Extracting prog: 8m35.125396685s
Minimizing prog: 1h32m48.127786741s
Simplifying prog options: 0s
Extracting C: 2m19.86060498s
Simplifying C: 55m38.676255838s


extracting reproducer from 88 programs
testing a last program of every proc
single: executing 38 programs separately with timeout 6m0s
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-getpid-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$MAP_CREATE-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$MAP_CREATE-bpf$PROG_LOAD_XDP-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-fsopen-fsconfig$FSCONFIG_SET_BINARY-fsmount-bpf$PROG_LOAD
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r4}, 0x10)
r5 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x6, 0x0, 0x0, 0x0)
fsmount(r5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x3, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0xa0}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-sched_setscheduler-getpid-timer_create-timer_settime-socketpair$unix-pipe-splice-sendmsg-write$binfmt_script
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x7, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x44004)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)

program crashed: INFO: rcu detected stall in corrupted
single: successfully extracted reproducer
found reproducer with 14 syscalls
minimizing guilty program
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-sched_setscheduler-getpid-timer_create-timer_settime-socketpair$unix-pipe-splice-sendmsg
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x7, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x44004)

program crashed: INFO: rcu detected stall in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-sched_setscheduler-getpid-timer_create-timer_settime-socketpair$unix-pipe-splice
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$eJzs3U9oFN8dAPDvbP5YY2LSUrHVFgItVrHdmESjQinmVBAtbS300D8Sk5iISTaYDagUahCLFCo99GDx1Is99BJ6K9IiFAo99eChPYhCT63USqUePKXMZlbXuCZNsmZ+v/XzgXFn3pp939kvM/Pe8OZtAB+s3og4EREtEVGMiO6svJAtcW15Sf/fucHFyXRJYmnpzLMkkog4Obg4Wf2sJHvdkX3AZ9KXGxEHW9+ud+7K1YsjU1Pjl7LtvvL0bN/clatfuTA9MjE+MT4zdPTo8WNHho4cb9y+bt99++5nf3nqwa0/LXx+147R6TTezuy92v1olN7ozb6TtuiqfSOJONfoynL2ibwDYN3+Vdh7L+8YAICtV8ja/q2V9n93tMRyY/3xw+8/744fd+QdHwAAALB5S0st2SsAAADQvBJ9fwAAAGhy1XEAJwcXJ6vLVo09ePL1raqJd3k6HBE9y/mvPt+9/E7rq2d6297T870/ehnRG10v/vG1T/0xXeI9PYfNR9Pi3/OOgDy1H847AhqhZYN/t+dbDQ6Ej5W/3Mw7Aq4tRMT9E3Xa/8km2nzbK/92rihNVmyfHk7bfz+bqy3T/vtwfPtM3hGQp28M5R0BebrzLO8IuD8cEYfq3f8rVObvq0qv6B3Vuf0a5Fhnev3/7ePasrev/4UnDaySFZ4OR3y1Zm7HczX5z/S0ZFtdlVuFbcn5C1PjhyJiZ0Tsj7Zt6Xb/KnX0D935eb3yz71I8//rpHr/L13S+qv3ArM4nrRue/PvxkbKI5vdb5Y9XYjY01ov/6/b/0mW6436fenWT+uVDx2ozCu6b/X88z4t/SpiX93j/3VvLVl1fta+yumgr3pSqOM3f/vPjXrlX/xhmv+LB+Q/P+nx37F6/ivn/1fz9c6tv47rf7j7ol75y3tp/n9xbSPn//bkO5UA27OyyyPl8qX+iPbk1NvlA+uPuVlVv4/q95Xmf/8X6l//q+2/JJsXuiciPrmBOhcezT6oV367kOb/zg8c//lJ8z+2xvGfvHH8r39l8a9f/lK9uvfeTPPf8921j//DlWD2ZyXaf2v7fxOUd5wAAAAAAAAANEah8pxOUii+Wi8UisXlcb6fjo7CVGmufPB8aX5mbPl5np5oK1SHenXXjAftz8aHVLcHVmwPZmNHbnZvr2wXR0tTY3nvPAAAADS5zohH37v+u9073tH/Tz3szjtKAAAAYDPS/n/Xo47KdF7/1c8HAACAppT2/5//5N9/Dv1/AAAAaFq1/X8AAACguX3z9Ol0War+7t9MaeLCxcnZ4wOHitPzo8XR0qXZ4kSpNFGZsW967c+bKpVm+wdi/nJfeXyu3Dd35erZ6dL8TPls5Xdjz463bcE+AWsr7vznrrxjAAAAts5mftffihUrzbqS95kJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDN+F8AAAD//4bu/XI=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x7, 0x0)

