vmware-workstation 17.5.1 issue with kernel 6.8.8-200.fc39

[torehl]

Works perfectly with 6.8.7-200.fc39. VMware Wkst 17.5.1 still works.

[   10.061712] ------------[ cut here ]------------
[   10.061714] UBSAN: array-index-out-of-bounds in /home/torel/workspace/VMware-Workstations/vmware-host-modules-works
tation-17.5.1/vmmon-only/common/vmx86.c:2905:25
[   10.061716] index 0 is out of range for type 'MSRReply [*]'
[   10.061718] CPU: 11 PID: 1216 Comm: modprobe Tainted: P           OE      6.8.8-200.fc39.x86_64 #1
[   10.061720] Hardware name: Dell Inc. Precision 5530/0GN6M8, BIOS 1.36.0 02/17/2024
[   10.061722] Call Trace:
[   10.061724]  <TASK>
[   10.061726]  dump_stack_lvl+0x64/0x80
[   10.061732]  __ubsan_handle_out_of_bounds+0x95/0xd0
[   10.061738]  Vmx86GetMSR+0xc4/0x170 [vmmon]
[   10.061749]  ? __pfx_Vmx86GetMSR+0x10/0x10 [vmmon]
[   10.061760]  HostIF_CallOnEachCPU+0x1d/0x50 [vmmon]
[   10.061771]  Vmx86_CheckMSRUniformity+0x124/0x710 [vmmon]
[   10.061782]  ? __pfx_LinuxDriverInit+0x10/0x10 [vmmon]
[   10.061793]  LinuxDriverInit+0x58/0x1a0 [vmmon]
[   10.061803]  ? __pfx_LinuxDriverInit+0x10/0x10 [vmmon]
[   10.061811]  do_one_initcall+0x58/0x320
[   10.061816]  do_init_module+0x60/0x240
[   10.061819]  init_module_from_file+0x86/0xc0
[   10.061824]  idempotent_init_module+0x120/0x2b0
[   10.061828]  __x64_sys_finit_module+0x5e/0xb0
[   10.061830]  do_syscall_64+0x83/0x170
[   10.061835]  ? mas_store_prealloc+0x56/0xd0
[   10.061838]  ? vma_set_page_prot+0x62/0xc0
[   10.061842]  ? mmap_region+0x51b/0x9b0
[   10.061846]  ? vm_mmap_pgoff+0x125/0x1a0
[   10.061849]  ? do_syscall_64+0x90/0x170
[   10.061851]  ? ksys_mmap_pgoff+0xf2/0x230
[   10.061854]  ? syscall_exit_to_user_mode+0x83/0x230
[   10.061857]  ? do_syscall_64+0x90/0x170
[   10.061859]  ? syscall_exit_to_user_mode+0x83/0x230
[   10.061861]  ? do_syscall_64+0x90/0x170
[   10.061863]  ? exc_page_fault+0x7f/0x180
[   10.061865]  entry_SYSCALL_64_after_hwframe+0x78/0x80
[   10.061868] RIP: 0033:0x7faf7dd3185d
[   10.061893] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4
d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a3 45 0c 00 f7 d8 64 89 01 48
[   10.061896] RSP: 002b:00007ffc8bbfe568 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[   10.061899] RAX: ffffffffffffffda RBX: 000055adbab0fc60 RCX: 00007faf7dd3185d
[   10.061901] RDX: 0000000000000000 RSI: 000055adba444fc9 RDI: 0000000000000003
[   10.061903] RBP: 00007ffc8bbfe620 R08: 0000000000000000 R09: 0000000000000002
[   10.061905] R10: 0000000000000003 R11: 0000000000000246 R12: 000055adba444fc9
[   10.061906] R13: 0000000000040000 R14: 000055adbab0fc00 R15: 0000000000000000
[   10.061911]  </TASK>
[   10.061912] ---[ end trace ]---

[   10.061917] ------------[ cut here ]------------
[   10.061918] UBSAN: array-index-out-of-bounds in /home/torel/workspace/VMware-Workstations/vmware-host-modules-works
tation-17.5.1/vmmon-only/common/vmx86.c:2926:64
[   10.061921] index 0 is out of range for type 'MSRReply [*]'
[   10.061922] CPU: 11 PID: 1216 Comm: modprobe Tainted: P           OE      6.8.8-200.fc39.x86_64 #1
[   10.061925] Hardware name: Dell Inc. Precision 5530/0GN6M8, BIOS 1.36.0 02/17/2024
[   10.061926] Call Trace:
[   10.061927]  <TASK>
[   10.061929]  dump_stack_lvl+0x64/0x80
[   10.061933]  __ubsan_handle_out_of_bounds+0x95/0xd0
[   10.061937]  Vmx86GetMSR+0x67/0x170 [vmmon]
[   10.061948]  ? __pfx_Vmx86GetMSR+0x10/0x10 [vmmon]
[   10.061957]  HostIF_CallOnEachCPU+0x1d/0x50 [vmmon]
[   10.061966]  Vmx86_CheckMSRUniformity+0x124/0x710 [vmmon]
[   10.061976]  ? __pfx_LinuxDriverInit+0x10/0x10 [vmmon]
[   10.061986]  LinuxDriverInit+0x58/0x1a0 [vmmon]
[   10.061994]  ? __pfx_LinuxDriverInit+0x10/0x10 [vmmon]
[   10.062002]  do_one_initcall+0x58/0x320
[   10.062006]  do_init_module+0x60/0x240
[   10.062009]  init_module_from_file+0x86/0xc0
[   10.062014]  idempotent_init_module+0x120/0x2b0
[   10.062018]  __x64_sys_finit_module+0x5e/0xb0
[   10.062019] Bluetooth: hci0: Firmware revision 0.3 build 132 week 3 2024
[   10.062022]  do_syscall_64+0x83/0x170
[   10.062027]  ? mas_store_prealloc+0x56/0xd0
[   10.062030]  ? vma_set_page_prot+0x62/0xc0
[   10.062034]  ? mmap_region+0x51b/0x9b0
[   10.062039]  ? vm_mmap_pgoff+0x125/0x1a0
[   10.062041]  ? do_syscall_64+0x90/0x170
[   10.062043]  ? ksys_mmap_pgoff+0xf2/0x230
[   10.062046]  ? syscall_exit_to_user_mode+0x83/0x230
[   10.062048]  ? do_syscall_64+0x90/0x170
[   10.062051]  ? syscall_exit_to_user_mode+0x83/0x230
[   10.062053]  ? do_syscall_64+0x90/0x170
[   10.062055]  ? exc_page_fault+0x7f/0x180
[   10.062057]  entry_SYSCALL_64_after_hwframe+0x78/0x80
[   10.062059] RIP: 0033:0x7faf7dd3185d
[   10.062068] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4
d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a3 45 0c 00 f7 d8 64 89 01 48
[   10.062070] RSP: 002b:00007ffc8bbfe568 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[   10.062072] RAX: ffffffffffffffda RBX: 000055adbab0fc60 RCX: 00007faf7dd3185d
[   10.062073] RDX: 0000000000000000 RSI: 000055adba444fc9 RDI: 0000000000000003
[   10.062074] RBP: 00007ffc8bbfe620 R08: 0000000000000000 R09: 0000000000000002
[   10.062076] R10: 0000000000000003 R11: 0000000000000246 R12: 000055adba444fc9
[   10.062077] R13: 0000000000040000 R14: 000055adbab0fc00 R15: 0000000000000000
[   10.062080]  </TASK>
[   10.062081] ---[ end trace ]---

