INFO: task kworker/0:0:7 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:0 state:D stack:0 pid:7 tgid:7 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16005 r9:00000000 r8:82714c68 r7:00000002 r6:df835d94 r5:82e2c800 r4:82e2c800 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:82e2c800 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16005 r9:df835e20 r8:00000001 r7:8af7d000 r6:8af7e000 r5:847afcc0 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16005 r9:00000001 r8:00000001 r7:8af7d000 r6:8af7e000 r5:847afcc0 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:82e2c800 r8:00000080 r7:00000000 r6:82c16000 r5:00001000 r4:7f05d000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:dfb3d000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8aeb9754 r4:8aeb9400 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:dddcff00 r6:82c16000 r5:8aeb9754 r4:82c0be80 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:82e2c800 r9:82c0beac r8:61c88647 r7:dddcff20 r6:82604d40 r5:dddcff00 r4:82c0be80 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:df819e60 r8:82cad740 r7:82c0be80 r6:80266f68 r5:82e2c800 r4:82cad140 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdf835fb0 to 0xdf835ff8) 5fa0: 00000000 00000000 00000000 00000000 5fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 5fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:82cad140 INFO: task kworker/0:3:1570 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:3 state:D stack:0 pid:1570 tgid:1570 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16005 r9:00000000 r8:82714c68 r7:00000002 r6:eb0add94 r5:83e86000 r4:83e86000 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:83e86000 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16005 r9:eb0ade20 r8:00000001 r7:9205e000 r6:9205f000 r5:8bafde00 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16005 r9:00000001 r8:00000001 r7:9205e000 r6:9205f000 r5:8bafde00 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:83e86000 r8:00000080 r7:00000000 r6:82c16000 r5:00001000 r4:7f051000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:eb09f000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8ac03354 r4:8ac03000 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:dddcff00 r6:82c16000 r5:8ac03354 r4:83f07300 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:83e86000 r9:83f0732c r8:61c88647 r7:dddcff20 r6:82604d40 r5:dddcff00 r4:83f07300 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:df835e90 r8:83efd780 r7:83f07300 r6:80266f68 r5:83e86000 r4:83b109c0 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xeb0adfb0 to 0xeb0adff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:83b109c0 INFO: task kworker/0:4:3683 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:4 state:D stack:0 pid:3683 tgid:3683 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16005 r9:00000000 r8:82714c68 r7:00000002 r6:dfea1d94 r5:8413b000 r4:8413b000 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:8413b000 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16005 r9:dfea1e20 r8:00000001 r7:8bafa000 r6:8bafb000 r5:8bafda40 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16005 r9:00000001 r8:00000001 r7:8bafa000 r6:8bafb000 r5:8bafda40 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:8413b000 r8:00000080 r7:00000000 r6:82c16000 r5:00001000 r4:7f033000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:e0aa3000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8ac23754 r4:8ac23400 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:dddcff00 r6:82c16000 r5:8ac23754 r4:8451d600 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:8413b000 r9:8451d62c r8:61c88647 r7:dddcff20 r6:82604d40 r5:dddcff00 r4:8451d600 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:df835e90 r8:8b8b6c80 r7:8451d600 r6:80266f68 r5:8413b000 r4:8af54080 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdfea1fb0 to 0xdfea1ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:8af54080 INFO: task kworker/0:21:5579 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:21 state:D stack:0 pid:5579 tgid:5579 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16005 r9:00000000 r8:82714c68 r7:00000002 r6:dfa49d94 r5:83f46c00 r4:83f46c00 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:83f46c00 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16005 r9:dfa49e20 r8:00000001 r7:920d7000 r6:920d8000 r5:92043e00 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16005 r9:00000001 r8:00000001 r7:920d7000 r6:920d8000 r5:92043e00 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:83f46c00 r8:00000080 r7:00000000 r6:82c16000 r5:00001000 