ci2 starts bisection 2024-06-12 21:25:53.788926274 +0000 UTC m=+41370.441478582 bisecting fixing commit since 993bed180178156a70afdafe8aaf23a117107352 building syzkaller on 8d446f1521b580230a60c9ae228bf0c26312c80b ensuring issue is reproducible on original commit 993bed180178156a70afdafe8aaf23a117107352 testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: d839c53529ae4f38c1e6a2b096368c27b55504dd9e4ff94698666f2040432ac1 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #2: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #3: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #4: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #5: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock run #6: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #7: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock run #8: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] check whether we can drop unnecessary instrumentation disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP HANG], they are not needed testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: e8d955ac68e9bc3c2963e5e3e3f5c2c5ae2ae55349ae7bd6c83e2756679fbe17 run #0: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock run #1: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #2: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #3: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #4: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in __rt_mutex_slowlock, types: [ATOMIC_SLEEP] kconfig minimization: base=4920 full=6159 leaves diff=244 split chunks (needed=false): <244> split chunk #0 of len 244 into 5 parts testing without sub-chunk 1/5 testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: ae08ef05436cb1f7985101a8681b8f85c09b1e6556e086be10f3743b070f931d run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock run #2: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock run #3: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] testing without sub-chunk 2/5 testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 26c0b7e388ab010ed156c54e171c635ae304d8ccfd33c462723d0bb376a0ead8 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #2: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #3: OK run #4: OK run #5: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] testing without sub-chunk 3/5 testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 3f5078671ba1a5aa9b8bbb5aeb1ed64b3d6f975061dd5f788fe7786dc45323d5 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #2: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] testing without sub-chunk 4/5 testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: af1cafb6dc8bb6e33f8caccd3bbddb31da185763261075f0ab00aee3215dd227 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] testing without sub-chunk 5/5 testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 6ef0872325b9d265898caaa67c3e123a49a21a22e31edcd14814edb24c732996 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #2: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #3: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #4: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #5: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock run #6: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #7: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #8: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #9: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #10: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] the chunk can be dropped minimized to 196 configs; suspects: [ARCH_HAS_CPU_FINALIZE_INIT BLK_DEV_INITRD CFG80211 CFG80211_REQUIRE_SIGNED_REGDB CFG80211_USE_KERNEL_REGDB_KEYS DEBUG_INFO_BTF DEBUG_INFO_BTF_MODULES DRAGONRISE_FF DRM DRM_BRIDGE DRM_GEM_SHMEM_HELPER DRM_KMS_HELPER DRM_PANEL DRM_PANEL_BRIDGE DRM_PANEL_ORIENTATION_QUIRKS DRM_TTM DRM_VIRTIO_GPU DUMMY_CONSOLE DVB_CORE FB FB_CMDLINE FB_DEFERRED_IO FB_NOTIFY FB_SYS_COPYAREA FB_SYS_FILLRECT FB_SYS_FOPS FB_SYS_IMAGEBLIT GPIOLIB_IRQCHIP GREENASIA_FF HDMI HID_A4TECH HID_ACRUX HID_ACRUX_FF HID_APPLEIR HID_AUREAL HID_BELKIN HID_BETOP_FF HID_CHERRY HID_CHICONY