bisecting fixing commit since 6f8b52ba442ce1372a58df4e85f169686ef52a0d building syzkaller on ac912200b65d80413762b8d61eb6399ef9eccfd9 testing commit 6f8b52ba442ce1372a58df4e85f169686ef52a0d with gcc (GCC) 8.1.0 run #0: crashed: KASAN: use-after-free Read in kvm_write_guest_offset_cached run #1: crashed: KASAN: use-after-free Read in kvm_write_guest_offset_cached run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK testing current HEAD 8fde2832bd0bdc5a2b57330a9e9c3d2fa16bd1d8 testing commit 8fde2832bd0bdc5a2b57330a9e9c3d2fa16bd1d8 with gcc (GCC) 8.1.0 all runs: OK # git bisect start 8fde2832bd0bdc5a2b57330a9e9c3d2fa16bd1d8 6f8b52ba442ce1372a58df4e85f169686ef52a0d Bisecting: 29614 revisions left to test after this (roughly 15 steps) [00cc3f1b3a3011b5fee9711244ffcec418b519f0] ice: Add code to process LLDP MIB change events testing commit 00cc3f1b3a3011b5fee9711244ffcec418b519f0 with gcc (GCC) 8.1.0 run #0: crashed: KASAN: use-after-free Read in kvm_write_guest_offset_cached run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 00cc3f1b3a3011b5fee9711244ffcec418b519f0 Bisecting: 14807 revisions left to test after this (roughly 14 steps) [41adafa02eeb622ffc1f085c9a862a6554ed667e] Merge branch 'bh-remove' testing commit 41adafa02eeb622ffc1f085c9a862a6554ed667e with gcc (GCC) 8.1.0 all runs: OK # git bisect bad 41adafa02eeb622ffc1f085c9a862a6554ed667e Bisecting: 6973 revisions left to test after this (roughly 13 steps) [a2d635decbfa9c1e4ae15cb05b68b2559f7f827c] Merge tag 'drm-next-2019-05-09' of git://anongit.freedesktop.org/drm/drm testing commit a2d635decbfa9c1e4ae15cb05b68b2559f7f827c with gcc (GCC) 8.1.0 all runs: OK # git bisect bad a2d635decbfa9c1e4ae15cb05b68b2559f7f827c Bisecting: 3904 revisions left to test after this (roughly 12 steps) [d3511f53bb2475f2a4e8460bee5a1ae6dea2a433] Merge branch 'parisc-5.2-1' of git://git.kernel.org/pub/scm/linux/kernel/git/deller/parisc-linux testing commit d3511f53bb2475f2a4e8460bee5a1ae6dea2a433 with gcc (GCC) 8.1.0 all runs: OK # git bisect bad d3511f53bb2475f2a4e8460bee5a1ae6dea2a433 Bisecting: 1906 revisions left to test after this (roughly 11 steps) [9bff9dfc513bd5de72cb59f4bffb72cf0a5aa526] Merge tag 'spi-v5.2' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/spi testing commit 9bff9dfc513bd5de72cb59f4bffb72cf0a5aa526 with gcc (GCC) 8.1.0 all runs: OK # git bisect bad 9bff9dfc513bd5de72cb59f4bffb72cf0a5aa526 Bisecting: 1011 revisions left to test after this (roughly 10 steps) [ccbc2e5ed192ccd2663477107379f843d072e649] Merge tag 'm68k-for-v5.2-tag1' of git://git.kernel.org/pub/scm/linux/kernel/git/geert/linux-m68k testing commit ccbc2e5ed192ccd2663477107379f843d072e649 with gcc (GCC) 8.1.0 all runs: OK # git bisect bad ccbc2e5ed192ccd2663477107379f843d072e649 Bisecting: 496 revisions left to test after this (roughly 9 steps) [aa1be08f52585fe36ecfaf5bddfdc784eb4c94cf] Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm testing commit aa1be08f52585fe36ecfaf5bddfdc784eb4c94cf with gcc (GCC) 8.1.0 run #0: crashed: KASAN: use-after-free Read in kvm_write_guest_offset_cached run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good aa1be08f52585fe36ecfaf5bddfdc784eb4c94cf Bisecting: 257 revisions left to