1
watchdog: BUG: soft lockup - CPU#2 stuck for 23s! [syz.2.2024:7762]
CPU#2 Utilization every 4s during lockup:
#1: 3% system, 6% softirq, 76% hardirq, 0% idle
#2: 3% system, 2% softirq, 116% hardirq, 0% idle
#3: 2% system, 1% softirq, 104% hardirq, 0% idle
#4: 3% system, 3% softirq, 91% hardirq, 0% idle
#5: 3% system, 2% softirq, 79% hardirq, 0% idle
CPU#2 Detect HardIRQ Time exceeds 50%. Most frequent HardIRQs:
#1: 410 irq#6
#2: 59 irq#2
#3: 36 irq#11
Modules linked in: pptp(E) l2tp_ppp(E) r8153_ecm(E) cdc_ncm(E) hci_uart(E) btusb(E) pppox(E) bsd_comp(E) ppp_mppe(E) ppp_deflate(E) cdc_eem(E) ax88179_178a(E) aqc111(E) asix(E) cdc_ether(E) btqca(E) hidp(E) btsdio(E) btbcm(E) btintel(E) rfcomm(E) btrtl(E) clk_test(E) ptp(E) tipc_diag(E) ieee802154_socket(E) ieee802154_6lowpan(E) mac802154(E) nhc_hop(E) nhc_udp(E) nhc_routing(E) nhc_fragment(E) nhc_ipv6(E) nhc_dest(E) nhc_mobility(E) ppp_generic(E) regmap_kunit(E) usbnet(E) r8152(E) bluetooth(E) nfc(E) ftdi_sio(E) vcan(E) slcan(E) zram(E) can_bcm(E) can_raw(E) can_gw(E) soc_utils_test platform_test(E) clk_gate_test(E) dev_addr_lists_test(E) kunit_example_test(E) input_test(E) kunit_test(E) time_test(E) hid_uclogic_test(E) lib_test(E) iio_test_format(E) soc_topology_test of_kunit_helpers(E) ext4_inode_test fat_test clk_kunit_helpers(E) cdc_acm(E) vcpu_stall_detector(E) wwan(E) kheaders(E) gnss(E) rtl8150(E) 8021q(E) pps_core(E) libarc4(E) virtio_balloon(E) usbmon(E) pwrseq_core(E) tipc(E) cctrng(E) macsec(E)
ieee802154(E) vmw_vsock_virtio_transport(E) 6lowpan(E) tls(E) l2tp_core(E) slhc(E) gzvm(E) regmap_ram(E) mii(E) rfkill(E) usbserial(E) regmap_raw_ram(E) can_dev(E) zsmalloc(E) can(E) open_dice(E) kunit(E)
irq event stamp: 3322
hardirqs last enabled at (3321): [<ffffffc0801c7750>] queue_work_on+0xf4/0x168 proc/self/cwd/common/kernel/workqueue.c:2402
hardirqs last disabled at (3322): [<ffffffc0822464ac>] __el1_irq proc/self/cwd/common/arch/arm64/kernel/entry-common.c:536 [inline]
hardirqs last disabled at (3322): [<ffffffc0822464ac>] el1_interrupt+0x2c/0x64 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:554
softirqs last enabled at (3159): [<ffffffc080191bb0>] softirq_handle_end proc/self/cwd/common/kernel/softirq.c:426 [inline]
softirqs last enabled at (3159): [<ffffffc080191bb0>] handle_softirqs+0x4bc/0x51c proc/self/cwd/common/kernel/softirq.c:631
softirqs last disabled at (3164): [<ffffffc08001038c>] __do_softirq+0x1c/0x2c proc/self/cwd/common/kernel/softirq.c:637
CPU: 2 UID: 0 PID: 7762 Comm: syz.2.2024 Tainted: G E 6.12.18-android16-1-maybe-dirty-4k #1 d3e6fbf0856859f03ae6ca68e3996e4092ab8d53
Tainted: [E]=UNSIGNED_MODULE
Hardware name: linux,dummy-virt (DT)
pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : queue_work_on+0x120/0x168 proc/self/cwd/common/kernel/workqueue.c:2403
lr : queue_work_on+0xf4/0x168 proc/self/cwd/common/kernel/workqueue.c:2402
