bisecting fixing commit since 2f166cdcf8a92fcf85524f2b5526cb28e16f0a60 building syzkaller on abf9ba4fc75d9b29af15625d44dcfc1360fad3b7 testing commit 2f166cdcf8a92fcf85524f2b5526cb28e16f0a60 with gcc (GCC) 8.1.0 kernel signature: dcf1aea0e436b386b0e46bcdf0992528ea608aecf8ebd5591b59f5a194e2e89f run #0: crashed: general protection fault in locks_remove_file run #1: crashed: KASAN: use-after-free Read in corrupted run #2: crashed: general protection fault in locks_remove_file run #3: crashed: general protection fault in locks_remove_file run #4: crashed: general protection fault in locks_remove_file run #5: crashed: WARNING: ODEBUG bug in get_signal run #6: crashed: general protection fault in kmem_cache_free run #7: crashed: WARNING: ODEBUG bug in get_signal run #8: crashed: WARNING: ODEBUG bug in get_signal run #9: crashed: general protection fault in locks_remove_file testing current HEAD bae31eef2a167ef160ab2703b6a2f5bbecd98d92 testing commit bae31eef2a167ef160ab2703b6a2f5bbecd98d92 with gcc (GCC) 8.1.0 kernel signature: d8f63b0e3720f03ba322ed75a08667097d85972fab39c28ac4cf5ce0f33c080f all runs: OK # git bisect start bae31eef2a167ef160ab2703b6a2f5bbecd98d92 2f166cdcf8a92fcf85524f2b5526cb28e16f0a60 Bisecting: 169 revisions left to test after this (roughly 7 steps) [293036a0ea49b63a2dc449d41b6f81b3194fffeb] ehci-hcd: Move include to keep CRC stable testing commit 293036a0ea49b63a2dc449d41b6f81b3194fffeb with gcc (GCC) 8.1.0 kernel signature: d102a0b917b0a16322248989d509d7cd9614122551edc3814e514d026600a8de all runs: OK # git bisect bad 293036a0ea49b63a2dc449d41b6f81b3194fffeb Bisecting: 84 revisions left to test after this (roughly 6 steps) [7290cb1a3aa67dcc43fecf66dae64eb2ebad18af] ARM: dts: BCM5301X: Fixed QSPI compatible string testing commit 7290cb1a3aa67dcc43fecf66dae64eb2ebad18af with gcc (GCC) 8.1.0 kernel signature: 7da7f31356905f4485158507f0d24c9e69e71e9d590d87a607bcca1143697c85 all runs: OK # git bisect bad 7290cb1a3aa67dcc43fecf66dae64eb2ebad18af Bisecting: 42 revisions left to test after this (roughly 5 steps) [6aa022755fa184cde7c1af02f45357d7f483b1f7] uaccess: Add non-pagefault user-space write function testing commit 6aa022755fa184cde7c1af02f45357d7f483b1f7 with gcc (GCC) 8.1.0 kernel signature: 049b82705cc87df77e379271cb4ed3b6d4df02bf41c4ecbadfbc12c737b605fe all runs: OK # git bisect bad 6aa022755fa184cde7c1af02f45357d7f483b1f7 Bisecting: 20 revisions left to test after this (roughly 4 steps) [9de4fede0b351128162d4e3612b33e34352a66a5] net: hns: Fix memleak in hns_nic_dev_probe testing commit 9de4fede0b351128162d4e3612b33e34352a66a5 with gcc (GCC) 8.1.0 kernel signature: 9ad474cf3e5052a4b3dde67e8ec7d3f5e157c7b1792a651d2b4839f51be0bbc2 run #0: crashed: KASAN: use-after-free Read in corrupted run #1: crashed: WARNING: ODEBUG bug in get_signal run #2: crashed: WARNING: ODEBUG bug in get_signal run #3: crashed: general protection fault in locks_remove_file run #4: crashed: WARNING: ODEBUG bug in get_signal run #5: crashed: general protection fault in locks_remove_file run #6: crashed: general protection fault in kmem_cache_free run #7: crashed: WARNING: ODEBUG bug in get_signal run #8: crashed: general protection fault in locks_remove_file run #9: crashed: KASAN: use-after-free Read in corrupted # git bisect good 9de4fede0b351128162d4e3612b33e34352a66a5 Bisecting: 10 revisions left to test after this (roughly 3 