INFO: task kworker/0:51:4138 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:51 state:D stack:0 pid:4138 tgid:4138 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:dfab1da4 r5:849f4800 r4:849f4800 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:849f4800 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfab1e20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:8446ef00 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:849f4800 r8:00800000 r7:00000000 r6:82c18000 r5:00001000 r4:7f047000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfaf1000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:84518754 r4:84518400 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:dddd00c0 r6:82c18000 r5:84518754 r4:84a28700 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:849f4800 r9:84a2872c r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:84a28700 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:dfa65e78 r8:84a2b400 r7:84a28700 r6:80266ac8 r5:849f4800 r4:8446e980 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfab1fb0 to 0xdfab1ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:8446e980 INFO: task kworker/1:32:4141 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:32 state:D stack:0 pid:4141 tgid:4141 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:dfae1da4 r5:849f6000 r4:849f6000 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:849f6000 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfae1e20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84a2bb80 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:849f6000 r8:01800000 r7:00000000 r6:82c18200 r5:00001000 r4:7f04b000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfb2d000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:8451c354 r4:8451c000 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:ddde40c0 r6:82c18200 r5:8451c354 r4:84a21a00 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:849f6000 r9:84a21a2c r8:61c88647 r7:ddde40e0 r6:82604d40 r5:ddde40c0 r4:84a21a00 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:e0011e78 r8:84a2be00 r7:84a21a00 r6:80266ac8 r5:849f6000 r4:84a2bd40 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfae1fb0 to 0xdfae1ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:84a2bd40 INFO: task kworker/0:53:4144 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:53 state:D stack:0 pid:4144 tgid:4144 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:dfb01da4 r5:849f6c00 r4:849f6c00 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:849f6c00 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfb01e20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84615880 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:849f6c00 r8:00800000 r7:00000000 r6:82c18000 r5:00001000 r4:7f00b000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfd6f000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:846d8354 r4:846d8000 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:dddd00c0 r6:82c18000 r5:846d8354 r4:84a28800 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:849f6c00 r9:84a2882c r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:84a28800 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:dfab1e78 r8:84a2bf00 r7:84a28800 r6:80266ac8 r5:849f6c00 r4:8446edc0 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfb01fb0 to 0xdfb01ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:8446edc0 INFO: task kworker/0:54:4148 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:54 state:D stack:0 pid:4148 tgid:4148 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:dfb31da4 r5:849f1800 r4:849f1800 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:849f1800 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfb31e20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84615ec0 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:849f1800 r8:00800000 r7:00000000 r6:82c18000 r5:00001000 r4:7f003000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfd21000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:846d8754 r4:846d8400 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:dddd00c0 r6:82c18000 r5:846d8754 r4:84a28900 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:849f1800 r9:84a2892c r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:84a28900 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:dfb01e78 r8:84a2b300 r7:84a28900 r6:80266ac8 r5:849f1800 r4:8446ee40 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfb31fb0 to 0xdfb31ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:8446ee40 