Received: by 2002:a05:6358:9144:b0:117:f937:c515 with SMTP id r4csp1508947rwr;
        Fri, 5 May 2023 15:35:00 -0700 (PDT)
X-Google-Smtp-Source: ACHHUZ7uzX9ojHX5GjEwAb5NjnQoyoSfvXkYXWv1+BTOFBhQ8yR6Qi9MUQRELseiIg4xQgCAIW6M
X-Received: by 2002:a17:90a:d590:b0:250:b16:f498 with SMTP id v16-20020a17090ad59000b002500b16f498mr2935636pju.47.1683326099943;
        Fri, 05 May 2023 15:34:59 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1683326099; cv=none;
        d=google.com; s=arc-20160816;
        b=fvgvoM3lI679cZue+8ODpN+oDBvr0zCoVRLcwP8jva4HRC/VFvVPOhu6m/gqeE+zoV
         mIiroCRZiC5cPzoAGzNFftVbSI5y4dty6nhCxqe3yCDR2jYbBshcq2nDMzMd8B6+AxfU
         ZsGLRcghuDo+7/zT2fuJeF8TarG+X7qDM5bsQcoUC4WskYwSEiuGkewpa1lzA6b+izfA
         EesD6w7QngBuDngxyPG74AeL/w9TBaxSpNT4YDe9rYCi/34S4ovmfmkzrvo4DIp2dcWu
         wOfIndHnmqtGv7C8eTUQ+n7Dx33uHtiyIrePfVD6WJSQs0XyUdZm2+OfUYwYRqCOdCD5
         QcJg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:cc:to:subject
         :message-id:date:from:in-reply-to:references:mime-version
         :dkim-signature;
        bh=JM8FXpvYnzLEqvrOZcI0KO72ExPgbCLnYon/U3aAPak=;
        b=PZrx7nhDjrCy8nOQR4qmdLL9h7ThlExYs7zYtwt1YpCvQlrubuzXpBcsQrb/ryacMH
         U5u1bj7nrJ15l7hcgzNA88GKgvxjccwlHmx92J3jYh/XxPKvIGScI59QwiK+pev/IhR3
         x9VcDMwwc4UelpLreZ3/rVUgNzbtIOkqVnnkblJWAO/db7QpzctMT9J0ZhCje387LQ0Q
         xEbQn9WnDJC6oxyW+PuG+UuXYCzmIDsYvSu1yO2rHLhrI4OwoH/w2rkLyJEz589WJwYP
         tOTkpagLHM6f/+CkLc9txGsiWxRL/ziRzukHvzKmcQykDMNyEPa8gyJYvMqmVJuzPqh5
         bmwg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20221208 header.b=w07GaAWB;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id h3-20020a17090a298300b0024e01bbc60asi7581935pjd.117.2023.05.05.15.34.44;
        Fri, 05 May 2023 15:34:59 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20221208 header.b=w07GaAWB;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S232759AbjEEWO3 (ORCPT <rfc822;shakeebbk@gmail.com> + 99 others);
        Fri, 5 May 2023 18:14:29 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:40228 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232242AbjEEWO1 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 5 May 2023 18:14:27 -0400
Received: from mail-qt1-x832.google.com (mail-qt1-x832.google.com [IPv6:2607:f8b0:4864:20::832])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 50FB01FC0
        for <linux-kernel@vger.kernel.org>; Fri,  5 May 2023 15:14:26 -0700 (PDT)
Received: by mail-qt1-x832.google.com with SMTP id d75a77b69052e-3ef36d814a5so1197781cf.0
        for <linux-kernel@vger.kernel.org>; Fri, 05 May 2023 15:14:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20221208; t=1683324865; x=1685916865;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:from:to:cc:subject:date
         :message-id:reply-to;
        bh=JM8FXpvYnzLEqvrOZcI0KO72ExPgbCLnYon/U3aAPak=;
        b=w07GaAWBX3rTa4WX6w5X4YiHlh01pcXlO/3jGJE+esU0bEmhZc/Ld+0tT08lSzn066
         aeNsRLUI2DRo6ZuinzWSQRDh0kq4N7DSFVr3LUHl0bo3etDAfUiWO2tY/+erIViL+30t
         yirjmmDy8TgxSEPNF8wwEInDBX9MUo8s4rbXOzzF12kO8V4ijsblktRrwSg5mjhGSc2C
