syzbot

rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5946/1:b..l P5189/1:b..l
rcu: 	(detected by 1, t=10502 jiffies, g=9617, q=467 ncpus=2)
task:udevd           state:R  running task     stack:26056 pid:5189  tgid:5189  ppid:1      task_flags:0x400140 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5256 [inline]
 __schedule+0x1139/0x6150 kernel/sched/core.c:6863
 preempt_schedule_irq+0x51/0x90 kernel/sched/core.c:7190
 irqentry_exit+0x1d8/0x8c0 kernel/entry/common.c:216
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 kernel/kcov.c:210
Code: d6 66 58 00 48 89 df 5b e9 fd 1c 5e 00 be 03 00 00 00 5b e9 b2 16 ee 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 48 8b 34 24 65 48 8b 15 38 e4 f3 11 65 8b 05 49 e4 f3
RSP: 0018:ffffc90003b4fc58 EFLAGS: 00000202
RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff826b8c89
RDX: ffff88807cc34980 RSI: 0000000000000000 RDI: 0000000000000005
RBP: ffff888023e2e970 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000000000001 R11: ffff88807cc354b0 R12: ffffc90003b4fdd8
R13: 0000000000000007 R14: ffff88802b09fca0 R15: ffff88814af52820
 rcu_read_unlock include/linux/rcupdate.h:895 [inline]
 class_rcu_destructor include/linux/rcupdate.h:1195 [inline]
 sysfs_file_kobj+0x17f/0x290 fs/sysfs/file.c:24
 sysfs_file_ops+0x14/0x170 fs/sysfs/file.c:34
 sysfs_kf_write+0x3f/0x150 fs/sysfs/file.c:136
 kernfs_fop_write_iter+0x3af/0x570 fs/kernfs/file.c:352
 new_sync_write fs/read_write.c:593 [inline]
 vfs_write+0x7d3/0x11d0 fs/read_write.c:686
 ksys_write+0x12a/0x250 fs/read_write.c:738
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fe8196a7407
RSP: 002b:00007ffdd57a5d70 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 00007fe819de5880 RCX: 00007fe8196a7407
RDX: 0000000000000007 RSI: 000055a2edc2edd0 RDI: 000000000000000c
RBP: 000055a2edc2edd0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000007
R13: 000055a2edc281e0 R14: 00007fe8197efea0 R15: 00007ffdd57a60c0
 </TASK>
task:syz-executor    state:R  running task     stack:23640 pid:5946  tgid:5946  ppid:5940   task_flags:0x400140 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5256 [inline]
 __schedule+0x1139/0x6150 kernel/sched/core.c:6863
 preempt_schedule_irq+0x51/0x90 kernel/sched/core.c:7190
 irqentry_exit+0x1d8/0x8c0 kernel/entry/common.c:216
 asm_sysvec_reschedule_ipi+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:lock_acquire+0x62/0x330 kernel/locking/lockdep.c:5872
Code: d3 18 12 83 f8 07 0f 87 a2 02 00 00 89 c0 48 0f a3 05 52 c1 ee 0e 0f 82 74 02 00 00 8b 35 ea f1 ee 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 69 d3 18 12 0f 85 ad 02 00 00 48 83 c4
RSP: 0018:ffffc90003b7f6b8 EFLAGS: 00000206
RAX: 0000000000000046 RBX: ffffffff8e3c96a0 RCX: 0000000068c1bacb
RDX: 0000000000000000 RSI: ffffffff8daa961b RDI: ffffffff8bf2b580
RBP: 0000000000000002 R08: 00000000ffffffff R09: 00000000ffffffff
R10: 0000000000000002 R11: ffff8880314daff0 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
 rcu_lock_acquire include/linux/rcupdate.h:331 [inline]
 rcu_read_lock include/linux/rcupdate.h:867 [inline]
 class_rcu_constructor include/linux/rcupdate.h:1195 [inline]
 unwind_next_frame+0xd1/0x20b0 arch/x86/kernel/unwind_orc.c:495
