last executing test programs: kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:21288' (ED25519) to the list of known hosts. [ 48.385547][ T5888] cgroup: Unknown subsys name 'net' [ 48.536522][ T5888] cgroup: Unknown subsys name 'cpuset' [ 48.543185][ T5888] cgroup: Unknown subsys name 'rlimit' [ 48.655092][ T5934] [ 48.655920][ T5934] ===================================== [ 48.658168][ T5934] WARNING: bad unlock balance detected! [ 48.660445][ T5934] syzkaller #0 Not tainted [ 48.662313][ T5934] ------------------------------------- [ 48.664600][ T5934] dhcpcd/5934 is trying to release lock (rcu_read_lock) at: [ 48.667650][ T5934] [] folios_put_refs+0x50a/0xa90 [ 48.670434][ T5934] but there are no more locks to release! [ 48.672872][ T5934] [ 48.672872][ T5934] other info that might help us debug this: [ 48.676195][ T5934] 1 lock held by dhcpcd/5934: [ 48.678187][ T5934] #0: ffff8880134bf178 (&mm->mmap_lock){++++}-{4:4}, at: exit_mmap+0x22c/0xa10 [ 48.682022][ T5934] [ 48.682022][ T5934] stack backtrace: [ 48.684518][ T5934] CPU: 2 UID: 0 PID: 5934 Comm: dhcpcd Not tainted syzkaller #0 PREEMPT(full) [ 48.684538][ T5934] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 48.684634][ T5934] Call Trace: [ 48.684687][ T5934] [ 48.684693][ T5934] dump_stack_lvl+0x100/0x190 [ 48.684712][ T5934] ? folios_put_refs+0x50a/0xa90 [ 48.684736][ T5934] print_unlock_imbalance_bug.part.0+0xfb/0x106 [ 48.684761][ T5934] ? folios_put_refs+0x50a/0xa90 [ 48.684783][ T5934] lock_release+0x28d/0x310 [ 48.684807][ T5934] folios_put_refs+0x50f/0xa90 [ 48.684830][ T5934] ? __pfx_folios_put_refs+0x10/0x10 [ 48.684855][ T5934] free_pages_and_swap_cache+0x22d/0x3b0 [ 48.684879][ T5934] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 48.684912][ T5934] ? __pfx___might_resched+0x10/0x10 [ 48.684929][ T5934] __tlb_batch_free_encoded_pages+0xe9/0x280 [ 48.684952][ T5934] tlb_finish_mmu+0x1b0/0x810 [ 48.684972][ T5934] exit_mmap+0x454/0xa10 [ 48.684991][ T5934] ? __pfx_exit_mmap+0x10/0x10 [ 48.685008][ T5934] ? trace_contention_end+0x122/0x170 [ 48.685024][ T5934] ? uprobe_clear_state+0x5f/0x260 [ 48.685047][ T5934] ? uprobe_clear_state+0x5f/0x260 [ 48.685071][ T5934] ? __lock_acquire+0x4a5/0x2630 [ 48.685096][ T5934] ? arch_uprobe_clear_state+0x107/0x150 [ 48.685114][ T5934] __mmput+0x12a/0x410 [ 48.685133][ T5934] mmput+0x67/0x80 [ 48.685149][ T5934] do_exit+0x833/0x2a60 [ 48.685177][ T5934] ? do_raw_spin_lock+0x128/0x260 [ 48.685193][ T5934] ? __pfx_do_exit+0x10/0x10 [ 48.685213][ T5934] ? do_group_exit+0x1bd/0x2a0 [ 48.685233][ T5934] ? rcu_is_watching+0x12/0xc0 [ 48.685253][ T5934] do_group_exit+0xd5/0x2a0 [ 48.685275][ T5934] __x64_sys_exit_group+0x3e/0x50 [ 48.685296][ T5934] x64_sys_call+0x102c/0x1530 [ 48.685315][ T5934] do_syscall_64+0x10b/0xf80 [ 48.685331][ T5934] ? clear_bhb_loop+0x40/0x90 [ 48.685348][ T5934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 