Extracting prog: 16m54.708604585s
Minimizing prog: 1h19m36.321766689s
Simplifying prog options: 14m6.963504918s
Extracting C: 5m11.919957809s
Simplifying C: 0s


extracting reproducer from 37 programs
testing a last program of every proc
single: executing 7 programs separately with timeout 6m0s
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): socket$nl_generic-syz_genetlink_get_family_id$nl80211-syz_mount_image$erofs-set_mempolicy-syz_fuse_handle_req-madvise-ioperm-syz_open_dev$sndctrl-openat$audio-ioctl$SNDCTL_DSP_SETFRAGMENT-syz_open_dev$sndpcmp-bpf$PROG_LOAD-madvise
detailed listing:
executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file0\x00', 0x1000801, &(0x7f0000000080)=ANY=[@ANYRES16=0x0], 0x0, 0x1ca, &(0x7f00000008c0)="$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")
set_mempolicy(0x3, &(0x7f0000000080)=0xd, 0x7)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000002140)="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", 0x2000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioperm(0x0, 0x6, 0x1)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000200), 0x4000000, 0x492967)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x0, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): semctl$SEM_INFO-prlimit64-sched_setscheduler-getpid-sched_setscheduler-mmap-syz_clone-sched_setaffinity-syz_open_dev$MSR-read$msr-connect$inet6-socket$inet_udp-setsockopt$IPT_SO_SET_REPLACE
detailed listing:
executing program 0:
semctl$SEM_INFO(0x0, 0x3, 0x13, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x2a8, 0xffffffff, 0x0, 0x98, 0x0, 0xffffffff, 0xffffffff, 0x210, 0x210, 0x210, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@ip={@private, @multicast1, 0x0, 0x0, 'ip6gre0\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@ip={@private, @remote, 0x0, 0x0, 'ip6erspan0\x00', 'wlan1\x00'}, 0x0, 0xb0, 0xe0, 0x0, {}, [@common=@set={{0x40}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x308)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-syz_emit_ethernet-sched_setscheduler-sched_setscheduler-mmap-timer_create-timer_settime-syz_init_net_socket$rose-listen-accept4$rose
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, &(0x7f0000000300)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r0, 0x0)
accept4$rose(r0, 0x0, 0x0, 0x0)

program crashed: INFO: rcu detected stall in rt_sigreturn
single: successfully extracted reproducer
found reproducer with 13 syscalls
minimizing guilty program
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-syz_emit_ethernet-sched_setscheduler-sched_setscheduler-mmap-timer_create-timer_settime-syz_init_net_socket$rose-listen
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, &(0x7f0000000300)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r0, 0x0)

program crashed: INFO: rcu detected stall in rt_sigreturn
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-syz_emit_ethernet-sched_setscheduler-sched_setscheduler-mmap-timer_create-timer_settime-syz_init_net_socket$rose
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, &(0x7f0000000300)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-syz_emit_ethernet-sched_setscheduler-sched_setscheduler-mmap-timer_create-timer_settime
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, &(0x7f0000000300)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-syz_emit_ethernet-sched_setscheduler-sched_setscheduler-mmap-timer_create
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, &(0x7f0000000300)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-syz_emit_ethernet-sched_setscheduler-sched_setscheduler-mmap-timer_settime
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, &(0x7f0000000300)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-syz_emit_ethernet-sched_setscheduler-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, &(0x7f0000000300)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-syz_emit_ethernet-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, &(0x7f0000000300)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-syz_emit_ethernet-timer_create-timer_settime