sp : ffffffc08440bd60
x29: ffffffc08440bd60 x28: 0000000000000001 x27: ffffffc08440be90
x26: ffffffc08322b200 x25: 0000000001e00001 x24: 0000000000000000
x23: 0000000000000000 x22: 0000000000000020 x21: ffffff80c0a57a00
x20: 0000000000000001 x19: 0000000000000000 x18: ffffffc084401040
x17: 000000008c623181 x16: 000000008c623181 x15: 0000000000000000
x14: 0000000000000006 x13: 0000000000000000 x12: ffffffc083fbdd28
x11: ffffffc0835e06f8 x10: 000000000001e4c0 x9 : 1a029d3c0d1f4ee5
x8 : 0000000000000cf9 x7 : 0000000000000000 x6 : ffffffc084408000
x5 : 0000000000000000 x4 : ffffffc083fbdd30 x3 : 0000000000000000
x2 : 0000000000000002 x1 : ffffff80e709ab88 x0 : ffffffc17bd2c000
Call trace:
__daif_local_irq_restore proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:175 [inline]
arch_local_irq_restore proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:195 [inline]
queue_work_on+0x120/0x168 proc/self/cwd/common/kernel/workqueue.c:2402
queue_work proc/self/cwd/common/include/linux/workqueue.h:662 [inline]
kblockd_schedule_work proc/self/cwd/common/block/blk-core.c:1108 [inline]
blk_rq_timed_out_timer+0x40/0x58 proc/self/cwd/common/block/blk-core.c:392
call_timer_fn+0x144/0x614 proc/self/cwd/common/kernel/time/timer.c:1797
expire_timers proc/self/cwd/common/kernel/time/timer.c:1848 [inline]
__run_timers proc/self/cwd/common/kernel/time/timer.c:2422 [inline]
__run_timer_base+0x3cc/0x524 proc/self/cwd/common/kernel/time/timer.c:2434
run_timer_base proc/self/cwd/common/kernel/time/timer.c:2443 [inline]
run_timer_softirq+0x44/0x88 proc/self/cwd/common/kernel/time/timer.c:2453
handle_softirqs+0x1c8/0x51c proc/self/cwd/common/kernel/softirq.c:599
__do_softirq+0x1c/0x2c proc/self/cwd/common/kernel/softirq.c:637
____do_softirq+0x1c/0x30 proc/self/cwd/common/arch/arm64/kernel/irq.c:81
call_on_irq_stack+0x3c/0x74 proc/self/cwd/common/arch/arm64/kernel/entry.S:878
do_softirq_own_stack+0x28/0x3c proc/self/cwd/common/arch/arm64/kernel/irq.c:86
invoke_softirq proc/self/cwd/common/kernel/softirq.c:461 [inline]
__irq_exit_rcu+0xdc/0x154 proc/self/cwd/common/kernel/softirq.c:686
irq_exit_rcu+0x18/0x40 proc/self/cwd/common/kernel/softirq.c:698
__el1_irq proc/self/cwd/common/arch/arm64/kernel/entry-common.c:540 [inline]
el1_interrupt+0x40/0x64 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:554
el1h_64_irq_handler+0x20/0x30 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:559
el1h_64_irq+0x64/0x68 proc/self/cwd/common/arch/arm64/kernel/entry.S:594
__daif_local_irq_enable proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:26 [inline]
arch_local_irq_enable proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:48 [inline]
raw_spin_rq_unlock_irq proc/self/cwd/common/kernel/sched/sched.h:1563 [inline]
finish_lock_switch+0xb0/0xfc proc/self/cwd/common/kernel/sched/core.c:5663
finish_task_switch+0x88/0x258 proc/self/cwd/common/kernel/sched/core.c:5781
