Dec 3 05:26:35 syzkaller kern.warn kernel: [ 149.903364][ T8684] out_of_memory+0x9af/0xbe0 mm/oom_kill.c:1172 Dec 3 05:26:35 syzkaller kern.warn kernel: [ 149.908034][ T8684] ? css_next_descendant_pre+0x11c/0x140 kernel/cgroup/cgroup.c:4662 Dec 3 05:26:35 syzkaller kern.warn kernel: [ 149.913749][ T8684] mem_cgroup_out_of_memory+0x13e/0x190 mm/memcontrol.c:1630 Dec 3 05:26:35 syzkaller kern.warn kernel: [ 149.919479][ T8684] try_charge_memcg[ 150.906028][ T8684] ================================================================== +0x508/0x7f0 De[ 150.914438][ T8684] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64 c 3 05:26:35 sy[ 150.925585][ T8684] zkaller kern.war[ 150.937380][ T8684] tick_do_update_jiffies64+0x112/0x1b0 kernel/time/tick-sched.c:118 n kernel: [ 149[ 150.944299][ T8684] tick_sched_do_timer kernel/time/tick-sched.c:232 [inline] n kernel: [ 149[ 150.944299][ T8684] tick_nohz_handler+0x7c/0x2d0 kernel/time/tick-sched.c:290 .924329][ T8684][ 150.950516][ T8684] __run_hrtimer kernel/time/hrtimer.c:1739 [inline] .924329][ T8684][ 150.950516][ T8684] __hrtimer_run_queues+0x20d/0x5e0 kernel/time/hrtimer.c:1803 charge_memcg+0[ 150.957106][ T8684] hrtimer_interrupt+0x235/0x4a0 kernel/time/hrtimer.c:1865 x50/0xc0 Dec 3[ 150.963419][ T8684] local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1038 [inline] Dec 3[ 150.963419][ T8684] __sysvec_apic_timer_interrupt+0x5c/0x1d0 arch/x86/kernel/apic/apic.c:1055 05:26:35 syzkal[ 150.970764][ T8684] instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1049 [inline] 05:26:35 syzkal[ 150.970764][ T8684] sysvec_apic_timer_interrupt+0x6e/0x80 arch/x86/kernel/apic/apic.c:1049 ler kern.warn ke[ 150.977756][ T8684] asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702 rnel: [ 149.928[ 150.985098][ T8684] __rcu_read_unlock+0x5/0x70 kernel/rcu/tree_plugin.h:430 713][ T8684] me[ 150.991143][ T8684] rcu_read_unlock include/linux/rcupdate.h:882 [inline] 713][ T8684] me[ 150.991143][ T8684] mod_memcg_page_state include/linux/memcontrol.h:940 [inline] 713][ T8684] me[ 150.991143][ T8684] __vmalloc_area_node mm/vmalloc.c:3676 [inline] 713][ T8684] me[ 150.991143][ T8684] __vmalloc_node_range_noprof+0xa7a/0xe80 mm/vmalloc.c:3844 m_cgroup_swapin_[ 150.998309][ T8684] __kvmalloc_node_noprof+0x121/0x170 mm/util.c:672 charge_folio+0xd[ 151.005072][ T8684] ip_set_alloc+0x1f/0x30 net/netfilter/ipset/ip_set_core.c:256 0/0x150 Dec 3 [ 151.010761][ T8684] hash_netiface_create+0x273/0x730 net/netfilter/ipset/ip_set_hash_gen.h:1568 05:26:35 syzkall[ 151.017361][ T8684] ip_set_create+0x359/0x8a0 net/netfilter/ipset/ip_set_core.c:1104 er kern.warn ker[ 151.023381][ T8684] nfnetlink_rcv_msg+0x4a9/0x570 net/netfilter/nfnetlink.c:302 nel: [ 149.9346[ 151.029676][ T8684] netlink_rcv_skb+0x12c/0x230 net/netlink/af_netlink.c:2542 89][ T8684] __r[ 151.035798][ T8684] nfnetlink_rcv+0x16c/0x15d0 net/netfilter/nfnetlink.c:667 ead_swap_cache_a[ 151.041831][ T8684] netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline] ead_swap_cache_a[ 151.041831][ T8684] netlink_unicast+0x599/0x670 net/netlink/af_netlink.c:1347 sync+0x236/0x480[ 151.047954][ T8684] netlink_sendmsg+0x5cc/0x6e0 net/netlink/af_netlink.c:1891 Dec 3 05:26:3[ 151.054075][ T8684] sock_sendmsg_nosec net/socket.c:711 [inline] Dec 3 05:26:3[ 151.054075][ T8684] __sock_sendmsg+0x140/0x180 net/socket.c:726 5 syzkaller kern[ 151.060286][ T8684] ____sys_sendmsg+0x312/0x410 net/socket.c:2583 .warn kernel: [ [ 