syzbot

==================================================================
BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64

read-write to 0xffffffff86c07a00 of 8 bytes by interrupt on cpu 0:
 tick_do_update_jiffies64+0x113/0x1c0 kernel/time/tick-sched.c:118
 tick_sched_do_timer kernel/time/tick-sched.c:253 [inline]
 tick_nohz_handler+0x88/0x380 kernel/time/tick-sched.c:310
 __run_hrtimer kernel/time/hrtimer.c:2032 [inline]
 __hrtimer_run_queues+0x1f8/0x510 kernel/time/hrtimer.c:2096
 hrtimer_interrupt+0x257/0x810 kernel/time/hrtimer.c:2215
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1051 [inline]
 __sysvec_apic_timer_interrupt+0x5f/0x1c0 arch/x86/kernel/apic/apic.c:1068
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1062 [inline]
 sysvec_apic_timer_interrupt+0x6f/0x80 arch/x86/kernel/apic/apic.c:1062
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:674
 kcsan_setup_watchpoint+0x3e8/0x450 kernel/kcsan/core.c:705
 __unix_dgram_recvmsg+0x4b4/0x860 net/unix/af_unix.c:2624
 unix_dgram_recvmsg+0x7e/0x90 net/unix/af_unix.c:2681
 sock_recvmsg_nosec+0xc2/0xf0 net/socket.c:1126
 ____sys_recvmsg+0x26f/0x280 net/socket.c:2902
 ___sys_recvmsg+0x11f/0x3a0 net/socket.c:2946
 do_recvmmsg+0x1e5/0x560 net/socket.c:3041
 __sys_recvmmsg net/socket.c:3115 [inline]
 __do_sys_recvmmsg net/socket.c:3138 [inline]
 __se_sys_recvmmsg net/socket.c:3131 [inline]
 __x64_sys_recvmmsg+0xe5/0x170 net/socket.c:3131
 x64_sys_call+0x80f/0x3020 arch/x86/include/generated/asm/syscalls_64.h:300
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x136/0x3c0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffffffff86c07a00 of 8 bytes by task 10189 on cpu 1:
 mem_cgroup_flush_stats_ratelimited+0x29/0x50 mm/memcontrol.c:743
 count_shadow_nodes+0x6a/0x250 mm/workingset.c:694
 do_shrink_slab+0x61/0x650 mm/shrinker.c:380
 shrink_slab_memcg mm/shrinker.c:551 [inline]
 shrink_slab+0x53b/0x8e0 mm/shrinker.c:629
 shrink_node_memcgs mm/vmscan.c:6134 [inline]
 shrink_node+0x6d9/0x20f0 mm/vmscan.c:6176
 shrink_zones mm/vmscan.c:6415 [inline]
 do_try_to_free_pages+0x408/0xc90 mm/vmscan.c:6477
 try_to_free_mem_cgroup_pages+0x201/0x420 mm/vmscan.c:6799
 try_charge_memcg+0x375/0xa00 mm/memcontrol.c:2655
 obj_cgroup_charge_pages mm/memcontrol.c:3097 [inline]
 __memcg_kmem_charge_page+0x199/0x3a0 mm/memcontrol.c:3141
 __alloc_frozen_pages_noprof+0x18a/0x350 mm/page_alloc.c:5321
 alloc_pages_preferred_many mm/mempolicy.c:2430 [inline]
 alloc_pages_mpol+0x112/0x1d0 mm/mempolicy.c:2454
 alloc_frozen_pages_noprof mm/mempolicy.c:2561 [inline]
 alloc_pages_noprof+0x8f/0x140 mm/mempolicy.c:2581
 vm_area_alloc_pages mm/vmalloc.c:3742 [inline]
 __vmalloc_area_node mm/vmalloc.c:3892 [inline]
 __vmalloc_node_range_noprof+0xae9/0x11e0 mm/vmalloc.c:4082
 __kvmalloc_node_noprof+0x3d4/0x640 mm/slub.c:6861
 futex_hash_allocate+0x192/0x920 kernel/futex/core.c:1823
 futex_hash_prctl+0xd8/0xf0 kernel/futex/core.c:1995
 __do_sys_prctl kernel/sys.c:2885 [inline]
 __se_sys_prctl+0x4f4/0x13b0 kernel/sys.c:2534
 __x64_sys_prctl+0x67/0x80 kernel/sys.c:2534
 x64_sys_call+0x2533/0x3020 arch/x86/include/generated/asm/syscalls_64.h:158
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x136/0x3c0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x00000001000025e7 -> 0x00000001000025e8

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 10189 Comm: syz.4.2068 Not tainted syzkaller #0 PREEMPT(lazy) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
==================================================================