rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5971/1:b..l P7066/1:b..l P5504/1:b..l P5505/1:b..l P7072/1:b..l P5210/1:b..l P16021/1:b..l
rcu: 	(detected by 0, t=10502 jiffies, g=291089, q=845 ncpus=1)
task:kworker/u10:3   state:R  running task     stack:22280 pid:16021 tgid:16021 ppid:2      task_flags:0x24248160 flags:0x00080000
Workqueue: writeback wb_workfn (flush-8:0)
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5387 [inline]
 __schedule+0x10e9/0x6820 kernel/sched/core.c:7188
 preempt_schedule_notrace+0x5f/0xd0 kernel/sched/core.c:7462
 preempt_schedule_notrace_thunk+0x16/0x30 arch/x86/entry/thunk.S:13
 rcu_is_watching+0x8e/0xc0 kernel/rcu/tree.c:753
 trace_lock_acquire include/trace/events/lock.h:24 [inline]
 lock_acquire+0x2f9/0x370 kernel/locking/lockdep.c:5831
 rcu_lock_acquire include/linux/rcupdate.h:300 [inline]
 rcu_read_lock include/linux/rcupdate.h:838 [inline]
 percpu_ref_put_many include/linux/percpu-refcount.h:330 [inline]
 percpu_ref_put include/linux/percpu-refcount.h:351 [inline]
 blk_mq_dispatch_list+0x56c/0x1360 block/blk-mq.c:2953
 blk_mq_flush_plug_list block/blk-mq.c:2997 [inline]
 blk_mq_flush_plug_list+0x130/0x600 block/blk-mq.c:2969
 __blk_flush_plug+0x2c4/0x4b0 block/blk-core.c:1230
 blk_flush_plug include/linux/blkdev.h:1214 [inline]
 io_schedule_prepare kernel/sched/core.c:8078 [inline]
 io_schedule+0x85/0xf0 kernel/sched/core.c:8108
 rq_qos_wait+0x22d/0x330 block/blk-rq-qos.c:307
 __wbt_wait block/blk-wbt.c:598 [inline]
 wbt_wait+0x18a/0x310 block/blk-wbt.c:658
 __rq_qos_throttle+0x56/0xa0 block/blk-rq-qos.c:66
 rq_qos_throttle block/blk-rq-qos.h:164 [inline]
 rq_qos_throttle block/blk-rq-qos.h:160 [inline]
 blk_mq_get_new_requests block/blk-mq.c:3063 [inline]
 blk_mq_submit_bio+0xb67/0x2dd0 block/blk-mq.c:3216
 __submit_bio+0x1e1/0x6c0 block/blk-core.c:635
 __submit_bio_noacct_mq block/blk-core.c:722 [inline]
 submit_bio_noacct_nocheck+0x543/0xbf0 block/blk-core.c:753
 submit_bio_noacct+0xd18/0x2000 block/blk-core.c:884
 blk_crypto_submit_bio include/linux/blk-crypto.h:203 [inline]
 ext4_io_submit+0xf7/0x1a0 fs/ext4/page-io.c:404
 io_submit_add_bh fs/ext4/page-io.c:461 [inline]
 ext4_bio_write_folio+0x76a/0x1eb0 fs/ext4/page-io.c:609
 mpage_process_page_bufs+0x473/0x8d0 fs/ext4/inode.c:2214
 mpage_prepare_extent_to_map+0xb50/0x1920 fs/ext4/inode.c:2753
 ext4_do_writepages+0x9fe/0x3f20 fs/ext4/inode.c:2894
 ext4_writepages+0x347/0x790 fs/ext4/inode.c:3042
 do_writepages+0x278/0x600 mm/page-writeback.c:2575
 __writeback_single_inode+0x164/0x1350 fs/fs-writeback.c:1762
 writeback_sb_inodes+0x766/0x1c60 fs/fs-writeback.c:2054
 __writeback_inodes_wb+0xf8/0x2d0 fs/fs-writeback.c:2130
 wb_writeback+0x720/0xb90 fs/fs-writeback.c:2241
 wb_check_background_flush fs/fs-writeback.c:2311 [inline]
 wb_do_writeback fs/fs-writeback.c:2399 [inline]
 wb_workfn+0x756/0xc00 fs/fs-writeback.c:2426
 process_one_work+0xa0e/0x1980 kernel/workqueue.c:3302
 process_scheduled_works kernel/workqueue.c:3385 [inline]
 worker_thread+0x5ef/0xe50 kernel/workqueue.c:3466
