bisecting cause commit starting from 3f7bdc402fb06f897ff1f492a2d42e1f7c2efedb building syzkaller on 744a39e220cece33e207035facce6c5ae161b775 testing commit 3f7bdc402fb06f897ff1f492a2d42e1f7c2efedb compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 563e02ead9bce4697bd474b578c89c5baaca2c34d5224f8c09d809fcc045f3a2 all runs: crashed: BUG: sleeping function called from invalid context in binder_ioctl testing release v5.17 testing commit f443e374ae131c168a065ea1748feac6b2e76613 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 5169040a8cee51b455d41646e3a7b98ea5b226bdf3f6200ddbbdc2cee39b4010 all runs: OK # git bisect start 3f7bdc402fb06f897ff1f492a2d42e1f7c2efedb f443e374ae131c168a065ea1748feac6b2e76613 Bisecting: 14014 revisions left to test after this (roughly 14 steps) [02d4f8a3e05b4d09fcd20bd7dbe4046757e151e2] Merge tag 'tag-chrome-platform-for-v5.18' of git://git.kernel.org/pub/scm/linux/kernel/git/chrome-platform/linux testing commit 02d4f8a3e05b4d09fcd20bd7dbe4046757e151e2 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: c4cfdf68b4a0b6e9581339e65811fd49e4d9fe2e705dece47febaa63d1fa8261 all runs: OK # git bisect good 02d4f8a3e05b4d09fcd20bd7dbe4046757e151e2 Bisecting: 6899 revisions left to test after this (roughly 13 steps) [d8f1769fbbce9e614684f2c308bf3a16a518b932] Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next.git testing commit d8f1769fbbce9e614684f2c308bf3a16a518b932 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: e5d5496de9c57120f8f40bc6f1184760f33110c5618d36e87dd41cc5c24d8f79 all runs: OK # git bisect good d8f1769fbbce9e614684f2c308bf3a16a518b932 Bisecting: 3524 revisions left to test after this (roughly 12 steps) [b50fe5f0817ddc4d659f549a91c979e870e4d1f8] Merge branch 'for-next' of git://git.kernel.org/pub/scm/linux/kernel/git/broonie/spi.git testing commit b50fe5f0817ddc4d659f549a91c979e870e4d1f8 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 3f2463b501800be0597ba721476e0b09a7eee4abca6ad025141a4c5de52d2c53 all runs: OK # git bisect good b50fe5f0817ddc4d659f549a91c979e870e4d1f8 Bisecting: 1665 revisions left to test after this (roughly 11 steps) [58a9b74f978cb632c031c97cf4a0cf431b9932a9] Merge branch 'staging-next' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/staging.git testing commit 58a9b74f978cb632c031c97cf4a0cf431b9932a9 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: e4f5e175e2a614faf7507d42ae88f75bbf50fd999dd5e198dccf4f39cd17a873 all runs: crashed: BUG: sleeping function called from invalid context in binder_ioctl # git bisect bad 58a9b74f978cb632c031c97cf4a0cf431b9932a9 Bisecting: 935 revisions left to test after this (roughly 10 steps) [f906ac3b74fdcba9dd16f01811a75874097ee825] Merge branch 'driver-core-next' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/driver-core.git testing commit f906ac3b74fdcba9dd16f01811a75874097ee825 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: cf507ba1dbf753b79b389f2adcf3b18dc7f1743178e3a6a16ce621fcdccf3e0f all runs: OK # git bisect good f906ac3b74fdcba9dd16f01811a75874097ee825 Bisecting: 420 revisions left to test after this (roughly 9 steps) [0b69e15384d7cfa518ee85cdd75167d38da24a4f] Merge branch 'togreg' of git://git.kernel.org/pub/scm/linux/kernel/git/jic23/iio.git testing commit 0b69e15384d7cfa518ee85cdd75167d38da24a4f compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: ce73f90f19b1442c3d946555d6a00829d67a799d9aff5de557d4641dee1874a7 all runs: crashed: BUG: sleeping function called from invalid context in binder_ioctl # git bisect bad 0b69e15384d7cfa518ee85cdd75167d38da24a4f Bisecting: 238 revisions left to test after this (roughly 8 steps) [30b9e7f920178286d9c22da237a4cc472858478a] Merge branch 'tty-next' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/tty.git testing commit 30b9e7f920178286d9c22da237a4cc472858478a compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 506cf90c79f7a62d1037dd7a41048709985d29020b14cae72d83ab89b50d0ff6 all runs: OK # git bisect good 30b9e7f920178286d9c22da237a4cc472858478a Bisecting: 119 revisions left to test after this (roughly 7 steps) [1cb0aaf8890c9b56704b0294788569655e5ac736] iio: adc: stx104: Utilize iomap interface testing commit 1cb0aaf8890c9b56704b0294788569655e5ac736 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: de98d5b8224430a52adf7643b5ce1f6bf2ec22a0632ca1bfc6155407220d07db all runs: OK # git bisect good 1cb0aaf8890c9b56704b0294788569655e5ac736 Bisecting: 59 revisions left to test after this (roughly 6 steps) [9474be34a72726c5a20467e36d9b08102ff9d304] binder: add failed transaction logging info testing commit 9474be34a72726c5a20467e36d9b08102ff9d304 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 82e3a0129a339c7ac60e3ecf741fb8c621d649c00aea4a7334c97dd37a5f8095 all runs: OK # git bisect good 9474be34a72726c5a20467e36d9b08102ff9d304 Bisecting: 24 revisions left to test after this (roughly 5 steps) [e8a0ea9b54d7df48942104f0bcb1e936c9335383] Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/coresight/linux.git testing commit e8a0ea9b54d7df48942104f0bcb1e936c9335383 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 