bisecting cause commit starting from 7cc2a8ea104820dd9e702202621e8fd4d9f6c8cf building syzkaller on 510951950dc0ee69cfdaf746061d3dbe31b49fd8 testing commit 7cc2a8ea104820dd9e702202621e8fd4d9f6c8cf with gcc (GCC) 8.1.0 kernel signature: a3effa367c473cf438bd6ec837b505d30d1b0dd45f6098bd2e2756bd8056585d run #0: crashed: INFO: rcu detected stall in tipc_release run #1: crashed: INFO: rcu detected stall in tipc_release run #2: crashed: INFO: rcu detected stall in tipc_release run #3: crashed: INFO: rcu detected stall in tipc_release run #4: crashed: INFO: rcu detected stall in tipc_release run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK testing release v5.7 testing commit 3d77e6a8804abcc0504c904bd6e5cdf3a5cf8162 with gcc (GCC) 8.1.0 kernel signature: 8cbdeaaaeb8e701025aa5e6c362fe9eb4323e851768a7c1d15775fd725da3e5e all runs: OK # git bisect start 7cc2a8ea104820dd9e702202621e8fd4d9f6c8cf 3d77e6a8804abcc0504c904bd6e5cdf3a5cf8162 Bisecting: 8086 revisions left to test after this (roughly 13 steps) [a0a4d17e02a80a74a63c7cbb7bc8cea2f0b7d8b1] Merge branch 'pcmcia-next' of git://git.kernel.org/pub/scm/linux/kernel/git/brodo/linux testing commit a0a4d17e02a80a74a63c7cbb7bc8cea2f0b7d8b1 with gcc (GCC) 8.1.0 kernel signature: 9fc42643d4dc00533e558b58200cbe8589f39532f61331b2cdb0931cf6487747 all runs: OK # git bisect good a0a4d17e02a80a74a63c7cbb7bc8cea2f0b7d8b1 Bisecting: 3890 revisions left to test after this (roughly 12 steps) [80ef846e9909f22ccdc2a4a6d931266cecce8b2c] Merge tag 'staging-5.8-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/staging testing commit 80ef846e9909f22ccdc2a4a6d931266cecce8b2c with gcc (GCC) 8.1.0 kernel signature: 8160c85dc0080bffc83692eef5a9b13c60d4643176850c44739e6fcf686c6b2a all runs: basic kernel testing failed: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks # git bisect skip 80ef846e9909f22ccdc2a4a6d931266cecce8b2c Bisecting: 3890 revisions left to test after this (roughly 12 steps) [98a23609b10364a51a1bb3688f8dd1cd1aa94a9a] maccess: always use strict semantics for probe_kernel_read testing commit 98a23609b10364a51a1bb3688f8dd1cd1aa94a9a with gcc (GCC) 8.1.0 kernel signature: d15b59ac626a2e0333926a2c1d352197abea3cce09d24f6c283661d97fdaaaa6 all runs: basic kernel testing failed: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks # git bisect skip 98a23609b10364a51a1bb3688f8dd1cd1aa94a9a Bisecting: 3890 revisions left to test after this (roughly 12 steps) [4a9b984fe425cc48f24a4c00305cf10663dfe9f9] dt-bindings: sc16is7xx: Add flag to activate IrDA mode testing commit 4a9b984fe425cc48f24a4c00305cf10663dfe9f9 with gcc (GCC) 8.1.0 kernel signature: b8d1760f6fa4e38e5a15e7fba27f1238c66addae0da74db93001ee692bec6bb2 all runs: OK # git bisect good 4a9b984fe425cc48f24a4c00305cf10663dfe9f9 Bisecting: 3890 revisions left to test after this (roughly 12 steps) [9ebcfadb0610322ac537dd7aa5d9cbc2b2894c68] Linux 5.8-rc3 testing commit 9ebcfadb0610322ac537dd7aa5d9cbc2b2894c68 with gcc (GCC) 8.1.0 kernel signature: f4e318d900e0b1b8ab78b44156374b2f70ddfdec136d4f6adef5cb83a82a4644 run #0: crashed: INFO: rcu detected stall in tipc_release run #1: crashed: INFO: rcu detected stall in tipc_release run #2: crashed: INFO: rcu detected stall in tipc_release run #3: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor369843887" "root@10.128.0.6:./syz-executor369843887"]: exit status 1 ssh: connect to host 10.128.0.6 port 22: Connection timed out lost connection run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad 9ebcfadb0610322ac537dd7aa5d9cbc2b2894c68 Bisecting: 3853 revisions left to test after this (roughly 12 steps) [33a180623b6c35f2727daecb63763955af3af1df] dm bufio: introduce forget_buffer_locked testing commit 33a180623b6c35f2727daecb63763955af3af1df with gcc (GCC) 8.1.0 kernel signature: ae05d3005dba181bccadd4f344614e5edb4a6b8cba1846c370abb3a7b3ff675a all runs: OK # git bisect good 33a180623b6c35f2727daecb63763955af3af1df Bisecting: 3853 revisions left to test after this (roughly 12 steps) [fa1f68cc88f1dce6b7bb37628eb7c25c96593183] mm: use false for bool variable testing commit fa1f68cc88f1dce6b7bb37628eb7c25c96593183 with gcc (GCC) 8.1.0 kernel signature: 36b191c3fa16ac892a515863fb9f6ae04fdfbb0292841752dbac0da1d07cb825 all runs: OK # git bisect good fa1f68cc88f1dce6b7bb37628eb7c25c96593183 Bisecting: 3853 revisions left to test after this (roughly 12 steps) [0f03c08892ac3c42d93662c8dec86bf74e5d4c9b] i2c: pxa: consolidate i2c_pxa_*xfer() implementations testing commit 0f03c08892ac3c42d93662c8dec86bf74e5d4c9b with gcc (GCC) 8.1.0 kernel signature: e3180ce3923e1db9bd185b15a895ed16f9372f81cb4f85568d539c6ccda8f31a all runs: OK # git bisect good 0f03c08892ac3c42d93662c8dec86bf74e5d4c9b Bisecting: 3810 revisions left to test after this (roughly 12 steps) [c60e4459c42de356b5cc49830fc08e5fd372a8cd] ASoC: intel: atom: use snd_compress_ops testing commit c60e4459c42de356b5cc49830fc08e5fd372a8cd with gcc (GCC) 8.1.0 kernel signature: 1ce883bad58c545ac3f68dcd707ae82d4a34d18eaa57499c33793604c5f8b56d all runs: OK # git bisect good c60e4459c42de356b5cc49830fc08e5fd372a8cd Bisecting: 3810 revisions left to test after this (roughly 12 steps) [9ac17575804024fb3d5692cad7afc08929bab981] lib/math: avoid trailing newline hidden in pr_fmt() testing commit 9ac17575804024fb3d5692cad7afc08929bab981 with gcc (GCC) 8.1.0 kernel signature: 376178bd22f56146c729df274af4265696a453dbb73c65e8497679bd3fe952b8 all runs: OK # git bisect good 9ac17575804024fb3d5692cad7afc08929bab981 Bisecting: 3810 revisions left to test after this (roughly 12 steps) [ccd7c7ce167a21dbf2b698ffcf00f11d96d44f9b] net: qed: fix NVMe login fails over VFs testing commit ccd7c7ce167a21dbf2b698ffcf00f11d96d44f9b with gcc (GCC) 8.1.0 kernel signature: dc1585a4c9f9aedbfd92c4e458df2d1ee8f14f701455c9f701abe6cf02c2e05f run #0: crashed: INFO: rcu detected stall in tipc_release run #1: crashed: INFO: rcu detected stall in tipc_release run #2: crashed: INFO: rcu detected stall in tipc_release run #3: crashed: INFO: rcu detected stall in tipc_release run #4: crashed: INFO: rcu detected stall in tipc_release run #5: crashed: INFO: rcu detected stall in tipc_release run #6: crashed: INFO: rcu detected stall in tipc_release run #7: crashed: INFO: rcu detected stall in tipc_release run #8: crashed: INFO: rcu detected stall in corrupted run #9: crashed: INFO: rcu detected stall in tipc_release # git bisect bad ccd7c7ce167a21dbf2b698ffcf00f11d96d44f9b Bisecting: 3659 revisions left to test after this (roughly 12 steps) [081096d98bb23946f16215357b141c5616b234bf] Merge tag 'tty-5.8-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/tty testing commit 081096d98bb23946f16215357b141c5616b234bf