INFO: task kworker/u8:1:12 blocked for more than 143 seconds.
Not tainted 6.10.0-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u8:1 state:D
stack:22256 pid:12 tgid:12 ppid:2 flags:0x00004000
Workqueue: netns cleanup_net
Call Trace:
<TASK>
context_switch kernel/sched/core.c:5407 [inline]
__schedule+0x1800/0x4a60 kernel/sched/core.c:6748
__schedule_loop kernel/sched/core.c:6825 [inline]
schedule+0x14b/0x320 kernel/sched/core.c:6840
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x6a4/0xd70 kernel/locking/mutex.c:752
unregister_nexthop_notifier+0x17/0x40 net/ipv4/nexthop.c:3899
nsim_fib_destroy+0x89/0x180 drivers/net/netdevsim/fib.c:1656
nsim_dev_reload_destroy+0x2e3/0x490 drivers/net/netdevsim/dev.c:1662
nsim_dev_reload_down+0x98/0xd0 drivers/net/netdevsim/dev.c:965
devlink_reload+0x18b/0x870 net/devlink/dev.c:461
devlink_pernet_pre_exit+0x1f3/0x440 net/devlink/core.c:509
ops_pre_exit_list net/core/net_namespace.c:163 [inline]
cleanup_net+0x615/0xcc0 net/core/net_namespace.c:620
process_one_work kernel/workqueue.c:3248 [inline]
process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3329
worker_thread+0x86d/0xd50 kernel/workqueue.c:3409
kthread+0x2f0/0x390 kernel/kthread.c:389
ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
</TASK>
INFO: task kworker/u8:6:2466 blocked for more than 144 seconds.
Not tainted 6.10.0-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u8:6 state:D
stack:23512 pid:2466 tgid:2466 ppid:2 flags:0x00004000
Workqueue: ipv6_addrconf addrconf_dad_work
Call Trace:
<TASK>
context_switch kernel/sched/core.c:5407 [inline]
__schedule+0x1800/0x4a60 kernel/sched/core.c:6748
__schedule_loop kernel/sched/core.c:6825 [inline]
schedule+0x14b/0x320 kernel/sched/core.c:6840
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x6a4/0xd70 kernel/locking/mutex.c:752
addrconf_dad_work+0xd0/0x16f0 net/ipv6/addrconf.c:4193
process_one_work kernel/workqueue.c:3248 [inline]
process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3329
worker_thread+0x86d/0xd50 kernel/workqueue.c:3409
kthread+0x2f0/0x390 kernel/kthread.c:389
ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
</TASK>
INFO: task kworker/0:4:5138 blocked for more than 145 seconds.
Not tainted 6.10.0-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/0:4 state:D
stack:23320 pid:5138 tgid:5138 ppid:2 flags:0x00004000
Workqueue: events linkwatch_event
Call Trace:
<TASK>
context_switch kernel/sched/core.c:5407 [inline]
__schedule+0x1800/0x4a60 kernel/sched/core.c:6748
__schedule_loop kernel/sched/core.c:6825 [inline]
schedule+0x14b/0x320 kernel/sched/core.c:6840
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x6a4/0xd70 kernel/locking/mutex.c:752
linkwatch_event+0xe/0x60 net/core/link_watch.c:276
process_one_work kernel/workqueue.c:3248 [inline]
process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3329
worker_thread+0x86d/0xd50 kernel/workqueue.c:3409
kthread+0x2f0/0x390 kernel/kthread.c:389
ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
</TASK>
INFO: task syz.1.180:6291 blocked for more than 146 seconds.
