirqs (kernel/softirq.c:580) [ 1033.648210][ C0] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1033.648213][ C0] irq_exit_rcu (kernel/softirq.c:698) [ 1033.648216][ C0] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 1033.648219][ C0] [ 1033.648220][ C0] [ 1033.648222][ C0] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1033.648225][ C0] RIP: 0010:__orc_find (arch/x86/kernel/unwind_orc.c:109) [ 1033.648229][ C0] Code: e2 07 83 c2 03 40 38 f2 7c 05 40 84 f6 75 4b 48 63 13 48 01 da 49 39 d5 73 af 4c 8d 63 fc 4c 39 e5 76 b2 4d 29 f7 49 c1 ff 02 <4b> 8d 14 7f 48 8d 04 50 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f All code ======== 0: e2 07 loop 0x9 2: 83 c2 03 add $0x3,%edx 5: 40 38 f2 cmp %sil,%dl 8: 7c 05 jl 0xf a: 40 84 f6 test %sil,%sil d: 75 4b jne 0x5a f: 48 63 13 movslq (%rbx),%rdx 12: 48 01 da add %rbx,%rdx 15: 49 39 d5 cmp %rdx,%r13 18: 73 af jae 0xffffffffffffffc9 1a: 4c 8d 63 fc lea -0x4(%rbx),%r12 1e: 4c 39 e5 cmp %r12,%rbp 21: 76 b2 jbe 0xffffffffffffffd5 23: 4d 29 f7 sub %r14,%r15 26: 49 c1 ff 02 sar $0x2,%r15 2a:* 4b 8d 14 7f lea (%r15,%r15,2),%rdx <-- trapping instruction 2e: 48 8d 04 50 lea (%rax,%rdx,2),%rax 32: 48 83 c4 08 add $0x8,%rsp 36: 5b pop %rbx 37: 5d pop %rbp 38: 41 5c pop %r12 3a: 41 5d pop %r13 3c: 41 5e pop %r14 3e: 41 5f pop %r15 Code starting with the faulting instruction =========================================== 0: 4b 8d 14 7f lea (%r15,%r15,2),%rdx 4: 48 8d 04 50 lea (%rax,%rdx,2),%rax 8: 48 83 c4 08 add $0x8,%rsp c: 5b pop %rbx d: 5d pop %rbp e: 41 5c pop %r12 10: 41 5d pop %r13 12: 41 5e pop %r14 14: 41 5f pop %r15 [ 1033.648232][ C0] RSP: 0018:ffffc90003fe73e8 EFLAGS: 00000202 [ 1033.648236][ C0] RAX: ffffffff956b5cd8 RBX: ffffffff953261d4 RCX: dffffc0000000000 [ 1033.648238][ C0] RDX: ffffffff915598ba RSI: 0000000000000000 RDI: ffffffff953261a8 [ 1033.648240][ C0] RBP: ffffffff953261d8 R08: 0000000000000000 R09: ffffc90003fe7569 [ 1033.648241][ C0] R10: 0000000000000078 R11: ffffffff94775260 R12: ffffffff953261d4 [ 1033.648243][ C0] R13: ffffffff915598c1 R14: ffffffff953261a8 R15: 000000000000000b [ 1033.648245][ C0] ? __create_object (mm/kmemleak.c:769) [ 1033.648252][ C0] ? __create_object (mm/kmemleak.c:764) [ 1033.648258][ C0] unwind_next_frame (arch/x86/kernel/unwind_orc.c:495) [ 1033.648261][ C0] ? __create_object (mm/kmemleak.c:770) [ 1033.648266][ C0] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) [ 1033.648270][ C0] ? __create_object (mm/kmemleak.c:770) [ 1033.648273][ C0] ? kernel_text_address (kernel/extable.c:99) [ 1033.648279][ C0] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) [ 1033.648282][ C0] arch_stack_walk (arch/x86/kernel/stacktrace.c:24) [ 1033.648287][ C0] ? __create_object (mm/kmemleak.c:770) [ 1033.648291][ C0] stack_trace_save (kernel/stacktrace.c:123) [ 1033.648294][ C0] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) [ 1033.648297][ C0] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 1033.648301][ C0] kasan_save_stack (mm/kasan/common.c:48) [ 1033.648304][ C0] ? kasan_save_stack (mm/kasan/common.c:48) [ 1033.648307][ C0] ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) [ 1033.648310][ C0] ? __kasan_slab_alloc (mm/kasan/common.c:348) [ 1033.648313][ C0] ? kmem_cache_alloc_noprof (./include/linux/kasan.h:250 mm/slub.c:4147 mm/slub.c:4196 mm/slub.c:4203) [ 1033.648319][ C0] ? __alloc_object (mm/kmemleak.c:481 mm/kmemleak.c:661) [ 1033.648323][ C0] ? __create_object (mm/kmemleak.c:770) [ 1033.648326][ C0] ? check_bytes_and_report (mm/slub.c:1212) [ 1033.648331][ C0] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 1033.648337][ C0] ? mark_held_locks (kernel/locking/lockdep.c:4326) [ 1033.648340][ C0] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) [ 1033.648343][ C0] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) [ 1033.648348][ C0] ? _raw_spin_unlock_irqrestore (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1033.648351][ C0] ? get_partial_node.part.0 (mm/slub.c:2902) [ 1033.648357][ C0] ? ___slab_alloc (mm/slub.c:2863 mm/slub.c:2980 mm/slub.c:3838) [ 1033.648360][ C0] ? __alloc_object (mm/kmemleak.c:481 mm/kmemleak.c:661) [ 1033.648366][ C0] kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) [ 1033.648369][ C0] __kasan_slab_alloc (mm/kasan/common.c:348) [ 1033.648373][ C0] kmem_cache_alloc_noprof (./include/linux/kasan.h:250 mm/slub.c:4147 mm/slub.c:4196 mm/slub.c:4203) [ 1033.648376][ C0] ? vm_area_dup (kernel/fork.c:488) [ 1033.648381][ C0] __alloc_object (mm/kmemleak.c:481 mm/kmemleak.c:661) [ 1033.648385][ C0] __create_object (mm/kmemleak.c:770) [ 1033.648389][ C0] kmem_cache_alloc_noprof (./include/linux/kmemleak.h:43 mm/slub.c:4151 mm/slub.c:4196 mm/slub.c:4203) [ 1033.648393][ C0] ? dup_mmap (kernel/fork.c:643) [ 1033.648397][ C0] vm_area_dup (kernel/fork.c:488) [ 