 arch_stack_walk+0x94/0x100 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x8e/0xc0 kernel/stacktrace.c:122
 kasan_save_stack+0x33/0x60 mm/kasan/common.c:57
 kasan_save_track+0x14/0x30 mm/kasan/common.c:78
 kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:584
 poison_slab_object mm/kasan/common.c:253 [inline]
 __kasan_slab_free+0x5f/0x80 mm/kasan/common.c:285
 kasan_slab_free include/linux/kasan.h:235 [inline]
 slab_free_hook mm/slub.c:2540 [inline]
 slab_free mm/slub.c:6670 [inline]
 kmem_cache_free+0x2d8/0x770 mm/slub.c:6781
 kfree_skbmem+0x1a4/0x1f0 net/core/skbuff.c:1130
 __kfree_skb net/core/skbuff.c:1197 [inline]
 consume_skb net/core/skbuff.c:1428 [inline]
 consume_skb+0xcc/0x100 net/core/skbuff.c:1422
 netlink_recvmsg+0x5b9/0xa90 net/netlink/af_netlink.c:1972
 sock_recvmsg_nosec net/socket.c:1078 [inline]
 sock_recvmsg+0x1f9/0x250 net/socket.c:1100
 __sys_recvfrom+0x203/0x310 net/socket.c:2256
 __do_sys_recvfrom net/socket.c:2271 [inline]
 __se_sys_recvfrom net/socket.c:2267 [inline]
 __x64_sys_recvfrom+0xe0/0x1c0 net/socket.c:2267
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fcaf6d91514
RSP: 002b:00007ffc88705a00 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
RAX: ffffffffffffffda RBX: 00007fcaf7b14620 RCX: 00007fcaf6d91514
RDX: 0000000000001000 RSI: 00007fcaf7b14670 RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
R13: 0000000000000000 R14: 00007fcaf7b14670 R15: 0000000000000000
 </TASK>
rcu: rcu_preempt kthread starved for 10568 jiffies! g9617 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:28744 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5256 [inline]
 __schedule+0x1139/0x6150 kernel/sched/core.c:6863
 __schedule_loop kernel/sched/core.c:6945 [inline]
 schedule+0xe7/0x3a0 kernel/sched/core.c:6960
 schedule_timeout+0x123/0x290 kernel/time/sleep_timeout.c:99
 rcu_gp_fqs_loop+0x1ea/0xaf0 kernel/rcu/tree.c:2083
 rcu_gp_kthread+0x26d/0x380 kernel/rcu/tree.c:2285
 kthread+0x3c5/0x780 kernel/kthread.c:463
 ret_from_fork+0x983/0xb10 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:pv_native_safe_halt+0xf/0x20 arch/x86/kernel/paravirt.c:82
Code: 46 5f 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 13 b9 11 00 fb f4 <e9> cc 35 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
RSP: 0018:ffffc90000197de8 EFLAGS: 000002c6
RAX: 00000000000a68f7 RBX: 0000000000000001 RCX: ffffffff8b78a6d9
RDX: 0000000000000000 RSI: ffffffff8dacf6aa RDI: ffffffff8bf2b580
RBP: ffffed1003b57498 R08: 0000000000000001 R09: ffffed10170a673d
R10: ffff8880b85339eb R11: ffff88801dabaff0 R12: 0000000000000001
R13: ffff88801daba4c0 R14: ffffffff9088cdd0 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8881249f2000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 000000006a7ea000 CR4: 00000000003526f0
Call Trace:
 <TASK>
 arch_safe_halt arch/x86/include/asm/paravirt.h:107 [inline]
 default_idle+0x13/0x20 arch/x86/kernel/process.c:767
 default_idle_call+0x6c/0xb0 kernel/sched/idle.c:122
 cpuidle_idle_call kernel/sched/idle.c:191 [inline]
 do_idle+0x38d/0x510 kernel/sched/idle.c:332
 cpu_startup_entry+0x4f/0x60 kernel/sched/idle.c:430
 start_secondary+0x21d/0x2d0 arch/x86/kernel/smpboot.c:312
 common_startup_64+0x13e/0x148
 </TASK>