ret_from_fork+0x675/0x7d0 arch/x86/kernel/process.c:158 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 watchdog: BUG: soft lockup - CPU#0 stuck for 245s! [kworker/0:4:6034] Modules linked in: irq event stamp: 325318 hardirqs last enabled at (325317): [] irqentry_exit+0x3b/0x90 kernel/entry/common.c:214 hardirqs last disabled at (325318): [] sysvec_apic_timer_interrupt+0xe/0xc0 arch/x86/kernel/apic/apic.c:1052 softirqs last enabled at (325314): [] softirq_handle_end kernel/softirq.c:468 [inline] softirqs last enabled at (325314): [] handle_softirqs+0x5be/0x8e0 kernel/softirq.c:650 softirqs last disabled at (325305): [] __do_softirq kernel/softirq.c:656 [inline] softirqs last disabled at (325305): [] invoke_softirq kernel/softirq.c:496 [inline] softirqs last disabled at (325305): [] __irq_exit_rcu+0x109/0x170 kernel/softirq.c:723 CPU: 0 UID: 0 PID: 6034 Comm: kworker/0:4 Not tainted syzkaller #0 PREEMPT(full) Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 Workqueue: events fqdir_free_fn RIP: 0010:csd_lock_wait kernel/smp.c:342 [inline] RIP: 0010:smp_call_function_single+0x1fb/0x6b0 kernel/smp.c:687 Code: 24 ce 00 00 00 48 89 de e8 82 fa ff ff 41 89 c5 0f 1f 44 00 00 e8 95 f8 0b 00 eb 07 e8 8e f8 0b 00 f3 90 8b 9c 24 c8 00 00 00 <31> ff 83 e3 01 89 de e8 b9 f3 0b 00 85 db 75 e2 e8 70 f8 0b 00 e8 RSP: 0018:ffffc900036a7a40 EFLAGS: 00000293 RAX: 0000000000000000 RBX: 0000000000000011 RCX: ffffffff81b104d7 RDX: ffff8880795b5ac0 RSI: ffffffff81b104c2 RDI: 0000000000000005 RBP: ffffc900036a7b88 R08: 0000000000000005 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000001 R12: 1ffff920006d4f50 R13: 0000000000000000 R14: 0000000000000001 R15: dffffc0000000000 FS: 0000000000000000(0000) GS:ffff888124a09000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055cfa47db048 CR3: 000000007787f000 CR4: 0000000000350ef0 Call Trace: rcu_barrier kernel/rcu/tree.c:3872 [inline] rcu_barrier+0x28d/0x6e0 kernel/rcu/tree.c:3809 fqdir_free_fn+0x32/0x130 net/ipv4/inet_fragment.c:166 process_one_work+0x9cf/0x1b70 kernel/workqueue.c:3263 process_scheduled_works kernel/workqueue.c:3346 [inline] worker_thread+0x6c8/0xf10 kernel/workqueue.c:3427 kthread+0x3c5/0x780 kernel/kthread.c:463 ret_from_fork+0x675/0x7d0 arch/x86/kernel/process.c:158 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 UID: 0 PID: 6038 Comm: rm Not tainted syzkaller #0 PREEMPT(full) Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 RIP: 0010:debug_object_deactivate+0xdd/0x3a0 lib/debugobjects.c:896 Code: 00 00 00 00 00 fc ff df 49 01 c7 49 c7 07 00 00 00 00 49 c7 47 08 00 00 00 00 48 8b 84 24 a8 00 00 00 65 48 2b 05 fb d1 f6 0e <0f> 85 41 02 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 e5 RSP: 0000:ffffc90000a08d50 EFLAGS: 00000046 RAX: 0000000000000000 RBX: ffff888076f0a460 RCX: 0000000000000000 RDX: 0000000000010002 RSI: 0000000000000004 RDI: 0000000000000001 RBP: ffffc90000a08e30 R08: 0000000000000000 R09: fffffbfff3596ce3 R10: ffffffff9acb671b