syzbot

------------[ cut here ]------------
CPU 0 old state 2 new state 1
WARNING: CPU: 0 PID: 113 at kernel/rcu/srcutree.c:702 srcu_check_nmi_safety+0x10e/0x130 kernel/rcu/srcutree.c:702
Modules linked in:
CPU: 0 PID: 113 Comm: kswapd0 Not tainted 6.9.0-syzkaller-11002-g29c73fc794c8 #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
RIP: 0010:srcu_check_nmi_safety+0x10e/0x130 kernel/rcu/srcutree.c:702
Code: c0 74 11 3c 03 7f 0d 89 54 24 04 e8 5c 5a 77 00 8b 54 24 04 8b b3 c8 01 00 00 44 89 e1 48 c7 c7 60 3f 2e 8b e8 73 a5 dc ff 90 <0f> 0b 90 90 e9 7b ff ff ff e8 34 5a 77 00 e9 65 ff ff ff e8 5a 5a
RSP: 0018:ffffc90001f9ede8 EFLAGS: 00010282
RAX: 0000000000000000 RBX: ffffe8ffad05e440 RCX: ffffffff81510229
RDX: ffff88801b1e0000 RSI: ffffffff81510236 RDI: 0000000000000001
RBP: ffffc90003e608a8 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000005 R12: 0000000000000001
R13: ffff888021289c80 R14: ffffc90003e608a8 R15: ffffc90003e60828
FS:  0000000000000000(0000) GS:ffff88802c000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000002e934000 CR3: 000000001cdde000 CR4: 0000000000352ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 srcu_read_lock include/linux/srcu.h:213 [inline]
 __kvm_handle_hva_range arch/x86/kvm/../../../virt/kvm/kvm_main.c:615 [inline]
 kvm_handle_hva_range arch/x86/kvm/../../../virt/kvm/kvm_main.c:686 [inline]
 kvm_mmu_notifier_clear_flush_young+0x135/0x700 arch/x86/kvm/../../../virt/kvm/kvm_main.c:869
 __mmu_notifier_clear_flush_young+0x110/0x1e0 mm/mmu_notifier.c:377
 mmu_notifier_clear_flush_young include/linux/mmu_notifier.h:410 [inline]
 folio_referenced_one+0x5c9/0xf50 mm/rmap.c:884
 rmap_walk_anon+0x2c8/0x700 mm/rmap.c:2605
 rmap_walk mm/rmap.c:2683 [inline]
 rmap_walk mm/rmap.c:2678 [inline]
 folio_referenced+0x29e/0x5b0 mm/rmap.c:993
 folio_check_references mm/vmscan.c:835 [inline]
 shrink_folio_list+0x271c/0x4150 mm/vmscan.c:1169
 evict_folios+0x6e6/0x1bf0 mm/vmscan.c:4553
 try_to_shrink_lruvec+0x618/0x9b0 mm/vmscan.c:4749
 shrink_one+0x3f8/0x7c0 mm/vmscan.c:4788
 shrink_many mm/vmscan.c:4851 [inline]
 lru_gen_shrink_node+0x89f/0x1750 mm/vmscan.c:4951
 shrink_node mm/vmscan.c:5910 [inline]
 kswapd_shrink_node mm/vmscan.c:6720 [inline]
 balance_pgdat+0x1105/0x1970 mm/vmscan.c:6911
 kswapd+0x5ea/0xbf0 mm/vmscan.c:7180
 kthread+0x2c1/0x3a0 kernel/kthread.c:389
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>