rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5808/1:b..l P7871/1:b..l P2/1:b..l P5791/1:b..l P5872/1:b..l P5547/1:b..l P5166/1:b..l
rcu: 	(detected by 0, t=10504 jiffies, g=22305, q=1566122 ncpus=2)
task:klogd           state:R  running task     stack:25656 pid:5166  tgid:5166  ppid:1      task_flags:0x400100 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5295 [inline]
 __schedule+0xfee/0x60e0 kernel/sched/core.c:6907
 preempt_schedule_common+0x42/0xc0 kernel/sched/core.c:7091
 preempt_schedule_thunk+0x16/0x30 arch/x86/entry/thunk.S:12
 __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:179 [inline]
 _raw_spin_unlock_irqrestore+0x61/0x80 kernel/locking/spinlock.c:194
 sock_def_readable+0x154/0x630 net/core/sock.c:3611
 unix_dgram_sendmsg+0xccd/0x1820 net/unix/af_unix.c:2281
 sock_sendmsg_nosec net/socket.c:727 [inline]
 __sock_sendmsg net/socket.c:742 [inline]
 __sys_sendto+0x4aa/0x520 net/socket.c:2206
 __do_sys_sendto net/socket.c:2213 [inline]
 __se_sys_sendto net/socket.c:2209 [inline]
 __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2209
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x106/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ff0de807407
RSP: 002b:00007ffffd2fe720 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007ff0de6b7c80 RCX: 00007ff0de807407
RDX: 000000000000005f RSI: 00007ffffd2fe860 RDI: 0000000000000003
RBP: 00007ffffd2fec90 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000004000 R11: 0000000000000202 R12: 00007ffffd2feca8
R13: 00007ffffd2fe860 R14: 0000000000000044 R15: 00007ffffd2fe860
 </TASK>
task:crond           state:R  running task     stack:24904 pid:5547  tgid:5547  ppid:1      task_flags:0x400000 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5295 [inline]
 __schedule+0xfee/0x60e0 kernel/sched/core.c:6907
 preempt_schedule_irq+0x50/0x90 kernel/sched/core.c:7234
 irqentry_exit+0x17b/0x670 kernel/entry/common.c:239
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:rcu_is_watching+0x80/0xc0 kernel/rcu/tree.c:753
Code: 89 da 48 c1 ea 03 0f b6 14 02 48 89 d8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 24 8b 03 c1 e8 02 83 e0 01 65 ff 0d 20 74 1f 12 <74> 07 5b 5d e9 c7 bf a3 09 e8 92 4d 89 ff 5b 5d c3 cc cc cc cc 48
RSP: 0018:ffffc90003a77538 EFLAGS: 00000286
RAX: 0000000000000001 RBX: ffff8880b8433ca8 RCX: ffffffff91865c01
RDX: 0000000000000000 RSI: ffffffff8c1ad220 RDI: ffffffff8e11b8e0
RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000007
R10: 0000000000000200 R11: 00000000000174ec R12: ffffc90003a77658
R13: ffffc90003a77608 R14: ffffc90003a77968 R15: ffffc90003a7763c
 trace_lock_release include/trace/events/lock.h:69 [inline]
 lock_release+0x263/0x320 kernel/locking/lockdep.c:5879
 rcu_lock_release include/linux/rcupdate.h:322 [inline]
 rcu_read_unlock include/linux/rcupdate.h:881 [inline]
 class_rcu_destructor include/linux/rcupdate.h:1193 [inline]
 unwind_next_frame+0x3c3/0x1ea0 arch/x86/kernel/unwind_orc.c:495
 arch_stack_walk+0x94/0xf0 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x8e/0xc0 kernel/stacktrace.c:122
 save_stack+0x162/0x1e0 mm/page_owner.c:165
 __reset_page_owner+0x84/0x190 mm/page_owner.c:320
 reset_page_owner include/linux/page_owner.h:25 [inline]
