watchdog: BUG: soft lockup - CPU#0 stuck for 22s! [syz-executor.6:7290] Modules linked in: irq event stamp: 94054988 hardirqs last enabled at (94054987): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (94054987): [] _raw_spin_unlock_irqrestore+0x34/0x40 kernel/locking/spinlock.c:191 hardirqs last disabled at (94054988): [] sysvec_apic_timer_interrupt+0xb/0xa0 arch/x86/kernel/apic/apic.c:1095 softirqs last enabled at (1982258): [] asm_call_irq_on_stack+0x12/0x20 softirqs last disabled at (1982243): [] asm_call_irq_on_stack+0x12/0x20 CPU: 0 PID: 7290 Comm: syz-executor.6 Not tainted 5.10.109 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 RIP: 0010:native_irq_disable arch/x86/include/asm/irqflags.h:49 [inline] RIP: 0010:arch_local_irq_disable arch/x86/include/asm/irqflags.h:89 [inline] RIP: 0010:arch_local_irq_save arch/x86/include/asm/irqflags.h:121 [inline] RIP: 0010:__raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:108 [inline] RIP: 0010:_raw_spin_lock_irqsave+0x9/0x50 kernel/locking/spinlock.c:159 Code: c9 41 b8 01 00 00 00 31 d2 31 f6 e8 51 f4 47 fd 48 89 ef 58 5d e9 a7 a0 48 fd e8 72 33 67 fd eb cc 41 54 55 48 89 fd 9c 41 5c 41 f7 c4 00 02 00 00 75 33 65 ff 05 d6 b4 23 7c ff 74 24 10 48 RSP: 0018:ffff88804634fd00 EFLAGS: 00000202 RAX: 0000000000000000 RBX: ffff88804634fe90 RCX: ffffc90005c15000 RDX: 1ffff11008c69fd2 RSI: ffff88804634fe90 RDI: ffff88800dd57450 RBP: ffff88800dd57450 R08: 0000000000000000 R09: ffff88800dd5735f R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000202 R13: 1ffff11008c69fa5 R14: ffff88800dd57450 R15: ffff88804634fea8 FS: 00007fdb22af9700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000001b2d522000 CR3: 000000003a512000 CR4: 0000000000350ef0 Call Trace: prepare_to_wait_exclusive+0x7d/0x2a0 kernel/sched/wait.c:267 io_cqring_wait fs/io_uring.c:7064 [inline] __do_sys_io_uring_enter+0x821/0x1900 fs/io_uring.c:9145 do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x7fdb25583b19 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fdb22af9188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa RAX: ffffffffffffffda RBX: 00007fdb25696f60 RCX: 00007fdb25583b19 RDX: 00000000fffffffb RSI: 0000000000000000 RDI: 0000000000000003 RBP: 00007fdb255ddf6d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffff1a8d86f R14: 00007fdb22af9300 R15: 0000000000022000 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 7320 Comm: syz-executor.6 Not tainted 5.10.109 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 RIP: 0010:native_irq_disable arch/x86/include/asm/irqflags.h:49 [inline] RIP: 0010:arch_local_irq_disable arch/x86/include/asm/irqflags.h:89 [inline] RIP: 0010:arch_local_irq_save arch/x86/include/asm/irqflags.h:121 [inline] RIP: 0010:__raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:108 [inline] RIP: 0010:_raw_spin_lock_irqsave+0x9/0x50 kernel/locking/spinlock.c:159 Code: c9 41 b8 01 00 00 00 31 d2 31 f6 e8 51 f4 47 fd 48 89 ef 58 5d e9 a7 a0 48 fd e8 72 33 67 fd eb cc 41 54 55 48 89 fd 9c 41 5c 41 f7 c4 00 02 00 00 75 33 65 ff 05 d6 b4 23 7c ff 74 24 10 48 RSP: 0018:ffff88804c66fd00 EFLAGS: 00000202 RAX: 0000000000000000 RBX: ffff88804c66fe90 RCX: ffffc9000661a000 RDX: 1ffff110098cdfd2 RSI: ffff88804c66fe90 RDI: ffff88804c5ef450 RBP: ffff88804c5ef450 R08: 0000000000000000 R09: ffff88804c5ef35f R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000202 R13: 1ffff110098cdfa5 R14: ffff88804c5ef450 R15: ffff88804c66fea8 FS: 00007fdb22ad8700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00005555557a7098 CR3: 000000003a512000 CR4: 0000000000350ee0 Call Trace: prepare_to_wait_exclusive+0x7d/0x2a0 kernel/sched/wait.c:267 io_cqring_wait fs/io_uring.c:7064 [inline] __do_sys_io_uring_enter+0x821/0x1900 fs/io_uring.c:9145 do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x7fdb25583b19 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fdb22ad8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa RAX: ffffffffffffffda RBX: 00007fdb25697020 RCX: 00007fdb25583b19 RDX: 00000000fffffffb RSI: 0000000000000000 RDI: 0000000000000003 RBP: 00007fdb255ddf6d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffff1a8d86f R14: 00007fdb22ad8300 R15: 0000000000022000 ---------------- Code disassembly (best guess): 0: c9 leaveq 1: 41 b8 01 00 00 00 mov $0x1,%r8d 7: 31 d2 xor %edx,%edx 9: 31 f6 xor %esi,%esi b: e8 51 f4 47 fd callq 0xfd47f461 10: 48 89 ef mov %rbp,%rdi 13: 58 pop %rax 14: 5d pop %rbp 15: e9 a7 a0 48 fd jmpq 0xfd48a0c1 1a: e8 72 33 67 fd callq 0xfd673391 1f: eb cc jmp 0xffffffed 21: 41 54 push %r12 23: 55 push %rbp 24: 48 89 fd mov %rdi,%rbp 27: 9c pushfq 28: 41 5c pop %r12 * 2a: fa cli <-- trapping instruction 2b: 41 f7 c4 00 02 00 00 test $0x200,%r12d 32: 75 33 jne 0x67 34: 65 ff 05 d6 b4 23 7c incl %gs:0x7c23b4d6(%rip) # 0x7c23b511 3b: ff 74 24 10 pushq 0x10(%rsp) 3f: 48 rex.W