IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready 8021q: adding VLAN 0 to HW filter on device batadv0 ================================================================== list_add corruption. next->prev should be prev (ffff8880ae72d8d8), but was 0000000041b58ab3. (next=ffff8880a94c84f0). BUG: KASAN: stack-out-of-bounds in debug_lockdep_rcu_enabled.part.0+0x50/0x60 kernel/rcu/update.c:249 ------------[ cut here ]------------ Read of size 4 at addr ffff8880a94c8cbc by task è¤<‰ÿÿÿÿ0kÿÿÿÿÈ‹L©€ˆÿÿ^9hÿÿÿÿ³ŠµA/-2123883558 kernel BUG at lib/list_debug.c:23! invalid opcode: 0000 [#1] PREEMPT SMP KASAN CPU: 1 PID: -2123883558 Comm: ÿO2ñÿÿÿýO2ñÿûÿÿ Not tainted 5.0.0-rc1+ #14 CPU: 0 PID: 9 Comm: ksoftirqd/0 Not tainted 5.0.0-rc1+ #14 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: RIP: 0010:__list_add_valid.cold+0xf/0x3c lib/list_debug.c:23 Code: 34 fe eb d5 4c 89 e7 e8 da fe 34 fe eb a3 4c 89 f7 e8 d0 fe 34 fe e9 56 ff ff ff 4c 89 e1 48 c7 c7 20 b0 81 88 e8 c0 54 d7 fd <0f> 0b 48 89 f2 4c 89 e1 4c 89 ee 48 c7 c7 60 b1 81 88 e8 a9 54 d7 Allocated by task 0: RSP: 0018:ffff8880a947f218 EFLAGS: 00010082 save_stack+0x45/0xd0 mm/kasan/common.c:73 RAX: 0000000000000075 RBX: ffff8880ae72cec0 RCX: 0000000000000000 set_track mm/kasan/common.c:85 [inline] kasan_kmalloc mm/kasan/common.c:482 [inline] kasan_kmalloc+0xcf/0xe0 mm/kasan/common.c:455 RDX: 0000000000000000 RSI: ffffffff81684ce6 RDI: ffffed101528fe35 __do_kmalloc_node mm/slab.c:3671 [inline] __kmalloc_node+0x4e/0x70 mm/slab.c:3678 RBP: ffff8880a947f230 R08: 0000000000000075 R09: ffffed1015cc5021 kmalloc_node include/linux/slab.h:588 [inline] alloc_arraycache mm/slab.c:575 [inline] setup_kmem_cache_node+0x12a/0x420 mm/slab.c:916 R10: ffffed1015cc5020 R11: ffff8880ae628107 R12: ffff8880a94c84f0 setup_kmem_cache_nodes mm/slab.c:3819 [inline] __do_tune_cpucache+0x161/0x220 mm/slab.c:3889 do_tune_cpucache+0x25/0xd0 mm/slab.c:3898 R13: ffff8880a9472330 R14: ffff8880a947f2b8 R15: ffff8880a9472330 enable_cpucache+0x3e/0xd0 mm/slab.c:3979 FS: 0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 setup_cpu_cache+0xd4/0x1e0 mm/slab.c:1821 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 __kmem_cache_create+0x1bb/0x270 mm/slab.c:2134 create_cache+0xd4/0x200 mm/slab_common.c:391 CR2: 00000000080f8aec CR3: 000000009789e000 CR4: 00000000001406f0 kmem_cache_create_usercopy+0x1a5/0x260 mm/slab_common.c:489 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 kmem_cache_create+0x11/0x20 mm/slab_common.c:548 acpi_os_create_cache+0x2c/0x70 drivers/acpi/osl.c:1630 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 acpi_ut_create_caches+0xfc/0x10b drivers/acpi/acpica/utalloc.c:104 Call Trace: acpi_ut_init_globals+0x15/0xbcd drivers/acpi/acpica/utinit.c:94 acpi_initialize_subsystem+0x82/0x155 drivers/acpi/acpica/utxfinit.c:57 __list_add