./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1166889036 <...> Warning: Permanently added '10.128.1.44' (ED25519) to the list of known hosts. execve("./syz-executor1166889036", ["./syz-executor1166889036"], 0x7ffe10e12a10 /* 10 vars */) = 0 brk(NULL) = 0x555576015000 brk(0x555576015d00) = 0x555576015d00 arch_prctl(ARCH_SET_FS, 0x555576015380) = 0 set_tid_address(0x555576015650) = 5073 set_robust_list(0x555576015660, 24) = 0 rseq(0x555576015ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1166889036", 4096) = 28 getrandom("\xec\x04\x08\xe8\x41\x17\x0f\x89", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555576015d00 brk(0x555576036d00) = 0x555576036d00 brk(0x555576037000) = 0x555576037000 mprotect(0x7fbdbacfc000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576015650) = 5074 ./strace-static-x86_64: Process 5074 attached [pid 5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] set_robust_list(0x555576015660, 24) = 0 ./strace-static-x86_64: Process 5075 attached [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5073] <... clone resumed>, child_tidptr=0x555576015650) = 5075 [pid 5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5075] set_robust_list(0x555576015660, 24./strace-static-x86_64: Process 5076 attached ) = 0 ./strace-static-x86_64: Process 5077 attached [pid 5073] <... clone resumed>, child_tidptr=0x555576015650) = 5077 [pid 5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5077] set_robust_list(0x555576015660, 24 [pid 5076] set_robust_list(0x555576015660, 24 [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] <... clone resumed>, child_tidptr=0x555576015650) = 5076 [pid 5077] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5079 attached ./strace-static-x86_64: Process 5078 attached [pid 5079] set_robust_list(0x555576015660, 24 [pid 5077] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5076] <... set_robust_list resumed>) = 0 [pid 5073] <... clone resumed>, child_tidptr=0x555576015650) = 5079 [pid 5078] set_robust_list(0x555576015660, 24 [pid 5079] <... set_robust_list resumed>) = 0 [pid 5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5079] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 ./strace-static-x86_64: Process 5082 attached ./strace-static-x86_64: Process 5081 attached ./strace-static-x86_64: Process 5080 attached [pid 5078] <... set_robust_list resumed>) = 0 [pid 5076] setpgid(0, 0 [pid 5075] <... clone resumed>, child_tidptr=0x555576015650) = 5078 [pid 5080] set_robust_list(0x555576015660, 24 [pid 5073] <... clone resumed>, child_tidptr=0x555576015650) = 5081 [pid 5082] set_robust_list(0x555576015660, 24 [pid 5081] set_robust_list(0x555576015660, 24 [pid 5080] <... set_robust_list resumed>) = 0 [pid 5078] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5079] <... clone resumed>, child_tidptr=0x555576015650) = 5082 [pid 5077] <... clone resumed>, child_tidptr=0x555576015650) = 5080 [pid 5076] <... setpgid resumed>) = 0 [pid 5082] <... set_robust_list resumed>) = 0 [pid 5081] <... set_robust_list resumed>) = 0 [pid 5080] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5078] <... prctl resumed>) = 0 [pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5081] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5080] <... prctl resumed>) = 0 [pid 5078] setpgid(0, 0 [pid 5080] setpgid(0, 0 [pid 5078] <... setpgid resumed>) = 0 [pid 5076] <... openat resumed>) = 3 [pid 5076] write(3, "1000", 4) = 4 [pid 5082] <... prctl resumed>) = 0 [pid 5076] close(3 [pid 5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5076] <... close resumed>) = 0 [pid 5082] setpgid(0, 0 [pid 5080] <... setpgid resumed>) = 0 [pid 