 kthread+0x370/0x450 kernel/kthread.c:436
 ret_from_fork+0x72b/0xd50 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
task:udevd           state:R  running task     stack:24248 pid:5210  tgid:5210  ppid:1      task_flags:0x400140 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5387 [inline]
 __schedule+0x10e9/0x6820 kernel/sched/core.c:7188
 preempt_schedule_irq+0x50/0x90 kernel/sched/core.c:7512
 irqentry_exit_to_kernel_mode_preempt include/linux/irq-entry-common.h:476 [inline]
 irqentry_exit_to_kernel_mode include/linux/irq-entry-common.h:547 [inline]
 irqentry_exit+0x1fe/0x790 kernel/entry/common.c:164
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:unwind_next_frame+0x149a/0x2090 arch/x86/kernel/unwind_orc.c:532
Code: 34 10 48 8d 41 01 48 89 c7 48 c1 ef 03 0f b6 14 17 48 89 cf 83 e7 07 40 38 fe 40 0f 9e c7 40 84 f6 40 0f 95 c6 40 84 f7 75 17 <83> e0 07 38 c2 40 0f 9e c6 84 d2 0f 95 c0 40 84 c6 0f 84 57 fe ff
RSP: 0018:ffffc900030d75a0 EFLAGS: 00000246
RAX: ffffffff918a5197 RBX: 0000000000000001 RCX: ffffffff918a5196
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
RBP: ffffc900030d7658 R08: ffffffff918a519a R09: 0000000000000007
R10: 0000000000000200 R11: 0000000000017557 R12: ffffc900030d7660
R13: ffffc900030d7610 R14: 0000000000000003 R15: ffffc900030d7968
 arch_stack_walk+0x94/0xf0 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x8e/0xc0 kernel/stacktrace.c:122
 save_stack+0x162/0x1e0 mm/page_owner.c:165
 __reset_page_owner+0x84/0x190 mm/page_owner.c:320
 reset_page_owner include/linux/page_owner.h:25 [inline]
 __free_pages_prepare mm/page_alloc.c:1402 [inline]
 __free_frozen_pages+0x747/0x1040 mm/page_alloc.c:2943
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x47/0xf0 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x1a0/0x1f0 mm/kasan/quarantine.c:286
 __kasan_kmalloc+0x8a/0xb0 mm/kasan/common.c:406
 kasan_kmalloc include/linux/kasan.h:263 [inline]
 __do_kmalloc_node mm/slub.c:5295 [inline]
 __kmalloc_noprof+0x301/0x850 mm/slub.c:5307
 kmalloc_noprof include/linux/slab.h:954 [inline]
 tomoyo_realpath_from_path+0xb6/0x690 security/tomoyo/realpath.c:251
 tomoyo_get_realpath security/tomoyo/file.c:151 [inline]
 tomoyo_path_perm+0x276/0x460 security/tomoyo/file.c:827
 security_inode_getattr+0x116/0x280 security/security.c:1895
 vfs_getattr fs/stat.c:259 [inline]
 vfs_statx_path fs/stat.c:299 [inline]
 vfs_statx+0x11f/0x3f0 fs/stat.c:356
 vfs_fstatat+0x77/0xe0 fs/stat.c:373
 __do_sys_newfstatat+0x9d/0x120 fs/stat.c:538
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x10b/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fd30cf11b0a
RSP: 002b:00007ffdde1f1c48 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
RAX: ffffffffffffffda RBX: 00005643c4b58420 RCX: 00007fd30cf11b0a
RDX: 00007ffdde1f1c50 RSI: 00005643c4b46ef3 RDI: 00000000ffffff9c
RBP: 00005643d4e26148 R08: 00063478c1c69200 R09: 0000000000000001
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
R13: 00007ffdde1f1c50 R14: 0000000000000000 R15: 00063478c1c69200
