rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P50/1:b..l P5571/1:b..l P5815/3:b..l P5187/1:b..l P13694/1:b..l P19281/1:b..l P135/1:b..l P27036/1:b..l
rcu: 	(detected by 1, t=10502 jiffies, g=212201, q=425 ncpus=2)
task:syz-executor    state:R  running task     stack:21080 pid:27036 tgid:27036 ppid:27028  task_flags:0x400140 flags:0x10080001
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 preempt_schedule_irq+0xb5/0x150 kernel/sched/core.c:7256
 irqentry_exit+0x6f/0x90 kernel/entry/common.c:211
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:lock_release+0x2b5/0x3e0 kernel/locking/lockdep.c:5893
Code: 51 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f7 44 24 20 00 02 00 00 75 56 f7 c3 00 02 00 00 74 01 fb 65 48 8b 05 ab fa f3 10 <48> 3b 44 24 28 0f 85 8b 00 00 00 48 83 c4 30 5b 41 5c 41 5d 41 5e
RSP: 0018:ffffc9000e2a7130 EFLAGS: 00000206
RAX: 3f463e967b8bda00 RBX: 0000000000000206 RCX: 3f463e967b8bda00
RDX: 0000000000000004 RSI: ffffffff8d9d457d RDI: ffffffff8bc07360
RBP: ffff88806e260bd0 R08: ffffc9000e2a7390 R09: 0000000000000000
R10: ffffc9000e2a72b8 R11: fffff52001c54e59 R12: 0000000000000004
R13: 0000000000000004 R14: ffffffff8e13d2e0 R15: ffff88806e260000
 rcu_lock_release include/linux/rcupdate.h:341 [inline]
 rcu_read_unlock include/linux/rcupdate.h:897 [inline]
 class_rcu_destructor include/linux/rcupdate.h:1195 [inline]
 unwind_next_frame+0x19a9/0x2390 arch/x86/kernel/unwind_orc.c:680
 arch_stack_walk+0x11c/0x150 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x9c/0xe0 kernel/stacktrace.c:122
 save_stack+0xf5/0x1f0 mm/page_owner.c:156
 __reset_page_owner+0x71/0x1f0 mm/page_owner.c:308
 reset_page_owner include/linux/page_owner.h:25 [inline]
 free_pages_prepare mm/page_alloc.c:1394 [inline]
 __free_frozen_pages+0xbc4/0xd30 mm/page_alloc.c:2906
 discard_slab mm/slub.c:3317 [inline]
 __put_partials+0x146/0x170 mm/slub.c:3864
 put_cpu_partial+0x1f2/0x2e0 mm/slub.c:3939
 __slab_free+0x2b9/0x390 mm/slub.c:5913
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x97/0x140 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x148/0x160 mm/kasan/quarantine.c:286
 __kasan_slab_alloc+0x22/0x80 mm/kasan/common.c:352
 kasan_slab_alloc include/linux/kasan.h:252 [inline]
 slab_post_alloc_hook mm/slub.c:4962 [inline]
 slab_alloc_node mm/slub.c:5272 [inline]
 kmem_cache_alloc_noprof+0x367/0x6e0 mm/slub.c:5279
 vm_area_dup+0x2b/0x680 mm/vma_init.c:123
 dup_mmap+0x903/0x1b10 mm/mmap.c:1780
 dup_mm kernel/fork.c:1489 [inline]
 copy_mm+0x13c/0x4b0 kernel/fork.c:1541
 copy_process+0x1706/0x3c00 kernel/fork.c:2181
 kernel_clone+0x21e/0x840 kernel/fork.c:2609
 __do_compat_sys_ia32_clone arch/x86/kernel/sys_ia32.c:254 [inline]
 __se_compat_sys_ia32_clone arch/x86/kernel/sys_ia32.c:240 [inline]
 __ia32_compat_sys_ia32_clone+0x189/0x1e0 arch/x86/kernel/sys_ia32.c:240
 do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]
 __do_fast_syscall_32+0xb6/0x2b0 arch/x86/entry/syscall_32.c:306
 do_fast_syscall_32+0x34/0x80 arch/x86/entry/syscall_32.c:331
 entry_SYSENTER_compat_after_hwframe+0x84/0x8e
RIP: 0023:0xf7f01539
RSP: 002b:00000000f74efcbc EFLAGS: 00000206 ORIG_RAX: 0000000000000078
RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000057a6f4a8
