watchdog: BUG: soft lockup - CPU#0 stuck for 431s! [kworker/0:4:3700]
Modules linked in:
CPU: 0 UID: 0 PID: 3700 Comm: kworker/0:4 Not tainted syzkaller #0 PREEMPT 
Hardware name: ARM-Versatile Express
Workqueue: events bpf_prog_free_deferred
PC is at __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:160 [inline]
PC is at _raw_spin_unlock_irq+0x28/0x54 kernel/locking/spinlock.c:202
LR is at tmigr_handle_remote_cpu kernel/time/timer_migration.c:1038 [inline]
LR is at tmigr_handle_remote_up+0x268/0x4b0 kernel/time/timer_migration.c:1074
pc : [<81abbd3c>]    lr : [<80346ef4>]    psr: 60000113
sp : df801e08  ip : df801e18  fp : df801e14
r10: 00000001  r9 : 0000001d  r8 : 86770a80
r7 : ddddb488  r6 : df801ee0  r5 : 830bf3b0  r4 : 830bf380
r3 : 00001fff  r2 : 00000101  r1 : 830bf3b0  r0 : ddddb488
Flags: nZCv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment user
Control: 30c5387d  Table: 85f8a100  DAC: fffffffd
Call trace: frame pointer underflow
[<81abbd14>] (_raw_spin_unlock_irq) from [<80346ef4>] (tmigr_handle_remote_cpu kernel/time/timer_migration.c:1038 [inline])
[<81abbd14>] (_raw_spin_unlock_irq) from [<80346ef4>] (tmigr_handle_remote_up+0x268/0x4b0 kernel/time/timer_migration.c:1074)
[<80346c8c>] (tmigr_handle_remote_up) from [<803451a4>] (__walk_groups_from+0x3c/0xe4 kernel/time/timer_migration.c:566)
 r10:853f0c00 r9:8280c820 r8:80346c8c r7:df801ee0 r6:830bf380 r5:00000002
 r4:830bf380
[<80345168>] (__walk_groups_from) from [<8034753c>] (__walk_groups kernel/time/timer_migration.c:583 [inline])
[<80345168>] (__walk_groups_from) from [<8034753c>] (tmigr_handle_remote+0xe8/0x108 kernel/time/timer_migration.c:1133)
 r9:82804d80 r8:00000100 r7:00000001 r6:00000002 r5:00000002 r4:dddc7488
[<80347454>] (tmigr_handle_remote) from [<80327700>] (run_timer_softirq+0x30/0x34 kernel/time/timer.c:2408)
 r4:82804084
[<803276d0>] (run_timer_softirq) from [<8025b65c>] (handle_softirqs+0x140/0x458 kernel/softirq.c:622)
[<8025b51c>] (handle_softirqs) from [<8025bad0>] (__do_softirq kernel/softirq.c:656 [inline])
[<8025b51c>] (handle_softirqs) from [<8025bad0>] (invoke_softirq kernel/softirq.c:496 [inline])
[<8025b51c>] (handle_softirqs) from [<8025bad0>] (__irq_exit_rcu+0x110/0x1d0 kernel/softirq.c:723)
 r10:8280c9f8 r9:853f0c00 r8:00000000 r7:dfcbdd20 r6:82443f98 r5:8247f0cc
 r4:853f0c00
[<8025b9c0>] (__irq_exit_rcu) from [<8025be48>] (irq_exit+0x10/0x18 kernel/softirq.c:751)
 r5:8247f0cc r4:826c3a9c
[<8025be38>] (irq_exit) from [<81aad964>] (generic_handle_arch_irq+0x7c/0x80 kernel/irq/handle.c:295)
[<81aad8e8>] (generic_handle_arch_irq) from [<81a7d904>] (call_with_stack+0x1c/0x20 arch/arm/lib/call_with_stack.S:40)
 r9:853f0c00 r8:7f00b000 r7:dfcbdd54 r6:ffffffff r5:80000013 r4:80239030
[<81a7d8e8>] (call_with_stack) from [<80200bec>] (__irq_svc+0x8c/0xbc arch/arm/kernel/entry-armv.S:228)
Exception stack(0xdfcbdd20 to 0xdfcbdd68)
dd20: e174d000 eaccf000 00000001 80239018 7f00b000 00000001 82ace204 82acd5e0
dd40: 7f00b000 eaccf000 8280c9f8 dfcbdd9c dfcbdda0 dfcbdd70 8022fe10 80239030