test after this (roughly 8 steps) [007dc78fea62610bf06829e38f1d8c69b6ea5af6] Merge branch 'locking-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip testing commit 007dc78fea62610bf06829e38f1d8c69b6ea5af6 with gcc (GCC) 8.1.0 all runs: OK # git bisect bad 007dc78fea62610bf06829e38f1d8c69b6ea5af6 Bisecting: 94 revisions left to test after this (roughly 7 steps) [5ba2a4b12f450c5c69099a5c19671c6e59daa435] Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip testing commit 5ba2a4b12f450c5c69099a5c19671c6e59daa435 with gcc (GCC) 8.1.0 run #0: crashed: BUG: unable to handle kernel paging request in init_srcu_struct_fields run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 5ba2a4b12f450c5c69099a5c19671c6e59daa435 Bisecting: 49 revisions left to test after this (roughly 6 steps) [3599fe12a125fa7118da2bcc5033d7741fb5f3a1] x86/stacktrace: Use common infrastructure testing commit 3599fe12a125fa7118da2bcc5033d7741fb5f3a1 with gcc (GCC) 8.1.0 run #0: crashed: KASAN: use-after-free Read in kvm_write_guest_offset_cached run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 3599fe12a125fa7118da2bcc5033d7741fb5f3a1 Bisecting: 24 revisions left to test after this (roughly 5 steps) [ad282a8117d5048398f506f20b092c14b3b3c43f] locking/static_key: Add support for deferred static branches testing commit ad282a8117d5048398f506f20b092c14b3b3c43f with gcc (GCC) 8.1.0 run #0: crashed: KASAN: use-after-free Read in kvm_write_guest_offset_cached run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good ad282a8117d5048398f506f20b092c14b3b3c43f Bisecting: 9 revisions left to test after this (roughly 4 steps) [d90dcc1f14555c62a32bc15c86c66d1d5444b5cb] Merge branch 'efi-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip testing commit d90dcc1f14555c62a32bc15c86c66d1d5444b5cb with gcc (GCC) 8.1.0 all runs: OK # git bisect bad d90dcc1f14555c62a32bc15c86c66d1d5444b5cb Bisecting: 6 revisions left to test after this (roughly 3 steps) [0a499fc5c37e6db096969a83534fd98a2bf2b36c] Merge branch 'core-speculation-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip testing commit 0a499fc5c37e6db096969a83534fd98a2bf2b36c with gcc (GCC) 8.1.0 all runs: OK # git bisect bad 0a499fc5c37e6db096969a83534fd98a2bf2b36c Bisecting: 3 revisions left to test after this (roughly 2 steps) [0336e04a6520bdaefdb0769d2a70084fa52e81ed] s390/speculation: Support 'mitigations=' cmdline option testing commit 0336e04a6520bdaefdb0769d2a70084fa52e81ed with gcc (GCC) 8.1.0 all runs: OK # git bisect bad 0336e04a6520bdaefdb0769d2a70084fa52e81ed Bisecting: 1 revision left to test after this (roughly 1 step) [d68be4c4d31295ff6ae34a8ddfaa4c1a8ff42812] x86/speculation: Support 'mitigations=' cmdline option testing commit d68be4c4d31295ff6ae34a8ddfaa4c1a8ff42812 with gcc (GCC) 8.1.0 all runs: OK # git bisect bad d68be4c4d31295ff6ae34a8ddfaa4c1a8ff42812 Bisecting: 0 revisions left to test after this (roughly 0 steps) [98af8452945c55652de68536afdde3b520fec429] cpu/speculation: Add 'mitigations=' cmdline option testing commit 98af8452945c55652de68536afdde3b520fec429 with gcc (GCC) 8.1.0 all runs: OK # git bisect bad 98af8452945c55652de68536afdde3b520fec429 98af8452945c55652de68536afdde3b520fec429 is the first