 </TASK>
task:syz.0.13459     state:R  running task     stack:27128 pid:7072  tgid:7072  ppid:27563  task_flags:0x40044c flags:0x00080002
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5387 [inline]
 __schedule+0x10e9/0x6820 kernel/sched/core.c:7188
 preempt_schedule_common+0x42/0xc0 kernel/sched/core.c:7369
 preempt_schedule_thunk+0x16/0x30 arch/x86/entry/thunk.S:12
 __raw_spin_unlock include/linux/spinlock_api_smp.h:169 [inline]
 _raw_spin_unlock+0x3e/0x50 kernel/locking/spinlock.c:190
 spin_unlock include/linux/spinlock.h:390 [inline]
 zap_pte_range mm/memory.c:1948 [inline]
 zap_pmd_range mm/memory.c:2004 [inline]
 zap_pud_range mm/memory.c:2032 [inline]
 zap_p4d_range mm/memory.c:2053 [inline]
 __zap_vma_range+0x1791/0x4bf0 mm/memory.c:2093
 unmap_vmas+0x299/0x5f0 mm/memory.c:2162
 exit_mmap+0x1ef/0xa10 mm/mmap.c:1300
 __mmput+0x12a/0x410 kernel/fork.c:1178
 mmput+0x67/0x80 kernel/fork.c:1201
 exit_mm kernel/exit.c:581 [inline]
 do_exit+0x833/0x2a60 kernel/exit.c:963
 do_group_exit+0xd5/0x2a0 kernel/exit.c:1117
 get_signal+0x1ec7/0x21e0 kernel/signal.c:3037
 arch_do_signal_or_restart+0x91/0x770 arch/x86/kernel/signal.c:337
 __exit_to_user_mode_loop kernel/entry/common.c:64 [inline]
 exit_to_user_mode_loop+0x86/0x4a0 kernel/entry/common.c:98
 __exit_to_user_mode_prepare include/linux/irq-entry-common.h:207 [inline]
 syscall_exit_to_user_mode_prepare include/linux/irq-entry-common.h:238 [inline]
 syscall_exit_to_user_mode include/linux/entry-common.h:328 [inline]
 do_syscall_64+0x6f2/0xf80 arch/x86/entry/syscall_64.c:100
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f346c59d609
RSP: 002b:00007ffe73122b28 EFLAGS: 00000206 ORIG_RAX: 00000000000001b3
RAX: fffffffffffffffc RBX: 00007f346c558ba0 RCX: 00007f346c59d609
RDX: 00007f346c558ba0 RSI: 0000000000000058 RDI: 00007ffe73122b80
RBP: 00007f346d4cb6c0 R08: 00007f346d4cb6c0 R09: 00007ffe73122c67
R10: 0000000000000008 R11: 0000000000000206 R12: ffffffffffffffe8
R13: 000000000000000b R14: 00007ffe73122b80 R15: 00007ffe73122c68
 </TASK>
task:dhcpcd          state:R  running task     stack:21432 pid:5505  tgid:5505  ppid:5504   task_flags:0x400140 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5387 [inline]
 __schedule+0x10e9/0x6820 kernel/sched/core.c:7188
 preempt_schedule_common+0x42/0xc0 kernel/sched/core.c:7369
 preempt_schedule_thunk+0x16/0x30 arch/x86/entry/thunk.S:12
 __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:179 [inline]
 _raw_spin_unlock_irqrestore+0x61/0x80 kernel/locking/spinlock.c:198
 sock_def_readable+0x154/0x610 net/core/sock.c:3614
 unix_dgram_sendmsg+0xc8f/0x1810 net/unix/af_unix.c:2287
 unix_seqpacket_sendmsg+0x12a/0x1d0 net/unix/af_unix.c:2532
 sock_sendmsg_nosec net/socket.c:787 [inline]
 __sock_sendmsg net/socket.c:802 [inline]
 sock_write_iter+0x524/0x5a0 net/socket.c:1254
 do_iter_readv_writev+0x6ee/0x920 fs/read_write.c:829
 vfs_writev+0x360/0xe10 fs/read_write.c:1059
 do_writev+0x28a/0x340 fs/read_write.c:1105