1033.648400][ C0] dup_mmap (kernel/fork.c:668) [ 1033.648404][ C0] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 1033.648409][ C0] ? __pfx_dup_mmap (kernel/fork.c:609) [ 1033.648414][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1033.648420][ C0] copy_mm (kernel/fork.c:1736 kernel/fork.c:1787) [ 1033.648424][ C0] copy_process (kernel/fork.c:2430) [ 1033.648431][ C0] ? __pfx_copy_process (kernel/fork.c:2179) [ 1033.648435][ C0] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) [ 1033.648440][ C0] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 1033.648445][ C0] kernel_clone (./include/linux/random.h:26 kernel/fork.c:2846) [ 1033.648449][ C0] ? __pfx_kernel_clone (kernel/fork.c:2805) [ 1033.648453][ C0] ? __lock_acquire (kernel/locking/lockdep.c:5235) [ 1033.648460][ C0] __do_sys_clone (kernel/fork.c:2977) [ 1033.648463][ C0] ? __pfx___do_sys_clone (kernel/fork.c:2977) [ 1033.648466][ C0] ? __might_fault (mm/memory.c:7151 mm/memory.c:7145) [ 1033.648474][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1033.648477][ C0] ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:198 arch/x86/entry/syscall_64.c:90) [ 1033.648482][ C0] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) [ 1033.648485][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1033.648489][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1033.648492][ C0] RIP: 0033:0x7f10be164a47 [ 1033.648496][ C0] Code: 00 00 00 f3 0f 1e fa 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 39 41 89 c0 85 c0 75 2a 64 48 8b 04 25 10 00 All code ======== 0: 00 00 add %al,(%rax) 2: 00 f3 add %dh,%bl 4: 0f 1e fa nop %edx 7: 64 48 8b 04 25 10 00 mov %fs:0x10,%rax e: 00 00 10: 45 31 c0 xor %r8d,%r8d 13: 31 d2 xor %edx,%edx 15: 31 f6 xor %esi,%esi 17: bf 11 00 20 01 mov $0x1200011,%edi 1c: 4c 8d 90 d0 02 00 00 lea 0x2d0(%rax),%r10 23: b8 38 00 00 00 mov $0x38,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 39 ja 0x6b 32: 41 89 c0 mov %eax,%r8d 35: 85 c0 test %eax,%eax 37: 75 2a jne 0x63 39: 64 fs 3a: 48 rex.W 3b: 8b .byte 0x8b 3c: 04 25 add $0x25,%al 3e: 10 00 adc %al,(%rax) Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 39 ja 0x41 8: 41 89 c0 mov %eax,%r8d b: 85 c0 test %eax,%eax d: 75 2a jne 0x39 f: 64 fs 10: 48 rex.W 11: 8b .byte 0x8b 12: 04 25 add $0x25,%al 14: 10 00 adc %al,(%rax) [ 1033.648498][ C0] RSP: 002b:00007fffaecff498 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1033.648501][ C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f10be164a47 [ 1033.648503][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1033.648505][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 006c6c616c6c696b [ 1033.648506][ C0] R10: 00007f10be049a10 R11: 0000000000000246 R12: 0000000000000000 [ 1033.648508][ C0] R13: 00007fffaecff5d0 R14: 0000557108e22f27 R15: 0000557145b2eb20 | [ 1033.688669][ C0] RCU nest depth: 1, expected: 0 | [ 1033.688894][ C0] INFO: lockdep is turned off. | [ 1033.689119][ C0] Preemption disabled at: | [ 1033.689120][ C0] handle_softirqs (kernel/softirq.c:553) [ 1033.689582][ C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1033.689584][ C0] Call Trace: [ 1033.689586][ C0] [ 1033.689588][ C0] dump_stack_lvl (lib/dump_stack.c:123) [ 1033.689596][ C0] __might_resched (kernel/sched/core.c:8819) [ 1033.689605][ C0] down_write (./include/linux/kernel.h:73 kernel/locking/rwsem.c:1576) [ 1033.689610][ C0] ? __pfx_down_write (kernel/locking/rwsem.c:1575) [ 1033.689612][ C0] ? simple_recursive_removal (./include/linux/dcache.h:345 fs/libfs.c:610) [ 1033.689619][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1033.689625][ C0] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 1033.689632][ C0] simple_recursive_removal (./include/linux/dcache.h:409 ./include/linux/dcache.h:424 ./include/linux/dcache.h:434 fs/libfs.c:616) [ 1033.689635][ C0] ? __pfx_remove_one (fs/debugfs/inode.c:780) [ 1033.689641][ C0] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 1033.689646][ C0] debugfs_remove (fs/debugfs/inode.c:806 fs/debugfs/inode.c:799) [ 1033.689651][ C0] ref_tracker_dir_exit (lib/ref_tracker.c:423 lib/ref_tracker.c:195) [ 1033.689659][ C0] ? __pfx_ref_tracker_free (lib/ref_tracker.c:253) [ 1033.689662][ C0] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2366) [ 1033.689668][ C0] ? call_timer_fn (kernel/time/timer.c:1790) [ 1033.689673][ C0] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:189) [ 1033.689676][ C0] ? handle_softirqs (kernel/softirq.c:580) [ 1033.689679][ C0] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1033.689682][ C0] ? irq_exit_rcu (kernel/softirq.c:698) [ 1033.689685][ C0] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 1033.689691][ C0] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1033.689696][ C0] ? __orc_find (arch/x86/kernel/unwind_orc.c:109) [ 1033.689701][ C0] ? unwind_next_frame (arch/x86/kernel/unwind_orc.c:495) [ 1033.689704][ C0] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:24) [ 1033.689707][ C0] ? stack_trace_save (kernel/stacktrace.c:123) [ 1033.689710][ C0] ? kasan_save_stack (mm/kasan/common.c:48) [ 1033.689717][ C0] ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) [ 1033.689722][ C0] __put_net (net/core/net_namespace.c:732) [ 1033.689725][ C0] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2366) [ 1033.689729][ C0] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) [ 1033.689736][ C0] call_timer_fn (kernel/time/timer.c:1790) [ 1033.689738][ C0] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1033.689740][ C0] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1033.689743][ C0] ? __pfx_call_timer_fn (kernel/time/timer.c:1766) [ 1033.689748][ C0] ? mark_held_locks (kernel/locking/lockdep.c:4326) [ 1033.689753][ C0] __run_timers (kernel/time/timer.c:1841 kernel/time/timer.c:2414) [ 1033.689757][ C0] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) [ 1033.689762][ C0] ? trace_contention_end (./include/trace/events/lock.h:122 (discriminator 23)) [ 1033.689767][ C0] ? __pfx___run_timers (kernel/time/timer.c:2385) [ 1033.689772][ C0] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1033.689775][ C0] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1033.689779][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) [ 1033.689782][ C0] ? run_timer_base (kernel/time/timer.c:2426 kernel/time/timer.c:2418 kernel/time/timer.c:2435) [ 1033.689786][ C0] run_timer_base (kernel/time/timer.c:2427 kernel/time/timer.c:2418 kernel/time/timer.c:2435) [ 1033.689789][ C0] run_timer_softirq (kernel/time/timer.c:2446) [ 1033.689792][ C0] handle_softirqs (kernel/softirq.c:580) [ 1033.689797][ C0] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1033.689800][ C0] irq_exit_rcu (kernel/softirq.c:698) [ 1033.689803][ C0] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 1033.689807][ C0] [ 1033.689808][ C0] [ 1033.689810][ C0] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1033.689812][ C0] RIP: 0010:__orc_find (arch/x86/kernel/unwind_orc.c:109) [ 1033.689816][ C0] Code: e2 07 83 c2 03 40 38 f2 7c 05 40 84 f6 75 4b 48 63 13 48 01 da 49 39 d5 73 af 4c 8d 63 fc 4c 39 e5 76 b2 4d 29 f7 49 c1 ff 02 <4b> 8d 14 7f 48 8d 04 50 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f All code ======== 0: e2 07 loop 0x9 2: 83 c2 03 add $0x3,%edx 5: 40 38 f2 cmp %sil,%dl 8: 7c 05 jl 0xf a: 40 84 f6 test %sil,%sil d: 75 4b jne 0x5a f: 48 63 13 movslq (%rbx),%rdx 12: 48 01 da add %rbx,%rdx 15: 49 39 d5 cmp %rdx,%r13 18: 73 af jae 0xffffffffffffffc9 1a: 4c 8d 63 fc lea -0x4(%rbx),%r12 1e: 4c 39 e5 cmp %r12,%rbp 21: 76 b2 jbe 0xffffffffffffffd5 23: 4d 29 f7 sub %r14,%r15 26: 49 c1 ff 02 sar $0x2,%r15 2a:* 4b 8d 14 7f lea (%r15,%r15,2),%rdx <-- trapping instruction 2e: 48 8d 04 50 lea (%rax,%rdx,2),%rax 32: 48 83 c4 08 add $0x8,%rsp 36: 5b pop %rbx 37: 5d pop %rbp 38: 41 5c pop %r12 3a: 41 5d pop %r13 3c: 41 5e pop %r14 3e: 41 5f pop %r15 Code starting with the faulting instruction =========================================== 0: 4b 8d 14 7f lea (%r15,%r15,2),%rdx 4: 48 8d 04 50 lea (%rax,%rdx,2),%rax 8: 48 83 c4 08 add $0x8,%rsp c: 5b pop %rbx d: 5d pop %rbp e: 41 5c pop %r12 10: 41 5d pop %r13 12: 41 5e pop %r14 14: 41 5f pop %r15 [ 1033.689820][ C0] RSP: 0018:ffffc90003fe73e8 EFLAGS: 00000202 [ 1033.689823][ C0] RAX: ffffffff956b5cd8 RBX: ffffffff953261d4 RCX: dffffc0000000000 [ 1033.689826][ C0] RDX: ffffffff915598ba RSI: 0000000000000000 RDI: ffffffff953261a8 [ 1033.689828][ C0] RBP: ffffffff953261d8 R08: 0000000000000000 R09: ffffc90003fe7569 [ 1033.689829][ C0] R10: 0000000000000078 R11: ffffffff94775260 R12: ffffffff953261d4 [ 1033.689831][ C0] R13: ffffffff915598c1 R14: ffffffff953261a8 R15: 000000000000000b [ 1033.689833][ C0] ? __create_object (mm/kmemleak.c:769) [ 1033.689842][ C0] ? __create_object (mm/kmemleak.c:764) [ 1033.689848][ C0] unwind_next_frame (arch/x86/kernel/unwind_orc.c:495) [ 1033.689851][ C0] ? __create_object (mm/kmemleak.c:770) [ 1033.689856][ C0] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) [ 1033.689860][ C0] ? __create_object (mm/kmemleak.c:770) [ 1033.689863][ C0] ? kernel_text_address (kernel/extable.c:99) [ 1033.689868][ C0] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) [ 1033.689871][ C0] arch_stack_walk (arch/x86/kernel/stacktrace.c:24) [ 1033.689876][ C0] ? __create_object (mm/kmemleak.c:770) [ 1033.689880][ C0] stack_trace_save (kernel/stacktrace.c:123) [ 1033.689883][ C0] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) [ 1033.689886][ C0] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 1033.689890][ C0] kasan_save_stack (mm/kasan/common.c:48) [ 1033.689894][ C0] ? kasan_save_stack (mm/kasan/common.c:48) [ 