syzbot

 sign-in | mailing list | source | docs
🐞 Open [1646]
Subsystems
🐞 Fixed [6009]
🐞 Invalid [14804]
Missing Backports [135]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq

Status: closed as invalid on 2023/05/17 13:01
Subsystems: arm
[Documentation on labels]
Reported-by: syzbot+4aee2040dfac273d198e@syzkaller.appspotmail.com
First crash: 644d, last: 625d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq 1 (2) 2023/05/02 06:38

Sample crash report:
8<--- cut here ---
Unable to handle kernel paging request at virtual address df80a00c when read
[df80a00c] *pgd=80000080007003, *pmd=83093003, *pte=83093070830930b8
Internal error: Oops: 207 [#1] PREEMPT SMP ARM
Modules linked in:
CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.4.0-rc1-syzkaller #0
Hardware name: ARM-Versatile Express
PC is at __raw_readl arch/arm/include/asm/io.h:113 [inline]
PC is at gic_handle_irq+0x1c/0x7c drivers/irqchip/irq-gic.c:344
LR is at generic_handle_arch_irq+0x60/0x80 kernel/irq/handle.c:238
pc : [<8087d780>]    lr : [<817f604c>]    psr: 20000193
sp : 82601e88  ip : 82601ea8  fp : 82601ea4
r10: 00000000  r9 : 8261ae40  r8 : 00000000
r7 : df80a00c  r6 : 8211b110  r5 : df80a000  r4 : 8260cdf4
r3 : 8087d764  r2 : 03eec5a0  r1 : 82155798  r0 : 82601ed0
Flags: nzCv  IRQs off  FIQs on  Mode SVC_32  ISA ARM  Segment user
Control: 30c5387d  Table: 80003000  DAC: fffffffd
Register r0 information: non-slab/vmalloc memory
Register r1 information: non-slab/vmalloc memory
Register r2 information: non-paged memory
Register r3 information: non-slab/vmalloc memory
Register r4 information: non-slab/vmalloc memory
Register r5 information: non-paged memory
Register r6 information: non-slab/vmalloc memory
Register r7 information: non-paged memory
Register r8 information: NULL pointer
Register r9 information: non-slab/vmalloc memory
Register r10 information: NULL pointer
Register r11 information: non-slab/vmalloc memory
Register r12 information: non-slab/vmalloc memory
Process swapper/0 (pid: 0, stack limit = 0x82600000)
Stack: (0x82601e88 to 0x82602000)
1e80:                   824b0264 82155798 8211b110 82601ed0 82601ecc 82601ea8
1ea0: 817f604c 8087d770 817f7670 20000113 ffffffff 82601f04 00000000 8261ae40
1ec0: 82601f3c 82601ed0 80200b34 817f5ff8 00000000 81f9d3a4 000115ac 00000001
1ee0: 8261ae40 8260c498 00000000 8260c4e0 00000000 827e16a6 00000000 82601f3c
1f00: 82601f10 82601f20 817f6c00 817f7670 20000113 ffffffff 817f7664 817f6bec
1f20: 00000000 8260c498 8261ae40 8260c4e0 82601f84 82601f40 80293774 817f7630
1f40: 00000000 00000000 81f8636c 824af2f8 8260c440 309e19dc 8261a934 000000ea
1f60: 82625c7c 8260c440 00000000 8261a934 8260c440 82850000 82601f94 82601f88
1f80: 80293b00 80293500 82601fa4 82601f98 817f7974 80293aec 82601fb4 82601fa8
1fa0: 82400bb8 817f78a4 82601ff4 82601fb8 824012f8 82400bb4 00000000 00000000
1fc0: 00000000 00000000 ffffffff 00000000 00000000 820ad8c8 82484a70 00000000
1fe0: 00000000 000008e0 00000000 82601ff8 00000000 82400c24 00000000 00000000
Backtrace: 
[<8087d764>] (gic_handle_irq) from [<817f604c>] (generic_handle_arch_irq+0x60/0x80 kernel/irq/handle.c:238)
 r7:82601ed0 r6:8211b110 r5:82155798 r4:824b0264
[<817f5fec>] (generic_handle_arch_irq) from [<80200b34>] (__irq_svc+0x74/0xac arch/arm/kernel/entry-armv.S:221)
Exception stack(0x82601ed0 to 0x82601f18)
1ec0:                                     00000000 81f9d3a4 000115ac 00000001
1ee0: 8261ae40 8260c498 00000000 8260c4e0 00000000 827e16a6 00000000 82601f3c
1f00: 82601f10 82601f20 817f6c00 817f7670 20000113 ffffffff
 r9:8261ae40 r8:00000000 r7:82601f04 r6:ffffffff r5:20000113 r4:817f7670
[<817f7624>] (default_idle_call) from [<80293774>] (cpuidle_idle_call kernel/sched/idle.c:170 [inline])
[<817f7624>] (default_idle_call) from [<80293774>] (do_idle+0x280/0x2f0 kernel/sched/idle.c:282)
 r7:8260c4e0 r6:8261ae40 r5:8260c498 r4:00000000
[<802934f4>] (do_idle) from [<80293b00>] (cpu_startup_entry+0x20/0x24 kernel/sched/idle.c:379)
 r10:82850000 r9:8260c440 r8:8261a934 r7:00000000 r6:8260c440 r5:82625c7c
 r4:000000ea
[<80293ae0>] (cpu_startup_entry) from [<817f7974>] (rest_init+0xdc/0xe0 init/main.c:735)
[<817f7898>] (rest_init) from [<82400bb8>] (arch_post_acpi_subsys_init+0x0/0x20 init/main.c:834)
[<82400ba8>] (arch_call_rest_init) from [<824012f8>] (start_kernel+0x6e0/0x70c init/main.c:1088)
[<82400c18>] (start_kernel) from [<00000000>] (0x0)
Code: e30c4df4 e3484260 e5945004 e285700c (e595300c) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	e30c4df4 	movw	r4, #52724	; 0xcdf4
   4:	e3484260 	movt	r4, #33376	; 0x8260
   8:	e5945004 	ldr	r5, [r4, #4]
   c:	e285700c 	add	r7, r5, #12
* 10:	e595300c 	ldr	r3, [r5, #12] <-- trapping instruction

Crashes (14):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/05/14 16:54 upstream 31f4104e392a 2b9ba477 .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/05/12 12:19 upstream cc3c44c9fda2 893599a2 .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/05/07 19:15 upstream 17784de648be 90c93c40 .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/05/06 19:38 upstream fc4354c6e5c2 90c93c40 .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/05/03 09:49 upstream 348551ddaf31 48e0a81d .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/05/02 23:29 upstream 348551ddaf31 48e0a81d .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/04/27 19:54 upstream cec24b8b6bb8 6f5b1cc4 .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/04/26 17:52 upstream 5c7ecada25d2 19a3dabe .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/04/26 17:52 upstream 5c7ecada25d2 19a3dabe .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/04/26 02:58 upstream 0cfd8703e7da 7560799c .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/04/25 21:23 upstream 736b378b29d8 65320f8e .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/04/25 20:33 upstream df45da57cbd3 65320f8e .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/04/25 20:33 upstream df45da57cbd3 65320f8e .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
2023/04/25 13:24 upstream 173ea743bf7a 65320f8e .config console log report ci-qemu2-arm32 upstream boot error: BUG: unable to handle kernel paging request in gic_handle_irq
* Struck through repros no longer work on HEAD.