bisecting cause commit starting from 1590a2e1c681b0991bd42c992cabfd380e0338f2
building syzkaller on ffec44b5d1e024359410f6ba8d5e965973ede8f5
testing commit 1590a2e1c681b0991bd42c992cabfd380e0338f2 with gcc (GCC) 8.1.0
kernel signature: 2f3996684fa67de153d0ec93798f8d7146ba2aafdc0823c56629c10c2e77f9bc
all runs: crashed: possible deadlock in process_measurement
testing release v5.7
testing commit 3d77e6a8804abcc0504c904bd6e5cdf3a5cf8162 with gcc (GCC) 8.1.0
kernel signature: 41ef77bb350f259f58fcdec7d83fbcd81595bcb7a50c5d46dfd1f2353676507d
all runs: crashed: possible deadlock in process_measurement
testing release v5.6
testing commit 7111951b8d4973bda27ff663f2cf18b663d15b48 with gcc (GCC) 8.1.0
kernel signature: c5534932d8b5972f16ca14044a7a415ee760eb09229c7222b7beb4053d0382d3
all runs: crashed: possible deadlock in mnt_want_write
testing release v5.5
testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 with gcc (GCC) 8.1.0
kernel signature: 01265d5ef03487ca6bfcf674a2c2fcbedbe9124fe626beddf9cd9c6869661386
all runs: crashed: possible deadlock in mnt_want_write
testing release v5.4
testing commit 219d54332a09e8d8741c1e1982f5eae56099de85 with gcc (GCC) 8.1.0
kernel signature: b76f3b564dca5ee29337a71fedd4e1fee97847b4d8c493ede65b7334c1369959
all runs: crashed: possible deadlock in mnt_want_write
testing release v5.3
testing commit 4d856f72c10ecb060868ed10ff1b1453943fc6c8 with gcc (GCC) 8.1.0
kernel signature: 15b17231f6524922673f7f3898b658b07177c80fef3e6463363b0f8598de5ed8
run #0: crashed: WARNING in ovl_d_real
run #1: crashed: WARNING in ovl_d_real
run #2: crashed: WARNING in ovl_d_real
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
testing release v5.2
testing commit 0ecfebd2b52404ae0c54a878c872bb93363ada36 with gcc (GCC) 8.1.0
kernel signature: 623210f2efcc7814932a34c1decb75ad8c5cd4a123612a1cd2af12103254b1aa
all runs: crashed: possible deadlock in mnt_want_write
testing release v5.1
testing commit e93c9c99a629c61837d5a7fc2120cd2b6c70dbdd with gcc (GCC) 8.1.0
kernel signature: 3cd69cc67d38191dd18cb29847a874db2bbc9067a4cbab8698df5cc7cc13e564
all runs: crashed: possible deadlock in mnt_want_write
testing release v5.0
testing commit 1c163f4c7b3f621efff9b28a47abb36f7378d783 with gcc (GCC) 8.1.0
kernel signature: e1b23e056d7b741da9fce65dfbb1c3ad5b0899c3cab86a2654e5c34b8be30397
run #0: crashed: possible deadlock in mnt_want_write
run #1: crashed: possible deadlock in mnt_want_write
run #2: crashed: possible deadlock in mnt_want_write
run #3: crashed: possible deadlock in mnt_want_write
run #4: crashed: possible deadlock in mnt_want_write
run #5: crashed: possible deadlock in mnt_want_write
run #6: crashed: possible deadlock in mnt_want_write
run #7: crashed: WARNING: possible circular locking dependency detected
run #8: crashed: possible deadlock in mnt_want_write
run #9: crashed: possible deadlock in mnt_want_write
testing release v4.20
testing commit 8fe28cb58bcb235034b64cbbb7550a8a43fd88be with gcc (GCC) 8.1.0
kernel signature: b8185d94be0310f6c47a2ebbc3fb6f65bf68fc4fbc63a145e9a7e1dae99e2a3f
all runs: crashed: possible deadlock in mnt_want_write
testing release v4.19
testing commit 84df9525b0c27f3ebc2ebb1864fa62a97fdedb7d with gcc (GCC) 8.1.0
kernel signature: 59450a723ed0576274f3f2adb51a6b73a2ee5adc70c6e8f7d7b3d8f72a38570f
all runs: OK
# git bisect start 8fe28cb58bcb235034b64cbbb7550a8a43fd88be 84df9525b0c27f3ebc2ebb1864fa62a97fdedb7d
Bisecting: 7499 revisions left to test after this (roughly 13 steps)
