watchdog: BUG: soft lockup - CPU#1 stuck for 246s! [kworker/1:3:5144]
Modules linked in:
irq event stamp: 583835
hardirqs last  enabled at (583834): [<ffffffff8501c5c6>] get_random_u32+0x586/0x7e0 drivers/char/random.c:532
hardirqs last disabled at (583835): [<ffffffff8ae84a1e>] sysvec_apic_timer_interrupt+0xe/0xb0 arch/x86/kernel/apic/apic.c:1043
softirqs last  enabled at (573260): [<ffffffff89099580>] nf_conntrack_free+0x230/0x460 net/netfilter/nf_conntrack_core.c:1684
softirqs last disabled at (573585): [<ffffffff815346db>] __do_softirq kernel/softirq.c:588 [inline]
softirqs last disabled at (573585): [<ffffffff815346db>] invoke_softirq kernel/softirq.c:428 [inline]
softirqs last disabled at (573585): [<ffffffff815346db>] __irq_exit_rcu kernel/softirq.c:637 [inline]
softirqs last disabled at (573585): [<ffffffff815346db>] irq_exit_rcu+0xbb/0x120 kernel/softirq.c:649
CPU: 1 PID: 5144 Comm: kworker/1:3 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
Workqueue: events_power_efficient gc_worker
RIP: 0010:stack_access_ok+0xf9/0x270 arch/x86/kernel/unwind_orc.c:398
Code: 00 00 48 8b 73 28 48 89 da 48 89 ef e8 50 bd f3 ff 31 ff 41 89 c6 89 c6 e8 c4 52 52 00 45 85 f6 74 1e 45 31 f6 e8 b7 57 52 00 <44> 89 f0 48 83 c4 10 5b 5d 41 5c 41 5d 41 5e 41 5f e9 7c 6b d3 09
RSP: 0018:ffffc90000a18380 EFLAGS: 00000246
RAX: 0000000000000000 RBX: ffffc90000a18448 RCX: ffffffff813cd516
RDX: ffff888064f5bc00 RSI: ffffffff813cd579 RDI: 0000000000000005
RBP: ffffc90002f6fc98 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000005 R12: ffffc90000a18450
R13: ffffc90000a18458 R14: 0000000000000001 R15: ffffc90002f70000
FS:  0000000000000000(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000200c9000 CR3: 0000000020ad2000 CR4: 0000000000350ef0
Call Trace:
 <IRQ>
 deref_stack_reg arch/x86/kernel/unwind_orc.c:403 [inline]
 unwind_next_frame+0x1b94/0x23a0 arch/x86/kernel/unwind_orc.c:648
 arch_stack_walk+0x100/0x170 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x95/0xd0 kernel/stacktrace.c:122
 kasan_save_stack+0x33/0x60 mm/kasan/common.c:47
 kasan_save_track+0x14/0x30 mm/kasan/common.c:68
 unpoison_slab_object mm/kasan/common.c:312 [inline]
 __kasan_slab_alloc+0x89/0x90 mm/kasan/common.c:338
 kasan_slab_alloc include/linux/kasan.h:201 [inline]
 slab_post_alloc_hook mm/slub.c:3940 [inline]
 slab_alloc_node mm/slub.c:4002 [inline]
 kmem_cache_alloc_noprof+0x121/0x2f0 mm/slub.c:4009
 fill_pool+0x26b/0x5d0 lib/debugobjects.c:168
 debug_objects_fill_pool lib/debugobjects.c:615 [inline]
 debug_object_assert_init+0x147/0x370 lib/debugobjects.c:893
 debug_timer_assert_init kernel/time/timer.c:846 [inline]
 debug_assert_init kernel/time/timer.c:891 [inline]
 __mod_timer+0xae/0xdc0 kernel/time/timer.c:1072
 addrconf_mod_rs_timer net/ipv6/addrconf.c:328 [inline]
 addrconf_rs_timer+0x5f2/0x850 net/ipv6/addrconf.c:4049
 call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792
 expire_timers kernel/time/timer.c:1843 [inline]
 __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417
 __run_timer_base kernel/time/timer.c:2428 [inline]
 __run_timer_base kernel/time/timer.c:2421 [inline]
 run_timer_base+0x111/0x190 kernel/time/timer.c:2437
 run_timer_softirq+0x1a/0x40 kernel/time/timer.c:2447
 handle_softirqs+0x219/0x8f0 kernel/softirq.c:554
 __do_softirq kernel/softirq.c:588 [inline]
 invoke_softirq kernel/softirq.c:428 [inline]
 __irq_exit_rcu kernel/softirq.c:637 [inline]
 irq_exit_rcu+0xbb/0x120 kernel/softirq.c:649
