bisecting fixing commit since d7e78d08fa77acdea351c8f628f49ca9a0e1029a
building syzkaller on abf9ba4fc75d9b29af15625d44dcfc1360fad3b7
testing commit d7e78d08fa77acdea351c8f628f49ca9a0e1029a with gcc (GCC) 8.1.0
kernel signature: aa1772b20ef9d9c1d1aa6b83c4a6d4d89f3c22e569da67908dd4d9c997af0f13
run #0: crashed: KASAN: use-after-free Read in binder_defer_work
run #1: crashed: WARNING: ODEBUG bug in exit_to_usermode_loop
run #2: crashed: general protection fault in kmem_cache_free
run #3: crashed: general protection fault in kmem_cache_free
run #4: crashed: general protection fault in kmem_cache_free
run #5: crashed: general protection fault in kmem_cache_free
run #6: crashed: general protection fault in kmem_cache_free
run #7: crashed: general protection fault in kmem_cache_free
run #8: crashed: WARNING: ODEBUG bug in exit_to_usermode_loop
run #9: crashed: general protection fault in kmem_cache_free
testing current HEAD bae31eef2a167ef160ab2703b6a2f5bbecd98d92
testing commit bae31eef2a167ef160ab2703b6a2f5bbecd98d92 with gcc (GCC) 8.1.0
kernel signature: c38dfc3f875e8a79b69515ee2f36d00c5458dc30f28ce2543ec47bc57cef3b9c
all runs: OK
# git bisect start bae31eef2a167ef160ab2703b6a2f5bbecd98d92 d7e78d08fa77acdea351c8f628f49ca9a0e1029a
Bisecting: 215 revisions left to test after this (roughly 8 steps)
[99401ea1ff86a411c688716c008e8f4d0eb6907d] RDMA/rxe: Fix the parent sysfs read when the interface has 15 chars
testing commit 99401ea1ff86a411c688716c008e8f4d0eb6907d with gcc (GCC) 8.1.0
kernel signature: e3355a8c2b3c45090cba7aa93372ee6602e1fd5660d3aa4f8255097485323783
all runs: OK
# git bisect bad 99401ea1ff86a411c688716c008e8f4d0eb6907d
Bisecting: 107 revisions left to test after this (roughly 7 steps)
[4c65a7832377893c68b3f347450194edfc097fe1] MIPS: mm: BMIPS5000 has inclusive physical caches
testing commit 4c65a7832377893c68b3f347450194edfc097fe1 with gcc (GCC) 8.1.0
kernel signature: 45abc384a7c4f2fda5b7b69802e7cb11170d6aa479c704468433f3c79ea708da
all runs: crashed: general protection fault in kmem_cache_free
# git bisect good 4c65a7832377893c68b3f347450194edfc097fe1
Bisecting: 53 revisions left to test after this (roughly 6 steps)
[1356c3e8539ac48b9362e60b1fa80ec06bb960ec] vfio-pci: Invalidate mmaps and block MMIO access on disabled memory
testing commit 1356c3e8539ac48b9362e60b1fa80ec06bb960ec with gcc (GCC) 8.1.0
kernel signature: b064c9eddece157cfb26495d2224617d6d1c226ec31e9a0bc1177e48f20f7624
all runs: OK
# git bisect bad 1356c3e8539ac48b9362e60b1fa80ec06bb960ec
Bisecting: 26 revisions left to test after this (roughly 5 steps)
[80c8b74ce1fdf384c6ae43654501d9979802e8e1] btrfs: fix potential deadlock in the search ioctl
testing commit 80c8b74ce1fdf384c6ae43654501d9979802e8e1 with gcc (GCC) 8.1.0
kernel signature: 200d15ddddad6609c604385b6ae4155ce5991fca90535105d05bb147bb675e3d
all runs: OK
# git bisect bad 80c8b74ce1fdf384c6ae43654501d9979802e8e1
Bisecting: 13 revisions left to test after this (roughly 4 steps)
[41cb677dad4c9cd424405e0d10c509ae4cdc7a9c] nvmet-fc: Fix a missed _irqsave version of spin_lock in 'nvmet_fc_fod_op_done()'
testing commit 41cb677dad4c9cd424405e0d10c509ae4cdc7a9c with gcc (GCC) 8.1.0
kernel signature: 3aba52c010b22c3aa3e3ab816ec0e726f30bb3d3ac7da97f9d2f8bee6a68f29d
run #0: crashed: general protection fault in corrupted
run #1: crashed: general protection fault in kmem_cache_free
run #2: crashed: general protection fault in kmem_cache_free
run #3: crashed: general protection fault in kmem_cache_free
run #4: crashed: general protection fault in kmem_cache_free
run #5: crashed: general protection fault in corrupted