dd60: 80000013 ffffffff
[<8022fdac>] (flush_tlb_kernel_range) from [<804f3de4>] (__purge_vmap_area_lazy+0x284/0x458 mm/vmalloc.c:2369)
 r4:82ace224
[<804f3b60>] (__purge_vmap_area_lazy) from [<804f419c>] (_vm_unmap_aliases+0x1e4/0x240 mm/vmalloc.c:2983)
 r10:00000000 r9:00000000 r8:00000000 r7:ffffffff r6:dfcbddc0 r5:dfcbde08
 r4:dfcbddc0
[<804f3fb8>] (_vm_unmap_aliases) from [<804f7e08>] (vm_reset_perms mm/vmalloc.c:3375 [inline])
[<804f3fb8>] (_vm_unmap_aliases) from [<804f7e08>] (vfree+0x16c/0x210 mm/vmalloc.c:3454)
 r10:83016170 r9:00000001 r8:00000000 r7:ffffffff r6:00000000 r5:85f8ad80
 r4:00000000
[<804f7c9c>] (vfree) from [<80563c0c>] (execmem_free+0x30/0x50 mm/execmem.c:503)
 r9:83018405 r8:853f0c00 r7:00000000 r6:83018400 r5:00001000 r4:7f00b000
[<80563bdc>] (execmem_free) from [<803cb1bc>] (bpf_jit_free_exec+0x10/0x14 kernel/bpf/core.c:1052)
 r5:00001000 r4:eac89000
[<803cb1ac>] (bpf_jit_free_exec) from [<803cb59c>] (bpf_jit_binary_free kernel/bpf/core.c:1098 [inline])
[<803cb1ac>] (bpf_jit_free_exec) from [<803cb59c>] (bpf_jit_free+0x68/0xe4 kernel/bpf/core.c:1221)
[<803cb534>] (bpf_jit_free) from [<803cc6c4>] (bpf_prog_free_deferred+0x140/0x158 kernel/bpf/core.c:2919)
 r5:85d9cf8c r4:85f11980
[<803cc584>] (bpf_prog_free_deferred) from [<80275db8>] (process_one_work+0x1b4/0x4f4 kernel/workqueue.c:3257)
 r7:dddcfb40 r6:83018400 r5:85d9cf8c r4:85f11980
[<80275c04>] (process_one_work) from [<802764f8>] (process_scheduled_works kernel/workqueue.c:3340 [inline])
[<80275c04>] (process_one_work) from [<802764f8>] (worker_thread+0x1fc/0x3d8 kernel/workqueue.c:3421)
 r10:61c88647 r9:853f0c00 r8:85f119ac r7:82804d80 r6:dddcfb40 r5:dddcfb60
 r4:85f11980
[<802762fc>] (worker_thread) from [<8027f6fc>] (kthread+0x12c/0x280 kernel/kthread.c:463)
 r10:00000000 r9:85f11980 r8:802762fc r7:df841e60 r6:85f46300 r5:853f0c00
 r4:00000001
[<8027f5d0>] (kthread) from [<80200114>] (ret_from_fork+0x14/0x20 arch/arm/kernel/entry-common.S:137)
Exception stack(0xdfcbdfb0 to 0xdfcbdff8)
dfa0:                                     00000000 00000000 00000000 00000000
dfc0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000
dfe0: 00000000 00000000 00000000 00000000 00000013 00000000
 r10:00000000 r9:00000000 r8:00000000 r7:00000000 r6:00000000 r5:8027f5d0
 r4:85f191c0
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT 
Hardware name: ARM-Versatile Express
PC is at arch_spin_lock arch/arm/include/asm/spinlock.h:74 [inline]
PC is at do_raw_spin_lock include/linux/spinlock.h:187 [inline]
PC is at __raw_spin_lock include/linux/spinlock_api_smp.h:134 [inline]
PC is at _raw_spin_lock+0x40/0x58 kernel/locking/spinlock.c:154
LR is at __raw_spin_lock include/linux/spinlock_api_smp.h:132 [inline]
LR is at _raw_spin_lock+0x18/0x58 kernel/locking/spinlock.c:154
pc : [<81abbef4>]    lr : [<81abbecc>]    psr: 80000113
sp : df805d68  ip : df805d68  fp : df805d7c
r10: 81c05450  r9 : 83296440  r8 : 83ed6a88
r7 : 83296568  r6 : 00000001  r5 : 00000001  r4 : 83296568
r3 : 00007e07  r2 : 00007e08  r1 : 00000000  r0 : 00000001
