rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P20320/1:b..l
(detected by 1, t=10502 jiffies, g=513117, q=15609)
task:syz-executor.5 state:R running task stack:23928 pid:20320 ppid: 1 flags:0x00004000
Call Trace:
context_switch kernel/sched/core.c:4983 [inline]
__schedule+0xab2/0x4d90 kernel/sched/core.c:6293
preempt_schedule_common+0x45/0xc0 kernel/sched/core.c:6459
preempt_schedule_thunk+0x16/0x18 arch/x86/entry/thunk_64.S:35
__raw_read_unlock include/linux/rwlock_api_smp.h:233 [inline]
_raw_read_unlock+0x36/0x40 kernel/locking/spinlock.c:260
zap_pid_ns_processes+0x271/0x660 kernel/pid_namespace.c:207
find_child_reaper kernel/exit.c:548 [inline]
forget_original_parent kernel/exit.c:637 [inline]
exit_notify kernel/exit.c:674 [inline]
do_exit+0x2504/0x2c20 kernel/exit.c:852
do_group_exit+0x125/0x310 kernel/exit.c:929
__do_sys_exit_group kernel/exit.c:940 [inline]
__se_sys_exit_group kernel/exit.c:938 [inline]
__x64_sys_exit_group+0x3a/0x50 kernel/exit.c:938
do_syscall_x64 arch/x86/entry/common.c:50 [inline]
do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f0e44d59ae9
RSP: 002b:00007fff73efa6b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000004c97 RCX: 00007f0e44d59ae9
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000043
RBP: 0000000000000000 R08: 0000000000000014 R09: 0000000000004c97
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0e44db414d
R13: 0000000000000000 R14: 000000000000000d R15: 00007fff73efa8a0
rcu: rcu_preempt kthread timer wakeup didn't happen for 766 jiffies! g513117 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
rcu: Possible timer handling issue on cpu=1 timer-softirq=288376
rcu: rcu_preempt kthread starved for 767 jiffies! g513117 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt state:I stack:27976 pid: 14 ppid: 2 flags:0x00004000
Call Trace:
context_switch kernel/sched/core.c:4983 [inline]
__schedule+0xab2/0x4d90 kernel/sched/core.c:6293
schedule+0xd2/0x260 kernel/sched/core.c:6366
schedule_timeout+0x14a/0x2a0 kernel/time/timer.c:1881
rcu_gp_fqs_loop+0x186/0x810 kernel/rcu/tree.c:1963
rcu_gp_kthread+0x1de/0x320 kernel/rcu/tree.c:2136
kthread+0x405/0x4f0 kernel/kthread.c:345
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295
rcu: Stack dump where RCU GP kthread last ran:
NMI backtrace for cpu 1
CPU: 1 PID: 21513 Comm: syz-executor.5 Not tainted 5.16.0-rc2-next-20211125-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106
nmi_cpu_backtrace.cold+0x47/0x144 lib/nmi_backtrace.c:111
nmi_trigger_cpumask_backtrace+0x1b3/0x230 lib/nmi_backtrace.c:62
trigger_single_cpu_backtrace include/linux/nmi.h:164 [inline]
rcu_check_gp_kthread_starvation.cold+0x1fb/0x200 kernel/rcu/tree_stall.h:458
print_other_cpu_stall kernel/rcu/tree_stall.h:563 [inline]
check_cpu_stall kernel/rcu/tree_stall.h:706 [inline]
rcu_pending kernel/rcu/tree.c:3919 [inline]
rcu_sched_clock_irq+0x2125/0x2200 kernel/rcu/tree.c:2617
update_process_times+0x16d/0x200 kernel/time/timer.c:1785
tick_sched_handle+0x9b/0x180 kernel/time/tick-sched.c:226
tick_sched_timer+0x1b0/0x2d0 kernel/time/tick-sched.c:1428
__run_hrtimer kernel/time/hrtimer.c:1685 [inline]
__hrtimer_run_queues+0x1c0/0xe50 kernel/time/hrtimer.c:1749
hrtimer_interrupt+0x31c/0x790 kernel/time/hrtimer.c:1811
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1086 [inline]
__sysvec_apic_timer_interrupt+0x146/0x530 arch/x86/kernel/apic/apic.c:1103
sysvec_apic_timer_interrupt+0x8e/0xc0 arch/x86/kernel/apic/apic.c:1097
asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:638
RIP: 0010:__is_kernel_text include/asm-generic/sections.h:192 [inline]
RIP: 0010:is_kernel_text include/linux/kallsyms.h:29 [inline]
RIP: 0010:core_kernel_text+0x0/0x90 kernel/extable.c:67