1033.689897][ C0] ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) [ 1033.689900][ C0] ? __kasan_slab_alloc (mm/kasan/common.c:348) [ 1033.689903][ C0] ? kmem_cache_alloc_noprof (./include/linux/kasan.h:250 mm/slub.c:4147 mm/slub.c:4196 mm/slub.c:4203) [ 1033.689908][ C0] ? __alloc_object (mm/kmemleak.c:481 mm/kmemleak.c:661) [ 1033.689911][ C0] ? __create_object (mm/kmemleak.c:770) [ 1033.689915][ C0] ? check_bytes_and_report (mm/slub.c:1212) [ 1033.689920][ C0] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 1033.689925][ C0] ? mark_held_locks (kernel/locking/lockdep.c:4326) [ 1033.689929][ C0] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) [ 1033.689934][ C0] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) [ 1033.689938][ C0] ? _raw_spin_unlock_irqrestore (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1033.689941][ C0] ? get_partial_node.part.0 (mm/slub.c:2902) [ 1033.689946][ C0] ? ___slab_alloc (mm/slub.c:2863 mm/slub.c:2980 mm/slub.c:3838) [ 1033.689950][ C0] ? __alloc_object (mm/kmemleak.c:481 mm/kmemleak.c:661) [ 1033.689955][ C0] kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) [ 1033.689959][ C0] __kasan_slab_alloc (mm/kasan/common.c:348) [ 1033.689963][ C0] kmem_cache_alloc_noprof (./include/linux/kasan.h:250 mm/slub.c:4147 mm/slub.c:4196 mm/slub.c:4203) [ 1033.689966][ C0] ? vm_area_dup (kernel/fork.c:488) [ 1033.689972][ C0] __alloc_object (mm/kmemleak.c:481 mm/kmemleak.c:661) [ 1033.689976][ C0] __create_object (mm/kmemleak.c:770) [ 1033.689981][ C0] kmem_cache_alloc_noprof (./include/linux/kmemleak.h:43 mm/slub.c:4151 mm/slub.c:4196 mm/slub.c:4203) [ 1033.689984][ C0] ? dup_mmap (kernel/fork.c:643) [ 1033.689989][ C0] vm_area_dup (kernel/fork.c:488) [ 1033.689992][ C0] dup_mmap (kernel/fork.c:668) [ 1033.689996][ C0] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 1033.690001][ C0] ? __pfx_dup_mmap (kernel/fork.c:609) [ 1033.690007][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1033.690012][ C0] copy_mm (kernel/fork.c:1736 kernel/fork.c:1787) [ 1033.690016][ C0] copy_process (kernel/fork.c:2430) [ 1033.690023][ C0] ? __pfx_copy_process (kernel/fork.c:2179) [ 1033.690028][ C0] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) [ 1033.690033][ C0] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 1033.690038][ C0] kernel_clone (./include/linux/random.h:26 kernel/fork.c:2846) [ 1033.690042][ C0] ? __pfx_kernel_clone (kernel/fork.c:2805) [ 1033.690045][ C0] ? __lock_acquire (kernel/locking/lockdep.c:5235) [ 1033.690052][ C0] __do_sys_clone (kernel/fork.c:2977) [ 1033.690056][ C0] ? __pfx___do_sys_clone (kernel/fork.c:2977) [ 1033.690059][ C0] ? __might_fault (mm/memory.c:7151 mm/memory.c:7145) [ 1033.690067][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1033.690070][ C0] ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:198 arch/x86/entry/syscall_64.c:90) [ 1033.690074][ C0] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) [ 1033.690077][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1033.690081][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1033.690084][ C0] RIP: 0033:0x7f10be164a47 [ 1033.690087][ C0] Code: 00 00 00 f3 0f 1e fa 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 39 41 89 c0 85 c0 75 2a 64 48 8b 04 25 10 00 All code ======== 0: 00 00 add %al,(%rax) 2: 00 f3 add %dh,%bl 4: 0f 1e fa nop %edx 7: 64 48 8b 04 25 10 00 mov %fs:0x10,%rax e: 00 00 10: 45 31 c0 xor %r8d,%r8d 13: 31 d2 xor %edx,%edx 15: 31 f6 xor %esi,%esi 17: bf 11 00 20 01 mov $0x1200011,%edi 1c: 4c 8d 90 d0 02 00 00 lea 0x2d0(%rax),%r10 23: b8 38 00 00 00 mov $0x38,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 39 ja 0x6b 32: 41 89 c0 mov %eax,%r8d 35: 85 c0 test %eax,%eax 37: 75 2a jne 0x63 39: 64 fs 3a: 48 rex.W 3b: 8b .byte 0x8b 3c: 04 25 add $0x25,%al 3e: 10 00 adc %al,(%rax) Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 39 ja 0x41 8: 41 89 c0 mov %eax,%r8d b: 85 c0 test %eax,%eax d: 75 2a jne 0x39 f: 64 fs 10: 48 rex.W 11: 8b .byte 0x8b 12: 04 25 add $0x25,%al 14: 10 00 adc %al,(%rax) [ 1033.690090][ C0] RSP: 002b:00007fffaecff498 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1033.690092][ C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f10be164a47 [ 1033.690094][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1033.690096][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 006c6c616c6c696b [ 1033.690097][ C0] R10: 00007f10be049a10 R11: 0000000000000246 R12: 0000000000000000 [ 1033.690099][ C0] R13: 00007fffaecff5d0 R14: 0000557108e22f27 R15: 0000557145b2eb20 | [ 1062.310009][ C2] INFO: lockdep is turned off. | [ 1062.310236][ C2] Preemption disabled at: | [ 1062.310238][ C2] handle_softirqs (kernel/softirq.c:553) | [ 1062.310720][ C2] Tainted: [W]=WARN [ 1062.310721][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1062.310724][ C2] Call Trace: [ 1062.310727][ C2] [ 1062.310729][ C2] dump_stack_lvl (lib/dump_stack.c:123) [ 1062.310737][ C2] __might_resched (kernel/sched/core.c:8819) [ 1062.310746][ C2] down_write (./include/linux/kernel.h:73 kernel/locking/rwsem.c:1576) [ 1062.310751][ C2] ? __pfx_down_write (kernel/locking/rwsem.c:1575) [ 1062.310754][ C2] ? simple_recursive_removal (./include/linux/dcache.h:345 fs/libfs.c:610) [ 1062.310760][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1062.310766][ C2] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 1062.310773][ C2] simple_recursive_removal (./include/linux/dcache.h:409 ./include/linux/dcache.h:424 ./include/linux/dcache.h:434 fs/libfs.c:616) [ 1062.310776][ C2] ? __pfx_remove_one (fs/debugfs/inode.c:780) [ 1062.310783][ C2] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 1062.310788][ C2] debugfs_remove (fs/debugfs/inode.c:806 fs/debugfs/inode.c:799) [ 1062.310791][ C2] ref_tracker_dir_exit (lib/ref_tracker.c:423 lib/ref_tracker.c:195) [ 1062.310798][ C2] ? __pfx_ref_tracker_free (lib/ref_tracker.c:253) [ 1062.310802][ C2] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2366) [ 1062.310808][ C2] ? call_timer_fn (kernel/time/timer.c:1790) [ 1062.310813][ C2] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:189) [ 1062.310816][ C2] ? handle_softirqs (kernel/softirq.c:580) [ 1062.310819][ C2] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1062.310822][ C2] ? irq_exit_rcu (kernel/softirq.c:698) [ 1062.310825][ C2] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 1062.310830][ C2] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1062.310834][ C2] ? unwind_next_frame (arch/x86/kernel/unwind_orc.c:591) [ 1062.310840][ C2] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:24) [ 1062.310844][ C2] ? stack_trace_save (kernel/stacktrace.c:123) [ 1062.310847][ C2] ? set_track_prepare (mm/slub.c:936) [ 1062.310854][ C2] ? __alloc_object (mm/kmemleak.c:697) [ 1062.310857][ C2] ? __create_object (mm/kmemleak.c:770) [ 1062.310861][ C2] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1062.310868][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1062.310872][ C2] __put_net (net/core/net_namespace.c:732) [ 1062.310876][ C2] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2366) [ 1062.310879][ C2] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) [ 1062.310887][ C2] call_timer_fn (kernel/time/timer.c:1790) [ 1062.310889][ C2] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1062.310892][ C2] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1062.310894][ C2] ? __pfx_call_timer_fn (kernel/time/timer.c:1766) [ 1062.310897][ C2] ? nohz_balance_exit_idle (kernel/sched/fair.c:12483) [ 1062.310904][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1062.310908][ C2] __run_timers (kernel/time/timer.c:1841 kernel/time/timer.c:2414) [ 1062.310912][ C2] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) [ 1062.310917][ C2] ? __pfx___run_timers (kernel/time/timer.c:2385) [ 1062.310920][ C2] ? trace_lock_release (./include/trace/events/lock.h:69 (discriminator 21)) [ 1062.310925][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5879) [ 1062.310928][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1062.310932][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1062.310936][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) [ 1062.310939][ C2] ? run_timer_base (kernel/time/timer.c:2426 kernel/time/timer.c:2418 kernel/time/timer.c:2435) [ 1062.310944][ C2] run_timer_base (kernel/time/timer.c:2427 kernel/time/timer.c:2418 kernel/time/timer.c:2435) [ 1062.310947][ C2] run_timer_softirq (kernel/time/timer.c:2446) [ 1062.310949][ C2] handle_softirqs (kernel/softirq.c:580) [ 1062.310955][ C2] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1062.310958][ C2] irq_exit_rcu (kernel/softirq.c:698) [ 1062.310961][ C2] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 1062.310965][ C2] [ 1062.310966][ C2] [ 1062.310967][ C2] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1062.310970][ C2] RIP: 0010:unwind_next_frame (arch/x86/kernel/unwind_orc.c:591) [ 1062.310974][ C2] Code: 85 8b 11 00 00 48 8b 14 24 49 89 45 58 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 23 11 00 00 48 8b 44 24 28 <48> 8b 54 24 08 49 89 45 48 48 c1 ea 03 48 b8 00 00 00 00 00 fc ff All code ======== 0: 85 8b 11 00 00 48 test %ecx,0x48000011(%rbx) 6: 8b 14 24 mov (%rsp),%edx 9: 49 89 45 58 mov %rax,0x58(%r13) d: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 14: fc ff df 17: 48 c1 ea 03 shr $0x3,%rdx 1b: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 1f: 0f 85 23 11 00 00 jne 0x1148 25: 48 8b 44 24 28 mov 0x28(%rsp),%rax 2a:* 48 8b 54 24 08 mov 0x8(%rsp),%rdx <-- trapping instruction 2f: 49 89 45 48 mov %rax,0x48(%r13) 33: 