bisecting cause commit starting from be978f8feb1d4678b941a3ccf181eea1039110e2
building syzkaller on f90ec89960664f503e0811d8b67c56bb1128d47d
testing commit be978f8feb1d4678b941a3ccf181eea1039110e2 with gcc (GCC) 8.1.0
kernel signature: 93f24b2653b01ec8214093efc750db44e4bc39321841f754e17c96d5fb5516d0
all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
testing release v5.7
testing commit 3d77e6a8804abcc0504c904bd6e5cdf3a5cf8162 with gcc (GCC) 8.1.0
kernel signature: 52ac75e2930db643cabf82dc02b5da3102864acacba8e080e2c252c2c3a41ddd
all runs: OK
# git bisect start be978f8feb1d4678b941a3ccf181eea1039110e2 3d77e6a8804abcc0504c904bd6e5cdf3a5cf8162
Bisecting: 11903 revisions left to test after this (roughly 14 steps)
[80ef846e9909f22ccdc2a4a6d931266cecce8b2c] Merge tag 'staging-5.8-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/staging
testing commit 80ef846e9909f22ccdc2a4a6d931266cecce8b2c with gcc (GCC) 8.1.0
kernel signature: 1dcc28b4f42adc1b841c3db7785c19c65a3fd7c69bb4e1aacb65e95554d43a38
all runs: basic kernel testing failed: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks
# git bisect skip 80ef846e9909f22ccdc2a4a6d931266cecce8b2c
Bisecting: 11903 revisions left to test after this (roughly 14 steps)
[b97120b15ebd3de51325084136d3b9c3cce656d6] nvme-pci: use simple suspend when a HMB is enabled
testing commit b97120b15ebd3de51325084136d3b9c3cce656d6 with gcc (GCC) 8.1.0
kernel signature: 34f99a611f461b1d0cbd7ebc115d10dfd7fd43becfa748af92415813081388e8
all runs: OK
# git bisect good b97120b15ebd3de51325084136d3b9c3cce656d6
Bisecting: 10248 revisions left to test after this (roughly 13 steps)
[6f51ab9440d131ae424cce27e3170746219f5142] Merge tag 'mtd/for-5.8' of git://git.kernel.org/pub/scm/linux/kernel/git/mtd/linux
testing commit 6f51ab9440d131ae424cce27e3170746219f5142 with gcc (GCC) 8.1.0
kernel signature: a91b3a9b72e6b80823e56740bcc526387176963e257027d3ac1b84f387081e3c
all runs: basic kernel testing failed: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks
# git bisect skip 6f51ab9440d131ae424cce27e3170746219f5142
Bisecting: 10248 revisions left to test after this (roughly 13 steps)
[7b411871220af35722360cd1d1111c7fadfc29fe] misc: pch_phub: Remove superfluous descriptions to non-existent args 'offset_address'
testing commit 7b411871220af35722360cd1d1111c7fadfc29fe with gcc (GCC) 8.1.0
kernel signature: 25a60cf6c4e8b0cba605d5625c8becd7549c041705414ec133c0d735105df34c
all runs: OK
# git bisect good 7b411871220af35722360cd1d1111c7fadfc29fe
Bisecting: 4244 revisions left to test after this (roughly 12 steps)
[ae5e4d2e6d7bec8a063fd8608fba00fb8c273896] Merge remote-tracking branch 'crypto/master'
testing commit ae5e4d2e6d7bec8a063fd8608fba00fb8c273896 with gcc (GCC) 8.1.0
kernel signature: 0d763a40ff278f8dbe3d2ad0fc000700c5c6c25d8b22a9b8ad776583d832da58
all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
# git bisect bad ae5e4d2e6d7bec8a063fd8608fba00fb8c273896
Bisecting: 1898 revisions left to test after this (roughly 11 steps)
[05f24e945ebfaf1ccec7dc0cf6e664250b8d9df1] Merge remote-tracking branch 'printk/for-next'
testing commit 05f24e945ebfaf1ccec7dc0cf6e664250b8d9df1 with gcc (GCC) 8.1.0
kernel signature: fdec38da6cf30d6780e31b4035597fffa5b4063d83da71dca1e7d58411a5d9f8
all runs: OK
# git bisect good 05f24e945ebfaf1ccec7dc0cf6e664250b8d9df1
Bisecting: 1058 revisions left to test after this (roughly 10 steps)
