bisecting cause commit starting from 770fbb32d34e5d6298cc2be590c9d2fd6069aa17 building syzkaller on 749688d22abef3f3cb9a0480e15c19a3f2ed8e13 testing commit 770fbb32d34e5d6298cc2be590c9d2fd6069aa17 with gcc (GCC) 8.1.0 kernel signature: 2707afa0808e4a9019491ed7388e532aa476bfb234c5c01171f2cdc717e1bc19 run #0: crashed: WARNING in alloc_page_buffers run #1: crashed: WARNING in alloc_page_buffers run #2: crashed: WARNING in alloc_page_buffers run #3: crashed: WARNING in alloc_page_buffers run #4: crashed: WARNING in alloc_page_buffers run #5: crashed: WARNING in alloc_page_buffers run #6: crashed: WARNING in alloc_page_buffers run #7: crashed: WARNING in alloc_page_buffers run #8: crashed: WARNING in alloc_page_buffers run #9: OK testing release v5.5 testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 with gcc (GCC) 8.1.0 kernel signature: 5a7a91acc638f50d8d49ced0e4ed765975deb3fd15da8737c75301949b930d34 all runs: OK # git bisect start 770fbb32d34e5d6298cc2be590c9d2fd6069aa17 d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 Bisecting: 8851 revisions left to test after this (roughly 13 steps) [f8f0d0b6fa203bfa363d30f34f6fecce9e5cc2f7] mm: ptdump: reduce level numbers by 1 in note_page() testing commit f8f0d0b6fa203bfa363d30f34f6fecce9e5cc2f7 with gcc (GCC) 8.1.0 kernel signature: 72fa8fb4c1832de7c44bf5292fb60704479f9a57349c3b54608b6403d564bcba all runs: OK # git bisect good f8f0d0b6fa203bfa363d30f34f6fecce9e5cc2f7 Bisecting: 4440 revisions left to test after this (roughly 12 steps) [f3c8aeba659078b44a0a5080c3690ac07f2433bc] Merge remote-tracking branch 'sh/sh-next' testing commit f3c8aeba659078b44a0a5080c3690ac07f2433bc with gcc (GCC) 8.1.0 kernel signature: 267d7c9099e0a6151bacb224b339f957c68321d5f1c871364ebfc191ef54a114 all runs: OK # git bisect good f3c8aeba659078b44a0a5080c3690ac07f2433bc Bisecting: 2049 revisions left to test after this (roughly 11 steps) [37cc022471948f45fc5364e5fae43034281c9b31] Merge remote-tracking branch 'drm/drm-next' testing commit 37cc022471948f45fc5364e5fae43034281c9b31 with gcc (GCC) 8.1.0 kernel signature: 9e674b510d7727825502ec13b58d6542948cf46560eb741eeb6a07032e6e1f24 all runs: OK # git bisect good 37cc022471948f45fc5364e5fae43034281c9b31 Bisecting: 1091 revisions left to test after this (roughly 10 steps) [16ec05acd66e5c80698c2f5e50723e580d270b73] Merge remote-tracking branch 'edac/edac-for-next' testing commit 16ec05acd66e5c80698c2f5e50723e580d270b73 with gcc (GCC) 8.1.0 kernel signature: d8fc86c003d9100f7a89c1d189fb1357c68500d3c6e356e488bc0beba5392c22 all runs: OK # git bisect good 16ec05acd66e5c80698c2f5e50723e580d270b73 Bisecting: 543 revisions left to test after this (roughly 9 steps) [3a79df366d6fe0842cede099a5a0018e6dfbba3e] Merge remote-tracking branch 'staging/staging-next' testing commit 3a79df366d6fe0842cede099a5a0018e6dfbba3e with gcc (GCC) 8.1.0 kernel signature: 4e82d11358a28812c75edc21d42619e4830cc9fd6edc4c24ed799850078898cc all runs: OK # git bisect good 3a79df366d6fe0842cede099a5a0018e6dfbba3e Bisecting: 263 revisions left to test after this (roughly 8 steps) [e5a270da0559739b8843c023c9a00d4dc734498c] Merge remote-tracking branch 'livepatching/for-next' testing commit e5a270da0559739b8843c023c9a00d4dc734498c with gcc (GCC) 8.1.0 kernel signature: 4f4bc29991f3cf05cef697eebeec7175f47d683890f193e017947efc91bf46a9 all runs: OK # git bisect good e5a270da0559739b8843c023c9a00d4dc734498c Bisecting: 131 revisions left to test after this (roughly 7 steps) [69f9c7f07535c068ba118bf6b07dee8d0ecffa6d] lib/test_lockup: test module to generate lockups