INFO: task kworker/0:55:4149 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:55 state:D stack:0 pid:4149 tgid:4149 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:dfb39da4 r5:841f8c00 r4:841f8c00 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:841f8c00 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfb39e20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:8446ebc0 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:841f8c00 r8:00800000 r7:00000000 r6:82c18000 r5:00001000 r4:7f049000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfb21000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:849c4354 r4:849c4000 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:dddd00c0 r6:82c18000 r5:849c4354 r4:84a28980 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:841f8c00 r9:84a289ac r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:84a28980 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:dfb31e78 r8:84a2bb40 r7:84a28980 r6:80266ac8 r5:841f8c00 r4:846156c0 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfb39fb0 to 0xdfb39ff8) 9fa0: 00000000 00000000 00000000 00000000 9fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 9fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:846156c0 INFO: task kworker/0:57:4151 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/0:57 state:D stack:0 pid:4151 tgid:4151 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:dfb49da4 r5:849f8000 r4:849f8000 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:849f8000 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfb49e20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18005 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84765440 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:849f8000 r8:00800000 r7:00000000 r6:82c18000 r5:00001000 r4:7f04d000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfb6f000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:8451d754 r4:8451d400 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:dddd00c0 r6:82c18000 r5:8451d754 r4:84a28a80 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:849f8000 r9:84a28aac r8:61c88647 r7:dddd00e0 r6:82604d40 r5:dddd00c0 r4:84a28a80 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:dfb45e78 r8:845bcc40 r7:84a28a80 r6:80266ac8 r5:849f8000 r4:847a6300 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfb49fb0 to 0xdfb49ff8) 9fa0: 00000000 00000000 00000000 00000000 9fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 9fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:847a6300 INFO: task kworker/1:33:4152 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:33 state:D stack:0 pid:4152 tgid:4152 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:df9fdda4 r5:849f8c00 r4:849f8c00 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:849f8c00 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:df9fde20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84a23a80 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:849f8c00 r8:01800000 r7:00000000 r6:82c18200 r5:00001000 r4:7f04f000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfb7b000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:8451db54 r4:8451d800 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:ddde40c0 r6:82c18200 r5:8451db54 r4:84a21b00 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:849f8c00 r9:84a21b2c r8:61c88647 r7:ddde40e0 r6:82604d40 r5:ddde40c0 r4:84a21b00 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:e0011e78 r8:8475ba80 r7:84a21b00 r6:80266ac8 r5:849f8c00 r4:8475b980 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdf9fdfb0 to 0xdf9fdff8) dfa0: 00000000 00000000 00000000 00000000 dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 dfe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:8475b980 INFO: task kworker/1:34:4156 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:34 state:D stack:0 pid:4156 tgid:4156 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:dfd65da4 r5:849f9800 r4:849f9800 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:849f9800 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfd65e20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84765500 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:849f9800 r8:01800000 r7:00000000 r6:82c18200 r5:00001000 r4:7f051000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfba7000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:849c5754 r4:849c5400 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:ddde40c0 