INFO: task kworker/0:2:6907 blocked for more than 430 seconds. Not tainted 6.12.0-rc2-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:2 state:D stack:0 pid:6907 tgid:6907 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bb4d4>] (__schedule) from [<819bc114>] (__schedule_loop kernel/sched/core.c:6759 [inline]) [<819bb4d4>] (__schedule) from [<819bc114>] (schedule+0x2c/0xfc kernel/sched/core.c:6774) r10:8260ca7c r9:00000000 r8:82717b64 r7:00000002 r6:dfcd9da4 r5:82e45400 r4:82e45400 [<819bc0e8>] (schedule) from [<819bc4c8>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6831) r5:82e45400 r4:82717b60 [<819bc4b0>] (schedule_preempt_disabled) from [<819befa0>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bc4b0>] (schedule_preempt_disabled) from [<819befa0>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819becb8>] (__mutex_lock.constprop.0) from [<819bf86c>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfcd9e20 r4:00000000 [<819bf858>] (__mutex_lock_slowpath) from [<819bf8ac>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819bf870>] (mutex_lock) from [<804adb80>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb18>] (_vm_unmap_aliases) from [<804b18dc>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb18>] (_vm_unmap_aliases) from [<804b18dc>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:85365980 r4:00000000 [<804b176c>] (vfree) from [<8050fb18>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:82e45400 r8:00800000 r7:00000000 r6:82c18000 r5:00001000 r4:7f033000 [<8050fae8>] (execmem_free) from [<8039c444>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dffc5000 [<8039c434>] (bpf_jit_free_exec) from [<8039c824>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c434>] (bpf_jit_free_exec) from [<8039c824>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7bc>] (bpf_jit_free) from [<8039d978>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:84f03754 r4:84f03400 [<8039d82c>] (bpf_prog_free_deferred) from [<80266034>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:dddd00c0 r6:82c18000 r5:84f03754 r4:84d0be00 [<80265e80>] (process_one_work) from [<80266c18>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265e80>] (process_one_work) from [<80266c18>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:82e45400 r9:84d0be2c r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:84d0be00 [<80266a2c>] (worker_thread) from [<8026fc90>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:dff7de78 r8:85365100 r7:84d0be00 r6:80266a2c r5:82e45400 r4:85365e00 [<8026fb8c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfcd9fb0 to 0xdfcd9ff8) 9fa0: 00000000 00000000 00000000 00000000 9fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 9fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fb8c r4:85365e00 INFO: task kworker/0:3:6958 blocked for more than 430 seconds. Not tainted 6.12.0-rc2-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:3 state:D stack:0 pid:6958 tgid:6958 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bb4d4>] (__schedule) from [<819bc114>] (__schedule_loop kernel/sched/core.c:6759 [inline]) [<819bb4d4>] (__schedule) from [<819bc114>] (schedule+0x2c/0xfc kernel/sched/core.c:6774) r10:8260ca7c r9:00000000 r8:82717b64 r7:00000002 r6:dff41da4 r5:83858000 r4:83858000 [<819bc0e8>] (schedule) from [<819bc4c8>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6831) r5:83858000 r4:82717b60 [<819bc4b0>] (schedule_preempt_disabled) from [<819befa0>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bc4b0>] (schedule_preempt_disabled) from [<819befa0>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819becb8>] (__mutex_lock.constprop.0) from [<819bf86c>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dff41e20 r4:00000000 [<819bf858>] (__mutex_lock_slowpath) from [<819bf8ac>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819bf870>] (mutex_lock) from [<804adb80>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb18>] (_vm_unmap_aliases) from [<804b18dc>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb18>] (_vm_unmap_aliases) from [<804b18dc>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84f999c0 r4:00000000 [<804b176c>] (vfree) from [<8050fb18>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:83858000 r8:00800000 r7:00000000 r6:82c18000 r5:00001000 r4:7f035000 [<8050fae8>] (execmem_free) from [<8039c444>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:e00d9000 [<8039c434>] (bpf_jit_free_exec) from [<8039c824>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c434>] (bpf_jit_free_exec) from [<8039c824>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7bc>] (bpf_jit_free) from [<8039d978>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:84f03b54 r4:84f03800 [<8039d82c>] (bpf_prog_free_deferred) from [<80266034>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:dddd00c0 r6:82c18000 r5:84f03b54 r4:84d02a80 [<80265e80>] (process_one_work) from [<80266c18>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265e80>] (process_one_work) from [<80266c18>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:83858000 r9:84d02aac r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:84d02a80 [<80266a2c>] (worker_thread) from [<8026fc90>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:dfbdde78 