[ec9c166434595382be3babf266febf876327774d] Merge tag 'mips_fixes_4.20_1' of git://git.kernel.org/pub/scm/linux/kernel/git/mips/linux
testing commit ec9c166434595382be3babf266febf876327774d with gcc (GCC) 8.1.0
kernel signature: 6250396d0c1418c1683ea404caeca21ca2196df50d27cb92a079b013f8a508f9
all runs: crashed: possible deadlock in mnt_want_write
# git bisect bad ec9c166434595382be3babf266febf876327774d
Bisecting: 3252 revisions left to test after this (roughly 12 steps)
[50b825d7e87f4cff7070df6eb26390152bb29537] Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
testing commit 50b825d7e87f4cff7070df6eb26390152bb29537 with gcc (GCC) 8.1.0
kernel signature: 66dca6d0292276c9c699ce63b65d95548ca6b43285200a0a91c7387bfe99cb8e
all runs: OK
# git bisect good 50b825d7e87f4cff7070df6eb26390152bb29537
Bisecting: 1617 revisions left to test after this (roughly 11 steps)
[62606c224d72a98c35d21a849f95cccf95b0a252] Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
testing commit 62606c224d72a98c35d21a849f95cccf95b0a252 with gcc (GCC) 8.1.0
kernel signature: feba74c75e72cf55ba0132be66472c9cd6d4a15866223368d55cc17ff8a0aa10
all runs: crashed: possible deadlock in mnt_want_write
# git bisect bad 62606c224d72a98c35d21a849f95cccf95b0a252
Bisecting: 782 revisions left to test after this (roughly 10 steps)
[bd6bf7c10484f026505814b690104cdef27ed460] Merge tag 'pci-v4.20-changes' of git://git.kernel.org/pub/scm/linux/kernel/git/helgaas/pci
testing commit bd6bf7c10484f026505814b690104cdef27ed460 with gcc (GCC) 8.1.0
kernel signature: 9f7842de0cd44ca1000a155800ea251dbb9523afc2f9cfd2a2b5cd3bf71f80e7
run #0: OK
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: crashed: general protection fault in batadv_iv_ogm_queue_add
# git bisect bad bd6bf7c10484f026505814b690104cdef27ed460
Bisecting: 412 revisions left to test after this (roughly 9 steps)
[01aa9d518eae8a4d75cd3049defc6ed0b6d0a658] Merge tag 'docs-4.20' of git://git.lwn.net/linux
testing commit 01aa9d518eae8a4d75cd3049defc6ed0b6d0a658 with gcc (GCC) 8.1.0
kernel signature: 7b81fa907bb8845c6e6d5dc97849c81949315c3f3f00ddbbaf6c7eed9b4b809e
run #0: OK
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: crashed: general protection fault in batadv_iv_ogm_queue_add
# git bisect bad 01aa9d518eae8a4d75cd3049defc6ed0b6d0a658
Bisecting: 182 revisions left to test after this (roughly 8 steps)
[318b067a5dd649d198c2ba00cf7408d778fc00b4] Merge tag 'for-4.20-part1-tag' of git://git.kernel.org/pub/scm/linux/kernel/git/kdave/linux
testing commit 318b067a5dd649d198c2ba00cf7408d778fc00b4 with gcc (GCC) 8.1.0
kernel signature: 4abfe08a87c0b3ae128e6a558a291094c38df12c47ee2ca8d5b4d2b6da087904
all runs: OK
# git bisect good 318b067a5dd649d198c2ba00cf7408d778fc00b4
Bisecting: 63 revisions left to test after this (roughly 7 steps)
[d6edff78fe9e34dbea1bec7dc26cfce92c6d96d5] Merge tag 'f2fs-for-4.20-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/jaegeuk/f2fs
testing commit d6edff78fe9e34dbea1bec7dc26cfce92c6d96d5 with gcc (GCC) 8.1.0
kernel signature: ee151a770c95ae658b774d982daad968d9903ee6136dca11083b6139afbaea4d
run #0: OK
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: crashed: WARNING in batadv_mcast_mla_tt_retract
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad d6edff78fe9e34dbea1bec7dc26cfce92c6d96d5
Bisecting: 59 revisions left to test after this (roughly 6 steps)
[1e78e8bd9d107c351930cdb1e11202caec01b311] f2fs: fix data corruption issue with hardware encryption