Not tainted 6.10.0-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.1.180 state:D stack:23984 pid:6291 tgid:6289 ppid:6014 flags:0x00004006
Call Trace:
<TASK>
context_switch kernel/sched/core.c:5407 [inline]
__schedule+0x1800/0x4a60 kernel/sched/core.c:6748
__schedule_loop kernel/sched/core.c:6825 [inline]
schedule+0x14b/0x320 kernel/sched/core.c:6840
schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6897
__mutex_lock_common kernel/locking/mutex.c:684 [inline]
__mutex_lock+0x6a4/0xd70 kernel/locking/mutex.c:752
exp_funnel_lock kernel/rcu/tree_exp.h:323 [inline]
synchronize_rcu_expedited+0x451/0x830 kernel/rcu/tree_exp.h:939
dev_deactivate_many+0x4a7/0xb10 net/sched/sch_generic.c:1370
__dev_close_many+0x1a4/0x300 net/core/dev.c:1543
dev_close_many+0x24e/0x4c0 net/core/dev.c:1581
unregister_netdevice_many_notify+0x544/0x16b0 net/core/dev.c:11194
unregister_netdevice_many net/core/dev.c:11277 [inline]
default_device_exit_batch+0xa0f/0xa90 net/core/dev.c:11760
ops_exit_list net/core/net_namespace.c:178 [inline]
setup_net+0xa3b/0xca0 net/core/net_namespace.c:375
copy_net_ns+0x4e2/0x7b0 net/core/net_namespace.c:508
create_new_namespaces+0x425/0x7b0 kernel/nsproxy.c:110
unshare_nsproxy_namespaces+0x124/0x180 kernel/nsproxy.c:228
ksys_unshare+0x619/0xc10 kernel/fork.c:3323
__do_sys_unshare kernel/fork.c:3394 [inline]
__se_sys_unshare kernel/fork.c:3392 [inline]
__x64_sys_unshare+0x38/0x40 kernel/fork.c:3392
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f4703775bd9
RSP: 002b:00007f4704522048 EFLAGS: 00000246
ORIG_RAX: 0000000000000110
RAX: ffffffffffffffda RBX: 00007f4703903f60 RCX: 00007f4703775bd9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000060000000
RBP: 00007f47037e4e60 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000000b R14: 00007f4703903f60 R15: 00007f4703a2fa78
</TASK>
Showing all locks held in the system:
5 locks held by kworker/u8:1/12:
#0: ffff888015ed5948
((wq_completion)netns
){+.+.}-{0:0}
, at: process_one_work kernel/workqueue.c:3223 [inline]
, at: process_scheduled_works+0x90a/0x1830 kernel/workqueue.c:3329
#1:
ffffc90000117d00 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3224 [inline]
ffffc90000117d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 kernel/workqueue.c:3329
#2: ffffffff8f5ddfd0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 net/core/net_namespace.c:594
#3:
ffff88806b13c0e8
(
&dev->mutex
){....}-{3:3}
, at: device_lock include/linux/device.h:1009 [inline]
, at: devl_dev_lock net/devlink/devl_internal.h:108 [inline]
, at: devlink_pernet_pre_exit+0x13b/0x440 net/devlink/core.c:506
#4:
ffff88806b138250
(
&devlink->lock_key
#16){+.+.}-{3:3}
, at: devl_lock net/devlink/core.c:276 [inline]
, at: devl_dev_lock net/devlink/devl_internal.h:109 [inline]
, at: devlink_pernet_pre_exit+0x14d/0x440 net/devlink/core.c:506
1 lock held by khungtaskd/30:
#0:
ffffffff8e333f60
(
rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire include/linux/rcupdate.h:329 [inline]
rcu_read_lock){....}-{1:2}, at: rcu_read_lock include/linux/rcupdate.h:781 [inline]
rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 kernel/locking/lockdep.c:6614
9 locks held by kworker/1:1/45:
5 locks held by kworker/u8:3/51:
3 locks held by kworker/1:2/785:
3 locks held by kworker/u8:6/2466:
#0:
ffff88802a129948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3223 [inline]
ffff88802a129948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 kernel/workqueue.c:3329
#1:
ffffc90009307d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3224 [inline]
ffffc90009307d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 kernel/workqueue.c:3329
#2:
ffffffff8f5ea808
(rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 net/ipv6/addrconf.c:4193
2 locks held by getty/4848:
#0:
ffff88802f1590a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 drivers/tty/tty_ldisc.c:243
#1: ffffc90002f162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 drivers/tty/n_tty.c:2211
2 locks held by kworker/1:4/5139:
2 locks held by kworker/1:5/5140:
3 locks held by kworker/0:5/5141:
3 locks held by kworker/1:7/5155:
2 locks held by kworker/1:8/5157:
3 locks held by syz.1.180/6291:
#0:
ffffffff8f5ddfd0
(pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(rtnl_mutex
){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 net/core/dev.c:11746
#2: ffffffff8e339338 (rcu_state.exp_mutex){+.+.}-{3:3}, at: exp_funnel_lock kernel/rcu/tree_exp.h:291 [inline]
#2: ffffffff8e339338 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 kernel/rcu/tree_exp.h:939
2 locks held by syz-executor/6302:
#0: ffffffff8f5ddfd0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1: ffffffff8f5ea808 (rtnl_mutex){+.+.}-{3:3}, at: ppp_exit_net+0xe3/0x3d0 drivers/net/ppp/ppp_generic.c:1146
2 locks held by syz-executor/6309:
#0:
ffffffff8f5ddfd0
(
pernet_ops_rwsem
){++++}-{3:3}
, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(
rtnl_mutex
){+.+.}-{3:3}
, at: setup_net+0x83d/0xca0 net/core/net_namespace.c:365
2 locks held by syz-executor/6312:
#0:
ffffffff8f5ddfd0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1: ffffffff8f5ea808 (rtnl_mutex){+.+.}-{3:3}, at: wg_netns_pre_exit+0x1f/0x1e0 drivers/net/wireguard/device.c:414
2 locks held by syz-executor/6313:
#0: ffffffff8f5ddfd0
(pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_init_net+0x20e/0x710 net/ipv4/ip_tunnel.c:1159
2 locks held by syz-executor/6316:
#0: ffffffff8f5ddfd0
(pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_init_net+0x20e/0x710 net/ipv4/ip_tunnel.c:1159
2 locks held by syz-executor/6319:
#0:
ffffffff8f5ddfd0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(
rtnl_mutex
){+.+.}-{3:3}
, at: wg_netns_pre_exit+0x1f/0x1e0 drivers/net/wireguard/device.c:414
2 locks held by syz-executor/6325:
#0: ffffffff8f5ddfd0
(
pernet_ops_rwsem
){++++}-{3:3}
, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(
rtnl_mutex
){+.+.}-{3:3}
, at: ip_tunnel_init_net+0x20e/0x710 net/ipv4/ip_tunnel.c:1159
2 locks held by syz-executor/6327:
#0:
ffffffff8f5ddfd0
(pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1: ffffffff8f5ea808 (rtnl_mutex){+.+.}-{3:3}, at: wg_netns_pre_exit+0x1f/0x1e0 drivers/net/wireguard/device.c:414
2 locks held by syz-executor/6328:
#0: ffffffff8f5ddfd0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_init_net+0x20e/0x710 net/ipv4/ip_tunnel.c:1159
2 locks held by syz-executor/6337:
#0:
ffffffff8f5ddfd0
(
pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6340:
#0: ffffffff8f5ddfd0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(
rtnl_mutex
){+.+.}-{3:3}
, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6347:
#0:
ffffffff8f5ddfd0
(
pernet_ops_rwsem
){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1: ffffffff8f5ea808 (
rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6352:
#0:
ffffffff8f5ddfd0
(
pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(
rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6351:
#0: ffffffff8f5ddfd0
(
pernet_ops_rwsem
){++++}-{3:3}
, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1: ffffffff8f5ea808 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6357:
#0: ffffffff8f5ddfd0 (pernet_ops_rwsem){++++}-{3:3}
, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1: ffffffff8f5ea808
(rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6364:
#0: ffffffff8f5ddfd0 (
pernet_ops_rwsem){++++}-{3:3}
, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(rtnl_mutex
){+.+.}-{3:3}
, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6372:
#0:
ffffffff8f5ddfd0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1: ffffffff8f5ea808
(
rtnl_mutex
){+.+.}-{3:3}
, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6373:
#0:
ffffffff8f5ddfd0
(pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1:
ffffffff8f5ea808
(
rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6379:
#0: ffffffff8f5ddfd0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1: ffffffff8f5ea808 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
