bisecting cause commit starting from f6e7a024bfe5e11d91ccff46bb576e3fb5a516ea building syzkaller on b1c228e1773559f05fa98950902ab025d6ab946e testing commit f6e7a024bfe5e11d91ccff46bb576e3fb5a516ea with gcc (GCC) 8.1.0 kernel signature: 91c055f07f410c3f608ae766e7449abd25257b102a19a29148b4060393c3dafc all runs: crashed: WARNING in bpf_prog_test_run_raw_tp testing release v5.10 testing commit 2c85ebc57b3e1817b6ce1a6b703928e113a90442 with gcc (GCC) 8.1.0 kernel signature: 395a614079c9030036488f72c030c4708fae86b9aba956ca15d15003efd3a593 all runs: crashed: WARNING in bpf_prog_test_run_raw_tp testing release v5.9 testing commit bbf5c979011a099af5dc76498918ed7df445635b with gcc (GCC) 8.1.0 kernel signature: 267e4e72ea6151d6ca484a7d3cc70be89ff7365b860f2a296ca76a677664b0bf all runs: OK # git bisect start 2c85ebc57b3e1817b6ce1a6b703928e113a90442 bbf5c979011a099af5dc76498918ed7df445635b Bisecting: 9594 revisions left to test after this (roughly 13 steps) [4d0e9df5e43dba52d38b251e3b909df8fa1110be] lib, uaccess: add failure injection to usercopy functions testing commit 4d0e9df5e43dba52d38b251e3b909df8fa1110be with gcc (GCC) 8.1.0 kernel signature: adf5c405dd67b7187b8c7a52cca0fc6cc5133c6871aaec8f932c63715200b76f all runs: OK # git bisect good 4d0e9df5e43dba52d38b251e3b909df8fa1110be Bisecting: 4874 revisions left to test after this (roughly 12 steps) [6694875ef8045cdb1e6712ee9b68fe08763507d8] ext4: indicate that fast_commit is available via /sys/fs/ext4/feature/... testing commit 6694875ef8045cdb1e6712ee9b68fe08763507d8 with gcc (GCC) 8.1.0 kernel signature: de5036e0667ef71f4416e498adf1d692b84b63e706eeeb6a14a442c45b88888c all runs: crashed: WARNING in bpf_prog_test_run_raw_tp # git bisect bad 6694875ef8045cdb1e6712ee9b68fe08763507d8 Bisecting: 2342 revisions left to test after this (roughly 11 steps) [14c914fcb515c424177bb6848cc2858ebfe717a8] Merge tag 'wireless-drivers-next-2020-10-02' of git://git.kernel.org/pub/scm/linux/kernel/git/kvalo/wireless-drivers-next testing commit 14c914fcb515c424177bb6848cc2858ebfe717a8 with gcc (GCC) 8.1.0 kernel signature: b5e91a123d6b1deea770ff1ddef7ed00b75477c99bec6ea15b4ba2c447bd704d all runs: crashed: WARNING in bpf_prog_test_run_raw_tp # git bisect bad 14c914fcb515c424177bb6848cc2858ebfe717a8 Bisecting: 1188 revisions left to test after this (roughly 10 steps) [d134b78ee34823c607875c77426e18c762a911ea] Merge branch 'net-various-delete-duplicated-words' testing commit d134b78ee34823c607875c77426e18c762a911ea with gcc (GCC) 8.1.0 kernel signature: 8f0ffe0752d7c70872ac449808dfeae43dbb595a5d50c87965421daf9e0b01a4 all runs: OK # git bisect good d134b78ee34823c607875c77426e18c762a911ea Bisecting: 594 revisions left to test after this (roughly 9 steps) [0189399cbb5eba6e98f02b61574b507062c476b7] vxlan: add unlikely to vxlan_remcsum check testing commit 0189399cbb5eba6e98f02b61574b507062c476b7 with gcc (GCC) 8.1.0 kernel signature: 739253f338c95dd5ab38dc4f997e254529a641a36d3cc2c1b8c90b7c25072c22 all runs: OK # git bisect good 0189399cbb5eba6e98f02b61574b507062c476b7 Bisecting: 297 revisions left to test after this (roughly 8 steps) [97ffd895fe9c7b066f3e9c9ea10f5902ebcdbb11] net/mlx5: DR, Replace the check for valid STE entry testing commit 97ffd895fe9c7b066f3e9c9ea10f5902ebcdbb11 with gcc (GCC) 8.1.0 kernel signature: 982e8fba3461f3b02c50b42114283f25925a90d604217e1d55355bee006e1478 all runs: OK # git bisect good 97ffd895fe9c7b066f3e9c9ea10f5902ebcdbb11 Bisecting: 151 revisions left to test after this (roughly 7 steps) [4f359b653f7f598c29a1fbcf69fa975bf510061b] net/smscx5xx: change to of_get_mac_address() eth_platform_get_mac_address() testing commit 4f359b653f7f598c29a1fbcf69fa975bf510061b with gcc (GCC) 8.1.0 kernel signature: 0b889c7bac8d7d8cd3736b8ad745684fd72e6a4c2ff4fef4d161312605e65f94 all runs: crashed: WARNING in bpf_prog_test_run_raw_tp # git bisect bad 4f359b653f7f598c29a1fbcf69fa975bf510061b Bisecting: 72 revisions left to test after this (roughly 6 steps) [4a1e7c0c63e02daad751842b7880f9bbcdfb6e89] bpf: Support attaching freplace programs to multiple attach points testing commit 4a1e7c0c63e02daad751842b7880f9bbcdfb6e89 with gcc (GCC) 8.1.0 kernel signature: 8391831d7ef45bc80a409b4c9e9bad566687a83b361988941fb1ca3ff7becd4a all runs: crashed: WARNING in bpf_prog_test_run_raw_tp # git bisect bad 4a1e7c0c63e02daad751842b7880f9bbcdfb6e89 Bisecting: 36 revisions left to test after this (roughly 5 steps) [84a20d8e8795b45e3f1673648d43b4cf0f594359] Merge branch 'Sockmap copying' testing commit 84a20d8e8795b45e3f1673648d43b4cf0f594359 with gcc (GCC) 8.1.0 kernel signature: c44a2a16b2454c50733f7117d3d32f6f12da987afd6e225a14dde363ccfbf13a all runs: crashed: WARNING in bpf_prog_test_run_raw_tp # git bisect bad 84a20d8e8795b45e3f1673648d43b4cf0f594359 Bisecting: 17 revisions left to test after this (roughly 4 steps) [b18c1f0aa4775bf1ecfbe5942e4e7c6bffdeff6a] bpf: selftest: Adapt sock_fields test to use skel and global variables testing commit b18c1f0aa4775bf1ecfbe5942e4e7c6bffdeff6a with gcc (GCC) 8.1.0 kernel signature: c09470af9b8c4384b00ac32d1eb074f766b1e96ada031a32a7de8b2b6725097a all runs: OK # git bisect good b18c1f0aa4775bf1ecfbe5942e4e7c6bffdeff6a Bisecting: 8 revisions left to test after this (roughly 3 steps) [1fd17c8cd0aa636afcf441ee23023b5a7cba4efa] xsk: Fix possible crash in socket_release when out-of-memory testing commit 1fd17c8cd0aa636afcf441ee23023b5a7cba4efa with gcc (GCC) 8.1.0 kernel signature: 44fc8bb9ed91f60fff66d72f89bbb00b686a64c4a64e4a4a0474a2615ec34fa6 all runs: OK # git bisect good 1fd17c8cd0aa636afcf441ee23023b5a7cba4efa Bisecting: 4 revisions left to test after this (roughly 2 steps) [efa90b50934c93647e41da23d87e5d8b670014d4] bpf, cpumap: Remove rcpu pointer from cpu_map_build_skb signature testing commit efa90b50934c93647e41da23d87e5d8b670014d4 with gcc (GCC) 8.1.0 kernel signature: 1fd931389dafc0a5b7c3a37ef348bede22a40cf9514648d3fe5b21444c11442b all runs: crashed: WARNING in bpf_prog_test_run_raw_tp # git bisect bad efa90b50934c93647e41da23d87e5d8b670014d4 Bisecting: 1 revision left to test after this (roughly 1 step) [88f7fe7233244101fa5b7786e2e298bf27fe1375] libbpf: Support test run of raw tracepoint programs testing commit 88f7fe7233244101fa5b7786e2e298bf27fe1375 with gcc (GCC) 8.1.0 kernel signature: 5719d5986af7fab29d28aef5c62c57da3321a7beb8e0ae4ae02c8fa60557caa9 all runs: crashed: WARNING in bpf_prog_test_run_raw_tp # git bisect bad 88f7fe7233244101fa5b7786e2e298bf27fe1375 Bisecting: 0 revisions left to test after this (roughly 0 steps) [1b4d60ec162f82ea29a2e7a907b5c6cc9f926321] bpf: Enable BPF_PROG_TEST_RUN for raw_tracepoint testing commit 1b4d60ec162f82ea29a2e7a907b5c6cc9f926321 with gcc (GCC) 8.1.0 kernel signature: 5719d5986af7fab29d28aef5c62c57da3321a7beb8e0ae4ae02c8fa60557caa9 all runs: crashed: WARNING in bpf_prog_test_run_raw_tp # git bisect bad 1b4d60ec162f82ea29a2e7a907b5c6cc9f926321 1b4d60ec162f82ea29a2e7a907b5c6cc9f926321 is the first bad commit commit 1b4d60ec162f82ea29a2e7a907b5c6cc9f926321 Author: Song Liu Date: Fri Sep 25 13:54:29 2020 -0700 bpf: Enable BPF_PROG_TEST_RUN for raw_tracepoint Add .test_run for