BUG: stack guard page was hit in check_preemption

Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
upstream	BUG: stack guard page was hit in check_preemption_disabled (2) trace				1	1313d	1283d	0/28	auto-closed as invalid on 2021/07/17 01:48
BUG: stack guard page was hit at 0000000035b470f4 (stack is 00000000af6394b8..00000000d4eb25ea)
kernel stack overflow (double-fault): 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 22379 Comm: kworker/u4:7 Not tainted 5.9.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: bat_events batadv_nc_worker
RIP: 0010:check_preemption_disabled+0x0/0x130 lib/smp_processor_id.c:13
Code: 1f 44 00 00 8b 1d a8 f4 bd 02 31 ff 89 de 0f 1f 44 00 00 85 db 75 ae 0f 1f 44 00 00 41 bc 01 00 00 00 e8 c3 05 a4 fb eb 9f cc <41> 56 41 55 49 89 f5 41 54 55 48 89 fd 53 0f 1f 44 00 00 65 44 8b
RSP: 0000:ffffc90015850000 EFLAGS: 00010002
RAX: 0000000000000001 RBX: ffffc90015850098 RCX: 0000000000000006
RDX: ffffffff884588a0 RSI: ffffffff88941980 RDI: ffffffff889419c0
RBP: 0000000000000006 R08: 0000000000000004 R09: 0000000000000002
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000004
R13: ffffffff884588a0 R14: 0000000000000000 R15: ffffffff81007677
FS:  0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc9001584fff8 CR3: 000000021aab4000 CR4: 00000000001526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
Call Trace:
 rcu_dynticks_curr_cpu_in_eqs kernel/rcu/tree.c:326 [inline]
 rcu_is_watching+0x11/0xb0 kernel/rcu/tree.c:1111
 do_error_trap+0x176/0x230 arch/x86/kernel/traps.c:171
 handle_invalid_op+0x2c/0x30 arch/x86/kernel/traps.c:213
 exc_invalid_op+0x2b/0x40 arch/x86/kernel/traps.c:259
 asm_exc_invalid_op+0x12/0x20 arch/x86/include/asm/idtentry.h:536
RIP: 0010:preempt_schedule_notrace_thunk+0x18/0x31 arch/x86/entry/thunk_64.S:48
Code: 52 51 50 41 50 41 51 41 52 41 53 e8 a3 d5 f5 06 eb 18 55 48 89 e5 57 70 07 70 07 77 00 70 07 00 70 07 00 70 07 70 07 77 00 70 <07> 00 70 07 00 77 00 70 07 00 77 00 00 00 70 07 00 00 77 07 00 77
RSP: 0000:ffffc90015850140 EFLAGS: 00010046
RAX: 0000000000000082 RBX: ffffc90015850490 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: ffffffff839a89cb RDI: 0000000000000001
RBP: ffffc90015850188 R08: ffffffff83b21c70 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000008
 search_module_extables+0xce/0x100 kernel/module.c:4469
 search_exception_tables+0x42/0x50 kernel/extable.c:59
 fixup_exception+0x4b/0xca arch/x86/mm/extable.c:161
 no_context+0xe7/0x9f0 arch/x86/mm/fault.c:645
 __bad_area_nosemaphore+0xa9/0x4f0 arch/x86/mm/fault.c:835
 do_user_addr_fault+0x760/0xbf0 arch/x86/mm/fault.c:1248
 handle_page_fault arch/x86/mm/fault.c:1429 [inline]
 exc_page_fault+0xa8/0x190 arch/x86/mm/fault.c:1482
 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:538
RIP: 0010:preempt_schedule_notrace_thunk+0xd/0x31 arch/x86/entry/thunk_64.S:41
Code: e8 e9 04 46 00 55 48 89 e5 57 56 52 51 50 41 50 41 51 41 52 41 53 e8 a3 d5 f5 06 eb 18 55 48 89 e5 57 70 07 70 07 77 00 70 07 <00> 70 07 00 70 07 70 07 77 00 70 07 00 70 07 00 77 00 70 07 00 77
