[ 23.748081] BUG: Bad rss-counter state mm:0000000007bebf48 type:MM_FILEPAGES val:33
[ 23.748735] BUG: Bad rss-counter state mm:0000000007bebf48 type:MM_ANONPAGES val:22
[ 23.763724] systemd-update- (216) used greatest stack depth: 23992 bytes left
[�[0;32m OK �[0m] Finished �[0;1;39mUpdate UTMP about System Runlevel Changes�[0m.
[ 23.994136] ==================================================================
[ 23.994817] BUG: KASAN: slab-use-after-free in vma_interval_tree_remove+0xc75/0xec0
[ 23.995526] Read of size 8 at addr ffff88800c7bd798 by task sshd/222
[ 23.996113]
[ 23.996279] CPU: 1 PID: 222 Comm: sshd Not tainted 6.4.0-rc7-next-20230620 #1
[ 23.996936] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 23.997698] Call Trace:
[ 23.997945]
[ 23.998163] dump_stack_lvl+0x91/0xf0
[ 23.998537] print_report+0xcc/0x620
[ 23.998905] ? __virt_addr_valid+0x102/0x340
[ 23.999330] ? vma_interval_tree_remove+0xc75/0xec0
[ 23.999796] ? vma_interval_tree_remove+0xc75/0xec0
[ 24.000260] kasan_report+0xbe/0xf0
[ 24.000622] ? vma_interval_tree_remove+0xc75/0xec0
[ 24.001078] vma_interval_tree_remove+0xc75/0xec0
[ 24.001530] vma_prepare+0xc54/0x11a0
[ 24.001884] __split_vma+0x5af/0x950
[ 24.002238] ? __pfx___split_vma+0x10/0x10
[ 24.002627] ? find_held_lock+0x2c/0x110
[ 24.003013] do_vmi_align_munmap+0x2ba/0x11f0
[ 24.003436] ? lock_is_held_type+0x9f/0x120
[ 24.003830] ? __pfx_do_vmi_align_munmap+0x10/0x10
[ 24.004277] ? mtree_range_walk+0x632/0x900
[ 24.004690] ? mas_walk+0x5c7/0x7c0
[ 24.005048] do_vmi_munmap+0x1f1/0x2b0
[ 24.005417] mmap_region+0x1f9/0x2660
[ 24.005783] ? vm_mmap_pgoff+0x15c/0x3a0
[ 24.006170] ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[ 24.006713] ? __pfx_lock_acquire+0x10/0x10
[ 24.007122] ? __pfx_mmap_region+0x10/0x10
[ 24.007526] ? security_mmap_addr+0x7d/0xa0
[ 24.007932] ? get_unmapped_area+0x1f5/0x3f0
[ 24.008348] do_mmap+0x854/0xf00
[ 24.008682] vm_mmap_pgoff+0x1a6/0x3a0
[ 24.009060] ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 24.009483] ksys_mmap_pgoff+0x3af/0x500
[ 24.009896] do_syscall_64+0x3f/0x90
[ 24.009930] entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 24.010670] RIP: 0033:0x7f5e41862d82
[ 24.010682] Code: eb aa 66 0f 1f 44 00 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 33 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 56 5b 5d c3 0f 1f 00 c7 05 ae 03 01 00 16 00
[ 24.010698] RSP: 002b:00007ffc4d010798 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 24.010714] RAX: ffffffffffffffda RBX: 0000000000000812 RCX: 00007f5e41862d82
[ 24.010725] RDX: 0000000000000005 RSI: 0000000000001000 RDI: 00007f5e40c9c000
[ 24.010735] RBP: 00007f5e40c9c000 R08: 0000000000000009 R09: 0000000000001000
[ 24.010745] R10: 0000000000000812 R11: 0000000000000206 R12: 000055905a42bec0
[ 24.010756] R13: 00007ffc4d0107b0 R14: 00007ffc4d0107e0 R15: 00007ffc4d010b40
[ 24.010771]
[ 24.010776]
[ 24.010778] Allocated by task 205:
[ 24.010785] kasan_save_stack+0x22/0x50
[ 24.010807] kasan_set_track+0x25/0x30
[ 24.010828] __kasan_slab_alloc+0x59/0x70
[ 24.010850] kmem_cache_alloc+0x16b/0x370
