ret_from_fork+0x48/0x80 arch/x86/kernel/process.c:153 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 watchdog: BUG: soft lockup - CPU#1 stuck for 246s! [syz-executor:5836] Modules linked in: irq event stamp: 1616902 hardirqs last enabled at (1616901): [] irqentry_exit+0x3b/0x90 kernel/entry/common.c:357 hardirqs last disabled at (1616902): [] sysvec_apic_timer_interrupt+0xe/0xc0 arch/x86/kernel/apic/apic.c:1049 softirqs last enabled at (1616900): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (1616900): [] handle_softirqs+0x5be/0x8e0 kernel/softirq.c:607 softirqs last disabled at (1616869): [] __do_softirq kernel/softirq.c:613 [inline] softirqs last disabled at (1616869): [] invoke_softirq kernel/softirq.c:453 [inline] softirqs last disabled at (1616869): [] __irq_exit_rcu+0x109/0x170 kernel/softirq.c:680 CPU: 1 UID: 0 PID: 5836 Comm: syz-executor Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 kernel/kcov.c:210 Code: 16 62 54 00 48 89 df 5b e9 3d c0 59 00 be 03 00 00 00 5b e9 a2 34 12 03 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 34 24 65 48 8b 15 48 63 eb 11 65 8b 05 59 63 eb RSP: 0000:ffffc900034cf960 EFLAGS: 00000202 RAX: 0000000000000000 RBX: ffff8880b84415e0 RCX: ffffffff81af2589 RDX: ffff888034e5da00 RSI: 0000000000000000 RDI: 0000000000000005 RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000000 R12: ffffed10170882bd R13: 0000000000000001 R14: dffffc0000000000 R15: ffff8880b853b180 FS: 0000555571d16500(0000) GS:ffff888124ab6000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000555571d315c8 CR3: 00000000655d2000 CR4: 0000000000350ef0 Call Trace: rep_nop arch/x86/include/asm/vdso/processor.h:13 [inline] cpu_relax arch/x86/include/asm/vdso/processor.h:18 [inline] csd_lock_wait kernel/smp.c:340 [inline] smp_call_function_many_cond+0x4a3/0x1290 kernel/smp.c:885 on_each_cpu_cond_mask+0x40/0x90 kernel/smp.c:1052 __flush_tlb_multi arch/x86/include/asm/paravirt.h:91 [inline] flush_tlb_multi arch/x86/mm/tlb.c:1275 [inline] flush_tlb_mm_range+0x322/0x1780 arch/x86/mm/tlb.c:1365 flush_tlb_page arch/x86/include/asm/tlbflush.h:324 [inline] ptep_clear_flush+0x136/0x180 mm/pgtable-generic.c:101 wp_page_copy mm/memory.c:3544 [inline] do_wp_page+0x1845/0x59f0 mm/memory.c:3939 handle_pte_fault mm/memory.c:6013 [inline] __handle_mm_fault+0x1ada/0x2a40 mm/memory.c:6140 handle_mm_fault+0x3fe/0xad0 mm/memory.c:6309 do_user_addr_fault+0x60c/0x1370 arch/x86/mm/fault.c:1337 handle_page_fault arch/x86/mm/fault.c:1480 [inline] exc_page_fault+0x5c/0xc0 arch/x86/mm/fault.c:1538 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623 RIP: 0033:0x7f677074c5df Code: 8d 34 19 48 39 d5 48 89 75 60 0f 95 c2 48 29 d8 48 83 c1 10 0f b6 d2 48 83 c8 01 48 c1 e2 02 48 09 da 48 83 ca 01 48 89 51 f8 <48> 89 46 08 eb 80 48 8d 0d c1 d7 0e 00 48 8d 15 c5 e9 0e 00 bf 01 RSP: 002b:00007ffccb7f6050 EFLAGS: 00010206 RAX: 0000000000018a41 RBX: 0000000000008040 RCX: 0000555571d29590 RDX: 0000000000008041 RSI: 0000555571d315c0 RDI: 0000000000000004 RBP: 