bisecting fixing commit since 78d697fc93f98054e36a3ab76dca1a88802ba7be
building syzkaller on 576fb9bc341530127b33f5c588a305f085f39a4f
testing commit 78d697fc93f98054e36a3ab76dca1a88802ba7be with gcc (GCC) 8.1.0
kernel signature: 1f5c144898e5391fe6c876e8aa2d87b40af13a1551ba3df979aa95fc00fd1ad0
all runs: crashed: KASAN: slab-out-of-bounds Read in soft_cursor
testing current HEAD 5b7a52cd2eef952cee8a72512ef370bcdef46636
testing commit 5b7a52cd2eef952cee8a72512ef370bcdef46636 with gcc (GCC) 8.1.0
kernel signature: 9cfa188b3914546652485460578d509fcf2a7046fa1b777b88fc4d6b26b632f1
all runs: OK
# git bisect start 5b7a52cd2eef952cee8a72512ef370bcdef46636 78d697fc93f98054e36a3ab76dca1a88802ba7be
Bisecting: 1290 revisions left to test after this (roughly 10 steps)
[a5520d8f19a22f6f3a4d17a343045895d78c2bfd] i2c: pxa: clear all master action bits in i2c_pxa_stop_message()
testing commit a5520d8f19a22f6f3a4d17a343045895d78c2bfd with gcc (GCC) 8.1.0
kernel signature: 03ec7c4b4b65b8709c11e3ab2d41ac1c7451d1409c9faf1dfeffd9a98ab8006f
all runs: boot failed: WARNING in kvm_mmu_set_mmio_spte_mask
# git bisect skip a5520d8f19a22f6f3a4d17a343045895d78c2bfd
Bisecting: 1290 revisions left to test after this (roughly 10 steps)
[bbffca92d1feb9604168dbfb199071c823839200] sunrpc: fixed rollback in rpc_gssd_dummy_populate()
testing commit bbffca92d1feb9604168dbfb199071c823839200 with gcc (GCC) 8.1.0
kernel signature: 749288742c90b6bcf45b24480f1ddf171fec7ebd083631ae337f8083235b1dbb
all runs: boot failed: WARNING in kvm_mmu_set_mmio_spte_mask
# git bisect skip bbffca92d1feb9604168dbfb199071c823839200
Bisecting: 1290 revisions left to test after this (roughly 10 steps)
[1dd11998941e98885449e9745043e918f11baf20] ceph: don't allow setlease on cephfs
testing commit 1dd11998941e98885449e9745043e918f11baf20 with gcc (GCC) 8.1.0
kernel signature: 1712df5b07ed3cb9884a2b07bf4e0d84ab15d9e31e7d47645a1cc311edd8c574
all runs: OK
# git bisect bad 1dd11998941e98885449e9745043e918f11baf20
Bisecting: 1079 revisions left to test after this (roughly 10 steps)
[1fd6b5a9236cd202e449aab99fbd527a3cca4b3c] x86/speculation: Add SRBDS vulnerability and mitigation documentation
testing commit 1fd6b5a9236cd202e449aab99fbd527a3cca4b3c with gcc (GCC) 8.1.0
kernel signature: 15286b30284f8a6130572f689d36e9440d378311aff1446230ff239bbf4b8301
all runs: crashed: KASAN: slab-out-of-bounds Read in soft_cursor
# git bisect good 1fd6b5a9236cd202e449aab99fbd527a3cca4b3c
Bisecting: 539 revisions left to test after this (roughly 9 steps)
[0a3094db01722d06e1962b1e92293ba14317479e] usb: chipidea: core: add wakeup support for extcon
testing commit 0a3094db01722d06e1962b1e92293ba14317479e with gcc (GCC) 8.1.0
kernel signature: 54dd80c303682275b7da5f5d1e5146edcd6b0008b3cea224e85709f8403a1fee
all runs: boot failed: WARNING in kvm_mmu_set_mmio_spte_mask
# git bisect skip 0a3094db01722d06e1962b1e92293ba14317479e
Bisecting: 539 revisions left to test after this (roughly 9 steps)
[2a0ef851e1e8626fc6b49b4fba0ffcf012c8870c] net: bcmgenet: use hardware padding of runt frames
testing commit 2a0ef851e1e8626fc6b49b4fba0ffcf012c8870c with gcc (GCC) 8.1.0
kernel signature: ecc6be23ddce0dede7dd9acd2aa4e2f35845bffe247ae7a0ebade53b1499547c
all runs: boot failed: WARNING in kvm_mmu_set_mmio_spte_mask