2 locks held by syz-executor/6392:
#0: ffffffff8f5ddfd0
(pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 net/core/net_namespace.c:504
#1: ffffffff8f5ea808 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 net/ipv4/nexthop.c:3871
=============================================
NMI backtrace for cpu 0
CPU: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
Call Trace:
<TASK>
__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114
nmi_cpu_backtrace+0x49c/0x4d0 lib/nmi_backtrace.c:113
nmi_trigger_cpumask_backtrace+0x198/0x320 lib/nmi_backtrace.c:62
trigger_all_cpu_backtrace include/linux/nmi.h:162 [inline]
check_hung_uninterruptible_tasks kernel/hung_task.c:223 [inline]
watchdog+0xfde/0x1020 kernel/hung_task.c:379
kthread+0x2f0/0x390 kernel/kthread.c:389
ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
</TASK>
Sending NMI from CPU 0 to CPUs 1:
yealink 5-1:36.0: urb_irq_callback - urb status -71
NMI backtrace for cpu 1
CPU: 1 PID: 5155 Comm: kworker/1:7 Not tainted 6.10.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
Workqueue: events kfree_rcu_monitor
RIP: 0010:io_serial_in+0x76/0xb0 drivers/tty/serial/8250/8250_port.c:406
Code: 60 f3 59 fc 89 e9 41 d3 e6 48 83 c3 40 48 89 d8 48 c1 e8 03 42 80 3c 38 00 74 08 48 89 df e8 31 b9 bf fc 44 03 33 44 89 f2 ec <0f> b6 c0 5b 41 5e 41 5f 5d c3 cc cc cc cc 89 e9 80 e1 07 38 c1 7c
RSP: 0018:ffffc90000a17438 EFLAGS: 00000002
RAX: 1ffffffff295a500 RBX: ffffffff94ad2f00 RCX: 0000000000000000
RDX: 00000000000003fd RSI: 0000000000000000 RDI: 0000000000000020
RBP: 0000000000000000 R08: ffffffff853c3636 R09: 1ffff11003ed5046
R10: dffffc0000000000 R11: ffffffff853c35f0 R12: dffffc0000000000
R13: 000000000000263a R14: 00000000000003fd R15: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000110c3912b9 CR3: 000000000e132000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<NMI>
</NMI>
<IRQ>
serial_in drivers/tty/serial/8250/8250.h:117 [inline]
serial_lsr_in drivers/tty/serial/8250/8250.h:139 [inline]
wait_for_lsr drivers/tty/serial/8250/8250_port.c:2068 [inline]
serial8250_console_fifo_write drivers/tty/serial/8250/8250_port.c:3315 [inline]
serial8250_console_write+0x1099/0x1770 drivers/tty/serial/8250/8250_port.c:3393
console_emit_next_record kernel/printk/printk.c:2913 [inline]
console_flush_all+0x865/0xfd0 kernel/printk/printk.c:2979
console_unlock+0x13b/0x4d0 kernel/printk/printk.c:3048
vprintk_emit+0x5a6/0x770 kernel/printk/printk.c:2348
dev_vprintk_emit+0x2ae/0x330 drivers/base/core.c:4909
dev_printk_emit+0xdd/0x120 drivers/base/core.c:4920
_dev_err+0x122/0x170 drivers/base/core.c:4975
urb_irq_callback+0x37e/0x5b0 drivers/input/misc/yealink.c:416
__usb_hcd_giveback_urb+0x42c/0x6e0 drivers/usb/core/hcd.c:1650
dummy_timer+0x830/0x45d0 drivers/usb/gadget/udc/dummy_hcd.c:1987
__run_hrtimer kernel/time/hrtimer.c:1689 [inline]
__hrtimer_run_queues+0x59b/0xd50 kernel/time/hrtimer.c:1753
hrtimer_interrupt+0x396/0x990 kernel/time/hrtimer.c:1815
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1032 [inline]
__sysvec_apic_timer_interrupt+0x110/0x3f0 arch/x86/kernel/apic/apic.c:1049
instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline]
sysvec_apic_timer_interrupt+0x52/0xc0 arch/x86/kernel/apic/apic.c:1043
asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:check_kcov_mode kernel/kcov.c:173 [inline]
RIP: 0010:__sanitizer_cov_trace_pc+0x28/0x70 kernel/kcov.c:207
Code: 90 90 f3 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 c0 d4 03 00 65 8b 15 10 ab 6d 7e f7 c2 00 01 ff 00 74 11 f7 c2 00 01 00 00 74 35 <83> b9 1c 16 00 00 00 74 2c 8b 91 f8 15 00 00 83 fa 02 75 21 48 8b
RSP: 0018:ffffc90000a18518 EFLAGS: 00000206
RAX: ffffffff81410e4b RBX: ffffc90000a19000 RCX: ffff88801ab68000
RDX: 0000000080000101 RSI: ffffc90000a185f8 RDI: ffffc90000a18660
RBP: ffffc90000a18660 R08: ffffffff81410de5 R09: ffffffff8141095f
R10: 0000000000000003 R11: ffff88801ab68000 R12: ffffc90000a18660
R13: dffffc0000000000 R14: ffffc90000a11000 R15: ffffc90000a18668