3f9809a0a498d8bf7aed120d22f681f9c6dd0605ea486051ceed059da062eb68 all runs: crashed: BUG: sleeping function called from invalid context in binder_ioctl # git bisect bad e8a0ea9b54d7df48942104f0bcb1e936c9335383 Bisecting: 17 revisions left to test after this (roughly 4 steps) [1adff542d67a2ed1120955cb219bfff8a9c53f59] coresight: cpu-debug: Replace mutex with mutex_trylock on panic notifier testing commit 1adff542d67a2ed1120955cb219bfff8a9c53f59 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 38df860ca3d2516f1e01bf2de506cdf203a06d7615e34c02b78beec1da364b94 all runs: OK # git bisect good 1adff542d67a2ed1120955cb219bfff8a9c53f59 Bisecting: 8 revisions left to test after this (roughly 3 steps) [b6b7ef932ae838209254f016ecf8862d716a5ced] nvmem: Add Apple eFuse driver testing commit b6b7ef932ae838209254f016ecf8862d716a5ced compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 44a110c34a7c1b5bc194fcda527923cce7929efdc5d69876b1d9b8f135d36c03 all runs: crashed: BUG: sleeping function called from invalid context in binder_ioctl # git bisect bad b6b7ef932ae838209254f016ecf8862d716a5ced Bisecting: 4 revisions left to test after this (roughly 2 steps) [a15dac8b228677daf8ad7f9855d38734ffa0e7d9] binder: additional transaction error logs testing commit a15dac8b228677daf8ad7f9855d38734ffa0e7d9 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 81e6ee3a2a193afeb8e59c7eafb23ca1059525d4a4eaeab39d8ebd2217a16950 all runs: crashed: BUG: sleeping function called from invalid context in binder_ioctl # git bisect bad a15dac8b228677daf8ad7f9855d38734ffa0e7d9 Bisecting: 1 revision left to test after this (roughly 1 step) [d23386ed7019d50164fa2066aae8656097a02425] binderfs: add extended_error feature entry testing commit d23386ed7019d50164fa2066aae8656097a02425 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: d497f649b538317349f84d468639bf4f4cbf44170147eaf9ad6558f94bc59433 all runs: crashed: BUG: sleeping function called from invalid context in binder_ioctl # git bisect bad d23386ed7019d50164fa2066aae8656097a02425 Bisecting: 0 revisions left to test after this (roughly 0 steps) [bd32889e841c12533d09a1bd02bba932baa9ed8f] binder: add BINDER_GET_EXTENDED_ERROR ioctl testing commit bd32889e841c12533d09a1bd02bba932baa9ed8f compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: c9e4392e7bf5785ba0afc819716074a3cb18ada2427ba1dcc70a78fdf08bcd7f run #0: crashed: BUG: sleeping function called from invalid context in binder_ioctl run #1: crashed: BUG: sleeping function called from invalid context in binder_ioctl run #2: crashed: BUG: sleeping function called from invalid context in binder_ioctl run #3: crashed: BUG: sleeping function called from invalid context in binder_ioctl run #4: crashed: BUG: sleeping function called from invalid context in binder_ioctl run #5: crashed: BUG: sleeping function called from invalid context in binder_ioctl run #6: crashed: BUG: sleeping function called from invalid context in binder_ioctl run #7: crashed: BUG: sleeping function called from invalid context in binder_ioctl run #8: crashed: BUG: sleeping function called from invalid context in binder_ioctl run #9: crashed: SYZFATAL: executor failed NUM times: executor NUM: exit status NUM # git bisect bad bd32889e841c12533d09a1bd02bba932baa9ed8f bd32889e841c12533d09a1bd02bba932baa9ed8f is the first bad commit commit bd32889e841c12533d09a1bd02bba932baa9ed8f Author: Carlos Llamas Date: Fri Apr 29 23:56:41 2022 +0000 binder: add BINDER_GET_EXTENDED_ERROR ioctl Provide a userspace mechanism to pull precise error information upon failed operations. Extending the current error codes returned by the interfaces allows userspace to better determine the course of action. This could be for instance, retrying a failed transaction at a later point and thus offloading the error handling from the driver. Acked-by: Christian Brauner (Microsoft) Acked-by: Todd Kjos Signed-off-by: Carlos Llamas Link: https://lore.kernel.org/r/20220429235644.697372-3-cmllamas@google.com Signed-off-by: Greg Kroah-Hartman drivers/android/binder.c | 60 +++++++++++++++++++++++++++++++++++++ drivers/android/binder_internal.h | 3 ++ include/uapi/linux/android/binder.h | 16 ++++++++++ 3 files changed, 79 insertions(+) culprit signature: c9e4392e7bf5785ba0afc819716074a3cb18ada2427ba1dcc70a78fdf08bcd7f parent signature: 82e3a0129a339c7ac60e3ecf741fb8c621d649c00aea4a7334c97dd37a5f8095 revisions tested: 17, total time: 3h51m38.270209152s (build: 1h44m24.453419618s, test: 2h5m21.761948761s) first bad commit: bd32889e841c12533d09a1bd02bba932baa9ed8f binder: add BINDER_GET_EXTENDED_ERROR ioctl recipients (to): ["brauner@kernel.org" "cmllamas@google.com" "gregkh@linuxfoundation.org" "tkjos@google.com"] recipients (cc): [] crash: SYZFATAL: executor failed NUM times: executor NUM: exit status NUM 2022/05/16 22:30:18 SYZFATAL: executor failed 11 times: executor 0: exit status 67 SYZFAIL: wrong response packet (errno 16: Device or resource busy) loop exited with status 67 SYZFAIL: wrong response packet (errno 16: Device or resource busy) loop exited with status 67