include/linux/list.h:60 [inline] list_add include/linux/list.h:79 [inline] account_entity_enqueue+0x3a0/0x660 kernel/sched/fair.c:2678 acpi_early_init+0x170/0x44f drivers/acpi/bus.c:1050 start_kernel+0x795/0x8bd init/main.c:702 x86_64_start_reservations+0x29/0x2b arch/x86/kernel/head64.c:470 x86_64_start_kernel+0x77/0x7b arch/x86/kernel/head64.c:451 enqueue_entity+0x276/0x20b0 kernel/sched/fair.c:3902 secondary_startup_64+0xa4/0xb0 arch/x86/kernel/head_64.S:243 Freed by task 2830891840: ------------[ cut here ]------------ Bad or missing usercopy whitelist? Kernel memory overwrite attempt detected to SLAB object 'task_struct' (offset 600, size 1)! ------------[ cut here ]------------ kernel BUG at mm/slab.c:4412! enqueue_task_fair+0x237/0x10c0 kernel/sched/fair.c:5133 enqueue_task kernel/sched/core.c:730 [inline] activate_task+0x11d/0x470 kernel/sched/core.c:751 ttwu_activate kernel/sched/core.c:1643 [inline] ttwu_do_activate+0xd4/0x1f0 kernel/sched/core.c:1702 ttwu_queue kernel/sched/core.c:1847 [inline] try_to_wake_up+0x997/0x1480 kernel/sched/core.c:2057 wake_up_process+0x10/0x20 kernel/sched/core.c:2129 swake_up_locked kernel/sched/swait.c:30 [inline] swake_up_locked kernel/sched/swait.c:22 [inline] swake_up_one+0x125/0x3c0 kernel/sched/swait.c:40 rcu_gp_kthread_wake+0xc3/0x100 kernel/rcu/tree.c:1571 rcu_report_qs_rsp+0x177/0x220 kernel/rcu/tree.c:2131 rcu_report_qs_rnp+0x316/0x460 kernel/rcu/tree.c:2202 rcu_report_qs_rdp kernel/rcu/tree.c:2286 [inline] rcu_check_quiescent_state kernel/rcu/tree.c:2323 [inline] rcu_process_callbacks+0xa5c/0x1680 kernel/rcu/tree.c:2739 __do_softirq+0x30b/0xb11 kernel/softirq.c:292 run_ksoftirqd kernel/softirq.c:654 [inline] run_ksoftirqd+0x8e/0x110 kernel/softirq.c:646 smpboot_thread_fn+0x6ab/0xa10 kernel/smpboot.c:164 kthread+0x357/0x430 kernel/kthread.c:246 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:352 Modules linked in: ====================================================== WARNING: possible circular locking dependency detected 5.0.0-rc1+ #14 Not tainted ------------------------------------------------------ ksoftirqd/0/9 is trying to acquire lock: 00000000760ab1fa ((console_sem).lock){-.-.}, at: down_trylock+0x13/0x70 kernel/locking/semaphore.c:136 but task is already holding lock: 00000000b1a23795 (&rq->lock){-.-.}, at: rq_lock kernel/sched/sched.h:1149 [inline] 00000000b1a23795 (&rq->lock){-.-.}, at: ttwu_queue kernel/sched/core.c:1845 [inline] 00000000b1a23795 (&rq->lock){-.-.}, at: try_to_wake_up+0x933/0x1480 kernel/sched/core.c:2057 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #2 (&rq->lock){-.-.