48 c1 ea 03 shr $0x3,%rdx 37: 48 rex.W 38: b8 00 00 00 00 mov $0x0,%eax 3d: 00 fc add %bh,%ah 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 48 8b 54 24 08 mov 0x8(%rsp),%rdx 5: 49 89 45 48 mov %rax,0x48(%r13) 9: 48 c1 ea 03 shr $0x3,%rdx d: 48 rex.W e: b8 00 00 00 00 mov $0x0,%eax 13: 00 fc add %bh,%ah 15: ff .byte 0xff [ 1062.310977][ C2] RSP: 0018:ffffc900068972d0 EFLAGS: 00000246 [ 1062.310981][ C2] RAX: ffffc90006897508 RBX: 1ffff92000d12e63 RCX: 1ffff92000d12e85 [ 1062.310984][ C2] RDX: 1ffff92000d12e83 RSI: ffffc90006897400 RDI: ffff88800969c640 [ 1062.310986][ C2] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffc90006897411 [ 1062.310987][ C2] R10: ffffffff90c0e3f7 R11: ffffc90006897410 R12: ffffc90006897428 [ 1062.310989][ C2] R13: ffffc900068973d0 R14: ffffffff9560fef8 R15: ffffc90006897500 [ 1062.310992][ C2] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) [ 1062.310998][ C2] ? stack_trace_save (kernel/stacktrace.c:123) [ 1062.311001][ C2] ? kmem_cache_alloc_noprof (./include/linux/kasan.h:250 mm/slub.c:4147 mm/slub.c:4196 mm/slub.c:4203) [ 1062.311005][ C2] ? __alloc_object (mm/kmemleak.c:481 mm/kmemleak.c:661) [ 1062.311009][ C2] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) [ 1062.311013][ C2] ? stack_trace_save (kernel/stacktrace.c:123) [ 1062.311015][ C2] ? kernel_text_address (kernel/extable.c:99) [ 1062.311019][ C2] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) [ 1062.311023][ C2] arch_stack_walk (arch/x86/kernel/stacktrace.c:24) [ 1062.311027][ C2] ? set_track_prepare (mm/slub.c:936) [ 1062.311032][ C2] stack_trace_save (kernel/stacktrace.c:123) [ 1062.311034][ C2] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) [ 1062.311039][ C2] set_track_prepare (mm/slub.c:936) [ 1062.311043][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1062.311046][ C2] ? trace_kmem_cache_alloc (./include/trace/events/kmem.h:12 (discriminator 21)) [ 1062.311049][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4974) [ 1062.311054][ C2] __alloc_object (mm/kmemleak.c:697) [ 1062.311058][ C2] __create_object (mm/kmemleak.c:770) [ 1062.311062][ C2] kmem_cache_alloc_noprof (./include/linux/kmemleak.h:43 mm/slub.c:4151 mm/slub.c:4196 mm/slub.c:4203) [ 1062.311065][ C2] ? mas_wr_store_type (lib/maple_tree.c:806 lib/maple_tree.c:819 lib/maple_tree.c:3530 lib/maple_tree.c:4203) [ 1062.311072][ C2] mas_alloc_nodes (lib/maple_tree.c:176 lib/maple_tree.c:1249) [ 1062.311076][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1062.311081][ C2] mas_preallocate (./include/linux/maple_tree.h:562 lib/maple_tree.c:5502) [ 1062.311083][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1062.311087][ C2] ? __pfx_mas_preallocate (lib/maple_tree.c:5490) [ 1062.311089][ C2] ? _raw_spin_unlock_irqrestore (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 1062.311097][ C2] ? lockdep_init_map_type (kernel/locking/lockdep.c:4974) [ 1062.311101][ C2] __split_vma (mm/vma.c:490) [ 1062.311107][ C2] ? __pfx___split_vma (mm/vma.c:463) [ 1062.311112][ C2] ? __pfx_mas_prev (lib/maple_tree.c:5830) [ 1062.311117][ C2] vms_gather_munmap_vmas (mm/vma.c:1337) [ 1062.311122][ C2] __mmap_prepare (mm/vma.c:2304) [ 1062.311125][ C2] ? vma_set_page_prot (mm/mmap.c:87) [ 1062.311133][ C2] __mmap_region (mm/vma.c:2507) [ 1062.311138][ C2] ? __pfx___mmap_region (mm/vma.c:2499) [ 1062.311143][ C2] ? mas_find (lib/maple_tree.c:6016) [ 1062.311159][ C2] ? mm_get_unmapped_area_vmflags (./arch/x86/include/asm/bitops.h:206 ./arch/x86/include/asm/bitops.h:238 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 mm/mmap.c:808) [ 1062.311164][ C2] ? mmap_region (./arch/x86/include/asm/bitops.h:206 ./arch/x86/include/asm/bitops.h:238 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/mman.h:202 mm/vma.c:2581) [ 1062.311168][ C2] do_mmap (mm/mmap.c:561) [ 1062.311173][ C2] ? __pfx_do_mmap (mm/mmap.c:342) [ 1062.311175][ C2] ? down_write_killable (./arch/x86/include/asm/preempt.h:104 kernel/locking/rwsem.c:1307 kernel/locking/rwsem.c:1318 kernel/locking/rwsem.c:1590) [ 1062.311178][ C2] ? __pfx_down_write_killable (kernel/locking/rwsem.c:1586) [ 1062.311182][ C2] vm_mmap_pgoff (mm/util.c:579) [ 1062.311189][ C2] ? __pfx_vm_mmap_pgoff (mm/util.c:567) [ 1062.311192][ C2] ? lock_release (kernel/locking/lockdep.c:118 kernel/locking/lockdep.c:5879) [ 1062.311195][ C2] ? __fget_files (fs/file.c:1060) [ 1062.311200][ C2] ksys_mmap_pgoff (mm/mmap.c:607) [ 1062.311204][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1062.311208][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 1062.311213][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1062.311215][ C2] RIP: 0033:0x7f42625f9116 [ 1062.311220][ C2] Code: 5d 41 5c c3 f3 0f 1e fa 41 f7 c1 ff 0f 00 00 75 2b 55 48 89 fd 53 89 cb 48 85 ff 74 37 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 