[ 24.010869] vm_area_dup+0x20/0x160
[ 24.010884] __split_vma+0x170/0x950
[ 24.010900] split_vma+0xc6/0x110
[ 24.010916] mprotect_fixup+0x8d2/0xb30
[ 24.010937] do_mprotect_pkey+0x87e/0xd40
[ 24.010957] __x64_sys_mprotect+0x78/0xc0
[ 24.010978] do_syscall_64+0x3f/0x90
[ 24.010999] entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 24.011023]
[ 24.011026] Freed by task 19:
[ 24.011032] kasan_save_stack+0x22/0x50
[ 24.011053] kasan_set_track+0x25/0x30
[ 24.011073] kasan_save_free_info+0x2b/0x50
[ 24.011091] __kasan_slab_free+0x10a/0x190
[ 24.011113] kmem_cache_free+0x10d/0x4d0
[ 24.011132] rcu_core+0x8c8/0x2860
[ 24.011146] __do_softirq+0x1b7/0x7d4
[ 24.011164]
[ 24.011167] Last potentially related work creation:
[ 24.011170] kasan_save_stack+0x22/0x50
[ 24.011191] __kasan_record_aux_stack+0x8e/0xa0
[ 24.011208] __call_rcu_common.constprop.0+0x6a/0xb90
[ 24.011232] remove_vma+0x139/0x170
[ 24.011245] do_vmi_align_munmap+0xd4a/0x11f0
[ 24.011262] do_vmi_munmap+0x1f1/0x2b0
[ 24.011278] __vm_munmap+0x138/0x3a0
[ 24.011295] __x64_sys_munmap+0x59/0x80
[ 24.011312] do_syscall_64+0x3f/0x90
[ 24.011333] entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 24.011357]
[ 24.011359] The buggy address belongs to the object at ffff88800c7bd740
[ 24.011359] which belongs to the cache vm_area_struct of size 168
[ 24.011371] The buggy address is located 88 bytes inside of
[ 24.011371] freed 168-byte region [ffff88800c7bd740, ffff88800c7bd7e8)
[ 24.011386]
[ 24.011389] The buggy address belongs to the physical page:
[ 24.011393] page:00000000f8bd4f1f refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xc7bd
[ 24.011410] memcg:ffff88801a142901
[ 24.011415] flags: 0x100000000000200(slab|node=0|zone=1)
[ 24.011427] page_type: 0xffffffff()
[ 24.011441] raw: 0100000000000200 ffff8880087a0c80 dead000000000122 0000000000000000
[ 24.011456] raw: 0000000000000000 0000000000110011 00000001ffffffff ffff88801a142901
[ 24.011464] page dumped because: kasan: bad access detected
[ 24.011469]
[ 24.011471] Memory state around the buggy address:
[ 24.011477] ffff88800c7bd680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 24.011487] ffff88800c7bd700: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 24.011497] >ffff88800c7bd780: fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc
[ 24.011505] ^
[ 24.011512] ffff88800c7bd800: fc fc fc fc fc fa fb fb fb fb fb fb fb fb fb fb
[ 24.011522] ffff88800c7bd880: fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc fc
[ 24.011530] ==================================================================
[ 24.011568] Disabling lock debugging due to kernel taint
Debian GNU/Linux 11 syzkaller ttyS0
syzkaller login: [ 26.060362] BUG: Bad rss-counter state mm:00000000bb840b58 type:MM_FILEPAGES val:33
[ 26.061405] BUG: Bad rss-counter state mm:00000000bb840b58 type:MM_ANONPAGES val:22
[ 26.553342] BUG: Bad rss-counter state mm:0000000025e8d177 type:MM_FILEPAGES val:33
[ 26.554442] BUG: Bad rss-counter state mm:0000000025e8d177 type:MM_ANONPAGES val:22
Warning: Permanently added '[localhost]:6059' (ECDSA) to the list of known hosts.