[torehl]

[   10.068955] ------------[ cut here ]------------
[   10.068955] UBSAN: array-index-out-of-bounds in /home/torel/workspace/VMware-Workstations/vmware-host-modules-works
tation-17.5.1/vmmon-only/common/vmx86.c:3652:38
[   10.068957] index 1 is out of range for type 'MSRReply [*]'
[   10.068957] CPU: 11 PID: 1216 Comm: modprobe Tainted: P           OE      6.8.8-200.fc39.x86_64 #1
[   10.068959] Hardware name: Dell Inc. Precision 5530/0GN6M8, BIOS 1.36.0 02/17/2024
[   10.068959] Call Trace:
[   10.068960]  <TASK>
[   10.068961]  dump_stack_lvl+0x64/0x80
[   10.068964]  __ubsan_handle_out_of_bounds+0x95/0xd0
[   10.068967]  Vmx86GenFindCommonIntelVTCap+0x785/0x14d0 [vmmon]
[   10.068977]  Vmx86_CheckMSRUniformity+0x6a1/0x710 [vmmon]
[   10.068986]  ? __pfx_LinuxDriverInit+0x10/0x10 [vmmon]
[   10.068995]  LinuxDriverInit+0x58/0x1a0 [vmmon]
[   10.069002]  ? __pfx_LinuxDriverInit+0x10/0x10 [vmmon]
[   10.069010]  do_one_initcall+0x58/0x320
[   10.069013]  do_init_module+0x60/0x240
[   10.069016]  init_module_from_file+0x86/0xc0
[   10.069020]  idempotent_init_module+0x120/0x2b0
[   10.069023]  __x64_sys_finit_module+0x5e/0xb0
[   10.069026]  do_syscall_64+0x83/0x170
[   10.069029]  ? mas_store_prealloc+0x56/0xd0
[   10.069031]  ? vma_set_page_prot+0x62/0xc0
[   10.069034]  ? mmap_region+0x51b/0x9b0
[   10.069038]  ? vm_mmap_pgoff+0x125/0x1a0
[   10.069040]  ? do_syscall_64+0x90/0x170
[   10.069043]  ? ksys_mmap_pgoff+0xf2/0x230
[   10.069045]  ? syscall_exit_to_user_mode+0x83/0x230
[   10.069047]  ? do_syscall_64+0x90/0x170
[   10.069049]  ? syscall_exit_to_user_mode+0x83/0x230
[   10.069051]  ? do_syscall_64+0x90/0x170
[   10.069053]  ? exc_page_fault+0x7f/0x180
[   10.069055]  entry_SYSCALL_64_after_hwframe+0x78/0x80
[   10.069057] RIP: 0033:0x7faf7dd3185d
[   10.069061] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4
d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a3 45 0c 00 f7 d8 64 89 01 48
[   10.069062] RSP: 002b:00007ffc8bbfe568 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[   10.069063] RAX: ffffffffffffffda RBX: 000055adbab0fc60 RCX: 00007faf7dd3185d
[   10.069064] RDX: 0000000000000000 RSI: 000055adba444fc9 RDI: 0000000000000003
[   10.069065] RBP: 00007ffc8bbfe620 R08: 0000000000000000 R09: 0000000000000002
[   10.069066] R10: 0000000000000003 R11: 0000000000000246 R12: 000055adba444fc9
[   10.069067] R13: 0000000000040000 R14: 000055adbab0fc00 R15: 0000000000000000
[   10.069070]  </TASK>
[   10.069070] ---[ end trace ]---
[   10.069213] /dev/vmmon[1216]: Module vmmon: registered as misc device
[   10.069215] /dev/vmmon[1216]: Using tsc_khz as TSC frequency: 2904006
[   10.069217] /dev/vmmon[1216]: Module vmmon: initialized
[   10.106545] Guest personality initialized and is inactive
[   10.106599] VMCI host device registered (name=vmci, major=10, minor=116)

[torehl]

Any ideas?

[sincorchetes]

How you installed the vmware-modules?

[priiduneemre]

I can confirm everything works perfectly with 6.8.7-200.fc39 and Workstation 17.5.1.

Guess I'll skip the kernel update for now.

[torehl]

How you installed the vmware-modules?