testing commit 1e78e8bd9d107c351930cdb1e11202caec01b311 with gcc (GCC) 8.1.0
kernel signature: f3c55b745128df5e6058db22f4b1cffa1afe47b7578922b24fd5f4573df0c59e
all runs: OK
# git bisect good 1e78e8bd9d107c351930cdb1e11202caec01b311
Bisecting: 25 revisions left to test after this (roughly 5 steps)
[bfd93a87eadb03499a5ff02dfebfaf515310d27c] Merge tag 'gfs2-4.20.fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/gfs2/linux-gfs2
testing commit bfd93a87eadb03499a5ff02dfebfaf515310d27c with gcc (GCC) 8.1.0
kernel signature: e7ba81fbb007c99f91d3e70393126f10aba0f4348783d1d339a8f77637a6a202
run #0: OK
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: crashed: general protection fault in batadv_iv_ogm_queue_add
# git bisect bad bfd93a87eadb03499a5ff02dfebfaf515310d27c
Bisecting: 16 revisions left to test after this (roughly 4 steps)
[c9e58fb2aad5231e7c49d90d059caa3c67a3ff31] gfs2: write revokes should traverse sd_ail1_list in reverse
testing commit c9e58fb2aad5231e7c49d90d059caa3c67a3ff31 with gcc (GCC) 8.1.0
kernel signature: 5ae5f7ba926f2158ad9341d6a19de081becd9baa35ee0c61a4cda280a422d187
all runs: OK
# git bisect good c9e58fb2aad5231e7c49d90d059caa3c67a3ff31
Bisecting: 8 revisions left to test after this (roughly 3 steps)
[6b609e3b0068d29c676e8f1c6d2c0d503d18fea1] Merge branch 'fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
testing commit 6b609e3b0068d29c676e8f1c6d2c0d503d18fea1 with gcc (GCC) 8.1.0
kernel signature: 2a7f25d0596572332d6267bdf6ebcb527f9929b20d38d93d8d18bffda61cbffe
all runs: OK
# git bisect good 6b609e3b0068d29c676e8f1c6d2c0d503d18fea1
Bisecting: 4 revisions left to test after this (roughly 2 steps)
[b5d72cdc53bd13a363943a67a8c5537b9524c94d] orangefs: don't let orangefs_iget return NULL.
testing commit b5d72cdc53bd13a363943a67a8c5537b9524c94d with gcc (GCC) 8.1.0
kernel signature: 60171b84814b72da32f2d9dcfbfa5cd23f19df81a6b0f64a5ce3211ee2081667
all runs: OK
# git bisect good b5d72cdc53bd13a363943a67a8c5537b9524c94d
Bisecting: 2 revisions left to test after this (roughly 1 step)
[22fc9db296fcf7ac30151c52765a7fba10870ab7] orangefs: no need to check for service_operation returns > 0
testing commit 22fc9db296fcf7ac30151c52765a7fba10870ab7 with gcc (GCC) 8.1.0
kernel signature: 0f4cace129159d0d39feb112b9530a7448c252cdbdebbf477cb1b3b17abfa77d
all runs: OK
# git bisect good 22fc9db296fcf7ac30151c52765a7fba10870ab7
Bisecting: 1 revision left to test after this (roughly 1 step)
[8e31582a9ab18093c0b7708b52d7f79eed9a8688] gfs2: Fix minor typo: couln't versus couldn't.
testing commit 8e31582a9ab18093c0b7708b52d7f79eed9a8688 with gcc (GCC) 8.1.0
kernel signature: 07c02ac00d4b907f1a7b6a660eb92e04f6842f159a181f3a7e545c0f5e397ba1
all runs: OK
# git bisect good 8e31582a9ab18093c0b7708b52d7f79eed9a8688
Bisecting: 0 revisions left to test after this (roughly 0 steps)
[e1cbbf4067820ea4df534dd96f51c8f67854dcad] Merge tag 'for-linus-4.20-ofs1' of git://git.kernel.org/pub/scm/linux/kernel/git/hubcap/linux
testing commit e1cbbf4067820ea4df534dd96f51c8f67854dcad with gcc (GCC) 8.1.0
kernel signature: 484e041dbcb34e0d45c91d40159cb893212665dd446387f1eb4d802783432c42
all runs: OK
# git bisect good e1cbbf4067820ea4df534dd96f51c8f67854dcad
bfd93a87eadb03499a5ff02dfebfaf515310d27c is the first bad commit
commit bfd93a87eadb03499a5ff02dfebfaf515310d27c
Merge: e1cbbf406782 8e31582a9ab1
Author: Linus Torvalds <torvalds@linux-foundation.org>
Date:   Wed Oct 24 17:30:39 2018 +0100

