INFO: task kworker/1:2:92 blocked for more than 430 seconds. Not tainted 6.9.0-rc4-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:2 state:D stack:0 pid:92 tgid:92 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<818c2fc8>] (__schedule) from [<818c3c04>] (__schedule_loop kernel/sched/core.c:6823 [inline]) [<818c2fc8>] (__schedule) from [<818c3c04>] (schedule+0x2c/0xfc kernel/sched/core.c:6838) r10:82c16205 r9:00000000 r8:82714be8 r7:00000002 r6:df961d94 r5:83461800 r4:83461800 [<818c3bd8>] (schedule) from [<818c4214>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6895) r5:83461800 r4:82714be4 [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<818c680c>] (__mutex_lock.constprop.0) from [<818c73c0>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16205 r9:df961e20 r8:00000000 r7:ffffffff r6:00000000 r5:845ab5c0 r4:00000000 [<818c73ac>] (__mutex_lock_slowpath) from [<818c7400>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<818c73c4>] (mutex_lock) from [<8049c618>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2804) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vm_reset_perms mm/vmalloc.c:3251 [inline]) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vfree+0x170/0x1e4 mm/vmalloc.c:3330) r10:82c16205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:845ab5c0 r4:00000000 [<804a0338>] (vfree) from [<802ed950>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:83461800 r8:00000180 r7:00000000 r6:82c16200 r5:00001000 r4:7f029000 [<802ed920>] (module_memfree) from [<80391538>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:df94d000 [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<80391690>] (bpf_jit_free) from [<803927e0>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:841ccb54 r4:841cc800 [<80392694>] (bpf_prog_free_deferred) from [<8026660c>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:ddde40c0 r6:82c16200 r5:841ccb54 r4:82eb9300 [<80266454>] (process_one_work) from [<80267330>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266454>] (process_one_work) from [<80267330>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:83461800 r9:82eb932c r8:61c88647 r7:ddde40e0 r6:82604d40 r5:ddde40c0 r4:82eb9300 [<80267144>] (worker_thread) from [<80270044>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:df925e90 r8:8349c640 r7:82eb9300 r6:80267144 r5:83461800 r4:82eb6c00 [<8026ff40>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdf961fb0 to 0xdf961ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026ff40 r4:82eb6c00 INFO: task kworker/0:46:4259 blocked for more than 430 seconds. Not tainted 6.9.0-rc4-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:46 state:D stack:0 pid:4259 tgid:4259 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<818c2fc8>] (__schedule) from [<818c3c04>] (__schedule_loop kernel/sched/core.c:6823 [inline]) [<818c2fc8>] (__schedule) from [<818c3c04>] (schedule+0x2c/0xfc kernel/sched/core.c:6838) r10:82c16005 r9:00000000 r8:82714be8 r7:00000002 r6:dfc21d94 r5:847ce000 r4:847ce000 [<818c3bd8>] (schedule) from [<818c4214>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6895) r5:847ce000 r4:82714be4 [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<818c680c>] (__mutex_lock.constprop.0) from [<818c73c0>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16005 r9:dfc21e20 r8:00000000 r7:ffffffff r6:00000000 r5:84722000 r4:00000000 [<818c73ac>] (__mutex_lock_slowpath) from [<818c7400>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<818c73c4>] (mutex_lock) from [<8049c618>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2804) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vm_reset_perms mm/vmalloc.c:3251 [inline]) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vfree+0x170/0x1e4 mm/vmalloc.c:3330) r10:82c16005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84722000 r4:00000000 [<804a0338>] (vfree) from [<802ed950>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:847ce000 r8:00000080 r7:00000000 r6:82c16000 r5:00001000 r4:7f031000 [<802ed920>] (module_memfree) from [<80391538>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:df9d3000 [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<80391690>] (bpf_jit_free) from [<803927e0>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:84e3e754 r4:84e3e400 [<80392694>] (bpf_prog_free_deferred) from [<8026660c>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:dddd00c0 r6:82c16000 r5:84e3e754 r4:8470f380 [<80266454>] (process_one_work) from [<80267330>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266454>] (process_one_work) from [<80267330>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:847ce000 r9:8470f3ac r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:8470f380 [<80267144>] (worker_thread) from [<80270044>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:dfac1e90 r8:84d34a80 r7:8470f380 r6:80267144 r5:847ce000 r4:84d34980 [<8026ff40>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdfc21fb0 to 0xdfc21ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026ff40 r4:84d34980 INFO: task kworker/1:62:4267 blocked for more than 430 seconds. Not tainted 6.9.0-rc4-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:62 state:D stack:0 pid:4267 tgid:4267 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<818c2fc8>] (__schedule) from [<818c3c04>] (__schedule_loop kernel/sched/core.c:6823 [inline]) [<818c2fc8>] (__schedule) from [<818c3c04>] (schedule+0x2c/0xfc kernel/sched/core.c:6838) r10:82c16205 r9:00000000 r8:82714be8 r7:00000002 r6:dfce1d94 r5:847cbc00 r4:847cbc00 [<818c3bd8>] (schedule) from [<818c4214>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6895) r5:847cbc00 r4:82714be4 [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<818c680c>] (__mutex_lock.constprop.0) from [<818c73c0>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16205 r9:dfce1e20 r8:00000000 r7:ffffffff r6:00000000 r5:84792600 r4:00000000 [<818c73ac>] (__mutex_lock_slowpath) from [<818c7400>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<818c73c4>] (mutex_lock) from [<8049c618>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2804) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vm_reset_perms mm/vmalloc.c:3251 [inline]) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vfree+0x170/0x1e4 mm/vmalloc.c:3330) r10:82c16205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84792600 r4:00000000 [<804a0338>] (vfree) from [<802ed950>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:847cbc00 r8:00000180 r7:00000000 r6:82c16200 r5:00001000 r4:7f033000 [<802ed920>] (module_memfree) from [<80391538>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:dfa15000 [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<80391690>] (bpf_jit_free) from [<803927e0>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:84e49354 r4:84e49000 [<80392694>] (bpf_prog_free_deferred) from [<8026660c>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:ddde40c0 r6:82c16200 r5:84e49354 r4:84d33400 [<80266454>] (process_one_work) from [<80267330>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266454>] (process_one_work) from [<80267330>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:847cbc00 r9:84d3342c r8:61c88647 r7:ddde40e0 r6:82604d40 r5:ddde40c0 r4:84d33400 [<80267144>] (worker_thread) from [<80270044>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:dfe31e90 r8:84d34780 r7:84d33400 r6:80267144 r5:847cbc00 r4:8473db80 [<8026ff40>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdfce1fb0 to 0xdfce1ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026ff40 r4:8473db80 INFO: task kworker/1:64:4275 blocked for more than 430 seconds. Not tainted 6.9.0-rc4-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:64 state:D stack:0 pid:4275 tgid:4275 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<818c2fc8>] (__schedule) from [<818c3c04>] (__schedule_loop kernel/sched/core.c:6823 [inline]) [<818c2fc8>] (__schedule) from [<818c3c04>] (schedule+0x2c/0xfc kernel/sched/core.c:6838) r10:82c16205 r9:00000000 r8:82714be8 r7:00000002 r6:dfd95d94 r5:84eb0000 r4:84eb0000 [<818c3bd8>] (schedule) from [<818c4214>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6895) r5:84eb0000 r4:82714be4 [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<818c680c>] (__mutex_lock.constprop.0) from [<818c73c0>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16205 r9:dfd95e20 r8:00000000 r7:ffffffff r6:00000000 r5:844a0b80 r4:00000000 [<818c73ac>] (__mutex_lock_slowpath) from [<818c7400>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<818c73c4>] (mutex_lock) from [<8049c618>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2804) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vm_reset_perms mm/vmalloc.c:3251 [inline]) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vfree+0x170/0x1e4 mm/vmalloc.c:3330) r10:82c16205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:844a0b80 r4:00000000 [<804a0338>] (vfree) from [<802ed950>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:84eb0000 r8:00000180 r7:00000000 r6:82c16200 r5:00001000 r4:7f051000 [<802ed920>] (module_memfree) from [<80391538>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:dfe69000 [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<80391690>] (bpf_jit_free) from [<803927e0>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:84e3ff54 r4:84e3fc00 [<80392694>] (bpf_prog_free_deferred) from [<8026660c>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:ddde40c0 r6:82c16200 r5:84e3ff54 r4:84d33500 [<80266454>] (process_one_work) from [<80267330>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266454>] (process_one_work) from [<80267330>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:84eb0000 r9:84d3352c r8:61c88647 r7:ddde40e0 r6:82604d40 r5:ddde40c0 r4:84d33500 [<80267144>] (worker_thread) from [<80270044>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:dfce1e90 r8:8470cfc0 r7:84d33500 r6:80267144 r5:84eb0000 r4:8473dec0 [<8026ff40>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdfd95fb0 to 0xdfd95ff8) 5fa0: 00000000 00000000 00000000 00000000 5fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 5fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026ff40 r4:8473dec0 INFO: task kworker/1:66:4282 blocked for more than 430 seconds. Not tainted 6.9.0-rc4-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:66 state:D stack:0 pid:4282 tgid:4282 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<818c2fc8>] (__schedule) from [<818c3c04>] (__schedule_loop kernel/sched/core.c:6823 [inline]) [<818c2fc8>] (__schedule) from [<818c3c04>] (schedule+0x2c/0xfc kernel/sched/core.c:6838) r10:82c16205 r9:00000000 r8:82714be8 r7:00000002 r6:dfeadd94 r5:84cabc00 r4:84cabc00 [<818c3bd8>] (schedule) from [<818c4214>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6895) r5:84cabc00 r4:82714be4 [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<818c680c>] (__mutex_lock.constprop.0) from [<818c73c0>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16205 r9:dfeade20 r8:00000000 r7:ffffffff r6:00000000 r5:84d64b80 r4:00000000 [<818c73ac>] (__mutex_lock_slowpath) from [<818c7400>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<818c73c4>] (mutex_lock) from [<8049c618>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2804) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vm_reset_perms mm/vmalloc.c:3251 [inline]) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vfree+0x170/0x1e4 mm/vmalloc.c:3330) r10:82c16205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84d64b80 r4:00000000 [<804a0338>] (vfree) from [<802ed950>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:84cabc00 r8:00000180 r7:00000000 r6:82c16200 r5:00001000 r4:7f053000 [<802ed920>] (module_memfree) from [<80391538>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:dfea9000 [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<80391690>] (bpf_jit_free) from [<803927e0>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:843ec754 r4:843ec400 [<80392694>] (bpf_prog_free_deferred) from [<8026660c>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:ddde40c0 r6:82c16200 r5:843ec754 r4:84d33300 [<80266454>] (process_one_work) from [<80267330>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266454>] (process_one_work) from [<80267330>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:84cabc00 r9:84d3332c r8:61c88647 r7:ddde40e0 r6:82604d40 r5:ddde40c0 r4:84d33300 [<80267144>] (worker_thread) from [<80270044>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:dfce1e90 r8:8470d080 r7:84d33300 r6:80267144 r5:84cabc00 r4:8473d7c0 [<8026ff40>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdfeadfb0 to 0xdfeadff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026ff40 r4:8473d7c0 INFO: task kworker/0:51:4294 blocked for more than 430 seconds. Not tainted 6.9.0-rc4-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:51 state:D stack:0 pid:4294 tgid:4294 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<818c2fc8>] (__schedule) from [<818c3c04>] (__schedule_loop kernel/sched/core.c:6823 [inline]) [<818c2fc8>] (__schedule) from [<818c3c04>] (schedule+0x2c/0xfc kernel/sched/core.c:6838) r10:82c16005 r9:00000000 r8:82714be8 r7:00000002 r6:dfa85d94 r5:84cac800 r4:84cac800 [<818c3bd8>] (schedule) from [<818c4214>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6895) r5:84cac800 r4:82714be4 [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<818c41fc>] (schedule_preempt_disabled) from [<818c6af4>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<818c680c>] (__mutex_lock.constprop.0) from [<818c73c0>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:82c16005 r9:dfa85e20 r8:00000000 r7:ffffffff r6:00000000 r5:84722b40 r4:00000000 [<818c73ac>] (__mutex_lock_slowpath) from [<818c7400>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<818c73c4>] (mutex_lock) from [<8049c618>] (_vm_unmap_aliases+0x60/0x2e8 mm/vmalloc.c:2804) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vm_reset_perms mm/vmalloc.c:3251 [inline]) [<8049c5b8>] (_vm_unmap_aliases) from [<804a04a8>] (vfree+0x170/0x1e4 mm/vmalloc.c:3330) r10:82c16005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84722b40 r4:00000000 [<804a0338>] (vfree) from [<802ed950>] (module_memfree+0x30/0x50 kernel/module/main.c:1189) r9:84cac800 r8:00000080 r7:00000000 r6:82c16000 r5:00001000 r4:7f035000 [<802ed920>] (module_memfree) from [<80391538>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1058) r5:00001000 r4:dfa5b000 [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_binary_free kernel/bpf/core.c:1104 [inline]) [<80391528>] (bpf_jit_free_exec) from [<803916f8>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1228) [<80391690>] (bpf_jit_free) from [<803927e0>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2783) r5:846fbb54 r4:846fb800 [<80392694>] (bpf_prog_free_deferred) from [<8026660c>] (process_one_work+0x1b8/0x508 kernel/workqueue.c:3254) r7:dddd00c0 r6:82c16000 r5:846fbb54 r4:8470f600 [<80266454>] (process_one_work) from [<80267330>] (process_scheduled_works kernel/workqueue.c:3335 [inline]) [<80266454>] (process_one_work) from [<80267330>] (worker_thread+0x1ec/0x418 kernel/workqueue.c:3416) r10:84cac800 r9:8470f62c r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:8470f600 [<80267144>] (worker_thread) from [<80270044>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:dfe3de90 r8:84722a80 r7:8470f600 r6:80267144 r5:84cac800 r4:84792680 [<8026ff40>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdfa85fb0 to 0xdfa85ff8) 5fa0: 00000000 00000000 00000000 00000000 5fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 5fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026ff40 