bisecting cause commit starting from c85fb28b6f999db9928b841f63f1beeb3074eeca
building syzkaller on 1880b4a9f394370a7d1fcb5c1cfca0fa1127b463
testing commit c85fb28b6f999db9928b841f63f1beeb3074eeca with gcc (GCC) 8.1.0
kernel signature: ec5c858e1407cd073c1b22f0912b8cdc9c1eec3c8d4526f1cf27468f1fde0703
all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in utf8_casefold
testing release v5.8
testing commit bcf876870b95592b52519ed4aafcf9d95999bc9c with gcc (GCC) 8.1.0
kernel signature: 4fd9e8f4161fa8131c1e593ee6fc5a72f7a5430eba74771be53ca598d42a23cf
all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in utf8_casefold
testing release v5.7
testing commit 3d77e6a8804abcc0504c904bd6e5cdf3a5cf8162 with gcc (GCC) 8.1.0
kernel signature: 5c5190a3e077dc5f14f3e84bb26e735dc032633ef97a6828fe4d6e8461eb9e5b
all runs: crashed: general protection fault in utf8_casefold
testing release v5.6
testing commit 7111951b8d4973bda27ff663f2cf18b663d15b48 with gcc (GCC) 8.1.0
kernel signature: e89e1d4af02bc10a924f237ee64873dd2fb967b59c4bcf84bc3402ebaaa918aa
all runs: crashed: general protection fault in utf8_casefold
testing release v5.5
testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 with gcc (GCC) 8.1.0
kernel signature: 81924604c86c618cdaf61a9e942ea9f8c56894f675fe3fe9c3b521eb3d59ada9
all runs: crashed: general protection fault in utf8_casefold
testing release v5.4
testing commit 219d54332a09e8d8741c1e1982f5eae56099de85 with gcc (GCC) 8.1.0
kernel signature: bc58c003e84997c4946cfa18276efc84eee359568ac8a24f3751dc69cadbdfa5
all runs: crashed: general protection fault in utf8_casefold
testing release v5.3
testing commit 4d856f72c10ecb060868ed10ff1b1453943fc6c8 with gcc (GCC) 8.1.0
kernel signature: 726ef19a32c1b5753a174a5b35086221f33087935b405deef5733b815b9e2204
all runs: OK
# git bisect start 219d54332a09e8d8741c1e1982f5eae56099de85 4d856f72c10ecb060868ed10ff1b1453943fc6c8
Bisecting: 7882 revisions left to test after this (roughly 13 steps)
[a9f8b38a071b468276a243ea3ea5a0636e848cf2] Merge tag 'for-linus-5.4-1' of git://github.com/cminyard/linux-ipmi
testing commit a9f8b38a071b468276a243ea3ea5a0636e848cf2 with gcc (GCC) 8.1.0
kernel signature: ab195a6c470f0d8872a0e7ee559b5b01402a9ba1122f39c64ca7d9f6817c83be
all runs: OK
# git bisect good a9f8b38a071b468276a243ea3ea5a0636e848cf2
Bisecting: 3941 revisions left to test after this (roughly 12 steps)
[0a3775e4f883912944481cf2ef36eb6383a9cc74] ocfs2: wait for recovering done after direct unlock request
testing commit 0a3775e4f883912944481cf2ef36eb6383a9cc74 with gcc (GCC) 8.1.0
kernel signature: 3b3566b85d9605edb65f4294bc347afc185d633ec0f470d31ffbcc434d2b1a10
all runs: crashed: general protection fault in utf8_casefold
# git bisect bad 0a3775e4f883912944481cf2ef36eb6383a9cc74
Bisecting: 1927 revisions left to test after this (roughly 11 steps)
[578d2342ec702e5fb8a77983fabb3754ae3e9660] Merge tag 'drm-next-5.4-2019-08-23' of git://people.freedesktop.org/~agd5f/linux into drm-next
testing commit 578d2342ec702e5fb8a77983fabb3754ae3e9660 with gcc (GCC) 8.1.0
kernel signature: 4cbf8370fb2682452d87f50242991bcebf4c06d7bb6952c20f7c2bb271653da4
run #0: crashed: WARNING in __blkdev_put
run #1: crashed: WARNING in __blkdev_put
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 578d2342ec702e5fb8a77983fabb3754ae3e9660
Bisecting: 1230 revisions left to test after this (roughly 10 steps)
[b0383c0653c4bd2d2732c5767ec8fa223b3d6efd] Merge tag 'drm-misc-next-2019-08-08' of git://anongit.freedesktop.org/drm/drm-misc into drm-next
testing commit b0383c0653c4bd2d2732c5767ec8fa223b3d6efd with gcc (GCC) 8.1.0