program crashed: INFO: rcu detected stall in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-sched_setscheduler-getpid-timer_create-timer_settime-socketpair$unix-pipe
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240))
pipe(&(0x7f0000000200))

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-sched_setscheduler-getpid-timer_create-timer_settime-socketpair$unix
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240))

program crashed: INFO: rcu detected stall in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-sched_setscheduler-getpid-timer_create-timer_settime
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$eJzs3U9oFN8dAPDvbP5YY2LSUrHVFgItVrHdmESjQinmVBAtbS300D8Sk5iISTaYDagUahCLFCo99GDx1Is99BJ6K9IiFAo99eChPYhCT63USqUePKXMZlbXuCZNsmZ+v/XzgXFn3pp939kvM/Pe8OZtAB+s3og4EREtEVGMiO6svJAtcW15Sf/fucHFyXRJYmnpzLMkkog4Obg4Wf2sJHvdkX3AZ9KXGxEHW9+ud+7K1YsjU1Pjl7LtvvL0bN/clatfuTA9MjE+MT4zdPTo8WNHho4cb9y+bt99++5nf3nqwa0/LXx+147R6TTezuy92v1olN7ozb6TtuiqfSOJONfoynL2ibwDYN3+Vdh7L+8YAICtV8ja/q2V9n93tMRyY/3xw+8/744fd+QdHwAAALB5S0st2SsAAADQvBJ9fwAAAGhy1XEAJwcXJ6vLVo09ePL1raqJd3k6HBE9y/mvPt+9/E7rq2d6297T870/ehnRG10v/vG1T/0xXeI9PYfNR9Pi3/OOgDy1H847AhqhZYN/t+dbDQ6Ej5W/3Mw7Aq4tRMT9E3Xa/8km2nzbK/92rihNVmyfHk7bfz+bqy3T/vtwfPtM3hGQp28M5R0BebrzLO8IuD8cEYfq3f8rVObvq0qv6B3Vuf0a5Fhnev3/7ePasrev/4UnDaySFZ4OR3y1Zm7HczX5z/S0ZFtdlVuFbcn5C1PjhyJiZ0Tsj7Zt6Xb/KnX0D935eb3yz71I8//rpHr/L13S+qv3ArM4nrRue/PvxkbKI5vdb5Y9XYjY01ov/6/b/0mW6436fenWT+uVDx2ozCu6b/X88z4t/SpiX93j/3VvLVl1fta+yumgr3pSqOM3f/vPjXrlX/xhmv+LB+Q/P+nx37F6/ivn/1fz9c6tv47rf7j7ol75y3tp/n9xbSPn//bkO5UA27OyyyPl8qX+iPbk1NvlA+uPuVlVv4/q95Xmf/8X6l//q+2/JJsXuiciPrmBOhcezT6oV367kOb/zg8c//lJ8z+2xvGfvHH8r39l8a9f/lK9uvfeTPPf8921j//DlWD2ZyXaf2v7fxOUd5wAAAAAAAAANEah8pxOUii+Wi8UisXlcb6fjo7CVGmufPB8aX5mbPl5np5oK1SHenXXjAftz8aHVLcHVmwPZmNHbnZvr2wXR0tTY3nvPAAAADS5zohH37v+u9073tH/Tz3szjtKAAAAYDPS/n/Xo47KdF7/1c8HAACAppT2/5//5N9/Dv1/AAAAaFq1/X8AAACguX3z9Ol0War+7t9MaeLCxcnZ4wOHitPzo8XR0qXZ4kSpNFGZsW967c+bKpVm+wdi/nJfeXyu3Dd35erZ6dL8TPls5Xdjz463bcE+AWsr7vznrrxjAAAAts5mftffihUrzbqS95kJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDN+F8AAAD//4bu/XI=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-sched_setscheduler-getpid-timer_create
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-sched_setscheduler-getpid-timer_settime
