rcu: INFO: rcu_preempt self-detected stall on CPU
rcu: 1-....: (7108 ticks this GP) idle=772/1/0x4000000000000000 softirq=10496/10497 fqs=109
(t=10502 jiffies g=8329 q=1757)
rcu: rcu_preempt kthread starved for 897 jiffies! g8329 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt state:R running task stack:28872 pid: 14 ppid: 2 flags:0x00004000
Call Trace:
context_switch kernel/sched/core.c:4322 [inline]
__schedule+0x911/0x21b0 kernel/sched/core.c:5073
schedule+0xcf/0x270 kernel/sched/core.c:5152
schedule_timeout+0x14a/0x250 kernel/time/timer.c:1892
rcu_gp_fqs_loop kernel/rcu/tree.c:2005 [inline]
rcu_gp_kthread+0xd07/0x2250 kernel/rcu/tree.c:2178
kthread+0x3b1/0x4a0 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294
rcu: Stack dump where RCU GP kthread last ran:
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 8769 Comm: syz-executor414 Not tainted 5.12.0-rc6-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:debug_smp_processor_id+0x0/0x20 lib/smp_processor_id.c:64
Code: 01 e8 10 c9 bf ff 48 8b 74 24 28 48 c7 c7 c0 18 c2 89 e8 ff c8 bf ff e8 d8 0d ce ff eb a2 66 66 2e 0f 1f 84 00 00 00 00 00 90 <0f> 1f 44 00 00 48 c7 c6 00 19 c2 89 48 c7 c7 40 19 c2 89 e9 98 fe
RSP: 0018:ffffc900000073b8 EFLAGS: 00000006
RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000100
RDX: 0000000000000001 RSI: 0000000000010103 RDI: ffff8880b9c36108
RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
R10: ffffffff81940eb9 R11: 0000000000000000 R12: 0000000000000000
R13: ffff88801f7d4000 R14: ffffc90000007a48 R15: 0000000000000008
FS: 0000000000818300(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffc569f2a98 CR3: 000000001dc8d000 CR4: 0000000000350ef0
Call Trace:
rcu_lockdep_current_cpu_online kernel/rcu/tree.c:1217 [inline]
rcu_lockdep_current_cpu_online+0x2d/0x150 kernel/rcu/tree.c:1208
rcu_read_lock_held_common kernel/rcu/update.c:112 [inline]
rcu_read_lock_held_common kernel/rcu/update.c:102 [inline]
rcu_read_lock_held+0x21/0x40 kernel/rcu/update.c:309
__perf_output_begin kernel/events/ring_buffer.c:170 [inline]
perf_output_begin_forward+0x85e/0xad0 kernel/events/ring_buffer.c:268
__perf_event_output kernel/events/core.c:7327 [inline]
perf_event_output_forward+0x10b/0x270 kernel/events/core.c:7345
__perf_event_overflow+0x13c/0x370 kernel/events/core.c:9019
perf_swevent_hrtimer+0x37c/0x3f0 kernel/events/core.c:10419
__run_hrtimer kernel/time/hrtimer.c:1537 [inline]
__hrtimer_run_queues+0x1c0/0xe40 kernel/time/hrtimer.c:1601
hrtimer_interrupt+0x330/0xa00 kernel/time/hrtimer.c:1663
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1089 [inline]
__sysvec_apic_timer_interrupt+0x146/0x540 arch/x86/kernel/apic/apic.c:1106
sysvec_apic_timer_interrupt+0x40/0xc0 arch/x86/kernel/apic/apic.c:1100
asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:632
RIP: 0010:__phys_addr+0xcb/0x140 arch/x86/mm/physaddr.c:32