 __free_pages_prepare mm/page_alloc.c:1432 [inline]
 __free_frozen_pages+0x7ca/0x10a0 mm/page_alloc.c:2977
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x47/0xe0 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x1a0/0x1f0 mm/kasan/quarantine.c:286
 __kasan_kmalloc+0x8a/0xb0 mm/kasan/common.c:406
 kasan_kmalloc include/linux/kasan.h:263 [inline]
 __do_kmalloc_node mm/slub.c:5177 [inline]
 __kmalloc_noprof+0x301/0x850 mm/slub.c:5189
 kmalloc_noprof include/linux/slab.h:966 [inline]
 tomoyo_realpath_from_path+0xb6/0x690 security/tomoyo/realpath.c:251
 tomoyo_get_realpath security/tomoyo/file.c:151 [inline]
 tomoyo_path_perm+0x276/0x460 security/tomoyo/file.c:827
 security_inode_getattr+0x116/0x280 security/security.c:1869
 vfs_getattr fs/stat.c:259 [inline]
 vfs_statx_path fs/stat.c:299 [inline]
 vfs_statx+0x11f/0x3f0 fs/stat.c:356
 vfs_fstatat+0x77/0xe0 fs/stat.c:373
 __do_sys_newfstatat+0x9d/0x120 fs/stat.c:538
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x106/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f127526db0a
RSP: 002b:00007ffe2d607b38 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
RAX: ffffffffffffffda RBX: 00007f127541d490 RCX: 00007f127526db0a
RDX: 00007ffe2d607b58 RSI: 00007f12753f67e8 RDI: 00000000ffffff9c
RBP: 000000006990e520 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000003c R14: 0000000000000000 R15: 000000000000003a
 </TASK>
task:kworker/0:6     state:R  running task     stack:22072 pid:5872  tgid:5872  ppid:2      task_flags:0x4208060 flags:0x00080000
Workqueue: usb_hub_wq hub_event
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5295 [inline]
 __schedule+0xfee/0x60e0 kernel/sched/core.c:6907
 preempt_schedule_irq+0x50/0x90 kernel/sched/core.c:7234
 irqentry_exit+0x17b/0x670 kernel/entry/common.c:239
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:unwind_next_frame+0x521/0x1ea0 arch/x86/kernel/unwind_orc.c:527
Code: 0f 84 7b fe ff ff 4c 8d 41 04 4c 89 fe 48 b8 00 00 00 00 00 fc ff df 4c 89 c2 48 c1 ee 03 48 c1 ea 03 0f b6 14 02 0f b6 04 06 <4c> 89 c6 83 e6 07 40 38 f2 40 0f 9e c6 84 d2 0f 95 c2 40 84 d6 0f
RSP: 0018:ffffc9000401eb70 EFLAGS: 00000a07
RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff91ca67a8
RDX: 0000000000000000 RSI: 1ffffffff2394cf5 RDI: ffffffff91284a14
RBP: ffffc9000401ec28 R08: ffffffff91ca67ac R09: 0000000000000007
R10: 0000000000000200 R11: 0000000000052e46 R12: ffffc9000401ec30
R13: ffffc9000401ebe0 R14: ffffc9000401ec15 R15: ffffffff91ca67ad
 arch_stack_walk+0x94/0xf0 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x8e/0xc0 kernel/stacktrace.c:122
 save_stack+0x162/0x1e0 mm/page_owner.c:165
 __reset_page_owner+0x84/0x190 mm/page_owner.c:320
 reset_page_owner include/linux/page_owner.h:25 [inline]
 __free_pages_prepare mm/page_alloc.c:1432 [inline]
 __free_frozen_pages+0x7ca/0x10a0 mm/page_alloc.c:2977
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x47/0xe0 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x1a0/0x1f0 mm/kasan/quarantine.c:286
 __kasan_slab_alloc+0x69/0x90 mm/kasan/common.c:350
 kasan_slab_alloc include/linux/kasan.h:253 [inline]
 slab_post_alloc_hook mm/slub.c:4459 [inline]
