program: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000240)={0x0, 0xda0, &(0x7f0000000080)="142f91b1f9", 0x0, 0x5}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 75.892533][ T4666] Bluetooth: hci0: command tx timeout [ 75.968807][ T5321] [ 75.969822][ T5321] ============================= [ 75.971804][ T5321] WARNING: suspicious RCU usage [ 75.973728][ T5321] 6.13.0-syzkaller-00918-g95ec54a420b8 #0 Not tainted [ 75.976525][ T5321] ----------------------------- [ 75.978356][ T5321] ./include/linux/kvm_host.h:1038 suspicious rcu_dereference_check() usage! [ 75.982613][ T5321] [ 75.982613][ T5321] other info that might help us debug this: [ 75.982613][ T5321] [ 75.986962][ T5321] [ 75.986962][ T5321] rcu_scheduler_active = 2, debug_locks = 1 [ 75.989985][ T5321] no locks held by syz.0.0/5321. [ 75.991974][ T5321] [ 75.991974][ T5321] stack backtrace: [ 75.994400][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0 [ 75.998226][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.002271][ T5321] Call Trace: [ 76.003591][ T5321] [ 76.004770][ T5321] dump_stack_lvl+0x241/0x360 [ 76.006611][ T5321] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.008580][ T5321] ? __pfx__printk+0x10/0x10 [ 76.010297][ T5321] ? irqentry_exit+0x63/0x90 [ 76.012096][ T5321] lockdep_rcu_suspicious+0x226/0x340 [ 76.013979][ T5321] kvm_vcpu_gfn_to_memslot+0x429/0x4c0 [ 76.016000][ T5321] kvm_vcpu_write_guest+0x7c/0x130 [ 76.017960][ T5321] kvm_xen_write_hypercall_page+0x2ff/0x5f0 [ 76.020177][ T5321] ? __pfx_kvm_xen_write_hypercall_page+0x10/0x10 [ 76.022583][ T5321] kvm_set_msr_common+0x150/0x3da0 [ 76.024560][ T5321] ? kvm_clear_async_pf_completion_queue+0x3a7/0x3f0 [ 76.027121][ T5321] ? __pfx_kvm_set_msr_common+0x10/0x10 [ 76.029209][ T5321] ? do_raw_spin_unlock+0x58/0x8b0 [ 76.031141][ T5321] vmx_set_msr+0x15da/0x2790 [ 76.032911][ T5321] ? _raw_spin_unlock+0x28/0x50 [ 76.034882][ T5321] ? kvm_clear_async_pf_completion_queue+0x3a7/0x3f0 [ 76.037436][ T5321] kvm_vcpu_reset+0xbea/0x1740 [ 76.039322][ T5321] ? __pfx_kvm_vcpu_reset+0x10/0x10 [ 76.041413][ T5321] ? __raw_spin_lock_init+0x45/0x100 [ 76.043298][ T5321] kvm_arch_vcpu_create+0x8dc/0xa80 [ 76.045215][ T5321] kvm_vm_ioctl_create_vcpu+0x3d6/0xa00 [ 76.047188][ T5321] kvm_vm_ioctl+0x7e2/0xd30 [ 76.048793][ T5321] ? mark_lock+0x9a/0x360 [ 76.050422][ T5321] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 76.052142][ T5321] ? tomoyo_path_number_perm+0x206/0x860 [ 76.054156][ T5321] ? __pfx_lock_release+0x10/0x10 [ 76.055959][ T5321] ? tomoyo_path_number_perm+0x679/0x860 [ 76.058096][ T5321] ? tomoyo_path_number_perm+0x679/0x860 [ 76.060302][ T5321] ? tomoyo_path_number_perm+0x6f9/0x860 [ 76.062543][ T5321] ? __lock_acquire+0x1397/0x2100 [ 76.064553][ T5321] ? tomoyo_path_number_perm+0x206/0x860 [ 76.066711][ T5321] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 76.069109][ T5321] ? __fget_files+0x2a/0x410 [ 76.070918][ T5321] ? __fget_files+0x2a/0x410 [ 76.072793][ T5321] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 76.074696][ T5321] __se_sys_ioctl+0xf5/0x170 [ 76.076525][ T5321] do_syscall_64+0xf3/0x230 [ 76.078271][ T5321] ? clear_bhb_loop+0x35/0x90 [ 76.080074][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.082353][ T5321] RIP: 0033:0x7f1fc7985d29 [ 76.084130][ T5321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.091630][ T5321] RSP: 002b:00007f1fc8875038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 76.094894][ T5321] RAX: ffffffffffffffda RBX: 00007f1fc7b75fa0 RCX: 00007f1fc7985d29 [ 76.097951][ T5321] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 76.101062][ T5321] RBP: 00007f1fc7a01b08 R08: 0000000000000000 R09: 0000000000000000 [ 76.104144][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 76.107135][ T5321] R13: 0000000000000000 R14: 00007f1fc7b75fa0 R15: 00007ffee84c2b08 [ 76.110170][ T5321]