context_switch proc/self/cwd/common/kernel/sched/core.c:5914 [inline]
__schedule+0xa4c/0x1018 proc/self/cwd/common/kernel/sched/core.c:7737
preempt_schedule_notrace+0x54/0x6c proc/self/cwd/common/kernel/sched/core.c:8013
trace_lock_release proc/self/cwd/common/include/trace/events/lock.h:69 [inline]
lock_release+0x348/0x350 proc/self/cwd/common/kernel/locking/lockdep.c:5836
fs_reclaim_acquire+0xac/0xdc proc/self/cwd/common/mm/page_alloc.c:4202
might_alloc proc/self/cwd/common/include/linux/sched/mm.h:318 [inline]
prepare_alloc_pages+0x98/0x1e0 proc/self/cwd/common/mm/page_alloc.c:4873
__alloc_pages_noprof+0xf0/0x3d0 proc/self/cwd/common/mm/page_alloc.c:5104
__folio_alloc_noprof+0x1c/0x9c proc/self/cwd/common/mm/page_alloc.c:5151
__folio_alloc_node_noprof proc/self/cwd/common/include/linux/gfp.h:278 [inline]
folio_alloc_noprof proc/self/cwd/common/include/linux/gfp.h:320 [inline]
vma_alloc_zeroed_movable_folio+0x5c/0x74 proc/self/cwd/common/arch/arm64/mm/fault.c:1020
folio_prealloc proc/self/cwd/common/mm/memory.c:1065 [inline]
alloc_anon_folio proc/self/cwd/common/mm/memory.c:4740 [inline]
do_anonymous_page proc/self/cwd/common/mm/memory.c:4797 [inline]
do_pte_missing+0x1ae4/0x29ac proc/self/cwd/common/mm/memory.c:3976
handle_pte_fault proc/self/cwd/common/mm/memory.c:5798 [inline]
__handle_mm_fault proc/self/cwd/common/mm/memory.c:5941 [inline]
handle_mm_fault+0xcc4/0x124c proc/self/cwd/common/mm/memory.c:6109
do_page_fault+0x64c/0xc64 proc/self/cwd/common/arch/arm64/mm/fault.c:633
do_translation_fault+0x88/0x1fc proc/self/cwd/common/arch/arm64/mm/fault.c:769
do_mem_abort+0x74/0x184 proc/self/cwd/common/arch/arm64/mm/fault.c:911
el0_da+0x64/0xc4 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:583
el0t_64_sync_handler+0x68/0x108 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:736
el0t_64_sync+0x198/0x19c proc/self/cwd/common/arch/arm64/kernel/entry.S:598
Sending NMI from CPU 2 to CPUs 0-1,3:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 7223 Comm: syz-executor Tainted: G E 6.12.18-android16-1-maybe-dirty-4k #1 d3e6fbf0856859f03ae6ca68e3996e4092ab8d53
Tainted: [E]=UNSIGNED_MODULE
Hardware name: linux,dummy-virt (DT)
pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : get_current proc/self/cwd/common/arch/arm64/include/asm/current.h:19 [inline]
pc : __preempt_count_dec_and_test proc/self/cwd/common/arch/arm64/include/asm/preempt.h:61 [inline]
pc : __raw_spin_unlock_irqrestore proc/self/cwd/common/include/linux/spinlock_api_smp.h:152 [inline]
pc : _raw_spin_unlock_irqrestore+0x44/0x98 proc/self/cwd/common/kernel/locking/spinlock.c:194
lr : __raw_spin_unlock_irqrestore proc/self/cwd/common/include/linux/spinlock_api_smp.h:151 [inline]
lr : _raw_spin_unlock_irqrestore+0x40/0x98 proc/self/cwd/common/kernel/locking/spinlock.c:194
sp : ffffffc08000bcf0