HID_CP2112 HID_CYPRESS HID_DRAGONRISE HID_ELO HID_EMS_FF HID_EZKEY HID_GREENASIA HID_GT683R HID_GYRATION HID_HOLTEK HID_ICADE HID_ITE HID_KENSINGTON HID_KEYTOUCH HID_KYE HID_LCPOWER HID_LED HID_LENOVO HID_MONTEREY HID_NTI HID_NTRIG HID_ORTEK HID_PANTHERLORD HID_PENMOUNT HID_PETALYNX HID_PICOLCD_FB HID_PICOLCD_LEDS HID_PID HID_PRIMAX HID_PRODIKEYS HID_RMI HID_SAITEK HID_SAMSUNG HID_SENSOR_CUSTOM_SENSOR HID_SENSOR_HUB HID_SMARTJOYPLUS HID_SPEEDLINK HID_STEELSERIES HID_SUNPLUS HID_THINGM HID_THRUSTMASTER HID_TIVO HID_TOPSEED HID_TWINHAN HID_WALTOP HID_XINMO HID_ZYDACRON HOLTEK_FF HOTPLUG_PCI HWMON HW_CONSOLE I2C_MUX INPUT_JOYSTICK INPUT_LEDS INPUT_MOUSE INPUT_TABLET INPUT_TOUCHSCREEN INTEGRITY INTEGRITY_AUDIT JOYSTICK_XPAD JOYSTICK_XPAD_FF JOYSTICK_XPAD_LEDS KCOV KCOV_ENABLE_COMPARISONS KCOV_INSTRUMENT_ALL LCD_CLASS_DEVICE LOCALVERSION_AUTO LOGIG940_FF LOGIRUMBLEPAD2_FF LOGITECH_FF LOGIWHEELS_FF MEDIA_ANALOG_TV_SUPPORT MEDIA_ATTACH MEDIA_DIGITAL_TV_SUPPORT MEDIA_RADIO_SUPPORT MEDIA_TUNER MFD_CORE NETFILTER_FAMILY_BRIDGE NET_DEVLINK NOP_USB_XCEIV PAHOLE_HAS_SPLIT_BTF PANTHERLORD_FF RADIO_ADAPTERS REGMAP_SPI RESET_CONTROLLER RFKILL RFKILL_LEDS RMI4_2D_SENSOR RMI4_CORE RMI4_F03 RMI4_F03_SERIO RMI4_F11 RMI4_F12 RMI4_F30 SMARTJOYPLUS_FF SMSC_PHY SND SND_COMPRESS_OFFLOAD SND_CTL_FAST_LOOKUP SND_DMAENGINE_PCM SND_DMA_SGBUF SND_DYNAMIC_MINORS SND_HRTIMER SND_HWDEP SND_INTEL_DSP_CONFIG SND_INTEL_SOUNDWIRE_ACPI SND_PCI SND_PCM SND_PCM_TIMER SND_PROC_FS SND_RAWMIDI SND_SOC SND_SOC_ACPI SND_SOC_ACPI_INTEL_MATCH SND_SOC_COMPRESS SND_SOC_GENERIC_DMAENGINE_PCM SND_SOC_I2C_AND_SPI SND_SOC_INTEL_MACH SND_SOC_INTEL_SST_TOPLEVEL SND_SOC_TOPOLOGY SND_SPI SND_SST_ATOM_HIFI2_PLATFORM SND_SST_ATOM_HIFI2_PLATFORM_ACPI SND_TIMER SND_USB SND_USB_AUDIO SND_USB_AUDIO_USE_MEDIA_CONTROLLER SND_X86 SOUND TABLET_USB_ACECAD TABLET_USB_AIPTEK TABLET_USB_HANWANG TABLET_USB_KBTAB THRUSTMASTER_FF TYPEC_FUSB302 USB_ARMLINUX USB_BELKIN USB_CONFIGFS USB_CONFIGFS_ACM USB_CONFIGFS_ECM USB_CONFIGFS_ECM_SUBSET USB_CONFIGFS_EEM USB_CONFIGFS_F_ACC USB_CONFIGFS_F_AUDIO_SRC USB_CONFIGFS_F_FS USB_CONFIGFS_F_HID USB_CONFIGFS_F_LB_SS USB_CONFIGFS_F_MIDI USB_CONFIGFS_F_PRINTER USB_CONFIGFS_F_UAC1 USB_CONFIGFS_F_UAC1_LEGACY USB_CONFIGFS_F_UAC2 USB_CONFIGFS_F_UVC USB_CONFIGFS_MASS_STORAGE USB_CONFIGFS_NCM USB_CONFIGFS_OBEX USB_CONFIGFS_RNDIS USB_CONFIGFS_SERIAL USB_CONFIGFS_UEVENT USB_EHSET_TEST_FIXTURE USB_F_ACC USB_F_ACM USB_F_AUDIO_SRC USB_F_ECM USB_F_EEM USB_F_FS USB_F_HID USB_F_MASS_STORAGE USB_F_MIDI USB_F_NCM USB_F_OBEX USB_F_PRINTER USB_F_RNDIS USB_F_SERIAL USB_F_SS_LB USB_F_SUBSET USB_F_UAC1 USB_F_UAC1_LEGACY USB_F_UAC2 USB_F_UVC USB_GADGET_DEBUG_FILES USB_GADGET_DEBUG_FS USB_IPHETH USB_ISP1760 USB_ISP1760_HCD USB_ISP1760_HOST_ROLE USB_LIBCOMPOSITE USB_LINK_LAYER_TEST USB_MON USB_NET_CDC_MBIM USB_NET_CDC_SUBSET VT WIRELESS] testing current HEAD 79bd336c7a94039e3d325195b978a04f3b89d2f3 testing commit 79bd336c7a94039e3d325195b978a04f3b89d2f3 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 7beb4dc60e99e8b9ad40b02488f0008413ad8c3a561e66a25cc25a68cd565610 all runs: OK false negative chance: 0.000 # git bisect start 79bd336c7a94039e3d325195b978a04f3b89d2f3 993bed180178156a70afdafe8aaf23a117107352 Bisecting: 330 revisions left to test after this (roughly 8 steps) [e2aaab6fcb16cfe62c2cc65f24344d13bac9400b] usb: host: xhci-plat: Add support for XHCI_SG_TRB_CACHE_SIZE_QUIRK determine whether the revision contains the guilty commit checking the merge base 6139f2a02fe0ac7a08389b4eb786e0c659039ddd no existing result, test the revision testing commit 6139f2a02fe0ac7a08389b4eb786e0c659039ddd gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 13b3daad66d3abe1d6a445a1c544b67a4b6cb1a828f59ee945b9ca4c1f599298 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock_locked run #2: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock_locked run #3: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #4: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] testing commit e2aaab6fcb16cfe62c2cc65f24344d13bac9400b gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 52ddbc129660fdc62db29414735a2ca2ae591e1d8a3111687e2c420c4f08ace2 