Extracting prog: 23m20.46500976s Minimizing prog: 1h16m11.134733069s Simplifying prog options: 0s Extracting C: 3m36.728082648s Simplifying C: 56m23.640229836s extracting reproducer from 68 programs testing a last program of every proc single: executing 18 programs separately with timeout 6m0s testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendto$inet6-openat$fuse-openat$kvm-ioctl$KVM_CREATE_VM-openat$cgroup_ro-write$binfmt_script-mmap-preadv-ioctl$KVM_SET_USER_MEMORY_REGION-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-ioctl$KVM_SET_FPU-ioctl$KVM_RUN detailed listing: executing program 0: sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x800, 0x0, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0) ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, &(0x7f0000000240)={'\x00', 0x4, 0x9, 0xbd, 0x0, 0xffff, 0x2, 0x2, '\x00', 0x654}) ioctl$KVM_RUN(r3, 0xae80, 0x0) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$exfat-openat-openat-openat-writev-sendfile detailed listing: executing program 0: syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x2000004c, &(0x7f0000000380)=ANY=[], 0xfe, 0x152b, &(0x7f0000003e00)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x180) r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0xc4142, 0x12) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x105042, 0xa) writev(r2, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x69000}], 0x1) sendfile(r1, r0, 0x0, 0x7fffeff9) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$squashfs-inotify_init-prlimit64-getpid-sched_setscheduler-sched_setscheduler-mmap-socketpair$unix-connect$unix-sendmmsg$unix-recvmmsg-sched_setscheduler-add_key$keyring-keyctl$setperm-keyctl$join-keyctl$join-bpf$BPF_BTF_LOAD detailed listing: executing program 0: syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x801, &(0x7f00000003c0)=ANY=[], 0x2, 0x184, &(0x7f0000000400)="$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") inotify_init() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000000)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) keyctl$setperm(0x5, r3, 0x52b242d) keyctl$join(0x1, &(0x7f0000000100)={'syz', 0x3}) keyctl$join(0x1, &(0x7f00000001c0)={'syz', 0x3}) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @func_proto]}}, 0x0, 0x4e}, 0x28) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-getpid-sched_setscheduler-mmap-timer_create-timer_settime-madvise-mprotect detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) program crashed: INFO: rcu detected stall in corrupted single: successfully extracted reproducer found reproducer with 8 syscalls minimizing guilty program testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-getpid-sched_setscheduler-mmap-timer_create-timer_settime-madvise detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) program crashed: INFO: rcu detected stall in corrupted testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-getpid-sched_setscheduler-mmap-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-getpid-sched_setscheduler-mmap-timer_create detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-getpid-sched_setscheduler-mmap-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-getpid-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program crashed: INFO: rcu detected stall in sendmsg testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-getpid-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) getpid() timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program crashed: INFO: rcu detected stall in batadv_nc_worker testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, 0x0, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program did not crash testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, 0x0, 0x0) program did not crash extracting C reproducer testing compiled C program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted simplifying C reproducer testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: no output from test machine a never seen crash title: no output from test machine, ignore testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program did not crash testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: no output from test machine a never seen crash title: no output from test machine, ignore testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: no output from test machine a never seen crash title: no output from test machine, ignore testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:false Swap:true UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime program crashed: INFO: rcu detected stall in corrupted testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program crashed: INFO: rcu detected stall in corrupted validation run: crashed=true testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program crashed: INFO: rcu detected stall in corrupted validation run: crashed=true testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime detailed listing: executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode validation run: crashed=true reproducing took 2h51m7.476263708s repro crashed as (corrupted=false): rcu: INFO: rcu_preempt self-detected stall on CPU rcu: 1-...!: (10500 ticks this GP) idle=0b6c/1/0x4000000000000000 softirq=11254/11254 fqs=4 (t=10502 jiffies g=11757 q=185 ncpus=2) rcu: rcu_preempt kthread starved for 10494 jiffies! g11757 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. rcu: RCU grace-period kthread stack dump: task:rcu_preempt state:R running task stack:27760 pid:16 ppid:2 flags:0x00004000 Call Trace: context_switch kernel/sched/core.c:5245 [inline] __schedule+0x11d1/0x40e0 kernel/sched/core.c:6562 schedule+0xb9/0x180 kernel/sched/core.c:6638 schedule_timeout+0x184/0x2d0 kernel/time/timer.c:2168 rcu_gp_fqs_loop+0x303/0x1340 kernel/rcu/tree.c:1706 rcu_gp_kthread+0x99/0x3b0 kernel/rcu/tree.c:1905 kthread+0x29d/0x330 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295 rcu: Stack dump where RCU GP kthread last ran: Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 4513 Comm: syz.4.21 Not tainted syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 RIP: 0010:pvclock_read_retry arch/x86/include/asm/pvclock.h:35 [inline] RIP: 0010:pvclock_clocksource_read+0x1f5/0x760 arch/x86/kernel/pvclock.c:78 Code: 4c 8b 74 24 28 0f 85 bf 02 00 00 49 8b 2a 48 8b 44 24 58 42 0f b6 04 20 84 c0 0f 85 06 03 00 00 44 0f b6 7f 1d 42 0f b6 04 22 <84> c0 0f 85 4f 03 00 00 43 0f b6 04 26 84 c0 0f 85 a3 03 00 00 83 RSP: 0018:ffffc90000007d60 EFLAGS: 00000046 RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000000001 RDX: 1ffffffff1f41000 RSI: ffffffff8fa0801c RDI: ffffffff8fa08000 RBP: 0000000026c4fc3a R08: ffffffff8fa08008 R09: ffffffff8fa08018 R10: ffffffff8fa08010 R11: ffffffff8fa08003 R12: dffffc0000000000 R13: 00000031a6e1bf64 R14: 1ffffffff1f41000 R15: 0000000000000001 FS: 000055556e3ea500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000020000006b000 CR3: 000000007d7f8000 CR4: 00000000003506f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: kvm_clock_read arch/x86/kernel/kvmclock.c:79 [inline] kvm_sched_clock_read+0x14/0x40 arch/x86/kernel/kvmclock.c:91 sched_clock_cpu+0x6e/0x260 kernel/sched/clock.c:369 irqtime_account_irq+0x6a/0x1b0 kernel/sched/cputime.c:60 account_hardirq_exit include/linux/vtime.h:159 [inline] __irq_exit_rcu+0x99/0x230 kernel/softirq.c:676 irq_exit_rcu+0x5/0x20 kernel/softirq.c:691 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1118 [inline] sysvec_apic_timer_interrupt+0xa0/0xc0 arch/x86/kernel/apic/apic.c:1118 asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:691 RIP: 0010:__raw_spin_unlock_irq include/linux/spinlock_api_smp.h:160 [inline] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 kernel/locking/spinlock.c:202 Code: 00 00 00 66 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 ae 54 2e f7 48 89 df e8 f6 1c 2f f7 e8 71 6d 52 f7 fb bf 01 00 00 00 96 7d 22 f7 65 8b 05 57 01 cc 75 85 c0 74 02 5b c3 e8 a4 15 ca RSP: 0018:ffffc900036f7b98 EFLAGS: 00000282 RAX: bf7be54d7b71f400 RBX: ffff88805b41dc80 RCX: bf7be54d7b71f400 RDX: dffffc0000000000 RSI: ffffffff8a8c1220 RDI: 0000000000000001 RBP: ffff88805b41e118 R08: ffff88805b41dc83 R09: 1ffff1100b683b90 R10: dffffc0000000000 R11: ffffed100b683b91 R12: 1ffff1100b683c23 R13: 0000000000000021 R14: dffffc0000000000 R15: 0000000000000000 spin_unlock_irq include/linux/spinlock.h:401 [inline] get_signal+0x1163/0x1350 kernel/signal.c:2874 arch_do_signal_or_restart+0xc4/0x1350 arch/x86/kernel/signal.c:871 exit_to_user_mode_loop+0x70/0x110 kernel/entry/common.c:174 