x29: ffffffc08000bcf0 x28: ffffffc083202940 x27: ffffffc083247000
x26: ffffff80c0aa9f00 x25: ffffffc083245560 x24: ffffffc17bd08000
x23: ffffff81fef0a940 x22: 0000000000000000 x21: 0000000000000001
x20: ffffff80c0838a90 x19: 0000000000000000 x18: ffffffc08000d050
x17: 000000008c623181 x16: 000000008c623181 x15: 0000000000000100
x14: ffffffc083245560 x13: 0000000000000000 x12: ffffffc083fbdda8
x11: ffffffc0835e06f8 x10: 00000000000086c0 x9 : 6ea0b03d429a9716
x8 : 0000000000001bd0 x7 : 0000000000000000 x6 : ffffffc080008000
x5 : 0000000000000000 x4 : ffffffc083fbddb0 x3 : 0000000000000000
x2 : 0000000000000002 x1 : ffffff80c0aaab88 x0 : ffffffc17bd08000
Call trace:
__daif_local_irq_restore proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:175 [inline]
arch_local_irq_restore proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:195 [inline]
__raw_spin_unlock_irqrestore proc/self/cwd/common/include/linux/spinlock_api_smp.h:151 [inline]
_raw_spin_unlock_irqrestore+0x44/0x98 proc/self/cwd/common/kernel/locking/spinlock.c:194
class_raw_spinlock_irqsave_destructor proc/self/cwd/common/include/linux/spinlock.h:551 [inline]
try_to_wake_up+0x894/0xed8 proc/self/cwd/common/kernel/sched/core.c:4688
wake_up_process+0x20/0x34 proc/self/cwd/common/kernel/sched/core.c:4948
process_timeout+0x30/0x48 proc/self/cwd/common/kernel/time/timer.c:2546
call_timer_fn+0x144/0x614 proc/self/cwd/common/kernel/time/timer.c:1797
expire_timers proc/self/cwd/common/kernel/time/timer.c:1848 [inline]
__run_timers proc/self/cwd/common/kernel/time/timer.c:2422 [inline]
__run_timer_base+0x3cc/0x524 proc/self/cwd/common/kernel/time/timer.c:2434
run_timer_base proc/self/cwd/common/kernel/time/timer.c:2443 [inline]
run_timer_softirq+0x44/0x88 proc/self/cwd/common/kernel/time/timer.c:2453
handle_softirqs+0x1c8/0x51c proc/self/cwd/common/kernel/softirq.c:599
__do_softirq+0x1c/0x2c proc/self/cwd/common/kernel/softirq.c:637
____do_softirq+0x1c/0x30 proc/self/cwd/common/arch/arm64/kernel/irq.c:81
call_on_irq_stack+0x3c/0x74 proc/self/cwd/common/arch/arm64/kernel/entry.S:878
do_softirq_own_stack+0x28/0x3c proc/self/cwd/common/arch/arm64/kernel/irq.c:86
invoke_softirq proc/self/cwd/common/kernel/softirq.c:461 [inline]
__irq_exit_rcu+0xdc/0x154 proc/self/cwd/common/kernel/softirq.c:686
irq_exit_rcu+0x18/0x40 proc/self/cwd/common/kernel/softirq.c:698
__el1_irq proc/self/cwd/common/arch/arm64/kernel/entry-common.c:540 [inline]
el1_interrupt+0x40/0x64 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:554
el1h_64_irq_handler+0x20/0x30 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:559
el1h_64_irq+0x64/0x68 proc/self/cwd/common/arch/arm64/kernel/entry.S:594
__sanitizer_cov_trace_pc+0x0/0x94
zap_present_folio_ptes proc/self/cwd/common/mm/memory.c:1537 [inline]
zap_present_ptes proc/self/cwd/common/mm/memory.c:1591 [inline]
zap_pte_range proc/self/cwd/common/mm/memory.c:1633 [inline]