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, &(0x7f0000000300)=ANY=[], 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-syz_genetlink_get_family_id$nfc-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-sendmsg$nl_route_sched-prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in wb_workfn
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$6lowpan_control-prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, 0x0, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, 0x0, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
simplifying guilty program options
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in corrupted
extracting C reproducer
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
reproducing took 1h55m59.634670911s
repro crashed as (corrupted=true):
rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P4293/1:b..l
	(detected by 1, t=10503 jiffies, g=9085, q=374)
task:syz-executor    state:R  running task     stack:20408 pid: 4293 ppid:  4291 flags:0x00004000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5027 [inline]
 __schedule+0x12c4/0x45b0 kernel/sched/core.c:6373
 preempt_schedule_common+0x83/0xd0 kernel/sched/core.c:6549
 preempt_schedule+0xd9/0xe0 kernel/sched/core.c:6574
 preempt_schedule_thunk+0x16/0x18 arch/x86/entry/thunk_64.S:34
 vprintk_emit+0x146/0x150 kernel/printk/printk.c:2275
 _printk+0xd1/0x120 kernel/printk/printk.c:2299
 batadv_check_known_mac_addr+0x28a/0x3d0 net/batman-adv/hard-interface.c:522
 batadv_hard_if_event+0x300/0x17a0 net/batman-adv/hard-interface.c:986
 notifier_call_chain kernel/notifier.c:83 [inline]
 raw_notifier_call_chain+0xd0/0x170 kernel/notifier.c:391
 call_netdevice_notifiers_info net/core/dev.c:2018 [inline]
 call_netdevice_notifiers_extack net/core/dev.c:2030 [inline]
 call_netdevice_notifiers net/core/dev.c:2044 [inline]
 dev_set_mac_address+0x325/0x470 net/core/dev.c:9082
 dev_set_mac_address_user+0x2d/0x50 net/core/dev.c:9096
 do_setlink+0x7f0/0x3d80 net/core/rtnetlink.c:2731
 __rtnl_newlink net/core/rtnetlink.c:3447 [inline]
 rtnl_newlink+0x17d6/0x2070 net/core/rtnetlink.c:3569
 rtnetlink_rcv_msg+0x993/0xee0 net/core/rtnetlink.c:5647
 netlink_rcv_skb+0x1cf/0x410 net/netlink/af_netlink.c:2504
 netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]
 netlink_unicast+0x7b6/0x980 net/netlink/af_netlink.c:1352
 netlink_sendmsg+0xa30/0xd60 net/netlink/af_netlink.c:1920
 sock_sendmsg_nosec net/socket.c:704 [inline]
 __sock_sendmsg net/socket.c:716 [inline]
 __sys_sendto+0x564/0x720 net/socket.c:2063
 __do_sys_sendto net/socket.c:2075 [inline]
 __se_sys_sendto net/socket.c:2071 [inline]
 __x64_sys_sendto+0xda/0xf0 net/socket.c:2071
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7fd8e7702dac
RSP: 002b:00007ffe4d8b18c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007fd8e83f5620 RCX: 00007fd8e7702dac
RDX: 000000000000002c RSI: 00007fd8e83f5670 RDI: 0000000000000003
RBP: 0000000000000000 R08: 00007ffe4d8b1914 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
R13: 0000000000000000 R14: 00007fd8e83f5670 R15: 0000000000000000
 </TASK>
rcu: rcu_preempt kthread starved for 10552 jiffies! g9085 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:27064 pid:   15 ppid:     2 flags:0x00004000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5027 [inline]
 __schedule+0x12c4/0x45b0 kernel/sched/core.c:6373
 schedule+0x11b/0x1f0 kernel/sched/core.c:6456
 schedule_timeout+0x1b9/0x300 kernel/time/timer.c:1914
 rcu_gp_fqs_loop+0x2bf/0x1080 kernel/rcu/tree.c:1972
 rcu_gp_kthread+0xa4/0x360 kernel/rcu/tree.c:2145
 kthread+0x3f6/0x4f0 kernel/kthread.c:334