 slab_alloc_node mm/slub.c:4788 [inline]
 __kmalloc_cache_noprof+0x243/0x6f0 mm/slub.c:5292
 kmalloc_noprof include/linux/slab.h:962 [inline]
 usb_string+0x10f/0x570 drivers/usb/core/message.c:980
 usbhid_probe+0xaec/0x1350 drivers/hid/usbhid/hid-core.c:1430
 usb_probe_interface+0x303/0x8f0 drivers/usb/core/driver.c:396
 call_driver_probe drivers/base/dd.c:583 [inline]
 really_probe+0x241/0xa60 drivers/base/dd.c:661
 __driver_probe_device+0x1de/0x400 drivers/base/dd.c:803
 driver_probe_device+0x4c/0x1b0 drivers/base/dd.c:833
 __device_attach_driver+0x1ff/0x3e0 drivers/base/dd.c:961
 bus_for_each_drv+0x159/0x1e0 drivers/base/bus.c:500
 __device_attach+0x1e4/0x4d0 drivers/base/dd.c:1033
 device_initial_probe+0xaf/0xd0 drivers/base/dd.c:1088
 bus_probe_device+0x64/0x160 drivers/base/bus.c:574
 device_add+0x11d9/0x1950 drivers/base/core.c:3689
 usb_set_configuration+0xd97/0x1c60 drivers/usb/core/message.c:2210
 usb_generic_driver_probe+0xa1/0xe0 drivers/usb/core/generic.c:250
 usb_probe_device+0xef/0x400 drivers/usb/core/driver.c:291
 call_driver_probe drivers/base/dd.c:583 [inline]
 really_probe+0x241/0xa60 drivers/base/dd.c:661
 __driver_probe_device+0x1de/0x400 drivers/base/dd.c:803
 driver_probe_device+0x4c/0x1b0 drivers/base/dd.c:833
 __device_attach_driver+0x1ff/0x3e0 drivers/base/dd.c:961
 bus_for_each_drv+0x159/0x1e0 drivers/base/bus.c:500
 __device_attach+0x1e4/0x4d0 drivers/base/dd.c:1033
 device_initial_probe+0xaf/0xd0 drivers/base/dd.c:1088
 bus_probe_device+0x64/0x160 drivers/base/bus.c:574
 device_add+0x11d9/0x1950 drivers/base/core.c:3689
 usb_new_device.cold+0x685/0x115c drivers/usb/core/hub.c:2695
 hub_port_connect drivers/usb/core/hub.c:5567 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5707 [inline]
 port_event drivers/usb/core/hub.c:5871 [inline]
 hub_event+0x314d/0x4af0 drivers/usb/core/hub.c:5953
 process_one_work+0x9d7/0x1920 kernel/workqueue.c:3275
 process_scheduled_works kernel/workqueue.c:3358 [inline]
 worker_thread+0x5da/0xe40 kernel/workqueue.c:3439
 kthread+0x370/0x450 kernel/kthread.c:467
 ret_from_fork+0x754/0xd80 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
task:syz-executor    state:R  running task     stack:23256 pid:5791  tgid:5791  ppid:5790   task_flags:0x400100 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5295 [inline]
 __schedule+0xfee/0x60e0 kernel/sched/core.c:6907
 preempt_schedule_irq+0x50/0x90 kernel/sched/core.c:7234
 irqentry_exit+0x17b/0x670 kernel/entry/common.c:239
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:lock_acquire+0x5e/0x380 kernel/locking/lockdep.c:5872
Code: 05 3b d2 27 12 83 f8 07 0f 87 f0 00 00 00 48 0f a3 05 06 5d f4 0e 0f 82 c2 02 00 00 8b 35 1e 90 f4 0e 85 f6 0f 85 dd 00 00 00 <48> 8b 44 24 30 65 48 2b 05 dd d1 27 12 0f 85 02 03 00 00 48 83 c4
RSP: 0000:ffffc90003ba73d8 EFLAGS: 00000206
RAX: 0000000000000046 RBX: 0000000000000000 RCX: 0000000000000003
RDX: 0000000000000000 RSI: ffffffff8de457a5 RDI: ffffffff8c1ad2a0
RBP: ffffffff8e7e94a0 R08: 000000003aa2d2c0 R09: 0000000000000007
R10: 0000000000000200 R11: 0000000000000000 R12: 0000000000000002
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