[94339443686b36d3223bc032b7947267474e2679] net: bridge: notify on vlan tunnel changes done via the old api
testing commit 94339443686b36d3223bc032b7947267474e2679 with gcc (GCC) 8.1.0
kernel signature: df00904087a3609d1a7733e5b6d878b11d1665bcb1f3f9d7a6b4348e6f20a0a9
all runs: OK
# git bisect good 94339443686b36d3223bc032b7947267474e2679
Bisecting: 543 revisions left to test after this (roughly 9 steps)
[ccc6fde76206ba9ab5e2a0d4ff2af5969c61997e] Merge remote-tracking branch 'jc_docs/docs-next'
testing commit ccc6fde76206ba9ab5e2a0d4ff2af5969c61997e with gcc (GCC) 8.1.0
kernel signature: 69e55e24cc398a02f3bfd835ecfd7c721728946752b02b30ab01802d9979dc45
all runs: OK
# git bisect good ccc6fde76206ba9ab5e2a0d4ff2af5969c61997e
Bisecting: 279 revisions left to test after this (roughly 8 steps)
[a139dad6afb9d4b349711977ff0893c15534f748] Merge remote-tracking branch 'net-next/master'
testing commit a139dad6afb9d4b349711977ff0893c15534f748 with gcc (GCC) 8.1.0
kernel signature: 2d81988f734f231254e33b072732ee1e3476ba01c8d77328c21015f24002830b
all runs: OK
# git bisect good a139dad6afb9d4b349711977ff0893c15534f748
Bisecting: 140 revisions left to test after this (roughly 7 steps)
[941f8901f5329eb8111fd58d140e3bb5d8f89a75] Merge remote-tracking branch 'mtd/mtd/next'
testing commit 941f8901f5329eb8111fd58d140e3bb5d8f89a75 with gcc (GCC) 8.1.0
kernel signature: f3e86a984a305394034fa9fc7f9587eee1eaa7e0b1f55182a0d6312b302cf894
all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
# git bisect bad 941f8901f5329eb8111fd58d140e3bb5d8f89a75
Bisecting: 73 revisions left to test after this (roughly 6 steps)
[a2ee1d248468145c06c162c3369ed8fda07736cb] Merge remote-tracking branch 'wireless-drivers-next/master'
testing commit a2ee1d248468145c06c162c3369ed8fda07736cb with gcc (GCC) 8.1.0
kernel signature: f46e7e82d3d0d3b07d5d48560d62c1bb47ee11147e214d9a9d863dce040f3cf5
all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
# git bisect bad a2ee1d248468145c06c162c3369ed8fda07736cb
Bisecting: 30 revisions left to test after this (roughly 5 steps)
[bdf0acad6dce2758117ae9c00d3bb566c2435c9b] Merge remote-tracking branch 'ipsec-next/master'
testing commit bdf0acad6dce2758117ae9c00d3bb566c2435c9b with gcc (GCC) 8.1.0
kernel signature: 09d8e8c69b1831660dd7cbe2838fc761b61d2210b18ac6152385effc3b81bccf
run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
run #2: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
run #3: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
run #4: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
run #5: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
run #6: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
run #7: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
run #8: crashed: BUG: unable to handle kernel NULL pointer dereference in __xfrm6_tunnel_spi_lookup
run #9: boot failed: can't ssh into the instance
# git bisect bad bdf0acad6dce2758117ae9c00d3bb566c2435c9b
Bisecting: 16 revisions left to test after this (roughly 4 steps)
[6984cbc6dfa280687367b9660d8c830518239851] selftests/bpf: Switch perf_buffer test to tracepoint and skeleton
testing commit 6984cbc6dfa280687367b9660d8c830518239851 with gcc (GCC) 8.1.0
kernel signature: 4c1330435f99bc5d1d87668aa0049b99bb61a2e7789d1768e5d3690c1da5a3d4
all runs: OK
