bisecting cause commit starting from 324c92e5e0ee0e993bdb106fac407846ed677f6b
building syzkaller on 0740de696b19a870c7208bd97f3194988281c282
testing commit 324c92e5e0ee0e993bdb106fac407846ed677f6b with gcc (GCC) 10.2.1 20210217
kernel signature: 2e24cafd7978b54913c798d5d8d19fee217787f403c817621efa19364b13cd51
all runs: crashed: WARNING in rtnl_stats_get
testing release v5.12
testing commit 9f4ad9e425a1d3b6a34617b8ea226d56a119a717 with gcc (GCC) 10.2.1 20210217
kernel signature: 20a3195b0c2adea39c30d2e9f830a6fa425a34f031f28cd84a5fc4bf09ce8f4d
all runs: crashed: WARNING in rtnl_stats_get
testing release v5.11
testing commit f40ddce88593482919761f74910f42f4b84c004b with gcc (GCC) 10.2.1 20210217
kernel signature: 22b26ae1e3be417e2ad324e47433a262e845b6471dfc09f4fa2f647b3330df8e
all runs: OK
# git bisect start 9f4ad9e425a1d3b6a34617b8ea226d56a119a717 f40ddce88593482919761f74910f42f4b84c004b
Bisecting: 6798 revisions left to test after this (roughly 13 steps)
[d99676af540c2dc829999928fb81c58c80a1dce4] Merge tag 'drm-next-2021-02-19' of git://anongit.freedesktop.org/drm/drm

testing commit d99676af540c2dc829999928fb81c58c80a1dce4 with gcc (GCC) 10.2.1 20210217
kernel signature: 7cd59bfe04b0d3e5946650143381ee5740879beddc7e6e99a0f0393131ddacb5
all runs: OK
# git bisect good d99676af540c2dc829999928fb81c58c80a1dce4
Bisecting: 3476 revisions left to test after this (roughly 12 steps)
[69264b4a43aff7307283e2bae29e9305ab6b7d47] sparc: sparc64_defconfig: remove duplicate CONFIGs

testing commit 69264b4a43aff7307283e2bae29e9305ab6b7d47 with gcc (GCC) 10.2.1 20210217
kernel signature: aa51c794dea22755569b3e08e063e3081861bbbb1c055b7d0b92f96b1e51b650
all runs: OK
# git bisect good 69264b4a43aff7307283e2bae29e9305ab6b7d47
Bisecting: 1737 revisions left to test after this (roughly 11 steps)
[f296bfd5cd04cbb49b8fc9585adc280ab2b58624] Merge tag 'nfs-for-5.12-2' of git://git.linux-nfs.org/projects/anna/linux-nfs

testing commit f296bfd5cd04cbb49b8fc9585adc280ab2b58624 with gcc (GCC) 10.2.1 20210217
kernel signature: 4a91c07c69dc25ff8e0000061e8de8b3136f77a04bf8f81833ebf46ab527ad76
all runs: crashed: WARNING in rtnl_stats_get
# git bisect bad f296bfd5cd04cbb49b8fc9585adc280ab2b58624
Bisecting: 875 revisions left to test after this (roughly 10 steps)
[efba6d3a7c4bb59f0750609fae0f9644d82304b6] Merge tag 'for-5.12/io_uring-2021-02-25' of git://git.kernel.dk/linux-block

testing commit efba6d3a7c4bb59f0750609fae0f9644d82304b6 with gcc (GCC) 10.2.1 20210217
kernel signature: 3ea0b675637ba657c5c3f2262300cfbdf4a5997fff8fa88d478d5c019b1ff0c0
run #0: crashed: WARNING in kvm_wait
run #1: crashed: WARNING in rtnl_stats_get
run #2: crashed: WARNING in rtnl_stats_get
run #3: crashed: WARNING in rtnl_stats_get
run #4: crashed: WARNING in rtnl_stats_get
run #5: crashed: WARNING in rtnl_stats_get
run #6: crashed: WARNING in rtnl_stats_get
run #7: crashed: WARNING in rtnl_stats_get
run #8: crashed: WARNING in rtnl_stats_get
run #9: crashed: WARNING in rtnl_stats_get
# git bisect bad efba6d3a7c4bb59f0750609fae0f9644d82304b6
Bisecting: 431 revisions left to test after this (roughly 9 steps)
[64427985c76fcb54c783de617edf353009499a03] lib: stackdepot: fix ignoring return value warning

