5.7RC1 BUG: kernel NULL pointer dereference, address: 00000000000007a0 [mod_zone_page_state+0x5/0x70]

From: Mikhail Gavrilov
Date: Wed Apr 22 2020 - 15:11:22 EST


Today I caught another Oops: 0000 [#1] SMP NOPTI BUG.
It happened two minutes later after gnome-shell run out of memory and crashes.
(gnome-shell[931475]: JS ERROR: out of memory)
so it not surprised to me because I use
vm.overcommit_memory = 2 and vm.overcommit_ratio = 100
and today it happened the second time.
What really surprised it (BUG: kernel NULL pointer dereference,
address: 00000000000007a0) message in the kernel log.
I have not expected it so I am here and write bug report.
Maybe someone already encountered such Oops or it something new?

BUG: kernel NULL pointer dereference, address: 00000000000007a0
#PF: supervisor read access in kernel mode
#PF: error_code(0x0000) - not-present page
PGD 0 P4D 0
Oops: 0000 [#1] SMP NOPTI
CPU: 5 PID: 2118304 Comm: kworker/5:0 Tainted: G W
--------- --- 5.7.0-0.rc1.20200416git9786cab67457.1.2.fc33.x86_64 #1
Hardware name: System manufacturer System Product Name/ROG STRIX
X570-I GAMING, BIOS 1405 11/19/2019
Workqueue: 0x0 (events)
RIP: 0010:mod_zone_page_state+0x5/0x70
Code: 04 f5 80 07 a1 b0 65 44 88 09 c3 48 c7 c6 e8 13 38 b0 e8 2e 45
01 00 0f 0b 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 <4c> 8b
57 60 41 89 f3 49 89 f9 49 89 d0 4b 8d 4c 1a 4f 65 41 8a 42
RSP: 0018:ffffb6e5604d7df0 EFLAGS: 00010202
RAX: 0000000000000333 RBX: 0000000000000008 RCX: 0000000000000000
RDX: fffffffffffffffc RSI: 0000000000000009 RDI: 0000000000000740
RBP: fffffffffffffffc R08: ffff9330ddf37840 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff932bab905000
R13: ffff932d6e780000 R14: 0000000000000000 R15: 0000000000000080
FS: 0000000000000000(0000) GS:ffff93327aa00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000178 CR3: 000000003ca12000 CR4: 00000000003406e0
Call Trace:
account_kernel_stack+0x6e/0x130
put_task_stack+0x37/0x90
finish_task_switch+0x236/0x2b0
__schedule+0x346/0xa30
schedule+0x5f/0xd0
worker_thread+0xd2/0x3d0
? process_one_work+0x5c0/0x5c0
kthread+0x131/0x150
? __kthread_bind_mask+0x60/0x60
ret_from_fork+0x27/0x50
Modules linked in: crypto_user overlay netconsole snd_seq_dummy
snd_hrtimer hid_logitech_hidpp hid_logitech_dj uinput rfcomm
xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT nf_nat_tftp
nf_conntrack_tftp tun nft_objref nf_conntrack_netbios_ns
nf_conntrack_broadcast nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib
nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct
nft_chain_nat ip6table_nat ip6table_mangle ip6table_raw
ip6table_security iptable_nat nf_nat nf_conntrack nf_defrag_ipv6
nf_defrag_ipv4 libcrc32c iptable_mangle iptable_raw iptable_security
ip_set nf_tables nfnetlink ip6table_filter ip6_tables iptable_filter
cmac bnep sunrpc vfat fat joydev edac_mce_amd kvm_amd gspca_zc3xx
gspca_main kvm irqbypass crct10dif_pclmul crc32_pclmul
ghash_clmulni_intel eeepc_wmi asus_wmi btusb sparse_keymap video btrtl
wmi_bmof btbcm btintel uvcvideo bluetooth videobuf2_vmalloc
videobuf2_memops snd_usb_audio videobuf2_v4l2 videobuf2_common
snd_usbmidi_lib videodev ecdh_generic
snd_rawmidi ecc mc pcspkr iwlmvm sp5100_tco k10temp i2c_piix4
mac80211 snd_hda_codec_realtek snd_hda_codec_generic ledtrig_audio
snd_hda_codec_hdmi libarc4 snd_hda_intel snd_intel_dspcfg iwlwifi
snd_hda_codec snd_hda_core cfg80211 snd_hwdep snd_seq snd_seq_device
snd_pcm rfkill snd_timer snd ccp soundcore acpi_cpufreq binfmt_misc
ip_tables amdgpu amd_iommu_v2 gpu_sched ttm drm_kms_helper drm
crc32c_intel igb nvme nvme_core dca i2c_algo_bit wmi pinctrl_amd
br_netfilter bridge stp llc fuse
CR2: 00000000000007a0
---[ end trace 8d2fde8ea9fbdd7d ]---

Full system log here: https://pastebin.com/D3FveMH5

faddr2line said that it happened somewhere in MM subsystem, but as far
as I know, the culprit may be in a completely different place.

So I politely add mm list please do not swear if this does not apply to you.

$ /usr/src/kernels/`uname -r`/scripts/faddr2line
/lib/debug/lib/modules/5.7.0-0.rc1.20200416git9786cab67457.1.2.fc33.x86_64/vmlinux
mod_zone_page_state+0x5
mod_zone_page_state+0x5/0x70:
mod_zone_state at mm/vmstat.c:483
(inlined by) mod_zone_page_state at mm/vmstat.c:521



--
Best Regards,
Mike Gavrilov.