Yes. As I said, and as confirmed by @priiduneemre it works perfectly on 6.8.7, while I'm getting the above kernel oops on 6.8.8. Haven't seen any ill effects on 6.8.8-200.fc39 though.

[dioni21]

index 0 is out of range in ... vmx86.c:3652:38?

vmx86.c:

3651          if (query->msrNum == msrNum) {
3652             return query->logicalCPUs[cpu].msrVal;
3653          }

38 means index [cpu]

Ok, index 0 in an array is invalid? Why?

Because at vmmon-only/include/x86msr.h, line 95 we have:

  67 typedef struct MSRQuery {
  68    uint32 msrNum;           // IN
  69    uint32 numLogicalCPUs;   // IN/OUT
  70    MSRReply logicalCPUs[0]; // OUT
  71 } MSRQuery;

In typical C this means an expandable array. But UBSAN did not like it.
Maybe we need to add a pragma to tell it about?

BTW: This is probably just a warning, I don't think it is crashing anything.

[dioni21]

I'll test this patch at home:

diff --git i/vmmon-only/include/x86msr.h w/vmmon-only/include/x86msr.h
index f67a0e1..74eaae0 100644
--- i/vmmon-only/include/x86msr.h
+++ w/vmmon-only/include/x86msr.h
@@ -67,7 +67,7 @@ typedef struct MSRReply {
 typedef struct MSRQuery {
    uint32 msrNum;           // IN
    uint32 numLogicalCPUs;   // IN/OUT
-   MSRReply logicalCPUs[0]; // OUT
+   MSRReply logicalCPUs[]; // OUT
 } MSRQuery;
 #pragma pack(pop)
 

Suggested by looking at https://gist.github.com/joanbm/9cd5fda1dcfab9a67b42cc6195b7b269

[Santuccic]

Hi, running on bare linux Fedora as of now as following

Fedora Linux 40 (Workstation Edition) 6.8.8-300.fc40.x86_64
Product: VMware® Workstation 17 Pro
Version: 17.5.1 build-23298084

when i update to the 6.8.8 i also encountered some issue, instead of build and install it i had to replace the original tarballs and then build and install it.

[nsxsnx]

Hello,
Appreciate all the work being done here.

I confirm the same error on the following configuration:

Fedora Linux 40 6.8.8-300.fc40.x86_64,
Workstation 17 Pro Version: 17.5.1 build-23298084

VM seems to run fine regardless of the error in dmesg, but after shutting a VM down CPU load goes to almost 100%, which can be stopped with "modprobe -r vmmon".

kernel-6.8.7-300.fc40.x86_64 was fine with modules from this repo.

[i300220]

I confirm Fedora Linux 40, kernels 6.8.8 and 6.8.9 are affected. Worked fine prior to 6.8.8.

https://discussion.fedoraproject.org/t/fedora-40-amd-gpu-kernel-6-8-8-issue-anyone-else/116646

[sincorchetes]

I add the following output for this kernel: Linux clr-3a9b24c3451f4ded968a21702b4bc5de 6.8.9-1432.native #1 SMP Mon May 6 12:48:36 PDT 2024 x86_64 GNU/Linux