kernel signature: abf0eec3c515031ff252f834c1f20d91f8a4596425655a542148ba5f69c94ce9
all runs: OK
# git bisect good b0383c0653c4bd2d2732c5767ec8fa223b3d6efd
Bisecting: 615 revisions left to test after this (roughly 9 steps)
[108b4d928c032b6fc3b9b10197154ee35d59961d] drm/amd/amdgpu: Update VM function pointer
testing commit 108b4d928c032b6fc3b9b10197154ee35d59961d with gcc (GCC) 8.1.0
kernel signature: deca5956032df780714a700299caaa0a8de5428318c9228a97bd20a0cf042737
run #0: OK
run #1: OK
run #2: OK
run #3: OK
run #4: crashed: WARNING in __blkdev_put
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 108b4d928c032b6fc3b9b10197154ee35d59961d
Bisecting: 307 revisions left to test after this (roughly 8 steps)
[649412069501c1710f42ad50ab420e2fd5eaea70] drm/amdgpu: fix error handling in amdgpu_cs_process_fence_dep
testing commit 649412069501c1710f42ad50ab420e2fd5eaea70 with gcc (GCC) 8.1.0
kernel signature: d99fc41716fb825e25513ea0ce362fbd5b9909594645ac45c4739e514c95ada5
all runs: OK
# git bisect good 649412069501c1710f42ad50ab420e2fd5eaea70
Bisecting: 153 revisions left to test after this (roughly 7 steps)
[3cf7bf2e4837fa1836f09b751e6130473a69fd11] drm/amdgpu: enable Navi12 kfd support for amdgpu
testing commit 3cf7bf2e4837fa1836f09b751e6130473a69fd11 with gcc (GCC) 8.1.0
kernel signature: 5e6ae5a4948525f152bdea79d481393d453d4958fac13b85cb03848933da0515
all runs: OK
# git bisect good 3cf7bf2e4837fa1836f09b751e6130473a69fd11
Bisecting: 76 revisions left to test after this (roughly 6 steps)
[0c6b391d68be81bbf54bc326e5b6c7a18740067b] drm/amdgpu: enable Doorbell support for Renoir (v2)
testing commit 0c6b391d68be81bbf54bc326e5b6c7a18740067b with gcc (GCC) 8.1.0
kernel signature: 86b7baeba15ae6a057190a9cdf13e94b61de20505e07f152d5f9fd6c8726843b
all runs: OK
# git bisect good 0c6b391d68be81bbf54bc326e5b6c7a18740067b
Bisecting: 38 revisions left to test after this (roughly 5 steps)
[39bdac36cc139dfaf4ff324250319b79c6c224b8] drm/amd/display: fix dcn-specific clk_mgr init_clocks
testing commit 39bdac36cc139dfaf4ff324250319b79c6c224b8 with gcc (GCC) 8.1.0
kernel signature: 746e660efa7dfbfc280a98e0557e51ff54e64882bdcfd7b5e260cd31ef1bef95
run #0: crashed: WARNING in __blkdev_put
run #1: crashed: WARNING in __blkdev_put
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 39bdac36cc139dfaf4ff324250319b79c6c224b8
Bisecting: 18 revisions left to test after this (roughly 4 steps)
[dec4f1377c2c8556ce0512cb3ad8c6963313c0da] drm/amdgpu/powerplay: fix spelling mistake "unsuported" -> "unsupported"
testing commit dec4f1377c2c8556ce0512cb3ad8c6963313c0da with gcc (GCC) 8.1.0
kernel signature: 8708b9b2d1b1a94d9973b4ab5f9ef7343d2e1f4bb537c824860658118aa87967
all runs: OK
# git bisect good dec4f1377c2c8556ce0512cb3ad8c6963313c0da
Bisecting: 9 revisions left to test after this (roughly 3 steps)
[1ee299b9ee14579e6464229854ce30edd076c0ec] drm/amd/display: Add 22, 24, and 26 degamma
testing commit 1ee299b9ee14579e6464229854ce30edd076c0ec with gcc (GCC) 8.1.0
kernel signature: fb1f729ea25a213ab67abede178729c28109824a42245e1de631a8b0dbd6966a
all runs: OK
# git bisect good 1ee299b9ee14579e6464229854ce30edd076c0ec
Bisecting: 4 revisions left to test after this (roughly 2 steps)
[37495fbdf12d1bce30dbc228c901ef45eba35739] drm/amd/display: Add work-around option to skip DCN20 clock updates
testing commit 37495fbdf12d1bce30dbc228c901ef45eba35739 with gcc (GCC) 8.1.0
kernel signature: 5693e6c7f6b0d66803b6e2cb42d847370eb4bbc5ef06e8bbecc0202cd67bce46
all runs: OK
# git bisect good 37495fbdf12d1bce30dbc228c901ef45eba35739
Bisecting: 2 revisions left to test after this (roughly 1 step)