48.685364][ T5934] RIP: 0033:0x7fc4db37a6c5 [ 48.685376][ T5934] Code: Unable to access opcode bytes at 0x7fc4db37a69b. [ 48.685447][ T5934] RSP: 002b:00007fffbd1b3848 EFLAGS: 00000206 ORIG_RAX: 00000000000000e7 [ 48.685463][ T5934] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fc4db37a6c5 [ 48.685473][ T5934] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000001 [ 48.685482][ T5934] RBP: 00007fffbd1b3e58 R08: 000055eb8d7db2c0 R09: 0000000000000002 [ 48.685491][ T5934] R10: 00000000000000e0 R11: 0000000000000206 R12: 00007fffbd1b3890 [ 48.685501][ T5934] R13: 000055eb8d7dc8a0 R14: 00007fffbd1b3ad0 R15: 00007fffbd1b3880 [ 48.685514][ T5934] [ 48.771986][ T5934] ------------[ cut here ]------------ [ 48.773768][ T5934] rrln < 0 || rrln > RCU_NEST_PMAX [ 48.773774][ T5934] WARNING: kernel/rcu/tree_plugin.h:443 at __rcu_read_unlock+0x235/0x5e0, CPU#2: dhcpcd/5934 [ 48.778844][ T5934] Modules linked in: [ 48.780169][ T5934] CPU: 2 UID: 0 PID: 5934 Comm: dhcpcd Not tainted syzkaller #0 PREEMPT(full) [ 48.783083][ T5934] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 48.786263][ T5934] RIP: 0010:__rcu_read_unlock+0x235/0x5e0 [ 48.788222][ T5934] Code: 74 11 c7 45 58 01 00 00 00 bf 09 00 00 00 e8 a2 a4 da ff e8 8d e0 22 00 9c 58 f6 c4 02 0f 85 dd 02 00 00 fb e9 57 fe ff ff 90 <0f> 0b 90 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc e8 14 62 87 [ 48.794369][ T5934] RSP: 0018:ffffc900045df718 EFLAGS: 00010286 [ 48.796325][ T5934] RAX: 00000000ffffffff RBX: ffff88802a092500 RCX: ffffffff81e80bfe [ 48.798830][ T5934] RDX: 0000000000000000 RSI: ffffffff8df2c0ea RDI: ffff88802a0929c4 [ 48.801327][ T5934] RBP: 000000000000001f R08: 0000000000000005 R09: 0000000000000000 [ 48.803925][ T5934] R10: 0000000080000000 R11: 0000000000000001 R12: ffffc900045df8fc [ 48.806452][ T5934] R13: dffffc0000000000 R14: ffffc900045df920 R15: ffffc900045dfa20 [ 48.808945][ T5934] FS: 0000000000000000(0000) GS:ffff8880972ee000(0000) knlGS:0000000000000000 [ 48.811744][ T5934] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 48.813954][ T5934] CR2: 00007fc4db4814c0 CR3: 000000004fd57000 CR4: 0000000000352ef0 [ 48.816505][ T5934] Call Trace: [ 48.817653][ T5934] [ 48.819280][ T5934] folios_put_refs+0x514/0xa90 [ 48.822136][ T5934] ? __pfx_folios_put_refs+0x10/0x10 [ 48.826042][ T5934] free_pages_and_swap_cache+0x22d/0x3b0 [ 48.828852][ T5934] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 48.837811][ T5934] ? __pfx___might_resched+0x10/0x10 [ 48.840983][ T5934] __tlb_batch_free_encoded_pages+0xe9/0x280 [ 48.844422][ T5934] tlb_finish_mmu+0x1b0/0x810 [ 48.847069][ T5934] exit_mmap+0x454/0xa10 [ 48.849439][ T5934] ? __pfx_exit_mmap+0x10/0x10 [ 48.851334][ T5934] ? trace_contention_end+0x122/0x170 [ 48.854417][ T5934] ? uprobe_clear_state+0x5f/0x260 [ 48.856377][ T5934] ? uprobe_clear_state+0x5f/0x260 [ 48.859836][ T5934] ? __lock_acquire+0x4a5/0x2630 [ 