00007f6770983ca0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000001000 R11: 0000000000000802 R12: 0000000000008030 R13: 0000000000000076 R14: 00007f6770983d00 R15: 0000000000000000 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 UID: 0 PID: 2953 Comm: kworker/u8:7 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 Workqueue: bat_events batadv_nc_worker RIP: 0010:rcu_is_watching_curr_cpu include/linux/context_tracking.h:128 [inline] RIP: 0010:rcu_is_watching+0x41/0xc0 kernel/rcu/tree.c:736 Code: a7 93 89 c5 83 f8 07 0f 87 82 00 00 00 48 8d 3c ed 00 7d cf 8d 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 <75> 5c 48 03 1c ed 00 7d cf 8d 48 b8 00 00 00 00 00 fc ff df 48 89 RSP: 0018:ffffc90000007e00 EFLAGS: 00000046 RAX: dffffc0000000000 RBX: ffffffff93a7cde8 RCX: ffffffff81a84d18 RDX: 1ffffffff1b9efa0 RSI: ffffffff8bf45180 RDI: ffffffff8dcf7d00 RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000001 R11: ffffffff9ad1d260 R12: 0000000000000001 R13: 0000000000000000 R14: ffff88805879b340 R15: 0000000000000001 FS: 0000000000000000(0000) GS:ffff8881249b6000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f37c775360d CR3: 000000000e182000 CR4: 0000000000350ef0 Call Trace: trace_hrtimer_start include/trace/events/timer.h:222 [inline] debug_activate kernel/time/hrtimer.c:485 [inline] enqueue_hrtimer+0x2d3/0x3b0 kernel/time/hrtimer.c:1088 __run_hrtimer kernel/time/hrtimer.c:1778 [inline] __hrtimer_run_queues+0x8ff/0xad0 kernel/time/hrtimer.c:1825 hrtimer_interrupt+0x397/0x8e0 kernel/time/hrtimer.c:1887 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1038 [inline] __sysvec_apic_timer_interrupt+0x10b/0x3f0 arch/x86/kernel/apic/apic.c:1055 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1049 [inline] sysvec_apic_timer_interrupt+0x9f/0xc0 arch/x86/kernel/apic/apic.c:1049 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702 RIP: 0010:__local_bh_enable_ip+0xac/0x120 kernel/softirq.c:414 Code: 1d e9 c8 29 12 65 8b 05 e2 c8 29 12 a9 00 ff ff 00 74 4d bf 01 00 00 00 e8 81 01 0c 00 e8 ac 29 46 00 fb 65 8b 05 c4 c8 29 12 <85> c0 74 52 5b 5d e9 94 69 93 ff 65 8b 05 ce 02 2a 12 85 c0 75 9e RSP: 0018:ffffc9000b7ffaa0 EFLAGS: 00000202 RAX: 0000000080000000 RBX: 00000000fffffe00 RCX: 0000000000000006 RDX: 0000000000000000 RSI: ffffffff8dbebd0f RDI: ffffffff8bf45200 RBP: ffffffff8b3dbcb4 R08: 0000000000000001 R09: 0000000000000001 R10: ffffffff90868817 R11: 0000000000000000 R12: ffffffff8b3dbe90 R13: ffff8880307d4bc0 R14: ffff88805af9cd80 R15: 0000000000000000 spin_unlock_bh include/linux/spinlock.h:396 [inline] batadv_nc_purge_paths+0x1d4/0x3a0 net/batman-adv/network-coding.c:471 batadv_nc_worker+0x958/0x1030 net/batman-adv/network-coding.c:722 process_one_work+0x9cf/0x1b70 kernel/workqueue.c:3238 process_scheduled_works kernel/workqueue.c:3319 [inline] worker_thread+0x6c8/0xf10 kernel/workqueue.c:3400 kthread+0x3c5/0x780 kernel/kthread.c:464 ret_from_fork+0x48/0x80 arch/x86/kernel/process.c:153 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245