zap_pmd_range proc/self/cwd/common/mm/memory.c:1751 [inline]
zap_pud_range proc/self/cwd/common/mm/memory.c:1780 [inline]
zap_p4d_range proc/self/cwd/common/mm/memory.c:1801 [inline]
unmap_page_range+0x1144/0x198c proc/self/cwd/common/mm/memory.c:1822
unmap_single_vma proc/self/cwd/common/mm/memory.c:1868 [inline]
unmap_vmas+0x168/0x244 proc/self/cwd/common/mm/memory.c:1912
exit_mmap+0x160/0x7ec proc/self/cwd/common/mm/mmap.c:1944
__mmput+0x98/0x2b8 proc/self/cwd/common/kernel/fork.c:1344
mmput+0x7c/0xbc proc/self/cwd/common/kernel/fork.c:1366
exit_mm proc/self/cwd/common/kernel/exit.c:574 [inline]
do_exit+0x510/0x1678 proc/self/cwd/common/kernel/exit.c:931
do_group_exit+0xe8/0x128 proc/self/cwd/common/kernel/exit.c:1093
get_signal+0xfe8/0x11c8 proc/self/cwd/common/kernel/signal.c:2934
do_signal+0x170/0x2298 proc/self/cwd/common/arch/arm64/kernel/signal.c:1434
do_notify_resume+0x74/0x174 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:150
exit_to_user_mode_prepare proc/self/cwd/common/arch/arm64/kernel/entry-common.c:171 [inline]
exit_to_user_mode proc/self/cwd/common/arch/arm64/kernel/entry-common.c:180 [inline]
el0_svc+0xb0/0xb4 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:716
el0t_64_sync_handler+0x98/0x108 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:733
el0t_64_sync+0x198/0x19c proc/self/cwd/common/arch/arm64/kernel/entry.S:598
NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G E 6.12.18-android16-1-maybe-dirty-4k #1 d3e6fbf0856859f03ae6ca68e3996e4092ab8d53
Tainted: [E]=UNSIGNED_MODULE
Hardware name: linux,dummy-virt (DT)
pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : sched_balance_rq+0x1b34/0x2254 proc/self/cwd/common/kernel/sched/fair.c:12033
lr : sched_balance_rq+0x1b2c/0x2254 proc/self/cwd/common/kernel/sched/fair.c:12031
sp : ffffffc080003b50
x29: ffffffc080003de0 x28: ffffff81fef2e940 x27: ffffff80c39d0000
x26: ffffff80c39d0100 x25: ffffff81fef2f7b8 x24: 0000000000000000
x23: ffffffc080003c60 x22: 0000000000000df4 x21: 0000000000000297
x20: 0000000000000000 x19: ffffffc083247000 x18: ffffffc080005038
x17: 000000008c623181 x16: 000000008c623181 x15: 0000000000000000
x14: ffffffc083fbdc58 x13: 0000000000000000 x12: ffffffc083fbdd10
x11: ffffffc0831fcba8 x10: ffffffc083256d40 x9 : cda74fb54f1f57ce
x8 : 0000000000000000 x7 : 0000000000000000 x6 : ffffffc080000000
x5 : 0000000000000000 x4 : ffffffc083fbdd18 x3 : 0000000000000000
x2 : 0000000000000005 x1 : 0000000000000000 x0 : ffffffc17bce4000
Call trace:
__daif_local_irq_restore proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:175 [inline]
arch_local_irq_restore proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:195 [inline]
sched_balance_rq+0x1b34/0x2254 proc/self/cwd/common/kernel/sched/fair.c:12031
sched_balance_domains+0x240/0x444 proc/self/cwd/common/kernel/sched/fair.c:12440
