rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5881/2:b..l P149/2:b..l
rcu: 	(detected by 1, t=10502 jiffies, g=75037, q=992 ncpus=2)
task:kworker/u8:5    state:R  running task     stack:22336 pid:149   tgid:149   ppid:2      task_flags:0x4208060 flags:0x00080000
Workqueue: events_unbound nsim_dev_trap_report_work
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5298 [inline]
 __schedule+0x1553/0x5240 kernel/sched/core.c:6911
 preempt_schedule_irq+0x4d/0xa0 kernel/sched/core.c:7238
 irqentry_exit+0x599/0x620 kernel/entry/common.c:239
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:lock_release+0x2d7/0x3d0 kernel/locking/lockdep.c:5893
Code: c0 ae 10 00 00 00 00 eb b5 e8 35 cc 83 09 f7 c3 00 02 00 00 74 b9 65 48 8b 05 a5 79 ae 10 48 3b 44 24 28 75 44 fb 48 83 c4 30 <5b> 41 5c 41 5d 41 5e 41 5f 5d e9 0a 8c 87 09 cc 48 8d 3d f2 34 cd
RSP: 0018:ffffc90003a474e0 EFLAGS: 00000282
RAX: 37a6b34e3ab63900 RBX: 0000000000000202 RCX: 0000000000000046
RDX: 0000000000000005 RSI: ffffffff8d7c2056 RDI: ffffffff8ba67a80
RBP: ffff88801f79ab00 R08: ffffc90003a47980 R09: 0000000000000000
R10: ffffc90003a47638 R11: fffff52000748ec9 R12: 0000000000000005
R13: 0000000000000005 R14: ffffffff8ddcb980 R15: ffff88801f799e80
 rcu_lock_release include/linux/rcupdate.h:322 [inline]
 rcu_read_unlock include/linux/rcupdate.h:881 [inline]
 class_rcu_destructor include/linux/rcupdate.h:1193 [inline]
 unwind_next_frame+0x1aaa/0x23c0 arch/x86/kernel/unwind_orc.c:695
 arch_stack_walk+0x11b/0x150 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0xa9/0x100 kernel/stacktrace.c:122
 kasan_save_stack mm/kasan/common.c:57 [inline]
 kasan_save_track+0x3e/0x80 mm/kasan/common.c:78
 kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:584
 poison_slab_object mm/kasan/common.c:253 [inline]
 __kasan_slab_free+0x5c/0x80 mm/kasan/common.c:285
 kasan_slab_free include/linux/kasan.h:235 [inline]
 slab_free_hook mm/slub.c:2685 [inline]
 slab_free mm/slub.c:6165 [inline]
 kmem_cache_free+0x185/0x6b0 mm/slub.c:6295
 nsim_dev_trap_report drivers/net/netdevsim/dev.c:892 [inline]
 nsim_dev_trap_report_work+0x7fa/0xbc0 drivers/net/netdevsim/dev.c:922
 process_one_work kernel/workqueue.c:3276 [inline]
 process_scheduled_works+0xb6e/0x18c0 kernel/workqueue.c:3359
 worker_thread+0xa53/0xfc0 kernel/workqueue.c:3440
 kthread+0x388/0x470 kernel/kthread.c:436
 ret_from_fork+0x51e/0xb90 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
task:kworker/0:6     state:R  running task     stack:21256 pid:5881  tgid:5881  ppid:2      task_flags:0x4288060 flags:0x00080000
Workqueue: usb_hub_wq hub_event
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5298 [inline]
 __schedule+0x1553/0x5240 kernel/sched/core.c:6911
 __schedule_loop kernel/sched/core.c:6993 [inline]
 schedule_rtlock+0x30/0x70 kernel/sched/core.c:7072
 rtlock_slowlock_locked+0x3638/0x3c80 kernel/locking/rtmutex.c:1868
 rtlock_slowlock kernel/locking/rtmutex.c:1895 [inline]
 rtlock_lock kernel/locking/spinlock_rt.c:43 [inline]
 __rt_spin_lock kernel/locking/spinlock_rt.c:49 [inline]
 rt_spin_lock+0x165/0x400 kernel/locking/spinlock_rt.c:57
 spin_lock include/linux/spinlock_rt.h:45 [inline]
 ep_poll_callback+0x79/0x800 fs/eventpoll.c:1256
 __wake_up_common kernel/sched/wait.c:108 [inline]
 __wake_up_common_lock+0x136/0x1e0 kernel/sched/wait.c:125
 sock_def_readable+0x1ee/0x580 net/core/sock.c:3611
 __netlink_sendskb net/netlink/af_netlink.c:1263 [inline]
 netlink_broadcast_deliver net/netlink/af_netlink.c:1399 [inline]
 do_one_broadcast net/netlink/af_netlink.c:1488 [inline]
 netlink_broadcast_filtered+0xc45/0x1010 net/netlink/af_netlink.c:1533
 netlink_broadcast+0x37/0x50 net/netlink/af_netlink.c:1557
 uevent_net_broadcast_tagged lib/kobject_uevent.c:373 [inline]
 kobject_uevent_net_broadcast+0x4bf/0x560 lib/kobject_uevent.c:413
 kobject_uevent_env+0x55f/0x9e0 lib/kobject_uevent.c:608
 device_del+0x754/0x900 drivers/base/core.c:3898
 unregister_netdevice_many_notify+0x1dfa/0x2360 net/core/dev.c:12466
 unregister_netdevice_many net/core/dev.c:12494 [inline]
 unregister_netdevice_queue+0x31f/0x360 net/core/dev.c:12308
 unregister_netdevice include/linux/netdevice.h:3409 [inline]
 ieee802154_remove_interfaces+0x17a/0x1d0 net/mac802154/iface.c:708
 ieee802154_unregister_hw+0x62/0xe0 net/mac802154/main.c:282
 atusb_disconnect+0x14f/0x2a0 drivers/net/ieee802154/atusb.c:1077