RBP: 00000000f7395ff4 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
 </TASK>
task:kworker/u8:5    state:R  running task     stack:21128 pid:135   tgid:135   ppid:2      task_flags:0x4208060 flags:0x00080000
Workqueue: events_unbound cfg80211_wiphy_work
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 preempt_schedule_irq+0xb5/0x150 kernel/sched/core.c:7256
 irqentry_exit+0x6f/0x90 kernel/entry/common.c:211
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:ieee80211_sta_get_rates+0x2d6/0x5d0 net/mac80211/util.c:1548
Code: c3 bf ff 00 00 00 44 89 f6 e8 36 2b f0 f6 45 84 f6 41 0f 99 c5 41 08 dd 45 31 f6 48 ba 00 00 00 00 00 fc ff df 41 80 3c 14 00 <74> 12 4c 89 ff e8 20 dd 55 f7 48 ba 00 00 00 00 00 fc ff df 49 63
RSP: 0018:ffffc90002e075e8 EFLAGS: 00000246
RAX: ffffffff8ad01ca9 RBX: 000000000000000a RCX: ffff8880203e9e40
RDX: dffffc0000000000 RSI: 000000000000000a RDI: 000000000000021c
RBP: 000000000000021c R08: 0000000000000000 R09: 000000000000000c
R10: 000000000000000c R11: 0000000000000000 R12: 1ffff11009037626
R13: ffff88805ecf6001 R14: 0000000000000001 R15: ffff8880481bb130
 ieee80211_update_sta_info net/mac80211/ibss.c:982 [inline]
 ieee80211_rx_bss_info net/mac80211/ibss.c:1092 [inline]
 ieee80211_rx_mgmt_probe_beacon net/mac80211/ibss.c:1573 [inline]
 ieee80211_ibss_rx_queued_mgmt+0x131b/0x2af0 net/mac80211/ibss.c:1600
 ieee80211_iface_process_skb net/mac80211/iface.c:1694 [inline]
 ieee80211_iface_work+0x85f/0x12d0 net/mac80211/iface.c:1748
 cfg80211_wiphy_work+0x2bb/0x470 net/wireless/core.c:435
 process_one_work kernel/workqueue.c:3263 [inline]
 process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
 worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
 kthread+0x711/0x8a0 kernel/kthread.c:463
 ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
task:kworker/1:0     state:R  running task     stack:21288 pid:19281 tgid:19281 ppid:2      task_flags:0x4208060 flags:0x00080000
Workqueue: wg-kex-wg0 wg_packet_handshake_receive_worker
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 preempt_schedule_irq+0xb5/0x150 kernel/sched/core.c:7256
 irqentry_exit+0x6f/0x90 kernel/entry/common.c:211
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:debug_lockdep_rcu_enabled+0xd/0x40 kernel/rcu/update.c:320
Code: cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 31 c0 83 3d a7 4d 50 04 00 <74> 1e 83 3d aa 7c 50 04 00 74 15 65 48 8b 0c 25 08 a0 91 92 31 c0
RSP: 0018:ffffc90003327150 EFLAGS: 00000202
RAX: 0000000000000000 RBX: ffffffff902e0b01 RCX: ffffc90003327e68
RDX: ffffc90003327201 RSI: dffffc0000000000 RDI: ffffc90003327230
RBP: dffffc0000000000 R08: ffffc90003327e50 R09: 0000000000000000
R10: ffffc90003327278 R11: fffff52000664e51 R12: ffffc90003327e60
R13: ffffc90003320000 R14: ffffc90003327228 R15: ffffffff8173cd25
 rcu_read_unlock include/linux/rcupdate.h:895 [inline]
 class_rcu_destructor include/linux/rcupdate.h:1195 [inline]
 unwind_next_frame+0x195c/0x2390 arch/x86/kernel/unwind_orc.c:680
 arch_stack_walk+0x11c/0x150 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x9c/0xe0 kernel/stacktrace.c:122
 save_stack+0xf5/0x1f0 mm/page_owner.c:156