 rcu_lock_acquire include/linux/rcupdate.h:312 [inline]
 rcu_read_lock include/linux/rcupdate.h:850 [inline]
 class_rcu_constructor include/linux/rcupdate.h:1193 [inline]
 unwind_next_frame+0xd1/0x1ea0 arch/x86/kernel/unwind_orc.c:495
 arch_stack_walk+0x94/0xf0 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x8e/0xc0 kernel/stacktrace.c:122
 save_stack+0x162/0x1e0 mm/page_owner.c:165
 __reset_page_owner+0x84/0x190 mm/page_owner.c:320
 reset_page_owner include/linux/page_owner.h:25 [inline]
 __free_pages_prepare mm/page_alloc.c:1432 [inline]
 __free_frozen_pages+0x7ca/0x10a0 mm/page_alloc.c:2977
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x47/0xe0 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x1a0/0x1f0 mm/kasan/quarantine.c:286
 __kasan_slab_alloc+0x69/0x90 mm/kasan/common.c:350
 kasan_slab_alloc include/linux/kasan.h:253 [inline]
 slab_post_alloc_hook mm/slub.c:4459 [inline]
 slab_alloc_node mm/slub.c:4788 [inline]
 kmem_cache_alloc_noprof+0x241/0x6e0 mm/slub.c:4795
 new_handle fs/jbd2/transaction.c:457 [inline]
 jbd2__journal_start+0x194/0x6a0 fs/jbd2/transaction.c:484
 __ext4_journal_start_sb+0x382/0x6a0 fs/ext4/ext4_jbd2.c:114
 __ext4_journal_start fs/ext4/ext4_jbd2.h:242 [inline]
 ext4_dirty_inode+0xa1/0x130 fs/ext4/inode.c:6447
 __mark_inode_dirty+0x1f3/0x1790 fs/fs-writeback.c:2609
 generic_update_time fs/inode.c:2198 [inline]
 file_update_time_flags+0x46b/0x500 fs/inode.c:2428
 ext4_page_mkwrite+0x35b/0x1980 fs/ext4/inode.c:6616
 do_page_mkwrite+0x17a/0x440 mm/memory.c:3581
 wp_page_shared mm/memory.c:3982 [inline]
 do_wp_page+0x4aa/0x4f00 mm/memory.c:4201
 handle_pte_fault mm/memory.c:6324 [inline]
 __handle_mm_fault+0x1ac8/0x2b60 mm/memory.c:6446
 handle_mm_fault+0x36d/0xa20 mm/memory.c:6615
 do_user_addr_fault+0x5a3/0x12f0 arch/x86/mm/fault.c:1334
 handle_page_fault arch/x86/mm/fault.c:1474 [inline]
 exc_page_fault+0x6f/0xd0 arch/x86/mm/fault.c:1527
 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:618
RIP: 0033:0x7feb7047a667
RSP: 002b:00007ffc29e3ca00 EFLAGS: 00010202
RAX: 00007feb6e468000 RBX: 000055558ea9d940 RCX: 0000000000000002
RDX: 0000000000002e76 RSI: 000055558ea95330 RDI: 0000000000000004
RBP: 00007ffc29e3cf00 R08: 0000000000000097 R09: 000055558ea95338
R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffc29e3cd40
R13: 00007ffc29e3cb30 R14: 585858582e7a7973 R15: 00007ffc29e3ca80
 </TASK>
task:kthreadd        state:R  running task     stack:26584 pid:2     tgid:2     ppid:0      task_flags:0x208040 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5295 [inline]
 __schedule+0xfee/0x60e0 kernel/sched/core.c:6907
 preempt_schedule_irq+0x50/0x90 kernel/sched/core.c:7234
 irqentry_exit+0x17b/0x670 kernel/entry/common.c:239
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:native_save_fl arch/x86/include/asm/irqflags.h:26 [inline]
RIP: 0010:arch_local_save_flags arch/x86/include/asm/irqflags.h:109 [inline]
RIP: 0010:arch_local_irq_save arch/x86/include/asm/irqflags.h:127 [inline]
RIP: 0010:lock_acquire kernel/locking/lockdep.c:5864 [inline]
RIP: 0010:lock_acquire+0x17c/0x380 kernel/locking/lockdep.c:5825
