====================================== | [ 14.871487][ C3] #0: ffff888009c963f8 (&sig->cred_guard_mutex){+.+.}-{4:4}, at: bprm_execve (fs/exec.c:1469 fs/exec.c:1842) | [ 14.871892][ C3] #1: ffffffff8b974480 (rcu_callback){....}-{0:0}, at: rcu_do_batch (./include/linux/rcupdate.h:331 kernel/rcu/tree.c:2562) | [ 14.872289][ C3] | [ 14.872289][ C3] stack backtrace: [ 14.872595][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 14.872597][ C3] Call Trace: [ 14.872599][ C3] [ 14.872601][ C3] dump_stack_lvl (lib/dump_stack.c:123) [ 14.872607][ C3] print_usage_bug.part.0 (kernel/locking/lockdep.c:4046) [ 14.872613][ C3] mark_lock_irq (kernel/locking/lockdep.c:4011 kernel/locking/lockdep.c:4057 kernel/locking/lockdep.c:4268) [ 14.872618][ C3] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) [ 14.872623][ C3] ? save_trace (kernel/locking/lockdep.c:594) [ 14.872627][ C3] mark_lock (kernel/locking/lockdep.c:4754) [ 14.872631][ C3] mark_usage (kernel/locking/lockdep.c:4643) [ 14.872635][ C3] __lock_acquire (kernel/locking/lockdep.c:5189) [ 14.872640][ C3] lock_acquire.part.0 (kernel/locking/lockdep.c:472 kernel/locking/lockdep.c:5868) [ 14.872643][ C3] ? simple_pin_fs (fs/libfs.c:1066) [ 14.872647][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 14.872653][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) [ 14.872656][ C3] ? simple_pin_fs (fs/libfs.c:1066) [ 14.872661][ C3] _raw_spin_lock (./include/linux/spinlock_api_smp.h:134 kernel/locking/spinlock.c:154) [ 14.872664][ C3] ? simple_pin_fs (fs/libfs.c:1066) [ 14.872667][ C3] simple_pin_fs (fs/libfs.c:1066) [ 14.872671][ C3] debugfs_remove (fs/debugfs/inode.c:805 fs/debugfs/inode.c:799) [ 14.872674][ C3] ref_tracker_dir_exit (lib/ref_tracker.c:423 lib/ref_tracker.c:195) [ 14.872679][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:253) [ 14.872682][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2333) [ 14.872687][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2568) [ 14.872690][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:189) [ 14.872693][ C3] ? irq_exit_rcu (kernel/softirq.c:698) [ 14.872695][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 14.872700][ C3] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 14.872704][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 14.872707][ C3] ? __debug_check_no_obj_freed (lib/debugobjects.c:1110) [ 14.872711][ C3] ? free_unref_folios (mm/page_alloc.c:1280 mm/page_alloc.c:2778) [ 14.872715][ C3] ? folios_put_refs (mm/swap.c:992) [ 14.872720][ C3] ? invalidate_inode_pages2_range (./include/linux/pagevec.h:101 mm/truncate.c:703) [ 14.872723][ C3] ? fuse_open (fs/fuse/file.c:280) [ 14.872728][ C3] ? do_dentry_open (fs/open.c:956) [ 14.872731][ C3] ? vfs_open (fs/open.c:1086) [ 14.872737][ C3] __put_net (net/core/net_namespace.c:732) [ 14.872740][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2333) [ 14.872745][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2568) [ 14.872748][ C3] rcu_do_batch (kernel/rcu/tree.c:2568) [ 14.872751][ C3] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 14.872755][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2492) [ 14.872759][ C3] ? mark_held_locks (kernel/locking/lockdep.c:4326) [ 14.872762][ C3] ? note_gp_changes (kernel/rcu/tree.c:1324 (discriminator 1)) [ 14.872766][ C3] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) [ 14.872770][ C3] rcu_core (kernel/rcu/tree.c:2826) [ 14.872773][ C3] handle_softirqs (kernel/softirq.c:579) [ 14.872778][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 14.872780][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 14.872782][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 14.872786][ C3] [ 14.872787][ C3] [ 14.872789][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 14.872791][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 14.872796][ C3] Code: 74 24 10 e8 91 3e 86 fd 48 89 ef e8 09 91 86 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 2a 99 7a fd 65 8b 05 83 08 99 02 85 c0 74 0e 5b 5d c3 cc cc cc All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 91 xchg %eax,%ecx 5: 3e 86 fd ds xchg %bh,%ch 8: 48 89 ef mov %rbp,%rdi b: e8 09 91 86 fd call 0xfffffffffd869119 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 2a 99 7a fd call 0xfffffffffd7a9959 <-- trapping instruction 2f: 65 8b 05 83 08 99 02 mov %gs:0x2990883(%rip),%eax # 0x29908b9 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: c3 ret 3d: cc int3 3e: cc int3 3f: cc int3 Code starting with the faulting instruction =========================================== 0: e8 2a 99 7a fd call 0xfffffffffd7a992f 5: 65 8b 05 83 08 99 02 mov %gs:0x2990883(%rip),%eax # 0x299088f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: c3 ret 13: cc int3 14: cc int3 15: cc int3 [ 14.872799][ C3] RSP: 0018:ffffc90000b66f58 EFLAGS: 00000206 [ 14.872802][ C3] RAX: 0000000000000006 RBX: 0000000000000200 RCX: 0000000000000040 [ 14.872804][ C3] RDX: 0000000000000000 RSI: ffffffff8b485f31 RDI: 0000000000000001 [ 14.872805][ C3] RBP: ffffffff8e28fdd0 R08: 0000000000000001 R09: 0000000000000001 [ 14.872807][ C3] R10: ffffffff8c3d8197 R11: ffffffff8e28fde8 R12: dffffc0000000000 [ 14.872809][ C3] R13: ffff88800d8ed000 R14: 0000000000000000 R15: ffff88800d8ee000 [ 14.872815][ C3] __debug_check_no_obj_freed (lib/debugobjects.c:1110) [ 14.872819][ C3] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 14.872824][ C3] ? __pfx___debug_check_no_obj_freed (lib/debugobjects.c:1070) [ 14.872827][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5235) [ 14.872832][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 14.872837][ C3] free_unref_folios (mm/page_alloc.c:1280 mm/page_alloc.c:2778) [ 14.872842][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) [ 14.872846][ C3] folios_put_refs (mm/swap.c:992) [ 14.872851][ C3] ? __pfx_folios_put_refs (mm/swap.c:942) [ 14.872854][ C3] ? mlock_drain_local (./include/linux/local_lock_internal.h:54 mm/mlock.c:220) [ 14.872859][ C3] ? mlock_drain_local (./arch/x86/include/asm/preempt.h:104 mm/mlock.c:220) [ 14.872863][ C3] invalidate_inode_pages2_range (./include/linux/pagevec.h:101 mm/truncate.c:703) [ 14.872868][ C3] ? __pfx_invalidate_inode_pages2_range (mm/truncate.c:645) [ 14.872871][ C3] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) [ 14.872876][ C3] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 14.872879][ C3] ? kasan_quarantine_put (mm/kasan/quarantine.c:234 (discriminator 1)) [ 14.872890][ C3] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 14.872899][ C3] ? fuse_file_io_open (fs/fuse/iomode.c:240) [ 14.872906][ C3] fuse_open (fs/fuse/file.c:280) [ 14.872910][ C3] do_dentry_open (fs/open.c:956) [ 14.872913][ C3] ? __pfx_fuse_open (fs/fuse/file.c:234) [ 14.872918][ C3] vfs_open (fs/open.c:1086) [ 14.872922][ C3] backing_file_open (fs/backing-file.c:45) [ 14.872928][ C3] ? inode_owner_or_capable (./include/linux/mnt_idmapping.h:87 fs/inode.c:2591) [ 