rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	0-....: (1 ticks this GP) idle=364c/1/0x4000000000000000 softirq=96052/96052 fqs=6
rcu: 	         hardirqs   softirqs   csw/system
rcu: 	 number:        0          0            0
rcu: 	cputime:        0          0            0   ==> 34600(ms)
rcu: 	(detected by 1, t=10505 jiffies, g=107985, q=1114 ncpus=2)
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 18574 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
RIP: 0010:debug_spin_lock_before kernel/locking/spinlock_debug.c:87 [inline]
RIP: 0010:do_raw_spin_lock+0x91/0x2f0 kernel/locking/spinlock_debug.c:115
Code: 14 4c 8d 77 04 4c 89 f0 48 c1 e8 03 0f b6 04 10 84 c0 0f 85 f3 01 00 00 41 8b 06 3d ad 4e ad de 0f 85 32 01 00 00 4c 8d 73 10 <4c> 89 f0 48 c1 e8 03 48 89 44 24 10 80 3c 10 00 74 12 4c 89 f7 e8
RSP: 0018:ffffc90000007c60 EFLAGS: 00000046
RAX: 00000000dead4ead RBX: ffffffff9a70ed98 RCX: 0000000000010002
RDX: dffffc0000000000 RSI: ffffffff8e216082 RDI: ffffffff9a70ed98
RBP: ffffc90000007d18 R08: ffffffff84bc7d23 R09: ffffffff9a70edb0
R10: dffffc0000000000 R11: fffff52000000fac R12: 1ffff92000000f90
R13: dffffc0000000000 R14: ffffffff9a70eda8 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff88812529e000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffd617142c8 CR3: 000000000e74a000 CR4: 00000000003526f0
Call Trace:
 <IRQ>
 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:133 [inline]
 _raw_spin_lock_irqsave+0x4c/0x60 kernel/locking/spinlock.c:166
 debug_object_activate+0x83/0x580 lib/debugobjects.c:845
 debug_hrtimer_activate kernel/time/hrtimer.c:485 [inline]
 debug_activate kernel/time/hrtimer.c:528 [inline]
 enqueue_hrtimer+0xa9/0x2c0 kernel/time/hrtimer.c:1109
 __run_hrtimer kernel/time/hrtimer.c:1946 [inline]
 __hrtimer_run_queues+0x4d2/0xa20 kernel/time/hrtimer.c:1994
 hrtimer_interrupt+0x44b/0x950 kernel/time/hrtimer.c:2113
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1050 [inline]
 __sysvec_apic_timer_interrupt+0x102/0x430 arch/x86/kernel/apic/apic.c:1067
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1061 [inline]
 sysvec_apic_timer_interrupt+0xa1/0xc0 arch/x86/kernel/apic/apic.c:1061
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:lock_acquire+0x221/0x350 kernel/locking/lockdep.c:5872
Code: ff ff ff e8 71 ae 05 0a f7 44 24 08 00 02 00 00 0f 84 3a ff ff ff 65 48 8b 05 db 78 96 11 48 3b 44 24 58 75 33 fb 48 83 c4 60 <5b> 41 5c 41 5d 41 5e 41 5f 5d e9 00 a3 08 0a cc 48 8d 3d e8 d9 91
RSP: 0018:ffffc900058b7258 EFLAGS: 00000282
RAX: 6f4c05510d17fd00 RBX: 0000000000000000 RCX: 0000000000000046
RDX: 00000000a69b4a9e RSI: ffffffff8e216082 RDI: ffffffff8c28b760
RBP: ffffffff8176e256 R08: ffffffff8176e256 R09: ffffffff8e95cce0
R10: ffffc900058b73b8 R11: ffffffff81b0e210 R12: 0000000000000002
R13: ffffffff8e95cce0 R14: 0000000000000000 R15: 0000000000000246
 rcu_lock_acquire include/linux/rcupdate.h:300 [inline]
 rcu_read_lock include/linux/rcupdate.h:838 [inline]
 class_rcu_constructor include/linux/rcupdate.h:1181 [inline]
 unwind_next_frame+0xc3/0x2550 arch/x86/kernel/unwind_orc.c:495
 arch_stack_walk+0x11b/0x150 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0xa9/0x100 kernel/stacktrace.c:122
 kasan_save_stack+0x3e/0x60 mm/kasan/common.c:57
 kasan_record_aux_stack+0xbd/0xd0 mm/kasan/generic.c:556
 __call_rcu_common kernel/rcu/tree.c:3131 [inline]
 call_rcu+0xee/0x890 kernel/rcu/tree.c:3251
 slab_free_hook mm/slub.c:2653 [inline]
 slab_free mm/slub.c:6251 [inline]
 kmem_cache_free+0x462/0x650 mm/slub.c:6378
 tear_down_vmas+0x312/0x520 mm/mmap.c:1262
 exit_mmap+0x4b6/0x9e0 mm/mmap.c:1320
 __mmput+0x118/0x430 kernel/fork.c:1178
 exit_mm+0x1f6/0x2d0 kernel/exit.c:582
 do_exit+0x6a2/0x22c0 kernel/exit.c:964
 do_group_exit+0x21b/0x2d0 kernel/exit.c:1119
 get_signal+0x1284/0x1330 kernel/signal.c:3037
 arch_do_signal_or_restart+0xbc/0x840 arch/x86/kernel/signal.c:337
 __exit_to_user_mode_loop kernel/entry/common.c:64 [inline]
 exit_to_user_mode_loop+0xa9/0x680 kernel/entry/common.c:98
 __exit_to_user_mode_prepare include/linux/irq-entry-common.h:207 [inline]
 syscall_exit_to_user_mode_prepare include/linux/irq-entry-common.h:230 [inline]
 syscall_exit_to_user_mode include/linux/entry-common.h:318 [inline]
 do_syscall_64+0x353/0x580 arch/x86/entry/syscall_64.c:100
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fd844157fd7
Code: Unable to access opcode bytes at 0x7fd844157fad.