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$eJzs3U9oFN8dAPDvbP5YY2LSUrHVFgItVrHdmESjQinmVBAtbS300D8Sk5iISTaYDagUahCLFCo99GDx1Is99BJ6K9IiFAo99eChPYhCT63USqUePKXMZlbXuCZNsmZ+v/XzgXFn3pp939kvM/Pe8OZtAB+s3og4EREtEVGMiO6svJAtcW15Sf/fucHFyXRJYmnpzLMkkog4Obg4Wf2sJHvdkX3AZ9KXGxEHW9+ud+7K1YsjU1Pjl7LtvvL0bN/clatfuTA9MjE+MT4zdPTo8WNHho4cb9y+bt99++5nf3nqwa0/LXx+147R6TTezuy92v1olN7ozb6TtuiqfSOJONfoynL2ibwDYN3+Vdh7L+8YAICtV8ja/q2V9n93tMRyY/3xw+8/744fd+QdHwAAALB5S0st2SsAAADQvBJ9fwAAAGhy1XEAJwcXJ6vLVo09ePL1raqJd3k6HBE9y/mvPt+9/E7rq2d6297T870/ehnRG10v/vG1T/0xXeI9PYfNR9Pi3/OOgDy1H847AhqhZYN/t+dbDQ6Ej5W/3Mw7Aq4tRMT9E3Xa/8km2nzbK/92rihNVmyfHk7bfz+bqy3T/vtwfPtM3hGQp28M5R0BebrzLO8IuD8cEYfq3f8rVObvq0qv6B3Vuf0a5Fhnev3/7ePasrev/4UnDaySFZ4OR3y1Zm7HczX5z/S0ZFtdlVuFbcn5C1PjhyJiZ0Tsj7Zt6Xb/KnX0D935eb3yz71I8//rpHr/L13S+qv3ArM4nrRue/PvxkbKI5vdb5Y9XYjY01ov/6/b/0mW6436fenWT+uVDx2ozCu6b/X88z4t/SpiX93j/3VvLVl1fta+yumgr3pSqOM3f/vPjXrlX/xhmv+LB+Q/P+nx37F6/ivn/1fz9c6tv47rf7j7ol75y3tp/n9xbSPn//bkO5UA27OyyyPl8qX+iPbk1NvlA+uPuVlVv4/q95Xmf/8X6l//q+2/JJsXuiciPrmBOhcezT6oV367kOb/zg8c//lJ8z+2xvGfvHH8r39l8a9f/lK9uvfeTPPf8921j//DlWD2ZyXaf2v7fxOUd5wAAAAAAAAANEah8pxOUii+Wi8UisXlcb6fjo7CVGmufPB8aX5mbPl5np5oK1SHenXXjAftz8aHVLcHVmwPZmNHbnZvr2wXR0tTY3nvPAAAADS5zohH37v+u9073tH/Tz3szjtKAAAAYDPS/n/Xo47KdF7/1c8HAACAppT2/5//5N9/Dv1/AAAAaFq1/X8AAACguX3z9Ol0War+7t9MaeLCxcnZ4wOHitPzo8XR0qXZ4kSpNFGZsW967c+bKpVm+wdi/nJfeXyu3Dd35erZ6dL8TPls5Xdjz463bcE+AWsr7vznrrxjAAAAts5mftffihUrzbqS95kJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDN+F8AAAD//4bu/XI=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-prlimit64-timer_create-timer_settime
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in sys_munmap
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$cgroup_ro-prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$eJzs3U9oFN8dAPDvbP5YY2LSUrHVFgItVrHdmESjQinmVBAtbS300D8Sk5iISTaYDagUahCLFCo99GDx1Is99BJ6K9IiFAo99eChPYhCT63USqUePKXMZlbXuCZNsmZ+v/XzgXFn3pp939kvM/Pe8OZtAB+s3og4EREtEVGMiO6svJAtcW15Sf/fucHFyXRJYmnpzLMkkog4Obg4Wf2sJHvdkX3AZ9KXGxEHW9+ud+7K1YsjU1Pjl7LtvvL0bN/clatfuTA9MjE+MT4zdPTo8WNHho4cb9y+bt99++5nf3nqwa0/LXx+147R6TTezuy92v1olN7ozb6TtuiqfSOJONfoynL2ibwDYN3+Vdh7L+8YAICtV8ja/q2V9n93tMRyY/3xw+8/744fd+QdHwAAALB5S0st2SsAAADQvBJ9fwAAAGhy1XEAJwcXJ6vLVo09ePL1raqJd3k6HBE9y/mvPt+9/E7rq2d6297T870/ehnRG10v/vG1T/0xXeI9PYfNR9Pi3/OOgDy1H847AhqhZYN/t+dbDQ6Ej5W/3Mw7Aq4tRMT9E3Xa/8km2nzbK/92rihNVmyfHk7bfz+bqy3T/vtwfPtM3hGQp28M5R0BebrzLO8IuD8cEYfq3f8rVObvq0qv6B3Vuf0a5Fhnev3/7ePasrev/4UnDaySFZ4OR3y1Zm7HczX5z/S0ZFtdlVuFbcn5C1PjhyJiZ0Tsj7Zt6Xb/KnX0D935eb3yz71I8//rpHr/L13S+qv3ArM4nrRue/PvxkbKI5vdb5Y9XYjY01ov/6/b/0mW6436fenWT+uVDx2ozCu6b/X88z4t/SpiX93j/3VvLVl1fta+yumgr3pSqOM3f/vPjXrlX/xhmv+LB+Q/P+nx37F6/ivn/1fz9c6tv47rf7j7ol75y3tp/n9xbSPn//bkO5UA27OyyyPl8qX+iPbk1NvlA+uPuVlVv4/q95Xmf/8X6l//q+2/JJsXuiciPrmBOhcezT6oV367kOb/zg8c//lJ8z+2xvGfvHH8r39l8a9f/lK9uvfeTPPf8921j//DlWD2ZyXaf2v7fxOUd5wAAAAAAAAANEah8pxOUii+Wi8UisXlcb6fjo7CVGmufPB8aX5mbPl5np5oK1SHenXXjAftz8aHVLcHVmwPZmNHbnZvr2wXR0tTY3nvPAAAADS5zohH37v+u9073tH/Tz3szjtKAAAAYDPS/n/Xo47KdF7/1c8HAACAppT2/5//5N9/Dv1/AAAAaFq1/X8AAACguX3z9Ol0War+7t9MaeLCxcnZ4wOHitPzo8XR0qXZ4kSpNFGZsW967c+bKpVm+wdi/nJfeXyu3Dd35erZ6dL8TPls5Xdjz463bcE+AWsr7vznrrxjAAAAts5mftffihUrzbqS95kJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDN+F8AAAD//4bu/XI=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000580), 