rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P8269/1:b..l
rcu: 	(detected by 0, t=10502 jiffies, g=14061, q=1704 ncpus=2)
task:syz.4.350       state:R  running task     stack:0     pid:8269  tgid:8268  ppid:6490   task_flags:0x400140 flags:0x00000001
Call trace:
 __switch_to+0x414/0x834 arch/arm64/kernel/process.c:735 (T)
 context_switch kernel/sched/core.c:5382 [inline]
 __schedule+0x13b0/0x28d4 kernel/sched/core.c:6767
 preempt_schedule_irq+0x80/0x188 kernel/sched/core.c:7090
 arm64_preempt_schedule_irq+0x44/0x58 arch/arm64/kernel/entry-common.c:301
 __el1_irq arch/arm64/kernel/entry-common.c:586 [inline]
 el1_interrupt+0x3c/0x54 arch/arm64/kernel/entry-common.c:598
 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603
 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596
 rcu_read_lock include/linux/rcupdate.h:842 [inline] (P)
 count_memcg_events_mm include/linux/memcontrol.h:986 [inline] (P)
 count_memcg_event_mm+0x44/0x2c8 include/linux/memcontrol.h:996 (P)
 mm_account_fault mm/memory.c:6174 [inline]
 handle_mm_fault+0x9fc/0x4d18 mm/memory.c:6335
 faultin_page mm/gup.c:1193 [inline]
 __get_user_pages+0x1dd4/0x30d8 mm/gup.c:1491
 populate_vma_page_range+0x218/0x2e8 mm/gup.c:1929
 __mm_populate+0x208/0x330 mm/gup.c:2032
 mm_populate include/linux/mm.h:3487 [inline]
 vm_mmap_pgoff+0x378/0x43c mm/util.c:584
 ksys_mmap_pgoff+0xd0/0x5b8 mm/mmap.c:607
 __do_sys_mmap arch/arm64/kernel/sys.c:28 [inline]
 __se_sys_mmap arch/arm64/kernel/sys.c:21 [inline]
 __arm64_sys_mmap+0xf8/0x110 arch/arm64/kernel/sys.c:21
 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
 invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49
 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132
 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151
 el0_svc+0x58/0x17c arch/arm64/kernel/entry-common.c:767
 el0t_64_sync_handler+0x78/0x108 arch/arm64/kernel/entry-common.c:786
 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600
rcu: rcu_preempt kthread starved for 547 jiffies! g14061 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:0     pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00000010
Call trace:
 __switch_to+0x414/0x834 arch/arm64/kernel/process.c:735 (T)
 context_switch kernel/sched/core.c:5382 [inline]
 __schedule+0x13b0/0x28d4 kernel/sched/core.c:6767
 __schedule_loop kernel/sched/core.c:6845 [inline]
 schedule+0xb4/0x230 kernel/sched/core.c:6860
 schedule_timeout+0x128/0x270 kernel/time/sleep_timeout.c:99
 rcu_gp_fqs_loop+0x2b8/0x14e8 kernel/rcu/tree.c:2046
 rcu_gp_kthread+0xc0/0x2f8 kernel/rcu/tree.c:2248
 kthread+0x5fc/0x75c kernel/kthread.c:464
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:847
rcu: Stack dump where RCU GP kthread last ran:
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 7194 Comm: kworker/u8:16 Not tainted 6.15.0-rc7-syzkaller-g187899f4124a #0 PREEMPT 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: events_unbound cfg80211_wiphy_work
pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : preempt_count arch/arm64/include/asm/preempt.h:13 [inline]
pc : check_kcov_mode kernel/kcov.c:183 [inline]
pc : __sanitizer_cov_trace_pc+0x14/0x84 kernel/kcov.c:217
lr : nf_hook_slow+0x138/0x21c net/netfilter/core.c:625
sp : ffff800080016eb0
x29: ffff800080016ec0 x28: ffff0000d108d070 x27: 1fffe0001a211a00
x26: dfff800000000000 x25: 0000000000000001 x24: ffff8000924fa6a0