 __reset_page_owner+0x71/0x1f0 mm/page_owner.c:308
 reset_page_owner include/linux/page_owner.h:25 [inline]
 free_pages_prepare mm/page_alloc.c:1394 [inline]
 __free_frozen_pages+0xbc4/0xd30 mm/page_alloc.c:2906
 discard_slab mm/slub.c:3317 [inline]
 __put_partials+0x146/0x170 mm/slub.c:3864
 put_cpu_partial+0x1f2/0x2e0 mm/slub.c:3939
 __slab_free+0x2b9/0x390 mm/slub.c:5913
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x97/0x140 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x148/0x160 mm/kasan/quarantine.c:286
 __kasan_kmalloc+0x22/0xb0 mm/kasan/common.c:408
 kasan_kmalloc include/linux/kasan.h:262 [inline]
 __kmalloc_cache_noprof+0x3d5/0x6f0 mm/slub.c:5755
 kmalloc_noprof include/linux/slab.h:957 [inline]
 kzalloc_noprof include/linux/slab.h:1094 [inline]
 keypair_create drivers/net/wireguard/noise.c:100 [inline]
 wg_noise_handshake_begin_session+0xd5/0xbd0 drivers/net/wireguard/noise.c:827
 wg_receive_handshake_packet drivers/net/wireguard/receive.c:176 [inline]
 wg_packet_handshake_receive_worker+0x680/0xfd0 drivers/net/wireguard/receive.c:213
 process_one_work kernel/workqueue.c:3263 [inline]
 process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
 worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
 kthread+0x711/0x8a0 kernel/kthread.c:463
 ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
task:udevd           state:R  running task     stack:22760 pid:13694 tgid:13694 ppid:5198   task_flags:0x400140 flags:0x00080001
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 preempt_schedule_irq+0xb5/0x150 kernel/sched/core.c:7256
 irqentry_exit+0x6f/0x90 kernel/entry/common.c:211
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:lock_acquire+0x175/0x360 kernel/locking/lockdep.c:5872
Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 1b 0d f4 10 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e
RSP: 0018:ffffc900101ef7b8 EFLAGS: 00000206
RAX: 69561f3cca2c2100 RBX: 0000000000000000 RCX: 69561f3cca2c2100
RDX: 0000000000000000 RSI: ffffffff8d9d457d RDI: ffffffff8bc07360
RBP: ffffffff8173cd25 R08: 0000000000000000 R09: ffffffff8173cd25
R10: ffffc900101ef978 R11: ffffffff81ac6cb0 R12: 0000000000000002
R13: ffffffff8e13d2e0 R14: 0000000000000000 R15: 0000000000000246
 rcu_lock_acquire include/linux/rcupdate.h:331 [inline]
 rcu_read_lock include/linux/rcupdate.h:867 [inline]
 class_rcu_constructor include/linux/rcupdate.h:1195 [inline]
 unwind_next_frame+0xc2/0x2390 arch/x86/kernel/unwind_orc.c:479
 arch_stack_walk+0x11c/0x150 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x9c/0xe0 kernel/stacktrace.c:122
 save_stack+0xf5/0x1f0 mm/page_owner.c:156
 __reset_page_owner+0x71/0x1f0 mm/page_owner.c:308
 reset_page_owner include/linux/page_owner.h:25 [inline]
 free_pages_prepare mm/page_alloc.c:1394 [inline]
 __free_frozen_pages+0xbc4/0xd30 mm/page_alloc.c:2906
 discard_slab mm/slub.c:3317 [inline]
 __put_partials+0x146/0x170 mm/slub.c:3864
 put_cpu_partial+0x1f2/0x2e0 mm/slub.c:3939
 __slab_free+0x2b9/0x390 mm/slub.c:5913
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x97/0x140 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x148/0x160 mm/kasan/quarantine.c:286
 __kasan_slab_alloc+0x22/0x80 mm/kasan/common.c:352
 kasan_slab_alloc include/linux/kasan.h:252 [inline]