0x1, 0x4ee, &(0x7f0000000d40)="$eJzs3U9oFN8dAPDvbP5YY2LSUrHVFgItVrHdmESjQinmVBAtbS300D8Sk5iISTaYDagUahCLFCo99GDx1Is99BJ6K9IiFAo99eChPYhCT63USqUePKXMZlbXuCZNsmZ+v/XzgXFn3pp939kvM/Pe8OZtAB+s3og4EREtEVGMiO6svJAtcW15Sf/fucHFyXRJYmnpzLMkkog4Obg4Wf2sJHvdkX3AZ9KXGxEHW9+ud+7K1YsjU1Pjl7LtvvL0bN/clatfuTA9MjE+MT4zdPTo8WNHho4cb9y+bt99++5nf3nqwa0/LXx+147R6TTezuy92v1olN7ozb6TtuiqfSOJONfoynL2ibwDYN3+Vdh7L+8YAICtV8ja/q2V9n93tMRyY/3xw+8/744fd+QdHwAAALB5S0st2SsAAADQvBJ9fwAAAGhy1XEAJwcXJ6vLVo09ePL1raqJd3k6HBE9y/mvPt+9/E7rq2d6297T870/ehnRG10v/vG1T/0xXeI9PYfNR9Pi3/OOgDy1H847AhqhZYN/t+dbDQ6Ej5W/3Mw7Aq4tRMT9E3Xa/8km2nzbK/92rihNVmyfHk7bfz+bqy3T/vtwfPtM3hGQp28M5R0BebrzLO8IuD8cEYfq3f8rVObvq0qv6B3Vuf0a5Fhnev3/7ePasrev/4UnDaySFZ4OR3y1Zm7HczX5z/S0ZFtdlVuFbcn5C1PjhyJiZ0Tsj7Zt6Xb/KnX0D935eb3yz71I8//rpHr/L13S+qv3ArM4nrRue/PvxkbKI5vdb5Y9XYjY01ov/6/b/0mW6436fenWT+uVDx2ozCu6b/X88z4t/SpiX93j/3VvLVl1fta+yumgr3pSqOM3f/vPjXrlX/xhmv+LB+Q/P+nx37F6/ivn/1fz9c6tv47rf7j7ol75y3tp/n9xbSPn//bkO5UA27OyyyPl8qX+iPbk1NvlA+uPuVlVv4/q95Xmf/8X6l//q+2/JJsXuiciPrmBOhcezT6oV367kOb/zg8c//lJ8z+2xvGfvHH8r39l8a9f/lK9uvfeTPPf8921j//DlWD2ZyXaf2v7fxOUd5wAAAAAAAAANEah8pxOUii+Wi8UisXlcb6fjo7CVGmufPB8aX5mbPl5np5oK1SHenXXjAftz8aHVLcHVmwPZmNHbnZvr2wXR0tTY3nvPAAAADS5zohH37v+u9073tH/Tz3szjtKAAAAYDPS/n/Xo47KdF7/1c8HAACAppT2/5//5N9/Dv1/AAAAaFq1/X8AAACguX3z9Ol0War+7t9MaeLCxcnZ4wOHitPzo8XR0qXZ4kSpNFGZsW967c+bKpVm+wdi/nJfeXyu3Dd35erZ6dL8TPls5Xdjz463bcE+AWsr7vznrrxjAAAAts5mftffihUrzbqS95kJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDN+F8AAAD//4bu/XI=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in ext4_end_io_rsv_work
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, 0x0, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, 0x0, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
simplifying C reproducer
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program did not crash
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program did not crash
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program did not crash
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:false Swap:true UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program did not crash
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
program crashed: INFO: rcu detected stall in corrupted
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
validation run: crashed=true
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in corrupted
validation run: crashed=true
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): prlimit64-sched_setscheduler-timer_create-timer_settime
detailed listing:
executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

program crashed: INFO: rcu detected stall in syscall_exit_to_user_mode
validation run: crashed=true
reproducing took 2h50m58.766580934s
repro crashed as (corrupted=false):
rcu: INFO: rcu_preempt self-detected stall on CPU
rcu: 	0-...!: (10500 ticks this GP) idle=29d4/1/0x4000000000000000 softirq=10631/10640 fqs=37
