====================================== | [ 388.921781][ C3] RCU nest depth: 3, expected: 0 | [ 388.921866][ C3] INFO: lockdep is turned off. | [ 388.921947][ C3] Preemption disabled at: | [ 388.921948][ C3] 0x0 [ 388.922102][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 388.922104][ C3] Call Trace: [ 388.922105][ C3] [ 388.922107][ C3] dump_stack_lvl (lib/dump_stack.c:94 lib/dump_stack.c:120) [ 388.922114][ C3] __might_resched.cold (kernel/sched/core.c:9163) [ 388.922118][ C3] ? filemap_map_pages (mm/filemap.c:3940) [ 388.922121][ C3] ? perf_trace_sched_switch (./include/linux/list.h:1021 (discriminator 3)) [ 388.922125][ C3] ? handle_mm_fault (mm/memory.c:6734) [ 388.922128][ C3] ? exc_page_fault (arch/x86/mm/fault.c:1474 arch/x86/mm/fault.c:1527) [ 388.922132][ C3] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:618) [ 388.922134][ C3] __mutex_lock (kernel/locking/mutex.c:623 kernel/locking/mutex.c:820) [ 388.922136][ C3] ? __tcf_chain_put (net/sched/cls_api.c:694) [ 388.922140][ C3] ? ww_mutex_lock (kernel/locking/mutex.c:933) [ 388.922143][ C3] ? __rwlock_init (kernel/locking/spinlock_debug.c:48) [ 388.922146][ C3] ? __tcf_chain_put (net/sched/cls_api.c:694) [ 388.922148][ C3] __tcf_chain_put (net/sched/cls_api.c:694) [ 388.922149][ C3] ? free_percpu.part.0 (./include/linux/spinlock.h:408 (discriminator 3) mm/percpu.c:2283 (discriminator 3)) [ 388.922152][ C3] tcf_action_rcu_free (net/sched/act_api.c:130 net/sched/act_api.c:370 net/sched/act_api.c:378) [ 388.922154][ C3] ? rcu_do_batch (./include/linux/rcupdate.h:310 (discriminator 2) kernel/rcu/tree.c:2619 (discriminator 2)) [ 388.922157][ C3] rcu_do_batch (kernel/rcu/tree.c:2617) [ 388.922160][ C3] ? trace_rcu_batch_end (./include/trace/events/rcu.h:714 (discriminator 19)) [ 388.922162][ C3] ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40 (discriminator 22)) [ 388.922165][ C3] ? do_raw_spin_unlock (./include/linux/instrumented.h:82 ./include/linux/atomic/atomic-instrumented.h:32 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 388.922166][ C3] ? trace_hardirqs_on (kernel/trace/trace_preemptirq.c:78) [ 388.922168][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:179 (discriminator 1) kernel/locking/spinlock.c:198 (discriminator 1)) [ 388.922170][ C3] rcu_core (kernel/rcu/tree.c:2869) [ 388.922172][ C3] handle_softirqs (kernel/softirq.c:622) [ 388.922175][ C3] ? clockevents_tick_resume (kernel/time/clockevents.c:193) [ 388.922178][ C3] ? _local_bh_enable (kernel/softirq.c:405 (discriminator 1)) [ 388.922179][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3)) [ 388.922181][ C3] ? lock_release (./include/trace/events/lock.h:69 (discriminator 22) kernel/locking/lockdep.c:5879 (discriminator 22)) [ 388.922183][ C3] __irq_exit_rcu (kernel/softirq.c:656 kernel/softirq.c:496 kernel/softirq.c:735) [ 388.922184][ C3] irq_exit_rcu (kernel/softirq.c:752) [ 