make -C vmmon-only 
make[1]: Entering directory '/home/sincorchetes/Documents/vmware-host-modules/vmmon-only'
make -C /lib/modules/6.8.9-1432.native/build/include/.. M=$PWD SRCROOT=$PWD/. \
  MODULEBUILDDIR= modules
make[2]: Entering directory '/usr/lib/modules/6.8.9-1432.native/build'
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/linux/driver.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/linux/driverLog.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/linux/hostif.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/apic.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/comport.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/cpuid.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/crosspage.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/memtrack.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/moduleloop.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/phystrack.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/sharedAreaVmmon.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/statVarsVmmon.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/task.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/common/vmx86.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/bootstrap/bootstrap.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/bootstrap/monLoader.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/bootstrap/monLoaderVmmon.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/bootstrap/vmmblob.o
  LD [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/vmmon.o
  MODPOST /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/Module.symvers
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/vmmon.mod.o
  LD [M]  /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/vmmon.ko
  BTF [M] /home/sincorchetes/Documents/vmware-host-modules/vmmon-only/vmmon.ko
make[2]: Leaving directory '/usr/lib/modules/6.8.9-1432.native/build'
make -C $PWD SRCROOT=$PWD/. \
  MODULEBUILDDIR= postbuild
make[2]: Entering directory '/home/sincorchetes/Documents/vmware-host-modules/vmmon-only'
make[2]: 'postbuild' is up to date.
make[2]: Leaving directory '/home/sincorchetes/Documents/vmware-host-modules/vmmon-only'
cp -f vmmon.ko ./../vmmon.o
make[1]: Leaving directory '/home/sincorchetes/Documents/vmware-host-modules/vmmon-only'
make -C vmnet-only 
make[1]: Entering directory '/home/sincorchetes/Documents/vmware-host-modules/vmnet-only'
make -C /lib/modules/6.8.9-1432.native/build/include/.. M=$PWD SRCROOT=$PWD/. \
  MODULEBUILDDIR= modules
make[2]: Entering directory '/usr/lib/modules/6.8.9-1432.native/build'
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/driver.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/hub.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/userif.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/netif.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/bridge.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/procfs.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/smac_compat.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/smac.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/vnetEvent.o
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/vnetUserListener.o
  LD [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/vmnet.o
  MODPOST /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/Module.symvers
  CC [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/vmnet.mod.o
  LD [M]  /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/vmnet.ko
  BTF [M] /home/sincorchetes/Documents/vmware-host-modules/vmnet-only/vmnet.ko
make[2]: Leaving directory '/usr/lib/modules/6.8.9-1432.native/build'
make -C $PWD SRCROOT=$PWD/. \
  MODULEBUILDDIR= postbuild
make[2]: Entering directory '/home/sincorchetes/Documents/vmware-host-modules/vmnet-only'
make[2]: 'postbuild' is up to date.
make[2]: Leaving directory '/home/sincorchetes/Documents/vmware-host-modules/vmnet-only'
cp -f vmnet.ko ./../vmnet.o
make[1]: Leaving directory '/home/sincorchetes/Documents/vmware-host-modules/vmnet-only'
install -D -t /lib/modules/6.8.9-1432.native/misc vmmon-only/vmmon.ko vmnet-only/vmnet.ko
strip --strip-debug /lib/modules/6.8.9-1432.native/misc/vmmon.ko /lib/modules/6.8.9-1432.native/misc/vmnet.ko
if test -z ""; then /sbin/depmod -a 6.8.9-1432.native; fi
[AppLoader] GLib does not have GSettings support.
make: Entering directory '/tmp/modconfig-uPS9pU/vmmon-only'
Using kernel build system.
/sbin/make -C /lib/modules/6.8.9-1432.native/build/include/.. M=$PWD SRCROOT=$PWD/. \
  MODULEBUILDDIR= modules
make[1]: Entering directory '/usr/lib/modules/6.8.9-1432.native/build'
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/linux/driver.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/linux/driverLog.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/linux/hostif.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/apic.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/comport.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/cpuid.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/crosspage.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/memtrack.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/moduleloop.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/phystrack.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/sharedAreaVmmon.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/statVarsVmmon.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/task.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/common/vmx86.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/bootstrap/bootstrap.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/bootstrap/monLoader.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/bootstrap/monLoaderVmmon.o
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/bootstrap/vmmblob.o
/tmp/modconfig-uPS9pU/vmmon-only/common/vmx86.c:700:1: warning: no previous prototype for ‘Vmx86FreeVMDriver’ [-Wmissing-prototypes]
  700 | Vmx86FreeVMDriver(VMDriver *vm)
      | ^~~~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmmon-only/common/vmx86.c:733:1: warning: no previous prototype for ‘Vmx86AllocVMDriver’ [-Wmissing-prototypes]
  733 | Vmx86AllocVMDriver(uint32 numVCPUs)
      | ^~~~~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmmon-only/common/task.c:548:1: warning: no previous prototype for ‘TaskGetFlatWriteableDataSegment’ [-Wmissing-prototypes]
  548 | TaskGetFlatWriteableDataSegment(void)
      | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmmon-only/linux/hostif.c:2926:1: warning: no previous prototype for ‘HostIFCheckTrackedMPN’ [-Wmissing-prototypes]
 2926 | HostIFCheckTrackedMPN(VMDriver *vm, // IN: The VM instance
      | ^~~~~~~~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmmon-only/linux/hostif.c:3046:1: warning: no previous prototype for ‘HostIFWritePhysicalWork’ [-Wmissing-prototypes]
 3046 | HostIFWritePhysicalWork(MA ma,             // MA to be written to
      | ^~~~~~~~~~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmmon-only/linux/hostif.c:3205:1: warning: no previous prototype for ‘HostIFStartTimer’ [-Wmissing-prototypes]
 3205 | HostIFStartTimer(Bool rateChanged,  //IN: Did rate change?
      | ^~~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmmon-only/linux/driver.c:271:1: warning: no previous prototype for ‘LinuxDriverInit’ [-Wmissing-prototypes]
  271 | LinuxDriverInit(void)
      | ^~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmmon-only/linux/driver.c:339:1: warning: no previous prototype for ‘LinuxDriverExit’ [-Wmissing-prototypes]
  339 | LinuxDriverExit(void)
      | ^~~~~~~~~~~~~~~
  LD [M]  /tmp/modconfig-uPS9pU/vmmon-only/vmmon.o
/tmp/modconfig-uPS9pU/vmmon-only/vmmon.o: warning: objtool: CrossPage_CodePage+0x207: 'naked' return found in RETHUNK build
  MODPOST /tmp/modconfig-uPS9pU/vmmon-only/Module.symvers
  CC [M]  /tmp/modconfig-uPS9pU/vmmon-only/vmmon.mod.o
  LD [M]  /tmp/modconfig-uPS9pU/vmmon-only/vmmon.ko
  BTF [M] /tmp/modconfig-uPS9pU/vmmon-only/vmmon.ko
Skipping BTF generation for /tmp/modconfig-uPS9pU/vmmon-only/vmmon.ko due to unavailability of vmlinux
make[1]: Leaving directory '/usr/lib/modules/6.8.9-1432.native/build'
/sbin/make -C $PWD SRCROOT=$PWD/. \
  MODULEBUILDDIR= postbuild
make[1]: Entering directory '/tmp/modconfig-uPS9pU/vmmon-only'
make[1]: 'postbuild' is up to date.
make[1]: Leaving directory '/tmp/modconfig-uPS9pU/vmmon-only'
cp -f vmmon.ko ./../vmmon.o
make: Leaving directory '/tmp/modconfig-uPS9pU/vmmon-only'
make: Entering directory '/tmp/modconfig-uPS9pU/vmnet-only'
Using kernel build system.
/sbin/make -C /lib/modules/6.8.9-1432.native/build/include/.. M=$PWD SRCROOT=$PWD/. \
  MODULEBUILDDIR= modules
make[1]: Entering directory '/usr/lib/modules/6.8.9-1432.native/build'
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/driver.o
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/hub.o
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/userif.o
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/netif.o
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/bridge.o
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/procfs.o
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/smac_compat.o
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/smac.o
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/vnetEvent.o
/tmp/modconfig-uPS9pU/vmnet-only/userif.c:1091:1: warning: no previous prototype for ‘VNetUserIf_Create’ [-Wmissing-prototypes]
 1091 | VNetUserIf_Create(VNetPort **ret) // OUT
      | ^~~~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmnet-only/netif.c:173:1: warning: no previous prototype for ‘VNetNetIf_Create’ [-Wmissing-prototypes]
  173 | VNetNetIf_Create(char *devName,  // IN:
      | ^~~~~~~~~~~~~~~~
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/vnetUserListener.o
/tmp/modconfig-uPS9pU/vmnet-only/bridge.c:258:1: warning: no previous prototype for ‘VNetBridge_Create’ [-Wmissing-prototypes]
  258 | VNetBridge_Create(const char *devName, // IN:  name of device (e.g., "eth0")
      | ^~~~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmnet-only/bridge.c:1411:1: warning: no previous prototype for ‘VNetBridgeSendLargePacket’ [-Wmissing-prototypes]
 1411 | VNetBridgeSendLargePacket(struct sk_buff *skb,        // IN: packet to split
      | ^~~~~~~~~~~~~~~~~~~~~~~~~
/tmp/modconfig-uPS9pU/vmnet-only/vnetUserListener.c:87:1: warning: no previous prototype for ‘VNetUserListener_Create’ [-Wmissing-prototypes]
   87 | VNetUserListener_Create(uint32 classMask,  // IN: the listener's class mask
      | ^~~~~~~~~~~~~~~~~~~~~~~
  LD [M]  /tmp/modconfig-uPS9pU/vmnet-only/vmnet.o
/tmp/modconfig-uPS9pU/vmnet-only/vmnet.o: warning: objtool: VNetCsumCopyDatagram+0x57: call to csum_partial_copy_nocheck() with UACCESS enabled
/tmp/modconfig-uPS9pU/vmnet-only/vmnet.o: warning: objtool: init_module(): not an indirect call target
/tmp/modconfig-uPS9pU/vmnet-only/vmnet.o: warning: objtool: cleanup_module(): not an indirect call target
  MODPOST /tmp/modconfig-uPS9pU/vmnet-only/Module.symvers
  CC [M]  /tmp/modconfig-uPS9pU/vmnet-only/vmnet.mod.o
  LD [M]  /tmp/modconfig-uPS9pU/vmnet-only/vmnet.ko
  BTF [M] /tmp/modconfig-uPS9pU/vmnet-only/vmnet.ko
Skipping BTF generation for /tmp/modconfig-uPS9pU/vmnet-only/vmnet.ko due to unavailability of vmlinux
make[1]: Leaving directory '/usr/lib/modules/6.8.9-1432.native/build'
/sbin/make -C $PWD SRCROOT=$PWD/. \
  MODULEBUILDDIR= postbuild
make[1]: Entering directory '/tmp/modconfig-uPS9pU/vmnet-only'
make[1]: 'postbuild' is up to date.
make[1]: Leaving directory '/tmp/modconfig-uPS9pU/vmnet-only'
cp -f vmnet.ko ./../vmnet.o
make: Leaving directory '/tmp/modconfig-uPS9pU/vmnet-only'
Job for vmware.service failed because a timeout was exceeded.
See "systemctl status vmware.service" and "journalctl -xeu vmware.service" for details.
Unable to start services