5076] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5076] <... openat resumed>) = 3 [pid 5082] <... setpgid resumed>) = 0 [pid 5078] <... openat resumed>) = 3 [pid 5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5076] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5082] <... openat resumed>) = 3 [pid 5080] <... openat resumed>) = 3 [pid 5078] write(3, "1000", 4 [pid 5076] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 5083 attached [pid 5083] set_robust_list(0x555576015660, 24) = 0 [pid 5076] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x200002c0 [pid 5083] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5082] write(3, "1000", 4 [pid 5081] <... clone resumed>, child_tidptr=0x555576015650) = 5083 [pid 5080] write(3, "1000", 4 [pid 5078] <... write resumed>) = 4 [pid 5076] <... ioctl resumed>) = 0 [pid 5083] <... prctl resumed>) = 0 [pid 5082] <... write resumed>) = 4 [pid 5080] <... write resumed>) = 4 [pid 5078] close(3 [pid 5082] close(3 [pid 5080] close(3 [pid 5078] <... close resumed>) = 0 [pid 5076] ioctl(3, SNDRV_TIMER_IOCTL_START, 0 [pid 5083] setpgid(0, 0 [pid 5082] <... close resumed>) = 0 [pid 5080] <... close resumed>) = 0 [pid 5078] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5076] <... ioctl resumed>) = 0 [pid 5083] <... setpgid resumed>) = 0 [pid 5082] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5076] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5080] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5076] <... openat resumed>) = 4 [pid 5076] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5083] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5082] <... openat resumed>) = 3 [pid 5080] <... openat resumed>) = 3 [pid 5078] <... openat resumed>) = 3 [pid 5076] <... ioctl resumed>) = 0 [pid 5082] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5080] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5078] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5076] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5083] <... openat resumed>) = 3 [pid 5082] <... ioctl resumed>) = 0 [pid 5080] <... ioctl resumed>) = 0 [pid 5078] <... ioctl resumed>) = 0 [pid 5076] <... ioctl resumed>) = 0 [pid 5078] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x200002c0 [pid 5083] write(3, "1000", 4 [pid 5080] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x200002c0 [pid 5078] <... ioctl resumed>) = 0 [pid 5082] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x200002c0 [pid 5076] exit_group(0 [pid 5083] <... write resumed>) = 4 [pid 5082] <... ioctl resumed>) = 0 [pid 5080] <... ioctl resumed>) = 0 [pid 5078] ioctl(3, SNDRV_TIMER_IOCTL_START, 0 [pid 5076] <... exit_group resumed>) = ? [pid 5083] close(3 [pid 5082] ioctl(3, SNDRV_TIMER_IOCTL_START, 0 [pid 5078] <... ioctl resumed>) = 0 [pid 5083] <... close resumed>) = 0 [pid 5082] <... ioctl resumed>) = 0 [pid 5078] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5080] ioctl(3, SNDRV_TIMER_IOCTL_START, 0 [pid 5083] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5082] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5078] <... openat resumed>) = 4 [pid 5083] <... openat resumed>) = 3 [pid 5078] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5083] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5082] <... openat resumed>) = 4 [pid 5080] <... ioctl resumed>) = 0 [pid 5076] +++ exited with 0 +++ [pid 5080] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5083] <... ioctl resumed>) = 0 [pid 5082] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5080] <... openat resumed>) = 4 [pid 5078] <... ioctl resumed>) = 0 [pid 5080] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5082] <... ioctl