388.922186][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1061 (discriminator 37) arch/x86/kernel/apic/apic.c:1061 (discriminator 37)) [ 388.922187][ C3] [ 388.922188][ C3] [ 388.922189][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:697) [ 388.922190][ C3] RIP: 0010:kasan_check_range (mm/kasan/generic.c:114 mm/kasan/generic.c:140 mm/kasan/generic.c:172 mm/kasan/generic.c:191 mm/kasan/generic.c:200) [ 388.922194][ C3] Code: fc ff df 49 c1 e9 03 49 c1 eb 03 4c 89 74 24 08 4c 8d 74 37 ff 4e 8d 54 08 01 49 01 c3 49 8d 1c 01 4c 89 d1 4c 89 d8 4c 29 d9 <48> 83 f9 10 0f 8e f2 00 00 00 45 89 d9 41 83 e1 07 0f 85 a0 00 00 All code ======== 0: fc cld 1: ff lcall (bad) 2: df 49 c1 fisttps -0x3f(%rcx) 5: e9 03 49 c1 eb jmp 0xffffffffebc1490d a: 03 4c 89 74 add 0x74(%rcx,%rcx,4),%ecx e: 24 08 and $0x8,%al 10: 4c 8d 74 37 ff lea -0x1(%rdi,%rsi,1),%r14 15: 4e 8d 54 08 01 lea 0x1(%rax,%r9,1),%r10 1a: 49 01 c3 add %rax,%r11 1d: 49 8d 1c 01 lea (%r9,%rax,1),%rbx 21: 4c 89 d1 mov %r10,%rcx 24: 4c 89 d8 mov %r11,%rax 27: 4c 29 d9 sub %r11,%rcx 2a:* 48 83 f9 10 cmp $0x10,%rcx <-- trapping instruction 2e: 0f 8e f2 00 00 00 jle 0x126 34: 45 89 d9 mov %r11d,%r9d 37: 41 83 e1 07 and $0x7,%r9d 3b: 0f .byte 0xf 3c: 85 .byte 0x85 3d: a0 .byte 0xa0 ... Code starting with the faulting instruction =========================================== 0: 48 83 f9 10 cmp $0x10,%rcx 4: 0f 8e f2 00 00 00 jle 0xfc a: 45 89 d9 mov %r11d,%r9d d: 41 83 e1 07 and $0x7,%r9d 11: 0f .byte 0xf 12: 85 .byte 0x85 13: a0 .byte 0xa0 ... [ 388.922196][ C3] RSP: 0000:ffa0000000517a50 EFLAGS: 00000202 [ 388.922199][ C3] RAX: fffa7c000007386e RBX: fffa7c000007386e RCX: 0000000000000001 [ 388.922201][ C3] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffd400000039c374 [ 388.922202][ C3] RBP: dffffc0000000000 R08: ffffffffb2706efa R09: 1ffa80000007386e [ 388.922202][ C3] R10: fffa7c000007386f R11: fffa7c000007386e R12: 0000000000000055 [ 388.922203][ C3] R13: ffd400000039c374 R14: ffd400000039c377 R15: ffd400000039c340 [ 388.922204][ C3] ? next_uptodate_folio (./include/linux/instrumented.h:112 ./include/linux/atomic/atomic-instrumented.h:1517 ./include/linux/page_ref.h:233 ./include/linux/page_ref.h:242 ./include/linux/page_ref.h:258 mm/filemap.c:3715) [ 388.922207][ C3] next_uptodate_folio (./include/linux/instrumented.h:112 ./include/linux/atomic/atomic-instrumented.h:1517 ./include/linux/page_ref.h:233 ./include/linux/page_ref.h:242 ./include/linux/page_ref.h:258 mm/filemap.c:3715) [ 388.922209][ C3] ? set_pte_range (mm/memory.c:5635) [ 388.922211][ C3] filemap_map_pages (mm/filemap.c:3940) [ 388.922213][ C3] ? folio_contains (./include/linux/page-flags.h:345) [ 388.922215][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3)) [ 388.922217][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3)) [ 388.922218][ C3] ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 