RSP: 0000:ffffc900158504b0 EFLAGS: 00010046
RAX: 0000000000000001 RBX: ffff8880ae636c00 RCX: 1ffffffff1308b20
RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8880ae636ce0
RBP: ffffc900158504b8 R08: 0000000000000004 R09: 0000000000000002
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000004
R13: ffffffff884588a0 R14: 0000000000000000 R15: ffffffff81007677
 rcu_is_watching+0x8d/0xb0 kernel/rcu/tree.c:1112
 do_error_trap+0x176/0x230 arch/x86/kernel/traps.c:171
 handle_invalid_op+0x2c/0x30 arch/x86/kernel/traps.c:213
 exc_invalid_op+0x2b/0x40 arch/x86/kernel/traps.c:259
 asm_exc_invalid_op+0x12/0x20 arch/x86/include/asm/idtentry.h:536
RIP: 0010:preempt_schedule_notrace_thunk+0x18/0x31 arch/x86/entry/thunk_64.S:48
Code: 52 51 50 41 50 41 51 41 52 41 53 e8 a3 d5 f5 06 eb 18 55 48 89 e5 57 70 07 70 07 77 00 70 07 00 70 07 00 70 07 70 07 77 00 70 <07> 00 70 07 00 77 00 70 07 00 77 00 00 00 70 07 00 00 77 07 00 77
RSP: 0000:ffffc90015850600 EFLAGS: 00010046
RAX: 0000000000000082 RBX: ffffc90015850950 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: ffffffff839a89cb RDI: 0000000000000001
RBP: ffffc90015850648 R08: ffffffff83b21c70 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000008
 search_module_extables+0xce/0x100 kernel/module.c:4469
 search_exception_tables+0x42/0x50 kernel/extable.c:59
 fixup_exception+0x4b/0xca arch/x86/mm/extable.c:161
 no_context+0xe7/0x9f0 arch/x86/mm/fault.c:645
 __bad_area_nosemaphore+0xa9/0x4f0 arch/x86/mm/fault.c:835
 do_user_addr_fault+0x760/0xbf0 arch/x86/mm/fault.c:1248
 handle_page_fault arch/x86/mm/fault.c:1429 [inline]
 exc_page_fault+0xa8/0x190 arch/x86/mm/fault.c:1482
 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:538
RIP: 0010:preempt_schedule_notrace_thunk+0xd/0x31 arch/x86/entry/thunk_64.S:41
Code: e8 e9 04 46 00 55 48 89 e5 57 56 52 51 50 41 50 41 51 41 52 41 53 e8 a3 d5 f5 06 eb 18 55 48 89 e5 57 70 07 70 07 77 00 70 07 <00> 70 07 00 70 07 70 07 77 00 70 07 00 70 07 00 77 00 70 07 00 77
RSP: 0000:ffffc90015850970 EFLAGS: 00010046
RAX: 0000000000000001 RBX: ffff8880ae636c00 RCX: 1ffffffff1308b20
RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8880ae636ce0
RBP: ffffc90015850978 R08: 0000000000000004 R09: 0000000000000002
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000004
R13: ffffffff884588a0 R14: 0000000000000000 R15: ffffffff81007677
 rcu_is_watching+0x8d/0xb0 kernel/rcu/tree.c:1112
 do_error_trap+0x176/0x230 arch/x86/kernel/traps.c:171
 handle_invalid_op+0x2c/0x30 arch/x86/kernel/traps.c:213
 exc_invalid_op+0x2b/0x40 arch/x86/kernel/traps.c:259
 asm_exc_invalid_op+0x12/0x20 arch/x86/include/asm/idtentry.h:536
RIP: 0010:preempt_schedule_notrace_thunk+0x18/0x31 arch/x86/entry/thunk_64.S:48
Code: 52 51 50 41 50 41 51 41 52 41 53 e8 a3 d5 f5 06 eb 18 55 48 89 e5 57 70 07 70 07 77 00 70 07 00 70 07 00 70 07 70 07 77 00 70 <07> 00 70 07 00 77 00 70 07 00 77 00 00 00 70 07 00 00 77 07 00 77
RSP: 0000:ffffc90015850ac0 EFLAGS: 00010046
