ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 watchdog: BUG: soft lockup - CPU#0 stuck for 188s! [kworker/u8:4:59] Modules linked in: irq event stamp: 6857184 hardirqs last enabled at (6857183): [] irqentry_exit+0x3b/0x90 kernel/entry/common.c:310 hardirqs last disabled at (6857184): [] sysvec_apic_timer_interrupt+0xe/0xc0 arch/x86/kernel/apic/apic.c:1050 softirqs last enabled at (6857180): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (6857180): [] handle_softirqs+0x5be/0x8e0 kernel/softirq.c:607 softirqs last disabled at (6857175): [] __do_softirq kernel/softirq.c:613 [inline] softirqs last disabled at (6857175): [] invoke_softirq kernel/softirq.c:453 [inline] softirqs last disabled at (6857175): [] __irq_exit_rcu+0x109/0x170 kernel/softirq.c:680 CPU: 0 UID: 0 PID: 59 Comm: kworker/u8:4 Not tainted 6.15.0-syzkaller-08486-gf66bc387efbe #0 PREEMPT(full) Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 Workqueue: events_unbound toggle_allocation_gate RIP: 0010:csd_lock_wait kernel/smp.c:340 [inline] RIP: 0010:smp_call_function_many_cond+0xd0f/0x1490 kernel/smp.c:885 Code: 00 45 85 ed 74 46 48 8b 14 24 49 89 d6 49 89 d5 49 c1 ee 03 41 83 e5 07 4d 01 e6 41 83 c5 03 e8 87 17 0c 00 f3 90 41 0f b6 06 <41> 38 c5 7c 08 84 c0 0f 85 6f 05 00 00 8b 43 08 31 ff 83 e0 01 89 RSP: 0018:ffffc9000210f8a0 EFLAGS: 00000293 RAX: 0000000000000000 RBX: ffff8880b85417e0 RCX: ffffffff81afb1cd RDX: ffff88801d718000 RSI: ffffffff81afb1a9 RDI: 0000000000000005 RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000 R13: 0000000000000003 R14: ffffed10170a82fd R15: ffff8880b843d100 FS: 0000000000000000(0000) GS:ffff888124976000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007eff84e78e80 CR3: 000000000e182000 CR4: 0000000000350ef0 Call Trace: on_each_cpu_cond_mask+0x40/0x90 kernel/smp.c:1052 on_each_cpu include/linux/smp.h:71 [inline] smp_text_poke_sync_each_cpu arch/x86/kernel/alternative.c:2660 [inline] smp_text_poke_batch_finish+0x27b/0xdb0 arch/x86/kernel/alternative.c:2870 arch_jump_label_transform_apply+0x1c/0x30 arch/x86/kernel/jump_label.c:146 jump_label_update+0x376/0x550 kernel/jump_label.c:919 static_key_enable_cpuslocked+0x1b7/0x270 kernel/jump_label.c:210 static_key_enable+0x1a/0x20 kernel/jump_label.c:223 toggle_allocation_gate mm/kfence/core.c:850 [inline] toggle_allocation_gate+0xfa/0x280 mm/kfence/core.c:842 process_one_work+0x9cf/0x1b70 kernel/workqueue.c:3238 process_scheduled_works kernel/workqueue.c:3321 [inline] worker_thread+0x6c8/0xf10 kernel/workqueue.c:3402 kthread+0x3c5/0x780 kernel/kthread.c:464 ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-syzkaller-08486-gf66bc387efbe #0 PREEMPT(full) Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 RIP: 0010:kasan_check_byte include/linux/kasan.h:399 [inline] RIP: 0010:lock_acquire kernel/locking/lockdep.c:5845 [inline] RIP: 0010:lock_acquire+0xf4/0x350 kernel/locking/lockdep.c:5828 Code: 44 89 f2 48 89 de e8 8b d5 fe ff 5f 41 58 65 ff 0d e1 47 12 12 0f 85 4f ff ff ff e8 d6 ec 93 ff e9 45 ff ff ff 48 8b 74 24 68 <48> 89 df e8 f4 e2 88 00 8b 0d b2 6b ef 0e 85 c9 0f 84 b1 00 00 00 RSP: 0018:ffffc90000a08d18 EFLAGS: 00000002 RAX: 0000000000000001 RBX: ffffffff8e3c4780 RCX: 0000000000000002 RDX: 0000000000000000 RSI: ffffffff898c4b59 RDI: ffffffff8dd0eda8 RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000 R10: ffff888012a412eb R11: 0000000000000001 R12: 0000000000000000 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff888124a76000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f0b58ee56c0 CR3: 0000000035190000 CR4: 0000000000350ef0 Call Trace: rcu_lock_acquire include/linux/rcupdate.h:331 [inline] rcu_read_lock include/linux/rcupdate.h:841 [inline] advance_sched+0x699/0xc80 net/sched/sch_taprio.c:985 __run_hrtimer kernel/time/hrtimer.c:1761 [inline] __hrtimer_run_queues+0x202/0xad0 kernel/time/hrtimer.c:1825 hrtimer_interrupt+0x397/0x8e0 kernel/time/hrtimer.c:1887 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1039 [inline] __sysvec_apic_timer_interrupt+0x10b/0x3f0 arch/x86/kernel/apic/apic.c:1056 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1050 [inline] sysvec_apic_timer_interrupt+0x9f/0xc0 arch/x86/kernel/apic/apic.c:1050 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702 RIP: 0010:pv_native_safe_halt+0xf/0x20 arch/x86/kernel/paravirt.c:82 Code: a3 57 02 e9 7e f1 96 f5 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d b3 a0 10 00 fb f4 57 f1 96 f5 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 RSP: 0018:ffffc90000197df8 EFLAGS: 00000286 RAX: 00000000003e3c4d RBX: 0000000000000001 RCX: ffffffff8b796449 RDX: 0000000000000000 RSI: ffffffff8dc02763 RDI: ffffffff8bf51c40 RBP: ffffed1003bd9b40 R08: 0000000000000001 R09: ffffed10170a663d R10: ffff8880b85331eb R11: 0000000000000001 R12: 0000000000000001 R13: ffff88801decda00 R14: ffffffff90879250 R15: 0000000000000000 arch_safe_halt arch/x86/include/asm/paravirt.h:107 [inline] default_idle+0x13/0x20 arch/x86/kernel/process.c:743 default_idle_call+0x6d/0xb0 kernel/sched/idle.c:117 cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x391/0x510 kernel/sched/idle.c:325 cpu_startup_entry+0x4f/0x60 kernel/sched/idle.c:423 start_secondary+0x21d/0x2b0 arch/x86/kernel/smpboot.c:315 common_startup_64+0x13e/0x148