Flags: Nzcv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment none
Control: 30c5387d  Table: 84c9a340  DAC: 00000000
Call trace: frame pointer underflow
[<81abbeb4>] (_raw_spin_lock) from [<809c7a2c>] (class_raw_spinlock_constructor include/linux/spinlock.h:535 [inline])
[<81abbeb4>] (_raw_spin_lock) from [<809c7a2c>] (gpio_mmio_set+0x44/0x80 drivers/gpio/gpio-mmio.c:234)
 r5:00000001 r4:83296440
[<809c79e8>] (gpio_mmio_set) from [<809b81e8>] (gpiochip_set+0x1c/0x44 drivers/gpio/gpiolib.c:2919)
 r7:00000001 r6:00000000 r5:00000000 r4:8392fb40
[<809b81cc>] (gpiochip_set) from [<809baab0>] (gpiod_set_raw_value_commit+0x78/0x218 drivers/gpio/gpiolib.c:3662)
[<809baa38>] (gpiod_set_raw_value_commit) from [<809bc350>] (gpiod_set_value_nocheck+0x44/0x58 drivers/gpio/gpiolib.c:3881)
 r10:81c05450 r9:df805ebc r8:00000102 r7:ffffbc54 r6:00000007 r5:00000001
 r4:8392fb40
[<809bc30c>] (gpiod_set_value_nocheck) from [<809bc3a0>] (gpiod_set_value+0x3c/0x88 drivers/gpio/gpiolib.c:3903)
[<809bc364>] (gpiod_set_value) from [<809ccb3c>] (gpio_led_set+0x5c/0x60 drivers/leds/leds-gpio.c:57)
 r5:830fc044 r4:830fc044
[<809ccae0>] (gpio_led_set) from [<809ca3d4>] (__led_set_brightness drivers/leds/led-core.c:52 [inline])
[<809ccae0>] (gpio_led_set) from [<809ca3d4>] (led_set_brightness_nopm drivers/leds/led-core.c:335 [inline])
[<809ccae0>] (gpio_led_set) from [<809ca3d4>] (led_set_brightness_nosleep+0x38/0x44 drivers/leds/led-core.c:369)
 r5:830fc044 r4:838d224c
[<809ca39c>] (led_set_brightness_nosleep) from [<809cd438>] (led_heartbeat_function+0x84/0x144 drivers/leds/trigger/ledtrig-heartbeat.c:90)
[<809cd3b4>] (led_heartbeat_function) from [<80327070>] (call_timer_fn+0x30/0x220 kernel/time/timer.c:1748)
 r7:ffffbc54 r6:809cd3b4 r5:838d224c r4:83216000
[<80327040>] (call_timer_fn) from [<80327524>] (expire_timers kernel/time/timer.c:1799 [inline])
[<80327040>] (call_timer_fn) from [<80327524>] (__run_timers+0x2c4/0x3f8 kernel/time/timer.c:2373)
 r9:df805ebc r8:ffffbc54 r7:00000000 r6:809cd3b4 r5:dddd9f00 r4:838d224c
[<80327260>] (__run_timers) from [<803276c0>] (__run_timer_base kernel/time/timer.c:2385 [inline])
[<80327260>] (__run_timers) from [<803276c0>] (__run_timer_base kernel/time/timer.c:2377 [inline])
[<80327260>] (__run_timers) from [<803276c0>] (run_timer_base+0x68/0x78 kernel/time/timer.c:2394)
 r10:83216000 r9:82804d80 r8:00000102 r7:00000001 r6:00000082 r5:00000002
 r4:dddd9f00
[<80327658>] (run_timer_base) from [<803276ec>] (run_timer_softirq+0x1c/0x34 kernel/time/timer.c:2404)
 r4:82804084
[<803276d0>] (run_timer_softirq) from [<8025b65c>] (handle_softirqs+0x140/0x458 kernel/softirq.c:622)
[<8025b51c>] (handle_softirqs) from [<8025bad0>] (__do_softirq kernel/softirq.c:656 [inline])
[<8025b51c>] (handle_softirqs) from [<8025bad0>] (invoke_softirq kernel/softirq.c:496 [inline])
[<8025b51c>] (handle_softirqs) from [<8025bad0>] (__irq_exit_rcu+0x110/0x1d0 kernel/softirq.c:723)
 r10:00000000 r9:83216000 r8:00000000 r7:df865e20 r6:82443f98 r5:8247f0cc
 r4:83216000