[ 26.806293] general protection fault, probably for non-canonical address 0xe0a79c2c80000014: 0000 [#1] PREEMPT SMP KASAN NOPTI
[ 26.807720] KASAN: maybe wild-memory-access in range [0x053d0164000000a0-0x053d0164000000a7]
[ 26.808741] CPU: 0 PID: 238 Comm: sshd Tainted: G B 6.4.0-rc7-next-20230620 #1
[ 26.809794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 26.810784] RIP: 0010:__rb_insert_augmented+0x9d/0x8b0
[ 26.811486] Code: c2 48 c1 ea 03 42 80 3c 2a 00 0f 85 55 05 00 00 4d 8b 74 24 08 49 39 ee 0f 84 77 01 00 00 4d 85 f6 74 1c 4c 89 f2 48 c1 ea 03 <42> 80 3c 2a 00 0f 85 61 05 00 00 41 f6 06 01 0f 84 7a 04 00 00 48
[ 26.813689] RSP: 0018:ffff888019da7948 EFLAGS: 00010217
[ 26.814351] RAX: ffff8880197acb28 RBX: ffff8880169acec0 RCX: ffffffff844d49f9
[ 26.815233] RDX: 00a7a02c80000014 RSI: 0000000000000008 RDI: ffff8880147f8008
[ 26.816099] RBP: ffff88800845b780 R08: ffff8880147f8008 R09: 0000000000000000
[ 26.816973] R10: 0000000000000005 R11: 00000000000b6a61 R12: ffff8880147f8000
[ 26.817865] R13: dffffc0000000000 R14: 053d0164000000a5 R15: ffffffff816e6340
[ 26.818722] FS: 00007fe7561ed900(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[ 26.819711] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 26.820427] CR2: 000055be538ed1c0 CR3: 000000001c11e000 CR4: 0000000000350ef0
[ 26.821291] Call Trace:
[ 26.821631]
[ 26.821934] ? die_addr+0x3c/0xa0
[ 26.822384] ? exc_general_protection+0x125/0x220
[ 26.823029] ? asm_exc_general_protection+0x26/0x30
[ 26.823663] ? __pfx_vma_interval_tree_augment_rotate+0x10/0x10
[ 26.824419] ? __rb_insert_augmented+0x5e9/0x8b0
[ 26.825028] ? __rb_insert_augmented+0x9d/0x8b0
[ 26.825632] ? __rb_insert_augmented+0x5e9/0x8b0
[ 26.826239] ? vma_interval_tree_insert_after+0x315/0x390
[ 26.826974] dup_mmap+0xc45/0x1770
[ 26.827433] ? __pfx_dup_mmap+0x10/0x10
[ 26.827969] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 26.828597] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 26.829232] ? trace_hardirqs_on+0x16/0x100
[ 26.829804] ? mm_init+0xb4a/0xe70
[ 26.830270] copy_process+0x3e68/0x7320
[ 26.830781] ? lock_acquire+0x434/0x4c0
[ 26.831325] ? __pfx_copy_process+0x10/0x10
[ 26.831882] ? expand_files+0x446/0x8e0
[ 26.832399] kernel_clone+0xeb/0x7d0
[ 26.832882] ? __pfx_kernel_clone+0x10/0x10
[ 26.833428] ? lock_acquire+0x434/0x4c0
[ 26.833957] ? lock_release+0x4d8/0x680
[ 26.834455] ? __pfx_lock_release+0x10/0x10
[ 26.835019] ? __pfx_lock_release+0x10/0x10
[ 26.835565] ? _raw_spin_unlock+0x1e/0x40
[ 26.836115] ? alloc_fd+0x2eb/0x760
[ 26.836602] __do_sys_clone+0xba/0x100
[ 26.837109] ? __pfx___do_sys_clone+0x10/0x10
[ 26.837698] ? fpregs_assert_state_consistent+0xbd/0xe0
[ 26.838399] do_syscall_64+0x3f/0x90
[ 26.838906] entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 26.839568] RIP: 0033:0x7fe7566ac4bb
[ 26.840064] Code: ed 0f 85 f8 00 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 91 00 00 00 41 89 c5 85 c0 0f 85 9e 00 00
[ 26.842252] RSP: 002b:00007fff345a3590 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 26.843210] RAX: ffffffffffffffda RBX: 000000000000c874 RCX: 00007fe7566ac4bb
[ 26.844105] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 26.844983] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007fe7561ed900
[ 26.845889] R10: 00007fe7561edbd0 R11: 0000000000000246 R12: 0000000000000000