48.864418][ T5934] ? arch_uprobe_clear_state+0x107/0x150 [ 48.867572][ T5934] __mmput+0x12a/0x410 [ 48.869616][ T5934] mmput+0x67/0x80 [ 48.871217][ T5934] do_exit+0x833/0x2a60 [ 48.873642][ T5934] ? do_raw_spin_lock+0x128/0x260 [ 48.875605][ T5934] ? __pfx_do_exit+0x10/0x10 [ 48.877561][ T5934] ? do_group_exit+0x1bd/0x2a0 [ 48.879617][ T5934] ? rcu_is_watching+0x12/0xc0 [ 48.882577][ T5934] do_group_exit+0xd5/0x2a0 [ 48.884955][ T5934] __x64_sys_exit_group+0x3e/0x50 [ 48.886925][ T5934] x64_sys_call+0x102c/0x1530 [ 48.888613][ T5934] do_syscall_64+0x10b/0xf80 [ 48.890257][ T5934] ? clear_bhb_loop+0x40/0x90 [ 48.892946][ T5934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 48.895218][ T5934] RIP: 0033:0x7fc4db37a6c5 [ 48.896811][ T5934] Code: Unable to access opcode bytes at 0x7fc4db37a69b. Setting up swapspace version 1, size = 127995904 bytes [ 48.899455][ T5934] RSP: 002b:00007fffbd1b3848 EFLAGS: 00000206 ORIG_RAX: 00000000000000e7 [ 48.907515][ T5934] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fc4db37a6c5 [ 48.909964][ T5934] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000001 [ 48.912570][ T5934] RBP: 00007fffbd1b3e58 R08: 000055eb8d7db2c0 R09: 0000000000000002 [ 48.915096][ T5934] R10: 00000000000000e0 R11: 0000000000000206 R12: 00007fffbd1b3890 [ 48.917638][ T5934] R13: 000055eb8d7dc8a0 R14: 00007fffbd1b3ad0 R15: 00007fffbd1b3880 [ 48.922847][ T5934] [ 48.923861][ T5934] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 48.926169][ T5934] CPU: 2 UID: 0 PID: 5934 Comm: dhcpcd Not tainted syzkaller #0 PREEMPT(full) [ 48.928967][ T5934] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 48.932099][ T5934] Call Trace: [ 48.933324][ T5934] [ 48.934393][ T5934] dump_stack_lvl+0x100/0x190 [ 48.936767][ T5934] vpanic+0x552/0x970 [ 48.938488][ T5934] ? __pfx_vpanic+0x10/0x10 [ 48.941971][ T5934] panic+0xd1/0xe0 [ 48.943621][ T5934] ? __pfx_panic+0x10/0x10 [ 48.947215][ T5934] ? check_panic_on_warn+0x1f/0x90 [ 48.949617][ T5934] check_panic_on_warn.cold+0x19/0x34 [ 48.951774][ T5934] ? __rcu_read_unlock+0x235/0x5e0 [ 48.953562][ T5934] __warn.cold+0x191/0x328 [ 48.956079][ T5934] __report_bug+0x296/0x3d0 [ 48.957755][ T5934] ? __rcu_read_unlock+0x235/0x5e0 [ 48.960152][ T5934] ? __pfx___report_bug+0x10/0x10 [ 48.962259][ T5934] ? is_bpf_text_address+0x8a/0x1a0 [ 48.964042][ T5934] ? lock_release+0x245/0x310 [ 48.965679][ T5934] ? bpf_ksym_find+0x124/0x1c0 [ 48.968087][ T5934] ? __pfx___schedule+0x10/0x10 [ 48.970410][ T5934] ? preempt_schedule_irq+0x7b/0x90 [ 48.972708][ T5934] ? __rcu_read_unlock+0x235/0x5e0 [ 48.974854][ T5934] report_bug+0xb2/0x220 [ 48.976705][ T5934] ? __rcu_read_unlock+0x235/0x5e0 [ 48.978718][ T5934] handle_bug+0x16a/0x2a0 [ 48.980642][ T5934] exc_invalid_op+0x17/0x50 [ 48.982539][ T5934] asm_exc_invalid_op+0x1a/0x20 [ 48.984284][ T5934] RIP: 0010:__rcu_read_unlock+0x235/0x5e0 [ 48.986226][ T5934] Code: 74 11 