bisecting cause commit starting from c6dd78fcb8eefa15dd861889e0f59d301cb5230c building syzkaller on 55e0c07757deebc0c6094915fae19fc0959849e4 testing commit c6dd78fcb8eefa15dd861889e0f59d301cb5230c with gcc (GCC) 8.1.0 run #0: crashed: memory leak in vq_meta_prefetch run #1: crashed: memory leak in vq_meta_prefetch run #2: crashed: WARNING in __mmdrop run #3: crashed: WARNING in __mmdrop run #4: crashed: memory leak in vq_meta_prefetch run #5: crashed: memory leak in vq_meta_prefetch run #6: crashed: memory leak in vq_meta_prefetch run #7: crashed: memory leak in vq_meta_prefetch run #8: crashed: memory leak in vq_meta_prefetch run #9: OK testing release v5.2 testing commit 0ecfebd2b52404ae0c54a878c872bb93363ada36 with gcc (GCC) 8.1.0 all runs: crashed: memory leak in batadv_tvlv_handler_register testing release v5.1 testing commit e93c9c99a629c61837d5a7fc2120cd2b6c70dbdd with gcc (GCC) 8.1.0 all runs: crashed: memory leak in batadv_tvlv_handler_register testing release v5.0 testing commit 1c163f4c7b3f621efff9b28a47abb36f7378d783 with gcc (GCC) 8.1.0 all runs: crashed: memory leak in batadv_tvlv_handler_register testing release v4.20 testing commit 8fe28cb58bcb235034b64cbbb7550a8a43fd88be with gcc (GCC) 8.1.0 run #0: crashed: memory leak in __neigh_create run #1: crashed: memory leak in __neigh_create run #2: crashed: memory leak in __neigh_create run #3: crashed: memory leak in __neigh_create run #4: crashed: memory leak in __neigh_create run #5: crashed: memory leak in __neigh_create run #6: crashed: memory leak in batadv_tvlv_handler_register run #7: crashed: memory leak in batadv_tvlv_handler_register run #8: OK run #9: crashed: memory leak in batadv_tvlv_handler_register testing release v4.19 testing commit 84df9525b0c27f3ebc2ebb1864fa62a97fdedb7d with gcc (GCC) 8.1.0 all runs: crashed: memory leak in __neigh_create testing release v4.18 testing commit 94710cac0ef4ee177a63b5227664b38c95bbf703 with gcc (GCC) 8.1.0 all runs: crashed: memory leak in corrupted testing release v4.17 testing commit 29dcea88779c856c7dc92040a0c01233263101d4 with gcc (GCC) 8.1.0 all runs: crashed: memory leak in corrupted testing release v4.16 testing commit 0adb32858b0bddf4ada5f364a84ed60b196dbcda with gcc (GCC) 8.1.0 all runs: crashed: memory leak in __neigh_create testing release v4.15 testing commit d8a5b80568a9cb66810e75b182018e9edb68e8ff with gcc (GCC) 8.1.0 all runs: crashed: memory leak in __neigh_create testing release v4.14 testing commit bebc6082da0a9f5d47a1ea2edc099bf671058bd4 with gcc (GCC) 8.1.0 all runs: crashed: memory leak in __neigh_create testing release v4.13 testing commit 569dbb88e80deb68974ef6fdd6a13edb9d686261 with gcc (GCC) 8.1.0 run #0: basic kernel testing failed: WARNING: kernel stack regs has bad 'bp' value run #1: basic kernel testing failed: WARNING: kernel stack regs has bad 'bp' value run #2: crashed: WARNING: kernel stack regs has bad 'bp' value run #3: crashed: WARNING: kernel stack regs has bad 'bp' value run #4: crashed: WARNING: kernel stack regs has bad 'bp' value run #5: basic kernel testing failed: WARNING: kernel stack regs has bad 'bp' value run #6: crashed: WARNING: kernel stack regs has bad 'bp' value run #7: crashed: memory leak in __neigh_create run #8: crashed: memory leak in __neigh_create run #9: crashed: memory leak in __neigh_create testing release v4.12 testing commit 6f7da290413ba713f0cdd9ff1a2a9bb129ef4f6c with gcc (GCC) 8.1.0 run #0: basic kernel testing failed: WARNING: kernel stack regs has bad 'bp' value run #1: basic kernel