watchdog: BUG: soft lockup - CPU#0 stuck for 23s! [syz-executor.3:11419] Modules linked in: irq event stamp: 0 hardirqs last enabled at (0): [<0000000000000000>] 0x0 hardirqs last disabled at (0): [] copy_process+0x1dba/0x6df0 softirqs last enabled at (0): [] copy_process+0x1dfe/0x6df0 softirqs last disabled at (0): [<0000000000000000>] 0x0 CPU: 0 PID: 11419 Comm: syz-executor.3 Tainted: G B 6.0.0-rc4-next-20220908 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 RIP: 0010:kasan_check_range+0x5d/0x1c0 Code: ff ff 5b 5d 83 f0 01 41 5c 41 89 c3 44 89 d8 e9 f9 bb e7 02 48 ba ff ff ff ff ff 7f ff ff 48 39 d7 76 d7 4c 8d 48 ff 48 89 fd <48> b8 00 00 00 00 00 fc ff df 4d 89 ca 48 c1 ed 03 49 c1 ea 03 48 RSP: 0018:ffff88806ce09c70 EFLAGS: 00000216 RAX: ffff88800f952184 RBX: 0000000000000003 RCX: ffffffff8217c2a0 RDX: ffff7fffffffffff RSI: 0000000000000004 RDI: ffff88800f952180 RBP: ffff88800f952180 R08: 0000000000000001 R09: ffff88800f952183 R10: 0000000000000003 R11: 0000000000000001 R12: ffff88800e9b4010 R13: ffff88800f9521c8 R14: ffff88800f952180 R15: ffff88800e9b4034 FS: 00007fb553af7700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000001b2f534000 CR3: 000000003e5c0000 CR4: 0000000000350ef0 Call Trace: __sbq_wake_up+0x1c0/0x3d0 sbitmap_queue_clear+0xad/0x210 blk_mq_put_tag+0xd8/0x160 __blk_mq_free_request+0x2e0/0x380 blk_mq_free_request+0x35d/0x500 __blk_mq_end_request+0x358/0x580 scsi_end_request+0x472/0x9a0 scsi_io_completion+0xbc/0x2050 scsi_complete+0x114/0x560 blk_complete_reqs+0xb2/0xf0 __do_softirq+0x1c8/0x8d0 __irq_exit_rcu+0x11b/0x180 irq_exit_rcu+0x5/0x20 common_interrupt+0xa4/0xc0 asm_common_interrupt+0x22/0x40 RIP: 0010:finish_task_switch.isra.0+0x237/0x8a0 Code: 89 ff 48 c7 03 00 00 00 00 e8 a5 aa 3f 03 4d 85 e4 75 ba 4c 89 ff e8 b8 2a 05 03 e8 33 6e 2c 00 fb 65 48 8b 1c 25 c0 6e 02 00 <48> 8d bb 10 14 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 RSP: 0018:ffff88803bcbfa68 EFLAGS: 00000246 RAX: 0000000000000007 RBX: ffff88803bfc5040 RCX: 1ffffffff0b60481 RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff81208e4d RBP: ffff88803bcbfaa8 R08: 0000000000000000 R09: 0000000000000000 R10: ffffed100d9c6f98 R11: 0000000000000001 R12: ffff88806ce37cd8 R13: ffff88801b5b1ac0 R14: ffff88803bfc54f0 R15: ffff88806ce37cc0 __schedule+0x89b/0x24a0 schedule+0xda/0x1b0 futex_wait_queue+0x144/0x3c0 futex_wait+0x28e/0x690 do_futex+0x2ff/0x380 __x64_sys_futex+0x1c6/0x4d0 do_syscall_64+0x3b/0x90 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7fb5565a2b19 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fb553af7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: ffffffffffffffda RBX: 00007fb5566b6028 RCX: 00007fb5565a2b19 RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb5566b6028 RBP: 00007fb5566b6020 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb5566b602c R13: 00007fff56c5d18f R14: 00007fb553af7300 R15: 0000000000022000 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 11398 Comm: syz-executor.7 Tainted: G B 6.0.0-rc4-next-20220908 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 RIP: 0010:__sbq_wake_up+0x12/0x3d0 Code: 5b 5d 44 29 c0 e9 2e 7a 48 02 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 57 41 56 41 55 41 54 49 89 fc 55 49 8d 6c 24 30 53 <48> 83 ec 08 e8 15 63 2e ff be 04 00 00 00 48 89 ef e8 58 c6 60 ff RSP: 0000:ffff888041347be0 EFLAGS: 00000246 RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000100 RDX: ffff88803867d040 RSI: ffffffff8217d615 RDI: ffff88800e9b4010 RBP: ffff88800e9b4040 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800e9b4010 R13: 0000000000000001 R14: ffff88800ea6b600 R15: ffffe8ffffd03000 FS: 000055555651c400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000001b30c38000 CR3: 000000002ec98000 CR4: 0000000000350ee0 Call Trace: sbitmap_queue_clear+0xad/0x210 blk_mq_put_tag+0xd8/0x160 __blk_mq_free_request+0x2e0/0x380 blk_mq_free_request+0x35d/0x500 __blk_mq_end_request+0x358/0x580 scsi_end_request+0x472/0x9a0 scsi_io_completion+0xbc/0x2050 scsi_complete+0x114/0x560 blk_complete_reqs+0xb2/0xf0 __do_softirq+0x1c8/0x8d0 __irq_exit_rcu+0x11b/0x180 irq_exit_rcu+0x5/0x20 sysvec_call_function_single+0x40/0xc0 asm_sysvec_call_function_single+0x16/0x20 RIP: 0033:0x7efe720cb974 Code: 6f 10 53 48 83 ec 08 48 85 d2 0f 84 f1 00 00 00 48 c1 f8 04 49 8b 4e 08 49 8b 50 f8 49 83 ef 01 49 8d 34 c6 49 8b 3e 48 8b 06 <48> 39 c1 73 6b 48 39 d0 0f 82 b3 00 00 00 48 39 d1 72 67 49 89 0e RSP: 002b:00007ffea2f2eb20 EFLAGS: 00000202 RAX: ffffffff81a8f471 RBX: 00007efe71d6d1b8 RCX: ffffffff81a8f471 RDX: ffffffff81a8f423 RSI: 00007efe71d6d0e8 RDI: ffffffff81a8f490 RBP: 00007efe71d6d030 R08: 00007efe71d6d1b8 R09: 0000001b30c30cd8 R10: 0000000000001137 R11: 00000000931ef138 R12: 00007efe71d6d028 R13: 00007efe71d6d1b8 R14: 00007efe71d6d020 R15: 0000000000000010 ---------------- Code disassembly (best guess), 1 bytes skipped: 0: ff 5b 5d lcall *0x5d(%rbx) 3: 83 f0 01 xor $0x1,%eax 6: 41 5c pop %r12 8: 41 89 c3 mov %eax,%r11d b: 44 89 d8 mov %r11d,%eax e: e9 f9 bb e7 02 jmpq 0x2e7bc0c 13: 48 ba ff ff ff ff ff movabs $0xffff7fffffffffff,%rdx 1a: 7f ff ff 1d: 48 39 d7 cmp %rdx,%rdi 20: 76 d7 jbe 0xfffffff9 22: 4c 8d 48 ff lea -0x1(%rax),%r9 26: 48 89 fd mov %rdi,%rbp * 29: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax <-- trapping instruction 30: fc ff df 33: 4d 89 ca mov %r9,%r10 36: 48 c1 ed 03 shr $0x3,%rbp 3a: 49 c1 ea 03 shr $0x3,%r10 3e: 48 rex.W