14.872933][ C3] ovl_open_realfile (fs/overlayfs/file.c:51) [ 14.872938][ C3] ovl_open (fs/overlayfs/file.c:222) [ 14.872941][ C3] ? __pfx_ovl_open (fs/overlayfs/file.c:199) [ 14.872943][ C3] ? __lock_release (kernel/locking/lockdep.c:5534) [ 14.872949][ C3] do_dentry_open (fs/open.c:956) [ 14.872951][ C3] ? __pfx_ovl_open (fs/overlayfs/file.c:199) [ 14.872956][ C3] vfs_open (fs/open.c:1086) [ 14.872960][ C3] do_open (fs/namei.c:3881) [ 14.872966][ C3] path_openat (fs/namei.c:4039) [ 14.872970][ C3] ? __pfx_path_openat (fs/namei.c:4021) [ 14.872973][ C3] ? __kernel_text_address (kernel/extable.c:79) [ 14.872978][ C3] ? unwind_get_return_address (arch/x86/kernel/unwind_orc.c:369 arch/x86/kernel/unwind_orc.c:364) [ 14.872981][ C3] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) [ 14.872986][ C3] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:26) [ 14.872990][ C3] do_filp_open (fs/namei.c:4066) [ 14.872994][ C3] ? __pfx_do_filp_open (fs/namei.c:4060) [ 14.872996][ C3] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) [ 14.872999][ C3] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 14.873005][ C3] ? __pfx_page_put_link (fs/namei.c:5447) [ 14.873010][ C3] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 14.873014][ C3] ? mark_held_locks (kernel/locking/lockdep.c:4326) [ 14.873017][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) [ 14.873020][ C3] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) [ 14.873025][ C3] do_open_execat (fs/exec.c:893) [ 14.873029][ C3] ? __pfx_do_open_execat (fs/exec.c:875) [ 14.873034][ C3] ? getname_kernel (./arch/x86/include/asm/atomic.h:28 ./include/linux/atomic/atomic-arch-fallback.h:503 ./include/linux/atomic/atomic-instrumented.h:68 fs/namei.c:132 fs/namei.c:271) [ 14.873037][ C3] open_exec (fs/exec.c:931) [ 14.873041][ C3] load_elf_binary (fs/binfmt_elf.c:899) [ 14.873046][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5235) [ 14.873051][ C3] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 14.873054][ C3] ? __pfx_load_elf_binary (fs/binfmt_elf.c:825) [ 14.873057][ C3] ? exec_binprm (fs/exec.c:1778 fs/exec.c:1810) [ 14.873063][ C3] exec_binprm (fs/exec.c:1778 fs/exec.c:1810) [ 14.873068][ C3] ? __pfx_exec_binprm (fs/exec.c:1794) [ 14.873071][ C3] ? bprm_execve (fs/exec.c:1852 fs/exec.c:1838) [ 14.873077][ C3] bprm_execve (fs/exec.c:1862 fs/exec.c:1838) [ 14.873081][ C3] do_execveat_common.isra.0 (fs/exec.c:1968) [ 14.873086][ C3] __x64_sys_execve (fs/exec.c:2113) [ 14.873089][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 14.873094][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 14.873097][ C3] RIP: 0033:0x7f38cbb6540b [ 14.873101][ C3] Code: c0 75 03 5f ff e7 c3 48 8b 0d f1 a9 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 80 00 00 00 00 f3 0f 1e fa b8 3b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d c5 a9 1b 00 f7 d8 64 89 01 48 All code ======== 0: c0 75 03 5f shlb $0x5f,0x3(%rbp) 4: ff e7 jmp *%rdi 6: c3 ret 7: 48 8b 0d f1 a9 1b 00 mov 0x1ba9f1(%rip),%rcx # 0x1ba9ff e: f7 d8 neg %eax 10: 64 89 01 mov %eax,%fs:(%rcx) 13: 48 83 c8 ff or $0xffffffffffffffff,%rax 17: c3 ret 18: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 1f: f3 0f 1e fa endbr64 23: b8 3b 00 00 00 mov $0x3b,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d c5 a9 1b 00 mov 0x1ba9c5(%rip),%rcx # 0x1ba9ff 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d c5 a9 1b 00 mov 0x1ba9c5(%rip),%rcx # 