# git bisect good 6984cbc6dfa280687367b9660d8c830518239851
Bisecting: 8 revisions left to test after this (roughly 3 steps)
[2ab110cbb0c0cb05c64f37f42b78f5bc11699b0e] ip6_vti: support IP6IP tunnel processing
testing commit 2ab110cbb0c0cb05c64f37f42b78f5bc11699b0e with gcc (GCC) 8.1.0
kernel signature: dec2dcea0d41561f9aa883745a405209fd20d166740ed100deae6775daed4910
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip 2ab110cbb0c0cb05c64f37f42b78f5bc11699b0e
Bisecting: 8 revisions left to test after this (roughly 3 steps)
[08622869ed3f167db9b2250ab1bb055f55293401] ip6_vti: support IP6IP6 tunnel processing with .cb_handler
testing commit 08622869ed3f167db9b2250ab1bb055f55293401 with gcc (GCC) 8.1.0
kernel signature: 58c471a2ee5adc97f8b5598f9de2102c2fb17936e196047ac8422d58c614ac37
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip 08622869ed3f167db9b2250ab1bb055f55293401
Bisecting: 8 revisions left to test after this (roughly 3 steps)
[6df2db5d37ba3df8c80d90c15f1e20480be43f75] tunnel4: add cb_handler to struct xfrm_tunnel
testing commit 6df2db5d37ba3df8c80d90c15f1e20480be43f75 with gcc (GCC) 8.1.0
kernel signature: 4604fbaf12f6cc293dae7c83e8b13e203de840656a8e47f0601626408dd2965c
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip 6df2db5d37ba3df8c80d90c15f1e20480be43f75
Bisecting: 8 revisions left to test after this (roughly 3 steps)
[d5a7a5057387d79b91a6e2fd78a76ccd53f91e6c] ipcomp: assign if_id to child tunnel from parent tunnel
testing commit d5a7a5057387d79b91a6e2fd78a76ccd53f91e6c with gcc (GCC) 8.1.0
kernel signature: f2833f60c987622bb6665bc522bd1abfe1b435a8bbfa5eb8bd4f5dcfe35d06de
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip d5a7a5057387d79b91a6e2fd78a76ccd53f91e6c
Bisecting: 8 revisions left to test after this (roughly 3 steps)
[bfdd0897dc3036be5b1ec41fad6abd2498002217] Merge remote-tracking branch 'bpf-next/master'
testing commit bfdd0897dc3036be5b1ec41fad6abd2498002217 with gcc (GCC) 8.1.0
kernel signature: 4824f1f1e34228f690de7259dd0c8e21d630e6fed13db2eb9d7f6c3e0efff4dd
all runs: OK
# git bisect good bfdd0897dc3036be5b1ec41fad6abd2498002217
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[d7b360c2869f9ce2418510d14baf0f9696fcf1e9] xfrm: interface: support IP6IP6 and IP6IP tunnels processing with .cb_handler
testing commit d7b360c2869f9ce2418510d14baf0f9696fcf1e9 with gcc (GCC) 8.1.0
kernel signature: 1fba0e6aaf27a94d5f2f219c383deb727057b1b696cb4694dc4ce08741ded853
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip d7b360c2869f9ce2418510d14baf0f9696fcf1e9
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[e6ce64570f2451684b4f9bcbaee6c40c4a7dff82] ip_vti: support IPIP6 tunnel processing
testing commit e6ce64570f2451684b4f9bcbaee6c40c4a7dff82 with gcc (GCC) 8.1.0
kernel signature: 494a3c5c7bdbb18ae265068b61daf9bb74bf5e091ca738ff73f626f88a53e429
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip e6ce64570f2451684b4f9bcbaee6c40c4a7dff82
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[da9bbf0598c9e66b8a46ceabaa6172596795acf2] xfrm: interface: support IPIP and IPIP6 tunnels processing with .cb_handler
testing commit da9bbf0598c9e66b8a46ceabaa6172596795acf2 with gcc (GCC) 8.1.0
kernel signature: 52914def292d4d536cb9d57aa8a430f8f1ab005799b216b942223f8563025c38
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip da9bbf0598c9e66b8a46ceabaa6172596795acf2