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x10b/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f60e1b84407
RSP: 002b:00007ffde427d1a0 EFLAGS: 00000202 ORIG_RAX: 0000000000000014
RAX: ffffffffffffffda RBX: 00007f60e1afa780 RCX: 00007f60e1b84407
RDX: 0000000000000005 RSI: 00007ffde427d200 RDI: 0000000000000011
RBP: 000055b8a777ba90 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffde429d620
R13: 0000000000000004 R14: 0000000000000148 R15: 00007ffde428d3f0
 </TASK>
task:dhcpcd          state:R  running task     stack:25440 pid:5504  tgid:5504  ppid:1      task_flags:0x400140 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5387 [inline]
 __schedule+0x10e9/0x6820 kernel/sched/core.c:7188
 preempt_schedule_common+0x42/0xc0 kernel/sched/core.c:7369
 preempt_schedule_thunk+0x16/0x30 arch/x86/entry/thunk.S:12
 __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:179 [inline]
 _raw_spin_unlock_irqrestore+0x61/0x80 kernel/locking/spinlock.c:198
 sock_def_readable+0x154/0x610 net/core/sock.c:3614
 unix_dgram_sendmsg+0xc8f/0x1810 net/unix/af_unix.c:2287
 unix_seqpacket_sendmsg+0x12a/0x1d0 net/unix/af_unix.c:2532
 sock_sendmsg_nosec net/socket.c:787 [inline]
 __sock_sendmsg net/socket.c:802 [inline]
 sock_write_iter+0x524/0x5a0 net/socket.c:1254
 do_iter_readv_writev+0x6ee/0x920 fs/read_write.c:829
 vfs_writev+0x360/0xe10 fs/read_write.c:1059
 do_writev+0x28a/0x340 fs/read_write.c:1105
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x10b/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f60e1b84407
RSP: 002b:00007ffde429d2c0 EFLAGS: 00000202 ORIG_RAX: 0000000000000014
RAX: ffffffffffffffda RBX: 00007f60e1afa780 RCX: 00007f60e1b84407
RDX: 0000000000000005 RSI: 00007ffde429d320 RDI: 000000000000000a
RBP: 000055b872bf6870 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000202 R12: 000055b8a775b050
R13: 000000000000012c R14: 0000000000004801 R15: 000055b8a7758844
 </TASK>
task:syz.1.13452     state:R  running task     stack:28072 pid:7066  tgid:7066  ppid:5975   task_flags:0x40004c flags:0x00480000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5387 [inline]
 __schedule+0x10e9/0x6820 kernel/sched/core.c:7188
 preempt_schedule_common+0x42/0xc0 kernel/sched/core.c:7369
 preempt_schedule_thunk+0x16/0x30 arch/x86/entry/thunk.S:12
 __raw_spin_unlock include/linux/spinlock_api_smp.h:169 [inline]
 _raw_spin_unlock+0x3e/0x50 kernel/locking/spinlock.c:190
 spin_unlock include/linux/spinlock.h:390 [inline]
 zap_pte_range mm/memory.c:1948 [inline]
 zap_pmd_range mm/memory.c:2004 [inline]
 zap_pud_range mm/memory.c:2032 [inline]
 zap_p4d_range mm/memory.c:2053 [inline]
 __zap_vma_range+0x1791/0x4bf0 mm/memory.c:2093
 unmap_vmas+0x299/0x5f0 mm/memory.c:2162
 exit_mmap+0x1ef/0xa10 mm/mmap.c:1300
 __mmput+0x12a/0x410 kernel/fork.c:1178
 mmput+0x67/0x80 kernel/fork.c:1201
 exit_mm kernel/exit.c:581 [inline]
 do_exit+0x833/0x2a60 kernel/exit.c:963
 __do_sys_exit kernel/exit.c:1084 [inline]
 __se_sys_exit kernel/exit.c:1082 [inline]
 __x64_sys_exit+0x42/0x50 kernel/exit.c:1082
 x64_sys_call+0x152e/0x1530 arch/x86/include/generated/asm/syscalls_64.h:61