bad commit commit 98af8452945c55652de68536afdde3b520fec429 Author: Josh Poimboeuf Date: Fri Apr 12 15:39:28 2019 -0500 cpu/speculation: Add 'mitigations=' cmdline option Keeping track of the number of mitigations for all the CPU speculation bugs has become overwhelming for many users. It's getting more and more complicated to decide which mitigations are needed for a given architecture. Complicating matters is the fact that each arch tends to have its own custom way to mitigate the same vulnerability. Most users fall into a few basic categories: a) they want all mitigations off; b) they want all reasonable mitigations on, with SMT enabled even if it's vulnerable; or c) they want all reasonable mitigations on, with SMT disabled if vulnerable. Define a set of curated, arch-independent options, each of which is an aggregation of existing options: - mitigations=off: Disable all mitigations. - mitigations=auto: [default] Enable all the default mitigations, but leave SMT enabled, even if it's vulnerable. - mitigations=auto,nosmt: Enable all the default mitigations, disabling SMT if needed by a mitigation. Currently, these options are placeholders which don't actually do anything. They will be fleshed out in upcoming patches. Signed-off-by: Josh Poimboeuf Signed-off-by: Thomas Gleixner Tested-by: Jiri Kosina (on x86) Reviewed-by: Jiri Kosina Cc: Borislav Petkov Cc: "H . Peter Anvin" Cc: Andy Lutomirski Cc: Peter Zijlstra Cc: Jiri Kosina Cc: Waiman Long Cc: Andrea Arcangeli Cc: Jon Masters Cc: Benjamin Herrenschmidt Cc: Paul Mackerras Cc: Michael Ellerman Cc: linuxppc-dev@lists.ozlabs.org Cc: Martin Schwidefsky Cc: Heiko Carstens Cc: linux-s390@vger.kernel.org Cc: Catalin Marinas Cc: Will Deacon Cc: linux-arm-kernel@lists.infradead.org Cc: linux-arch@vger.kernel.org Cc: Greg Kroah-Hartman Cc: Tyler Hicks Cc: Linus Torvalds Cc: Randy Dunlap Cc: Steven Price Cc: Phil Auld Link: https://lkml.kernel.org/r/b07a8ef9b7c5055c3a4637c87d07c296d5016fe0.1555085500.git.jpoimboe@redhat.com :040000 040000 6c77cc94f8ce2d6db1ce7692c69413fd50069bd4 37208faa8d19348f440bd8269fb6233750b4080a M Documentation :040000 040000 2589d1613277a439c44730412058e1d6fcb8a4bb 002cdf7a550eec53293eec0039cb5f93ee8e5760 M include :040000 040000 4440db6fad1741fbc015edf348bd705738142ab7 a904a2fd6a322b2e71dbb46e058a155dcac29491 M kernel revisions tested: 18, total time: 4h56m20.872947607s (build: 1h43m12.407215948s, test: 3h6m45.511940806s) first good commit: 98af8452945c55652de68536afdde3b520fec429 cpu/speculation: Add 'mitigations=' cmdline option cc: ["aarcange@redhat.com" "benh@kernel.crashing.org" "bp@alien8.de" "catalin.marinas@arm.com" "gregkh@linuxfoundation.org" "heiko.carstens@de.ibm.com" "hpa@zytor.com" "jcm@redhat.com" "jikos@kernel.org" "jkosina@suse.cz" "jpoimboe@redhat.com" "linux-arch@vger.kernel.org" "linux-arm-kernel@lists.infradead.org" "linux-s390@vger.kernel.org" "linuxppc-dev@lists.ozlabs.org" "longman@redhat.com" "luto@kernel.org" "mpe@ellerman.id.au" "pauld@redhat.com" "paulus@samba.org" "peterz@infradead.org" "rdunlap@infradead.org" "schwidefsky@de.ibm.com" "steven.price@arm.com" "tglx@linutronix.de" "torvalds@linux-foundation.org" "tyhicks@canonical.com" "will.deacon@arm.com"]