run #6: crashed: KASAN: use-after-free Read in binder_defer_work
run #7: crashed: WARNING: ODEBUG bug in exit_to_usermode_loop
run #8: crashed: general protection fault in kmem_cache_free
run #9: crashed: general protection fault in kmem_cache_free
# git bisect good 41cb677dad4c9cd424405e0d10c509ae4cdc7a9c
Bisecting: 6 revisions left to test after this (roughly 3 steps)
[5ace0847122fb22f18a20fb7809339cb3d789f01] include/linux/log2.h: add missing () around n in roundup_pow_of_two()
testing commit 5ace0847122fb22f18a20fb7809339cb3d789f01 with gcc (GCC) 8.1.0
kernel signature: c851e4a53305f4616e74f38a73b84ffc54d33197448769a83ce1f747c5a5274b
all runs: OK
# git bisect bad 5ace0847122fb22f18a20fb7809339cb3d789f01
Bisecting: 3 revisions left to test after this (roughly 2 steps)
[c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888] fix regression in "epoll: Keep a reference on files added to the check list"
testing commit c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 with gcc (GCC) 8.1.0
kernel signature: d3a32fca131ab82048770fb2dfcd1f87841d5c596fa068edd4a6f1995551c4dc
all runs: OK
# git bisect bad c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888
Bisecting: 0 revisions left to test after this (roughly 1 step)
[cfb5e057b7179767d6f3cef3381633417e4e3afb] net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init()
testing commit cfb5e057b7179767d6f3cef3381633417e4e3afb with gcc (GCC) 8.1.0
kernel signature: 82e9451455de15f2bf2a625fb1916f8a0ef1c4df8b874a9b2daed14b4cf50c3b
run #0: crashed: general protection fault in kmem_cache_free
run #1: crashed: general protection fault in kmem_cache_free
run #2: crashed: general protection fault in kmem_cache_free
run #3: crashed: general protection fault in locks_remove_file
run #4: crashed: general protection fault in kmem_cache_free
run #5: crashed: general protection fault in kmem_cache_free
run #6: crashed: general protection fault in kmem_cache_free
run #7: crashed: general protection fault in kmem_cache_free
run #8: crashed: WARNING: ODEBUG bug in exit_to_usermode_loop
run #9: crashed: general protection fault in kmem_cache_free
# git bisect good cfb5e057b7179767d6f3cef3381633417e4e3afb
c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 is the first bad commit
commit c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888
Author: Al Viro <viro@zeniv.linux.org.uk>
Date:   Wed Sep 2 11:30:48 2020 -0400

    fix regression in "epoll: Keep a reference on files added to the check list"
    
    [ Upstream commit 77f4689de17c0887775bb77896f4cc11a39bf848 ]
    
    epoll_loop_check_proc() can run into a file already committed to destruction;
    we can't grab a reference on those and don't need to add them to the set for
    reverse path check anyway.
    
    Tested-by: Marc Zyngier <maz@kernel.org>
    Fixes: a9ed4a6560b8 ("epoll: Keep a reference on files added to the check list")
    Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
    Signed-off-by: Sasha Levin <sashal@kernel.org>

 fs/eventpoll.c | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)
culprit signature: d3a32fca131ab82048770fb2dfcd1f87841d5c596fa068edd4a6f1995551c4dc
parent  signature: 82e9451455de15f2bf2a625fb1916f8a0ef1c4df8b874a9b2daed14b4cf50c3b
revisions tested: 10, total time: 2h39m11.909719954s (build: 1h27m1.19166098s, test: 1h10m55.290387841s)
first good commit: c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 fix regression in "epoll: Keep a reference on files added to the check list"
recipients (to): ["maz@kernel.org" "sashal@kernel.org" "viro@zeniv.linux.org.uk"]
recipients (cc): []