rcu: INFO: rcu_preempt self-detected stall on CPU
rcu: 	0-...!: (1 GPs behind) idle=c1a4/1/0x4000000000000000 softirq=16545/16546 fqs=303
rcu: 	(t=10502 jiffies g=19557 q=165 ncpus=2)
rcu: rcu_preempt kthread starved for 9892 jiffies! g19557 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:27752 pid:17    ppid:2      flags:0x00004000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5380 [inline]
 __schedule+0x14d2/0x44d0 kernel/sched/core.c:6699
 schedule+0xbd/0x170 kernel/sched/core.c:6773
 schedule_timeout+0x160/0x280 kernel/time/timer.c:2167
 rcu_gp_fqs_loop+0x302/0x1560 kernel/rcu/tree.c:1667
 rcu_gp_kthread+0x99/0x380 kernel/rcu/tree.c:1866
 kthread+0x2fa/0x390 kernel/kthread.c:388
 ret_from_fork+0x48/0x80 arch/x86/kernel/process.c:152
 ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:293
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
RIP: 0010:memset_orig+0x3e/0xac arch/x86/lib/memset_64.S:70
Code: 01 48 0f af c1 41 89 f9 41 83 e1 07 75 6c 48 89 d1 48 c1 e9 06 74 35 0f 1f 44 00 00 48 ff c9 48 89 07 48 89 47 08 48 89 47 10 <48> 89 47 18 48 89 47 20 48 89 47 28 48 89 47 30 48 89 47 38 48 8d
RSP: 0018:ffffc900001f0408 EFLAGS: 00000246
RAX: 0000000000000000 RBX: ffff8880224ec000 RCX: 0000000000000000
RDX: 0000000000000800 RSI: 0000000000000000 RDI: ffffed100449dfc0
RBP: ffffea0000893b00 R08: ffffea0000893b37 R09: 0000000000000000
R10: ffffed100449d800 R11: fffff94000112767 R12: 0000000000000000
R13: 0000000000000001 R14: 0000000000004000 R15: dffffc0000000000
FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f55cb4579c4 CR3: 0000000028cc0000 CR4: 00000000003506e0
Call Trace:
 <IRQ>
 kasan_poison mm/kasan/shadow.c:150 [inline]
 kasan_unpoison+0x67/0x90 mm/kasan/shadow.c:190
 __kasan_unpoison_pages+0x24/0x30 mm/kasan/common.c:110
 kasan_unpoison_pages include/linux/kasan.h:121 [inline]
 post_alloc_hook+0xbc/0x210 mm/page_alloc.c:1538
 prep_new_page mm/page_alloc.c:1561 [inline]
 get_page_from_freelist+0x195c/0x19f0 mm/page_alloc.c:3191
 __alloc_pages+0x1e3/0x460 mm/page_alloc.c:4457
 alloc_slab_page+0x5d/0x170 mm/slub.c:1876
 allocate_slab mm/slub.c:2023 [inline]
 new_slab+0x87/0x2e0 mm/slub.c:2076
 ___slab_alloc+0xc6d/0x12f0 mm/slub.c:3230
 __slab_alloc mm/slub.c:3329 [inline]
 __slab_alloc_node mm/slub.c:3382 [inline]
 slab_alloc_node mm/slub.c:3475 [inline]
 kmem_cache_alloc_node+0x1ea/0x330 mm/slub.c:3530
 kmalloc_reserve+0x95/0x260 net/core/skbuff.c:559
 __alloc_skb+0x138/0x2c0 net/core/skbuff.c:650
 skb_copy+0x13d/0x7a0 net/core/skbuff.c:1983
 mac80211_hwsim_tx_frame_no_nl+0xc81/0x1170 drivers/net/wireless/virtual/mac80211_hwsim.c:1840
 mac80211_hwsim_tx_frame+0x1b5/0x200 drivers/net/wireless/virtual/mac80211_hwsim.c:2176
 mac80211_hwsim_beacon_tx+0x3e9/0x780 drivers/net/wireless/virtual/mac80211_hwsim.c:2269
 __iterate_interfaces+0x243/0x500 net/mac80211/util.c:766
 ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 net/mac80211/util.c:802
 mac80211_hwsim_beacon+0xbb/0x1b0 drivers/net/wireless/virtual/mac80211_hwsim.c:2295
 __run_hrtimer kernel/time/hrtimer.c:1755 [inline]
 __hrtimer_run_queues+0x51e/0xc40 kernel/time/hrtimer.c:1819
 hrtimer_run_softirq+0x187/0x2b0 kernel/time/hrtimer.c:1836
