./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3196773754 <...> Warning: Permanently added '10.128.10.47' (ED25519) to the list of known hosts. execve("./syz-executor3196773754", ["./syz-executor3196773754"], 0x7fff0280cc50 /* 10 vars */) = 0 brk(NULL) = 0x555556a5e000 brk(0x555556a5ed00) = 0x555556a5ed00 arch_prctl(ARCH_SET_FS, 0x555556a5e380) = 0 set_tid_address(0x555556a5e650) = 5015 set_robust_list(0x555556a5e660, 24) = 0 rseq(0x555556a5eca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3196773754", 4096) = 28 getrandom("\xb1\xe1\xb7\x10\x04\x7f\xe4\x93", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555556a5ed00 brk(0x555556a7fd00) = 0x555556a7fd00 brk(0x555556a80000) = 0x555556a80000 mprotect(0x7f8cef79b000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 mkdir("./syzkaller.uWyI5b", 0700) = 0 chmod("./syzkaller.uWyI5b", 0777) = 0 chdir("./syzkaller.uWyI5b") = 0 mkdir("./0", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5016 attached [pid 5016] set_robust_list(0x555556a5e660, 24) = 0 [pid 5016] chdir("./0") = 0 [pid 5016] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5016] setpgid(0, 0) = 0 [pid 5016] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5015] <... clone resumed>, child_tidptr=0x555556a5e650) = 5016 [pid 5016] <... openat resumed>) = 3 [pid 5016] write(3, "1000", 4) = 4 [pid 5016] close(3) = 0 [pid 5016] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5016] memfd_create("syzkaller", 0) = 3 [pid 5016] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f8ce72e8000 [pid 5016] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 5016] munmap(0x7f8ce72e8000, 1048576) = 0 [pid 5016] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5016] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5016] close(3) = 0 [pid 5016] mkdir("./file0", 0777) = 0 [ 54.370946][ T5016] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5016 'syz-executor319' [ 54.400624][ T5016] loop0: detected capacity change from 0 to 2048 [pid 5016] mount("/dev/loop0", "./file0", "nilfs2", MS_NOEXEC|MS_NODIRATIME, "") = 0 [pid 5016] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5016] chdir("./file0") = 0 [pid 5016] ioctl(4, LOOP_CLR_FD) = 0 [pid 5016] close(4) = 0 [pid 5016] openat(AT_FDCWD, ".", O_RDONLY) = 4 [pid 5016] mkdirat(4, "./bus", 000) = 0 [pid 5016] renameat2(4, "./file0", 4, "./bus", 0) = 0 [pid 5016] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5 [pid 5016] fcntl(5, F_SETFL, O_RDONLY|O_NOFOLLOW|O_DIRECTORY) = 0 [pid 5016] dup(5) = 6 [pid 5016] pwritev2(6, [{iov_base="\xda\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=131072}], 1, 16777216, 0) = 131072 [ 54.422369][ T5018] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [pid 5016] sendfile(6, 5, NULL, 142606240) = 16908288 [pid 5016] exit_group(0) = ? [pid 5016] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5016, si_uid=0, si_status=0, si_utime=0, si_stime=171 /* 1.71 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x555556a5f6f0 /* 4 entries */, 32768) = 112 umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./0/binderfs") = 0 [ 56.327944][ T5015] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 61.406691][ C0] ================================================================== [ 61.414971][ C0] BUG: KASAN: slab-use-after-free in __lock_acquire+0x11c/0x7f70 [ 61.422740][ C0] Read of size 8 at addr ffff8880292e0a00 by task swapper/0/0 [ 61.430303][ C0] [ 61.432707][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.5.0-rc4-syzkaller-00245-gf6a691685962 #0 [ 61.442442][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 61.452760][ C0] Call Trace: [ 61.456027][ C0] [ 61.458906][ C0] dump_stack_lvl+0x1e7/0x2d0 [ 61.463665][ C0] ? irq_work_queue+0xca/0x150 [ 61.468429][ C0] ? nf_tcp_handle_invalid+0x650/0x650 [ 61.473918][ C0] ? panic+0x770/0x770 [ 61.478010][ C0] ? _printk+0xd5/0x120 [ 61.482353][ C0] print_report+0x163/0x540 [ 61.486870][ C0] ? __virt_addr_valid+0x22f/0x2e0 [ 61.492003][ C0] ? __phys_addr+0xba/0x170 [ 61.496536][ C0] ? __lock_acquire+0x11c/0x7f70 [ 61.501566][ C0] kasan_report+0x175/0x1b0 [ 61.506658][ C0] ? __lock_acquire+0x11c/0x7f70 [ 61.511678][ C0] ? mark_lock_irq+0x6e4/0xba0 [ 61.516600][ C0] __lock_acquire+0x11c/0x7f70 [ 61.522119][ C0] ? save_trace+0xb40/0xb40 [ 61.527864][ C0] ? stack_trace_snprint+0xf0/0xf0 [ 61.534634][ C0] ? lockdep_lock+0x123/0x2b0 [ 61.539429][ C0] ? verify_lock_unused+0x140/0x140 [ 61.544819][ C0] ? lockdep_unlock+0x169/0x300 [ 61.549910][ C0] ? lockdep_lock+0x2b0/0x2b0 [ 61.554674][ C0] ? mark_lock+0x9a/0x340 [ 61.559512][ C0] ? _find_first_zero_bit+0xd4/0x100 [ 61.565054][ C0] ? __lock_acquire+0x3683/0x7f70 [ 61.570194][ C0] lock_acquire+0x1e3/0x520 [ 61.574890][ C0] ? try_to_wake_up+0xb2/0x1160 [ 61.579840][ C0] ? verify_lock_unused+0x140/0x140 [ 61.585117][ C0] ? read_lock_is_recursive+0x20/0x20 [ 61.590495][ C0] ? verify_lock_unused+0x140/0x140 [ 61.595815][ C0] ? __lock_acquire+0x1345/0x7f70 [ 61.601032][ C0] _raw_spin_lock_irqsave+0xd5/0x120 [ 61.606409][ C0] ? try_to_wake_up+0xb2/0x1160 [ 61.611260][ C0] ? _raw_spin_lock+0x40/0x40 [ 61.616181][ C0] try_to_wake_up+0xb2/0x1160 [ 61.621094][ C0] ? read_lock_is_recursive+0x20/0x20 [ 61.626477][ C0] ? cpu_curr_snapshot+0xd0/0xd0 [ 61.631420][ C0] ? call_timer_fn+0xb1/0x580 [ 61.636182][ C0] call_timer_fn+0x178/0x580 [ 61.640850][ C0] ? nilfs_iput_work_func+0x70/0x70 [ 61.646382][ C0] ? __run_timers+0x860/0x860 [ 61.651136][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 61.656864][ C0] ? nilfs_iput_work_func+0x70/0x70 [ 61.662158][ C0] ? lockdep_hardirqs_on+0x98/0x140 [ 61.667459][ C0] ? nilfs_iput_work_func+0x70/0x70 [ 61.672740][ C0] __run_timers+0x64f/0x860 [ 61.677685][ C0] ? detach_timer+0x2f0/0x2f0 [ 61.682900][ C0] ? print_irqtrace_events+0x220/0x220 [ 61.688816][ C0] ? do_raw_spin_unlock+0x13b/0x8b0 [ 61.694709][ C0] run_timer_softirq+0x67/0xf0 [ 61.699866][ C0] __do_softirq+0x2ab/0x908 [ 61.704480][ C0] ? ktime_get+0x246/0x270 [ 61.709096][ C0] ? __irq_exit_rcu+0xf1/0x1b0 [ 61.713974][ C0] ? __lock_text_end+0xc/0xc [ 61.718643][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 61.724284][ C0] __irq_exit_rcu+0xf1/0x1b0 [ 61.728890][ C0] ? irq_exit_rcu+0x20/0x20 [ 61.733530][ C0] irq_exit_rcu+0x9/0x20 [ 61.737778][ C0] sysvec_apic_timer_interrupt+0x95/0xb0 [ 61.743422][ C0] [ 61.746357][ C0] [ 61.749463][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 61.755460][ C0] RIP: 0010:acpi_safe_halt+0x20/0x30 [ 61.761031][ C0] Code: 7f 04 eb 36 66 0f 1f 44 00 00 65 48 8b 05 d8 13 47 75 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 46 75 a5 00 f3 0f 1e fa fb f4 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 89 fa ec 48 8b 05 [ 61.781594][ C0] RSP: 0018:ffffffff8d007ca8 EFLAGS: 00000246 [ 61.787848][ C0] RAX: ffffffff8d0944c0 RBX: ffff888014667864 RCX: 0000000000011c49 [ 61.796062][ C0] RDX: 0000000000000001 RSI: ffff888014667800 RDI: ffff888014667864 [ 61.804212][ C0] RBP: 0000000000038a68 R08: ffff8880b9836a8b R09: 1ffff11017306d51 [ 61.812185][ C0] R10: dffffc0000000000 R11: ffffed1017306d52 R12: ffff888140a8b000 [ 61.820235][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8da118a0 [ 61.829789][ C0] acpi_idle_enter+0xe4/0x140 [ 61.834486][ C0] cpuidle_enter_state+0x10e/0x470 [ 61.839781][ C0] ? menu_enable_device+0x380/0x380 [ 61.845055][ C0] cpuidle_enter+0x5d/0x90 [ 61.849458][ C0] do_idle+0x374/0x5c0 [ 61.853511][ C0] ? release_firmware_map_entry+0x190/0x190 [ 61.859382][ C0] ? idle_inject_timer_fn+0x60/0x60 [ 61.864659][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 61.870709][ C0] ? _raw_spin_unlock+0x40/0x40 [ 61.875574][ C0] cpu_startup_entry+0x18/0x20 [ 61.880525][ C0] rest_init+0x295/0x2b0 [ 61.887726][ C0] ? time_init+0x40/0x40 [ 61.892092][ C0] arch_call_rest_init+0xe/0x10 [ 61.896954][ C0] start_kernel+0x46e/0x4f0 [ 61.901629][ C0] x86_64_start_reservations+0x2a/0x30 [ 61.907280][ C0] x86_64_start_kernel+0x99/0xa0 [ 61.912309][ C0] secondary_startup_64_no_verify+0x168/0x16b [ 61.918458][ C0] [ 61.921483][ C0] [ 61.923888][ C0] Allocated by task 2: [ 61.929013][ C0] kasan_set_track+0x4f/0x70 [ 61.935086][ C0] __kasan_slab_alloc+0x66/0x70 [ 61.940032][ C0] slab_post_alloc_hook+0x6c/0x3b0 [ 61.945446][ C0] kmem_cache_alloc_node+0x149/0x330 [ 61.950820][ C0] dup_task_struct+0x57/0x7d0 [ 61.955478][ C0] copy_process+0x5c8/0x4290 [ 61.960048][ C0] kernel_clone+0x222/0x800 [ 61.964585][ C0] kernel_thread+0x1bc/0x230 [ 61.969348][ C0] kthreadd+0x600/0x820 [ 61.973489][ C0] ret_from_fork+0x2e/0x60 [ 61.977899][ C0] ret_from_fork_asm+0x11/0x20 [ 61.982730][ C0] [ 61.985045][ C0] Freed by task 0: [ 61.988746][ C0] kasan_set_track+0x4f/0x70 [ 61.993405][ C0] kasan_save_free_info+0x28/0x40 [ 