blktrace: Concurrent blktraces are not allowed on sg0 watchdog: BUG: soft lockup - CPU#0 stuck for 26s! [syz-executor.7:4326] Modules linked in: irq event stamp: 5082517 hardirqs last enabled at (5082516): [] asm_sysvec_apic_timer_interrupt+0x1a/0x20 hardirqs last disabled at (5082517): [] sysvec_apic_timer_interrupt+0xf/0xc0 softirqs last enabled at (5047862): [] ip_finish_output2+0x70d/0x2120 softirqs last disabled at (5047863): [] do_softirq.part.0+0xd1/0x120 CPU: 0 PID: 4326 Comm: syz-executor.7 Not tainted 6.2.0-rc3-next-20230111 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 RIP: 0010:filter_irq_stacks+0x2a/0x90 Code: f3 0f 1e fa 41 54 41 89 f4 55 53 48 83 ec 08 85 f6 74 30 48 bd 00 00 00 00 00 fc ff df 31 db 48 89 f8 48 c1 e8 03 80 3c 28 00 <75> 53 48 8b 07 48 3d 10 02 60 84 72 1c 48 3d 10 16 60 84 73 14 44 RSP: 0018:ffff88806ce097f0 EFLAGS: 00000246 RAX: 1ffff1100d9c1316 RBX: 0000000000000005 RCX: 0000000000082820 RDX: 0000000000000000 RSI: 000000000000001f RDI: ffff88806ce098b0 RBP: dffffc0000000000 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000001 R12: 000000000000001f R13: 0000000000000001 R14: 0000000000082820 R15: ffff88806ce09888 FS: 00007fea7e283700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007ffcfd1b3e18 CR3: 0000000016814000 CR4: 0000000000350ef0 Call Trace: __stack_depot_save+0x3e/0x4e0 kasan_save_stack+0x35/0x50 kasan_set_track+0x25/0x30 __kasan_kmalloc+0x7f/0x90 __kmalloc_node_track_caller+0x53/0xb0 __alloc_skb+0xe9/0x310 skb_copy+0x13d/0x3d0 mac80211_hwsim_tx_frame_no_nl.isra.0+0xb6d/0x1360 mac80211_hwsim_tx_frame+0x1ee/0x2a0 mac80211_hwsim_beacon_tx+0x566/0xb10 __iterate_interfaces+0x2d3/0x580 ieee80211_iterate_active_interfaces_atomic+0x73/0x1c0 mac80211_hwsim_beacon+0x105/0x200 __hrtimer_run_queues+0x54b/0xcb0 hrtimer_run_softirq+0x176/0x350 __do_softirq+0x1c7/0x913 do_softirq.part.0+0xd1/0x120 __local_bh_enable_ip+0x10a/0x130 ip_finish_output2+0x73b/0x2120 ip_do_fragment+0x1e14/0x24e0 ip_fragment.constprop.0+0x16b/0x240 __ip_finish_output.part.0+0x883/0xd10 ip_output+0x2ec/0x8e0 ip_push_pending_frames+0x30b/0x5c0 raw_sendmsg+0x120d/0x2c00 inet_sendmsg+0x121/0x150 sock_sendmsg+0x140/0x190 ____sys_sendmsg+0x744/0x930 ___sys_sendmsg+0x110/0x1b0 __sys_sendmsg+0xf7/0x1d0 do_syscall_64+0x3f/0x90 entry_SYSCALL_64_after_hwframe+0x72/0xdc RIP: 0033:0x7fea80d0db19 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fea7e283188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007fea80e20f60 RCX: 00007fea80d0db19 RDX: 0000000000000000 RSI: 0000000020000780 RDI: 0000000000000007 RBP: 00007fea80d67f6d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff02aa6c1f R14: 00007fea7e283300 R15: 0000000000022000 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.2.0-rc3-next-20230111 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 RIP: 0010:queued_spin_lock_slowpath+0x128/0xc90 Code: 00 00 00 65 48 2b 04 25 28 00 00 00 0f 85 e6 0a 00 00 48 81 c4 88 00 00 00 5b 5d 41 5c 41 5d 41 5e 41 5f e9 1e 20 00 00 f3 90 71 ff ff ff 44 8b 74 24 48 41 81 fe 00 01 00 00 0f 84 e4 00 00 RSP: 0018:ffff88806cf09a28 EFLAGS: 00000202 RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff844470eb RDX: fffffbfff0b48fb9 RSI: 0000000000000004 RDI: ffffffff85a47dc0 RBP: ffffffff85a47dc0 R08: 0000000000000000 R09: ffffffff85a47dc3 R10: fffffbfff0b48fb8 R11: 0000000000000001 R12: 0000000000000003 R13: fffffbfff0b48fb8 R14: 0000000000000001 R15: 1ffff1100d9e1346 FS: 0000000000000000(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000c000622000 CR3: 000000000de60000 CR4: 0000000000350ee0 Call Trace: do_raw_spin_lock+0x1e0/0x270 mac80211_hwsim_tx_frame_no_nl.isra.0+0x6f1/0x1360 mac80211_hwsim_tx_frame+0x1ee/0x2a0 mac80211_hwsim_beacon_tx+0x566/0xb10 __iterate_interfaces+0x2d3/0x580 ieee80211_iterate_active_interfaces_atomic+0x73/0x1c0 mac80211_hwsim_beacon+0x105/0x200 __hrtimer_run_queues+0x54b/0xcb0 hrtimer_run_softirq+0x176/0x350 __do_softirq+0x1c7/0x913 __irq_exit_rcu+0x11b/0x180 irq_exit_rcu+0x9/0x30 sysvec_apic_timer_interrupt+0x92/0xc0 asm_sysvec_apic_timer_interrupt+0x1a/0x20 RIP: 0010:default_idle+0xf/0x20 Code: d1 fe fd cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d a3 34 3e 00 fb f4 c0 44 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 RSP: 0018:ffff888008dffe58 EFLAGS: 00000202 RAX: ffffffff84444cb0 RBX: ffff888008d85040 RCX: ffffffff84425a52 RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 RBP: 0000000000000001 R08: 0000000000000001 R09: ffff88806cf34f83 R10: ffffed100d9e69f0 R11: 0000000000000001 R12: ffffed10011b0a08 R13: ffffffff85d0f650 R14: 0000000000000000 R15: dffffc0000000000 default_idle_call+0x88/0xd0 do_idle+0x3bd/0x530 cpu_startup_entry+0x18/0x20 start_secondary+0x1cc/0x220 secondary_startup_64_no_verify+0xe0/0xeb ---------------- Code disassembly (best guess): 0: f3 0f 1e fa endbr64 4: 41 54 push %r12 6: 41 89 f4 mov %esi,%r12d 9: 55 push %rbp a: 53 push %rbx b: 48 83 ec 08 sub $0x8,%rsp f: 85 f6 test %esi,%esi 11: 74 30 je 0x43 13: 48 bd 00 00 00 00 00 movabs $0xdffffc0000000000,%rbp 1a: fc ff df 1d: 31 db xor %ebx,%ebx 1f: 48 89 f8 mov %rdi,%rax 22: 48 c1 e8 03 shr $0x3,%rax 26: 80 3c 28 00 cmpb $0x0,(%rax,%rbp,1) * 2a: 75 53 jne 0x7f <-- trapping instruction 2c: 48 8b 07 mov (%rdi),%rax 2f: 48 3d 10 02 60 84 cmp $0xffffffff84600210,%rax 35: 72 1c jb 0x53 37: 48 3d 10 16 60 84 cmp $0xffffffff84601610,%rax 3d: 73 14 jae 0x53 3f: 44 rex.R