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 4419 Comm: syz.4.19 Not tainted 5.15.173-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
RIP: 0010:lock_acquire+0x80/0x4f0 kernel/locking/lockdep.c:5591
Code: 41 48 c7 44 24 48 39 3d 3b 8c 48 c7 44 24 50 b0 bc 62 81 4c 8d 64 24 40 49 c1 ec 03 48 b8 f1 f1 f1 f1 00 f2 f2 f2 4b 89 04 2c <43> c7 44 2c 09 f2 f2 f2 00 43 c7 44 2c 11 f3 f3 f3 f3 66 43 c7 44
RSP: 0018:ffffc9000362f780 EFLAGS: 00000802
RAX: f2f2f200f1f1f1f1 RBX: 1ffff920006c5f20 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880b8e2a218
RBP: ffffc9000362f8c8 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff920006c5ef8
R13: dffffc0000000000 R14: 0000000000000000 R15: dffffc0000000000
FS:  0000555592119500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000002006b000 CR3: 000000005bc33000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <NMI>
 </NMI>
 <TASK>
 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]
 _raw_spin_lock_irqsave+0xd1/0x120 kernel/locking/spinlock.c:162
 lock_hrtimer_base kernel/time/hrtimer.c:173 [inline]
 hrtimer_start_range_ns+0x105/0xc80 kernel/time/hrtimer.c:1299
 posixtimer_rearm+0x1ad/0x3f0 kernel/time/posix-timers.c:328
 dequeue_signal+0x1ed/0x520 kernel/signal.c:696
 get_signal+0x52e/0x14e0 kernel/signal.c:2781
 arch_do_signal_or_restart+0xc3/0x1890 arch/x86/kernel/signal.c:867
 handle_signal_work kernel/entry/common.c:154 [inline]
 exit_to_user_mode_loop+0x97/0x130 kernel/entry/common.c:178
 exit_to_user_mode_prepare+0xb1/0x140 kernel/entry/common.c:214
 __syscall_exit_to_user_mode_work kernel/entry/common.c:296 [inline]
 syscall_exit_to_user_mode+0x5d/0x240 kernel/entry/common.c:307
 do_syscall_64+0x47/0xb0 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7fbaa3c71f19
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc3aa5b328 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 00007fbaa3e37fa0 RCX: 00007fbaa3c71f19
RDX: 000000002006b000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007fbaa3ce5986 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fbaa3e37fa0 R14: 00007fbaa3e37fa0 R15: 000000000000141a
 </TASK>
sched: RT throttling activated
hrtimer: interrupt took 1173252025 ns

report is corrupted, running repro again
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
final repro crashed as (corrupted=false):
rcu: INFO: rcu_preempt self-detected stall on CPU
rcu: 	0-...!: (1 GPs behind) idle=43d/1/0x4000000000000000 softirq=8378/8380 fqs=4 
	(t=10501 jiffies g=10061 q=140)
rcu: rcu_preempt kthread starved for 10494 jiffies! g10061 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:26168 pid:   15 ppid:     2 flags:0x00004000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5027 [inline]
 __schedule+0x12c4/0x45b0 kernel/sched/core.c:6373
 schedule+0x11b/0x1f0 kernel/sched/core.c:6456
 schedule_timeout+0x1b9/0x300 kernel/time/timer.c:1914
 rcu_gp_fqs_loop+0x2bf/0x1080 kernel/rcu/tree.c:1972
 rcu_gp_kthread+0xa4/0x360 kernel/rcu/tree.c:2145
 kthread+0x3f6/0x4f0 kernel/kthread.c:334
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 4438 Comm: syz.6.26 Not tainted 5.15.173-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
RIP: 0010:__lock_acquire+0xd84/0x1ff0 kernel/locking/lockdep.c:4995
Code: 0d 00 00 83 3d 7c 1f 46 15 00 b8 01 00 00 00 75 0a 49 83 ff ff 0f 85 b8 08 00 00 89 44 24 2c 48 89 d8 48 c1 e8 03 80 3c 38 00 <74> 12 48 89 df e8 f2 7b 67 00 48 bf 00 00 00 00 00 fc ff df 4c 89
RSP: 0018:ffffc9000361f9c0 EFLAGS: 00000046
RAX: 1ffff11004a28c86 RBX: ffff888025146430 RCX: ffffffff96a8ef03
RDX: 0000000000000000 RSI: 0000000000000008 RDI: dffffc0000000000
RBP: ffff888025146420 R08: dffffc0000000000 R09: fffffbfff2131027
R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
R13: ffff888025146428 R14: 1ffff11004a28c84 R15: ffffffffffffffff
FS:  0000555567f97500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000002006b000 CR3: 000000005a081000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <NMI>