_nohz_idle_balance+0x270/0x3a4 proc/self/cwd/common/kernel/sched/fair.c:12891
nohz_idle_balance proc/self/cwd/common/kernel/sched/fair.c:12934 [inline]
sched_balance_softirq+0x48/0x78 proc/self/cwd/common/kernel/sched/fair.c:13162
handle_softirqs+0x1c8/0x51c proc/self/cwd/common/kernel/softirq.c:599
__do_softirq+0x1c/0x2c proc/self/cwd/common/kernel/softirq.c:637
____do_softirq+0x1c/0x30 proc/self/cwd/common/arch/arm64/kernel/irq.c:81
call_on_irq_stack+0x3c/0x74 proc/self/cwd/common/arch/arm64/kernel/entry.S:878
do_softirq_own_stack+0x28/0x3c proc/self/cwd/common/arch/arm64/kernel/irq.c:86
invoke_softirq proc/self/cwd/common/kernel/softirq.c:461 [inline]
__irq_exit_rcu+0xdc/0x154 proc/self/cwd/common/kernel/softirq.c:686
irq_exit_rcu+0x18/0x40 proc/self/cwd/common/kernel/softirq.c:698
__el1_irq proc/self/cwd/common/arch/arm64/kernel/entry-common.c:540 [inline]
el1_interrupt+0x40/0x64 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:554
el1h_64_irq_handler+0x20/0x30 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:559
el1h_64_irq+0x64/0x68 proc/self/cwd/common/arch/arm64/kernel/entry.S:594
__daif_local_irq_enable proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:26 [inline]
arch_local_irq_enable+0x8/0x10 proc/self/cwd/common/arch/arm64/include/asm/irqflags.h:48
cpuidle_idle_call proc/self/cwd/common/kernel/sched/idle.c:185 [inline]
do_idle+0xf8/0x280 proc/self/cwd/common/kernel/sched/idle.c:326
cpu_startup_entry+0x3c/0x44 proc/self/cwd/common/kernel/sched/idle.c:424
rest_init+0x310/0x314 proc/self/cwd/common/init/main.c:747
start_kernel+0x4fc/0x618 proc/self/cwd/common/init/main.c:1133
__primary_switched+0x88/0x94 proc/self/cwd/common/arch/arm64/kernel/head.S:243
NMI backtrace for cpu 3
CPU: 3 UID: 0 PID: 7805 Comm: syz.0.2036 Tainted: G E 6.12.18-android16-1-maybe-dirty-4k #1 d3e6fbf0856859f03ae6ca68e3996e4092ab8d53
Tainted: [E]=UNSIGNED_MODULE
Hardware name: linux,dummy-virt (DT)
pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : local_daif_restore+0x28/0x48 proc/self/cwd/common/arch/arm64/include/asm/daifflags.h:117
lr : local_daif_restore+0x24/0x48 proc/self/cwd/common/arch/arm64/include/asm/daifflags.h:75
sp : ffffffc0879abe40
x29: ffffffc0879abe40 x28: ffffff80d5680000 x27: 0000000000000000
x26: 0000000000000000 x25: 0000000000000000 x24: 0000000000000000
x23: 0000007fa725c000 x22: 000000009200000b x21: ffffff80d5680000
x20: ffffffc0879abeb0 x19: 0000000000000000 x18: ffffffc087fc9018
x17: 000000008c623181 x16: 000000008c623181 x15: 0000000000000000
x14: 0000000000000000 x13: ffffffc0879ac000 x12: ffffffc083fbdc60
x11: 0000000000ff0100 x10: ffffff80d5680000 x9 : ffffffffffffffff
x8 : 00000000000027b6 x7 : 0000000000000000 x6 : ffffffc0879a8000
x5 : 0000000000000000 x4 : ffffffc083fbdc68 x3 : 0000000000000000
x2 : 0000000000000005 x1 : 0000000000000000 x0 : ffffffc17bd50000
Call trace:
local_daif_restore+0x28/0x48 proc/self/cwd/common/arch/arm64/include/asm/daifflags.h:117
el0_da+0x54/0xc4 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:582
el0t_64_sync_handler+0x68/0x108 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:736
el0t_64_sync+0x198/0x19c proc/self/cwd/common/arch/arm64/kernel/entry.S:598
watchdog: BUG: soft lockup - CPU#2 stuck for 49s! [syz.2.2024:7762]
CPU#2 Utilization every 4s during lockup:
#1: 3% system, 1% softirq, 104% hardirq, 0% idle
#2: 3% system, 2% softirq, 98% hardirq, 0% idle
#3: 3% system, 2% softirq, 100% hardirq, 0% idle
#4: 3% system, 3% softirq, 90% hardirq, 0% idle
#5: 3% system, 3% softirq, 106% hardirq, 0% idle
CPU#2 Detect HardIRQ Time exceeds 50%. Most frequent HardIRQs:
#1: 850 irq#6
#2: 189 irq#2
#3: 102 irq#11
Modules linked in: pptp(E) l2tp_ppp(E) r8153_ecm(E) cdc_ncm(E) hci_uart(E) btusb(E) pppox(E) bsd_comp(E) ppp_mppe(E) ppp_deflate(E) cdc_eem(E) ax88179_178a(E) aqc111(E) asix(E) cdc_ether(E) btqca(E) hidp(E) btsdio(E) btbcm(E) btintel(E) rfcomm(E) btrtl(E) clk_test(E) ptp(E) tipc_diag(E) ieee802154_socket(E) ieee802154_6lowpan(E) mac802154(E) nhc_hop(E) nhc_udp(E) nhc_routing(E) nhc_fragment(E) nhc_ipv6(E) nhc_dest(E) nhc_mobility(E) ppp_generic(E) regmap_kunit(E) usbnet(E) r8152(E) bluetooth(E) nfc(E) ftdi_sio(E) vcan(E) slcan(E) zram(E) can_bcm(E) can_raw(E) can_gw(E) soc_utils_test platform_test(E) clk_gate_test(E) dev_addr_lists_test(E) kunit_example_test(E) input_test(E) kunit_test(E) time_test(E) hid_uclogic_test(E) lib_test(E) iio_test_format(E) soc_topology_test of_kunit_helpers(E) ext4_inode_test fat_test clk_kunit_helpers(E) cdc_acm(E) vcpu_stall_detector(E) wwan(E) kheaders(E) gnss(E) rtl8150(E) 8021q(E) pps_core(E) libarc4(E) virtio_balloon(E) usbmon(E) pwrseq_core(E) tipc(E) cctrng(E) macsec(E)
ieee802154(E) vmw_vsock_virtio_transport(E) 6lowpan(E) tls(E) l2tp_core(E) slhc(E) gzvm(E) regmap_ram(E) mii(E) rfkill(E) usbserial(E) regmap_raw_ram(E) can_dev(E) zsmalloc(E) can(E) open_dice(E) kunit(E)
irq event stamp: 3514
hardirqs last enabled at (3512): [<ffffffc0805d0490>] kcsan_setup_watchpoint+0x548/0x63c proc/self/cwd/common/kernel/kcsan/core.c:703
hardirqs last disabled at (3514): [<ffffffc0822464ac>] __el1_irq proc/self/cwd/common/arch/arm64/kernel/entry-common.c:536 [inline]
hardirqs last disabled at (3514): [<ffffffc0822464ac>] el1_interrupt+0x2c/0x64 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:554
softirqs last enabled at (3159): [<ffffffc080191bb0>] softirq_handle_end proc/self/cwd/common/kernel/softirq.c:426 [inline]
softirqs last enabled at (3159): [<ffffffc080191bb0>] handle_softirqs+0x4bc/0x51c proc/self/cwd/common/kernel/softirq.c:631
softirqs last disabled at (3164): [<ffffffc08001038c>] __do_softirq+0x1c/0x2c proc/self/cwd/common/kernel/softirq.c:637
CPU: 2 UID: 0 PID: 7762 Comm: syz.2.2024 Tainted: G EL 6.12.18-android16-1-maybe-dirty-4k #1 d3e6fbf0856859f03ae6ca68e3996e4092ab8d53