22) kernel/locking/lockdep.c:5831 (discriminator 22)) [ 388.922220][ C3] do_fault_around (mm/memory.c:5867) [ 388.922222][ C3] ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 22) kernel/locking/lockdep.c:5831 (discriminator 22)) [ 388.922224][ C3] do_pte_missing (mm/memory.c:5900 mm/memory.c:6043 mm/memory.c:4566) [ 388.922225][ C3] ? lock_release (./include/trace/events/lock.h:69 (discriminator 22) kernel/locking/lockdep.c:5879 (discriminator 22)) [ 388.922226][ C3] ? rcu_read_unlock (./include/linux/rcupdate.h:867 (discriminator 6)) [ 388.922228][ C3] __handle_mm_fault (mm/memory.c:6427 mm/memory.c:6565) [ 388.922229][ C3] ? __pmd_alloc (./include/linux/mm.h:1682) [ 388.922231][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3)) [ 388.922234][ C3] handle_mm_fault (mm/memory.c:6734) [ 388.922235][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3)) [ 388.922237][ C3] do_user_addr_fault (arch/x86/mm/fault.c:1334) [ 388.922241][ C3] ? irqentry_enter (./include/linux/irq-entry-common.h:108 ./include/linux/irq-entry-common.h:293 kernel/entry/common.c:113) [ 388.922242][ C3] exc_page_fault (arch/x86/mm/fault.c:1474 arch/x86/mm/fault.c:1527) [ 388.922244][ C3] asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:618) [ 388.922245][ C3] RIP: 0033:0x454470 [ 388.922247][ C3] Code: c7 47 10 00 00 00 00 c6 07 00 66 89 57 02 48 c7 06 00 00 00 00 eb b6 31 db e9 d4 fe ff ff b8 ff ff ff ff eb aa 0f 1f 44 00 00 <53> be 81 10 46 00 bf 8f 66 46 00 48 83 ec 10 e8 fc c7 fa ff 48 85 All code ======== 0: c7 47 10 00 00 00 00 movl $0x0,0x10(%rdi) 7: c6 07 00 movb $0x0,(%rdi) a: 66 89 57 02 mov %dx,0x2(%rdi) e: 48 c7 06 00 00 00 00 movq $0x0,(%rsi) 15: eb b6 jmp 0xffffffffffffffcd 17: 31 db xor %ebx,%ebx 19: e9 d4 fe ff ff jmp 0xfffffffffffffef2 1e: b8 ff ff ff ff mov $0xffffffff,%eax 23: eb aa jmp 0xffffffffffffffcf 25: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1) 2a:* 53 push %rbx <-- trapping instruction 2b: be 81 10 46 00 mov $0x461081,%esi 30: bf 8f 66 46 00 mov $0x46668f,%edi 35: 48 83 ec 10 sub $0x10,%rsp 39: e8 fc c7 fa ff call 0xfffffffffffac83a 3e: 48 rex.W 3f: 85 .byte 0x85 Code starting with the faulting instruction =========================================== 0: 53 push %rbx 1: be 81 10 46 00 mov $0x461081,%esi 6: bf 8f 66 46 00 mov $0x46668f,%edi b: 48 83 ec 10 sub $0x10,%rsp f: e8 fc c7 fa ff call 0xfffffffffffac810 14: 48 rex.W 15: 85 .byte 0x85 [ 388.922248][ C3] RSP: 002b:00007ffc389f7058 EFLAGS: 00010206 [ 388.922249][ C3] RAX: 0000000000000000 RBX: 00007ffc389f71c8 RCX: 000000000047f338 [ 388.922250][ C3] RDX: 0000000000466103 RSI: 0000000000000000 RDI: 0000000000000000 [ 388.922251][ C3] RBP: 000000000000000d R08: 00007ff94ffc1680 R09: 00007ff94ffc2fa0 [ 388.922251][ C3] R10: 0000000000000000 R11: 00007ff94fdedc40 R12: 0000000000000000 Finger prints: __mutex_lock:__tcf_chain_put:tcf_action_rcu_free:rcu_do_batch:rcu_core