    Merge tag 'gfs2-4.20.fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/gfs2/linux-gfs2
    
    Pull gfs2 updates from Bob Peterson:
     "We've got 18 patches for this merge window, none of which are very
      major:
    
       - clean up the gfs2 block allocator to prepare for future performance
         enhancements (Andreas Gruenbacher)
    
       - fix a use-after-free problem (Andy Price)
    
       - patches that fix gfs2's broken rgrplvb mount option (me)
    
       - cleanup patches and error message improvements (me)
    
       - enable getlabel support (Steve Whitehouse and Abhi Das)
    
       - flush the glock delete workqueue at exit (Tim Smith)"
    
    * tag 'gfs2-4.20.fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/gfs2/linux-gfs2:
      gfs2: Fix minor typo: couln't versus couldn't.
      gfs2: write revokes should traverse sd_ail1_list in reverse
      gfs2: Pass resource group to rgblk_free
      gfs2: Remove unnecessary gfs2_rlist_alloc parameter
      gfs2: Fix marking bitmaps non-full
      gfs2: Fix some minor typos
      gfs2: Rename bitmap.bi_{len => bytes}
      gfs2: Remove unused RGRP_RSRV_MINBYTES definition
      gfs2: Move rs_{sizehint, rgd_gh} fields into the inode
      gfs2: Clean up out-of-bounds check in gfs2_rbm_from_block
      gfs2: Always check the result of gfs2_rbm_from_block
      gfs2: getlabel support
      GFS2: Flush the GFS2 delete workqueue before stopping the kernel threads
      gfs2: Don't leave s_fs_info pointing to freed memory in init_sbd
      gfs2: Use fs_* functions instead of pr_* function where we can
      gfs2: slow the deluge of io error messages
      gfs2: Don't set GFS2_RDF_UPTODATE when the lvb is updated
      gfs2: improve debug information when lvb mismatches are found