         JbzLKN5k2Rw7oJnNtxDwtfDN9LUeQU/kBLnYEVa5D2s9gJetFvI86Otw+CTnyhKtgDs6
         yOrgUcPf4FnTueJieBHQCDTAFf9MNtl1gofzdYQxZR4LHB5szHmjrMXpxco5UBB5tCjm
         m7PA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20221208; t=1683324865; x=1685916865;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=JM8FXpvYnzLEqvrOZcI0KO72ExPgbCLnYon/U3aAPak=;
        b=cBRS/cCilyRinPo9lqMPp3s2cMVewb3rQVjwDlYLSsWsX4c3S49KOT2HJkApnr+fRw
         m5mFlO1OGdNy1/HRJ/62dKzgukVr1l175Nm27/tHbT/CLsrDiCVclvL8Kee8iujLvvPi
         zk/dl43JDGFLZnrXAtOX+TPK+zxHpComiEw5b1A2TovztbFnCDpyyf5kJ/xbdF91CyOR
         HbsYiwUA5r4ONq2+KShS/mZb4zC61Kn1XLij0VwaJ7DcBJn7z8pBJcJSB1QVxsMDBeGZ
         BZ09XGdv2UfVm8edF2elXOJO9W1YtHEiH/0duTYk960zDkMGgHCuFzbqXwRy8NA0OrRV
         NWtQ==
X-Gm-Message-State: AC+VfDyyDEg5kmeBafDdMn10vfIc/UicM399SQ1mztR6z6TMe0qKQ0aS
        ERqbgTzaaY9Q8kBR+RZc1q0yAKYSSvWUZY7K6bfWxA==
X-Received: by 2002:ac8:4e84:0:b0:3ef:3361:75d5 with SMTP id
 4-20020ac84e84000000b003ef336175d5mr93588qtp.11.1683324865300; Fri, 05 May
 2023 15:14:25 -0700 (PDT)
MIME-Version: 1.0
References: <000000000000d3001a05faf979c8@google.com> <CANp29Y4Q-VWEWeHmZu0f9tLLik1Va8oDF-s8hAeVkBZbX4K0gg@mail.gmail.com>
In-Reply-To: <CANp29Y4Q-VWEWeHmZu0f9tLLik1Va8oDF-s8hAeVkBZbX4K0gg@mail.gmail.com>
From:   Aleksandr Nogikh <nogikh@google.com>
Date:   Sat, 6 May 2023 00:14:14 +0200
Message-ID: <CANp29Y5Bw5mrvJDzQ1AJ3eYj3bvaTzjYDVOFC-cWXb0=PEQqrQ@mail.gmail.com>
Subject: Re: [syzbot] upstream boot error: BUG: unable to handle kernel NULL
 pointer dereference in load_balance
To:     syzbot <syzbot+d4b00edc2d0c910d4bf4@syzkaller.appspotmail.com>,
        ardb@kernel.org, Dmitry Vyukov <dvyukov@google.com>
Cc:     andriy.shevchenko@linux.intel.com, linux-kernel@vger.kernel.org,
        linux@rasmusvillemoes.dk, syzkaller-bugs@googlegroups.com,
        yury.norov@gmail.com, Space Meyer <spm@google.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED,
        DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,
        ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS,
        T_SCC_BODY_TEXT_LINE,USER_IN_DEF_DKIM_WL,USER_IN_DEF_SPF_WL
        autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Sat, May 6, 2023 at 12:07=E2=80=AFAM Aleksandr Nogikh <nogikh@google.com=
> wrote:
>
> For the context: we've been seeing tons of different boot time errors
> on the syzbot arm32 qemu instance.

If that might help, here are some of those reports:
https://syzkaller.appspot.com/upstream?only_manager=3Dci-qemu2-arm32

> Manual bisection points to this commit:
>
> commit c76c6c4ecbec0deb56a4f9e932b26866024a508f
> Author: Ard Biesheuvel <ardb@kernel.org>
> Date:   Wed Apr 12 09:50:20 2023 +0100
>
>     ARM: 9294/2: vfp: Fix broken softirq handling with instrumentation en=
abled
>
>
> On Sat, May 6, 2023 at 12:04=E2=80=AFAM syzbot
> <syzbot+d4b00edc2d0c910d4bf4@syzkaller.appspotmail.com> wrote:
> >
> > Hello,
> >
> > syzbot found the following issue on:
> >
> > HEAD commit:    1a5304fecee5 Merge tag 'parisc-for-6.4-1' of git://git.=
ker..