62 5b 5d c3 0f 1f 80 00 00 00 00 c7 05 ae f0 All code ======== 0: 5d pop %rbp 1: 41 5c pop %r12 3: c3 ret 4: f3 0f 1e fa endbr64 8: 41 f7 c1 ff 0f 00 00 test $0xfff,%r9d f: 75 2b jne 0x3c 11: 55 push %rbp 12: 48 89 fd mov %rdi,%rbp 15: 53 push %rbx 16: 89 cb mov %ecx,%ebx 18: 48 85 ff test %rdi,%rdi 1b: 74 37 je 0x54 1d: 41 89 da mov %ebx,%r10d 20: 48 89 ef mov %rbp,%rdi 23: b8 09 00 00 00 mov $0x9,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 62 ja 0x94 32: 5b pop %rbx 33: 5d pop %rbp 34: c3 ret 35: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 3c: c7 .byte 0xc7 3d: 05 .byte 0x5 3e: ae scas %es:(%rdi),%al 3f: f0 lock Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 62 ja 0x6a 8: 5b pop %rbx 9: 5d pop %rbp a: c3 ret b: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 12: c7 .byte 0xc7 13: 05 .byte 0x5 14: ae scas %es:(%rdi),%al 15: f0 lock [ 1062.311222][ C2] RSP: 002b:00007ffd2e2197d8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1062.311225][ C2] RAX: ffffffffffffffda RBX: 0000000000000812 RCX: 00007f42625f9116 [ 1062.311227][ C2] RDX: 0000000000000001 RSI: 0000000000017000 RDI: 00007f426241e000 [ 1062.311228][ C2] RBP: 00007f426241e000 R08: 0000000000000005 R09: 0000000000090000 [ 1062.311230][ C2] R10: 0000000000000812 R11: 0000000000000206 R12: 00007ffd2e219850 [ 1062.311232][ C2] R13: 00007ffd2e219bf0 R14: 0000000000000000 R15: 00007f4262486a00 | [ 1131.943648][ C1] INFO: lockdep is turned off. | [ 1131.943958][ C1] Preemption disabled at: | [ 1131.943961][ C1] 0x0 | [ 1131.944490][ C1] Tainted: [W]=WARN [ 1131.944492][ C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 1131.944495][ C1] Call Trace: [ 1131.944499][ C1] [ 1131.944504][ C1] dump_stack_lvl (lib/dump_stack.c:123) [ 1131.944518][ C1] __might_resched (kernel/sched/core.c:8819) [ 1131.944533][ C1] down_write (./include/linux/kernel.h:73 kernel/locking/rwsem.c:1576) [ 1131.944540][ C1] ? __pfx_down_write (kernel/locking/rwsem.c:1575) [ 1131.944545][ C1] ? simple_recursive_removal (./include/linux/dcache.h:345 fs/libfs.c:610) [ 1131.944554][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1131.944564][ C1] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 1131.944575][ C1] simple_recursive_removal (./include/linux/dcache.h:409 ./include/linux/dcache.h:424 ./include/linux/dcache.h:434 fs/libfs.c:616) [ 1131.944579][ C1] ? __pfx_remove_one (fs/debugfs/inode.c:780) [ 1131.944589][ C1] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 1131.944598][ C1] debugfs_remove (fs/debugfs/inode.c:806 fs/debugfs/inode.c:799) [ 1131.944603][ C1] ref_tracker_dir_exit (lib/ref_tracker.c:423 lib/ref_tracker.c:195) [ 1131.944613][ C1] ? __pfx_ref_tracker_free (lib/ref_tracker.c:253) [ 1131.944618][ C1] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2366) [ 1131.944627][ C1] ? call_timer_fn (kernel/time/timer.c:1790) [ 1131.944635][ C1] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:189) [ 1131.944640][ C1] ? tmigr_handle_remote_up (kernel/time/timer_migration.c:1038) [ 1131.944647][ C1] ? __walk_groups.isra.0 (kernel/time/timer_migration.c:533) [ 1131.944655][ C1] ? tmigr_handle_remote (kernel/time/timer_migration.c:1096) [ 1131.944658][ C1] ? handle_softirqs (kernel/softirq.c:580) [ 1131.944668][ C1] ? __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1131.944673][ C1] ? irq_exit_rcu (kernel/softirq.c:698) [ 1131.944678][ C1] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 1131.944686][ C1] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1131.944692][ C1] ? pv_native_safe_halt (arch/x86/kernel/paravirt.c:81) [ 1131.944696][ C1] ? default_idle (./arch/x86/include/asm/paravirt.h:107 arch/x86/kernel/process.c:748) [ 1131.944701][ C1] ? default_idle_call (./include/linux/cpuidle.h:143 kernel/sched/idle.c:118) [ 1131.944705][ C1] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 1131.944714][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1131.944722][ C1] __put_net (net/core/net_namespace.c:732) [ 1131.944728][ C1] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2366) [ 1131.944733][ C1] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) [ 1131.944742][ C1] call_timer_fn (kernel/time/timer.c:1790) [ 1131.944747][ C1] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1131.944750][ C1] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1131.944756][ C1] ? __pfx_call_timer_fn (kernel/time/timer.c:1766) [ 1131.944765][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1131.944773][ C1] __run_timers (kernel/time/timer.c:1841 kernel/time/timer.c:2414) [ 1131.944779][ C1] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) [ 1131.944788][ C1] ? __pfx___run_timers (kernel/time/timer.c:2385) [ 