 slab_post_alloc_hook mm/slub.c:4962 [inline]
 slab_alloc_node mm/slub.c:5272 [inline]
 kmem_cache_alloc_noprof+0x367/0x6e0 mm/slub.c:5279
 getname_flags+0xb8/0x540 fs/namei.c:146
 getname include/linux/fs.h:2922 [inline]
 __do_sys_rename fs/namei.c:5411 [inline]
 __se_sys_rename fs/namei.c:5409 [inline]
 __x64_sys_rename+0x5d/0x90 fs/namei.c:5409
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f206b07acc7
RSP: 002b:00007ffed84602c8 EFLAGS: 00000206 ORIG_RAX: 0000000000000052
RAX: ffffffffffffffda RBX: 0000556d0d855b60 RCX: 00007f206b07acc7
RDX: 0000556d0d830010 RSI: 00007ffed84602e0 RDI: 00007ffed84606e0
RBP: 0000556d0d843e20 R08: 00000000000001e0 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000206 R12: 00007ffed84602e0
R13: 00007ffed84606e0 R14: 0000000000000000 R15: 0000556d0d845ad0
 </TASK>
task:klogd           state:R  running task     stack:23336 pid:5187  tgid:5187  ppid:1      task_flags:0x400100 flags:0x00080001
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 preempt_schedule_irq+0xb5/0x150 kernel/sched/core.c:7256
 irqentry_exit+0x6f/0x90 kernel/entry/common.c:211
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:on_stack arch/x86/include/asm/stacktrace.h:55 [inline]
RIP: 0010:stack_access_ok arch/x86/kernel/unwind_orc.c:393 [inline]
RIP: 0010:deref_stack_reg arch/x86/kernel/unwind_orc.c:403 [inline]
RIP: 0010:unwind_next_frame+0xaea/0x2390 arch/x86/kernel/unwind_orc.c:585
Code: 4c 89 fd 48 c1 ed 03 48 b8 00 00 00 00 00 fc ff df 80 7c 05 00 00 74 08 4c 89 ff e8 a0 21 b2 00 4c 89 7c 24 60 48 89 5c 24 78 <4d> 8b 7e 08 49 8d 5e 10 49 89 dd 49 c1 ed 03 48 b8 00 00 00 00 00
RSP: 0018:ffffc9000ef2f1b8 EFLAGS: 00000246
RAX: dffffc0000000000 RBX: ffffffff90b108b1 RCX: ffffffff9009e6b4
RDX: ffffffff90b108ac RSI: 0000000000000002 RDI: ffffffff8bc07300
RBP: 1ffff92001de5e52 R08: 0000000000000003 R09: ffffffff8173cd25
R10: ffffc9000ef2f2d8 R11: ffffffff81ac6cb0 R12: ffffc9000ef2fea0
R13: ffffc9000ef2f2d8 R14: ffffc9000ef2f288 R15: ffffc9000ef2f290
 arch_stack_walk+0x11c/0x150 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x9c/0xe0 kernel/stacktrace.c:122
 save_stack+0xf5/0x1f0 mm/page_owner.c:156
 __reset_page_owner+0x71/0x1f0 mm/page_owner.c:308
 reset_page_owner include/linux/page_owner.h:25 [inline]
 free_pages_prepare mm/page_alloc.c:1394 [inline]
 __free_frozen_pages+0xbc4/0xd30 mm/page_alloc.c:2906
 discard_slab mm/slub.c:3317 [inline]
 __put_partials+0x146/0x170 mm/slub.c:3864
 put_cpu_partial+0x1f2/0x2e0 mm/slub.c:3939
 __slab_free+0x2b9/0x390 mm/slub.c:5913
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x97/0x140 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x148/0x160 mm/kasan/quarantine.c:286
 __kasan_kmalloc+0x22/0xb0 mm/kasan/common.c:408
 kasan_kmalloc include/linux/kasan.h:262 [inline]
 __do_kmalloc_node mm/slub.c:5634 [inline]
 __kmalloc_node_track_caller_noprof+0x568/0x800 mm/slub.c:5743
 kmalloc_reserve+0x136/0x290 net/core/skbuff.c:601
 __alloc_skb+0x142/0x2d0 net/core/skbuff.c:670
 alloc_skb include/linux/skbuff.h:1383 [inline]
 alloc_skb_with_frags+0xca/0x890 net/core/skbuff.c:6671
 sock_alloc_send_pskb+0x84d/0x980 net/core/sock.c:2965