Tainted: [E]=UNSIGNED_MODULE, [L]=SOFTLOCKUP
Hardware name: linux,dummy-virt (DT)
pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : unwind_next_frame_record+0x1cc/0x210 proc/self/cwd/common/arch/arm64/include/asm/stacktrace/common.h:153
lr : unwind_next_frame_record+0x1cc/0x210 proc/self/cwd/common/arch/arm64/include/asm/stacktrace/common.h:153
sp : ffffffc08440b4c0
x29: ffffffc08440b4c0 x28: ffffff81fef28f30 x27: 0000000000000000
x26: 0000000000000001 x25: ffffffc08440b548 x24: 0000000000000002
x23: ffffffc08440c000 x22: ffffffc08440b558 x21: ffffffc08440bb20
x20: ffffffc08440bb10 x19: ffffffc08440b500 x18: ffffffc0844010b8
x17: 000000008c623181 x16: 000000008c623181 x15: 0000000000000000
x14: 0000000000000007 x13: 0000000000000000 x12: ffffffc083fbdcb8
x11: ffffffc0831fcba8 x10: ffffff80e7099f00 x9 : ffffff81fef28ba8
x8 : 0000000000000000 x7 : 0000000000000000 x6 : ffffffc084408000
x5 : 0000000000000000 x4 : ffffffc083fbdcc0 x3 : 0000000000000000
x2 : 0000000000000008 x1 : 0000000000000000 x0 : ffffffc08440bb10
Call trace:
unwind_next_frame_record+0x1cc/0x210 proc/self/cwd/common/arch/arm64/include/asm/stacktrace/common.h:153
kunwind_next proc/self/cwd/common/arch/arm64/kernel/stacktrace.c:151 [inline]
do_kunwind proc/self/cwd/common/arch/arm64/kernel/stacktrace.c:174 [inline]
kunwind_stack_walk proc/self/cwd/common/arch/arm64/kernel/stacktrace.c:245 [inline]
arch_stack_walk+0x200/0x2c0 proc/self/cwd/common/arch/arm64/kernel/stacktrace.c:269
perf_callchain_kernel+0x120/0x174 proc/self/cwd/common/arch/arm64/kernel/perf_callchain.c:39
get_perf_callchain+0x164/0x3c4 proc/self/cwd/common/kernel/events/callchain.c:239
perf_callchain proc/self/cwd/common/kernel/events/core.c:7797 [inline]
perf_sample_save_callchain proc/self/cwd/common/include/linux/perf_event.h:1261 [inline]
perf_prepare_sample+0x1e4/0xe2c proc/self/cwd/common/kernel/events/core.c:7841
__perf_event_output proc/self/cwd/common/kernel/events/core.c:8029 [inline]
perf_event_output_forward+0x118/0x2b0 proc/self/cwd/common/kernel/events/core.c:8050
__perf_event_overflow+0x580/0x828 proc/self/cwd/common/kernel/events/core.c:9874
perf_swevent_overflow proc/self/cwd/common/kernel/events/core.c:9946 [inline]
perf_swevent_event+0x194/0x33c proc/self/cwd/common/kernel/events/core.c:-1
perf_tp_event+0x260/0x1578 proc/self/cwd/common/kernel/events/core.c:10492
perf_trace_run_bpf_submit+0xd0/0x128 proc/self/cwd/common/kernel/events/core.c:10416
perf_trace_lock+0x1ac/0x1f0 proc/self/cwd/common/include/trace/events/lock.h:50
__traceiter_lock_release+0x78/0xb0 proc/self/cwd/common/include/trace/events/lock.h:69
trace_lock_release proc/self/cwd/common/include/trace/events/lock.h:69 [inline]
lock_release+0x32c/0x350 proc/self/cwd/common/kernel/locking/lockdep.c:5836
For immediate assistance, please email our customer support: [email protected]