rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P16633/1:b..l
rcu: 	(detected by 1, t=10503 jiffies, g=97569, q=2179870 ncpus=2)
task:syz-executor    state:R  running task     stack:23744 pid:16633 tgid:16633 ppid:16620  task_flags:0x400140 flags:0x00000000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 preempt_schedule_irq+0x51/0x90 kernel/sched/core.c:7087
 irqentry_exit+0x36/0x90 kernel/entry/common.c:354
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:__page_table_check_zero+0x2ca/0x360 mm/page_table_check.c:160
Code: 83 e4 01 4c 89 e6 e8 05 1f 91 ff 4d 85 e4 0f 84 b0 fd ff ff e8 c7 23 91 ff 48 83 ed 01 e9 aa fd ff ff e8 b9 23 91 ff 90 0f 0b <e8> b1 23 91 ff 48 89 ef e8 89 cc ff ff 48 83 c4 10 5b 5d 41 5c 41
RSP: 0018:ffffc900001077b8 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff8228cd10
RDX: ffff88802542a440 RSI: 0000000000000001 RDI: 0000000000000006
RBP: ffff88801e100c20 R08: 0000000000000006 R09: 0000000000000001
R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000001
R13: 0000000000000000 R14: ffff88801e100c1c R15: dffffc0000000000
 page_table_check_free include/linux/page_table_check.h:41 [inline]
 free_pages_prepare mm/page_alloc.c:1128 [inline]
 free_frozen_pages+0x6c2/0xfb0 mm/page_alloc.c:2660
 __put_partials+0x14c/0x170 mm/slub.c:3153
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x4e/0x120 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x195/0x1e0 mm/kasan/quarantine.c:286
 __kasan_slab_alloc+0x69/0x90 mm/kasan/common.c:329
 kasan_slab_alloc include/linux/kasan.h:250 [inline]
 slab_post_alloc_hook mm/slub.c:4115 [inline]
 slab_alloc_node mm/slub.c:4164 [inline]
 __do_kmalloc_node mm/slub.c:4293 [inline]
 __kmalloc_noprof+0x1cd/0x510 mm/slub.c:4306
 kmalloc_noprof include/linux/slab.h:905 [inline]
 kzalloc_noprof include/linux/slab.h:1037 [inline]
 tomoyo_encode2+0x100/0x3e0 security/tomoyo/realpath.c:45
 tomoyo_encode+0x29/0x50 security/tomoyo/realpath.c:80
 tomoyo_realpath_from_path+0x19d/0x720 security/tomoyo/realpath.c:283
 tomoyo_get_realpath security/tomoyo/file.c:151 [inline]
 tomoyo_path_perm+0x276/0x460 security/tomoyo/file.c:822
 security_inode_getattr+0x116/0x290 security/security.c:2377
 vfs_getattr fs/stat.c:243 [inline]
 vfs_statx_path fs/stat.c:283 [inline]
 vfs_statx+0x115/0x210 fs/stat.c:349
 vfs_fstatat+0x7b/0xf0 fs/stat.c:368
 __do_sys_newfstatat+0xa2/0x130 fs/stat.c:532
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f02d038b97a
RSP: 002b:00007fffd11b2ad8 EFLAGS: 00000286 ORIG_RAX: 0000000000000106
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f02d038b97a
RDX: 00007fffd11b2b00 RSI: 00007fffd11b2b90 RDI: 00000000ffffff9c
RBP: 00007fffd11b2b90 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000100 R11: 0000000000000286 R12: 00007fffd11b3c20
R13: 00007f02d040e08c R14: 000000000012554e R15: 00007fffd11b3c60
 </TASK>
rcu: rcu_preempt kthread starved for 9469 jiffies! g97569 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:27216 pid:18    tgid:18    ppid:2      task_flags:0x208040 flags:0x00004000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_timeout+0x124/0x280 kernel/time/sleep_timeout.c:99
 rcu_gp_fqs_loop+0x1eb/0xb00 kernel/rcu/tree.c:2024
 rcu_gp_kthread+0x271/0x380 kernel/rcu/tree.c:2226
 kthread+0x3af/0x750 kernel/kthread.c:464
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:148
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.14.0-rc6-syzkaller-00205-g3571e8b091f4 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
RIP: 0010:get_current arch/x86/include/asm/current.h:49 [inline]
RIP: 0010:__sanitizer_cov_trace_pc+0x4/0x70 kernel/kcov.c:216
Code: ff ff ff 31 c0 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa <65> 48 8b 15 d4 e6 49 7e 65 8b 05 d5 e6 49 7e a9 00 01 ff 00 48 8b
RSP: 0018:ffffc90000a27f40 EFLAGS: 00000282
RAX: 0000000000000000 RBX: ffff88820d6cec80 RCX: ffffffff893331cd
RDX: ffff88801d698000 RSI: ffffffff892d4257 RDI: ffff88820d6cec80
RBP: dffffc0000000000 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000004 R12: 0000000000000820