[<8025b9c0>] (__irq_exit_rcu) from [<8025be48>] (irq_exit+0x10/0x18 kernel/softirq.c:751)
 r5:8247f0cc r4:826c3a9c
[<8025be38>] (irq_exit) from [<81aad964>] (generic_handle_arch_irq+0x7c/0x80 kernel/irq/handle.c:295)
[<81aad8e8>] (generic_handle_arch_irq) from [<81a7d904>] (call_with_stack+0x1c/0x20 arch/arm/lib/call_with_stack.S:40)
 r9:83216000 r8:83ed6a88 r7:df865e54 r6:ffffffff r5:20000013 r4:809c820c
[<81a7d8e8>] (call_with_stack) from [<80200bec>] (__irq_svc+0x8c/0xbc arch/arm/kernel/entry-armv.S:228)
Exception stack(0xdf865e20 to 0xdf865e68)
5e20: e0161008 0000000c 00007e07 809c820c 83296440 00000008 00000001 83296568
5e40: 83ed6a88 83296440 00000000 df865e8c df865e58 df865e70 809c7a4c 809c820c
5e60: 20000013 ffffffff
[<809c79e8>] (gpio_mmio_set) from [<809b81e8>] (gpiochip_set+0x1c/0x44 drivers/gpio/gpiolib.c:2919)
 r7:00000001 r6:00000000 r5:00000003 r4:8392fb7c
[<809b81cc>] (gpiochip_set) from [<809baab0>] (gpiod_set_raw_value_commit+0x78/0x218 drivers/gpio/gpiolib.c:3662)
[<809baa38>] (gpiod_set_raw_value_commit) from [<809bc350>] (gpiod_set_value_nocheck+0x44/0x58 drivers/gpio/gpiolib.c:3881)
 r10:00000000 r9:00000000 r8:00000001 r7:ddde24c0 r6:8384f858 r5:00000001
 r4:8392fb7c
[<809bc30c>] (gpiod_set_value_nocheck) from [<809bc3a0>] (gpiod_set_value+0x3c/0x88 drivers/gpio/gpiolib.c:3903)
[<809bc364>] (gpiod_set_value) from [<809ccb3c>] (gpio_led_set+0x5c/0x60 drivers/leds/leds-gpio.c:57)
 r5:000000ff r4:830fc314
[<809ccae0>] (gpio_led_set) from [<809ca464>] (__led_set_brightness drivers/leds/led-core.c:52 [inline])
[<809ccae0>] (gpio_led_set) from [<809ca464>] (led_set_brightness_nopm drivers/leds/led-core.c:335 [inline])
[<809ccae0>] (gpio_led_set) from [<809ca464>] (led_set_brightness_nosleep drivers/leds/led-core.c:369 [inline])
[<809ccae0>] (gpio_led_set) from [<809ca464>] (led_set_brightness+0x84/0x90 drivers/leds/led-core.c:328)
 r5:000000ff r4:830fc314
[<809ca3e0>] (led_set_brightness) from [<809cbfe4>] (led_trigger_event drivers/leds/led-triggers.c:420 [inline])
[<809ca3e0>] (led_set_brightness) from [<809cbfe4>] (led_trigger_event+0x40/0x58 drivers/leds/led-triggers.c:408)
 r5:000000ff r4:830fc314
[<809cbfa4>] (led_trigger_event) from [<809cd640>] (ledtrig_cpu+0xac/0xf4 drivers/leds/trigger/ledtrig-cpu.c:86)
 r7:ddde24c0 r6:00000002 r5:82b15cd8 r4:000001fd
[<809cd594>] (ledtrig_cpu) from [<80227a38>] (arch_cpu_idle_exit+0x14/0x18 arch/arm/kernel/process.c:98)
 r9:00000000 r8:00000001 r7:8280c710 r6:83216000 r5:8280c6d0 r4:00000001
[<80227a24>] (arch_cpu_idle_exit) from [<802b168c>] (do_idle+0x5c/0x2d8 kernel/sched/idle.c:334)
[<802b1630>] (do_idle) from [<802b1c38>] (cpu_startup_entry+0x30/0x34 kernel/sched/idle.c:430)
 r10:00000000 r9:414fc0f0 r8:80003000 r7:82a7b4a4 r6:83216000 r5:00000001
 r4:00000092
[<802b1c08>] (cpu_startup_entry) from [<8022f360>] (secondary_start_kernel+0x128/0x194 arch/arm/kernel/smp.c:478)
[<8022f238>] (secondary_start_kernel) from [<80220094>] (__enable_mmu+0x0/0xc arch/arm/kernel/head.S:446)
 r7:82a7b4a4 r6:30c0387d r5:00000000 r4:830b7bc0