steps) [cfb5e057b7179767d6f3cef3381633417e4e3afb] net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() testing commit cfb5e057b7179767d6f3cef3381633417e4e3afb with gcc (GCC) 8.1.0 kernel signature: 949a227335f628a13397062437919ac4ed1eadf32c548e7558fa0355eb865d3e run #0: crashed: KASAN: use-after-free Read in corrupted run #1: crashed: general protection fault in locks_remove_file run #2: crashed: general protection fault in kmem_cache_free run #3: crashed: general protection fault in locks_remove_file run #4: crashed: general protection fault in locks_remove_file run #5: crashed: general protection fault in locks_remove_file run #6: crashed: KASAN: use-after-free Read in corrupted run #7: crashed: WARNING: ODEBUG bug in corrupted run #8: crashed: general protection fault in locks_remove_file run #9: crashed: general protection fault in locks_remove_file # git bisect good cfb5e057b7179767d6f3cef3381633417e4e3afb Bisecting: 5 revisions left to test after this (roughly 3 steps) [5ace0847122fb22f18a20fb7809339cb3d789f01] include/linux/log2.h: add missing () around n in roundup_pow_of_two() testing commit 5ace0847122fb22f18a20fb7809339cb3d789f01 with gcc (GCC) 8.1.0 kernel signature: 95df5f889f8080bf239564711d716cacb3262e3569099bbc0dea70ccd21ccede all runs: OK # git bisect bad 5ace0847122fb22f18a20fb7809339cb3d789f01 Bisecting: 2 revisions left to test after this (roughly 1 step) [751deef5de35a497a3ea007e0953889ba1123a97] tg3: Fix soft lockup when tg3_reset_task() fails. testing commit 751deef5de35a497a3ea007e0953889ba1123a97 with gcc (GCC) 8.1.0 kernel signature: 06f126a11257029d5c3e3c792c67f290ede3c9127822e51f69522ee3bc53bfe5 all runs: OK # git bisect bad 751deef5de35a497a3ea007e0953889ba1123a97 Bisecting: 0 revisions left to test after this (roughly 0 steps) [c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888] fix regression in "epoll: Keep a reference on files added to the check list" testing commit c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 with gcc (GCC) 8.1.0 kernel signature: 53fd45ef7bdf9a5c418e2990f7164aa9ff6f46339abe8c30f89393ec3cd2b182 all runs: OK # git bisect bad c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 is the first bad commit commit c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 Author: Al Viro Date: Wed Sep 2 11:30:48 2020 -0400 fix regression in "epoll: Keep a reference on files added to the check list" [ Upstream commit 77f4689de17c0887775bb77896f4cc11a39bf848 ] epoll_loop_check_proc() can run into a file already committed to destruction; we can't grab a reference on those and don't need to add them to the set for reverse path check anyway. Tested-by: Marc Zyngier Fixes: a9ed4a6560b8 ("epoll: Keep a reference on files added to the check list") Signed-off-by: Al Viro Signed-off-by: Sasha Levin fs/eventpoll.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) culprit signature: 53fd45ef7bdf9a5c418e2990f7164aa9ff6f46339abe8c30f89393ec3cd2b182 parent signature: 949a227335f628a13397062437919ac4ed1eadf32c548e7558fa0355eb865d3e revisions tested: 10, total time: 2h46m53.17875581s (build: 1h28m45.057496796s, test: 1h16m45.354027542s) first good commit: c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 fix regression in "epoll: Keep a reference on files added to the check list" recipients (to): ["maz@kernel.org" "sashal@kernel.org" "viro@zeniv.linux.org.uk"] recipients (cc): []