c7 45 58 01 00 00 00 bf 09 00 00 00 e8 a2 a4 da ff e8 8d e0 22 00 9c 58 f6 c4 02 0f 85 dd 02 00 00 fb e9 57 fe ff ff 90 <0f> 0b 90 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc e8 14 62 87 [ 48.992252][ T5934] RSP: 0018:ffffc900045df718 EFLAGS: 00010286 [ 48.994187][ T5934] RAX: 00000000ffffffff RBX: ffff88802a092500 RCX: ffffffff81e80bfe [ 48.996804][ T5934] RDX: 0000000000000000 RSI: ffffffff8df2c0ea RDI: ffff88802a0929c4 [ 48.999463][ T5934] RBP: 000000000000001f R08: 0000000000000005 R09: 0000000000000000 [ 49.002106][ T5934] R10: 0000000080000000 R11: 0000000000000001 R12: ffffc900045df8fc [ 49.004606][ T5934] R13: dffffc0000000000 R14: ffffc900045df920 R15: ffffc900045dfa20 [ 49.008477][ T5934] ? nbcon_cpu_emergency_exit+0x11e/0x1e0 [ 49.012409][ T5934] folios_put_refs+0x514/0xa90 [ 49.015405][ T5934] ? __pfx_folios_put_refs+0x10/0x10 [ 49.019753][ T5934] free_pages_and_swap_cache+0x22d/0x3b0 [ 49.022505][ T5934] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 49.032130][ T5934] ? __pfx___might_resched+0x10/0x10 [ 49.035398][ T5934] __tlb_batch_free_encoded_pages+0xe9/0x280 [ 49.038836][ T5934] tlb_finish_mmu+0x1b0/0x810 [ 49.041574][ T5934] exit_mmap+0x454/0xa10 [ 49.044020][ T5934] ? __pfx_exit_mmap+0x10/0x10 [ 49.045949][ T5934] ? trace_contention_end+0x122/0x170 [ 49.048948][ T5934] ? uprobe_clear_state+0x5f/0x260 [ 49.050835][ T5934] ? uprobe_clear_state+0x5f/0x260 [ 49.054361][ T5934] ? __lock_acquire+0x4a5/0x2630 [ 49.058822][ T5934] ? arch_uprobe_clear_state+0x107/0x150 [ 49.062157][ T5934] __mmput+0x12a/0x410 [ 49.064303][ T5934] mmput+0x67/0x80 [ 49.065960][ T5934] do_exit+0x833/0x2a60 [ 49.068430][ T5934] ? do_raw_spin_lock+0x128/0x260 [ 49.070422][ T5934] ? __pfx_do_exit+0x10/0x10 [ 49.072035][ T5934] ? do_group_exit+0x1bd/0x2a0 [ 49.074087][ T5934] ? rcu_is_watching+0x12/0xc0 [ 49.077070][ T5934] do_group_exit+0xd5/0x2a0 [ 49.079408][ T5934] __x64_sys_exit_group+0x3e/0x50 [ 49.081375][ T5934] x64_sys_call+0x102c/0x1530 [ 49.083068][ T5934] do_syscall_64+0x10b/0xf80 [ 49.084773][ T5934] ? clear_bhb_loop+0x40/0x90 [ 49.087157][ T5934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 49.089238][ T5934] RIP: 0033:0x7fc4db37a6c5 [ 49.090796][ T5934] Code: Unable to access opcode bytes at 0x7fc4db37a69b. [ 49.093037][ T5934] RSP: 002b:00007fffbd1b3848 EFLAGS: 00000206 ORIG_RAX: 00000000000000e7 [ 49.095641][ T5934] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fc4db37a6c5 [ 49.098175][ T5934] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000001 [ 49.100667][ T5934] RBP: 00007fffbd1b3e58 R08: 000055eb8d7db2c0 R09: 0000000000000002 [ 49.103153][ T5934] R10: 00000000000000e0 R11: 0000000000000206 R12: 00007fffbd1b3890 [ 49.105644][ T5934] R13: 000055eb8d7dc8a0 R14: 00007fffbd1b3ad0 R15: 00007fffbd1b3880 [ 49.111054][ T5934] [ 49.112719][ T5934] Kernel Offset: disabled [ 49.114266][ T5934] Rebooting in 86400 seconds..