	(t=10502 jiffies g=9061 q=419 ncpus=2)
rcu: rcu_preempt kthread starved for 10421 jiffies! g9061 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:28096 pid:16    ppid:2      flags:0x00004000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5244 [inline]
 __schedule+0x10ec/0x40b0 kernel/sched/core.c:6561
 schedule+0xb9/0x180 kernel/sched/core.c:6637
 schedule_timeout+0x15c/0x280 kernel/time/timer.c:2167
 rcu_gp_fqs_loop+0x2f2/0x1310 kernel/rcu/tree.c:1706
 rcu_gp_kthread+0x95/0x380 kernel/rcu/tree.c:1905
 kthread+0x29d/0x330 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 4525 Comm: syz.0.17 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
RIP: 0010:timerqueue_getnext include/linux/timerqueue.h:36 [inline]
RIP: 0010:__hrtimer_next_event_base+0xc0/0x2d0 kernel/time/hrtimer.c:542
Code: 0f 00 48 c1 e5 07 48 03 6c 24 18 0f 84 fa 01 00 00 4c 8d 7d 58 4c 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 <74> 08 4c 89 ff e8 c6 1a 60 00 4d 8b 3f 4d 39 f7 74 07 e8 b9 eb 0f
RSP: 0018:ffffc900001e0e38 EFLAGS: 00000046
RAX: 1ffff110171e54cb RBX: 0000000000000000 RCX: dffffc0000000000
RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000009
RBP: ffff8880b8f2a600 R08: 0000000000000004 R09: 0000000000000003
R10: fffff5200003c180 R11: 1ffff9200003c180 R12: 7fffffffffffffff
R13: 7fffffffffffffff R14: 0000000000000000 R15: ffff8880b8f2a658
FS:  000055556ee53500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000020000006b000 CR3: 0000000079ae0000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 __hrtimer_get_next_event kernel/time/hrtimer.c:615 [inline]
 hrtimer_update_next_event kernel/time/hrtimer.c:640 [inline]
 hrtimer_interrupt+0x4e6/0x9c0 kernel/time/hrtimer.c:1876
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1107 [inline]
 __sysvec_apic_timer_interrupt+0x153/0x5a0 arch/x86/kernel/apic/apic.c:1124
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1118 [inline]
 sysvec_apic_timer_interrupt+0x9b/0xc0 arch/x86/kernel/apic/apic.c:1118
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:691
RIP: 0010:__raw_spin_unlock_irq include/linux/spinlock_api_smp.h:160 [inline]
RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 kernel/locking/spinlock.c:202
Code: f5 ff 0f 1f 00 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 8e 8f 41 f7 48 89 df e8 e6 54 42 f7 e8 31 48 65 f7 fb bf 01 00 00 00 <e8> 76 cd 35 f7 65 8b 05 f7 84 e0 75 85 c0 74 02 5b c3 e8 44 96 de
RSP: 0018:ffffc90003997b98 EFLAGS: 00000282
RAX: cfda8e4100941500 RBX: ffff88806ac3a500 RCX: cfda8e4100941500
RDX: dffffc0000000000 RSI: ffffffff8a8c0580 RDI: 0000000000000001
RBP: ffff88806ac3a998 R08: dffffc0000000000 R09: ffffed100d5874a1
R10: ffffed100d5874a1 R11: 1ffff1100d5874a0 R12: 1ffff1100d587533
R13: 0000000000000021 R14: dffffc0000000000 R15: 0000000000000000
 spin_unlock_irq include/linux/spinlock.h:401 [inline]
 get_signal+0x1163/0x1350 kernel/signal.c:2874
 arch_do_signal_or_restart+0xb7/0x1240 arch/x86/kernel/signal.c:871