raw_tracepoint. Also, introduce a new feature that runs the target program on a specific CPU. This is achieved by a new flag in bpf_attr.test, BPF_F_TEST_RUN_ON_CPU. When this flag is set, the program is triggered on cpu with id bpf_attr.test.cpu. This feature is needed for BPF programs that handle perf_event and other percpu resources, as the program can access these resource locally. Signed-off-by: Song Liu Signed-off-by: Daniel Borkmann Acked-by: John Fastabend Acked-by: Andrii Nakryiko Link: https://lore.kernel.org/bpf/20200925205432.1777-2-songliubraving@fb.com include/linux/bpf.h | 3 ++ include/uapi/linux/bpf.h | 7 ++++ kernel/bpf/syscall.c | 2 +- kernel/trace/bpf_trace.c | 1 + net/bpf/test_run.c | 91 ++++++++++++++++++++++++++++++++++++++++++ tools/include/uapi/linux/bpf.h | 7 ++++ 6 files changed, 110 insertions(+), 1 deletion(-) culprit signature: 5719d5986af7fab29d28aef5c62c57da3321a7beb8e0ae4ae02c8fa60557caa9 parent signature: 44fc8bb9ed91f60fff66d72f89bbb00b686a64c4a64e4a4a0474a2615ec34fa6 revisions tested: 17, total time: 2h49m45.509899137s (build: 1h20m51.921374121s, test: 1h27m5.62706641s) first bad commit: 1b4d60ec162f82ea29a2e7a907b5c6cc9f926321 bpf: Enable BPF_PROG_TEST_RUN for raw_tracepoint recipients (to): ["andriin@fb.com" "daniel@iogearbox.net" "john.fastabend@gmail.com" "songliubraving@fb.com"] recipients (cc): [] crash: WARNING in bpf_prog_test_run_raw_tp ------------[ cut here ]------------ WARNING: CPU: 0 PID: 10145 at mm/page_alloc.c:4864 __alloc_pages_nodemask+0x3f2/0x4b0 mm/page_alloc.c:4864 Kernel panic - not syncing: panic_on_warn set ... CPU: 0 PID: 10145 Comm: syz-executor.0 Not tainted 5.9.0-rc6-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x77/0xa0 lib/dump_stack.c:118 panic+0x1b1/0x382 kernel/panic.c:231 __warn.cold.13+0x20/0x2d kernel/panic.c:600 report_bug+0xc0/0xf0 lib/bug.c:198 handle_bug+0x3f/0x70 arch/x86/kernel/traps.c:234 exc_invalid_op+0x13/0x60 arch/x86/kernel/traps.c:254 asm_exc_invalid_op+0x12/0x20 arch/x86/include/asm/idtentry.h:536 RIP: 0010:__alloc_pages_nodemask+0x3f2/0x4b0 mm/page_alloc.c:4864 Code: 7e 0f 85 1c fe ff ff e8 bb e9 ba ff e9 12 fe ff ff 48 89 c7 e8 6f 28 fb ff e9 78 fd ff ff 81 e7 00 20 00 00 0f 85 a9 fe ff ff <0f> 0b e9 a2 fe ff ff 0f 0b 48 c7 c7 f0 e6 f9 84 e8 54 51 b9 00 0f RSP: 0018:ffffc90002b93ce0 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffffc90002b93e90 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000000 RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000 R10: ffff88811db96400 R11: 0000000000000246 R12: 00000000fffffc26 R13: 0000000020000600 R14: 0000000000100dc0 R15: 0000000000000000 alloc_pages include/linux/gfp.h:545 [inline] kmalloc_order+0x23/0xb0 mm/slab_common.c:836 kmalloc_order_trace+0x17/0x150 mm/slab_common.c:852 kmalloc_large include/linux/slab.h:483 [inline] __kmalloc+0x19b/0x200 mm/slub.c:3958 kmalloc include/linux/slab.h:559 [inline] kzalloc include/linux/slab.h:666 [inline] bpf_prog_test_run_raw_tp+0x131/0x200 net/bpf/test_run.c:283 bpf_prog_test_run kernel/bpf/syscall.c:3006 [inline] __do_sys_bpf+0x763/0x2610 kernel/bpf/syscall.c:4284 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x45e219 Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 RSP: 002b:00007f3a90196c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045e219 RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a RBP: 000000000119bfc0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c R13: 00007ffe7248046f R14: 00007f3a901979c0 R15: 000000000119bf8c Kernel Offset: disabled Rebooting in 86400 seconds..