[986936d1a9b29bd40be2acdf91d9e99ecda3bf33] drm/amd/display: wait for pending complete when enabling a plane
testing commit 986936d1a9b29bd40be2acdf91d9e99ecda3bf33 with gcc (GCC) 8.1.0
kernel signature: 5ac531b50ca6ca88c5eb90a719dbccc16081d1b65f812b6e1619a5bf498f36d4
run #0: crashed: WARNING in __blkdev_put
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 986936d1a9b29bd40be2acdf91d9e99ecda3bf33
Bisecting: 0 revisions left to test after this (roughly 0 steps)
[91db9311945f01901ddb9813ce11364de214a156] drm/amd/display: refactor gpio to allocate hw_container in constructor
testing commit 91db9311945f01901ddb9813ce11364de214a156 with gcc (GCC) 8.1.0
kernel signature: 7e8606c3d90ca678c1a07dc055b59dfa5a1480a25ebae57627d5e187cd1f32b1
run #0: crashed: WARNING in __blkdev_put
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 91db9311945f01901ddb9813ce11364de214a156
91db9311945f01901ddb9813ce11364de214a156 is the first bad commit
commit 91db9311945f01901ddb9813ce11364de214a156
Author: Su Sung Chung <Su.Chung@amd.com>
Date:   Mon Jul 8 11:31:39 2019 -0400

    drm/amd/display: refactor gpio to allocate hw_container in constructor
    
    [why]
    if dynamic allocation fails during gpio_open, it will cause crash due to
    page fault.
    
    [how]
    handle allocation when gpio object gets created and prevent from calling
    gpio_open if allocation failed
    
    Signed-off-by: Su Sung Chung <Su.Chung@amd.com>
    Reviewed-by: Jun Lei <Jun.Lei@amd.com>
    Acked-by: Leo Li <sunpeng.li@amd.com>
    Signed-off-by: Alex Deucher <alexander.deucher@amd.com>

 .../amd/display/dc/gpio/dce110/hw_factory_dce110.c | 18 ++++--
 .../amd/display/dc/gpio/dce120/hw_factory_dce120.c | 14 ++--
 .../amd/display/dc/gpio/dce80/hw_factory_dce80.c   | 14 ++--
 .../amd/display/dc/gpio/dcn10/hw_factory_dcn10.c   | 12 ++--
 .../amd/display/dc/gpio/dcn20/hw_factory_dcn20.c   | 12 ++--
 .../display/dc/gpio/diagnostics/hw_factory_diag.c  |  9 +--
 drivers/gpu/drm/amd/display/dc/gpio/gpio_base.c    | 74 +++++++++++++++++++++-
 drivers/gpu/drm/amd/display/dc/gpio/gpio_service.c | 51 +++++++--------
 drivers/gpu/drm/amd/display/dc/gpio/gpio_service.h |  6 +-
 drivers/gpu/drm/amd/display/dc/gpio/hw_ddc.c       | 26 +++++---
 drivers/gpu/drm/amd/display/dc/gpio/hw_ddc.h       |  5 +-
 drivers/gpu/drm/amd/display/dc/gpio/hw_factory.h   | 48 +++++++-------
 drivers/gpu/drm/amd/display/dc/gpio/hw_generic.c   | 32 ++++++----
 drivers/gpu/drm/amd/display/dc/gpio/hw_generic.h   |  6 +-
 drivers/gpu/drm/amd/display/dc/gpio/hw_hpd.c       | 31 +++++----
 drivers/gpu/drm/amd/display/dc/gpio/hw_hpd.h       |  5 +-
 drivers/gpu/drm/amd/display/dc/inc/hw/gpio.h       | 10 +++
 .../gpu/drm/amd/display/include/gpio_interface.h   |  9 +++
 18 files changed, 245 insertions(+), 137 deletions(-)
culprit signature: 7e8606c3d90ca678c1a07dc055b59dfa5a1480a25ebae57627d5e187cd1f32b1
parent  signature: 5693e6c7f6b0d66803b6e2cb42d847370eb4bbc5ef06e8bbecc0202cd67bce46
revisions tested: 21, total time: 5h7m47.898677148s (build: 2h21m19.706786949s, test: 2h43m59.589327751s)
first bad commit: 91db9311945f01901ddb9813ce11364de214a156 drm/amd/display: refactor gpio to allocate hw_container in constructor
recipients (to): ["alexander.deucher@amd.com" "jun.lei@amd.com" "su.chung@amd.com" "sunpeng.li@amd.com"]
recipients (cc): []
crash: WARNING in __blkdev_put
WARNING: CPU: 1 PID: 8475 at fs/block_dev.c:1899 __blkdev_put+0x597/0x700 fs/block_dev.c:1923
Kernel panic - not syncing: panic_on_warn set ...