 handle_softirqs+0x280/0x820 kernel/softirq.c:578
 __do_softirq kernel/softirq.c:612 [inline]
 invoke_softirq kernel/softirq.c:452 [inline]
 __irq_exit_rcu+0xc7/0x190 kernel/softirq.c:661
 irq_exit_rcu+0x9/0x20 kernel/softirq.c:673
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1088 [inline]
 sysvec_apic_timer_interrupt+0xa4/0xc0 arch/x86/kernel/apic/apic.c:1088
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:687
RIP: 0010:pv_native_safe_halt+0x13/0x20 arch/x86/kernel/paravirt.c:148
Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d a3 36 3a 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56
RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6
RAX: 9aaedb048adf2e00 RBX: ffffffff8161923b RCX: 9aaedb048adf2e00
RDX: 0000000000000001 RSI: ffffffff8aaaba20 RDI: ffffffff8afc7040
RBP: ffffc90000187f20 R08: ffff8880b8f36d4b R09: 1ffff110171e6da9
R10: dffffc0000000000 R11: ffffed10171e6daa R12: ffffffff8e4a8f28
R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff1100364e780
 arch_safe_halt arch/x86/include/asm/paravirt.h:108 [inline]
 default_idle+0x13/0x20 arch/x86/kernel/process.c:753
 default_idle_call+0x6c/0xa0 kernel/sched/idle.c:97
 cpuidle_idle_call kernel/sched/idle.c:170 [inline]
 do_idle+0x1eb/0x510 kernel/sched/idle.c:282
 cpu_startup_entry+0x43/0x60 kernel/sched/idle.c:380
 start_secondary+0xee/0xf0 arch/x86/kernel/smpboot.c:323
 secondary_startup_64_no_verify+0x179/0x17b
 </TASK>
CPU: 0 PID: 1287 Comm: aoe_tx0 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
RIP: 0010:__raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:152 [inline]
RIP: 0010:_raw_spin_unlock_irqrestore+0xa9/0x110 kernel/locking/spinlock.c:194
Code: 74 05 e8 ca 51 14 f7 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> 42 ca e3 f6 65 8b 05 b3 18 8c 75 85 c0 74 3c 48 c7 04 24 0e 36
RSP: 0018:ffffc90004cc7860 EFLAGS: 00000206
RAX: 7ca27563147e2100 RBX: 0000000000000a06 RCX: 7ca27563147e2100
RDX: dffffc0000000000 RSI: ffffffff8aaaba20 RDI: 0000000000000001
RBP: ffffc90004cc78f8 R08: ffffffff90da5607 R09: 1ffffffff21b4ac0
R10: dffffc0000000000 R11: fffffbfff21b4ac1 R12: dffffc0000000000
R13: 0000000000000020 R14: ffffffff971d5d00 R15: 1ffff92000998f0c
FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f699258e000 CR3: 0000000018ece000 CR4: 00000000003506f0
Call Trace:
 <TASK>
 spin_unlock_irqrestore include/linux/spinlock.h:406 [inline]
 uart_write+0x3a2/0x5d0 drivers/tty/serial/serial_core.c:616
 handle_tx+0x23b/0x610 drivers/net/caif/caif_serial.c:236
 __netdev_start_xmit include/linux/netdevice.h:4943 [inline]
 netdev_start_xmit include/linux/netdevice.h:4957 [inline]
 xmit_one net/core/dev.c:3619 [inline]
 dev_hard_start_xmit+0x246/0x740 net/core/dev.c:3635
 __dev_queue_xmit+0x1a64/0x35a0 net/core/dev.c:4425
 dev_queue_xmit include/linux/netdevice.h:3113 [inline]
 tx+0x6b/0x180 drivers/block/aoe/aoenet.c:63
 kthread+0x1ca/0x3b0 drivers/block/aoe/aoecmd.c:1241
 kthread+0x2fa/0x390 kernel/kthread.c:388
 ret_from_fork+0x48/0x80 arch/x86/kernel/process.c:152
 ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:293
 </TASK>