EXT4-fs (loop7): mounted filesystem without journal. Opts: delalloc,,errors=continue watchdog: BUG: soft lockup - CPU#1 stuck for 23s! [syz-executor.7:10901] Modules linked in: irq event stamp: 53288 hardirqs last enabled at (53287): [] asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:635 hardirqs last disabled at (53288): [] sysvec_apic_timer_interrupt+0xb/0xa0 arch/x86/kernel/apic/apic.c:1094 softirqs last enabled at (6040): [] asm_call_irq_on_stack+0x12/0x20 softirqs last disabled at (6019): [] asm_call_irq_on_stack+0x12/0x20 CPU: 1 PID: 10901 Comm: syz-executor.7 Not tainted 5.10.207 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 RIP: 0010:check_memory_region+0x17d/0x1f0 mm/kasan/generic.c:193 Code: 48 29 c2 e9 20 ff ff ff 48 89 d0 49 39 c2 75 92 49 0f be 02 41 83 e1 07 49 39 c1 7d 85 41 bb 01 00 00 00 5b 5d 44 89 d8 41 5c 1e e6 b3 02 48 85 d2 74 e9 48 01 ea eb 09 48 83 c0 01 48 39 d0 RSP: 0018:ffff888043a5edf0 EFLAGS: 00000246 RAX: 0000000000000001 RBX: 0000000000000010 RCX: ffffffff814e87b7 RDX: ffffed100874bded RSI: 0000000000000010 RDI: ffff888043a5ef58 RBP: ffff888043a5ef58 R08: 0000000000000000 R09: ffff888043a5ef67 R10: ffffed100874bdec R11: 0000000000000001 R12: 0000000000000010 R13: ffff888017e2f0b0 R14: ffff888043a5f160 R15: ffffed100874be2f FS: 00007fc749005700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000000004 CR3: 000000004392a000 CR4: 0000000000350ee0 Call Trace: memcpy+0x20/0x60 mm/kasan/common.c:105 memcpy include/linux/string.h:392 [inline] memcpy_common kernel/events/internal.h:179 [inline] __output_copy kernel/events/internal.h:183 [inline] perf_output_read_group kernel/events/core.c:6929 [inline] perf_output_read+0xea7/0x14e0 kernel/events/core.c:6962 perf_output_sample+0xfee/0x1b40 kernel/events/core.c:7009 __perf_event_output kernel/events/core.c:7390 [inline] perf_event_output_forward+0x11a/0x2c0 kernel/events/core.c:7404 __perf_event_overflow+0x213/0x5e0 kernel/events/core.c:9060 perf_swevent_overflow kernel/events/core.c:9136 [inline] perf_swevent_event+0x4b2/0x550 kernel/events/core.c:9174 perf_tp_event+0x2e5/0xc00 kernel/events/core.c:9592 perf_trace_run_bpf_submit+0xf5/0x190 kernel/events/core.c:9566 perf_trace_lock_acquire+0x330/0x590 include/trace/events/lock.h:13 trace_lock_acquire include/trace/events/lock.h:13 [inline] lock_acquire+0x3dc/0x470 kernel/locking/lockdep.c:5537 rcu_lock_acquire include/linux/rcupdate.h:260 [inline] rcu_read_lock include/linux/rcupdate.h:660 [inline] percpu_ref_put_many include/linux/percpu-refcount.h:317 [inline] percpu_ref_put include/linux/percpu-refcount.h:338 [inline] css_put include/linux/cgroup.h:405 [inline] uncharge_batch+0x30b/0x5d0 mm/memcontrol.c:6888 uncharge_list mm/memcontrol.c:6954 [inline] mem_cgroup_uncharge_list+0x10b/0x180 mm/memcontrol.c:6992 release_pages+0x7fc/0xc20 mm/swap.c:951 __pagevec_release+0x85/0x480 mm/swap.c:972 pagevec_release include/linux/pagevec.h:88 [inline] shmem_undo_range+0x7d6/0x1400 mm/shmem.c:959 shmem_truncate_range mm/shmem.c:1063 [inline] shmem_evict_inode+0x3a8/0xa20 mm/shmem.c:1163 evict+0x284/0x6b0 fs/inode.c:577 iput_final fs/inode.c:1697 [inline] iput.part.0+0x4b9/0x6d0 fs/inode.c:1723 iput+0x58/0x70 fs/inode.c:1713 dentry_unlink_inode+0x2b4/0x3e0 fs/dcache.c:374 __dentry_kill+0x36f/0x5c0 fs/dcache.c:579 dentry_kill fs/dcache.c:705 [inline] dput+0x7c5/0xc90 fs/dcache.c:878 __fput+0x3aa/0x980 fs/file_table.c:294 task_work_run+0xe2/0x1a0 kernel/task_work.c:161 tracehook_notify_resume include/linux/tracehook.h:188 [inline] exit_to_user_mode_loop kernel/entry/common.c:172 [inline] exit_to_user_mode_prepare+0x186/0x190 kernel/entry/common.c:199 syscall_exit_to_user_mode+0x38/0x1e0 kernel/entry/common.c:274 entry_SYSCALL_64_after_hwframe+0x62/0xc7 RIP: 0033:0x7fc74ba4272b Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44 RSP: 002b:00007fc749004f30 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 RAX: 0000000000000000 RBX: 00007fc7490056bc RCX: 00007fc74ba4272b RDX: 0000000000000003 RSI: 0000000000004c00 RDI: 0000000000000003 RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000010 R13: 0000000000000003 R14: 00000000200004a0 R15: 0000000000000004 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 skipped: idling at native_safe_halt arch/x86/include/asm/irqflags.h:60 [inline] NMI backtrace for cpu 0 skipped: idling at arch_safe_halt arch/x86/include/asm/irqflags.h:103 [inline] NMI backtrace for cpu 0 skipped: idling at default_idle+0xe/0x20 arch/x86/kernel/process.c:706 ---------------- Code disassembly (best guess): 0: 48 29 c2 sub %rax,%rdx 3: e9 20 ff ff ff jmpq 0xffffff28 8: 48 89 d0 mov %rdx,%rax b: 49 39 c2 cmp %rax,%r10 e: 75 92 jne 0xffffffa2 10: 49 0f be 02 movsbq (%r10),%rax 14: 41 83 e1 07 and $0x7,%r9d 18: 49 39 c1 cmp %rax,%r9 1b: 7d 85 jge 0xffffffa2 1d: 41 bb 01 00 00 00 mov $0x1,%r11d 23: 5b pop %rbx 24: 5d pop %rbp 25: 44 89 d8 mov %r11d,%eax 28: 41 5c pop %r12 * 2a: e9 1e e6 b3 02 jmpq 0x2b3e64d <-- trapping instruction 2f: 48 85 d2 test %rdx,%rdx 32: 74 e9 je 0x1d 34: 48 01 ea add %rbp,%rdx 37: eb 09 jmp 0x42 39: 48 83 c0 01 add $0x1,%rax 3d: 48 39 d0 cmp %rdx,%rax