[sincorchetes]

× vmware.service - VMware host virtualization and network services for Workstation
     Loaded: loaded (/usr/lib/systemd/system/vmware.service; enabled; preset: disabled)
     Active: failed (Result: timeout) since Tue 2024-05-14 00:06:39 CEST; 18min ago
    Process: 4786 ExecStart=/usr/lib/vmware/scripts/init/vmware start (code=killed, signal=TERM)

May 14 00:05:09 clr-3a9b24c3451f4ded968a21702b4bc5de systemd[1]: Starting vmware.service...
May 14 00:05:09 clr-3a9b24c3451f4ded968a21702b4bc5de vmware[4786]: Starting VMware services:
May 14 00:05:09 clr-3a9b24c3451f4ded968a21702b4bc5de vmware[4786]:    Virtual machine monitor - done
May 14 00:05:09 clr-3a9b24c3451f4ded968a21702b4bc5de vmware[4786]:    Virtual machine communication interface - done
May 14 00:05:09 clr-3a9b24c3451f4ded968a21702b4bc5de vmware[4786]:    VM communication interface socket family - done
May 14 00:06:39 clr-3a9b24c3451f4ded968a21702b4bc5de systemd[1]: vmware.service: start operation timed out. Terminating.
May 14 00:06:39 clr-3a9b24c3451f4ded968a21702b4bc5de vmware[4786]:    Virtual ethernet
May 14 00:06:39 clr-3a9b24c3451f4ded968a21702b4bc5de systemd[1]: vmware.service: Failed with result 'timeout'.
May 14 00:06:39 clr-3a9b24c3451f4ded968a21702b4bc5de systemd[1]: Failed to start vmware.service.

[rschuster]

I have similar messages in any kernel greater than 6.5.12 and it does cause problems.
Either VMs lockup or part of the host locks up.

[rschuster]

I was able to fix the warnings by deleting the zero in these two locations

./vmmon-only/include/x86cpuid.h

typedef struct CPUIDQuery {
uint32 eax; // IN
uint32 ecx; // IN
uint32 numLogicalCPUs; // IN/OUT
CPUIDReply logicalCPUs[0]; // OUT
} CPUIDQuery;

./vmmon-only/include/x86msr.h

typedef struct MSRQuery {
uint32 msrNum; // IN
uint32 numLogicalCPUs; // IN/OUT
MSRReply logicalCPUs[0]; // OUT
} MSRQuery;

However if I boot to kernel 6.8.9 and bring up a VM in workstation 17.5.2 the host has lockup problems with these messages.

