bisecting fixing commit since d7e78d08fa77acdea351c8f628f49ca9a0e1029a building syzkaller on abf9ba4fc75d9b29af15625d44dcfc1360fad3b7 testing commit d7e78d08fa77acdea351c8f628f49ca9a0e1029a with gcc (GCC) 8.1.0 kernel signature: 7fc3e080e4aa5816c3d97472a6be7f727ed39f2140a4b9b10a69c9ff5b2b3be7 run #0: crashed: general protection fault in locks_remove_file run #1: crashed: general protection fault in locks_remove_file run #2: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #3: crashed: WARNING: ODEBUG bug in get_signal run #4: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #5: crashed: BUG: unable to handle kernel paging request in snd_pcm_format_set_silence run #6: crashed: general protection fault in locks_remove_file run #7: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #8: crashed: general protection fault in locks_remove_file run #9: crashed: general protection fault in locks_remove_file testing current HEAD bae31eef2a167ef160ab2703b6a2f5bbecd98d92 testing commit bae31eef2a167ef160ab2703b6a2f5bbecd98d92 with gcc (GCC) 8.1.0 kernel signature: 757b3a2875a4e6358073d2d2fe36c3c5255afbf1c065bf563dc5d457b5cb635d all runs: OK # git bisect start bae31eef2a167ef160ab2703b6a2f5bbecd98d92 d7e78d08fa77acdea351c8f628f49ca9a0e1029a Bisecting: 215 revisions left to test after this (roughly 8 steps) [99401ea1ff86a411c688716c008e8f4d0eb6907d] RDMA/rxe: Fix the parent sysfs read when the interface has 15 chars testing commit 99401ea1ff86a411c688716c008e8f4d0eb6907d with gcc (GCC) 8.1.0 kernel signature: d0099684978f71cfdb16a4437a7279c5b942657a6d26333af42693a1756df237 all runs: OK # git bisect bad 99401ea1ff86a411c688716c008e8f4d0eb6907d Bisecting: 107 revisions left to test after this (roughly 7 steps) [4c65a7832377893c68b3f347450194edfc097fe1] MIPS: mm: BMIPS5000 has inclusive physical caches testing commit 4c65a7832377893c68b3f347450194edfc097fe1 with gcc (GCC) 8.1.0 kernel signature: ef4765778a4089e55e239da5b35cf3e3d11aac0371643f4e395f0ce93bcf1ec7 run #0: crashed: general protection fault in locks_remove_file run #1: crashed: general protection fault in locks_remove_file run #2: crashed: general protection fault in locks_remove_file run #3: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #4: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #5: crashed: general protection fault in locks_remove_file run #6: crashed: general protection fault in locks_remove_file run #7: crashed: KASAN: use-after-free Read in snd_pcm_oss_release run #8: crashed: KASAN: use-after-free Read in eventpoll_release_file run #9: crashed: BUG: unable to handle kernel paging request in snd_pcm_format_set_silence # git bisect good 4c65a7832377893c68b3f347450194edfc097fe1 Bisecting: 53 revisions left to test after this (roughly 6 steps) [1356c3e8539ac48b9362e60b1fa80ec06bb960ec] vfio-pci: Invalidate mmaps and block MMIO access on disabled memory testing commit 1356c3e8539ac48b9362e60b1fa80ec06bb960ec with gcc (GCC) 8.1.0 kernel signature: be58e26b52e4bc9952b4d1dd8e452e53a5113d918bb4bdeebac7bace63ca4f89 all runs: OK # git bisect bad 1356c3e8539ac48b9362e60b1fa80ec06bb960ec Bisecting: 26 revisions left to test after this (roughly 5 steps) [80c8b74ce1fdf384c6ae43654501d9979802e8e1] btrfs: fix potential deadlock in the search ioctl testing commit 80c8b74ce1fdf384c6ae43654501d9979802e8e1 with gcc (GCC) 8.1.0 kernel signature: aa734a6893583022da46c8a410501301fe528d0c5239f30a809b2acb6ab3eb0e all runs: OK # git bisect bad 80c8b74ce1fdf384c6ae43654501d9979802e8e1 Bisecting: 13 revisions left to test after this (roughly 4 steps) [41cb677dad4c9cd424405e0d10c509ae4cdc7a9c] nvmet-fc: Fix a missed _irqsave version of spin_lock in 'nvmet_fc_fod_op_done()' testing commit 41cb677dad4c9cd424405e0d10c509ae4cdc7a9c with gcc (GCC) 8.1.0 kernel signature: 69155dd98d79e96d09604f5e8322afb9ffcd8ab9097325f246d92c6e8f5f4073 