watchdog: BUG: soft lockup - CPU#1 stuck for 26s! [syz-executor.2:5745]
Modules linked in:
irq event stamp: 43995
hardirqs last  enabled at (43994): [<ffff800011a3da80>] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline]
hardirqs last  enabled at (43994): [<ffff800011a3da80>] _raw_spin_unlock_irq+0x9c/0x134 kernel/locking/spinlock.c:202
hardirqs last disabled at (43995): [<ffff800011966310>] enter_el1_irq_or_nmi+0x10/0x1c arch/arm64/kernel/entry-common.c:227
softirqs last  enabled at (13548): [<ffff800008020ccc>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last  enabled at (13548): [<ffff800008020ccc>] __do_softirq+0xb5c/0xe20 kernel/softirq.c:587
softirqs last disabled at (13563): [<ffff8000081b56a0>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (13563): [<ffff8000081b56a0>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (13563): [<ffff8000081b56a0>] __irq_exit_rcu+0x28c/0x534 kernel/softirq.c:637
CPU: 1 PID: 5745 Comm: syz-executor.2 Not tainted 5.15.127-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
pstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : preempt_count arch/arm64/include/asm/preempt.h:12 [inline]
pc : check_kcov_mode kernel/kcov.c:163 [inline]
pc : write_comp_data kernel/kcov.c:218 [inline]
pc : __sanitizer_cov_trace_const_cmp8+0x20/0xb8 kernel/kcov.c:291
lr : pie_calculate_probability+0x374/0x7bc
sp : ffff800008017a50
x29: ffff800008017a90 x28: 00051eb851eb851e x27: fffffff0a3da8872
x26: 0000000000000000 x25: ffff800025560e40 x24: 1ffff00004aac1c8
x23: 1fffe0001a3b9b60 x22: ffff0000d1dcdb00 x21: 0000000000000000
x20: 1ffff00004aac1c8 x19: 0000000000000000 x18: 0000000000000301
x17: ff8080000fd34714 x16: ffff8000083030e8 x15: ffff80000fd34714
x14: 1ffff0000292006a x13: ffffffffffffffff x12: 0000000000000100
x11: ff808000100a22b4 x10: 0000000000000000 x9 : ffff0000d7889b40
x8 : 0000000000000030 x7 : ffff8000100aa32c x6 : 0000000000000000
x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff800008303218
x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0019999999999998
Call trace:
 __sanitizer_cov_trace_const_cmp8+0x20/0xb8 kernel/kcov.c:292
 fq_pie_timer+0x110/0x248 net/sched/sch_fq_pie.c:389
 call_timer_fn+0x19c/0x8f0 kernel/time/timer.c:1421
 expire_timers kernel/time/timer.c:1466 [inline]
 __run_timers+0x554/0x718 kernel/time/timer.c:1737
 run_timer_softirq+0x7c/0x114 kernel/time/timer.c:1750
 __do_softirq+0x344/0xe20 kernel/softirq.c:558
 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
 invoke_softirq kernel/softirq.c:439 [inline]
 __irq_exit_rcu+0x28c/0x534 kernel/softirq.c:637
 irq_exit+0x14/0x88 kernel/softirq.c:661
 handle_domain_irq+0xf4/0x178 kernel/irq/irqdesc.c:710
 gic_handle_irq+0x78/0x1c8 drivers/irqchip/irq-gic-v3.c:758
 call_on_irq_stack+0x24/0x4c arch/arm64/kernel/entry.S:899
 do_interrupt_handler+0x74/0x94 arch/arm64/kernel/entry-common.c:267
 el1_interrupt+0x30/0x58 arch/arm64/kernel/entry-common.c:442
 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:458
 el1h_64_irq+0x78/0x7c arch/arm64/kernel/entry.S:580
 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline]
 free_unref_page+0x160/0x204 mm/page_alloc.c:3417
 free_the_page mm/page_alloc.c:705 [inline]
 __free_pages+0x180/0x1d4 mm/page_alloc.c:5497
 __vunmap+0x804/0x988 mm/vmalloc.c:2621
 __vfree mm/vmalloc.c:2669 [inline]
 vfree+0x10c/0x214 mm/vmalloc.c:2700
 kvfree+0x30/0x50 mm/util.c:652
 fq_pie_destroy+0x78/0xa0 net/sched/sch_fq_pie.c:539
 qdisc_destroy+0x12c/0x4c0 net/sched/sch_generic.c:1025
 qdisc_put+0x98/0x138 net/sched/sch_generic.c:1044
 notify_and_destroy net/sched/sch_api.c:1012 [inline]
 qdisc_graft+0xe84/0x1198 net/sched/sch_api.c:1089
 tc_modify_qdisc+0xc88/0x1344 net/sched/sch_api.c:1700
 rtnetlink_rcv_msg+0xa74/0xdac net/core/rtnetlink.c:5603
 netlink_rcv_skb+0x20c/0x3b8 net/netlink/af_netlink.c:2505
 rtnetlink_rcv+0x28/0x38 net/core/rtnetlink.c:5621
 netlink_unicast_kernel net/netlink/af_netlink.c:1330 [inline]
 netlink_unicast+0x664/0x938 net/netlink/af_netlink.c:1356
 netlink_sendmsg+0x844/0xb38 net/netlink/af_netlink.c:1924
 sock_sendmsg_nosec net/socket.c:704 [inline]
 sock_sendmsg net/socket.c:724 [inline]
 ____sys_sendmsg+0x584/0x870 net/socket.c:2412
 ___sys_sendmsg+0x214/0x294 net/socket.c:2466
 __sys_sendmsg net/socket.c:2495 [inline]
 __do_sys_sendmsg net/socket.c:2504 [inline]
 __se_sys_sendmsg net/socket.c:2502 [inline]
 __arm64_sys_sendmsg+0x1ac/0x25c net/socket.c:2502
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
 el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:596
 el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:614
 el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584