rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	0-....: (0 ticks this GP) idle=b6b/1/0x4000000000000000 softirq=63346/63346 fqs=2095 
	(detected by 1, t=10503 jiffies, g=85069, q=2087)
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 7402 Comm: kworker/u4:10 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Workqueue: bat_events batadv_nc_worker
RIP: 0010:rcu_read_unlock_special+0x203/0x4a0 kernel/rcu/tree_plugin.h:643
Code: 20 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 40 a2 58 00 4d 8b 3f 49 83 ec 80 4c 89 e0 48 c1 e8 03 42 80 3c 28 00 <74> 08 4c 89 e7 e8 23 a2 58 00 4d 85 3c 24 41 0f 94 c4 f6 05 b4 a6
RSP: 0018:ffffc900000073a0 EFLAGS: 00000046
RAX: 1ffffffff18645f0 RBX: 1ffff92000000e78 RCX: dffffc0000000000
RDX: 0000000000000100 RSI: ffffffff8a79f760 RDI: ffffffff8a79f720
RBP: ffffc90000007480 R08: ffffffff8d89d8af R09: 1ffffffff1b13b15
R10: dffffc0000000000 R11: fffffbfff1b13b16 R12: ffffffff8c322f80
R13: dffffc0000000000 R14: ffff8880b903b1c0 R15: 0000000000000001
FS:  0000000000000000(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f15bd736d58 CR3: 000000000c08e000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
 __rcu_read_unlock+0x78/0xd0 kernel/rcu/tree_plugin.h:422
 rcu_read_unlock include/linux/rcupdate.h:772 [inline]
 __perf_event_output kernel/events/core.c:7813 [inline]
 perf_event_output_forward+0x255/0x2e0 kernel/events/core.c:7822
 __perf_event_overflow+0x364/0x530 kernel/events/core.c:9515
 perf_tp_event+0x383/0xbf0 kernel/events/core.c:10047
 perf_trace_run_bpf_submit+0xf3/0x1c0 kernel/events/core.c:10021
 perf_trace_preemptirq_template+0x2aa/0x360 include/trace/events/preemptirq.h:14
 trace_irq_enable_rcuidle+0x108/0x180 include/trace/events/preemptirq.h:40
 trace_hardirqs_on+0x57/0x80 kernel/trace/trace_preemptirq.c:44
 asm_sysvec_irq_work+0x16/0x20 arch/x86/include/asm/idtentry.h:713
RIP: 0010:rcu_read_unlock_special+0x7f/0x4a0 kernel/rcu/tree_plugin.h:674
Code: eb 03 48 b8 f1 f1 f1 f1 f8 f2 f2 f2 4a 89 04 2b 42 c7 44 2b 08 f8 f3 f3 f3 65 44 8b 35 c2 ef 9c 7e 41 f7 c6 00 00 f0 00 74 40 <48> c7 44 24 20 0e 36 e0 45 4a c7 04 2b 00 00 00 00 42 c7 44 2b 08
RSP: 0018:ffffc90000007b00 EFLAGS: 00000206
RAX: 109a61a6c44a9b00 RBX: 1ffff92000000f64 RCX: 109a61a6c44a9b00
RDX: dffffc0000000000 RSI: ffffffff8a2b2780 RDI: ffffffff8a79f780
RBP: ffffc90000007bd8 R08: ffffffff901d11b7 R09: 1ffffffff203a236
R10: dffffc0000000000 R11: fffffbfff203a237 R12: ffffffff8c322f00
R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
 __rcu_read_unlock+0x78/0xd0 kernel/rcu/tree_plugin.h:422
 rcu_read_unlock include/linux/rcupdate.h:772 [inline]
 ieee80211_iterate_active_interfaces_atomic+0x132/0x140 net/mac80211/util.c:831
 mac80211_hwsim_beacon+0x9b/0x180 drivers/net/wireless/mac80211_hwsim.c:1865
 __run_hrtimer kernel/time/hrtimer.c:1685 [inline]
 __hrtimer_run_queues+0x4eb/0xb70 kernel/time/hrtimer.c:1749
 hrtimer_run_softirq+0x176/0x240 kernel/time/hrtimer.c:1766
 handle_softirqs+0x339/0x830 kernel/softirq.c:576
 __do_softirq kernel/softirq.c:610 [inline]
 invoke_softirq kernel/softirq.c:450 [inline]
 __irq_exit_rcu+0x13b/0x230 kernel/softirq.c:659
 irq_exit_rcu+0x5/0x20 kernel/softirq.c:671
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1108 [inline]
 sysvec_apic_timer_interrupt+0xa0/0xc0 arch/x86/kernel/apic/apic.c:1108
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:676
RIP: 0010:should_resched arch/x86/include/asm/preempt.h:103 [inline]
RIP: 0010:__local_bh_enable_ip+0x13e/0x1c0 kernel/softirq.c:408
Code: 8a e8 86 bb 72 08 65 66 8b 05 8e 5a ba 7e 66 85 c0 75 54 bf 01 00 00 00 e8 bf 24 09 00 e8 ba 0c 36 00 fb 65 8b 05 3a 31 b9 7e <85> c0 75 05 e8 89 3e b7 ff 48 c7 04 24 0e 36 e0 45 4b c7 04 37 00
RSP: 0018:ffffc900036cfaa0 EFLAGS: 00000286
RAX: 0000000080000000 RBX: 0000000000000201 RCX: 109a61a6c44a9b00
RDX: dffffc0000000000 RSI: ffffffff8a2b2780 RDI: ffffffff8a79f780
RBP: ffffc900036cfb38 R08: ffffffff901d11b7 R09: 1ffffffff203a236
R10: dffffc0000000000 R11: fffffbfff203a237 R12: ffffffff8990ee66
R13: dffffc0000000000 R14: dffffc0000000000 R15: 1ffff920006d9f54
 spin_unlock_bh include/linux/spinlock.h:409 [inline]
 batadv_nc_purge_paths+0x316/0x3b0 net/batman-adv/network-coding.c:475
 batadv_nc_worker+0x2e7/0x5c0 net/batman-adv/network-coding.c:724
 process_one_work+0x85f/0x1010 kernel/workqueue.c:2310
 worker_thread+0xaa6/0x1290 kernel/workqueue.c:2457
 kthread+0x436/0x520 kernel/kthread.c:334
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287
 </TASK>