testing commit 64427985c76fcb54c783de617edf353009499a03 with gcc (GCC) 10.2.1 20210217
kernel signature: bb1b6a5b7db9547c720ad9892366dcd58c5cc87e5203c8f22c1b394338035e1e
run #0: crashed: WARNING in rtnl_stats_get
run #1: crashed: WARNING in rtnl_stats_get
run #2: crashed: WARNING in rtnl_stats_get
run #3: crashed: WARNING in rtnl_stats_get
run #4: crashed: WARNING in rtnl_stats_get
run #5: crashed: WARNING in rtnl_stats_get
run #6: crashed: WARNING in rtnl_stats_get
run #7: crashed: WARNING in rtnl_stats_get
run #8: crashed: WARNING in rtnl_stats_get
run #9: boot failed: WARNING in kvm_wait
# git bisect bad 64427985c76fcb54c783de617edf353009499a03
Bisecting: 233 revisions left to test after this (roughly 8 steps)
[6c15f9e805f22566d7547551f359aba04b611f9d] Merge tag 'nds32-for-linux-5.12' of git://git.kernel.org/pub/scm/linux/kernel/git/greentime/linux

testing commit 6c15f9e805f22566d7547551f359aba04b611f9d with gcc (GCC) 10.2.1 20210217
kernel signature: ee2031769f06fd71ca2d8ccca942a8919186bb8d1974d2ecaa899a3552ae62e2
all runs: OK
# git bisect good 6c15f9e805f22566d7547551f359aba04b611f9d
Bisecting: 134 revisions left to test after this (roughly 7 steps)
[6f9972bbfef57019519e1685254e876913a70463] Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4

testing commit 6f9972bbfef57019519e1685254e876913a70463 with gcc (GCC) 10.2.1 20210217
kernel signature: bc214458576a23ab39214a19166f5f5b311fcd16fb1d27e125da7b5e230d953d
all runs: OK
# git bisect good 6f9972bbfef57019519e1685254e876913a70463
Bisecting: 67 revisions left to test after this (roughly 6 steps)
[1f90a3477df3ff1a91e064af554cdc887c8f9e5e] mm: teach pfn_to_online_page() about ZONE_DEVICE section collisions

testing commit 1f90a3477df3ff1a91e064af554cdc887c8f9e5e with gcc (GCC) 10.2.1 20210217
kernel signature: 371e7dbd06e6c00dab3660e98fc7b865bb84c6408a0c2c09f77daad57aaa4bc2
run #0: OK
run #1: boot failed: WARNING in kvm_wait
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect good 1f90a3477df3ff1a91e064af554cdc887c8f9e5e
Bisecting: 33 revisions left to test after this (roughly 5 steps)
[2b8305260fb37fc20e13f71e13073304d0a031c8] kfence, kasan: make KFENCE compatible with KASAN

testing commit 2b8305260fb37fc20e13f71e13073304d0a031c8 with gcc (GCC) 10.2.1 20210217
kernel signature: 76d8e3b4a8e7a36c6097527e4d309e234840d9e0d58805c32ba1f7a4b194a954
all runs: crashed: WARNING in rtnl_stats_get
# git bisect bad 2b8305260fb37fc20e13f71e13073304d0a031c8
Bisecting: 16 revisions left to test after this (roughly 4 steps)
[5d5d19eda6b0ee790af89c45e3f678345be6f50f] mm/rmap: fix potential pte_unmap on an not mapped pte

testing commit 5d5d19eda6b0ee790af89c45e3f678345be6f50f with gcc (GCC) 10.2.1 20210217
kernel signature: bd6e45bc13e14f0d9c579175c378da74aa9c5cd10ac2863328eb75cfc7166f3a
run #0: crashed: WARNING in kvm_wait
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
reproducer seems to be flaky
# git bisect bad 5d5d19eda6b0ee790af89c45e3f678345be6f50f
Bisecting: 8 revisions left to test after this (roughly 3 steps)
[03aaf83fba6e5af08b5dd174c72edee9b7d9ed9b] arm64/mm: define arch_get_mappable_range()

testing commit 03aaf83fba6e5af08b5dd174c72edee9b7d9ed9b with gcc (GCC) 10.2.1 20210217
kernel signature: 0091caa8317faa18c63dd8cf921fcc408675a18fcc55812f77cba75eeb9733c3
all runs: OK
# git bisect good 03aaf83fba6e5af08b5dd174c72edee9b7d9ed9b
Bisecting: 4 revisions left to test after this (roughly 2 steps)
[aaf1f990aee40bc74b425ef8f51201ae21b85ed7] mm/rmap: correct some obsolete comments of anon_vma

