bisecting fixing commit since d09b80172c22df7a5e2ec58aa1a0fbe8914752e7
building syzkaller on 54289b0835634ca07a8117613c48b73e9e647d13
testing commit d09b80172c22df7a5e2ec58aa1a0fbe8914752e7 with gcc (GCC) 8.1.0
kernel signature: ce2257b1c18d4f4b1a94f01769c85de01ed9cdd11a460616f953b1f528ac9625
run #0: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #1: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #2: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #3: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #4: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #5: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #6: crashed: WARNING: ODEBUG bug in netdev_freemem
run #7: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #8: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #9: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
testing current HEAD f5d8eef067acee3fda37137f4a08c0d3f6427a8e
testing commit f5d8eef067acee3fda37137f4a08c0d3f6427a8e with gcc (GCC) 8.1.0
kernel signature: 80da18a27f2f08ca01d37232b9e6e49fdbebc81bde0ee5936042ad440fe6da1c
all runs: OK
# git bisect start f5d8eef067acee3fda37137f4a08c0d3f6427a8e d09b80172c22df7a5e2ec58aa1a0fbe8914752e7
Bisecting: 329 revisions left to test after this (roughly 8 steps)
[33acb78c859f1a0bd3c6b67801fada16f99614f6] usermodehelper: reset umask to default before executing user process
testing commit 33acb78c859f1a0bd3c6b67801fada16f99614f6 with gcc (GCC) 8.1.0
kernel signature: 6ddd6e93e79864fee85a077c41dffce06e9e9c88d6f657804cf2918d5c581f7e
all runs: OK
# git bisect bad 33acb78c859f1a0bd3c6b67801fada16f99614f6
Bisecting: 164 revisions left to test after this (roughly 7 steps)
[1d0e482939c49c6fc4979e964c1cd6a7c255edd0] tools: gpio-hammer: Avoid potential overflow in main
testing commit 1d0e482939c49c6fc4979e964c1cd6a7c255edd0 with gcc (GCC) 8.1.0
kernel signature: 14fb13e8ed5874fbadbfaa6a0c928e18cfa1cf3d4d32969e05b5338e6d582239
all runs: OK
# git bisect bad 1d0e482939c49c6fc4979e964c1cd6a7c255edd0
Bisecting: 81 revisions left to test after this (roughly 6 steps)
[489cee9124d53ce20fb3f989449efa2aa51a4b18] kernel/sys.c: avoid copying possible padding bytes in copy_to_user
testing commit 489cee9124d53ce20fb3f989449efa2aa51a4b18 with gcc (GCC) 8.1.0
kernel signature: fd5c06d14d408136f6b972fab132a295021bc144995e416056f1722931962691
all runs: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
# git bisect good 489cee9124d53ce20fb3f989449efa2aa51a4b18
Bisecting: 40 revisions left to test after this (roughly 5 steps)
[bb198240240a8469d0708e472a397c02880faad9] dmaengine: stm32-mdma: use vchan_terminate_vdesc() in .terminate_all
testing commit bb198240240a8469d0708e472a397c02880faad9 with gcc (GCC) 8.1.0
kernel signature: 36751277289fe2028ec23017d9eb32d7aace404b12a4210bd505cbd3b7e6c61b
all runs: OK
# git bisect bad bb198240240a8469d0708e472a397c02880faad9
Bisecting: 20 revisions left to test after this (roughly 4 steps)
[b3c930914ea92761dc2982f0195d20809ce2d518] selftests/ftrace: fix glob selftest
testing commit b3c930914ea92761dc2982f0195d20809ce2d518 with gcc (GCC) 8.1.0
kernel signature: 7871fe40cf6dc5b0e527a87ca78eb64b8c8b60a682ea0851340528ae604750a4
all runs: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
# git bisect good b3c930914ea92761dc2982f0195d20809ce2d518
Bisecting: 10 revisions left to test after this (roughly 3 steps)
[64e0f9e159fe6b592e0fe26cfc1ce03f79d2a9db] selinux: sel_avc_get_stat_idx should increase position index
testing commit 64e0f9e159fe6b592e0fe26cfc1ce03f79d2a9db with gcc (GCC) 8.1.0
