watchdog: BUG: soft lockup - CPU#1 stuck for 23s! [syz.2.446:7105] Modules linked in: irq event stamp: 1598 hardirqs last enabled at (1597): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:178 [inline] hardirqs last enabled at (1597): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:198 hardirqs last disabled at (1598): [] __el1_irq arch/arm64/kernel/entry-common.c:506 [inline] hardirqs last disabled at (1598): [] el1_interrupt+0x28/0x60 arch/arm64/kernel/entry-common.c:522 softirqs last enabled at (1588): [] softirq_handle_end kernel/softirq.c:468 [inline] softirqs last enabled at (1588): [] handle_softirqs+0xbc4/0xd34 kernel/softirq.c:650 softirqs last disabled at (1583): [] __do_softirq+0x14/0x20 kernel/softirq.c:656 CPU: 1 UID: 0 PID: 7105 Comm: syz.2.446 Tainted: G L syzkaller #0 PREEMPT Tainted: [L]=SOFTLOCKUP Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 pstate: 83400005 (Nzcv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) pc : __sanitizer_cov_trace_pc+0x58/0x5c kernel/kcov.c:235 lr : unwind_find_stack+0x134/0x150 arch/arm64/include/asm/stacktrace/common.h:79 sp : ffff800099cf7410 x29: ffff800099cf7410 x28: ffff80008897c000 x27: ffff0000dc0a3a00 x26: 0000000000000008 x25: ffff800099cf74a8 x24: ffff800099cf8000 x23: ffff800099cf7e00 x22: ffff800099cf7458 x21: 0000000000000010 x20: ffff800099cf7468 x19: ffff800099cf7df0 x18: 0000000064af1a29 x17: 00000000db7d691a x16: 00000000cd766b37 x15: 0000000000000000 x14: 00005017e7987c00 x13: 0000000000000001 x12: 0000000000000000 x11: ffff80008a3fed08 x10: 0000000000080000 x9 : 00000000000004d6 x8 : ffff80009ebf4000 x7 : 0000000000000000 x6 : 000000000000003f x5 : 0000000000000040 x4 : 0000000000000008 x3 : ffff800080151058 x2 : ffff800099cf8000 x1 : ffff0000dc0a3a00 x0 : 0000000000000001 Call trace: __sanitizer_cov_trace_pc+0x58/0x5c kernel/kcov.c:235 (P) kunwind_next_frame_record arch/arm64/kernel/stacktrace.c:227 [inline] kunwind_next arch/arm64/kernel/stacktrace.c:266 [inline] do_kunwind arch/arm64/kernel/stacktrace.c:295 [inline] kunwind_stack_walk arch/arm64/kernel/stacktrace.c:366 [inline] arch_stack_walk+0x234/0x328 arch/arm64/kernel/stacktrace.c:390 stack_trace_save+0x9c/0xf0 kernel/stacktrace.c:122 kasan_save_stack mm/kasan/common.c:57 [inline] kasan_save_track+0x40/0x78 mm/kasan/common.c:78 kasan_save_alloc_info+0x44/0x54 mm/kasan/generic.c:570 poison_kmalloc_redzone mm/kasan/common.c:398 [inline] __kasan_kmalloc+0x9c/0xb4 mm/kasan/common.c:415 kasan_kmalloc include/linux/kasan.h:263 [inline] __kmalloc_cache_node_noprof+0x32c/0x6ac mm/slub.c:5432 kmalloc_node_noprof include/linux/slab.h:1077 [inline] alloc_cpumask_var_node+0x90/0x138 lib/cpumask.c:30 alloc_cpumask_var include/linux/cpumask.h:1052 [inline] zalloc_cpumask_var include/linux/cpumask.h:1058 [inline] clock_was_set+0xa4/0x6b0 kernel/time/hrtimer.c:982 do_adjtimex+0x208/0x2f0 kernel/time/timekeeping.c:2924 posix_clock_realtime_adj+0x20/0x30 kernel/time/posix-timers.c:207 do_clock_adjtime+0x120/0x140 kernel/time/posix-timers.c:1154 __do_sys_clock_adjtime kernel/time/posix-timers.c:1166 [inline] __se_sys_clock_adjtime kernel/time/posix-timers.c:1157 [inline] __arm64_sys_clock_adjtime+0x17c/0x2ac kernel/time/posix-timers.c:1157 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x244 arch/arm64/kernel/syscall.c:49 el0_svc_common+0xe8/0x23c arch/arm64/kernel/syscall.c:121 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:140 el0_svc+0x64/0x260 arch/arm64/kernel/entry-common.c:736 el0t_64_sync_handler+0x48/0x148 arch/arm64/kernel/entry-common.c:755 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:594 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 UID: 0 PID: 1909 Comm: kworker/u8:8 Tainted: G L syzkaller #0 PREEMPT Tainted: [L]=SOFTLOCKUP Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 Workqueue: events_unbound toggle_allocation_gate pstate: 83400005 (Nzcv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) pc : csd_lock_wait kernel/smp.c:342 [inline] pc : smp_call_function_many_cond+0xfa4/0x1614 kernel/smp.c:892 lr : csd_lock_wait kernel/smp.c:342 [inline] lr : smp_call_function_many_cond+0xfbc/0x1614 kernel/smp.c:892 sp : ffff8000968c7780 x29: ffff8000968c7890 x28: dfff800000000000 x27: ffff0001ae057580 x26: 0000000000000011 x25: 0000000000000001 x24: ffff80008897f680 x23: ffffffffffffffff x22: 1fffe00035c0aeb0 x21: 1fffe00035c0aeb1 x20: ffff0001ae080ea8 x19: ffff0001ae057588 x18: 00000000a4ac3fd1 x17: 00000000f4e838eb x16: dfff800000000000 x15: 00000000d80329ea x14: 00000000ffff8000 x13: 0000000000000001 x12: 0000000000000000 x11: 0000000000000000 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : 0000000000000011 x7 : 0000000000000000 x6 : 0000000000000000 x5 : 0000000000000001 x4 : 0000000000000000 x3 : ffff8000805a3f94 x2 : 0000000000000000 x1 : ffff0000cb3d1d00 x0 : 0000000000000000 Call trace: __cmpwait_case_32 arch/arm64/include/asm/cmpxchg.h:233 [inline] (P) __cmpwait arch/arm64/include/asm/cmpxchg.h:259 [inline] (P) csd_lock_wait kernel/smp.c:342 [inline] (P) smp_call_function_many_cond+0xfa4/0x1614 kernel/smp.c:892 (P) smp_call_function_many kernel/smp.c:915 [inline] smp_call_function+0x58/0xbc kernel/smp.c:935 kick_all_cpus_sync+0x28/0x34 kernel/smp.c:1081 arch_jump_label_transform_apply+0x14/0x20 arch/arm64/kernel/jump_label.c:34 __jump_label_update+0x314/0x33c kernel/jump_label.c:521 jump_label_update+0x41c/0x4a8 kernel/jump_label.c:910 static_key_enable_cpuslocked+0x11c/0x220 kernel/jump_label.c:210 static_key_enable+0x24/0x38 kernel/jump_label.c:223 toggle_allocation_gate+0xb8/0x28c mm/kfence/core.c:906 process_one_work kernel/workqueue.c:3314 [inline] process_scheduled_works+0x79c/0x1098 kernel/workqueue.c:3397 worker_thread+0x754/0xba0 kernel/workqueue.c:3478 kthread+0x2f8/0x3c8 kernel/kthread.c:436 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:842