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline]
 sysvec_apic_timer_interrupt+0x95/0xb0 arch/x86/kernel/apic/apic.c:1043
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:__seqprop_spinlock_sequence include/linux/seqlock.h:227 [inline]
RIP: 0010:nf_conntrack_get_ht include/net/netfilter/nf_conntrack.h:345 [inline]
RIP: 0010:gc_worker+0x2e1/0x1770 net/netfilter/nf_conntrack_core.c:1488
Code: 00 00 48 c7 c7 88 bd e5 8f e8 bb c1 62 f8 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 79 d3 84 f8 48 85 db 58 0f 85 3d 10 00 00 <e8> 3a d8 84 f8 eb 07 e8 33 d8 84 f8 f3 90 44 8b 35 7a 68 db 06 31
RSP: 0018:ffffc90002f6fbc8 EFLAGS: 00000293
RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff890a60c1
RDX: ffff888064f5bc00 RSI: ffffffff890a60d0 RDI: 0000000000000007
RBP: ffff88802b000000 R08: 0000000000000007 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000003 R12: 000000000000530b
R13: dffffc0000000000 R14: 000000000000a615 R15: 0000000000040000
 process_one_work+0x9c8/0x1b40 kernel/workqueue.c:3248
 process_scheduled_works kernel/workqueue.c:3329 [inline]
 worker_thread+0x6c8/0xf30 kernel/workqueue.c:3409
 kthread+0x2c4/0x3a0 kernel/kthread.c:389
 ret_from_fork+0x48/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 2433 Comm: kworker/u8:7 Not tainted 6.10.0-rc6-syzkaller-00069-g795c58e4c7fc #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
Workqueue: events_unbound toggle_allocation_gate
RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60 kernel/kcov.c:200
Code: be b0 01 00 00 e8 a0 ff ff ff 31 c0 e9 f4 13 81 09 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 65 48 8b 15 c4 ab 74 7e 65 8b 05 c5 ab 74 7e a9 00 01
RSP: 0018:ffffc90009127900 EFLAGS: 00000202
RAX: 0000000000000000 RBX: ffff8880b9344900 RCX: ffffffff8182f4db
RDX: ffff88802a84da00 RSI: 0000000000000000 RDI: 0000000000000005
RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000006 R12: ffffed1017268921
R13: 0000000000000001 R14: ffff8880b9344908 R15: ffff8880b923fd80
FS:  0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f68a1435000 CR3: 000000000d97a000 CR4: 0000000000350ef0
Call Trace:
 <NMI>
 </NMI>
 <TASK>
 rep_nop arch/x86/include/asm/vdso/processor.h:13 [inline]
 cpu_relax arch/x86/include/asm/vdso/processor.h:18 [inline]
 csd_lock_wait kernel/smp.c:311 [inline]
 smp_call_function_many_cond+0x4e5/0x1420 kernel/smp.c:855
 on_each_cpu_cond_mask+0x40/0x90 kernel/smp.c:1023
 on_each_cpu include/linux/smp.h:71 [inline]
 text_poke_sync arch/x86/kernel/alternative.c:2069 [inline]
 text_poke_bp_batch+0x659/0x760 arch/x86/kernel/alternative.c:2279
 text_poke_flush arch/x86/kernel/alternative.c:2470 [inline]
 text_poke_flush arch/x86/kernel/alternative.c:2467 [inline]
 text_poke_finish+0x30/0x40 arch/x86/kernel/alternative.c:2477
 arch_jump_label_transform_apply+0x1c/0x30 arch/x86/kernel/jump_label.c:146
 jump_label_update+0x1d7/0x400 kernel/jump_label.c:882
 static_key_enable_cpuslocked+0x1b7/0x270 kernel/jump_label.c:205
 static_key_enable+0x1a/0x20 kernel/jump_label.c:218
 toggle_allocation_gate mm/kfence/core.c:826 [inline]
 toggle_allocation_gate+0xf8/0x250 mm/kfence/core.c:818
 process_one_work+0x9c8/0x1b40 kernel/workqueue.c:3248
 process_scheduled_works kernel/workqueue.c:3329 [inline]
 worker_thread+0x6c8/0xf30 kernel/workqueue.c:3409
 kthread+0x2c4/0x3a0 kernel/kthread.c:389
 ret_from_fork+0x48/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>