 usb_unbind_interface+0x26e/0x910 drivers/usb/core/driver.c:458
 device_remove drivers/base/dd.c:633 [inline]
 __device_release_driver drivers/base/dd.c:1344 [inline]
 device_release_driver_internal+0x4d9/0x870 drivers/base/dd.c:1367
 bus_remove_device+0x45a/0x570 drivers/base/bus.c:657
 device_del+0x52b/0x900 drivers/base/core.c:3880
 usb_disable_device+0x3d4/0x8d0 drivers/usb/core/message.c:1476
 usb_disconnect+0x315/0x970 drivers/usb/core/hub.c:2345
 hub_port_connect drivers/usb/core/hub.c:5407 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5707 [inline]
 port_event drivers/usb/core/hub.c:5871 [inline]
 hub_event+0x1cf9/0x4f60 drivers/usb/core/hub.c:5953
 process_one_work kernel/workqueue.c:3276 [inline]
 process_scheduled_works+0xb6e/0x18c0 kernel/workqueue.c:3359
 worker_thread+0xa53/0xfc0 kernel/workqueue.c:3440
 kthread+0x388/0x470 kernel/kthread.c:436
 ret_from_fork+0x51e/0xb90 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
rcu: rcu_preempt kthread timer wakeup didn't happen for 9476 jiffies! g75037 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
rcu: 	Possible timer handling issue on cpu=1 timer-softirq=51688
rcu: rcu_preempt kthread starved for 9477 jiffies! g75037 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:I stack:27080 pid:18    tgid:18    ppid:2      task_flags:0x208040 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5298 [inline]
 __schedule+0x1553/0x5240 kernel/sched/core.c:6911
 __schedule_loop kernel/sched/core.c:6993 [inline]
 schedule+0x164/0x360 kernel/sched/core.c:7008
 schedule_timeout+0x158/0x2c0 kernel/time/sleep_timeout.c:99
 rcu_gp_fqs_loop+0x312/0x11d0 kernel/rcu/tree.c:2095
 rcu_gp_kthread+0x9e/0x2b0 kernel/rcu/tree.c:2297
 kthread+0x388/0x470 kernel/kthread.c:436
 ret_from_fork+0x51e/0xb90 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
CPU: 1 UID: 0 PID: 14478 Comm: syz.6.2115 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
Tainted: [L]=SOFTLOCKUP
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
RIP: 0010:__kasan_check_byte+0x2d/0x40 mm/kasan/common.c:578
Code: d6 41 56 53 48 89 f3 49 89 fe e8 8e 15 00 00 84 c0 75 16 be 01 00 00 00 4c 89 f7 31 d2 48 89 d9 89 c3 e8 06 05 00 00 89 d8 5b <41> 5e c3 cc cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90
RSP: 0000:ffffc9000da175d8 EFLAGS: 00000202
RAX: 0000000000000001 RBX: 1ffff92001b42ed0 RCX: 0000000080000001
RDX: 0000000000000000 RSI: ffffffff8b2681ec RDI: 1ffffffff1bb9730
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: dffffc0000000000 R11: fffffbfff1ed4e97 R12: 0000000000000002
R13: ffffffff8ddcb980 R14: ffffffff8ddcb980 R15: 0000000000000000
FS:  00007fb16423c6c0(0000) GS:ffff888126432000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f6acc286038 CR3: 000000006ed62000 CR4: 00000000003526f0
Call Trace:
 <TASK>
 kasan_check_byte include/linux/kasan.h:402 [inline]
 lock_acquire+0x79/0x2e0 kernel/locking/lockdep.c:5842
 rcu_lock_acquire include/linux/rcupdate.h:312 [inline]
 rcu_read_lock include/linux/rcupdate.h:850 [inline]
 __rt_spin_lock kernel/locking/spinlock_rt.c:50 [inline]
 rt_spin_lock+0x1fc/0x400 kernel/locking/spinlock_rt.c:57
 spin_lock include/linux/spinlock_rt.h:45 [inline]
 mix_pool_bytes drivers/char/random.c:654 [inline]
 write_pool_user+0x110/0x2f0 drivers/char/random.c:1431
 iter_file_splice_write+0x9a6/0x10f0 fs/splice.c:736
 do_splice_from fs/splice.c:936 [inline]
 direct_splice_actor+0x104/0x160 fs/splice.c:1159
 splice_direct_to_actor+0x545/0xc80 fs/splice.c:1103
 do_splice_direct_actor fs/splice.c:1202 [inline]
 do_splice_direct+0x19b/0x2a0 fs/splice.c:1228
 do_sendfile+0x547/0x7e0 fs/read_write.c:1372
 __do_sys_sendfile64 fs/read_write.c:1433 [inline]
 __se_sys_sendfile64+0x144/0x1a0 fs/read_write.c:1419
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x14d/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fb16602c819
Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fb16423c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
RAX: ffffffffffffffda RBX: 00007fb1662a6180 RCX: 00007fb16602c819
RDX: 0000000000000000 RSI: 000000000000000a RDI: 000000000000000a
RBP: 00007fb1660c2c91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000004800000009 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fb1662a6218 R14: 00007fb1662a6180 R15: 00007fff62922178
 </TASK>