# git bisect skip 2a0ef851e1e8626fc6b49b4fba0ffcf012c8870c
Bisecting: 539 revisions left to test after this (roughly 9 steps)
[24cea2ec68a04cf51021d1ad5b3b8e34dc5fa90a] ceph: fix potential mdsc use-after-free crash
testing commit 24cea2ec68a04cf51021d1ad5b3b8e34dc5fa90a with gcc (GCC) 8.1.0
kernel signature: 3f1198fd02a3796c565ca319b6b650b498fdab9e126e5f481737a415b63d17a2
all runs: crashed: KASAN: slab-out-of-bounds Read in soft_cursor
# git bisect good 24cea2ec68a04cf51021d1ad5b3b8e34dc5fa90a
Bisecting: 32 revisions left to test after this (roughly 5 steps)
[fe5d0805aac97d0937cb015f859c93e869909d2f] serial: pl011: Don't leak amba_ports entry on driver register error
testing commit fe5d0805aac97d0937cb015f859c93e869909d2f with gcc (GCC) 8.1.0
kernel signature: cfd2d08b4e823815663dedd0d287b28a4517f055fe99ff03f24c5b3640e42e86
all runs: OK
# git bisect bad fe5d0805aac97d0937cb015f859c93e869909d2f
Bisecting: 15 revisions left to test after this (roughly 4 steps)
[1517868cacc964a108c5f9abb244570ef79b365c] fs: prevent BUG_ON in submit_bh_wbc()
testing commit 1517868cacc964a108c5f9abb244570ef79b365c with gcc (GCC) 8.1.0
kernel signature: d977129c904ef485b9c445983b26170fa14e12b02f15b4373358fa072b6d8f2c
all runs: crashed: KASAN: slab-out-of-bounds Read in soft_cursor
# git bisect good 1517868cacc964a108c5f9abb244570ef79b365c
Bisecting: 7 revisions left to test after this (roughly 3 steps)
[6006627128436d518fef32bc511d6008cbe62200] HID: i2c-hid: Always sleep 60ms after I2C_HID_PWR_ON commands
testing commit 6006627128436d518fef32bc511d6008cbe62200 with gcc (GCC) 8.1.0
kernel signature: d977129c904ef485b9c445983b26170fa14e12b02f15b4373358fa072b6d8f2c
all runs: crashed: KASAN: slab-out-of-bounds Read in soft_cursor
# git bisect good 6006627128436d518fef32bc511d6008cbe62200
Bisecting: 3 revisions left to test after this (roughly 2 steps)
[47b7a50f8ace0b3b64c63dba61b5cd6099b670ed] vt: defer kfree() of vc_screenbuf in vc_do_resize()
testing commit 47b7a50f8ace0b3b64c63dba61b5cd6099b670ed with gcc (GCC) 8.1.0
kernel signature: 8397b319e2d82c926eb19f4e7849d35b219d14538c6e0c4da57a7210997f7c9c
all runs: crashed: KASAN: global-out-of-bounds Read in fbcon_resize
# git bisect good 47b7a50f8ace0b3b64c63dba61b5cd6099b670ed
Bisecting: 1 revision left to test after this (roughly 1 step)
[d1fff1120df8a0ba25e57c3a7aa749f078bf2e32] serial: samsung: Removes the IRQ not found warning
testing commit d1fff1120df8a0ba25e57c3a7aa749f078bf2e32 with gcc (GCC) 8.1.0
kernel signature: cfd2d08b4e823815663dedd0d287b28a4517f055fe99ff03f24c5b3640e42e86
run #0: crashed: KASAN: global-out-of-bounds Read in fbcon_resize
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect good d1fff1120df8a0ba25e57c3a7aa749f078bf2e32
Bisecting: 0 revisions left to test after this (roughly 0 steps)
[4ad066160a36ceb0b3b65785911ebd7711fe9fb8] serial: pl011: Fix oops on -EPROBE_DEFER
testing commit 4ad066160a36ceb0b3b65785911ebd7711fe9fb8 with gcc (GCC) 8.1.0
kernel signature: cfd2d08b4e823815663dedd0d287b28a4517f055fe99ff03f24c5b3640e42e86
all runs: OK
# git bisect bad 4ad066160a36ceb0b3b65785911ebd7711fe9fb8
4ad066160a36ceb0b3b65785911ebd7711fe9fb8 is the first bad commit
commit 4ad066160a36ceb0b3b65785911ebd7711fe9fb8
Author: Lukas Wunner <lukas@wunner.de>
Date:   Thu Aug 13 12:52:40 2020 +0200