 exit_to_user_mode_loop+0x70/0x110 kernel/entry/common.c:174
 exit_to_user_mode_prepare+0xee/0x180 kernel/entry/common.c:210
 __syscall_exit_to_user_mode_work kernel/entry/common.c:292 [inline]
 syscall_exit_to_user_mode+0x16/0x40 kernel/entry/common.c:303
 do_syscall_64+0x58/0xa0 arch/x86/entry/common.c:87
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7fb12958efc9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fff0730e878 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 00007fb1297e5fa0 RCX: 00007fb12958efc9
RDX: 000020000006b000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007fb129611f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fb1297e5fa0 R14: 00007fb1297e5fa0 R15: 0000000000000004
 </TASK>
CPU: 0 PID: 4523 Comm: syz.1.27 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
RIP: 0010:preempt_count arch/x86/include/asm/preempt.h:27 [inline]
RIP: 0010:check_kcov_mode kernel/kcov.c:182 [inline]
RIP: 0010:write_comp_data kernel/kcov.c:245 [inline]
RIP: 0010:__sanitizer_cov_trace_const_cmp4+0xc/0x80 kernel/kcov.c:313
Code: c0 4c 89 01 48 c7 44 11 08 03 00 00 00 48 89 7c 11 10 48 89 74 11 18 48 89 44 11 20 c3 90 48 8b 04 24 65 48 8b 15 74 95 81 7e <65> 8b 0d 75 95 81 7e 81 e1 00 01 ff 00 74 11 81 f9 00 01 00 00 75
RSP: 0018:ffffc900038b7a98 EFLAGS: 00000246
RAX: ffffffff812f4287 RBX: ffff8880772a5940 RCX: 53e48df48bd03b00
RDX: ffff8880772a5940 RSI: 0000000000000000 RDI: 0000000000000000
RBP: ffffc900038b7c90 R08: dffffc0000000000 R09: ffffed1027fc4f81
R10: ffffed1027fc4f81 R11: 1ffff11027fc4f80 R12: dffffc0000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffc96c9a3c0
FS:  000055558d49c500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000020000006b000 CR3: 000000005d582000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 copy_fpstate_to_sigframe+0x537/0xcb0 arch/x86/kernel/fpu/signal.c:235
 get_sigframe arch/x86/kernel/signal.c:297 [inline]
 __setup_rt_frame arch/x86/kernel/signal.c:472 [inline]
 setup_rt_frame arch/x86/kernel/signal.c:784 [inline]
 handle_signal arch/x86/kernel/signal.c:828 [inline]
 arch_do_signal_or_restart+0x622/0x1240 arch/x86/kernel/signal.c:873
 exit_to_user_mode_loop+0x70/0x110 kernel/entry/common.c:174
 exit_to_user_mode_prepare+0xee/0x180 kernel/entry/common.c:210
 __syscall_exit_to_user_mode_work kernel/entry/common.c:292 [inline]
 syscall_exit_to_user_mode+0x16/0x40 kernel/entry/common.c:303
 do_syscall_64+0x58/0xa0 arch/x86/entry/common.c:87
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7fa457b8efc9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc96c9a798 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 00007fa457de5fa0 RCX: 00007fa457b8efc9
RDX: 000020000006b000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007fa457c11f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fa457de5fa0 R14: 00007fa457de5fa0 R15: 0000000000000004
 </TASK>
sched: RT throttling activated

final repro crashed as (corrupted=false):
rcu: INFO: rcu_preempt self-detected stall on CPU