exit_to_user_mode_prepare+0xee/0x180 kernel/entry/common.c:210 __syscall_exit_to_user_mode_work kernel/entry/common.c:292 [inline] syscall_exit_to_user_mode+0x16/0x40 kernel/entry/common.c:303 do_syscall_64+0x58/0xa0 arch/x86/entry/common.c:82 entry_SYSCALL_64_after_hwframe+0x68/0xd2 RIP: 0033:0x7efde979acb9 Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ffc7eb28b08 EFLAGS: 00000246 RAX: 0000000000000000 RBX: 00007efde9a15fa0 RCX: 00007efde979acb9 RDX: 000020000006b000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007efde9808bf7 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007efde9a15fac R14: 00007efde9a15fa0 R15: 00007efde9a15fa0 CPU: 1 PID: 4512 Comm: syz.0.23 Not tainted syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 RIP: 0010:__raw_spin_unlock_irq include/linux/spinlock_api_smp.h:160 [inline] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 kernel/locking/spinlock.c:202 Code: 00 00 00 66 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 ae 54 2e f7 48 89 df e8 f6 1c 2f f7 e8 71 6d 52 f7 fb bf 01 00 00 00 96 7d 22 f7 65 8b 05 57 01 cc 75 85 c0 74 02 5b c3 e8 a4 15 ca RSP: 0018:ffffc900036e7b98 EFLAGS: 00000282 RAX: 96630d50a11be900 RBX: ffff88805b41ca00 RCX: 96630d50a11be900 RDX: dffffc0000000000 RSI: ffffffff8a8c1220 RDI: 0000000000000001 RBP: ffff88805b41ce98 R08: ffff88805b41ca03 R09: 1ffff1100b683940 R10: dffffc0000000000 R11: ffffed100b683941 R12: 1ffff1100b6839d3 R13: 0000000000000021 R14: dffffc0000000000 R15: 0000000000000000 FS: 000055558bdef500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000020000006b000 CR3: 0000000074acf000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: spin_unlock_irq include/linux/spinlock.h:401 [inline] get_signal+0x1163/0x1350 kernel/signal.c:2874 arch_do_signal_or_restart+0xc4/0x1350 arch/x86/kernel/signal.c:871 exit_to_user_mode_loop+0x70/0x110 kernel/entry/common.c:174 exit_to_user_mode_prepare+0xee/0x180 kernel/entry/common.c:210 __syscall_exit_to_user_mode_work kernel/entry/common.c:292 [inline] syscall_exit_to_user_mode+0x16/0x40 kernel/entry/common.c:303 do_syscall_64+0x58/0xa0 arch/x86/entry/common.c:82 entry_SYSCALL_64_after_hwframe+0x68/0xd2 RIP: 0033:0x7f6d2759acb9 Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ffc6f5c1038 EFLAGS: 00000246 RAX: 0000000000000000 RBX: 00007f6d27815fa0 RCX: 00007f6d2759acb9 RDX: 000020000006b000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007f6d27608bf7 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007f6d27815fac R14: 00007f6d27815fa0 R15: 00007f6d27815fa0 sched: RT throttling activated final repro crashed as (corrupted=false): rcu: INFO: rcu_preempt self-detected stall on CPU rcu: 1-...!: (10500 ticks this GP) idle=0b6c/1/0x4000000000000000 softirq=11254/11254 fqs=4 (t=10502 jiffies g=11757 q=185 ncpus=2) rcu: rcu_preempt kthread starved for 10494 jiffies! g11757 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. rcu: RCU grace-period kthread stack dump: task:rcu_preempt state:R running task stack:27760 pid:16 ppid:2 flags:0x00004000 Call Trace: context_switch kernel/sched/core.c:5245 [inline] __schedule+0x11d1/0x40e0 kernel/sched/core.c:6562 schedule+0xb9/0x180 kernel/sched/core.c:6638 schedule_timeout+0x184/0x2d0 kernel/time/timer.c:2168 rcu_gp_fqs_loop+0x303/0x1340 kernel/rcu/tree.c:1706 rcu_gp_kthread+0x99/0x3b0 kernel/rcu/tree.c:1905 kthread+0x29d/0x330 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295 rcu: Stack dump where RCU GP kthread last ran: Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 4513 Comm: syz.4.21 Not tainted syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 RIP: 0010:pvclock_read_retry arch/x86/include/asm/pvclock.h:35 [inline] RIP: 0010:pvclock_clocksource_read+0x1f5/0x760 arch/x86/kernel/pvclock.c:78 Code: 4c 8b 74 24 28 0f 85 bf 02 00 00 49 8b 2a 48 8b 44 24 58 42 0f b6 04 20 84 c0 0f 85 06 03 00 00 44 0f b6 7f 1d 42 0f b6 04 22 <84> c0 0f 85 4f 03 00 00 43 0f b6 04 26 84 c0 0f 85 a3 03 00 00 83 RSP: 0018:ffffc90000007d60 EFLAGS: 00000046 RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000000001 RDX: 1ffffffff1f41000 RSI: ffffffff8fa0801c RDI: ffffffff8fa08000 RBP: 0000000026c4fc3a R08: ffffffff8fa08008 R09: ffffffff8fa08018 R10: ffffffff8fa08010 R11: ffffffff8fa08003 R12: dffffc0000000000 R13: 00000031a6e1bf64 R14: 1ffffffff1f41000 R15: 