[ 26.846757] R13: 000055be538faec0 R14: 000055be5390b2e0 R15: 00007fff345a3610
[ 26.847675]
[ 26.847996] Modules linked in:
[ 26.848466] ---[ end trace 0000000000000000 ]---
[ 26.849116] RIP: 0010:__rb_insert_augmented+0x9d/0x8b0
[ 26.849827] Code: c2 48 c1 ea 03 42 80 3c 2a 00 0f 85 55 05 00 00 4d 8b 74 24 08 49 39 ee 0f 84 77 01 00 00 4d 85 f6 74 1c 4c 89 f2 48 c1 ea 03 <42> 80 3c 2a 00 0f 85 61 05 00 00 41 f6 06 01 0f 84 7a 04 00 00 48
[ 26.852316] RSP: 0018:ffff888019da7948 EFLAGS: 00010217
[ 26.853020] RAX: ffff8880197acb28 RBX: ffff8880169acec0 RCX: ffffffff844d49f9
[ 26.854136] RDX: 00a7a02c80000014 RSI: 0000000000000008 RDI: ffff8880147f8008
[ 26.855147] RBP: ffff88800845b780 R08: ffff8880147f8008 R09: 0000000000000000
[ 26.856090] R10: 0000000000000005 R11: 00000000000b6a61 R12: ffff8880147f8000
[ 26.856987] R13: dffffc0000000000 R14: 053d0164000000a5 R15: ffffffff816e6340
[ 26.857930] FS: 00007fe7561ed900(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[ 26.858992] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 26.859759] CR2: 000055be538ed1c0 CR3: 000000001c11e000 CR4: 0000000000350ef0
[ 27.423132] kmemleak: Cannot insert 0xffff8880169e1780 into the object search tree (overlaps existing)
[ 27.424477] CPU: 0 PID: 204 Comm: sshd Tainted: G B D 6.4.0-rc7-next-20230620 #1
[ 27.425714] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 27.426867] Call Trace:
[ 27.427239]
[ 27.427569] dump_stack_lvl+0x91/0xf0
[ 27.428157] __create_object+0x736/0xc90
[ 27.428769] ? kasan_set_track+0x25/0x30
[ 27.429383] kmem_cache_alloc+0x20b/0x370
[ 27.430015] vm_area_dup+0x20/0x160
[ 27.430562] dup_mmap+0x94e/0x1770
[ 27.431125] ? __pfx_dup_mmap+0x10/0x10
[ 27.431724] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 27.432434] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 27.433182] ? trace_hardirqs_on+0x16/0x100
[ 27.433887] ? mm_init+0xb4a/0xe70
[ 27.434428] copy_process+0x3e68/0x7320
[ 27.435031] ? __pfx_lock_release+0x10/0x10
[ 27.435674] ? __pfx_copy_process+0x10/0x10
[ 27.436370] ? percpu_counter_add_batch+0xc8/0x180
[ 27.437168] ? percpu_counter_add_batch+0xc8/0x180
[ 27.437983] kernel_clone+0xeb/0x7d0
[ 27.438599] ? lock_acquire+0x434/0x4c0
[ 27.439245] ? __pfx_kernel_clone+0x10/0x10
[ 27.439924] ? __pfx_lock_release+0x10/0x10
[ 27.440612] ? __pfx_alloc_file_pseudo+0x10/0x10
[ 27.441403] ? init_peercred+0x230/0x310
[ 27.442220] __do_sys_clone+0xba/0x100
[ 27.442883] ? __pfx___do_sys_clone+0x10/0x10
[ 27.443630] ? __sys_socketpair+0x3fd/0x580
[ 27.444371] ? fpregs_assert_state_consistent+0xbd/0xe0
[ 27.445248] do_syscall_64+0x3f/0x90
[ 27.445932] entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 27.446813] RIP: 0033:0x7f68664874bb
[ 27.447430] Code: ed 0f 85 f8 00 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 91 00 00 00 41 89 c5 85 c0 0f 85 9e 00 00
[ 27.450321] RSP: 002b:00007ffc4b314fe0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 27.451538] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f68664874bb
[ 27.452627] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 27.453693] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f6865fc8900
[ 27.454751] R10: 00007f6865fc8bd0 R11: 0000000000000246 R12: 0000000000000000
[ 27.455800] R13: 0000000000000001 R14: 0000000000000005 R15: 0000000000000000
[ 27.456864]
[ 27.457257] kmemleak: Kernel memory leak detector disabled
[ 27.458109] kmemleak: Object 0xffff8880169e1740 (size 168):