[ 103.805075] /dev/vmmon[4226]: PTSC: initialized at 3499998000 Hz using TSC, TSCs are synchronized.
[ 103.878484] /dev/vmmon[4226]: Monitor IPI vector: 0
[ 103.878489] /dev/vmmon[4226]: HV IPI vector: 0
[ 103.879895] ------------[ cut here ]------------
[ 103.879898] WARNING: CPU: 6 PID: 4226 at kernel/rcu/tree_plugin.h:734 rcu_sched_clock_irq+0x89d/0x12d0
[ 103.879904] Modules linked in: uinput snd_seq_dummy snd_hrtimer nf_conntrack_netbios_ns nf_conntrack_broadcast nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 rfkill ip_set nf_tables nfnetlink vmnet(O) sunrpc qrtr ppdev parport_pc parport vmw_vsock_vmci_transport vsock vmw_vmci vmmon(O) snd_hda_codec_realtek snd_hda_codec_generic snd_hda_codec_hdmi snd_hda_intel intel_rapl_msr snd_intel_dspcfg snd_usb_audio intel_rapl_common snd_intel_sdw_acpi binfmt_misc edac_mce_amd snd_hda_codec snd_usbmidi_lib snd_ump snd_hda_core kvm_amd snd_rawmidi uvcvideo snd_hwdep vfat fat snd_seq uvc snd_seq_device videobuf2_vmalloc videobuf2_memops kvm videobuf2_v4l2 snd_pcm videobuf2_common irqbypass snd_timer videodev wmi_bmof snd rapl pcspkr i2c_piix4 acpi_cpufreq mc soundcore k10temp joydev gpio_amdpt gpio_generic loop zram amdgpu video amdxcp i2c_algo_bit drm_ttm_helper ttm drm_exec r8169 crct10dif_pclmul
[ 103.879987] gpu_sched crc32_pclmul drm_suballoc_helper crc32c_intel realtek polyval_clmulni drm_buddy polyval_generic nvme ghash_clmulni_intel drm_display_helper sha512_ssse3 nvme_core sha256_ssse3 ccp sha1_ssse3 cec sp5100_tco nvme_auth wmi ip6_tables ip_tables fuse i2c_dev
[ 103.880011] CPU: 6 PID: 4226 Comm: vmware-vmx Tainted: G O 6.8.9-200.fc39.x86_64 #1
[ 103.880014] Hardware name: Micro-Star International Co., Ltd. MS-7C91/MAG B550 TOMAHAWK (MS-7C91), BIOS A.G0 03/12/2024
[ 103.880016] RIP: 0010:rcu_sched_clock_irq+0x89d/0x12d0
[ 103.880019] Code: 25 6c bd e3 44 ff ff ff 7f e9 c9 fe ff ff 8b 87 38 08 00 00 85 c0 0f 84 7a f8 ff ff eb b2 c6 87 39 08 00 00 01 e9 6c f8 ff ff <0f> 0b e9 0d f8 ff ff 0f b6 05 65 31 16 03 84 c0 74 05 e8 dc 38 ff
[ 103.880021] RSP: 0018:ffffb0be003c4dd8 EFLAGS: 00010086
[ 103.880023] RAX: ffff97940bb08000 RBX: 0000000000000000 RCX: 00000000000f1144
[ 103.880025] RDX: 00000000ffffffa6 RSI: ffffffffbcab0f47 RDI: ffff97940bb08000
[ 103.880027] RBP: 0000000000000000 R08: ffff97b29e521730 R09: 0000000000000000
[ 103.880028] R10: 0000000000000000 R11: ffffb0be003c4ff8 R12: ffff97b29e525040
[ 103.880030] R13: ffffb0be04c93578 R14: 0000000000000016 R15: ffff97b29e524b00
[ 103.880032] FS: 00007fc888ad9c00(0000) GS:ffff97b29e500000(0000) knlGS:0000000000000000
[ 103.880034] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 103.880036] CR2: 00007fc878ef0000 CR3: 00000001c336c000 CR4: 0000000000350ef0
[ 103.880037] Call Trace:
[ 103.880040]
[ 103.880042] ? rcu_sched_clock_irq+0x89d/0x12d0
[ 103.880044] ? __warn+0x81/0x130
[ 103.880051] ? rcu_sched_clock_irq+0x89d/0x12d0
[ 103.880053] ? report_bug+0x171/0x1a0
[ 103.880058] ? handle_bug+0x3c/0x80
[ 103.880062] ? exc_invalid_op+0x17/0x70
[ 103.880065] ? asm_exc_invalid_op+0x1a/0x20
[ 103.880072] ? rcu_sched_clock_irq+0x89d/0x12d0
[ 103.880076] ? srso_return_thunk+0x5/0x5f
[ 103.880079] ? sbitmap_queue_clear_batch+0xcc/0x140
[ 103.880083] ? blk_stat_add+0x6e/0x110
[ 103.880089] update_process_times+0x74/0xb0
[ 103.880094] tick_sched_handle+0x21/0x60
[ 103.880098] tick_nohz_highres_handler+0x6f/0x90
[ 103.880100] ? __pfx_tick_nohz_highres_handler+0x10/0x10
[ 103.880103] __hrtimer_run_queues+0x116/0x280
[ 103.880105] ? ktime_get_update_offsets_now+0x4c/0x110
[ 103.880110] hrtimer_interrupt+0xf8/0x230
[ 103.880114] __sysvec_apic_timer_interrupt+0x50/0x140
[ 103.880118] sysvec_apic_timer_interrupt+0x6d/0x90
[ 103.880122]
[ 103.880123]
[ 103.880125] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 103.880127] RIP: 0010:btrfs_do_readpage+0x23f/0x750
[ 103.880132] Code: 00 49 39 f7 0f 83 e6 03 00 00 8b 68 68 4c 29 fa 48 8b 70 50 89 ef 83 e7 10 48 39 da 48 0f 47 d3 48 8b 5c 24 50 4c 8d 64 13 ff <48> f7 db 49 21 dc 40 f6 c5 02 0f 85 6f 01 00 00 40 f6 c5 04 0f 85
[ 103.880133] RSP: 0018:ffffb0be04c93620 EFLAGS: 00000206