> > git tree:       upstream
> > console output: https://syzkaller.appspot.com/x/log.txt?x=3D125e1e5c280=
000
> > kernel config:  https://syzkaller.appspot.com/x/.config?x=3D124f13edd5d=
f0b0d
> > dashboard link: https://syzkaller.appspot.com/bug?extid=3Dd4b00edc2d0c9=
10d4bf4
> > compiler:       arm-linux-gnueabi-gcc (Debian 10.2.1-6) 10.2.1 20210110=
, GNU ld (GNU Binutils for Debian) 2.35.2
> > userspace arch: arm
> >
> > IMPORTANT: if you fix the issue, please add the following tag to the co=
mmit:
> > Reported-by: syzbot+d4b00edc2d0c910d4bf4@syzkaller.appspotmail.com
> >
> > 8<--- cut here ---
> > Unable to handle kernel NULL pointer dereference at virtual address 000=
00018 when read
> > [00000018] *pgd=3D80000080004003, *pmd=3D00000000
> > Internal error: Oops: 207 [#1] PREEMPT SMP ARM
> > Modules linked in:
> > CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.3.0-syzkaller #0
> > Hardware name: ARM-Versatile Express
> > PC is at find_next_and_bit include/linux/find.h:93 [inline]
> > PC is at should_we_balance kernel/sched/fair.c:10717 [inline]
> > PC is at load_balance+0x130/0xcdc kernel/sched/fair.c:10760
> > LR is at load_balance+0x78/0xcdc kernel/sched/fair.c:10743
> > pc : [<8028b604>]    lr : [<8028b54c>]    psr: 80000113
> > sp : df805df8  ip : df805e84  fp : df805ebc
> > r10: 8309a800  r9 : df805e84  r8 : 00000001
> > r7 : 8309a800  r6 : ddddb400  r5 : 830b4640  r4 : 00000001
> > r3 : 00000000  r2 : ddddb400  r1 : 00000000  r0 : df805e48
> > Flags: Nzcv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment none
> > Control: 30c5387d  Table: 847ac040  DAC: 00000000
> > Register r0 information:
> > 8<--- cut here ---
> > Unable to handle kernel paging request at virtual address df96bff8 when=
 read
> > [df96bff8] *pgd=3D80000080007003, *pmd=3D83093003, *pte=3D8261d0a800000=
000
> > Internal error: Oops: 207 [#2] PREEMPT SMP ARM
> > Modules linked in:
> > CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.3.0-syzkaller #0
> > Hardware name: ARM-Versatile Express
> > PC is at __find_vmap_area mm/vmalloc.c:841 [inline]
> > PC is at find_vmap_area mm/vmalloc.c:1862 [inline]
> > PC is at find_vm_area mm/vmalloc.c:2623 [inline]
> > PC is at vmalloc_dump_obj+0x38/0xb4 mm/vmalloc.c:4221
> > LR is at __raw_spin_lock include/linux/spinlock_api_smp.h:132 [inline]
> > LR is at _raw_spin_lock+0x18/0x58 kernel/locking/spinlock.c:154
> > pc : [<8047a200>]    lr : [<818015f4>]    psr: a0000193
> > sp : df805c88  ip : df805c70  fp : df805c9c
> > r10: 831f4680  r9 : 8261c9a4  r8 : 8285041c
> > r7 : 60000113  r6 : 00000001  r5 : df806000  r4 : df96c000
> > r3 : 00000000  r2 : 00002268  r1 : 00000000  r0 : 00000001
> > Flags: NzCv  IRQs off  FIQs on  Mode SVC_32  ISA ARM  Segment none
> > Control: 30c5387d  Table: 847ac040  DAC: 00000000
> >
> >
> > ---
> > This report is generated by a bot. It may contain errors.
> > See https://goo.gl/tpsmEJ for more information about syzbot.
> > syzbot engineers can be reached at syzkaller@googlegroups.com.
> >
> > syzbot will keep track of this issue. See:
> > https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
> >
> > If the bug is already fixed, let syzbot know by replying with:
> > #syz fix: exact-commit-title
> >
> > If you want to change bug's subsystems, reply with:
> > #syz set subsystems: new-subsystem
> > (See the list of subsystem names on the web dashboard)
> >
> > If the bug is a duplicate of another bug, reply with:
> > #syz dup: exact-subject-of-another-report
> >
> > If you want to undo deduplication, reply with:
> > #syz undup
> >
> > --
> > You received this message because you are subscribed to the Google Grou=
ps "syzkaller-bugs" group.
> > To unsubscribe from this group and stop receiving emails from it, send =
an email to syzkaller-bugs+unsubscribe@googlegroups.com.
> > To view this discussion on the web visit https://groups.google.com/d/ms=
gid/syzkaller-bugs/000000000000d3001a05faf979c8%40google.com.