151.066494][ T8684] ___sys_sendmsg net/socket.c:2637 [inline] .warn kernel: [ [ 151.066494][ T8684] __sys_sendmsg+0x19d/0x230 net/socket.c:2669 149.940149][ T8[ 151.072445][ T8684] __do_sys_sendmsg net/socket.c:2674 [inline] 149.940149][ T8[ 151.072445][ T8684] __se_sys_sendmsg net/socket.c:2672 [inline] 149.940149][ T8[ 151.072445][ T8684] __x64_sys_sendmsg+0x46/0x50 net/socket.c:2672 684] swap_clust[ 151.078567][ T8684] x64_sys_call+0x2734/0x2dc0 arch/x86/include/generated/asm/syscalls_64.h:47 er_readahead+0x2[ 151.084605][ T8684] do_syscall_x64 arch/x86/entry/common.c:52 [inline] er_readahead+0x2[ 151.084605][ T8684] do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83 79/0x3f0 Dec 3[ 151.090467][ T8684] entry_SYSCALL_64_after_hwframe+0x77/0x7f 05:26:35 syzkal[ 151.097718][ T8684] ler kern.warn ke[ 151.101409][ T8684] read to 0xffffffff866089c0 of 8 bytes by task 8684 on cpu 0: rnel: [ 149.945[ 151.110400][ T8684] mem_cgroup_flush_stats_ratelimited+0x29/0x70 mm/memcontrol.c:640 624][ T8684] sw[ 151.118557][ T8684] count_shadow_nodes+0x6b/0x230 mm/workingset.c:683 apin_readahead+0[ 151.124851][ T8684] do_shrink_slab+0x5a/0x680 mm/shrinker.c:384 xe4/0x6f0 Dec [ 151.130799][ T8684] shrink_slab_memcg mm/shrinker.c:550 [inline] Dec [ 151.130799][ T8684] shrink_slab+0x4ea/0x850 mm/shrinker.c:628 3 05:26:35 syzka[ 151.136572][ T8684] shrink_node_memcgs mm/vmscan.c:5931 [inline] 3 05:26:35 syzka[ 151.136572][ T8684] shrink_node+0x63f/0x1d80 mm/vmscan.c:5970 ller kern.warn k[ 151.142438][ T8684] shrink_zones mm/vmscan.c:6215 [inline] ller kern.warn k[ 151.142438][ T8684] do_try_to_free_pages+0x3c6/0xc50 mm/vmscan.c:6277 ernel: [ 149.95[ 151.149088][ T8684] try_to_free_mem_cgroup_pages+0x1e3/0x490 mm/vmscan.c:6609 0389][ T8684] ?[ 151.156342][ T8684] try_charge_memcg+0x2bc/0x7f0 mm/memcontrol.c:2238 __rcu_read_unlo[ 151.162560][ T8684] try_charge mm/memcontrol-v1.h:19 [inline] __rcu_read_unlo[ 151.162560][ T8684] charge_memcg+0x50/0xc0 mm/memcontrol.c:4497 ck+0x34/0x70 De[ 151.168247][ T8684] mem_cgroup_swapin_charge_folio+0xd0/0x150 mm/memcontrol.c:4582 c 3 05:26:36 sy[ 151.175585][ T8684] __read_swap_cache_async+0x236/0x480 mm/swap_state.c:518 zkaller kern.war[ 151.182399][ T8684] swap_cluster_readahead+0x279/0x3f0 mm/swap_state.c:684 n kernel: [ 149[ 151.189129][ T8684] swapin_readahead+0xe4/0x6f0 mm/swap_state.c:882 .955502][ T8684][ 151.195253][ T8684] do_swap_page+0x31b/0x2550 mm/memory.c:4341 ? swap_cache_g[ 151.201217][ T8684] handle_pte_fault mm/memory.c:5804 [inline] ? swap_cache_g[ 151.201217][ T8684] __handle_mm_fault mm/memory.c:5944 [inline] ? swap_cache_g[ 151.201217][ T8684] handle_mm_fault+0x8e4/0x2ac0 mm/memory.c:6112 et_folio+0x77/0x[ 151.207424][ T8684] do_user_addr_fault arch/x86/mm/fault.c:1338 [inline] et_folio+0x77/0x[ 151.207424][ T8684] handle_page_fault arch/x86/mm/fault.c:1481 [inline] et_folio+0x77/0x[ 151.207424][ T8684] exc_page_fault+0x3b9/0x650 arch/x86/mm/fault.c:1539 210 Dec 3 05:2[ 151.213463][ T8684] asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623 6:36 syzkaller k[ 151.219695][ T8684] ern.warn kernel:[ 151.223392][ T8684] value changed: 0x00000000ffffc595 -> 0x00000000ffffc596 [ 149.960793][[ 151.231859][ T8684] T8684] do_swap[ 151.235555][ T8684] Reported by Kernel Concurrency Sanitizer on: _page+0x31b/0x25[ 151.243072][ T8684] CPU: 0 UID: 0 PID: 8684 Comm: syz.2.1814 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0 50 Dec 3 05:26[ 151.255096][ T8684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 :36 syzkaller ke[ 151.266522][ T8684] ================================================================== rn.warn kernel: [ 149.965394][ T8684] ? rcu_preempt_read_enter kernel/rcu/tree_plugin.h:390 [inline] rn.warn kernel: [ 149.965394][ T8684] ? __rcu_read_lock+0x36/0x50 kernel/rcu/tree_plugin.h:413 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.970156][ T8684] ? __pfx_default_wake_function+0x10/0x10 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.976077][ T8684] handle_pte_fault mm/memory.c:5804 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.976077][ T8684] __handle_mm_fault mm/memory.c:5944 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.976077][ T8684] handle_mm_fault+0x8e4/0x2ac0 mm/memory.c:6112 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.980952][ T8684] do_user_addr_fault arch/x86/mm/fault.c:1338 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.980952][ T8684] handle_page_fault arch/x86/mm/fault.c:1481 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.980952][ T8684] exc_page_fault+0x3b9/0x650 arch/x86/mm/fault.c:1539 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.985668][ T8684] asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.990612][ T8684] RIP: 0033:0x7f1f3d90fe76 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 149.995027][ T8684] Code: fb e8 9e 03 02 00 85 c0 b8 00 00 00 00 48 0f 45 d8 48 89 d8 5b c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 83 ec 28 31 f6 <64> 48 8b 04 25 28 00 00 00 48 89 44 24 18 31 c0 89 f8 48 69 c0 83 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.014633][ T8684] RSP: 002b:00007fff97e9c990 EFLAGS: 00010246 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.020690][ T8684] RAX: 0000000000024937 RBX: 00007f1f3dad5fa0 RCX: 0000000000024608 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.028652][ T8684] RDX: 000000000000032f RSI: 0000000000000000 RDI: 00000000000003e8 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.036621][ T8684] RBP: 00007f1f3dad7ba0 R08: 000000003097dca8 R09: 7fffffffffffffff Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.044586][ T8684] R10: 00007f1f3e616038 R11: 0000000000000010 R12: 0000000000024a60 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.052615][ T8684] R13: 00007f1f3dad6080 R14: 0000000000000032 R15: ffffffffffffffff Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.060584][ T8684] Dec 3 05:26:36 syzkaller kern.info kernel: [ 150.063731][ T8684] memory: usage 307200kB, limit 307200kB, failcnt 177 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.066099][ T29] kauditd_printk_skb: 404 callbacks suppressed Dec 3 05:26:36 syzkaller kern.notice kernel: [ 150.066111][ T29] audit: type=1326 audit(1733203595.677:10419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz.6.1856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 comp Dec 3 05:26:36 syzkaller kern.info kernel: [ 150.070554][ T8684] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0 Dec 3 05:26:36 syzkaller kern.notice kernel: [ 150.076711][ T29] audit: type=1326 audit(1733203595.677:10420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz.6.1856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 comp Dec 3 05:26:36 syzkaller kern.info kernel: [ 150.100118][ T868Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 syzkaller kern.err kernel: [ 150.906028][ T8684] ================================================================== Dec 