}: __raw_spin_lock include/linux/spinlock_api_smp.h:142 [inline] _raw_spin_lock+0x2f/0x40 kernel/locking/spinlock.c:144 rq_lock kernel/sched/sched.h:1149 [inline] task_fork_fair+0xb5/0x7a0 kernel/sched/fair.c:10058 sched_fork+0x437/0xb90 kernel/sched/core.c:2359 copy_process+0x1ff6/0x8730 kernel/fork.c:1888 _do_fork+0x1a9/0x1170 kernel/fork.c:2217 kernel_thread+0x34/0x40 kernel/fork.c:2276 rest_init+0x28/0x37b init/main.c:408 arch_call_rest_init+0xe/0x1b start_kernel+0x882/0x8bd init/main.c:740 x86_64_start_reservations+0x29/0x2b arch/x86/kernel/head64.c:470 x86_64_start_kernel+0x77/0x7b arch/x86/kernel/head64.c:451 secondary_startup_64+0xa4/0xb0 arch/x86/kernel/head_64.S:243 -> #1 (&p->pi_lock){-.-.}: __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x95/0xcd kernel/locking/spinlock.c:152 try_to_wake_up+0xb9/0x1480 kernel/sched/core.c:1965 wake_up_process+0x10/0x20 kernel/sched/core.c:2129 __up.isra.0+0x1c0/0x2a0 kernel/locking/semaphore.c:262 up+0x13e/0x1c0 kernel/locking/semaphore.c:187 __up_console_sem+0xb7/0x1c0 kernel/printk/printk.c:236 console_unlock+0x778/0x11e0 kernel/printk/printk.c:2426 vprintk_emit+0x370/0x960 kernel/printk/printk.c:1931 vprintk_default+0x28/0x30 kernel/printk/printk.c:1958 vprintk_func+0x7e/0x189 kernel/printk/printk_safe.c:398 printk+0xba/0xed kernel/printk/printk.c:1991 check_stack_usage kernel/exit.c:755 [inline] do_exit.cold+0x57/0x16a kernel/exit.c:916 do_group_exit+0x177/0x430 kernel/exit.c:970 __do_sys_exit_group kernel/exit.c:981 [inline] __se_sys_exit_group kernel/exit.c:979 [inline] __x64_sys_exit_group+0x44/0x50 kernel/exit.c:979 do_syscall_64+0x1a3/0x800 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe -> #0 ((console_sem).lock){-.-.}: lock_acquire+0x1db/0x570 kernel/locking/lockdep.c:3841 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x95/0xcd kernel/locking/spinlock.c:152 down_trylock+0x13/0x70 kernel/locking/semaphore.c:136 __down_trylock_console_sem+0xa8/0x210 kernel/printk/printk.c:219 console_trylock+0x15/0xa0 kernel/printk/printk.c:2242 console_trylock_spinning kernel/printk/printk.c:1662 [inline] vprintk_emit+0x351/0x960 kernel/printk/printk.c:1930 vprintk_default+0x28/0x30 kernel/printk/printk.c:1958 vprintk_func+0x7e/0x189 kernel/printk/printk_safe.c:398 printk+0xba/0xed kernel/printk/printk.c:1991 __list_add_valid.cold+0xf/0x3c lib/list_debug.c:23 __list_add include/linux/list.h:60 [inline] list_add include/linux/list.h:79 [inline] account_entity_enqueue+0x3a0/0x660 kernel/sched/fair.c:2678 enqueue_entity+0x276/0x20b0 kernel/sched/fair.c:3902 enqueue_task_fair+0x237/0x10c0 kernel/sched/fair.c:5133 enqueue_task kernel/sched/core.c:730 [inline] activate_task+0x11d/0x470 kernel/sched/core.c:751 ttwu_activate kernel/sched/core.c:1643 [inline] ttwu_do_activate+0xd4/0x1f0 kernel/sched/core.c:1702 ttwu_queue kernel/sched/core.c:1847 [inline] try_to_wake_up+0x997/0x1480 kernel/sched/core.c:2057 wake_up_process+0x10/0x20 kernel/sched/core.c:2129 swake_up_locked kernel/sched/swait.c:30 [inline] swake_up_locked kernel/sched/swait.c:22 [inline] swake_up_one+0x125/0x3c0 kernel/sched/swait.c:40 rcu_gp_kthread_wake+0xc3/0x100 kernel/rcu/tree.c:1571 rcu_report_qs_rsp+0x177/0x220 kernel/rcu/tree.c:2131 rcu_report_qs_rnp+0x316/0x460 kernel/rcu/tree.c:2202 rcu_report_qs_rdp kernel/rcu/tree.c:2286 [inline] rcu_check_quiescent_state kernel/rcu/tree.c:2323 [inline] rcu_process_callbacks+0xa5c/0x1680 kernel/rcu/tree.c:2739 __do_softirq+0x30b/0xb11 kernel/softirq.c:292 run_ksoftirqd kernel/softirq.c:654 [inline] run_ksoftirqd+0x8e/0x110 kernel/softirq.c:646 smpboot_thread_fn+0x6ab/0xa10 kernel/smpboot.c:164 kthread+0x357/0x430 kernel/kthread.c:246 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:352 other info that might help us debug this: Chain exists of: (console_sem).lock --> &p->pi_lock --> &rq->lock Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(&rq->lock); lock(&p->pi_lock); lock(&rq->lock); lock((console_sem).lock); *** DEADLOCK *** 3 locks held by ksoftirqd/0/9: #0: 00000000adf2f5e1 (&rcu_state.gp_wq){..-.}, at: swake_up_one+0x88/0x3c0 kernel/sched/swait.c:39 #1: 000000003cdfc99d (&p->pi_lock){-.-.}, at: try_to_wake_up+0xb9/0x1480 kernel/sched/core.c:1965 #2: 00000000b1a23795 (&rq->lock){-.-.}, at: rq_lock kernel/sched/sched.h:1149 [inline] #2: 00000000b1a23795 (&rq->lock){-.-.}, at: ttwu_queue kernel/sched/core.c:1845 [inline] #2: 00000000b1a23795 (&rq->lock){-.-.}, at: try_to_wake_up+0x933/0x1480 kernel/sched/core.c:2057 stack backtrace: CPU: 0 PID: 9 Comm: ksoftirqd/0 Not tainted 5.0.0-rc1+ #14 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1db/0x2d0 lib/dump_stack.c:113 print_circular_bug.isra.0.cold+0x1cc/0x28f kernel/locking/lockdep.c:1224 check_prev_add kernel/locking/lockdep.c:1866 [inline] check_prevs_add kernel/locking/lockdep.c:1979 [inline] validate_chain kernel/locking/lockdep.c:2350 [inline] __lock_acquire+0x3014/0x4a30 kernel/locking/lockdep.c:3338 lock_acquire+0x1db/0x570 kernel/locking/lockdep.c:3841 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x95/0xcd kernel/locking/spinlock.c:152 down_trylock+0x13/0x70 kernel/locking/semaphore.c:136 __down_trylock_console_sem+0xa8/0x210 kernel/printk/printk.c:219 console_trylock+0x15/0xa0 kernel/printk/printk.c:2242 console_trylock_spinning kernel/printk/printk.c:1662 [inline] vprintk_emit+0x351/0x960 kernel/printk/printk.c:1930 vprintk_default+0x28/0x30 kernel/printk/printk.c:1958 vprintk_func+0x7e/0x189 kernel/printk/printk_safe.c:398 printk+0xba/0xed kernel/printk/printk.c:1991 __list_add_valid.cold+0xf/0x3c lib/list_debug.c:23 __list_add include/linux/list.h:60 [inline] list_add include/linux/list.h:79 [inline] account_entity_enqueue+0x3a0/0x660 kernel/sched/fair.c:2678 enqueue_entity+0x276/0x20b0 kernel/sched/fair.c:3902 enqueue_task_fair+0x237/0x10c0 kernel/sched/fair.c:5133 enqueue_task kernel/sched/core.c:730 [inline] activate_task+0x11d/0x470 