loop0: detected capacity change from 0 to 40
loop2: detected capacity change from 0 to 40
watchdog: BUG: soft lockup - CPU#0 stuck for 27s! [swapper/0:0]
Modules linked in:
irq event stamp: 2826023
hardirqs last  enabled at (2826022): [<ffffffff84400d06>] asm_sysvec_apic_timer_interrupt+0x16/0x20
hardirqs last disabled at (2826023): [<ffffffff8422c43b>] sysvec_apic_timer_interrupt+0xb/0xc0
softirqs last  enabled at (2776070): [<ffffffff8116ebcb>] __irq_exit_rcu+0x11b/0x180
softirqs last disabled at (2776083): [<ffffffff8116ebcb>] __irq_exit_rcu+0x11b/0x180
CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.0.0-rc3-next-20220829 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
RIP: 0010:write_comp_data+0x10/0x90
Code: c0 6e 02 00 48 8b 80 28 14 00 00 e9 ca 64 1a 03 66 2e 0f 1f 84 00 00 00 00 00 49 89 f1 49 89 d2 49 89 f8 65 8b 05 30 98 bc 7e <89> c6 81 e6 00 01 00 00 65 48 8b 14 25 c0 6e 02 00 a9 00 01 ff 00
RSP: 0018:ffff88806ce09cc8 EFLAGS: 00000246
RAX: 0000000000000101 RBX: 0000000000000001 RCX: ffffffff821848d8
RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000001
RBP: ffff888009c58e10 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
R13: 0000000000000000 R14: ffff88800b905900 R15: ffffe8ffffc03400
FS:  0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055f167bab648 CR3: 000000000fa9e000 CR4: 0000000000350ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff4ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 sbitmap_queue_clear+0xb8/0x210
 blk_mq_put_tag+0xd8/0x160
 __blk_mq_free_request+0x2e0/0x380
 blk_mq_free_request+0x35d/0x500
 __blk_mq_end_request+0x358/0x580
 scsi_end_request+0x472/0x9a0
 scsi_io_completion+0xbc/0x2070
 scsi_complete+0x114/0x560
 blk_complete_reqs+0xb2/0xf0
 __do_softirq+0x1c8/0x8d0
 __irq_exit_rcu+0x11b/0x180
 irq_exit_rcu+0x5/0x20
 common_interrupt+0xa4/0xc0
 </IRQ>
 <TASK>
 asm_common_interrupt+0x22/0x40
RIP: 0010:default_idle+0xb/0x10
Code: c2 fe ff 4c 89 e2 48 89 ef 31 f6 5d 41 5c e9 ec 65 1a fe cc cc cc cc cc cc cc cc cc cc cc cc eb 07 0f 00 2d 27 c0 5d 00 fb f4 <e9> a0 82 3b 00 41 54 be 08 00 00 00 53 65 48 8b 1c 25 c0 6e 02 00
RSP: 0018:ffffffff85207e18 EFLAGS: 00000206
RAX: ffffffff8424b850 RBX: ffffffff85232980 RCX: ffffffff8422d6b2
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
RBP: 0000000000000000 R08: 0000000000000001 R09: ffff88806ce33b53
R10: ffffed100d9c676a R11: 0000000000000001 R12: fffffbfff0a46530
R13: ffffffff85af5510 R14: 0000000000000000 R15: dffffc0000000000
 default_idle_call+0x84/0xc0
 do_idle+0x3bd/0x530
 cpu_startup_entry+0x14/0x20
 rest_init+0x162/0x250
 arch_call_rest_init+0xf/0x14
 start_kernel+0x4c1/0x4e6
 secondary_startup_64_no_verify+0xe0/0xeb
 </TASK>
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 9018 Comm: syz-executor.4 Not tainted 6.0.0-rc3-next-20220829 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
RIP: 0010:__sanitizer_cov_trace_pc+0xd/0x70
Code: a8 01 00 00 e8 b4 ff ff ff 31 c0 e9 2d 60 1a 03 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 65 8b 05 99 93 bc 7e 89 c1 48 8b 34 24 <81> e1 00 01 00 00 65 48 8b 14 25 c0 6e 02 00 a9 00 01 ff 00 74 0e
RSP: 0000:ffff88806cf09c88 EFLAGS: 00000202