r4:7f03d000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:eac9f000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8ad4b354 r4:8ad4b000 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:dddcff00 r6:82c16000 r5:8ad4b354 r4:84584200 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:83f46c00 r9:8458422c r8:61c88647 r7:dddcff20 r6:82604d40 r5:dddcff00 r4:84584200 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:eee15e90 r8:8b9c3e40 r7:84584200 r6:80266f68 r5:83f46c00 r4:92136c40 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdfa49fb0 to 0xdfa49ff8) 9fa0: 00000000 00000000 00000000 00000000 9fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 9fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:92136c40 INFO: task kworker/0:26:5639 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:26 state:D stack:0 pid:5639 tgid:5639 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16005 r9:00000000 r8:82714c68 r7:00000002 r6:dfcfdd94 r5:84684800 r4:84684800 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:84684800 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16005 r9:dfcfde20 r8:00000001 r7:92128000 r6:92129000 r5:8baabec0 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16005 r9:00000001 r8:00000001 r7:92128000 r6:92129000 r5:8baabec0 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:84684800 r8:00000080 r7:00000000 r6:82c16000 r5:00001000 r4:7f02f000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:e09b5000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8acff754 r4:8acff400 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:dddcff00 r6:82c16000 r5:8acff754 r4:84584400 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:84684800 r9:8458442c r8:61c88647 r7:dddcff20 r6:82604d40 r5:dddcff00 r4:84584400 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:dfa49e90 r8:8ba98cc0 r7:84584400 r6:80266f68 r5:84684800 r4:92136e40 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdfcfdfb0 to 0xdfcfdff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:92136e40 INFO: task kworker/1:20:6047 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:20 state:D stack:0 pid:6047 tgid:6047 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16205 r9:00000000 r8:82714c68 r7:00000002 r6:eb49dd94 r5:835e8000 r4:835e8000 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:835e8000 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16205 r9:eb49de20 r8:00000001 r7:9213b000 r6:9213c000 r5:8af3b2c0 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16205 r9:00000001 r8:00000001 r7:9213b000 r6:9213c000 r5:8af3b2c0 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:835e8000 r8:00000180 r7:00000000 r6:82c16200 r5:00001000 r4:7f035000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:e4b13000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8acfff54 r4:8acffc00 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:ddde3f00 r6:82c16200 r5:8acfff54 r4:84124580 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:835e8000 r9:841245ac r8:61c88647 r7:ddde3f20 r6:82604d40 r5:ddde3f00 r4:84124580 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:dfc15e90 r8:8ba98600 r7:84124580 r6:80266f68 r5:835e8000 r4:92157e40 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xeb49dfb0 to 0xeb49dff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:92157e40 INFO: task kworker/1:21:6056 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:21 state:D stack:0 pid:6056 tgid:6056 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16205 r9:00000000 r8:82714c68 r7:00000002 r6:e08bdd94 r5:84163000 r4:84163000 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:84163000 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16205 r9:e08bde20 r8:00000001 r7:8baf8000 r6:8baf9000 r5:8af3b380 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16205 r9:00000001 r8:00000001 r7:8baf8000 r6:8baf9000 r5:8af3b380 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:84163000 r8:00000180 r7:00000000 r6:82c16200 r5:00001000 r4:7f031000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:e09fb000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8ad66354 r4:8ad66000 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:ddde3f00 r6:82c16200 r5:8ad66354 r4:84124f00 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:84163000 r9:84124f2c r8:61c88647 r7:ddde3f20 r6:82604d40 r5:ddde3f00 r4:84124f00 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:eb49de90 r8:92043e80 r7:84124f00 r6:80266f68 r5:84163000 r4:841e6b40 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xe08bdfb0 to 0xe08bdff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:841e6b40 INFO: task kworker/1:22:6072 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:22 state:D stack:0 pid:6072 tgid:6072 