testing failed: WARNING: kernel stack regs has bad 'bp' value run #2: basic kernel testing failed: WARNING: kernel stack regs has bad 'bp' value run #3: basic kernel testing failed: WARNING: kernel stack regs has bad 'bp' value run #4: crashed: WARNING: kernel stack regs has bad 'bp' value run #5: crashed: memory leak in copy_process run #6: crashed: memory leak in copy_process run #7: crashed: memory leak in copy_process run #8: crashed: WARNING: kernel stack regs has bad 'bp' value run #9: crashed: WARNING: kernel stack regs has bad 'bp' value testing release v4.11 testing commit a351e9b9fc24e982ec2f0e76379a49826036da12 with gcc (GCC) 7.3.0 all runs: crashed: memory leak in copy_process testing release v4.10 testing commit c470abd4fde40ea6a0846a2beab642a578c0b8cd with gcc (GCC) 5.5.0 run #0: crashed: memory leak in copy_process run #1: crashed: memory leak in copy_process run #2: crashed: memory leak in copy_process run #3: crashed: memory leak in __neigh_create run #4: crashed: memory leak in copy_process run #5: crashed: memory leak in __neigh_create run #6: crashed: memory leak in copy_process run #7: crashed: memory leak in copy_process run #8: crashed: memory leak in copy_process run #9: crashed: memory leak in copy_process testing release v4.9 testing commit 69973b830859bc6529a7a0468ba0d80ee5117826 with gcc (GCC) 5.5.0 all runs: crashed: memory leak in copy_process testing release v4.8 testing commit c8d2bc9bc39ebea8437fd974fdbc21847bb897a3 with gcc (GCC) 5.5.0 run #0: OK run #1: OK run #2: OK run #3: OK run #4: OK run #5: crashed: memory leak in batadv_tvlv_handler_register run #6: OK run #7: OK run #8: OK run #9: OK testing release v4.7 testing commit 523d939ef98fd712632d93a5a2b588e477a7565e with gcc (GCC) 5.5.0 run #0: OK run #1: OK run #2: OK run #3: OK run #4: OK run #5: crashed: memory leak in batadv_tvlv_handler_register run #6: OK run #7: OK run #8: OK run #9: OK testing release v4.6 testing commit 2dcd0af568b0cf583645c8a317dd12e344b1c72a with gcc (GCC) 5.5.0 all runs: OK # git bisect start v4.7 v4.6 Bisecting: 6716 revisions left to test after this (roughly 13 steps) [0694f0c9e20c47063e4237e5f6649ae5ce5a369a] radix tree test suite: remove dependencies on height testing commit 0694f0c9e20c47063e4237e5f6649ae5ce5a369a with gcc (GCC) 5.5.0 all runs: OK # git bisect good 0694f0c9e20c47063e4237e5f6649ae5ce5a369a Bisecting: 3352 revisions left to test after this (roughly 12 steps) [e4f7bdc2ec0d0dcc27f7d70db27a620dfdc1f697] Merge branch 'for-4.7-zac' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/libata testing commit e4f7bdc2ec0d0dcc27f7d70db27a620dfdc1f697 with gcc (GCC) 5.5.0 run #0: crashed: memory leak in next_bio run #1: crashed: memory leak in next_bio run #2: crashed: memory leak in next_bio run #3: crashed: memory leak in next_bio run #4: crashed: memory leak in next_bio run #5: crashed: memory leak in next_bio run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad e4f7bdc2ec0d0dcc27f7d70db27a620dfdc1f697 Bisecting: 1442 revisions left to test after this (roughly 11 steps) [2f37dd131c5d3a2eac21cd5baf80658b1b02a8ac] Merge tag 'staging-4.7-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/staging testing commit 2f37dd131c5d3a2eac21cd5baf80658b1b02a8ac with gcc (GCC) 5.5.0 run #0: crashed: memory leak in next_bio run #1: crashed: memory leak in next_bio run #2: crashed: memory leak in next_bio run #3: crashed: memory leak in next_bio run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad 2f37dd131c5d3a2eac21cd5baf80658b1b02a8ac