Code: bd 00 00 00 65 8b 05 6b 18 28 12 85 c0 0f 85 ae 00 00 00 65 48 8b 05 eb d0 27 12 8b 90 14 0b 00 00 85 d2 0f 85 98 00 00 00 9c <8f> 04 24 fa 48 c7 c7 4e cd f5 8d e8 c4 05 a9 09 45 89 e8 44 89 e1
RSP: 0018:ffffc90000077550 EFLAGS: 00000246
RAX: ffff88801e29c900 RBX: 0000000000000000 RCX: 0000000000000001
RDX: 0000000000000000 RSI: ffffffff81b7eaf1 RDI: fffffbfff1cfd294
RBP: ffffffff8e7e94a0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000200 R11: 000000000000d1e7 R12: 0000000000000002
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
 rcu_lock_acquire include/linux/rcupdate.h:312 [inline]
 rcu_read_lock include/linux/rcupdate.h:850 [inline]
 class_rcu_constructor include/linux/rcupdate.h:1193 [inline]
 unwind_next_frame+0xd1/0x1ea0 arch/x86/kernel/unwind_orc.c:495
 arch_stack_walk+0x94/0xf0 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x8e/0xc0 kernel/stacktrace.c:122
 save_stack+0x162/0x1e0 mm/page_owner.c:165
 __reset_page_owner+0x84/0x190 mm/page_owner.c:320
 reset_page_owner include/linux/page_owner.h:25 [inline]
 __free_pages_prepare mm/page_alloc.c:1432 [inline]
 __free_frozen_pages+0x7ca/0x10a0 mm/page_alloc.c:2977
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x47/0xe0 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x1a0/0x1f0 mm/kasan/quarantine.c:286
 __kasan_slab_alloc+0x69/0x90 mm/kasan/common.c:350
 kasan_slab_alloc include/linux/kasan.h:253 [inline]
 slab_post_alloc_hook mm/slub.c:4459 [inline]
 slab_alloc_node mm/slub.c:4788 [inline]
 kmem_cache_alloc_noprof+0x241/0x6e0 mm/slub.c:4795
 copy_sighand kernel/fork.c:1652 [inline]
 copy_process+0x27a4/0x7a10 kernel/fork.c:2217
 kernel_clone+0xfc/0x9a0 kernel/fork.c:2654
 kernel_thread+0xdb/0x120 kernel/fork.c:2715
 create_kthread kernel/kthread.c:490 [inline]
 kthreadd+0x498/0x7a0 kernel/kthread.c:849
 ret_from_fork+0x754/0xd80 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
task:syz.0.526       state:R  running task     stack:26872 pid:7871  tgid:7871  ppid:5808   task_flags:0x40044c flags:0x00080003
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5295 [inline]
 __schedule+0xfee/0x60e0 kernel/sched/core.c:6907
 preempt_schedule_common+0x42/0xc0 kernel/sched/core.c:7091
 preempt_schedule_thunk+0x16/0x30 arch/x86/entry/thunk.S:12
 __raw_spin_unlock include/linux/spinlock_api_smp.h:169 [inline]
 _raw_spin_unlock+0x3e/0x50 kernel/locking/spinlock.c:186
 spin_unlock include/linux/spinlock.h:389 [inline]
 zap_pte_range mm/memory.c:1946 [inline]
 zap_pmd_range mm/memory.c:2008 [inline]
 zap_pud_range mm/memory.c:2036 [inline]
 zap_p4d_range mm/memory.c:2057 [inline]
 unmap_page_range+0x152f/0x4840 mm/memory.c:2078
 unmap_single_vma+0x153/0x240 mm/memory.c:2120
 unmap_vmas+0x218/0x470 mm/memory.c:2162
 exit_mmap+0x18a/0xdd0 mm/mmap.c:1277
 __mmput+0x12a/0x410 kernel/fork.c:1174
 mmput+0x67/0x80 kernel/fork.c:1197
 exit_mm kernel/exit.c:581 [inline]
 do_exit+0x78a/0x2a90 kernel/exit.c:959
 do_group_exit+0xd5/0x2a0 kernel/exit.c:1112
 get_signal+0x1ec7/0x21e0 kernel/signal.c:3034
 arch_do_signal_or_restart+0x91/0x7a0 arch/x86/kernel/signal.c:337
 __exit_to_user_mode_loop kernel/entry/common.c:64 [inline]
 exit_to_user_mode_loop+0x86/0x4a0 kernel/entry/common.c:98