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock_locked run #2: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #3: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] # git bisect good e2aaab6fcb16cfe62c2cc65f24344d13bac9400b Bisecting: 165 revisions left to test after this (roughly 7 steps) [b4c13deff35929ff568bbb993b4a86f4961709e6] ahci: add 43-bit DMA address quirk for ASMedia ASM1061 controllers determine whether the revision contains the guilty commit revision 6139f2a02fe0ac7a08389b4eb786e0c659039ddd crashed and is reachable testing commit b4c13deff35929ff568bbb993b4a86f4961709e6 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: f06172407c2934a0a16d32817c093bc719e7204bcf76af4ccd76693bd6f95206 all runs: OK false negative chance: 0.000 # git bisect bad b4c13deff35929ff568bbb993b4a86f4961709e6 Bisecting: 82 revisions left to test after this (roughly 6 steps) [99fa6d451d989fbefc615e12c76710922390bb1c] net: ethernet: ti: cpsw_new: enable mac_managed_pm to fix mdio determine whether the revision contains the guilty commit revision 6139f2a02fe0ac7a08389b4eb786e0c659039ddd crashed and is reachable testing commit 99fa6d451d989fbefc615e12c76710922390bb1c gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 902179e7547cfb1422a9fc9c4c66adfc31243258ae8f1b88604beefa5855ed87 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] # git bisect good 99fa6d451d989fbefc615e12c76710922390bb1c Bisecting: 41 revisions left to test after this (roughly 5 steps) [8fa90634ec3e9cc50f42dd605eec60f2d146ced8] nilfs2: fix potential bug in end_buffer_async_write determine whether the revision contains the guilty commit revision 99fa6d451d989fbefc615e12c76710922390bb1c crashed and is reachable testing commit 8fa90634ec3e9cc50f42dd605eec60f2d146ced8 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: cd0290cca50931990efce1d01a9a15da23d15b83e4d430e16ae294f7e7d34091 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] # git bisect good 8fa90634ec3e9cc50f42dd605eec60f2d146ced8 Bisecting: 20 revisions left to test after this (roughly 4 steps) [ee0fb9baa7a4fc50ea710565da6f7a3139f5b3eb] smb: client: fix parsing of SMB3.1.1 POSIX create context determine whether the revision contains the guilty commit revision 6139f2a02fe0ac7a08389b4eb786e0c659039ddd crashed and is reachable testing commit ee0fb9baa7a4fc50ea710565da6f7a3139f5b3eb gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: c5419c974cd643dba0b3d21ef8adbd0b032455c69fc678da6c0939d2e5923934 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #2: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock_locked run #3: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #4: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #5: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock_locked run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] # git bisect good ee0fb9baa7a4fc50ea710565da6f7a3139f5b3eb Bisecting: 10 revisions left to test after this (roughly 3 steps) [5295b5f2e5614bdaccb3eea1d1a73af8a8618877] sched/rt: Fix sysctl_sched_rr_timeslice intial value determine whether the revision contains the guilty commit revision ee0fb9baa7a4fc50ea710565da6f7a3139f5b3eb crashed and is reachable testing commit 5295b5f2e5614bdaccb3eea1d1a73af8a8618877 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 817108f547b6cd42b40e9dae317c750862c59fd5508bea09edef538a411696b3 all runs: OK false negative chance: 0.045 # git bisect bad 5295b5f2e5614bdaccb3eea1d1a73af8a8618877 Bisecting: 4 revisions left to test after this (roughly 2 steps) [4b349c55bbd33c8918dbac13876d6842af571505] bpf: Do cleanup in bpf_bprintf_cleanup only when needed determine whether the revision contains the guilty commit revision 6139f2a02fe0ac7a08389b4eb786e0c659039ddd crashed and is reachable testing commit 4b349c55bbd33c8918dbac13876d6842af571505 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 0112365249f76a998ca2d117ec9e33735056a481241a65158338b3cc2633d914 all runs: OK false negative chance: 0.045 # git bisect bad 4b349c55bbd33c8918dbac13876d6842af571505 Bisecting: 2 revisions left to test after this (roughly 