syzbot

Memory cgroup out of memory: Killed process 9206 (syz.4.1735) total-vm:95664kB, anon-rss:976kB, file-rss:20480kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
==================================================================
BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64

read-write to 0xffffffff868099c0 of 8 bytes by interrupt on cpu 1:
 tick_do_update_jiffies64+0x113/0x1c0 kernel/time/tick-sched.c:118
 tick_sched_do_timer kernel/time/tick-sched.c:232 [inline]
 tick_nohz_handler+0x7f/0x2d0 kernel/time/tick-sched.c:290
 __run_hrtimer kernel/time/hrtimer.c:1761 [inline]
 __hrtimer_run_queues+0x20f/0x5a0 kernel/time/hrtimer.c:1825
 hrtimer_interrupt+0x21a/0x460 kernel/time/hrtimer.c:1887
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1038 [inline]
 __sysvec_apic_timer_interrupt+0x5c/0x1d0 arch/x86/kernel/apic/apic.c:1055
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1049 [inline]
 sysvec_apic_timer_interrupt+0x6f/0x80 arch/x86/kernel/apic/apic.c:1049
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
 console_flush_all+0x55b/0x730 arch/x86/include/asm/irqflags.h:-1
 __console_flush_and_unlock kernel/printk/printk.c:3285 [inline]
 console_unlock+0xa1/0x330 kernel/printk/printk.c:3325
 vprintk_emit+0x388/0x650 kernel/printk/printk.c:2450
 vprintk_default+0x26/0x30 kernel/printk/printk.c:2465
 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82
 _printk+0x79/0xa0 kernel/printk/printk.c:2475
 kauditd_printk_skb kernel/audit.c:546 [inline]
 kauditd_hold_skb+0x1b1/0x1c0 kernel/audit.c:581
 kauditd_send_queue+0x270/0x2c0 kernel/audit.c:766
 kauditd_thread+0x421/0x630 kernel/audit.c:890
 kthread+0x489/0x510 kernel/kthread.c:464
 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:153
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

read to 0xffffffff868099c0 of 8 bytes by task 4014 on cpu 0:
 mem_cgroup_flush_stats_ratelimited+0x29/0x70 mm/memcontrol.c:643
 count_shadow_nodes+0x6a/0x230 mm/workingset.c:680
 do_shrink_slab+0x63/0x680 mm/shrinker.c:384
 shrink_slab_memcg mm/shrinker.c:550 [inline]
 shrink_slab+0x448/0x760 mm/shrinker.c:628
 shrink_node_memcgs mm/vmscan.c:5991 [inline]
 shrink_node+0x6c3/0x2110 mm/vmscan.c:6030
 shrink_zones mm/vmscan.c:6274 [inline]
 do_try_to_free_pages+0x3f6/0xcd0 mm/vmscan.c:6336
 try_to_free_mem_cgroup_pages+0x1ab/0x410 mm/vmscan.c:6664
 try_charge_memcg+0x3ab/0x870 mm/memcontrol.c:2304
 try_charge mm/memcontrol.c:2446 [inline]
 charge_memcg+0x51/0xc0 mm/memcontrol.c:4592
 mem_cgroup_swapin_charge_folio+0xcc/0x150 mm/memcontrol.c:4678
 __read_swap_cache_async+0x1df/0x350 mm/swap_state.c:444
 swap_cluster_readahead+0x277/0x3e0 mm/swap_state.c:616
 swapin_readahead+0xde/0x6f0 mm/swap_state.c:814
 do_swap_page+0x301/0x2460 mm/memory.c:4532
 handle_pte_fault mm/memory.c:6000 [inline]
 __handle_mm_fault mm/memory.c:6140 [inline]
 handle_mm_fault+0xb60/0x2ae0 mm/memory.c:6309
 do_user_addr_fault+0x636/0x1090 arch/x86/mm/fault.c:1337
 handle_page_fault arch/x86/mm/fault.c:1480 [inline]
 exc_page_fault+0x54/0xc0 arch/x86/mm/fault.c:1538
 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623

value changed: 0x0000000100004ebd -> 0x0000000100004ebe

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 UID: 0 PID: 4014 Comm: syz.4.10732 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(voluntary) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
==================================================================