unwind_next_frame+0x1e5b/0x2a00 arch/x86/kernel/unwind_orc.c:665
__unwind_start+0x641/0x7c0 arch/x86/kernel/unwind_orc.c:760
unwind_start arch/x86/include/asm/unwind.h:64 [inline]
arch_stack_walk+0x103/0x1b0 arch/x86/kernel/stacktrace.c:24
stack_trace_save+0x118/0x1d0 kernel/stacktrace.c:122
kasan_save_stack mm/kasan/common.c:47 [inline]
kasan_save_track+0x3f/0x80 mm/kasan/common.c:68
kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579
poison_slab_object+0xe0/0x150 mm/kasan/common.c:240
__kasan_slab_free+0x37/0x60 mm/kasan/common.c:256
kasan_slab_free include/linux/kasan.h:184 [inline]
slab_free_hook mm/slub.c:2196 [inline]
slab_free mm/slub.c:4438 [inline]
kmem_cache_free+0x145/0x350 mm/slub.c:4513
skb_kfree_head net/core/skbuff.c:1067 [inline]
skb_free_head net/core/skbuff.c:1081 [inline]
skb_release_data+0x64d/0x880 net/core/skbuff.c:1108
skb_release_all net/core/skbuff.c:1173 [inline]
__kfree_skb net/core/skbuff.c:1187 [inline]
consume_skb+0xb1/0x160 net/core/skbuff.c:1409
mac80211_hwsim_beacon_tx+0x3bf/0x850 drivers/net/wireless/virtual/mac80211_hwsim.c:2306
__iterate_interfaces+0x223/0x4c0 net/mac80211/util.c:772
ieee80211_iterate_active_interfaces_atomic+0xd8/0x170 net/mac80211/util.c:808
mac80211_hwsim_beacon+0xd4/0x1f0 drivers/net/wireless/virtual/mac80211_hwsim.c:2336
__run_hrtimer kernel/time/hrtimer.c:1689 [inline]
__hrtimer_run_queues+0x59b/0xd50 kernel/time/hrtimer.c:1753
hrtimer_run_softirq+0x19a/0x2c0 kernel/time/hrtimer.c:1770
handle_softirqs+0x2c4/0x970 kernel/softirq.c:554
__do_softirq kernel/softirq.c:588 [inline]
invoke_softirq kernel/softirq.c:428 [inline]
__irq_exit_rcu+0xf4/0x1c0 kernel/softirq.c:637
irq_exit_rcu+0x9/0x30 kernel/softirq.c:649
instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline]
sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1043
</IRQ>
<TASK>
asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:__unwind_start+0x65f/0x7c0
Code: b7 03 55 00 4c 89 f7 e8 ff c9 ff ff 48 b8 00 00 00 00 00 fc ff df 0f b6 44 05 00 84 c0 75 10 41 83 3e 00 74 3c e8 91 03 55 00 <e9> 26 ff ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 7c e3 4c 89 f7 e8
RSP: 0018:ffffc900044a74f8 EFLAGS: 00000293
RAX: ffffffff8141260f RBX: ffffc900044a74f8 RCX: ffff88801ab68000
RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
RBP: 1ffff92000894eac R08: ffffffff81410e65 R09: ffffffff8141095f
R10: 0000000000000003 R11: ffff88801ab68000 R12: ffffc900044a75f8
R13: ffffc900044a7570 R14: ffffc900044a7560 R15: ffffc900044a7568
unwind_start arch/x86/include/asm/unwind.h:64 [inline]
arch_stack_walk+0x103/0x1b0 arch/x86/kernel/stacktrace.c:24
stack_trace_save+0x118/0x1d0 kernel/stacktrace.c:122
kasan_save_stack mm/kasan/common.c:47 [inline]
kasan_save_track+0x3f/0x80 mm/kasan/common.c:68
kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579
poison_slab_object+0xe0/0x150 mm/kasan/common.c:240
__kasan_slab_free+0x37/0x60 mm/kasan/common.c:256
kasan_slab_free include/linux/kasan.h:184 [inline]
slab_free_hook mm/slub.c:2196 [inline]
slab_free_freelist_hook mm/slub.c:2225 [inline]
slab_free_bulk mm/slub.c:4462 [inline]
kmem_cache_free_bulk+0x1f8/0x370 mm/slub.c:4676
kfree_bulk include/linux/slab.h:568 [inline]
kvfree_rcu_bulk+0x24b/0x4e0 kernel/rcu/tree.c:3371
kvfree_rcu_drain_ready kernel/rcu/tree.c:3545 [inline]
kfree_rcu_monitor+0x8a4/0x1020 kernel/rcu/tree.c:3563
process_one_work kernel/workqueue.c:3248 [inline]
process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3329
worker_thread+0x86d/0xd50 kernel/workqueue.c:3409
kthread+0x2f0/0x390 kernel/kthread.c:389
ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
</TASK>
yealink 5-1:36.0: unexpected response 0
yealink 5-1:36.0: urb_ctl_callback - urb status -71
yealink 5-1:36.0: urb_irq_callback - urb status -71
yealink 5-1:36.0: unexpected response 0
yealink 5-1:36.0: urb_ctl_callback - urb status -71
yealink 5-1:36.0: urb_irq_callback - urb status -71
yealink 5-1:36.0: unexpected response 0
yealink 5-1:36.0: urb_ctl_callback - urb status -71