0x1ba9d5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 14.873103][ C3] RSP: 002b:00007ffe491002e8 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 14.873106][ C3] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f38cbb6540b [ 14.873107][ C3] RDX: 000055c2f0c27570 RSI: 000055c2f0c1acb0 RDI: 000055c2f0c1e590 [ 14.873109][ C3] RBP: 000055c2f0c1e590 R08: 000055c2f0c16440 R09: 0000000000000020 [ 14.873111][ C3] R10: 00000000000001b6 R11: 0000000000000246 R12: 00000000ffffffff [ 14.873112][ C3] R13: 000055c2f0c1acb0 R14: 000055c2f0c27570 R15: 000055c2f0c16420 | [ 14.907600][ C3] RCU nest depth: 0, expected: 0 | [ 14.907813][ C3] INFO: lockdep is turned off. | [ 14.908163][ C3] Preemption disabled at: | [ 14.908164][ C3] 0x0 [ 14.908553][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 14.908554][ C3] Call Trace: [ 14.908556][ C3] [ 14.908558][ C3] dump_stack_lvl (lib/dump_stack.c:123) [ 14.908565][ C3] __might_resched (kernel/sched/core.c:8819) [ 14.908571][ C3] down_write (./include/linux/kernel.h:73 kernel/locking/rwsem.c:1576) [ 14.908574][ C3] ? __pfx_down_write (kernel/locking/rwsem.c:1575) [ 14.908577][ C3] ? simple_recursive_removal (./include/linux/dcache.h:345 fs/libfs.c:610) [ 14.908581][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 14.908586][ C3] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 14.908590][ C3] simple_recursive_removal (./include/linux/dcache.h:409 ./include/linux/dcache.h:424 ./include/linux/dcache.h:434 fs/libfs.c:616) [ 14.908593][ C3] ? __pfx_remove_one (fs/debugfs/inode.c:780) [ 14.908597][ C3] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 14.908601][ C3] debugfs_remove (fs/debugfs/inode.c:806 fs/debugfs/inode.c:799) [ 14.908603][ C3] ref_tracker_dir_exit (lib/ref_tracker.c:423 lib/ref_tracker.c:195) [ 14.908609][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:253) [ 14.908612][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2333) [ 14.908616][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2568) [ 14.908620][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:189) [ 14.908623][ C3] ? irq_exit_rcu (kernel/softirq.c:698) [ 14.908626][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 14.908630][ C3] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 14.908634][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 14.908637][ C3] ? __debug_check_no_obj_freed (lib/debugobjects.c:1110) [ 14.908643][ C3] ? free_unref_folios (mm/page_alloc.c:1280 mm/page_alloc.c:2778) [ 14.908647][ C3] ? folios_put_refs (mm/swap.c:992) [ 14.908652][ C3] ? invalidate_inode_pages2_range (./include/linux/pagevec.h:101 mm/truncate.c:703) [ 14.908655][ C3] ? fuse_open (fs/fuse/file.c:280) [ 14.908659][ C3] ? do_dentry_open (fs/open.c:956) [ 14.908662][ C3] ? vfs_open (fs/open.c:1086) [ 14.908667][ C3] __put_net (net/core/net_namespace.c:732) [ 14.908670][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2333) [ 14.908674][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2568) [ 14.908677][ C3] rcu_do_batch (kernel/rcu/tree.c:2568) [ 14.908680][ C3] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 14.908684][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2492) [ 14.908688][ C3] ? mark_held_locks (kernel/locking/lockdep.c:4326) [ 14.908691][ C3] ? note_gp_changes (kernel/rcu/tree.c:1324 (discriminator 1)) [ 14.908695][ C3] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) [ 14.908699][ C3] rcu_core (kernel/rcu/tree.c:2826) [ 14.908702][ C3] handle_softirqs (kernel/softirq.c:579) [ 14.908707][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 14.908709][ C3] irq_exit_rcu (kernel/softirq.c:698) [ 14.908711][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 14.908715][ C3] [ 14.908716][ C3] [ 14.908718][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 14.908720][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 14.908724][ C3] Code: 74 24 10 e8 91 3e 86 fd 48 89 ef e8 09 91 86 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 2a 99 7a fd 65 8b 05 83 08 99 02 85 c0 74 0e 5b 5d c3 cc cc cc All code ======== 0: 74 24 je 0x26 2: 10 e8 adc %ch,%al 4: 91 xchg %eax,%ecx 5: 3e 86 fd ds xchg %bh,%ch 8: 48 89 ef mov %rbp,%rdi b: e8 09 91 86 fd call 0xfffffffffd869119 10: 81 e3 00 02 00 00 and $0x200,%ebx 16: 75 29 jne 0x41 18: 9c pushf 19: 58 pop %rax 1a: f6 c4 02 test $0x2,%ah 1d: 75 35 jne 0x54 1f: 48 85 db test %rbx,%rbx 22: 74 01 je 0x25 24: fb sti 25: bf 01 00 00 00 mov $0x1,%edi 2a:* e8 2a 99 7a fd call 0xfffffffffd7a9959 <-- trapping instruction 2f: 65 8b 05 83 08 99 02 mov %gs:0x2990883(%rip),%eax # 0x29908b9 36: 85 c0 test %eax,%eax 38: 74 0e je 0x48 3a: 5b pop %rbx 3b: 5d pop %rbp 3c: c3 ret 3d: cc int3 3e: cc int3 3f: cc int3 Code starting with the faulting instruction =========================================== 0: e8 2a 99 7a fd call 0xfffffffffd7a992f 5: 65 8b 05 83 08 99 02 mov %gs:0x2990883(%rip),%eax # 0x299088f c: 85 c0 test %eax,%eax e: 74 0e je 0x1e 10: 5b pop %rbx 11: 5d pop %rbp 12: c3 ret 13: cc int3 14: cc int3 15: cc int3 [ 14.908726][ C3] RSP: 0018:ffffc90000b66f58 EFLAGS: 00000206 [ 14.908729][ C3] RAX: 0000000000000006 RBX: 0000000000000200 RCX: 0000000000000040 [ 14.908731][ C3] RDX: 0000000000000000 RSI: ffffffff8b485f31 RDI: 0000000000000001 [ 14.908733][ C3] RBP: ffffffff8e28fdd0 R08: 0000000000000001 R09: 0000000000000001 [ 14.908734][ C3] R10: ffffffff8c3d8197 R11: ffffffff8e28fde8 R12: dffffc0000000000 [ 14.908736][ C3] R13: ffff88800d8ed000 R14: 0000000000000000 R15: ffff88800d8ee000 [ 14.908742][ C3] __debug_check_no_obj_freed (lib/debugobjects.c:1110) [ 14.908746][ C3] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 14.908751][ C3] ? __pfx___debug_check_no_obj_freed (lib/debugobjects.c:1070) [ 14.908754][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5235) [ 14.908759][ C3] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) [ 14.908763][ C3] free_unref_folios (mm/page_alloc.c:1280 mm/page_alloc.c:2778) [ 14.908768][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) [ 14.908772][ C3] folios_put_refs (mm/swap.c:992) [ 14.908776][ C3] ? __pfx_folios_put_refs (mm/swap.c:942) [ 14.908780][ C3] ? mlock_drain_local (./include/linux/local_lock_internal.h:54 mm/mlock.c:220) [ 14.908784][ C3] ? mlock_drain_local (./arch/x86/include/asm/preempt.h:104 mm/mlock.c:220) [ 14.908788][ C3] invalidate_inode_pages2_range (./include/linux/pagevec.h:101 mm/truncate.c:703) [ 14.908793][ C3] ? __pfx_invalidate_inode_pages2_range (mm/truncate.c:645) [ 14.908796][ C3] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) [ 14.908801][ C3] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 14.908804][ C3] ? kasan_quarantine_put (mm/kasan/quarantine.c:234 (discriminator 1)) [ 14.908814][ C3] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 14.908823][ C3] ? fuse_file_io_open (fs/fuse/iomode.c:240) [ 14.908830][ C3] fuse_open (fs/fuse/file.c:280) [ 14.908834][ C3] do_dentry_open (fs/open.c:956) [ 14.908837][ C3] ? __pfx_fuse_open (fs/fuse/file.c:234) [ 14.908842][ C3] vfs_open (fs/open.c:1086) [ 14.908846][ C3] backing_file_open (fs/backing-file.c:45) [ 14.908850][ C3] ? inode_owner_or_capable (./include/linux/mnt_idmapping.h:87 fs/inode.c:2591) [ 14.908855][ C3] ovl_open_realfile (fs/overlayfs/file.c:51) [ 14.908859][ C3] ovl_open (fs/overlayfs/file.c:222) [ 14.908862][ C3] ? __pfx_ovl_open (fs/overlayfs/file.c:199) [ 14.908864][ C3] ? __lock_release (kernel/locking/lockdep.c:5534) [ 14.908869][ C3] do_dentry_open (fs/open.c:956) [ 14.908872][ C3] ? __pfx_ovl_open (fs/overlayfs/file.c:199) [ 14.908876][ C3] vfs_open (fs/open.c:1086) [ 14.908880][ C3] do_open (fs/namei.c:3881) [ 14.908887][ C3] path_openat (fs/namei.c:4039) [ 14.908890][ C3] ? __pfx_path_openat (fs/namei.c:4021) [ 14.908893][ C3] ? __kernel_text_address (kernel/extable.c:79) [ 14.908897][ C3] ? unwind_get_return_address (arch/x86/kernel/unwind_orc.c:369 arch/x86/kernel/unwind_orc.c:364) [ 14.908901][ C3] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) [ 14.908905][ C3] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:26) [ 14.908909][ C3] do_filp_open (fs/namei.c:4066) [ 14.908912][ C3] ? __pfx_do_filp_open (fs/namei.c:4060) [ 14.908915][ C3] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) [ 14.908918][ C3] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) [ 14.908923][ C3] ? __pfx_page_put_link (fs/namei.c:5447) [ 14.908927][ C3] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 14.908931][ C3] ? mark_held_locks (kernel/locking/lockdep.c:4326) [ 14.908935][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) [ 14.908938][ C3] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) [ 14.908942][ C3] do_open_execat (fs/exec.c:893) [ 14.908946][ C3] ? __pfx_do_open_execat (fs/exec.c:875) [ 14.908951][ C3] ? getname_kernel (./arch/x86/include/asm/atomic.h:28 ./include/linux/atomic/atomic-arch-fallback.h:503 ./include/linux/atomic/atomic-instrumented.h:68 fs/namei.c:132 fs/namei.c:271) [ 14.908955][ C3] open_exec (fs/exec.c:931) [ 14.908958][ C3] load_elf_binary (fs/binfmt_elf.c:899) [ 14.908963][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5235) [ 14.908968][ C3] ? find_held_lock (kernel/locking/lockdep.c:5348) [ 14.908971][ C3] ? __pfx_load_elf_binary (fs/binfmt_elf.c:825) [ 14.908974][ C3] ? exec_binprm (fs/exec.c:1778 fs/exec.c:1810) [ 14.908980][ C3] exec_binprm (fs/exec.c:1778 fs/exec.c:1810) [ 14.908985][ C3] ? __pfx_exec_binprm (fs/exec.c:1794) [ 14.908988][ C3] ? bprm_execve (fs/exec.c:1852 fs/exec.c:1838) [ 14.908993][ C3] bprm_execve (fs/exec.c:1862 fs/exec.c:1838) [ 14.908997][ C3] do_execveat_common.isra.0 (fs/exec.c:1968) [ 14.909002][ C3] __x64_sys_execve (fs/exec.c:2113) [ 14.909005][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 14.909010][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 14.909013][ C3] RIP: 0033:0x7f38cbb6540b [ 14.909015][ C3] Code: c0 75 03 5f ff e7 c3 48 8b 0d f1 a9 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 80 00 00 00 00 f3 0f 1e fa b8 3b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d c5 a9 1b 00 f7 d8 64 89 01 48 All code ======== 0: c0 75 03 5f shlb $0x5f,0x3(%rbp) 4: ff e7 jmp *%rdi 6: c3 ret 7: 48 8b 0d f1 a9 1b 00 mov 0x1ba9f1(%rip),%rcx # 0x1ba9ff e: f7 d8 neg %eax 10: 64 89 01 mov %eax,%fs:(%rcx) 13: 48 83 c8 ff or $0xffffffffffffffff,%rax 17: c3 ret 18: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 1f: f3 0f 1e fa endbr64 23: b8 3b 