resumed>) = 0 [pid 5074] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5076, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5080] <... ioctl resumed>) = 0 [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5082] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5080] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5083] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x200002c0 [pid 5078] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5083] <... ioctl resumed>) = 0 [pid 5078] <... ioctl resumed>) = 0 [pid 5083] ioctl(3, SNDRV_TIMER_IOCTL_START, 0 [pid 5078] exit_group(0 [pid 5083] <... ioctl resumed>) = 0 [pid 5078] <... exit_group resumed>) = ? ./strace-static-x86_64: Process 5084 attached [pid 5083] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5082] <... ioctl resumed>) = 0 [pid 5080] <... ioctl resumed>) = 0 [pid 5084] set_robust_list(0x555576015660, 24 [pid 5083] <... openat resumed>) = 4 [pid 5082] exit_group(0 [pid 5080] exit_group(0 [pid 5078] +++ exited with 0 +++ [pid 5074] <... clone resumed>, child_tidptr=0x555576015650) = 5084 [pid 5084] <... set_robust_list resumed>) = 0 [pid 5083] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5082] <... exit_group resumed>) = ? [pid 5080] <... exit_group resumed>) = ? [pid 5083] <... ioctl resumed>) = 0 [pid 5083] ioctl(4, SNDRV_TIMER_IOCTL_START, 0) = 0 [ 176.250291][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 176.257383][ C0] rcu: 1-...!: (6 ticks this GP) idle=7f14/1/0x4000000000000000 softirq=6265/6267 fqs=2 [ 176.267786][ C0] rcu: (detected by 0, t=10505 jiffies, g=6905, q=16 ncpus=2) [ 176.275359][ C0] Sending NMI from CPU 0 to CPUs 1: [ 176.280593][ C1] NMI backtrace for cpu 1 [ 176.280604][ C1] CPU: 1 PID: 5082 Comm: syz-executor116 Not tainted 6.8.0-syzkaller-08073-g480e035fc4c7 #0 [ 176.280623][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 176.280633][ C1] RIP: 0010:__lock_acquire+0x1233/0x1fd0 [ 176.280680][ C1] Code: c1 e8 03 80 3c 38 00 74 12 48 89 df e8 66 92 86 00 48 bf 00 00 00 00 00 fc ff df 48 83 3b 00 0f 84 61 04 00 00 48 8b 44 24 20 <0f> b6 04 38 84 c0 0f 85 e4 09 00 00 48 8b 44 24 10 8b 18 81 e3 ff [ 176.280699][ C1] RSP: 0018:ffffc90000a08950 EFLAGS: 00000086 [ 176.280715][ C1] RAX: 1ffff1100d0ee169 RBX: ffffffff929f98f0 RCX: ffffffff8171af09 [ 176.280728][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: dffffc0000000000 [ 176.280740][ C1] RBP: 7ff3249bd3db0911 R08: ffffffff92ce1587 R09: 1ffffffff259c2b0 [ 176.280753][ C1] R10: dffffc0000000000 R11: fffffbfff259c2b1 R12: ffff888068770000 [ 176.280765][ C1] R13: ffff888068770000 R14: 0000000000000001 R15: ffff888068770000 [ 176.280795][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 176.280810][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 176.280822][ C1] CR2: 00007fbdbac586a0 CR3: 000000000df32000 CR4: 00000000003506f0 [ 176.280838][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 176.280848][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 176.280859][ C1] Call Trace: [ 176.280867][ C1] [ 176.280875][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 176.280898][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 176.280917][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 176.280943][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 176.280965][ C1] ? nmi_handle+0x14f/0x580 [ 176.280983][ C1] ? nmi_handle+0x2a/0x580 [ 176.281001][ C1] ? __lock_acquire+0x1233/0x1fd0 [ 176.281018][ C1] ? default_do_nmi+0x63/0x160 [ 176.281036][ C1] ? exc_nmi+0x123/0x1f0 [ 176.281053][ C1] ? end_repeat_nmi+0xf/0x53 [ 176.281075][ C1] ? __lock_acquire+0xf19/0x1fd0 [ 176.281093][ C1] ? __lock_acquire+0x1233/0x1fd0 [ 176.281110][ C1] ? __lock_acquire+0x1233/0x1fd0 [ 176.281128][ C1] ? __lock_acquire+0x1233/0x1fd0 [ 176.281146][ C1] [ 176.281151][ C1] [ 176.281165][ C1] lock_acquire+0x1e4/0x530 [ 176.281182][ C1] ? snd_timer_process_callbacks+0x26e/0x320 [ 176.281216][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 176.281233][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 176.281257][ C1] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 176.281281][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 176.281309][ C1] ? __pfx_snd_timer_user_interrupt+0x10/0x10 [ 176.281335][ C1] ? __wake_up_common_lock+0x18c/0x1e0 [ 176.281355][ C1] ? __pfx_snd_timer_user_interrupt+0x10/0x10 [ 176.281381][ C1] _raw_spin_lock+0x2e/0x40 [ 176.281403][ C1] ? snd_timer_process_callbacks+0x26e/0x320 [ 176.281426][ C1] snd_timer_process_callbacks+0x26e/0x320 [ 176.281454][ C1] snd_timer_interrupt+0xf02/0x10d0 [ 176.281485][ C1] snd_hrtimer_callback+0x20b/0x380 [ 176.281516][ C1] ? __pfx_snd_hrtimer_callback+0x10/0x10 [ 176.281543][ C1] __hrtimer_run_queues+0x595/0xd00 [ 176.281575][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 176.281598][ C1] ? ktime_get_update_offsets_now+0x411/0x430 [ 176.281619][ C1] hrtimer_interrupt+0x396/0x990 [ 176.281653][ C1] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 176.281682][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 176.281710][ C1] [ 176.281716][ C1] [ 176.281722][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 176.281741][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140 [ 176.281766][ C1] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 fe 49 79 f6 f6 44 24 21 02 75 52 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 a3 f1 e5 f5 65 8b 05 f4 d5 84 74 85 c0 74 43 48 c7 04 24 0e 36 [ 176.281780][ C1] RSP: 0018:ffffc90003abf940 EFLAGS: 00000206 [ 176.281795][ C1] RAX: 997f0f1c17ca5c00 RBX: 1ffff92000757f2c RCX: ffffffff81720c2a [ 176.281808][ C1] RDX: dffffc0000000000 RSI: ffffffff8baac1e0 RDI: 0000000000000001 [ 176.281820][ C1] RBP: ffffc90003abf9d0 R08: ffffffff92ce1587 R09: 1ffffffff259c2b0 [ 176.281833][ C1] R10: dffffc0000000000 R11: fffffbfff259c2b1 R12: dffffc0000000000 [ 176.281846][ C1] R13: 1ffff92000757f28 R14: ffffc90003abf960 R15: 0000000000000246 [ 176.281862][ C1] ? mark_lock+0x9a/0x350 [ 176.281884][ C1] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 176.281914][ C1] snd_timer_stop1+0x7d9/0x930 [ 176.281943][ C1] snd_timer_close_locked+0x217/0x8c0 [ 176.281966][ C1] ? __fsnotify_parent+0x20c/0x5e0 [ 176.281985][ C1] snd_timer_user_release+0x129/0x2d0 [ 176.282012][ C1] ? __pfx_snd_timer_user_release+0x10/0x10 [ 176.282038][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 176.282056][ C1] ? evm_file_release+0x140/0x1d0 [ 176.282074][ C1] ? __pfx_snd_timer_user_release+0x10/0x10 [ 176.282099][ C1] __fput+0x429/0x8a0 [ 176.282123][ C1] task_work_run+0x24f/0x310 [ 176.282150][ C1] ? __pfx_task_work_run+0x10/0x10 [ 176.282175][ C1] ? switch_task_namespaces+0xe1/0x110 [ 176.282193][ C1] do_exit+0xa1b/0x27e0 [ 176.282219][ C1] ? __pfx_do_exit+0x10/0x10 [ 176.282241][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 176.282261][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 176.282281][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 176.282303][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 176.282327][ C1] do_group_exit+0x207/0x2c0 [ 176.282352][ C1] __x64_sys_exit_group+0x3f/0x40 [ 176.282375][ C1] do_syscall_64+0xfb/0x240 [ 176.282401][ C1] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 176.282419][ C1] RIP: 0033:0x7fbdbac87db9 [ 176.282433][ C1] Code: Unable to access