RSP: 002b:00007fffabfbc8e0 EFLAGS: 00000202 ORIG_RAX: 000000000000003d
RAX: fffffffffffffe00 RBX: 0000555575c7f500 RCX: 00007fd844157fd7
RDX: 0000000040000000 RSI: 00007fffabfbc93c RDI: ffffffffffffffff
RBP: 00007fffabfbc93c R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
R13: 0000000000000003 R14: 00007fffabfbcb98 R15: 0000000000000000
 </TASK>
rcu: rcu_preempt kthread starved for 3445 jiffies! g107985 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:27536 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5388 [inline]
 __schedule+0x1821/0x5740 kernel/sched/core.c:7189
 __schedule_loop kernel/sched/core.c:7268 [inline]
 schedule+0x164/0x360 kernel/sched/core.c:7283
 schedule_timeout+0x158/0x2c0 kernel/time/sleep_timeout.c:99
 rcu_gp_fqs_loop+0x312/0x11d0 kernel/rcu/tree.c:2095
 rcu_gp_kthread+0x9e/0x2b0 kernel/rcu/tree.c:2297
 kthread+0x389/0x470 kernel/kthread.c:436
 ret_from_fork+0x514/0xb70 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
CPU: 1 UID: 0 PID: 18591 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
RIP: 0010:csd_lock_wait kernel/smp.c:342 [inline]
RIP: 0010:smp_call_function_many_cond+0xfcf/0x13d0 kernel/smp.c:892
Code: 79 45 8b 2e 44 89 ee 83 e6 01 31 ff e8 9a 07 0c 00 41 83 e5 01 49 bd 00 00 00 00 00 fc ff df 75 07 e8 45 03 0c 00 eb 37 f3 90 <43> 0f b6 04 2c 84 c0 75 10 41 f7 06 01 00 00 00 74 1e e8 2a 03 0c
RSP: 0018:ffffc90004d3f7a0 EFLAGS: 00000293
RAX: ffffffff81b9b4a6 RBX: ffff8880b873c188 RCX: ffff88802f491f00
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
RBP: ffffc90004d3f8e0 R08: ffffffff903022f7 R09: 1ffffffff206045e
R10: dffffc0000000000 R11: fffffbfff206045f R12: 1ffff110170c8591
R13: dffffc0000000000 R14: ffff8880b8642c88 R15: 0000000000000000
FS:  0000555575c7f500(0000) GS:ffff88812539e000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000564809214288 CR3: 0000000028728000 CR4: 00000000003526f0
Call Trace:
 <TASK>
 on_each_cpu_cond_mask+0x3f/0x80 kernel/smp.c:1057
 __flush_tlb_multi arch/x86/include/asm/paravirt.h:46 [inline]
 flush_tlb_multi arch/x86/mm/tlb.c:1361 [inline]
 flush_tlb_mm_range+0x5c3/0x10b0 arch/x86/mm/tlb.c:1451
 tlb_flush arch/x86/include/asm/tlb.h:23 [inline]
 tlb_flush_mmu_tlbonly include/asm-generic/tlb.h:509 [inline]
 tlb_flush_mmu+0x1af/0xa30 mm/mmu_gather.c:423
 tlb_finish_mmu+0xf9/0x230 mm/mmu_gather.c:549
 change_prot_numa+0x357/0x410 mm/mempolicy.c:904
 task_numa_work+0xc22/0x15a0 kernel/sched/fair.c:3674
 task_work_run+0x1d9/0x270 kernel/task_work.c:233
 resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]
 __exit_to_user_mode_loop kernel/entry/common.c:67 [inline]
 exit_to_user_mode_loop+0x193/0x680 kernel/entry/common.c:98
 __exit_to_user_mode_prepare include/linux/irq-entry-common.h:207 [inline]
 syscall_exit_to_user_mode_prepare include/linux/irq-entry-common.h:230 [inline]
 syscall_exit_to_user_mode include/linux/entry-common.h:318 [inline]
 do_syscall_64+0x353/0x580 arch/x86/entry/syscall_64.c:100
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fd84415d68e
Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
RSP: 002b:00007fffabfbc6d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
RAX: 0000000000000000 RBX: 0000555575c7f500 RCX: 00007fd84415d68e
RDX: 00007fffabfbc730 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007fffabfbc79c R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000000b7
R13: 000000000000001f R14: 00000000000ab492 R15: 00007fffabfbc7f0
 </TASK>