00 00 00 mov $0x3b,%eax 28: 0f 05 syscall 2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 ret 33: 48 8b 0d c5 a9 1b 00 mov 0x1ba9c5(%rip),%rcx # 0x1ba9ff 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax 6: 73 01 jae 0x9 8: c3 ret 9: 48 8b 0d c5 a9 1b 00 mov 0x1ba9c5(%rip),%rcx # 0x1ba9d5 10: f7 d8 neg %eax 12: 64 89 01 mov %eax,%fs:(%rcx) 15: 48 rex.W [ 14.909017][ C3] RSP: 002b:00007ffe491002e8 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 14.909020][ C3] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f38cbb6540b [ 14.909022][ C3] RDX: 000055c2f0c27570 RSI: 000055c2f0c1acb0 RDI: 000055c2f0c1e590 [ 14.909023][ C3] RBP: 000055c2f0c1e590 R08: 000055c2f0c16440 R09: 0000000000000020 [ 14.909025][ C3] R10: 00000000000001b6 R11: 0000000000000246 R12: 00000000ffffffff [ 14.909027][ C3] R13: 000055c2f0c1acb0 R14: 000055c2f0c27570 R15: 000055c2f0c16420 | [ 16.647843][ C2] INFO: lockdep is turned off. | [ 16.648023][ C2] Preemption disabled at: | [ 16.648025][ C2] 0x0 | [ 16.648357][ C2] Tainted: [W]=WARN [ 16.648358][ C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 16.648360][ C2] Call Trace: [ 16.648363][ C2] [ 16.648365][ C2] dump_stack_lvl (lib/dump_stack.c:123) [ 16.648377][ C2] __might_resched (kernel/sched/core.c:8819) [ 16.648384][ C2] down_write (./include/linux/kernel.h:73 kernel/locking/rwsem.c:1576) [ 16.648389][ C2] ? __pfx_down_write (kernel/locking/rwsem.c:1575) [ 16.648392][ C2] ? simple_recursive_removal (./include/linux/dcache.h:345 fs/libfs.c:610) [ 16.648397][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 16.648405][ C2] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 16.648410][ C2] simple_recursive_removal (./include/linux/dcache.h:409 ./include/linux/dcache.h:424 ./include/linux/dcache.h:434 fs/libfs.c:616) [ 16.648413][ C2] ? __pfx_remove_one (fs/debugfs/inode.c:780) [ 16.648418][ C2] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 16.648422][ C2] debugfs_remove (fs/debugfs/inode.c:806 fs/debugfs/inode.c:799) [ 16.648425][ C2] ref_tracker_dir_exit (lib/ref_tracker.c:423 lib/ref_tracker.c:195) [ 16.648431][ C2] ? __pfx_ref_tracker_free (lib/ref_tracker.c:253) [ 16.648434][ C2] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2333) [ 16.648441][ C2] ? rcu_do_batch (kernel/rcu/tree.c:2568) [ 16.648446][ C2] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:189) [ 16.648449][ C2] ? irq_exit_rcu (kernel/softirq.c:698) [ 16.648454][ C2] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 16.648460][ C2] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 16.648465][ C2] ? pv_native_safe_halt (arch/x86/kernel/paravirt.c:81) [ 16.648468][ C2] ? default_idle (./arch/x86/include/asm/paravirt.h:107 arch/x86/kernel/process.c:748) [ 16.648471][ C2] ? default_idle_call (./include/linux/cpuidle.h:143 kernel/sched/idle.c:118) [ 16.648473][ C2] ? cpuidle_idle_call (kernel/sched/idle.c:186) [ 16.648479][ C2] ? do_idle (kernel/sched/idle.c:325) [ 16.648482][ C2] ? cpu_startup_entry (kernel/sched/idle.c:422 (discriminator 1)) [ 16.648488][ C2] ? start_secondary (arch/x86/kernel/smpboot.c:203 arch/x86/kernel/smpboot.c:283) [ 16.648494][ C2] ? common_startup_64 (arch/x86/kernel/head_64.S:419) [ 16.648500][ C2] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) [ 16.648504][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) [ 16.648509][ C2] __put_net (net/core/net_namespace.c:732) [ 16.648513][ C2] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2333) [ 