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x10b/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f6d09d9c819
RSP: 002b:00007f6d0ac4cef8 EFLAGS: 00000246 ORIG_RAX: 000000000000003c
RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f6d09d9c819
RDX: 00007f6d0ac4d9c8 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007f6d09e32c91 R08: 0000000000000000 R09: 0000000000000058
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f6d0a016038 R14: 00007f6d0a015fa0 R15: 00007ffd826a5f28
 </TASK>
task:syz-executor    state:R  running task     stack:22360 pid:5971  tgid:5971  ppid:5967   task_flags:0x400140 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5387 [inline]
 __schedule+0x10e9/0x6820 kernel/sched/core.c:7188
 preempt_schedule_notrace+0x5f/0xd0 kernel/sched/core.c:7462
 preempt_schedule_notrace_thunk+0x16/0x30 arch/x86/entry/thunk.S:13
 rcu_is_watching+0x8e/0xc0 kernel/rcu/tree.c:753
 trace_lock_release include/trace/events/lock.h:69 [inline]
 lock_release+0x245/0x310 kernel/locking/lockdep.c:5879
 rcu_lock_release include/linux/rcupdate.h:310 [inline]
 rcu_read_unlock include/linux/rcupdate.h:869 [inline]
 class_rcu_destructor include/linux/rcupdate.h:1181 [inline]
 is_module_text_address+0x14d/0x220 kernel/module/main.c:3921
 kernel_text_address kernel/extable.c:119 [inline]
 kernel_text_address+0x81/0x100 kernel/extable.c:94
 __kernel_text_address+0xd/0x30 kernel/extable.c:79
 unwind_get_return_address+0x59/0xa0 arch/x86/kernel/unwind_orc.c:385
 arch_stack_walk+0xa6/0xf0 arch/x86/kernel/stacktrace.c:26
 stack_trace_save+0x8e/0xc0 kernel/stacktrace.c:122
 kasan_save_stack+0x30/0x50 mm/kasan/common.c:57
 kasan_save_track+0x14/0x30 mm/kasan/common.c:78
 unpoison_slab_object mm/kasan/common.c:340 [inline]
 __kasan_slab_alloc+0x89/0x90 mm/kasan/common.c:366
 kasan_slab_alloc include/linux/kasan.h:253 [inline]
 slab_post_alloc_hook mm/slub.c:4569 [inline]
 slab_alloc_node mm/slub.c:4898 [inline]
 kmem_cache_alloc_noprof+0x241/0x6e0 mm/slub.c:4905
 kmem_alloc_batch+0x49/0x170 lib/debugobjects.c:371
 fill_pool lib/debugobjects.c:420 [inline]
 debug_objects_fill_pool lib/debugobjects.c:742 [inline]
 debug_objects_fill_pool+0x24d/0x5a0 lib/debugobjects.c:714
 debug_object_activate+0x103/0x490 lib/debugobjects.c:831
 debug_rcu_head_queue kernel/rcu/rcu.h:236 [inline]
 __call_rcu_common.constprop.0+0x35/0x9b0 kernel/rcu/tree.c:3116
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x47/0xf0 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x1a0/0x1f0 mm/kasan/quarantine.c:286
 __kasan_slab_alloc+0x69/0x90 mm/kasan/common.c:350
 kasan_slab_alloc include/linux/kasan.h:253 [inline]
 slab_post_alloc_hook mm/slub.c:4569 [inline]
 slab_alloc_node mm/slub.c:4898 [inline]
 kmem_cache_alloc_noprof+0x241/0x6e0 mm/slub.c:4905
 alloc_empty_file+0x5b/0x1c0 fs/file_table.c:262
 alloc_file fs/file_table.c:396 [inline]
 alloc_file_pseudo+0x13a/0x230 fs/file_table.c:425