rcu: 	0-...!: (10500 ticks this GP) idle=29d4/1/0x4000000000000000 softirq=10631/10640 fqs=37
	(t=10502 jiffies g=9061 q=419 ncpus=2)
rcu: rcu_preempt kthread starved for 10421 jiffies! g9061 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:R  running task     stack:28096 pid:16    ppid:2      flags:0x00004000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5244 [inline]
 __schedule+0x10ec/0x40b0 kernel/sched/core.c:6561
 schedule+0xb9/0x180 kernel/sched/core.c:6637
 schedule_timeout+0x15c/0x280 kernel/time/timer.c:2167
 rcu_gp_fqs_loop+0x2f2/0x1310 kernel/rcu/tree.c:1706
 rcu_gp_kthread+0x95/0x380 kernel/rcu/tree.c:1905
 kthread+0x29d/0x330 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 4525 Comm: syz.0.17 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
RIP: 0010:timerqueue_getnext include/linux/timerqueue.h:36 [inline]
RIP: 0010:__hrtimer_next_event_base+0xc0/0x2d0 kernel/time/hrtimer.c:542
Code: 0f 00 48 c1 e5 07 48 03 6c 24 18 0f 84 fa 01 00 00 4c 8d 7d 58 4c 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 <74> 08 4c 89 ff e8 c6 1a 60 00 4d 8b 3f 4d 39 f7 74 07 e8 b9 eb 0f
RSP: 0018:ffffc900001e0e38 EFLAGS: 00000046
RAX: 1ffff110171e54cb RBX: 0000000000000000 RCX: dffffc0000000000
RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000009
RBP: ffff8880b8f2a600 R08: 0000000000000004 R09: 0000000000000003
R10: fffff5200003c180 R11: 1ffff9200003c180 R12: 7fffffffffffffff
R13: 7fffffffffffffff R14: 0000000000000000 R15: ffff8880b8f2a658
FS:  000055556ee53500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000020000006b000 CR3: 0000000079ae0000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 __hrtimer_get_next_event kernel/time/hrtimer.c:615 [inline]
 hrtimer_update_next_event kernel/time/hrtimer.c:640 [inline]
 hrtimer_interrupt+0x4e6/0x9c0 kernel/time/hrtimer.c:1876
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1107 [inline]
 __sysvec_apic_timer_interrupt+0x153/0x5a0 arch/x86/kernel/apic/apic.c:1124
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1118 [inline]
 sysvec_apic_timer_interrupt+0x9b/0xc0 arch/x86/kernel/apic/apic.c:1118
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:691
RIP: 0010:__raw_spin_unlock_irq include/linux/spinlock_api_smp.h:160 [inline]
RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 kernel/locking/spinlock.c:202
Code: f5 ff 0f 1f 00 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 8e 8f 41 f7 48 89 df e8 e6 54 42 f7 e8 31 48 65 f7 fb bf 01 00 00 00 <e8> 76 cd 35 f7 65 8b 05 f7 84 e0 75 85 c0 74 02 5b c3 e8 44 96 de
RSP: 0018:ffffc90003997b98 EFLAGS: 00000282
RAX: cfda8e4100941500 RBX: ffff88806ac3a500 RCX: cfda8e4100941500
RDX: dffffc0000000000 RSI: ffffffff8a8c0580 RDI: 0000000000000001
RBP: ffff88806ac3a998 R08: dffffc0000000000 R09: ffffed100d5874a1
R10: ffffed100d5874a1 R11: 1ffff1100d5874a0 R12: 1ffff1100d587533
R13: 0000000000000021 R14: dffffc0000000000 R15: 0000000000000000
 spin_unlock_irq include/linux/spinlock.h:401 [inline]
 get_signal+0x1163/0x1350 kernel/signal.c:2874
