serio: Serial port tty33 loop4: detected capacity change from 0 to 264192 watchdog: BUG: soft lockup - CPU#0 stuck for 21s! [syz-executor.7:10379] Modules linked in: irq event stamp: 5665929 hardirqs last enabled at (5665928): [] asm_sysvec_apic_timer_interrupt+0x1a/0x20 hardirqs last disabled at (5665929): [] sysvec_apic_timer_interrupt+0xf/0xc0 softirqs last enabled at (5662372): [] irq_exit_rcu+0x11f/0x190 softirqs last disabled at (5662375): [] irq_exit_rcu+0x11f/0x190 CPU: 0 PID: 10379 Comm: syz-executor.7 Not tainted 6.2.0-rc4-next-20230116 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 RIP: 0010:__iterate_interfaces+0x414/0x580 Code: 83 e5 20 89 ee e8 bc b0 37 fd 85 ed 0f 85 70 ff ff ff eb 90 e8 7d b4 37 fd 48 8b 44 24 10 be ff ff ff ff 48 8d b8 88 1b 00 00 c7 86 30 00 31 ff 89 c5 89 c6 e8 8c b0 37 fd 85 ed 0f 85 19 ff RSP: 0018:ffff88806ce09d80 EFLAGS: 00000246 RAX: ffff88803b610de0 RBX: 0000000000000000 RCX: 0000000000000100 RDX: ffff888033491ac0 RSI: 00000000ffffffff RDI: ffff88803b612968 RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000001 R12: ffff88803348a2e8 R13: 0000000000000001 R14: ffff88803b6128e0 R15: 0000000000000002 FS: 0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000001b32024000 CR3: 0000000005482000 CR4: 0000000000350ef0 Call Trace: ieee80211_iterate_active_interfaces_atomic+0x73/0x1c0 mac80211_hwsim_beacon+0x105/0x200 __hrtimer_run_queues+0x54b/0xcb0 hrtimer_run_softirq+0x176/0x350 __do_softirq+0x274/0x8ff irq_exit_rcu+0x11f/0x190 sysvec_apic_timer_interrupt+0x92/0xc0 asm_sysvec_apic_timer_interrupt+0x1a/0x20 RIP: 0010:kasan_get_free_meta+0xb/0x30 Code: 00 00 00 00 48 0f 45 c6 e9 86 1b c7 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 63 87 c0 00 00 00 <48> 01 c6 3d ff ff ff 7f b8 00 00 00 00 48 0f 45 c6 e9 53 1b c7 02 RSP: 0018:ffff888045287880 EFLAGS: 00000282 RAX: 0000000000000000 RBX: ffff88804373ac00 RCX: 0000000000000000 RDX: 00000000000a7086 RSI: ffff88804373ac00 RDI: ffff88800876d3c0 RBP: ffff88800876d3c0 R08: 0000000000000011 R09: ffff888039d03250 R10: ffff88806c938430 R11: 0000000000000001 R12: ffff88800876d3c0 R13: ffffffff81730a3a R14: ffff88800ecc2080 R15: ffff88804373abb0 kasan_quarantine_put+0x14/0x1f0 kmem_cache_free+0xff/0x510 unlink_anon_vmas+0x11a/0x720 free_pgtables+0x1af/0x420 exit_mmap+0x1b8/0x6a0 mmput+0xd5/0x390 do_exit+0x99b/0x2780 do_group_exit+0xd4/0x2a0 get_signal+0x2255/0x2390 arch_do_signal_or_restart+0x79/0x5a0 exit_to_user_mode_prepare+0xf5/0x190 syscall_exit_to_user_mode+0x1d/0x50 do_syscall_64+0x4c/0x90 entry_SYSCALL_64_after_hwframe+0x72/0xdc RIP: 0033:0x7f7c0f4e3b19 Code: Unable to access opcode bytes at 0x7f7c0f4e3aef. RSP: 002b:00007f7c0ca59188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 RAX: fffffffffffffff4 RBX: 00007f7c0f5f6f60 RCX: 00007f7c0f4e3b19 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007f7c0f53df6d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc7168e3df R14: 00007f7c0ca59300 R15: 0000000000022000 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 skipped: idling at default_idle+0xf/0x20 ---------------- Code disassembly (best guess): 0: 83 e5 20 and $0x20,%ebp 3: 89 ee mov %ebp,%esi 5: e8 bc b0 37 fd callq 0xfd37b0c6 a: 85 ed test %ebp,%ebp c: 0f 85 70 ff ff ff jne 0xffffff82 12: eb 90 jmp 0xffffffa4 14: e8 7d b4 37 fd callq 0xfd37b496 19: 48 8b 44 24 10 mov 0x10(%rsp),%rax 1e: be ff ff ff ff mov $0xffffffff,%esi 23: 48 8d b8 88 1b 00 00 lea 0x1b88(%rax),%rdi * 2a: e8 c7 86 30 00 callq 0x3086f6 <-- trapping instruction 2f: 31 ff xor %edi,%edi 31: 89 c5 mov %eax,%ebp 33: 89 c6 mov %eax,%esi 35: e8 8c b0 37 fd callq 0xfd37b0c6 3a: 85 ed test %ebp,%ebp 3c: 0f .byte 0xf 3d: 85 19 test %ebx,(%rcx) 3f: ff .byte 0xff