[ 27.458901] kmemleak: comm "sshd", pid 238, jiffies 4294693792
[ 27.459676] kmemleak: min_count = 1
[ 27.460167] kmemleak: count = 0
[ 27.460611] kmemleak: flags = 0x1
[ 27.461108] kmemleak: checksum = 0
[ 27.461612] kmemleak: backtrace:
[ 27.462091] vm_area_dup+0x20/0x160
[ 27.462592] dup_mmap+0x94e/0x1770
[ 27.463094] copy_process+0x3e68/0x7320
[ 27.463642] kernel_clone+0xeb/0x7d0
[ 27.464162] __do_sys_clone+0xba/0x100
[ 27.464702] do_syscall_64+0x3f/0x90
[ 27.465236] entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 27.466922] kmemleak: Automatic memory scanning thread ended
[ 28.437690] general protection fault, probably for non-canonical address 0x1983e26c000008: 0000 [#2] PREEMPT SMP KASAN NOPTI
[ 28.439368] CPU: 1 PID: 33 Comm: kworker/u4:3 Tainted: G B D 6.4.0-rc7-next-20230620 #1
[ 28.440662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 28.441844] Workqueue: writeback wb_workfn (flush-8:0)
[ 28.442618] RIP: 0010:qlist_free_all+0xaf/0x1a0
[ 28.443256] Code: 80 4c 01 c2 0f 82 f8 00 00 00 48 c7 c0 00 00 00 80 48 2b 05 7b 5e ab 03 48 01 d0 48 c1 e8 0c 48 c1 e0 06 48 03 05 59 5e ab 03 <48> 8b 48 08 48 89 c2 f6 c1 01 0f 85 ba 00 00 00 0f 1f 44 00 00 48
[ 28.445542] RSP: 0018:ffff888009517328 EFLAGS: 00010207
[ 28.446234] RAX: 001983e26c000000 RBX: 0666011b000000cc RCX: 0000000000110003
[ 28.447154] RDX: 0666011b800000cc RSI: ffff8880169e1828 RDI: ffff8880087a0c80
[ 28.448067] RBP: 0000000000000000 R08: 0666011b000000cc R09: 0000000000000000
[ 28.448976] R10: ffffea00005a7840 R11: 0000000000110003 R12: dffffc0000000000
[ 28.449894] R13: ffff888009517368 R14: 0000000000000000 R15: ffff8880169e1828
[ 28.450801] FS: 0000000000000000(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[ 28.451803] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 28.452550] CR2: 00007f1d0d98a2e8 CR3: 000000000c518000 CR4: 0000000000350ee0
[ 28.453463] Call Trace:
[ 28.453821]
[ 28.454122] ? die_addr+0x3c/0xa0
[ 28.454598] ? exc_general_protection+0x125/0x220
[ 28.455247] ? asm_exc_general_protection+0x26/0x30
[ 28.455926] ? qlist_free_all+0xaf/0x1a0
[ 28.456468] ? qlist_free_all+0x6d/0x1a0
[ 28.457015] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 28.457688] kasan_quarantine_reduce+0x199/0x230
[ 28.458326] __kasan_slab_alloc+0x49/0x70
[ 28.458891] kmem_cache_alloc+0x16b/0x370
[ 28.459451] ext4_init_io_end+0x27/0x180
[ 28.459978] ext4_do_writepages+0xb2f/0x3150
[ 28.460585] ? ret_from_fork+0x2c/0x50
[ 28.461115] ? ext4_map_blocks+0x9fa/0x1970
[ 28.461696] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 28.462403] ? lock_acquire+0x434/0x4c0
[ 28.462936] ? __pfx_ext4_do_writepages+0x10/0x10
[ 28.463579] ? __pfx_lock_release+0x10/0x10
[ 28.464133] ? lock_release+0x4d8/0x680
[ 28.464661] ? __pfx_lock_acquire+0x10/0x10
[ 28.465227] ? ret_from_fork+0x2c/0x50
[ 28.465768] ? __pfx_lock_release+0x10/0x10
[ 28.466335] ? lock_acquire+0x434/0x4c0
[ 28.466867] ext4_writepages+0x2fc/0x760
[ 28.467422] ? __pfx_ext4_writepages+0x10/0x10
[ 28.468058] ? __pfx_ext4_writepages+0x10/0x10
[ 28.468671] do_writepages+0x1ad/0x650
[ 28.469211] ? __pfx_do_writepages+0x10/0x10
[ 28.469818] ? __pfx_lock_release+0x10/0x10
[ 28.470386] ? __pfx_lock_release+0x10/0x10
[ 28.470948] ? lock_release+0x4d8/0x680
[ 28.471481] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 28.472103] ? __pfx_lock_release+0x10/0x10