run #0: crashed: general protection fault in locks_remove_file run #1: crashed: general protection fault in locks_remove_file run #2: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #3: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #4: crashed: general protection fault in locks_remove_file run #5: crashed: general protection fault in locks_remove_file run #6: crashed: general protection fault in locks_remove_file run #7: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #8: crashed: general protection fault in locks_remove_file run #9: crashed: general protection fault in locks_remove_file # git bisect good 41cb677dad4c9cd424405e0d10c509ae4cdc7a9c Bisecting: 6 revisions left to test after this (roughly 3 steps) [5ace0847122fb22f18a20fb7809339cb3d789f01] include/linux/log2.h: add missing () around n in roundup_pow_of_two() testing commit 5ace0847122fb22f18a20fb7809339cb3d789f01 with gcc (GCC) 8.1.0 kernel signature: c3325de06fe890834b52128e573e40cfe638af2fe62e242b92a22de0bc931e14 all runs: OK # git bisect bad 5ace0847122fb22f18a20fb7809339cb3d789f01 Bisecting: 3 revisions left to test after this (roughly 2 steps) [c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888] fix regression in "epoll: Keep a reference on files added to the check list" testing commit c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 with gcc (GCC) 8.1.0 kernel signature: 4434b193356b1e1966c96d39dcd68fdc51db841a317d9286bfe8e957f7c0b264 all runs: OK # git bisect bad c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 Bisecting: 0 revisions left to test after this (roughly 1 step) [cfb5e057b7179767d6f3cef3381633417e4e3afb] net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() testing commit cfb5e057b7179767d6f3cef3381633417e4e3afb with gcc (GCC) 8.1.0 kernel signature: a0949666473192f0668b67b91bcbe7cbacdbdb1ee03b2ba355dc86a09e1cb7a3 run #0: crashed: general protection fault in locks_remove_file run #1: crashed: general protection fault in locks_remove_file run #2: crashed: general protection fault in locks_remove_file run #3: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #4: crashed: KASAN: use-after-free Read in snd_pcm_oss_release_file run #5: crashed: general protection fault in locks_remove_file run #6: crashed: general protection fault in locks_remove_file run #7: crashed: general protection fault in locks_remove_file run #8: crashed: general protection fault in locks_remove_file run #9: crashed: general protection fault in locks_remove_file # git bisect good cfb5e057b7179767d6f3cef3381633417e4e3afb c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 is the first bad commit commit c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 Author: Al Viro Date: Wed Sep 2 11:30:48 2020 -0400 fix regression in "epoll: Keep a reference on files added to the check list" [ Upstream commit 77f4689de17c0887775bb77896f4cc11a39bf848 ] epoll_loop_check_proc() can run into a file already committed to destruction; we can't grab a reference on those and don't need to add them to the set for reverse path check anyway. Tested-by: Marc Zyngier Fixes: a9ed4a6560b8 ("epoll: Keep a reference on files added to the check list") Signed-off-by: Al Viro Signed-off-by: Sasha Levin fs/eventpoll.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) culprit signature: 4434b193356b1e1966c96d39dcd68fdc51db841a317d9286bfe8e957f7c0b264 parent signature: a0949666473192f0668b67b91bcbe7cbacdbdb1ee03b2ba355dc86a09e1cb7a3 revisions tested: 10, total time: 2h42m17.95620216s (build: 1h26m51.412307256s, test: 1h14m11.906665161s) first good commit: c5c6e00f6cc5d3ed0d6464b14e33f2f5c8505888 fix regression in "epoll: Keep a reference on files added to the check list" recipients (to): ["maz@kernel.org" "sashal@kernel.org" "viro@zeniv.linux.org.uk"] recipients (cc): []