1 step) [ab2e127896a2432e2b0d02ea48e1c7e57278a5aa] PCI: dwc: Fix a 64bit bug in dw_pcie_ep_raise_msix_irq() determine whether the revision contains the guilty commit revision ee0fb9baa7a4fc50ea710565da6f7a3139f5b3eb crashed and is reachable testing commit ab2e127896a2432e2b0d02ea48e1c7e57278a5aa gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: a1998af98b4a4e0cee7c3b5ea644ea6520ffe021d69f17cab1ca6dcd41162bf1 run #0: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock_locked run #1: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #2: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #3: crashed: BUG: scheduling while atomic in __rt_mutex_slowlock_locked run #4: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #5: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #6: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in __rt_mutex_slowlock_locked, types: [ATOMIC_SLEEP] # git bisect good ab2e127896a2432e2b0d02ea48e1c7e57278a5aa Bisecting: 0 revisions left to test after this (roughly 1 step) [bcbaeb081ad846ae7f824ecf2df3d21de17608ea] bpf: Add struct for bin_args arg in bpf_bprintf_prepare determine whether the revision contains the guilty commit revision 6139f2a02fe0ac7a08389b4eb786e0c659039ddd crashed and is reachable testing commit bcbaeb081ad846ae7f824ecf2df3d21de17608ea gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 8c2034de6acc629e263769fa352812dab164e42c36686c59998abc0362e259a0 run #0: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #1: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #2: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #3: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #4: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #5: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #6: crashed: BUG: scheduling while atomic in rcu_boost_kthread run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: scheduling while atomic in rcu_boost_kthread, types: [ATOMIC_SLEEP] # git bisect good bcbaeb081ad846ae7f824ecf2df3d21de17608ea 4b349c55bbd33c8918dbac13876d6842af571505 is the first bad commit commit 4b349c55bbd33c8918dbac13876d6842af571505 Author: Jiri Olsa Date: Sat Feb 17 09:13:20 2024 -0300 bpf: Do cleanup in bpf_bprintf_cleanup only when needed commit f19a4050455aad847fb93f18dc1fe502eb60f989 upstream. Currently we always cleanup/decrement bpf_bprintf_nest_level variable in bpf_bprintf_cleanup if it's > 0. There's possible scenario where this could cause a problem, when bpf_bprintf_prepare does not get bin_args buffer (because num_args is 0) and following bpf_bprintf_cleanup call decrements bpf_bprintf_nest_level variable, like: in task context: bpf_bprintf_prepare(num_args != 0) increments 'bpf_bprintf_nest_level = 1' -> first irq : bpf_bprintf_prepare(num_args == 0) bpf_bprintf_cleanup decrements 'bpf_bprintf_nest_level = 0' -> second irq: bpf_bprintf_prepare(num_args != 0) bpf_bprintf_nest_level = 1 gets same buffer as task context above Adding check to bpf_bprintf_cleanup and doing the real cleanup only if we got bin_args data in the first place. Signed-off-by: Jiri Olsa Signed-off-by: Daniel Borkmann Acked-by: Yonghong Song Link: https://lore.kernel.org/bpf/20221215214430.1336195-3-jolsa@kernel.org [cascardo: there is no bpf_trace_vprintk in 5.15] Signed-off-by: Thadeu Lima de Souza Cascardo Signed-off-by: Greg Kroah-Hartman include/linux/bpf.h | 2 +- kernel/bpf/helpers.c | 16 +++++++++------- kernel/trace/bpf_trace.c | 4 ++-- 3 files changed, 12 insertions(+), 10 deletions(-) accumulated error probability: 0.09 culprit signature: 0112365249f76a998ca2d117ec9e33735056a481241a65158338b3cc2633d914 parent signature: 8c2034de6acc629e263769fa352812dab164e42c36686c59998abc0362e259a0 reproducer is flaky (0.14 repro chance estimate) revisions tested: 18, total time: 4h9m53.86128124s (build: 1h22m54.93907456s, test: 2h43m25.250894617s) first good commit: 4b349c55bbd33c8918dbac13876d6842af571505 bpf: Do cleanup in bpf_bprintf_cleanup only when needed recipients (to): ["cascardo@igalia.com" "daniel@iogearbox.net" "gregkh@linuxfoundation.org" "jolsa@kernel.org" "yhs@fb.com"] recipients (cc): []