 unix_dgram_sendmsg+0x461/0x1850 net/unix/af_unix.c:2153
 sock_sendmsg_nosec net/socket.c:727 [inline]
 __sock_sendmsg+0x21c/0x270 net/socket.c:742
 __sys_sendto+0x3bd/0x520 net/socket.c:2244
 __do_sys_sendto net/socket.c:2251 [inline]
 __se_sys_sendto net/socket.c:2247 [inline]
 __x64_sys_sendto+0xde/0x100 net/socket.c:2247
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fe6b70e5407
RSP: 002b:00007fff6cfb2970 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007fe6b6f95c80 RCX: 00007fe6b70e5407
RDX: 00000000000000a0 RSI: 00007fff6cfb2ab0 RDI: 0000000000000003
RBP: 00007fff6cfb2ee0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000004000 R11: 0000000000000202 R12: 00007fff6cfb2ef8
R13: 00007fff6cfb2ab0 R14: 0000000000000085 R15: 00007fff6cfb2ab0
 </TASK>
task:syz-executor    state:R  running task     stack:21576 pid:5815  tgid:5815  ppid:5814   task_flags:0x400100 flags:0x10080001
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 preempt_schedule_common+0x83/0xd0 kernel/sched/core.c:7113
 preempt_schedule+0xae/0xc0 kernel/sched/core.c:7137
 preempt_schedule_thunk+0x16/0x30 arch/x86/entry/thunk.S:12
 __local_bh_enable_ip+0x13e/0x1c0 kernel/softirq.c:457
 local_bh_enable include/linux/bottom_half.h:33 [inline]
 rcu_read_unlock_bh include/linux/rcupdate.h:936 [inline]
 __dev_queue_xmit+0x1d79/0x3b50 net/core/dev.c:4790
 dev_queue_xmit include/linux/netdevice.h:3365 [inline]
 neigh_hh_output include/net/neighbour.h:531 [inline]
 neigh_output include/net/neighbour.h:545 [inline]
 ip_finish_output2+0xd03/0x1160 net/ipv4/ip_output.c:237
 NF_HOOK_COND include/linux/netfilter.h:307 [inline]
 ip_output+0x29f/0x450 net/ipv4/ip_output.c:438
 ip_local_out net/ipv4/ip_output.c:131 [inline]
 __ip_queue_xmit+0x118d/0x1c30 net/ipv4/ip_output.c:534
 __tcp_transmit_skb+0x24f6/0x3aa0 net/ipv4/tcp_output.c:1628
 tcp_transmit_skb net/ipv4/tcp_output.c:1646 [inline]
 tcp_write_xmit+0x16e8/0x6940 net/ipv4/tcp_output.c:2999
 tcp_sendmsg_locked+0x2c1e/0x5540 net/ipv4/tcp.c:1356
 tcp_sendmsg+0x2f/0x50 net/ipv4/tcp.c:1413
 sock_sendmsg_nosec net/socket.c:727 [inline]
 __sock_sendmsg+0x19c/0x270 net/socket.c:742
 sock_write_iter+0x279/0x360 net/socket.c:1195
 new_sync_write fs/read_write.c:593 [inline]
 vfs_write+0x5c9/0xb30 fs/read_write.c:686
 ksys_write+0x145/0x250 fs/read_write.c:738
 do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]
 __do_fast_syscall_32+0xb6/0x2b0 arch/x86/entry/syscall_32.c:306
 do_fast_syscall_32+0x34/0x80 arch/x86/entry/syscall_32.c:331
 entry_SYSENTER_compat_after_hwframe+0x84/0x8e
RIP: 0023:0xf704d539
RSP: 002b:00000000ffed4520 EFLAGS: 00000206 ORIG_RAX: 0000000000000004
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f44326c0
RDX: 0000000000014940 RSI: 00000000f73e5ff4 RDI: 0000000000000000
RBP: 0000000000014940 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
 </TASK>
task:crond           state:R  running task     stack:24584 pid:5571  tgid:5571  ppid:1      task_flags:0x400000 flags:0x00080001
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 preempt_schedule_irq+0xb5/0x150 kernel/sched/core.c:7256
 irqentry_exit+0x6f/0x90 kernel/entry/common.c:211