r6:82c18200 r5:849c5754 r4:84a21c00 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:849f9800 r9:84a21c2c r8:61c88647 r7:ddde40e0 r6:82604d40 r5:ddde40c0 r4:84a21c00 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:e0011e78 r8:84761c40 r7:84a21c00 r6:80266ac8 r5:849f9800 r4:84761d40 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfd65fb0 to 0xdfd65ff8) 5fa0: 00000000 00000000 00000000 00000000 5fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 5fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:84761d40 INFO: task kworker/1:35:4161 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:35 state:D stack:0 pid:4161 tgid:4161 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:dfbc1da4 r5:849fc800 r4:849fc800 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:849fc800 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfbc1e20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:847a6cc0 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:849fc800 r8:01800000 r7:00000000 r6:82c18200 r5:00001000 r4:7f053000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfbc5000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:849c4f54 r4:849c4c00 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:ddde40c0 r6:82c18200 r5:849c4f54 r4:84a21b80 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:849fc800 r9:84a21bac r8:61c88647 r7:ddde40e0 r6:82604d40 r5:ddde40c0 r4:84a21b80 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:e0011e78 r8:84a320c0 r7:84a21b80 r6:80266ac8 r5:849fc800 r4:84a32000 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfbc1fb0 to 0xdfbc1ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:84a32000 INFO: task kworker/1:36:4162 blocked for more than 430 seconds. Not tainted 6.12.0-rc1-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:36 state:D stack:0 pid:4162 tgid:4162 ppid:2 flags:0x00000000 Workqueue: events bpf_prog_free_deferred Call trace: [<819bac54>] (__schedule) from [<819bb894>] (__schedule_loop kernel/sched/core.c:6752 [inline]) [<819bac54>] (__schedule) from [<819bb894>] (schedule+0x2c/0xfc kernel/sched/core.c:6767) r10:8260ca7c r9:00000000 r8:827174e4 r7:00000002 r6:dfae5da4 r5:849fbc00 r4:849fbc00 [<819bb868>] (schedule) from [<819bbc48>] (schedule_preempt_disabled+0x18/0x24 kernel/sched/core.c:6824) r5:849fbc00 r4:827174e0 [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock_common kernel/locking/mutex.c:684 [inline]) [<819bbc30>] (schedule_preempt_disabled) from [<819be720>] (__mutex_lock.constprop.0+0x2e8/0xae0 kernel/locking/mutex.c:752) [<819be438>] (__mutex_lock.constprop.0) from [<819befec>] (__mutex_lock_slowpath+0x14/0x18 kernel/locking/mutex.c:1040) r10:8260ca7c r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:dfae5e20 r4:00000000 [<819befd8>] (__mutex_lock_slowpath) from [<819bf02c>] (mutex_lock+0x3c/0x40 kernel/locking/mutex.c:286) [<819beff0>] (mutex_lock) from [<804adbf8>] (_vm_unmap_aliases+0x68/0x240 mm/vmalloc.c:2844) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vm_reset_perms mm/vmalloc.c:3272 [inline]) [<804adb90>] (_vm_unmap_aliases) from [<804b1954>] (vfree+0x170/0x1e4 mm/vmalloc.c:3351) r10:82c18205 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:84a324c0 r4:00000000 [<804b17e4>] (vfree) from [<8050fba0>] (execmem_free+0x30/0x64 mm/execmem.c:69) r9:849fbc00 r8:01800000 r7:00000000 r6:82c18200 r5:00001000 r4:7f055000 [<8050fb70>] (execmem_free) from [<8039c484>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1072) r5:00001000 r4:dfbfd000 [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_binary_free kernel/bpf/core.c:1118 [inline]) [<8039c474>] (bpf_jit_free_exec) from [<8039c864>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1241) [<8039c7fc>] (bpf_jit_free) from [<8039d9b8>] (bpf_prog_free_deferred+0x14c/0x164 kernel/bpf/core.c:2815) r5:849c7354 r4:849c7000 [<8039d86c>] (bpf_prog_free_deferred) from [<802660d0>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3229) r7:ddde40c0 r6:82c18200 r5:849c7354 r4:84a21c80 [<80265f1c>] (process_one_work) from [<80266cb4>] (process_scheduled_works kernel/workqueue.c:3310 [inline]) [<80265f1c>] (process_one_work) from [<80266cb4>] (worker_thread+0x1ec/0x3bc kernel/workqueue.c:3391) r10:849fbc00 r9:84a21cac r8:61c88647 r7:ddde40e0 r6:82604d40 r5:ddde40c0 r4:84a21c80 [<80266ac8>] (worker_thread) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:e0011e78 r8:84a32180 r7:84a21c80 r6:80266ac8 r5:849fbc00 r4:84a32000 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdfae5fb0 to 0xdfae5ff8) 5fa0: 00000000 