Bisecting: 976 revisions left to test after this (roughly 10 steps) [5af2344013454640e0133bb62e8cf2e30190a472] Merge tag 'char-misc-4.7-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/char-misc testing commit 5af2344013454640e0133bb62e8cf2e30190a472 with gcc (GCC) 5.5.0 run #0: crashed: memory leak in next_bio run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad 5af2344013454640e0133bb62e8cf2e30190a472 Bisecting: 552 revisions left to test after this (roughly 9 steps) [087afe8aaf562dc7a53f2577049830d6a3245742] Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net testing commit 087afe8aaf562dc7a53f2577049830d6a3245742 with gcc (GCC) 5.5.0 run #0: crashed: memory leak in next_bio run #1: crashed: memory leak in next_bio run #2: crashed: memory leak in next_bio run #3: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor244111478" "root@10.128.10.1:./syz-executor244111478"]: exit status 1 ssh: connect to host 10.128.10.1 port 22: Connection timed out lost connection run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad 087afe8aaf562dc7a53f2577049830d6a3245742 Bisecting: 177 revisions left to test after this (roughly 8 steps) [e7f44b65b532040ac90b73b60ea0b629742ced33] Merge tag 'devicetree-for-4.7' of git://git.kernel.org/pub/scm/linux/kernel/git/robh/linux testing commit e7f44b65b532040ac90b73b60ea0b629742ced33 with gcc (GCC) 5.5.0 run #0: crashed: memory leak in next_bio run #1: crashed: memory leak in next_bio run #2: crashed: memory leak in next_bio run #3: crashed: memory leak in next_bio run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad e7f44b65b532040ac90b73b60ea0b629742ced33 Bisecting: 108 revisions left to test after this (roughly 7 steps) [e9bb8af98a981fe404010706a192ca0450a87760] i40iw: pass hw_stats by reference rather than by value testing commit e9bb8af98a981fe404010706a192ca0450a87760 with gcc (GCC) 5.5.0 all runs: OK # git bisect good e9bb8af98a981fe404010706a192ca0450a87760 Bisecting: 52 revisions left to test after this (roughly 6 steps) [76b584d3125a1f7d8b64e9c522a4555bc2844bde] Merge tag 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/dledford/rdma testing commit 76b584d3125a1f7d8b64e9c522a4555bc2844bde with gcc (GCC) 5.5.0 run #0: crashed: memory leak in next_bio run #1: crashed: memory leak in next_bio run #2: crashed: memory leak in next_bio run #3: crashed: memory leak in next_bio run #4: crashed: memory leak in next_bio run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad 76b584d3125a1f7d8b64e9c522a4555bc2844bde Bisecting: 37 revisions left to test after this (roughly 5 steps) [ba987e51a63713669ce6bdbe9b120d72e59eec8e] iw_cxgb4: Convert a __force cast testing commit ba987e51a63713669ce6bdbe9b120d72e59eec8e with gcc (GCC) 5.5.0 all runs: OK # git bisect good ba987e51a63713669ce6bdbe9b120d72e59eec8e Bisecting: 24 revisions left to test after this (roughly 4 steps) [37aa5c36aa70c9fc5f633b89cce990f04aaa3cd4] IB/mlx5: Add UARs write-combining and non-cached mapping testing commit 37aa5c36aa70c9fc5f633b89cce990f04aaa3cd4 with gcc (GCC) 5.5.0 all runs: OK # git bisect good 37aa5c36aa70c9fc5f633b89cce990f04aaa3cd4 Bisecting: 10 revisions left to test after this (roughly 4 steps) [0651ec932afffce6547efb3e0352e5d229273962] Merge branches 'cxgb4-2', 'i40iw-2', 'ipoib', 'misc-4.7' and 'mlx5-fcs' into k.o/for-4.7 testing commit 0651ec932afffce6547efb3e0352e5d229273962 with gcc (GCC) 5.5.0 all runs: OK # git bisect good 0651ec932afffce6547efb3e0352e5d229273962 Bisecting: 5 revisions left to test after this (roughly 3 steps) [4a99fa06a8ca27a5187636e630568658000af575] sbs-battery: fix power status when battery charging near dry testing commit 4a99fa06a8ca27a5187636e630568658000af575 with gcc (GCC) 5.5.0 run #0: crashed: memory leak in police_init_net run #1: crashed: memory leak in police_init_net run #2: OK run #3: crashed: memory leak in police_init_net run #4: crashed: memory leak in police_init_net run #5: crashed: memory leak in police_init_net run #6: crashed: memory leak in police_init_net run #7: OK run #8: OK run #9: OK # git bisect bad 4a99fa06a8ca27a5187636e630568658000af575 Bisecting: 2 revisions left to test after this (roughly 1 step) [f80cb488439879df6ae3ba32a5dc4e0892fcd3ff] power: reset: at91-shdwc: add new shutdown controller driver testing commit f80cb488439879df6ae3ba32a5dc4e0892fcd3ff with gcc (GCC) 5.5.0 run #0: crashed: memory leak in police_init_net run #1: crashed: memory leak in police_init_net run #2: OK run #3: crashed: memory leak in police_init_net run #4: crashed: memory leak in police_init_net run #5: crashed: memory leak in police_init_net run #6: crashed: memory leak in police_init_net run #7: OK run #8: crashed: memory leak in police_init_net run #9: OK # git bisect bad f80cb488439879df6ae3ba32a5dc4e0892fcd3ff Bisecting: 0 revisions left to test after this (roughly 0 steps) [0e5f7d0b39e1f184dc25e3adb580c79e85332167] ARM: dts: at91: shdwc binding: add new shutdown controller documentation testing commit 0e5f7d0b39e1f184dc25e3adb580c79e85332167 with gcc (GCC) 5.5.0 all runs: crashed: memory leak in police_init_net # git bisect bad 0e5f7d0b39e1f184dc25e3adb580c79e85332167 0e5f7d0b39e1f184dc25e3adb580c79e85332167 is the first bad commit commit 0e5f7d0b39e1f184dc25e3adb580c79e85332167 Author: Nicolas Ferre Date: Wed Mar 16 14:19:49 2016 +0100 ARM: dts: at91: shdwc binding: add new shutdown controller documentation The new shutdown controller compatible with sama5d2 has a new binding documentation and properties. Signed-off-by: Nicolas Ferre Acked-by: Alexandre Belloni Acked-by: Rob Herring Signed-off-by: Sebastian Reichel :040000 040000 21dda2a2f3ab87d90f18779751654d03eeebf70c 6688034469fcdab03a7ceffa21befe3e6ebcbda5 M Documentation revisions tested: 33, total time: 7h50m49.267022199s (build: 1h53m27.726858579s, test: 5h48m32.57013817s) first bad commit: 0e5f7d0b39e1f184dc25e3adb580c79e85332167 ARM: dts: at91: shdwc binding: add new shutdown controller documentation cc: ["alexandre.belloni@free-electrons.com" "nicolas.ferre@atmel.com" "robh@kernel.org" "sre@kernel.org"] crash: memory leak in police_init_net BUG: memory leak unreferenced object 0xffff88012a12d180 (size 32): comm "syz-executor.1", pid 5732, jiffies 4294955232 (age 435.890s) hex dump (first 32 bytes): 00 c1 a7 b7 00 88 ff ff 0f 00 00 00 00 00 00 00 ................ 00 00 00 00 72 5f 72 75 6e 5f 74 3a 73 30 00 00 ....r_run_t:s0.. backtrace: [] kmemleak_alloc+0x23/0x40 mm/kmemleak.c:913 [] kmemleak_alloc_recursive include/linux/kmemleak.h:47 [inline] [] slab_post_alloc_hook mm/slab.h:406 [inline] [] slab_alloc mm/slab.c:3232 [inline] [] kmem_cache_alloc_trace+0x174/0x260 mm/slab.c:3445 [] kmalloc include/linux/slab.h:478 [inline] [] tc_action_net_init include/net/act_api.h:122 [inline] [] police_init_net+0x34/0xc0 net/sched/act_police.c:376 [] ops_init+0x3c/0x120 net/core/net_namespace.c:109 [] setup_net+0x7c/0x110 net/core/net_namespace.c:287 [] copy_net_ns+0x74/0x110 net/core/net_namespace.c:367 [] create_new_namespaces+0x116/0x1d0 kernel/nsproxy.c:106 [] unshare_nsproxy_namespaces+0x55/0xb0 kernel/nsproxy.c:205 [] SYSC_unshare kernel/fork.c:2019 [inline] [] SyS_unshare+0x19c/0x350 kernel/fork.c:1969 [] entry_SYSCALL_64_fastpath+0x1e/0xa8 [] 0xffffffffffffffff BUG: memory leak unreferenced object 0xffff88012a12d900 (size 32): comm "syz-executor.1", pid 5732, jiffies 4294955232 (age 435.890s) hex dump (first 32 bytes): 80 c0 a7 b7 00 88 ff ff 0f 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 6f 2e 32 00 ff ff ff ff ........o.2..... backtrace: [] kmemleak_alloc+0x23/0x40 mm/kmemleak.c:913 [] kmemleak_alloc_recursive include/linux/kmemleak.h:47 [inline] [] slab_post_alloc_hook mm/slab.h:406 [inline] [] slab_alloc mm/slab.c:3232 [inline] [] kmem_cache_alloc_trace+0x174/0x260 mm/slab.c:3445 [] kmalloc include/linux/slab.h:478 [inline] [] tc_action_net_init include/net/act_api.h:122 [inline] [] gact_init_net+0x34/0xc0 net/sched/act_gact.c:220 [] ops_init+0x3c/0x120 net/core/net_namespace.c:109 [] setup_net+0x7c/0x110 net/core/net_namespace.c:287 [] copy_net_ns+0x74/0x110 net/core/net_namespace.c:367 [] create_new_namespaces+0x116/0x1d0 kernel/nsproxy.c:106 [] unshare_nsproxy_namespaces+0x55/0xb0 kernel/nsproxy.c:205 [] SYSC_unshare kernel/fork.c:2019 [inline] [] SyS_unshare+0x19c/0x350 kernel/fork.c:1969 [] entry_SYSCALL_64_fastpath+0x1e/0xa8 [] 0xffffffffffffffff BUG: memory leak unreferenced object 0xffff8800b33ddd20 (size 32): comm "syz-executor.1", pid 5732, jiffies 4294955232 (age 435.890s) hex dump (first 32 bytes): 00 e6 a0 b7 00 88 ff ff 07 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 6f 2e 32 00 30 00 00 00 ........o.2.0... backtrace: [] kmemleak_alloc+0x23/0x40 mm/kmemleak.c:913 [] kmemleak_alloc_recursive include/linux/kmemleak.h:47 [inline] [] slab_post_alloc_hook mm/slab.h:406 [inline] [] slab_alloc mm/slab.c:3232 [inline] [] kmem_cache_alloc_trace+0x174/0x260 mm/slab.c:3445 [] kmalloc include/linux/slab.h:478 [inline] [] tc_action_net_init include/net/act_api.h:122 [inline] [] mirred_init_net+0x34/0xb0 net/sched/act_mirred.c:286 [] ops_init+0x3c/0x120 net/core/net_namespace.c:109 [] setup_net+0x7c/0x110 net/core/net_namespace.c:287 [] copy_net_ns+0x74/0x110 net/core/net_namespace.c:367 [] create_new_namespaces+0x116/0x1d0 kernel/nsproxy.c:106 [] unshare_nsproxy_namespaces+0x55/0xb0 kernel/nsproxy.c:205 [] SYSC_unshare kernel/fork.c:2019 [inline] [] SyS_unshare+0x19c/0x350 kernel/fork.c:1969 [] entry_SYSCALL_64_fastpath+0x1e/0xa8 [] 0xffffffffffffffff BUG: memory leak unreferenced object 0xffff8800b33ddea0 (size 32): comm "syz-executor.1", pid 5732, jiffies 4294955232 (age 435.890s) hex dump (first 32 bytes): 00 c0 a7 b7 00 88 ff ff 0f 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [] kmemleak_alloc+0x23/0x40 mm/kmemleak.c:913 [] kmemleak_alloc_recursive include/linux/kmemleak.h:47 [inline] [] slab_post_alloc_hook mm/slab.h:406 [inline] [] slab_alloc mm/slab.c:3232 [inline] [] kmem_cache_alloc_trace+0x174/0x260 mm/slab.c:3445 [] kmalloc include/linux/slab.h:478 [inline] [] tc_action_net_init include/net/act_api.h:122 [inline] [] xt_init_net+0x34/0xc0 net/sched/act_ipt.c:370 [] ops_init+0x3c/0x120 net/core/net_namespace.c:109 [] setup_net+0x7c/0x110 net/core/net_namespace.c:287 [] copy_net_ns+0x74/0x110 net/core/net_namespace.c:367 [] create_new_namespaces+0x116/0x1d0 kernel/nsproxy.c:106 [] unshare_nsproxy_namespaces+0x55/0xb0 kernel/nsproxy.c:205 [] SYSC_unshare kernel/fork.c:2019 [inline] [] SyS_unshare+0x19c/0x350 kernel/fork.c:1969 [] entry_SYSCALL_64_fastpath+0x1e/0xa8 [] 0xffffffffffffffff