watchdog: BUG: soft lockup - CPU#0 stuck for 23s! [syz-executor.3:7176]
Modules linked in:
irq event stamp: 6572695
hardirqs last  enabled at (6572694): [<ffffffff8460144a>] asm_sysvec_apic_timer_interrupt+0x1a/0x20
hardirqs last disabled at (6572695): [<ffffffff8442c25f>] sysvec_apic_timer_interrupt+0xf/0xc0
softirqs last  enabled at (6556568): [<ffffffff8118247f>] irq_exit_rcu+0x11f/0x190
softirqs last disabled at (6556573): [<ffffffff8118247f>] irq_exit_rcu+0x11f/0x190
CPU: 0 PID: 7176 Comm: syz-executor.3 Not tainted 6.2.0-rc4-next-20230119 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:stack_trace_consume_entry+0x0/0x170
Code: 8b 44 24 10 e9 22 fe ff ff e8 5c 06 45 00 e9 52 fd ff ff e8 92 7a 0a 03 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 48 b8 00 00 00 00 00 fc ff df 55 53 48 89 fb 48 83 c7
RSP: 0018:ffff88806ce09888 EFLAGS: 00000286
RAX: ffffffff8170cf18 RBX: ffffffff81385000 RCX: 0000000000000000
RDX: 1ffff1100d9c131d RSI: ffffffff8170cf18 RDI: ffff88806ce09958
RBP: ffff88806ce09928 R08: ffffffff860ea54e R09: ffffffff860ea552
R10: ffff88806ce09ff8 R11: ffff88806ce098d0 R12: ffff88806ce09958
R13: 0000000000000000 R14: ffff88801a65d040 R15: ffff8880202d8e30
FS:  0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 0000000005482000 CR4: 0000000000350ef0
Call Trace:
 <IRQ>
 arch_stack_walk+0x77/0xf0
 stack_trace_save+0x90/0xd0
 kasan_save_stack+0x22/0x50
 kasan_set_track+0x25/0x30
 kasan_save_free_info+0x2e/0x50
 __kasan_slab_free+0x10a/0x190
 __kmem_cache_free+0xd1/0x2f0
 skb_release_data+0x6ab/0x7e0
 consume_skb+0xcb/0x170
 mac80211_hwsim_tx_frame+0x1f6/0x2a0
 mac80211_hwsim_beacon_tx+0x567/0xb10
 __iterate_interfaces+0x2d3/0x580
 ieee80211_iterate_active_interfaces_atomic+0x73/0x1c0
 mac80211_hwsim_beacon+0x105/0x200
 __hrtimer_run_queues+0x54b/0xcb0
 hrtimer_run_softirq+0x176/0x350
 __do_softirq+0x274/0x8ff
 irq_exit_rcu+0x11f/0x190
 sysvec_apic_timer_interrupt+0x92/0xc0
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20
RIP: 0010:__tlb_remove_page_size+0x32/0x480
Code: 41 55 49 89 f5 41 54 55 53 48 89 fb e8 17 70 d8 ff 48 8d 7b 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 <0f> 85 aa 03 00 00 48 8b 6b 18 31 ff 48 89 ee e8 4a 6c d8 ff 48 85
RSP: 0018:ffff8880364e76c8 EFLAGS: 00000246
RAX: dffffc0000000000 RBX: ffff8880364e7ad8 RCX: 0000000000000000
RDX: 1ffff11006c9cf5e RSI: ffffffff8170fd29 RDI: ffff8880364e7af0
RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
R13: ffffea0000ca8dc0 R14: dffffc0000000000 R15: 00000000ffffffff
 unmap_page_range+0x109e/0x2d90
 unmap_single_vma+0x190/0x2a0
 unmap_vmas+0x225/0x370
 exit_mmap+0x158/0x6a0
 mmput+0xd5/0x390
 do_exit+0x99b/0x2780
 do_group_exit+0xd4/0x2a0
 get_signal+0x2255/0x2390
 arch_do_signal_or_restart+0x79/0x5a0
 exit_to_user_mode_prepare+0xf5/0x190
 syscall_exit_to_user_mode+0x1d/0x50
 do_syscall_64+0x4c/0x90
 entry_SYSCALL_64_after_hwframe+0x72/0xdc
RIP: 0033:0x7f9b767dca04
Code: Unable to access opcode bytes at 0x7f9b767dc9da.
RSP: 002b:00007f9b73d9ee20 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
RAX: fffffffffffffffe RBX: 00007f9b76873970 RCX: 00007f9b767dca04
RDX: 0000000000000002 RSI: 00007f9b73d9ef40 RDI: 00000000ffffff9c
RBP: 00007f9b73d9ef40 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
R13: 0000000000000006 R14: 00000000200024e8 R15: 000000000000003f
 </TASK>
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1 skipped: idling at default_idle+0xf/0x20
----------------
Code disassembly (best guess):
   0:	8b 44 24 10          	mov    0x10(%rsp),%eax
   4:	e9 22 fe ff ff       	jmpq   0xfffffe2b
   9:	e8 5c 06 45 00       	callq  0x45066a
   e:	e9 52 fd ff ff       	jmpq   0xfffffd65
  13:	e8 92 7a 0a 03       	callq  0x30a7aaa
  18:	66 90                	xchg   %ax,%ax
  1a:	90                   	nop
  1b:	90                   	nop
  1c:	90                   	nop
  1d:	90                   	nop
  1e:	90                   	nop
  1f:	90                   	nop
  20:	90                   	nop
  21:	90                   	nop
  22:	90                   	nop
  23:	90                   	nop
  24:	90                   	nop
  25:	90                   	nop
  26:	90                   	nop
  27:	90                   	nop
  28:	90                   	nop
  29:	90                   	nop
* 2a:	f3 0f 1e fa          	endbr64 <-- trapping instruction
  2e:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  35:	fc ff df
  38:	55                   	push   %rbp
  39:	53                   	push   %rbx
  3a:	48 89 fb             	mov    %rdi,%rbx
  3d:	48                   	rex.W
  3e:	83                   	.byte 0x83
  3f:	c7                   	.byte 0xc7