kernel signature: 00c34e6786bf51203a1eb30cc9a8ff94c269a8c94f85e91ed580d57c7df14512
all runs: OK
# git bisect bad 64e0f9e159fe6b592e0fe26cfc1ce03f79d2a9db
Bisecting: 4 revisions left to test after this (roughly 2 steps)
[4b0795d5b615de48541eae1a87b5a37543e1c17f] Bluetooth: prefetch channel before killing sock
testing commit 4b0795d5b615de48541eae1a87b5a37543e1c17f with gcc (GCC) 8.1.0
kernel signature: dd49d7da3ef34db48f12125271b5d45d854d17b69bdc9e99e19c6481c335e9fd
all runs: OK
# git bisect bad 4b0795d5b615de48541eae1a87b5a37543e1c17f
Bisecting: 2 revisions left to test after this (roughly 1 step)
[3b73af6cb9550fda83ee09b8cf0a5992967eeae5] Bluetooth: Fix refcount use-after-free issue
testing commit 3b73af6cb9550fda83ee09b8cf0a5992967eeae5 with gcc (GCC) 8.1.0
kernel signature: 97e8a95fd6029f1a71a59398eb437241fa02318f299304f6c42844faf248481c
all runs: basic kernel testing failed: KASAN: use-after-free Read in l2cap_sock_release
# git bisect skip 3b73af6cb9550fda83ee09b8cf0a5992967eeae5
Bisecting: 2 revisions left to test after this (roughly 1 step)
[52f5a09ab7583ed497fc4b331311d71b7d8a6e12] mm/swapfile.c: swap_next should increase position index
testing commit 52f5a09ab7583ed497fc4b331311d71b7d8a6e12 with gcc (GCC) 8.1.0
kernel signature: ed4d7ea44f7064755ba8212070c252b8c356303ac6a3722855312001359de4a0
all runs: basic kernel testing failed: KASAN: use-after-free Read in l2cap_sock_release
# git bisect skip 52f5a09ab7583ed497fc4b331311d71b7d8a6e12
Bisecting: 2 revisions left to test after this (roughly 1 step)
[f9cb6b6124ac3e1586251329e51b898f1d0a54e6] mm: pagewalk: fix termination condition in walk_pte_range()
testing commit f9cb6b6124ac3e1586251329e51b898f1d0a54e6 with gcc (GCC) 8.1.0
kernel signature: 93b73bbe3569e999507c3307c69fc6e2f20b0ac65301054a887b554f034df700
all runs: basic kernel testing failed: KASAN: use-after-free Read in l2cap_sock_release
# git bisect skip f9cb6b6124ac3e1586251329e51b898f1d0a54e6
Bisecting: 2 revisions left to test after this (roughly 1 step)
[fd0956234c72ce13a765ea814942ed11654d3b6e] tools/power/x86/intel_pstate_tracer: changes for python 3 compatibility
testing commit fd0956234c72ce13a765ea814942ed11654d3b6e with gcc (GCC) 8.1.0
kernel signature: 7871fe40cf6dc5b0e527a87ca78eb64b8c8b60a682ea0851340528ae604750a4
run #0: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #1: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #2: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #3: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #4: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #5: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #6: crashed: KASAN: use-after-free Read in l2cap_sock_close_cb
run #7: basic kernel testing failed: failed to copy test binary to VM: timedout ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/tmp/syz-executor685257464" "root@10.128.0.127:./syz-executor685257464"]
run #8: OK
run #9: OK
# git bisect good fd0956234c72ce13a765ea814942ed11654d3b6e
There are only 'skip'ped commits left to test.
The first bad commit could be any of:
52f5a09ab7583ed497fc4b331311d71b7d8a6e12
3b73af6cb9550fda83ee09b8cf0a5992967eeae5
f9cb6b6124ac3e1586251329e51b898f1d0a54e6
4b0795d5b615de48541eae1a87b5a37543e1c17f
We cannot bisect more!
revisions tested: 13, total time: 3h46m43.842549262s (build: 1h52m8.066613115s, test: 1h53m17.57211583s)
bisection is inconclusive, the first good commit could be any of:
52f5a09ab7583ed497fc4b331311d71b7d8a6e12
3b73af6cb9550fda83ee09b8cf0a5992967eeae5
f9cb6b6124ac3e1586251329e51b898f1d0a54e6
4b0795d5b615de48541eae1a87b5a37543e1c17f