 sock_alloc_file+0x50/0x210 net/socket.c:543
 sock_map_fd net/socket.c:573 [inline]
 __sys_socket+0x1c0/0x260 net/socket.c:1815
 __do_sys_socket net/socket.c:1820 [inline]
 __se_sys_socket net/socket.c:1818 [inline]
 __x64_sys_socket+0x72/0xb0 net/socket.c:1818
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x10b/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fbd29f9e087
RSP: 002b:00007ffc869a9728 EFLAGS: 00000206 ORIG_RAX: 0000000000000029
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbd29f9e087
RDX: 0000000000000006 RSI: 0000000000000001 RDI: 000000000000000a
RBP: 00007ffc869a9e5c R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000206 R12: 00007fbd2a1e7e00
R13: 00000000000927c0 R14: 00000000000c3892 R15: 00007fbd2a1e9fc0
 </TASK>
rcu: rcu_preempt kthread starved for 10421 jiffies! g291089 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:27752 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5387 [inline]
 __schedule+0x10e9/0x6820 kernel/sched/core.c:7188
 __schedule_loop kernel/sched/core.c:7267 [inline]
 schedule+0xdd/0x390 kernel/sched/core.c:7282
 schedule_timeout+0x127/0x280 kernel/time/sleep_timeout.c:99
 rcu_gp_fqs_loop+0x1a9/0x900 kernel/rcu/tree.c:2095
 rcu_gp_kthread+0x179/0x230 kernel/rcu/tree.c:2297
 kthread+0x370/0x450 kernel/kthread.c:436
 ret_from_fork+0x72b/0xd50 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
CPU: 0 UID: 0 PID: 3427 Comm: kworker/R-bat_e Tainted: G     U    I  L      syzkaller #0 PREEMPT(full) 
Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
Workqueue: bat_events batadv_tt_purge
RIP: 0010:lock_acquire+0x5e/0x370 kernel/locking/lockdep.c:5872
Code: 05 3b 59 2e 12 83 f8 07 0f 87 d9 02 00 00 48 0f a3 05 46 4b f7 0e 0f 82 a4 02 00 00 8b 35 ae 7e f7 0e 85 f6 0f 85 bf 00 00 00 <48> 8b 44 24 30 65 48 2b 05 dd 58 2e 12 0f 85 ed 02 00 00 48 83 c4
RSP: 0018:ffffc900000068f0 EFLAGS: 00000206
RAX: 0000000000000046 RBX: 0000000000000000 RCX: 0000000000000005
RDX: 0000000000000000 RSI: ffffffff8df2c0ea RDI: ffffffff8c1c0200
RBP: ffffffff8e7e5260 R08: 00000000bf675e27 R09: 0000000000000007
R10: 0000000000000200 R11: 0000000000000000 R12: 0000000000000002
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8881242ee000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fe335713b6c CR3: 0000000076e80000 CR4: 00000000003526f0
Call Trace:
 <IRQ>
 rcu_lock_acquire include/linux/rcupdate.h:300 [inline]
 rcu_read_lock include/linux/rcupdate.h:838 [inline]
 class_rcu_constructor include/linux/rcupdate.h:1181 [inline]
 unwind_next_frame+0xd1/0x2090 arch/x86/kernel/unwind_orc.c:495
 __unwind_start+0x3d1/0x7f0 arch/x86/kernel/unwind_orc.c:787
 unwind_start arch/x86/include/asm/unwind.h:64 [inline]
 arch_stack_walk+0x73/0xf0 arch/x86/kernel/stacktrace.c:24
 stack_trace_save+0x8e/0xc0 kernel/stacktrace.c:122
 kasan_save_stack+0x30/0x50 mm/kasan/common.c:57
 kasan_save_track+0x14/0x30 mm/kasan/common.c:78
 kasan_save_free_info+0x3b/0x70 mm/kasan/generic.c:584
 poison_slab_object mm/kasan/common.c:253 [inline]