Code: 07 e8 59 7f 40 00 4c 89 e3 44 89 e9 31 ff 48 d3 eb 48 89 de e8 66 87 40 00 48 85 db 75 0f e8 3c 7f 40 00 4c 89 e0 5b 5d 41 5c <41> 5d c3 e8 2d 7f 40 00 0f 0b e8 26 7f 40 00 48 c7 c0 10 50 cb 8b
RSP: 0018:ffffc90000007af0 EFLAGS: 00000246
RAX: 000000001cf1f000 RBX: 0000000000000000 RCX: 0000000000000100
RDX: ffff88801c881c40 RSI: ffffffff813371d4 RDI: 0000000000000003
RBP: ffff88801cf1f000 R08: 0000000000000000 R09: 0000000000000030
R10: ffffffff813371ca R11: 000000000000003f R12: 0000000000000000
R13: 0000000000000030 R14: 00000000ffffffff R15: 0000000000000a20
virt_to_head_page include/linux/mm.h:878 [inline]
__ksize+0x13/0x110 mm/slub.c:4181
ksize mm/slab_common.c:1253 [inline]
ksize+0x4e/0x60 mm/slab_common.c:1231
__alloc_skb+0xf7/0x340 net/core/skbuff.c:431
skb_copy+0x137/0x2f0 net/core/skbuff.c:1561
mac80211_hwsim_tx_frame_no_nl.isra.0+0xb17/0x1330 drivers/net/wireless/mac80211_hwsim.c:1563
mac80211_hwsim_tx_frame+0x14f/0x1e0 drivers/net/wireless/mac80211_hwsim.c:1775
mac80211_hwsim_beacon_tx+0x4ba/0x910 drivers/net/wireless/mac80211_hwsim.c:1829
__iterate_interfaces+0x1e5/0x520 net/mac80211/util.c:793
ieee80211_iterate_active_interfaces_atomic+0x8d/0x170 net/mac80211/util.c:829
mac80211_hwsim_beacon+0xd5/0x1a0 drivers/net/wireless/mac80211_hwsim.c:1852
__run_hrtimer kernel/time/hrtimer.c:1537 [inline]
__hrtimer_run_queues+0x609/0xe40 kernel/time/hrtimer.c:1601
hrtimer_run_softirq+0x17b/0x360 kernel/time/hrtimer.c:1618
__do_softirq+0x29b/0x9f6 kernel/softirq.c:345
invoke_softirq kernel/softirq.c:221 [inline]
__irq_exit_rcu kernel/softirq.c:422 [inline]
irq_exit_rcu+0x134/0x200 kernel/softirq.c:434
sysvec_apic_timer_interrupt+0x93/0xc0 arch/x86/kernel/apic/apic.c:1100
asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:632
RIP: 0010:lock_acquire+0x1ef/0x740 kernel/locking/lockdep.c:5478
Code: 50 a8 7e 83 f8 01 0f 85 ee 03 00 00 9c 58 f6 c4 02 0f 85 d9 03 00 00 48 83 7c 24 08 00 74 01 fb 48 b8 00 00 00 00 00 fc ff df <48> 01 c3 48 c7 03 00 00 00 00 48 c7 43 08 00 00 00 00 48 8b 84 24
RSP: 0018:ffffc9000212fce8 EFLAGS: 00000206
RAX: dffffc0000000000 RBX: 1ffff92000425f9f RCX: ffffffff815956a3
RDX: 1ffff110039104c5 RSI: 0000000000000001 RDI: 0000000000000000
RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffff8fa9893f
R10: fffffbfff1f53127 R11: 00000000ffff8000 R12: 0000000000000000
R13: ffff88802d0987c8 R14: 0000000000000000 R15: 0000000000000000
__raw_spin_lock include/linux/spinlock_api_smp.h:142 [inline]
_raw_spin_lock+0x2a/0x40 kernel/locking/spinlock.c:151
spin_lock include/linux/spinlock.h:354 [inline]
fasync_remove_entry+0x22/0x1f0 fs/fcntl.c:884
fasync_helper+0x9e/0xb0 fs/fcntl.c:993
perf_fasync+0x7e/0xb0 kernel/events/core.c:6259
__fput+0x712/0x920 fs/file_table.c:277
task_work_run+0xdd/0x1a0 kernel/task_work.c:140
tracehook_notify_resume include/linux/tracehook.h:189 [inline]
exit_to_user_mode_loop kernel/entry/common.c:174 [inline]
exit_to_user_mode_prepare+0x249/0x250 kernel/entry/common.c:208