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:rcu_lock_acquire include/linux/rcupdate.h:331 [inline]
RIP: 0010:rcu_read_lock include/linux/rcupdate.h:867 [inline]
RIP: 0010:class_rcu_constructor include/linux/rcupdate.h:1195 [inline]
RIP: 0010:unwind_next_frame+0xac/0x2390 arch/x86/kernel/unwind_orc.c:479
Code: 85 c0 0f 84 32 02 00 00 89 84 24 84 00 00 00 4c 89 bc 24 90 00 00 00 e8 22 7a 33 00 4c 8d 3d 00 00 00 00 48 c7 c7 e0 d2 13 8e <31> f6 31 d2 b9 02 00 00 00 45 31 c0 45 31 c9 41 57 e8 4e c4 29 00
RSP: 0018:ffffc90003b17318 EFLAGS: 00000283
RAX: 0000000000000001 RBX: ffffffff8225c602 RCX: dffffc0000000000
RDX: dffffc0000000000 RSI: ffffffff8225c602 RDI: ffffffff8e13d2e0
RBP: dffffc0000000000 R08: ffffc90003b174b0 R09: 0000000000000006
R10: ffffc90003b17438 R11: ffffffff81ac6cb0 R12: 1ffff92000762e7d
R13: ffffc90003b17420 R14: ffffc90003b173e8 R15: ffffffff8173cd25
 arch_stack_walk+0x11c/0x150 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x9c/0xe0 kernel/stacktrace.c:122
 save_stack+0xf5/0x1f0 mm/page_owner.c:156
 __reset_page_owner+0x71/0x1f0 mm/page_owner.c:308
 reset_page_owner include/linux/page_owner.h:25 [inline]
 free_pages_prepare mm/page_alloc.c:1394 [inline]
 __free_frozen_pages+0xbc4/0xd30 mm/page_alloc.c:2906
 discard_slab mm/slub.c:3317 [inline]
 __put_partials+0x146/0x170 mm/slub.c:3864
 put_cpu_partial+0x1f2/0x2e0 mm/slub.c:3939
 __slab_free+0x2b9/0x390 mm/slub.c:5913
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x97/0x140 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x148/0x160 mm/kasan/quarantine.c:286
 __kasan_slab_alloc+0x22/0x80 mm/kasan/common.c:352
 kasan_slab_alloc include/linux/kasan.h:252 [inline]
 slab_post_alloc_hook mm/slub.c:4962 [inline]
 slab_alloc_node mm/slub.c:5272 [inline]
 kmem_cache_alloc_noprof+0x367/0x6e0 mm/slub.c:5279
 alloc_empty_file+0x55/0x1d0 fs/file_table.c:237
 path_openat+0x107/0x3830 fs/namei.c:4120
 do_filp_open+0x1fa/0x410 fs/namei.c:4161
 do_sys_openat2+0x121/0x1c0 fs/open.c:1437
 do_sys_open fs/open.c:1452 [inline]
 __do_sys_openat fs/open.c:1468 [inline]
 __se_sys_openat fs/open.c:1463 [inline]
 __x64_sys_openat+0x138/0x170 fs/open.c:1463
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f3d4c1fb407
RSP: 002b:00007fff56524300 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 00007f3d4c0abc80 RCX: 00007f3d4c1fb407
RDX: 0000000000000000 RSI: 00007f3d4c3ee764 RDI: ffffffffffffff9c
RBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000202 R12: 00007f3d4c3fa492
R13: 00007f3d4c3fa492 R14: 0000000000000001 R15: 0000000000000021
 </TASK>
task:kworker/u8:3    state:R  running task     stack:21128 pid:50    tgid:50    ppid:2      task_flags:0x4208160 flags:0x00080000
Workqueue: events_unbound cfg80211_wiphy_work
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 preempt_schedule_irq+0xb5/0x150 kernel/sched/core.c:7256
 irqentry_exit+0x6f/0x90 kernel/entry/common.c:211
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:deref_stack_reg arch/x86/kernel/unwind_orc.c:406 [inline]
RIP: 0010:unwind_next_frame+0xc4e/0x2390 arch/x86/kernel/unwind_orc.c:585
Code: 4c 39 e0 0f 96 c0 20 c8 3c 01 0f 85 df 0c 00 00 48 89 df e8 84 23 00 00 48 89 c3 48 bd 00 00 00 00 00 fc ff df 48 8b 44 24 30 <80> 3c 28 00 4c 8b 7c 24 18 74 08 4c 89 ff e8 0f 21 b2 00 49 89 1f
