ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246 watchdog: BUG: soft lockup - CPU#1 stuck for 266s! [aoe_tx0:1295] Modules linked in: irq event stamp: 490350369 hardirqs last enabled at (490350368): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (490350368): [] _raw_spin_unlock_irqrestore+0x52/0x80 kernel/locking/spinlock.c:194 hardirqs last disabled at (490350369): [] sysvec_apic_timer_interrupt+0xe/0xc0 arch/x86/kernel/apic/apic.c:1056 softirqs last enabled at (18638): [] rcu_lock_release include/linux/rcupdate.h:341 [inline] softirqs last enabled at (18638): [] rcu_read_unlock_bh include/linux/rcupdate.h:934 [inline] softirqs last enabled at (18638): [] __dev_queue_xmit+0x7dc/0x46f0 net/core/dev.c:4859 softirqs last disabled at (18642): [] local_bh_disable include/linux/bottom_half.h:20 [inline] softirqs last disabled at (18642): [] rcu_read_lock_bh include/linux/rcupdate.h:918 [inline] softirqs last disabled at (18642): [] __dev_queue_xmit+0x274/0x46f0 net/core/dev.c:4757 CPU: 1 UID: 0 PID: 1295 Comm: aoe_tx0 Tainted: G L syzkaller #0 PREEMPT(full) Tainted: [L]=SOFTLOCKUP Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 RIP: 0010:__raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:152 [inline] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80 kernel/locking/spinlock.c:194 Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 a6 dc 6a f6 48 89 df e8 8e 2a 6b f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 01 00 00 00 e8 45 79 5b f6 65 8b 05 3e 1a 6c 08 85 c0 74 16 5b RSP: 0018:ffffc9000409f908 EFLAGS: 00000246 RAX: 0000000000000012 RBX: ffffffff9b1f9d60 RCX: 0000000000000004 RDX: 0000000000000000 RSI: ffffffff8dc42ea6 RDI: ffffffff8bfa3320 RBP: 0000000000000293 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8f2fc360 R13: ffffffff9b1f9e68 R14: 0000000000000000 R15: ffffffff9b1f9ea0 FS: 0000000000000000(0000) GS:ffff8881246dc000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fbe732708c0 CR3: 000000000e392000 CR4: 0000000000350ef0 Call Trace: spin_unlock_irqrestore include/linux/spinlock.h:406 [inline] uart_port_unlock_irqrestore include/linux/serial_core.h:788 [inline] uart_port_unlock_deref drivers/tty/serial/serial_core.c:91 [inline] uart_port_unlock_deref drivers/tty/serial/serial_core.c:88 [inline] uart_write_room+0x2d2/0x930 drivers/tty/serial/serial_core.c:647 tty_write_room+0x66/0x90 drivers/tty/tty_ioctl.c:69 handle_tx+0x14a/0x620 drivers/net/caif/caif_serial.c:212 __netdev_start_xmit include/linux/netdevice.h:5273 [inline] netdev_start_xmit include/linux/netdevice.h:5282 [inline] xmit_one net/core/dev.c:3866 [inline] dev_hard_start_xmit+0x127/0x6c0 net/core/dev.c:3882 __dev_queue_xmit+0x6dd/0x46f0 net/core/dev.c:4832 dev_queue_xmit include/linux/netdevice.h:3381 [inline] tx+0xc4/0x130 drivers/block/aoe/aoenet.c:62 kthread+0x1d8/0x3c0 drivers/block/aoe/aoecmd.c:1241 kthread+0x3b3/0x730 kernel/kthread.c:463 ret_from_fork+0x754/0xaf0 arch/x86/kernel/process.c:158 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 UID: 0 PID: 11108 Comm: kworker/u8:5 Tainted: G L syzkaller #0 PREEMPT(full) Tainted: [L]=SOFTLOCKUP Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 Workqueue: events_unbound toggle_allocation_gate RIP: 0010:csd_lock_wait kernel/smp.c:342 [inline] RIP: 0010:smp_call_function_many_cond+0x576/0x14a0 kernel/smp.c:877 Code: b8 00 00 00 00 00 fc ff df 48 8b 54 24 10 49 89 d5 49 89 d4 49 c1 ed 03 41 83 e4 07 49 01 c5 41 83 c4 03 e8 4c 56 0c 00 f3 90 <41> 0f b6 45 00 41 38 c4 7c 08 84 c0 0f 85 3f 0d 00 00 8b 45 08 31 RSP: 0018:ffffc9000492f808 EFLAGS: 00000293 RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff81fa841a RDX: ffff888026665b80 RSI: ffffffff81fa83f4 RDI: ffff888026665b80 RBP: ffff8880b8540e00 R08: 0000000000000005 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000003 R13: ffffed10170a81c1 R14: 0000000000000001 R15: ffff8880b843c040 FS: 0000000000000000(0000) GS:ffff8881245dc000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fe039712407 CR3: 000000000e392000 CR4: 0000000000350ef0 Call Trace: on_each_cpu_cond_mask+0x40/0x90 kernel/smp.c:1043 on_each_cpu include/linux/smp.h:71 [inline] smp_text_poke_sync_each_cpu arch/x86/kernel/alternative.c:2711 [inline] smp_text_poke_batch_finish+0x337/0xc60 arch/x86/kernel/alternative.c:2921 arch_jump_label_transform_apply+0x1c/0x30 arch/x86/kernel/jump_label.c:146 jump_label_update+0x37a/0x550 kernel/jump_label.c:919 static_key_enable_cpuslocked+0x1bc/0x270 kernel/jump_label.c:210 static_key_enable+0x1a/0x20 kernel/jump_label.c:223 toggle_allocation_gate mm/kfence/core.c:879 [inline] toggle_allocation_gate+0xfe/0x2d0 mm/kfence/core.c:871 process_one_work+0x9c2/0x1840 kernel/workqueue.c:3257 process_scheduled_works kernel/workqueue.c:3340 [inline] worker_thread+0x5da/0xe40 kernel/workqueue.c:3421 kthread+0x3b3/0x730 kernel/kthread.c:463 ret_from_fork+0x754/0xaf0 arch/x86/kernel/process.c:158 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246