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[87e66b9682d7067eb7db08040dae36b608a4d971] ip_vti: support IPIP tunnel processing with .cb_handler
testing commit 87e66b9682d7067eb7db08040dae36b608a4d971 with gcc (GCC) 8.1.0
kernel signature: f010854f27376fec32ed48eabc936145ca6607bba892819a563a077826eacd24
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip 87e66b9682d7067eb7db08040dae36b608a4d971
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[1475ee0ac9a16dd5df23ca8abe1039eb6086eb66] xfrm: add is_ipip to struct xfrm_input_afinfo
testing commit 1475ee0ac9a16dd5df23ca8abe1039eb6086eb66 with gcc (GCC) 8.1.0
kernel signature: fad5d85a9d2e28e25056690db028d8461ba83c63d36a0135e3dab2c6d08fb4ae
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip 1475ee0ac9a16dd5df23ca8abe1039eb6086eb66
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[86afc7031826147407e96412668d343e0f1bd6fd] tunnel6: add tunnel6_input_afinfo for ipip and ipv6 tunnels
testing commit 86afc7031826147407e96412668d343e0f1bd6fd with gcc (GCC) 8.1.0
kernel signature: b9eaebdd81caca63dbcc601584b5c6fa82eeec48d701ba360d6d90d9e80e81ba
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip 86afc7031826147407e96412668d343e0f1bd6fd
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[2d4c7986dbc6f78043df7b946b36996fca8c046f] Merge remote-tracking branch 'origin/testing'
testing commit 2d4c7986dbc6f78043df7b946b36996fca8c046f with gcc (GCC) 8.1.0
kernel signature: a6718f7cd5af93ba5ed7c61abd947be0bd1cb6186d3a07bab10f0c3c39e6c618
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip 2d4c7986dbc6f78043df7b946b36996fca8c046f
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[428d2459cceb77357b81c242ca22462a6a904817] xfrm: introduce oseq-may-wrap flag
testing commit 428d2459cceb77357b81c242ca22462a6a904817 with gcc (GCC) 8.1.0
kernel signature: 8fce0c5670ab8295d8a2b0f4525ee9158f5ee8c429572c38e51ba2091caa8d4c
all runs: basic kernel testing failed: KASAN: use-after-free Write in afs_wake_up_async_call
# git bisect skip 428d2459cceb77357b81c242ca22462a6a904817
There are only 'skip'ped commits left to test.
The first bad commit could be any of:
08622869ed3f167db9b2250ab1bb055f55293401
e6ce64570f2451684b4f9bcbaee6c40c4a7dff82
2ab110cbb0c0cb05c64f37f42b78f5bc11699b0e
87e66b9682d7067eb7db08040dae36b608a4d971
86afc7031826147407e96412668d343e0f1bd6fd
d5a7a5057387d79b91a6e2fd78a76ccd53f91e6c
6df2db5d37ba3df8c80d90c15f1e20480be43f75
d7b360c2869f9ce2418510d14baf0f9696fcf1e9
1475ee0ac9a16dd5df23ca8abe1039eb6086eb66
da9bbf0598c9e66b8a46ceabaa6172596795acf2
2d4c7986dbc6f78043df7b946b36996fca8c046f
428d2459cceb77357b81c242ca22462a6a904817
bdf0acad6dce2758117ae9c00d3bb566c2435c9b
We cannot bisect more!
revisions tested: 28, total time: 5h10m59.896667418s (build: 2h34m11.436154501s, test: 2h32m31.686098267s)
bisection is inconclusive, the first bad commit could be any of:
08622869ed3f167db9b2250ab1bb055f55293401
e6ce64570f2451684b4f9bcbaee6c40c4a7dff82
2ab110cbb0c0cb05c64f37f42b78f5bc11699b0e
87e66b9682d7067eb7db08040dae36b608a4d971
86afc7031826147407e96412668d343e0f1bd6fd
d5a7a5057387d79b91a6e2fd78a76ccd53f91e6c
6df2db5d37ba3df8c80d90c15f1e20480be43f75
d7b360c2869f9ce2418510d14baf0f9696fcf1e9
1475ee0ac9a16dd5df23ca8abe1039eb6086eb66
da9bbf0598c9e66b8a46ceabaa6172596795acf2
2d4c7986dbc6f78043df7b946b36996fca8c046f
428d2459cceb77357b81c242ca22462a6a904817
bdf0acad6dce2758117ae9c00d3bb566c2435c9b