testing commit aaf1f990aee40bc74b425ef8f51201ae21b85ed7 with gcc (GCC) 10.2.1 20210217
kernel signature: 5bf68fbc7ecc7930083229ef6249fdb239b4dd79ab7188e1774ebb0d372eec1a
run #0: crashed: WARNING in kvm_wait
run #1: crashed: WARNING in kvm_wait
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
run #10: OK
run #11: OK
run #12: OK
run #13: OK
run #14: OK
run #15: OK
run #16: OK
run #17: OK
run #18: OK
run #19: OK
# git bisect bad aaf1f990aee40bc74b425ef8f51201ae21b85ed7
Bisecting: 1 revision left to test after this (roughly 1 step)
[94c8945376d44b37aa3ab5b58669a2a86326968e] virtio-mem: check against mhp_get_pluggable_range() which memory we can hotplug

testing commit 94c8945376d44b37aa3ab5b58669a2a86326968e with gcc (GCC) 10.2.1 20210217
kernel signature: a03549c9f5ec0af32d2a7c94e95a21450fc7bce79d893744a4ac404ea75376fd
run #0: OK
run #1: OK
run #2: boot failed: WARNING in kvm_wait
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
run #10: OK
run #11: OK
run #12: OK
run #13: OK
run #14: OK
run #15: OK
run #16: OK
run #17: OK
run #18: OK
run #19: OK
# git bisect good 94c8945376d44b37aa3ab5b58669a2a86326968e
Bisecting: 0 revisions left to test after this (roughly 0 steps)
[48b03eea321c85185d173cb0d112698b79b1c98e] mm/mlock: stop counting mlocked pages when none vma is found

testing commit 48b03eea321c85185d173cb0d112698b79b1c98e with gcc (GCC) 10.2.1 20210217
kernel signature: 5bf68fbc7ecc7930083229ef6249fdb239b4dd79ab7188e1774ebb0d372eec1a
run #0: OK
run #1: boot failed: WARNING in kvm_wait
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
run #10: OK
run #11: OK
run #12: OK
run #13: OK
run #14: OK
run #15: OK
run #16: OK
run #17: OK
run #18: OK
run #19: OK
# git bisect good 48b03eea321c85185d173cb0d112698b79b1c98e
aaf1f990aee40bc74b425ef8f51201ae21b85ed7 is the first bad commit
commit aaf1f990aee40bc74b425ef8f51201ae21b85ed7
Author: Miaohe Lin <linmiaohe@huawei.com>
Date:   Thu Feb 25 17:17:53 2021 -0800

    mm/rmap: correct some obsolete comments of anon_vma
    
    commit 2b575eb64f7a ("mm: convert anon_vma->lock to a mutex") changed
    spinlock used to serialize access to vma list to mutex.  And further, the
    commit 5a505085f043 ("mm/rmap: Convert the struct anon_vma::mutex to an
    rwsem") converted the mutex to an rwsem for solving scalability problem.
    So replace spinlock with rwsem to make comment uptodate.
    
    Link: https://lkml.kernel.org/r/20210123072459.25903-1-linmiaohe@huawei.com
    Signed-off-by: Miaohe Lin <linmiaohe@huawei.com>
    Cc: Rik van Riel <riel@surriel.com>
    Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
    Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