Code: 48 c1 fe 02 48 0f af f0 e8 3d 92 b8 02 48 85 c0 74 02 5d c3 48 89 ef e8 8e 94 20 00 48 85 c0 75 f1 48 89 ef 5d e9 b0 64 37 00 <48> 81 ff 00 00 00 81 41 54 53 48 89 fb 72 09 48 81 ff db 88 80 89
RSP: 0018:ffffc90011e67150 EFLAGS: 00000292
RAX: dffffc0000000000 RBX: ffffffff81d4dd99 RCX: 0000000000000000
RDX: 1ffff920023cce3c RSI: ffffc90011e67ab0 RDI: ffffffff81d4dd99
RBP: ffffffff81d4dd99 R08: ffffffff8e19d962 R09: 0000000000000001
R10: fffff520023cce3e R11: 000000000008808a R12: ffffc90011e67250
R13: 0000000000000000 R14: ffff888162aa3a80 R15: ffff88814feac380
kernel_text_address+0xd/0x80 kernel/extable.c:98
__kernel_text_address+0x9/0x30 kernel/extable.c:78
unwind_get_return_address arch/x86/kernel/unwind_orc.c:318 [inline]
unwind_get_return_address+0x51/0x90 arch/x86/kernel/unwind_orc.c:313
arch_stack_walk+0x93/0xe0 arch/x86/kernel/stacktrace.c:26
stack_trace_save+0x8c/0xc0 kernel/stacktrace.c:122
kasan_save_stack+0x1e/0x50 mm/kasan/common.c:38
kasan_set_track+0x21/0x30 mm/kasan/common.c:46
kasan_set_free_info+0x20/0x30 mm/kasan/generic.c:370
____kasan_slab_free mm/kasan/common.c:366 [inline]
____kasan_slab_free mm/kasan/common.c:328 [inline]
__kasan_slab_free+0x103/0x170 mm/kasan/common.c:374
kasan_slab_free include/linux/kasan.h:235 [inline]
slab_free_hook mm/slub.c:1723 [inline]
slab_free_freelist_hook+0x8b/0x1c0 mm/slub.c:1749
slab_free mm/slub.c:3513 [inline]
kfree+0xe0/0x430 mm/slub.c:4561
ext4_ext_remove_space+0x923/0x44c0 fs/ext4/extents.c:3064
ext4_ext_truncate+0x33f/0x400 fs/ext4/extents.c:4416
ext4_truncate+0xecc/0x1440 fs/ext4/inode.c:4201
ext4_evict_inode+0xa71/0x1950 fs/ext4/inode.c:287
evict+0x2ed/0x6b0 fs/inode.c:639
iput_final fs/inode.c:1719 [inline]
iput.part.0+0x539/0x850 fs/inode.c:1745
iput+0x58/0x70 fs/inode.c:1735
dentry_unlink_inode+0x2b1/0x460 fs/dcache.c:376
__dentry_kill+0x3c0/0x640 fs/dcache.c:582
dentry_kill fs/dcache.c:720 [inline]
dput+0x669/0xbc0 fs/dcache.c:888
path_put+0x2d/0x60 fs/namei.c:557
free_fs_struct fs/fs_struct.c:91 [inline]
exit_fs+0xf9/0x170 fs/fs_struct.c:108
do_exit+0xbe5/0x2c20 kernel/exit.c:828
do_group_exit+0x125/0x310 kernel/exit.c:929
get_signal+0x34c/0x28b0 kernel/signal.c:2859
arch_do_signal_or_restart+0x2a9/0x1c40 arch/x86/kernel/signal.c:868
handle_signal_work kernel/entry/common.c:148 [inline]
exit_to_user_mode_loop kernel/entry/common.c:172 [inline]
exit_to_user_mode_prepare+0x17d/0x290 kernel/entry/common.c:207
__syscall_exit_to_user_mode_work kernel/entry/common.c:289 [inline]
syscall_exit_to_user_mode+0x19/0x60 kernel/entry/common.c:300
do_syscall_64+0x42/0xb0 arch/x86/entry/common.c:86
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f0e44d59ae9
Code: Unable to access opcode bytes at RIP 0x7f0e44d59abf.
RSP: 002b:00007f0e43ccf218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: fffffffffffffe00 RBX: 00007f0e44e6cf68 RCX: 00007f0e44d59ae9
RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0e44e6cf68
RBP: 00007f0e44e6cf60 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0e44e6cf6c
R13: 00007fff73efa58f R14: 00007f0e43ccf300 R15: 0000000000022000
----------------
Code disassembly (best guess):
0: 48 c1 fe 02 sar $0x2,%rsi
4: 48 0f af f0 imul %rax,%rsi
8: e8 3d 92 b8 02 callq 0x2b8924a
d: 48 85 c0 test %rax,%rax
10: 74 02 je 0x14
12: 5d pop %rbp
13: c3 retq
14: 48 89 ef mov %rbp,%rdi
17: e8 8e 94 20 00 callq 0x2094aa
1c: 48 85 c0 test %rax,%rax
1f: 75 f1 jne 0x12
21: 48 89 ef mov %rbp,%rdi
24: 5d pop %rbp
25: e9 b0 64 37 00 jmpq 0x3764da
* 2a: 48 81 ff 00 00 00 81 cmp $0xffffffff81000000,%rdi <-- trapping instruction
31: 41 54 push %r12
33: 53 push %rbx
34: 48 89 fb mov %rdi,%rbx
37: 72 09 jb 0x42
39: 48 81 ff db 88 80 89 cmp $0xffffffff898088db,%rdi