 __exit_to_user_mode_prepare include/linux/irq-entry-common.h:226 [inline]
 syscall_exit_to_user_mode_prepare include/linux/irq-entry-common.h:256 [inline]
 syscall_exit_to_user_mode include/linux/entry-common.h:325 [inline]
 do_syscall_64+0x67c/0xf80 arch/x86/entry/syscall_64.c:100
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fa4d739bf79
RSP: 002b:00007ffda68e7788 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
RAX: 0000000000000000 RBX: 00007ffda68e7870 RCX: 00007fa4d739bf79
RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
RBP: 0000000000035328 R08: 0000000000000001 R09: 0000000000000000
R10: 0000001b2e620000 R11: 0000000000000246 R12: 00007ffda68e78b0
R13: 00007fa4d761609c R14: 00000000000353b7 R15: 00007fa4d7616090
 </TASK>
task:syz-executor    state:R  running task     stack:23752 pid:5808  tgid:5808  ppid:5798   task_flags:0x400140 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5295 [inline]
 __schedule+0xfee/0x60e0 kernel/sched/core.c:6907
 preempt_schedule_irq+0x50/0x90 kernel/sched/core.c:7234
 irqentry_exit+0x17b/0x670 kernel/entry/common.c:239
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:__sanitizer_cov_trace_pc+0xb/0x70 kernel/kcov.c:213
Code: 60 00 be 03 00 00 00 5b e9 62 59 eb 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 65 8b 05 65 f7 03 12 <48> 8b 34 24 65 48 8b 15 41 f7 03 12 a9 00 01 ff 00 74 1b f6 c4 01
RSP: 0018:ffffc90002e478e8 EFLAGS: 00000246
RAX: 0000000080000000 RBX: 0000000000000000 RCX: ffffffff8281bfc7
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88807a7c2480
RBP: 0000000000000004 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff88801e4d64c0
R13: 0000000000000008 R14: dffffc0000000000 R15: ffff88801e4d650c
 page_ext_iter_next include/linux/page_ext.h:153 [inline]
 __page_table_check_zero+0x1f4/0x410 mm/page_table_check.c:139
 page_table_check_free include/linux/page_table_check.h:46 [inline]
 __free_pages_prepare mm/page_alloc.c:1433 [inline]
 __free_frozen_pages+0x7ba/0x10a0 mm/page_alloc.c:2977
 qlink_free mm/kasan/quarantine.c:163 [inline]
 qlist_free_all+0x47/0xe0 mm/kasan/quarantine.c:179
 kasan_quarantine_reduce+0x1a0/0x1f0 mm/kasan/quarantine.c:286
 __kasan_kmalloc+0x8a/0xb0 mm/kasan/common.c:406
 kasan_kmalloc include/linux/kasan.h:263 [inline]
 __do_kmalloc_node mm/slub.c:5177 [inline]
 __kmalloc_noprof+0x301/0x850 mm/slub.c:5189
 kmalloc_noprof include/linux/slab.h:966 [inline]
 tomoyo_realpath_from_path+0xb6/0x690 security/tomoyo/realpath.c:251
 tomoyo_get_realpath security/tomoyo/file.c:151 [inline]
 tomoyo_path_perm+0x276/0x460 security/tomoyo/file.c:827
 security_inode_getattr+0x116/0x280 security/security.c:1869
 vfs_getattr fs/stat.c:259 [inline]
 vfs_fstat+0x4b/0xe0 fs/stat.c:281
 __do_sys_newfstat+0x8b/0x110 fs/stat.c:551
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x106/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fa4d739a5f7
RSP: 002b:00007ffda68e78c8 EFLAGS: 00000206 ORIG_RAX: 0000000000000005
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fa4d739a5f7
RDX: 0000000000000000 RSI: 00007ffda68e78d0 RDI: 0000000000000003
RBP: 00007ffda68e79cc R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000061
R13: 0000000000000000 R14: 000000000003538d R15: 00007ffda68e7a20
 </TASK>