    serial: pl011: Fix oops on -EPROBE_DEFER
    
    commit 27afac93e3bd7fa89749cf11da5d86ac9cde4dba upstream.
    
    If probing of a pl011 gets deferred until after free_initmem(), an oops
    ensues because pl011_console_match() is called which has been freed.
    
    Fix by removing the __init attribute from the function and those it
    calls.
    
    Commit 10879ae5f12e ("serial: pl011: add console matching function")
    introduced pl011_console_match() not just for early consoles but
    regular preferred consoles, such as those added by acpi_parse_spcr().
    Regular consoles may be registered after free_initmem() for various
    reasons, one being deferred probing, another being dynamic enablement
    of serial ports using a DeviceTree overlay.
    
    Thus, pl011_console_match() must not be declared __init and the
    functions it calls mustn't either.
    
    Stack trace for posterity:
    
    Unable to handle kernel paging request at virtual address 80c38b58
    Internal error: Oops: 8000000d [#1] PREEMPT SMP ARM
    PC is at pl011_console_match+0x0/0xfc
    LR is at register_console+0x150/0x468
    [<80187004>] (register_console)
    [<805a8184>] (uart_add_one_port)
    [<805b2b68>] (pl011_register_port)
    [<805b3ce4>] (pl011_probe)
    [<80569214>] (amba_probe)
    [<805ca088>] (really_probe)
    [<805ca2ec>] (driver_probe_device)
    [<805ca5b0>] (__device_attach_driver)
    [<805c8060>] (bus_for_each_drv)
    [<805c9dfc>] (__device_attach)
    [<805ca630>] (device_initial_probe)
    [<805c90a8>] (bus_probe_device)
    [<805c95a8>] (deferred_probe_work_func)
    
    Fixes: 10879ae5f12e ("serial: pl011: add console matching function")
    Signed-off-by: Lukas Wunner <lukas@wunner.de>
    Cc: stable@vger.kernel.org # v4.10+
    Cc: Aleksey Makarov <amakarov@marvell.com>
    Cc: Peter Hurley <peter@hurleysoftware.com>
    Cc: Russell King <linux@armlinux.org.uk>
    Cc: Christopher Covington <cov@codeaurora.org>
    Link: https://lore.kernel.org/r/f827ff09da55b8c57d316a1b008a137677b58921.1597315557.git.lukas@wunner.de
    Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

 drivers/tty/serial/amba-pl011.c | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)
culprit signature: cfd2d08b4e823815663dedd0d287b28a4517f055fe99ff03f24c5b3640e42e86
parent  signature: cfd2d08b4e823815663dedd0d287b28a4517f055fe99ff03f24c5b3640e42e86
revisions tested: 15, total time: 4h4m54.541823627s (build: 2h13m7.197278663s, test: 1h49m33.049797919s)
first good commit: 4ad066160a36ceb0b3b65785911ebd7711fe9fb8 serial: pl011: Fix oops on -EPROBE_DEFER
recipients (to): ["gregkh@linuxfoundation.org" "gregkh@linuxfoundation.org" "jslaby@suse.com" "linux-serial@vger.kernel.org" "linux@armlinux.org.uk" "lukas@wunner.de"]
recipients (cc): ["linux-kernel@vger.kernel.org"]