watchdog: BUG: soft lockup - CPU#0 stuck for 135s! [systemd-timesyn:4434]
Modules linked in:
irq event stamp: 95790
hardirqs last  enabled at (95789): [<ffffffff83200c42>] asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:628
hardirqs last disabled at (95790): [<ffffffff8310f13c>] sysvec_apic_timer_interrupt+0xc/0xf0 arch/x86/kernel/apic/apic.c:1096
softirqs last  enabled at (95604): [<ffffffff834003be>] __do_softirq+0x3be/0x52d kernel/softirq.c:370
softirqs last disabled at (95595): [<ffffffff83200f2f>] asm_call_irq_on_stack+0xf/0x20
CPU: 0 PID: 4434 Comm: systemd-timesyn Not tainted 5.11.0-rc3-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:csd_lock_wait kernel/smp.c:227 [inline]
RIP: 0010:smp_call_function_single+0xca/0x1b0 kernel/smp.c:512
Code: 00 85 db 0f 84 99 00 00 00 48 89 e6 44 89 e7 4c 89 74 24 10 4c 89 6c 24 18 e8 52 fe ff ff 89 c3 8b 44 24 08 a8 01 74 0b f3 90 <8b> 54 24 08 83 e2 01 75 f5 bf 01 00 00 00 e8 73 7a f7 ff 65 8b 15
RSP: 0018:ffffc90000207c80 EFLAGS: 00000202
RAX: 0000000000000011 RBX: 0000000000000000 RCX: ffff888237c2ee40
RDX: 0000000000000001 RSI: ffffc90000207c80 RDI: ffffc90000207c80
RBP: ffffc90000207cf0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
R13: 0000000000000000 R14: ffffffff81271930 R15: 0000000000000000
FS:  00007f4b8aea68c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b32e833d68 CR3: 000000010b68b005 CR4: 00000000001706f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 smp_call_function_many kernel/smp.c:711 [inline]
 smp_call_function+0x34/0x60 kernel/smp.c:733
 on_each_cpu+0x23/0xa0 kernel/smp.c:832
 clock_was_set+0x13/0x20 kernel/time/hrtimer.c:871
 timekeeping_inject_offset+0x161/0x1c0 kernel/time/timekeeping.c:1375
 do_adjtimex+0xc2/0x3b0 kernel/time/timekeeping.c:2396
 __do_sys_clock_adjtime+0x3d/0x90 kernel/time/posix-timers.c:1121
 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x7f4b8a29c1b7
Code: 73 01 c3 48 8b 0d e1 fc 2a 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 31 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d b1 fc 2a 00 f7 d8 64 89 01 48
RSP: 002b:00007ffe0818fa28 EFLAGS: 00000246 ORIG_RAX: 0000000000000131
RAX: ffffffffffffffda RBX: 000055bad7a5c630 RCX: 00007f4b8a29c1b7
RDX: ffffffffe8cc3b38 RSI: 00007ffe0818faf0 RDI: 0000000000000000
RBP: 00007ffe0818faf0 R08: 0000000000000020 R09: 000000000000000d
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
R13: 00007ffe0818fbe0 R14: 0000000000000004 R15: 0000000000000001
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 7447 Comm: syz-executor.5 Not tainted 5.11.0-rc3-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:check_preemption_disabled+0x1f/0xe0 lib/smp_processor_id.c:60
Code: 6e 4c 01 0f 00 00 00 c3 cc cc cc 41 55 41 54 55 53 65 8b 1d c3 07 f0 7c 65 8b 05 dc 70 f0 7c a9 ff ff ff 7f 74 09 89 d8 5b 5d <41> 5c 41 5d c3 48 83 3d 44 cd 3b 01 00 0f 84 a3 00 00 00 9c 58 0f
RSP: 0018:ffffc900000ccec0 EFLAGS: 00000002
RAX: 0000000000000001 RBX: 0000000000000001 RCX: 0000000000010003
RDX: 0000000080010003 RSI: ffffffff84080a79 RDI: ffffffff83ece273
RBP: ffff88811594eb40 R08: 00000000000036e2 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000000 R12: ffff888237d1f9c0
R13: ffffffff849479c8 R14: ffff888237d1f940 R15: 0000000000000001
FS:  00007f55bff62700(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000004f3870 CR3: 000000011572f001 CR4: 00000000001706e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 rcu_lockdep_current_cpu_online+0x30/0x70 kernel/rcu/tree.c:1161
 rcu_read_lock_held_common+0x25/0x40 kernel/rcu/update.c:110
 rcu_read_lock_sched_held+0x1e/0x80 kernel/rcu/update.c:121
 trace_hrtimer_cancel include/trace/events/timer.h:290 [inline]
 debug_deactivate kernel/time/hrtimer.c:482 [inline]
 __run_hrtimer kernel/time/hrtimer.c:1487 [inline]
 __hrtimer_run_queues+0x48b/0x4f0 kernel/time/hrtimer.c:1583
 hrtimer_interrupt+0xf9/0x210 kernel/time/hrtimer.c:1645
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1085 [inline]
 __sysvec_apic_timer_interrupt+0x8e/0x290 arch/x86/kernel/apic/apic.c:1102
 asm_call_irq_on_stack+0xf/0x20
 </IRQ>
 __run_sysvec_on_irqstack arch/x86/include/asm/irq_stack.h:37 [inline]
 run_sysvec_on_irqstack_cond arch/x86/include/asm/irq_stack.h:89 [inline]
 sysvec_apic_timer_interrupt+0xcc/0xf0 arch/x86/kernel/apic/apic.c:1096
 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:628
RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:653 [inline]
RIP: 0010:on_each_cpu+0x61/0xa0 kernel/smp.c:835
Code: a4 11 24 03 00 48 89 c3 74 52 fa 66 0f 1f 44 00 00 f6 c7 02 75 33 4c 89 e7 ff d5 48 83 3d 7e 11 24 03 00 74 39 48 89 df 57 9d <0f> 1f 44 00 00 bf 01 00 00 00 e8 e0 74 f7 ff 65 8b 05 d9 b4 d8 7e
RSP: 0018:ffffc9000222be98 EFLAGS: 00000282
RAX: 00000000000002c7 RBX: 0000000000000282 RCX: 0000000000000002
RDX: 0000000000000000 RSI: ffffffff83f3bcb3 RDI: 0000000000000282
RBP: ffffffff81271930 R08: 0000000000000001 R09: 0000000000000001
R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
R13: 000000001733c4c8 R14: ffffffffcde299f8 R15: 0000000000000282
 clock_was_set+0x13/0x20 kernel/time/hrtimer.c:871
 do_settimeofday64+0x179/0x210 kernel/time/timekeeping.c:1327
 __do_sys_clock_settime kernel/time/posix-timers.c:1079 [inline]
 __se_sys_clock_settime kernel/time/posix-timers.c:1067 [inline]
 __x64_sys_clock_settime+0x64/0xb0 kernel/time/posix-timers.c:1067
 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x45cba9
Code: 8d b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007f55bff61c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e3
RAX: ffffffffffffffda RBX: 00000000004db5e0 RCX: 000000000045cba9
RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000000
RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
R13: 000000000000007b R14: 00000000004c352c R15: 00007f55bff626d4