INFO: task syz.1.12:3823 blocked for more than 424 seconds. Not tainted 6.11.0-rc4-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz.1.12 state:D stack:0 pid:3823 tgid:3823 ppid:3108 flags:0x00400001 Call trace: [<8197709c>] (__schedule) from [<81977c34>] (__schedule_loop kernel/sched/core.c:6606 [inline]) [<8197709c>] (__schedule) from [<81977c34>] (schedule+0x2c/0xfc kernel/sched/core.c:6621) r10:000001b4 r9:00000000 r8:826fbb68 r7:00000002 r6:dfa19dbc r5:83f68000 r4:83f68000 [<81977c08>] (schedule) from [<81977fe8>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6678) r5:83f68000 r4:826fbb64 [<81977fd0>] (schedule_preempt_disabled) from [<8197aac0>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<81977fd0>] (schedule_preempt_disabled) from [<8197aac0>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<8197a7d8>] (__mutex_lock.constprop.0) from [<8197b38c>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:000001b4 r9:83f68000 r8:00000000 r7:85002700 r6:827f7c18 r5:81a14afc r4:80209414 [<8197b378>] (__mutex_lock_slowpath) from [<8197b3cc>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<8197b390>] (mutex_lock) from [<80356a80>] (tracepoint_probe_unregister+0x34/0x3f0 kernel/tracepoint.c:548) [<80356a4c>] (tracepoint_probe_unregister) from [<80384304>] (bpf_probe_unregister+0x18/0x1c kernel/trace/bpf_trace.c:2479) r10:000001b4 r9:83f68000 r8:82e9c550 r7:830bf730 r6:00000000 r5:81a14afc r4:85002700 [<803842ec>] (bpf_probe_unregister) from [<803962f8>] (bpf_raw_tp_link_release+0x1c/0x28 kernel/bpf/syscall.c:3541) [<803962dc>] (bpf_raw_tp_link_release) from [<80396f84>] (bpf_link_free+0x5c/0xcc kernel/bpf/syscall.c:3067) r5:81a14afc r4:85002700 [<80396f28>] (bpf_link_free) from [<8039710c>] (bpf_link_put_direct kernel/bpf/syscall.c:3107 [inline]) [<80396f28>] (bpf_link_free) from [<8039710c>] (bpf_link_release+0x48/0x50 kernel/bpf/syscall.c:3114) r7:830bf730 r6:831b2dd0 r5:00000000 r4:00000001 [<803970c4>] (bpf_link_release) from [<80502ee4>] (__fput+0xdc/0x2e4 fs/file_table.c:422) r5:000a0001 r4:84791180 [<80502e08>] (__fput) from [<80503168>] (____fput+0x10/0x14 fs/file_table.c:450) r9:83f68000 r8:8286c68c r7:83f68000 r6:83f68884 r5:83f68854 r4:84791600 [<80503158>] (____fput) from [<8026c4bc>] (task_work_run+0x90/0xb8 kernel/task_work.c:228) [<8026c42c>] (task_work_run) from [<8020bdc8>] (resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]) [<8026c42c>] (task_work_run) from [<8020bdc8>] (do_work_pending+0x448/0x4f8 arch/arm/kernel/signal.c:631) r9:83f68000 r8:8020029c r7:000001b4 r6:8020029c r5:dfa19fb0 r4:83f68000 [<8020b980>] (do_work_pending) from [<80200088>] (slow_work_pending+0xc/0x24) Exception stack(0xdfa19fb0 to 0xdfa19ff8) 9fa0: 00000000 0000001e 00000000 7eaa8938 9fc0: 00000000 00000000 00000000 000001b4 00260000 00260000 0002db90 00000000 9fe0: 7eaa8838 7eaa8828 00024134 00132d80 20000010 00000003 r10:000001b4 r9:83f68000 r8:8020029c r7:000001b4 r6:00000000 r5:00000000 r4:00000000 NMI backtrace for cpu 0 CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Not tainted 6.11.0-rc4-syzkaller #0 Hardware name: ARM-Versatile Express Call trace: [<81955540>] (dump_backtrace) from [<8195563c>] (show_stack+0x18/0x1c arch/arm/kernel/traps.c:257) r7:00000000 r6:00000013 r5:60000093 r4:8200be5c [<81955624>] (show_stack) from [<8197333c>] (__dump_stack lib/dump_stack.c:93 [inline]) [<81955624>] (show_stack) from [<8197333c>] (dump_stack_lvl+0x70/0x7c lib/dump_stack.c:119) [<819732cc>] (dump_stack_lvl) from [<81973360>] (dump_stack+0x18/0x1c lib/dump_stack.c:128) r5:00000000 r4:00000001 [<81973348>] (dump_stack) from [<81942830>] (nmi_cpu_backtrace+0x160/0x17c lib/nmi_backtrace.c:113) [<819426d0>] (nmi_cpu_backtrace) from [<8194297c>] (nmi_trigger_cpumask_backtrace+0x130/0x1d8 lib/nmi_backtrace.c:62) r7:00000000 r6:8260c5d0 r5:8261a88c r4:ffffffff [<8194284c>] (nmi_trigger_cpumask_backtrace) from [<802103c8>] (arch_trigger_cpumask_backtrace+0x18/0x1c arch/arm/kernel/smp.c:851) r9:00008bf5 r8:828b1130 r7:8260c734 r6:00007f54 r5:8261ae48 r4:84c2601c [<802103b0>] (arch_trigger_cpumask_backtrace) from [<80350e4c>] (trigger_all_cpu_backtrace include/linux/nmi.h:162 [inline]) [<802103b0>] (arch_trigger_cpumask_backtrace) from [<80350e4c>] (check_hung_uninterruptible_tasks kernel/hung_task.c:223 [inline]) [<802103b0>] (arch_trigger_cpumask_backtrace) from [<80350e4c>] (watchdog+0x498/0x5b8 kernel/hung_task.c:379) [<803509b4>] (watchdog) from [<8026fb6c>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:df819e58 r8:82f23880 r7:00000000 r6:803509b4 r5:82e59800 r4:82ec6840 [<8026fa68>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdf8e1fb0 to 0xdf8e1ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fa68 r4:82ec6840 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 UID: 0 PID: 3821 Comm: syz.0.11 Not tainted 6.11.0-rc4-syzkaller #0 Hardware name: ARM-Versatile Express PC is at 0x133a8 LR is at 0xef6c0 pc : [<000133a8>] lr : [<000ef6c0>] psr: 00000010 sp : 76b2ec50 ip : 76b2ef58 fp : 76b2f0bc r10: 003d0f00 r9 : 00006364 r8 : 00000000 r7 : 000000f0 r6 : ffffffff r5 : 00000000 r4 : 00000000 r3 : 00000000 r2 : 00000000 r1 : 00000080 r0 : 00000011 Flags: nzcv IRQs on FIQs on Mode USER_32 ISA ARM Segment none Control: 30c5387d Table: 84f57100 DAC: 00000000 Call trace: invalid frame pointer 0x76b2f0bc