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16205 r9:00000000 r8:82714c68 r7:00000002 r6:e099dd94 r5:835d6c00 r4:835d6c00 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:835d6c00 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16205 r9:e099de20 r8:00000000 r7:ffffffff r6:00000000 r5:8af6d500 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:8af6d500 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:835d6c00 r8:00000180 r7:00000000 r6:82c16200 r5:00001000 r4:7f013000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:df957000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8ad65f54 r4:8ad65c00 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:ddde3f00 r6:82c16200 r5:8ad65f54 r4:84775000 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:835d6c00 r9:8477502c r8:61c88647 r7:ddde3f20 r6:82604d40 r5:ddde3f00 r4:84775000 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:eb49de90 r8:92157a00 r7:84775000 r6:80266f68 r5:835d6c00 r4:8b8a7dc0 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xe099dfb0 to 0xe099dff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:8b8a7dc0 INFO: task kworker/1:23:6086 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:23 state:D stack:0 pid:6086 tgid:6086 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16205 r9:00000000 r8:82714c68 r7:00000002 r6:e0a3dd94 r5:835cb000 r4:835cb000 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:835cb000 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16205 r9:e0a3de20 r8:00000001 r7:9208d000 r6:9208e000 r5:8bafd880 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16205 r9:00000001 r8:00000001 r7:9208d000 r6:9208e000 r5:8bafd880 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:835cb000 r8:00000180 r7:00000000 r6:82c16200 r5:00001000 r4:7f037000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:e4b51000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8acfeb54 r4:8acfe800 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:ddde3f00 r6:82c16200 r5:8acfeb54 r4:8b8aac00 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:835cb000 r9:8b8aac2c r8:61c88647 r7:ddde3f20 r6:82604d40 r5:ddde3f00 r4:8b8aac00 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:e099de90 r8:92043a00 r7:8b8aac00 r6:80266f68 r5:835cb000 r4:8baab680 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xe0a3dfb0 to 0xe0a3dff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:8baab680 INFO: task kworker/1:24:6089 blocked for more than 430 seconds. Not tainted 6.8.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:24 state:D stack:0 pid:6089 tgid:6089 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Backtrace: [<8188b490>] (__schedule) from [<8188c0cc>] (__schedule_loop kernel/sched/core.c:6813 [inline]) [<8188b490>] (__schedule) from [<8188c0cc>] (schedule+0x2c/0xfc kernel/sched/core.c:6828) r10:82c16205 r9:00000000 r8:82714c68 r7:00000002 r6:e4b55d94 r5:835d0000 r4:835d0000 [<8188c0a0>] (schedule) from [<8188c6dc>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6885) r5:835d0000 r4:82714c64 [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<8188c6c4>] (schedule_preempt_disabled) from [<8188efbc>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8188ecd4>] (__mutex_lock.constprop.0) from [<8188f888>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16205 r9:e4b55e20 r8:00000001 r7:8ba94000 r6:8ba95000 r5:92043b40 r4:00000000 [<8188f874>] (__mutex_lock_slowpath) from [<8188f8c8>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8188f88c>] (mutex_lock) from [<8049aef0>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2788) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vm_reset_perms mm/vmalloc.c:3235 [inline]) [<8049ae90>] (_vm_unmap_aliases) from [<8049ed74>] (vfree+0x170/0x1e4 mm/vmalloc.c:3314) r10:82c16205 r9:00000001 r8:00000001 r7:8ba94000 r6:8ba95000 r5:92043b40 r4:00000000 [<8049ec04>] (vfree) from [<802ed4a8>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:835d0000 r8:00000180 r7:00000000 r6:82c16200 r5:00001000 r4:7f039000 [<802ed478>] (module_memfree) from [<80390150>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:e8bb7000 [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80390140>] (bpf_jit_free_exec) from [<80390310>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<803902a8>] (bpf_jit_free) from [<803913f8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:8afd2f54 r4:8afd2c00 [<803912ac>] (bpf_prog_free_deferred) from [<80266430>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:ddde3f00 r6:82c16200 r5:8afd2f54 r4:8b8aa000 [<80266278>] (process_one_work) from [<80267154>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266278>] (process_one_work) from [<80267154>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:835d0000 r9:8b8aa02c r8:61c88647 r7:ddde3f20 r6:82604d40 r5:ddde3f00 r4:8b8aa000 [<80266f68>] (worker_thread) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:e099de90 r8:8bafd180 r7:8b8aa000 r6:80266f68 r5:835d0000 r4:8bafd200 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xe4b55fb0 to 0xe4b55ff8) 5fa0: 00000000 00000000 00000000 00000000 5fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 5fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:8bafd200 Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings NMI backtrace for cpu 1 CPU: 1 PID: 31 Comm: khungtaskd Not tainted 6.8.0-syzkaller #0 Hardware name: ARM-Versatile Express Backtrace: [<81869d04>] (dump_backtrace) from [<81869e00>] (show_stack+0x18/0x1c arch/arm/kernel/traps.c:256) r7:00000000 r6:00000013 r5:60000093 r4:81fc20c4 [<81869de8>] (show_stack) from [<818875c0>] (__dump_stack lib/dump_stack.c:88 [inline]) [<81869de8>] (show_stack) from [<818875c0>] (dump_stack_lvl+0x70/0x7c lib/dump_stack.c:114) [<81887550>] (dump_stack_lvl) from [<818875e4>] (dump_stack+0x18/0x1c lib/dump_stack.c:123) r5:00000001 r4:00000001 [<818875cc>] (dump_stack) from [<818570dc>] (nmi_cpu_backtrace+0x160/0x17c lib/nmi_backtrace.c:113) [<81856f7c>] (nmi_cpu_backtrace) from [<81857228>] (nmi_trigger_cpumask_backtrace+0x130/0x1d8 lib/nmi_backtrace.c:62) r7:00000001 r6:8260c590 r5:8261a88c r4:ffffffff [<818570f8>] (nmi_trigger_cpumask_backtrace) from [<802105b4>] (arch_trigger_cpumask_backtrace+0x18/0x1c arch/arm/kernel/smp.c:851) r9:8260c6f4 r8:0000af3e r7:8289cfe0 r6:00007ecb r5:8ad9be04 r4:8ba4e924 [<8021059c>] (arch_trigger_cpumask_backtrace) from [<8034e2c8>] (trigger_all_cpu_backtrace include/linux/nmi.h:160 [inline]) [<8021059c>] (arch_trigger_cpumask_backtrace) from [<8034e2c8>] (check_hung_uninterruptible_tasks kernel/hung_task.c:223 [inline]) [<8021059c>] (arch_trigger_cpumask_backtrace) from [<8034e2c8>] (watchdog+0x480/0x594 kernel/hung_task.c:380) [<8034de48>] (watchdog) from [<8026fe64>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:df819e58 r8:82e983c0 r7:00000000 r6:8034de48 r5:82ee8c00 r4:82f42140 [<8026fd60>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdf8ddfb0 to 0xdf8ddff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fd60 r4:82f42140 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 12501 Comm: syz-executor.1 Not tainted 6.8.0-syzkaller #0 Hardware name: ARM-Versatile Express PC is at lockless_pages_from_mm mm/gup.c:3168 [inline] PC is at internal_get_user_pages_fast+0x380/0x5f8 mm/gup.c:3208 LR is at 0x1311fff pc : [<80476574>] lr : [<01311fff>] psr: 60000013 sp : e06f5d70 ip : 01312000 fp : e06f5e1c r10: 01312000 r9 : 92048050 r8 : 8ad9b000 r7 : 00000000 r6 : 00000001 r5 : ffe00000 r4 : 01311000 r3 : 60000013 r2 : 00000000 r1 : 8afc19c8 r0 : 8ad9b000 Flags: nZCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment user Control: 30c5387d Table: 8afc19c0 DAC: fffffffd Backtrace: [<804761f4>] (internal_get_user_pages_fast) from [<804768a0>] (get_user_pages_fast+0x50/0x60 mm/gup.c:3293) r10:000000f8 r9:00000000 r8:844c1e00 r7:826f6990 r6:00000001 r5:01311000 r4:e06f5e50 [<80476850>] (get_user_pages_fast) from [<803179f8>] (get_futex_key+0xe4/0x4d4 kernel/futex/core.c:276) r6:e06f5e90 r5:00000000 r4:01311000 [<80317914>] (get_futex_key) from [<8031b61c>] (futex_wake+0x5c/0x1ac kernel/futex/waitwake.c:166) r10:000000f8 r9:00000001 r8:e06f5f50 r7:e06f5e88 r6:00000001 r5:ffffffff r4:00000012 [<8031b5c0>] (futex_wake) from [<8031898c>] (do_futex+0x100/0x1b4 kernel/futex/syscalls.c:107) r10:000000f8 r9:00000001 r8:e06f5f50 r7:84425f80 r6:01311068 r5:844c1e00 r4:00000001 [<8031888c>] (do_futex) from [<8023ece8>] (mm_release+0xb0/0xb4 kernel/fork.c:1636) r4:8ad9b000 [<8023ec38>] (mm_release) from [<802404f8>] (exit_mm_release+0x24/0x28 kernel/fork.c:1653) r6:00000000 r5:844c1e00 r4:8ad9b000 [<802404d4>] (exit_mm_release) from [<8024a168>] (exit_mm kernel/exit.c:542 [inline]) [<802404d4>] (exit_mm_release) from [<8024a168>] (do_exit+0x23c/0xa84 kernel/exit.c:865) r5:844c1e00 r4:8ad9b000 [<80249f2c>] (do_exit) from [<8024ab7c>] (do_group_exit+0x40/0x8c kernel/exit.c:1027) r7:84425f80 [<8024ab3c>] (do_group_exit) from [<8024abe0>] (__do_sys_exit_group kernel/exit.c:1038 [inline]) [<8024ab3c>] (do_group_exit) from [<8024abe0>] (pid_child_should_wake+0x0/0x6c kernel/exit.c:1036) r7:000000f8 r4:00000000 [<8024abc8>] (sys_exit_group) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:66) Exception stack(0xe06f5fa8 to 0xe06f5ff0) 5fa0: 00000000 00000000 00000000 00000000 00000000 0000001e 5fc0: 00000000 00000000 00022100 000000f8 001403b0 7eec8670 7eec8670 7eec8630 5fe0: 7eec8598 7eec8588 00012bc0 00050bc0