watchdog: BUG: soft lockup - CPU#1 stuck for 22s! [syz-executor.1:11140] Modules linked in: irq event stamp: 4611965 hardirqs last enabled at (4611964): [] asm_sysvec_apic_timer_interrupt+0x1a/0x20 hardirqs last disabled at (4611965): [] sysvec_apic_timer_interrupt+0xf/0x90 softirqs last enabled at (4554130): [] irq_exit_rcu+0x93/0xc0 softirqs last disabled at (4554133): [] irq_exit_rcu+0x93/0xc0 CPU: 1 PID: 11140 Comm: syz-executor.1 Not tainted 6.5.0-rc5-next-20230808 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 RIP: 0010:memset_orig+0x7e/0xb0 Code: 7f 40 75 d8 0f 1f 84 00 00 00 00 00 89 d1 83 e1 38 74 14 c1 e9 03 66 0f 1f 44 00 00 ff c9 48 89 07 48 8d 7f 08 75 f5 83 e2 07 <74> 0a ff ca 88 07 48 8d 7f 01 75 f6 4c 89 d0 e9 6e 7d 02 00 48 83 RSP: 0018:ffff88806cf09a28 EFLAGS: 00000246 RAX: 0000000000000000 RBX: ffff88806cf09b30 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88806cf09b00 RBP: ffff88806cf09a90 R08: 0000000000000006 R09: 0000000000000000 R10: ffff88806cf09a90 R11: 0000000000000001 R12: ffff88803be98000 R13: 0000000000000000 R14: ffff88803be98000 R15: ffff88806cf09ab8 FS: 00007f9c0eb93700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f60bb2f9000 CR3: 0000000042d98000 CR4: 0000000000350ee0 Call Trace: __unwind_start+0x36/0x8e0 arch_stack_walk+0x8f/0x160 stack_trace_save+0x90/0xd0 kasan_save_stack+0x22/0x50 kasan_set_track+0x25/0x30 kasan_save_free_info+0x2b/0x50 __kasan_slab_free+0x10a/0x190 kmem_cache_free+0x10d/0x4d0 rcu_core+0x8c8/0x28b0 __do_softirq+0x1b7/0x7d4 irq_exit_rcu+0x93/0xc0 sysvec_apic_timer_interrupt+0x6e/0x90 asm_sysvec_apic_timer_interrupt+0x1a/0x20 RIP: 0010:__slab_free+0x1/0x3e0 Code: f7 48 c7 c2 a8 3d 22 85 e8 cc 94 ff ff e9 42 fd ff ff 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 <48> 89 e5 41 57 41 56 49 89 fe 41 55 41 54 49 89 f4 53 48 89 d3 48 RSP: 0018:ffff888043497b18 EFLAGS: 00000287 RAX: ffff88806cf3e0c0 RBX: ffff88800e90d720 RCX: ffff88803fcf8d10 RDX: ffff88803fcf8d10 RSI: ffffea0000ff3e00 RDI: ffff88800844f780 RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffff81835fff R10: ffffea0000ff3e00 R11: 0000000000000001 R12: dffffc0000000000 R13: ffff888043497b68 R14: ffff88800844f780 R15: ffff88803fcf8d10 qlist_free_all+0x6d/0x1a0 kasan_quarantine_reduce+0x199/0x230 __kasan_slab_alloc+0x49/0x70 kmem_cache_alloc+0x17b/0x390 alloc_empty_file+0x76/0x1e0 alloc_file+0x5e/0x800 alloc_file_pseudo+0x16e/0x260 anon_inode_getfile+0xb4/0x1e0 __do_sys_perf_event_open+0x17c2/0x2ae0 do_syscall_64+0x3f/0x90 entry_SYSCALL_64_after_hwframe+0x6e/0xd8 RIP: 0033:0x7f9c1161db19 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f9c0eb93188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a RAX: ffffffffffffffda RBX: 00007f9c11730f60 RCX: 00007f9c1161db19 RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 RBP: 00007f9c11677f6d R08: 0000000000000000 R09: 0000000000000000 R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffdf088495f R14: 00007f9c0eb93300 R15: 0000000000022000 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 skipped: idling at default_idle+0x1e/0x30 ---------------- Code disassembly (best guess): 0: 7f 40 jg 0x42 2: 75 d8 jne 0xffffffdc 4: 0f 1f 84 00 00 00 00 nopl 0x0(%rax,%rax,1) b: 00 c: 89 d1 mov %edx,%ecx e: 83 e1 38 and $0x38,%ecx 11: 74 14 je 0x27 13: c1 e9 03 shr $0x3,%ecx 16: 66 0f 1f 44 00 00 nopw 0x0(%rax,%rax,1) 1c: ff c9 dec %ecx 1e: 48 89 07 mov %rax,(%rdi) 21: 48 8d 7f 08 lea 0x8(%rdi),%rdi 25: 75 f5 jne 0x1c 27: 83 e2 07 and $0x7,%edx * 2a: 74 0a je 0x36 <-- trapping instruction 2c: ff ca dec %edx 2e: 88 07 mov %al,(%rdi) 30: 48 8d 7f 01 lea 0x1(%rdi),%rdi 34: 75 f6 jne 0x2c 36: 4c 89 d0 mov %r10,%rax 39: e9 6e 7d 02 00 jmpq 0x27dac 3e: 48 rex.W 3f: 83 .byte 0x83