16.648517][ C2] ? rcu_do_batch (kernel/rcu/tree.c:2568) [ 16.648520][ C2] rcu_do_batch (kernel/rcu/tree.c:2568) [ 16.648525][ C2] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2492) [ 16.648529][ C2] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40) [ 16.648535][ C2] ? _raw_spin_unlock_irqrestore (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) [ 16.648541][ C2] rcu_core (kernel/rcu/tree.c:2826) [ 16.648544][ C2] handle_softirqs (kernel/softirq.c:579) [ 16.648549][ C2] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) [ 16.648552][ C2] irq_exit_rcu (kernel/softirq.c:698) [ 16.648554][ C2] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) [ 16.648558][ C2] [ 16.648559][ C2] [ 16.648561][ C2] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) [ 16.648564][ C2] RIP: 0010:pv_native_safe_halt (arch/x86/kernel/paravirt.c:81) [ 16.648568][ C2] Code: b0 b8 00 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d a3 d0 13 00 fb f4 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 All code ======== 0: b0 b8 mov $0xb8,%al 2: 00 c3 add %al,%bl 4: cc int3 5: cc int3 6: cc int3 7: cc int3 8: 0f 1f 00 nopl (%rax) b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 90 nop 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop 16: 90 nop 17: 90 nop 18: 90 nop 19: 90 nop 1a: 90 nop 1b: f3 0f 1e fa endbr64 1f: 66 90 xchg %ax,%ax 21: 0f 00 2d a3 d0 13 00 verw 0x13d0a3(%rip) # 0x13d0cb 28: fb sti 29: f4 hlt 2a:* c3 ret <-- trapping instruction 2b: cc int3 2c: cc int3 2d: cc int3 2e: cc int3 2f: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) 36: 00 00 00 39: 66 90 xchg %ax,%ax 3b: 90 nop 3c: 90 nop 3d: 90 nop 3e: 90 nop 3f: 90 nop Code starting with the faulting instruction =========================================== 0: c3 ret 1: cc int3 2: cc int3 3: cc int3 4: cc int3 5: 66 2e 0f 1f 84 00 00 cs nopw 0x0(%rax,%rax,1) c: 00 00 00 f: 66 90 xchg %ax,%ax 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop [ 16.648571][ C2] RSP: 0018:ffffc90000147de8 EFLAGS: 00000246 [ 16.648576][ C2] RAX: 0000000000000002 RBX: 1ffff92000028fc1 RCX: ffffffff8a955a19 [ 16.648578][ C2] RDX: ffffed1006c2667b RSI: ffffffff8ac50c60 RDI: ffffffff88184d8f [ 16.648580][ C2] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed1006c2667a [ 16.648582][ C2] R10: ffff8880361333d3 R11: ffff88800b228558 R12: 0000000000000000 [ 16.648584][ C2] R13: ffff888001bb2340 R14: dffffc0000000000 R15: 0000000000000000 [ 16.648588][ C2] ? ct_kernel_exit.constprop.0 (kernel/context_tracking.c:146) [ 16.648593][ C2] ? cpuidle_idle_call (kernel/sched/idle.c:186) [ 16.648597][ C2] default_idle (./arch/x86/include/asm/paravirt.h:107 arch/x86/kernel/process.c:748) [ 16.648600][ C2] default_idle_call (./include/linux/cpuidle.h:143 kernel/sched/idle.c:118) [ 16.648602][ C2] cpuidle_idle_call (kernel/sched/idle.c:186) [ 16.648605][ C2] ? __pfx_cpuidle_idle_call (kernel/sched/idle.c:168) [ 16.648610][ C2] ? tsc_verify_tsc_adjust (arch/x86/kernel/tsc_sync.c:59) [ 16.648615][ C2] do_idle (kernel/sched/idle.c:325) [ 16.648618][ C2] cpu_startup_entry (kernel/sched/idle.c:422 (discriminator 1)) [ 16.648622][ C2] start_secondary (arch/x86/kernel/smpboot.c:203 arch/x86/kernel/smpboot.c:283) [ 16.648625][ C2] ? __pfx_start_secondary (arch/x86/kernel/smpboot.c:233) Finger prints: mark_lock_irq:mark_lock:mark_usage:__lock_acquire:_raw_spin_lock __might_resched:down_write:simple_recursive_removal:debugfs_remove:ref_tracker_dir_exit