r8:84d0ea80 r7:84d02a80 r6:80266a2c r5:83858000 r4:85365f00 [<8026fb8c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdff41fb0 to 0xdff41ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fb8c r4:85365f00 INFO: task kworker/0:4:6988 blocked for more than 430 seconds. Not tainted 6.12.0-rc2-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:4 state:D stack:0 pid:6988 tgid:6988 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bb4d4>] (__schedule) from [<819bc114>] (__schedule_loop kernel/sched/core.c:6759 [inline]) [<819bb4d4>] (__schedule) from [<819bc114>] (schedule+0x2c/0xfc kernel/sched/core.c:6774) r10:8260ca7c r9:00000000 r8:82717b64 r7:00000002 r6:e0151da4 r5:83859800 r4:83859800 [<819bc0e8>] (schedule) from [<819bc4c8>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6831) r5:83859800 r4:82717b60 [<819bc4b0>] (schedule_preempt_disabled) from [<819befa0>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bc4b0>] (schedule_preempt_disabled) from [<819befa0>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819becb8>] (__mutex_lock.constprop.0) from [<819bf86c>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:e0151e20 r4:00000000 [<819bf858>] (__mutex_lock_slowpath) from [<819bf8ac>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819bf870>] (mutex_lock) from [<804adb80>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb18>] (_vm_unmap_aliases) from [<804b18dc>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb18>] (_vm_unmap_aliases) from [<804b18dc>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84c1a740 r4:00000000 [<804b176c>] (vfree) from [<8050fb18>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:83859800 r8:00800000 r7:00000000 r6:82c18000 r5:00001000 r4:7f037000 [<8050fae8>] (execmem_free) from [<8039c444>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:e0191000 [<8039c434>] (bpf_jit_free_exec) from [<8039c824>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c434>] (bpf_jit_free_exec) from [<8039c824>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7bc>] (bpf_jit_free) from [<8039d978>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:847f2754 r4:847f2400 [<8039d82c>] (bpf_prog_free_deferred) from [<80266034>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:dddd00c0 r6:82c18000 r5:847f2754 r4:84d02780 [<80265e80>] (process_one_work) from [<80266c18>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265e80>] (process_one_work) from [<80266c18>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:83859800 r9:84d027ac r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:84d02780 [<80266a2c>] (worker_thread) from [<8026fc90>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:dfca9e78 r8:84f7c240 r7:84d02780 r6:80266a2c r5:83859800 r4:84d927c0 [<8026fb8c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xe0151fb0 to 0xe0151ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fb8c r4:84d927c0 NMI backtrace for cpu 1 CPU: 1 UID: 0 PID: 32 Comm: khungtaskd Not tainted 6.12.0-rc2-syzkaller #0 Hardware name: ARM-Versatile Express Call trace: [<81999018>] (dump_backtrace) from [<81999114>] (show_stack+0x18/0x1c arch/arm/kernel/traps.c:257) r7:00000000 r6:00000013 r5:60000093 r4:8203d3fc [<819990fc>] (show_stack) from [<819b75c0>] (__dump_stack lib/dump_stack.c:94 [inline]) [<819990fc>] (show_stack) from [<819b75c0>] (dump_stack_lvl+0x70/0x7c lib/dump_stack.c:120) [<819b7550>] (dump_stack_lvl) from [<819b75e4>] (dump_stack+0x18/0x1c lib/dump_stack.c:129) r5:00000001 r4:00000001 [<819b75cc>] (dump_stack) from [<819862d8>] (nmi_cpu_backtrace+0x160/0x17c lib/nmi_backtrace.c:113) [<81986178>] (nmi_cpu_backtrace) from [<81986424>] (nmi_trigger_cpumask_backtrace+0x130/0x1d8 lib/nmi_backtrace.c:62) r7:00000001 r6:8260c5d0 r5:8261af0c r4:ffffffff [<819862f4>] (nmi_trigger_cpumask_backtrace) from [<802103e8>] (arch_trigger_cpumask_backtrace+0x18/0x1c arch/arm/kernel/smp.c:851) r9:00016ed0 r8:828b6cf8 r7:8260c730 r6:00007f2f r5:8261b4c8 r4:838b8e1c [<802103d0>] (arch_trigger_cpumask_backtrace) from [<80358148>] (trigger_all_cpu_backtrace include/linux/nmi.h:162 [inline]) [<802103d0>] (arch_trigger_cpumask_backtrace) from [<80358148>] (check_hung_uninterruptible_tasks kernel/hung_task.c:223 [inline]) [<802103d0>] (arch_trigger_cpumask_backtrace) from [<80358148>] (watchdog+0x498/0x5b8 kernel/hung_task.c:379) [<80357cb0>] (watchdog) from [<8026fc90>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:df819e58 r8:82cd0780 r7:00000000 r6:80357cb0 r5:82e46c00 r4:82fa3640 [<8026fb8c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdf8e1fb0 to 0xdf8e1ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fb8c r4:82fa3640 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 UID: 0 PID: 6700 Comm: syz.1.587 Not tainted 6.12.0-rc2-syzkaller #0 Hardware name: ARM-Versatile Express PC is at 0x18b94 LR is at 0x18b94 pc : [<00018b94>] lr : [<00018b94>] psr: 20000010 sp : 20001490 ip : 20001490 fp : 76b2a0bc r10: 003d0f00 r9 : 00006364 r8 : 00000000 r7 : 00000000 r6 : 00000000 r5 : 00000000 r4 : 00000000 r3 : 00000000 r2 : 000001e4 r1 : 00000004 r0 : ffffffff Flags: nzCv IRQs on FIQs on Mode USER_32 ISA ARM Segment user Control: 30c5387d Table: 84f775c0 DAC: fffffffd Call trace: invalid frame pointer 0x76b2a0bc