RAX: 0000000000000082 RBX: ffffc90015850e10 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: ffffffff839a89cb RDI: 0000000000000001
RBP: ffffc90015850b08 R08: ffffffff83b21c70 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000008
 search_module_extables+0xce/0x100 kernel/module.c:4469
 search_exception_tables+0x42/0x50 kernel/extable.c:59
 fixup_exception+0x4b/0xca arch/x86/mm/extable.c:161
 no_context+0xe7/0x9f0 arch/x86/mm/fault.c:645
 __bad_area_nosemaphore+0xa9/0x4f0 arch/x86/mm/fault.c:835
 do_user_addr_fault+0x760/0xbf0 arch/x86/mm/fault.c:1248
 handle_page_fault arch/x86/mm/fault.c:1429 [inline]
 exc_page_fault+0xa8/0x190 arch/x86/mm/fault.c:1482
 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:538
RIP: 0010:preempt_schedule_notrace_thunk+0xd/0x31 arch/x86/entry/thunk_64.S:41
Code: e8 e9 04 46 00 55 48 89 e5 57 56 52 51 50 41 50 41 51 41 52 41 53 e8 a3 d5 f5 06 eb 18 55 48 89 e5 57 70 07 70 07 77 00 70 07 <00> 70 07 00 70 07 70 07 77 00 70 07 00 70 07 00 77 00 70 07 00 77
RSP: 0000:ffffc90015850e30 EFLAGS: 00010046
RAX: 0000000000000001 RBX: ffff8880ae636c00 RCX: 1ffffffff1308b20
RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8880ae636ce0
RBP: ffffc90015850e38 R08: 0000000000000004 R09: 0000000000000002
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000004
R13: ffffffff884588a0 R14: 0000000000000000 R15: ffffffff81007677
 rcu_is_watching+0x8d/0xb0 kernel/rcu/tree.c:1112
 do_error_trap+0x176/0x230 arch/x86/kernel/traps.c:171
 handle_invalid_op+0x2c/0x30 arch/x86/kernel/traps.c:213
 exc_invalid_op+0x2b/0x40 arch/x86/kernel/traps.c:259
 asm_exc_invalid_op+0x12/0x20 arch/x86/include/asm/idtentry.h:536
RIP: 0010:preempt_schedule_notrace_thunk+0x18/0x31 arch/x86/entry/thunk_64.S:48
Code: 52 51 50 41 50 41 51 41 52 41 53 e8 a3 d5 f5 06 eb 18 55 48 89 e5 57 70 07 70 07 77 00 70 07 00 70 07 00 70 07 70 07 77 00 70 <07> 00 70 07 00 77 00 70 07 00 77 00 00 00 70 07 00 00 77 07 00 77
RSP: 0000:ffffc90015850f80 EFLAGS: 00010046
RAX: 0000000000000082 RBX: ffffc900158512d0 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: ffffffff839a89cb RDI: 0000000000000001
RBP: ffffc90015850fc8 R08: ffffffff83b21c70 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000
Lost 1018 message(s)!
---[ end trace 53af6318031bbd87 ]---
RIP: 0010:check_preemption_disabled+0x0/0x130 lib/smp_processor_id.c:13
Code: 1f 44 00 00 8b 1d a8 f4 bd 02 31 ff 89 de 0f 1f 44 00 00 85 db 75 ae 0f 1f 44 00 00 41 bc 01 00 00 00 e8 c3 05 a4 fb eb 9f cc <41> 56 41 55 49 89 f5 41 54 55 48 89 fd 53 0f 1f 44 00 00 65 44 8b
RSP: 0000:ffffc90015850000 EFLAGS: 00010002
RAX: 0000000000000001 RBX: ffffc90015850098 RCX: 0000000000000006
RDX: ffffffff884588a0 RSI: ffffffff88941980 RDI: ffffffff889419c0
RBP: 0000000000000006 R08: 0000000000000004 R09: 0000000000000002
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000004
R13: ffffffff884588a0 R14: 0000000000000000 R15: ffffffff81007677
FS:  0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc9001584fff8 CR3: 000000021aab4000 CR4: 00000000001526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600