0000000000000001 FS: 000055556e3ea500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000020000006b000 CR3: 000000007d7f8000 CR4: 00000000003506f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: kvm_clock_read arch/x86/kernel/kvmclock.c:79 [inline] kvm_sched_clock_read+0x14/0x40 arch/x86/kernel/kvmclock.c:91 sched_clock_cpu+0x6e/0x260 kernel/sched/clock.c:369 irqtime_account_irq+0x6a/0x1b0 kernel/sched/cputime.c:60 account_hardirq_exit include/linux/vtime.h:159 [inline] __irq_exit_rcu+0x99/0x230 kernel/softirq.c:676 irq_exit_rcu+0x5/0x20 kernel/softirq.c:691 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1118 [inline] sysvec_apic_timer_interrupt+0xa0/0xc0 arch/x86/kernel/apic/apic.c:1118 asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:691 RIP: 0010:__raw_spin_unlock_irq include/linux/spinlock_api_smp.h:160 [inline] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 kernel/locking/spinlock.c:202 Code: 00 00 00 66 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 ae 54 2e f7 48 89 df e8 f6 1c 2f f7 e8 71 6d 52 f7 fb bf 01 00 00 00 96 7d 22 f7 65 8b 05 57 01 cc 75 85 c0 74 02 5b c3 e8 a4 15 ca RSP: 0018:ffffc900036f7b98 EFLAGS: 00000282 RAX: bf7be54d7b71f400 RBX: ffff88805b41dc80 RCX: bf7be54d7b71f400 RDX: dffffc0000000000 RSI: ffffffff8a8c1220 RDI: 0000000000000001 RBP: ffff88805b41e118 R08: ffff88805b41dc83 R09: 1ffff1100b683b90 R10: dffffc0000000000 R11: ffffed100b683b91 R12: 1ffff1100b683c23 R13: 0000000000000021 R14: dffffc0000000000 R15: 0000000000000000 spin_unlock_irq include/linux/spinlock.h:401 [inline] get_signal+0x1163/0x1350 kernel/signal.c:2874 arch_do_signal_or_restart+0xc4/0x1350 arch/x86/kernel/signal.c:871 exit_to_user_mode_loop+0x70/0x110 kernel/entry/common.c:174 exit_to_user_mode_prepare+0xee/0x180 kernel/entry/common.c:210 __syscall_exit_to_user_mode_work kernel/entry/common.c:292 [inline] syscall_exit_to_user_mode+0x16/0x40 kernel/entry/common.c:303 do_syscall_64+0x58/0xa0 arch/x86/entry/common.c:82 entry_SYSCALL_64_after_hwframe+0x68/0xd2 RIP: 0033:0x7efde979acb9 Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ffc7eb28b08 EFLAGS: 00000246 RAX: 0000000000000000 RBX: 00007efde9a15fa0 RCX: 00007efde979acb9 RDX: 000020000006b000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007efde9808bf7 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007efde9a15fac R14: 00007efde9a15fa0 R15: 00007efde9a15fa0 CPU: 1 PID: 4512 Comm: syz.0.23 Not tainted syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 RIP: 0010:__raw_spin_unlock_irq include/linux/spinlock_api_smp.h:160 [inline] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 kernel/locking/spinlock.c:202 Code: 00 00 00 66 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 ae 54 2e f7 48 89 df e8 f6 1c 2f f7 e8 71 6d 52 f7 fb bf 01 00 00 00 96 7d 22 f7 65 8b 05 57 01 cc 75 85 c0 74 02 5b c3 e8 a4 15 ca RSP: 0018:ffffc900036e7b98 EFLAGS: 00000282 RAX: 96630d50a11be900 RBX: ffff88805b41ca00 RCX: 96630d50a11be900 RDX: dffffc0000000000 RSI: ffffffff8a8c1220 RDI: 0000000000000001 RBP: ffff88805b41ce98 R08: ffff88805b41ca03 R09: 1ffff1100b683940 R10: dffffc0000000000 R11: ffffed100b683941 R12: 1ffff1100b6839d3 R13: 0000000000000021 R14: dffffc0000000000 R15: 0000000000000000 FS: 000055558bdef500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000020000006b000 CR3: 0000000074acf000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: spin_unlock_irq include/linux/spinlock.h:401 [inline] get_signal+0x1163/0x1350 kernel/signal.c:2874 arch_do_signal_or_restart+0xc4/0x1350 arch/x86/kernel/signal.c:871 exit_to_user_mode_loop+0x70/0x110 kernel/entry/common.c:174 exit_to_user_mode_prepare+0xee/0x180 kernel/entry/common.c:210 __syscall_exit_to_user_mode_work kernel/entry/common.c:292 [inline] syscall_exit_to_user_mode+0x16/0x40 kernel/entry/common.c:303 do_syscall_64+0x58/0xa0 arch/x86/entry/common.c:82 entry_SYSCALL_64_after_hwframe+0x68/0xd2 RIP: 0033:0x7f6d2759acb9 Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ffc6f5c1038 EFLAGS: 00000246 RAX: 0000000000000000 RBX: 00007f6d27815fa0 RCX: 00007f6d2759acb9 RDX: 000020000006b000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007f6d27608bf7 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007f6d27815fac R14: 00007f6d27815fa0 R15: 00007f6d27815fa0 sched: RT throttling activated