3 05:26:36 syzkaller kern.err kernel: [ 150.914438][ T8684] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64 Dec 3 05:26:36 syzkaller kern.err kernel: [ 150.925585][ T8684] Dec 3 05:26:36 syzkaller kern.err kernel: [ 150.929288][ T8684] read-write to 0xffffffff866089c0 of 8 bytes by interrupt on cpu 1: Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.937380][ T8684] tick_do_update_jiffies64+0x112/0x1b0 kernel/time/tick-sched.c:118 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.944299][ T8684] tick_sched_do_timer kernel/time/tick-sched.c:232 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.944299][ T8684] tick_nohz_handler+0x7c/0x2d0 kernel/time/tick-sched.c:290 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.950516][ T8684] __run_hrtimer kernel/time/hrtimer.c:1739 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.950516][ T8684] __hrtimer_run_queues+0x20d/0x5e0 kernel/time/hrtimer.c:1803 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.957106][ T8684] hrtimer_interrupt+0x235/0x4a0 kernel/time/hrtimer.c:1865 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.963419][ T8684] local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1038 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.963419][ T8684] __sysvec_apic_timer_interrupt+0x5c/0x1d0 arch/x86/kernel/apic/apic.c:1055 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.970764][ T8684] instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1049 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.970764][ T8684] sysvec_apic_timer_interrupt+0x6e/0x80 arch/x86/kernel/apic/apic.c:1049 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.977756][ T8684] asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.985098][ T8684] __rcu_read_unlock+0x5/0x70 kernel/rcu/tree_plugin.h:430 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.991143][ T8684] rcu_read_unlock include/linux/rcupdate.h:882 [inline]Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.066494][ T8684] __sys_sendmsg+0x19d/0x230 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.991143][ T8684] mod_memcg_page_state include/linux/memcontrol.h:940 [inline]Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.066494][ T8684] __sys_sendmsg+0x19d/0x230 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.991143][ T8684] __vmalloc_area_node mm/vmalloc.c:3676 [inline]Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.066494][ T8684] __sys_sendmsg+0x19d/0x230 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 150.991143][ T8684] __vmalloc_node_range_noprof+0xa7a/0xe mm/vmalloc.c:3844Dec 3 05:26:36 Dec 3 05:26:36 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.066494][ T8684] __sys_sendmsg+0x19d/0x230 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.072445][ T8684] __do_sys_sendmsg net/socket.c:2674 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.072445][ T8684] __se_sys_sendmsg net/socket.c:2672 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.072445][ T8684] __x64_sys_sendmsg+0x46/0x50 net/socket.c:2672 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 1Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.124851][ T8684] do_shrink_slab+0x5a/0x680 mm/shrinker.c:384 Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.130799][ T8684] shrink_slab_memcg mm/shrinker.c:550 [inline] Dec 3 05:26:36 syzkaller kern.warn kernel: [ 151.130799][ T8684] shrink_slab+0x4ea/0x850 mm/shrinker.c:628