__syscall_exit_to_user_mode_work kernel/entry/common.c:290 [inline]
syscall_exit_to_user_mode+0x19/0x60 kernel/entry/common.c:301
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x402cb3
Code: c7 c2 c0 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb ba 0f 1f 00 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8
RSP: 002b:00007ffc569f2ab8 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000402cb3
RDX: 0000000020000000 RSI: 0000000000005452 RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000
R10: 0000000c00000000 R11: 0000000000000246 R12: 0000000000070940
R13: 00007ffc569f2b20 R14: 00007ffc569f2b10 R15: 00007ffc569f2adc
NMI backtrace for cpu 1
CPU: 1 PID: 8666 Comm: syz-executor414 Not tainted 5.12.0-rc6-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:79 [inline]
dump_stack+0x141/0x1d7 lib/dump_stack.c:120
nmi_cpu_backtrace.cold+0x44/0xd7 lib/nmi_backtrace.c:105
nmi_trigger_cpumask_backtrace+0x1b3/0x230 lib/nmi_backtrace.c:62
trigger_single_cpu_backtrace include/linux/nmi.h:164 [inline]
rcu_dump_cpu_stacks+0x222/0x2a7 kernel/rcu/tree_stall.h:341
print_cpu_stall kernel/rcu/tree_stall.h:622 [inline]
check_cpu_stall kernel/rcu/tree_stall.h:697 [inline]
rcu_pending kernel/rcu/tree.c:3830 [inline]
rcu_sched_clock_irq.cold+0x4f7/0x11dd kernel/rcu/tree.c:2650
update_process_times+0x16d/0x200 kernel/time/timer.c:1796
tick_sched_handle+0x9b/0x180 kernel/time/tick-sched.c:226
tick_sched_timer+0x1b0/0x2d0 kernel/time/tick-sched.c:1369
__run_hrtimer kernel/time/hrtimer.c:1537 [inline]
__hrtimer_run_queues+0x1c0/0xe40 kernel/time/hrtimer.c:1601
hrtimer_interrupt+0x330/0xa00 kernel/time/hrtimer.c:1663
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1089 [inline]
__sysvec_apic_timer_interrupt+0x146/0x540 arch/x86/kernel/apic/apic.c:1106
sysvec_apic_timer_interrupt+0x40/0xc0 arch/x86/kernel/apic/apic.c:1100
asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:632
RIP: 0010:preempt_count arch/x86/include/asm/preempt.h:27 [inline]
RIP: 0010:check_kcov_mode kernel/kcov.c:163 [inline]
RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60 kernel/kcov.c:197
Code: f0 4d 89 03 e9 f2 fc ff ff b9 ff ff ff ff ba 08 00 00 00 4d 8b 03 48 0f bd ca 49 8b 45 00 48 63 c9 e9 64 ff ff ff 0f 1f 40 00 <65> 8b 05 a9 fe 8d 7e 89 c1 48 8b 34 24 81 e1 00 01 00 00 65 48 8b
RSP: 0018:ffffc90000dc0cd0 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 0000000000000200 RCX: 0000000000000100
RDX: ffff888028359c40 RSI: ffffffff8164710c RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8fa988b7
R10: ffffffff81647102 R11: 0000000000000000 R12: ffff88802602de18
R13: dffffc0000000000 R14: ffffffff8bf92a08 R15: ffff88801ea26450
__seqprop_raw_spinlock_sequence include/linux/seqlock.h:276 [inline]
ktime_get_with_offset+0x112/0x500 kernel/time/timekeeping.c:870
ktime_get_real include/linux/timekeeping.h:78 [inline]