 fs/gfs2/bmap.c       |   4 +-
 fs/gfs2/dir.c        |  28 ++++---
 fs/gfs2/file.c       |  18 ++++-
 fs/gfs2/glock.c      |  17 +++--
 fs/gfs2/incore.h     |   9 +--
 fs/gfs2/lock_dlm.c   |  10 +--
 fs/gfs2/log.c        |  11 ++-
 fs/gfs2/lops.c       |   2 +-
 fs/gfs2/main.c       |   2 +
 fs/gfs2/ops_fstype.c |   2 +-
 fs/gfs2/quota.c      |   2 +-
 fs/gfs2/rgrp.c       | 201 +++++++++++++++++++++++++++++----------------------
 fs/gfs2/rgrp.h       |  11 +--
 fs/gfs2/super.c      |   4 +-
 fs/gfs2/trans.c      |  15 ++--
 fs/gfs2/util.c       |  16 ++--
 fs/gfs2/util.h       |   2 +-
 fs/gfs2/xattr.c      |  18 +++--
 18 files changed, 218 insertions(+), 154 deletions(-)
revisions tested: 26, total time: 5h41m52.435530831s (build: 2h33m21.559371756s, test: 3h4m56.751520269s)
first bad commit: bfd93a87eadb03499a5ff02dfebfaf515310d27c Merge tag 'gfs2-4.20.fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/gfs2/linux-gfs2
cc: ["torvalds@linux-foundation.org"]
crash: general protection fault in batadv_iv_ogm_queue_add
batman_adv: batadv0: Removing interface: batadv_slave_0
batman_adv: batadv0: Interface deactivated: batadv_slave_1
batman_adv: batadv0: Removing interface: batadv_slave_1
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 7 Comm: kworker/u4:0 Not tainted 4.19.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
RIP: 0010:batadv_iv_ogm_queue_add+0x9a/0xf00 net/batman-adv/bat_iv_ogm.c:612
Code: 44 89 8d 64 ff ff ff c7 02 f1 f1 f1 f1 c7 42 04 04 f2 f2 f2 48 89 fa 65 48 8b 0c 25 28 00 00 00 48 89 4d d0 31 c9 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 25 0c 00 00
RSP: 0018:ffff8800aa3bfac8 EFLAGS: 00010246
RAX: dffffc0000000000 RBX: 000000000000003c RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: ffff8800aa3bfbd8 R08: ffff88009009b540 R09: 0000000000000001
R10: ffffed0015477f8f R11: 0000000000000003 R12: ffff88009a30e880
R13: dffffc0000000000 R14: ffffed00120136b6 R15: ffff88009009b568
FS:  0000000000000000(0000) GS:ffff8800aea00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f0caffaf000 CR3: 00000000961ad000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 batadv_iv_ogm_schedule+0xb47/0xe80 net/batman-adv/bat_iv_ogm.c:820
 batadv_iv_send_outstanding_bat_ogm_packet+0x4a2/0x7a0 net/batman-adv/bat_iv_ogm.c:1682
 process_one_work+0x7b9/0x15a0 kernel/workqueue.c:2153
 worker_thread+0x85/0xb60 kernel/workqueue.c:2296
 kthread+0x324/0x3e0 kernel/kthread.c:246
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:350
Modules linked in:
---[ end trace 7030f97364dda0be ]---
RIP: 0010:batadv_iv_ogm_queue_add+0x9a/0xf00 net/batman-adv/bat_iv_ogm.c:612
Code: 44 89 8d 64 ff ff ff c7 02 f1 f1 f1 f1 c7 42 04 04 f2 f2 f2 48 89 fa 65 48 8b 0c 25 28 00 00 00 48 89 4d d0 31 c9 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 25 0c 00 00
RSP: 0018:ffff8800aa3bfac8 EFLAGS: 00010246
RAX: dffffc0000000000 RBX: 000000000000003c RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: ffff8800aa3bfbd8 R08: ffff88009009b540 R09: 0000000000000001
R10: ffffed0015477f8f R11: 0000000000000003 R12: ffff88009a30e880
R13: dffffc0000000000 R14: ffffed00120136b6 R15: ffff88009009b568
FS:  0000000000000000(0000) GS:ffff8800aea00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f0caffaf000 CR3: 00000000961ad000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400