R13: 0000000000000000 R14: ffff88804cda8000 R15: ffff88804cda8940
FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f0e8abdc12c CR3: 000000006f9da000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 skb_end_pointer include/linux/skbuff.h:1678 [inline]
 skb_zcopy include/linux/skbuff.h:1741 [inline]
 skb_orphan_frags include/linux/skbuff.h:3321 [inline]
 skb_clone+0x25/0x3f0 net/core/skbuff.c:1982
 dev_queue_xmit_nit+0x38f/0xbc0 net/core/dev.c:2525
 xmit_one net/core/dev.c:3796 [inline]
 dev_hard_start_xmit+0x283/0x7b0 net/core/dev.c:3816
 __dev_queue_xmit+0x7f0/0x43e0 net/core/dev.c:4652
 dev_queue_xmit include/linux/netdevice.h:3313 [inline]
 neigh_hh_output include/net/neighbour.h:523 [inline]
 neigh_output include/net/neighbour.h:537 [inline]
 ip_finish_output2+0xc34/0x2180 net/ipv4/ip_output.c:236
 __ip_finish_output net/ipv4/ip_output.c:314 [inline]
 __ip_finish_output+0x49e/0x950 net/ipv4/ip_output.c:296
 ip_finish_output+0x35/0x380 net/ipv4/ip_output.c:324
 NF_HOOK_COND include/linux/netfilter.h:303 [inline]
 ip_output+0x13b/0x2a0 net/ipv4/ip_output.c:434
 dst_output include/net/dst.h:459 [inline]
 ip_local_out+0x33e/0x4a0 net/ipv4/ip_output.c:130
 synproxy_send_tcp.isra.0+0x439/0x630 net/netfilter/nf_synproxy_core.c:439
 synproxy_send_client_synack+0x6f7/0x900 net/netfilter/nf_synproxy_core.c:484
 nft_synproxy_eval_v4 net/netfilter/nft_synproxy.c:59 [inline]
 nft_synproxy_do_eval+0xa49/0xd60 net/netfilter/nft_synproxy.c:141
 expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]
 nft_do_chain+0x2e6/0x18f0 net/netfilter/nf_tables_core.c:288
 nft_do_chain_inet+0x18b/0x350 net/netfilter/nft_chain_filter.c:161
 nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]
 nf_hook_slow+0xbb/0x200 net/netfilter/core.c:626
 nf_hook.constprop.0+0x42e/0x750 include/linux/netfilter.h:269
 NF_HOOK include/linux/netfilter.h:312 [inline]
 ip_local_deliver+0x169/0x1f0 net/ipv4/ip_input.c:254
 dst_input include/net/dst.h:469 [inline]
 ip_rcv_finish net/ipv4/ip_input.c:447 [inline]
 NF_HOOK include/linux/netfilter.h:314 [inline]
 NF_HOOK include/linux/netfilter.h:308 [inline]
 ip_rcv+0x2c3/0x5d0 net/ipv4/ip_input.c:567
 __netif_receive_skb_one_core+0x199/0x1e0 net/core/dev.c:5896
 __netif_receive_skb+0x1d/0x160 net/core/dev.c:6009
 process_backlog+0x443/0x15f0 net/core/dev.c:6357
 __napi_poll.constprop.0+0xb7/0x550 net/core/dev.c:7191
 napi_poll net/core/dev.c:7260 [inline]
 net_rx_action+0xa94/0x1010 net/core/dev.c:7382
 handle_softirqs+0x213/0x8f0 kernel/softirq.c:561
 __do_softirq kernel/softirq.c:595 [inline]
 invoke_softirq kernel/softirq.c:435 [inline]
 __irq_exit_rcu+0x109/0x170 kernel/softirq.c:662
 irq_exit_rcu+0x9/0x30 kernel/softirq.c:678
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1049 [inline]
 sysvec_apic_timer_interrupt+0xa4/0xc0 arch/x86/kernel/apic/apic.c:1049
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:native_irq_disable arch/x86/include/asm/irqflags.h:37 [inline]
RIP: 0010:arch_local_irq_disable arch/x86/include/asm/irqflags.h:92 [inline]
RIP: 0010:acpi_safe_halt+0x1a/0x20 drivers/acpi/processor_idle.c:112
Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 65 48 8b 05 08 38 ac 74 48 8b 00 a8 08 75 0c 66 90 0f 00 2d f8 1d 87 00 fb f4 <fa> c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
RSP: 0018:ffffc900001b7d58 EFLAGS: 00000246
RAX: 0000000000004000 RBX: 0000000000000001 RCX: ffffffff8b578469
RDX: 0000000000000001 RSI: ffff8881416a6000 RDI: ffff8881416a6064
RBP: ffff8881416a6064 R08: 0000000000000001 R09: ffffed10170e6f85
R10: ffff8880b8737c2b R11: 0000000000000000 R12: ffff888147ea5000
R13: ffffffff8ee2eaa0 R14: 0000000000000001 R15: 0000000000000000
 acpi_idle_enter+0xc5/0x160 drivers/acpi/processor_idle.c:699
 cpuidle_enter_state+0xaa/0x4f0 drivers/cpuidle/cpuidle.c:268
 cpuidle_enter+0x4e/0xa0 drivers/cpuidle/cpuidle.c:389
 cpuidle_idle_call kernel/sched/idle.c:230 [inline]
 do_idle+0x310/0x3f0 kernel/sched/idle.c:325
 cpu_startup_entry+0x4f/0x60 kernel/sched/idle.c:423
 start_secondary+0x222/0x2b0 arch/x86/kernel/smpboot.c:315
 common_startup_64+0x13e/0x148
 </TASK>