mac80211_hwsim_get_tsf_raw drivers/net/wireless/mac80211_hwsim.c:976 [inline]
mac80211_hwsim_beacon_tx+0x2e8/0x910 drivers/net/wireless/mac80211_hwsim.c:1814
__iterate_interfaces+0x1e5/0x520 net/mac80211/util.c:793
ieee80211_iterate_active_interfaces_atomic+0x8d/0x170 net/mac80211/util.c:829
mac80211_hwsim_beacon+0xd5/0x1a0 drivers/net/wireless/mac80211_hwsim.c:1852
__run_hrtimer kernel/time/hrtimer.c:1537 [inline]
__hrtimer_run_queues+0x609/0xe40 kernel/time/hrtimer.c:1601
hrtimer_run_softirq+0x17b/0x360 kernel/time/hrtimer.c:1618
__do_softirq+0x29b/0x9f6 kernel/softirq.c:345
invoke_softirq kernel/softirq.c:221 [inline]
__irq_exit_rcu kernel/softirq.c:422 [inline]
irq_exit_rcu+0x134/0x200 kernel/softirq.c:434
sysvec_apic_timer_interrupt+0x93/0xc0 arch/x86/kernel/apic/apic.c:1100
asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:632
RIP: 0010:__tlb_remove_page_size+0x8c/0x420 mm/mmu_gather.c:81
Code: c1 ea 03 80 3c 02 00 0f 85 2a 03 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 6b 28 48 8d 7d 08 48 89 fa 48 c1 ea 03 0f b6 04 02 <84> c0 74 08 3c 03 0f 8e ed 02 00 00 48 b8 00 00 00 00 00 fc ff df
RSP: 0018:ffffc900021ff760 EFLAGS: 00000212
RAX: 0000000000000000 RBX: ffffc900021ffa60 RCX: 0000000000000000
RDX: 1ffff110038a5401 RSI: ffffffff81aa6890 RDI: ffff88801c52a008
RBP: ffff88801c52a000 R08: 0000000000000000 R09: ffffea0000b2c873
R10: ffffffff81aa6882 R11: 0000000000000000 R12: ffffea0000b2c870
R13: ffff888017da6090 R14: ffffea0000b2c840 R15: ffffc900021ffa88
__tlb_remove_page include/asm-generic/tlb.h:440 [inline]
zap_pte_range mm/memory.c:1273 [inline]
zap_pmd_range mm/memory.c:1374 [inline]
zap_pud_range mm/memory.c:1403 [inline]
zap_p4d_range mm/memory.c:1424 [inline]
unmap_page_range+0xea7/0x2650 mm/memory.c:1445
unmap_single_vma+0x198/0x300 mm/memory.c:1490
unmap_vmas+0x16d/0x2f0 mm/memory.c:1522
exit_mmap+0x2a8/0x590 mm/mmap.c:3218
__mmput+0x122/0x470 kernel/fork.c:1090
mmput+0x58/0x60 kernel/fork.c:1111
exit_mm kernel/exit.c:501 [inline]
do_exit+0xb0a/0x2a60 kernel/exit.c:812
do_group_exit+0x125/0x310 kernel/exit.c:922
get_signal+0x47f/0x2150 kernel/signal.c:2781
arch_do_signal_or_restart+0x2a8/0x1eb0 arch/x86/kernel/signal.c:789
handle_signal_work kernel/entry/common.c:147 [inline]
exit_to_user_mode_loop kernel/entry/common.c:171 [inline]
exit_to_user_mode_prepare+0x148/0x250 kernel/entry/common.c:208
__syscall_exit_to_user_mode_work kernel/entry/common.c:290 [inline]
syscall_exit_to_user_mode+0x19/0x60 kernel/entry/common.c:301
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x440f39
Code: Unable to access opcode bytes at RIP 0x440f0f.
RSP: 002b:00007ffc569f2ab8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000440f39
RDX: 0000000020000000 RSI: 0000000000005452 RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000
R10: 0000000c00000000 R11: 0000000000000246 R12: 0000000000055e8e
R13: 00007ffc569f2b20 R14: 00007ffc569f2b10 R15: 00007ffc569f2adc