[Firmware Bug]: TSC ADJUST differs: CPU0 0 --> -476447963626. Restoring
INFO: rcu_preempt detected stalls on CPUs/tasks:
	0-...: (1 ticks this GP) idle=9ee/140000000000001/0 softirq=18847/18847 fqs=0 
	(detected by 1, t=21659 jiffies, g=2945, c=2944, q=80)
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.14.276-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
task: ffffffff88e74480 task.stack: ffffffff88e00000
RIP: 0010:unwind_next_frame+0xfc7/0x17d0 arch/x86/kernel/unwind_orc.c:474
RSP: 0018:ffff8880ba407668 EFLAGS: 00000287
RAX: 0000000000000000 RBX: 1ffff11017480ed4 RCX: ffffffff8a6d7c76
RDX: ffff8880ba407768 RSI: ffff8880ba407dd8 RDI: ffff8880ba407728
RBP: 0000000000000002 R08: 0000000000000001 R09: 0000000000000001
R10: ffff8880ba407e08 R11: 0000000000000001 R12: ffff8880ba40775d
R13: ffff8880ba407760 R14: ffff8880ba407778 R15: ffff8880ba407728
FS:  0000000000000000(0000) GS:ffff8880ba400000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fc88944dff8 CR3: 0000000008e6a000 CR4: 00000000003406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 __save_stack_trace+0x90/0x160 arch/x86/kernel/stacktrace.c:44
 save_stack mm/kasan/kasan.c:447 [inline]
 set_track mm/kasan/kasan.c:459 [inline]
 kasan_kmalloc+0xeb/0x160 mm/kasan/kasan.c:551
 kmem_cache_alloc+0x124/0x3c0 mm/slab.c:3552
 dst_alloc+0xed/0x6d0 net/core/dst.c:107
 __ip6_dst_alloc net/ipv6/route.c:357 [inline]
 ip6_dst_alloc+0x39/0x2d0 net/ipv6/route.c:370
 icmp6_dst_alloc+0x155/0x580 net/ipv6/route.c:1768
 ndisc_send_skb+0xace/0x1390 net/ipv6/ndisc.c:463
 ndisc_send_rs+0x125/0x630 net/ipv6/ndisc.c:677
 addrconf_rs_timer+0x2bb/0x5a0 net/ipv6/addrconf.c:3769
 call_timer_fn+0x14a/0x650 kernel/time/timer.c:1280
 expire_timers+0x232/0x4d0 kernel/time/timer.c:1319
 __run_timers kernel/time/timer.c:1637 [inline]
 run_timer_softirq+0x1d5/0x5a0 kernel/time/timer.c:1650
 __do_softirq+0x24d/0x9ff kernel/softirq.c:288
 invoke_softirq kernel/softirq.c:368 [inline]
 irq_exit+0x193/0x240 kernel/softirq.c:409
 exiting_irq arch/x86/include/asm/apic.h:638 [inline]
 smp_apic_timer_interrupt+0x141/0x5e0 arch/x86/kernel/apic/apic.c:1106
 apic_timer_interrupt+0x93/0xa0 arch/x86/entry/entry_64.S:793
 </IRQ>
RIP: 0010:cpuidle_idle_call kernel/sched/idle.c:145 [inline]
RIP: 0010:do_idle+0x2a8/0x3c0 kernel/sched/idle.c:246
RSP: 0018:ffffffff88e07ea8 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10
RAX: 1ffffffff11e1313 RBX: dffffc0000000000 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffffff88e74d04
RBP: ffffffff88f09890 R08: 0000000000000047 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: fffffbfff11ce890
R13: ffffffff88e74480 R14: 0000000000000000 R15: 0000000000000000
 cpu_startup_entry+0x14/0x20 kernel/sched/idle.c:351
 start_kernel+0x750/0x770 init/main.c:708
 secondary_startup_64+0xa5/0xb0 arch/x86/kernel/head_64.S:240
Code: c1 0f 85 2e 04 00 00 83 e0 07 40 38 c6 41 0f 9e c0 40 84 f6 0f 95 c0 41 84 c0 0f 85 15 04 00 00 48 0f bf 71 02 4c 89 ff 4c 01 d6 <e8> 94 ee ff ff 84 c0 0f 85 bf fd ff ff e9 21 f4 ff ff 4d 8b 67 
rcu_preempt kthread starved for 21659 jiffies! g2945 c2944 f0x0 RCU_GP_WAIT_FQS(3) ->state=0x402 ->cpu=1
unregister_netdevice: waiting for ip6gre0 to become free. Usage count = -1
rcu_preempt     R  running task    30008     8      2 0x80000000
Call Trace:
 context_switch kernel/sched/core.c:2811 [inline]
 __schedule+0x88b/0x1de0 kernel/sched/core.c:3387
 schedule+0x8d/0x1b0 kernel/sched/core.c:3431
 schedule_timeout+0x4af/0xe90 kernel/time/timer.c:1747
 rcu_gp_kthread+0xc0a/0x1e60 kernel/rcu/tree.c:2255
 kthread+0x30d/0x420 kernel/kthread.c:232
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
systemd[1]: systemd-journald.service: Main process exited, code=killed, status=6/ABRT
systemd[1]: systemd-journald.service: Unit entered failed state.
systemd[1]: systemd-journald.service: Failed with result 'watchdog'.
systemd[1]: systemd-journald.service: Service has no hold-off time, scheduling restart.
systemd[1]: Stopped Flush Journal to Persistent Storage.
systemd[1]: Stopping Flush Journal to Persistent Storage...
systemd[1]: Stopped Journal Service.
systemd[1]: Starting Journal Service...
systemd[1]: Starting Load/Save RF Kill Switch Status...
systemd[1]: systemd-udevd.service: Main process exited, code=killed, status=6/ABRT
systemd-journald[11467]: File /run/log/journal/04d8c135ee6b410280ba31a58c89679d/system.journal corrupted or uncleanly shut down, renaming and replacing.
----------------
Code disassembly (best guess):
   0:	c1 0f 85             	rorl   $0x85,(%rdi)
   3:	2e 04 00             	cs add $0x0,%al
   6:	00 83 e0 07 40 38    	add    %al,0x384007e0(%rbx)
   c:	c6 41 0f 9e          	movb   $0x9e,0xf(%rcx)
  10:	c0 40 84 f6          	rolb   $0xf6,-0x7c(%rax)
  14:	0f 95 c0             	setne  %al
  17:	41 84 c0             	test   %al,%r8b
  1a:	0f 85 15 04 00 00    	jne    0x435
  20:	48 0f bf 71 02       	movswq 0x2(%rcx),%rsi
  25:	4c 89 ff             	mov    %r15,%rdi
  28:	4c 01 d6             	add    %r10,%rsi
* 2b:	e8 94 ee ff ff       	callq  0xffffeec4 <-- trapping instruction
  30:	84 c0                	test   %al,%al
  32:	0f 85 bf fd ff ff    	jne    0xfffffdf7
  38:	e9 21 f4 ff ff       	jmpq   0xfffff45e
  3d:	4d                   	rex.WRB
  3e:	8b                   	.byte 0x8b
  3f:	67                   	addr32