bisecting fixing commit since f6e27dbb1afabcba436e346d6aa88a592a1436bb building syzkaller on d96e88f3207d7ac7ad65e13b896f702ad04c46f7 testing commit f6e27dbb1afabcba436e346d6aa88a592a1436bb with gcc (GCC) 8.1.0 kernel signature: 4b7b1894cf9493c816fa5dbbc006d641f71be566 all runs: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system testing current HEAD a844dc4c544291470aa69edbe2434b040794e269 testing commit a844dc4c544291470aa69edbe2434b040794e269 with gcc (GCC) 8.1.0 kernel signature: df0c5f64a3b23e27b0d7f58887b9999081681099 run #0: OK run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor787077051" "root@10.128.15.237:./syz-executor787077051"]: exit status 1 Connection timed out during banner exchange lost connection # git bisect start a844dc4c544291470aa69edbe2434b040794e269 f6e27dbb1afabcba436e346d6aa88a592a1436bb Bisecting: 795 revisions left to test after this (roughly 10 steps) [a4f14d5a0795fe7c4f75d31ef4abf816570e3872] x86/speculation/taa: Add documentation for TSX Async Abort testing commit a4f14d5a0795fe7c4f75d31ef4abf816570e3872 with gcc (GCC) 8.1.0 kernel signature: 37c63e91a5e074b3194323e474c3b20e581ec594 all runs: OK # git bisect bad a4f14d5a0795fe7c4f75d31ef4abf816570e3872 Bisecting: 397 revisions left to test after this (roughly 9 steps) [2e18e22063986658f0ebfb90f742ab1f6e378f33] Revert "drm/radeon: Fix EEH during kexec" testing commit 2e18e22063986658f0ebfb90f742ab1f6e378f33 with gcc (GCC) 8.1.0 kernel signature: 113ce6f4cb4e8a0538168e58506dc154c6984858 all runs: OK # git bisect bad 2e18e22063986658f0ebfb90f742ab1f6e378f33 Bisecting: 198 revisions left to test after this (roughly 8 steps) [3f7708795b45c5d983c95a0ff1dba2a597c6a770] clk: sirf: Don't reference clk_init_data after registration testing commit 3f7708795b45c5d983c95a0ff1dba2a597c6a770 with gcc (GCC) 8.1.0 kernel signature: 092800abdd82f13a0735153e9fa31669dc4f5b6c run #0: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system run #1: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system run #2: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system run #3: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system run #4: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system run #5: crashed: BUG: unable to handle kernel run #6: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system run #7: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system run #8: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system run #9: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system # git bisect good 3f7708795b45c5d983c95a0ff1dba2a597c6a770 Bisecting: 99 revisions left to test after this (roughly 7 steps) [2046beea7627daf02d4ef3128f2f7188ef18f6c2] perf unwind: Fix libunwind build failure on i386 systems testing commit 2046beea7627daf02d4ef3128f2f7188ef18f6c2 with gcc (GCC) 8.1.0 kernel signature: 7a00d56997785bcd28d76f245ce2a178c280498b all runs: OK # git bisect bad 2046beea7627daf02d4ef3128f2f7188ef18f6c2 Bisecting: 49 revisions left to test after this (roughly 6 steps) [227db8e4c34674124ee6e4a9d534f3a0cc22304c] tipc: fix unlimited bundling of small messages testing commit 227db8e4c34674124ee6e4a9d534f3a0cc22304c with gcc (GCC) 8.1.0 kernel signature: 284b38077012f0936e45467448d20b56ad7861d1 all runs: crashed: KASAN: null-ptr-deref Write in kvm_write_guest_virt_system # git bisect good 227db8e4c34674124ee6e4a9d534f3a0cc22304c Bisecting: 24 revisions left to test after this (roughly 5 steps) [8f25db0a2e89f529beccdd7c13dc70d6857e5dbe] timer: Read jiffies once when forwarding base clk testing commit 8f25db0a2e89f529beccdd7c13dc70d6857e5dbe with gcc (GCC) 8.1.0 kernel signature: 8f52f345b636835b91229965e4c2bfff501f11ff run #0: crashed: INFO: rcu detected stall in corrupted