[ 103.880136] RAX: ffff9794c00b6080 RBX: 0000000000001000 RCX: 00000000015a0000
[ 103.880137] RDX: 0000000000001000 RSI: 0000000117ffc000 RDI: 0000000000000000
[ 103.880139] RBP: 0000000000000008 R08: ffff9794e91cc1f8 R09: 0000000000000c40
[ 103.880140] R10: ffff979400957000 R11: ffff9794101c4400 R12: 0000000000001fff
[ 103.880142] R13: ffffb0be04c936d8 R14: fffff6040867a840 R15: 00000000015bb000
[ 103.880151] extent_readahead+0x2bc/0x3b0
[ 103.880155] ? __pfx_end_bbio_data_read+0x10/0x10
[ 103.880163] read_pages+0x85/0x250
[ 103.880168] page_cache_ra_unbounded+0x106/0x180
[ 103.880172] filemap_get_pages+0x4e1/0x660
[ 103.880180] filemap_read+0xe4/0x3e0
[ 103.880188] vfs_read+0x24f/0x380
[ 103.880194] ksys_read+0x6f/0xf0
[ 103.880197] do_syscall_64+0x83/0x170
[ 103.880201] ? srso_return_thunk+0x5/0x5f
[ 103.880203] ? get_page_from_freelist+0x60e/0x1d00
[ 103.880207] ? srso_return_thunk+0x5/0x5f
[ 103.880209] ? page_counter_try_charge+0x33/0xc0
[ 103.880212] ? srso_return_thunk+0x5/0x5f
[ 103.880215] ? srso_return_thunk+0x5/0x5f
[ 103.880217] ? try_charge_memcg+0x7f0/0x870
[ 103.880225] ? srso_return_thunk+0x5/0x5f
[ 103.880227] ? __alloc_pages+0x1a3/0x350
[ 103.880232] ? srso_return_thunk+0x5/0x5f
[ 103.880235] ? srso_return_thunk+0x5/0x5f
[ 103.880238] ? srso_return_thunk+0x5/0x5f
[ 103.880240] ? set_ptes.isra.0+0x28/0x90
[ 103.880243] ? srso_return_thunk+0x5/0x5f
[ 103.880247] ? srso_return_thunk+0x5/0x5f
[ 103.880249] ? srso_return_thunk+0x5/0x5f
[ 103.880251] ? syscall_exit_to_user_mode+0x83/0x230
[ 103.880254] ? srso_return_thunk+0x5/0x5f
[ 103.880257] ? do_syscall_64+0x90/0x170
[ 103.880261] ? srso_return_thunk+0x5/0x5f
[ 103.880264] ? __count_memcg_events+0x69/0x100
[ 103.880267] ? srso_return_thunk+0x5/0x5f
[ 103.880269] ? count_memcg_events.constprop.0+0x1a/0x30
[ 103.880271] ? srso_return_thunk+0x5/0x5f
[ 103.880274] ? handle_mm_fault+0xa2/0x360
[ 103.880277] ? srso_return_thunk+0x5/0x5f
[ 103.880279] ? do_user_addr_fault+0x204/0x690
[ 103.880284] ? srso_return_thunk+0x5/0x5f
[ 103.880286] ? srso_return_thunk+0x5/0x5f
[ 103.880289] entry_SYSCALL_64_after_hwframe+0x78/0x80
[ 103.880292] RIP: 0033:0x7fc888c2140a
[ 103.880313] Code: 55 48 89 e5 48 83 ec 20 48 89 55 e8 48 89 75 f0 89 7d f8 e8 18 26 f8 ff 48 8b 55 e8 48 8b 75 f0 41 89 c0 8b 7d f8 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 2e 44 89 c7 48 89 45 f8 e8 72 26 f8 ff 48 8b
[ 103.880314] RSP: 002b:00007fff37b63350 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 103.880317] RAX: ffffffffffffffda RBX: 0000000000553f88 RCX: 00007fc888c2140a
[ 103.880318] RDX: 0000000000553f88 RSI: 00007fc878e00010 RDI: 0000000000000057
[ 103.880320] RBP: 00007fff37b63370 R08: 0000000000000000 R09: 0000000000000000
[ 103.880321] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000553f88
[ 103.880323] R13: 0000000000000027 R14: 00007fc878e00010 R15: 0000000000000001
[ 103.880328]
[ 103.880329] ---[ end trace 0000000000000000 ]---
[ 106.893359] ------------[ cut here ]------------
[ 106.893364] WARNING: CPU: 6 PID: 4226 at kernel/rcu/tree_exp.h:800 rcu_exp_handler+0x35/0xe0
[ 106.893372] Modules linked in: uinput snd_seq_dummy snd_hrtimer nf_conntrack_netbios_ns nf_conntrack_broadcast nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 rfkill ip_set nf_tables nfnetlink vmnet(O) sunrpc qrtr ppdev parport_pc parport vmw_vsock_vmci_transport vsock vmw_vmci vmmon(O) snd_hda_codec_realtek snd_hda_codec_generic snd_hda_codec_hdmi snd_hda_intel intel_rapl_msr snd_intel_dspcfg snd_usb_audio intel_rapl_common snd_intel_sdw_acpi binfmt_misc edac_mce_amd snd_hda_codec snd_usbmidi_lib snd_ump snd_hda_core kvm_amd snd_rawmidi uvcvideo snd_hwdep vfat fat snd_seq uvc snd_seq_device videobuf2_vmalloc videobuf2_memops kvm videobuf2_v4l2 snd_pcm videobuf2_common irqbypass snd_timer videodev wmi_bmof snd rapl pcspkr i2c_piix4 acpi_cpufreq mc soundcore k10temp joydev gpio_amdpt gpio_generic loop zram amdgpu video amdxcp i2c_algo_bit drm_ttm_helper ttm drm_exec r8169 crct10dif_pclmul