00000000 00000000 00000000 5fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 5fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:84a32000 Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings NMI backtrace for cpu 0 CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Not tainted 6.12.0-rc1-syzkaller #0 Hardware name: ARM-Versatile Express Call trace: [<81998798>] (dump_backtrace) from [<81998894>] (show_stack+0x18/0x1c arch/arm/kernel/traps.c:257) r7:00000000 r6:00000113 r5:60000193 r4:8203d2fc [<8199887c>] (show_stack) from [<819b6d40>] (__dump_stack lib/dump_stack.c:94 [inline]) [<8199887c>] (show_stack) from [<819b6d40>] (dump_stack_lvl+0x70/0x7c lib/dump_stack.c:120) [<819b6cd0>] (dump_stack_lvl) from [<819b6d64>] (dump_stack+0x18/0x1c lib/dump_stack.c:129) r5:00000000 r4:00000001 [<819b6d4c>] (dump_stack) from [<81985a58>] (nmi_cpu_backtrace+0x160/0x17c lib/nmi_backtrace.c:113) [<819858f8>] (nmi_cpu_backtrace) from [<81985ba4>] (nmi_trigger_cpumask_backtrace+0x130/0x1d8 lib/nmi_backtrace.c:62) r7:00000000 r6:8260c5d0 r5:8261a88c r4:ffffffff [<81985a74>] (nmi_trigger_cpumask_backtrace) from [<802103e8>] (arch_trigger_cpumask_backtrace+0x18/0x1c arch/arm/kernel/smp.c:851) r9:000090e7 r8:828b6cf8 r7:8260c730 r6:00007d56 r5:8261ae48 r4:85292c1c [<802103d0>] (arch_trigger_cpumask_backtrace) from [<803581a0>] (trigger_all_cpu_backtrace include/linux/nmi.h:162 [inline]) [<802103d0>] (arch_trigger_cpumask_backtrace) from [<803581a0>] (check_hung_uninterruptible_tasks kernel/hung_task.c:223 [inline]) [<802103d0>] (arch_trigger_cpumask_backtrace) from [<803581a0>] (watchdog+0x498/0x5b8 kernel/hung_task.c:379) [<80357d08>] (watchdog) from [<8026fd20>] (kthread+0x104/0x134 kernel/kthread.c:389) r10:00000000 r9:df819e58 r8:82f23ac0 r7:00000000 r6:80357d08 r5:82e59800 r4:82ec92c0 [<8026fc1c>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137) Exception stack(0xdf8e1fb0 to 0xdf8e1ff8) 1fa0: 00000000 00000000 00000000 00000000 1fc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 1fe0: 00000000 00000000 00000000 00000000 00000013 00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8026fc1c r4:82ec92c0 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 UID: 0 PID: 3570 Comm: syz-executor.0 Not tainted 6.12.0-rc1-syzkaller #0 Hardware name: ARM-Versatile Express PC is at hlist_bl_first_rcu include/linux/rculist_bl.h:24 [inline] PC is at __d_lookup_rcu+0x40/0x114 fs/dcache.c:2217 LR is at 0x200cc pc : [<8053749c>] lr : [<000200cc>] psr: 60000013 sp : dfde5db0 ip : ddcc5000 fp : dfde5de4 r10: 82edb015 r9 : 82edb016 r8 : 80808080 r7 : 803308ee r6 : 00000003 r5 : 833cce58 r4 : dfde5e90 r3 : 82edb012 r2 : dfde5ec0 r1 : dfde5e98 r0 : 833cce58 Flags: nZCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none Control: 30c5387d Table: 836f6340 DAC: 00000000 Call trace: [<8053745c>] (__d_lookup_rcu) from [<80525e9c>] (lookup_fast+0x30/0x138 fs/namei.c:1667) r10:82edb015 r9:82edb016 r8:80808080 r7:00000002 r6:833cce58 r5:dfde5e90 r4:dfde5e90 [<80525e6c>] (lookup_fast) from [<805291d4>] (walk_component+0x24/0x170 fs/namei.c:2049) r7:00000002 r6:dfde5e90 r5:dfde5e90 r4:fefefeff [<805291b0>] (walk_component) from [<8052955c>] (link_path_walk.part.0.constprop.0+0x23c/0x3c0 fs/namei.c:2418) r9:82edb016 r8:80808080 r7:2f2f2f2f r6:d0d0d0d0 r5:dfde5e90 r4:fefefeff [<80529320>] (link_path_walk.part.0.constprop.0) from [<80529efc>] (link_path_walk fs/namei.c:2348 [inline]) [<80529320>] (link_path_walk.part.0.constprop.0) from [<80529efc>] (path_lookupat+0x3c/0x1a4 fs/namei.c:2579) r10:00000034 r9:00000000 r8:dfde5f84 r7:82edb010 r6:00000001 r5:dfde5f84 r4:dfde5e90 [<80529ec0>] (path_lookupat) from [<8052a428>] (filename_lookup+0xc0/0x190 fs/namei.c:2609) r7:00000080 r6:82edb000 r5:8381bc00 r4:ffffff9c [<8052a368>] (filename_lookup) from [<8052a628>] (user_path_at+0x4c/0x64 fs/namei.c:3016) r9:8381bc00 r8:8020029c r7:00000034 r6:ffffff9c r5:00000080 r4:82edb000 [<8052a5dc>] (user_path_at) from [<80543ed0>] (ksys_umount fs/namespace.c:2033 [inline]) [<8052a5dc>] (user_path_at) from [<80543ed0>] (__do_sys_umount fs/namespace.c:2041 [inline]) [<8052a5dc>] (user_path_at) from [<80543ed0>] (sys_umount+0x54/0x94 fs/namespace.c:2039) r6:7ef43630 r5:00140000 r4:00000009 [<80543e7c>] (sys_umount) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:67) Exception stack(0xdfde5fa8 to 0xdfde5ff0) 5fa0: 7ef42580 00140000 7ef42580 00000009 00000000 00000000 5fc0: 7ef42580 00140000 7ef43630 00000034 01f84f58 00093600 0009364c 7ef43630 5fe0: 7f0302ff 7ef42500 00014a20 000520c8 r4:7ef42580