run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 8f25db0a2e89f529beccdd7c13dc70d6857e5dbe Bisecting: 12 revisions left to test after this (roughly 4 steps) [6c5207b5c4e42a2cbcbdfdbd0397a9a6883f8af2] xen/pci: reserve MCFG areas earlier testing commit 6c5207b5c4e42a2cbcbdfdbd0397a9a6883f8af2 with gcc (GCC) 8.1.0 kernel signature: d228b788c16097211af8d7813be96ac485175631 run #0: OK run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor095968857" "root@10.128.15.197:./syz-executor095968857"]: exit status 1 Connection timed out during banner exchange lost connection run #9: OK # git bisect bad 6c5207b5c4e42a2cbcbdfdbd0397a9a6883f8af2 Bisecting: 5 revisions left to test after this (roughly 3 steps) [baba981bfea8e8e80a5d42c0b1233e029360746a] xen/xenbus: fix self-deadlock after killing user process testing commit baba981bfea8e8e80a5d42c0b1233e029360746a with gcc (GCC) 8.1.0 kernel signature: 80576b797a1a4920f33cd09bf7aff8bcb908a7f0 all runs: OK # git bisect bad baba981bfea8e8e80a5d42c0b1233e029360746a Bisecting: 2 revisions left to test after this (roughly 2 steps) [7e7df7f5cbc254481375a5fdf0db21458e99a962] mmc: sdhci: improve ADMA error reporting testing commit 7e7df7f5cbc254481375a5fdf0db21458e99a962 with gcc (GCC) 8.1.0 kernel signature: d0290d875a4895d2d32a2e0a8b030da34ab65bd1 all runs: OK # git bisect bad 7e7df7f5cbc254481375a5fdf0db21458e99a962 Bisecting: 0 revisions left to test after this (roughly 1 step) [2ed8cd8998cd93ac5088b6253f3986ad89aaf36f] drm/omap: fix max fclk divider for omap36xx testing commit 2ed8cd8998cd93ac5088b6253f3986ad89aaf36f with gcc (GCC) 8.1.0 kernel signature: 3b3f64e9103ac4e1fcfd5eb0eae22988312f70e7 all runs: OK # git bisect bad 2ed8cd8998cd93ac5088b6253f3986ad89aaf36f Bisecting: 0 revisions left to test after this (roughly 0 steps) [2890b718f4a8bab2b4e4ef773cecab2b99ddd5d6] watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout testing commit 2890b718f4a8bab2b4e4ef773cecab2b99ddd5d6 with gcc (GCC) 8.1.0 kernel signature: 77318d1ffeac4e2761bc42f99be0c63a99eebd08 all runs: OK # git bisect bad 2890b718f4a8bab2b4e4ef773cecab2b99ddd5d6 2890b718f4a8bab2b4e4ef773cecab2b99ddd5d6 is the first bad commit commit 2890b718f4a8bab2b4e4ef773cecab2b99ddd5d6 Author: Rasmus Villemoes Date: Mon Aug 12 15:13:56 2019 +0200 watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout commit 144783a80cd2cbc45c6ce17db649140b65f203dd upstream. Converting from ms to s requires dividing by 1000, not multiplying. So this is currently taking the smaller of new_timeout and 1.28e8, i.e. effectively new_timeout. The driver knows what it set max_hw_heartbeat_ms to, so use that value instead of doing a division at run-time. FWIW, this can easily be tested by booting into a busybox shell and doing "watchdog -t 5 -T 130 /dev/watchdog" - without this patch, the watchdog fires after 130&127 == 2 seconds. Fixes: b07e228eee69 "watchdog: imx2_wdt: Fix set_timeout for big timeout values" Cc: stable@vger.kernel.org # 5.2 plus anything the above got backported to Signed-off-by: Rasmus Villemoes Reviewed-by: Guenter Roeck Link: https://lore.kernel.org/r/20190812131356.23039-1-linux@rasmusvillemoes.dk Signed-off-by: Guenter Roeck Signed-off-by: Wim Van Sebroeck Signed-off-by: Greg Kroah-Hartman drivers/watchdog/imx2_wdt.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) culprit signature: 77318d1ffeac4e2761bc42f99be0c63a99eebd08 parent signature: 8f52f345b636835b91229965e4c2bfff501f11ff revisions tested: 13, total time: 3h36m34.765323657s (build: 1h44m42.133293374s, test: 1h50m31.950971431s) first good commit: 2890b718f4a8bab2b4e4ef773cecab2b99ddd5d6 watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout cc: ["gregkh@linuxfoundation.org" "linux@rasmusvillemoes.dk" "linux@roeck-us.net" "wim@linux-watchdog.org"]