x23: ffff0000d108d068 x22: 0000000000000006 x21: ffff800080016f40
x20: ffff0000d108d000 x19: ffff00003a033640 x18: 1fffe0003386aa76
x17: ffff0001fea8a970 x16: ffff80008adbeaf4 x15: 0000000000000001
x14: 0000000000000000 x13: 0000000000000003 x12: 0000000000ff0100
x11: ffff0000d0c25b80 x10: 0000000000ff0100 x9 : 0000000000000101
x8 : ffff0000d0c25b80 x7 : ffff800089786168 x6 : 0000000000000000
x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff80008978c3bc
x2 : 0000000000000000 x1 : ffff8000924fa6a0 x0 : 0000000000000001
Call trace:
 preempt_count arch/arm64/include/asm/preempt.h:13 [inline] (P)
 check_kcov_mode kernel/kcov.c:183 [inline] (P)
 __sanitizer_cov_trace_pc+0x14/0x84 kernel/kcov.c:217 (P)
 nf_hook+0x1d0/0x334 include/linux/netfilter.h:269
 __ip_local_out+0x58c/0x6c8 net/ipv4/ip_output.c:118
 ip_local_out+0x3c/0x15c net/ipv4/ip_output.c:127
 synproxy_send_tcp+0x3b8/0x59c net/netfilter/nf_synproxy_core.c:439
 synproxy_send_client_synack+0x660/0xb38 net/netfilter/nf_synproxy_core.c:484
 nft_synproxy_eval_v4+0x17c/0x2b8 net/netfilter/nft_synproxy.c:59
 nft_synproxy_do_eval+0x2c0/0x484 net/netfilter/nft_synproxy.c:141
 nft_synproxy_eval+0x34/0x48 net/netfilter/nft_synproxy.c:247
 expr_call_ops_eval net/netfilter/nf_tables_core.c:237 [inline]
 nft_do_chain+0x3e8/0x12fc net/netfilter/nf_tables_core.c:285
 nft_do_chain_inet+0x208/0x2d8 net/netfilter/nft_chain_filter.c:161
 nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]
 nf_hook_slow+0xb4/0x21c net/netfilter/core.c:626
 nf_hook include/linux/netfilter.h:269 [inline]
 NF_HOOK+0x1c8/0x358 include/linux/netfilter.h:312
 ip_local_deliver+0x120/0x194 net/ipv4/ip_input.c:254
 dst_input include/net/dst.h:469 [inline]
 ip_rcv_finish+0x21c/0x248 net/ipv4/ip_input.c:447
 NF_HOOK+0x2c4/0x358 include/linux/netfilter.h:314
 ip_rcv+0x7c/0x9c net/ipv4/ip_input.c:567
 __netif_receive_skb_one_core net/core/dev.c:5887 [inline]
 __netif_receive_skb+0xcc/0x2a8 net/core/dev.c:6000
 process_backlog+0x60c/0x10e4 net/core/dev.c:6352
 __napi_poll+0xb4/0x3fc net/core/dev.c:7324
 napi_poll net/core/dev.c:7388 [inline]
 net_rx_action+0x5d4/0xcc8 net/core/dev.c:7510
 handle_softirqs+0x328/0xc88 kernel/softirq.c:579
 __do_softirq+0x14/0x20 kernel/softirq.c:613
 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81
 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891
 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86
 do_softirq+0x90/0xf8 kernel/softirq.c:480
 __local_bh_enable_ip+0x240/0x35c kernel/softirq.c:407
 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline]
 _raw_spin_unlock_bh+0x3c/0x4c kernel/locking/spinlock.c:210
 spin_unlock_bh include/linux/spinlock.h:396 [inline]
 cfg80211_put_bss+0x1d4/0x228 net/wireless/scan.c:3346
 ieee80211_rx_bss_put+0x50/0x68 net/mac80211/scan.c:37
 ieee80211_rx_bss_info net/mac80211/ibss.c:1174 [inline]
 ieee80211_rx_mgmt_probe_beacon net/mac80211/ibss.c:1581 [inline]
 ieee80211_ibss_rx_queued_mgmt+0x152c/0x240c net/mac80211/ibss.c:1608
 ieee80211_iface_process_skb net/mac80211/iface.c:1625 [inline]
 ieee80211_iface_work+0x694/0xd20 net/mac80211/iface.c:1679
 cfg80211_wiphy_work+0x2a8/0x48c net/wireless/core.c:435
 process_one_work+0x7e8/0x156c kernel/workqueue.c:3238
 process_scheduled_works kernel/workqueue.c:3319 [inline]
 worker_thread+0x958/0xed8 kernel/workqueue.c:3400
 kthread+0x5fc/0x75c kernel/kthread.c:464
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:847