RAX: 0000000000000100 RBX: 0000000000000000 RCX: 0000000000000100
RDX: ffff88800e89d040 RSI: ffffffff821834e7 RDI: ffff888009c58e38
RBP: 0000000000000000 R08: 0000000000000000 R09: ffff888009c58e37
R10: ffffed100138b1c6 R11: 0000000000000001 R12: ffff888009c58e10
R13: ffff888009f46848 R14: ffff888009f46800 R15: ffff888009c58e34
FS:  00005555565f6400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020000081 CR3: 0000000043bd2000 CR4: 0000000000350ee0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff4ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 __sbq_wake_up+0x157/0x3d0
 sbitmap_queue_clear+0xad/0x210
 blk_mq_put_tag+0xd8/0x160
 __blk_mq_free_request+0x2e0/0x380
 blk_mq_free_request+0x35d/0x500
 __blk_mq_end_request+0x358/0x580
 scsi_end_request+0x472/0x9a0
 scsi_io_completion+0xbc/0x2070
 scsi_complete+0x114/0x560
 blk_complete_reqs+0xb2/0xf0
 __do_softirq+0x1c8/0x8d0
 __irq_exit_rcu+0x11b/0x180
 irq_exit_rcu+0x5/0x20
 sysvec_call_function_single+0x8e/0xc0
 </IRQ>
 <TASK>
 asm_sysvec_call_function_single+0x16/0x20
RIP: 0010:kasan_check_range+0x0/0x1c0
Code: 40 0f b6 f5 bf 00 08 00 00 89 43 0c e8 29 dd ff ff 89 43 08 5b 5d 41 5c e9 4d 6d e7 02 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 85 f6 0f 84 73 01 00 00 48 89 f8 41 54 44 0f b6 c2 55 53 48 01
RSP: 0000:ffff8880464d7b20 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff812a2388
RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff85af5510
RBP: 1ffff11008c9af67 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff854b63e0
R13: ffffffff817c26dd R14: 0000000000092cc0 R15: 0000000000092cc0
 lock_release+0x98/0x750
 kmem_cache_alloc+0x43/0x3e0
 __create_object.isra.0+0x3d/0xc10
 kmem_cache_alloc+0x23c/0x3e0
 __anon_vma_prepare+0x27d/0x4f0
 __handle_mm_fault+0x2784/0x34c0
 handle_mm_fault+0x2e6/0xa20
 do_user_addr_fault+0x536/0x1300
 exc_page_fault+0x98/0x1a0
 asm_exc_page_fault+0x22/0x30
RIP: 0033:0x7ff8119e6f05
Code: 12 80 fa 04 73 1e 80 fa 01 77 26 72 05 0f b6 0e 88 0f c3 48 8b 4c 16 f8 48 8b 36 48 89 4c 17 f8 48 89 37 c3 8b 4c 16 fc 8b 36 <89> 4c 17 fc 89 37 c3 0f b7 4c 16 fe 0f b7 36 66 89 4c 17 fe 66 89
RSP: 002b:00007ffdffa1e498 EFLAGS: 00010202
RAX: 0000000020000080 RBX: 0000000000000003 RCX: 0000000000746166
RDX: 0000000000000005 RSI: 0000000074616676 RDI: 0000000020000080
RBP: 00007ffdffa1e558 R08: 00007ff811f03000 R09: 00007ffdffb2e080
R10: 00007ffdffb2e090 R11: 000000000035e2c8 R12: 0000000000000001
R13: 0000000000000000 R14: 00007ff811afef60 R15: 00000000001ce740
 </TASK>
----------------
Code disassembly (best guess):
   0:	c0 6e 02 00          	shrb   $0x0,0x2(%rsi)
   4:	48 8b 80 28 14 00 00 	mov    0x1428(%rax),%rax
   b:	e9 ca 64 1a 03       	jmpq   0x31a64da
  10:	66 2e 0f 1f 84 00 00 	nopw   %cs:0x0(%rax,%rax,1)
  17:	00 00 00
  1a:	49 89 f1             	mov    %rsi,%r9
  1d:	49 89 d2             	mov    %rdx,%r10
  20:	49 89 f8             	mov    %rdi,%r8
  23:	65 8b 05 30 98 bc 7e 	mov    %gs:0x7ebc9830(%rip),%eax        # 0x7ebc985a
* 2a:	89 c6                	mov    %eax,%esi <-- trapping instruction
  2c:	81 e6 00 01 00 00    	and    $0x100,%esi
  32:	65 48 8b 14 25 c0 6e 	mov    %gs:0x26ec0,%rdx
  39:	02 00
  3b:	a9 00 01 ff 00       	test   $0xff0100,%eax