61.998435][ C0] ____kasan_slab_free+0xd6/0x120 [ 62.003460][ C0] kmem_cache_free+0x292/0x500 [ 62.008210][ C0] rcu_core+0xaaa/0x1740 [ 62.012434][ C0] __do_softirq+0x2ab/0x908 [ 62.017022][ C0] [ 62.019330][ C0] Last potentially related work creation: [ 62.025367][ C0] kasan_save_stack+0x3f/0x60 [ 62.030190][ C0] __kasan_record_aux_stack+0xad/0xc0 [ 62.035567][ C0] call_rcu+0x167/0xa70 [ 62.040021][ C0] __schedule+0x187b/0x48f0 [ 62.044664][ C0] schedule_idle+0x52/0x90 [ 62.049460][ C0] do_idle+0x565/0x5c0 [ 62.053635][ C0] cpu_startup_entry+0x18/0x20 [ 62.058408][ C0] start_secondary+0xee/0xf0 [ 62.063321][ C0] secondary_startup_64_no_verify+0x168/0x16b [ 62.069406][ C0] [ 62.071738][ C0] Second to last potentially related work creation: [ 62.078423][ C0] kasan_save_stack+0x3f/0x60 [ 62.083098][ C0] __kasan_record_aux_stack+0xad/0xc0 [ 62.088474][ C0] call_rcu+0x167/0xa70 [ 62.092724][ C0] release_task+0x15ad/0x16f0 [ 62.097415][ C0] wait_consider_task+0x1a43/0x2e20 [ 62.102844][ C0] do_wait+0x312/0xb00 [ 62.106941][ C0] kernel_wait4+0x2a2/0x3e0 [ 62.111432][ C0] __x64_sys_wait4+0x134/0x1e0 [ 62.116214][ C0] do_syscall_64+0x41/0xc0 [ 62.120702][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 62.126699][ C0] [ 62.129032][ C0] The buggy address belongs to the object at ffff8880292e0000 [ 62.129032][ C0] which belongs to the cache task_struct of size 7360 [ 62.143277][ C0] The buggy address is located 2560 bytes inside of [ 62.143277][ C0] freed 7360-byte region [ffff8880292e0000, ffff8880292e1cc0) [ 62.157318][ C0] [ 62.159641][ C0] The buggy address belongs to the physical page: [ 62.166126][ C0] page:ffffea0000a4b800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x292e0 [ 62.176358][ C0] head:ffffea0000a4b800 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 62.185820][ C0] anon flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 62.194318][ C0] page_type: 0xffffffff() [ 62.198811][ C0] raw: 00fff00000010200 ffff888014674500 0000000000000000 dead000000000001 [ 62.207381][ C0] raw: 0000000000000000 0000000080040004 00000001ffffffff 0000000000000000 [ 62.216903][ C0] page dumped because: kasan: bad access detected [ 62.224358][ C0] page_owner tracks the page as allocated [ 62.230644][ C0] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 42, tgid 42 (kworker/u4:3), ts 11105890887, free_ts 0 [ 62.254196][ C0] post_alloc_hook+0x1e6/0x210 [ 62.259191][ C0] get_page_from_freelist+0x31e8/0x3370 [ 62.265415][ C0] __alloc_pages+0x255/0x670 [ 62.270442][ C0] alloc_slab_page+0x6a/0x160 [ 62.275197][ C0] new_slab+0x84/0x2f0 [ 62.279242][ C0] ___slab_alloc+0xade/0x1100 [ 62.283966][ C0] kmem_cache_alloc_node+0x1e2/0x330 [ 62.289361][ C0] dup_task_struct+0x57/0x7d0 [ 62.294395][ C0] copy_process+0x5c8/0x4290 [ 62.298985][ C0] kernel_clone+0x222/0x800 [ 62.303568][ C0] user_mode_thread+0x132/0x190 [ 62.308438][ C0] call_usermodehelper_exec_work+0x5c/0x220 [ 62.314684][ C0] process_one_work+0x92c/0x12c0 [ 62.319610][ C0] worker_thread+0xa63/0x1210 [ 62.324266][ C0] kthread+0x2b8/0x350 [ 62.328320][ C0] ret_from_fork+0x2e/0x60 [ 62.332896][ C0] page_owner free stack trace missing [ 62.338256][ C0] [ 62.340557][ C0] Memory state around the buggy address: [ 62.346315][ C0] ffff8880292e0900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 62.354899][ C0] ffff8880292e0980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 62.362980][ C0] >ffff8880292e0a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 62.371029][ C0] ^ [ 62.375191][ C0] ffff8880292e0a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 62.383444][ C0] ffff8880292e0b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 62.391685][ C0] ================================================================== [ 62.400269][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 62.407626][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.5.0-rc4-syzkaller-00245-gf6a691685962 #0 [ 62.417264][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 62.427514][ C0] Call Trace: [ 62.430839][ C0] [ 62.433785][ C0] dump_stack_lvl+0x1e7/0x2d0 [ 62.438475][ C0] ? nf_tcp_handle_invalid+0x650/0x650 [ 62.443938][ C0] ? panic+0x770/0x770 [ 62.448003][ C0] ? lock_release+0xbf/0x9d0 [ 62.452691][ C0] ? vscnprintf+0x5d/0x80 [ 62.457059][ C0] panic+0x30f/0x770 [ 62.461071][ C0] ? check_panic_on_warn+0x21/0xa0 [ 62.466207][ C0] ? __memcpy_flushcache+0x2b0/0x2b0 [ 62.471481][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 62.477490][ C0] ? _raw_spin_unlock+0x40/0x40 [ 62.482689][ C0] ? print_report+0x4fb/0x540 [ 62.487461][ C0] check_panic_on_warn+0x82/0xa0 [ 62.492504][ C0] ? __lock_acquire+0x11c/0x7f70 [ 62.497431][ C0] end_report+0x6e/0x130 [ 62.501781][ C0] kasan_report+0x186/0x1b0 [ 62.507255][ C0] ? __lock_acquire+0x11c/0x7f70 [ 62.512208][ C0] ? mark_lock_irq+0x6e4/0xba0 [ 62.516972][ C0] __lock_acquire+0x11c/0x7f70 [ 62.527655][ C0] ? save_trace+0xb40/0xb40 [ 62.533281][ C0] ? stack_trace_snprint+0xf0/0xf0 [ 62.538429][ C0] ? lockdep_lock+0x123/0x2b0 [ 62.543618][ C0] ? verify_lock_unused+0x140/0x140 [ 62.549424][ C0] ? lockdep_unlock+0x169/0x300 [ 62.554284][ C0] ? lockdep_lock+0x2b0/0x2b0 [ 62.558995][ C0] ? mark_lock+0x9a/0x340 [ 62.563844][ C0] ? _find_first_zero_bit+0xd4/0x100 [ 62.569213][ C0] ? __lock_acquire+0x3683/0x7f70 [ 62.574243][ C0] lock_acquire+0x1e3/0x520 [ 62.579166][ C0] ? try_to_wake_up+0xb2/0x1160 [ 62.584085][ C0] ? verify_lock_unused+0x140/0x140 [ 62.589332][ C0] ? read_lock_is_recursive+0x20/0x20 [ 62.594690][ C0] ? verify_lock_unused+0x140/0x140 [ 62.607722][ C0] ? __lock_acquire+0x1345/0x7f70 [ 62.612844][ C0] _raw_spin_lock_irqsave+0xd5/0x120 [ 62.618645][ C0] ? try_to_wake_up+0xb2/0x1160 [ 62.623496][ C0] ? _raw_spin_lock+0x40/0x40 [ 62.628182][ C0] try_to_wake_up+0xb2/0x1160 [ 62.632973][ C0] ? read_lock_is_recursive+0x20/0x20 [ 62.638350][ C0] ? cpu_curr_snapshot+0xd0/0xd0 [ 62.644349][ C0] ? call_timer_fn+0xb1/0x580 [ 62.649256][ C0] call_timer_fn+0x178/0x580 [ 62.654557][ C0] ? nilfs_iput_work_func+0x70/0x70 [ 62.659907][ C0] ? __run_timers+0x860/0x860 [ 62.664637][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 62.670026][ C0] ? nilfs_iput_work_func+0x70/0x70 [ 62.675322][ C0] ? lockdep_hardirqs_on+0x98/0x140 [ 62.680538][ C0] ? nilfs_iput_work_func+0x70/0x70 [ 62.686013][ C0] __run_timers+0x64f/0x860 [ 62.690664][ C0] ? detach_timer+0x2f0/0x2f0 [ 62.695614][ C0] ? print_irqtrace_events+0x220/0x220 [ 62.701147][ C0] ? do_raw_spin_unlock+0x13b/0x8b0 [ 62.706768][ C0] run_timer_softirq+0x67/0xf0 [ 62.711904][ C0] __do_softirq+0x2ab/0x908 [ 62.716438][ C0] ? ktime_get+0x246/0x270 [ 62.721046][ C0] ? __irq_exit_rcu+0xf1/0x1b0 [ 62.726209][ C0] ? __lock_text_end+0xc/0xc [ 62.730912][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 62.736124][ C0] __irq_exit_rcu+0xf1/0x1b0 [ 62.740712][ C0] ? irq_exit_rcu+0x20/0x20 [ 62.745479][ C0] irq_exit_rcu+0x9/0x20 [ 62.750164][ C0] sysvec_apic_timer_interrupt+0x95/0xb0 [ 62.756538][ C0] [ 62.759721][ C0] [ 62.762734][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 62.768814][ C0] RIP: 0010:acpi_safe_halt+0x20/0x30 [ 62.774170][ C0] Code: 7f 04 eb 36 66 0f 1f 44 00 00 65 48 8b 05 d8 13 47 75 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 46 75 a5 00 f3 0f 1e fa fb f4 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 89 fa ec 48 8b 05 [ 62.793783][ C0] RSP: 0018:ffffffff8d007ca8 EFLAGS: 00000246 [ 62.800043][ C0] RAX: ffffffff8d0944c0 RBX: ffff888014667864 RCX: 0000000000011c49 [ 62.808137][ C0] RDX: 0000000000000001 RSI: ffff888014667800 RDI: ffff888014667864 [ 62.816612][ C0] RBP: 0000000000038a68 R08: ffff8880b9836a8b R09: 1ffff11017306d51 [ 62.825556][ C0] R10: dffffc0000000000 R11: ffffed1017306d52 R12: ffff888140a8b000 [ 62.833650][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff8da118a0 [ 62.841720][ C0] acpi_idle_enter+0xe4/0x140 [ 62.846577][ C0] cpuidle_enter_state+0x10e/0x470 [ 62.851782][ C0] ? menu_enable_device+0x380/0x380 [ 62.856983][ C0] cpuidle_enter+0x5d/0x90 [ 62.861693][ C0] do_idle+0x374/0x5c0 [ 62.865757][ C0] ? release_firmware_map_entry+0x190/0x190 [ 62.871741][ C0] ? idle_inject_timer_fn+0x60/0x60 [ 62.876963][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 62.883132][ C0] ? _raw_spin_unlock+0x40/0x40 [ 62.888691][ C0] cpu_startup_entry+0x18/0x20 [ 62.893798][ C0] rest_init+0x295/0x2b0 [ 62.898422][ C0] ? time_init+0x40/0x40 [ 62.902655][ C0] arch_call_rest_init+0xe/0x10 [ 62.908298][ C0] start_kernel+0x46e/0x4f0 [ 62.913579][ C0] x86_64_start_reservations+0x2a/0x30 [ 62.919056][ C0] x86_64_start_kernel+0x99/0xa0 [ 62.924130][ C0] secondary_startup_64_no_verify+0x168/0x16b [ 62.930453][ C0] [ 62.933897][ C0] Kernel Offset: disabled [ 62.938344][ C0] Rebooting in 86400 seconds..