[ 28.472706] ? do_raw_spin_lock+0x125/0x270
[ 28.473257] __writeback_single_inode+0x105/0xc50
[ 28.473886] ? wbc_attach_and_unlock_inode+0x4a3/0x910
[ 28.474541] writeback_sb_inodes+0x546/0xe20
[ 28.475102] ? __pfx_writeback_sb_inodes+0x10/0x10
[ 28.475728] __writeback_inodes_wb+0xbe/0x270
[ 28.476300] wb_writeback+0x48b/0x980
[ 28.476787] ? __pfx_wb_writeback+0x10/0x10
[ 28.477331] ? get_nr_dirty_inodes+0x12a/0x1b0
[ 28.477914] wb_workfn+0x81d/0xed0
[ 28.478375] ? __pfx_lock_unpin_lock+0x10/0x10
[ 28.478955] ? __pfx_wb_workfn+0x10/0x10
[ 28.479468] ? do_raw_spin_unlock+0x53/0x220
[ 28.480024] ? lock_acquire+0x434/0x4c0
[ 28.480518] ? __pfx_lock_acquire+0x10/0x10
[ 28.481054] ? read_word_at_a_time+0xe/0x20
[ 28.481589] ? strscpy+0xa4/0x2b0
[ 28.482048] process_one_work+0xabf/0x1770
[ 28.482593] ? __pfx_lock_acquire+0x10/0x10
[ 28.483151] ? __pfx_process_one_work+0x10/0x10
[ 28.483753] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 28.484363] worker_thread+0x64f/0x12a0
[ 28.484881] ? __pfx_worker_thread+0x10/0x10
[ 28.485447] kthread+0x33f/0x440
[ 28.485924] ? __pfx_kthread+0x10/0x10
[ 28.486447] ret_from_fork+0x2c/0x50
[ 28.486943]
[ 28.487250] Modules linked in:
[ 28.487752] ---[ end trace 0000000000000000 ]---
[ 28.488365] RIP: 0010:__rb_insert_augmented+0x9d/0x8b0
[ 28.489066] Code: c2 48 c1 ea 03 42 80 3c 2a 00 0f 85 55 05 00 00 4d 8b 74 24 08 49 39 ee 0f 84 77 01 00 00 4d 85 f6 74 1c 4c 89 f2 48 c1 ea 03 <42> 80 3c 2a 00 0f 85 61 05 00 00 41 f6 06 01 0f 84 7a 04 00 00 48
[ 28.491331] RSP: 0018:ffff888019da7948 EFLAGS: 00010217
[ 28.492000] RAX: ffff8880197acb28 RBX: ffff8880169acec0 RCX: ffffffff844d49f9
[ 28.492906] RDX: 00a7a02c80000014 RSI: 0000000000000008 RDI: ffff8880147f8008
[ 28.493831] RBP: ffff88800845b780 R08: ffff8880147f8008 R09: 0000000000000000
[ 28.494732] R10: 0000000000000005 R11: 00000000000b6a61 R12: ffff8880147f8000
[ 28.495632] R13: dffffc0000000000 R14: 053d0164000000a5 R15: ffffffff816e6340
[ 28.496541] FS: 0000000000000000(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[ 28.497552] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 28.498310] CR2: 00007f1d0d98a2e8 CR3: 000000000c518000 CR4: 0000000000350ee0
[ 28.499256] ------------[ cut here ]------------
[ 28.499836] WARNING: CPU: 1 PID: 33 at kernel/exit.c:818 do_exit+0x1be5/0x2780
[ 28.500776] Modules linked in:
[ 28.501204] CPU: 1 PID: 33 Comm: kworker/u4:3 Tainted: G B D 6.4.0-rc7-next-20230620 #1
[ 28.502380] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 28.503406] Workqueue: writeback wb_workfn (flush-8:0)
[ 28.504097] RIP: 0010:do_exit+0x1be5/0x2780
[ 28.504663] Code: 00 00 31 f6 e8 6c 68 ff ff e9 09 f6 ff ff e8 42 7a 33 00 4c 89 ee bf 05 06 00 00 e8 c5 e2 02 00 e9 fc e8 ff ff e8 2b 7a 33 00 <0f> 0b e9 e2 e5 ff ff e8 1f 7a 33 00 0f 0b e9 9a e4 ff ff e8 13 7a
[ 28.506904] RSP: 0018:ffff888009517e40 EFLAGS: 00010293
[ 28.507586] RAX: 0000000000000000 RBX: ffff888008f4a1c0 RCX: 0000000000000000
[ 28.508492] RDX: ffff888009501b40 RSI: ffffffff81188e35 RDI: ffff888009502cc0
[ 28.509388] RBP: ffff888009501b40 R08: 0000000000000000 R09: 0000000000000000
[ 28.510312] R10: ffffffff85d3d357 R11: 0000000000000001 R12: ffff888009502368
[ 28.511222] R13: 000000000000000b R14: ffff888008f42e40 R15: 0000000000000000