 arch_do_signal_or_restart+0xb7/0x1240 arch/x86/kernel/signal.c:871
 exit_to_user_mode_loop+0x70/0x110 kernel/entry/common.c:174
 exit_to_user_mode_prepare+0xee/0x180 kernel/entry/common.c:210
 __syscall_exit_to_user_mode_work kernel/entry/common.c:292 [inline]
 syscall_exit_to_user_mode+0x16/0x40 kernel/entry/common.c:303
 do_syscall_64+0x58/0xa0 arch/x86/entry/common.c:87
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7fb12958efc9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fff0730e878 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 00007fb1297e5fa0 RCX: 00007fb12958efc9
RDX: 000020000006b000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007fb129611f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fb1297e5fa0 R14: 00007fb1297e5fa0 R15: 0000000000000004
 </TASK>
CPU: 0 PID: 4523 Comm: syz.1.27 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
RIP: 0010:preempt_count arch/x86/include/asm/preempt.h:27 [inline]
RIP: 0010:check_kcov_mode kernel/kcov.c:182 [inline]
RIP: 0010:write_comp_data kernel/kcov.c:245 [inline]
RIP: 0010:__sanitizer_cov_trace_const_cmp4+0xc/0x80 kernel/kcov.c:313
Code: c0 4c 89 01 48 c7 44 11 08 03 00 00 00 48 89 7c 11 10 48 89 74 11 18 48 89 44 11 20 c3 90 48 8b 04 24 65 48 8b 15 74 95 81 7e <65> 8b 0d 75 95 81 7e 81 e1 00 01 ff 00 74 11 81 f9 00 01 00 00 75
RSP: 0018:ffffc900038b7a98 EFLAGS: 00000246
RAX: ffffffff812f4287 RBX: ffff8880772a5940 RCX: 53e48df48bd03b00
RDX: ffff8880772a5940 RSI: 0000000000000000 RDI: 0000000000000000
RBP: ffffc900038b7c90 R08: dffffc0000000000 R09: ffffed1027fc4f81
R10: ffffed1027fc4f81 R11: 1ffff11027fc4f80 R12: dffffc0000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffc96c9a3c0
FS:  000055558d49c500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000020000006b000 CR3: 000000005d582000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 copy_fpstate_to_sigframe+0x537/0xcb0 arch/x86/kernel/fpu/signal.c:235
 get_sigframe arch/x86/kernel/signal.c:297 [inline]
 __setup_rt_frame arch/x86/kernel/signal.c:472 [inline]
 setup_rt_frame arch/x86/kernel/signal.c:784 [inline]
 handle_signal arch/x86/kernel/signal.c:828 [inline]
 arch_do_signal_or_restart+0x622/0x1240 arch/x86/kernel/signal.c:873
 exit_to_user_mode_loop+0x70/0x110 kernel/entry/common.c:174
 exit_to_user_mode_prepare+0xee/0x180 kernel/entry/common.c:210
 __syscall_exit_to_user_mode_work kernel/entry/common.c:292 [inline]
 syscall_exit_to_user_mode+0x16/0x40 kernel/entry/common.c:303
 do_syscall_64+0x58/0xa0 arch/x86/entry/common.c:87
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7fa457b8efc9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc96c9a798 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 00007fa457de5fa0 RCX: 00007fa457b8efc9
RDX: 000020000006b000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007fa457c11f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fa457de5fa0 R14: 00007fa457de5fa0 R15: 0000000000000004
 </TASK>
sched: RT throttling activated