 __kasan_slab_free+0x5f/0x80 mm/kasan/common.c:285
 kasan_slab_free include/linux/kasan.h:235 [inline]
 slab_free_hook mm/slub.c:2689 [inline]
 slab_free mm/slub.c:6246 [inline]
 kmem_cache_free+0x127/0x6c0 mm/slub.c:6373
 kfree_skbmem+0x19a/0x210 net/core/skbuff.c:1137
 __kfree_skb net/core/skbuff.c:1204 [inline]
 consume_skb net/core/skbuff.c:1436 [inline]
 consume_skb+0xd1/0x110 net/core/skbuff.c:1430
 batadv_interface_tx+0x17e8/0x1c30 net/batman-adv/mesh-interface.c:344
 __netdev_start_xmit include/linux/netdevice.h:5343 [inline]
 netdev_start_xmit include/linux/netdevice.h:5352 [inline]
 xmit_one net/core/dev.c:3888 [inline]
 dev_hard_start_xmit+0x128/0x7a0 net/core/dev.c:3904
 __dev_queue_xmit+0x1baa/0x4950 net/core/dev.c:4870
 dev_queue_xmit include/linux/netdevice.h:3401 [inline]
 br_dev_queue_push_xmit+0x361/0x530 net/bridge/br_forward.c:53
 NF_HOOK include/linux/netfilter.h:318 [inline]
 NF_HOOK include/linux/netfilter.h:312 [inline]
 br_forward_finish+0x102/0x4d0 net/bridge/br_forward.c:66
 br_nf_hook_thresh+0x30d/0x420 net/bridge/br_netfilter_hooks.c:1161
 br_nf_forward_finish+0x693/0xb30 net/bridge/br_netfilter_hooks.c:663
 NF_HOOK include/linux/netfilter.h:318 [inline]
 NF_HOOK include/linux/netfilter.h:312 [inline]
 br_nf_forward_arp net/bridge/br_netfilter_hooks.c:753 [inline]
 br_nf_forward+0x157a/0x19f0 net/bridge/br_netfilter_hooks.c:776
 nf_hook_entry_hookfn include/linux/netfilter.h:158 [inline]
 nf_hook_slow+0xbf/0x220 net/netfilter/core.c:619
 nf_hook include/linux/netfilter.h:273 [inline]
 NF_HOOK include/linux/netfilter.h:316 [inline]
 __br_forward+0x2f7/0x970 net/bridge/br_forward.c:115
 deliver_clone net/bridge/br_forward.c:131 [inline]
 maybe_deliver+0xf0/0x180 net/bridge/br_forward.c:191
 br_flood+0x193/0x650 net/bridge/br_forward.c:238
 br_handle_frame_finish+0xff4/0x1f60 net/bridge/br_input.c:229
 nf_hook_bridge_pre net/bridge/br_input.c:313 [inline]
 br_handle_frame+0x977/0x1520 net/bridge/br_input.c:442
 __netif_receive_skb_core.constprop.0+0x6c5/0x3530 net/core/dev.c:6096
 __netif_receive_skb_one_core+0xb0/0x1e0 net/core/dev.c:6207
 __netif_receive_skb+0x1f/0x120 net/core/dev.c:6322
 process_backlog+0x37a/0x1580 net/core/dev.c:6673
 __napi_poll.constprop.0+0xaf/0x450 net/core/dev.c:7737
 napi_poll net/core/dev.c:7800 [inline]
 net_rx_action+0xa40/0xf20 net/core/dev.c:7957
 handle_softirqs+0x1ea/0xa00 kernel/softirq.c:622
 do_softirq kernel/softirq.c:523 [inline]
 do_softirq+0xac/0xe0 kernel/softirq.c:510
 </IRQ>
 <TASK>
 __local_bh_enable_ip+0xf8/0x120 kernel/softirq.c:450
 spin_unlock_bh include/linux/spinlock.h:396 [inline]
 batadv_tt_global_purge net/batman-adv/translation-table.c:2255 [inline]
 batadv_tt_purge+0x25d/0xbd0 net/batman-adv/translation-table.c:3515
 process_one_work+0xa0e/0x1980 kernel/workqueue.c:3302
 process_scheduled_works kernel/workqueue.c:3385 [inline]
 rescuer_thread+0x905/0x14a0 kernel/workqueue.c:3609
 kthread+0x370/0x450 kernel/kthread.c:436
 ret_from_fork+0x72b/0xd50 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>