[ 28.512131] FS: 0000000000000000(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[ 28.513139] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 28.513881] CR2: 00007f1d0d98a2e8 CR3: 000000000c518000 CR4: 0000000000350ee0
[ 28.514782] Call Trace:
[ 28.515136]
[ 28.515434] ? __warn+0xe6/0x340
[ 28.515886] ? do_exit+0x1be5/0x2780
[ 28.516395] ? report_bug+0x2fe/0x400
[ 28.516903] ? handle_bug+0x3c/0x70
[ 28.517414] ? exc_invalid_op+0x18/0x50
[ 28.517966] ? asm_exc_invalid_op+0x1a/0x20
[ 28.518540] ? do_exit+0x1be5/0x2780
[ 28.519059] ? do_exit+0x1be5/0x2780
[ 28.519553] ? worker_thread+0x64f/0x12a0
[ 28.520104] ? __pfx_do_exit+0x10/0x10
[ 28.520613] make_task_dead+0x175/0x3b0
[ 28.521141] rewind_stack_and_make_dead+0x17/0x20
[ 28.521777] RIP: 0000:0x0
[ 28.522162] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[ 28.522966] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[ 28.523932] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 28.524836] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 28.525734] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 28.526636] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 28.527543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 28.528454]
[ 28.528758] irq event stamp: 84264
[ 28.529230] hardirqs last enabled at (84263): [] _raw_spin_unlock_irq+0x23/0x40
[ 28.530383] hardirqs last disabled at (84264): [] __schedule+0x127d/0x2b00
[ 28.531472] softirqs last enabled at (83746): [] netlink_release+0x8f8/0x1fa0
[ 28.532583] softirqs last disabled at (83744): [] netlink_release+0x874/0x1fa0
[ 28.533884] ---[ end trace 0000000000000000 ]---
VM DIAGNOSIS:
07:22:39 Registers:
info registers vcpu 0
RAX=ffff88806ce35000 RBX=0000000000000000 RCX=ffffffff8451250e RDX=ffffed100d9c6a01
RSI=0000000000000004 RDI=ffffffff81288ac5 RBP=dffffc0000000000 RSP=ffffffff85407e10
R8 =0000000000000000 R9 =ffffed100d9c6a00 R10=ffff88806ce35003 R11=0000000000000001
R12=ffffffff85d3d350 R13=1ffffffff0a80fc7 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8451349f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fff24f687c8 CR3=0000000005482000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f4aa4a34510000055ff876fd790
XMM02=6f6974707972636e6561737268746977 XMM03=00000000000000000000000000777074
XMM04=40404040404040404040404040404040 XMM05=5a5a5a5a5a5a5a5a5a5a5a5a5a5a5a5a
XMM06=20202020202020202020202020202020 XMM07=ffffffffffff00ffffff00ffffff00ff
XMM08=00002000000000202020002020200000 XMM09=ffffffffffff00ffffff00ffffff00ff
XMM10=00002000000000202020002020200000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffffffff86097ffc RBX=0000000000000001 RCX=ffffffff811318a7 RDX=0000000000000000
RSI=ffffffff86097ffc RDI=ffffffff85d92bbc RBP=ffff88806cf09af0 RSP=ffff88806cf09a20
R8 =ffffffff86097ffc R9 =ffff88806cf09ad8 R10=0000000000038001 R11=000000000000607e
R12=ffff88806cf09af8 R13=ffff88806cf09ae0 R14=ffff88806cf09ad9 R15=ffff88806cf09a98
RIP=ffffffff8112fcc1 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f1d0e591900 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff1c4f7e650 CR3=000000000c518000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134
XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572
XMM04=7f69ad0721e8546d00000000000ae988 XMM05=a808596690b46bdd00000000001324a8
XMM06=4fda316b135da52b0000000000130f28 XMM07=00000000000000000000000000000000
XMM08=415453454d49545f454d49544c414552 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000