with gcc (GCC) 8.1.0 kernel signature: db413c0beed4b0afd84165fd7db323d6a9934787d92dd09ad1bc391adec3c67d all runs: basic kernel testing failed: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks # git bisect skip 081096d98bb23946f16215357b141c5616b234bf Bisecting: 3659 revisions left to test after this (roughly 12 steps) [1ee18de92927f37e6948d5a6fc73cbf89f806905] Merge tag 'dma-mapping-5.8' of git://git.infradead.org/users/hch/dma-mapping testing commit 1ee18de92927f37e6948d5a6fc73cbf89f806905 with gcc (GCC) 8.1.0 kernel signature: 6198660a8ec19fbbcde0d5a3f4a8673856e4ce0c90d11e78acc3dced06fa6a47 all runs: basic kernel testing failed: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks # git bisect skip 1ee18de92927f37e6948d5a6fc73cbf89f806905 Bisecting: 3659 revisions left to test after this (roughly 12 steps) [467b82d7cee4373aa7bc47fd3043e2fa0a3440f5] modpost: remove -s option testing commit 467b82d7cee4373aa7bc47fd3043e2fa0a3440f5 with gcc (GCC) 8.1.0 kernel signature: b89ebb1a8ea5b75f8783cc4af6f7d52edff512084b0e6d6021c4c75864a3c915 all runs: OK # git bisect good 467b82d7cee4373aa7bc47fd3043e2fa0a3440f5 Bisecting: 3659 revisions left to test after this (roughly 12 steps) [2f7ccc387cf3b2e896dadbe5252502baf56473a4] Staging: vt6655: Format long lines. testing commit 2f7ccc387cf3b2e896dadbe5252502baf56473a4 with gcc (GCC) 8.1.0 kernel signature: a3c0cad81b5fa33c79d06d3f26e244093c507db1340b9d619c9b845b8a33bbe3 all runs: OK # git bisect good 2f7ccc387cf3b2e896dadbe5252502baf56473a4 Bisecting: 3651 revisions left to test after this (roughly 12 steps) [fe79ea577be81e1e71642826ab00e676dc59c194] arm64: dts: allwinner: h6: Enable CPU opp tables for Pine H64 testing commit fe79ea577be81e1e71642826ab00e676dc59c194 with gcc (GCC) 8.1.0 kernel signature: 8c5b769a2428549101292edbcafdf6c0025fc73b913454b5f857f0c526a254e0 all runs: OK # git bisect good fe79ea577be81e1e71642826ab00e676dc59c194 Bisecting: 3651 revisions left to test after this (roughly 12 steps) [f6363c437dc6e287259c05849286bf0faefb0fdd] clk: at91: pmc: do not continue if compatible not located testing commit f6363c437dc6e287259c05849286bf0faefb0fdd with gcc (GCC) 8.1.0 kernel signature: c86140bccf4d2d295842999bb5057fb77a6220fc81649465f7894331632866fd all runs: OK # git bisect good f6363c437dc6e287259c05849286bf0faefb0fdd Bisecting: 3649 revisions left to test after this (roughly 12 steps) [c4e181d6fec49033f8f2c1b2d8b1de538ad4cd11] dt-bindings: reset: imx7: Document usage on i.MX8MP SoC testing commit c4e181d6fec49033f8f2c1b2d8b1de538ad4cd11 with gcc (GCC) 8.1.0 kernel signature: 0cc27e98eb0c194e4dde2412471ea4cbc84a16f5055273d3c4477beadf670c37 all runs: OK # git bisect good c4e181d6fec49033f8f2c1b2d8b1de538ad4cd11 Bisecting: 3649 revisions left to test after this (roughly 12 steps) [74c6881019b7d56c327fffc268d97adb5eb1b4f9] powerpc/watchpoint: Prepare handler to handle more than one watchpoint testing commit 74c6881019b7d56c327fffc268d97adb5eb1b4f9 with gcc (GCC) 8.1.0 kernel signature: 7a34f0c55be9e9016e226b72a0fd365a55aa9c6896a74d48208ef8c9930bf6cd all runs: OK # git bisect good 74c6881019b7d56c327fffc268d97adb5eb1b4f9 Bisecting: 3649 revisions left to test after this (roughly 12 steps) [f6c1fb0a76d97447ea7f928ee6a113ee15318df1] net: ethernet: dwmac: Fix an error code in imx_dwmac_probe() testing commit