kernel/sched/core.c:751 ttwu_activate kernel/sched/core.c:1643 [inline] ttwu_do_activate+0xd4/0x1f0 kernel/sched/core.c:1702 ttwu_queue kernel/sched/core.c:1847 [inline] try_to_wake_up+0x997/0x1480 kernel/sched/core.c:2057 wake_up_process+0x10/0x20 kernel/sched/core.c:2129 swake_up_locked kernel/sched/swait.c:30 [inline] swake_up_locked kernel/sched/swait.c:22 [inline] swake_up_one+0x125/0x3c0 kernel/sched/swait.c:40 rcu_gp_kthread_wake+0xc3/0x100 kernel/rcu/tree.c:1571 rcu_report_qs_rsp+0x177/0x220 kernel/rcu/tree.c:2131 rcu_report_qs_rnp+0x316/0x460 kernel/rcu/tree.c:2202 rcu_report_qs_rdp kernel/rcu/tree.c:2286 [inline] rcu_check_quiescent_state kernel/rcu/tree.c:2323 [inline] rcu_process_callbacks+0xa5c/0x1680 kernel/rcu/tree.c:2739 __do_softirq+0x30b/0xb11 kernel/softirq.c:292 run_ksoftirqd kernel/softirq.c:654 [inline] run_ksoftirqd+0x8e/0x110 kernel/softirq.c:646 smpboot_thread_fn+0x6ab/0xa10 kernel/smpboot.c:164 kthread+0x357/0x430 kernel/kthread.c:246 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:352 ---[ end trace 33a6eb1e61d68d8f ]--- invalid opcode: 0000 [#2] PREEMPT SMP KASAN CPU: 1 PID: -1454601544 Comm: Ç÷q®€ˆÿÿø>Îíÿÿù>Î Tainted: G D 5.0.0-rc1+ #14 RIP: 0010:__list_add_valid.cold+0xf/0x3c lib/list_debug.c:23 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Code: 34 fe eb d5 4c 89 e7 e8 da fe 34 fe eb a3 4c 89 f7 e8 d0 fe 34 fe e9 56 ff ff ff 4c 89 e1 48 c7 c7 20 b0 81 88 e8 c0 54 d7 fd <0f> 0b 48 89 f2 4c 89 e1 4c 89 ee 48 c7 c7 60 b1 81 88 e8 a9 54 d7 RIP: 0010:__check_heap_object+0xa5/0xb3 mm/slab.c:4412 RSP: 0018:ffff8880a947f218 EFLAGS: 00010082 Code: 2b 48 c7 c7 95 a0 3c 89 e8 08 65 0a 00 5d c3 41 8b 91 04 01 00 00 48 29 c7 48 39 d7 77 bd 48 01 d0 48 29 c8 4c 39 c0 72 b2 c3 <0f> 0b 48 c7 c7 95 a0 3c 89 e8 67 6d 0a 00 44 89 e9 48 c7 c7 50 a1 RAX: 0000000000000075 RBX: ffff8880ae72cec0 RCX: 0000000000000000 RSP: 0018:ffff8880a94c8150 EFLAGS: 00010093 RDX: 0000000000000000 RSI: ffffffff81684ce6 RDI: ffffed101528fe35 RAX: 00000000000a57eb RBX: 1ffff11015299030 RCX: 000000000000000c RBP: ffff8880a947f230 R08: 0000000000000075 R09: ffffed1015cc5021 RDX: ffff8880a94c8440 RSI: 0000000000000000 RDI: ffff8880a94c82b0 R10: ffffed1015cc5020 R11: ffff8880ae628107 R12: ffff8880a94c84f0 RBP: ffff8880a94c8248 R08: 0000000000000002 R09: ffff8880aa13d900 R10: 000000004afd6990 R11: 0000000000000001 R12: ffff8880a94c82b0 R13: ffff8880a9472330 R14: ffff8880a947f2b8 R15: ffff8880a9472330 R13: 0000000000000002 R14: 0000000000000001 R15: ffff8880a94c82b2 FS: 0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 FS: 0000000000000000(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: ffffffff8cf149c0 CR3: 0000000009871000 CR4: 00000000001406e0 CR2: 00000000080f8aec CR3: 000000009789e000 CR4: 00000000001406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400