[ 106.893455] gpu_sched crc32_pclmul drm_suballoc_helper crc32c_intel realtek polyval_clmulni drm_buddy polyval_generic nvme ghash_clmulni_intel drm_display_helper sha512_ssse3 nvme_core sha256_ssse3 ccp sha1_ssse3 cec sp5100_tco nvme_auth wmi ip6_tables ip_tables fuse i2c_dev
[ 106.893478] CPU: 6 PID: 4226 Comm: vmware-vmx Tainted: G W O 6.8.9-200.fc39.x86_64 #1
[ 106.893481] Hardware name: Micro-Star International Co., Ltd. MS-7C91/MAG B550 TOMAHAWK (MS-7C91), BIOS A.G0 03/12/2024
[ 106.893483] RIP: 0010:rcu_exp_handler+0x35/0xe0
[ 106.893485] Code: 55 65 48 8b 2c 25 40 3f 03 00 53 8b 85 34 08 00 00 48 c7 c3 80 56 03 00 65 48 03 1d b5 7a e2 44 4c 8b 63 18 85 c0 74 0d 7f 58 <0f> 0b 5b 5d 41 5c e9 60 02 f6 00 65 8b 05 c1 1f e4 44 66 85 c0 74
[ 106.893487] RSP: 0018:ffffb0be003c4f98 EFLAGS: 00010086
[ 106.893490] RAX: 00000000ffffff36 RBX: ffff97b29e535680 RCX: ffff97b29ed35a40
[ 106.893491] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000
[ 106.893493] RBP: ffff97940bb08000 R08: 0000000000000000 R09: 0000000000000000
[ 106.893494] R10: 0000000000000000 R11: ffffb0be003c4ff8 R12: ffffffffbd56e5c0
[ 106.893496] R13: ffffffffbb1f1f40 R14: 0000000000000000 R15: 0000000000000000
[ 106.893497] FS: 00007fc888ad9c00(0000) GS:ffff97b29e500000(0000) knlGS:0000000000000000
[ 106.893499] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.893501] CR2: 000055e6199c1780 CR3: 00000001c336c000 CR4: 0000000000350ef0
[ 106.893503] Call Trace:
[ 106.893505]
[ 106.893506] ? rcu_exp_handler+0x35/0xe0
[ 106.893508] ? __warn+0x81/0x130
[ 106.893512] ? rcu_exp_handler+0x35/0xe0
[ 106.893515] ? report_bug+0x171/0x1a0
[ 106.893520] ? handle_bug+0x3c/0x80
[ 106.893523] ? exc_invalid_op+0x17/0x70
[ 106.893526] ? asm_exc_invalid_op+0x1a/0x20
[ 106.893530] ? __pfx_rcu_exp_handler+0x10/0x10
[ 106.893535] ? rcu_exp_handler+0x35/0xe0
[ 106.893538] __flush_smp_call_function_queue+0x10c/0x410
[ 106.893542] __sysvec_call_function_single+0x1c/0xc0
[ 106.893545] sysvec_call_function_single+0x6d/0x90
[ 106.893548]
[ 106.893549]
[ 106.893551] asm_sysvec_call_function_single+0x1a/0x20
[ 106.893553] RIP: 0010:_raw_spin_unlock_irq+0x15/0x30
[ 106.893556] Code: 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 1f 44 00 00 c6 07 00 0f 1f 00 fb 0f 1f 44 00 00 <65> ff 0d 1c 32 ee 43 74 05 e9 ad 14 00 00 0f 1f 44 00 00 e9 a3 14
[ 106.893558] RSP: 0018:ffffb0be04c93c28 EFLAGS: 00000202
[ 106.893560] RAX: 0000000000000000 RBX: fffff60412acba00 RCX: 000000000000002d
[ 106.893562] RDX: 0000000000000001 RSI: 0000000000000006 RDI: ffff9794bc42ec58
[ 106.893563] RBP: 0000000000000000 R08: 0000000000000001 R09: 000000000000001c
[ 106.893565] R10: 0000000000000001 R11: 000000000028b880 R12: 0000000000000cc0
[ 106.893566] R13: ffff9794bc42ec50 R14: 0000000000000001 R15: 0000000000000001
[ 106.893572] ? srso_return_thunk+0x5/0x5f
[ 106.893574] shmem_add_to_page_cache+0x169/0x2e0
[ 106.893581] shmem_alloc_and_add_folio+0x129/0x330
[ 106.893585] shmem_get_folio_gfp+0x2cd/0x580
[ 106.893590] shmem_fallocate+0x3c4/0x550
[ 106.893596] vfs_fallocate+0x13d/0x350
[ 106.893600] __x64_sys_fallocate+0x44/0x70
[ 106.893604] do_syscall_64+0x83/0x170
[ 106.893607] ? srso_return_thunk+0x5/0x5f
[ 106.893610] ? syscall_exit_to_user_mode+0x83/0x230
[ 106.893612] ? srso_return_thunk+0x5/0x5f
[ 106.893615] ? do_syscall_64+0x90/0x170
[ 106.893617] ? srso_return_thunk+0x5/0x5f
[ 106.893620] ? srso_return_thunk+0x5/0x5f
[ 106.893623] entry_SYSCALL_64_after_hwframe+0x78/0x80
[ 106.893625] RIP: 0033:0x7fc888c2c85d
[ 106.893647] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a3 45 0c 00 f7 d8 64 89 01 48
[ 106.893648] RSP: 002b:00007fff37b63288 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 106.893651] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fc888c2c85d
[ 106.893652] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000005a
[ 106.893654] RBP: 0000000000000000 R08: 0000000000000000 R09: 000055e61c833010
[ 106.893655] R10: 0000000400000000 R11: 0000000000000246 R12: 000055e61cea4a80
[ 106.893657] R13: 0000000400000000 R14: 0000000400000000 R15: 000000000000005a
[ 106.893662]
[ 106.893663] ---[ end trace 0000000000000000 ]---