opcode bytes at 0x7fbdbac87d8f. [ 176.282441][ C1] RSP: 002b:00007ffedf73b938 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 176.282458][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbdbac87db9 [ 176.282470][ C1] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 [ 176.282480][ C1] RBP: 00007fbdbad022b0 R08: ffffffffffffffb8 R09: 00000000000000a0 [ 176.282492][ C1] R10: 00000000000000a0 R11: 0000000000000246 R12: 00007fbdbad022b0 [ 176.282503][ C1] R13: 0000000000000000 R14: 00007fbdbad02d20 R15: 00007fbdbac58f50 [ 176.282523][ C1] [ 176.282530][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.937 msecs [ 176.282588][ C0] rcu: rcu_preempt kthread starved for 10494 jiffies! g6905 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 176.910225][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 176.920215][ C0] rcu: RCU grace-period kthread stack dump: [ 176.926122][ C0] task:rcu_preempt state:R running task stack:26256 pid:16 tgid:16 ppid:2 flags:0x00004000 [ 176.938184][ C0] Call Trace: [ 176.941487][ C0] [ 176.944989][ C0] __schedule+0x17d3/0x4a20 [ 176.949837][ C0] ? __pfx___schedule+0x10/0x10 [ 176.954736][ C0] ? __pfx_lock_release+0x10/0x10 [ 176.959826][ C0] ? __asan_memset+0x23/0x50 [ 176.964452][ C0] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 176.970285][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 176.976645][ C0] ? schedule+0x90/0x320 [ 176.981061][ C0] schedule+0x14b/0x320 [ 176.985284][ C0] schedule_timeout+0x1be/0x310 [ 176.990186][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 176.995611][ C0] ? __pfx_process_timeout+0x10/0x10 [ 177.000953][ C0] ? prepare_to_swait_event+0x32e/0x350 [ 177.006556][ C0] rcu_gp_fqs_loop+0x2df/0x1370 [ 177.011458][ C0] ? __pfx_rcu_implicit_dynticks_qs+0x10/0x10 [ 177.017552][ C0] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 177.023599][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 177.028848][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 177.034180][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 177.040137][ C0] ? finish_swait+0xd4/0x1e0 [ 177.044780][ C0] rcu_gp_kthread+0xa7/0x3b0 [ 177.049436][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 177.054682][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 177.060619][ C0] ? __kthread_parkme+0x169/0x1d0 [ 177.065674][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 177.070913][ C0] kthread+0x2f0/0x390 [ 177.075012][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 177.080246][ C0] ? __pfx_kthread+0x10/0x10 [ 177.084865][ C0] ret_from_fork+0x4b/0x80 [ 177.089313][ C0] ? __pfx_kthread+0x10/0x10 [ 177.093937][ C0] ret_from_fork_asm+0x1a/0x30 [ 177.098752][ C0] [ 177.101789][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 177.108129][ C0] CPU: 0 PID: 11 Comm: kworker/u8:1 Not tainted 6.8.0-syzkaller-08073-g480e035fc4c7 #0 [ 177.117781][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 177.127857][ C0] Workqueue: events_unbound toggle_allocation_gate [ 177.134402][ C0] RIP: 0010:smp_call_function_many_cond+0x1850/0x2960 [ 177.141193][ C0] Code: 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 d9 d5 0b 00 41 83 e4 01 49 bc 00 00 00 00 00 fc ff df 75 07 e8 84 d1 0b 00 eb 38 f3 90 <42> 0f b6 04 23 84 c0 75 11 41 f7 45 00 01 00 00 00 74 1e e8 68 d1 [ 177.160834][ C0] RSP: 0018:ffffc900001076e0 EFLAGS: 00000293 [ 177.166936][ C0] RAX: ffffffff818923e8 RBX: 1ffff110172a8809 RCX: ffff8880172abc00 [ 177.174938][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 177.182937][ C0] RBP: ffffc900001078e0 R08: ffffffff818923b7 R09: 1ffffffff259c2a0 [ 177.190947][ C0] R10: dffffc0000000000 R11: fffffbfff259c2a1 R12: dffffc0000000000 [ 177.198951][ C0] R13: ffff8880b9544048 R14: ffff8880b943f480 R15: 0000000000000001 [ 177.206948][ C0] FS: 0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 177.215898][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 177.222503][ C0] CR2: 00007ffedf73b898 CR3: 000000000df32000 CR4: 00000000003506f0 [ 177.230504][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 177.238505][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 177.246501][ C0] Call Trace: [ 177.249801][ C0] [ 177.252665][ C0] ? rcu_check_gp_kthread_starvation+0x278/0x310 [ 177.259038][ C0] ? print_other_cpu_stall+0x14a4/0x15e0 [ 177.264730][ C0] ? __pfx_print_other_cpu_stall+0x10/0x10 [ 177.270571][ C0] ? timekeeping_advance+0x7e3/0xab0 [ 177.275894][ C0] ? kvm_check_and_clear_guest_paused+0x6a/0xd0 [ 177.282167][ C0] ? rcu_sched_clock_irq+0x9f4/0x10a0 [ 177.287588][ C0] ? __pfx_rcu_sched_clock_irq+0x10/0x10 [ 177.293249][ C0] ? hrtimer_run_queues+0x16c/0x460 [ 177.298824][ C0] ? acct_account_cputime+0x207/0x210 [ 177.304234][ C0] ? update_process_times+0x1ce/0x230 [ 177.309632][ C0] ? tick_nohz_handler+0x39e/0x540 [ 177.314779][ C0] ? __pfx_tick_nohz_handler+0x10/0x10 [ 177.320270][ C0] ? __hrtimer_run_queues+0x54b/0xd00 [ 177.325692][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 177.331440][ C0] ? ktime_get_update_offsets_now+0x411/0x430 [ 177.337540][ C0] ? hrtimer_interrupt+0x396/0x990 [ 177.342756][ C0] ? __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 177.348947][ C0] ? sysvec_apic_timer_interrupt+0xa1/0xc0 [ 177.354801][ C0] [ 177.357760][ C0] [ 177.360720][ C0] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 177.366923][ C0] ? smp_call_function_many_cond+0x1837/0x2960 [ 177.373119][ C0] ? smp_call_function_many_cond+0x1868/0x2960 [ 177.379311][ C0] ? smp_call_function_many_cond+0x1850/0x2960 [ 177.385591][ C0] ? __pfx_do_sync_core+0x10/0x10 [ 177.390662][ C0] ? __pfx_text_poke_memcpy+0x10/0x10 [ 177.396092][ C0] ? __pfx___text_poke+0x10/0x10 [ 177.401079][ C0] ? process_scheduled_works+0x91b/0x1770 [ 177.406847][ C0] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 177.413216][ C0] ? __pfx___might_resched+0x10/0x10 [ 177.418531][ C0] ? __mutex_trylock_common+0x183/0x2e0 [ 177.424126][ C0] ? __pfx___might_resched+0x10/0x10 [ 177.429448][ C0] ? __pfx_do_sync_core+0x10/0x10 [ 177.434503][ C0] on_each_cpu_cond_mask+0x3f/0x80 [ 177.439646][ C0] text_poke_bp_batch+0x352/0xb30 [ 177.444713][ C0] ? __pfx_text_poke_bp_batch+0x10/0x10 [ 177.450290][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 177.455341][ C0] ? arch_jump_label_transform_queue+0x9b/0x100 [ 177.461617][ C0] ? process_scheduled_works+0x91b/0x1770 [ 177.467360][ C0] text_poke_finish+0x30/0x50 [ 177.472066][ C0] arch_jump_label_transform_apply+0x1c/0x30 [ 177.478075][ C0] static_key_enable_cpuslocked+0x136/0x260 [ 177.483999][ C0] static_key_enable+0x1a/0x20 [ 177.488791][ C0] toggle_allocation_gate+0xb5/0x250 [ 177.494112][ C0] ? __pfx_toggle_allocation_gate+0x10/0x10 [ 177.500034][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 177.506399][ C0] process_scheduled_works+0xa00/0x1770 [ 177.512001][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 177.518013][ C0] ? assign_work+0x364/0x3d0 [ 177.522633][ C0] worker_thread+0x86d/0xd70 [ 177.527264][ C0] ? __kthread_parkme+0x169/0x1d0 [ 177.532319][ C0] ? __pfx_worker_thread+0x10/0x10 [ 177.537482][ C0] kthread+0x2f0/0x390 [ 177.541592][ C0] ? __pfx_worker_thread+0x10/0x10 [ 177.547163][ C0] ? __pfx_kthread+0x10/0x10 [ 177.551858][ C0] ret_from_fork+0x4b/0x80 [ 177.556333][ C0] ? __pfx_kthread+0x10/0x10 [ 177.560949][ C0] ret_from_fork_asm+0x1a/0x30 [ 177.565758][ C0]