CPU: 1 PID: 8475 Comm: systemd-udevd Not tainted 5.3.0-rc3-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x165/0x21a lib/dump_stack.c:113
 panic+0x223/0x4dc kernel/panic.c:219
 __warn.cold.7+0x1b/0x37 kernel/panic.c:576
 report_bug+0x1a4/0x200 lib/bug.c:186
 fixup_bug arch/x86/kernel/traps.c:179 [inline]
 do_error_trap+0x11b/0x200 arch/x86/kernel/traps.c:272
 do_invalid_op+0x36/0x40 arch/x86/kernel/traps.c:291
 invalid_op+0x23/0x30 arch/x86/entry/entry_64.S:1026
RIP: 0010:__blkdev_put+0x597/0x700 fs/block_dev.c:1899
Code: ff ff 8b b5 3c ff ff ff ba 01 00 00 00 4c 89 e7 e8 7e fa ff ff e9 c9 fd ff ff 48 c7 85 50 ff ff ff 08 00 00 00 e9 28 fc ff ff <0f> 0b e9 c6 fb ff ff e8 dd 3b a6 01 48 8b bd 40 ff ff ff e8 01 f8
RSP: 0018:ffff888074fbfcb0 EFLAGS: 00010202
RAX: 0000000000000000 RBX: 1ffff1100e9f7f9f RCX: 0000000000000000
RDX: 0000000000000002 RSI: 0000000000000008 RDI: ffff8880a54717a8
RBP: ffff888074fbfda0 R08: ffffed1014a8e2e4 R09: ffffed1014a8e2e4
R10: ffff888074fbfca0 R11: ffff8880a547171f R12: ffff8880a5471704
R13: 00000000080a005d R14: 00000000080a005d R15: ffff8880a5471700
 blkdev_put+0x73/0x480 fs/block_dev.c:1969
 blkdev_close+0x88/0xd0 fs/block_dev.c:1976
 __fput+0x25a/0x780 fs/file_table.c:280
 ____fput+0x9/0x10 fs/file_table.c:313
 task_work_run+0x108/0x180 kernel/task_work.c:113
 tracehook_notify_resume include/linux/tracehook.h:188 [inline]
 exit_to_usermode_loop+0x1f2/0x2e0 arch/x86/entry/common.c:163
 prepare_exit_to_usermode arch/x86/entry/common.c:194 [inline]
 syscall_return_slowpath arch/x86/entry/common.c:274 [inline]
 do_syscall_64+0x462/0x540 arch/x86/entry/common.c:299
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f4e120ab270
Code: 73 01 c3 48 8b 0d 38 7d 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 59 c1 20 00 00 75 10 b8 03 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 ee fb ff ff 48 89 04 24
RSP: 002b:00007ffe5df62c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000007 RCX: 00007f4e120ab270
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
RBP: 00007f4e12f64710 R08: 000055b91eaec140 R09: 000055b91eaebf00
R10: 00007f4e12f648c0 R11: 0000000000000246 R12: 0000000000000000
R13: 000055b91eb00ed0 R14: 0000000000000003 R15: 000000000000000e
Kernel Offset: disabled
Rebooting in 86400 seconds..