 </NMI>
 <TASK>
 lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623
 __might_fault+0xb4/0x110 mm/memory.c:5355
 _copy_from_user+0x28/0x170 lib/usercopy.c:14
 copy_from_user include/linux/uaccess.h:192 [inline]
 restore_sigcontext+0xce/0x710 arch/x86/kernel/signal.c:91
 __do_sys_rt_sigreturn+0x190/0x250 arch/x86/kernel/signal.c:674
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7fc434dd0129
Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
RSP: 002b:00007ffcfa183d00 EFLAGS: 00000246 ORIG_RAX: 000000000000000f
RAX: ffffffffffffffda RBX: 00007fc434ff9fa0 RCX: 00007fc434dd0129
RDX: 00007ffcfa183d00 RSI: 00007ffcfa183e30 RDI: 0000000000000011
RBP: 00007fc434ea7986 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fc434ff9fa0 R14: 00007fc434ff9fa0 R15: 000000000000141a
 </TASK>
NMI backtrace for cpu 0
CPU: 0 PID: 4437 Comm: syz.1.29 Not tainted 5.15.173-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x1e3/0x2d0 lib/dump_stack.c:106
 nmi_cpu_backtrace+0x46a/0x4a0 lib/nmi_backtrace.c:111
 nmi_trigger_cpumask_backtrace+0x181/0x2a0 lib/nmi_backtrace.c:62
 trigger_single_cpu_backtrace include/linux/nmi.h:166 [inline]
 rcu_dump_cpu_stacks+0x223/0x390 kernel/rcu/tree_stall.h:349
 print_cpu_stall+0x320/0x600 kernel/rcu/tree_stall.h:633
 check_cpu_stall kernel/rcu/tree_stall.h:727 [inline]
 rcu_pending kernel/rcu/tree.c:3932 [inline]
 rcu_sched_clock_irq+0x8d9/0x1150 kernel/rcu/tree.c:2619
 update_process_times+0x196/0x200 kernel/time/timer.c:1818
 tick_sched_handle kernel/time/tick-sched.c:254 [inline]
 tick_sched_timer+0x386/0x550 kernel/time/tick-sched.c:1473
 __run_hrtimer kernel/time/hrtimer.c:1688 [inline]
 __hrtimer_run_queues+0x55b/0xcf0 kernel/time/hrtimer.c:1752
 hrtimer_interrupt+0x392/0x980 kernel/time/hrtimer.c:1814
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1097 [inline]
 __sysvec_apic_timer_interrupt+0x13b/0x4b0 arch/x86/kernel/apic/apic.c:1114
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1108 [inline]
 sysvec_apic_timer_interrupt+0x9b/0xc0 arch/x86/kernel/apic/apic.c:1108
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:676
RIP: 0010:__raw_spin_unlock_irq include/linux/spinlock_api_smp.h:169 [inline]
RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 kernel/locking/spinlock.c:202
Code: 31 61 f6 ff 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 1e a5 1a f7 48 89 df e8 76 f9 1b f7 e8 31 b4 3e f7 fb bf 01 00 00 00 <e8> d6 3e 0f f7 65 8b 05 f7 31 ba 75 85 c0 74 02 5b c3 e8 c4 4e b8
RSP: 0018:ffffc9000362fbc0 EFLAGS: 00000282
RAX: 96405535ed2f1b00 RBX: ffff88805ec3c0c0 RCX: ffffffff96a8ef03
RDX: dffffc0000000000 RSI: ffffffff8aab2a80 RDI: 0000000000000001
RBP: 0000000000000000 R08: ffffffff8186f220 R09: ffffed100bd87819
R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000011
R13: dffffc0000000000 R14: ffff88805ec3c358 R15: ffff88805ec3c0c0
 spin_unlock_irq include/linux/spinlock.h:413 [inline]
 get_signal+0x13ee/0x14e0 kernel/signal.c:2903
 arch_do_signal_or_restart+0xc3/0x1890 arch/x86/kernel/signal.c:867
 handle_signal_work kernel/entry/common.c:154 [inline]
 exit_to_user_mode_loop+0x97/0x130 kernel/entry/common.c:178
 exit_to_user_mode_prepare+0xb1/0x140 kernel/entry/common.c:214
 __syscall_exit_to_user_mode_work kernel/entry/common.c:296 [inline]
 syscall_exit_to_user_mode+0x5d/0x240 kernel/entry/common.c:307
 do_syscall_64+0x47/0xb0 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f765c8daf19
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffdc33cf2d8 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 00007f765caa0fa0 RCX: 00007f765c8daf19
RDX: 000000002006b000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007f765c94e986 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f765caa0fa0 R14: 00007f765caa0fa0 R15: 000000000000141a
 </TASK>
sched: RT throttling activated