RSP: 0018:ffffc90000bb7198 EFLAGS: 00000202
RAX: 1ffff92000176e56 RBX: ffffffff8225bf5e RCX: 1ffff92000176e01
RDX: ffffffff9030e8bc RSI: 0000000000000002 RDI: ffffc90000bb73a8
RBP: dffffc0000000000 R08: 000000000000000c R09: ffffffff8173cd25
R10: ffffc90000bb72b8 R11: ffffffff81ac6cb0 R12: ffffc90000bb8000
R13: 1ffff92000176e4f R14: ffffc90000bb7268 R15: ffffc90000bb0000
 arch_stack_walk+0x11c/0x150 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x9c/0xe0 kernel/stacktrace.c:122
 kasan_save_stack mm/kasan/common.c:56 [inline]
 kasan_save_track+0x3e/0x80 mm/kasan/common.c:77
 __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587
 kasan_save_free_info mm/kasan/kasan.h:406 [inline]
 poison_slab_object mm/kasan/common.c:252 [inline]
 __kasan_slab_free+0x5c/0x80 mm/kasan/common.c:284
 kasan_slab_free include/linux/kasan.h:234 [inline]
 slab_free_hook mm/slub.c:2530 [inline]
 slab_free mm/slub.c:6619 [inline]
 kfree+0x19a/0x6d0 mm/slub.c:6826
 ieee80211_rx_mgmt_probe_beacon net/mac80211/ibss.c:1574 [inline]
 ieee80211_ibss_rx_queued_mgmt+0x1207/0x2af0 net/mac80211/ibss.c:1600
 ieee80211_iface_process_skb net/mac80211/iface.c:1694 [inline]
 ieee80211_iface_work+0x85f/0x12d0 net/mac80211/iface.c:1748
 cfg80211_wiphy_work+0x2bb/0x470 net/wireless/core.c:435
 process_one_work kernel/workqueue.c:3263 [inline]
 process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346
 worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427
 kthread+0x711/0x8a0 kernel/kthread.c:463
 ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
task:dhcpcd          state:R  running task     stack:24936 pid:5492  tgid:5492  ppid:1      task_flags:0x400140 flags:0x00080001
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 preempt_schedule_irq+0xb5/0x150 kernel/sched/core.c:7256
 irqentry_exit+0x6f/0x90 kernel/entry/common.c:211
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:kasan_check_byte include/linux/kasan.h:401 [inline]
RIP: 0010:lock_acquire+0x7d/0x360 kernel/locking/lockdep.c:5842
Code: 05 88 83 00 0e 73 16 e8 c1 fb 08 00 84 c0 75 0d f6 05 89 90 ea 0d 01 0f 84 d7 01 00 00 83 3d 89 b3 00 0e 00 0f 84 f0 00 00 00 <48> 8b b4 24 90 00 00 00 4c 89 ef e8 e3 3b 88 00 83 3d 6c b3 00 0e
RSP: 0018:ffffc90002eb74b8 EFLAGS: 00000202
RAX: 0000000000000001 RBX: 0000000000000000 RCX: 6e08b99e2fddad00
RDX: 0000000000000000 RSI: ffffffff8bc07340 RDI: ffffffff8bc07300
RBP: ffffffff8173cd25 R08: 0000000000000000 R09: 0000000000000000
R10: ffffc90002eb7678 R11: ffffffff81ac6cb0 R12: 0000000000000002
R13: ffffffff8e13d2e0 R14: 0000000000000000 R15: 0000000000000000
 rcu_lock_acquire include/linux/rcupdate.h:331 [inline]
 rcu_read_lock include/linux/rcupdate.h:867 [inline]
 class_rcu_constructor include/linux/rcupdate.h:1195 [inline]
 unwind_next_frame+0xc2/0x2390 arch/x86/kernel/unwind_orc.c:479
 arch_stack_walk+0x11c/0x150 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x9c/0xe0 kernel/stacktrace.c:122
 save_stack+0xf5/0x1f0 mm/page_owner.c:156
 __reset_page_owner+0x71/0x1f0 mm/page_owner.c:308
 reset_page_owner include/linux/page_owner.h:25 [inline]
 free_pages_prepare mm/page_alloc.c:1394 [inline]