testing commit 69f9c7f07535c068ba118bf6b07dee8d0ecffa6d with gcc (GCC) 8.1.0 kernel signature: 8d6a472f2ed8cf29251257852dce9f211b829ab26d11b6d182efce2724587483 all runs: OK # git bisect good 69f9c7f07535c068ba118bf6b07dee8d0ecffa6d Bisecting: 65 revisions left to test after this (roughly 6 steps) [249f562d176bc651048bf7f07e490e031e30f469] Merge remote-tracking branch 'devfreq/devfreq-next' testing commit 249f562d176bc651048bf7f07e490e031e30f469 with gcc (GCC) 8.1.0 kernel signature: d27342c485d7aa4436c7985fd25bf092ff7a7915d4979b8f73ddacaf73713735 all runs: OK # git bisect good 249f562d176bc651048bf7f07e490e031e30f469 Bisecting: 32 revisions left to test after this (roughly 5 steps) [c9e1feb96bd90a4b51d440a015ba2f1c0562de59] loop: charge i/o to mem and blk cg testing commit c9e1feb96bd90a4b51d440a015ba2f1c0562de59 with gcc (GCC) 8.1.0 kernel signature: 65f955c87e56d71a8daa31d2593ab298682b58de663e1d7cd82c130faad74ad0 all runs: crashed: WARNING in alloc_page_buffers # git bisect bad c9e1feb96bd90a4b51d440a015ba2f1c0562de59 Bisecting: 16 revisions left to test after this (roughly 4 steps) [24dae0e8ef60f08b11046ec77981719a9e70b1b1] checkpatch: check SPDX tags in YAML files testing commit 24dae0e8ef60f08b11046ec77981719a9e70b1b1 with gcc (GCC) 8.1.0 kernel signature: 8b40d0e9357983ec3c8f05bdf4c3473acdc92f758ca67d39abeab5e36a444cdf all runs: OK # git bisect good 24dae0e8ef60f08b11046ec77981719a9e70b1b1 Bisecting: 8 revisions left to test after this (roughly 3 steps) [3066eb0bdbb165dc83d95b04f30a04ff639c020d] fs/binfmt_elf.c: delete "loc" variable testing commit 3066eb0bdbb165dc83d95b04f30a04ff639c020d with gcc (GCC) 8.1.0 kernel signature: 24b7aeab60248faead53ca49045dc5af2840e85b6f7de659205878997388d07a all runs: OK # git bisect good 3066eb0bdbb165dc83d95b04f30a04ff639c020d Bisecting: 4 revisions left to test after this (roughly 2 steps) [b3ec4e6372e378c428e508a08b69a44af54c3c8f] samples/hw_breakpoint: drop use of kallsyms_lookup_name() testing commit b3ec4e6372e378c428e508a08b69a44af54c3c8f with gcc (GCC) 8.1.0 kernel signature: 4ddbdfc35c04d0d5e1b084ff83a6b9bfb32cb68d7d35e56eea029080f30197f8 all runs: OK # git bisect good b3ec4e6372e378c428e508a08b69a44af54c3c8f Bisecting: 2 revisions left to test after this (roughly 1 step) [38422114414048cbcf86acc28d0ae2c9e445cdf9] init/main.c: mark boot_config_checksum static testing commit 38422114414048cbcf86acc28d0ae2c9e445cdf9 with gcc (GCC) 8.1.0 kernel signature: a6126e307629dca5a1d14064f38936e6b6f90d59eaa23e0506ea3bbd5020470d all runs: OK # git bisect good 38422114414048cbcf86acc28d0ae2c9e445cdf9 Bisecting: 0 revisions left to test after this (roughly 1 step) [e64cc074981343d74017f83fefabdfb1ea65d88c] mm: charge active memcg when no mm is set testing commit e64cc074981343d74017f83fefabdfb1ea65d88c with gcc (GCC) 8.1.0 kernel signature: 048e2e120c58fbd955883ccb5ef0c9de13bd2acb6a9f76d21a609154f57730cd all runs: OK # git bisect good e64cc074981343d74017f83fefabdfb1ea65d88c c9e1feb96bd90a4b51d440a015ba2f1c0562de59 is the first bad commit commit c9e1feb96bd90a4b51d440a015ba2f1c0562de59 Author: Dan Schatzberg Date: Tue Feb 25 15:14:08 2020 +1100 loop: charge i/o to mem and blk cg The current code only associates with the existing blkcg when aio is used to access the backing file. This patch covers all types of i/o to the backing file and also associates the memcg so if the backing file is on tmpfs, memory is charged appropriately. This patch also exports cgroup_get_e_css so it can be used by the loop module. Link: http://lkml.kernel.org/r/206afee596c3f30c05b31ae5fc8b7f5d58863dc0.1582581887.git.schatzberg.dan@gmail.com Signed-off-by: Dan Schatzberg Acked-by: Johannes Weiner Cc: Chris Down Cc: Hugh Dickins Cc: Jens Axboe Cc: Li Zefan Cc: Michal Hocko Cc: Roman Gushchin Cc: Shakeel Butt Cc: Tejun Heo Cc: Thomas Gleixner Cc: Vladimir Davydov Cc: Yang Shi Signed-off-by: Andrew Morton Signed-off-by: Stephen Rothwell drivers/block/loop.c | 59 +++++++++++++++++++++++++++++----------------- drivers/block/loop.h | 3 ++- include/linux/memcontrol.h | 6 +++++ kernel/cgroup/cgroup.c | 1 + 4 files changed, 47 insertions(+), 22 deletions(-) culprit signature: 65f955c87e56d71a8daa31d2593ab298682b58de663e1d7cd82c130faad74ad0 parent signature: 048e2e120c58fbd955883ccb5ef0c9de13bd2acb6a9f76d21a609154f57730cd revisions tested: 16, total time: 4h28m38.537035248s (build: 1h46m31.314906337s, test: 2h40m36.546505909s) first bad commit: c9e1feb96bd90a4b51d440a015ba2f1c0562de59 loop: charge i/o to mem and blk cg cc: ["akpm@linux-foundation.org" "hannes@cmpxchg.org" "schatzberg.dan@gmail.com" "sfr@canb.auug.org.au"] crash: WARNING in alloc_page_buffers ------------[ cut here ]------------ WARNING: CPU: 1 PID: 179 at include/linux/sched/mm.h:323 alloc_page_buffers+0x363/0x500 fs/buffer.c:887 Kernel panic - not syncing: panic_on_warn set ... CPU: 1 PID: 179 Comm: kworker/u4:3 Not tainted 5.6.0-rc3-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: loop0 loop_workfn Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x128/0x182 lib/dump_stack.c:118 panic+0x22a/0x4e3 kernel/panic.c:221 __warn.cold.10+0x25/0x26 kernel/panic.c:582 report_bug+0x1ad/0x270 lib/bug.c:195 fixup_bug arch/x86/kernel/traps.c:174 [inline] do_error_trap+0x123/0x210 arch/x86/kernel/traps.c:267 do_invalid_op+0x31/0x40 arch/x86/kernel/traps.c:286 invalid_op+0x23/0x30 arch/x86/entry/entry_64.S:1027 RIP: 0010:memalloc_use_memcg include/linux/sched/mm.h:323 [inline] RIP: 0010:alloc_page_buffers+0x363/0x500 fs/buffer.c:866 Code: e4 07 00 74 2c 4c 89 55 d0 e8 69 0b a6 ff 48 c7 c6 9e dc b0 81 48 c7 c7 80 56 ba 88 e8 c6 86 9f ff 4c 8b 55 d0 e9 f9 fe ff ff <0f> 0b e9 06 fd ff ff e8 21 62 a5 ff 4c 8b 55 d0 84 c0 75 c7 48 c7 RSP: 0018:ffffc900016e7378 EFLAGS: 00010286 RAX: dffffc0000000000 RBX: 0000000000001000 RCX: 1ffff110152fd51e RDX: 1ffff110152fd674 RSI: ffffffff88ba5680 RDI: ffff8880a97eb3a0 RBP: ffffc900016e73b8 R08: fffffbfff1334569 R09: fffffbfff1334569 R10: fffffbfff1334568 R11: ffffffff899a2b47 R12: 0000000000408c40 R13: ffffea0002387a80 R14: ffff8880a97ea000 R15: ffffc900016e7898 create_empty_buffers+0x28/0x630 fs/buffer.c:1595 create_page_buffers+0x1ee/0x2d0 fs/buffer.c:1712 __block_write_full_page+0xbf/0xcd0 fs/buffer.c:1758 __writepage+0x54/0xd0 mm/page-writeback.c:2303 write_cache_pages+0x596/0xdc0 mm/page-writeback.c:2238 generic_writepages+0xca/0x130 mm/page-writeback.c:2329 ? 0xffffffff81000000 do_writepages+0xca/0x240 mm/page-writeback.c:2344 __filemap_fdatawrite_range+0x250/0x310 mm/filemap.c:421 filemap_write_and_wait_range+0xaa/0x140 mm/filemap.c:654 generic_file_read_iter+0xaeb/0x15a0 mm/filemap.c:2272 call_read_iter include/linux/fs.h:1895 [inline] lo_rw_aio+0xa84/0xfe0 drivers/block/loop.c:572 do_req_filebacked drivers/block/loop.c:620 [inline] loop_handle_cmd drivers/block/loop.c:2060 [inline] loop_process_work+0xe69/0x2590 drivers/block/loop.c:2096 process_one_work+0x903/0x15c0 kernel/workqueue.c:2264 worker_thread+0x82/0xb50 kernel/workqueue.c:2410 kthread+0x31d/0x3e0 kernel/kthread.c:255 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:352 Kernel Offset: disabled Rebooting in 86400 seconds..