 mm/rmap.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

culprit signature: 5bf68fbc7ecc7930083229ef6249fdb239b4dd79ab7188e1774ebb0d372eec1a
parent  signature: 5bf68fbc7ecc7930083229ef6249fdb239b4dd79ab7188e1774ebb0d372eec1a
Reproducer flagged being flaky
revisions tested: 17, total time: 5h14m48.812034744s (build: 2h8m45.735663752s, test: 3h3m45.774542652s)
first bad commit: aaf1f990aee40bc74b425ef8f51201ae21b85ed7 mm/rmap: correct some obsolete comments of anon_vma
recipients (to): ["akpm@linux-foundation.org" "linmiaohe@huawei.com" "torvalds@linux-foundation.org"]
recipients (cc): []
crash: WARNING in kvm_wait
batman_adv: batadv0: Interface activated: batadv_slave_0
------------[ cut here ]------------
raw_local_irq_restore() called with IRQs enabled
WARNING: CPU: 1 PID: 8863 at kernel/locking/irqflag-debug.c:10 warn_bogus_irq_restore+0x1d/0x20 kernel/locking/irqflag-debug.c:10
Modules linked in:
CPU: 1 PID: 8863 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:warn_bogus_irq_restore+0x1d/0x20 kernel/locking/irqflag-debug.c:10
Code: 24 48 c7 c7 a0 68 89 88 e8 6c 6b c1 ff 80 3d b4 88 e5 03 00 74 01 c3 48 c7 c7 c0 e1 8a 88 c6 05 a3 88 e5 03 01 e8 61 6a c1 ff <0f> 0b c3 48 39 77 10 0f 84 97 00 00 00 66 f7 47 22 f0 ff 74 4b 48
RSP: 0018:ffffc90001ceed40 EFLAGS: 00010282
RAX: 0000000000000000 RBX: ffff88802d28d268 RCX: 0000000000000000
RDX: 0000000000000202 RSI: 0000000000000004 RDI: fffff5200039dd9a
RBP: 0000000000000200 R08: 0000000000000001 R09: ffff8880b9f1fa1b
R10: ffffed10173e3f43 R11: 0000000000000001 R12: 0000000000000003
R13: ffffed1005a51a4d R14: 0000000000000001 R15: ffff8880b9f35f00
FS:  0000000002214400(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5eb7b81000 CR3: 000000002f28b000 CR4: 00000000001506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 kvm_wait arch/x86/kernel/kvm.c:860 [inline]
 kvm_wait+0xc9/0xe0 arch/x86/kernel/kvm.c:837
 pv_wait arch/x86/include/asm/paravirt.h:564 [inline]
 pv_wait_head_or_lock kernel/locking/qspinlock_paravirt.h:470 [inline]
 __pv_queued_spin_lock_slowpath+0x8b8/0xb40 kernel/locking/qspinlock.c:508
 pv_queued_spin_lock_slowpath arch/x86/include/asm/paravirt.h:554 [inline]
 queued_spin_lock_slowpath arch/x86/include/asm/qspinlock.h:51 [inline]
 queued_spin_lock include/asm-generic/qspinlock.h:85 [inline]
 do_raw_spin_lock+0x200/0x2b0 kernel/locking/spinlock_debug.c:113
 spin_lock_bh include/linux/spinlock.h:359 [inline]
 batadv_tt_local_resize_to_mtu+0x6c/0xe0 net/batman-adv/translation-table.c:3978
 batadv_hardif_activate_interface.part.0.cold+0x65/0x1b4 net/batman-adv/hard-interface.c:655
 batadv_hardif_activate_interface net/batman-adv/hard-interface.c:989 [inline]
 batadv_hard_if_event+0x2f1/0x1150 net/batman-adv/hard-interface.c:1005
 notifier_call_chain+0x94/0x170 kernel/notifier.c:83
 call_netdevice_notifiers_extack net/core/dev.c:2075 [inline]
 call_netdevice_notifiers net/core/dev.c:2089 [inline]
 __dev_notify_flags+0xcd/0x220 net/core/dev.c:8695
 dev_change_flags+0xf6/0x150 net/core/dev.c:8733
 do_setlink+0x77c/0x2f10 net/core/rtnetlink.c:2708
 __rtnl_newlink+0xab2/0x1350 net/core/rtnetlink.c:3376
 rtnl_newlink+0x5a/0x90 net/core/rtnetlink.c:3491
 rtnetlink_rcv_msg+0x32f/0x860 net/core/rtnetlink.c:5553
 netlink_rcv_skb+0x118/0x370 net/netlink/af_netlink.c:2502
 netlink_unicast_kernel net/netlink/af_netlink.c:1312 [inline]
 netlink_unicast+0x42e/0x700 net/netlink/af_netlink.c:1338
 netlink_sendmsg+0x70e/0xbe0 net/netlink/af_netlink.c:1927
 sock_sendmsg_nosec net/socket.c:654 [inline]
 sock_sendmsg+0xab/0xe0 net/socket.c:674
 __sys_sendto+0x1a4/0x270 net/socket.c:1977
 __do_sys_sendto net/socket.c:1989 [inline]
 __se_sys_sendto net/socket.c:1985 [inline]
 __x64_sys_sendto+0xd8/0x1b0 net/socket.c:1985
 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x41956c
Code: fa fa ff ff 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 20 fb ff ff 48 8b
RSP: 002b:0000000000a9f700 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00000000014a4320 RCX: 000000000041956c
RDX: 000000000000002c RSI: 00000000014a4370 RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000000a9f754 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
R13: 00000000014a4370 R14: 0000000000000003 R15: 0000000000000000