r4:84792680 NMI backtrace for cpu 0 CPU: 0 PID: 31 Comm: khungtaskd Not tainted 6.9.0-rc4-syzkaller #0 Hardware name: ARM-Versatile Express Call trace: [<818a18bc>] (dump_backtrace) from [<818a19b8>] (show_stack+0x18/0x1c arch/arm/kernel/traps.c:256) r7:00000000 r6:00000013 r5:60000093 r4:81fcea10 [<818a19a0>] (show_stack) from [<818bf0fc>] (__dump_stack lib/dump_stack.c:88 [inline]) [<818a19a0>] (show_stack) from [<818bf0fc>] (dump_stack_lvl+0x70/0x7c lib/dump_stack.c:114) [<818bf08c>] (dump_stack_lvl) from [<818bf120>] (dump_stack+0x18/0x1c lib/dump_stack.c:123) r5:00000000 r4:00000001 [<818bf108>] (dump_stack) from [<8188ec94>] (nmi_cpu_backtrace+0x160/0x17c lib/nmi_backtrace.c:113) [<8188eb34>] (nmi_cpu_backtrace) from [<8188ede0>] (nmi_trigger_cpumask_backtrace+0x130/0x1d8 lib/nmi_backtrace.c:62) r7:00000000 r6:8260c590 r5:8261a88c r4:ffffffff [<8188ecb0>] (nmi_trigger_cpumask_backtrace) from [<802105b4>] (arch_trigger_cpumask_backtrace+0x18/0x1c arch/arm/kernel/smp.c:851) r9:8260c6f4 r8:0000790f r7:8289ffe0 r6:00007d5b r5:8507d604 r4:83401124 [<8021059c>] (arch_trigger_cpumask_backtrace) from [<8034eac8>] (trigger_all_cpu_backtrace include/linux/nmi.h:160 [inline]) [<8021059c>] (arch_trigger_cpumask_backtrace) from [<8034eac8>] (check_hung_uninterruptible_tasks kernel/hung_task.c:223 [inline]) [<8021059c>] (arch_trigger_cpumask_backtrace) from [<8034eac8>] (watchdog+0x480/0x594 kernel/hung_task.c:380) [<8034e648>] (watchdog) from [<80270044>] (kthread+0x104/0x134 kernel/kthread.c:388) r10:00000000 r9:df819e58 r8:82e98380 r7:00000000 r6:8034e648 r5:82ee8c00 r4:82f41340 [<8026ff40>] (kthread) from [<80200104>] (ret_from_fork+0x14/0x30 arch/arm/kernel/entry-common.S:134) Exception stack(0xdf8ddfb0 to 0xdf8ddff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026ff40 r4:82f41340 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 3535 Comm: syz-executor.0 Not tainted 6.9.0-rc4-syzkaller #0 Hardware name: ARM-Versatile Express PC is at __update_cpu_freelist_fast mm/slub.c:3288 [inline] PC is at do_slab_free mm/slub.c:4242 [inline] PC is at slab_free mm/slub.c:4281 [inline] PC is at kmem_cache_free+0x2e4/0x444 mm/slub.c:4344 LR is at 0x20609 pc : [<804b459c>] lr : [<00020609>] psr: 60000013 sp : df9bde90 ip : ddde81a0 fp : df9bdedc r10: 833a12d0 r9 : df9bde90 r8 : 60000013 r7 : 00020601 r6 : dde6d2a4 r5 : 833a1120 r4 : 82c99b40 r3 : 824b91a0 r2 : 00020601 r1 : 5b92f000 r0 : 833a12d0 Flags: nZCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none Control: 30c5387d Table: 84587e80 DAC: 00000000 Call trace: [<804b42b8>] (kmem_cache_free) from [<80514a9c>] (__d_free fs/dcache.c:297 [inline]) [<804b42b8>] (kmem_cache_free) from [<80514a9c>] (dentry_free+0x4c/0xc0 fs/dcache.c:374) r10:00000006 r9:8372e000 r8:82c9e610 r7:8487ef80 r6:833a1178 r5:00000000 r4:833a1120 [<80514a50>] (dentry_free) from [<80515274>] (__dentry_kill+0x174/0x1bc fs/dcache.c:622) r5:00000000 r4:833a1120 [<80515100>] (__dentry_kill) from [<805152e8>] (dput.part.0+0x2c/0xc0 fs/dcache.c:845) r7:8487ef80 r6:833a1120 r5:082e0003 r4:833a1120 [<805152bc>] (dput.part.0) from [<805153b4>] (dput+0x38/0x3c fs/dcache.c:841) r5:082e0003 r4:833a1120 [<8051537c>] (dput) from [<804f8d58>] (__fput+0xd0/0x2d4 fs/file_table.c:430) r5:082e0003 r4:84606e40 [<804f8c88>] (__fput) from [<804f9018>] (__fput_sync+0x3c/0x40 fs/file_table.c:507) r9:8372e000 r8:80200288 r7:00000006 r6:00000000 r5:84606e40 r4:00000000 [<804f8fdc>] (__fput_sync) from [<804f4570>] (__do_sys_close fs/open.c:1556 [inline]) [<804f8fdc>] (__fput_sync) from [<804f4570>] (sys_close+0x30/0x64 fs/open.c:1541) [<804f4540>] (sys_close) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:66) Exception stack(0xdf9bdfa8 to 0xdf9bdff0) dfa0: 00000000 00000003 00000003 00000001 00000001 0011c000 dfc0: 00000000 00000003 00000000 00000006 00140000 000004f0 7eef4670 7eef4630 dfe0: 00000000 7eef4598 00021574 0004f5a0 r5:00000003 r4:00000000