 __free_frozen_pages+0xbc4/0xd30 mm/page_alloc.c:2906
 discard_slab mm/slub.c:3317 [inline]
 __put_partials+0x146/0x170 mm/slub.c:3864
 put_cpu_partial+0x1f2/0x2e0 mm/slub.c:3939
 __slab_free+0x2b9/0x390 mm/slub.c:5913
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x97/0x140 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x148/0x160 mm/kasan/quarantine.c:286
 __kasan_slab_alloc+0x22/0x80 mm/kasan/common.c:352
 kasan_slab_alloc include/linux/kasan.h:252 [inline]
 slab_post_alloc_hook mm/slub.c:4962 [inline]
 slab_alloc_node mm/slub.c:5272 [inline]
 __do_kmalloc_node mm/slub.c:5633 [inline]
 __kmalloc_noprof+0x3c3/0x7f0 mm/slub.c:5646
 kmalloc_noprof include/linux/slab.h:961 [inline]
 tomoyo_realpath_from_path+0xe3/0x5d0 security/tomoyo/realpath.c:251
 tomoyo_get_realpath security/tomoyo/file.c:151 [inline]
 tomoyo_path_number_perm+0x1e8/0x5a0 security/tomoyo/file.c:723
 security_file_ioctl+0xcb/0x2d0 security/security.c:2982
 __do_sys_ioctl fs/ioctl.c:591 [inline]
 __se_sys_ioctl+0x47/0x170 fs/ioctl.c:583
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f24ccbab378
RSP: 002b:00007fff1cc8d208 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000564463376dc0 RCX: 00007f24ccbab378
RDX: 00007fff1cc8d210 RSI: 0000000000008921 RDI: 000000000000000f
RBP: 00007fff1cc8d210 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000056446337bdd0
R13: 0000564463376dc0 R14: 000056446337bdd0 R15: 00007fff1cc8d460
 </TASK>
rcu: rcu_preempt kthread starved for 6640 jiffies! g212201 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:27288 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1798/0x4cc0 kernel/sched/core.c:6929
 __schedule_loop kernel/sched/core.c:7011 [inline]
 schedule+0x165/0x360 kernel/sched/core.c:7026
 schedule_timeout+0x12b/0x270 kernel/time/sleep_timeout.c:99
 rcu_gp_fqs_loop+0x301/0x1540 kernel/rcu/tree.c:2083
 rcu_gp_kthread+0x99/0x390 kernel/rcu/tree.c:2285
 kthread+0x711/0x8a0 kernel/kthread.c:463
 ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
RIP: 0010:pv_native_safe_halt+0x13/0x20 arch/x86/kernel/paravirt.c:82
Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 71 1a 00 f3 0f 1e fa fb f4 <e9> c8 e6 02 00 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
RSP: 0018:ffffc90000197de0 EFLAGS: 000002c6
RAX: a601c5110309ae00 RBX: ffffffff8196bb87 RCX: a601c5110309ae00
RDX: 0000000000000001 RSI: ffffffff8d7eb243 RDI: ffffffff8bc07360
RBP: ffffc90000197f10 R08: ffff8880b8732fdb R09: 1ffff110170e65fb
R10: dffffc0000000000 R11: ffffed10170e65fc R12: ffffffff8f9e1570
R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff110038d0b58
FS:  0000000000000000(0000) GS:ffff888125e06000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000008011b018 CR3: 000000006c5aa000 CR4: 00000000003526f0
Call Trace:
 <TASK>
 arch_safe_halt arch/x86/include/asm/paravirt.h:107 [inline]
 default_idle+0x13/0x20 arch/x86/kernel/process.c:767
 default_idle_call+0x73/0xb0 kernel/sched/idle.c:122
 cpuidle_idle_call kernel/sched/idle.c:190 [inline]
 do_idle+0x1e7/0x510 kernel/sched/idle.c:330
 cpu_startup_entry+0x44/0x60 kernel/sched/idle.c:428
 start_secondary+0x101/0x110 arch/x86/kernel/smpboot.c:315
 common_startup_64+0x13e/0x147
 </TASK>