f6c1fb0a76d97447ea7f928ee6a113ee15318df1 with gcc (GCC) 8.1.0 kernel signature: f864cf658156386cb3073d04bc58ae999bdaa81e790257e7007a96d94b1a85a4 all runs: crashed: INFO: rcu detected stall in tipc_release # git bisect bad f6c1fb0a76d97447ea7f928ee6a113ee15318df1 Bisecting: 6 revisions left to test after this (roughly 3 steps) [a9a7d12954893f817dcb0652c488c7e823e7b8c6] Merge branch 'ena-xdp-fixes' testing commit a9a7d12954893f817dcb0652c488c7e823e7b8c6 with gcc (GCC) 8.1.0 kernel signature: a097cc2b2c6689076f69269a14f2b3cc8bed78759e0dc3db4aef28291aecaa05 all runs: crashed: INFO: rcu detected stall in tipc_release # git bisect bad a9a7d12954893f817dcb0652c488c7e823e7b8c6 Bisecting: 3 revisions left to test after this (roughly 2 steps) [5e9eeccc58f3e6bcc99b929670665d2ce047e9c9] tipc: fix NULL pointer dereference in streaming testing commit 5e9eeccc58f3e6bcc99b929670665d2ce047e9c9 with gcc (GCC) 8.1.0 kernel signature: c6ebb89e83ad65e0837b6e8f050e4ff606eeec2109b7f8e2462510cf121f55d5 run #0: crashed: INFO: rcu detected stall in tipc_release run #1: crashed: INFO: rcu detected stall in tipc_release run #2: crashed: INFO: rcu detected stall in tipc_release run #3: crashed: INFO: rcu detected stall in tipc_release run #4: crashed: INFO: rcu detected stall in corrupted run #5: crashed: INFO: rcu detected stall in tipc_release run #6: crashed: INFO: rcu detected stall in tipc_release run #7: crashed: INFO: rcu detected stall in tipc_release run #8: crashed: INFO: rcu detected stall in tipc_release run #9: crashed: INFO: rcu detected stall in tipc_release # git bisect bad 5e9eeccc58f3e6bcc99b929670665d2ce047e9c9 Bisecting: 0 revisions left to test after this (roughly 1 step) [c36f05559104b66bcd7f617e931e38c680227b74] genetlink: fix memory leaks in genl_family_rcv_msg_dumpit() testing commit c36f05559104b66bcd7f617e931e38c680227b74 with gcc (GCC) 8.1.0 kernel signature: b696cde7e3162121e99599d8d49cd5709b10de65025c096a7c1db576ca923ef3 all runs: OK # git bisect good c36f05559104b66bcd7f617e931e38c680227b74 5e9eeccc58f3e6bcc99b929670665d2ce047e9c9 is the first bad commit commit 5e9eeccc58f3e6bcc99b929670665d2ce047e9c9 Author: Tuong Lien Date: Wed Jun 3 12:06:01 2020 +0700 tipc: fix NULL pointer dereference in streaming syzbot found the following crash: general protection fault, probably for non-canonical address 0xdffffc0000000019: 0000 [#1] PREEMPT SMP KASAN KASAN: null-ptr-deref in range [0x00000000000000c8-0x00000000000000cf] CPU: 1 PID: 7060 Comm: syz-executor394 Not tainted 5.7.0-rc6-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:__tipc_sendstream+0xbde/0x11f0 net/tipc/socket.c:1591 Code: 00 00 00 00 48 39 5c 24 28 48 0f 44 d8 e8 fa 3e db f9 48 b8 00 00 00 00 00 fc ff df 48 8d bb c8 00 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 e2 04 00 00 48 8b 9b c8 00 00 00 48 b8 00 00 00 RSP: 0018:ffffc90003ef7818 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8797fd9d RDX: 0000000000000019 RSI: ffffffff8797fde6 RDI: 00000000000000c8 RBP: ffff888099848040 R08: ffff88809a5f6440 R09: fffffbfff1860b4c R10: ffffffff8c305a5f R11: fffffbfff1860b4b R12: ffff88809984857e R13: 0000000000000000 R14: ffff888086aa4000 R15: 0000000000000000 FS: 00000000009b4880(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000020000140 CR3: 00000000a7fdf000 CR4: 00000000001406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: tipc_sendstream+0x4c/0x70 net/tipc/socket.c:1533 sock_sendmsg_nosec net/socket.c:652 [inline] sock_sendmsg+0xcf/0x120 net/socket.c:672 ____sys_sendmsg+0x32f/0x810 net/socket.c:2352 ___sys_sendmsg+0x100/0x170 net/socket.c:2406 __sys_sendmmsg+0x195/0x480 net/socket.c:2496 __do_sys_sendmmsg net/socket.c:2525 [inline] __se_sys_sendmmsg net/socket.c:2522 [inline] __x64_sys_sendmmsg+0x99/0x100 net/socket.c:2522 do_syscall_64+0xf6/0x7d0 arch/x86/entry/common.c:295 entry_SYSCALL_64_after_hwframe+0x49/0xb3 RIP: 0033:0x440199 ... This bug was bisected to commit 0a3e060f340d ("tipc: add test for Nagle algorithm effectiveness"). However, it is not the case, the trouble was from the base in the case of zero data length message sending, we would unexpectedly make an empty 'txq' queue after the 'tipc_msg_append()' in Nagle mode. A similar crash can be generated even without the bisected patch but at the link layer when it accesses the empty queue. We solve the issues by building at least one buffer to go with socket's header and an optional data section that may be empty like what we had with the 'tipc_msg_build()'. Note: the previous commit 4c21daae3dbc ("tipc: Fix NULL pointer dereference in __tipc_sendstream()") is obsoleted by this one since the 'txq' will be never empty and the check of 'skb != NULL' is unnecessary but it is safe anyway. Reported-by: syzbot+8eac6d030e7807c21d32@syzkaller.appspotmail.com Fixes: c0bceb97db9e ("tipc: add smart nagle feature") Acked-by: Jon Maloy Signed-off-by: Tuong Lien Signed-off-by: David S. Miller net/tipc/msg.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) culprit signature: c6ebb89e83ad65e0837b6e8f050e4ff606eeec2109b7f8e2462510cf121f55d5 parent signature: b696cde7e3162121e99599d8d49cd5709b10de65025c096a7c1db576ca923ef3 revisions tested: 25, total time: 6h15m3.332438103s (build: 2h30m18.034606938s, test: 3h41m45.018018346s) first bad commit: 5e9eeccc58f3e6bcc99b929670665d2ce047e9c9 tipc: fix NULL pointer dereference in streaming cc: ["davem@davemloft.net" "jmaloy@redhat.com" "tuong.t.lien@dektech.com.au"] crash: INFO: rcu detected stall in tipc_release rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): ------------[ cut here ]------------ IRQs not enabled as expected WARNING: CPU: 1 PID: 9134 at kernel/sched/core.c:2675 try_invoke_on_locked_down_task+0x2d6/0x380 kernel/sched/core.c:2675 Kernel panic - not syncing: panic_on_warn set ... CPU: 1 PID: 9134 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x128/0x182 lib/dump_stack.c:118 panic+0x22a/0x4e3 kernel/panic.c:221 __warn.cold.10+0x25/0x26 kernel/panic.c:582 report_bug+0x1ad/0x270 lib/bug.c:195 fixup_bug arch/x86/kernel/traps.c:105 [inline] do_error_trap+0x123/0x210 arch/x86/kernel/traps.c:197 do_invalid_op+0x31/0x40 arch/x86/kernel/traps.c:216 invalid_op+0x23/0x30 arch/x86/entry/entry_64.S:1027 RIP: 0010:try_invoke_on_locked_down_task+0x2d6/0x380 kernel/sched/core.c:2675 Code: ff d4 41 89 c7 e9 0e ff ff ff 80 3d 6f 32 72 08 00 0f 85 60 fe ff ff 48 c7 c7 40 6b 8a 87 c6 05 5b 32 72 08 01 e8 96 88 f5 ff <0f> 0b e9 46 fe ff ff 48 89 14 24 4c 89 ee 48 89 df 41 ff d4 48 8b RSP: 0018:ffffc90000da8c38 EFLAGS: 00010086 RAX: 0000000000000000 RBX: ffff8880a8c28440 RCX: 0000000000000000 RDX: 0000000000010203 RSI: 0000000000000027 RDI: ffffffff8b908120 RBP: 1ffff920001b5189 