R11: 0000000000000001 R12: 0000000000000001 R13: dffffc0000000000 R14: ffff888030176340 R15: fffff520001411ac FS: 0000000000000000(0000) GS:ffff888124b09000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f8c21cc4048 CR3: 000000005c19f000 CR4: 0000000000350ef0 Call Trace: debug_hrtimer_deactivate kernel/time/hrtimer.c:443 [inline] debug_deactivate kernel/time/hrtimer.c:483 [inline] __run_hrtimer kernel/time/hrtimer.c:1745 [inline] __hrtimer_run_queues+0x46f/0xad0 kernel/time/hrtimer.c:1841 hrtimer_interrupt+0x397/0x8e0 kernel/time/hrtimer.c:1903 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1041 [inline] __sysvec_apic_timer_interrupt+0x10b/0x3f0 arch/x86/kernel/apic/apic.c:1058 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline] sysvec_apic_timer_interrupt+0x9f/0xc0 arch/x86/kernel/apic/apic.c:1052 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697 RIP: 0010:lock_is_held_type+0x107/0x150 kernel/locking/lockdep.c:5945 Code: 00 00 b8 ff ff ff ff 65 0f c1 05 fc 1a 43 08 83 f8 01 75 2d 9c 58 f6 c4 02 75 43 48 f7 04 24 00 02 00 00 74 01 fb 48 83 c4 08 <44> 89 e8 5b 5d 41 5c 41 5d 41 5e 41 5f e9 12 aa b1 f5 45 31 ed eb RSP: 0000:ffffc90003e4f8e0 EFLAGS: 00000292 RAX: 0000000000000046 RBX: ffff88802667a998 RCX: 0000000000000001 RDX: 0000000000000000 RSI: ffffffff8da03f99 RDI: ffffffff8bf07640 RBP: ffff888024286478 R08: 0000000000000005 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000001 R12: ffff888026679e40 R13: 0000000000000000 R14: 00000000ffffffff R15: 0000000000000002 lock_is_held include/linux/lockdep.h:249 [inline] xa_entry include/linux/xarray.h:1226 [inline] xas_reload+0x27f/0x4a0 include/linux/xarray.h:1624 filemap_get_entry+0x16e/0x3b0 mm/filemap.c:1915 __filemap_get_folio+0x59/0xc30 mm/filemap.c:1947 filemap_get_folio include/linux/pagemap.h:802 [inline] filemap_fault+0x1ff/0x29a0 mm/filemap.c:3468 __do_fault+0x10d/0x490 mm/memory.c:5280 do_cow_fault mm/memory.c:5728 [inline] do_fault mm/memory.c:5834 [inline] do_pte_missing+0x9e1/0x3ba0 mm/memory.c:4361 handle_pte_fault mm/memory.c:6177 [inline] __handle_mm_fault+0x1556/0x2aa0 mm/memory.c:6318 handle_mm_fault+0x589/0xd10 mm/memory.c:6487 do_user_addr_fault+0x60c/0x1370 arch/x86/mm/fault.c:1336 handle_page_fault arch/x86/mm/fault.c:1476 [inline] exc_page_fault+0x64/0xc0 arch/x86/mm/fault.c:1532 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:618 RIP: 0033:0x7f8c21fefff2 Code: 0f 60 c0 66 0f 61 c0 66 0f 70 c0 00 48 83 fa 10 72 76 48 83 fa 20 77 12 0f 11 44 17 f0 0f 11 07 c3 0f 11 47 e0 0f 11 47 f0 c3 <0f> 11 07 0f 11 47 10 48 01 d7 48 83 fa 40 76 e7 0f 11 40 20 0f 11 RSP: 002b:00007fff08b06708 EFLAGS: 00010202 RAX: 00007f8c21cc4048 RBX: 0000000000000004 RCX: 00007f8c21cc5088 RDX: 0000000000000fb8 RSI: 0000000000000000 RDI: 00007f8c21cc4048 RBP: 00007fff08b06a90 R08: 00007f8c21cc4048 R09: 0000000000000003 R10: 0000000000000812 R11: 00007fff08b06b78 R12: 00007fff08b067b8 R13: 00007f8c21cc60c0 R14: 00007fff08b06b30 R15: 00007f8c21cc5000