1131.944795][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1131.944802][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1131.944808][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) [ 1131.944813][ C1] ? timer_expire_remote (kernel/time/timer.c:2426 kernel/time/timer.c:2418 kernel/time/timer.c:2177) [ 1131.944823][ C1] timer_expire_remote (kernel/time/timer.c:2427 kernel/time/timer.c:2418 kernel/time/timer.c:2177) [ 1131.944828][ C1] tmigr_handle_remote_cpu (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 kernel/time/timer_migration.c:961) [ 1131.944835][ C1] ? __pfx_tmigr_handle_remote_cpu (kernel/time/timer_migration.c:905) [ 1131.944840][ C1] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1131.944844][ C1] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1779) [ 1131.944849][ C1] ? __pfx_call_timer_fn (kernel/time/timer.c:1766) [ 1131.944854][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1131.944860][ C1] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) [ 1131.944868][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1131.944875][ C1] tmigr_handle_remote_up (kernel/time/timer_migration.c:1038) [ 1131.944881][ C1] ? __pfx_tmigr_handle_remote_up (kernel/time/timer_migration.c:1005) [ 1131.944886][ C1] __walk_groups.isra.0 (kernel/time/timer_migration.c:533) [ 1131.944895][ C1] tmigr_handle_remote (kernel/time/timer_migration.c:1096) [ 1131.944901][ C1] ? __pfx_tmigr_handle_remote (kernel/time/timer_migration.c:1059) [ 1131.944905][ C1] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 1131.944911][ C1] ? spin_bug (kernel/locking/spinlock_debug.c:79) [ 1131.944917][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) [ 1131.944924][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 1131.944931][ C1] handle_softirqs (kernel/softirq.c:580) [ 1131.944940][ C1] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 1131.944944][ C1] irq_exit_rcu (kernel/softirq.c:698) [ 1131.944948][ C1] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 1131.944951][ C1] [ 1131.944953][ C1] [ 1131.944955][ C1] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 1131.944958][ C1] RIP: 0010:pv_native_safe_halt (arch/x86/kernel/paravirt.c:81) [ 1131.944963][ C1] Code: a0 d1 00 e9 c3 57 02 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d c3 45 2b 00 fb f4 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 All code ======== 0: a0 d1 00 e9 c3 57 02 movabs 0xf000257c3e900d1,%al 7: 00 0f 9: 1f (bad) a: 00 90 90 90 90 90 add %dl,-0x6f6f6f70(%rax) 10: 90 nop 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop 16: 90 nop 17: 90 nop 18: 90 nop 19: 90 nop 1a: 90 nop 1b: f3 0f 1e fa endbr64 1f: 66 90 xchg %ax,%ax 21: 0f 00 2d c3 45 2b 00 verw 0x2b45c3(%rip) # 0x2b45eb 28: fb sti 29: f4 hlt 2a:* c3 ret <-- trapping instruction 2b: cc int3 2c: cc int3 2d: cc int3 2e: cc int3 2f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 36: 00 00 00 39: 66 90 xchg %ax,%ax 3b: 90 nop 3c: 90 nop 3d: 90 nop 3e: 90 nop 3f: 90 nop Code starting with the faulting instruction =========================================== 0: c3 ret 1: cc int3 2: cc int3 3: cc int3 4: cc int3 5: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) c: 00 00 00 f: 66 90 xchg %ax,%ax 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop [ 1131.944966][ C1] RSP: 0018:ffffc90000137de8 EFLAGS: 00000246 [ 1131.944970][ C1] RAX: 0000000000000001 RBX: 1ffff92000026fc1 RCX: ffffffff935dea19 [ 1131.944973][ C1] RDX: ffffed1006c1667b RSI: ffffffff93a561e0 RDI: ffffffff90d8879f [ 1131.944975][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed1006c1667a [ 1131.944977][ C1] R10: ffff8880360b33d3 R11: ffff8880360a7f4c R12: 0000000000000000 [ 1131.944979][ C1] R13: ffff888001bf0040 R14: dffffc0000000000 R15: 0000000000000000 [ 1131.944984][ C1] ? ct_kernel_exit.constprop.0 (kernel/context_tracking.c:146) [ 1131.944989][ C1] ? cpuidle_idle_call (kernel/sched/idle.c:186) [ 1131.944997][ C1] default_idle (./arch/x86/include/asm/paravirt.h:107 arch/x86/kernel/process.c:748) [ 1131.945001][ C1] default_idle_call (./include/linux/cpuidle.h:143 kernel/sched/idle.c:118) [ 1131.945004][ C1] cpuidle_idle_call (kernel/sched/idle.c:186) [ 1131.945010][ C1] ? __pfx_cpuidle_idle_call (kernel/sched/idle.c:168) [ 1131.945016][ C1] ? tsc_verify_tsc_adjust (arch/x86/kernel/tsc_sync.c:59) [ 1131.945025][ C1] do_idle (kernel/sched/idle.c:325) [ 1131.945030][ C1] cpu_startup_entry (kernel/sched/idle.c:422 (discriminator 1)) [ 1131.945035][ C1] start_secondary (arch/x86/kernel/smpboot.c:203 arch/x86/kernel/smpboot.c:283) [ 1131.945040][ C1] ? __pfx_start_secondary (arch/x86/kernel/smpboot.c:233) Finger prints: mark_lock_irq:mark_lock:mark_usage:__lock_acquire:_raw_spin_lock __might_resched:down_write:simple_recursive_removal:debugfs_remove:ref_tracker_dir_exit handle_softirqs:dump_stack_lvl:__might_resched:down_write:simple_recursive_removal