R08: ffffed1015d245f2 R09: ffffed1015d245f2 R10: ffff8880ae922f8b R11: ffffed1015d245f1 R12: ffffffff8157a1b0 R13: ffffc90000da8d68 R14: ffff88809526c580 R15: ffffffff88db9ac0 rcu_print_task_stall kernel/rcu/tree_stall.h:269 [inline] print_other_cpu_stall kernel/rcu/tree_stall.h:477 [inline] check_cpu_stall kernel/rcu/tree_stall.h:636 [inline] rcu_pending kernel/rcu/tree.c:3471 [inline] rcu_sched_clock_irq.cold.90+0x93a/0xd59 kernel/rcu/tree.c:2486 update_process_times+0x1f/0x50 kernel/time/timer.c:1726 tick_sched_handle+0x6f/0x130 kernel/time/tick-sched.c:176 tick_sched_timer+0x3e/0xf0 kernel/time/tick-sched.c:1320 __run_hrtimer kernel/time/hrtimer.c:1520 [inline] __hrtimer_run_queues+0x4b1/0xb60 kernel/time/hrtimer.c:1584 hrtimer_interrupt+0x2e5/0x770 kernel/time/hrtimer.c:1646 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1080 [inline] smp_apic_timer_interrupt+0x15e/0x5f0 arch/x86/kernel/apic/apic.c:1105 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:829 RIP: 0010:native_safe_halt+0xe/0x10 arch/x86/include/asm/irqflags.h:61 Code: e9 57 ff ff ff 48 89 df e8 1f 80 68 fa e9 e6 fe ff ff 48 89 df e8 12 80 68 fa eb 9c e9 07 00 00 00 0f 00 2d 94 85 52 00 fb f4 90 e9 07 00 00 00 0f 00 2d 84 85 52 00 f4 c3 cc cc 41 56 41 55 RSP: 0018:ffffc900017a7ba0 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13 RAX: dffffc0000000000 RBX: ffff888094763708 RCX: 0000000000000002 RDX: 1ffffffff11a8ac3 RSI: 0000000000000000 RDI: ffffffff88d45618 RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000001 R10: ffffffff8b58aa87 R11: fffffbfff16b1550 R12: 0000000000000286 R13: ffffed10128ec6e1 R14: ffff8880ae938ac0 R15: 0000000000000001 arch_safe_halt arch/x86/include/asm/paravirt.h:144 [inline] kvm_wait+0x1c3/0x220 arch/x86/kernel/kvm.c:811 pv_wait arch/x86/include/asm/paravirt.h:655 [inline] pv_wait_head_or_lock kernel/locking/qspinlock_paravirt.h:470 [inline] __pv_queued_spin_lock_slowpath+0x92e/0xb80 kernel/locking/qspinlock.c:508 pv_queued_spin_lock_slowpath arch/x86/include/asm/paravirt.h:645 [inline] queued_spin_lock_slowpath arch/x86/include/asm/qspinlock.h:50 [inline] queued_spin_lock include/asm-generic/qspinlock.h:81 [inline] do_raw_spin_lock+0x211/0x2e0 kernel/locking/spinlock_debug.c:113 spin_lock_bh include/linux/spinlock.h:358 [inline] lock_sock_nested+0x35/0xf0 net/core/sock.c:3047 lock_sock include/net/sock.h:1576 [inline] tipc_release+0x56/0x11b0 net/tipc/socket.c:625 __sock_release+0xbb/0x270 net/socket.c:605 sock_close+0xf/0x20 net/socket.c:1278 __fput+0x2a4/0x7a0 fs/file_table.c:281 task_work_run+0xc2/0x160 kernel/task_work.c:123 tracehook_notify_resume include/linux/tracehook.h:188 [inline] exit_to_usermode_loop+0x23d/0x2d0 arch/x86/entry/common.c:165 prepare_exit_to_usermode arch/x86/entry/common.c:196 [inline] syscall_return_slowpath arch/x86/entry/common.c:279 [inline] do_syscall_64+0x52a/0x620 arch/x86/entry/common.c:305 entry_SYSCALL_64_after_hwframe+0x49/0xb3 RIP: 0033:0x416721 Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 RSP: 002b:00007fff54358270 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000416721 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 R10: 00007fff54358360 R11: 0000000000000293 R12: 000000000078c900 R13: 000000000078c900 R14: ffffffffffffffff R15: 000000000078bfac Kernel Offset: disabled Rebooting in 86400 seconds..